Branches for Vivid

Author: Steve Beattie
Revision Date: 2015-09-21 13:19:39 UTC

fake sync from Debian

Author: Horacio Durán
Revision Date: 2015-09-22 17:11:44 UTC

Updated libdeps

Author: Marco Trevisan (Treviño)
Revision Date: 2015-09-22 09:44:21 UTC

[ Marco Trevisan (Treviño) ]
* No change rebuild, to get ddebs built for vivid

[ CI Train Bot ]
* No-change rebuild.

Author: Brian Murray
Revision Date: 2015-09-21 13:05:19 UTC

* Support upgrading from Trusty to Vivid directly since Utopic is End of
  Life. (LP: #1497024)
* DistUpgrade/build-tarball.sh: Copy the contents of demoted.cfg so it is
  not a broken symlink. (LP: #1498193)

Author: Timo Jyrinki
Revision Date: 2015-09-18 14:04:10 UTC

Use a more proper install method and only use the signatures from the upstream xpi

Author: Ben Howard
Revision Date: 2015-09-17 08:59:29 UTC

Drop 'depends' for cloud-init (LP: #1496730).

Author: dann frazier
Revision Date: 2015-09-16 13:56:48 UTC

libgo: Fix PR go/67508, rewrite lfstack packing/unpacking to look more
like that in Go (Michael Hudson). LP: #1472650.

Author: Mathieu Trudel-Lapierre
Revision Date: 2015-09-16 13:01:48 UTC

Properly handle systems on which there may be more than 26 disks, and our
boot partition meant to be on a disk named [hsv]d[a-z][a-z]. (LP: #1479213)

Author: Ben Howard
Revision Date: 2015-09-17 08:59:29 UTC

Drop 'depends' for cloud-init (LP: #1496730).

Author: Mathieu Trudel-Lapierre
Revision Date: 2015-09-01 12:37:57 UTC

* New upstream release. (LP: #1467542)
* Dropped patches; applied upstream:
  - 0001-external-gard-add-Makefile-targets-to-make-debian-pa.patch
  - 0001-Honor-compilation-flags-passed-from-the-environment.patch
  - 0001-Fixes-for-compilation-with-Werror.patch
* debian/patches/uninitialized_uses.patch: fix up uninitialized variables
  that make our build fail.

Author: Marc Deslauriers
Revision Date: 2015-09-11 13:36:39 UTC

* SECURITY UPDATE: Drives automount while screen is locked
  (LP: #1438870)
  - plugins/automount/gsd-automount-manager.c: also monitor Unity screen
    lock.
  - CVE-2015-1319

Author: Eric Desrochers
Revision Date: 2015-09-01 10:50:22 UTC

* Fix use-after-free in routing socket code (LP: #1481388)
  - debian/patches/use-after-free-in-routing-socket.patch
    fix logic in ntpd/ntp_io.c
* Fix to ignore ENOBUFS on routing netlink socket
  - debian/patches/ignore-ENOBUFS-on-routing-netlink-socket.patch
    fix logic in ntpd/ntp_io.c

Author: Carlos Maddela
Revision Date: 2015-09-16 02:11:55 UTC

Updated changelog.

Author: Colin Ian King
Revision Date: 2015-09-11 13:19:20 UTC

Backport to vivid, fix debug spam in log (LP: #1494461)

Author: Marc Deslauriers
Revision Date: 2015-09-11 13:36:39 UTC

* SECURITY UPDATE: Drives automount while screen is locked
  (LP: #1438870)
  - plugins/automount/gsd-automount-manager.c: also monitor Unity screen
    lock.
  - CVE-2015-1319

Author: Colin Ian King
Revision Date: 2015-09-11 13:19:20 UTC

Backport to vivid, fix debug spam in log (LP: #1494461)

Author: Rafael David Tinoco (Inaddy)
Revision Date: 2015-09-01 11:53:11 UTC

* Added upstream Mellanox fixes to biosdevname per their request: (LP: #1455871)
    + d/p/Stop-reading-VPD-data-once-VPD-R-section-has-been-re.patch
    + d/p/Scan-for-devid-for-Mellanox-cards.patch
    + d/p/Add-port-structure-to-PCI-device-handle-multiple-por.patch
    + d/p/Add-port-code-for-Mellanox-driver.patch
    + d/p/Add-dev_port-attribute-for-new-Mellanox-driver.patch

Author: dann frazier
Revision Date: 2015-09-10 13:01:56 UTC

d/p/NUMA-is-not-available-fix.patch: Avoid crashes when NUMA
is not available. (LP: #1469214)

