-
bsdiff (4.3-19) unstable; urgency=medium
* debian/control
- (Homepage): Fix duck(1) "Couldn't connect to server" by updating
URL.
* debian/patches
- (10): Adjust URL in header.
-- Jari Aalto <email address hidden> Fri, 11 Nov 2016 07:15:01 +0200
-
bsdiff (4.3-18) unstable; urgency=medium
* debian/bsdiff.lintian-overrides
- Minor adjustments.
* debian/patches
- (30, 31, 32): New. (Closes: #632585).
Make program less memory hungry.
Patches thanks to Sebastian Andrzej Siewior <email address hidden>.
-- Jari Aalto <email address hidden> Wed, 02 Nov 2016 07:42:01 +0200
-
bsdiff (4.3-17) unstable; urgency=medium
* debian/patches
- (20): New. Closes: CVE-2014-9862
Description: No check for negative values on the number of bytes to
read from the "diff" and "extra" streams, allowing an attacker
controlling the patch file to write at arbitrary locations in the
heap.
https://security-tracker.debian.org/tracker/CVE-2014-9862
-- Jari Aalto <email address hidden> Sat, 29 Oct 2016 07:34:37 +0300
-
bsdiff (4.3-15) unstable; urgency=low
* debian/control
- (Standards-Version): Update to 3.9.4.
- (Vcs-*): Update to anonscm.debian.org.
* debian/patches
- (10): New. Adjust Makefile to not have .ifdef directive.
(Closes: #718104).
-- Jari Aalto <email address hidden> Sun, 11 Aug 2013 15:40:34 +0300
