Ubuntu
pyjwt package

Change log for pyjwt package in Ubuntu

129 of 29 results FirstPreviousNextLast
Published in oracular-release
Published in noble-release
Published in mantic-release
Deleted in mantic-proposed (Reason: Moved to mantic) 
pyjwt (2.7.0-1) unstable; urgency=medium

  * New upstream version 2.7.0
  * debian/control
    - Bump Standards-Version to 4.6.2, no changes needed.
    - Build with pybuild-plugin-pyproject.

 -- Daniele Tricoli <email address hidden>  Thu, 15 Jun 2023 05:07:16 +0200

Available diffs

Superseded in mantic-release
Published in lunar-release
Deleted in lunar-proposed (Reason: Moved to lunar) 
pyjwt (2.6.0-1) unstable; urgency=medium

  * New upstream version 2.6.0
  * debian/control
    - Add python3-exceptiongroup and python3-tomli to Build-Depends.
  * debian/copyright
    - Update copyright years.
  * debian/tests/control
    - Add python3-exceptiongroup and python3-tomli to Depends.

 -- Daniele Tricoli <email address hidden>  Tue, 03 Jan 2023 03:04:35 +0100

Available diffs

Superseded in lunar-release
Deleted in lunar-proposed (Reason: Moved to lunar) 
pyjwt (2.4.0-2) unstable; urgency=medium

  [ Debian Janitor ]
  * Remove constraints unnecessary since buster

 -- Jelmer Vernooij <email address hidden>  Mon, 17 Oct 2022 02:46:25 +0100

Available diffs

Published in jammy-updates
Published in jammy-security 
pyjwt (2.3.0-1ubuntu0.2) jammy-security; urgency=medium

  * SECURITY REGRESSION: Revert inadvertent package version bump to 2.4.0
    (LP: #1986487)
    - debian/patches/CVE-2022-29217.patch: Comment out the part which
      bumps the internal package version number to 2.4.0

 -- Alex Murray <email address hidden>  Wed, 17 Aug 2022 10:05:29 +0930
Published in bionic-updates
Published in bionic-security 
pyjwt (1.5.3+ds1-1ubuntu0.1) bionic-security; urgency=medium

  * SECURITY UPDATE: Signing key confusion via public key signature
    - debian/patches/CVE-2022-29217.patch: update jwt/algorithms.py to
      disallow using SSH keys as a HMAC secret.
    - CVE-2022-29217

 -- Alex Murray <email address hidden>  Tue, 19 Jul 2022 15:53:32 +0930
Published in focal-updates
Published in focal-security 
pyjwt (1.7.1-2ubuntu2.1) focal-security; urgency=medium

  * SECURITY UPDATE: Signing key confusion via public key signature
    - debian/patches/CVE-2022-29217.patch: update jwt/algorithms.py to
      disallow using SSH keys as a HMAC secret.
    - CVE-2022-29217

 -- Alex Murray <email address hidden>  Tue, 19 Jul 2022 15:11:38 +0930
Superseded in jammy-updates
Superseded in jammy-security 
pyjwt (2.3.0-1ubuntu0.1) jammy-security; urgency=medium

  * SECURITY UPDATE: Signing key confusion via public key signature
    - debian/patches/CVE-2022-29217.patch: update jwt/algorithms.py to
      disallow using SSH keys as a HMAC secret.
    - CVE-2022-29217

 -- Alex Murray <email address hidden>  Tue, 19 Jul 2022 14:26:57 +0930
Superseded in lunar-release
Obsolete in kinetic-release
Deleted in kinetic-proposed (Reason: Moved to kinetic) 
pyjwt (2.4.0-1) unstable; urgency=medium

  * New upstream version 2.4.0
    - Fixes CVE-2022-29217 (Closes: #1011747)
  * Enable salsa pipelines.
  * Fix typo on debian/NEWS.
  * debian/control
    - Bump Standards-Version to 4.6.1 (no changes needed).
  * debian/copyright
    - Update copyright years.


 -- Daniele Tricoli <email address hidden>  Mon, 11 Jul 2022 17:16:24 +0200

Available diffs

Superseded in kinetic-release
Published in jammy-release
Deleted in jammy-proposed (Reason: Moved to jammy) 
pyjwt (2.3.0-1) unstable; urgency=medium

  * Team upload.
  * New upstream release.

