-
pyjwt (2.3.0-1ubuntu0.2) jammy-security; urgency=medium
* SECURITY REGRESSION: Revert inadvertent package version bump to 2.4.0
(LP: #1986487)
- debian/patches/CVE-2022-29217.patch: Comment out the part which
bumps the internal package version number to 2.4.0
-- Alex Murray <email address hidden> Wed, 17 Aug 2022 10:05:29 +0930
-
pyjwt (2.3.0-1ubuntu0.1) jammy-security; urgency=medium
* SECURITY UPDATE: Signing key confusion via public key signature
- debian/patches/CVE-2022-29217.patch: update jwt/algorithms.py to
disallow using SSH keys as a HMAC secret.
- CVE-2022-29217
-- Alex Murray <email address hidden> Tue, 19 Jul 2022 14:26:57 +0930
-
pyjwt (2.3.0-1) unstable; urgency=medium
* Team upload.
* New upstream release.
-- Thomas Goirand <email address hidden> Wed, 16 Feb 2022 09:33:52 +0100
-
pyjwt (2.1.0-1) unstable; urgency=medium
[ Ondřej Nový ]
* d/control: Update Maintainer field with new Debian Python Team
contact address.
* d/control: Update Vcs-* fields with new Debian Python Team Salsa
layout.
[ Debian Janitor ]
* Set upstream metadata fields: Bug-Database, Bug-Submit, Repository,
Repository-Browse.
* Update standards version to 4.5.0, no changes needed.
[ Daniele Tricoli ]
* New upstream version 2.1.0. (Closes: #989637)
* Drop man page since upstream dropped CLI entrypoint.
* debian/changelog
- Format changelog to not go over 80 columns.
* debian/control
- Bump debhelper compatibility to 13.
- Bump Standards-Version to 4.5.1 (no changes needed).
* debian/copyright
- Update copyright years.
* debian/NEWS
- Add news entry about dropped CLI.
* debian/tests/python3-jwt
- Use supported python versions during tests.
* debian/watch
- Bump d/watch version to 4.
-- Daniele Tricoli <email address hidden> Fri, 20 Aug 2021 02:13:42 +0200
-
pyjwt (1.7.1-2ubuntu2) focal; urgency=medium
* Drop Python 2 package.
- There is no remaining changes compared to the Debian packaging.
-- Jeremy Bicha <email address hidden> Sun, 05 Apr 2020 19:07:35 -0400