Change logs for cpio source package in Hirsute

  • cpio (2.13+dfsg-4ubuntu0.3) hirsute-security; urgency=medium
    
      * SECURITY UPDATE: arbitrary code execution via crafted pattern file
        - debian/patches/CVE-2021-38185.patch: rewrite dynamic string support
          in src/copyin.c, src/copyout.c, src/copypass.c, src/dstring.c,
          src/dstring.h, src/util.c.
        - debian/patches/CVE-2021-38185.2.patch: don't call ds_resize in a loop
          in src/dstring.c.
        - debian/patches/CVE-2021-38185.3.patch: fix dynamic string
          reallocations in src/dstring.c.
        - CVE-2021-38185
    
     -- Marc Deslauriers <email address hidden>  Wed, 25 Aug 2021 06:50:47 -0400
  • cpio (2.13+dfsg-4) unstable; urgency=medium
    
      * Source only upload to enable migration.
        Closes: #969660 
    
     -- Anibal Monsalve Salazar <email address hidden>  Thu, 17 Sep 2020 21:16:18 +1000
  • cpio (2.13+dfsg-3) unstable; urgency=medium
    
      * Fix FTBFS multiple definition of 'program_name'
        src/global.c: Remove superfluous declaration of program_name 
        Add patch 963304-remove-superfluous-declaration-of-program_name
        Closes: #963304
    
     -- Anibal Monsalve Salazar <email address hidden>  Tue, 07 Jul 2020 23:12:56 -0500