 -- Thomas Goirand <email address hidden>  Wed, 16 Feb 2022 09:33:52 +0100

Available diffs

Superseded in jammy-release
Deleted in jammy-proposed (Reason: Moved to jammy) 
pyjwt (2.1.0-1) unstable; urgency=medium

  [ Ondřej Nový ]
  * d/control: Update Maintainer field with new Debian Python Team
    contact address.
  * d/control: Update Vcs-* fields with new Debian Python Team Salsa
    layout.

  [ Debian Janitor ]
  * Set upstream metadata fields: Bug-Database, Bug-Submit, Repository,
    Repository-Browse.
  * Update standards version to 4.5.0, no changes needed.

  [ Daniele Tricoli ]
  * New upstream version 2.1.0. (Closes: #989637)
  * Drop man page since upstream dropped CLI entrypoint.
  * debian/changelog
    - Format changelog to not go over 80 columns.
  * debian/control
    - Bump debhelper compatibility to 13.
    - Bump Standards-Version to 4.5.1 (no changes needed).
  * debian/copyright
    - Update copyright years.
  * debian/NEWS
    - Add news entry about dropped CLI.
  * debian/tests/python3-jwt
    - Use supported python versions during tests.
  * debian/watch
    - Bump d/watch version to 4.

 -- Daniele Tricoli <email address hidden>  Fri, 20 Aug 2021 02:13:42 +0200
Superseded in jammy-release
Obsolete in impish-release
Obsolete in hirsute-release
Obsolete in groovy-release
Published in focal-release
Deleted in focal-proposed (Reason: moved to Release) 
pyjwt (1.7.1-2ubuntu2) focal; urgency=medium

  * Drop Python 2 package.
    - There is no remaining changes compared to the Debian packaging.

 -- Jeremy Bicha <email address hidden>  Sun, 05 Apr 2020 19:07:35 -0400

Available diffs

Superseded in focal-release
Deleted in focal-proposed (Reason: moved to Release) 
pyjwt (1.7.1-2ubuntu1) focal; urgency=medium

  * Restore python2 support, two many Ubuntu only dependencies.
  * Don't test the python2 build, because Python2 test dependencies
    are already removed.

 -- Matthias Klose <email address hidden>  Tue, 07 Jan 2020 18:11:09 +0100
Superseded in focal-proposed 
pyjwt (1.7.1-2) unstable; urgency=medium

  * Team upload.
  * Drop python2 support; Closes: #937463

 -- Sandro Tosi <email address hidden>  Sat, 26 Oct 2019 20:17:32 -0400

Available diffs

Superseded in focal-release
Deleted in focal-proposed (Reason: moved to Release) 
pyjwt (1.7.1-1) unstable; urgency=medium

  [ Ondřej Nový ]
  * Use debhelper-compat instead of debian/compat.

  [ Daniele Tricoli ]
  * New upstream release. (Closes: #942241)
  * Use my Debian email address.
  * debian/control
    - Bump debhelper-compat to 12.
    - Bump Standards-Version to 4.4.1 (no changes needed).
  * debian/copyright
    - Update copyright years.
  * debian/patches/0001-Fix-tests-to-work-with-pytest-3.9.0.patch
    - Drop since no needed anymore.

 -- Daniele Tricoli <email address hidden>  Tue, 22 Oct 2019 02:58:08 +0200

Available diffs

Superseded in focal-release
Obsolete in eoan-release
Obsolete in disco-release
Deleted in disco-proposed (Reason: moved to release) 
pyjwt (1.7.0-2) unstable; urgency=medium

  * debian/tests/control
    - Wrap Depends.
    - Bump python{,3}-pytest version to >= 3.9.0.

 -- Daniele Tricoli <email address hidden>  Thu, 13 Dec 2018 02:09:40 +0100

Available diffs

Superseded in disco-proposed 
pyjwt (1.7.0-1) unstable; urgency=medium

  [ Ondřej Nový ]
  * Convert git repository from git-dpm to gbp layout

  [ Daniele Tricoli ]
  * New upstream release.
  * debian/control
    - Bump python{,3}-pytest version to >= 3.9.0 in Build-Depends.
    - Bump Standards-Version to 4.2.1 (no changes needed).
  * debian/patches
    - Add 0001-Fix-tests-to-work-with-pytest-3.9.0.patch. (Closes: #915200)
  * debian/pyjwt.1
    - Update release date.

