VesperOS/shadow
6
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
763 Commits 10 Branches 149 Tags
debian/jessie
Commit Graph

763 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Sylvain Beucler
45e2376c0b Add Salsa-CI config 2025-04-15 16:48:03 +02:00
Sylvain Beucler
4069b87008 Import Debian changes 1:4.2-3+deb8u6 
shadow (1:4.2-3+deb8u6) jessie-security; urgency=high
.
  * Non-maintainer upload by the ELTS Security Team.
  * CVE-2023-4641: When asking for a new password, shadow-utils asks the
    password twice. If the password fails on the second attempt,
    shadow-utils fails in cleaning the buffer used to store the first
    entry. This may allow an attacker with enough access to retrieve the
    password from the memory. (Closes: #1051062)
  * CVE-2023-29383: It is possible to inject control characters into
    fields provided to the SUID program chfn (change finger). Although it
    is not possible to exploit this directly (e.g., adding a new user
    fails because \n is in the block list), it is possible to misrepresent
    the /etc/passwd file when viewed. (Closes: #1034482)
debian/1%4.2-3+deb8u6 		2025-04-15 15:51:43 +02:00
Utkarsh Gupta
8550bc7a3c Import Debian changes 1:4.2-3+deb8u5 
shadow (1:4.2-3+deb8u5) jessie-security; urgency=high
.
  * Non-maintainer upload by the ELTS team.
  * SECURITY UPDATE: Crash or buffer overflow
    - debian/patches/CVE-2017-12424.patch: fix buffer overflow if
      NULL line is present in db in lib/commonio.c.
    - CVE-2017-12424
  * SECURITY UPDATE: Access to privileged information
    - debian/patches/CVE-2018-7169.patch: newgidmap:
      enforce setgroups=deny if self-mapping a group in
      src/newgidmap.c.
    - CVE-2018-7169
debian/1%4.2-3+deb8u5 		2025-04-15 13:59:27 +02:00
Salvatore Bonaccorso
bd62b6b2fb Import Debian changes 1:4.2-3+deb8u4 
shadow (1:4.2-3+deb8u4) jessie-security; urgency=high
.
  * Non-maintainer upload by the Security Team.
  * Reset pid_child only if waitpid was successful.
    This is a regression fix for CVE-2017-2616. If su receives a signal like
    SIGTERM, it is not propagated to the child. (Closes: #862806)
debian/1%4.2-3+deb8u4 		2025-04-15 13:57:33 +02:00
Balint Reczey
096c5f276b Imported Debian patch 1:4.2-3+deb8u3 debian/1%4.2-3+deb8u3 2017-02-26 11:37:09 +01:00
Salvatore Bonaccorso
ba9a0dec9d Imported Debian patch 1:4.2-3+deb8u2 debian/1%4.2-3+deb8u2 2017-02-26 11:36:51 +01:00
Balint Reczey
75e2a3b103 Update changelog 2017-02-24 00:58:22 +01:00
Balint Reczey
e5e623f4ca Add myself to uploaders replacing Nicolas FRANCOIS (Nekral) 2017-02-24 00:57:02 +01:00
Balint Reczey
5fd2757d66 Update changelog 2017-02-24 00:51:09 +01:00
Balint Reczey
bef0d93006 Refresh patches 2017-02-24 00:49:51 +01:00
Balint Reczey
dd729b3572 Fix integer overflow in getulong.c (CVE-2016-6252) 
Closes: #832170
 2017-02-24 00:41:23 +01:00
Salvatore Bonaccorso
1edacbf29a su: properly clear child PID 
Closes: #855943
 2017-02-24 00:27:53 +01:00
Bastian Blank
a784e094c4 Imported Debian patch 1:4.2-3+deb8u1 debian/1%4.2-3+deb8u1 2017-02-24 00:16:58 +01:00
Christian Perrier
1f9119ef49 releasing version 1:4.2-3 debian/4.2-3 2014-11-20 22:29:43 +01:00
Christian Perrier
654077fff8 Enforce hardened builds to workaround cdbs sometimes not building with hardening flags as in 1:4.2-2+b1 Thanks to Dr. Markus Waldeck for pointing the issue and Simon Ruderich For providing a working patch. 2014-11-19 21:51:16 +01:00
Christian Perrier
1566e6de21 I forgot the cheese name. Really really release 4.2-2 debian/4.2-2 2014-05-04 19:50:54 +02:00
Christian Perrier
acf9e8fa4a Release 4.2-3 in unsctable 2014-05-04 19:39:31 +02:00
Christian Perrier
6c29058c9f Fix typo in changelog entry 2014-05-04 19:38:27 +02:00
