cgit (0.10.2.git2.0.1-3+deb8u1) jessie-security; urgency=high

  * Non-maintainer upload by the Security Team.
  * CVE-2016-1899: Reflected XSS and header injection in mimetype query
    string (Closes: #812411)
  * CVE-2016-1900: Stored cross site scripting and header injection in
    filename parameter (Closes: #812411)
  * CVE-2016-1901: Integer overflow resulting in buffer overflow
    (Closes: #812411)
  * filters: apply HTML escaping.
    Addresses cross-site scripting vulnerability in via the
    txt2html filter.

 -- Salvatore Bonaccorso <carnil@debian.org>  Mon, 04 Apr 2016 08:41:52 +0200

cgit (0.10.2.git2.0.1-3) unstable; urgency=medium

  * Initial upload

 -- Alexander Wirt <formorer@debian.org>  Thu, 28 Aug 2014 16:26:24 -0700

cgit (0.10.2.git2.0.1-2) unstable; urgency=medium

  [ Nicolas Dandrimont ]
  * [c7b31d2] Return a 404 status code when a repo doesn't exist
  * [c8837ea] Add missing b-d for tests

 -- Alexander Wirt <formorer@debian.org>  Fri, 01 Aug 2014 06:58:39 +0200

cgit (0.10.2.git2.0.1-1) unstable; urgency=low

  * Initial packaging.

 -- Alexander Wirt <formorer@debian.org>  Fri, 01 Aug 2014 06:58:19 +0200