 -- Daniele Tricoli <email address hidden>  Mon, 03 Dec 2018 01:52:54 +0100
Superseded in disco-release
Obsolete in cosmic-release
Deleted in cosmic-proposed (Reason: moved to release) 
pyjwt (1.6.4-1) unstable; urgency=medium

  [ Ondřej Nový ]
  * d/control: Set Vcs-* to salsa.debian.org
  * d/copyright: Use https protocol in Format field
  * d/watch: Use https protocol
  * d/control: Remove ancient X-Python-Version field
  * d/control: Remove ancient X-Python3-Version field

  [ Daniele Tricoli ]
  * New upstream release.
  * No need to repack upstream tarball since bytecode is not included anymore.
  * Update debhelper compat level to 11.
  * debian/clean
    - Add .pytest_cache.
  * debian/control
    - Bump python-all to >= 2.7 since upstream dropped Python 2.6 support.
    - Bump Standards-Version to 4.1.5 (no changes needed).
  * debian/copyright
    - Update copyright years.
  * debian/docs
    - Update README extension. (Closes: #903187)
  * debian/pyjwt.1
    - Update manpage.

 -- Daniele Tricoli <email address hidden>  Tue, 10 Jul 2018 02:30:49 +0200

Available diffs

Superseded in cosmic-release
Published in bionic-release
Deleted in bionic-proposed (Reason: moved to release) 
pyjwt (1.5.3+ds1-1) unstable; urgency=medium

  * New upstream release. (Closes: #875951)
  * Acknowledge NMU. Thanks to Salvatore Bonaccorso.
  * Remove bytecode from upstream tarball (via Files-Excluded in
    debian/copyright).
  * Add debian/NEWS.
  * Remove shipped edd-info.
  * Ignore precompiled bytecode.
  * Rename commandline script to follow upstream naming.
  * debian/control
    - Add version constraint on python{,3}-pytest. (Closes: #868755)
    - Add version constraint on python{,3}-cryptography
    - Bump Standards-Version to 4.1.0 (no changes needed).
    - Remove testsuite autopkgtest header since debian/tests/control file
      exists.
  * debian/copyright
    - Update copyright years.

 -- Daniele Tricoli <email address hidden>  Mon, 25 Sep 2017 21:23:43 +0200

Available diffs

Superseded in bionic-release
Obsolete in artful-release
Deleted in artful-proposed (Reason: moved to release) 
pyjwt (1.4.2-1.1) unstable; urgency=medium

  * Non-maintainer upload.
  * Throw if key is an PKCS1 PEM-encoded public key (CVE-2017-11424)
    (Closes: #873244)

 -- Salvatore Bonaccorso <email address hidden>  Sat, 16 Sep 2017 14:49:38 +0200
Superseded in artful-release
Deleted in artful-proposed (Reason: moved to release) 
pyjwt (1.4.2-1ubuntu1) artful; urgency=medium

  * SECURITY UPDATE: symmetric/asymmetric key confusion attacks
    - debian/patches/CVE-2017-11424.patch: Throw if key is an PKCS1
      PEM-encoded public key in jwt/algorithms.py, jwt/api_jws.py,
      jwt/api_jwt.py, tests/keys/testkey_pkcs1.pub.pem,
      tests/test_algorithms.py, tests/test_api_jws.py, tests/test_api_jwt.py.
    - CVE-2017-11424

 -- <email address hidden> (Leonidas S. Barbosa)  Mon, 28 Aug 2017 15:39:22 -0300
Published in xenial-updates
Published in xenial-security 
pyjwt (1.3.0-1ubuntu0.1) xenial-security; urgency=medium

  * SECURITY UPDATE: symmetric/asymmetric key confusion attacks
    - debian/patches/CVE-2017-11424.patch: Throw if key is an PKCS1
      PEM-encoded public key in jwt/algorithms.py,
      tests/keys/testkey_pkcs1.pub.pem, tests/test_algorithms.py.
    - CVE-2017-11424

 -- <email address hidden> (Leonidas S. Barbosa)  Tue, 29 Aug 2017 09:49:43 -0300
Obsolete in zesty-updates
Obsolete in zesty-security 
pyjwt (1.4.2-1ubuntu0.1) zesty-security; urgency=medium

  * SECURITY UPDATE: symmetric/asymmetric key confusion attacks
    - debian/patches/CVE-2017-11424.patch: Throw if key is an PKCS1
      PEM-encoded public key in jwt/algorithms.py,
      tests/keys/testkey_pkcs1.pub.pem, tests/test_algorithms.py.
    - CVE-2017-11424

 -- <email address hidden> (Leonidas S. Barbosa)  Mon, 28 Aug 2017 15:46:36 -0300
Superseded in artful-release
Obsolete in zesty-release
Deleted in zesty-proposed (Reason: moved to release) 
pyjwt (1.4.2-1) unstable; urgency=medium

  * New upstream release.

