-
libupnp (1:1.6.6-5+squeeze1) stable-security; urgency=high
* Non-maintainer upload by the Security Team.
* debian/patches/0001-Security-fix-for-CERT-issue-VU-922681 added, fix
various stack-based buffer overflows in service_unique_name() function.
This fix CVE-2012-5958, CVE-2012-5959, CVE-2012-5960, CVE-2012-5961,
CVE-2012-5962, CVE-2012-5963, CVE-2012-5964, CVE-2012-5965. closes: #699316
-- Yves-Alexis Perez <email address hidden> Fri, 01 Feb 2013 21:55:32 +0100
-
libupnp (1:1.6.6-5) unstable; urgency=low
* Fixes to BSD build issues (Closes: #573319, FTBFS on Gnu/kFreeBSD)
* We no longer Build-Depend on dbs anyway (Closes: #576068)
* More debug tidying (07-neaten-debug.patch):
- send UPNP_CRITICAL msgs to the info log as well as to the error log.
- don't print HTTP headers to stdout as they're already in logfile.
* Always compile in logging code but don't log unless requested
(12-debian-always-debug.patch) to help porting other apps.
* Cherry-pick some upstream bug fixes:
- soap_request_and_response http_request parameter error from r486
- "reuseaddr" patch from issue 2995758 backported from r548
- threadpool hang when busy from r515
- memory leak in SSDP AdvertiseAndReply from issue 2392304, r518
* Add $PTHREAD_CFLAGS to libupnp.pc as assumed by {acx,ax}_pthread.m4
(patch 16, Closes: #555386).
-- Nick Leverton <email address hidden> Fri, 14 May 2010 15:47:17 +0100
-
libupnp (1:1.6.6-3) unstable; urgency=high
[ Dmitry E. Oboukhov ]
* Added libupnp-dev with depends to libupnp3-dev,
really closes: #490339, #490533.
[ Nick Leverton ]
* Include GNU/kfreeBSD build patch (Closes: #491173)
-- Nick Leverton <email address hidden> Mon, 21 Jul 2008 20:57:42 +0100