libksba (1.5.0-3+deb11u2) bullseye-security; urgency=high * 25-Fix-an-integer-overflow-in-the-CRL-signature-parser.patch from 1.6.3 release: Fix an integer overflow in the CRL signature parser. https://dev.gnupg.org/T6284 -- Andreas Metzler Tue, 20 Dec 2022 18:22:50 +0100 libksba (1.5.0-3+deb11u1) bullseye-security; urgency=high * 20_Detect-a-possible-overflow-directly-in-the-TLV-parse.patch from upstream 1.6.2 release fixing a integer overflow. CVE-2022-3515 Closes: #1021928 -- Andreas Metzler Mon, 17 Oct 2022 18:36:34 +0200 libksba (1.5.0-3) unstable; urgency=medium * Add 10_Fix-a-possible-segv-in-case-of-an-unknown-CMS-object.patch from upstream GIT. ("Fix a possible segv in case of an unknown CMS object.") -- Andreas Metzler Thu, 24 Dec 2020 08:06:58 +0100 libksba (1.5.0-2) unstable; urgency=low * Upload to unstable. -- Andreas Metzler Thu, 26 Nov 2020 14:02:42 +0100 libksba (1.5.0-1) experimental; urgency=low * Update debian/upstream/signing-key.asc from https://gnupg.org/signature_key.html. * New upstream version. + Update symbol file. * Use debhelper v13 compat. -- Andreas Metzler Sat, 21 Nov 2020 13:42:14 +0100 libksba (1.4.0-2) unstable; urgency=low * Upload to unstable. -- Andreas Metzler Sun, 24 May 2020 08:14:58 +0200 libksba (1.4.0-1) experimental; urgency=low [ Andreas Metzler ] * Sync priorities with override file. (libksba-mingw-w64-dev extra -> optional) * Use debhelper v11 compat. Bump b-d, drop b-d on dh-autoreconf and automake. Drop used-by-default arguments to dh (--parallel --with autoreconf). * Use ascii-armored version of upstream signing key. * [lintian] Fix trailing whitespace in changelog and control. * Point VCS-* to salsa. * Set Rules-Requires-Root: no. * New upstream version. Closes: #961063 + Update symbol file. + Ship pkg-config file. * Drop override_dh_makeshlibs, set DPKG_GENSYMBOLS_CHECK_LEVEL instead. * Override libksba source: license-problem-non-free-RFC AUTHORS. * Make dh_missing happy, use debian/not-installed. [ Debian Janitor ] * Use secure URI in Homepage field. * Update standards version to 4.4.1, no changes needed. * Bump debhelper from old 11 to 12. -- Andreas Metzler Thu, 21 May 2020 09:15:26 +0200 libksba (1.3.5-2) unstable; urgency=medium * Upload to unstable. -- Andreas Metzler Sat, 03 Sep 2016 15:22:31 +0200 libksba (1.3.5-1) experimental; urgency=low * Point watch file to https instead of ftp URL. * New upstream version. -- Andreas Metzler Sat, 27 Aug 2016 16:54:15 +0200 libksba (1.3.4-4) unstable; urgency=medium * Add libksba8.symbols, mainly for the benefit of using "* Build-Depends-Package: libksba-dev". -- Andreas Metzler Sat, 06 Aug 2016 07:38:57 +0200 libksba (1.3.4-3) unstable; urgency=medium * Upload to unstable. -- Andreas Metzler Sun, 08 May 2016 14:18:36 +0200 libksba (1.3.4-2) experimental; urgency=medium * Add build-dep on automake (>= 1:1.12) because libksba is using the serial test harness. -- Andreas Metzler Wed, 04 May 2016 18:41:02 +0200 libksba (1.3.4-1) experimental; urgency=medium * New upstream version. * Use newly available ./configure option --enable-build-timestamp with $(SOURCE_DATE_EPOCH) as argument. Bump dh build-dep to >= 9.20151004. * Set DEB_BUILD_MAINT_OPTIONS := hardening=+bindnow. -- Andreas Metzler Tue, 03 May 2016 20:01:56 +0200 libksba (1.3.3-3) unstable; urgency=medium * Upload to unstable. * Drop build/ from debian/clean. -- Andreas Metzler Sat, 27 Feb 2016 07:48:01 +0100 libksba (1.3.3-2) experimental; urgency=medium [ Andreas Metzler ] * Move Vcs-* from git/http to https. * Also set --builddirectory=build on dh $@ line. [ Daniel Kahn Gillmor ] * Build out-of-tree for cleanliness. * 0001-fix-win32-linker.patch: Fix mingw32 linker error. * Build windows cross-building packages for libksba. Closes: #814953 -- Andreas Metzler Mon, 22 Feb 2016 19:39:08 +0100 libksba (1.3.3-1) unstable; urgency=high * New upstream security release. -- Andreas Metzler Thu, 30 Apr 2015 18:47:09 +0200 libksba (1.3.2-1) unstable; urgency=high * New upstream security release, fixing a buffer overflow in