Author: Marc Deslauriers
Revision Date: 2015-09-10 07:07:57 UTC

* SECURITY UPDATE: uninitialized memory reads (LP: #1449225)
  - debian/patches-freetype/savannah-bug-41309.patch: fix use of
    uninitialized data in src/cid/cidload.c, src/psaux/psobjs.c,
    src/type1/t1load.c, src/type42/t42parse.c.
  - No CVE number
* SECURITY UPDATE: denial of service via infinite loop in parse_encode
  (LP: #1492124)
  - debian/patches-freetype/savannah-bug-41590.patch: protect against
    invalid charcode in src/type1/t1load.c.
  - No CVE number

Author: Marc Deslauriers
Revision Date: 2015-09-10 07:07:57 UTC

* SECURITY UPDATE: uninitialized memory reads (LP: #1449225)
  - debian/patches-freetype/savannah-bug-41309.patch: fix use of
    uninitialized data in src/cid/cidload.c, src/psaux/psobjs.c,
    src/type1/t1load.c, src/type42/t42parse.c.
  - No CVE number
* SECURITY UPDATE: denial of service via infinite loop in parse_encode
  (LP: #1492124)
  - debian/patches-freetype/savannah-bug-41590.patch: protect against
    invalid charcode in src/type1/t1load.c.
  - No CVE number

Author: Michael Vogt
Revision Date: 2015-07-15 21:14:40 UTC

cherry pick deb274226783ab886bdb44876944e156757efe2b to
make msiexec work again (LP: #1383214)

Author: Mathieu Trudel-Lapierre
Revision Date: 2015-09-01 12:37:57 UTC

* New upstream release. (LP: #1467542)
* Dropped patches; applied upstream:
  - 0001-external-gard-add-Makefile-targets-to-make-debian-pa.patch
  - 0001-Honor-compilation-flags-passed-from-the-environment.patch
  - 0001-Fixes-for-compilation-with-Werror.patch
* debian/patches/uninitialized_uses.patch: fix up uninitialized variables
  that make our build fail.

Author: CI Train Bot Account
Revision Date: 2015-08-21 12:03:03 UTC

[ Marco Trevisan (Treviño) ]
IndicatorAppmenu: make sure we call window_menu_entry_activate also
in AllMenus mode (LP: #1430059)

Author: Stéphane Graber
Revision Date: 2015-08-27 12:06:16 UTC

Wandboard: Use /dev/disk/by-path/platform-2198000.usdhc-part1
instead of the hardcoded mmcblk1p1, this should make things work on
boards with just a single microSD card in. (LP: #1306841)

Author: Jorge Niedbalski
Revision Date: 2015-08-07 11:53:37 UTC

debian/patches/fix-1368545.patch: Changing the value type of
http_connect_timeout to IntOpt. (LP: #1368545)

Author: Marc Deslauriers
Revision Date: 2015-08-28 15:41:23 UTC

* SECURITY UPDATE: denial of service via double free flaw
  - debian/patches/CVE-2015-5177.patch: fix double free if
    SLPDKnownDAAdd() fails in slpd/slpd_knownda.c.
  - CVE-2015-5177

Author: Marc Deslauriers
Revision Date: 2015-09-02 09:11:03 UTC

* SECURITY UPDATE: privilege escalation when used in setuid or setgid
  applications
  - debian/patches/CVE-2015-5xxx.patch: use secure_getenv and protect
    against directory traversal in configure.ac, src/Makefile.am,
    src/mesa_dri2.c, src/util.h, src/vdpau_wrapper.c,
    trace/vdpau_trace.cpp.
  - CVE-2015-5198
  - CVE-2015-5199
  - CVE-2015-5200

Author: Marc Deslauriers
Revision Date: 2015-08-28 15:41:23 UTC

* SECURITY UPDATE: denial of service via double free flaw
  - debian/patches/CVE-2015-5177.patch: fix double free if
    SLPDKnownDAAdd() fails in slpd/slpd_knownda.c.
  - CVE-2015-5177

Author: Marc Deslauriers
Revision Date: 2015-09-02 09:11:03 UTC

* SECURITY UPDATE: privilege escalation when used in setuid or setgid
  applications
  - debian/patches/CVE-2015-5xxx.patch: use secure_getenv and protect
    against directory traversal in configure.ac, src/Makefile.am,
    src/mesa_dri2.c, src/util.h, src/vdpau_wrapper.c,
    trace/vdpau_trace.cpp.
  - CVE-2015-5198
  - CVE-2015-5199
  - CVE-2015-5200

