1 gzip (1.3.2-3woody4) stable-security; urgency=high
3 * Non-maintainer upload by the Security Team
4 * Applied patch by Steve Grub to fix premission setting race condition
5 [gzip.c, CAN-2005-0988]
6 * Applied patch by Ulf Härnhammar to fix directory traversal problem
7 [gzip.c, CAN-2005-1228, Bug#305255]
9 -- Martin Schulze <joey@infodrom.org> Thu, 2 Jun 2005 16:26:06 +0200
11 gzip (1.3.2-3woody3) stable-security; urgency=high
13 * Non-maintainer upload by the Security Team
14 * Revert patches for zdiff and znew since the use of 'set -C' should
17 -- Martin Schulze <joey@infodrom.org> Thu, 4 Nov 2004 12:55:03 +0100
19 gzip (1.3.2-3woody2) stable-security; urgency=high
21 * Non-maintainer upload by the Security Team
22 * Applied Trustix patch to correct insecure temporary file use in zdiff
23 and znew [zdiff.in, znew.in, CAN-2004-0970, Bugtraq Id 11288]
25 -- Martin Schulze <joey@infodrom.org> Sun, 31 Oct 2004 20:02:13 +0100
27 gzip (1.3.2-3woody1) stable-security; urgency=high
29 * Non-maintainer upload by the Security Team
30 * Fix multiple instances of insecure temporary files
31 - gzexe.in (CVE-1999-1332), which became un-fixed sometime since potato
32 - znew (CAN-2003-0367)
34 -- Matt Zimmerman <mdz@debian.org> Sat, 31 May 2003 17:41:06 -0400
36 gzip (1.3.2-3) unstable; urgency=low
38 * modify gzexe.in to hard-code /bin/gzip instead of trying to use BINDIR
39 which yields /usr/bin/gzip. Don't use PATH since we have no idea what it
40 might be when the gzexe'd executable gets run. Closes: #119641
42 -- Bdale Garbee <bdale@gag.com> Wed, 14 Nov 2001 23:00:59 -0700
44 gzip (1.3.2-2) unstable; urgency=low
46 * fix silly mistake made when moving man pages from hard to soft links, so
47 man pages for zegrep, zfgrep, and uncompress work again, closes: #118325
49 -- Bdale Garbee <bdale@gag.com> Mon, 5 Nov 2001 00:53:40 -0700
51 gzip (1.3.2-1) unstable; urgency=low
53 * new upstream release, incorporating my diffs to 1.3.1
55 -- Bdale Garbee <bdale@gag.com> Sun, 4 Nov 2001 09:47:40 -0700
57 gzip (1.3.1-2) unstable; urgency=low
59 * add build dependencies on autoconf and automake
60 * fix infodir spec so we install in the build tree, not the system directory
62 -- Bdale Garbee <bdale@gag.com> Sat, 3 Nov 2001 02:18:06 -0700
64 gzip (1.3.1-1) unstable; urgency=low
66 * new upstream version! From alpha.gnu.org, on the explicit advice of the
67 current upstream maintainers, who are working with Debian to prepare a new
68 stable release that addresses many of the open issues in our BTS.
