diff --git a/debian/changelog b/debian/changelog
index 7edc974b48982af1671184cc1b2a5f7080cff1fa..dd1fecd94089c5eff61876e061b9edf2bdc2f3fd 100644 (file)
--- a/debian/changelog
+++ b/debian/changelog
-collectd (5.5.2-1) UNRELEASED; urgency=medium
+collectd (5.5.2-2) UNRELEASED; urgency=low
+ * debian/changelog:
+ - Set urgency back to low.
+ * debian/control:
+ - Update GCrypt's package name to libgcrypt20-dev.
+
+ -- Marc Fournier <marc@bl.uem.li> Wed, 21 Sep 2016 13:45:32 +0200
+
+collectd (5.5.2-1) unstable; urgency=high
* New upstream release.
- Fix heap overflow in the network plugin. Emilien Gaspar has identified a
GCrypt's gcry_control is sometimes called without checking its return
value for an error. This may cause the program to be initialized without
the desired, secure settings. (Closes: #832577)
+ * debian/patches:
+ - bts832577-gcry-control.patch: Update for 5.5.2. Mostly part of the new
+ upstream release, except for: Don't abort() if gcrypt initialization
+ failed.
+ - Drop bts823012_librrd8.patch; merged upstream.
+ * Rebuild with linux-libc-dev >= 4.6 (now in testing and unstable) to
+ accommodate a change to rtnl_link_stats64. Thanks to Gábor Gombás for
+ reporting this (Closes: #829634).
- -- Sebastian Harl <tokkee@debian.org> Thu, 28 Jul 2016 22:56:36 +0200
+ -- Sebastian Harl <tokkee@debian.org> Fri, 29 Jul 2016 00:02:11 +0200
collectd (5.5.1-5) unstable; urgency=low
-- Marc Fournier <marc.fournier@camptocamp.com> Fri, 21 Aug 2015 13:29:17 +0200
-collectd (5.4.1-6+deb8u1) jessie-security; urgency=medium
+collectd (5.4.1-6+deb8u1) jessie-security; urgency=high
* debian/patches/CVE-2016-6254.dpatch: Fix heap overflow in the network
plugin. Emilien Gaspar has identified a heap overflow in parse_packet(),