lp:ubuntu/quantal-security/devscripts
- Get this branch:
- bzr branch lp:ubuntu/quantal-security/devscripts
Branch merges
Branch information
Recent revisions
- 127. By Marc Deslauriers
-
* SECURITY UPDATE: arbitrary code execution in uscan via crafted tarball
- scripts/uscan.pl: improve tarball handling.
- 02c6850d973e3e1246fde72edab27f 03d63acc52
- 4b7e58ee6000cdefac0682601cec6e cce0137467
- CVE-2013-6888 - 126. By James McCoy
-
[ James McCoy ]
* dget: Avoid an infinite loop when a .changes/.dsc file references itself.
(Closes: #687670)
* debdiff:
+ Set $TMPDIR when running interdiff so its temp files get cleaned up on
exit.
+ Fallback to manual diff of source package if interdiff fails. (Closes:
#685202)
* dcmd: Don't add "--" to the command being executed. The user has to know
where this should be used/if it can be used. (Closes: #687964)
* debcheckout: Fix collision in short options. Use -P for --package.
(Closes: #688150)[ Benjamin Drung ]
* licensecheck: Recognize licenses in (fixed-form) Fortran code. Thanks to
Francesco Poli for the patch and the example. (Closes: #687452) - 125. By James McCoy
-
[ Benjamin Drung ]
* licensecheck:
- Don't truncate other licenses on Public domain or WTFPL presence.
Thanks to Garrett Holmstrom from Fedora for the patch.
- Remove trailing spaces.
- add --machine option that outputs results in a machine readable format.
Thanks to Eric Lavarde for the patch. (Closes: #583750)
- Trim trailing period from some GPL notices' versions.[ Richard W.M. Jones ]
* licensecheck: Check OCaml programs by default (*.ml, *.mli).[ Ville Skyttä ]
* Spelling fixes.
* licensecheck: Trim trailing comma from some GPL notices' versions.[ David Prévot ]
* licensecheck.1: Consistency fix.
* French translation update.[ Cyril Brulebois ]
* getbuildlog: When several build logs are available, save all of them
instead of downloading them all but only keeping the oldest. (Closes:
#683231)[ Christoph Berg ]
* debcheckout: When --package is given, use this package name rather than
trying to guess it from the url. Useful for URLs like
http://anonscm. debian. org/bzr/ pkg-postgresql/ postgresql- 9.2/sid- pgapt/.
* po4a/Makefile: use po4a --keep=0 so the build system doesn't die with
untranslated scripts
* dcmd: Reimplement endswith() with case. The original missed quoting and
made my brain hurt.
* dcmd: Allow digits, underscores, and dots in section/component names.[ Raphael Geissert ]
* dcmd: Allow arguments to contain spaces. (Closes: #687584)[ James McCoy ]
* debdiff: Fix regression in exit code, introduced in 2.11.4. (Closes:
#686247)
* dget:
+ Fix CVE-2012-2241 (arbitrary file deletion)
+ Only match policy-compliant source package names.
* dscverify: Fix CVE-2012-2240 (arbitrary code execution) - 124. By James McCoy
-
annotate-output: Fix to prevent symlink attack: don't delete
safely-created file and reuse its name. Instead, create temporary
directory and create FIFOs therein. Also, be sure to remove temporaries
upon catchable signal. Thanks to Jim Meyering for the patch. Fixes
CVE-2012-3500. - 123. By Benjamin Drung
-
* debchange:
- Fix crash if libdistro-info-perl is not installed. (Closes: #680213,
LP: #1022563)
- Recognize stable-proposed- updates as Debian distribution (Closes: #677613) - 122. By James McCoy
-
[ Benjamin Drung ]
* debchange:
- Query name for stable-backport from distro-info.
- On Ubuntu always default to targeting the release that it's run from,
not the current devel release, since its primary use on stable releases
will be for preparing PPA uploads. (LP: #1001068)[ James McCoy ]
* build-rdeps, chdist, debsnap, dpkg-depcheck, rc-alert: Exit when unknown
options are provided. (Closes: #679374)
* dscverify: Use GetOptions to handle argument parsing. (Closes: #679148)
* uscan: Properly use the File::Temp interface so files aren't being created
with the stringified version of a file glob. (Closes: #678193)
* rc-alert:
+ Unset wget's continue option to ensure the bug list is properly
downloaded. (Closes: #677229)
+ Handle rc bugs assigned to source packages. (Closes: #576853)
* Devscripts/Packages. pm, Devscripts/ PackageDeps. pm:
+ Parse dpkg's status file using Dpkg::Control.
+ Make functions Multi-Arch aware so they can handle $pkg:$arch naming.
(Closes: #664811) - 119. By Steve Langasek
-
scripts/
debchange. pl: do *not* use distro-info for deciding the default
target for an Ubuntu upload; the distro-info package will be updated in
SRU to include the names of newer releases, but we want dch to always
default to targeting the release that it's run from, *not* the current
devel release, since its primary use on stable releases will be for
preparing ppa uploads. This means we will have to continue updating
devscripts manually at the opening of each release. LP: #1001068. - 118. By Benjamin Drung
-
[ David Prévot ]
* French translation update.[ Ron Lee ]
* cowpoke: Properly strip the arguments to dpkg --compare-versions[ Christoph Berg ]
* debcheckout: Also recognize bzr+ssh:// schema.[ Bernhard R. Link ]
* debchange: fix NMU detection to not NMU QA packages (Closes: #676881)[ James McCoy ]
* debchange: Add more documentation about the effects of changelog
heuristic. (Closes: #673974)
* mk-build-deps:
+ Provide a more descriptive README.Debian for generated packages. Thanks
to chrysn for the patch. (Closes: #675337)
+ Do not install Recommends by default. (Closes: #575245)[ Benjamin Drung ]
* debchange: Use the Dpkg::Vendor Perl API directly to avoid the overhead
of the command line dpkg-vendor script.
* Use dpkg-buildflags for C code.
* wrap-and-sort: Fix damaging debian/install with no newline at the
end of file (LP: #1014365).
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/trusty/devscripts