node-undici (5.15.0+dfsg1+~cs20.10.9.3-1+deb12u3) bookworm-security; urgency=medium

  * Team upload.
  * patch: import missing script from more recent upstream version

  [ Yadd ]
  * Build and publish undici-types, needed by new @types/node

 -- Jérémy Lal <kapouer@melix.org>  Thu, 21 Dec 2023 11:14:59 +0100

node-undici (5.15.0+dfsg1+~cs20.10.9.3-1+deb12u2) bookworm; urgency=medium

  * Delete cookie and host headers on cross-origin redirect
    (Closes: #1053879, CVE-2023-45143)

 -- Yadd <yadd@debian.org>  Fri, 13 Oct 2023 22:14:45 +0400

node-undici (5.15.0+dfsg1+~cs20.10.9.3-1+deb12u1) bookworm; urgency=medium

  * Fix security issues (Closes: #1031418):
    - Protect "Host" HTTP header from CLRF injection (Closes: CVE-2023-23936)
    - Fix potential ReDoS on Headers.set and Headers.append
      (Closes: CVE-2023-24807)
  * Increase httpbin.org test timeout

 -- Yadd <yadd@debian.org>  Wed, 31 May 2023 15:52:45 +0400

node-undici (5.15.0+dfsg1+~cs20.10.9.3-1) unstable; urgency=medium

  * Update standards version to 4.6.2, no changes needed.
  * New upstream version 5.15.0+dfsg1+~cs20.10.9.3

 -- Yadd <yadd@debian.org>  Sun, 15 Jan 2023 10:04:29 +0400

node-undici (5.14.0+dfsg1+~cs20.10.9-1) unstable; urgency=medium

  * New upstream version 5.14.0+dfsg1+~cs20.10.9

 -- Yadd <yadd@debian.org>  Sun, 11 Dec 2022 15:50:58 +0100

node-undici (5.13.0+dfsg1+~cs20.10.9-1) unstable; urgency=medium

  * Update lintian override info format in d/source/lintian-overrides
    on line 2-3.
  * New upstream version 5.13.0+dfsg1+~cs20.10.9

 -- Yadd <yadd@debian.org>  Sat, 03 Dec 2022 18:14:54 +0100

node-undici (5.12.0+dfsg1+~cs20.10.9-1) unstable; urgency=medium

  * New upstream version 5.12.0+dfsg1+~cs20.10.9
  * Unfuzz patches

 -- Yadd <yadd@debian.org>  Fri, 28 Oct 2022 22:39:53 +0200

node-undici (5.11.0+dfsg1+~cs20.10.9-1) unstable; urgency=medium

  * New upstream version 5.11.0+dfsg1+~cs20.10.9
  * Update llhttp build
  * Unfuzz patches
  * Add dependency to node-busboy

 -- Yadd <yadd@debian.org>  Tue, 18 Oct 2022 06:25:29 +0200

node-undici (5.10.0+dfsg1+~cs18.9.18.10-2) unstable; urgency=medium

  * Launch tap test without timeout (may fix armel autopkgtest)

 -- Yadd <yadd@debian.org>  Wed, 14 Sep 2022 10:25:18 +0200

node-undici (5.10.0+dfsg1+~cs18.9.18.10-1) unstable; urgency=medium

  * Enable __proto__ in test, needed here for pkg-js-autopkgtest 0.15
  * New upstream version 5.10.0+dfsg1+~cs18.9.18.10

 -- Yadd <yadd@debian.org>  Mon, 12 Sep 2022 12:01:40 +0200

node-undici (5.10.0+dfsg1+~cs18.9.18.7-1) unstable; urgency=medium

  * New upstream version 5.10.0+dfsg1+~cs18.9.18.7

 -- Yadd <yadd@debian.org>  Tue, 30 Aug 2022 06:32:25 +0200

node-undici (5.9.1+dfsg1+~cs18.9.18.1-1) unstable; urgency=medium

  * New upstream version 5.9.1+dfsg1+~cs18.9.18.1

 -- Yadd <yadd@debian.org>  Mon, 22 Aug 2022 09:34:29 +0200

node-undici (5.8.2+dfsg1+~cs18.9.18.1-1) unstable; urgency=medium

  * New upstream version 5.8.2+dfsg1+~cs18.9.18.1

 -- Yadd <yadd@debian.org>  Sat, 13 Aug 2022 07:06:18 +0200

node-undici (5.8.1+dfsg1+~cs18.9.18.1-1) unstable; urgency=medium

  * New upstream version 5.8.1+dfsg1+~cs18.9.18.1
  * Refresh patches
  * Update test modules

 -- Yadd <yadd@debian.org>  Mon, 08 Aug 2022 21:01:44 +0200

node-undici (5.8.0+dfsg1+~cs18.9.16-2) unstable; urgency=medium

  * Update typescript patch (Closes: #1016322)

 -- Yadd <yadd@debian.org>  Sat, 30 Jul 2022 15:17:27 +0200

node-undici (5.8.0+dfsg1+~cs18.9.16-1) unstable; urgency=medium

  * Apply multi-arch hints (foreign)
  * New upstream version 5.8.0+dfsg1+~cs18.9.16

 -- Yadd <yadd@debian.org>  Tue, 19 Jul 2022 15:55:13 +0200

node-undici (5.7.0+dfsg1+~cs18.9.16-3) unstable; urgency=medium

  * Fix bad control field

 -- Yadd <yadd@debian.org>  Thu, 14 Jul 2022 21:59:46 +0200

node-undici (5.7.0+dfsg1+~cs18.9.16-2) unstable; urgency=medium

  * node-llhttp: add dependencies to node-debug and node-semver
  * Use custom autopkgtest since lld is not available on s390x arch

 -- Yadd <yadd@debian.org>  Thu, 14 Jul 2022 10:46:45 +0200

node-undici (5.7.0+dfsg1+~cs18.9.16-1) unstable; urgency=medium

  * New upstream version 5.7.0+dfsg1+~cs18.9.16

 -- Yadd <yadd@debian.org>  Thu, 14 Jul 2022 08:30:12 +0200

node-undici (5.6.1+dfsg1+~cs18.9.16-1) unstable; urgency=medium

  * New undici version (Closes: CVE-2022-32210)
  * Add patch to drop SSL tests with too short key

 -- Yadd <yadd@debian.org>  Sun, 10 Jul 2022 18:29:46 +0200

node-undici (5.2.0+dfsg1+~cs18.9.15.10-1) unstable; urgency=medium

  [ Yadd, Jérémy Lal ]
  * Initial release (Closes: #1010470)

 -- Yadd <yadd@debian.org>  Sat, 11 Jun 2022 18:54:32 +0200