ubuntu/+source/pam:applied/ubuntu/precise-updates

Last commit made on 2016-03-17
Get this branch:
git clone -b applied/ubuntu/precise-updates https://git.launchpad.net/ubuntu/+source/pam
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/precise-updates
Repository:
lp:ubuntu/+source/pam

Recent commits

b7b6a71... by Tyler Hicks on 2016-03-17

Import patches-applied version 1.1.3-7ubuntu2.3 to applied/ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: 226c97625b08989adc07b384e6e7b13e8e191543
Unapplied parent: 0bd21f69afa07d870c5c4ddaf75ef3ae1029c618

New changelog entries:
  * SECURITY REGRESSION: multiarch update issue (LP: #1558597)
    - debian/patches-applied/cve-2015-3238.patch: Readd the manpage XML
      changes and also add the regenerated man pages to the patch. It is
      required to add the regenerated man pages to the patch because the build
      dependencies to regenerate the man pages are only installed during i386
      builds.
    - debian/patches-applied/pam_umask_usergroups_from_login.defs.patch: Add
      the changes after regenerating pam_umask.8 to the patch for the reasons
      mentioned above.

0bd21f6... by Tyler Hicks on 2016-03-17

Import patches-unapplied version 1.1.3-7ubuntu2.3 to ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: 838acbf54a0ab0b1a207ffd99af0b50b21f600c7

New changelog entries:
  * SECURITY REGRESSION: multiarch update issue (LP: #1558597)
    - debian/patches-applied/cve-2015-3238.patch: Readd the manpage XML
      changes and also add the regenerated man pages to the patch. It is
      required to add the regenerated man pages to the patch because the build
      dependencies to regenerate the man pages are only installed during i386
      builds.
    - debian/patches-applied/pam_umask_usergroups_from_login.defs.patch: Add
      the changes after regenerating pam_umask.8 to the patch for the reasons
      mentioned above.

226c976... by Marc Deslauriers on 2016-03-16

Import patches-applied version 1.1.3-7ubuntu2.2 to applied/ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: bcfff6a1e03c0c856de75df73c3681cfafe3a995
Unapplied parent: 838acbf54a0ab0b1a207ffd99af0b50b21f600c7

New changelog entries:
  * SECURITY REGRESSION: multiarch update issue (LP: #1558114)
    - debian/patches-applied/cve-2015-3238.patch: removed manpage changes
      so they don't get regenerated during build.
    - CVE-2015-3238

838acbf... by Marc Deslauriers on 2016-03-16

Import patches-unapplied version 1.1.3-7ubuntu2.2 to ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: 78944936efc6dbdb3a7c775c03f519158681318b

New changelog entries:
  * SECURITY REGRESSION: multiarch update issue (LP: #1558114)
    - debian/patches-applied/cve-2015-3238.patch: removed manpage changes
      so they don't get regenerated during build.
    - CVE-2015-3238

bcfff6a... by Marc Deslauriers on 2016-03-15

Import patches-applied version 1.1.3-7ubuntu2.1 to applied/ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: e0ad34394ce16f1cad527673ecd86941123a9bb5
Unapplied parent: 78944936efc6dbdb3a7c775c03f519158681318b

New changelog entries:
  * SECURITY UPDATE: pam_userdb case-insensitive search issue
    - debian/patches-applied/cve-2013-7041.patch: fix password hash
      comparison in modules/pam_userdb/pam_userdb.c.
    - CVE-2013-7041
  * SECURITY UPDATE: directory traversal issue in pam_timestamp
    - debian/patches-applied/cve-2014-2583.patch: fix potential directory
      traversal issue in modules/pam_timestamp/pam_timestamp.c.
    - CVE-2014-2583
  * SECURITY UPDATE: username enumeration via large passwords
    - debian/patches-applied/cve-2015-3238.patch: limit password size to
      prevent a helper function hang in modules/pam_exec/pam_exec.8.xml,
      modules/pam_exec/pam_exec.c, modules/pam_unix/pam_unix.8.xml,
      modules/pam_unix/pam_unix_passwd.c, modules/pam_unix/passverify.c,
      modules/pam_unix/passverify.h, modules/pam_unix/support.c.
    - CVE-2015-3238

7894493... by Marc Deslauriers on 2016-03-15

Import patches-unapplied version 1.1.3-7ubuntu2.1 to ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: 0a190c3ada7cb6530be4af6d60faf2948261b54f

New changelog entries:
  * SECURITY UPDATE: pam_userdb case-insensitive search issue
    - debian/patches-applied/cve-2013-7041.patch: fix password hash
      comparison in modules/pam_userdb/pam_userdb.c.
    - CVE-2013-7041
  * SECURITY UPDATE: directory traversal issue in pam_timestamp
    - debian/patches-applied/cve-2014-2583.patch: fix potential directory
      traversal issue in modules/pam_timestamp/pam_timestamp.c.
    - CVE-2014-2583
  * SECURITY UPDATE: username enumeration via large passwords
    - debian/patches-applied/cve-2015-3238.patch: limit password size to
      prevent a helper function hang in modules/pam_exec/pam_exec.8.xml,
      modules/pam_exec/pam_exec.c, modules/pam_unix/pam_unix.8.xml,
      modules/pam_unix/pam_unix_passwd.c, modules/pam_unix/passverify.c,
      modules/pam_unix/passverify.h, modules/pam_unix/support.c.
    - CVE-2015-3238

e0ad343... by Steve Langasek on 2012-02-09

Import patches-applied version 1.1.3-7ubuntu2 to applied/ubuntu/precise

Imported using git-ubuntu import.

