ubuntu/+source/rsyslog:applied/ubuntu/trusty-security

Last commit made on 2014-10-09
Get this branch:
git clone -b applied/ubuntu/trusty-security https://git.launchpad.net/ubuntu/+source/rsyslog
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/trusty-security
Repository:
lp:ubuntu/+source/rsyslog

Recent commits

fb39044... by Marc Deslauriers on 2014-10-02

Import patches-applied version 7.4.4-1ubuntu2.3 to applied/ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: d0a69fc835bdca1f3eee6b105bd7c9e2a54a3404
Unapplied parent: 07b5fbea64adfaf5023be0f4f9fbc50332f233ba

New changelog entries:
  * SECURITY UPDATE: denial of service and possible code execution via
    invalid PRI value
    - debian/patches/CVE-2014-3634.patch: limit PRI values in
      grammar/rainerscript.h, plugins/imfile/imfile.c,
      plugins/imklog/imklog.c, plugins/imkmsg/imkmsg.c,
      plugins/imsolaris/imsolaris.c, plugins/imuxsock/imuxsock.c,
      runtime/msg.c, runtime/parser.c, runtime/rsyslog.h,
      runtime/srutils.c, runtime/syslogd-types.h, runtime/typedefs.h,
      tools/syslogd.c.
    - CVE-2014-3634
    - CVE-2014-3683

07b5fbe... by Marc Deslauriers on 2014-10-02

fix denial of service and possible code execution via

Gbp-Pq: CVE-2014-3634.patch.

13f8bc7... by Marc Deslauriers on 2014-10-02

Try to set supplementary groups before dropping UID

Gbp-Pq: 10-initgroups.patch.

a9e7916... by Marc Deslauriers on 2014-10-02

01-dont_create_db.patch

No DEP3 Subject or Description header found

Gbp-Pq: 01-dont_create_db.patch.

0c78ef6... by Marc Deslauriers on 2014-10-02

Import patches-unapplied version 7.4.4-1ubuntu2.3 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 7458e71f2ea4b30d1cd9eb09ae2079f7709c283a

New changelog entries:
  * SECURITY UPDATE: denial of service and possible code execution via
    invalid PRI value
    - debian/patches/CVE-2014-3634.patch: limit PRI values in
      grammar/rainerscript.h, plugins/imfile/imfile.c,
      plugins/imklog/imklog.c, plugins/imkmsg/imkmsg.c,
      plugins/imsolaris/imsolaris.c, plugins/imuxsock/imuxsock.c,
      runtime/msg.c, runtime/parser.c, runtime/rsyslog.h,
      runtime/srutils.c, runtime/syslogd-types.h, runtime/typedefs.h,
      tools/syslogd.c.
    - CVE-2014-3634
    - CVE-2014-3683

d0a69fc... by Chris J Arges on 2014-08-19

Import patches-applied version 7.4.4-1ubuntu2.1 to applied/ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: 1b5057f7b69e1c67cf318bae2c42e972ddb7648e
Unapplied parent: 6d0f4525cc5bf2f58b3bd7cab4ac61cca380107f

New changelog entries:
  * Enable non-kernel facility klog messages. (LP: #1274444)

7458e71... by Chris J Arges on 2014-08-19

Import patches-unapplied version 7.4.4-1ubuntu2.1 to ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: 5f544c360b757565883c230d53092a30191b515a

New changelog entries:
  * Enable non-kernel facility klog messages. (LP: #1274444)

6d0f452... by Chris J Arges on 2014-08-19

Try to set supplementary groups before dropping UID

Gbp-Pq: 10-initgroups.patch.

ef5fc4e... by Chris J Arges on 2014-08-19

01-dont_create_db.patch

No DEP3 Subject or Description header found

Gbp-Pq: 01-dont_create_db.patch.

1b5057f... by Colin Watson on 2013-12-04

Import patches-applied version 7.4.4-1ubuntu2 to applied/ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: 2e09c40c254d76e8bf3b31718d95f519092e7665
Unapplied parent: 0b6af2d03e48025818b18968d20bc14b7197f3dd

New changelog entries:
  * debian/rsyslog.postinst: Make sure /var/log is owned by group syslog and
    is group-writeable (LP: #1256695).
  * Ensure that rsyslogd can create files in group adm, even when dropping
    group privileges to syslog (LP: #484336):
    - debian/patches/10-initgroups.patch: Try to set appropriate
      supplementary groups before dropping UID.
    - debian/rsyslog.postinst: Add syslog user to group adm.