[ubuntu/noble-proposed] ring 20230922.0~ds2-1ubuntu1 (Accepted)

Gianfranco Costamagna locutusofborg at debian.org
Mon Dec 4 09:34:12 UTC 2023 

ring (20230922.0~ds2-1ubuntu1) noble; urgency=medium

  * Merge from Debian unstable. Remaining changes:
    - SECURITY UPDATE: Remote Code Execution
      - debian/patches/CVE-2021-37706.patch: fixed a RCE in PJSIP module
      - CVE-2021-37706

ring (20230922.0~ds2-1) unstable; urgency=medium

  * Use system libraries for md4c and tidy (Closes: #1053933)
    - debian/copyright: Add 3rdparty/md4c/* and 3rdparty/tidy-html5/*
      to Files-Excluded.
    - debian/control: Add libmd4c-dev, libmd4c-html0-dev, and
      libtidy-dev to Build-Depends.
    - debian/patches/2020-system-md4c-tidy.patch: Patch to use system
      libraries for md4c and tidy, including using the correct include
      paths.
    - debian/source/lintian-overrides: Drop the no longer relevant
      overrides concerning 3rdparty/tidy-html5/.

ring (20230922.0~ds1-1) unstable; urgency=medium

  * New upstream release (Closes: #1051909)
  * Add patch for fixing CVE-2023-27585, which is already fixed in the
    main pjproject upstream of jami as well as in jami's vendored copy
    of pjproject, but not included as part of the 20230922.0 release
    - debian/patches/CVE-2023-27585.patch
  * Replace libdbus-c++-dev with libsdbus-c++-dev, following upstream
    - debian/control
  * Bump Build-Depends on libopendht-dev (>= 3.0.0)
    - debian/control
  * Drop upstream patches included in this new release, as well as one
    that is no longer needed
    - debian/patches/d5e6509975bfaa67f7b3c54db72336b810454fc2.patch
    - debian/patches/bfa5a93114266caf791ff62c84918249c6d75bdf.patch
    - debian/patches/fc975f0cacde4b06c6adde3d7f0c02f71abfb38c.patch
    - debian/patches/1010-cmake-options.patch
  * Add libsdbus-c++-bin to Build-Depends to get the sdbus-c++-xml2cpp
    utility needed by daemon/bin/Makefile.am
    - debian/control
  * Add libsystemd-dev to Build-Depends, needed to successfully link
    against sdbus-cpp
    - debian/control
  * Update atomic library workaround for armel and mipsel
    - debian/rules
  * Address lintian warning and errors
    - debian/copyright: Drop old entry to address:
      W: ring source: superfluous-file-pattern
      src/libclient/web-chatview/linkify* [debian/copyright:81]
    - debian/source/lintian-overrides: Silence superfluous errors like
      E: ring source: source-is-missing
      [2rdparty/tidy-html5/regression_testing/cases/github-cases/case-946 at 1.html]
  * Remove duplicate line
      - debian/rules
  * Update patch to remove fuzz so it applies cleanly
    - debian/patches/2000-jsoncpp-rename.patch
  * Drop no longer needed patch
    - debian/patches/2010-dont-build-gnutls.patch
  * Rename debian/patches/2020-dont-build-msgpack.patch to combine the
    diffs for disabling forced builds and add asio and natpmp
    - debian/patches/2010-dont-force-build-pkgs.patch
  * Bump Build-Depends on libgnutls28-dev (>= 3.6.7)
    - debian/control

