Change log for netatalk package in Debian
| 1 → 49 of 49 results | First • Previous • Next • Last |
| Published in bullseye-release |
netatalk (3.1.12~ds-8+deb11u1) bullseye-security; urgency=high
* Fix CVE-2021-31439, CVE-2022-0194, CVE-2022-23121, CVE-2022-23122,
CVE-2022-23123, CVE-2022-23124, CVE-2022-23125, CVE-2022-43634,
CVE-2022-45188, CVE-2023-42464.
Multiple security vulnerabilities have been discovered in netatalk, the
Apple Filing Protocol service, which allow remote attackers to disclose
sensitive information, cause a denial of service or execute arbitrary code.
closes: bug#1051066
-- Daniel Markstedt <email address hidden> Tue, 19 Sep 2023 22:19:20 -0700
| Published in sid-release |
netatalk (3.1.18~ds-1) unstable; urgency=high
[ upstream ]
* new release
+ CVE-2022-22995: Harden create_appledesktop_folder()
closes: bug#1053545
[ Jonas Smedegaard ]
* drop patch 001, obsoleted by upstream changes
* set urgency=high due to security-related bugfix
-- Jonas Smedegaard <email address hidden> Fri, 06 Oct 2023 06:40:15 +0200
Available diffs
| Superseded in sid-release |
netatalk (3.1.17~ds-2) unstable; urgency=medium
[ Daniel Markstedt ]
* Cherry-pick upstream patch for restoring
tcp wrapper autoconf check.
* Update lintian sonames override after removal of
ABI versioning upstream.
[ Jonas Smedegaard ]
* set urgency=high due to previous security-related bugfixes
-- Jonas Smedegaard <email address hidden> Thu, 21 Sep 2023 21:59:44 +0200
| Superseded in sid-release |
netatalk (3.1.17~ds-1) unstable; urgency=high
[ upstream ]
* new release(s)
+ Use non-interactive PAM session when available
closes: bug#1040065, thanks to Richard van den Berg
+ Renames asip-status.pl to asip-status
+ Removes uniconv and cnid2_create from distribution
+ FIX CVE-2023-42464:
Validate data type in dalloc_value_for_key()
+ FIX: Declare a variable before using it in a loop,
which was throwing off the default compiler on RHEL7
closes: bug#1052087
[ Daniel Markstedt ]
* Drop patches obsoleted by upstream changes:
001, 101, 105, 106, 107, 204
* Generate man pages from XML sources with docbook-xsl
* Improve configure parameters:
+ Explicitly define sysconfdir
+ Sort parameters alphabetically
* Add lintian overrides for:
+ package-name-doesnt-match-sonames
+ package-contains-documentation-outside-usr-share-doc
[ Jonas Smedegaard ]
* set urgency=high due to security-related bugfixes
-- Jonas Smedegaard <email address hidden> Sun, 17 Sep 2023 21:58:16 +0200
| Superseded in sid-release |
netatalk (3.1.15~ds-3) unstable; urgency=medium
[ Daniel Markstedt ]
* Cherry-pick upstream patch for:
+ Fix CVE-2022-23121, CVE-2022-23123 regression
* Install netatalk dbus config file into /usr/share prefix
instead of /etc - to appease lintian
* Don't distribute libatalk.so shared lib symlink:
The upstream project is moving towards turning it into a
private library
* Remove copyright info for generated source files
no longer in VCS
* Remove overlapping copyright files covered by wildcards
* Add notes in TODO:
+ to figure out why lintian-overrides are ignored
+ to link with WolfSSL instead of OpenSSL
(OpenSSL 3.0 broke compatibility with DHX)
[ Jonas Smedegaard ]
* update DEP-3 patch headers
-- Jonas Smedegaard <email address hidden> Tue, 29 Aug 2023 17:23:37 +0200
| Superseded in sid-release |
netatalk (3.1.15~ds-2) unstable; urgency=medium
[ Daniel Markstedt ]
* Fix failing smoke test caused by an upstream change
* Replace deprecated dependency `lsb-base'
which is now superseded by Essential package `sysvinit-utils'
* Remove debian.pam override, since upstream now generates
logically identical pam configurations
* Fix duplicate globbing of copyright sources
* Flag all patches as either forwarded or not-needed
* Restore distribution of the afppasswd.1 man page
* Fix typo in previous changelog entry (wrong CVE number)
* Remove obsoleted NEWS file
* Update own email address
* Add item to TODO on cleaning up copyright for generated sources
* Upstream repo renamed from `Netatalk' to `netatalk'
[ Jonas Smedegaard ]
* update DEP-3 patch headers
* renumber patches to match micro naming policy:
203 -> 101, 102 -> 205
-- Jonas Smedegaard <email address hidden> Sat, 26 Aug 2023 10:43:23 +0200
| Superseded in sid-release |
netatalk (3.1.15~ds-1) unstable; urgency=high
[ upstream ]
* new release
+ fixes CVE-2022-45188 CVE-2022-45188;
closes: bug#1024021, thanks to Moritz Mühlenhoff
[ Jonas Smedegaard ]
* adopt package, thanks to renewed interest in the Netatalk team;
add Daniel Markstedt as uploader;
closes: bug#1013308;
closes: bug#1025011, thanks to Moritz Mühlenhoff
* drop patches obsoleted by upstream changes
* unfuzz patches
* update copyright info: update coverage
* generate documentation from Markdown source;
build-depend on cmark-gfm
* add patch 202 to avoid privacy leak in documentation
* set urgency=high due to fixing CVE issue
-- Jonas Smedegaard <email address hidden> Tue, 02 May 2023 20:13:06 +0200
| Superseded in sid-release |
netatalk (3.1.14~ds-1) unstable; urgency=medium
* QA upload.
