Ubuntu
znc package

lp:ubuntu/lucid-updates/znc

Lucid (10.04)
lucid-updates

Created by Ubuntu Package Importer on 2012-12-18 and last modified on 2012-12-18

Get this branch:: bzr branch lp:ubuntu/lucid-updates/znc

Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

No branches dependent on this one.

Related bugs

Link a bug report

Related blueprints

Branch information

Owner:: Ubuntu branches

Review team:: Ubuntu Development Team

Status:: Mature

Recent revisions

14. By Thomas Ward on 2012-12-18: * SECURITY UPDATE: denial of service caused by NULL pointer dereference
  (LP: #1090195)
  - debian/patches/cve-2010-2448.patch: modify znc.cpp to prevent NULL
    pointer dereference. Based on upstream patch.
  - CVE-2010-2448
  - CVE-2010-2488
* SECURITY UPDATE: denial of service caused by PING command without
  arguments (LP: #1090195)
  - debian/patches/cve-2010-2812.patch: modify Client.cpp to correctly
    handle PING commands that have no arguments. Based on upstream patch.
  - CVE-2010-2812
* SECURITY UPDATE: denial of service via unknown vectors related to
  "unsafe substr() calls" (LP: #1090195)
  - debian/patches/cve-2010-2934.patch: modify IRCSock.cpp,
    modules/adminlog.cpp, modules/away.cpp, and modules/email.cpp to
    remove unsafe substr() calls. Based on upstream patch.
  - CVE-2010-2934
13. By Patrick Matthäi <email address hidden> on 2009-12-19: * New upstream release.
- connect_throttle module has been dropped.
- Remove dropped znc.conf from examples.
* Merge 0.076-1~bpo50+1 changelog.
* Convert package to the 3.0 (quilt) format.
12. By Patrick Matthäi <email address hidden> on 2009-09-25: New upstream release.
11. By Patrick Matthäi <email address hidden> on 2009-08-13: * Merge 0.045-3+etch2, 0.045-3+etch3, 0.074-1~bpo40+1 and 0.074-1~bpo50+1
changelog.
* Add versioned recommends on znc-extra.
Closes: #541305
10. By Patrick Matthäi <email address hidden> on 2009-07-24: * New upstream release.
  - Bump urgency to high. This release fixes an high-impact directory
    traversal buf, where unpriviliged users can save about DCC SEND files on
    the server with the rights of the znc process. The attacker could also
    use the exploit to get a shell on the server.
    Closes: #537977
  - Use c-ares for DNS resolving, add libc-ares-dev and pkg-config as
    build-dependency.
* Merge 0.058-2+lenny2, 0.058-2+lenny3, 0.070-1~bpo40+1 and 0.070-1~bpo50+1
  changelog.
* Bump Standards-Version to 3.8.2 (no changes needed).
9. By Patrick Matthäi <email address hidden> on 2009-05-23: * New upstream release.
- Add new pkgconfig files to znc-dev.
* Fix typo in get-orig-source target.
* Merge 0.058-2~bpo40+1 and 0.058-2~bpo40+2 changelog.
* Add recommends on the new source package znc-extra.
* Add my own copyright for the Debian packaging.
8. By Patrick Matthäi <email address hidden> on 2009-04-23: * Change my email address.
* Remove DM-Upload-Allowed control field.
* Add new fail2ban module.
7. By Patrick Matthäi on 2009-04-02: Add missing admin module.
Closes: #522267
6. By Patrick Matthäi on 2009-02-24: * New upstream release.
  - Severity high because it fixes a critical security flaw.
    Closes: #516950
* znc-dev has to be arch:any, because it also gives back the used host
  compiler.
5. By Patrick Matthäi on 2008-12-06: * Add missing ${misc:Depends}. Thanks lintian.
* Fix debian/watch, so that it does not take the new znc-extra tarball.

Branch metadata

Branch format:: Branch format 7

Repository format:: Bazaar repository format 2a (needs bzr 1.16 or later)

Stacked on:: lp:ubuntu/raring/znc

This branch contains Public information

Everyone can see this information.

Subscribers

Ubuntu branches

Ubuntuznc package