33 lines
1.4 KiB
Text
33 lines
1.4 KiB
Text
* Sun Dec 31 2017 avindra@opensuse.org
|
|
- update to 0.1.7
|
|
* Fixed segfault in yaml_string_write_handler
|
|
* Fixed invalid simple key assertion (CVE-2014-9130)
|
|
* Fixed error handling in some examples
|
|
- remove CVE-2014-9130.patch
|
|
- fixed upstream in 946596172d140497b560e016e581accb0a92cca4
|
|
- cleanup spec file with spec-cleaner
|
|
* Wed Dec 3 2014 jmassaguerpla@suse.com
|
|
- fix CVE-2014-9130: libyaml: assert failure when processing
|
|
wrapped strings (bnc#907809)
|
|
CVE-2014-9130.patch contains the fix
|
|
* Fri Mar 28 2014 jmassaguerpla@suse.com
|
|
- update to 0.1.6 is a security update release for:
|
|
* CVE-2014-2525: heap overflow during parsing (bnc#868944)
|
|
bnc#860617)
|
|
* Fri Feb 7 2014 dmueller@suse.com
|
|
- update to 0.1.5:
|
|
* Manually define PTRDIFF_MAX for VS C compiler
|
|
* Limit input size to SIZE_MAX/2
|
|
* Guard against overflows in indent and flow_level (CVE-2013-6393, bnc#860617)
|
|
* Prevent node index overflow (Reported by Florian Weimer).
|
|
* Fixed invalid size_t->int cast (Thank to Florian Weimer).
|
|
* Tue Mar 26 2013 dmueller@suse.com
|
|
- update to 0.1.4:
|
|
* documentation update
|
|
* add pkgconfig support
|
|
* Sun Jan 29 2012 jengelh@medozas.de
|
|
- Remove redundant tags/sections per specfile guideline suggestions
|
|
* Wed Feb 9 2011 pascal.bleser@opensuse.org
|
|
- fixed erroneous license from GPLv2 to MIT, bnc#670525
|
|
* Tue Apr 6 2010 mrueckert@suse.de
|
|
- initial package of version 0.1.3
|