Author: Tyler Hicks
Revision Date: 2015-09-03 14:32:31 UTC

fake sync from Debian

Author: Tyler Hicks
Revision Date: 2015-09-03 14:32:31 UTC

fake sync from Debian

Author: Tim Gardner
Revision Date: 2015-09-03 09:24:06 UTC

ABI Ubuntu-3.4.0-7

Author: Tim Gardner
Revision Date: 2015-09-03 09:00:06 UTC

ABI Ubuntu-3.4.0-5

Author: Steve Langasek
Revision Date: 2015-08-27 16:50:14 UTC

debian/patches/Fix-lsvpd-return-code.patch: lsvpd: Fix return code
issue. Thanks to Kamalesh Babulal <kamaleshb@in.ibm.com>. Closes
LP: #1485446.

Author: Marc Deslauriers
Revision Date: 2015-09-01 14:00:06 UTC

* SECURITY UPDATE: denial of service in DNSSEC-signed record validation
  via malformed keys
  - fix validation inlib/dns/hmac_link.c, lib/dns/include/dst/dst.h,
    lib/dns/ncache.c, lib/dns/openssldh_link.c,
    lib/dns/openssldsa_link.c, lib/dns/opensslecdsa_link.c,
    lib/dns/opensslrsa_link.c, lib/dns/resolver.c.
  - CVE-2015-5722

Author: Marc Deslauriers
Revision Date: 2015-09-01 14:00:06 UTC

* SECURITY UPDATE: denial of service in DNSSEC-signed record validation
  via malformed keys
  - fix validation inlib/dns/hmac_link.c, lib/dns/include/dst/dst.h,
    lib/dns/ncache.c, lib/dns/openssldh_link.c,
    lib/dns/openssldsa_link.c, lib/dns/opensslecdsa_link.c,
    lib/dns/opensslrsa_link.c, lib/dns/resolver.c.
  - CVE-2015-5722

Author: Steve Langasek
Revision Date: 2015-06-07 19:27:35 UTC

Update to the signed 0.8-0ubuntu2 binary from Microsoft.

Author: Marc Deslauriers
Revision Date: 2015-08-28 09:31:01 UTC

* SECURITY UPDATE: integer overflows in XML_GetBuffer
  - debian/patches/CVE-2015-1283.patch: add checks to lib/xmlparse.c.
  - CVE-2015-1283

Author: Marc Deslauriers
Revision Date: 2015-08-28 09:31:01 UTC

* SECURITY UPDATE: integer overflows in XML_GetBuffer
  - debian/patches/CVE-2015-1283.patch: add checks to lib/xmlparse.c.
  - CVE-2015-1283

Author: Corey Bryant
Revision Date: 2015-08-28 11:54:41 UTC

d/p/long-request-uri-regression.patch: Cherry pick fix from
upstream VCS that fixes an upstream regression in the
long-request-uri.patch. (LP: #1489677).

Author: Corey Bryant
Revision Date: 2015-08-28 11:54:41 UTC

d/p/long-request-uri-regression.patch: Cherry pick fix from
upstream VCS that fixes an upstream regression in the
long-request-uri.patch. (LP: #1489677).

Author: CI Train Bot Account
Revision Date: 2015-08-21 12:03:03 UTC

[ Marco Trevisan (Treviño) ]
IndicatorAppmenu: make sure we call window_menu_entry_activate also
in AllMenus mode (LP: #1430059)

Author: Stéphane Graber
Revision Date: 2015-08-27 12:06:16 UTC

Wandboard: Use /dev/disk/by-path/platform-2198000.usdhc-part1
instead of the hardcoded mmcblk1p1, this should make things work on
boards with just a single microSD card in. (LP: #1306841)

Author: Manoj Iyer
Revision Date: 2015-08-24 16:11:32 UTC

Backport cpuinfo support for aarch64 (LP: #1485086)

Author: Steve Langasek
Revision Date: 2015-08-27 16:50:14 UTC

debian/patches/Fix-lsvpd-return-code.patch: lsvpd: Fix return code
issue. Thanks to Kamalesh Babulal <kamaleshb@in.ibm.com>. Closes
LP: #1485446.

