[ubuntu/jaunty] netatalk 2.0.4~beta2-4.1ubuntu1 (Accepted)
Bhavani Shankar
right2bhavi at gmail.com
Tue Feb 3 14:00:35 GMT 2009
netatalk (2.0.4~beta2-4.1ubuntu1) jaunty; urgency=low
* Merge from Debian unstable. Remaining Ubuntu changes: LP: #318665
- Changed dependency from libdb-dev to libdb4.6-dev to correct
FTBFS due to an issue caused by mismatches on installed binaries
and development headers (db4.7 is installed under a different soname
which breaks a check in netatalk) (LP: #262991)
- debian/control:
+ Replace libltdl3-dev with libltdl7-dev.
+ Recommend db4.6-util instead of db4.2-util as we build netatalk with
db4.6.
netatalk (2.0.4~beta2-4.1) unstable; urgency=high
* Non-maintainer upload by the Security Team.
* Fix incomplete upstream patch for CVE-2008-5718 by
escaping every problematic character and not only those which
enables an attacker to execute arbitrary code
(213_CVE-2008-5718.patch; Closes: #510585).
netatalk (2.0.4~beta2-4) unstable; urgency=high
* Rebuild for unstable branch.
netatalk (2.0.4~beta2-3) UNRELEASED; urgency=high
* Update debian/copyrights:
+ Merge entries with same owners and license (only differing years)
+ Consistently list years before owner
+ Sort owners
+ Explicitly include GAP licenses (wording vary slightly)
+ Fix GPL-2+ licensed files wrongly registered as GAP
* Keep urgency=high as 2.0.4~beta2-2 changes are still pending.
netatalk (2.0.4~beta2-2) unstable; urgency=high
* Always use gcrypt. Simplify optional openssl support.
* Readd and update OpenSSL section to README.Debian, and improve NEWS
entry to clarify that Randnum UAM is no longer provided by default.
* Add patches 001-005 (but avoid applying some of them) to sync with
upstream development, fixing the following issues:
+ remove bogus default ppd _PATH_PAPDPPDFILE
+ remove signed/unsigned gcc warning
+ better handling of bogus ppd files
+ Remove ucb includes from Netatalk (i.e. drop SunOS 4.x support)
+ Fix off-by-one error in PPD file processing
+ Fix dhx2 logincont packet size
* Update copyright hints (no new owners or licenses).
* Explicitly build-depend on libdb4.2-dev (not libdb-dev).
* Mention MacOS X 10.5.x group ACL workaround in README.Debian.
Closes: bug#458174, thanks to Tim Miller Dyck.
* Set urgency=high due to possible security implications in above, and
due to accidentally linking against BerkeleyDB 4.6 in prior release.
netatalk (2.0.4~beta2-1) unstable; urgency=high
* New upstream prerelease:
+ Quote chars in papd popen variables expansion (and other fixes to
papd). Fixes remote execution security hole CVE-2008-5718. Closes:
bug#510585.
* Mangle upstream tarball beta version.
* Drop patches 000 and 001 contained upstream now.
* Unfuzz patches 107, 109, 205 and 212.
* Unfuzz and enable patches 204a, 207a, 208, 209 and 211.
* Build new DHX2 UAM:
+ Build-depend on libgcrypt11-dev
+ Configure with --with-libgcrypt
+ Drop SSL note from README.Debian
+ Add NEWS entry regarding new and recommended DHX2 UAM
* Disable CDBS autotools reconfiguration.
* Update cdbs snippets:
+ Move dependency cleanup to new local snippet package-relations.mk.
+ Update copyright-check output to more closely match proposed new
copyright file format.
+ Several minor improvements to upstream-tarball.mk.
+ Compact simple licenses (those without ' or later') in
copyright-check.mk
+ Fix use underscore (not dash) in internal variable
+ Ignore only debian changelog and copyright-related files by
default in copyright-check.mk
+ Correct and update copyright hints of the snippets themselves
+ Update README.cdbs-tweaks.
* Add DEB_MAINTAINER_MODE in debian/rules (thanks to Romain Beauxis).
* Stop installing README.ids no longer provided upstream.
* Rewrite debian/copyright using new new format specification, and
update copyright hints.
* Semi-auto-update debian/control to update dependencies:
DEB_MAINTAINER_MODE=1 fakeroot debian/rules clean
* Set urgency=high due to security fix.
Date: Mon, 02 Feb 2009 19:59:05 +0530
Changed-By: Bhavani Shankar <right2bhavi at gmail.com>
Maintainer: Ubuntu MOTU Developers <ubuntu-motu at lists.ubuntu.com>
Signed-By: Daniel Holbach <daniel.holbach at ubuntu.com>
https://launchpad.net/ubuntu/jaunty/+source/netatalk/2.0.4~beta2-4.1ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Mon, 02 Feb 2009 19:59:05 +0530
Source: netatalk
Binary: netatalk
Architecture: source
Version: 2.0.4~beta2-4.1ubuntu1
Distribution: jaunty
Urgency: high
Maintainer: Ubuntu MOTU Developers <ubuntu-motu at lists.ubuntu.com>
Changed-By: Bhavani Shankar <right2bhavi at gmail.com>
Description:
netatalk - AppleTalk user binaries
Closes: 458174 510585 510585
Launchpad-Bugs-Fixed: 262991 318665
Changes:
netatalk (2.0.4~beta2-4.1ubuntu1) jaunty; urgency=low
.
* Merge from Debian unstable. Remaining Ubuntu changes: LP: #318665
- Changed dependency from libdb-dev to libdb4.6-dev to correct
FTBFS due to an issue caused by mismatches on installed binaries
and development headers (db4.7 is installed under a different soname
which breaks a check in netatalk) (LP: #262991)
- debian/control:
+ Replace libltdl3-dev with libltdl7-dev.
