-
openslp-dfsg (1.2.1-9ubuntu0.3) trusty-security; urgency=medium
* SECURITY UPDATE: DoS or code exec via double-free
- debian/patches/CVE-2017-17833.patch: fix up local copy of pointer in
slpd/slpd_process.c.
- CVE-2017-17833
- CVE-2018-12938
-- Marc Deslauriers <email address hidden> Fri, 06 Jul 2018 13:25:51 -0400
-
openslp-dfsg (1.2.1-9ubuntu0.2) trusty-security; urgency=medium
* SECURITY UPDATE: denial of service via out-of-bounds buffer access
- debian/patches/CVE-2012-4428.patch: fix handling of string-list in
common/slp_compare.c
- CVE-2012-4428
* SECURITY UPDATE: denial of service via double free flaw
- debian/patches/CVE-2015-5177.patch: fix double free if
SLPDKnownDAAdd() fails in slpd/slpd_knownda.c.
- CVE-2015-5177
* debian/preinst, debian/postinst: removed as they weren't needed and
were causing package to be uninstallable on trusty.
-- Marc Deslauriers <email address hidden> Fri, 28 Aug 2015 15:51:20 -0400
-
openslp-dfsg (1.2.1-9) unstable; urgency=low
* QA upload.
* Drop 99_auroreconf patch, use dh-autoreconf instead. Ajust build-depends
accordingly.
* Bump Standards-Version to 3.9.2.
* Drop duplicate Section and Priority fields from debian/control.
* Move to dh_install instead of dh_movefiles.
* Switch to format 3.0 (quilt).
* Call make disclean in clean target, stop finishing the cleanup manually.
* Enable building of the static lib, and ship it in libslp1-dev.
* Stop shipping the .la file.
* Bump debhelper compat version to 8. Ajust build-depends accordingly.
* Drop build-depends on debconf.
* Remove manual calls to ldconfig, debhelper adds them for us.
* Stop the debconf abuse, ship a README.Debian with libslp1 instead.
Closes: #613472.
* Drop now unneeded BSD-specific tricks from debian/rules.
-- Regis Boudin <email address hidden> Mon, 06 Feb 2012 23:02:46 +0100
