mbedtls (2.8.0-1) unstable; urgency=medium * New upstream release. * debian/control: - Bump standards version to 4.1.4. - Set Rules-Requires-Root: no. * debian/libmbedcrypto1.symbols: - Add new symbols in 2.8. * debian/patches: - Refresh config patch. - Drop 02_dhm-Fix-typo-in-RFC-5114-constants.patch - applied upstream. * debian/rules: - Use /usr/share/dpkg/architecture.mk to get DEB_HOST_MULTIARCH. - Clean apidoc directory using debian/clean file. -- James Cowgill Mon, 09 Apr 2018 21:06:36 +0100 mbedtls (2.7.0-2) unstable; urgency=medium * Upload to unstable. * debian/patches/02_dhm-Fix-typo-in-RFC-5114-constants.patch: - Add patch to fix typo in RFC 5114 constants. -- James Cowgill Thu, 15 Feb 2018 18:32:16 +0000 mbedtls (2.7.0-1) experimental; urgency=medium * New upstream release. - Fixes CVE-2018-0488. (Closes: #890287) - Fixes CVE-2018-0487. (Closes: #890288) * Rename libmbedcrypto0 to libmbedcrypto1 due to SONAME bump. * debian/compat: - Use debhelper compat 11. * debian/control: - Switch to salsa.debian.org Vcs URLs. - Bump standards version to 4.1.3. - Drop useless Testsuite field in debian/control. * debian/copyright: - Update copyright dates. * debian/libmbedtls-doc.*: - Fix various paths to work with the new documentation location used by debhelper 11. * debian/patches: - Refresh config patch. * debian/*.symbols: - Add symbols updates for libmbedtls10. - Rewrite symbols libmbedcrypto1 symbols file. -- James Cowgill Wed, 14 Feb 2018 09:25:58 +0000 mbedtls (2.6.0-1) unstable; urgency=high * New upstream version. - Fixes possible authentication bypass if a peer supplies a certificate chain with more than 8 intermediates. (Closes: #873557) * debian/copyright: - Update copyright dates. - Use https Format URL. * debian/control: - Bump standards to 4.1.0 (no changes required). - Use debhelper compat 10. * debian/libmbedcrypto0.symbols: - Add new symbols from 2.6.0. * debian/patches: - Refresh config patch. - Drop all stubs patches - upstream reverted the ABI breakage. -- James Cowgill Tue, 29 Aug 2017 16:09:30 +0100 mbedtls (2.5.1-1) unstable; urgency=medium * New upstream version. * debian/control: - Bump standards to 4.0.0 (no changes required). * debian/patches: - Refresh config patch. - Add patches to maintain the ABI. * debian/rules: - Enable static library build. (Closes: #860302) - Pass upstream release date to faketime instead of a fixed date. * debian/*.symbols: - Add new symbols from mbedTLS 2.5. * debian/tests: - Test static library in autopkgtests. -- James Cowgill Thu, 22 Jun 2017 11:30:56 +0100 mbedtls (2.4.2-1) unstable; urgency=high * New upstream version. - Fixes CVE-2017-2784 - freeing of memory allocated on the stack when validating a public key with a secp224k1 curve. (Closes: #857560) * debian/rules: - Run testsuite inside faketime to prevent it suddenly failing in the future. Thanks Niels Thykier! -- James Cowgill Tue, 14 Mar 2017 10:54:33 +0000 mbedtls (2.4.0-1) unstable; urgency=medium * New upstream version. * debian/control: - Mark libmbedtls-doc multi-arch foreign. * debian/libmbedtls10.symbols: - Add new symbols found in 2.4. * debian/patches: - Drop 02_ssl_time_t.patch - alternate fix applied upstream. - Refresh 01_config.patch. -- James Cowgill Tue, 18 Oct 2016 20:16:37 +0100 mbedtls (2.3.0-1) unstable; urgency=medium * New upstream version. * debian/copyright: - Update dates and my email address. * debian/patches: - Refresh 01_config.patch. - Drop 02_x32.patch -- applied upstream. - Add 02_ssl_time_t.patch. Fixes compile error when including mbedtls/ssl.h. -- James Cowgill Tue, 28 Jun 2016 18:11:54 +0100 mbedtls (2.2.1-3) unstable; urgency=medium * debian/control: - Use my debian.org email address. - Bump standards to 3.9.8 (no changes). * debian/patches: - Add 02_x32.patch to fix FTBFS on x32. * debian/rules: - Enable all hardening options. -- James Cowgill Wed, 18 May 2016 17:21:39 +0100 mbedtls (2.2.1-2) unstable; urgency=medium * debian/control: - Use secure Vcs-Git URL. * debian/libmbedcrypto0.lintian-override: - Drop now that lintian itself has been fixed. * debian/rules: - Don't build arch:any packages in arch:all build. * debian/*.symbols: - Drop unnecessary patch level from symbol file versions. * debian/tests: - Add an autopkgtest which compiles and runs the selftest program. -- James Cowgill Sat, 16 Jan 2016 00:12:49 +0000 mbedtls (2.2.1-1) unstable; urgency=medium * New upstream version. -- James Cowgill Tue, 05 Jan 2016 13:15:33 +0000 mbedtls (2.2.0-1) unstable; urgency=medium * New upstream version. * debian/changelog: - Include changelog entries from the polarssl package. * debian/*.symbols: - Add new symbols introduced in 2.2. * debian/rules: - Don't build documentation in binary-only builds. -- James Cowgill Tue, 15 Dec 2015 14:43:09 +0000 mbedtls (2.1.2-1) unstable; urgency=medium * Initial release. (Closes: #801420) -- James Cowgill Fri, 16 Oct 2015 12:55:27 +0100 polarssl (1.3.9-2.1) unstable; urgency=high * Non-maintainer upload. * Add CVE-2015-1182.patch patch. CVE-2015-1182: Denial of service and possible remote code execution using crafted certificates. (Closes: #775776) -- Salvatore Bonaccorso Wed, 21 Jan 2015 22:09:05 +0100 polarssl (1.3.9-2) unstable; urgency=medium * Disabled POLARSSL_SSL_PROTO_SSL3 at compile time to prevent potential attacks, TLS considered standard for clients now, and consistency w/ OpenSSL in Debian -- Roland Stigge Fri, 07 Nov 2014 10:28:34 +0100 polarssl (1.3.9-1) unstable; urgency=medium * New upstream release -- Roland Stigge Wed, 05 Nov 2014 18:34:31 +0100 polarssl (1.3.8-1) unstable; urgency=medium * New upstream release * debian/control: Adjust package description, thanks to Paul Bakker (upstream) * Removed CVE-2014-4911.patch (integrated upstream) -- Roland Stigge Sun, 31 Aug 2014 14:13:55 +0200 polarssl (1.3.7-2.1) unstable; urgency=high * Non-maintainer upload with maintainers approval. * Add CVE-2014-4911.patch patch. CVE-2014-4911: Fix Denial of Service against GCM enabled servers (and clients). (Closes: #754655) -- Salvatore Bonaccorso Tue, 15 Jul 2014 21:39:13 +0200 polarssl (1.3.7-2) unstable; urgency=medium * Enabled POLARSSL_THREADING_C and POLARSSL_THREADING_PTHREAD in config, recommended for Debian by upstream -- Roland Stigge Mon, 05 May 2014 21:35:56 +0200 polarssl (1.3.7-1) unstable; urgency=medium * New