[ upstream ]
* new release
[ Jonas Smedegaard ]
* update upstream URIs to track project at Github (not sourceforge)
* drop patch cherry-picked upstream now applied
* drop patches 108 109, obsoleted by upstream changes
* update and unfuzz remaining patches
* fix source helper tool copyright-check
to avoid insecure shell expansion
* update source helper tool copyright-check
to extract from illustrator file
* declare compliance with Debian Policy 4.6.2
* update git-buildpackage config:
+ use DEP-14 git branches
+ enable automatic DEP-14 branch name handling
+ add usage config
-- Jonas Smedegaard <email address hidden> Sat, 28 Jan 2023 18:49:16 +0100
Available diffs
| Superseded in sid-release |
netatalk (3.1.13~ds-2) unstable; urgency=medium
* add patch 108 to handle ad_entry() returning NULL;
closes: bug#1013303, thanks to Dennis
* add patch 109 to avoid deprecated CPAN module IO::Socket::INET6
* declare compliance with Debian Policy 4.6.1
* orphan package: set maintainer to Debian QA Group
-- Jonas Smedegaard <email address hidden> Tue, 21 Jun 2022 12:25:00 +0200
Available diffs
- diff from 3.1.13~ds-1 to 3.1.13~ds-2 (8.3 KiB)
| Superseded in sid-release |
netatalk (3.1.13~ds-1) unstable; urgency=high
[ upstream ]
* new release
CVE-2021-31439 CVE-2022-0194 CVE-2022-23121 CVE-2022-23122
CVE-2022-23123 CVE-2022-23124 CVE-2022-23125
[ Jonas Smedegaard ]
* update copyright info:
+ drop irrelevant comment
about spotlight code originating from Wireshark:
Might be true but according to upstream issue
report was written by same author
+ update repackaging
to stop exclude libevent no longer embedded upstream
+ update coverage
* tighten lintian overrides
* drop patches cherry-picked upstream now applied
* unfuzz patches
* set urgency=high due to fixing multiple CVE issues
-- Jonas Smedegaard <email address hidden> Thu, 24 Mar 2022 17:18:08 +0100
Available diffs
| Superseded in sid-release |
netatalk (3.1.12~ds-9) unstable; urgency=medium
* update copyright info:
+ fix typo in comment
+ improve source script copyright-check
+ update copyright info: use Reference field (not License-Reference);
tighten lintian overrides
* declare compliance with Debian Policy 4.6.0
* use debhelper compatibility level 13 (not 12)
* generate up-to-date unicode casefolding code during build;
build-depend on unicode-data
-- Jonas Smedegaard <email address hidden> Mon, 13 Sep 2021 20:12:07 +0200
Available diffs
- diff from 3.1.12~ds-8.2 to 3.1.12~ds-9 (7.1 KiB)
| Superseded in sid-release |
netatalk (3.1.12~ds-8.2) unstable; urgency=high
* Non-maintainer upload.
[ Iain Lane ]
* Build against libtirpc: (Closes: #982633)
+ debian/patches/allow-use-of-tirpc: Fixes quota support being disabled
where this isn't available.
+ debian/rules: Pass --with-libtirpc to enable this new support.
+ debian/control: BD on libtirpc-dev.
This solves autopkgtest regression when building with glibc after
Debian 11 release.
-- Boyuan Yang <email address hidden> Wed, 08 Sep 2021 15:39:24 -0400
Available diffs
| Superseded in sid-release |
netatalk (3.1.12~ds-8.1) unstable; urgency=high
* Non-maintainer upload.
[ Iain Lane ]
* 205_add-support-for-tracker3.patch, control, rules: Port to Tracker 3
using a patch from Fedora (Closes: #993412)
-- Jeremy Bicha <email address hidden> Tue, 07 Sep 2021 19:57:43 -0400
netatalk (3.1.12~ds-8) unstable; urgency=medium
* update patch 105 to support cross-compilation;
closes: bug#977570, thanks to Helmut Grohne
* modernize source script copyright-check
* copyright:
+ fix separate a License-Grant from a Coyright field
+ rename license shortnames to align more closely with SPDX
+ update coverage
-- Jonas Smedegaard <email address hidden> Wed, 16 Dec 2020 23:11:11 +0100
Available diffs
- diff from 3.1.12~ds-7 to 3.1.12~ds-8 (15.0 KiB)
| Superseded in sid-release |
netatalk (3.1.12~ds-7) unstable; urgency=medium
* add patch 105 to fix support cross-compilation;
closes: bug#973834, thanks to Helmut Grohne
* rely on autoconf defaults
(stop explicitly declare default options)
* simplify rules;
stop build-depend on autotools-dev cdbs dh-autoreconf
* use debhelper compatibility level 12 (not 10);
build-depend on debhelper-compat (not debhelper)
* declare compliance with Debian Policy 4.5.1
* generate automatic -dbgsym package,
replacing manual netatalk-dbg package
* update watch file: use dversionmangle=auto
* fix pre-depend on misc:Pre-Depends
-- Jonas Smedegaard <email address hidden> Sun, 06 Dec 2020 03:57:54 +0100
Available diffs
- diff from 3.1.12~ds-6 to 3.1.12~ds-7 (3.4 KiB)
| Superseded in sid-release |
netatalk (3.1.12~ds-6) unstable; urgency=medium
* use system-shared libevent:
+ add patch cherry-picked from upstream merge-request
to avoid embedded libevent
+ unfuzz patch 101
+ exclude libevent when repackaging upstream source
+ build-depend on libevent-dev
* fix stop needlessly depend on libpam-cracklib
* link with libssl and Kerberos;
build-depend on libcrack2-dev libkrb5-dev libssl-dev;
closes: bug#973120, thanks to Lucas Nussbaum
-- Jonas Smedegaard <email address hidden> Mon, 23 Nov 2020 02:05:30 +0100
Available diffs
- diff from 3.1.12~ds-5 to 3.1.12~ds-6 (4.5 KiB)
| Superseded in sid-release |
netatalk (3.1.12~ds-5) unstable; urgency=medium
* add patches cherry-picked from upstream merge-requests:
+ fix ftbfs with GCC-10;
closes: bug#957590, thanks to Matthias Klose
+ fix implicit declarations in become_root() and unbecome_root()
+ fix garbage read in bsd_attr_list()
+ fix use after free in get_tm_used()
+ fix afpd segfault in Spotlight SPARQL parser
* use debhelper compatibility level 10 (not 9)
* stop build-depend on dh-systemd
(provided by debhelper even in oldstable);
closes: bug#958616, thanks to Michael Biebl
* annotate superficial autopkgtest
* unfuzz patch 103
* enable CNID backend mysql
(MariaDB avoids OpenSSL since 1:10.3.13-1,
available since buster);
build-depend on libmariadb-dev-compat
* simplify source script copyright-check
-- Jonas Smedegaard <email address hidden> Fri, 25 Sep 2020 18:06:13 +0200
| Superseded in sid-release |
netatalk (3.1.12~ds-4) unstable; urgency=medium
* Fix Vcs-Git URL.
