libvorbisidec (1.0.2+svn18153-1+deb9u1build0.18.04.1) bionic-security; urgency=medium * No change rebuild to bump version higher than artful (LP: #1780681) -- Marc Deslauriers Mon, 09 Jul 2018 10:22:06 -0400 libvorbisidec (1.0.2+svn18153-1+deb9u1) stretch-security; urgency=high * Non-maintainer upload by the Security Team. * Prevent out-of-bounds write in codebook decoding (CVE-2018-5147) (Closes: #893132) -- Salvatore Bonaccorso Fri, 16 Mar 2018 21:00:34 +0100 libvorbisidec (1.0.2+svn18153-1) unstable; urgency=medium * QA upload. * Set maintainer to Debian QA Group. (see #698378) * Add libogg-dev dependency to libvorbisidec-dev. (Closes: #739864) -- Adrian Bunk Mon, 23 Jan 2017 22:57:11 +0200 libvorbisidec (1.0.2+svn18153-0.2) unstable; urgency=low * Non-maintainer upload. * Add pkg-config to Build-Depends. -- Luk Claes Mon, 25 Jun 2012 22:14:45 +0200 libvorbisidec (1.0.2+svn18153-0.1) unstable; urgency=medium * Non-maintainer upload by the Security Team. * New upstream version to fix security issues. * CVE-2008-1419: correctly handle codebook.dim==0 case * CVE-2008-1423: check for absurdly huge codebooks * CVE-2008-2009: sanity check for underpopulated Huffman trees * CVE-2009-3379: multiple vulnerabilities MFSA 2009-63 * CVE-2012-0444: fix decoding memory corruption Closes: #669196 * Add libogg-dev dependency to avoid FTBFS. * Don't ship .la file. -- Luk Claes Sat, 23 Jun 2012 16:51:00 +0200 libvorbisidec (1.0.2+svn16259-2) unstable; urgency=low * updated ivorbisfile_example.c to ensure proper alignment of pcm data on short boundaries (affects any arch where char arrays can be placed on misaligned boundaries, such as armel). (Closes: #548815) -- Daniel Kahn Gillmor Mon, 28 Sep 2009 16:01:06 -0400 libvorbisidec (1.0.2+svn16259-1) unstable; urgency=low * pulled new changes from upstream SVN. * switched from Vcs-Svn to Vcs-Git * bumped policy to 3.8.3 (no changes needed) * revised debian/copyright to meet latest machine-readable form * moved to my more-generic get-orig-source to pull new upstream versions from svn. * removed Dm-Upload-Allowed, no longer needed * added debian/clean to ensure "build twice" cleanliness. * added iseeking_example.c to example source. -- Daniel Kahn Gillmor Tue, 22 Sep 2009 13:39:34 -0400 libvorbisidec (1.0.2+svn15687-1) unstable; urgency=low * New upsteam version (minor header cleanup, does not break ABI or API) * updated my e-mail address. * debian/control: switched XS-Dm-Upload-Allowed to Dm-Upload-Allowed. * switched to debhelper >= 7.0.50, minimized debian/rules * debian/rules added get-orig-source target to build new "upstream tarballs" from upstream SVN. * bumped policy to 3.8.1 (no changes needed) -- Daniel Kahn Gillmor Wed, 01 Apr 2009 13:10:24 -0400 libvorbisidec (1.0.2+svn14261-1) unstable; urgency=low * New upstream version. * fixes double-free bug (Closes: #453745) * added Homepage, Vcs-Svn, and Vcs-Browser fields to debian/control. * added XS-Dm-Upload-Allowed: yes to debian/control. -- Daniel Kahn Gillmor Sun, 02 Dec 2007 02:19:38 -0500 libvorbisidec (1.0.2+svn12153-1) unstable; urgency=low * shipping ivorbisfile_example.c and a simple makefile in examples for libvorbisidec-dev * created BSD debian packaging license to BSD. * Initial release (Closes #167464). -- Daniel Kahn Gillmor Wed, 29 Nov 2006 00:27:16 -0500