lp:ubuntu/dapper-security/heartbeat
- Get this branch:
- bzr branch lp:ubuntu/dapper-security/heartbeat
Branch merges
Branch information
Recent revisions
- 8. By Martin Pitt
-
* SECURITY UPDATE: Remote DoS.
* Add debian/patches/ 16-oob- read.patch: Fix buffer overread in
clplumbing/cl_netstring. c.
* Apply above patch inline (build system does not do that automatically).
* CVE-2006-3121 - 7. By Martin Pitt
-
* SECURITY UPDATE: Local DoS.
* Add debian/patches/ 01-shm_ permissions. patch:
- Fix permissions of created shared memory block to not be
world-read/writable.
- Patch taken from upstream:
http://cvs.linux- ha.org/ viewcvs/ viewcvs. cgi/linux- ha/heartbeat/ heartbeat. c?r1=1. 513&r2= 1.514
- CVE-2006-3815
* Apply above patch inline (build system does not do that automatically). - 6. By Horms
-
* Rebuild, as i386 upload was missing depenancies on vanessa libraries.
This was caused by a ~/.magic in the build environment that had very
unexpected side affects. Primarily causing file to return "data"
instead of "ELF" on ELF executables, and thus causing all executables
to be skipped by dh_shlibdeps.
* Add dependancy on openssh-client which is needed as 00-ssh_scp_path. patch
was removed in 1.2.4-1
* Slightly Enhanced package descriptions
(closes: #337895, #337896) - 5. By Horms
-
* New Upstream
* Make sure adduser is passed the --system flag
(closes: #336180)
* Don't apply 00-ssh_scp_path. patch as it shouldn't be
needed and it creates a lot of diff due to automake and
autoconf regenerating everything. - 4. By Simon Horman <email address hidden>
-
* 11-tmpfile-
problems. patch, 12-tmpfile- problems- 2.patch
Don't use predictable temp files
[heartbeat/lib/BasicSanity Check.in, heartbeat/ resource. d/WAS.in
lib/plugins/ stonith/ meatware. c, lib/stonith/ meatclient. c,
cts/CM_hb.py.in, cts/CTStests.py.in CAN-2005-2231] (closes: #318287)
* debian/apply
Apply patches in the correct order.
* 12-tmpfile-problems- 2.patch
Added CTS back in with security fix
[usr/lib/heartbeat/ cts/CM_ fs.py, usr/lib/ heartbeat/ cts/CM_ hb.py,
usr/lib/heartbeat/ cts/CTS. py, usr/lib/ heartbeat/ cts/CTSaudits. py,
usr/lib/heartbeat/ cts/CTSlab. py, usr/lib/ heartbeat/ cts/CTStests. py
CAN-2005-2231]
* 13-confdir.patch
Change CONF_D defined (and missing) in some resources
to HA_CONFDIR in shelfuncs, allowing arp_config to function
correctly in IPaddr2 and SendArp. (closes: #318266)
* debian/rules
Include cts documentation
* 14-ipadd2_no_loopback_ delete. patch
Fix IPaddr2 so it doesn't remove loopback interfaces on stop
* 15-LVM2.patch
Allow the LVM resource to work with LVM2 as well as LVM1
(closes: #309906)
* Upgrade Standards-Version from 3.6.1 to 3.6.2 - 3. By Simon Horman <email address hidden>
-
* The previous version never made it into testing because
the build failed on arm because the ssh package was broken
at the time. I have not had any luck contacting someone to
rebuild the package.
* Updated ldirectord to 1.77.2.4 (from 1.77.2.2).
Fixes a problem where real servers present in multiple
virtuals would only be added to one virtual service. - 2. By Martin Schulze <email address hidden>
-
* Non-maintainer upload by security team
* Fixed several buffer overflows found by Nathan Wallwork.
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/lucid/heartbeat