Author: Mathieu Trudel-Lapierre
Revision Date: 2015-08-10 19:54:06 UTC

* debian/patches/memcpy_hpm_fix.patch: fix wrong memcpy boundary parameter in
  HpmFwupgActionUploadFirmware(). (LP: #1481780)
* debian/patches/usb_interface_support.patch: add USB interface support.
  (LP: #1481780)

Author: Chris Coulson
Revision Date: 2015-08-26 19:57:20 UTC

* New upstream release v1.8.2 to support Thunderbird 38
  - Fixes LP: #1489103 - Per-account settings missing after Thunderbird
    update

* Depend on gnupg2 instead of gnupg. Whilst this enigmail version still
  works with gnupg 1.4.*, it pops up an alert warning that it will be the
  last version to do so
  - update debian/control

Author: Chris Coulson
Revision Date: 2015-08-26 19:57:20 UTC

* New upstream release v1.8.2 to support Thunderbird 38
  - Fixes LP: #1489103 - Per-account settings missing after Thunderbird
    update

* Depend on gnupg2 instead of gnupg. Whilst this enigmail version still
  works with gnupg 1.4.*, it pops up an alert warning that it will be the
  last version to do so
  - update debian/control

Author: Rafael David Tinoco (Inaddy)
Revision Date: 2015-07-21 08:10:03 UTC

Add checksum offload support capability (LP: #1409904)

Author: Rafael David Tinoco (Inaddy)
Revision Date: 2015-07-21 08:31:10 UTC

Add checksum offload support capability (LP: #1409904)

Author: Jonathan Riddell
Revision Date: 2015-06-12 07:02:48 UTC

Vivid SRU LP: #1284093

Author: Manoj Iyer
Revision Date: 2015-08-26 15:11:38 UTC

updated changelog from 02.17-1.1ubuntu2 to 02.17-1.1ubuntu1.1 as per review comments

Author: Eric Desrochers
Revision Date: 2015-08-12 14:08:15 UTC

Fix change in /sys/class/net/{bond}/slave_ naming after kernel v3.13
(Closes: #791906)

Starting in kernel 3.13, slave_{ifname} is no longer present and
has been replaced by lower_{ifname}. Take this change into account
to avoid ambiguous error when ifenslave is run with existing bond
defined. (LP: #1326854)

Author: Carlos Maddela
Revision Date: 2015-08-22 12:41:18 UTC

Updated changelog.

Author: Corey Bryant
Revision Date: 2015-08-04 12:44:57 UTC

* Resynchronize with stable/kilo (bb05237) (LP: #1481008):
  - [d29a68c] Removing Network Profile support in stable/kilo
  - [cfb16ec] Add a conditional judgement to avoid invalid dict index
  - [824df76] Fix mock issues found due to new mock release
  - [82f63a5] Fix Create User form's fields sorting for Django 1.7
  - [f0691cf] changing email from user list deletes user passwd
  - [25c961f] fix delete action always cause error
  - [ec27165] Fix date pickers in metering modal
  - [8ed6a85] Wait until the image is registered in Sahara image test
  - [fcff73c] Skip test_{floatingip,image_register_unregister,create_delete_user} for now
  - [1e84c93] Handle errors during glance image updates correctly
  - [2fc3fcd] corrected the create volume from snapshot
  - [84da479] Escape the description param from heat template
  - [bafdabb] Prevent multiple form submission on table row actions
  - [0642fdd] Fixing data processing operations for alternate webroots
  - [2e8e70b] User should be able to update allocation pool values.
  - [61d3955] Don't pass read only attributes on neutron update
  - [78e9a99] I/O error uploading image
  - [6566057] Fix TemplateDoesNotExist at manage/unmanage volumes
  - [30dde70] Sanitation of metadata passed from Django
  - [322a74c] Inherit environment variables for tests that use nodeenv
  - [baf55ce] LBaas v1 Associate Monitor to Pool Fails
  - [bb05237] Fix exponentially growing AJAX updates for table rows

Author: Sebastien Bacher
Revision Date: 2015-08-04 15:31:42 UTC

Backport changes to fix the unity-control-center locations entry
not listing results in a reliable way, thanks Lars (LP: #1440157)

