X-Git-Url: https://ruderich.org/simon/gitweb/?a=blobdiff_plain;f=NEWS;h=188dcc55d5a84377be3965d7e19d4e5cb6534028;hb=0798b6d8fc65dd5fe2a975789dea153a96dcac89;hp=798589eaf851324fd79a298c6b85eeefdf2b5978;hpb=aa920ccd10cdfc8a97f492b5061724558091cb92;p=blhc%2Fblhc.git

diff --git a/NEWS b/NEWS
index 798589e..188dcc5 100644
--- a/NEWS
+++ b/NEWS
@@ -4,6 +4,28 @@ NEWS
 Version 0.XX
 ------------
 
+- Sync architecture specific hardening support with dpkg 1.19.7.
+- Fix architecture detection with recent dpkg-buildpackage versions; reported
+  by Ross Vandegrift, patch from Mathieu Parent (Debian bug #929503).
+- Fix false positive in non-verbose check for python setuptools; reported by
+  Simon McVittie (Debian Bug #930993).
+
+
+Version 0.09
+------------
+
+- Detect restore of -D_FORTIFY_SOURCE=2 after it was overwritten by
+  -D_FORTIFY_SOURCE=0 or 1 or -U_FORTIFY_SOURCE; reported by Mike Hommey
+  (Debian bug #898332).
+- Detect overwrite of -fstack-protector options with -fno-stack-protector
+  (same for -fstack-protector-all and -fstack-protector-strong).
+- Don't treat hexdumps which contain "cc" as compiler lines; reported by Kurt
+  Roeckx (Debian bug #899137).
+
+
+Version 0.08
+------------
+
 - Support new dpkg versions which replaced Dpkg::Arch's debarch_to_debtriplet
   with debarch_to_debtuple (Debian Bug #844393), reported by Johannes Schauer.
 - Support Open MPI mpicc/mpicxx compiler wrappers to prevent false positives
@@ -18,6 +40,9 @@ Version 0.XX
   detect if the compiler applied PIE internally (c.f. Debian Bug 845339).
 - Add --line-numbers command line option
 - Sync architecture specific hardening support with dpkg 1.19.0.5.
+- Use proper look back for non-verbose detection if DEB_BUILD_OPTIONS=parallel
+  is present. Previously it was too small causing false-positives if the
+  option was detected.
 
 
 Version 0.07