Ubuntu
libyaml package

Change logs for libyaml source package in Precise

  1. Precise (12.04)
  2. Change log 
  • libyaml (0.1.4-2ubuntu0.12.04.4) precise-security; urgency=medium

  * SECURITY UPDATE: denial of service via triggered assertion
    - debian/patches/CVE-2014-9130.patch: remove assertion
    - CVE-2014-9130
 -- Steve Beattie <email address hidden>   Thu, 08 Jan 2015 18:17:27 -0800
  • libyaml (0.1.4-2ubuntu0.12.04.3) precise-security; urgency=medium

  * SECURITY UPDATE: denial of service and possible code execution via
    heap overflow in yaml_parser_scan_uri_escapes
    - debian/patches/CVE-2014-2525.patch: properly handle memory in
      src/scanner.c, src/yaml_private.h.
    - CVE-2014-2525
 -- Marc Deslauriers <email address hidden>   Wed, 02 Apr 2014 11:44:25 -0400
  • libyaml (0.1.4-2ubuntu0.12.04.2) precise-security; urgency=medium

  * SECURITY REGRESSION: parsing regression in security update
    (LP: #1279805)
    - debian/patches/CVE-2013-6393.patch: updated to use upstream commits
      from 0.1.5.
 -- Marc Deslauriers <email address hidden>   Thu, 13 Feb 2014 08:40:49 -0500
  • libyaml (0.1.4-2ubuntu0.12.04.1) precise-security; urgency=medium

  * SECURITY UPDATE: denial of service and possible code execution via
    large yaml documents
    - debian/patches/CVE-2013-6393.patch: fix integer overflows in
      src/scanner.c, src/api.c.
    - CVE-2013-6393
 -- Marc Deslauriers <email address hidden>   Fri, 31 Jan 2014 13:09:02 -0500
  • libyaml (0.1.4-2) unstable; urgency=low


  * Remove extra libyaml-0.so symlink from libyaml-dev.
  * Bump Debhelper compat level to 9.
  * Support multiarch.  (Closes: #653748) (LP: #905630)
  * Use 3.0 (quilt) source format.

 -- Anders Kaseorg <email address hidden>  Fri, 30 Dec 2011 17:14:52 -0500
  • libyaml (0.1.4-1) unstable; urgency=low

  * New upstream version 0.1.4.
    + Fixed a bug that prevented an empty mapping being used as a simple
      key.
    + Fixed pointer overflow when calculating the position of a potential
      simple key.
    + Added pkg-config support.  (Closes: #537834)
  * Remove unneded libyaml.la file.  (Closes: #622452)
  * Add libyaml-0-2-dbg package with debugging symbols.
    (Closes: #592747)
  * Bumped standards version to 3.9.2 without further change
 -- Ubuntu Archive Auto-Sync <email address hidden>   Fri,  03 Jun 2011 10:24:33 +0000