chiark / gitweb /
~ian / pcre3.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Changelog for 2:8.38-2
[pcre3.git] / debian / changelog
diff --git a/debian/changelog b/debian/changelog
index 190252c9ae89eaa67a5ada6aaf3f8049e7dc63b5..a3ee7dbd24b25e62a24b81330d8eb9f114715fda 100644 (file)
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,58 @@
+pcre3 (2:8.38-2) unstable; urgency=low
+
+  * Apply upstream patch to fix workspace overflow for (*ACCEPT) with
+    deeply nested parentheses (Closes: #815921)
+
+ -- Matthew Vernon <matthew@debian.org>  Sat, 27 Feb 2016 16:30:35 +0000
+
+pcre3 (2:8.38-1) unstable; urgency=low
+
+  * New upstream version
+
+ -- Matthew Vernon <matthew@debian.org>  Tue, 22 Dec 2015 13:37:39 +0000
+
+pcre3 (2:8.35-8) unstable; urgency=low
+
+  * Remove conflicts with long-vanished pcre{1,2}-dev packages (so new PCRE2 packages can co-exist)
+
+ -- Matthew Vernon <matthew@debian.org>  Sat, 21 Nov 2015 15:35:13 +0000
+
+pcre3 (2:8.35-7.4) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * Fix copy-and-paste error in Disable_JIT_on_sparc64.patch.
+
+ -- John Paul Adrian Glaubitz <glaubitz@physik.fu-berlin.de>  Mon, 02 Nov 2015 18:51:13 +0100
+
+pcre3 (2:8.35-7.3) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * Add Disable_JIT_on_sparc64.patch to disable JIT on sparc64. The patch
+    no_jit_x32_powerpcspe.patch to disable JIT on powerpcspe was already
+    added in 2:8.35-6 (Closes: #765079).
+
+ -- John Paul Adrian Glaubitz <glaubitz@physik.fu-berlin.de>  Mon, 02 Nov 2015 15:13:16 +0100
+
+pcre3 (2:8.35-7.2) unstable; urgency=low
+
+  * Non-maintainer upload (with maintainer's permission).
+  * Add Fix-compiler-crash-misbehaviour-for-zero-repeated-gr.patch.
+    Fixes "PCRE Library Stack Overflow Vulnerability" (Upstream bug 1503)
+  * Add Fix-compile-time-loop-for-recursive-reference-within.patch.
+    Fixes "PCRE Call Stack Overflow Vulnerability" (Upstream bug 1515)
+  * Add 794589-information-disclosure.patch.
+    Fixes "pcre_exec does not fill offsets for certain regexps" leading to
+    information disclosure. (Closes: #794589)
+  * Add Fix-bad-compile-for-groups-like-2-0-1999.patch.
+    CVE-2015-2325: heap buffer overflow in compile_branch(). (Closes: #781795)
+  * Add Fix-bad-compilation-for-patterns-like-1-1-with-forwa.patch.
+    CVE-2015-2326: heap buffer overflow in pcre_compile2(). (Closes: #783285)
+  * Add Fix-buffer-overflow-for-named-recursive-back-referen.patch.
+    CVE-2015-3210: heap buffer overflow in pcre_compile2() /
+    compile_regex(). (Closes: #787433)
+
+ -- Salvatore Bonaccorso <carnil@debian.org>  Fri, 11 Sep 2015 20:04:19 +0200
+
 pcre3 (2:8.35-7.1) unstable; urgency=medium
 
   * Rename libpcrecpp0 to libpcrecpp0v5. Addresses: #791236.
Unnamed repository; edit this file 'description' to name the repository.