Import version 1.4.14-0ubuntu1.13.04.1 to ubuntu/raring-security
Imported using usd-importer.
New changelog entries:
* SECURITY UPDATE: denial of service via large body length
- debian/patches/CVE-2011-4971.patch: check length in memcached.c,
added test to t/issue_192.t.
- CVE-2011-4971
* SECURITY UPDATE: denial of service when using -vv
- debian/patches/CVE-2013-0179.patch: properly format key in items.c,
memcached.c.
- CVE-2013-0179
* SECURITY UPDATE: SASL authentication bypass
- debian/patches/CVE-2013-7239.patch: explicitly record sasl auth
states in memcached.*, added test to t/binary-sasl.t.
- CVE-2013-7239
Import version 1.4.13-0.1ubuntu3 to ubuntu/quantal
Imported using usd-importer.
New changelog entries:
* d/p/start-memcached-fix-hash.patch: Change regex to make sure
inline comments can function per feedback from upstream. Passing
"#" to arguments now requires escaping with \.
Import version 1.4.13-0.1ubuntu2 to ubuntu/quantal
Imported using usd-importer.
New changelog entries:
* d/p/start-memcached-fix-hash.patch: Apply patch to allow passing
# as a value for memcached options such as -D to use # as a prefix
delimiter for stats collection. (LP: #1005821)
Import version 1.4.13-0.1ubuntu1 to ubuntu/quantal
Imported using usd-importer.
New changelog entries:
* Merge from Debian unstable. Remaining changes:
- Run as 'memcache' user instead of nobody.
- Depend on adduser for preinst/postrm.
- Create user in postinst.
- d/rules: run test suite on build.
- d/patches/50_fix_racey_test.patch: Cherry picked patch from
upstream bug tracker which endeavours to avoid the race condition.
Thanks to Clint Byrum for this fix.
- d/patches/50_add_init_retry.patch: Dropped - superceeded by Debian
patch.
ee9a19c...
by
=?utf-8?q?Arno_T=C3=B6ll?= <email address hidden>
Import version 1.4.13-0.1 to debian/sid
Imported using usd-importer.
New changelog entries:
* Non-maintainer upload.
+ Include changes of my previous NMU (filed as #641770 back then)
* Package new upstream release
+ this fixes "Please package upstream version 1.4.13" (Closes: #667746)
+ enable support for SASL authentication in debian/rules and add build-dependencies accordingly (Closes: #616148)
+ Include support for "-o maxconns_fast" which causes clients not to block
for a long time on busy servers
* Build package with hardened build flags. Thanks to Moritz Muehlenhoff for
providing a patch. Moreover, add a build-dependency for dpkg-dev (>=
1.15.7) for people considering to make a backport on very old systems
(Closes: #655134)
* Update patches:
+ 03_fix_ftbfs4hurd.patch: Refresh hunk offsets, leave changes untouched
+ Drop 04_fix_double_fork_in_start-memcached.patch: applied upstream
+ Apply patch supplied by Clint Byrum as 04_add_init_retry.patch which
causes start-stop-daemon to wait up to 5 seconds upon termination of
memached (Closes: #659300)
New changelog entries:
* Fix FTBFS due to racey test case:
- d/patches/50_fix_racey_test.patch: Cherry picked patch from
upstream bug tracker which endeavours to avoid the race condition.
Thanks to Clint Byrum for this fix.