ubuntu/+source/bash:ubuntu/trusty-proposed

Last commit made on 2016-11-17
Get this branch:
git clone -b ubuntu/trusty-proposed https://git.launchpad.net/ubuntu/+source/bash
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
ubuntu/trusty-proposed
Repository:
lp:ubuntu/+source/bash

Recent commits

8a836a3... by Jeffrey Hutzelman <email address hidden> on 2015-10-16

Import patches-unapplied version 4.3-7ubuntu1.6 to ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: f9ba99f8aeef8e7ae0c82d4cd7d9424e104e85b5

New changelog entries:
  * When the readline `revert-all-at-newline' option is set, pressing newline
    when the current line is one retrieved from history results in a double
    free and a segmentation fault. LP: #1422795.

f9ba99f... by Marc Deslauriers on 2014-10-07

Import patches-unapplied version 4.3-7ubuntu1.5 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 56300555deb6ca50f4efe35854e818a450d625fe

New changelog entries:
  * SECURITY UPDATE: incorrect function definition parsing with
    here-document delimited by end-of-file
    - debian/patches/CVE-2014-6277.diff: properly handle closing delimiter
      in copy_cmd.c, make_cmd.c.
    - CVE-2014-6277
  * SECURITY UPDATE: incorrect function definition parsing via nested
    command substitutions
    - debian/patches/CVE-2014-6278.diff: properly handle certain parsing
      attempts in builtins/evalstring.c, parse.y, shell.h, y.tab.c.
    - CVE-2014-6278
  * Updated patches with official upstream versions:
    - debian/patches/CVE-2014-6271.diff
    - debian/patches/CVE-2014-7169.diff
    - debian/patches/variables-affix.diff
    - debian/patches/CVE-2014-718x.diff

5630055... by Marc Deslauriers on 2014-09-26

Import patches-unapplied version 4.3-7ubuntu1.4 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 4a189092c2faa2ea4972f43ce0b2c93f742ded52

New changelog entries:
  * SECURITY UPDATE: out-of-bounds memory access
    - debian/patches/CVE-2014-718x.diff: guard against overflow and fix
      off-by-one in parse.y and y.tab.c.
    - CVE-2014-7186
    - CVE-2014-7187
  * SECURITY IMPROVEMENT: use prefixes and suffixes for function exports
    - debian/patches/variables-affix.diff: add prefixes and suffixes in
      variables.c.

4a18909... by Marc Deslauriers on 2014-09-26

Import patches-unapplied version 4.3-7ubuntu1.3 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 334503e56e41c1ce98e9cb4fcd97cd60afb6efb9

New changelog entries:
  * Updated debian/patches/CVE-2014-7169.diff to also patch y.tab.c in
    case it doesn't get regenerated when built (LP: #1374207)

334503e... by Marc Deslauriers on 2014-09-25

Import patches-unapplied version 4.3-7ubuntu1.2 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 65e16c2cb110ba061ce97407374062bec2adabf5

New changelog entries:
  * SECURITY UPDATE: incomplete fix for CVE-2014-6271
    - debian/patches/CVE-2014-7169.diff: fix logic in parse.y.
    - CVE-2014-7169

65e16c2... by Marc Deslauriers on 2014-09-22

Import patches-unapplied version 4.3-7ubuntu1.1 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 4f8f6faeeaedb0f831e31190a1f33facaa0b1552

New changelog entries:
  * SECURITY UPDATE: incorrect function parsing
    - debian/patches/CVE-2014-6271.diff: fix function parsing in
      builtins/common.h, builtins/evalstring.c, subst.c, variables.c.
    - CVE-2014-6271

4f8f6fa... by Matthias Klose on 2014-04-16

Import patches-unapplied version 4.3-7ubuntu1 to ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: f533783ce984e3c174f7d97ea121842f682be9ea

New changelog entries:
  * Merge with Debian, replacing local with upstream patches. LP: #1294669.

f533783... by Matthias Klose on 2014-04-16

Import patches-unapplied version 4.3-7 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 4e3ea3916e36936ea4e9976f361df70bc847e550

New changelog entries:
  * Apply upstream patches 009 - 011 (replacing local patches):
    - Fix a problem with unsigned sign extension when attempting to reallocate
      the input line when it is fewer than 3 characters long and there has been
      a history expansion. The sign extension causes the shell to not
      reallocate the line, which results in a segmentation fault when it writes
      past the end.
    - Change the behavior of programmable completion to compensate for two
      assumptions made by the bash-completion package.
    - The signal handling changes to bash and readline (to avoid running any
      code in a signal handler context) cause the cursor to be placed on the
      wrong line of a multi-line command after a ^C interrupts editing.

4e3ea39... by Matthias Klose on 2014-04-07

Import patches-unapplied version 4.3-6 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 24ce362919dbeb1328993702c12fa45de00edf79

New changelog entries:
  * Apply upstream patches 001 - 008:
    - A missing check for a valid option prevented `test -R' from working.
      There is another problem that causes bash to look up the wrong variable
      name when processing the argument to `test -R'.
    - A change to save state while running the DEBUG trap caused pipelines to
      hang on systems which need process group synchronization while building
      pipelines.
    - When in callback mode, some readline commands can cause readline
      to segfault by passing invalid contexts to callback functions.
    - The `.' command in vi mode cannot undo multi-key commands beginning with
      `c', `d', and `y' (command plus motion specifier).
    - When in Posix mode, bash did not correctly interpret the ANSI-C-style
      $'...' quoting mechanism when performing pattern substitution word
      expansions within double quotes.
    - A shell that started with job control active but was not interactive left
      the terminal in the wrong process group when exiting, causing its parent
      shell to get a stop signal when it attempted to read from the terminal.
    - Using compound assignments for associative arrays like
        assoc=( [x]= [y]=bar )
      left the value corresponding to the key `x' NULL. This caused
      subsequent lookups to interpret it as unset.
    - Some extended glob patterns incorrectly matched filenames with a leading
      dot, regardless of the setting of the `dotglob' option.
  * Replace already applied patches by the upstream patch files.

24ce362... by Matthias Klose on 2014-03-29

Import patches-unapplied version 4.3-5 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 2c19fc655b72833c7f5e843ae11a2a383342abee

New changelog entries:
  * Fix a display issue when a multiline command is aborted with ^C.
  * Fix a crash after a failed history expansion. LP: #1294669.