ubuntu/+source/heimdal:applied/ubuntu/breezy-security

Last commit made on 2006-02-17
Get this branch:
git clone -b applied/ubuntu/breezy-security https://git.launchpad.net/ubuntu/+source/heimdal
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/breezy-security
Repository:
lp:ubuntu/+source/heimdal

Recent commits

e9ee3df... by Martin Pitt on 2006-02-17

Import patches-applied version 0.6.3-11ubuntu1.2 to applied/ubuntu/breezy-security

Imported using git-ubuntu import.

Changelog parent: 8dbd82dc45e79305bafd826ffa3473399d9636fa
Unapplied parent: 2fde6b97394d893294e52599417f6edb666f19fc

New changelog entries:
  * SECURITY UPDATE: telnetd remote DoS.
  * Add debian/patches/005_telnetd_crash:
    - Apply upstream patch from 0.6.6 version: The attacker could force the
      server to crash in a NULL de-reference before the user logged in,
      resulting in inetd turning telnetd off because it forked too fast.
    - CVE-2006-0677

2fde6b9... by Martin Pitt on 2006-02-17

Import patches-unapplied version 0.6.3-11ubuntu1.2 to ubuntu/breezy-security

Imported using git-ubuntu import.

Changelog parent: 742cfe41320b36daed069f5efa6795676bc1b035

New changelog entries:
  * SECURITY UPDATE: telnetd remote DoS.
  * Add debian/patches/005_telnetd_crash:
    - Apply upstream patch from 0.6.6 version: The attacker could force the
      server to crash in a NULL de-reference before the user logged in,
      resulting in inetd turning telnetd off because it forked too fast.
    - CVE-2006-0677

8dbd82d... by Martin Pitt on 2006-02-08

Import patches-applied version 0.6.3-11ubuntu1.1 to applied/ubuntu/breezy-security

Imported using git-ubuntu import.

Changelog parent: e65fdb367a48836e41bd5cd7876a1b7d785a2bfb
Unapplied parent: 742cfe41320b36daed069f5efa6795676bc1b035

New changelog entries:
  * SECURITY UPDATE: Privilege escalation in rshd: local overwrite and owner
    change of any root writable file.
  * Add debian/patches/004_rshd_priv_escalation:
    - rshd.c: Move creation of users ticket file to later to avoid
      seteuid/setuid dance.
  * CVE-2006-0582

742cfe4... by Martin Pitt on 2006-02-08

Import patches-unapplied version 0.6.3-11ubuntu1.1 to ubuntu/breezy-security

Imported using git-ubuntu import.

Changelog parent: 812b24283e8a2a479af27d2342bd784c54233e25

New changelog entries:
  * SECURITY UPDATE: Privilege escalation in rshd: local overwrite and owner
    change of any root writable file.
  * Add debian/patches/004_rshd_priv_escalation:
    - rshd.c: Move creation of users ticket file to later to avoid
      seteuid/setuid dance.
  * CVE-2006-0582

e65fdb3... by Michael Vogt on 2005-07-06

Import patches-applied version 0.6.3-11ubuntu1 to applied/ubuntu/breezy

Imported using git-ubuntu import.

Changelog parent: 6adcfaa2b58f5b5c1e360efb46f5b73b8d78427d
Unapplied parent: 812b24283e8a2a479af27d2342bd784c54233e25

New changelog entries:
  * Resynchronise with Debian.
  * added "libldap2-dev" to the build-deps (was dropped by MoM)
  * Apply patch to fix "Remotely exploitable buffer overflow in
    getterminaltype function", reported in Secunia advisory SA15718 at
    http://secunia.com/advisories/15718/. Closes: #315065.
  * LDAP support (closes: #95246).
  * Fix buffer overflow security bug in telnet client, CAN-2005-0469,
    closes: #305574.
  * Resynchronise with Debian, resolving minor merge conflict.
  * Add Japanese debconf translation (closes: #302485)
  * Updated replaces for heimdal-clients (closes: #303751).
  * Support update-alternatives with rcp man page (closes: #303753).
  * Apply patch to build on amd64 (closes: #300811).
  * Move verify_krb5_conf man page to heimdal-clients (closes: #299905).
  * Include danish debconf translations (closes: #296987).
  * Add missing (versioned) comerr-dev to build depends (closes: #293270).

