Subversion Repositories

?revision_form?Rev ?revision_input??revision_submit??revision_endform?

Rev 39 | Rev 43 | Go to most recent revision | Only display areas with differences | Ignore whitespace | Details | Blame | Last modification | View Log | RSS feed

Rev 39 Rev 41
1
libtar (1.2.20-5) unstable; urgency=low
1
libtar (1.2.20-5) unstable; urgency=low
2
2
3
  * oldgnu_prefix.patch: Detect old-style GNU headers correctly (Closes:
3
  * oldgnu_prefix.patch: Detect old-style GNU headers correctly (Closes:
4
    #763119). Those appear in incremental archives and use the bytes that
4
    #763119). Those appear in incremental archives and use the bytes that
5
    the new-style headers use for the prefix field for other fields.
5
    the new-style headers use for the prefix field for other fields.
6
    Thanks to Steinar H. Gunderson.
6
    Thanks to Steinar H. Gunderson.
7
  * testsuite.patch: Add a simple test (Closes: #737258).
7
  * testsuite.patch: Add a simple test (Closes: #737258).
-
 
8
  * Bump Standards-Version to 3.9.7.
8
9
9
 -- Magnus Holmgren <holmgren@debian.org>  Fri, 25 Mar 2016 19:10:41 +0100
10
 -- Magnus Holmgren <holmgren@debian.org>  Fri, 25 Mar 2016 19:12:23 +0100
10
11
11
libtar (1.2.20-4) unstable; urgency=high
12
libtar (1.2.20-4) unstable; urgency=high
12
13
13
  * no_maxpathlen.patch: Half of the part of the patch modifying
14
  * no_maxpathlen.patch: Half of the part of the patch modifying
14
    compat/dirname.c was missing, causing libtar's dirname to always
15
    compat/dirname.c was missing, causing libtar's dirname to always
15
    return NULL (except in special circumstances). Actually make it work
16
    return NULL (except in special circumstances). Actually make it work
16
    (Closes: #745352). (The reason that libtar doesn't use libc's
17
    (Closes: #745352). (The reason that libtar doesn't use libc's
17
    dirname() and basename() on some or most platforms is that the code
18
    dirname() and basename() on some or most platforms is that the code
18
    doesn't work with destructive versions of these functions).
19
    doesn't work with destructive versions of these functions).
19
20
20
 -- Magnus Holmgren <holmgren@debian.org>  Sat, 03 May 2014 20:39:02 +0200
21
 -- Magnus Holmgren <holmgren@debian.org>  Sat, 03 May 2014 20:39:02 +0200
21
22
22
libtar (1.2.20-3) unstable; urgency=low
23
libtar (1.2.20-3) unstable; urgency=low
23
24
24
  * no_maxpathlen.patch: Fix two grave bugs in the patch. First,
25
  * no_maxpathlen.patch: Fix two grave bugs in the patch. First,
25
    th_get_pathname would only allocate as much memory as was needed for
26
    th_get_pathname would only allocate as much memory as was needed for
26
    the first filename encountered, causing heap corruption when/if
27
    the first filename encountered, causing heap corruption when/if
27
    encountering longer filenames later. Second, two variables were mixed
28
    encountering longer filenames later. Second, two variables were mixed
28
    up in tar_append_tree(). Also, fix a potential memory leak and trim
29
    up in tar_append_tree(). Also, fix a potential memory leak and trim
29
    the patch a bit.
30
    the patch a bit.
30
  * [SECURITY] CVE-2013-4420.patch: When the prefix field is in use, the
31
  * [SECURITY] CVE-2013-4420.patch: When the prefix field is in use, the
31
    safer_name_suffix() function should certainly be applied to the
32
    safer_name_suffix() function should certainly be applied to the
32
    combination of it and the name field, not just on the name field.
33
    combination of it and the name field, not just on the name field.
33
  * th_get_size-unsigned-int.patch: Make the th_get_size() macro cast the
34
  * th_get_size-unsigned-int.patch: Make the th_get_size() macro cast the
34
    result from oct_to_int() to unsigned int. This is the right fix for
35
    result from oct_to_int() to unsigned int. This is the right fix for
35
    bug #725938 on 64-bit systems, where a specially crafted tar file
36
    bug #725938 on 64-bit systems, where a specially crafted tar file
36
    would not cause an integer overflow, but a memory allocation of almost
37
    would not cause an integer overflow, but a memory allocation of almost
37
    16 exbibytes, which would certainly fail outright without harm.
