libcdio (2.1.0-3ubuntu0.2) jammy-security; urgency=medium
* SECURITY UPDATE: buffer overflow
- debian/patches/CVE-2024-36600-1.patch: Allocates space for
growth and additional buffer in lib/iso9660/rock.c
- debian/patches/CVE-2024-36600-2.patch: Limits the maximum read
count to prevent an overflow in lib/driver/_cdio_stdio.c
- debian/patches/CVE-2024-36600-3.patch: Adds input validation to
unicode16_decode function in lib/udf/udf_fs.c
- debian/patches/CVE-2024-36600-4.patch: Adds bounds checking for
directory buffer size and total size calculation in
lib/iso9660/iso9660_fs.c
- debian/patches/CVE-2024-36600-5.patch: Fixes overflow in iso9660
dir read (32-bit) in lib/iso9660/iso9660_fs.c
- debian/patches/CVE-2024-36600-6.patch: Checks the validity of
i_extended_attr member in udf_get_lba() in lib/udf/udf_fs.c
- debian/patches/CVE-2024-36600-7.patch: Adds 32-bit size test
only when needed in lib/iso9660/iso9660_fs.c
- CVE-2024-36600
-- Bruce Cable <bruce.cable@canonical.com> Mon, 24 Jun 2024 16:01:03 +1000
libcdio (2.1.0-3build1) jammy; urgency=high
* No change rebuild for ppc64el baseline bump.
-- Julian Andres Klode <juliank@ubuntu.com> Thu, 24 Mar 2022 13:10:54 +0100
libcdio (2.1.0-3) unstable; urgency=medium
* Fix FTBFS with upstream patch (Closes: #997166).
-- Gabriel F. T. Gomes <gabriel@debian.org> Tue, 02 Nov 2021 13:37:42 -0300
libcdio (2.1.0-2) unstable; urgency=medium
* Upload to unstable.
-- Gabriel F. T. Gomes <gabriel@debian.org> Sat, 25 Jul 2020 20:14:10 -0300
libcdio (2.1.0-1) experimental; urgency=medium
[Gabriel F. T. Gomes]
* Update upstream version.
* Library SONAME bump.
* Adopt package (Closes: #881719).
[Vasyl Gello]
* Add C++ libraries (Closes: #703292).
-- Gabriel F. T. Gomes <gabriel@debian.org> Thu, 09 Jul 2020 22:12:57 -0300
libcdio (2.0.0-2) unstable; urgency=medium
* Upload to unstable.
-- Matthias Klose <doko@debian.org> Thu, 14 Jun 2018 19:32:26 +0200
libcdio (2.0.0-1) experimental; urgency=medium
* QA upload.
* New upstream version.
* Library soname bumps and symbol files updates.
-- Matthias Klose <doko@debian.org> Tue, 30 Jan 2018 17:04:53 +0100
libcdio (1.0.0-2) unstable; urgency=medium
* Fix setting LIBCDIO_VERSION, taken from upstream.
-- Matthias Klose <doko@debian.org> Wed, 06 Dec 2017 09:05:47 +0100
libcdio (1.0.0-1) unstable; urgency=medium
* QA upload.
* New upstream version.
* Build using libncursesw5-dev.
-- Matthias Klose <doko@debian.org> Mon, 04 Dec 2017 20:51:22 +0100
libcdio (0.94-1) unstable; urgency=medium
* QA upload.
* Orphan the package. See #881719.
* Upload to unstable.
* Mark development packages as M-A: same.
-- Matthias Klose <doko@debian.org> Wed, 15 Nov 2017 00:00:11 +0100
# For older changelog entries, run 'apt-get changelog libcdio19'
Generated by dwww version 1.14 on Thu Sep 4 17:08:56 CEST 2025.