* Extend patch 101 to support cross-building.
Closes: Bug#942185. Thanks to Helmut Grohne.
* Declare compliance with Debian Policy 4.2.1.
* Set Rules-Requires-Root: no.
-- Jonas Smedegaard <email address hidden> Fri, 11 Oct 2019 19:11:33 +0200
Available diffs
- diff from 3.1.12~ds-3 to 3.1.12~ds-4 (1.1 KiB)
netatalk (3.1.12~ds-3) unstable; urgency=medium * Update autopkgtest: Add sbin paths to PATH. -- Jonas Smedegaard <email address hidden> Sat, 02 Mar 2019 00:32:52 +0100
Available diffs
- diff from 3.1.12~ds-2 to 3.1.12~ds-3 (459 bytes)
| Superseded in sid-release |
netatalk (3.1.12~ds-2) unstable; urgency=medium
* Fix stop build-depend on obsolete libmysqlclient-dev.
Adapt smoketest.
Update documentation to include CNID backend mysql
to list of GPL-incompatible features
legally possible only in local rebuild.
* Bump documentation timestamps,
and timestamp each topic separately.
-- Jonas Smedegaard <email address hidden> Sat, 23 Feb 2019 11:04:52 +0100
Available diffs
- diff from 3.1.12~ds-1 to 3.1.12~ds-2 (1.3 KiB)
| Superseded in sid-release |
netatalk (3.1.12~ds-1) unstable; urgency=medium
[ upstream ]
* New release(s).
Closes: Bug#685878.
+ AppleTalk networking protocol support dropped.
Closes: Bug#187512, #467513, #467514, #489800, #599402, #652825, #660768.
+ Printer Access Protocol (PAP) support dropped.
Closes: Bug#66875, #86185, #141405, #316563, #336495, #772280, #716165.
[ Igor Bernstein ]
* Drop patches and configure options obsoleted by upstream changes.
* Stop install documentation no longer provided upstream.
* Install shared library and files in /var/lib, actually used now.
[ Michele Porelli ]
* Change init style to systemd.
[ Adrian Knoth ]
* Drop rules for uniconv.
* Build-depend on dh-systemd.
[ Jonas Smedegaard ]
* Re-add sysV init script, alongside systemd.
* Repackage upstream source:
+ Exclude embedded code copies of libtalloc libtdb.
+ Exclude pre-generated spotlight code.
* Update patches:
+ Drop patches applied upstream.
+ Extend patch 103 with fixes for additional typos.
+ Add patch 204 to use FHS-compatible state dir /var/lib/netatalk.
+ Unfuzz patches.
* Update watch file:
+ Rewrite usage comment.
+ Use substitution strings.
+ Use suffix ~ds for repackaged upstream source.
* Update copyright info:
+ Fix track scripts by HAT, licensed GPL-2+.
+ Update coverage, track exclusions, and stop track gone files.
+ Track new source files licensed GPL-2/GPL-2+/Autoconf-or-GPL-3+.
* Build linked with system shared libtalloc libtdb.
Add patches 101 201 to use system shared libraries libtalloc libtdb.
Build-depend on libtalloc-dev libtdb-dev.
* Enable AFPStats D-Bus service.
Add patch 102 to migrate to and use python3.
Build-depend on libdbus-glib-1-dev.
Recommend dbus python3 python3-dbus.
* Enable integration with SystemTap.
Build-depend on systemtap-sdt-dev.
* Add NEWS entry listing disruptive changes.
* Stop create obsolete directory var/spool/netatalk.
* Stop provide unmaintained logcheck snippets.
* Enable autopkgtest.
* Improve build-time check for OpenSSL license violation.
* Avoid install manpages for obsolete or avoided commands.
* Update documentation:
+ Drop duplicated changelog and copyright info in README.Debian.
+ Drop obsolete README.Debian note about manual BerkeleyDB migration,
and about AppleTalk DDP and host-to-ip resolving.
* Stop build GSS UAM (except in custom build):
Causes license violation linking against OpenSSL.
Stop build-depend on libkrb5-dev.
Update documentation to mention GSS UAM in OpenSSL notes.
* Build new mysql UAM, linking against libmysqlclient
(not libmariadb to avoid license violation).
Build-depend on libmysqlclient-dev.
* Fix stop enable cracklib support,
needed only with randnum UAM which requires OpenSSL.
Update documentation.
Stop build-depend on libcrack2-dev.
Stop recommend libpam-cracklib, avahi-daemon.
* Update short and long descriptions
to talk only about Apple Filing Protocol
(not obsolete AppleTalk protocol),
and elaborate on differences with SMB protocol.
* Stop build-depend on libcups2-dev, recommend rc db-util,
or suggest texlive-base-bin quota:
Needed for no longer provided features.