38
    16 exbibytes, which would certainly fail outright without harm.
38
39
39
 -- Magnus Holmgren <holmgren@debian.org>  Sat, 15 Feb 2014 23:51:51 +0100
40
 -- Magnus Holmgren <holmgren@debian.org>  Sat, 15 Feb 2014 23:51:51 +0100
40
41
41
libtar (1.2.20-2) unstable; urgency=low
42
libtar (1.2.20-2) unstable; urgency=low
42
43
43
  * no_static_buffers.patch: avoid using a static buffer in
44
  * no_static_buffers.patch: avoid using a static buffer in
44
    th_get_pathname(). Taken from upstream. Needed for no_maxpathlen.patch.
45
    th_get_pathname(). Taken from upstream. Needed for no_maxpathlen.patch.
45
  * no_maxpathlen.patch: Fix FTBFS on Hurd by dynamically allocating path
46
  * no_maxpathlen.patch: Fix FTBFS on Hurd by dynamically allocating path
46
    names (Closes: #657116). Thanks to Svante Signell and Petter
47
    names (Closes: #657116). Thanks to Svante Signell and Petter
47
    Reinholdtsen.
48
    Reinholdtsen.
48
  * [SECURITY] CVE-2013-4420.patch: Strip out leading slashes and any
49
  * [SECURITY] CVE-2013-4420.patch: Strip out leading slashes and any
49
    pathname prefix containing ".." components (Closes: #731860). This is
50
    pathname prefix containing ".." components (Closes: #731860). This is
50
    done in th_get_pathname() (as well as to symlink targets when
51
    done in th_get_pathname() (as well as to symlink targets when
51
    extracting symlinks), not merely when extracting files, which means
52
    extracting symlinks), not merely when extracting files, which means
52
    applications calling that function will not see the stored
53
    applications calling that function will not see the stored
53
    filename. There is no way to disable this behaviour, but it can be
54
    filename. There is no way to disable this behaviour, but it can be
54
    expected that one will be provided when the issue is solved upstream.
55
    expected that one will be provided when the issue is solved upstream.
55
  * Bump Standards-Version to 3.9.5.
56
  * Bump Standards-Version to 3.9.5.
56
57
57
 -- Magnus Holmgren <holmgren@debian.org>  Sat, 15 Feb 2014 21:49:37 +0100
58
 -- Magnus Holmgren <holmgren@debian.org>  Sat, 15 Feb 2014 21:49:37 +0100
58
59
59
libtar (1.2.20-1) unstable; urgency=high
60
libtar (1.2.20-1) unstable; urgency=high
60
61
61
  * [SECURITY] New upstream release. Fixes CVE-2013-4397: Integer
62
  * [SECURITY] New upstream release. Fixes CVE-2013-4397: Integer
62
    overflow (Closes: #725938).
63
    overflow (Closes: #725938).
63
  * Bump Standards-Version to 3.9.4.
64
  * Bump Standards-Version to 3.9.4.
64
65
65
 -- Magnus Holmgren <holmgren@debian.org>  Thu, 10 Oct 2013 19:20:49 +0200
66
 -- Magnus Holmgren <holmgren@debian.org>  Thu, 10 Oct 2013 19:20:49 +0200
66
67
67
libtar (1.2.19-1) unstable; urgency=low
68
libtar (1.2.19-1) unstable; urgency=low
68
69
69
  * New upstream release.
70
  * New upstream release.
70
71
71
 -- Magnus Holmgren <holmgren@debian.org>  Sun, 05 May 2013 17:59:29 +0200
72
 -- Magnus Holmgren <holmgren@debian.org>  Sun, 05 May 2013 17:59:29 +0200
72
73
73
libtar (1.2.16-1) unstable; urgency=low
74
libtar (1.2.16-1) unstable; urgency=low
74
75
75
  * New upstream: Chris Frey has stepped up with the consent of the
76
  * New upstream: Chris Frey has stepped up with the consent of the
76
    original author, Mark Roth, and published an "official unofficial" git
77
    original author, Mark Roth, and published an "official unofficial" git
77
    repo at http://repo.or.cz/w/libtar.git, which I will use for the time
78
    repo at http://repo.or.cz/w/libtar.git, which I will use for the time
78
    being.
