lp:~jtaylor/ubuntu/oneiric/dropbear/CVE-2012-0920
- Get this branch:
- bzr branch lp:~jtaylor/ubuntu/oneiric/dropbear/CVE-2012-0920
Branch merges
- Jamie Strandboge: Approve
- Ubuntu branches: Pending requested
-
Diff: 122 lines (+110/-0)2 files modifieddebian/changelog (+10/-0)
debian/diff/0003-Fix-use-after-free-bug-CVE-2012-0920.diff (+100/-0)
Related bugs
Bug #976360: CVE-2012-0920 needs fixing, server use-after-free | Undecided | Fix Released |
Related blueprints
Branch information
- Owner:
- Julian Taylor
- Status:
- Merged
Recent revisions
- 17. By Julian Taylor
-
* SECURITY UPDATE: remote execution via use after free (LP: #976360)
- debian/diff/0003- Fix-use- after-free- bug-CVE- 2012-0920. diff
pulled from https://secure. ucc.asn. au/hg/dropbear/ rev/818108bf774 9
Thanks to Matt Johnston
- CVE-2012-0920 - 16. By Angel Abad
-
* debian/
diff/0004- fix-ftbfs- with-binutils- gold.diff:
- Add -lcrypt to fix ftbfs with binutils gold (Closes: #631858). - 15. By Gerrit Pape <email address hidden>
-
[ Matt Johnston ]
* New upstream release.
* SSH_ORIGINAL_COMMAND environment variable is set by the server
when an authorized_keys command is specified (closes: #604524).[ Gerrit Pape ]
* debian/rules: add --enable-bundled- libtom option to ./configure.
* debian/rules: remove -DXAUTH_COMMAND= "/usr/bin/ X11/xauth -q from
CFLAGS (workaround ./configure stupidity; closes: #625192).
* debian/diff/0003- options. h-use-usr- bin-xauth- instead- of...diff: new;
use /usr/bin/xauth instead of /usr/bin/X11/xauth for XAUTH_COMMAND
(closes: #614355). - 14. By Gerrit Pape <email address hidden>
-
[ debian@x.ray.net ]
* debian/dropbear. postinst: initramfs-tools uses a conf-hooks.d/
directory for mkinitramfs ('compiletime') configuration, so to be
sure to read the whole/correct config we need to source the files
in there too, additionally to initramfs.conf (closes: #575504).
* debian/initramfs/ dropbear- conf: set UMASK=0077 (closes: #578117). [ Gerrit Pape ]
* debian/control: Standards-Version: 3.8.4.0. - 13. By Gerrit Pape <email address hidden>
-
debian/
initramfs/ dropbear- hook: allow more than one public key in
initramfs (thx Chris for the patch; closes: #548309). - 12. By Gerrit Pape <email address hidden>
-
* debian/
initramfs/ premount- dropbear: run configure_ networking in the
background (thx debian@x.ray.net, closes: #514213, #524728).
* debian/control: Standards-Version: 3.8.2.0. - 11. By Gerrit Pape <email address hidden>
-
[ Matt Johnston ]
* New upstream release.
* dbclient.1: mention optional 'command' argument (closes: #495823).[ Gerrit Pape ]
* debian/diff/0001- dbclient. 1-dbclient- uses-compressio n-if... diff:
new; dbclient.1: dbclient uses compression if compiled with zlib
support (thx Luca Capello, closes: #495825).
* debian/initramfs/*: new; cryptroot remote unlocking on boot feature
(thx debian@x.ray.net).
* debian/rules: install debian/initramfs/* (thx debian@x.ray.net).
* debian/control: Suggests: udev (for cryptroot support, thx
debian@x.ray.net) .
* debian/dropbear. postinst: conditionally run update-initramfs -u
(for cryptroot support, thx debian@x.ray.net. closes: #465903).
* debian/diff/0002- dropbearkey. 8-mention- y-option- add-example. diff:
new; mention -y option, add example (thx debian@x.ray.net). - 10. By Gerrit Pape <email address hidden>
-
[ Matt Johnston ]
* New upstream release.
- Wait until a process exits before the server closes a connection,
so that an exit code can be sent. This fixes problems with exit
codes not being returned, which could cause scp to fail (closes:
#448397, #472483).[ Gerrit Pape ]
* debian/dropbear. postinst: don't print an error message if the
update-service program is not installed (thx Matt). - 9. By Gerrit Pape <email address hidden>
-
debian/
dropbear. README. Debian: no longer talk about entropy from
/dev/random, /dev/urandom is now used by default (thx Joey Hess,
closes: #441515). - 8. By Gerrit Pape <email address hidden>
-
* debian/rules: apply diffs from debian/diff/ with patch -p1 instead of
-p0.
* debian/diff/0001- options. h-use-dev- urandom- instead- of-dev- random- a.diff:
new; options.h: use /dev/urandom instead of /dev/random as
DROPBEAR_RANDOM_ DEV (closes: #386976).
* debian/rules: target clean: remove libtomcrypt/Makefile,
libtommath/Makefile.
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/precise/dropbear