ubuntu/+source/heimdal:applied/ubuntu/hoary-security

Last commit made on 2006-02-17
Get this branch:
git clone -b applied/ubuntu/hoary-security https://git.launchpad.net/ubuntu/+source/heimdal
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/hoary-security
Repository:
lp:ubuntu/+source/heimdal

Recent commits

5abe296... by Martin Pitt on 2006-02-17

Import patches-applied version 0.6.3-7ubuntu1.3 to applied/ubuntu/hoary-security

Imported using git-ubuntu import.

Changelog parent: d9a78e55e84282ec47e6e4b554c0a3663a61b5cf
Unapplied parent: 4524d46dfcb92da8ed24d05805bbee8060f9ec3a

New changelog entries:
  * SECURITY UPDATE: telnetd remote DoS.
  * Add debian/patches/005_telnetd_crash:
    - Apply upstream patch from 0.6.6 version: The attacker could force the
      server to crash in a NULL de-reference before the user logged in,
      resulting in inetd turning telnetd off because it forked too fast.
    - CVE-2006-0677

4524d46... by Martin Pitt on 2006-02-17

Import patches-unapplied version 0.6.3-7ubuntu1.3 to ubuntu/hoary-security

Imported using git-ubuntu import.

Changelog parent: ad7ce96f9b81d0263251d46f9e3d5f217dab8df3

New changelog entries:
  * SECURITY UPDATE: telnetd remote DoS.
  * Add debian/patches/005_telnetd_crash:
    - Apply upstream patch from 0.6.6 version: The attacker could force the
      server to crash in a NULL de-reference before the user logged in,
      resulting in inetd turning telnetd off because it forked too fast.
    - CVE-2006-0677

d9a78e5... by Martin Pitt on 2006-02-08

Import patches-applied version 0.6.3-7ubuntu1.2 to applied/ubuntu/hoary-security

Imported using git-ubuntu import.

Changelog parent: d327db23013c0fe93f0c6f4f7583e5643b7e986c
Unapplied parent: ad7ce96f9b81d0263251d46f9e3d5f217dab8df3

New changelog entries:
  * SECURITY UPDATE: Privilege escalation in rshd: local overwrite and owner
    change of any root writable file.
  * Add debian/patches/004_rshd_priv_escalation:
    - rshd.c: Move creation of users ticket file to later to avoid
      seteuid/setuid dance.
  * CVE-2006-0582

ad7ce96... by Martin Pitt on 2006-02-08

Import patches-unapplied version 0.6.3-7ubuntu1.2 to ubuntu/hoary-security

Imported using git-ubuntu import.

Changelog parent: 1397ad1d25f411b3fc39171ebc36758039a95d16

New changelog entries:
  * SECURITY UPDATE: Privilege escalation in rshd: local overwrite and owner
    change of any root writable file.
  * Add debian/patches/004_rshd_priv_escalation:
    - rshd.c: Move creation of users ticket file to later to avoid
      seteuid/setuid dance.
  * CVE-2006-0582

d327db2... by Björn Torkelsson on 2005-08-15

Import patches-applied version 0.6.3-7ubuntu1.1 to applied/ubuntu/hoary-security

Imported using git-ubuntu import.

Changelog parent: 6adcfaa2b58f5b5c1e360efb46f5b73b8d78427d
Unapplied parent: 1397ad1d25f411b3fc39171ebc36758039a95d16

New changelog entries:
  * Non-maintainer upload.
  * Fixes from Debian Sarge security update
  * Fix buffer overflow security bug in telnet client, CAN-2005-0469, closes:
    #305574.
  * Applied upstream patch to fix buffer overflow in telnetd, fixes
    CAN-2005-2040

1397ad1... by Björn Torkelsson on 2005-08-15

Import patches-unapplied version 0.6.3-7ubuntu1.1 to ubuntu/hoary-security

Imported using git-ubuntu import.

Changelog parent: 712f145c17e61493dc3a18d5bdf0e4e899a5cfe0

New changelog entries:
  * Non-maintainer upload.
  * Fixes from Debian Sarge security update
  * Fix buffer overflow security bug in telnet client, CAN-2005-0469, closes:
    #305574.
  * Applied upstream patch to fix buffer overflow in telnetd, fixes
    CAN-2005-2040

6adcfaa... by Adam Conrad on 2005-04-04

Import patches-applied version 0.6.3-7ubuntu1 to applied/ubuntu/hoary

Imported using git-ubuntu import.

Changelog parent: f05d9f3ce64dd501f99f08c7480e361f5856b0f5
Unapplied parent: 712f145c17e61493dc3a18d5bdf0e4e899a5cfe0