79
    being.
79
  * Updated debian/watch to look for tags and corresponding snapshot
80
  * Updated debian/watch to look for tags and corresponding snapshot
80
    tarballs at above URL.
81
    tarballs at above URL.
81
  * All patches have been incorporated or (in the case of
82
  * All patches have been incorporated or (in the case of
82
    autoreconf.patch) made obsolete upstream.
83
    autoreconf.patch) made obsolete upstream.
83
  * debian/rules: Add build-indep and build-arch targets.
84
  * debian/rules: Add build-indep and build-arch targets.
84
  * Updated debian/copyright.
85
  * Updated debian/copyright.
85
  * Use dpkg-buildflags to set CFLAGS et al.
86
  * Use dpkg-buildflags to set CFLAGS et al.
86
  * debian/control: Add VCS fields; bump Standards-Version to 3.9.3.
87
  * debian/control: Add VCS fields; bump Standards-Version to 3.9.3.
87
88
88
 -- Magnus Holmgren <holmgren@debian.org>  Sat, 23 Jun 2012 01:03:41 +0200
89
 -- Magnus Holmgren <holmgren@debian.org>  Sat, 23 Jun 2012 01:03:41 +0200
89
90
90
libtar (1.2.11-8) unstable; urgency=low
91
libtar (1.2.11-8) unstable; urgency=low
91
92
92
  * libtool.patch: Set SHELL to the configured shell in those Makefile.in
93
  * libtool.patch: Set SHELL to the configured shell in those Makefile.in
93
    where libtool is used; otherwise libtool fails when /bin/sh is dash
94
    where libtool is used; otherwise libtool fails when /bin/sh is dash
94
    but bash is expected (Closes: #621935).
95
    but bash is expected (Closes: #621935).
95
  * man_hyphen_minus.patch (new): Escape hyphens that should be minus
96
  * man_hyphen_minus.patch (new): Escape hyphens that should be minus
96
    signs in man pages.
97
    signs in man pages.
97
  * Rename libtar as libtar0 to follow policy.
98
  * Rename libtar as libtar0 to follow policy.
98
99
99
 -- Magnus Holmgren <holmgren@debian.org>  Sun, 24 Apr 2011 21:11:52 +0200
100
 -- Magnus Holmgren <holmgren@debian.org>  Sun, 24 Apr 2011 21:11:52 +0200
100
101
101
libtar (1.2.11-7) unstable; urgency=low
102
libtar (1.2.11-7) unstable; urgency=low
102
103
103
  * New maintainer (Closes: #526618).
104
  * New maintainer (Closes: #526618).
104
  * Change source format to 3.0 (quilt), clean up Debian diff and split
105
  * Change source format to 3.0 (quilt), clean up Debian diff and split
105
    into several patches:
106
    into several patches:
106
    * libtool.patch: Using libtool to build dynamic library;
107
    * libtool.patch: Using libtool to build dynamic library;
107
    * autoreconf.patch: Changes needed to call autoreconf (bug 511741);
108
    * autoreconf.patch: Changes needed to call autoreconf (bug 511741);
108
    * memleak.patch: Fix memory leaks;
109
    * memleak.patch: Fix memory leaks;
109
    * bad_ptrtoint.patch: Document stupidity of tartype_t in libtar.c 
110
    * bad_ptrtoint.patch: Document stupidity of tartype_t in libtar.c 
110
      (bug 309945).
111
      (bug 309945).
111
  * Increase Debhelper compat level to 7.
112
  * Increase Debhelper compat level to 7.
112
  * Use dh_autoreconf to avoid having to keep track of files to clean.
113
  * Use dh_autoreconf to avoid having to keep track of files to clean.
113
  * memleak2.patch (new): Applied instead of memleak.patch. Fix memory
114
  * memleak2.patch (new): Applied instead of memleak.patch. Fix memory
114
    leak by making th_get_pathname() return a pointer to a static buffer
115
    leak by making th_get_pathname() return a pointer to a static buffer
115
    instead of a pointer to a copy of a local buffer (LP: #41804).
