ubuntu/+source/bash:ubuntu/yakkety-security

Last commit made on 2017-05-17
Get this branch:
git clone -b ubuntu/yakkety-security https://git.launchpad.net/ubuntu/+source/bash
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
ubuntu/yakkety-security
Repository:
lp:ubuntu/+source/bash

Recent commits

2bf8139... by Marc Deslauriers on 2017-05-16

Import patches-unapplied version 4.3-15ubuntu1.1 to ubuntu/yakkety-security

Imported using git-ubuntu import.

Changelog parent: fb018c437b3aeeb3b278529fc89d36c5beed8efc

New changelog entries:
  * SECURITY UPDATE: word expansions on the prompt strings (LP: #1507025)
    - debian/patches/bash43-047.diff: add quoting to parse.y, y.tab.c.
    - CVE-2016-0634
  * SECURITY UPDATE: code execution via crafted SHELLOPTS and PS4
    (LP: #1689304)
    - debian/patches/bash43-048.diff: check for root in variables.c.
    - CVE-2016-7543
  * SECURITY UPDATE: restricted shell bypass via use-after-free
    - debian/patches/bash44-006.diff: check for negative offsets in
      builtins/pushd.def.
    - CVE-2016-9401

fb018c4... by Matthias Klose on 2016-06-24

Import patches-unapplied version 4.3-15ubuntu1 to ubuntu/yakkety-proposed

Imported using git-ubuntu import.

Changelog parent: 01aa2ee61d0f40ed03f019dd7302e0a21dfb752a

New changelog entries:
  * Merge with Debian; remaining changes:
    - skel.bashrc:
      - Run lesspipe.
      - Enable ls aliases.
      - Set options in ll alias to -alF.
      - Define an alert alias.
      - Enabled colored grep aliases.
    - etc.bash.bashrc:
      - Add sudo hint.

01aa2ee... by Matthias Klose on 2016-06-23

Import patches-unapplied version 4.3-15 to debian/sid

Imported using git-ubuntu import.

Changelog parent: e29febe36526d735143b9dc81463a82c90f7706d

New changelog entries:
  * Apply upstream patches 043 - 046. Fixes:
    - When the lastpipe option is enabled, the last component can contain
      nested pipelines and cause a segmentation fault under
      certain circumestances.
    - A typo prevents the `compat42' shopt option from working as intended.
    - If a file open attempted as part of a redirection fails because it is
      interrupted by a signal, the shell needs to process any pending traps
      to allow the redirection to be canceled.
    - An incorrect conversion from an indexed to associative array can result
      in a core dump.
  * Add $HOME/.local/bin to PATH, and add the user's home directories
    unconditionally to the path, so that they are available without
    a new login. Closes: #820856, LP: #1588562.

e29febe... by Matthias Klose on 2015-08-31

Import patches-unapplied version 4.3-14 to debian/sid

Imported using git-ubuntu import.

Changelog parent: f0cbd86c73e99ef0f7fb32e29ba7d1f620ebaa17

New changelog entries:
  * Apply upstream patches 040 - 042.

f0cbd86... by Matthias Klose on 2015-07-26

Import patches-unapplied version 4.3-13 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 9eec0e140b1980235ec70693662e8517525b2346

New changelog entries:
  * Apply upstream patches 034 - 039.
  * Disallow setuid scripts if not called as `sh' and not called with
    the -p option. Closes: #720545, #734866.

9eec0e1... by Matthias Klose on 2015-01-28

Import patches-unapplied version 4.3-12 to debian/sid

Imported using git-ubuntu import.

Changelog parent: aa5de5da1d96d9177a55db165d847b7932adb158

New changelog entries:
  * Apply upstream patches 031 - 033.
  * Add a Built-Using attribute for bash-static. Closes: #769342.
  * Move definition of the macro "FN" out of the region of the "ig"
    macro. Define macros and registers "zZ" and "zY". Closes: #774597.
  * Also set color prompt for *-256color terminals. Closes: #766443.

aa5de5d... by Matthias Klose on 2014-10-07

Import patches-unapplied version 4.3-11 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 0d9caaf8db7e44865a7619e65f09dff3d97d6b99

New changelog entries:
  * Apply upstream patches 028 - 030.
  * Remove the parser-oob patch.

0d9caaf... by Matthias Klose on 2014-09-30

Import patches-unapplied version 4.3-10 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 92fb3677b2a0b0eef21723fcadffd93bc7ac0bb2

New changelog entries:
  * Apply upstream patches 026 and 027.
  * Remove patches CVE-2014-6271 and variables-affix.

92fb367... by Thijs Kinkhorst on 2014-09-25

Import patches-unapplied version 4.3-9.2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 7305d34b84cd0ca74aa9ec97cd750c4233fa9e9d

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * Add variables-affix.patch patch.
    Apply patch from Florian Weimer to add prefix and suffix for environment
    variable names which contain shell functions.
  * Add parser-oob.patch patch.
    Fixes two out-of-bound array accesses in the bash parser.

7305d34... by Florian Weimer on 2014-09-24

Import patches-unapplied version 4.3-9.1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: df85186610044188774168e8092f3d2d2bc35aa5

New changelog entries:
  * Non-maintainer upload by the security team
  * Apply upstream patch bash43-025, fixing CVE-2014-6271.