1 xmltooling (1.5+dfsg~moonshot2-1) unstable; urgency=low
4 * Add libboost-dev to depends for libxmltooling-dev
6 -- Sam Hartman <hartmans@debian.org> Wed, 14 Dec 2011 06:13:39 -0500
8 xmltooling (1.5+dfsg~moonshot1-2) unstable; urgency=low
10 * Update to libxmltooling6
12 -- Sam Hartman <hartmans@project-moonshot.org> Wed, 07 Dec 2011 11:56:54 -0500
14 xmltooling (1.5+dfsg~moonshot1-1) unstable; urgency=low
16 * New upstream prerelease
18 -- Russ Allbery <hartmans@project-moonshot.org> Tue, 09 Aug 2011 14:32:34 -0400
20 xmltooling (1.4.1-3) unstable; urgency=low
22 * Add explicit build dependency on libssl-dev, which is used directly by
23 this package, and force build dependency on libssl-dev 1.0 or later
24 for consistent build results. If some Shibboleth-related libraries
25 are built against earlier versions of libssl, it produces linking
26 failures when building the Shibboleth SP package.
27 * Update standards version to 3.9.2 (no changes required).
29 -- Russ Allbery <rra@debian.org> Thu, 07 Apr 2011 14:41:37 -0700
31 xmltooling (1.4.1-2) unstable; urgency=low
33 * Fix FTBFS with arch-only builds, such as those on the buildds.
34 Thanks, Aaron M. Ucko. (Closes: #618615)
36 -- Russ Allbery <rra@debian.org> Wed, 16 Mar 2011 23:45:11 -0700
38 xmltooling (1.4.1-1) unstable; urgency=low
40 * New upstream release.
41 - gzip/deflate encoding support to HTTP transfers
42 - Support for top-level signature verification to reloadable XML files
43 - Support fetching CRLs based on the CRL distribution point extension
44 - Fix adding trust engines manually to chaining engine
45 - Fix root element handling in unmarshalling around a cloned DOM
46 - Fix config loader detection of no access to file
47 - Fix User-Agent string handling for AttributeQuery
48 - Ensure chained TrustEngine is not affected by ordering
49 - Support ETag caching in reloadable config files
50 - Support HTTP caching when accessing remote CRLs
51 - Switch to background thread for reloading files
52 - Option to re-enable TLS renegotiation when running on 0.9.8m+
53 - Improve handling of simple content when comments are present
54 - Fix configure probing with ld --as-needed (Closes: #606486)
55 * Force build dependency on xml-security-c 1.6 or later for consistent
57 * Add build dependency on pkg-config, which upstream now uses to find
59 * Add build dependency on graphviz for better API documentation.
60 * Replace the version of jQuery installed by Doxygen in the
61 documentation package with a symlink to the version supplied by the
62 Debian package and add a dependency.
63 * Update to debhelper compatibility level V8.
64 - Use the autotools-dev debhelper module for config.{sub,guess}.
65 - Use debhelper rule minimization.
66 * Clean some additional files not removed by upstream make distclean.
67 * Update debian/copyright to the current DEP-5 specification.
68 * Change to Debian source format 3.0 (quilt). Force a single Debian
69 patch for simplicity since the packaging is maintained in Git using
70 branches, and include a patch header explaining why.
71 * Update standards version to 3.9.1 (no changes required).
73 -- Russ Allbery <rra@debian.org> Sun, 13 Mar 2011 20:45:25 -0700
75 xmltooling (1.3.3-2) unstable; urgency=low
77 * Force source format 1.0 for now since it makes backporting easier.
78 * Add ${misc:Depends} to all package dependencies.
79 * Update standards version to 3.8.4 (no changes required).
81 -- Russ Allbery <rra@debian.org> Thu, 13 May 2010 10:03:36 -0700
83 xmltooling (1.3.3-1) unstable; urgency=low
85 * New upstream release.
86 - Allow the empty string in assignment to DateTime members.
87 - Allow configuration to not extract local credential names for
90 -- Russ Allbery <rra@debian.org> Thu, 17 Dec 2009 18:29:08 -0800
92 xmltooling (1.3.1-1) unstable; urgency=high
94 * Urgency set to high for security fix.
