Package: jq / 1.4-2.1+deb8u1

Metadata

Package Version Patches format
jq 1.4-2.1+deb8u1 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
enable manpages.patch | (download)

Makefile.am | 1 1 + 0 - 0 !
1 file changed, 1 insertion(+)

 patch makefile to always generate the manpage.
disable valgrind tests.patch | (download)

configure.ac | 7 0 + 7 - 0 !
1 file changed, 7 deletions(-)

 disable valgrind tests
 valgrind is not supported on certain architectures. This patch disables the valgrind
 tests on these architectures so that a build can succeed nonetheless.
 .
 This is still needed because although valgrind exists on these platforms, it still
 fails execution.
remove unecessary rakefile deps.patch | (download)

docs/Rakefile | 82 0 + 82 - 0 !
1 file changed, 82 deletions(-)

 patch rakefile to allow for easier manpage generation
 This patch disable some of the dependencies that are not
 required to build the actual manpage.
patch version into build.patch | (download)

configure.ac | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 set release version manually.
 jq sets the build version by parsing the git branch. There is no git branch during
 package building however. This patch sets the version manually. The version can be
 looked up using `git describe --tags --match 'upstream*' | sed 's/^upstream\///'`.
disable shared lib.patch | (download)

Makefile.am | 16 8 + 8 - 0 !
1 file changed, 8 insertions(+), 8 deletions(-)

 disable building the shared library.
 Normally the jq binary is statically linked to it, instead we directly build against
 the source as it was done previously.
big endian fix.patch | (download)

configure.ac | 6 6 + 0 - 0 !
jv_dtoa.c | 1 0 + 1 - 0 !
2 files changed, 6 insertions(+), 1 deletion(-)

 fix big endian for jq

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=754754

package jq FTBFS for mips and other BE architectures.

This patch from upstream fixes this issue for me.
https://github.com/stedolan/jq/commit/20e629284f94e0c8a14e8425309c913b6ee5b280

The patch is attached.

stack exhaustion.patch | (download)

jv_print.c | 14 10 + 4 - 0 !
1 file changed, 10 insertions(+), 4 deletions(-)

 [patch] skip printing at max_depth and deeper

This addresses #1136, and mitigates a stack exhaustion when printing
a very deeply nested term.

Updated by hlieberman@debian.org for security backport to 1.4.

heap buffer overflow.patch | (download)

jv_parse.c | 4 2 + 2 - 0 !
1 file changed, 2 insertions(+), 2 deletions(-)

 [patch] heap buffer overflow in tokenadd() (fix #105)

This was an off-by one: the NUL terminator byte was not allocated on
resize.  This was triggered by JSON-encoded numbers longer than 256
bytes.