-
nspr (4.13.1-0ubuntu0.12.04.1) precise-security; urgency=medium
* Update to 4.13.1 to support nss security update.
-- <email address hidden> (Leonidas S. Barbosa) Wed, 26 Jul 2017 10:39:42 -0300
-
nspr (4.12-0ubuntu0.12.04.1) precise-security; urgency=medium
* SECURITY UPDATE: memory allocation bug related to the PR_*printf
functions
- Updated to upstream 4.12
- CVE-2016-1951
* debian/libnspr4.symbols: updated for new version.
-- Marc Deslauriers <email address hidden> Thu, 07 Jul 2016 08:03:32 -0400
-
nspr (4.10.10-0ubuntu0.12.04.1) precise-security; urgency=medium
* SECURITY UPDATE: overflow in PL_ARENA_ALLOCATE
- Updated to upstream 4.10.10
- CVE-2015-7183
* debian/libnspr4.symbols: updated for new version.
-- Marc Deslauriers <email address hidden> Wed, 04 Nov 2015 10:21:46 -0600
-
nspr (4.10.7-0ubuntu0.12.04.1) precise-security; urgency=medium
* Update to 4.10.7 to support nss security update.
* Removed unneeded patches:
- debian/patches/81_sonames.patch: not applied.
- debian/patches/CVE-2013-5607.patch: included upstream.
- debian/patches/CVE-2014-1545.patch: included upstream.
* debian/libnspr4.symbols: updated for new version.
* debian/rules: adjust paths.
-- Marc Deslauriers <email address hidden> Fri, 19 Sep 2014 08:08:04 -0400
-
nspr (4.9.5-0ubuntu0.12.04.3) precise-security; urgency=medium
* SECURITY UPDATE: denial of service or arbitrary code execution via
sprintf
- debian/patches/CVE-2014-1545.patch: use snprintf and check values
without using PR_ASSERT in mozilla/nsprpub/pr/src/io/prprf.c, added
tests to mozilla/nsprpub/pr/tests/{Makefile.in,prfdbl.c}.
- CVE-2014-1545
-- Marc Deslauriers <email address hidden> Fri, 27 Jun 2014 11:08:44 -0400
-
nspr (4.9.5-0ubuntu0.12.04.2) precise-security; urgency=medium
* SECURITY UPDATE: denial of service and possible code execution via
integer overflow in PL_ArenaAllocate
- debian/patches/CVE-2013-5607.patch: properly check size in
mozilla/nsprpub/lib/ds/plarena.c.
- CVE-2013-5607
-- Marc Deslauriers <email address hidden> Wed, 22 Jan 2014 16:02:08 -0500
-
nspr (4.9.5-0ubuntu0.12.04.1) precise-security; urgency=low
* New upstream release to support security fixes in nss.
-- Jamie Strandboge <email address hidden> Wed, 13 Mar 2013 10:19:38 -0500
-
nspr (4.9.4-0ubuntu0.12.04.1) precise-security; urgency=low
* New upstream release to support security fixes in nss. Dropped the
following patches:
- debian/patches/30_pkgconfig.patch (included upstream)
- debian/patches/38_hurd.patch (included upstream)
- debian/patches/99_configure.patch (no longer required)
- debian/patches/sonames.patch (no longer required)
* debian/libnsp4.symbols: added PR_GetThreadName@Base and
PR_SetCurrentThreadName@Base
-- Jamie Strandboge <email address hidden> Thu, 10 Jan 2013 11:39:11 -0600
-
nspr (4.8.9-1ubuntu2.3) precise-proposed; urgency=low
* language-support-LANG was still around in 11.04 so the previous change
is requiring a dist-upgrade for any user who upgraded from 11.04 to 11.10
and then to 12.04, instead of being limited to machines that were
originally installed with 9.04 as was planned.
Removing language-support-LANG from the Breaks, which should resolve the
issue for these users while still removing language-support-translations
on systems. (LP: #1036794)
-- Stephane Graber <email address hidden> Fri, 17 Aug 2012 09:46:51 -0400
-
nspr (4.8.9-1ubuntu2.2) precise-proposed; urgency=low
* Add additional Conflicts: on the obsolete evolution-documentation-*
packages, which are held back on some users' systems despite being
obsolete before 10.04; and also on the matching
language-support-translations-* and language-support-* packages. This
should ensure libnspr is getting upgraded, instead of evolution being
held back. LP: #1036794.
