Bump changelog to 5.5.2-1.

author Sebastian Harl <sh@tokkee.org>

Thu, 28 Jul 2016 20:58:17 +0000 (22:58 +0200)

committer Sebastian Harl <sh@tokkee.org>

Thu, 28 Jul 2016 20:58:17 +0000 (22:58 +0200)
author Sebastian Harl <sh@tokkee.org>
Thu, 28 Jul 2016 20:58:17 +0000 (22:58 +0200)
committer Sebastian Harl <sh@tokkee.org>
Thu, 28 Jul 2016 20:58:17 +0000 (22:58 +0200)
diff --git a/debian/changelog b/debian/changelog

index 4bbcd8857f1562f1f8e0b45b037f8649b69ce23c..7edc974b48982af1671184cc1b2a5f7080cff1fa 100644 (file)
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,18 @@
+collectd (5.5.2-1) UNRELEASED; urgency=medium
+
+  * New upstream release.
+    - Fix heap overflow in the network plugin. Emilien Gaspar has identified a
+      heap overflow in parse_packet(), the function used by the network plugin
+      to parse incoming network packets. Thanks to Florian Forster for
+      reporting the bug in Debian. (Closes: #832507, CVE-2016-6254)
+    - Fix improper usage of gcry_control. A team of security researchers at
+      Columbia University and the University of Virginia discovered that
+      GCrypt's gcry_control is sometimes called without checking its return
+      value for an error. This may cause the program to be initialized without
+      the desired, secure settings. (Closes: #832577)
+
+ -- Sebastian Harl <tokkee@debian.org>  Thu, 28 Jul 2016 22:56:36 +0200
+
  collectd (5.5.1-5) unstable; urgency=low
  
    * debian/control, debian/rules:
author	Sebastian Harl <sh@tokkee.org>
	Thu, 28 Jul 2016 20:58:17 +0000 (22:58 +0200)
committer	Sebastian Harl <sh@tokkee.org>
	Thu, 28 Jul 2016 20:58:17 +0000 (22:58 +0200)