Author: Marc Deslauriers
Revision Date: 2015-08-19 12:38:31 UTC

* SECURITY UPDATE: denial of service via large number of REPORT requests
  - debian/patches/CVE-2015-0202.patch: refactor locking in
    subversion/libsvn_fs_fs/tree.c.
  - CVE-2015-0202
* SECURITY UPDATE: denial of service via crafted parameter combinations
  - debian/patches/CVE-2015-0248.patch: properly handle missing revision
    numbers in subversion/mod_dav_svn/reports/get-location-segments.c,
    subversion/svnserve/serve.c.
  - CVE-2015-0248
* SECURITY UPDATE: svn:author property spoofing issue
  - debian/patches/CVE-2015-0251.patch: restrict svn:author modifications
    in subversion/mod_dav_svn/deadprops.c.
  - CVE-2015-0251
* SECURITY UPDATE: incorrect anonymous access restriction
  - debian/patches/CVE-2015-3184.patch: use force_authn() in Makefile.in,
    build/ac-macros/apache.m4, build/run_tests.py,
    subversion/mod_authz_svn/mod_authz_svn.c,
    subversion/tests/cmdline/README,
    subversion/tests/cmdline/davautocheck.sh,
    subversion/tests/cmdline/mod_authz_svn_tests.py,
    subversion/tests/cmdline/svntest/main.py, win-tests.py.
  - CVE-2015-3184
* SECURITY UPDATE: sensitive path information disclosure
  - debian/patches/CVE-2015-3187.patch: fix order in
    subversion/libsvn_repos/rev_hunt.c, added tests to
    subversion/tests/cmdline/authz_tests.py,
    subversion/tests/libsvn_repos/repos-test.c.
  - CVE-2015-3187
* debian/control: Depend on specific version of apache2-dev and
  apache2-bin to make sure fix for CVE-2015-3185 is included.

Author: Marc Deslauriers
Revision Date: 2015-08-19 12:38:31 UTC

* SECURITY UPDATE: denial of service via large number of REPORT requests
  - debian/patches/CVE-2015-0202.patch: refactor locking in
    subversion/libsvn_fs_fs/tree.c.
  - CVE-2015-0202
* SECURITY UPDATE: denial of service via crafted parameter combinations
  - debian/patches/CVE-2015-0248.patch: properly handle missing revision
    numbers in subversion/mod_dav_svn/reports/get-location-segments.c,
    subversion/svnserve/serve.c.
  - CVE-2015-0248
* SECURITY UPDATE: svn:author property spoofing issue
  - debian/patches/CVE-2015-0251.patch: restrict svn:author modifications
    in subversion/mod_dav_svn/deadprops.c.
  - CVE-2015-0251
* SECURITY UPDATE: incorrect anonymous access restriction
  - debian/patches/CVE-2015-3184.patch: use force_authn() in Makefile.in,
    build/ac-macros/apache.m4, build/run_tests.py,
    subversion/mod_authz_svn/mod_authz_svn.c,
    subversion/tests/cmdline/README,
    subversion/tests/cmdline/davautocheck.sh,
    subversion/tests/cmdline/mod_authz_svn_tests.py,
    subversion/tests/cmdline/svntest/main.py, win-tests.py.
  - CVE-2015-3184
* SECURITY UPDATE: sensitive path information disclosure
  - debian/patches/CVE-2015-3187.patch: fix order in
    subversion/libsvn_repos/rev_hunt.c, added tests to
    subversion/tests/cmdline/authz_tests.py,
    subversion/tests/libsvn_repos/repos-test.c.
  - CVE-2015-3187
* debian/control: Depend on specific version of apache2-dev and
  apache2-bin to make sure fix for CVE-2015-3185 is included.

Author: Corey Bryant
Revision Date: 2015-08-18 21:06:20 UTC

d/rules: Prevent dh_python2 from guessing dependencies.

Author: Corey Bryant
Revision Date: 2015-08-18 21:05:03 UTC

* d/rules: Prevent dh_python2 from guessing dependencies.
* d/control: Add python-barbicanclient and python-pyasn1(-modules) to
  python-neutron-lbaas Depends.

Author: Corey Bryant
Revision Date: 2015-08-18 21:03:49 UTC

d/rules: Prevent dh_python2 from guessing dependencies.

Author: Marc Deslauriers
Revision Date: 2015-08-13 10:22:26 UTC

* SECURITY UPDATE: denial of service via crafted SNMP trap message
  - debian/patches/CVE-2014-3565.patch: handle variables with wrong types
    in snmplib/mib.c.
  - CVE-2014-3565
* SECURITY UPDATE: denial of service and possible code execution via
  incompletely parsed varBind variables
  - debian/patches/CVE-2015-5621.patch: don't return incorrectly parsed
    varbinds in snmplib/snmp_api.c.
  - CVE-2015-5621

