-
libyaml (0.1.4-2ubuntu0.13.10.3) saucy-security; urgency=medium
* SECURITY UPDATE: denial of service and possible code execution via
heap overflow in yaml_parser_scan_uri_escapes
- debian/patches/CVE-2014-2525.patch: properly handle memory in
src/scanner.c, src/yaml_private.h.
- CVE-2014-2525
-- Marc Deslauriers <email address hidden> Wed, 02 Apr 2014 11:43:27 -0400
-
libyaml (0.1.4-2ubuntu0.13.10.2) saucy-security; urgency=medium
* SECURITY REGRESSION: parsing regression in security update
(LP: #1279805)
- debian/patches/CVE-2013-6393.patch: updated to use upstream commits
from 0.1.5.
-- Marc Deslauriers <email address hidden> Thu, 13 Feb 2014 08:32:45 -0500
-
libyaml (0.1.4-2ubuntu0.13.10.1) saucy-security; urgency=medium
* SECURITY UPDATE: denial of service and possible code execution via
large yaml documents
- debian/patches/CVE-2013-6393.patch: fix integer overflows in
src/scanner.c, src/api.c.
- CVE-2013-6393
-- Marc Deslauriers <email address hidden> Fri, 31 Jan 2014 13:04:30 -0500
-
libyaml (0.1.4-2build1) quantal; urgency=low
* Rebuild for new armel compiler default of ARMv5t.
-- Colin Watson <email address hidden> Fri, 05 Oct 2012 10:49:29 +0100