ubuntu/+source/lighttpd:ubuntu/raring

Branch merges

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

4553f9e... by Lorenzo De Liso on 2013-03-25

Import patches-unapplied version 1.4.31-3ubuntu2 to ubuntu/raring-proposed

Imported using git-ubuntu import.

Changelog parent: e915070906c7cda54a3a8cedde4c98726658e319

New changelog entries:
  * Import change from debian version 1.4.31-4:
    - CVE-2013-1427: Switch the socket path for PHP when using FASTCGI. /tmp
      is world-writable which may cause security implications if an attacker
      manages to control /tmp/php.socket before the web server (re-)starts.

e915070... by Lorenzo De Liso on 2012-12-06

Import patches-unapplied version 1.4.31-3ubuntu1 to ubuntu/raring-proposed

Imported using git-ubuntu import.

Changelog parent: 272ebda44fbd21c7f4a50c5d77195ab813da7332

New changelog entries:
  * Merge from debian unstable, remaining changes:
    - debian/control: libgamin-dev rather than libfam-dev to fix startup warning.
    - debian/index.html: s/Debian/Ubuntu/g branding on the default page.
    - Added a UFW profile set:
      + debian/lighttpd.dirs: added etc/ufw/applications.d
      + debian/rules: install the ufw profile.
      + debian/control: Suggests on ufw.
    - Add lighttpd-dev package:
      + debian/control: Added lighttpd-dev package; Build-depends on
        automake, libtool
      + debian/lighttpd-dev.install: Added.
    - debian/rules: Add override_dh_installinit to set "defaults 91 09" to not
      start before apache2 but in the same runlevel with the same priority.
    - debian/patches/build-dev-package.patch: Updated
    - debian/lighttpd.conf: Comment 'use-ipv6.pl' by default, which causes
      failure to bind port in ipv4
  * debian/index.html: corrected BTS Ubuntu link for lighttpd

272ebda... by Arno Töll <email address hidden> on 2012-11-21

Import patches-unapplied version 1.4.31-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: e28e8bdb263e7793f410e9fc944ef8ab18a9c1ba

New changelog entries:
  * Fix "configuration files refer to wrong path for documentation"
    by merging a patch supplied by Denis Laxalde <email address hidden>
    (Closes: #676641)
  * CVE-2012-5533: Fix Denial Of Service attacks against Lighttpd by sending
    faulty Connection headers

e28e8bd... by Arno Töll <email address hidden> on 2012-06-01

Import patches-unapplied version 1.4.31-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 04c05c4ccce9f308582291bf1cf963ddd3a1e60a

New changelog entries:
  * New upstream release
  * Be more careful when removing dangling symlinks, as introduced in 1.4.30-1.
    Under some configurations the postrm script could fail previously.
  * Change the use-ipv6.pl script to read the default listening port as a
    command line argument, fall back to the old default behavior otherwise
    (Closes: #632723, #642604). Thanks to Sebastian Pipping to accidentally
    give a hint how to fix this old problem by driving by.
  * Push standards version to 3.9.3.1 - no further changes
  * Fix "[lighttpd] "ldap" lowercase in extended description" by fixing the
    typo (Closes: #670206)
  * Update my maintainer address

04c05c4... by Arno Töll <email address hidden> on 2011-12-20

Import patches-unapplied version 1.4.30-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: b102ea980bce32f444c0bff3740d8e20fe851e9c

New changelog entries:
  * New upstream release
    + Fix integer overflow (CVE-2011-4362) (Closes: #652726)
    + Fix attack vector as disclosed by the SSL BEAST attack (related:
      CVE-2011-3389). Note: If you are upgrading from an older version you need
      to change your configuration to mitigate effects of the attack. See the
      corresponding NEWS file for details.
    + Count SSL renegotiations to prevent client renegotiations
  * Urgency set to medium due to security updates.
  * Adapt to dpkg 1.16.1 API changes regarding build flags. This enables
    hardening build flags. This means, lighttpd is now being built with
    -fstack-protector and other security related build flags.
  * Add dpkg-dev (>= 1.16.1~) to build-depends to make sure our buildflags are
    properly supported. That's guaranteed for Testing, but might be helpful to
    know for backporters.
  * Fix "Doesn't remove /etc/lighttpd on purge" by removing dangling symlinks
    /only/. This does not entirely fix the problem of the maintainer, but we can
    not simply remove all files in /etc/lighttpd as other packages or the user
    himself might have left configuration files back (Closes: #642494)
  * Fix "please include systemd service file" Support systemd as alternative to
    sysvinit, ship systemd and tempfiles.d configuration files. Thanks to
    Michael Stapelberg for providing the required files (Closes: #652442)

b102ea9... by Arno Töll <email address hidden> on 2011-07-04

Import patches-unapplied version 1.4.29-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 471cb655aac105f651d56b6b176ae41a31ceef98

New changelog entries:
  * New upstream release
  * Fix "lighty-enable-mod should return non-zero on fail" Update script to
    leave with appropriate exit status (Closes: #629638)
  * Remove the following patches:
    + silence-errors.diff - applied upstream
    + patches/ssl-fix.patch - applied upstream
  * Add `debian/source/options' to make dpkg-source ignore glitches done by
    upstream's Makefile in `src/mod_ssi_exprparser.c' and `src/configparser.c'
  * Run maintainer scripts with `set -e'

471cb65... by Krzysztof Krzyżaniak (eloy) on 2011-04-26

Import patches-unapplied version 1.4.28-5 to debian/sid

Imported using git-ubuntu import.

Changelog parent: a544f35b899fd19b9ab2465c706f4a8b7519f3de

New changelog entries:
  * Build with sbuilder to avoid linking to non-existed packages.

a544f35... by Arno Töll <email address hidden> on 2011-04-09

Import patches-unapplied version 1.4.28-4 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 92669d7dc0477d2376d443be0a302c86b4f10095

New changelog entries:
  [ Krzysztof Krzyżaniak (eloy) ]
  * Add Arno Töll to Uploaders

  [ Arno Töll ]
  * Fix "leaves dangling alternatives on upgrade" add preinst script which
    removes the dangling symlink (Closes: #614716)
  * Fix "/etc/lighttpd/conf-available/15-fastcgi-php.conf: fastcgi-php
    file missing a required directive" add a dependency based recursive module
    enable system in lighty-enable-mod (Closes: #600050)
  * Fix "binNMU for openssl 1.0.0 broke SSL support" backport fix from upstream
    to avoid name clashes between OpenSSL and Lighty's MD5 implementation
    (Closes: #622733)

92669d7... by Olaf van der Spek on 2011-01-03

Import patches-unapplied version 1.4.28-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: cdb1fd883f006c03e5821eef8df27983aa058eea

New changelog entries:
  [ Krzysztof Krzyżaniak (eloy) ]
  * Updated debian/control and debian/copyright files
  * fix for debhelper-overrides-need-versioned-build-depends (>= 7.0.50~)
  * debian/compat: increased to 8

  [ Olaf van der Spek]
  * Don't fail install if server fails to start (closes: #383425)
  * Fix index-file.names typo (closes: #609890)

cdb1fd8... by Krzysztof Krzyżaniak (eloy) on 2010-11-12

Import patches-unapplied version 1.4.28-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: c3f70f157ecfffde1f4f52d521d140eb0e946217

New changelog entries:
  [ Olaf van der Spek ]
  * Use relative instead of absolute links for conf-enabled (closes: #541645)
  * Fix /doc/ for IPv6 (closes: #512583)

  [ Krzysztof Krzyżaniak (eloy) ]
  * Added patch patches/silence-errors.diff (closes: #601177)