VesperOS/shadow
6
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
7f6e0ec904c4c9ba2db969c8131d3db9514943a1
shadow/debian
History
Sylvain Beucler 7f6e0ec904 Import Debian changes 1:4.8.1-1+deb11u1 
shadow (1:4.8.1-1+deb11u1) bullseye-security; urgency=high
.
  * Non-maintainer upload by the LTS Security Team.
  * CVE-2023-4641: When asking for a new password, shadow-utils asks the
    password twice. If the password fails on the second attempt,
    shadow-utils fails in cleaning the buffer used to store the first
    entry. This may allow an attacker with enough access to retrieve the
    password from the memory. (Closes: #1051062)
  * CVE-2023-29383: It is possible to inject control characters into
    fields provided to the SUID program chfn (change finger). Although it
    is not possible to exploit this directly (e.g., adding a new user
    fails because \n is in the block list), it is possible to misrepresent
    the /etc/passwd file when viewed. (Closes: #1034482)
  * Add Salsa-CI configuration.
  * Silence lintian error that can't be fixed after freeze.
2025-04-18 17:29:39 +02:00
..
default
debian/default/useradd: Fix typo DHSELL -> DSHELL
2019-12-27 22:44:17 +01:00
patches
Import Debian changes 1:4.8.1-1+deb11u1
2025-04-18 17:29:39 +02:00
source
Switch to dpkg-source 3.0 (quilt) format
2014-03-15 12:12:50 +01:00
upstream
Fix checking upstream tarball's OpenPGP signature
2019-06-23 16:49:11 +02:00
bugs-usertags
Move Debian-related files to debian/
2013-07-27 18:36:40 +02:00
changelog
Import Debian changes 1:4.8.1-1+deb11u1
2025-04-18 17:29:39 +02:00
control
Fix lintian warning useless-autoreconf-build-depends
2019-12-05 15:17:06 +01:00
copyright
Explicitly point to GPL-2 document in debian/copyright
2014-04-18 08:29:43 +02:00
cpgr.8
105_zn_CN was just applied to upstream repository.
2007-10-27 12:51:13 +00:00
cppw.8
Fix a typo. Thanks to Justin Pryzby. Closes: #447757
2007-10-27 13:15:50 +00:00
dependencies
Move Debian-related files to debian/
2013-07-27 18:36:40 +02:00
gitlab-ci.yml
Run autopkgtest in Salsa CI when it exists
2019-06-23 22:25:01 +02:00
HOME_MODE.xml
debian/HOME_MODE.xml: Ship the file that was accidentally omitted from upstream tarball
2020-02-07 00:22:41 +01:00
login.defs
Replace user´s -> user's to make login.def file valid ASCII
2017-01-18 16:58:05 +01:00
login.dirs
* debian/login.dirs, debian/passwd.dirs: Removed usr/share/linda/overrides.
2009-07-24 02:03:43 +00:00
login.install
Migrate to dh from cdbs
2019-06-23 16:02:51 +02:00
login.links
105_zn_CN was just applied to upstream repository.
2007-10-27 12:51:13 +00:00
login.lintian-overrides
Drop Lintian override for su, it is not shipped in login anymore
2019-06-19 14:51:45 +02:00
login.maintscript
Clean up /etc/securetty properly on upgrade
2019-07-08 15:46:55 +02:00
login.pam
Move the call to pam_motd before pam_selinux open
2019-09-03 17:00:06 +02:00
login.postinst
Add missing /etc/{subgid|subuid} in postinst
2017-01-20 20:53:36 +01:00
login.preinst
105_zn_CN was just applied to upstream repository.
2007-10-27 12:51:13 +00:00
Makefile
Move Debian-related files to debian/
2013-07-27 18:36:40 +02:00
NEWS
Improve NEWS entry about securetty
2019-07-16 07:36:39 +00:00
passwd.chage.pam