upstream release (Closes: #745720) * Fixed .so link in libpolarssl-dev.links (Closes: #745716) -- Roland Stigge Fri, 02 May 2014 16:36:34 +0200 polarssl (1.3.6-1) unstable; urgency=medium * New upstream release, SONAME version 6 -- Roland Stigge Sat, 12 Apr 2014 10:18:43 +0200 polarssl (1.3.4-1) unstable; urgency=medium * New upstream release -- Roland Stigge Sun, 02 Feb 2014 11:42:57 +0100 polarssl (1.3.3-1) unstable; urgency=medium * New upstream release * debian/control: Standards-Version: 3.9.5 -- Roland Stigge Wed, 01 Jan 2014 19:07:10 +0100 polarssl (1.3.2-1) unstable; urgency=low * New upstream release * New SONAME (and adjustment to upstream SONAME counting) required new libpolarssl5 -- Roland Stigge Tue, 05 Nov 2013 22:08:08 +0100 polarssl (1.3.1-2) unstable; urgency=low * Fixed FTBFS on big endian arches via upstream patch (Closes: #727116) -- Roland Stigge Tue, 22 Oct 2013 16:56:09 +0200 polarssl (1.3.1-1) unstable; urgency=low * New upstream release - Fixes CVE-2013-5914, CVE-2013-5915 (Closes: #725359) - Fixes CVE-2013-4623 (Closes: #719954) - Fixes CVE-2009-3555 (Closes: #704946) -- Roland Stigge Wed, 16 Oct 2013 19:35:28 +0200 polarssl (1.2.8-2) unstable; urgency=low * Activate HAVEGE config option manually, needed since 1.2.8 -- Roland Stigge Sun, 23 Jun 2013 11:11:31 +0200 polarssl (1.2.8-1) unstable; urgency=low * New upstream release -- Roland Stigge Sat, 22 Jun 2013 14:18:26 +0200 polarssl (1.2.7-1) unstable; urgency=low * New upstream release -- Roland Stigge Sun, 05 May 2013 14:05:39 +0200 polarssl (1.2.6-1) experimental; urgency=low * New upstream release * debian/control: Standards-Version: 3.9.4 -- Roland Stigge Tue, 12 Mar 2013 20:37:01 +0100 polarssl (1.2.5-1) experimental; urgency=low * New upstream release (Closes: #699887) * Fixes CVE-2013-0169: Lucky 13 TLS protocol timing flaw (Including CVE-2013-1621 and CVE-2013-1622) -- Roland Stigge Wed, 06 Feb 2013 21:13:35 +0100 polarssl (1.2.4-1) experimental; urgency=low * New upstream release -- Roland Stigge Sat, 26 Jan 2013 14:56:16 +0100 polarssl (1.2.3-1) experimental; urgency=low * New upstream release -- Roland Stigge Sat, 01 Dec 2012 11:07:42 +0100 polarssl (1.2.2-1) experimental; urgency=low * New upstream release -- Roland Stigge Sun, 25 Nov 2012 11:22:55 +0100 polarssl (1.2.0-1) experimental; urgency=low * New upstream release * debian/control: Build-Depends: debhelper (>= 9) (debian/compat also) -- Roland Stigge Sat, 03 Nov 2012 14:41:30 +0100 polarssl (1.1.4-1) unstable; urgency=low * New upstream release -- Roland Stigge Sat, 02 Jun 2012 12:46:22 +0200 polarssl (1.1.3-1) unstable; urgency=low * New upstream release -- Roland Stigge Tue, 01 May 2012 16:59:47 +0200 polarssl (1.1.2-1) unstable; urgency=low * New upstream release * debian/control: Standards-Version: 3.9.3 -- Roland Stigge Sat, 28 Apr 2012 12:46:20 +0200 polarssl (1.1.1-1) unstable; urgency=low * New upstream release -- Roland Stigge Tue, 24 Jan 2012 00:19:31 +0100 polarssl (1.1.0-1) unstable; urgency=low * New upstream release * Updated debian/copyright * Removed the following patches (fixed upstream now): - 04-fix-type-rename.patch - 05-fix-testsuite-hangs.patch -- Roland Stigge Fri, 23 Dec 2011 18:11:18 +0100 polarssl (1.0.0-3) unstable; urgency=low * Added patch to fix testsuite hangs on s390x and sparc64, thanks to Aurelien Jarno (Closes: #650045) -- Roland Stigge Sun, 27 Nov 2011 19:36:02 +0100 polarssl (1.0.0-2) unstable; urgency=low * Fixed bad SO file link in libpolarssl-dev -- Roland Stigge Sun, 13 Nov 2011 13:54:08 +0100 polarssl (1.0.0-1) unstable; urgency=low * New upstream release -- Roland Stigge Thu, 11 Aug 2011 23:10:01 +0200 polarssl (0.14.3-1) unstable; urgency=low * New upstream release (Closes: #616114) * New maintainer (Closes: #615247) * Fixed debian/watch, thanks to Mats Erik Andersson (Closes: #620983) * debian/control: Standards-Version: 3.9.2 * Source format: 3.0 (quilt) * Included binaries in libpolarssl-runtime * Included shared library in libpolarssl0 * Added testsuite build/run to build process -- Roland Stigge Mon, 25 Jul 2011 10:28:54 +0200 polarssl (0.12.1-1) unstable; urgency=low * New upstream release. * Use dh --with quilt for sexyness. * Bump standards-version, no change needed. * Tighten up dh build depend version. * Add debian/README.source. * Update watch file. * Refresh patches. -- Arnaud Cornet Sat, 07 Nov 2009 22:38:20 +0000 polarssl (0.11.1-1) unstable; urgency=low * Fork xyssl package to polarssl to reflect upstream fork/takeover (Closes: #536697). * Refresh patches. * Switch to DH 7. * Bump Standards-Version, no change needed. -- Arnaud Cornet Thu, 16 Jul 2009 14:34:32 +0200 xyssl (0.9-2) unstable; urgency=low * Include md2 and md4 hashes algorithms (Closes: #496328). -- Arnaud Cornet Mon, 25 Aug 2008 18:28:22 +0200 xyssl (0.9-1) unstable; urgency=low * Add Homepage header. * Fix watch file to match tarball name change (Closes: #453609). * New Upstream Version * Move libxyssl-dev to libdevel section. * Move standards-version to 3.7.3 (no change). * Licence change from LGPL to GPL, fix debian/copyright. -- Arnaud Cornet Mon, 22 Oct 2007 23:35:33 +0200 xyssl (0.8-1) unstable; urgency=low * New Upstream Version * Drop makefile-install.patch. * Update my mail address. -- Arnaud Cornet Mon, 22 Oct 2007 23:22:53 +0200 xyssl (0.7-1) unstable; urgency=low * New Upstream Version. * Switch to quilt patch system. * Dropped old makefile fix. Made new makefile fix in makefile-install.patch. * Updated examples list. -- Arnaud Cornet Sun, 08 Jul 2007 17:59:16 +0200 xyssl (0.6-1) unstable; urgency=low * New upstream release * Make watchfile stricter. * makefile.patch: Fix completly wrong Makefile. -- Arnaud Cornet Sun, 08 Apr 2007 11:39:33 +0200 xyssl (0.3-1) unstable; urgency=low * New upstream release. * No need for a dfsg anymore (files removed upstream). * Now build/works on all archs (Closes:#402467). -- Arnaud Cornet Mon, 1 Jan 2007 15:22:48 +0100 xyssl (0.2.dfsg.1-1) unstable; urgency=low * New upstream release * New architectures supported: arm and mips. * Removed files that had an unclear copyright and licence from source tarball (hence the dfsg in version). -- Arnaud Cornet Fri, 8 Dec 2006 00:08:22 +0100 xyssl (0.1-1) unstable; urgency=low * Initial release. (Closes:#396927) -- Arnaud Cornet Thu, 02 Nov 2006 19:36:08 +0100