* Enable Spotlight integration with tracker.
Build-depend on bison flex: Needed to generate Spotlight code.
Build-depend on libtracker-miner-2.0-dev libtracker-sparql-2.0-dev.
Build-depend on and recommend tracker.
* Add patch 104 to modernize Systemd service file.
-- Jonas Smedegaard <email address hidden> Mon, 18 Feb 2019 12:54:10 +0100
Available diffs
- diff from 2.2.6-3 to 3.1.12~ds-1 (2.3 MiB)
| Published in stretch-release |
netatalk (2.2.5-2+deb9u1) stretch-security; urgency=high * Non-maintainer upload by the Security Team. * Unauthenticated remote code execution in Netatalk (CVE-2018-1160) -- Salvatore Bonaccorso <email address hidden> Thu, 20 Dec 2018 10:39:05 +0100
netatalk (2.2.6-3) unstable; urgency=high
* Regenerate autotools during build.
Really closes: Bug#912091. Thanks (again!) to Helmut Grohne.
* Set urgency=high due to previously fixed CVE-2018-1160.
-- Jonas Smedegaard <email address hidden> Sun, 23 Dec 2018 11:48:52 +0100
Available diffs
- diff from 2.2.6-2 to 2.2.6-3 (585 bytes)
netatalk (2.2.6-2) unstable; urgency=medium
* Acknowledge NMUs.
Closes: Bug#864125, #916930.
Thanks to Salvatore Bonaccorso and Andreas Metzler.
* Simplify rules:
+ Stop resolve build-dependencies in rules file.
* Update notes on local build linked with OpenSSL:
+ Rephrase centered on usage needs (not legalese).
+ Use apt (not aptitude or apt-get) in interactive commands.
+ Stop reference obsolete unofficial package repository.
+ Move build details to README.source.
* Update Vcs-* fields: Maintenance moved to Salsa.
* Stop build-depend on dh-buildinfo.
* Update copyright info:
+ Extend coverage of packaging.
+ Use https protocol in format URL.
* Wrap and sort control file, and strip trailing spaces.
* Use package priority optional (not extra).
* Declare compliance with Debian Policy 4.2.1.
* Fix depend on lsb-base.
* Configure with --enable-a2boot.
Closes: Bug#907958. Thanks to T. Joseph Carter.
* Add patch 106
to fix detect Berkeley DB installed in multiarch location.
Closes: Bug#912091. Thanks to Helmut Grohne.
* Add patches cherry-picked upstream
to fix unauthenticated remote code execution
(replacing semantically identical patch 115 added in 2.2.6-1.2).
-- Jonas Smedegaard <email address hidden> Sat, 22 Dec 2018 19:04:35 +0100
Available diffs
- diff from 2.2.6-1.1 to 2.2.6-2 (7.2 KiB)
netatalk (2.2.6-1.1) unstable; urgency=low
* Non-maintainer upload.
* B-d on libgcrypt20-dev instead of (dummy transition package)
libgcrypt11-dev. Closes: #864125
-- Andreas Metzler <email address hidden> Sat, 27 Oct 2018 11:35:03 +0200
Available diffs
- diff from 2.2.6-1 to 2.2.6-1.1 (635 bytes)
netatalk (2.2.6-1) unstable; urgency=medium
[ upstream ]
* New stable release.
[ Jonas Smedegaard ]
* Update watch file: Limit to 2.x.x releases.
* Drop patches cherry-picked upstream, now applied.
* Drop patch 201: etc2ps paths fixed upstream.
* Advertise DEP3 format in patch headers.
* Update copyright info:
+ Fix consistently reference license BSD-3-Clause~4.
+ Fix separate License-Grant from License.
+ Fix separate Comment from License.
+ Extend coverage of autotools.
+ Extend coverage of packaging.
+ Relicense packaging as GPL-3+.
* Update lintian overrides:
+ Tighten overrides regarding license in License-Reference field.
+ Add overrides regarding FIXMEs in copyright_hints file.
* Drop CUPS workaround build flags: Handled upstream.
* Drop explicit core build flags: Handled in CDBS.
* Modernize Vcs-* fields:
+ Use https protocol.
+ Use git (not gitweb) in path.
* Declare compliance with Debian Policy 4.0.0.
* Modernize cdbs: Do copyright-check in maintainer script (not during
build).
Stop build-depend on licensecheck.
-- Jonas Smedegaard <email address hidden> Sun, 30 Jul 2017 14:08:55 -0400
Available diffs
- diff from 2.2.5-2 to 2.2.6-1 (357.2 KiB)
netatalk (2.2.5-2) unstable; urgency=medium
[ Adrian Knoth ]
* Add patch to source init functions in init.d script.
* Bump debhelper compatibility level to 9.
[ Brian Campbell ]
* Add myself to uploaders
[ Chris Boot ]
* Add myself to uploaders
[ Jonas Smedegaard ]
* Address most FIXMEs.
* Update watch file:
+ Bump to version 4.
+ Track any release (not only 2.x).
+ Mention gpb --uscan in usage comment.
* Stop track upstream source with CDBS (use gpb --uscan).
* Update git-buildpackage config: Filter any .gitignore file.
* Modernize CDBS:
+ Build-depend on licensecheck (not devscripts).
+ Tighten binary package relations to be package-specific.
* Declare compliance with Debian Policy 3.9.8.
* Update copyright info:
+ Resolve remaining FIXMEs.
Closes: Bug#751121. Thanks to Luca Falavigna.
+ Use License-Grant and License-Reference fields.
Thanks to Ben Finney.
+ Clarify vaguely ORed license pair.
+ Re-label to use SPDX license shortnames FSFUL FSFULLR X11.
+ Extend coverage of Debian packaging.
* Add lintian override regarding license in License-Reference field.
See bug#786450.
