Ubuntu

Change log for “isc-dhcp” package in Ubuntu

175 of 84 results
Published in trusty-release on 2014-04-07
Deleted in trusty-proposed (Reason: moved to release)
isc-dhcp (4.2.4-7ubuntu12) trusty; urgency=medium

  * apparmor-profile.dhclient: add read for /var/lib/NetworkManager/*lease
 -- Jamie Strandboge <email address hidden>   Mon, 07 Apr 2014 08:38:02 -0500

Available diffs

Superseded in trusty-release on 2014-04-07
Deleted in trusty-proposed on 2014-04-08 (Reason: moved to release)
isc-dhcp (4.2.4-7ubuntu11) trusty; urgency=medium

  * Fix broken shell syntax...
 -- Stephane Graber <email address hidden>   Thu, 03 Apr 2014 23:23:59 -0400

Available diffs

Superseded in trusty-release on 2014-04-04
Deleted in trusty-proposed on 2014-04-05 (Reason: moved to release)
isc-dhcp (4.2.4-7ubuntu10) trusty; urgency=medium

  * Update old lucid configs to avoid conffile prompt. (LP: #1300654)
 -- Stephane Graber <email address hidden>   Thu, 03 Apr 2014 18:34:49 -0400

Available diffs

Superseded in trusty-release on 2014-04-04
Deleted in trusty-proposed on 2014-04-05 (Reason: moved to release)
isc-dhcp (4.2.4-7ubuntu9) trusty; urgency=medium

  * Drop debugging code from the inifiniband patch.
 -- Stephane Graber <email address hidden>   Thu, 13 Mar 2014 11:42:55 -0400

Available diffs

Superseded in trusty-release on 2014-03-13
Published in saucy-release on 2013-10-08
Deleted in saucy-proposed (Reason: moved to release)
isc-dhcp (4.2.4-7ubuntu8) saucy; urgency=low

  * debian/patches/large_interface_counters.patch: Allow for very large packet
    counts or bytes transferred without failing connections. (LP: #1222377)
 -- Mathieu Trudel-Lapierre <email address hidden>   Tue, 08 Oct 2013 15:15:44 -0400

Available diffs

Superseded in saucy-release on 2013-10-08
Deleted in saucy-proposed on 2013-10-10 (Reason: moved to release)
isc-dhcp (4.2.4-7ubuntu7) saucy; urgency=low

  * debian/apparmor-profile.dhclient: added net_admin capability, which is
    now required in certain scenarios. (LP: #1220918)
 -- Marc Deslauriers <email address hidden>   Fri, 06 Sep 2013 12:42:03 -0400

Available diffs

Published in precise-updates on 2013-09-17
Deleted in precise-proposed (Reason: moved to -updates)
isc-dhcp (4.1.ESV-R4-0ubuntu5.9) precise-proposed; urgency=low

  * debian/dhclient-script.linux: Allow stateless DHCPv6 to complete
    configuration. (LP: #1214385)
 -- Philipp Kern <email address hidden>   Tue, 20 Aug 2013 15:24:27 +0200
Superseded in saucy-release on 2013-09-06
Deleted in saucy-proposed on 2013-09-07 (Reason: moved to release)
isc-dhcp (4.2.4-7ubuntu6) saucy; urgency=low

  * debian/apparmor-profile.dhclient: allow 'm' for nm-dhcp-client.action
    which is related to LP: 1202203
 -- Jamie Strandboge <email address hidden>   Wed, 28 Aug 2013 13:40:32 -0500

Available diffs

Superseded in saucy-release on 2013-08-28
Deleted in saucy-proposed on 2013-08-30 (Reason: moved to release)
isc-dhcp (4.2.4-7ubuntu5) saucy; urgency=low

  * debian/control: Transition from iproute to iproute2.
 -- Stephane Graber <email address hidden>   Mon, 26 Aug 2013 18:26:24 -0400