116
    instead of a pointer to a copy of a local buffer (LP: #41804).
116
  * Add homepage field and watch file (in case there is ever a new
117
  * Add homepage field and watch file (in case there is ever a new
117
    upstream release).
118
    upstream release).
118
  * Upgrade to Standards-Version 3.9.1.
119
  * Upgrade to Standards-Version 3.9.1.
119
120
120
 -- Magnus Holmgren <holmgren@debian.org>  Sat, 26 Mar 2011 23:10:25 +0100
121
 -- Magnus Holmgren <holmgren@debian.org>  Sat, 26 Mar 2011 23:10:25 +0100
121
122
122
libtar (1.2.11-6) unstable; urgency=low
123
libtar (1.2.11-6) unstable; urgency=low
123
124
124
  * Fix autotools usage (Closes: #511741)
125
  * Fix autotools usage (Closes: #511741)
125
126
126
 -- Julien Danjou <acid@debian.org>  Sat, 02 May 2009 11:33:06 +0200
127
 -- Julien Danjou <acid@debian.org>  Sat, 02 May 2009 11:33:06 +0200
127
128
128
libtar (1.2.11-5) unstable; urgency=low
129
libtar (1.2.11-5) unstable; urgency=low
129
130
130
  * New maintainer (Closes: #465889)
131
  * New maintainer (Closes: #465889)
131
  * Add missing binary-indep target in debian/rules (Closes: #395714)
132
  * Add missing binary-indep target in debian/rules (Closes: #395714)
132
  * Use ${binary:Version} instead of Source-Version
133
  * Use ${binary:Version} instead of Source-Version
133
  * Bump standard version
134
  * Bump standard version
134
  * Switch to debhelper 5
135
  * Switch to debhelper 5
135
136
136
 -- Julien Danjou <acid@debian.org>  Wed, 02 Apr 2008 07:06:55 +0200
137
 -- Julien Danjou <acid@debian.org>  Wed, 02 Apr 2008 07:06:55 +0200
137
138
138
libtar (1.2.11-4) unstable; urgency=low
139
libtar (1.2.11-4) unstable; urgency=low
139
140
140
  * Always include the newest libtool.m4.  (Closes: #313612)
141
  * Always include the newest libtool.m4.  (Closes: #313612)
141
142
142
 -- James Morrison <phython@debian.org>  Sun, 28 Aug 2005 09:41:47 -0700
143
 -- James Morrison <phython@debian.org>  Sun, 28 Aug 2005 09:41:47 -0700
143
144
144
libtar (1.2.11-3) unstable; urgency=low
145
libtar (1.2.11-3) unstable; urgency=low
145
146
146
  * Document stupidity of tartype_t in libtar.c.  (Closes: #309945)
147
  * Document stupidity of tartype_t in libtar.c.  (Closes: #309945)
147
148
148
 -- James Morrison <phython@debian.org>  Sat, 11 Jun 2005 18:23:15 -0400
149
 -- James Morrison <phython@debian.org>  Sat, 11 Jun 2005 18:23:15 -0400
149
150
150
libtar (1.2.11-2) unstable; urgency=low
151
libtar (1.2.11-2) unstable; urgency=low
151
152
152
  * Move libtar-dev to libdevel. (Closes: #188207)
153
  * Move libtar-dev to libdevel. (Closes: #188207)
153
  * Fix potential memory leak.
154
  * Fix potential memory leak.
154
155
155
 -- James Morrison <phython@debian.org>  Sun, 25 Jul 2004 12:59:08 -0700
156
 -- James Morrison <phython@debian.org>  Sun, 25 Jul 2004 12:59:08 -0700
156
157
157
libtar (1.2.11-1) unstable; urgency=low
158
libtar (1.2.11-1) unstable; urgency=low
158
159
159
  * New Upstream release.
160
  * New Upstream release.
160
161
161
 -- James Morrison <phython@debian.org>  Sat,  5 Apr 2003 14:03:19 -0500
162
 -- James Morrison <phython@debian.org>  Sat,  5 Apr 2003 14:03:19 -0500
162
163
163
libtar (1.2.10-1) unstable; urgency=low
164
libtar (1.2.10-1) unstable; urgency=low
164
165
165
  * New Upstream release.
