ubuntu/+source/rsync:applied/ubuntu/yakkety

Last commit made on 2016-01-19
Get this branch:
git clone -b applied/ubuntu/yakkety https://git.launchpad.net/ubuntu/+source/rsync
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/yakkety
Repository:
lp:ubuntu/+source/rsync

Recent commits

a033207... by Marc Deslauriers on 2016-01-19

Import patches-applied version 3.1.1-3ubuntu1 to applied/ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: 7a8766ffe339add0c4a670d62a38c22db17ee49d
Unapplied parent: 5bfd701280571db36b7a211350b009e1be0c64a4

New changelog entries:
  * SECURITY UPDATE: incomplete fix for rsync path spoofing attack
    - debian/patches/CVE-2014-9512-2.diff: add parent-dir validation for
      --no-inc-recurse too in flist.c, generator.c.
    - CVE-2014-9512

5bfd701... by Marc Deslauriers on 2016-01-19

Import patches-unapplied version 3.1.1-3ubuntu1 to ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: 63041cec32b0861cd347c799051489fb6d882fdb

New changelog entries:
  * SECURITY UPDATE: incomplete fix for rsync path spoofing attack
    - debian/patches/CVE-2014-9512-2.diff: add parent-dir validation for
      --no-inc-recurse too in flist.c, generator.c.
    - CVE-2014-9512

7a8766f... by Paul Slootman <email address hidden> on 2015-03-07

Import patches-applied version 3.1.1-3 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 6d9db7d5d85ea21a8085ab34607dced6883cb4e5
Unapplied parent: 63041cec32b0861cd347c799051489fb6d882fdb

New changelog entries:
  * Added patch for CVE-2014-9512, Rsync path spoofing attack vulnerability.
    closes:#778333

63041ce... by Paul Slootman <email address hidden> on 2015-03-07

Import patches-unapplied version 3.1.1-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 078dc6758a9d5984c03d5ba04473ea993632d050

New changelog entries:
  * Added patch for CVE-2014-9512, Rsync path spoofing attack vulnerability.
    closes:#778333

6d9db7d... by Paul Slootman <email address hidden> on 2014-08-09

Import patches-applied version 3.1.1-2 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 4d256555cb34a00ba0cd72afeca36fcc275e7ac6
Unapplied parent: 078dc6758a9d5984c03d5ba04473ea993632d050

New changelog entries:
  * hardening flags were not applied correctly, debian/rules modified thanks
    to patch from Simon Ruderich.
    closes:#754412

078dc67... by Paul Slootman <email address hidden> on 2014-08-09

Import patches-unapplied version 3.1.1-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: d79fe3e50cd8fe8260a666d74ac80140639f3a36

New changelog entries:
  * hardening flags were not applied correctly, debian/rules modified thanks
    to patch from Simon Ruderich.
    closes:#754412

4d25655... by Paul Slootman <email address hidden> on 2014-07-10

Import patches-applied version 3.1.1-1 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 0bb26caa77e2ba9801d4a4e34ee3a128a5ea3b7d
Unapplied parent: d79fe3e50cd8fe8260a666d74ac80140639f3a36

New changelog entries:
  * new upstream release
    Includes config.* update, closes:#714782
    Includes preallocate patch, closes:#649914
  * Bumped Standards-Version to 3.9.5.0 (no change necessary).
  * revert to using included zlib as there have been numerous reports of failed
    transfers when using -z with the separate zlib.
  * use the now included systemd file instead of our own copy.
  * use hardening=+all flags, thanks to hint from <email address hidden>
  * add noatime patch which adds the --noatime option, which adds the O_NOATIME
    flag when opening files, to no update the access time on kernels that
    support that (linux 2.6.8 and later).
    closes:#738708,#244168
  * changed backtick usage in rules for CFLAGS and LDFLAGS to $(shell ...)
    closes:#699165
  * added autofs to Should-Start: in init.d script.
    closes:#730149
  * added README.Debian file to explain how to get the daemon running.
    closes:#589529
  * simplify init.d nice parameter checking.
    closes:#647145

d79fe3e... by Paul Slootman <email address hidden> on 2014-07-10

Import patches-unapplied version 3.1.1-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 495ef4db46180fa3ad822e23b0f97a1c7a8d3f0c

New changelog entries:
  * new upstream release
    Includes config.* update, closes:#714782
    Includes preallocate patch, closes:#649914
  * Bumped Standards-Version to 3.9.5.0 (no change necessary).
  * revert to using included zlib as there have been numerous reports of failed
    transfers when using -z with the separate zlib.
  * use the now included systemd file instead of our own copy.
  * use hardening=+all flags, thanks to hint from <email address hidden>
  * add noatime patch which adds the --noatime option, which adds the O_NOATIME
    flag when opening files, to no update the access time on kernels that
    support that (linux 2.6.8 and later).
    closes:#738708,#244168
  * changed backtick usage in rules for CFLAGS and LDFLAGS to $(shell ...)
    closes:#699165
  * added autofs to Should-Start: in init.d script.
    closes:#730149
  * added README.Debian file to explain how to get the daemon running.
    closes:#589529
  * simplify init.d nice parameter checking.
    closes:#647145

0bb26ca... by Paul Slootman <email address hidden> on 2014-04-16

Import patches-applied version 3.1.0-3 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 2803098f325618eff15bff09179a1f9a98bc0289
Unapplied parent: 495ef4db46180fa3ad822e23b0f97a1c7a8d3f0c

New changelog entries:
  * fix for CVE-2014-2855 - rsync denial of service
    a remote client can send an invalid username and cause an infinite CPU
    loop on the server child process.
    closes:#744791
  * added upstream signature for uscan usage
  * changed package source format to 3.0 (quilt)

495ef4d... by Paul Slootman <email address hidden> on 2014-04-16

Import patches-unapplied version 3.1.0-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: ee2e75497ccc11bb9c455fd6fa62193ee4fc399a

New changelog entries:
  * fix for CVE-2014-2855 - rsync denial of service
    a remote client can send an invalid username and cause an infinite CPU
    loop on the server child process.
    closes:#744791
  * added upstream signature for uscan usage
  * changed package source format to 3.0 (quilt)