New changelog entries:
  * Synchronise with Debian's 0.6.3-7, fixing Ubuntu bug #8501.
  * Remove setconfig from built package, the new kdc.conf config broke this
    script, and the config it changed wasn't used by Heimdal anyway.
    Closes: #289295.
  * Add patch from upstream to stop KDC crashing with SIGPIPE error.
    Closes: #284498.
  * Resynchronise with Debian.
  * Make conflict between heimdal-kdc and krb5-admin-server explicit, see
    #274763 for details.
  * Supply better example kdc.conf (closes: #210575). I deliberately omitted
    the database setting as upstream say it isn't currently usable and will
    change soon. Improvements welcome.
  * Fix hardcoded paths to work with openafs (closes: #286249).
  * Add new German debconf translations (closes: #284375).
  * Set Project-Id-Version, PO-Revision-Date, Last-Translator fields to
    Swedish and Russian translations from information in BTS.
  * Remove kerberos.8.gz man page. This hack is to remove the conflict with
    kerberos4kth which also contains the same file. It doesn't appear worth
    keeping. See bug #274763 for details on conflict.
  * Add note concerning above item in README.Debian.
  * Make conflict between heimdal-kdc and krb5-kdc explicit, see #274763
    for details.
  * Update Build-Dep due to XFree86 -> XOrg libraries split:
    - Versioned xlibs-devs to (>= 6.8.1).
    - Add libxau-dev.
  * Adding the attached Brazilian Portuguese templates (closes: #278730).
  * Fix typo in prerm script (closes: #280354).
  * Move kerberos.8.gz from heimdal-servers into heimdal-docs package.
  * Move kadmind.8.gz from heimdal-servers into heimdal-kdc package.
  * Conflict with pop3-server instead of qpopper (closes: #274774).
  * Stop all daemons as long as PID file exists, regardless if deamon is
    enabled or not (closes: #266575).
  * Add Dutch po-debconf translations (closes: #263597).
  * Add some cleanups recommended in #95246 to debian/rules.
    * Remove debian/*.ex files.
    * Remove debian/control.* files.
    * Remove debian/ex.doc-base.package.
    * Remove obsolete libtool hack.
    * Remove calls to obsolete dh_suidregister program.
  * New upstream version.
  * New upstream version.
  * Fixes security bugs in FTP server.
  * Update replaces header for heimdal-clients, to allow for push.8.gz
    moving from heimdal-servers to heimdal-clients (closes: #264979).
  * Cave in to pressure and remove libdb4.2-dev from depends in
    heimdal-dev. See bug #253894 for reasons, both for and against.
  * Add patch 000_afslog to make afslog work (closes: #261065).

712f145... by Adam Conrad on 2005-04-04

Import patches-unapplied version 0.6.3-7ubuntu1 to ubuntu/hoary

Imported using git-ubuntu import.

Changelog parent: 7f08c12324fb3c6237b0ccd091ea095cc551d980

New changelog entries:
  * Synchronise with Debian's 0.6.3-7, fixing Ubuntu bug #8501.
  * Remove setconfig from built package, the new kdc.conf config broke this
    script, and the config it changed wasn't used by Heimdal anyway.
    Closes: #289295.
  * Add patch from upstream to stop KDC crashing with SIGPIPE error.
    Closes: #284498.
  * Resynchronise with Debian.
  * Make conflict between heimdal-kdc and krb5-admin-server explicit, see
    #274763 for details.
  * Supply better example kdc.conf (closes: #210575). I deliberately omitted
    the database setting as upstream say it isn't currently usable and will
    change soon. Improvements welcome.
  * Fix hardcoded paths to work with openafs (closes: #286249).
  * Add new German debconf translations (closes: #284375).
  * Set Project-Id-Version, PO-Revision-Date, Last-Translator fields to
    Swedish and Russian translations from information in BTS.
  * Remove kerberos.8.gz man page. This hack is to remove the conflict with
    kerberos4kth which also contains the same file. It doesn't appear worth
    keeping. See bug #274763 for details on conflict.
  * Add note concerning above item in README.Debian.
  * Make conflict between heimdal-kdc and krb5-kdc explicit, see #274763
    for details.
  * Update Build-Dep due to XFree86 -> XOrg libraries split:
    - Versioned xlibs-devs to (>= 6.8.1).
    - Add libxau-dev.
  * Adding the attached Brazilian Portuguese templates (closes: #278730).
  * Fix typo in prerm script (closes: #280354).
  * Move kerberos.8.gz from heimdal-servers into heimdal-docs package.
  * Move kadmind.8.gz from heimdal-servers into heimdal-kdc package.
  * Conflict with pop3-server instead of qpopper (closes: #274774).
  * Stop all daemons as long as PID file exists, regardless if deamon is
    enabled or not (closes: #266575).
  * Add Dutch po-debconf translations (closes: #263597).
  * Add some cleanups recommended in #95246 to debian/rules.
    * Remove debian/*.ex files.
    * Remove debian/control.* files.
    * Remove debian/ex.doc-base.package.
    * Remove obsolete libtool hack.
    * Remove calls to obsolete dh_suidregister program.
  * New upstream version.
  * New upstream version.
  * Fixes security bugs in FTP server.
  * Update replaces header for heimdal-clients, to allow for push.8.gz
    moving from heimdal-servers to heimdal-clients (closes: #264979).
  * Cave in to pressure and remove libdb4.2-dev from depends in
    heimdal-dev. See bug #253894 for reasons, both for and against.
  * Add patch 000_afslog to make afslog work (closes: #261065).

f05d9f3... by Brian May <email address hidden> on 2004-05-30

Import patches-applied version 0.6.2-3 to applied/ubuntu/warty

Imported using git-ubuntu import.

Unapplied parent: 7f08c12324fb3c6237b0ccd091ea095cc551d980

7f08c12... by Brian May <email address hidden> on 2004-05-30

Import patches-unapplied version 0.6.2-3 to ubuntu/warty

Imported using git-ubuntu import.