-
xz-utils (5.2.4-1+deb10u1) buster-security; urgency=high
* Non-maintainer upload by the Security Team.
* xzgrep: Fix escaping of malicious filenames (ZDI-CAN-16587)
(CVE-2022-1271) (Closes: #1009167)
-- Salvatore Bonaccorso <email address hidden> Mon, 11 Apr 2022 16:51:17 +0200
-
xz-utils (5.2.4-1) unstable; urgency=low
* New upstream release. Closes: #851615.
* Standards-Version: 4.3.0 (checked).
* Use an XZ compressed tarball for upstream source.
* Add upstream signing key and verify tarball at "uscan" time.
* Drop patches; all were applied or otherwise fixed upstream.
* Update copyright file.
* debian/control:
- Use a stable repo.or.cz URL for packaging repo.
Closes: #826382. Thanks to Rolf Leggewie.
- Use https for upstream homepage URL.
- No longer Build-Depends: freebsd-glue on kfreebsd.
* get-orig-source: Use https for upstream Git repository.
* liblzma:
- Remove compatibility tricks that permit sharing a process with
liblzma.so.2. This means liblzma.a no longer depends on libdl
at run time.
Closes: #919950. Thanks to Josh Triplett.
- Breaks: liblzma2 versions without symbol versioning.
- Priority: optional.
* xz-utils:
- Lower priority of xz-utils to standard. Closes: #685203.
- README.Debian: Remove notes about differences from upstream.
- Remove old NEWS.Debian.
-- Jonathan Nieder <email address hidden> Sun, 27 Jan 2019 17:09:34 -0800
-
xz-utils (5.2.2-1.3) unstable; urgency=medium
* Non-maintainer upload.
* Force a constant /bin/sh for installed scripts. This helps the build
be reproducible; /bin/sh on Debian is always POSIX. (Closes: #806331)
-- Ximin Luo <email address hidden> Wed, 28 Jun 2017 18:39:19 +0200
-
xz-utils (5.2.2-1.2) unstable; urgency=medium
* Non-maintainer upload.
* link against libfreebsd-glue on kfreebsd-* (Closes: #840063)
-- Sebastian Andrzej Siewior <email address hidden> Sat, 08 Oct 2016 15:11:19 +0200