Author: Cédric Boutillier
Revision Date: 2015-08-09 22:20:03 UTC

[ Sebastien Badia ]
* Build with ruby 2.2.
* Add ruby-minitest to Build-Depends for ruby2.2
* Bump Standards-Version to 3.9.6 (no further changes)
* Update Vcs-Browser to cgit URL and HTTPS

[ Cédric Boutillier ]
* Explicitly load test/util.rb before running the tests
* Build-depend on ruby-hmac (Closes: #794134)

Author: Cédric Boutillier
Revision Date: 2015-08-09 22:20:03 UTC

[ Sebastien Badia ]
* Build with ruby 2.2.
* Add ruby-minitest to Build-Depends for ruby2.2
* Bump Standards-Version to 3.9.6 (no further changes)
* Update Vcs-Browser to cgit URL and HTTPS

[ Cédric Boutillier ]
* Explicitly load test/util.rb before running the tests
* Build-depend on ruby-hmac (Closes: #794134)

Author: Cédric Boutillier
Revision Date: 2014-03-14 16:01:57 UTC

* Imported Upstream version 2.5.0debian
* debian/control:
  - update my email address to @d.o
  - bump Standards-Wersion to 3.9.5
    - remove obsolete DM-Upload-Allowed flag
  - use canonical URI in Vcs-* fields
  - drop transitional packages (Closes: #735738)
* Remove in README.source the obsolete part mentioning cdbs
* Remove lintian overrides, about transitional packages
* Drop patches
  - 01_remove_rubygems_require.diff (not needed anymore)
  - 02_fix_CVE-2013-1812.patch (applied upstream)
    This patch contained a call to the method setup_encoding
    which was not defined in the code, causing crash. Dropping the
    patch in favor of upstream code solves this issue (Closes: #727049)
* Enable test suite at build time

Author: Cédric Boutillier
Revision Date: 2014-03-14 16:01:57 UTC

* Imported Upstream version 2.5.0debian
* debian/control:
  - update my email address to @d.o
  - bump Standards-Wersion to 3.9.5
    - remove obsolete DM-Upload-Allowed flag
  - use canonical URI in Vcs-* fields
  - drop transitional packages (Closes: #735738)
* Remove in README.source the obsolete part mentioning cdbs
* Remove lintian overrides, about transitional packages
* Drop patches
  - 01_remove_rubygems_require.diff (not needed anymore)
  - 02_fix_CVE-2013-1812.patch (applied upstream)
    This patch contained a call to the method setup_encoding
    which was not defined in the code, causing crash. Dropping the
    patch in favor of upstream code solves this issue (Closes: #727049)
* Enable test suite at build time

Author: Cédric Boutillier
Revision Date: 2014-03-14 16:01:57 UTC

* Imported Upstream version 2.5.0debian
* debian/control:
  - update my email address to @d.o
  - bump Standards-Wersion to 3.9.5
    - remove obsolete DM-Upload-Allowed flag
  - use canonical URI in Vcs-* fields
  - drop transitional packages (Closes: #735738)
* Remove in README.source the obsolete part mentioning cdbs
* Remove lintian overrides, about transitional packages
* Drop patches
  - 01_remove_rubygems_require.diff (not needed anymore)
  - 02_fix_CVE-2013-1812.patch (applied upstream)
    This patch contained a call to the method setup_encoding
    which was not defined in the code, causing crash. Dropping the
    patch in favor of upstream code solves this issue (Closes: #727049)
* Enable test suite at build time

Author: Cédric Boutillier
Revision Date: 2013-03-06 11:56:30 UTC

* Urgency set to high as a security bug is fixed.
* debian/patches:
  - add 02_fix_CVE-2013-1812.patch from upstream: limit fetching file size
    and disable XML entity expansion. [CVE-2013-1812] (Closes: #702217).

Author: Christian Kuersteiner
Revision Date: 2013-06-12 16:37:06 UTC

* SECURITY UPDATE: XML denial of service attack (LP: #1190179)
  - debian/patches/02_CVE_2013_1812.patch: lib/openid/fetchers.rb,
    lib/openid/yadis/xrds.rb: limit fetching file size & disable XML entity
    expansion. Based on upstream patch.
  - CVE-2013-1812

Author: Christian Kuersteiner
Revision Date: 2013-06-12 16:37:06 UTC

* SECURITY UPDATE: XML denial of service attack (LP: #1190179)
  - debian/patches/02_CVE_2013_1812.patch: lib/openid/fetchers.rb,
    lib/openid/yadis/xrds.rb: limit fetching file size & disable XML entity
    expansion. Based on upstream patch.
  - CVE-2013-1812

Author: Cédric Boutillier
Revision Date: 2013-03-06 11:56:30 UTC

* Urgency set to high as a security bug is fixed.
* debian/patches:
  - add 02_fix_CVE-2013-1812.patch from upstream: limit fetching file size
    and disable XML entity expansion. [CVE-2013-1812] (Closes: #702217).

Author: Cédric Boutillier
Revision Date: 2013-03-06 11:56:30 UTC

* Urgency set to high as a security bug is fixed.
* debian/patches:
  - add 02_fix_CVE-2013-1812.patch from upstream: limit fetching file size
    and disable XML entity expansion. [CVE-2013-1812] (Closes: #702217).

Author: Cédric Boutillier
Revision Date: 2013-03-06 11:56:30 UTC

* Urgency set to high as a security bug is fixed.
* debian/patches:
  - add 02_fix_CVE-2013-1812.patch from upstream: limit fetching file size
    and disable XML entity expansion. [CVE-2013-1812] (Closes: #702217).

Author: Cédric Boutillier
Revision Date: 2012-06-26 14:32:34 UTC

Bump build dependency on gem2deb to >= 0.3.0~