* Drop example script to convert from netatalk 2.0.4~beta2-4 and
earlier: needed package db4.2-util no longer available.
Stop suggest db4.2-util.
* Fix version in NEWS entry.
* Add patches cherry-picked upstream, including ASP/DDP fixes.
Closes: Bug#760111, #760112. Thanks to Vincent Duvert.
* Fix stop build-depend on d-shlibs.
-- Jonas Smedegaard <email address hidden> Tue, 10 Jan 2017 15:29:57 +0100
Available diffs
- diff from 2.2.5-1.1 to 2.2.5-2 (16.4 KiB)
netatalk (2.2.5-1.1) unstable; urgency=medium * Non-maintainer upload. * Drop Build-Depends on hardening-includes. (Closes: #836757) -- Chris Lamb <email address hidden> Wed, 28 Sep 2016 11:27:14 +0100
Available diffs
netatalk (2.2.5-1) unstable; urgency=medium
[ upstream ]
* New stable release 2.2.3.
+ Add afpd support for Apple mDNSResponder.
+ Add afpd new LDAP config option ldap_uuid_string.
+ Based on Unicode 6.1.0.
+ Update experimental systemd service files to always run both afpd
and cnid_metad (unsuitable for 2.x: lack AppleTalk support).
+ Update afpd to ensure our umask is not altered by e.g. pam_umask.
+ Update afpd to use GSS_C_NO_NAME as server principal when
Kerberos options -fqdn and -krb5service are not set.
+ Update afpd CNID handling for TimeMachine volumes.
Closes: bug#703426. Thanks to Dominic Evans.
+ Fix afpd sendfile() on FreeBSD.
+ Fix afpd to not use searchdb when doing partial name search.
+ Fix possible afpd bug handling disconnected sessions.
+ Fix close IPC file descriptors in afpd session child processes.
+ Fix dbd to not remove BerkeleyDB if still in use by e.g. cnid_dbd
(a bug introduced in 2.2.2).
+ Fix debian initscript to start avahi-daemon (if available) before
atalkd
+ Fix use only ASCII in Zeroconf advertised TimeMachine volume name.
* New stable release 2.2.4:
+ Fix missing UAM links.
+ Fix lockup in AFP logout on Fedora 17.
+ Fix reset signal handlers and alarm timer after successful PAM
authentication. Fixes a problem with AFP disconnects caused by
pam_smbpass.so messing with our handlers and timer.
+ Fix possible afpd problem with sendfile on Solaris derived
platforms.
* New stable release 2.2.5:
+ Fix errors searching volumes.
+ Add configurable symlink handling with a new volume option
'followsymlinks'. Setting the option causes afpd to follow
symlinks on the server side.
+ Reload groups when reloading volumes.
+ Fix a possible crash in cname() where cname_mtouname calls
dirlookup() where the curdir is freed because the dircache
detected a dev/inode cache difference and evicted the object
from the cache.
+ Fix change default FinderInfo for directories to be all 0.
[ Jonas Smedegaard ]
* Update README.source to emphasize control.in file as *not* a
show-stopper for contributions, referring to wiki page for details.
* Adapt to upstream change from CVS to git:
+ Add git URL as alternate upstream source.
+ Have git-import-orig suppress upstream .gitignore file.
+ Drop helper target get-orig-vcs from rules file.
+ Stop tracking md5sum of upstream tarball (track git tags instead).
* Drop dpkg-source local-options hint: Declared options are default
since dpkg-source 1.16.1.
* Move packaging to team maintenance:
+ Update Vcs-* Maintainer fields in control file.
+ (Re-)add myself as uploader.
* Drop patch 101: Adopted upstream.
* Unfuzz patches.
* Separate upstream-relevant part of patch 205 as patch 101 to drop
bogus warning in configfile.
* Fix explicitly enable code paths private since CUPS 1.6.
Closes: bug#713558. Thanks to Patrick Coulthard.
* Add patch 102 to fix bashisms in add_netatalk_printer script.
Closes: bug#581127. Thanks to Raphael Geissert.
* Add patch 103 to fix user-visible typos in log output and
documentation.
Closes: bug#685162. Thanks to Ralf Hildebrandt.
* extend logcheck filters.
Closes: bug#589215, #588832. Thanks to Radek Antoniuk.
* Update copyright file:
+ Fix relabel a license as MIT~veryshort (from GAP).
+ Improve tracking of autotools files.
* Fix DEP5 syntax error (Double "Copyright:").
* Fix revert to SysV stop action at default runlevels:
+ Add patch 104 to adjust LSB header.
+ Drop custom update-rc.d parameters (also other now obsolete ones)
in rules file.
Closes: bug#745520. Thanks to "c" and Chad.
* Tidy patches:
+ Normalize extension of patch 205.
+ Rename patches cherry-picked upstream to be based on changedata +
git hash.
+ Add DEP3 patch headers.
+ Unfuzz patches.
* Limit watch file to 2.x versions.
[ Adrian Knoth ]
* Update copyright file:
+ Fix DEP5 syntax error ("Files:" misspelled).
[ Brian Campbell ]
* Fix patch 103 to exclude debian/changelog typos.
* Add debug package.
* Explicitly set DEB_DESTDIR now that we're building two binary
packages.
* Update package relations:
+ Relax to build-depend unversioned on cdbs: Needed version
satisfied even in oldstable.
+ Build-depend on autotools-dev.
* Cherry-pick patches from upstream mainline git branch:
+ Fix error reporting for connection errors.
+ Fix crash following symlinks.
+ Fix handling of large numbers of volumes.
[ Chris Boot ]
* Add patch 105 to fix an unterminated quoted string in
add_netatalk_printer.
* Update standards version to 3.9.5.
* Fix Vcs-Git URL to make it canonical.
* Fix avoid duplicate Section fields in control file.
