-
libsoup (2.2.96-0ubuntu2.1) edgy-security; urgency=low
* SECURITY UPDATE: remote denial-of-service via GET request
* Added 'debian/patches/90_get_crash.patch': extracted from Debian
* References
CVE-2006-5876
-- Kees Cook <email address hidden> Tue, 23 Jan 2007 11:34:08 -0800
-
libsoup (2.2.96-0ubuntu2) edgy; urgency=low
* Rebuild to get a debug package built
-- Sebastien Bacher <email address hidden> Tue, 10 Oct 2006 12:21:37 +0200
-
libsoup (2.2.96-0ubuntu1) edgy; urgency=low
* New upstream release:
- SoupServer now works even if you don't explicitly set an encoding for
the response. (In particular, the automatic 404 if you request a path
with no handlers now works.)
- WWW-Authenticate and Proxy-Authenticate responses with no realm
parameter are now ignored, as per RFC 2617, fixing a crash
- Added soup_xmlrpc_message_from_string()
- simple-httpd and "get" now support HEAD
-- Daniel Holbach <email address hidden> Tue, 25 Jul 2006 18:39:17 +0200
-
libsoup (2.2.95.1-0ubuntu1) edgy; urgency=low
* New upstream release:
- 2.2.95:
- Even more fixes to XML-RPC, found by the new XML-RPC regression test.
This includes some API changes that I don't feel guilty about, because
the code totally didn't work at all before.
- Fixed a bug in soup_mktime_utc()
- 2.2.95.1:
- (2.2.95 was identical to 2.2.95.1. The only difference is that the
shared library version was belatedly bumped from 8.2.0 to 8.3.0 to
reflect the API "additions")
-- Daniel Holbach <email address hidden> Tue, 11 Jul 2006 18:00:23 +0200
-
libsoup (2.2.94-0ubuntu1) edgy; urgency=low
* New upstream release:
- Various fixes to the XML-RPC code (which apparently had not actually
ever worked before)
- Added client and server API tutorials to the docs
- auth-test now uses a local Apache 2.2 install, if possible, rather than
depending on files that used to be on an old Ximian web server but
haven't been anywhere for a ong time.
* Resynchronized with Debian, only Ubuntu changes are:
- debian/patches/02_xmlrpc_pointer.patch,
debian/patches/03_xmlrpc_array.patch: Distro fixes.
-- Daniel Holbach <email address hidden> Thu, 6 Jul 2006 09:55:02 +0200
-
libsoup (2.2.92-0ubuntu1) dapper; urgency=low
* New upstream version:
- Fixed server-side digest auth to return a valid "algorithm"
value and client-side to not crash if it sees an invalid one
- Fixed the Request-Line parsing code to not hardcode a
maximum URI length (to allow very long DAAP requests from
iTunes in Rhythmbox).
- Fixed some warnings (signed/unsigned mismatch).
-- Sebastien Bacher <email address hidden> Tue, 11 Apr 2006 19:17:48 +0200