Christian Perrier
16e593e364 * Check upstream signing key in debian/watch 2014-05-04 19:38:08 +02:00
Christian Perrier
e8c4143fdc Properly name the upstream signing key file 2014-05-04 19:36:54 +02:00
Christian Perrier
b4ad01d830 Add upstream signing key as debian/upstream-signing-key.asc 2014-05-04 19:01:50 +02:00
Christian Perrier
ea64aa07a8 Release 4.2-2 to unstable 2014-05-04 18:05:05 +02:00
Christian Perrier
523b9000fd Add a lintian override for newuidmap and newgidmap setuid binaries 2014-05-04 18:04:15 +02:00
Christian Perrier
71869c2d24 Don't forget the series file 2014-04-30 22:56:50 +02:00
Christian Perrier
2aa9297367 Vietnamese translation update. 2014-04-30 22:56:20 +02:00
Christian Perrier
9bc936e018 Fix conflict in debian/changelog 2014-04-30 22:53:53 +02:00
Christian Perrier
2ef82ecb53 Revert Vietnamese translation update. It should go in upstream patches 2014-04-30 22:53:10 +02:00
Christian Perrier
5fc7602f3e Enable libaudit support. Closes: #745774 2014-04-30 22:29:03 +02:00
Christian Perrier
0274441ec5 Vietnamese translation update. 2014-04-30 22:26:25 +02:00
Christian Perrier
60c9571605 use the new pam_exec functionality from pam 1.1.8-1 to implement the dynamic motd, rather than using /run/motd.dynamic from initscripts. This will allow initscripts to drop /etc/init.d/motd. Closes: #741129 2014-04-30 22:23:26 +02:00
Christian Perrier
c7e2932be4 Enable the login package on hurd-any, but without /bin/login, still provided by the hurd package. Closes: #737805. This fix was accidentally forgotten in 1:4.2-1 2014-04-30 22:20:05 +02:00
Christian Perrier
d480b7dfee Add 1:4.1.5.1-1.1 NMU changelog entries 2014-04-30 22:17:11 +02:00
Christian Perrier
260b0eb77a Last upload integrates the use of dh_autoreconf which has the same effect then Eric Dorland's patch in 1:4.1.5.1-1.1 NMU to drop the use of automake1.9. Closes: #724434 2014-04-30 22:16:01 +02:00
Christian Perrier
34599da75c Release to experimental debian/4.2-1 2014-04-22 09:02:17 +02:00
Christian Perrier
aeb11d0c3e Really bump Standards to 3.9.5 2014-04-18 08:30:35 +02:00
Christian Perrier
9c7fd6b104 Explicitly point to GPL-2 document in debian/copyright 2014-04-18 08:29:43 +02:00
Christian Perrier
1f40da3a5f Use 'set -e' in postinst scripts and not in thei shebang line 2014-04-18 08:27:30 +02:00
Christian Perrier
c84a3fd5f8 Bump Standards to 3.9.5 (checked) 2014-04-18 08:25:16 +02:00
Christian Perrier
25cba03d2d Fix 1000_configure_userns to avoid dropping a needed #endif Closes: #744877 2014-04-16 06:27:01 +02:00
Christian Perrier
68ee6e45ad Unfuzz all patches 2014-03-15 17:31:14 +01:00
Christian Perrier
00e4c00838 Changelog entries for Laurent patches 2014-03-15 12:14:27 +01:00
Laurent Bigonville
45c41f0de6 Switch to dpkg-source 3.0 (quilt) format 2014-03-15 12:12:50 +01:00
Laurent Bigonville
b27aad278a Add build-dependency against bison 2014-03-15 12:12:09 +01:00
Laurent Bigonville
57283d75f7 Call dh-autoreconf since we need to regenerate all the autofoo files 
The .gitignore is removing all the autofoo files and we need to
regenerate them at build time
 2014-03-15 12:11:45 +01:00
Christian Perrier
2649a0dc50 Delete extraneous files 2014-03-14 21:51:48 +01:00
Christian Perrier
68fb7adaf7 Adapt userns patches to 4.2.0 (hopefully) 2014-03-14 21:51:03 +01:00
Christian Perrier
bbfcca9015 Merge tag 'upstream/4.2' 
Upstream version 4.2
 2014-03-01 19:59:51 +01:00
Christian Perrier
65b471a2f2 Imported Upstream version 4.2 upstream/4.2 2014-03-01 19:59:36 +01:00
Micah Anderson
0e011449f7 fix installation of setuid/setgid/newuidmap/newgidmap man pages 2014-02-26 11:42:34 -05:00
Micah Anderson
99a8e345da login.postinst: install a default /etc/subuid and /etc/subgid 2014-02-25 23:11:41 -05:00