miniupnpc (1.9.20140610-4ubuntu2) bionic; urgency=medium

  * SECURITY UPDATE: multiple overflows
    - debian/patches/CVE-2017-1000494-1.patch: properly initialize data
      structure for SOAP parsing in upnpreplyparse.c.
    - debian/patches/CVE-2017-1000494-2.patch: fix heap buffer overflow in
      minixml.c.
    - CVE-2017-1000494

 -- Marc Deslauriers <marc.deslauriers@ubuntu.com>  Wed, 07 Feb 2018 13:44:03 -0500

miniupnpc (1.9.20140610-4ubuntu1) artful; urgency=medium

  * Merge from Debian unstable. Remaining changes:
    - Suggest minissdpd rather than recommending it, as it's in universe.

 -- Marc Deslauriers <marc.deslauriers@ubuntu.com>  Thu, 15 Jun 2017 14:46:27 -0400

miniupnpc (1.9.20140610-4) unstable; urgency=high

  * Now uses a better patch from upstream for the buffer overflow issue.

 -- Thomas Goirand <zigo@debian.org>  Fri, 19 May 2017 17:46:54 +0200

miniupnpc (1.9.20140610-3ubuntu1) artful; urgency=medium

  * Merge from Debian unstable. Remaining changes:
    - Suggest minissdpd rather than recommending it, as it's in universe.

 -- Marc Deslauriers <marc.deslauriers@ubuntu.com>  Fri, 19 May 2017 11:15:14 -0400

miniupnpc (1.9.20140610-3) unstable; urgency=high

  * Add More_accurate_checking_while_writing_buffer_in_simpleUPnPcommand2.patch
    which fixes a buffer overflow.
  * CVE-2017-8798: integer signedness error. Applied upstream patch.
    (Closes: #862273).
  * Define define _DEFAULT_SOURCE do avoid FTBFS.

 -- Thomas Goirand <zigo@debian.org>  Thu, 18 May 2017 13:41:57 +0200

miniupnpc (1.9.20140610-2.1) unstable; urgency=high

  * Non-maintainer upload.
  * Add CVE-2015-6031.patch patch.
    CVE-2015-6031: Buffer overflow vulnerability in XML parser
    functionality. (Closes: #802650)

 -- Salvatore Bonaccorso <carnil@debian.org>  Sun, 25 Oct 2015 13:41:21 +0100

miniupnpc (1.9.20140610-2ubuntu2) wily; urgency=medium

  * SECURITY UPDATE: buffer overflow in XML parser (LP: #1506017)
    - debian/patches/CVE-2015-6031.patch: fix buffer overflow in
      igd_desc_parse.c
    - CVE-2015-6031

 -- Steve Beattie <sbeattie@ubuntu.com>  Thu, 15 Oct 2015 17:31:20 -0700

miniupnpc (1.9.20140610-2ubuntu1) vivid; urgency=low

  * Merge from Debian unstable (LP: #1387096).  Remaining changes:
    - Suggest minissdpd rather than recommending it, as it's in universe.

 -- Gianfranco Costamagna <costamagnagianfranco@yahoo.it>  Thu, 30 Oct 2014 18:07:17 +0000

miniupnpc (1.9.20140610-2) unstable; urgency=medium

  * Uploading to unstable.

 -- Thomas Goirand <zigo@debian.org>  Sun, 13 Jul 2014 14:43:26 +0000

miniupnpc (1.9.20140610-1) experimental; urgency=medium

  * New upstream release. This fixes FTBFS in kFreeBSD.
  * Now switching to pristine tar Git packaging.
  * Adds correct-typo-in-manpage.patch.
  * Added a debian/libminiupnpc10.symbols file.

 -- Thomas Goirand <zigo@debian.org>  Wed, 11 Jun 2014 13:27:03 +0800

miniupnpc (1.9.20140401-1) experimental; urgency=medium

  * New upstream release (Closes: #748913, #698705)
  * Uploading to experimental because of the needed transition.
  * Enabled hardening build flags (Closes: #680214).
  * Removed 000-Setup.py_CFLAGS_override.patch now applied upstream.
  * Refreshed fix-ftbfs-on-hurd.patch.
  * Upstream bumped SONAME, so now packaging libminiupnpc10 instead of 8.
  * Switched to upstream branch tags git packaging. Note that upstream Git
    cannot be used directly, as it contains all projects of miniupnp in a
    single repository.
  * Removed patch applied upstream: debian/patches/fix-ftbfs-on-hurd.patch.
  * Bumped Standards-Version.