Changelog parent: 6d02d5110fca64fba94cbed892a9bfbdf8d4d990
Unapplied parent: 0a190c3ada7cb6530be4af6d60faf2948261b54f

New changelog entries:
  * No-change rebuild with gzip 1.4-1ubuntu2 to get multiarch-clean
    compression of manpages. LP: #871083.

0a190c3... by Steve Langasek on 2012-02-09

Import patches-unapplied version 1.1.3-7ubuntu2 to ubuntu/precise

Imported using git-ubuntu import.

Changelog parent: 99278f5ab189b9b6acdf857592536185901965f0

New changelog entries:
  * No-change rebuild with gzip 1.4-1ubuntu2 to get multiarch-clean
    compression of manpages. LP: #871083.

6d02d51... by Steve Langasek on 2012-01-28

Import patches-applied version 1.1.3-7ubuntu1 to applied/ubuntu/precise

Imported using git-ubuntu import.

Changelog parent: a1fdfa0b755859f78c917ea3c8d37980831a6272
Unapplied parent: 99278f5ab189b9b6acdf857592536185901965f0

New changelog entries:
  * Merge from Debian unstable, remaining changes:
    - debian/libpam-modules.postinst: Add PATH to /etc/environment if it's
      not present there or in /etc/security/pam_env.conf. (should send to
      Debian).
    - debian/libpam0g.postinst: only ask questions during update-manager when
      there are non-default services running.
    - debian/libpam0g.postinst: check if gdm is actually running before
      trying to reload it.
    - debian/libpam0g.postinst: the init script for 'samba' is now named
      'smbd' in Ubuntu, so fix the restart handling.
    - Change Vcs-Bzr to point at the Ubuntu branch.
    - debian/patches-applied/series: Ubuntu patches are as below ...
    - debian/patches-applied/ubuntu-rlimit_nice_correction: Explicitly
      initialise RLIMIT_NICE rather than relying on the kernel limits.
    - debian/patches-applied/pam_umask_usergroups_from_login.defs.patch:
      Deprecate pam_unix' explicit "usergroups" option and instead read it
      from /etc/login.def's "USERGROUP_ENAB" option if umask is only defined
      there. This restores compatibility with the pre-PAM behaviour of login.
    - debian/patches-applied/pam_motd-legal-notice: display the contents of
      /etc/legal once, then set a flag in the user's homedir to prevent
      showing it again.
    - debian/update-motd.5, debian/libpam-modules.manpages: add a manpage
      for update-motd, with some best practices and notes of explanation.
    - debian/patches/update-motd-manpage-ref: add a reference in pam_motd(8)
      to update-motd(5)
    - debian/local/common-session{,-noninteractive}: Enable pam_umask by
      default, now that the umask setting is gone from /etc/profile.
    - debian/local/pam-auth-update: Add the new md5sums for pam_umask addition.
    - Build-depend on libfl-dev in addition to flex, for cross-building
      support.

a1fdfa0... by Steve Langasek on 2012-01-28

Import patches-applied version 1.1.3-7 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 2d1f3a76e8c0e7e9880d48f45e382e408dcf9624
Unapplied parent: 0260ad338b33a4b9d95e026676b96ecc0cc9b6d4

New changelog entries:
  * Updated debconf translations:
    - Danish, thanks to Joe Dalton <email address hidden> (closes: #648382)
    - French, thanks to Jean-Baka Domelevo Entfellner <email address hidden>
      (closes: #649850)
    - Dutch, thanks to Jeroen Schot <email address hidden>
      (closes: #650755)
    - Russian, thanks to Yuri Kozlov <email address hidden> (closes: #650867)
    - Portuguese, thanks to Pedro Ribeiro <email address hidden>
      (closes: #652493)
    - German, thanks to Sven Joachim <email address hidden> (closes: #653407)
    - Spanish, thanks to Javier Fernandez-Sanguino Peña <email address hidden>
      (closes: #654043)
    - Bulgarian, thanks to Damyan Ivanov <email address hidden> (closes: #656518)
    - Slovak, thanks to Ivan Masár <email address hidden> (closes: #656521)
    - Japanese, thanks to Kenshi Muto <email address hidden> (closes: #656834)
    - Polish, thanks to Michał Kułach <email address hidden>
      (closes: #657476)
    - Catalan, thanks to Innocent De Marchi <email address hidden>
      (closes: #657489)
    - Czech, thanks to Miroslav Kure <email address hidden>
      (closes: #657578)
    - Swedish, thanks to Martin Bagge <email address hidden> (closes: #651349)