-- Jonas Smedegaard <email address hidden> Wed, 23 Apr 2014 16:48:09 +0200
Available diffs
- diff from 2.2.2-1ubuntu2 (in Ubuntu) to 2.2.5-1 (773.3 KiB)
| Deleted in jessie-release (Reason: None provided.) |
| Published in wheezy-release |
| Superseded in sid-release |
netatalk (2.2.2-1) unstable; urgency=low
* New upstream release.
* Drop patch cherry-picked upstream: Included in new upstream release.
* Build-depend on libldap2-dev and libacl1-dev, to enable LDAP support
and support for extended ACLs (and possibly avoid FTBFS).
Closes: bug#645290, #651406. Thanks to Peter Eisentraut and masc.
* Update copyright file:
+ Bump format to 1.0.
+ Fix double-indent in Copyright fields as per Policy §5.6.13.
+ Add Files paragraph for ACL code.
* Bump standards-version to 3.9.3.
* Update copyright file: Add disclaimer to License paragraph
GAP~Makefile.in.
* Bump debhelper compat level to 7.
* Add patch 101 to start avahi-daemon (if available) before atalkd.
Recommend avahi-daemon.
-- Jonas Smedegaard <email address hidden> Tue, 20 Mar 2012 23:37:08 +0100
Available diffs
- diff from 2.2.1-1 (in Ubuntu) to 2.2.2-1 (87.3 KiB)
netatalk (2.2.1-1) unstable; urgency=low
* New upstream release.
+ Closes: bug#637025.
+ Fixes FTBFS on GNU/kFreeBSD.
Closes: bug#630349. Thanks to Petr Salinger.
* Fix typo in comment.
* Update patches:
+ Drop patch 213 (CVE-2008-5718): fixed upstream since 2.0.5.
+ Drop patches 115 and 214 (default → etc/default): fixed upstream
since 2.2.1.
+ Unfuzz patch 114.
+ Add patch cherry-picked from upstream git, to fix EA header
related file move/delete errors.
Closes: bug#648792. Thanks to Tim Miller Dyck.
* Update copyright file: Add/extend a few files sections.
* Update package relations:
+ Tighten build-dependency on cdbs slightly.
+ Relax build-depend unversioned on debhelper and devscripts (needed
versions satisfied even in oldstable).
-- Jonas Smedegaard <email address hidden> Wed, 30 Nov 2011 19:05:23 +0700
netatalk (2.2~beta4-1) unstable; urgency=low * New upstream release. + Fixes "Internal Error" after ad_open on sparc. Closes: bug#606005. Thanks to Alfredo Sola. * Adjust references to unofficial packages in README.Debian. * Use dversionmangle (not uversionmangle) in watch file. Fix add leading dash (-) to upstream version in mangling. * Update patches: + Drop patches 107 and 294 (Zeroconf support): Implemented (differently) upstream now. + Drop patches 109 and 112 (avoid broken XFS linkage) obsolete. + Drop patch 200 (hostname resolving): adopted upstream. + Refresh patch 205. * Rewrite copyright file using draft 174 of DEP-5 format. * Build-depend on and recommend unversioned (i.e. default) BerkeleyDB packages. Closes: bug#621413. Thanks to Ondřej Surý. Simplify suggestions on older versioned BerkeleyDB packages. * Stop installing some documentation dropped upstream, and let CDBS automagically handle some of the remains. * Update control file: + Bump policy compliance to standards-version 3.9.2. + Shorten Vcs-* URLs. * Add patches 115 and (for automade file) 214 to avoid installing unneeded /default dir. Closes: bug#628119. Thanks to Russell Muetzelfeldt and Luk Claes. * Don't ship .la files. Closes: bug#621849. Thanks to Andreas Metzler and Luk Claes. * Stop renaming afile and achfile, dropped upstream. * Explicitly enable DDP (AppleTalk), now disabled by default. * Enable Zeroconf, should be stable now. * Simplify package relations: + Drop (build-)dependency fallback unneeded even for oldstable. -- Jonas Smedegaard <email address hidden> Sun, 05 Jun 2011 21:04:21 +0200
netatalk (2.1.4-1) unstable; urgency=low * New upstream release. * Add NEWS entry on BerkeleyDB bump to 4.8 and databases now auto- upgrading (replacing older testing-only entry bumping to 4.7). Rephrase README.Debian to mention auto-upgrading. * Bump standards compliance to standards-version 3.9.0. * Unfuzz patch 114. * Update copyright file: + Fix document a few missed copyright holders (no new licenses). + Split comments in License fields into separate License-Comments fields. * Ease building with git-buildpackage: Git-ignore quilt .pc dir, and add source local-options. -- Jonas Smedegaard <email address hidden> Sun, 28 Nov 2010 13:26:40 +0100
netatalk (2.1.2-2) unstable; urgency=low * Fix enable DEB_BUILD_HARDENING. -- Jonas Smedegaard <email address hidden> Wed, 23 Jun 2010 22:49:52 +0200
netatalk (2.1.2-1) unstable; urgency=low
* New upstream release.
* Refresh patch 205.
* Tighten reinstall-initscript-quirk: upstream no longer double-
expands DESTDIR.
-- Jonas Smedegaard <email address hidden> Wed, 23 Jun 2010 20:08:29 +0200
netatalk (2.1-2) unstable; urgency=low
* Drop patch 212 (disable CNID metad by default): the CNID scheme used
by default since Netatalk 2.1, dbd, requires metad enabled.
Closes: bug#581773, thanks to Søren Grønning.
-- Jonas Smedegaard <email address hidden> Sat, 15 May 2010 21:09:28 +0200
netatalk (2.1-1) unstable; urgency=low
* New upstream release.
* Update patches:
+ Drop patches 001, 002, 003, 101, 102, 103, 104, 105, 106, 113,
206, 210, 214, and disabled patches 291, 292, 293: Merged upstream
or no longer applies.