+ Recommend db4.6-util instead of db4.2-util as we build netatalk with
db4.6.
.
netatalk (2.0.4~beta2-4.1) unstable; urgency=high
.
* Non-maintainer upload by the Security Team.
* Fix incomplete upstream patch for CVE-2008-5718 by
escaping every problematic character and not only those which
enables an attacker to execute arbitrary code
(213_CVE-2008-5718.patch; Closes: #510585).
.
netatalk (2.0.4~beta2-4) unstable; urgency=high
.
* Rebuild for unstable branch.
.
netatalk (2.0.4~beta2-3) UNRELEASED; urgency=high
.
* Update debian/copyrights:
+ Merge entries with same owners and license (only differing years)
+ Consistently list years before owner
+ Sort owners
+ Explicitly include GAP licenses (wording vary slightly)
+ Fix GPL-2+ licensed files wrongly registered as GAP
* Keep urgency=high as 2.0.4~beta2-2 changes are still pending.
.
netatalk (2.0.4~beta2-2) unstable; urgency=high
.
* Always use gcrypt. Simplify optional openssl support.
* Readd and update OpenSSL section to README.Debian, and improve NEWS
entry to clarify that Randnum UAM is no longer provided by default.
* Add patches 001-005 (but avoid applying some of them) to sync with
upstream development, fixing the following issues:
+ remove bogus default ppd _PATH_PAPDPPDFILE
+ remove signed/unsigned gcc warning
+ better handling of bogus ppd files
+ Remove ucb includes from Netatalk (i.e. drop SunOS 4.x support)
+ Fix off-by-one error in PPD file processing
+ Fix dhx2 logincont packet size
* Update copyright hints (no new owners or licenses).
* Explicitly build-depend on libdb4.2-dev (not libdb-dev).
* Mention MacOS X 10.5.x group ACL workaround in README.Debian.
Closes: bug#458174, thanks to Tim Miller Dyck.
* Set urgency=high due to possible security implications in above, and
due to accidentally linking against BerkeleyDB 4.6 in prior release.
.
netatalk (2.0.4~beta2-1) unstable; urgency=high
.
* New upstream prerelease:
+ Quote chars in papd popen variables expansion (and other fixes to
papd). Fixes remote execution security hole CVE-2008-5718. Closes:
bug#510585.
* Mangle upstream tarball beta version.
* Drop patches 000 and 001 contained upstream now.
* Unfuzz patches 107, 109, 205 and 212.
* Unfuzz and enable patches 204a, 207a, 208, 209 and 211.
* Build new DHX2 UAM:
+ Build-depend on libgcrypt11-dev
+ Configure with --with-libgcrypt
+ Drop SSL note from README.Debian
+ Add NEWS entry regarding new and recommended DHX2 UAM
* Disable CDBS autotools reconfiguration.
* Update cdbs snippets:
+ Move dependency cleanup to new local snippet package-relations.mk.
+ Update copyright-check output to more closely match proposed new
copyright file format.
+ Several minor improvements to upstream-tarball.mk.
+ Compact simple licenses (those without ' or later') in
copyright-check.mk
+ Fix use underscore (not dash) in internal variable
+ Ignore only debian changelog and copyright-related files by
default in copyright-check.mk
+ Correct and update copyright hints of the snippets themselves
+ Update README.cdbs-tweaks.
* Add DEB_MAINTAINER_MODE in debian/rules (thanks to Romain Beauxis).
* Stop installing README.ids no longer provided upstream.
* Rewrite debian/copyright using new new format specification, and
update copyright hints.
* Semi-auto-update debian/control to update dependencies:
DEB_MAINTAINER_MODE=1 fakeroot debian/rules clean
* Set urgency=high due to security fix.
Checksums-Sha1:
39cf61bac2b2d5d037b07f7b52e807408526458f 1698 netatalk_2.0.4~beta2-4.1ubuntu1.dsc
fa8c8302f953274ccf5e243a43baf448f24ab518 1340353 netatalk_2.0.4~beta2.orig.tar.gz
e604bd808049af754b89fe3509388acc91eafe6a 94810 netatalk_2.0.4~beta2-4.1ubuntu1.diff.gz
Checksums-Sha256:
56aebdcf8c108ee33c2920cdcc3883784cc664e14307d6f582aa11390a95e489 1698 netatalk_2.0.4~beta2-4.1ubuntu1.dsc
82fa9934513872b1df1de54f1a0dbd752bb45d175d116ba870e0bbb44c6f18f7 1340353 netatalk_2.0.4~beta2.orig.tar.gz
17b981afde515db81256eae673af804e92762e35f5f06122f06505661efb002a 94810 netatalk_2.0.4~beta2-4.1ubuntu1.diff.gz
Files:
8afe6283e9054e5db88b5ae9b2289bcc 1698 net extra netatalk_2.0.4~beta2-4.1ubuntu1.dsc
c1a1266a78179e758a51748f4ead1c3d 1340353 net extra netatalk_2.0.4~beta2.orig.tar.gz
a4e6a326731c1aecff5f4341eb0ff8d4 94810 net extra netatalk_2.0.4~beta2-4.1ubuntu1.diff.gz
Original-Maintainer: Jonas Smedegaard <dr at jones.dk>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAkmITCAACgkQRjrlnQWd1evMJQCbBFuMUK6ZrnoV+LcwDGKnUDUo
UHUAnjJnPg91ztuOtbgict2CJnE3OISm
=eWtt
-----END PGP SIGNATURE-----
More information about the Jaunty-changes
mailing list