-
graphviz (2.20.2-8ubuntu3.2) lucid-security; urgency=medium
* SECURITY UPDATE: Format string vulnerability may allow attackers to
cause a denial of service or possibly execute code.
- debian/patches/CVE-2014-9157.patch: Fix format string vulnerability in
lib/cgraph/scan.l yyerror() routine.
- CVE-2014-9157
-- Seth Arnold <email address hidden> Thu, 04 Dec 2014 16:33:37 -0800
-
graphviz (2.20.2-8ubuntu3.1) lucid-security; urgency=low
* SECURITY UPDATE: buffer overflow in yyerror()
- debian/patches/CVE-2014-0978.patch: don't overflow buf in
lib/cgraph/scan.l.
- CVE-2014-0978
* SECURITY UPDATE: buffer overflow in yyerror() security fix
- debian/patches/CVE-2014-1235.patch: once again, don't overflow buf
in lib/cgraph/scan.l.
- CVE-2014-1235
* SECURITY UPDATE: buffer overflow in chkNum of scanner
- debian/patches/CVE-2014-1236.patch: don't overflow buf in
lib/cgraph/scan.l.
- CVE-2014-1236
-- Marc Deslauriers <email address hidden> Tue, 14 Jan 2014 13:37:26 -0500
-
graphviz (2.20.2-8ubuntu3) lucid; urgency=low
* Rebuild for php 5.3.
-- Chuck Short <email address hidden> Tue, 02 Mar 2010 13:09:32 -0500
-
graphviz (2.20.2-8ubuntu2) lucid; urgency=low
* No-change rebuild for OCaml 3.11.2 transition (LP: #522363).
-- Luke Yelavich <email address hidden> Fri, 19 Feb 2010 12:39:35 +1100
-
graphviz (2.20.2-8ubuntu1) lucid; urgency=low
* Merge with Debian; remaining changes:
- Fix a segfault in dot2gxl.
- debian/control: Added XS-Python-Version: all
* debian/rules:
- Included python.mk
- Load PYTHON_VERSIONS with default version instead of all versions
- Enable generic python support in configure (parameter --enable-python)
call and disable python2.5 (--enable-python25) support.
- Install the generic python support.
graphviz (2.20.2-8) unstable; urgency=low
* Maintenance upload until 2.26 is ready
* Add phpapi-<version> depend to libgv-php5 (Closes: #566287)
* Minor fix to debian/rules - use pyversions -r instead of -s in
PYTHON_VERSIONS def. Fixes FTBFS due to migration of python2.6 to
unstable.
* Fix a couple of issues preventing graphviz from building twice
in succession
- modified patch 20_fix_parser_stack_overflow to only patch parser.y
not intermediate bison files - also causes intermediate files to
be regenerated
- added patch 0_fix_htmlparse_bison_2_4 to fix FTBFS when using
bison 2.4
graphviz (2.20.2-7) unstable; urgency=low
* Maintenance upload untill 2.26 is ready
* New Maintainers (Closes: #536245)
* Drop python2.4 support (Closes: #562407)
* Version dependency on swig (Closes: #505040)
graphviz (2.20.2-6) unstable; urgency=low
* QA upload.
* Don't install gv.a on non-native OCaml architectures.
graphviz (2.20.2-5) unstable; urgency=low
* QA upload.
[ Ana Beatriz Guerrero Lopez ]
* Fix FTBFS by switching from guile-1.6-dev to guile-1.8-dev.
Thanks Martin Pitt. (Closes: #493974)
* Switch gs-common build dependend to ghostscript. Thanks Martin Pitt.
(Closes: #504569)
* Switch build depend from libltdl3-dev to versioned libltdl-dev (>= 2.2.6b).
(Closes: #504571)
[ Mehdi Dogguy ]
* The location of the OCaml's standard library has changed:
- Add dh-ocaml (>= 0.4.1) as a build-dependency
- Use $(OCAML_STDLIB_DIR) instead of hard-coding the path
/usr/lib/ocaml/$(OCAMLABI)
- Use $(OCAML_DLL_DIR) instead of hard-coding the path
/usr/lib/ocaml/$(OCAMLABI)/stublibs
- Use $(OCAML_ABI) from ocamlvars.mk
(Closes: #536383)
* Enable the use of dh_ocaml for automatic dependency computation.
* Generate documentation for OCaml bindings using dh_ocamldoc.
[ Aurelien Jarno ]
* Also remove rpath from libraries using chrpath.
graphviz (2.20.2-4) unstable; urgency=high
* QA upload.
* Orphan the package:
- Set Maintainer to Debian QA Group <email address hidden>.
- Please contact Sebastian Harl if you're interested (See: #536245).
* Fix FTBFS due to broken tcl/swig code generation, thanks to Ludovico
Cavedon (Closes: #542979):
- debian/patches/30_fix_swig_tcl_ftbfs
* Fix FTBFS due to swig's move from -php5 to -php, thanks to Ludovico
Cavedon again:
- debian/patches/40_fix_swig_php_ftbfs
* Fix FTBFS when other tcl versions are installed, using the apparently
usual way to deal with it, thanks to Ludovico Cavedon one more time:
Add tcl8.3 and tcl8.4 to Build-Conflicts.
* Set urgency to “high” due to the various FTBFS reasons.
-- Matthias Klose <email address hidden> Mon, 01 Feb 2010 19:00:48 +0100
-
graphviz (2.20.2-3ubuntu5) karmic; urgency=low
* debian/patches/30_fix_dot2gxl_segfault:
- Fix a segfault in dot2gxl (LP: #376400)
-- Simon Olofsson <email address hidden> Mon, 14 Sep 2009 10:32:25 +0200