70 large file support handled in configure, closes: #108612, #83061, #113000
71 it appears the subtle problem with concatenation is fixed, closes: #114591
72 various segfault problems appear fixed, closes: #46312
73 gzip -r issues fixed, closes: #53645, #106186
74 problem with --no-filename option fixed, closes: #59067
75 zgrep -r disallowed - "I did not use the patch as it was not a complete
76 . fix for the problem and I thought it would cause more problems than
77 . it would cure. Instead, I simply disallowed zgrep -r", closes: #81288
78 error message reworded, closes: #76238
79 compression factor output fixed, closes: #80362
80 zgrep -H fixed, closes: #84371
81 permission issue when forced to compress linked file fixed, closes: #88918
82 manpage hardlinks fixed, closes: #94733
83 gzip --help now goes to stdout, closes: #97020
84 zless no longer runs less if file doesn't exist, closes: #109097
85 problem with -best fixed, closes: #17650
86 zgrep now understands --, closes: #28475
87 file size output by gzip fixed for large files, closes: #40721
88 * fix location referenced for GPL on Debian systems, closes: #112095
89 * move install-info remove call from from postrm to prerm
91 -- Bdale Garbee <bdale@gag.com> Sat, 3 Nov 2001 01:01:02 -0700
93 gzip (1.2.4-33) unstable; urgency=low
95 * update to current policy
97 -- Bdale Garbee <bdale@gag.com> Thu, 2 Dec 1999 01:10:58 -0700
99 gzip (1.2.4-32) unstable; urgency=low
101 * update prototype for and definition of basename function for compatibility
102 with glibc2.0, still in use on m68k. Closes: #45058
104 -- Bdale Garbee <bdale@gag.com> Wed, 15 Sep 1999 02:01:47 -0600
106 gzip (1.2.4-31) unstable; urgency=medium
108 * fix problems I induced while merging the upstream patch in the last upload,
109 most notably omitting zless from the package.
110 Closes: #44883, #44885, #44890, #44882, #44887, #44895, #44896
112 -- Bdale Garbee <bdale@gag.com> Sun, 12 Sep 1999 12:06:00 -0600
114 gzip (1.2.4-30) unstable; urgency=low
116 * upstream patch, closes: #28872
117 1998-11-18 Paul Eggert <eggert@twinsun.com>
118 gzip.c (get_method): Don't complain about trailing zeros at
119 the end of a gzipped file, as they're commonly appended to fill
120 out a block (e.g. by GNU tar).
121 * update to FHS compliance
123 -- Bdale Garbee <bdale@gag.com> Fri, 10 Sep 1999 21:34:07 -0600
125 gzip (1.2.4-29) unstable; urgency=low
127 * apply patch from Vincent Renardias that improves behavior when trying to
128 decompress a corrupted .gz file. Closes 7472, 16385
130 -- Bdale Garbee <bdale@gag.com> Wed, 27 Jan 1999 20:50:12 -0700
132 gzip (1.2.4-28) frozen unstable; urgency=medium
134 * patch zforce to make it work at all, closes 22760
135 * patch to fix decompression of concatenated gzip files, closes 30537
137 -- Bdale Garbee <bdale@gag.com> Fri, 22 Jan 1999 10:43:09 -0700
139 gzip (1.2.4-27) frozen unstable; urgency=low
141 * patch from Jean-loup (upstream maintainer) for zgrep.in to fix the
142 problems with -A and -B successfully passing to grep. Closes 21209.
144 -- Bdale Garbee <bdale@gag.com> Sat, 25 Apr 1998 22:47:15 -0600
146 gzip (1.2.4-26) frozen unstable; urgency=low
148 * fix FSF address in copyright file, lintian now reports no errors
149 * minor tweak to Makefile to fix warnings during dh_installmanpages run
151 -- Bdale Garbee <bdale@gag.com> Tue, 24 Mar 1998 00:40:48 -0700
153 gzip (1.2.4-25) frozen unstable; urgency=low
155 * update znew.in and zdiff.in to do save tempfile handling, closes 19794
157 -- Bdale Garbee <bdale@gag.com> Sat, 21 Mar 1998 23:48:26 -0700
159 gzip (1.2.4-24) unstable; urgency=low
161 * minor fix for complaints about short files, closes 19159
163 -- Bdale Garbee <bdale@gag.com> Wed, 11 Mar 1998 02:21:50 -0700
165 gzip (1.2.4-23) unstable; urgency=high
167 * respond to security advisory from Alan Cox via Christian Hudon, fixes
168 an obscure possibility to get gzip to execute code
170 -- Bdale Garbee <bdale@gag.com> Wed, 11 Mar 1998 02:16:59 -0700
172 gzip (1.2.4-22) unstable; urgency=high
174 * gzexe modified to use tempfile in response to security advisory
176 -- Bdale Garbee <bdale@gag.com> Sat, 31 Jan 1998 14:30:20 -0700
178 gzip (1.2.4-21) unstable; urgency=low
180 * fix from the upstream maintainer for voluminous "Broken Pipe" messages
181 when using 'zgrep -l' or equivalent. Closes bug 15178.
