Change logs for json-c source package in Utopic

json-c (0.11-4ubuntu1) utopic; urgency=medium

  * SECURITY UPDATE: denial of service via hash collision (LP: #1311397)
    - debian/patches/0001-Patch-to-address-the-following-issues.patch:
    Upstream patch to enable hash randomization.
    - CVE-2013-6371
  * SECURITY UPDATE: denial of service via buffer overflow (LP: #1311397)
    - debian/patches/0001-Patch-to-address-the-following-issues.patch:
    Upstream patch to guard against negative and maximum buffer sizes.
    - CVE-2013-6370

json-c (0.11-4) unstable; urgency=low

  * Add upstream patch to fix two security vulnerabilities (Closes: #744008)
    + [CVE-2013-6371]: hash collision denial of service
    + [CVE-2013-6370]: buffer overflow if size_t is larger than int
 -- Dimitri John Ledkov <email address hidden>   Wed, 23 Apr 2014 01:12:44 +0100

json-c (0.11-3ubuntu1) trusty; urgency=low

  * Resynchronise with Debian.  Remaining changes:
    - On upgrade, restart Upstart (to pick up new package version) if the
      running instance supports it.

json-c (0.11-3) unstable; urgency=low

  * Repository is not at anonscam.debian.org :)
  * Merge git changes from 0.11 and not-yet-merged pull request #94 needed
    for new php5-json
 -- Colin Watson <email address hidden>   Mon, 21 Oct 2013 13:56:14 +0100