ubuntu/+source/mono:applied/debian/wheezy

Last commit made on 2015-09-05
Get this branch:
git clone -b applied/debian/wheezy https://git.launchpad.net/ubuntu/+source/mono
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/debian/wheezy
Repository:
lp:ubuntu/+source/mono

Recent commits

d780ec2... by Jo Shields <email address hidden> on 2015-03-19

Import patches-applied version 2.10.8.1-8+deb7u1 to applied/debian/wheezy

Imported using git-ubuntu import.

Changelog parent: 3f879ca3375c8a427d72e1721bf143a8845ef131
Unapplied parent: f64b9ee71dbd7e79eb1dc9abbdd279dc9b200032

New changelog entries:
  * [c2afe08] Mono's implementation of the SSL/TLS stack failed to check
    the order of the handshake messages. Which would allow various attacks
    on the protocol to succeed. ("SKIP-TLS" attack).
    (Closes: #780751, CVE-2015-2318)
  * [997bd08] Remove the client-side SSLv2 fallback. There's almost no
    SSLv3 web site left so a v2 fallback is only extra code we do not
    need to carry forward. (Closes: #780751, CVE-2015-2320)
  * [b570325] Remove the EXPORT ciphers and related code path. That was
    still useful in 2003/2004 but the technical and legal landscape changed
    a lot since then. Removing the old, limited key size, cipher suites
    also allow removed additional parts of the code that deals with them.
    ("FREAK" attack) (Closes: #780751, CVE-2015-2319)

f64b9ee... by Jo Shields <email address hidden> on 2015-03-19

<short summary of the patch>

Gbp-Pq: debian-changes.

ba71e79... by Jo Shields <email address hidden> on 2015-03-19

Import patches-unapplied version 2.10.8.1-8+deb7u1 to debian/wheezy

Imported using git-ubuntu import.

Changelog parent: b0f77663068414bce3290535df52de767f92c6eb

New changelog entries:
  * [c2afe08] Mono's implementation of the SSL/TLS stack failed to check
    the order of the handshake messages. Which would allow various attacks
    on the protocol to succeed. ("SKIP-TLS" attack).
    (Closes: #780751, CVE-2015-2318)
  * [997bd08] Remove the client-side SSLv2 fallback. There's almost no
    SSLv3 web site left so a v2 fallback is only extra code we do not
    need to carry forward. (Closes: #780751, CVE-2015-2320)
  * [b570325] Remove the EXPORT ciphers and related code path. That was
    still useful in 2003/2004 but the technical and legal landscape changed
    a lot since then. Removing the old, limited key size, cipher suites
    also allow removed additional parts of the code that deals with them.
    ("FREAK" attack) (Closes: #780751, CVE-2015-2319)

3f879ca... by Jo Shields on 2013-03-03

Import patches-applied version 2.10.8.1-8 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 700e050665b580189f8c6bd7ded8e40207e11a60
Unapplied parent: 58f9c2814b3a4d058ee912625132bdbea68788ef

New changelog entries:
  * [b9108c7] Dirty patch to introduce a new System.Windows.Forms.WebBrowser
    back-end, which does absolutely nothing. This is to allow applications
    which create a WebBrowser object to continue to run without crashing,
    in the absence of a working browser back-end (which we lack right now).
    This patch is sufficient for
    http://www.java2s.com/Tutorial/CSharp/0460__GUI-Windows-Forms/AsimpleBrowser.htm
    to run without crashing. (Closes: #683289, #694948)

b0f7766... by Jo Shields on 2013-03-03

Import patches-unapplied version 2.10.8.1-8 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 0434676fafab52824505ef9ab33df881df8a3386

New changelog entries:
  * [b9108c7] Dirty patch to introduce a new System.Windows.Forms.WebBrowser
    back-end, which does absolutely nothing. This is to allow applications
    which create a WebBrowser object to continue to run without crashing,
    in the absence of a working browser back-end (which we lack right now).
    This patch is sufficient for
    http://www.java2s.com/Tutorial/CSharp/0460__GUI-Windows-Forms/AsimpleBrowser.htm
    to run without crashing. (Closes: #683289, #694948)

58f9c28... by Jo Shields on 2013-03-03

<short summary of the patch>

Gbp-Pq: debian-changes.

700e050... by Jo Shields on 2013-01-28

Import patches-applied version 2.10.8.1-7 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: a9681eb35815ff46b77012eab1d2377730263122
Unapplied parent: d0df28122cbd3d28f644bda85ad590f5e281e1c2

New changelog entries:
  [ Jo Shields ]
  * [4a46aae] Remove armhf from mono-archs.make - It should have been
    removed in 2.10.8.1-6 but was overlooked (Closes: #695743)
  [ Marek Habersack ]
  * [226b326] Fix for Novell bug #739119 (Closes: #686562, CVE-2012-3543)
  * [6983b45] Update to fix for Novell bug #739119

0434676... by Jo Shields on 2013-01-28

Import patches-unapplied version 2.10.8.1-7 to debian/sid

Imported using git-ubuntu import.

Changelog parent: ea76a4b789557349869a158562d7a1d131702640

New changelog entries:
  [ Jo Shields ]
  * [4a46aae] Remove armhf from mono-archs.make - It should have been
    removed in 2.10.8.1-6 but was overlooked (Closes: #695743)
  [ Marek Habersack ]
  * [226b326] Fix for Novell bug #739119 (Closes: #686562, CVE-2012-3543)
  * [6983b45] Update to fix for Novell bug #739119

d0df281... by Jo Shields on 2013-01-28

<short summary of the patch>

Gbp-Pq: debian-changes.

a9681eb... by Jo Shields on 2012-08-27

Import patches-applied version 2.10.8.1-6 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 7fe88d0474ad5fbb7e38ea945c3ce673840c24a0
Unapplied parent: 7f016a9c7ca4174c918b701a6d1106174f698d93

New changelog entries:
  * [da2fc97] Remove armhf from list of supported architectures. It
    ain't supported by the runtime in Mono 2.10.x, and trying to
    shoehorn it in was more difficult than we had hoped. It will
    return in the future, for Mono 2.12. (Closes: #682284)