-
jansson (2.5-2ubuntu0.2) trusty-security; urgency=medium
* REGRESSION UPDATE: The backport of CVE-2013-6401 brought a
regression.
- debian/patches/Fix-regression-in-CVE-2013-6401-backport.patch: Fix
in src/hashtable.c and test/suites/api/test_objec.t
-- Eduardo Barretto <email address hidden> Thu, 02 Aug 2018 12:05:04 -0300
-
jansson (2.5-2ubuntu0.1) trusty-security; urgency=medium
* SECURITY UPDATE: Hash collision issue
- debian/patches/CVE-2013-6401.patch: Fix hash function so that
it is not susceptible to predictable hash collisions
- CVE-2013-6401
* SECURITY UPDATE: Stack exhaustion parsing a JSON file
- debian/patches/CVE-2016-4425.patch: Fix in src/load.c and
src/jansson_config.h.in
- CVE-2016-4425
-- Eduardo Barretto <email address hidden> Wed, 01 Aug 2018 09:32:10 -0300
-
jansson (2.5-2) unstable; urgency=medium
* Fix vcs-field-not-canonical
* Bump Standards-Version to 3.9.5 (no changes needed)
* Use dh-autoreconf instead of autotools-dev to fix FTBFS on ppc64el.
Thanks to Logan Rosen for the patch (Closes: #732822)
-- Alessandro Ghedini <email address hidden> Sun, 22 Dec 2013 15:31:36 +0100
-
jansson (2.5-1ubuntu1) trusty; urgency=medium
* Use dh-autoreconf instead of autotools-dev to try to fix FTBFS on ppc64el.
-- Logan Rosen <email address hidden> Sun, 22 Dec 2013 00:29:09 -0500
-
jansson (2.5-1) unstable; urgency=low
* New upstream release
* Bump Standards-Version to 3.9.4
* Update upstream copyright years
-- Alessandro Ghedini <email address hidden> Fri, 20 Sep 2013 10:44:52 +0200
-
jansson (2.4-1) unstable; urgency=low
* New upstream release
- Fix FTBFS on ppc64. Thanks to Aurelien Jarno (Closes: #684468)
* Update *.symbols file
-- Alessandro Ghedini <email address hidden> Sun, 23 Sep 2012 14:00:33 +0200
