golang-golang-x-net (1:0.23.0+dfsg-1) unstable; urgency=medium * Team upload * New upstream version 0.23.0+dfsg + CVE-2023-45288: http2: close connections when receiving too many headers -- Shengjing Zhu Thu, 04 Apr 2024 04:38:02 +0800 golang-golang-x-net (1:0.22.0+dfsg-1) unstable; urgency=medium * New upstream version 0.22.0+dfsg * Bump versioned dependencies as per go.mod -- Anthony Fok Sun, 24 Mar 2024 18:00:05 -0600 golang-golang-x-net (1:0.21.0+dfsg-1) unstable; urgency=medium * New upstream version 0.21.0+dfsg * Bump versioned dependencies as per go.mod -- Anthony Fok Fri, 23 Feb 2024 19:31:07 -0700 golang-golang-x-net (1:0.20.0+dfsg-1) unstable; urgency=medium * New upstream version 0.20.0+dfsg * Bump versioned dependencies as per go.mod -- Anthony Fok Mon, 29 Jan 2024 14:52:43 -0700 golang-golang-x-net (1:0.19.0+dfsg-1) unstable; urgency=medium * New upstream version 0.19.0 * Bump versioned dependencies as per go.mod * Append internal/quic/cmd to DH_GOLANG_EXCLUDES to avoid building the new QUIC interop test runner -- Anthony Fok Fri, 08 Dec 2023 15:15:47 -0700 golang-golang-x-net (1:0.17.0+dfsg-1) unstable; urgency=medium * New upstream version 0.17.0 * Bump versioned dependencies as per go.mod -- Anthony Fok Wed, 01 Nov 2023 02:21:21 -0600 golang-golang-x-net (1:0.15.0-2) unstable; urgency=medium * Bump build-dependency publicsuffix (>= 20230804.1533) as golang.org/x/net v0.15.0 updated its copy of publicsuffix, especially "New policy for .museum, without all the SLD (Second-Level Domains)". (Sorry for my inadvertent and premature upload of 1:0.15.0-1!) * v0.13.0 fixes CVE-2023-3978: "x/net/html: text nodes outside of the HTML namespace improperly rendered"; see https://go.dev/issue/61615 and https://github.com/golang/net/commit/8ffa475fbdb33da97e8bf79cc5791ee8751fca5e (Closes: #1043163) -- Anthony Fok Thu, 12 Oct 2023 12:49:47 -0600 golang-golang-x-net (1:0.15.0-1) unstable; urgency=medium * New upstream version 0.15.0 * Bump versioned dependencies as per go.mod * Remove 0001-quic-fix-testConn.uncheckedHandshake.patch which was backported from this version -- Anthony Fok Thu, 12 Oct 2023 01:36:09 -0600 golang-golang-x-net (1:0.14.0-1) unstable; urgency=medium * New upstream version 0.14.0 * Bump versioned dependencies as per go.mod * Backport "quic: fix testConn.uncheckedHandshake" from v0.15.0 -- Anthony Fok Tue, 10 Oct 2023 05:59:28 -0600 golang-golang-x-net (1:0.11.0-1) unstable; urgency=medium * New upstream version 0.11.0 * Bump versioned dependencies as per go.mod, with new dependency on golang-golang-x-crypto-dev (>= 0.10.0), which no longer depends on golang-golang-x-net-dev, hence no circular dependency. -- Anthony Fok Thu, 21 Sep 2023 05:09:07 -0600 golang-golang-x-net (1:0.10.0-1) unstable; urgency=medium * New upstream version 0.10.0 * Update versioned dependencies as per go.mod -- Anthony Fok Thu, 15 Jun 2023 15:45:13 -0600 golang-golang-x-net (1:0.7.0+dfsg-1) unstable; urgency=medium * Team upload * New upstream version 0.7.0 + CVE-2022-41723: http2/hpack: avoid quadratic complexity in hpack decoding -- Shengjing Zhu Wed, 15 Feb 2023 15:33:24 +0800 golang-golang-x-net (1:0.4.0+dfsg-1) unstable; urgency=medium * Team upload * New upstream version 0.4.0 * Update Standards-Version to 4.6.2 (no changes) * Enable most http2 tests and fix generating publicsuffix data -- Shengjing Zhu Tue, 03 Jan 2023 00:04:04 +0800 golang-golang-x-net (1:0.1.0+dfsg-1) unstable; urgency=medium * Team upload * Switch to upstream tag version in uscan * New upstream