812b242... by Michael Vogt on 2005-07-06

Import patches-unapplied version 0.6.3-11ubuntu1 to ubuntu/breezy

Imported using git-ubuntu import.

Changelog parent: 712f145c17e61493dc3a18d5bdf0e4e899a5cfe0

New changelog entries:
  * Resynchronise with Debian.
  * added "libldap2-dev" to the build-deps (was dropped by MoM)
  * Apply patch to fix "Remotely exploitable buffer overflow in
    getterminaltype function", reported in Secunia advisory SA15718 at
    http://secunia.com/advisories/15718/. Closes: #315065.
  * LDAP support (closes: #95246).
  * Fix buffer overflow security bug in telnet client, CAN-2005-0469,
    closes: #305574.
  * Resynchronise with Debian, resolving minor merge conflict.
  * Add Japanese debconf translation (closes: #302485)
  * Updated replaces for heimdal-clients (closes: #303751).
  * Support update-alternatives with rcp man page (closes: #303753).
  * Apply patch to build on amd64 (closes: #300811).
  * Move verify_krb5_conf man page to heimdal-clients (closes: #299905).
  * Include danish debconf translations (closes: #296987).
  * Add missing (versioned) comerr-dev to build depends (closes: #293270).

6adcfaa... by Adam Conrad on 2005-04-04

Import patches-applied version 0.6.3-7ubuntu1 to applied/ubuntu/hoary

Imported using git-ubuntu import.

Changelog parent: f05d9f3ce64dd501f99f08c7480e361f5856b0f5
Unapplied parent: 712f145c17e61493dc3a18d5bdf0e4e899a5cfe0

New changelog entries:
  * Synchronise with Debian's 0.6.3-7, fixing Ubuntu bug #8501.
  * Remove setconfig from built package, the new kdc.conf config broke this
    script, and the config it changed wasn't used by Heimdal anyway.
    Closes: #289295.
  * Add patch from upstream to stop KDC crashing with SIGPIPE error.
    Closes: #284498.
  * Resynchronise with Debian.
  * Make conflict between heimdal-kdc and krb5-admin-server explicit, see
    #274763 for details.
  * Supply better example kdc.conf (closes: #210575). I deliberately omitted
    the database setting as upstream say it isn't currently usable and will
    change soon. Improvements welcome.
  * Fix hardcoded paths to work with openafs (closes: #286249).
  * Add new German debconf translations (closes: #284375).
  * Set Project-Id-Version, PO-Revision-Date, Last-Translator fields to
    Swedish and Russian translations from information in BTS.
  * Remove kerberos.8.gz man page. This hack is to remove the conflict with
    kerberos4kth which also contains the same file. It doesn't appear worth
    keeping. See bug #274763 for details on conflict.
  * Add note concerning above item in README.Debian.
  * Make conflict between heimdal-kdc and krb5-kdc explicit, see #274763
    for details.
  * Update Build-Dep due to XFree86 -> XOrg libraries split:
    - Versioned xlibs-devs to (>= 6.8.1).
    - Add libxau-dev.
  * Adding the attached Brazilian Portuguese templates (closes: #278730).
  * Fix typo in prerm script (closes: #280354).
  * Move kerberos.8.gz from heimdal-servers into heimdal-docs package.
  * Move kadmind.8.gz from heimdal-servers into heimdal-kdc package.
  * Conflict with pop3-server instead of qpopper (closes: #274774).
  * Stop all daemons as long as PID file exists, regardless if deamon is
    enabled or not (closes: #266575).
  * Add Dutch po-debconf translations (closes: #263597).
  * Add some cleanups recommended in #95246 to debian/rules.
    * Remove debian/*.ex files.
    * Remove debian/control.* files.
    * Remove debian/ex.doc-base.package.
    * Remove obsolete libtool hack.
    * Remove calls to obsolete dh_suidregister program.
  * New upstream version.
  * New upstream version.
  * Fixes security bugs in FTP server.
  * Update replaces header for heimdal-clients, to allow for push.8.gz
    moving from heimdal-servers to heimdal-clients (closes: #264979).
  * Cave in to pressure and remove libdb4.2-dev from depends in
    heimdal-dev. See bug #253894 for reasons, both for and against.
  * Add patch 000_afslog to make afslog work (closes: #261065).

