Ubuntu
w3m package

Merge w3m from Debian unstable for oracular

Bug #2064480 reported by Bryce Harrington
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
w3m (Ubuntu)
New
Undecided
Unassigned

Bug Description

Scheduled-For: Backlog
Upstream: tbd
Debian: 0.5.3+git20230121-2
Ubuntu: 0.5.3+git20230121-2ubuntu5

If it turns out this needs a sync rather than a merge, please change the tag 'needs-merge' to 'needs-sync', and (optionally) update the title as desired.

If this merge pulls in a new upstream version, also consider adding an entry to the Oracular Release Notes: https://discourse.ubuntu.com/c/release/38

### New Debian Changes ###

w3m (0.5.3+git20230121-2) unstable; urgency=medium

  * Update German message catalogue (closes: #1029933)

 -- Tatsuya Kinoshita <email address hidden> Sun, 29 Jan 2023 21:03:49 +0900

w3m (0.5.3+git20230121-1) unstable; urgency=medium

  [ Debian Janitor ]
  * Remove 1 obsolete maintscript entry.
  * Update renamed lintian tag names in lintian overrides.

  [ Tatsuya Kinoshita ]
  * Update Standards-Version to 4.6.2
  * Update debian/copyright
  * Update config options
  * New upstream version 0.5.3+git20230121
    - Fix m17n backspace handling causes out-of-bounds write in checkType
      [CVE-2022-38223] (closes: #1019599)
    - Fix LESSOPEN format string problem (closes: #991608)
    - Fix browsing local file fails when argv_is_url
      (closes: #537761, #946440)
    - Skip soft hyphen when reading token (closes: #830173)
    - Only read a first title to avoid titles in svg (closes: #1020215)
    - Handle failed system calls (closes: #398989)
    - Recognize link targets in dfn elements (closes: #1018696)
    - New option -H to use high-intensity colors (closes: #626291)
    - Update German message catalogue (closes: #1011945)

 -- Tatsuya Kinoshita <email address hidden> Sat, 21 Jan 2023 11:57:19 +0900

w3m (0.5.3+git20220429-1) unstable; urgency=medium

  * Update config options
  * Move bzip2 to Suggests
  * Add brotli to Suggests
  * Add compface to Suggests
  * Simplify configure options
  * Remove unneeded compile options
  * Drop old config file handling (closes: #996099)
  * Remove empty maintainer scripts
  * Replace mime-support with media-types and mailcap in Suggests
    (closes: #1009766)
  * Update debian/copyright
  * Update Build-Depends with build profile annotations (closes: #870026)
  * Drop debian/patches
  * Update Standards-Version to 4.6.0
  * New upstream version 0.5.3+git20220429
    - Mention -insecure option as a workaround for SSL error
      (closes: #900984, #934493, #953045)
    - Prevent GC warnings of repeated allocation
      (closes: #746701, #832407, #862382)
    - Fix fail to render over 32767 lines in a table cell (closes: #838952)
    - Updated German translation (closes: #1003936)

 -- Tatsuya Kinoshita <email address hidden> Fri, 29 Apr 2022 11:55:11 +0900

w3m (0.5.3+git20210102-6) unstable; urgency=medium

  * Update 030_str-overflow.patch to avoid zero size allocation in Str.c

 -- Tatsuya Kinoshita <email address hidden> Mon, 01 Mar 2021 06:59:20 +0900

w3m (0.5.3+git20210102-5) unstable; urgency=medium

  * Update 030_str-overflow.patch to fix overflow due to Str.c
  * New patch 040_libwc-overflow.patch to fix integer overflow in libwc
  * Revert 020_ssl-ca.patch and use ssl_ca_path to keep old behavior

 -- Tatsuya Kinoshita <email address hidden> Sun, 28 Feb 2021 16:57:53 +0900

w3m (0.5.3+git20210102-4) unstable; urgency=medium

  * New patch 030_str-overflow.patch to fix overflow due to Str.c

 -- Tatsuya Kinoshita <email address hidden> Fri, 26 Feb 2021 20:17:10 +0900

w3m (0.5.3+git20210102-3) unstable; urgency=medium

  * New patch 020_ssl-ca.patch to work ssl_ca_file and ssl_ca_path
  * Add bzip2 to Recommends
  * Install ChangeLog.1
  * Use ssl_ca_file instead of ssl_ca_path
  * Reduce sample extbrowsers

 -- Tatsuya Kinoshita <email address hidden> Sun, 14 Feb 2021 01:00:05 +0900

w3m (0.5.3+git20210102-2) unstable; urgency=medium

  * New patch 010_section.patch to disable <section> behaves as <hr>

 -- Tatsuya Kinoshita <email address hidden> Mon, 18 Jan 2021 22:42:27 +0900

w3m (0.5.3+git20210102-1) unstable; urgency=medium

  [ Debian Janitor ]
  * Wrap long lines in changelog entries: 0.2.1-15, 0.2.1-12, 0.1.9-5,
    0.1.9-4, 0.1.9-3, 0.0.19991015-2, 0.0.19990916-1, 0.0.19990815-2,
    0.0.19990526-1.
  * Set upstream metadata fields: Archive.

### Old Ubuntu Delta ###

w3m (0.5.3+git20230121-2ubuntu5) noble; urgency=high

  * No change rebuild against libimlib2t64, libssl3t64.

 -- Julian Andres Klode <email address hidden> Mon, 08 Apr 2024 16:51:49 +0200

w3m (0.5.3+git20230121-2ubuntu4) noble; urgency=medium

  * No-change rebuild for CVE-2024-3094

 -- Steve Langasek <email address hidden> Sun, 31 Mar 2024 17:25:10 +0000

w3m (0.5.3+git20230121-2ubuntu3) noble; urgency=medium

  * No-change rebuild against imlib2 t64.

 -- Matthias Klose <email address hidden> Sun, 17 Mar 2024 18:06:46 +0100

w3m (0.5.3+git20230121-2ubuntu2) noble; urgency=medium

  * No-change rebuild against libssl3t64

 -- Steve Langasek <email address hidden> Tue, 05 Mar 2024 02:12:32 +0000

w3m (0.5.3+git20230121-2ubuntu1) noble; urgency=medium

  * SECURITY UPDATE: Out-of-bounds write
    - debian/patches/CVE-2023-4255.patch: Fix OOB access due to multiple backspaces
      in etc.c.
    - CVE-2023-4255

 -- Leonidas Da Silva Barbosa <email address hidden> Mon, 08 Jan 2024 09:11:09 -0300

Bryce Harrington (bryce)
Changed in w3m (Ubuntu):
milestone: none → ubuntu-24.10-beta
Bryce Harrington (bryce)
Changed in w3m (Ubuntu):
milestone: ubuntu-24.10-beta → none
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.