version 0.1.0 -- Shengjing Zhu Wed, 26 Oct 2022 16:51:18 +0800 golang-golang-x-net (1:0.0+git20221012.0b7e1fb+dfsg-1) unstable; urgency=medium * New upstream version 0.0+git20221012.0b7e1fb+dfsg - publicsuffix: change node table entry size from 15 to 40 bits (from 0.0+git20221004.8021a29) to accommodate the increased size of publicsuffix list. Thanks to Shengjing Zhu for forwarding the issue upstream and to Damien Neil for fixing the issue. See https://github.com/golang/go/issues/55849 (Closes: #1020161) * Add debian/source/lintian-overrides to override false-positive source-is-missing errors probably due to long lines in html/charset/testdata/*.html test files. * Drop unneeded dependency on ${shlibs:Depends} -- Anthony Fok Wed, 12 Oct 2022 11:25:10 -0600 golang-golang-x-net (1:0.0+git20220728.c7608f3+dfsg-2) unstable; urgency=medium * Team upload * Fix autopkgtest -- Shengjing Zhu Thu, 04 Aug 2022 10:50:49 +0800 golang-golang-x-net (1:0.0+git20220728.c7608f3+dfsg-1) unstable; urgency=medium * Team upload * New upstream version 0.0+git20220728.c7608f3+dfsg (Closes: #1016349) * Update Homepage to golang.org * Bump golang-golang-x-sys to 0.0~git20220731.a90be44 * Remove obsoleted code.google.com from package description -- Shengjing Zhu Wed, 03 Aug 2022 04:06:53 +0800 golang-golang-x-net (1:0.0+git20220624.1bab6f3+dfsg-1) unstable; urgency=medium * New upstream version 0.0+git20220624.1bab6f3+dfsg -- Anthony Fok Tue, 28 Jun 2022 06:50:46 -0600 golang-golang-x-net (1:0.0+git20220531.c960675+dfsg-1) unstable; urgency=medium * New upstream version 0.0+git20220531.c960675+dfsg * Bump versioned dependencies as per go.mod * Bump Standards-Version to 4.6.1 (no change) -- Anthony Fok Sun, 05 Jun 2022 06:03:56 -0600 golang-golang-x-net (1:0.0+git20220225.27dd868+dfsg-1) unstable; urgency=medium * New upstream version 0.0+git20220225.27dd868+dfsg * Use dh-sequence-golang instead of dh-golang and --with=golang * Reorder fields in debian/control and debian/copyright as would be generated in the next dh-make-golang release after 0.6.0-1 * Refresh debian/golang-golang-x-net-dev.lintian-overrides to match latest Lintian output -- Anthony Fok Sat, 19 Mar 2022 21:07:49 -0600 golang-golang-x-net (1:0.0+git20211209.491a49a+dfsg-1) unstable; urgency=medium * Team upload * New upstream version 0.0+git20211209.491a49a+dfsg + CVE-2021-44716: net/http: limit growth of header canonicalization cache * Update Standards-Version to 4.6.0 (no changes) -- Shengjing Zhu Thu, 09 Dec 2021 23:39:17 +0800 golang-golang-x-net (1:0.0+git20210805.aaa1db6+dfsg-1) unstable; urgency=medium * New upstream version 0.0+git20210805.aaa1db6 * Remove CVE-2021-31525.patch and CVE-2021-33194.patch which have been applied prior to this upstream version * Update versioned dependencies as per go.mod -- Anthony Fok Sun, 08 Aug 2021 05:00:37 -0600 golang-golang-x-net (1:0.0+git20210119.5f4716e+dfsg-4) unstable; urgency=medium * Team upload. * Backport patch for CVE-2021-33194 x/net/html: infinite loop in ParseFragment -- Shengjing Zhu Sat, 22 May 2021 22:01:02 +0800 golang-golang-x-net (1:0.0+git20210119.5f4716e+dfsg-3) unstable; urgency=medium * Team upload. * Backport patch for CVE-2021-31525 net/http: ReadRequest can stack overflow due to recursion with very large headers. https://github.com/golang/go/issues/45710 -- Shengjing Zhu Sat, 08 May 2021 12:12:17 +0800 golang-golang-x-net (1:0.0+git20210119.5f4716e+dfsg-2) unstable; urgency=medium [ Helmut Grohne ] * Mark golang-golang-x-net-dev Multi-Arch: foreign. (Closes: #980993) [ Anthony Fok ] * debian/rules: Attempt to "git restore publicsuffix/table{,_test}.go" in execute_after_dh_auto_clean to avoid the need to manually do so before subsequent "gbp buildpackage" run. -- Anthony Fok Thu, 04 Feb 2021 16:37:28 -0700 golang-golang-x-net (1:0.0+git20210119.5f4716e+dfsg-1) unstable; urgency=medium * New upstream version 0.0+git20210119.5f4716e * debian/control: Change Section from devel to golang * debian/control: Bump Standards-Version to 4.5.1 (no change) -- Anthony Fok Tue, 02 Feb 2021 15:25:13 -0700 golang-golang-x-net (1:0.0+git20201031.ff519b6+dfsg-1) unstable; urgency=medium * New upstream version 0.0+git20201031.ff519b6 * Bump debhelper dependency to "Build-Depends: debhelper-compat (= 13)" * Update versioned dependencies as per go.mod * Remove no-upstream-changelog tag from Lintian override as the tag has been removed since lintian (2.5.96) * Refresh debian/patches/publicsuffix.patch -- Anthony Fok Thu, 05 Nov 2020 03:03:07 -0700 golang-golang-x-net (1:0.0+git20200226.491c5fc+dfsg-1) unstable; urgency=medium * New upstream version 0.0+git20200226.491c5fc * Removed unused-override "privacy-breach-google-plus" on html/testdata/go1.html See https://go-review.googlesource.com/c/net/+/162888 -- Anthony Fok Wed, 26 Feb 2020 01:12:43 -0700 golang-golang-x-net (1:0.0+git20200219.4628272+dfsg-1) unstable; urgency=medium * New upstream version 0.0+git20200219.4628272 * Add "Rules-Requires-Root: no" to debian/control * Bump Standards-Version to 4.5.0 (no change) -- Anthony Fok Fri, 21 Feb 2020 12:41:48 -0700 golang-golang-x-net (1:0.0+git20191112.2180aed+dfsg-3) unstable; urgency=medium * Team upload. * Corrected "tab-in-license-text" lintian warning. * Build with "go generate": + new patch to prevent build-time download and use data from "publicsuffix" package. + noted use of the "publicsuffix" package in the "Built-Using" field. * Build-Depends += "publicsuffix". -- Dmitry Smirnov Tue, 31 Dec 2019 19:34:49 +1100 golang-golang-x-net (1:0.0+git20191112.2180aed+dfsg-2) unstable; urgency=medium * Rename source package to golang-golang-x-net from the erroneously named golang-golang-x-net-dev -- Anthony Fok Thu, 14 Nov 2019 04:57:08 -0700 golang-golang-x-net-dev (1:0.0+git20191112.2180aed+dfsg-1) unstable; urgency=medium * New upstream version 0.0+git20191112.2180aed * Drop transitional package golang-go.net-dev (Closes: #939230) * Update Vcs-Browser and Vcs-Git, and move git repository from https://salsa.debian.org/go-team/packages/golang-go.net to https://salsa.debian.org/go-team/packages/golang-golang-x-net * Bump Standards-Version to 4.4.1 (no change) * Exclude http2/h2demo to avoid many extraneous dependencies * Change build directory from "build" to "_build" to match default debian/rules generated by the latest dh-make-golang -- Anthony Fok Thu, 14 Nov 2019 04:41:23 -0700 golang-golang-x-net-dev (1:0.0+git20190811.74dc4d7+dfsg-1) unstable; urgency=high * Team upload. * New upstream version 0.0+git20190811.74dc4d7+dfsg - Include fixes for CVE-2019-9512 and CVE-2019-9514 -- Dr. Tobias Quathamer Sat, 17 Aug 2019 14:02:42 +0200 golang-golang-x-net-dev (1:0.0+git20190724.ca1201d+dfsg-1) unstable; urgency=medium [ Drew Parsons ] * add debian/watch [ Anthony Fok ] * Update debian/watch to handle +dfsg suffix * Remove Lintian override debian-watch-file-is-missing * Apply "cme fix dpkg" fixes: - Specify compatibility level with "Build-Depends: debhelper-compat (= 12)" - Bump Standards-Version to 4.4.0 (no change) * Remove security patches that are