libotr (4.1.0-2+deb8u1) jessie-security; urgency=high * Non-maintainer upload by the Security Team. * CVE-2016-2851: Integer overflow on 64-bit architectures when receiving 4GB messages -- Salvatore Bonaccorso Mon, 07 Mar 2016 08:29:49 +0100 libotr (4.1.0-2) unstable; urgency=medium * New patch: 0001-Do-not-error-out-when-an-application-is-run-against-.patch Do not error out when an application is run against an older libotr than the one it was built against: given libotr 4.1 is API- and ABI-compatible with libotr 4.0, let's prevent this runtime check from breaking packages that were built against 4.0 (Closes: #767230). * Add symbols file: now that we have removed upstream's version check at runtime, let's use the symbols mechanism to detect (most) ABI changes automatically, and let reverse-dependencies pick up the version of libotr they should depend on (Closes: #767652). * debian/README.source: document how to detect and handle ABI changes. -- intrigeri Sat, 01 Nov 2014 18:36:49 +0100 libotr (4.1.0-1) unstable; urgency=medium * New upstream release. * Drop all patches: applied upstream. * Migrate back to source format 3.0 (quilt), as per new team policy. * Drop unsupported italics from extended description. (Closes: #747271) * Import upstream signing key where uscan looks for it. * debian/watch: enable OpenPGP signature verification. * Declare compliance with Standards-Version 3.9.6 (no change required). * Use cgit for the Vcs-Browser control field. * Reformat debian/control with cme fix. -- intrigeri Tue, 21 Oct 2014 22:12:42 +0200 libotr (4.0.0-3) unstable; urgency=medium * Put the package under the umbrella of the Debian OTR Team. Huge thanks to Thibaut VARENE for having maintained this package for many years! * Add Micah and myself as human uploaders. * Migrate back to source format 1.0. Accordingly integrate debian/patches/message_fragment_fix.patch in the tree: cherry-pick upstream commit d748757e. * Convert debian/copyright to machine-readable copyright format 1.0, update it. * Cleanup debian/control with cme, including: drop versioned dependencies satisfied in oldstable (Squeeze). * Declare compatibility with standards version 3.9.5. * Slightly improve long package descriptions, make it gender-neutral. * Update Homepage control field. * Convert to debhelper 8 with tiny rules file and dh-autoreconf. * Create copyright symlinks with dh_link instead of the real links, that are not supported with source format 1.0. * Override direct-changes-in-diff-but-no-patch-system Lintian warning: our team uses source format 1.0; the detail of patches can be found in Git and debian/changelog. * Enable all hardening flags. * Add Vcs-* control fields. * Update debian/watch to use the new HTTPS homepage. * Add README.source. -- intrigeri Tue, 18 Feb 2014 21:51:28 +0100 libotr (4.0.0-2.2) unstable; urgency=low * Non-maintainer upload * Upload experimental version to unstable * Bump standards version: no changes -- Micah Anderson Fri, 10 May 2013 21:20:07 -0400 libotr (4.0.0-2.1) experimental; urgency=low * Non-maintainer upload. * Add message_fragment_fix.patch (Closes: #698746) -- Micah Anderson Sat, 09 Mar 2013 13:14:12 -0500 libotr (4.0.0-2) unstable; urgency=low * Remove Conflicts with libotr2 (Closes: #689667) -- Thibaut VARENE Sat, 06 Oct 2012 11:51:03 +0200 libotr (4.0.0-1) unstable; urgency=low * New upstream release, upload to unstable -- Thibaut VARENE Sat, 29 Sep 2012 12:04:49 +0200 libotr (4.0.0~rc3-1) experimental; urgency=low * New upstream pre-release -- Thibaut VARENE Tue, 28 Aug 2012 01:04:46 +0200 libotr (4.0.0~rc1-1) experimental; urgency=low * New upstream pre-release (Closes: #685664) -- Thibaut VARENE Fri, 24 Aug 2012 17:14:22 +0200 libotr (3.2.1-1) unstable; urgency=high * Fix potential buffer overflow in base64 routines (Closes: #684121) -- Thibaut VARENE Tue, 07 Aug 2012 12:24:15 +0200 libotr (3.2.0-4) unstable; urgency=low * lintian cleanup: + remove dh_make template + switch to source format 3.0 quilt + fix missing copyright warning + fix debhelper build-depend versionning + add homepage field -- Thibaut VARENE Mon, 26 Dec 2011 18:33:08 +0100 libotr (3.2.0-3) unstable; urgency=low * Ship libotr.pc (Closes: #590035) -- Thibaut VARENE Mon, 31 Oct 2011 20:44:01 +0100 libotr (3.2.0-2.1) unstable; urgency=low * Non-maintainer upload. * Empty dependency_libs in libtool la file(s). http://wiki.debian.org/ReleaseGoals/LAFileRemoval Closes: #619674 -- Andreas Metzler Sat, 18 Jun 2011 14:39:28 +0200 libotr (3.2.0-2) unstable; urgency=low * Fix outdated config.{sub,guess} (Closes: #529461) -- Thibaut VARENE Wed, 11 Nov 2009 16:47:13 +0100 libotr (3.2.0-1) unstable; urgency=low * New upstream release -- Thibaut VARENE Sun, 22 Jun 2008 22:48:01 +0200 libotr (3.1.0-2) unstable; urgency=low * Closes: #459458: -dev package now depends on libgcrypt11-dev -- Thibaut VARENE Sun, 13 Jan 2008 18:42:33 +0100 libotr (3.1.0-1) unstable; urgency=low * New upstream release -- Thibaut VARENE Mon, 20 Aug 2007 21:24:29 +0200 libotr (3.0.0+cvs20070515-1) unstable; urgency=low * Upstream snapshot to work with pidgin-otr (Closes: #423722) -- Thibaut VARENE Tue, 15 May 2007 18:55:22 +0200 libotr (3.0.0-2) unstable; urgency=low * Fix typo: "malformed messahes" (Closes: #345400) -- Thibaut VARENE Mon, 2 Jan 2006 19:52:18 +0100 libotr (3.0.0-1) unstable; urgency=low * New upstream release (closes: #337851) * Support for OTR protocol version 2 -- Thibaut VARENE Sat, 19 Nov 2005 00:08:41 +0100 libotr (2.0.2-1) unstable; urgency=high * New upstream release * Fixes a potential security issue (buffer overflow in src/privkey.c) -- Thibaut VARENE Mon, 16 May 2005 18:53:59 +0200 libotr (2.0.1-1) unstable; urgency=low * New upstream release * First Debian upload (closes: #291261) -- Thibaut VARENE Wed, 23 Feb 2005 20:20:06 +0100 libotr (2.0.0-1) unstable; urgency=low * New upstream release -- OTR Dev Team Tue, 08 Feb 2005 15:00:13 -0500 libotr (1.99.0-1) unstable; urgency=low * Initial Release. -- OTR Dev Team Wed, 02 Feb 2005 09:37:01 -0500