+ Refresh remaining (enabled) patches 109, 200, 205, 212, 213, with
shortening quilt options --no-timestamps --no-index -pab.
+ Disable patch 109: XFS quota support apparently no longer broken.
* Use only official CDBS (drop local snippets): All improvements now
adopted upstream.
* Use source format 3.0 (quilt), and stop including patchsys-quilt.mk.
* Refer to FSF website (not postal address) in rules file.
* Bump copyright years in header of in rules file.
* Drop locally implemented DEB_MAINTAINER_MODE in rules file: Now
adopted upstream.
* Rewrite copyright file using draft DEP5 rev. 135. Adds new owners
and licenses, and some files lacking proper licensing are revealed.
* Install docs README.AppleTalk (not README.platforms, its old name)
and README.ids.
* Simplify rules file to no longer regenerate autotools: no patches
affect upstream-shipped automade files.
* Bump standards compliance to standards-version 3.8.4.
* Add workaround for upstream braindead double expanded DESTDIR.
* Tighten build-dependency on cdbs.
* Stop build-depending on libtool, automake1.11 or autoconf.
-- Jonas Smedegaard <email address hidden> Sat, 01 May 2010 10:11:00 +0200
netatalk (2.0.5-3) unstable; urgency=medium
* Fix replace/drop bogus and/or obsolete configure options:
+ Use --without-ssl-dir/--with-ssl-dir (not --with-openssl-dir/
--without-openssl-dir). Closes: bug#565969, thanks to Fabian
Greffrath.
+ Use --enable-tcp-wrappers (not --with-tcp-wrappers).
+ Use --disable-srvloc (not --disable-slp).
+ Drop --disable-logger (obsolete since 2.0.1).
+ Drop --with-mangling (apparently obsolete since 2.0 alpha 1).
+ Drop --with-nls-dir and --without-xfs (apparently obsolete).
* Autoreconfigure during build (since upstream does not enable
maintainer-mode). Disable autotools-related patches. Build-depend on
libtool, automake1.11 and autoconf. Closes: bug#559060, thanks to
Cyril Brulebois and others.
* Add safety-check to fail build if accidentally linked against
libssl. Thanks to Fabian Greffrath (see bug#565969).
* Disable atalkd by default, to not require supported network active
at daemon start time. Closes: bug#565568, thanks to Kurt Roeckx.
Add NEWS entry about the change.
* Build-depend on and enable hardening-includes.
* Fix adjust "See also" of manpages referring to afile or achfile.
* Set urgency=medium as earlier lack of explicit disabling openssl
caused the package to violate licensing for some architectures, also
affecting testing.
-- Jonas Smedegaard <email address hidden> Sat, 23 Jan 2010 05:08:37 +0100
netatalk (2.0.5-2) unstable; urgency=low
* Add patches to sync with upstream stable HEAD:
+ 001_init_sockaddr_in.patch
+ 002_fix_cnid_maint_symlink_attack.patch
+ 003_client-supported_volparam_bitmap.patch. Closes: bug#442228,
thanks also to Patrik Schindler.
* Link against BerkeleyDB 4.8. Update (build-)dependencies, patch 2.6,
README.Debian and example script netatalk_update.sh, and add NEWS
item.
-- Jonas Smedegaard <email address hidden> Tue, 01 Dec 2009 00:54:53 +0100
netatalk (2.0.5-1) unstable; urgency=low
* New upstream prerelease.
* Unfuzz patches, and minimize their headers.
* Fix old-style update-rc.d options to match LSB init script hints:
stop only in runlevel 1 (let system kill it in runlevels 0 and 6).
* Fix rename variable used to mangle version in get-orig-source rule.
* Declare binary dependencies (not only build-dependencies) in
debian/rules. Document reasons for each dependency.
* Really drop suggesting timeout (claimed but forgotten in
2.0.4~rc2-1).
* Build-depend on libcrack2-dev (with cracklib-dev only as fallback).
* Drop build-depending on avahi-client-dev by default (only when
DEB_BUILD_OPTIONS contains zeroconf).
* Improve patch 201 to use modern roff2ps in etc2ps, and suggest
groff.
* Recommend (not suggest) libpam-cracklib, and use default PAM
configfile setup.
* Bump policy compliance to standards version 3.8.3.
-- Jonas Smedegaard <email address hidden> Wed, 25 Nov 2009 18:17:40 +0100
netatalk (2.0.4-2) unstable; urgency=low
* Update copyright hints.
* Lower policy compliance to 3.8.0 (uncertain about sysv script
requirements in 3.8.1).
* Fix order of db upgrade commands in README.Debian. Closes:
bug#533344, thanks (again) to Itai Seggev.
* Update package-relations.mk: Cleanup unversioned+versioned
dependency mix. Improve whitespace cleanup. Rewrite and silence
applying dependencies.
* Fix and improve README.Debian section on recompiling with OpenSSL,
thanks to Gijs Hillenius and others.
-- Jonas Smedegaard <email address hidden> Wed, 09 Sep 2009 23:43:27 +0200
netatalk (2.0.4-1) unstable; urgency=low
* New upstream release.
* Update local CDBS snippets:
+ Fix package-relations cleanup of debhelper 7
+ Implement fail-source-not-repackaged rule in upstream-tarball.mk
+ Update URL to draft DEP5 format in copyright-check.mk output
* Add proper copyright header to debian/rules.
* Rewrite copyright to use DEP5 r54 proposed machine-readable format.
* Fix and improve db upgrade commands in README.Debian, and adjust
NEWS. Closes: bug#533344, thanks to Itai Seggev.
* Update dependencies:
+ Suggest texlive-base-bin (not tetex-bin). Closes: bug#533345,
thanks to Itai Seggev
+ Suggest (not recommend) libpam-cracklib
+ Build-depend on libcups2-dev (not libcupsys2-dev), thanks to
lintian
* Fix patches against autogenerated files:
+ Renumber patches 208, 209 and 211 to have them applied last.