contained in this new upstream version, namely, CVE-2018-17846 and CVE-2018-17847_CVE-2018-17848. * Update dependencies according to go.mod: Rename golang-x-text-dev to golang-golang-x-text-dev, and add golang-golang-x-sys-dev -- Anthony Fok Sun, 28 Jul 2019 02:08:05 -0600 golang-golang-x-net-dev (1:0.0+git20181201.351d144+dfsg-3) unstable; urgency=medium * Team upload. * Apply security patches (upstream commits). Closes: #911795. - CVE-2018-17846: commit d26f9f9a57f3fab6a695bec0d84433c2c50f8bbf - CVE-2018-17847, CVE-2018-17848: commit 4b62a64f59f73840b9ab79204c94fee61cd1ba2c -- Drew Parsons Tue, 30 Apr 2019 16:42:08 +0800 golang-golang-x-net-dev (1:0.0+git20181201.351d144+dfsg-2) unstable; urgency=medium * Remove obsolete patch for s390. Closes: #916236. -- Martín Ferrari Fri, 14 Dec 2018 13:56:28 +0000 golang-golang-x-net-dev (1:0.0+git20181201.351d144+dfsg-1) unstable; urgency=medium * Team upload. * New upstream version 0.0+git20181201.351d144+dfsg - Refresh patch * Use debhelper v11 * Update team name * Update to Standards-Version 4.2.1 -- Dr. Tobias Quathamer Wed, 05 Dec 2018 20:49:06 +0100 golang-golang-x-net-dev (1:0.0+git20180124.0ed95ab+dfsg-2) unstable; urgency=medium * Team upload. * docs: fixed file name of README file (Closes: #903331). -- Dmitry Smirnov Mon, 09 Jul 2018 15:02:13 +1000 golang-golang-x-net-dev (1:0.0+git20180124.0ed95ab+dfsg-1) unstable; urgency=medium [ Alexandre Viau ] * Point Vcs-* urls to salsa.debian.org. [ Anthony Fok ] * New upstream version 0.0+git20180124.0ed95ab+dfsg corresponding to release-branch.go1.10 upstream * debian/gbp.conf: Disable pristine-tar * Refresh debian/golang-golang-x-net-dev.lintian-overrides -- Anthony Fok Tue, 03 Apr 2018 00:41:08 -0600 golang-golang-x-net-dev (1:0.0+git20170629.c81e7f2+dfsg-2) unstable; urgency=high [ Paul Tagliamonte ] * Remove Built-Using from arch:all -dev package [ Martín Ferrari ] * Automated cme updates. * Update Standards-Version. * New lintian warnings that need to be overridden. * debian/rules: Remove now unneeded targets. * Fix builds in s390x. Closes: #886761 (raising urgency). -- Martín Ferrari Tue, 09 Jan 2018 16:30:51 +0000 golang-golang-x-net-dev (1:0.0+git20170629.c81e7f2+dfsg-1) unstable; urgency=medium [ Martín Ferrari ] * Switch to golang-any. * Add versioned dependency on golang 1.5, due to API differences in net/http. [ Anthony Fok ] * New upstream snapshot. It contains a fix (dated 2016-10-30) to recently-broken tests in webdav_test.go. See https://go.googlesource.com/net/+/d6520b84c835d97913ea0e7cf5f43cca5693ef16 for details. (Closes: #866092) * Bump Standards-Version to 4.0.0. Use https form of the copyright-format URL in debian/copyright. * Add myself to the list of Uploaders. * Update Lintian overrides: - Update name of source package (was golang-go.net-dev, now golang-golang-x-net-dev) so that the override for debian-watch-file-is-missing works again. - Add override for mention of old code.google.com repository. - Remove unused-override copyright-should-refer-to-common-license-file-for-gpl. -- Anthony Fok Thu, 29 Jun 2017 06:56:30 -0600 golang-golang-x-net-dev (1:0.0+git20161013.8b4af36+dfsg-3) unstable; urgency=medium [ Paul Tagliamonte ] * Team upload. * Use a secure transport for the Vcs-Git and Vcs-Browser URL [ Tim Potter ] * Add me as uploader [ Anthony Fok ] * New upstream snapshot * Add debian/gbp.conf to use DEP-14 branches * Add Files-Excluded field to debian/copyright so that we know which file is excluded so as to keep this package DFSG-clean. * Add