Control: tags -1 patch
I am uploading the attached changes as NMU.
diff -Nru rapidjson-1.1.0+dfsg2/debian/changelog rapidjson-1.1.0+dfsg2/debian/changelog
--- rapidjson-1.1.0+dfsg2/debian/changelog 2024-07-26 13:03:47.000000000 +0200
+++ rapidjson-1.1.0+dfsg2/debian/changelog 2025-04-25 10:11:59.000000000 +0200
@@ -1,3 +1,10 @@
+rapidjson (1.1.0+dfsg2-7.4) unstable; urgency=medium
+
+ * Non-maintainer upload.
+ * Fix CVE-2024-38517 with upstream patch. (Closes: #1083185)
+
+ -- Bastian Germann <
[email protected]> Fri, 25 Apr 2025 10:12:00 +0200
+
rapidjson (1.1.0+dfsg2-7.3) unstable; urgency=medium
* Non-maintainer upload.
diff -Nru rapidjson-1.1.0+dfsg2/debian/patches/CVE-2024-38517.patch rapidjson-1.1.0+dfsg2/debian/patches/CVE-2024-38517.patch
--- rapidjson-1.1.0+dfsg2/debian/patches/CVE-2024-38517.patch 1970-01-01 01:00:00.000000000 +0100
+++ rapidjson-1.1.0+dfsg2/debian/patches/CVE-2024-38517.patch 2025-04-25 10:05:00.000000000 +0200
@@ -0,0 +1,56 @@
+Origin: upstream, 8269bc2bc289e9d343bae51cdf6d23ef0950e001
+From: Florin Malita <
[email protected]>
+Date: Tue, 15 May 2018 22:48:07 -0400
+Subject: Prevent int underflow when parsin