-
tar (1.35+dfsg-3build1) noble; urgency=high
* No change rebuild for 64-bit time_t and frame pointers.
-- Julian Andres Klode <email address hidden> Mon, 08 Apr 2024 18:20:47 +0200
-
tar (1.35+dfsg-3) unstable; urgency=medium
[ Gianfranco Costamagna ]
* Team upload (salsa.debian.org/debian namespace)
[ Helmut Grohne ]
* Non-maintainer upload.
* Move tar to /usr for DEP17. (Closes: #1059818)
-- Helmut Grohne <email address hidden> Mon, 01 Jan 2024 22:15:10 +0100
-
tar (1.35+dfsg-2) unstable; urgency=medium
* Team upload (salsa.debian.org/debian namespace)
* Add missing changelog entries from previous upload
* Drop workaround for tar < 1.35
* Add files to not-installed to fix FTBFS on arch:all
and arch:any when they are not built together
-- Gianfranco Costamagna <email address hidden> Fri, 29 Dec 2023 14:15:35 +0100
-
tar (1.35+dfsg-2~build1) noble; urgency=medium
* Upload to noble
-- Gianfranco Costamagna <email address hidden> Fri, 29 Dec 2023 14:28:21 +0100
-
tar (1.35+dfsg-1) unstable; urgency=medium
* Team upload (salsa.debian.org/debian namespace)
* New upstream version
* Drop patches now part of upstream codebase:
- CVE-2022-48303.patch
- Fix-handling-of-extended-header-prefixes.patch CVE-2023-39804
- gcc-10-warnings.diff
* Refresh patches:
- oldgnu-unknown-mode-bits.patch
- pristine-tar.diff
- proper_it_translation.patch
* Add myself to copyright file to please lintian
* Update copyright file
* Add new LGPL-2.1+ files to copyright
-- Gianfranco Costamagna <email address hidden> Wed, 20 Dec 2023 09:23:02 +0100
-
tar (1.34+dfsg-1.4) unstable; urgency=medium
[ Chirayu Desai ]
* Import upstream patch to fix '--delete' (Closes: #944118)
(Already fixed in 1.34)
[ Gioele Barabucci ]
* d/control: Build tar-scripts as Architecture: all (Closes: #1050568)
* d/tar-scripts.lintian-overrides: Update to new syntax
* d/tar-scripts.lintian-overrides: Ignore no-manual-page warnings
* d/rules: Use standard dh sequence (Closes: #1048718, #1050565, #1050566)
[ Gianfranco Costamagna ]
* Non-maintainer upload.
* Add fix from Ubuntu for CVE-2022-48303
-- Gianfranco Costamagna <email address hidden> Wed, 20 Dec 2023 08:03:20 +0100
-
tar (1.34+dfsg-1.3ubuntu1) noble; urgency=low
* Merge from Debian unstable. Remaining changes:
- debian/patches/CVE-2022-48303.patch: check limit in
src/list.c.
tar (1.34+dfsg-1.3) unstable; urgency=medium
* Non-maintainer upload.
* Fix handling of extended header prefixes (CVE-2023-39804)
(Closes: #1058079)
-- Gianfranco Costamagna <email address hidden> Wed, 20 Dec 2023 07:51:59 +0100
-
tar (1.34+dfsg-1.2ubuntu2) noble; urgency=medium
* SECURITY UPDATE: stack overflow via crafted xattr (LP: #2029464)
- debian/patches/CVE-2023-39804.patch: allocate xattr keys and values
on the heap rather than the stack in src/xheader.c
- CVE-2023-39804
-- Alex Murray <email address hidden> Tue, 05 Dec 2023 15:39:15 +1030
-
tar (1.34+dfsg-1.2ubuntu1) mantic; urgency=medium
* SECURITY UPDATE: one-byte out of bounds
- debian/patches/CVE-2022-48303.patch: check limit in
src/list.c.
- CVE-2022-48303
-- Leonidas Da Silva Barbosa <email address hidden> Fri, 02 Jun 2023 10:49:54 -0300