Author: Marc Deslauriers
Revision Date: 2015-08-13 10:22:26 UTC

* SECURITY UPDATE: denial of service via crafted SNMP trap message
  - debian/patches/CVE-2014-3565.patch: handle variables with wrong types
    in snmplib/mib.c.
  - CVE-2014-3565
* SECURITY UPDATE: denial of service and possible code execution via
  incompletely parsed varBind variables
  - debian/patches/CVE-2015-5621.patch: don't return incorrectly parsed
    varbinds in snmplib/snmp_api.c.
  - CVE-2015-5621

Author: Iain Lane
Revision Date: 2015-06-16 10:56:44 UTC

debian/dmraid2mdadm.cfg: Only append to GRUB_CMDLINE_LINUX_DEFAULT one
time. (LP: #1465567)

Author: Mathieu Trudel-Lapierre
Revision Date: 2015-08-10 19:54:06 UTC

* debian/patches/memcpy_hpm_fix.patch: fix wrong memcpy boundary parameter in
  HpmFwupgActionUploadFirmware(). (LP: #1481780)
* debian/patches/usb_interface_support.patch: add USB interface support.
  (LP: #1481780)

Author: Mathieu Trudel-Lapierre
Revision Date: 2015-08-10 12:51:23 UTC

Do not list /dev/mmcblk.(rpmb|boot.) devices, as they cannot be
usefully partitioned (LP: #1456443)

Author: Mathieu Trudel-Lapierre
Revision Date: 2015-08-04 18:09:59 UTC

* debian/patches: Fix multiple missing break statements, NULL deference bugs,
  missing \0's in strncpy and out of bound errors. (LP: #1461560)
  - 0001-src-addl_data-Add-missing-break-statement-in-print_a.patch
  - 0002-src-event.c-Fix-possible-NULL-dereference-s.patch
  - 0003-src-event.c-Explicitly-add-0-to-strncpy.patch
  - 0004-src-notify.c-run_notification_tool-Fix-out-of-bound-.patch
  - 0005-src-repair_action.c-Fix-possible-NULL-dereference-s.patch
  - 0006-src-repair_action.c-Explicitly-add-0-to-strncpy.patch
  - 0007-src-v29_print.c-Add-missing-break-statement.patch

Author: Adam Conrad
Revision Date: 2015-08-04 13:19:45 UTC

Straight backport to vivid for ppc64el hardware enablement.

Author: Mathieu Trudel-Lapierre
Revision Date: 2015-08-04 17:02:56 UTC

debian/patches/0001-vpdupdate-Fixes-syntax-error-bug-on-LE.patch: fix
syntax errors introduced to vpdupdate. (LP: #1461558)

Author: Adam Conrad
Revision Date: 2015-07-03 08:48:54 UTC

Stop generating symlinks in postinst for /sbin/fdisk on PPC, we've
given control of that binary over to util-linux now (LP: #1473934)

Author: Mathieu Trudel-Lapierre
Revision Date: 2015-08-05 14:05:42 UTC

* New upstream release. (LP: #1463063)
  - Added Home Run (5887) enclosure diagnostics support
  - Added PHB hotplugging support for PowerKVM guest
  - Fixed LE issue in rtas_errd
  - Fixed memory leak in rtas_errd

Author: Andreas Cadhalpun
Revision Date: 2015-07-31 15:50:07 UTC

Import new upstream bugfix release 2.5.8. (LP: #1480311)

Author: Tyler Hicks
Revision Date: 2015-08-07 13:55:02 UTC

fake sync from Debian

Author: Tyler Hicks
Revision Date: 2015-08-07 13:49:45 UTC

fake sync from Debian

Author: Tyler Hicks
Revision Date: 2015-08-07 13:55:02 UTC

fake sync from Debian

Author: Tyler Hicks
Revision Date: 2015-08-07 13:49:45 UTC

fake sync from Debian

Author: Jorge Niedbalski
Revision Date: 2015-08-07 11:53:37 UTC

debian/patches/fix-1368545.patch: Changing the value type of
http_connect_timeout to IntOpt. (LP: #1368545)

Author: Logan Rosen
Revision Date: 2015-07-24 01:01:49 UTC

Don't build-depend on unused libqwtplot3d-qt4-dev (LP: #1476475).

