Changelog for 2:8.38-3

[pcre3.git] / debian / changelog

diff --git a/debian/changelog b/debian/changelog
index 3b4ce46f8d33076232ea28b5cbd0482f01d8b6cc..7d516a983a0bc931e3632fc921740a4ad0bcb600 100644 (file)
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,97 @@
+pcre3 (2:8.38-3) unstable; urgency=low
+
+  * Apply Ubuntu patch from Iain Lane (modified by Graham Inggs) to add
+    symbols files (Closes: #767374)
+
+ -- Matthew Vernon <matthew@debian.org>  Sun, 28 Feb 2016 11:24:52 +0000
+
+pcre3 (2:8.38-2) unstable; urgency=low
+
+  * Apply upstream patch to fix workspace overflow for (*ACCEPT) with
+    deeply nested parentheses (Closes: #815921)
+
+ -- Matthew Vernon <matthew@debian.org>  Sat, 27 Feb 2016 16:30:35 +0000
+
+pcre3 (2:8.38-1) unstable; urgency=low
+
+  * New upstream version
+
+ -- Matthew Vernon <matthew@debian.org>  Tue, 22 Dec 2015 13:37:39 +0000
+
+pcre3 (2:8.35-8) unstable; urgency=low
+
+  * Remove conflicts with long-vanished pcre{1,2}-dev packages (so new PCRE2 packages can co-exist)
+
+ -- Matthew Vernon <matthew@debian.org>  Sat, 21 Nov 2015 15:35:13 +0000
+
+pcre3 (2:8.35-7.4) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * Fix copy-and-paste error in Disable_JIT_on_sparc64.patch.
+
+ -- John Paul Adrian Glaubitz <glaubitz@physik.fu-berlin.de>  Mon, 02 Nov 2015 18:51:13 +0100
+
+pcre3 (2:8.35-7.3) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * Add Disable_JIT_on_sparc64.patch to disable JIT on sparc64. The patch
+    no_jit_x32_powerpcspe.patch to disable JIT on powerpcspe was already
+    added in 2:8.35-6 (Closes: #765079).
+
+ -- John Paul Adrian Glaubitz <glaubitz@physik.fu-berlin.de>  Mon, 02 Nov 2015 15:13:16 +0100
+
+pcre3 (2:8.35-7.2) unstable; urgency=low
+
+  * Non-maintainer upload (with maintainer's permission).
+  * Add Fix-compiler-crash-misbehaviour-for-zero-repeated-gr.patch.
+    Fixes "PCRE Library Stack Overflow Vulnerability" (Upstream bug 1503)
+  * Add Fix-compile-time-loop-for-recursive-reference-within.patch.
+    Fixes "PCRE Call Stack Overflow Vulnerability" (Upstream bug 1515)
+  * Add 794589-information-disclosure.patch.
+    Fixes "pcre_exec does not fill offsets for certain regexps" leading to
+    information disclosure. (Closes: #794589)
+  * Add Fix-bad-compile-for-groups-like-2-0-1999.patch.
+    CVE-2015-2325: heap buffer overflow in compile_branch(). (Closes: #781795)
+  * Add Fix-bad-compilation-for-patterns-like-1-1-with-forwa.patch.
+    CVE-2015-2326: heap buffer overflow in pcre_compile2(). (Closes: #783285)
+  * Add Fix-buffer-overflow-for-named-recursive-back-referen.patch.
+    CVE-2015-3210: heap buffer overflow in pcre_compile2() /
+    compile_regex(). (Closes: #787433)
+
+ -- Salvatore Bonaccorso <carnil@debian.org>  Fri, 11 Sep 2015 20:04:19 +0200
+
+pcre3 (2:8.35-7.1) unstable; urgency=medium
+
+  * Rename libpcrecpp0 to libpcrecpp0v5. Addresses: #791236.
+  * Add Conflict/Replaces to the old library.
+  * Add libpcrecpp0v5 symbols file for GCC 5.
+
+ -- Matthias Klose <doko@debian.org>  Tue, 04 Aug 2015 20:23:03 +0200
+
+pcre3 (2:8.35-7) unstable; urgency=medium
+
+  * Apply upstream patch to fix buffer overflow for forward reference
+    within backward assertion with excess closing parenthesis
+    (Closes: #790000)
+
+ -- Matthew Vernon <matthew@debian.org>  Fri, 26 Jun 2015 08:08:55 +0100
+
+pcre3 (2:8.35-6) unstable; urgency=low
+
+  [ Thorsten Glaser ]
+  * Re-add patch disabling JIT on powerpcspe and x32 (Closes: #760327)
+  * Add back missing debian/changelog entries for 1:8.35-3.2 and 1:8.36-1
+
+ -- Matthew Vernon <matthew@debian.org>  Sat, 13 Jun 2015 11:45:25 +0100
+
+pcre3 (2:8.35-5) unstable; urgency=low
+
+  * re-enable jit on ppc64el (by dropping the patch that disables it)
+    (Closes: #786530)
+  * patch from Frederic Bonnard to fix the watch file (Closes: #785726)
+
+ -- Matthew Vernon <matthew@debian.org>  Tue, 26 May 2015 08:27:56 +0100
+
 pcre3 (2:8.35-4) experimental; urgency=medium
 
   [ Mattia Rizzolo ]
@@ -28,6 +122,21 @@ pcre3 (2:8.35-3.2) unstable; urgency=medium
 
  -- Ivo De Decker <ivodd@debian.org>  Sat, 06 Dec 2014 19:21:39 +0100
 
+pcre3 (1:8.36-1) unstable; urgency=medium
+
+  * New upstream release
+  * Upped shlibs dependency to 8.35 (Closes: #767903)
+  * Upstream patch for heap buffer overflow, CVE-2014-8964 (Closes: #770478)
+
+ -- Mark Baker <mark@mnb.org.uk>  Mon, 24 Nov 2014 22:41:12 +0000
+
+pcre3 (1:8.35-3.2) unstable; urgency=low
+
+  * Non-maintainer upload with maintainer permission.
+  * Disable JIT on x32 and powerpcspe (Closes: #760327).
+
+ -- Thorsten Glaser <tg@mirbsd.de>  Wed, 12 Nov 2014 14:30:23 +0000
+
 pcre3 (1:8.35-3.1) unstable; urgency=medium
 
   * Non-maintainer upload.