libksba (1.3.3-1ubuntu0.16.04.1) xenial-security; urgency=medium

  * SECURITY UPDATE: denial of service in bad encoding handling
    - debian/patches/CVE-2016-4574.patch: fix OOB read access in
      src/dn.c.
    - CVE-2016-4574
  * SECURITY UPDATE: denial of service via TLV given length
    - debian/patches/CVE-2016-4579.patch: fix possible read access beyond
      the buffer in src/ber-help.c, src/cert.c, src/name.c, src/ocsp.c.
    - CVE-2016-4579

 -- Marc Deslauriers <marc.deslauriers@ubuntu.com>  Fri, 13 May 2016 08:33:06 -0400

libksba (1.3.3-1) unstable; urgency=high

  * New upstream security release.

 -- Andreas Metzler <ametzler@debian.org>  Thu, 30 Apr 2015 18:47:09 +0200

libksba (1.3.2-1) unstable; urgency=high

  * New upstream security release, fixing a buffer overflow in ksba_oid_to_str
    in Libksba. Closes: #770972 CVE-2014-9087

 -- Andreas Metzler <ametzler@debian.org>  Tue, 25 Nov 2014 20:05:54 +0100

libksba (1.3.1-1) unstable; urgency=medium

  * New upstream bugfix release.

 -- Andreas Metzler <ametzler@debian.org>  Fri, 26 Sep 2014 19:27:35 +0200

libksba (1.3.0-3) unstable; urgency=medium

  * Point vcs* to git.
  * Convert to dh, compat level 9.
  * Add debian/upstream-signing-key.pgp (listed in
    debian/source/include-binaries) and update watchfile to check
    upstream signature.
  * Sync from Ubuntu:
    + Build using dh-autoreconf. (Does not benefit us yet on Debian, but will
      fix FTBFS on ppc64le once #726404 is fixed.)

 -- Andreas Metzler <ametzler@debian.org>  Mon, 23 Dec 2013 13:26:26 +0100

libksba (1.3.0-2) unstable; urgency=low

  * Upload to unstable.
  * Use dh v8 compat.

 -- Andreas Metzler <ametzler@debian.org>  Sat, 11 May 2013 17:44:01 +0200

libksba (1.3.0-1) experimental; urgency=low

  * New upstream version.
    + License of library changed from GPLv3+ to LGPLv3+/GPLv2. (Commandline
      utils and documentation stay GPLv3+).
  * [lintian]: Drop "Section: libs" from libksba binary package stanza in
    debian/control.

 -- Andreas Metzler <ametzler@debian.org>  Sat, 29 Sep 2012 14:19:05 +0200

libksba (1.2.0-2) unstable; urgency=low

  * Build for multi-arch.
  * Stop setting CFLAGS += -Wall, it is set by default again.

 -- Andreas Metzler <ametzler@debian.org>  Sun, 19 Jun 2011 14:02:59 +0200

libksba (1.2.0-1) unstable; urgency=low

  * New upstream version.
  * Symbols added, bump shlibs.

 -- Andreas Metzler <ametzler@debian.org>  Sat, 05 Mar 2011 14:22:57 +0100

libksba (1.1.0-2) unstable; urgency=low

  * Upload to unstable.
  * Set CFLAGS += -Wall, the latest combination of cdbs + dpkg-dev does not
    seem to set it by default.

 -- Andreas Metzler <ametzler@debian.org>  Sat, 19 Feb 2011 15:49:20 +0100

# For older changelog entries, run 'apt-get changelog libksba8'