183 -- Bdale Garbee <bdale@gag.com> Sun, 4 Jan 1998 00:56:21 -0700
185 gzip (1.2.4-20) unstable; urgency=low
187 * freshen rules file to match current debhelper
188 * improve handling of undocumented executables. Closes bug 13578.
190 -- Bdale Garbee <bdale@gag.com> Sun, 4 Jan 1998 00:56:21 -0700
192 gzip (1.2.4-19) unstable; urgency=low
194 * change dependency to Pre-Depends, to keep dpkg from getting hosed during
195 libc6 upgrades. Closes 15091.
196 * switch from debmake to debhelper. In the process, closes 15412.
198 -- Bdale Garbee <bdale@gag.com> Mon, 8 Dec 1997 23:42:49 -0700
200 gzip (1.2.4-18) unstable; urgency=low
202 * don't install INSTALL in the doc directory, closes bug 13224.
204 -- Bdale Garbee <bdale@gag.com> Fri, 5 Sep 1997 15:06:35 -0600
206 gzip (1.2.4-17) unstable; urgency=low
208 * fix distribution problem in changelog file
210 -- Bdale Garbee <bdale@gag.com> Fri, 5 Sep 1997 15:06:35 -0600
212 gzip (1.2.4-16) stable frozen unstable; urgency=low
215 * tweaks to rules file to install Changelog, closes bug 12488
217 -- Bdale Garbee <bdale@gag.com> Thu, 4 Sep 1997 22:46:28 -0600
219 gzip (1.2.4-15) stable frozen unstable; urgency=low
221 * fix minor security issue - race condition reported on bugtraq list
222 * rework debian/rules to build with debugging then strip
224 -- Bdale Garbee <bdale@gag.com> Fri, 14 Mar 1997 21:14:44 -0700
226 gzip (1.2.4-14) stable frozen unstable; urgency=medium
228 * The -13 upload was built against a libc5 too new for 'stable'.
230 -- Bdale Garbee <bdale@gag.com> Thu, 28 Nov 1996 11:37:31 -0700
232 gzip (1.2.4-13) stable frozen unstable; urgency=medium
234 * Fix missing "essential" flag on package, lost during standards update.
235 * Push this version back into stable to solve the 'compress' link problem.
237 -- Bdale Garbee <bdale@gag.com> Tue, 19 Nov 1996 09:14:14 -0700
239 gzip (1.2.4-12) unstable; urgency=low
243 -- Bdale Garbee <bdale@gag.com> Sat, 02 Nov 1996 14:47:42 -0800
246 Thu Jul 18 01:30:22 MDT 1996 Bdale Garbee <bdale@gag.com>
248 * add zegrep and zfgrep links in /usr/bin (Bug#3326)
249 * add an extended description (Bug#3591)
250 * tweak control files to use dpkg-name, etc.
252 Fri May 24 07:37:54 MDT 1996 Bdale Garbee <bdale@gag.com>
254 * don't provide a 'compress' link since it breaks things, but provide
255 an 'uncompress' link since it's useful.
256 * fix some administrivia
258 Sun Apr 14 20:39:19 MDT 1996 Bdale Garbee <bdale@gag.com>
260 * change gzexe.in to not use BINDIR, but assume gzip is in PATH
261 * add Architecture field in the control file
263 Wed Jan 17 00:07:00 MST 1996 Bdale Garbee <bdale@gag.com>
265 * switch targets in the Makefile to also install the links called
266 'compress' and 'uncompress' since some utilities care about these,
267 and we're unlikely to ever have a 'compress' package because of the
268 intellectual property issues.
270 Sat Dec 2 23:45:40 MST 1995 Bdale Garbee <bdale@gag.com>
273 * add 'zless' as a near-clone of 'zmore', closes bug 1776
274 * unable to duplicate bug 1090, something has improved since then?
275 * add libc5 dependency