Author: Simon Fels
Revision Date: 2015-08-06 09:30:58 UTC

* debian/patches/use_correct_signal_strength.patch:
  - Use correct value type to get the right signal strength value

Author: Jamie Strandboge
Revision Date: 2015-07-30 12:24:47 UTC

[ Marc Deslauriers ]
* SECURITY UPDATE: object deletion via x-versions-location container
  - debian/patches/CVE-2015-1856.patch: prevent unauthorized delete in
    swift/proxy/controllers/obj.py, added tests to
    test/functional/tests.py.
  - CVE-2015-1856

[ Jamie Strandboge ]
* debian/patches/x-auth-token-should-be-bytestring.patch: update for
  functional test suite
* debian/patches/fix-tempauth-acl-checks.patch: fix tempauth acl checks when
  simplejson has no speedups
* debian/patches/increase-httplib-maxheaders.patch: fix testuite and
  increase httplib._MAXHEADERS

Author: Marc Deslauriers
Revision Date: 2015-07-22 09:47:32 UTC

* SECURITY UPDATE: incorrect cert verification with ssl_insecure option
  - debian/patches/CVE-2015-1852.patch: properly parse option in
    keystonemiddleware/s3_token.py, added test to
    keystonemiddleware/tests/test_s3_token_middleware.py.
  - CVE-2015-1852

Author: Jamie Strandboge
Revision Date: 2015-07-30 12:24:47 UTC

[ Marc Deslauriers ]
* SECURITY UPDATE: object deletion via x-versions-location container
  - debian/patches/CVE-2015-1856.patch: prevent unauthorized delete in
    swift/proxy/controllers/obj.py, added tests to
    test/functional/tests.py.
  - CVE-2015-1856

[ Jamie Strandboge ]
* debian/patches/x-auth-token-should-be-bytestring.patch: update for
  functional test suite
* debian/patches/fix-tempauth-acl-checks.patch: fix tempauth acl checks when
  simplejson has no speedups
* debian/patches/increase-httplib-maxheaders.patch: fix testuite and
  increase httplib._MAXHEADERS

Author: Marc Deslauriers
Revision Date: 2015-07-16 14:44:43 UTC

* SECURITY UPDATE: incorrect cert verification with ssl_insecure option
  - debian/patches/CVE-2015-1852.patch: properly parse option in
    keystoneclient/middleware/s3_token.py, added test to
    keystoneclient/tests/unit/test_s3_token_middleware.py.
  - CVE-2015-1852

Author: Marc Deslauriers
Revision Date: 2015-07-22 09:47:32 UTC

* SECURITY UPDATE: incorrect cert verification with ssl_insecure option
  - debian/patches/CVE-2015-1852.patch: properly parse option in
    keystonemiddleware/s3_token.py, added test to
    keystonemiddleware/tests/test_s3_token_middleware.py.
  - CVE-2015-1852

Author: Mathieu Trudel-Lapierre
Revision Date: 2015-08-05 14:05:42 UTC

* New upstream release. (LP: #1463063)
  - Added Home Run (5887) enclosure diagnostics support
  - Added PHB hotplugging support for PowerKVM guest
  - Fixed LE issue in rtas_errd
  - Fixed memory leak in rtas_errd

Author: Adam Conrad
Revision Date: 2015-08-01 16:14:56 UTC

Fix regression in the Never-MarkAuto-Sections feature caused by the
previous auto-removal fix, with inspiration drawn from the patches
and conversation from http://bugs.debian.org/793360 (LP: #1479207)

Author: Sebastien Bacher
Revision Date: 2015-08-04 15:31:42 UTC

Backport changes to fix the unity-control-center locations entry
not listing results in a reliable way, thanks Lars (LP: #1440157)

Author: David Ames
Revision Date: 2015-08-05 16:09:41 UTC

* Additional support for stable/kilo (LP: #1481008):
  - d/p/disable-kafka.patch: Mocked KafkaBrokerPublisher.
  - d/p/skip-rgw-tests.patch: Mocked rgw, rgw_client, RGWAdminAPIFailed,
    and RGWAdminClient.
  - d/control: Add python-awsauth as Suggested.

Author: Corey Bryant
Revision Date: 2015-08-05 11:23:17 UTC

* Additional support for stable/kilo (LP: #1481008):
  - d/neutron-pluging-linuxbridge-agent.init.in: Ensure that the right
    binary is used for neutron-plugin-linuxbridge-agent (LP: #1453188).

