-
w3m (0.5.3-15ubuntu0.2) trusty-security; urgency=medium
* SECURITY UPDATE: Infinite recursion flaw in HTMLlineproc0
- debian/patches/CVE-2018-6196.patch: prevent negative indent value
in table.c.
- CVE-2018-6196
* SECURITY UPDATE: NULL pointer dereference flaw in formUpdateBuffer
- debian/patches/CVE-2018-6197.patch: prevent invalid columnPos() call
in form.c.
- CVE-2018-6197
* SECURITY UPDATE: does not properly handle temp files
- debian/patches/CVE-218-6198.patch: make temp directory safely
in config.h.dist, config.h.in, configure, configure.ac, main.c and rc.c.
- CVE-2018-6198
-- <email address hidden> (Leonidas S. Barbosa) Tue, 30 Jan 2018 16:07:18 -0300
-
w3m (0.5.3-15ubuntu0.1) trusty-security; urgency=medium
* SECURITY UPDATE: multiple security issues
- debian/patches/*: backport large quantity of security fixes from
Debian's 0.5.3-19+deb8u1 release. Thanks to Tatsuya Kinoshita.
- CVE-2016-9422, CVE-2016-9423, CVE-2016-9424, CVE-2016-9425,
CVE-2016-9426, CVE-2016-9428, CVE-2016-9429, CVE-2016-9430,
CVE-2016-9431, CVE-2016-9432, CVE-2016-9433, CVE-2016-9434,
CVE-2016-9435, CVE-2016-9436, CVE-2016-9437, CVE-2016-9438,
CVE-2016-9439, CVE-2016-9440, CVE-2016-9441, CVE-2016-9442,
CVE-2016-9443, CVE-2016-9622, CVE-2016-9623, CVE-2016-9624,
CVE-2016-9625, CVE-2016-9626, CVE-2016-9627, CVE-2016-9628,
CVE-2016-9629, CVE-2016-9630, CVE-2016-9631, CVE-2016-9632,
CVE-2016-9633
-- Marc Deslauriers <email address hidden> Wed, 01 Mar 2017 13:50:42 -0500
-
w3m (0.5.3-15) unstable; urgency=low
* Explicitly add pkg-config to Build-Depends
* Update 015_debian-version.patch to 0.5.3+debian-15
* Update 900_ChangeLog.patch
-- Tatsuya Kinoshita <email address hidden> Sat, 04 Jan 2014 11:48:02 +0900
-
w3m (0.5.3-14) unstable; urgency=low
[ Tatsuya Kinoshita ]
* New patch 300_manual-links.patch to fix unusable links in MANUAL.html
* New patch 310_doc-ascii.patch to prefer US-ASCII in English documents
* New patch 320_imlib2-config.patch to build with imlib2 1.4.6
* Make keymap.* symlinks for MANUAL.html
* Convert document encodings to UTF-8 at build time
* Install Bonus/README to Bonus/README.ja
* Update debian/copyright
* Update 015_debian-version.patch to 0.5.3+debian-14
* Update 900_ChangeLog.patch
[ Rafael Laboissiere ]
* Avoid compression of README.func and get the link in MANUAL.html working
(closes: #517315)
-- Tatsuya Kinoshita <email address hidden> Fri, 03 Jan 2014 17:48:31 +0900
-
w3m (0.5.3-13) unstable; urgency=low
* New patch 240_win64gc.patch for GC on Cygwin64
* New patch 250_schemebug.patch to fix scheme bug (closes: #650747)
* New patch 260_openssl.patch from openSUSE for OpenSSL issues
* New patch 270_refresh-url.patch to accept single quoted URL
* New patch 280_search-next.patch to fix crash after SEARCH_NEXT
* New patch 290_closedir.patch to fix a directory descriptor leak
* Update 230_cygwin-lang.patch to really fix
* Update 090_parallel-make.patch to fix scripts and w3mimg (closes: #726188)
* Update 040_link_gcc45.patch to 040_link-gtk2.patch
* Update 050_autotools-config.patch with autotools-dev 20130810.1
* Drop 050_autotools-config.patch (comment out)
* Update 900_ChangeLog.patch
* Update 015_debian-version.patch to 0.5.3+debian-13
* Use LFS_CFLAGS to support large file (closes: #493956)
* Use autotools-dev dh addon again (closes: #732086)
* Update gitlog2changelog to fix paren handling
* debian/rules: builddir fixes
* Use dpkg-maintscript-helper to remove obsolete conffile
* Update Standards-Version to 3.9.5
-- Tatsuya Kinoshita <email address hidden> Tue, 17 Dec 2013 19:57:42 +0900
-
w3m (0.5.3-12ubuntu1) trusty; urgency=low
* Use the autotools-dev dh addon to update config.guess/config.sub for new
ports.
* Drop 050_autotools-config.patch again.
-- Colin Watson <email address hidden> Fri, 13 Dec 2013 18:44:56 +0000
-
w3m (0.5.3-12) unstable; urgency=low
* New patch 200_readme-img-typo.patch to typo fix (closes: #725892)
* New patch 210_vim-like.patch for vim like handling (closes: #724028)
* New patch 220_maxcol.patch to bump MAXCOL to 256
* New patch 230_cygwin-lang.patch to fix upstream bug
* Update 030_pager-s-option.patch to doc fix
* Add --with-browser=/usr/bin/sensible-browser to confargs
* Add gitlog2changelog to easily generate ChangeLog
* Update debian/copyright
* Update README.Debian to drop unavailable mailing lists
* Update 150_contact-list.patch to drop unavailable mailing lists
* Update 900_ChangeLog.patch
* Update 015_debian-version.patch to 0.5.3+debian-12
-- Tatsuya Kinoshita <email address hidden> Sun, 13 Oct 2013 16:41:44 +0900
-
w3m (0.5.3-11) unstable; urgency=low
* Update 130_siteconf.patch to fix segfault (closes: #718612)
* New patch 180_execdict.patch to fix potentially segfault
* New patch 190_Strchop.patch to fix potentially segfault
* New patch 900_ChangeLog.patch to update ChangeLog
* Update 015_debian-version.patch to 0.5.3+debian-11
-- Tatsuya Kinoshita <email address hidden> Thu, 08 Aug 2013 19:06:06 +0900