Available diffs

Superseded in saucy-release on 2013-08-26
Deleted in saucy-proposed on 2013-08-28 (Reason: moved to release)
isc-dhcp (4.2.4-7ubuntu4) saucy; urgency=low

  * debian/apparmor-profile.dhclient: allow 'm' of /bin/bash (LP: #1202203)
 -- Jamie Strandboge <email address hidden>   Thu, 18 Jul 2013 16:59:08 -0500

Available diffs

Superseded in saucy-release on 2013-07-18
Deleted in saucy-proposed on 2013-07-20 (Reason: moved to release)
isc-dhcp (4.2.4-7ubuntu3) saucy; urgency=low

  * debian/apparmor-profile.dhclient: allow read of /bin/bash (LP: #1197484)
 -- Jamie Strandboge <email address hidden>   Tue, 16 Jul 2013 15:13:49 -0500

Available diffs

Superseded in saucy-release on 2013-07-16
Deleted in saucy-proposed on 2013-07-18 (Reason: moved to release)
isc-dhcp (4.2.4-7ubuntu2) saucy; urgency=low

  * debian/rules: Re-add missing line continuation. LP: #1201506.
 -- Matthias Klose <email address hidden>   Tue, 16 Jul 2013 16:42:14 +0200

Available diffs

Superseded in saucy-release on 2013-07-16
Deleted in saucy-proposed on 2013-07-17 (Reason: moved to release)
isc-dhcp (4.2.4-7ubuntu1) saucy; urgency=low

  * Merge with Debian; remaining changes:
    - Apparmor profiles for dhclient and dhcpd.
    - Upstart jobs for isc-dhcp-server, isc-dhcp-server6, isc-dhcp-relay and
      isc-dhcp-relay6.
    - Separate default file for isc-dhcp-relay6.
    - Apport hook for isc-dhcp-client and isc-dhcp-server.
    - dhclient.conf: Set for IPv6 (dhcp6.*).
    - If /etc/ltsp/dhcpd.conf exists, use that instead of /etc/dhcp/dhcpd.conf
    - Drop isc-dhcp-server/new_auth_behavior question from high to medium
    - Create user/group dhcpd.
    - Create /etc/dhcp/ddns-keys/ for DDNS updates.
    - Build with extra hardening and use --enable-paranoia to run dhcpd as user.
    - Add IPv6 support to dhclient-script.linux.udeb.
    - Wait for /etc/resolv.conf to be writable in dhclient-script.linux.
    - Sanitize environment in dhclient-script.linux.
    - Don't call 'ip addr flush' as it breaks IPv6 networking.
    - debian/apparmor-profile.dhclient: update to add the new paths used by
      NetworkManager for its conf and leases files; standardized under
      /var/lib/NetworkManager.
    - Remaining Ubuntu patches:
      + add-option-ignore-client-uids.patch (LP: #1069570)
      + dhclient-fix-backoff
      + dhclient-more-debug.
      + dhclient-safer-timeout.
      + dhcpd.conf-subnet-examples.
      + multi-ip-addr-per-if.
      + onetry_retry_after_initial_success.
      + revert-next-server.
    - 64_bit_time_overflow.patch: Fix for large lease times caused by
      isc_time_nowplusinterval() is not being safe with 64-bit.
    - debian/apparmor-profile.dhclient: use dhclient*.conf instead of
      dhclient-*.conf for NetworkManager to work with certain IPv6
      configurations.
  * Build-depend on autotools-dev and update the config.{guess,sub} copies
    in the bind tarball for arm64.