-- Steve Langasek <email address hidden> Wed, 15 Aug 2012 13:52:33 -0700
-
nspr (4.8.9-1ubuntu2.1) precise-proposed; urgency=low
* Add Breaks: evolution-plugins (<< 3.2.0-0ubuntu2) to libnspr4,
required to get the dist-upgrader to resolve lucid -> precise.
(LP: #1029531)
-- Stephane Graber <email address hidden> Wed, 08 Aug 2012 17:17:49 -0400
-
nspr (4.8.9-1ubuntu2) precise; urgency=low
* Fix lintian overrides to just list the soname warning to ignore
and not list the paths, which would break installing multiarched libs.
-- Timo Aaltonen <email address hidden> Mon, 12 Dec 2011 12:56:54 +0200
-
nspr (4.8.9-1ubuntu1) precise; urgency=low
* Merge from Debian testing. Remaining changes:
- Ship the main SO files in an unversioned binary, as we don't have
versioned SO's in Ubuntu. Maintain a transitional versioned binary
package containing the versioned symlinks, to maintain compatibility
with Debian
* update control, rules
* mass rename libnspr4-0d* => libnspr4*
* add some lintian overrides
- Fix postinst-must-call-ldconfig - dh_makeshlibs doesn't seem to add
the maintainer script hooks with the unversioned SO files, so add
them manually
* add libnspr4.postinst, libnspr4.postrm
- rules: Enable Thumb2 build on armel, armhf.
- rules: Add support for mozilla-devscripts.
- control: Change Vcs-* to XS-Debian-Vcs-*.
* sonames.patch: Added a patch to fill the object header with a valid
SONAME, otherwise dpkg-gensymbols would barf.
* libnspr4-dev: Silence an additional lintian warning.
* rules: Add a missing backslash to configure flags.
nspr (4.8.9-1) unstable; urgency=low
* New upstream release.
* mozilla/nsprpub/configure.*: Refreshed.
* debian/libnspr4-0d.symbols: Add PR_GetVersion to the symbols file.
* debian/rules: Bump shlibs.
nspr (4.8.8-2) unstable; urgency=low
* debian/libnspr4-0d.install.in, debian/libnspr4-0d.lintian-overrides.in,
debian/libnspr4-dev.install.in, debian/libnspr4-dev.links.in,
debian/control, debian/rules: Switch to multi-arch while keeping
backports easy. Closes: #497087.
* debian/control: Bump Standards-Version to 3.9.2.0. No changes required.
nspr (4.8.8-1) unstable; urgency=low
* New upstream release.
* mozilla/nsprpub/configure: Refreshed.
* debian/libnspr4-0d.symbols*:
- Use symbols tags instead of individual symbols files for each
architecture.
- Add symbols tags for powerpcspe. Closes: #614228
nspr (4.8.7-2) unstable; urgency=low
* Upload to unstable.
* debian/rules: Merge OPTFLAGS and DEBUGFLAGS in one variable.
* debian/control, debian/patches/30_config_64bits.patch,
debian/patches/99_configure.patch, debian/patches/series,
debian/rules: Use dpkg-architecture to enable 64-bits build on 64 bits
architectures, instead of relying on a patch to configure.in.
nspr (4.8.7-1) experimental; urgency=low
* New upstream release.
* mozilla/nsprpub/configure.in: Don't use -march=armv5te -mthumb-interwork
on non-android arm platforms. bz#626035.
-- Timo Aaltonen <email address hidden> Tue, 29 Nov 2011 15:01:32 +0200
-
nspr (4.8.7-0ubuntu4) precise; urgency=low
* debian/rules: enable Thumb2 on armhf as well as armel.
-- Adam Conrad <email address hidden> Mon, 21 Nov 2011 21:31:15 -0700
-
nspr (4.8.7-0ubuntu3) oneiric; urgency=low
* debian/rules: enable Thumb2 build on armel.
* debian/patches/40_fix_arm_ftbfs.patch: Fix passing of assembler
flags for ARM in configure.in. Fixes FTBFS.
* debian/patches/99_configure.patch: Regenerate
-- Jani Monoses <email address hidden> Tue, 12 Jul 2011 23:51:37 +0300