166
  * New Upstream release.
166
     (Closes: #166602) New upstream uses autoconf 2.5x
167
     (Closes: #166602) New upstream uses autoconf 2.5x
167
  * Remove dependency on automake.  Hopefully upstream will except this
168
  * Remove dependency on automake.  Hopefully upstream will except this
168
    use of libtool.
169
    use of libtool.
169
  * Remove all -static and -shared targets from debian/rules.
170
  * Remove all -static and -shared targets from debian/rules.
170
  * Use dh_install instead of dh_movefiles.
171
  * Use dh_install instead of dh_movefiles.
171
  * -
172
  * -
172
173
173
 -- James Morrison <phython@debian.org>  Sat,  5 Apr 2003 14:03:16 -0500
174
 -- James Morrison <phython@debian.org>  Sat,  5 Apr 2003 14:03:16 -0500
174
175
175
libtar (1.2.5-4) unstable; urgency=low
176
libtar (1.2.5-4) unstable; urgency=low
176
177
177
  * New maintainer. (Closes: #154597)
178
  * New maintainer. (Closes: #154597)
178
  * WSG_ENCAP is now defined.  (Closes: #147764)
179
  * WSG_ENCAP is now defined.  (Closes: #147764)
179
  * libtar-dev depends on libc-dev instead of libc6-dev. 
180
  * libtar-dev depends on libc-dev instead of libc6-dev. 
180
181
181
 -- James Morrison <phython@debian.org>  Wed, 14 Aug 2002 23:44:16 -0400
182
 -- James Morrison <phython@debian.org>  Wed, 14 Aug 2002 23:44:16 -0400
182
183
183
libtar (1.2.5-3) unstable; urgency=low
184
libtar (1.2.5-3) unstable; urgency=low
184
185
185
  * Modify build commands to acomadate change in autoconf (Closes #147764)
186
  * Modify build commands to acomadate change in autoconf (Closes #147764)
186
187
187
 -- Glenn McGrath <bug1@debian.org>  Thu, 23 May 2002 01:06:16 +1000
188
 -- Glenn McGrath <bug1@debian.org>  Thu, 23 May 2002 01:06:16 +1000
188
189
189
libtar (1.2.5-2) unstable; urgency=low
190
libtar (1.2.5-2) unstable; urgency=low
190
191
191
  * Fix build problem (Closes #135360)
192
  * Fix build problem (Closes #135360)
192
193
193
 -- Glenn McGrath <bug1@debian.org>  Sun, 24 Feb 2002 06:29:31 +1100
194
 -- Glenn McGrath <bug1@debian.org>  Sun, 24 Feb 2002 06:29:31 +1100
194
195
195
libtar (1.2.5-1) unstable; urgency=low
196
libtar (1.2.5-1) unstable; urgency=low
196
197
197
  * New upstream version
198
  * New upstream version
198
  * Change section of libtar-dev to devel and libtar to libs
199
  * Change section of libtar-dev to devel and libtar to libs
199
200
200
 -- Glenn McGrath <bug1@debian.org>  Fri, 22 Feb 2002 04:23:15 +1100
201
 -- Glenn McGrath <bug1@debian.org>  Fri, 22 Feb 2002 04:23:15 +1100
201
202
202
libtar (1.2.4-2) unstable; urgency=low
203
libtar (1.2.4-2) unstable; urgency=low
203
204
204
  * Change section from devel to libs 
205
  * Change section from devel to libs 
205
206
206
 -- Glenn McGrath <bug1@debian.org>  Sat,  2 Feb 2002 12:12:32 +1100
207
 -- Glenn McGrath <bug1@debian.org>  Sat,  2 Feb 2002 12:12:32 +1100
207
208
208
libtar (1.2.4-1) unstable; urgency=low
209
libtar (1.2.4-1) unstable; urgency=low
209
210
210
  * Initial Release. (closes #128042)
211
  * Initial Release. (closes #128042)
211
212
212
 -- Glenn McGrath <bug1@debian.org>  Sat,  5 Jan 2002 13:24:37 +1100
213
 -- Glenn McGrath <bug1@debian.org>  Sat,  5 Jan 2002 13:24:37 +1100
213
214