php-dompdf (0.6.1+dfsg-2ubuntu1+esm1) xenial-security; urgency=medium

  * SECURITY UPDATE: improper validation of user provided input
    - debian/patches/CVE-2014-501x.patch: add 0.6.2 hotfix patch which bundles
      CVE hotfixes from the upstream release.
    - debian/patches/CVE-2021-3838_2022-2400.patch: update resource URI
      validation and handling.
    - CVE-2014-5011
    - CVE-2014-5012
    - CVE-2014-5013
    - CVE-2021-3838
    - CVE-2022-2400

 -- Camila Camargo de Matos <camila.camargodematos@canonical.com>  Fri, 04 Aug 2023 08:46:37 -0300

php-dompdf (0.6.1+dfsg-2ubuntu1) xenial; urgency=medium

  * Update to PHP7.0 dependencies (LP: #1565939).

 -- Nishanth Aravamudan <nish.aravamudan@canonical.com>  Mon, 04 Apr 2016 11:31:14 -0700

php-dompdf (0.6.1+dfsg-2build1) xenial; urgency=medium

  * No-change rebuild against php 7

 -- Nish Aravamudan <nish.aravamudan@canonical.com>  Mon, 28 Mar 2016 22:19:47 +0000

php-dompdf (0.6.1+dfsg-2) unstable; urgency=medium

  * Document security issue fixed in last upstream version, and upload to
    unstable.

 -- David Prévot <taffit@debian.org>  Wed, 23 Apr 2014 15:23:50 -0400

php-dompdf (0.6.1+dfsg-1) experimental; urgency=medium

  * New upstream release, uploaded to experimental because of the php-font-lib
    dependency:
    - Fixes an arbitrary file read vulnerability, that requires
      DOMPDF_ENABLE_REMOTE (disabled by default) to be enabled.
      (Closes: #745619) [CVE-2014-2383]
  * Add ownCloud for Debian to uploaders
  * Bump standards version to 3.9.5
  * Use Files-Excluded feature of uscan
  * Use phpcomposer from pkg-php-tools
  * Ship upstream README.md
  * Update dependencies, as recommended upstream
  * Update copyright
  * Acknowledge upstream separation of cache and fonts
  * Update upstream changelog
  * Use internal CSS in example

 -- David Prévot <taffit@debian.org>  Sat, 12 Apr 2014 14:32:12 -0400

php-dompdf (0.6.0~beta3+dfsg0-1) unstable; urgency=low

  * Initial release (Closes: #567928)

 -- David Prévot <taffit@debian.org>  Sat, 23 Nov 2013 10:00:18 -0400