Author: Mathieu Trudel-Lapierre
Revision Date: 2015-08-04 18:09:59 UTC

* debian/patches: Fix multiple missing break statements, NULL deference bugs,
  missing \0's in strncpy and out of bound errors. (LP: #1461560)
  - 0001-src-addl_data-Add-missing-break-statement-in-print_a.patch
  - 0002-src-event.c-Fix-possible-NULL-dereference-s.patch
  - 0003-src-event.c-Explicitly-add-0-to-strncpy.patch
  - 0004-src-notify.c-run_notification_tool-Fix-out-of-bound-.patch
  - 0005-src-repair_action.c-Fix-possible-NULL-dereference-s.patch
  - 0006-src-repair_action.c-Explicitly-add-0-to-strncpy.patch
  - 0007-src-v29_print.c-Add-missing-break-statement.patch

Author: Adam Conrad
Revision Date: 2015-07-03 08:48:54 UTC

Stop generating symlinks in postinst for /sbin/fdisk on PPC, we've
given control of that binary over to util-linux now (LP: #1473934)

Author: Mathieu Trudel-Lapierre
Revision Date: 2015-08-04 17:02:56 UTC

debian/patches/0001-vpdupdate-Fixes-syntax-error-bug-on-LE.patch: fix
syntax errors introduced to vpdupdate. (LP: #1461558)

Author: David Ames
Revision Date: 2015-08-04 17:16:50 UTC

Import upstream version 2015.1.1

Author: David Ames
Revision Date: 2015-08-04 16:32:15 UTC

Import upstream version 2015.1.1

Author: Corey Bryant
Revision Date: 2015-08-04 15:42:27 UTC

* Resynchronize with stable/kilo (9c73c0c) (LP: #1481008):
  - [fb18c46] Set vpn agent's agent_state['binary'] attribute
  - [0ec1668] Fix failures for integration tests
  - [053fd30] VPNaaS: Fix breakage in status reporting
  - [5cc0613] Libreswan driver support in VPNaaS
  - [9c73c0c] Provide Fedora support for StrongSwan

Author: Adam Conrad
Revision Date: 2015-08-04 13:19:45 UTC

Straight backport to vivid for ppc64el hardware enablement.

Author: David Ames
Revision Date: 2015-08-04 10:16:10 UTC

* Resynchronize with stable/kilo (fb3f629) (LP: #1481008):
  - [fb3f629] Fix test failures caused by mock update

Author: David Ames
Revision Date: 2015-08-04 08:40:49 UTC

* Resynchronize with stable/kilo (cdcd5a7) (LP: #1481008):
  - [cdcd5a7] Make iptables firewall work with L3 plugin without DVR support

Author: Corey Bryant
Revision Date: 2015-08-03 14:29:26 UTC

* Resynchronize with stable/kilo (536dc83) (LP: #1481008):
  - [9ca4a53] Use action in check_*_complete method
  - [ed52c86] Produce more meaningful exception messages in nested stacks
  - [e35450a] Fix failures related to the mock 1.1.0 release
  - [ac5e71f] test_resource for functional tests
  - [c0d1b91] Improve StackValidationFailed response in properties
  - [99f95f0] Count all nested stack resources with DB operations
  - [5703a2f] Add domain when list users in heat-keystone-setup-domain
  - [18742d1] Heat could not create samples with Ceilometer
  - [a55f827] Missing template file on update fails silently
  - [1b5ff07] Failed to import test module in test
  - [b0be013] Add env storing for loaded environments
  - [a3bc0f6] Fix heat-db-setup error on rhel7.1
  - [3a7e7cb] Find root stack ID with database operations
  - [38b47eb] Continue to check if nova task is in progress
  - [8919a34] Catch exceptions in service status report
  - [754851d] Fix block_device_mapping property validation when using get_attr
  - [28a0639] Do not verify requirements on extension loading
  - [7148a96] Backup new resource as soon as possible
  - [da37773] Save updated-in-place resources to backup stack
  - [be9af28] Report status when engine start
  - [d2e70e4] Use snapshot's environment when stack restore
  - [612d806] Fix integration tests for tox>2.0
  - [ed2bed2] Fix property validation for TemplateResource during update
  - [a5297fe] Get rid of circular references in Resource and Function
  - [c7b1524] Sync oslo incubator
  - [06a5c0e] Generate stack events for stack state transitions
  - [aa4b90d] Update template paths for environment-mapped TemplateResources
  - [2a6378c] Fix TypeError exception during cancel stack update
  - [536dc83] Use SHA256 instead of SHA1 for resource signature
* d/p/fix-requirements.patch: Rebased.

Author: Seth Forshee
Revision Date: 2015-08-03 08:15:06 UTC

* Backport Intel 8260 Wifi/BT firmware, satisfied by the following
  upstream commits:
  iwlwifi: add new -13 firmware for iwlmvm devices
  linux-firmware: Add firmware file for Intel Bluetooth 8260
  - LP: #1476900