File libfastjson.changes of Package libfastjson
-------------------------------------------------------------------
Wed May 3 20:13:04 UTC 2023 - Andreas Stieger <Andreas.Stieger@gmx.de>
- update to 1.2304.0:
* CVE-2020-12762: integer overflow and out-of-bounds write via
large JSON file (boo#1171479)
-------------------------------------------------------------------
Mon Jun 14 14:13:21 UTC 2021 - Jan Engelhardt <jengelh@inai.de>
- Remove --with-pic (no effect with --disable-static).
- Drop unsubstantiated claims from descriptions.
-------------------------------------------------------------------
Wed Feb 10 08:17:26 UTC 2021 - Dirk Müller <dmueller@suse.com>
- update to 0.99.9:
- add API fjson_object_get_uint()
- add API fjson_object_array_del_idx()
- bugfix for dangling pointer that causes segfault
The other functions assume that the memory is either set to NULL or a valid
json object. The array_list_del_idx function only moves the elements, but
does not set the pointer to null, which causes the same pointer to remain
in the list (outside of arr->length). Then, when array_list_put_idx is
called, the array_list_expand_internal leaps out, meaning that it has not
set the indices outside of the requested length to 0. array_list_put_idx
finds the pointer, tries to free it and a double free will be incurred,
because the actual element is still in the list.
-------------------------------------------------------------------
Thu May 24 16:08:09 CEST 2018 - kukuk@suse.de
- Use %license instead of %doc [bsc#1082318]
-------------------------------------------------------------------
Fri Jan 12 13:38:16 UTC 2018 - astieger@suse.com
- update to 0.99.8:
* make build under gcc7 with strict settings (warning==error)
* bugfix: constant key names not properly handled
* fix potentially invalid return value of fjson_object_iter_begin
* fix small potential memory leak in json_tokener
-------------------------------------------------------------------
Tue Nov 14 14:45:51 UTC 2017 - astieger@suse.com
- update to 0.99.7:
* add option for case-insensitive comparisons
* Remove userdata and custom-serialization functions
-------------------------------------------------------------------
Thu Aug 3 14:44:03 UTC 2017 - astieger@suse.com
- update to 0.99.6:
* fixes for platforms other than GNU/Linux
-------------------------------------------------------------------
Mon May 8 09:03:17 UTC 2017 - astieger@suse.com
- update to 0.99.5:
* fix floating point representation when fractional part is missing
* m4: fix detection of atomics
* add fjson_object_dump() and fjson_object_write() functions
-------------------------------------------------------------------
Fri Jan 27 17:54:18 CET 2017 - ndas@suse.de
- This library is needed for latest rsyslog(fate#320546)
-------------------------------------------------------------------
Thu Aug 4 08:01:41 UTC 2016 - astieger@suse.com
- update to 0.99.4:
* fix tautology comparison in tautology in `fjson_object_iter_equal`
drop 0001-Follow-up-to-d4b3a2d-fix-tautology-comparison-in-fjs.patch
* fix build problems with gcc6
drop 0002-Follow-up-to-8c49ee7-fix-build-with-gcc6.patch
-------------------------------------------------------------------
Thu Jul 14 16:56:15 UTC 2016 - astieger@suse.com
- update 0.99.3:
* exit() is no longer called in unexpected situations
* fjson_version now returns configure VERSION
* fix invalid Unicode representation for some non US-ASCII
- add patch to fix compile (and logic) error
0001-Follow-up-to-d4b3a2d-fix-tautology-comparison-in-fjs.patch
- fix build with gcc6, adding
0002-Follow-up-to-8c49ee7-fix-build-with-gcc6.patch
-------------------------------------------------------------------
Sun Mar 13 06:35:51 UTC 2016 - astieger@suse.com
- update to 0.99.2
* new API: json_object_get_member_count()
* make comaptible with autoconf < 2.64
* 0.99.1 was not released
-------------------------------------------------------------------
Sat Jan 2 20:29:32 UTC 2016 - astieger@suse.com
- initial package