gen-orig-tar-xz target in debian/rules -- Anthony Fok Sat, 15 Oct 2016 04:31:25 -0600 golang-golang-x-net-dev (1:0.0+git20160518.b3e9c8f+dfsg-2) unstable; urgency=medium * Team upload. * Avoid circular dependency with golang-golang-x-crypto-dev by exporting DH_GOLANG_EXCLUDES := golang.org/x/net/http2/h2i and removing golang-golang-x-crypto-dev from Build-Depends and Depends. (Latest version of golang-golang-x-crypto-dev depends on golang-golang-x-net-dev due to the use of golang.org/x/net/context in golang.org/x/crypto/acme/internal/acme.) -- Anthony Fok Wed, 08 Jun 2016 04:48:27 -0600 golang-golang-x-net-dev (1:0.0+git20160518.b3e9c8f+dfsg-1) unstable; urgency=medium * New upstream snapshot. * Require golang-go 1.5, and dh-golang 1.17. * debian/rules: - Fix gen-orig-tgz target. - Use new dh-golang features to simplify the script. -- Martín Ferrari Thu, 26 May 2016 09:50:30 +0000 golang-golang-x-net-dev (1:0.0+git20160428.35ec611+dfsg-1) unstable; urgency=medium [ Tim Potter ] * New upstream snapshot. * Standards-Version: 3.9.8 [ Martín Ferrari ] * Reconcile trees, after a few mistakes were made. Make the package DFSG-free again. * Remove patch, as these tests can't be run (non-DFSG files). * Set XS-Go-Import-Path. * Fix bpf tests. -- Martín Ferrari Sun, 01 May 2016 07:01:11 +0000 golang-golang-x-net-dev (1:0.0+git20160110.4fd4a9f-1) unstable; urgency=medium * Team upload. * New upstream snapshot. (Closes: #810775). * Add additional B-Ds to upgrade golang-x-text-dev and add golang-golang-x-crypto-dev. -- Tim Potter Tue, 12 Jan 2016 11:59:48 +1100 golang-golang-x-net-dev (1:0.0+git20150817.66f0418-1) unstable; urgency=medium * Bump epoch to bring back the proper binary package (Re: #807002) -- Tianon Gravi Sat, 05 Dec 2015 09:42:14 -0800 golang-golang-x-net-dev (0.0+git20151007.b846920+dfsg-1) unstable; urgency=medium * New upstream snapshot, as upstream made many changes in the last few days. * Repackaged to remove non-free RFC document (used as test data). * Added golang-go.crypto-dev as new dependency. -- Martín Ferrari Sat, 10 Oct 2015 14:29:50 +0000 golang-golang-x-net-dev (0.0+git20150817.66f0418-1) unstable; urgency=medium * New upstream snapshot. Closes: #798649. -- Martín Ferrari Sat, 10 Oct 2015 12:26:10 +0000 golang-golang-x-net-dev (0.0+git20150226.3d87fd6-3) unstable; urgency=high * Document copyright info for html/testdata/go1.html (Closes: #790313) -- Martín Ferrari Mon, 06 Jul 2015 07:26:21 +0200 golang-golang-x-net-dev (0.0+git20150226.3d87fd6-2) unstable; urgency=medium * Rename source and binary package from golang-go.net-dev to golang-golang-x-net-dev, following the policy outlined at http://pkg-go.alioth.debian.org/packaging.html -- Michael Stapelberg Mon, 22 Jun 2015 21:54:09 +0200 golang-go.net-dev (0.0+git20150226.3d87fd6-1) unstable; urgency=medium * Update to last working version in upstream's repository (https://github.com/golang/go/issues/10904 breaks x/net/webdav with golang 1.4.2). * Revamp package: version numbering, switch to upstream's new git repo, move package to pkg-go, update metadata and debian/rules. -- Martín Ferrari Tue, 19 May 2015 01:41:35 +0000 golang-go.net-dev (0.0~hg20131201-1) unstable; urgency=low [ Michael Stapelberg ] * update Vcs-Git location to point to alioth [ Jonathan Dray ] * new version number pattern for the package -- Jonathan Dray Mon, 02 Dec 2013 20:02:16 +0100 golang-go.net-dev (0.0~hg67397a11592e-1) unstable; urgency=low * Initial release (Closes: #726146) -- Jonathan Dray Sat, 23 Nov 2013 16:48:04 +0100