+ Rewrite and rename patch 109 to unconditionally avoid broken xfs
quota, and add new patch 294 doing the same to autogenerated
configure script.
+ Disable patches 107 and 112 to avoid maintaining complex autotools
patch for feature we do not currently use anyway (zeroconf).
Together, above closes: bug#533141, thanks to Itai Seggev and Frank
Lahm.
* Drop Uploaders stanza: I am already maintainer (lintian complains),
and Sebastian haven't contributed for a couple of years (package is
in LowNMU and collab-maint: contributions are still welcome!).
-- Jonas Smedegaard <email address hidden> Tue, 16 Jun 2009 23:32:48 +0200
| Superseded in squeeze-release |
netatalk (2.0.4~rc2-1) unstable; urgency=low
* New upstream prerelease:
+ Drop timeout
+ New afpd volume options illegalseq, allow_hosts, denied_hosts,
dperm and fperm
+ Allow line continuation in afpd.conf and AppleVolumes.default
+ Support CJK encoding in afpd (closes: bug#299742)
+ Default afpd UAMs: DHX + DHX2 (but Debian still only support DHX2)
+ Fix afpd resolveid error code for directories from MacOS X
+ increase the number of cnid_dbd slots to 512 (closes: bug#507538)
* Rewrite copyright to newer DEP5 draft. Add new unicode files (new
author, same licensing).
* Suppress DHX2 logins in logcheck file.
* Add README.source. Drop custom hints about CDBS.
* Enable signed tags in git-buildpackage configfile.
* Extend local CDBS snippet package-relations.mk with support for more
dependencies and slightly improved cleanup.
-- Jonas Smedegaard <email address hidden> Mon, 25 May 2009 16:28:02 +0200
netatalk (2.0.4~beta2-5) unstable; urgency=low
* Build-depend on libdb4.7-dev (not libdb4.2-dev). Recommend
db4.7-util and sugest (not recommend) db4.2-util. Update patches 111
and 206. Update README.Debian and add NEWS entry. Closes:
bug#421950.
-- Jonas Smedegaard <email address hidden> Mon, 02 Mar 2009 05:18:59 +0100
netatalk (2.0.4~beta2-4.1) unstable; urgency=high
* Non-maintainer upload by the Security Team.
* Fix incomplete upstream patch for CVE-2008-5718 by
escaping every problematic character and not only those which
enables an attacker to execute arbitrary code
(213_CVE-2008-5718.patch; Closes: #510585).
-- Nico Golde <email address hidden> Thu, 29 Jan 2009 11:32:54 +0100
| Superseded in sid-release |
netatalk (2.0.4~beta2-4) unstable; urgency=high * Rebuild for unstable branch. -- Jonas Smedegaard <email address hidden> Wed, 21 Jan 2009 18:20:47 +0100
| Published in lenny-release |
netatalk (2.0.3-11+lenny1) testing-security; urgency=high
* Non-maintainer upload by the Security Team.
* Fix arbitrary code execution via a crafted PostScript stream
used in a print request if papd is configured to use a pipe
command and makes use of variable expansion
(CVE-2008-5718; Closes: #510585).
-- Nico Golde <email address hidden> Tue, 13 Jan 2009 11:48:33 +0100
| Superseded in sid-release |
netatalk (2.0.4~beta2-1) unstable; urgency=high
* New upstream prerelease:
+ Quote chars in papd popen variables expansion (and other fixes to
papd). Fixes remote execution security hole CVE-2008-5718. Closes:
bug#510585.
* Mangle upstream tarball beta version.
* Drop patches 000 and 001 contained upstream now.
* Unfuzz patches 107, 109, 205 and 212.
* Unfuzz and enable patches 204a, 207a, 208, 209 and 211.
* Build new DHX2 UAM:
+ Build-depend on libgcrypt11-dev
+ Configure with --with-libgcrypt
+ Drop SSL note from README.Debian
+ Add NEWS entry regarding new and recommended DHX2 UAM
* Disable CDBS autotools reconfiguration.
* Update cdbs snippets:
+ Move dependency cleanup to new local snippet package-relations.mk.
+ Update copyright-check output to more closely match proposed new
copyright file format.
+ Several minor improvements to upstream-tarball.mk.
+ Compact simple licenses (those without ' or later') in
copyright-check.mk
+ Fix use underscore (not dash) in internal variable
+ Ignore only debian changelog and copyright-related files by
default in copyright-check.mk
+ Correct and update copyright hints of the snippets themselves
+ Update README.cdbs-tweaks.
* Add DEB_MAINTAINER_MODE in debian/rules (thanks to Romain Beauxis).
* Stop installing README.ids no longer provided upstream.
* Rewrite debian/copyright using new new format specification, and
update copyright hints.
* Semi-auto-update debian/control to update dependencies:
DEB_MAINTAINER_MODE=1 fakeroot debian/rules clean
* Set urgency=high due to security fix.
-- Jonas Smedegaard <email address hidden> Fri, 09 Jan 2009 05:52:18 +0100
netatalk (2.0.3-11) unstable; urgency=medium
* Add patch 001 from upstream CVS to fix LFS test for cross
compilation.
* Update cdbs tweaks:
+ Relax copyright-check.mk to only warn about its discoveries.
Closes: bug#487061, thanks to Lucas Nussbaum.
+ Correct abbreviation of BSD licenses in copyright-check.mk.
+ Update dependency cleanup to strip cdbs 0.4.27 (not 0.4.27-1).
* Update debian/copyright-hints.
* Raise urgency to medium due to FTBFS bugfix.
-- Jonas Smedegaard <email address hidden> Sun, 29 jun 2008 13:57:28 +0200
| 1 → 49 of 49 results | First • Previous • Next • Last |