712f145... by Adam Conrad on 2005-04-04

Import patches-unapplied version 0.6.3-7ubuntu1 to ubuntu/hoary

Imported using git-ubuntu import.

Changelog parent: 7f08c12324fb3c6237b0ccd091ea095cc551d980

New changelog entries:
  * Synchronise with Debian's 0.6.3-7, fixing Ubuntu bug #8501.
  * Remove setconfig from built package, the new kdc.conf config broke this
    script, and the config it changed wasn't used by Heimdal anyway.
    Closes: #289295.
  * Add patch from upstream to stop KDC crashing with SIGPIPE error.
    Closes: #284498.
  * Resynchronise with Debian.
  * Make conflict between heimdal-kdc and krb5-admin-server explicit, see
    #274763 for details.
  * Supply better example kdc.conf (closes: #210575). I deliberately omitted
    the database setting as upstream say it isn't currently usable and will
    change soon. Improvements welcome.
  * Fix hardcoded paths to work with openafs (closes: #286249).
  * Add new German debconf translations (closes: #284375).
  * Set Project-Id-Version, PO-Revision-Date, Last-Translator fields to
    Swedish and Russian translations from information in BTS.
  * Remove kerberos.8.gz man page. This hack is to remove the conflict with
    kerberos4kth which also contains the same file. It doesn't appear worth
    keeping. See bug #274763 for details on conflict.
  * Add note concerning above item in README.Debian.
  * Make conflict between heimdal-kdc and krb5-kdc explicit, see #274763
    for details.
  * Update Build-Dep due to XFree86 -> XOrg libraries split:
    - Versioned xlibs-devs to (>= 6.8.1).
    - Add libxau-dev.
  * Adding the attached Brazilian Portuguese templates (closes: #278730).
  * Fix typo in prerm script (closes: #280354).
  * Move kerberos.8.gz from heimdal-servers into heimdal-docs package.
  * Move kadmind.8.gz from heimdal-servers into heimdal-kdc package.
  * Conflict with pop3-server instead of qpopper (closes: #274774).
  * Stop all daemons as long as PID file exists, regardless if deamon is
    enabled or not (closes: #266575).
  * Add Dutch po-debconf translations (closes: #263597).
  * Add some cleanups recommended in #95246 to debian/rules.
    * Remove debian/*.ex files.
    * Remove debian/control.* files.
    * Remove debian/ex.doc-base.package.
    * Remove obsolete libtool hack.
    * Remove calls to obsolete dh_suidregister program.
  * New upstream version.
  * New upstream version.
  * Fixes security bugs in FTP server.
  * Update replaces header for heimdal-clients, to allow for push.8.gz
    moving from heimdal-servers to heimdal-clients (closes: #264979).
  * Cave in to pressure and remove libdb4.2-dev from depends in
    heimdal-dev. See bug #253894 for reasons, both for and against.
  * Add patch 000_afslog to make afslog work (closes: #261065).

f05d9f3... by Brian May <email address hidden> on 2004-05-30

Import patches-applied version 0.6.2-3 to applied/ubuntu/warty

Imported using git-ubuntu import.

Unapplied parent: 7f08c12324fb3c6237b0ccd091ea095cc551d980

7f08c12... by Brian May <email address hidden> on 2004-05-30

Import patches-unapplied version 0.6.2-3 to ubuntu/warty

Imported using git-ubuntu import.