105_zn_CN was just applied to upstream repository.
2007-10-27 12:51:13 +00:00
passwd.chfn.pam
105_zn_CN was just applied to upstream repository.
2007-10-27 12:51:13 +00:00
passwd.chpasswd.pam
* debian/rules, debian/passwd.newusers.pam, debian/passwd.chpasswd.pam:
2009-05-09 17:03:49 +00:00
passwd.chsh.pam
105_zn_CN was just applied to upstream repository.
2007-10-27 12:51:13 +00:00
passwd.dirs
* debian/login.dirs, debian/passwd.dirs: Removed usr/share/linda/overrides.
2009-07-24 02:03:43 +00:00
passwd.examples
105_zn_CN was just applied to upstream repository.
2007-10-27 12:51:13 +00:00
passwd.expire.cron
105_zn_CN was just applied to upstream repository.
2007-10-27 12:51:13 +00:00
passwd.groupadd.pam
105_zn_CN was just applied to upstream repository.
2007-10-27 12:51:13 +00:00
passwd.groupdel.pam
105_zn_CN was just applied to upstream repository.
2007-10-27 12:51:13 +00:00
passwd.groupmod.pam
105_zn_CN was just applied to upstream repository.
2007-10-27 12:51:13 +00:00
passwd.install
Ship some missing man files
2019-06-23 16:17:34 +02:00
passwd.links
105_zn_CN was just applied to upstream repository.
2007-10-27 12:51:13 +00:00
passwd.lintian-overrides
Import Debian changes 1:4.8.1-1+deb11u1
2025-04-18 17:29:39 +02:00
passwd.maintscript
Remove obsolete /etc/cron.daily/passwd in maintainer scripts
2019-07-15 12:51:34 +02:00
passwd.manpages
Ship some missing man files
2019-06-23 16:17:34 +02:00
passwd.newusers.pam
* debian/rules, debian/passwd.newusers.pam, debian/passwd.chpasswd.pam:
2009-05-09 17:03:49 +00:00
passwd.passwd.pam
105_zn_CN was just applied to upstream repository.
2007-10-27 12:51:13 +00:00
passwd.postinst
Use 'set -e' in postinst scripts and not in thei shebang line
2014-04-18 08:27:30 +02:00
passwd.preinst
105_zn_CN was just applied to upstream repository.
2007-10-27 12:51:13 +00:00
passwd.tmpfile
Clean up stale locks on boot
2017-01-20 20:11:49 +01:00
passwd.useradd.pam
105_zn_CN was just applied to upstream repository.
2007-10-27 12:51:13 +00:00
passwd.userdel.pam
105_zn_CN was just applied to upstream repository.
2007-10-27 12:51:13 +00:00
passwd.usermod.pam
105_zn_CN was just applied to upstream repository.
2007-10-27 12:51:13 +00:00
README.debian
105_zn_CN was just applied to upstream repository.
2007-10-27 12:51:13 +00:00
README.source
Cut redundant information from Debian-specific README files
2017-08-12 18:48:09 -04:00
rules
debian/HOME_MODE.xml: Ship the file that was accidentally omitted from upstream tarball
2020-02-07 00:22:41 +01:00
salsa-ci.yml
Import Debian changes 1:4.8.1-1+deb11u1
2025-04-18 17:29:39 +02:00
shadowconfig
Migrate to dh from cdbs
2019-06-23 16:02:51 +02:00
TODO
Remove TODO entries no more relevant.
2013-08-16 00:50:34 +02:00
uidmap.install
fix installation of setuid/setgid/newuidmap/newgidmap man pages
2014-02-26 11:42:34 -05:00
uidmap.lintian-overrides
Add a lintian override for newuidmap and newgidmap setuid binaries
2014-05-04 18:04:15 +02:00
watch
Fix checking upstream tarball's OpenPGP signature
2019-06-23 16:49:11 +02:00

README.source 

A testsuite is also available. Instruction on how to run this testsuite
are available in tests/README

 -- Balint Reczey <rbalint@ubuntu.com>, Sat, 12 Aug 2017 18:46:44 -0400
Reference in New Issue View Git Blame Copy Permalink