 -- Thomas Goirand <zigo@debian.org>  Wed, 28 May 2014 07:10:52 +0000

miniupnpc (1.6-4ubuntu1) utopic; urgency=medium

  * Resynchronise with Debian.  Remaining changes:
    - Suggest minissdpd rather than recommending it, as it's in universe.

 -- Colin Watson <cjwatson@ubuntu.com>  Thu, 05 Jun 2014 10:23:58 +0100

miniupnpc (1.6-4) unstable; urgency=high

  * Fixed potential buffer overrun in miniwget.c (Closes: #748913).

 -- Thomas Goirand <zigo@debian.org>  Wed, 28 May 2014 06:07:40 +0000

miniupnpc (1.6-3ubuntu2) quantal; urgency=low

  * Rebuild for new armel compiler default of ARMv5t.

 -- Colin Watson <cjwatson@ubuntu.com>  Fri, 05 Oct 2012 13:56:24 +0100

miniupnpc (1.6-3ubuntu1) precise; urgency=low

  * Resynchronized on Debian using their git version, remaining difference:
  * control: suggests minissdpd rather than recommends, it's in universe

 -- Sebastien Bacher <seb128@ubuntu.com>  Tue, 06 Dec 2011 15:39:46 +0100

miniupnpc (1.6-3) unstable; urgency=low

  [Laurent Bigonville <bigon@debian.org>]
  * debian/libminiupnpc8.symbols: Add symbols file (Closes: #635531)
  * Drop debian/libminiupnpc8.shlibs, let dh_makeshlibs generate it.
  * debian/rules:
    - Call dh_makeshlibs with "-V -- -c4" parameters
    - Call dh_fixperms during build (Closes: #650202)

  [Thomas Goirand]
  * Uploading to unstable.
  * Added a new debian/gbp.conf.
  * Switching to source format 3.0 (quilt)
  * Build python bindings (python-miniupnpc), thanks to Adam Cécile
    <gandalf@le-vert.net> for his contribution (Closes: #660938).
  * Added multiarch support.
  * Uploading to unstable.
  * Fixes FTBFS on hurd, thanks to Svante Signell <svante.signell@gmail.com>
    (Closes: #718519).
  * VCS URLs are now canonical.
  * Standards-Version is now 3.9.4.

 -- Thomas Goirand <zigo@debian.org>  Thu, 23 Feb 2012 13:18:36 +0800

miniupnpc (1.6-2) experimental; urgency=low

  * Moved libminiupnpc.a in the -dev package as it should.
  * Added Replaces: libminiupnpc5, libminiupnpc8 (<= 1.6-1) because of above.

 -- Thomas Goirand <zigo@debian.org>  Fri, 11 Nov 2011 16:48:35 +0800

miniupnpc (1.6-1) experimental; urgency=low

  [Thomas Goirand <zigo@debian.org>]
  * New upstream version (Closes: #647679).
  * Rewrapped debian/copyrigh.
  * Uploading to experimental since there's an soname transition.
  [Leo 'costela' Antunes <costela@debian.org>]
  * Fixes watch file.
  * Update soname and binary lib package name.
  * Adds debian/rules build-arch and build-indep targets.
  * remove unneeded libminiupnpc.substvars.
  * policy bump to 3.9.2 (no changes).
  * fix debian/copyright syntax (empty lines).

 -- Thomas Goirand <zigo@debian.org>  Fri, 11 Nov 2011 16:21:41 +0800

miniupnpc (1.5-3) unstable; urgency=low

  * debian/copyright is now in correct DEP5 format.

 -- Thomas Goirand <zigo@debian.org>  Thu, 04 Aug 2011 18:52:03 +0800

miniupnpc (1.5-2) unstable; urgency=low

  * libminiupnpc-dev now depends on libminiupnpc5 (Closes: #617774).

 -- Thomas Goirand <zigo@debian.org>  Fri, 11 Mar 2011 18:59:58 +0800

miniupnpc (1.5-1) unstable; urgency=low

  * New upstream version.
  * Moving from experimental to unstable (Closes: #616632).

 -- Thomas Goirand <zigo@debian.org>  Thu, 10 Mar 2011 00:22:40 +0800

miniupnpc (1.4.20101221-1) experimental; urgency=low

  * Initial release. (Closes: #444392)

 -- Thomas Goirand <zigo@debian.org>  Wed, 29 Dec 2010 16:49:20 +0800
