python-jwcrypto (0.8.0-1+deb11u1) bullseye-security; urgency=high * Non-maintainer upload by the Debian LTS team. * CVE-2024-28102: Prevent a potential denial of service (DoS) attack that could have resulted from passing in a malicious JWE token with a high compression ratio. When the server processed this token, it would have consumed a lot of memory and processing time. (Closes: #1065688) * Add debian/.gitlab-ci.yml. -- Chris Lamb Mon, 09 Sep 2024 11:40:08 +0100 python-jwcrypto (0.8.0-1) unstable; urgency=medium [ Debian Janitor ] * New upstream release. * Set debhelper-compat version in Build-Depends. * Set upstream metadata fields: Bug-Database, Repository, Repository- Browse. * Update standards version to 4.5.1, no changes needed. -- Timo Aaltonen Tue, 05 Jan 2021 11:49:19 +0200 python-jwcrypto (0.6.0-2) unstable; urgency=medium * compat, control: Bump compat to 12. * Switch to python3 only. (Closes: #937862) * control: Bump policy to 4.4.0. -- Timo Aaltonen Thu, 12 Sep 2019 00:04:33 +0300 python-jwcrypto (0.6.0-1) unstable; urgency=medium * New upstream release. (Closes: #925457) * control: Update vcs urls. * control: Drop X-Python-Version*. -- Timo Aaltonen Tue, 02 Apr 2019 09:05:15 +0300 python-jwcrypto (0.4.2-1) unstable; urgency=medium * New upstream release. * control: Bump policy to 4.1.2, no changes. * Bump debhelper to 10. -- Timo Aaltonen Sat, 23 Dec 2017 10:00:03 +0200 python-jwcrypto (0.3.2-1) unstable; urgency=medium * New upstream release. - CVE-2016-6298 * control, copyright, watch: Update upstream url. * watch: Fix tarball name. * control: Add vcs urls. * control: Bump policy to 3.9.8, no changes. -- Timo Aaltonen Mon, 19 Sep 2016 16:23:47 +0300 python-jwcrypto (0.2.1-1) unstable; urgency=low * Initial upload. (Closes: #800702) -- Timo Aaltonen Fri, 02 Oct 2015 09:24:49 +0300