diff options
Diffstat (limited to 'debian/changelog')
-rw-r--r-- | debian/changelog | 36 |
1 files changed, 36 insertions, 0 deletions
diff --git a/debian/changelog b/debian/changelog index 190252c..4343549 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,39 @@ +pcre3 (2:8.35-7.4) unstable; urgency=medium + + * Non-maintainer upload. + * Fix copy-and-paste error in Disable_JIT_on_sparc64.patch. + + -- John Paul Adrian Glaubitz <glaubitz@physik.fu-berlin.de> Mon, 02 Nov 2015 18:51:13 +0100 + +pcre3 (2:8.35-7.3) unstable; urgency=medium + + * Non-maintainer upload. + * Add Disable_JIT_on_sparc64.patch to disable JIT on sparc64. The patch + no_jit_x32_powerpcspe.patch to disable JIT on powerpcspe was already + added in 2:8.35-6 (Closes: #765079). + + -- John Paul Adrian Glaubitz <glaubitz@physik.fu-berlin.de> Mon, 02 Nov 2015 15:13:16 +0100 + +pcre3 (2:8.35-7.2) unstable; urgency=low + + * Non-maintainer upload (with maintainer's permission). + * Add Fix-compiler-crash-misbehaviour-for-zero-repeated-gr.patch. + Fixes "PCRE Library Stack Overflow Vulnerability" (Upstream bug 1503) + * Add Fix-compile-time-loop-for-recursive-reference-within.patch. + Fixes "PCRE Call Stack Overflow Vulnerability" (Upstream bug 1515) + * Add 794589-information-disclosure.patch. + Fixes "pcre_exec does not fill offsets for certain regexps" leading to + information disclosure. (Closes: #794589) + * Add Fix-bad-compile-for-groups-like-2-0-1999.patch. + CVE-2015-2325: heap buffer overflow in compile_branch(). (Closes: #781795) + * Add Fix-bad-compilation-for-patterns-like-1-1-with-forwa.patch. + CVE-2015-2326: heap buffer overflow in pcre_compile2(). (Closes: #783285) + * Add Fix-buffer-overflow-for-named-recursive-back-referen.patch. + CVE-2015-3210: heap buffer overflow in pcre_compile2() / + compile_regex(). (Closes: #787433) + + -- Salvatore Bonaccorso <carnil@debian.org> Fri, 11 Sep 2015 20:04:19 +0200 + pcre3 (2:8.35-7.1) unstable; urgency=medium * Rename libpcrecpp0 to libpcrecpp0v5. Addresses: #791236. |