Available diffs

Published in quantal-updates on 2013-06-21
Deleted in quantal-proposed (Reason: moved to -updates)
isc-dhcp (4.2.4-1ubuntu10.4) quantal-proposed; urgency=low

  [ Ben Howard ]
  * debian/patches/64_bit_time_overflow.patch:
    Fix for large lease times caused by isc_time_nowplusinterval() is not
    being safe with 64-bit. (LP: #1189571)
 -- Scott Moser <email address hidden>   Thu, 13 Jun 2013 13:24:29 -0400
Published in raring-updates on 2013-06-21
Deleted in raring-proposed (Reason: moved to -updates)
isc-dhcp (4.2.4-5ubuntu2.1) raring-proposed; urgency=low

  * debian/patches/64_bit_time_overflow.patch:
    Fix for large lease times caused by isc_time_nowplusinterval() is not
    being safe with 64-bit. (LP: #1189571)
 -- Ben Howard <email address hidden>   Thu, 13 Jun 2013 08:03:53 -0600
Superseded in saucy-release on 2013-07-13
Deleted in saucy-proposed on 2013-07-14 (Reason: moved to release)
isc-dhcp (4.2.4-6ubuntu3) saucy; urgency=low

  * debian/patches/64_bit_time_overflow.patch:
    Fix for large lease times caused by isc_time_nowplusinterval() is not
    being safe with 64-bit. (LP: #1189571)
 -- Ben Howard <email address hidden>   Mon, 10 Jun 2013 16:06:47 -0400

Available diffs

Superseded in precise-updates on 2013-09-17
Deleted in precise-proposed on 2013-09-18 (Reason: moved to -updates)
isc-dhcp (4.1.ESV-R4-0ubuntu5.8) precise-proposed; urgency=low

  [ Dave Chiluk ]
  * Allow dhcpd to read /etc/ldap/ldap.conf for isc-dhcp-server-ldap.
    (LP: #1057358). Backported from Stéphane Graber's quantal patch.

  [ Stéphane Graber ]
  * Include patch from RedHat/Fedora to deal with hardware/xen/virtio offload
    of UDP checksums. (LP: #930962)
  * Update apparmor profile to add required the "network packet raw" rule
    for the checksum change.
 -- Stephane Graber <email address hidden>   Thu, 23 May 2013 11:13:07 -0400
Superseded in saucy-release on 2013-06-10
Deleted in saucy-proposed on 2013-06-12 (Reason: moved to release)
isc-dhcp (4.2.4-6ubuntu2) saucy-proposed; urgency=low

  * debian/apparmor-profile.dhclient: use dhclient*.conf instead of
    dhclient-*.conf for NetworkManager to work with certain IPv6
    configurations (LP: #1180516)
 -- Jamie Strandboge <email address hidden>   Wed, 15 May 2013 15:04:21 -0500

Available diffs

Superseded in saucy-release on 2013-05-15
Deleted in saucy-proposed on 2013-05-17 (Reason: moved to release)
isc-dhcp (4.2.4-6ubuntu1) saucy; urgency=low

  * Merge from Debian, remaining changes:
    - Apparmor profiles for dhclient and dhcpd.
    - Upstart jobs for isc-dhcp-server, isc-dhcp-server6, isc-dhcp-relay and
      isc-dhcp-relay6. (LP: #944849)
    - Separate default file for isc-dhcp-relay6. (LP: #944849)
    - Apport hook for isc-dhcp-client and isc-dhcp-server.
    - dhclient.conf: Set for IPv6 (dhcp6.*) (LP: #770324)
    - If /etc/ltsp/dhcpd.conf exists, use that instead of /etc/dhcp/dhcpd.conf
    - Drop isc-dhcp-server/new_auth_behavior question from high to medium
    - Create user/group dhcpd (LP: #727837)
    - Create /etc/dhcp/ddns-keys/ for DDNS updates (LP: #341817)
    - Build with extra hardening and use --enable-paranoia to run dhcpd as user
      (LP: #727837)
    - Add IPv6 support to dhclient-script.linux.udeb
    - Wait for /etc/resolv.conf to be writable in dhclient-script.linux.
      (LP: #856984)
    - Sanitize environment in dhclient-script.linux. (LP: #1045986)
    - Don't call 'ip addr flush' as it breaks IPv6 networking. (LP: #1023174)
    - debian/apparmor-profile.dhclient: update to add the new paths used by
      NetworkManager for its conf and leases files; standardized under
      /var/lib/NetworkManager.
    - Remaining Ubuntu patches:
      + add-option-ignore-client-uids.patch (LP: #1069570)
      + dhclient-fix-backoff
      + dhclient-more-debug (LP: #35265)
      + dhclient-safer-timeout (LP: #838968)
      + dhcpd.conf-subnet-examples (LP: #26661)
      + multi-ip-addr-per-if (LP: #717166)
      + onetry_retry_after_initial_success (LP: #974284)
      + revert-next-server