 -- Daniele Tricoli <email address hidden>  Fri, 09 Sep 2016 01:07:26 +0200

Available diffs

Superseded in zesty-release
Obsolete in yakkety-release
Deleted in yakkety-proposed (Reason: moved to release) 
pyjwt (1.4.1-1) unstable; urgency=medium

  * New upstream release.
  * Run "as-installed" tests (DEP8).
  * debian/patches/01_do-not-use-pytest-runner.patch
    - Drop since python{,3}-pytest-runner is in Debian.
  * debian/rules
    - Make the build reproducible. (Closes: #828131, #831868)
      Thanks to Chris Lamb for report and patch.

 -- Daniele Tricoli <email address hidden>  Thu, 21 Jul 2016 00:07:43 +0200

Available diffs

Superseded in yakkety-release
Deleted in yakkety-proposed (Reason: moved to release) 
pyjwt (1.4.0-1) unstable; urgency=medium

  [ Ondřej Nový ]
  * Fixed VCS URL (https)

  [ Daniele Tricoli ]
  * New upstream release.
  * debian/control
    - Bump Standards-Version to 3.9.8 (no changes needed).
    - Add python{,3}-pytest, python{,3}-pytest-cov and python{,3}-pytest-runner
      to Build-Depends.
  * debian/copyright
    - Update copyright years.
  * debian/rules
    - Run tests at build time.

 -- Daniele Tricoli <email address hidden>  Sun, 08 May 2016 00:00:12 +0200

Available diffs

Superseded in yakkety-release
Published in xenial-release
Deleted in xenial-proposed (Reason: moved to release) 
pyjwt (1.3.0-1) unstable; urgency=medium

  * New upstream release.
    - Add a check so that asymmetric keys cannot be used as HMAC
      secrets. See for more details:
      https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/
  * debian/control
    - Update Homepage field.
    - Add python{,3}-cryptography to Build-Depends and Recommends.
      (Closes: #780630)
    - Add python{,3}-crypto to Suggests.
    - Bump Standards-Version to 3.9.6 (no changes needed).
  * debian/copyright
    - Update Upstream-Contact to reflect new upstream author.
    - Update copyright years.
  * debian/patches/01_do-not-use-pytest-runner.patch
    - Remove pytest-runner form setup_requires since it's not packaged for
      Debian yet.
  * debian/watch
    - Use pypi.debian.net redirector.

 -- Daniele Tricoli <email address hidden>  Fri, 10 Jul 2015 02:12:06 +0200
Superseded in xenial-release
Obsolete in wily-release
Superseded in wily-release
Obsolete in vivid-release
Superseded in vivid-release
Superseded in vivid-release
Deleted in vivid-proposed (Reason: moved to release) 
pyjwt (1.0.0-0ubuntu1) vivid; urgency=medium

  * New upstream version.
 -- Matthias Klose <email address hidden>   Wed, 01 Apr 2015 22:20:57 +0200

Available diffs

Superseded in vivid-release
Deleted in vivid-proposed (Reason: moved to release) 
pyjwt (0.4.2-0ubuntu1) vivid; urgency=medium

  * New upstream version.
  * Switch from PyCrypto to cryptography.
  * Enable running the tests.
  * Recommend python-cryptography.
 -- Matthias Klose <email address hidden>   Tue, 17 Mar 2015 15:02:53 +0100
Superseded in vivid-release
Deleted in vivid-proposed (Reason: moved to release) 
pyjwt (0.2.1-1) unstable; urgency=low


  * Initial release (Closes: #755832)

 -- Daniele Tricoli <email address hidden>  Fri, 29 Aug 2014 04:20:04 +0200
129 of 29 results FirstPreviousNextLast