Date: Mon, 04 Dec 2023 10:22:49 +0100
Changed-By: Gianfranco Costamagna <locutusofborg at debian.org>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/ring/20230922.0~ds2-1ubuntu1
-------------- next part --------------
Format: 1.8
Date: Mon, 04 Dec 2023 10:22:49 +0100
Source: ring
Built-For-Profiles: noudeb
Architecture: source
Version: 20230922.0~ds2-1ubuntu1
Distribution: noble
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Gianfranco Costamagna <locutusofborg at debian.org>
Closes: 1051909 1053933
Changes:
 ring (20230922.0~ds2-1ubuntu1) noble; urgency=medium
 .
   * Merge from Debian unstable. Remaining changes:
     - SECURITY UPDATE: Remote Code Execution
       - debian/patches/CVE-2021-37706.patch: fixed a RCE in PJSIP module
       - CVE-2021-37706
 .
 ring (20230922.0~ds2-1) unstable; urgency=medium
 .
   * Use system libraries for md4c and tidy (Closes: #1053933)
     - debian/copyright: Add 3rdparty/md4c/* and 3rdparty/tidy-html5/*
       to Files-Excluded.
     - debian/control: Add libmd4c-dev, libmd4c-html0-dev, and
       libtidy-dev to Build-Depends.
     - debian/patches/2020-system-md4c-tidy.patch: Patch to use system
       libraries for md4c and tidy, including using the correct include
       paths.
     - debian/source/lintian-overrides: Drop the no longer relevant
       overrides concerning 3rdparty/tidy-html5/.
 .
 ring (20230922.0~ds1-1) unstable; urgency=medium
 .
   * New upstream release (Closes: #1051909)
   * Add patch for fixing CVE-2023-27585, which is already fixed in the
     main pjproject upstream of jami as well as in jami's vendored copy
     of pjproject, but not included as part of the 20230922.0 release
     - debian/patches/CVE-2023-27585.patch
   * Replace libdbus-c++-dev with libsdbus-c++-dev, following upstream
     - debian/control
   * Bump Build-Depends on libopendht-dev (>= 3.0.0)
     - debian/control
   * Drop upstream patches included in this new release, as well as one
     that is no longer needed
     - debian/patches/d5e6509975bfaa67f7b3c54db72336b810454fc2.patch
     - debian/patches/bfa5a93114266caf791ff62c84918249c6d75bdf.patch
     - debian/patches/fc975f0cacde4b06c6adde3d7f0c02f71abfb38c.patch
     - debian/patches/1010-cmake-options.patch
   * Add libsdbus-c++-bin to Build-Depends to get the sdbus-c++-xml2cpp
     utility needed by daemon/bin/Makefile.am
     - debian/control
   * Add libsystemd-dev to Build-Depends, needed to successfully link
     against sdbus-cpp
     - debian/control
   * Update atomic library workaround for armel and mipsel
     - debian/rules
   * Address lintian warning and errors
     - debian/copyright: Drop old entry to address:
       W: ring source: superfluous-file-pattern
       src/libclient/web-chatview/linkify* [debian/copyright:81]
     - debian/source/lintian-overrides: Silence superfluous errors like
       E: ring source: source-is-missing
       [2rdparty/tidy-html5/regression_testing/cases/github-cases/case-946 at 1.html]
   * Remove duplicate line
       - debian/rules
   * Update patch to remove fuzz so it applies cleanly
     - debian/patches/2000-jsoncpp-rename.patch
   * Drop no longer needed patch
     - debian/patches/2010-dont-build-gnutls.patch
   * Rename debian/patches/2020-dont-build-msgpack.patch to combine the
     diffs for disabling forced builds and add asio and natpmp
     - debian/patches/2010-dont-force-build-pkgs.patch
   * Bump Build-Depends on libgnutls28-dev (>= 3.6.7)
     - debian/control
Checksums-Sha1:
 c0741694e4a98b7758dc972eb50410608a47c037 3628 ring_20230922.0~ds2-1ubuntu1.dsc
 7cc2eaf4ce71398c68a3f4bc39aebeb4364f5956 25776 ring_20230922.0~ds2-1ubuntu1.debian.tar.xz
 751e1e657976514312414a321667f6db14cabfe6 21340 ring_20230922.0~ds2-1ubuntu1_source.buildinfo
Checksums-Sha256:
 7b1c758f96824b5b8b60f87f6389825d8236a38f339fe7183ca6d482c9f92063 3628 ring_20230922.0~ds2-1ubuntu1.dsc
 f3dc66134f961f0487b3c8c04185e85d39cd52c9145e9f574094685f3aac9feb 25776 ring_20230922.0~ds2-1ubuntu1.debian.tar.xz
 4dab92fa094e933b8383be6903f50e94a4ae2acc381449f7bb492c71976ae789 21340 ring_20230922.0~ds2-1ubuntu1_source.buildinfo
Files:
 6150d68992885d89ed2a93ac61f40c93 3628 comm optional ring_20230922.0~ds2-1ubuntu1.dsc
 c7f6694c2168653b85ce80904ce603d0 25776 comm optional ring_20230922.0~ds2-1ubuntu1.debian.tar.xz
 781d888f732f9af6c9560fa479861f59 21340 comm optional ring_20230922.0~ds2-1ubuntu1_source.buildinfo
Original-Maintainer: Debian VoIP Team <pkg-voip-maintainers at lists.alioth.debian.org>

More information about the noble-changes mailing list