ksba_oid_to_str in Libksba. Closes: #770972 CVE-2014-9087 -- Andreas Metzler Tue, 25 Nov 2014 20:05:54 +0100 libksba (1.3.1-1) unstable; urgency=medium * New upstream bugfix release. -- Andreas Metzler Fri, 26 Sep 2014 19:27:35 +0200 libksba (1.3.0-3) unstable; urgency=medium * Point vcs* to git. * Convert to dh, compat level 9. * Add debian/upstream-signing-key.pgp (listed in debian/source/include-binaries) and update watchfile to check upstream signature. * Sync from Ubuntu: + Build using dh-autoreconf. (Does not benefit us yet on Debian, but will fix FTBFS on ppc64le once #726404 is fixed.) -- Andreas Metzler Mon, 23 Dec 2013 13:26:26 +0100 libksba (1.3.0-2) unstable; urgency=low * Upload to unstable. * Use dh v8 compat. -- Andreas Metzler Sat, 11 May 2013 17:44:01 +0200 libksba (1.3.0-1) experimental; urgency=low * New upstream version. + License of library changed from GPLv3+ to LGPLv3+/GPLv2. (Commandline utils and documentation stay GPLv3+). * [lintian]: Drop "Section: libs" from libksba binary package stanza in debian/control. -- Andreas Metzler Sat, 29 Sep 2012 14:19:05 +0200 libksba (1.2.0-2) unstable; urgency=low * Build for multi-arch. * Stop setting CFLAGS += -Wall, it is set by default again. -- Andreas Metzler Sun, 19 Jun 2011 14:02:59 +0200 libksba (1.2.0-1) unstable; urgency=low * New upstream version. * Symbols added, bump shlibs. -- Andreas Metzler Sat, 05 Mar 2011 14:22:57 +0100 libksba (1.1.0-2) unstable; urgency=low * Upload to unstable. * Set CFLAGS += -Wall, the latest combination of cdbs + dpkg-dev does not seem to set it by default. -- Andreas Metzler Sat, 19 Feb 2011 15:49:20 +0100 libksba (1.1.0-1) experimental; urgency=low * New upstream version. * Change libksba-dev dependency on libksba8 to =${binary:Version (from >=). * Build-depend on libgpg-error-dev (>= 1.8). * Symbols added, bump shlibs. * Use dpkg-source v3, drop cdbs simple-patchsys. * New upstream does not build static libs by default, invoke ./configure with --enable-static. * Switch to dh compat level 7. (No changes except for bumping cdbs/debhelper build-depends. -- Andreas Metzler Wed, 22 Dec 2010 10:38:18 +0100 libksba (1.0.7-2) unstable; urgency=low * Stop shipping la file. (squeeze release goal) * Stop double installing info files with both dh_install and dh_installinfo. -- Andreas Metzler Wed, 26 Aug 2009 19:17:18 +0200 libksba (1.0.7-1) unstable; urgency=low * New upstream version. * Standards-Version: 3.8.2 - No changes required. * Remove cruft from debian/rules. -- Andreas Metzler Sat, 18 Jul 2009 10:06:31 +0200 libksba (1.0.6-1) unstable; urgency=low * New upstream release. * Standards-Version: 3.8.1, no changes required. -- Andreas Metzler Thu, 11 Jun 2009 09:39:19 +0200 libksba (1.0.5-1) unstable; urgency=low [ Peter Eisentraut ] * debian/watch: force passive FTP, since ftp.gnupg.org seems unhappy with active * Changed XS-Vcs-* control fields to Vcs-* [ Andreas Metzler ] * New upstream release. * [lintian] Use ${misc:Depends} for libksba-dev, too. * Standards-Version 3.8.0, rename debian/README.source_and_patches to debian/README.source -- Andreas Metzler Sun, 22 Feb 2009 12:30:11 +0100 libksba (1.0.3-1) unstable; urgency=low * New upstream bugfix release. * Standards-Version: 3.7.3. ${binary:Version} instead of ${Source-Version}. * Point watchfile to ftp://ftp.gnupg.org/ since http seems to be broken. -- Andreas Metzler Sat, 16 Feb 2008 13:51:42 +0100 libksba (1.0.2-1) unstable; urgency=low * New upstream release * Updated build dependencies: - bump libgpg-error-dev version requirement - drop bison * Added XS-Vcs- control fields * Updated copyright to GPL version 3 * Bumped shlibs -- Peter Eisentraut Wed, 08 Aug 2007 00:51:00 +0200 libksba (1.0.1-2) unstable; urgency=low * Upload to unstable. * Debhelper v5 mode. -- Andreas Metzler Sun, 8 Apr 2007 17:24:22 +0200 libksba (1.0.1-1) experimental; urgency=low [ Andreas Metzler ] * Fix watchfile to not search for alpha versions anymore. * New upstream version. -- Andreas Metzler Sat, 3 Feb 2007 11:20:28 +0100 libksba (1.0.0-1) unstable; urgency=low [ Peter Eisentraut ] * New upstream release. * Adjusted watch file for new download location. * Updated build dependencies: - drop libgcrypt11-dev and texinfo. - bump libgpg-error-dev version requirement. - bump debhelper build-dependency. * Removed redundant .docs files [ Andreas Metzler ] * Bump shlibs. * Add Peter Eisentraut to uploaders. -- Andreas Metzler Thu, 7 Sep 2006 19:44:29 +0200 libksba (0.9.16-1) unstable; urgency=low [ James Westby ] * New upstream release. [ Andreas Metzler ] * Bump shlibs, as some stuff has been added to the interface. -- Andreas Metzler Sat, 12 Aug 2006 19:34:31 +0200 libksba (0.9.15-1) unstable; urgency=low * New upstream version. - unbreaks S/mime validation in kmail. (Closes: #375084) - fix watch file * Update debian/copright, now featuring current FSF address. -- Andreas Metzler Fri, 23 Jun 2006 19:31:47 +0200 libksba (0.9.14-1) unstable; urgency=low [ James Westby ] * New maintainer team. Thanks, Matthias for all the work you did. * Set maintainer to alioth mailinglist. * New upstream release. * Use compat 4. - Build depends on debhelper (>= 4.1). - Add ${misc:Depends} to libksba8. * Clean packaging against upstream tarball. * Drop debian/libksba8.dirs and debian/libksba-dev.dirs. dh_* will generate the necessary directories. * Remove the unneeded debian/libksba0* files. * Remove the maintainer script templates, dh_* will create them as needed. * Build-Depends on autotools-dev. * Added Section: libs to debian/control. (Linda warning). * Standards-Version: 3.7.2. No changes. * Transition debian/rules to cdbs. - Using cdbs' simple-patchsys.mk, see debian/README.source_and_patches * Replace debian/*.files with debian/*.install [ Andreas Metzler ] * Update debian/copyright and include an actual copyright statement. * Add --enable-ld-version-script to DEB_CONFIGURE_EXTRA_FLAGS to force versioning of symbols, instead of patching ./configure.in. -- Andreas Metzler Thu, 15 Jun 2006 16:09:35 +0200 libksba (0.9.13-1) unstable; urgency=low * New upstream release 0.9.13 * Closes:#347667 (new release wanted) -- Matthias Urlichs Tue, 24 Jan 2006 08:24:42 +0100 libksba (0.9.12-1) unstable; urgency=low * New Upstream version. - Upgraded version for makeshlibs. -- Matthias Urlichs Thu, 20 Oct 2005 13:42:07 +0200 libksba (0.9.11-2) unstable; urgency=low * Added a version number to dh_mkshlibs (#324611). -- Matthias Urlichs Sun, 11 Sep 2005 09:34:49 +0200 libksba (0.9.11-1) unstable; urgency=low * New Upstream version. -- Matthias Urlichs Mon, 1 Aug 2005 01:40:34 +0200 libksba (0.9.9-3) unstable; urgency=low * Add a debian/watch file. -- Matthias Urlichs Sat, 9 Oct 2004 18:15:49 +0200 libksba (0.9.9-2) unstable; urgency=medium * libksba-dev needs a Replaces: on libksba0 because the latter includes the ksba-config binary. Ouch. - Closes: #273111: libksba-dev: Error overwriting `/usr/bin/ksba-config' -- Matthias Urlichs Fri, 24 Sep 2004 08:38:34 +0200 libksba (0.9.9-1) unstable; urgency=medium * New Upstream version. - Fixed a bug in OCSP request generation which breaks multi-level certificate chains. * Taken over. -- Matthias Urlichs Wed, 18 Aug 2004 08:16:56 +0200 libksba (0.9.7-0.1) experimental; urgency=low * Updated to version 0.9.7. -- Matthias Urlichs Mon, 14 Jun 2004 17:49:17 +0200 libksba (0.9.4-0.1) experimental; urgency=low * Took over packaging (the ITP is 320 days old). Closes:#187547 * Updated to version 0.9.3. * Build-Depend on libgpg-error-dev, libgcrypt7-dev, byacc * Added manpage for ksba-config * The library package is at version 8, thus: rename libksba0 to libksba8. * configure.ac: AM_PROG_LIBTOOL => AC_PROG_LIBTOOL * added postinst and postrm for debhelper/ldconfig * Missed dependency on texinfo. -- Matthias Urlichs Wed, 18 Feb 2004 06:20:25 +0100 libksba (0.4.6-0woody2) unstable; urgency=low * added a make check after make to be on the safe side -- Ralf Nolden (KDE) Sat, 18 Jan 2003 17:23:16 +0100 libksba (0.4.3-0) unstable; urgency=low * Initial packaging. -- Marcus Brinkmann Thu, 25 Jul 2002 21:50:21 +0200