Ubuntu
heartbeat package

lp:ubuntu/dapper-security/heartbeat

  1. Dapper (6.06)
  2. dapper-security
Created by James Westby and last modified
Get this branch:
bzr branch lp:ubuntu/dapper-security/heartbeat
Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Ubuntu branches
Review team:
Ubuntu Development Team
Status:
Mature

Recent revisions

8. By Martin Pitt

* SECURITY UPDATE: Remote DoS.
* Add debian/patches/16-oob-read.patch: Fix buffer overread in
  clplumbing/cl_netstring.c.
* Apply above patch inline (build system does not do that automatically).
* CVE-2006-3121

7. By Martin Pitt

* SECURITY UPDATE: Local DoS.
* Add debian/patches/01-shm_permissions.patch:
  - Fix permissions of created shared memory block to not be
    world-read/writable.
  - Patch taken from upstream:
    http://cvs.linux-ha.org/viewcvs/viewcvs.cgi/linux-ha/heartbeat/heartbeat.c?r1=1.513&r2=1.514
  - CVE-2006-3815
* Apply above patch inline (build system does not do that automatically).

6. By Horms

* Rebuild, as i386 upload was missing depenancies on vanessa libraries.
  This was caused by a ~/.magic in the build environment that had very
  unexpected side affects. Primarily causing file to return "data"
  instead of "ELF" on ELF executables, and thus causing all executables
  to be skipped by dh_shlibdeps.
* Add dependancy on openssh-client which is needed as 00-ssh_scp_path.patch
  was removed in 1.2.4-1
* Slightly Enhanced package descriptions
  (closes: #337895, #337896)

5. By Horms

* New Upstream
* Make sure adduser is passed the --system flag
  (closes: #336180)
* Don't apply 00-ssh_scp_path.patch as it shouldn't be
  needed and it creates a lot of diff due to automake and
  autoconf regenerating everything.

4. By Simon Horman <email address hidden>

* 11-tmpfile-problems.patch, 12-tmpfile-problems-2.patch
  Don't use predictable temp files
  [heartbeat/lib/BasicSanityCheck.in, heartbeat/resource.d/WAS.in
   lib/plugins/stonith/meatware.c, lib/stonith/meatclient.c,
   cts/CM_hb.py.in, cts/CTStests.py.in CAN-2005-2231] (closes: #318287)
* debian/apply
  Apply patches in the correct order.
* 12-tmpfile-problems-2.patch
  Added CTS back in with security fix
  [usr/lib/heartbeat/cts/CM_fs.py, usr/lib/heartbeat/cts/CM_hb.py,
  usr/lib/heartbeat/cts/CTS.py, usr/lib/heartbeat/cts/CTSaudits.py,
  usr/lib/heartbeat/cts/CTSlab.py, usr/lib/heartbeat/cts/CTStests.py
  CAN-2005-2231]
* 13-confdir.patch
  Change CONF_D defined (and missing) in some resources
  to HA_CONFDIR in shelfuncs, allowing arp_config to function
  correctly in IPaddr2 and SendArp. (closes: #318266)
* debian/rules
  Include cts documentation
* 14-ipadd2_no_loopback_delete.patch
  Fix IPaddr2 so it doesn't remove loopback interfaces on stop
* 15-LVM2.patch
  Allow the LVM resource to work with LVM2 as well as LVM1
  (closes: #309906)
* Upgrade Standards-Version from 3.6.1 to 3.6.2

3. By Simon Horman <email address hidden>

* The previous version never made it into testing because
   the build failed on arm because the ssh package was broken
   at the time. I have not had any luck contacting someone to
   rebuild the package.
* Updated ldirectord to 1.77.2.4 (from 1.77.2.2).
   Fixes a problem where real servers present in multiple
   virtuals would only be added to one virtual service.

2. By Martin Schulze <email address hidden>

* Non-maintainer upload by security team
* Fixed several buffer overflows found by Nathan Wallwork.

1. By Martin Schulze <email address hidden>

Import upstream version 0.4.9.0l

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp:ubuntu/lucid/heartbeat
This branch contains Public information 
Everyone can see this information.

Subscribers