wolfssl (3.10.2+dfsg-1) unstable; urgency=medium * New upstream release. * New major version is 10 * New maintainer email address * Fixes a low level vulnerability for buffer overflow when loading a malformed temporary DH file * Fixes a medium level vulnerability for processing of OCSP response * Fixes CVE-2017-6076, a low level vulnerability for a potential cache attack on RSA operations (Closes: #856114) * Enabled SHA-224 for all architectures, as advised by upstream -- Felix Lechner Sat, 08 Apr 2017 14:09:21 -0700 wolfssl (3.9.10+dfsg-1) unstable; urgency=medium * New upstream release (Closes: #793134) * Fixed CVE-2015-6925 (Closes: #801120) * No longer installing arch-dependent options.h (Closes: #792626) * New major number is 3 * Using '--enable-distro' to define ABI * Removed all ABI-related build options selecting features * Upgraded Build-Depends: debhelper >=10; bumped compat to 10 * Removed Build-Depends: dh-exec * Switched to automatic generation of debug package (dbgsym) * Changed package descriptions and capitalized wolfSSL correctly * Deleted compatibility links for libcyassl5 * Removed control file references to libcyassl5 * Disabled examples and tests for building without network * Removed duplicate license names from debian/copyright * Updated watch file for upstream's new version tagging scheme on GitHub * Added public key signature verification in watch file * Updated Standard-Version: 3.9.8 -- Felix Lechner Fri, 02 Dec 2016 20:51:20 -0800 wolfssl (3.4.8+dfsg-1) unstable; urgency=medium * Name of package changed from 'cyassl' to 'wolfssl' * New upstream release * Disabled automatic downgrade to SSLv3 in release 3.2.0 (Closes: #769905) * Fixed CVE-2014-2901, CVE-2014-2902, CVE-2014-2903 and CVE-2014-2904 in release 3.2.0 (Closes: #770229) * Fixed TEMP-0000000-2D36D7 in release 3.2.0 * Added build option '--enable-chacha' * Added build option '--enable-poly1305' * Added build option '--enable-hashdrbg' * Added build option '--use-fastmath' * Added build option '--enable-ecc25519' * Added build flag TFM_TIMING_RESISTANT * Added build flag TFM_NO_ASM * Added Build-Depends: libpcap0.8-dev for sniffer testing * Removed obsolete build option '--enable-gcc-hardening' * Removed LT_LIB_M in configure.ac to avoid linking uselessly with libm * Enabled tests * Added Exclude-Files: in 'copyright' for automatic repackaging * Added repacksuffix=+dfsg in 'watch' * Updated to Standards-Version: 3.9.6 * Added dummy package for 'libcyassl5' * Replaces: libcyassl5 (<< 3.4.2-1~) * Breaks: libcyassl5 (<< 3.4.2-1~) * Provides: libcyassl5 * Created compatibility symlinks for libcyassl.so.5.0.0 -- Felix Lechner Sun, 26 Apr 2015 08:23:52 -0700 cyassl (2.9.4+dfsg-3) unstable; urgency=medium * Removed build option '--use-fastmath' * Turned off fastmath for amd64, where it is default * Fixed typedef for socklen_t on hurd-i386 * Marked debug and development packages as Multi-Arch:same -- Felix Lechner Wed, 01 Oct 2014 10:34:34 -0700 cyassl (2.9.4+dfsg-2) unstable; urgency=medium * Disabled build option '--enable-aesni' (Closes: #760320, #760321) * Disabled build option '--enable-crl-monitor' (Closes: #760322) * Fixed symbol file to reflect '+' added to previous package version * Switched to standard build flags for correct symbol generation and hardening. * Disabled tests that failed (due to expired certificates). -- Felix Lechner Tue, 30 Sep 2014 10:57:53 -0700 cyassl (2.9.4+dfsg-1) unstable; urgency=low * Initial release (Closes: #598391) -- Felix Lechner Wed, 09 Apr 2014 17:43:28 -0700