95 * New upstream release.
96 - SECURITY: Partial fix for improper handling of URLs that could be
97 abused for script injection and other cross-site scripting attacks.
98 The complete fix also requires newer opensaml2 and shibboleth-sp2
99 packages. (CVE-2009-3300)
100 - Add setter for KeyInfoResolver object.
101 - Fix extraction of cert info for UTF-8 handling changes.
102 - Fix passing of TransportOption configuration to cURL.
103 - Fix instability in reusing a DOM after signing it.
104 - Remove xmlns:xml namespace declaration when marshalling and
105 unmarshalling to avoid canonicalization bugs.
106 * Rename library package for upstream SONAME bump.
107 * Build-depend on libxml-security-c-dev 1.5 or later and make
108 libxmltooling-dev depend on libxml-security-c-dev 1.5 or later to
109 ensure that all builds are consistent. Although this package will
110 build with 1.4, the other packages built on xmltooling require 1.5.
112 -- Russ Allbery <rra@debian.org> Fri, 06 Nov 2009 11:30:41 -0800
114 xmltooling (1.2.2-1) unstable; urgency=high
116 * Urgency set to high for security fix.
117 * New upstream release.
118 - SECURITY: Fix potential buffer overflows and reuses of freed objects
119 in error handling code paths with invalid XML or with malformed
120 URLs. See the upstream security advisory at
121 http://shibboleth.internet2.edu/secadv/secadv_20090826.txt
122 - Fix other validation issues with malformed objects.
123 - Fix for accessing the resolution context, which affects the ability
124 of callers to restrict keys based on use attributes.
125 - Fix encoding of backup metadata.
126 * Update debhelper compatibility level to V7.
127 - Use dh_prep instead of dh_clean -k.
128 * Update standards version to 3.8.3 (no changes required).
130 -- Russ Allbery <rra@debian.org> Thu, 27 Aug 2009 11:31:37 -0700
132 xmltooling (1.2-1) unstable; urgency=low
134 * New upstream release.
135 - Stop dropping the namespace of qualified attributes that aren't
137 - Expose multiple certificate revocation lists via the credential
138 API, allowing separate revocation lists for intermediate certs.
139 - Provide the hostname in artifact resolution errors.
140 - Sanity-check provided credentials for consistency.
141 * Rename library package for upstream SONAME bump.
142 * Build against Xerces-C 3.0.
143 * Update standards version to 3.8.2 (no changes required).
144 * Remove duplicate section setting for the library package.
146 -- Russ Allbery <rra@debian.org> Wed, 05 Aug 2009 15:45:06 -0700
148 xmltooling (1.1-1) unstable; urgency=low
151 * New upstream bug-fix release.
152 * Bump SONAME of libxmltooling following upstream's versioning.
153 * Include <cstdio> in base.h since some of its macros use sprintf.
154 Fixes FTBFS for packages using xmltooling with GCC 4.4 that don't
155 already include cstdio. Thanks, Martin Michlmayr. (Closes: #505072)
158 * Fix watch file for upstream directory structure.
160 -- Russ Allbery <rra@debian.org> Tue, 17 Feb 2009 17:23:00 -0800
162 xmltooling (1.0-2) unstable; urgency=low
165 * Add dependencies to libxmltooling-dev for the packages whose header
166 files are included by XMLTooling headers.
167 * Include NOTICE.txt in all packages.
170 * Explicitly link with -lpthread to work around Bug#468555 in libtool.
171 * Change package priorities to extra. Xerces-C is extra, so all of the
172 Shibboleth stack needs to be extra, and realistically it's somewhat of
173 an edge package in Debian.
174 * Add in copyright and license information for all of the other random
175 files in the tree, including all the Autoconf support files.
176 * Fix copyright file formatting to use the right syntax for Files.
178 -- Russ Allbery <rra@debian.org> Wed, 18 Jun 2008 20:18:21 -0700
180 xmltooling (1.0-1) unstable; urgency=low
183 * Initial release (Closes: #480287)
185 -- Russ Allbery <rra@debian.org> Sat, 07 Jun 2008 13:00:13 -0700