-
wavpack (5.0.0-2+deb9u2) stretch-security; urgency=medium
* CVE-2018-10536 CVE-2018-10537 CVE-2018-10538 CVE-2018-10539
CVE-2018-10540
-- Moritz Muehlenhoff <email address hidden> Mon, 30 Apr 2018 20:34:34 +0000
-
wavpack (5.0.0-2+deb9u1) stretch-security; urgency=high
* Non-maintainer upload by the Security Team.
* CVE-2018-6767, CVE-2018-7253, CVE-2018-7254
several vulnerabilities allow a remote attacker to cause a
denial-of-service or have unspecified other impact via
maliciously crafted files (RF64, DSDIFF, CAF)
-- Sebastien Delafond <email address hidden> Tue, 27 Feb 2018 15:15:53 +0100
-
wavpack (5.0.0-2) unstable; urgency=medium
* Team upload.
* debian/patches: Apply upstream fix to fix some fuzz failures
(CVE-2016-10169, CVE-2016-10170, CVE-2016-10171, CVE-2016-10172). (Closes:
#853076)
-- Sebastian Ramacher <email address hidden> Mon, 30 Jan 2017 21:04:05 +0100
-
wavpack (5.0.0-1) unstable; urgency=medium
* Team upload.
* New upstream release.
* debian/libwavpack1.symbols: Add new symbols.
* debian/copyright: Update copyright information.
* debian/control: Bump Standards-Version.
-- Sebastian Ramacher <email address hidden> Mon, 02 Jan 2017 13:56:51 +0100
-
wavpack (4.80.0-1) unstable; urgency=medium
* Team upload.
* New upstream release.
* debian/patches/mark-stack-non-executable.patch: Removed, included
upstream.
* debian/control:
- Bump Standards-Version, no changes needed.
- Update Vcs-*.
-- Sebastian Ramacher <email address hidden> Tue, 05 Apr 2016 21:47:45 +0200
-
wavpack (4.75.2-2) unstable; urgency=medium
* Team upload.
* debian/rules:
- No longer pass --enable-mmx on amd64. It was removed.
- Pass --disable-asm on armel and armhf to fix FTBFS.
-- Sebastian Ramacher <email address hidden> Sun, 17 Jan 2016 17:39:03 +0100
-
wavpack (4.75.0-1) unstable; urgency=medium
* Team upload.
* New upstream release:
- improved: reorganization for modularity and to improve linking
- added: assembler optimizations for encode/decode on x86 and x64
- added: assembler optimizations for decoding on ARMv7 (Linux)
- improved: several minor speed optimizations using intrinsics
- fixed: wavpack.pc.in not working correctly on some Linux distros
- fixed: memcpy() issue causing abort() on OpenBSD
* Touch Standards-Version
-- Alessio Treglia <email address hidden> Wed, 10 Jun 2015 19:17:14 +0100
-
wavpack (4.70.0-1) unstable; urgency=low
* New upstream release:
+ debian/patches/0001-pkgconfig.patch,
debian/patches/0002-largefile.patch:
- Drop patches that were merged upstream.
-- Sebastian Dröge <email address hidden> Thu, 31 Oct 2013 16:47:06 +0100