--- libgig/trunk/ChangeLog	2017/07/23 18:18:30	3327
+++ libgig/trunk/ChangeLog	2018/01/30 20:17:12	3414
@@ -1,4 +1,23 @@
-Version SVN trunk
+Version SVN trunk (?)
+
+  * src/gig.cpp, src/gig.h:
+    - Fixed Doxygen API comments for enum types (currently latest Doxygen
+      [v1.8.13] only supports C comments in macro arguments expansion, but
+      not C++ comments; see <FindDefineArgs> lexer rules in src/pre.l of
+      the Doxygen source code, which currently also filter out new line
+      \n chars).
+    - Added new method File::CountSamples().
+    - Added new method File::CountInstruments().
+
+  * src/Serialization.cpp, src/Serialization.h:
+    - Hide pure internal declarations from header file to avoid numerous
+      compiler warnings when building and linking against the public API.
+
+  * src/RIFF.cpp, src/RIFF.h:
+    - Fix: Calling File::SetMode() left an undefined file handle on Windows and
+      caused a resource leak
+
+Version 4.1.0 (25 Nov 2017)
   * general changes:
     - removed 2 GB limitation when loading a gig or DLS file
     - using now native integer size where appropriate
@@ -10,6 +29,11 @@
     - print compiler warning if no RTTI available
     - Fixed potential crash in command line tools gig2stereo, korg2gig,
       korgdump and sf2extract.
+    - Fixed CVE-2017-12950, CVE-2017-12952, CVE-2017-12953
+      (original patch by Paul Brossier, slightly modified).
+    - Debian: Fixed packaging error about invalid substitution variable
+      "Source-Version".
+    - Raised Debian compatibility level to Debian 9 "Stretch".
 
   * src/gig.cpp, src/gig.h:
     - fixed bug in Script::SetGroup: the script chunk wasn't moved
@@ -46,6 +70,10 @@
       DimensionRegion::EG1Options and DimensionRegion::EG2Options as an
       extension to the gig file format, which allows to override the default
       behavior of the first two EGs' state machines.
+    - Fixed undefined behavior when loading a gig file with invalid
+      velocity curve parameters (fixes CVE-2017-12951).
+    - Fixed undefined behavior when loading a gig file with invalid wave
+      pool index number (fixes CVE-2017-12954).
 
   * src/DLS.cpp, src/DLS.h:
     - Sample: wave pool offsets are now 64 bits (to allow support for files
@@ -88,6 +116,11 @@
       representations like "yes", "no", "true", "false" as expected.
     - Exception class now has a variadic constructor which allows to add
       textual format specifiers like with printf().
+    - DataType fix: Retain backward compatibility to older versions of native
+      C++ classes/structs.
+
+  * src/Akai.cpp:
+    - Fixed compilation error with recent, more strict compilers.
 
   * src/tools/akaidump.cpp, src/tools/akaiextract.cpp:
     - improved output of non-ascii characters in usage messages