Format: 1.8
Date: Mon, 7 Apr 2014 18:52:02 -0100
Source: libyaml
Binary: libyaml-0-2 libyaml-dev
Architecture: source
Version: 0.1.3-2bbox2
Distribution: lucid
Urgency: medium
Maintainer: John Leach <john@brightbox.co.uk>
Changed-By: John Leach <john@brightbox.co.uk>
Description: 
 libyaml-0-2 - Fast YAML 1.1 parser and emitter library
 libyaml-dev - Fast YAML 1.1 parser and emitter library (development)
Changes: 
 libyaml (0.1.3-2bbox2) lucid; urgency=medium
 .
   [ Marc Deslauriers <marc.deslauriers@ubuntu.com> ]
   * SECURITY UPDATE: denial of service and possible code execution via
     heap overflow in yaml_parser_scan_uri_escapes
     - debian/patches/CVE-2014-2525.patch: properly handle memory in
       src/scanner.c, src/yaml_private.h.
     - CVE-2014-2525
 .
   * SECURITY UPDATE: denial of service and possible code execution via
     large yaml documents
     - debian/patches/CVE-2013-6393.patch: fix integer overflows in
       src/scanner.c, src/api.c.
     - CVE-2013-6393
 .
   [ John Leach ]
   * Backported security fixes from Precise to Lucid
Checksums-Sha1: 
 27d3d64ca02f3b14946cf1aef32f733c2b9656d3 1937 libyaml_0.1.3-2bbox2.dsc
 2f260f88c1e5367582176015ddf50225e8a2a9e3 5002 libyaml_0.1.3-2bbox2.debian.tar.gz
Checksums-Sha256: 
 64ca61377cc6940ca8b539f21802f4a291cf36ca770ce3db8d8a2e1bdb8bb904 1937 libyaml_0.1.3-2bbox2.dsc
 5d14265db5e5792aa0b13d5d9215eedea96e55efde5bc032e1c2667681c175ee 5002 libyaml_0.1.3-2bbox2.debian.tar.gz
Files: 
 c5c3f6c82e34c20cae9386bfdc9fe8d3 1937 libs optional libyaml_0.1.3-2bbox2.dsc
 d738c77e5cab8fc0ca492585c19ab753 5002 libs optional libyaml_0.1.3-2bbox2.debian.tar.gz
Original-Maintainer: Anders Kaseorg <andersk@mit.edu>