Available diffs

Superseded in quantal-updates on 2013-06-21
Deleted in quantal-proposed on 2013-06-22 (Reason: moved to -updates)
isc-dhcp (4.2.4-1ubuntu10.3) quantal-proposed; urgency=low

  * Allow "network packet raw" in the apparmor profile for dhcpd.
    This fixes dhcpd failing to start when used on InfiniBand and on setups
    that do checksum offloading (fixes a bug introduced by the previous upload)
    (LP: #1171838)
 -- Stephane Graber <email address hidden>   Tue, 23 Apr 2013 17:16:56 +0200
Superseded in saucy-release on 2013-05-07
Published in raring-release on 2013-03-14
Deleted in raring-proposed (Reason: moved to release)
isc-dhcp (4.2.4-5ubuntu2) raring; urgency=low

  * debian/patches/add-option-ignore-client-uids.patch:
    Add a new dhcpd.conf option 'ignore-client-uids'. (LP: #1069570)
 -- Scott Moser <email address hidden>   Thu, 14 Mar 2013 17:49:10 -0400

Available diffs

Superseded in quantal-updates on 2013-04-24
Deleted in quantal-proposed on 2013-04-25 (Reason: moved to -updates)
isc-dhcp (4.2.4-1ubuntu10.2) quantal-proposed; urgency=low

  * Fix isc-dhcp-server-ldap not actually containing ldap support.
    Thanks to Christian Hoffmann for tracking down the issue. (LP: #1071928)
  * Don't set fqdn.fqdn in dhclient.conf as that seems to confuse some DHCP
    servers. An alternative would have been to only set fqdn.fqdn and not
    host-name, but that appears to confuse another set of servers.
    For now go with just host-name which is the most common and if becomes a
    big problem for IPv6 (where fqdn.fqdn is apparently required), then we'll
    need to have a separate dhclient6.conf file and change all the calls to
    dhclient -6 to use that file instead. (LP: #1088682)
  * Include patch from RedHat/Fedora to deal with hardware/xen/virtio offload
    of UDP checksums. (LP: #930962)
 -- Stephane Graber <email address hidden>   Fri, 01 Mar 2013 16:07:49 -0500
Superseded in raring-release on 2013-03-14
Deleted in raring-proposed on 2013-03-16 (Reason: moved to release)
isc-dhcp (4.2.4-5ubuntu1) raring; urgency=low

  * Merge from Debian, remaining changes:
    - Apparmor profiles for dhclient and dhcpd.
    - Upstart jobs for isc-dhcp-server, isc-dhcp-server6, isc-dhcp-relay and
      isc-dhcp-relay6. (LP: #944849)
    - Separate default file for isc-dhcp-relay6. (LP: #944849)
    - Apport hook for isc-dhcp-client and isc-dhcp-server.
    - dhclient.conf: Set for IPv6 (dhcp6.*) (LP: #770324)
    - If /etc/ltsp/dhcpd.conf exists, use that instead of /etc/dhcp/dhcpd.conf
    - Drop isc-dhcp-server/new_auth_behavior question from high to medium
    - Create user/group dhcpd (LP: #727837)
    - Create /etc/dhcp/ddns-keys/ for DDNS updates (LP: #341817)
    - Build with extra hardening and use --enable-paranoia to run dhcpd as user
      (LP: #727837)
    - Add IPv6 support to dhclient-script.linux.udeb
    - Wait for /etc/resolv.conf to be writable in dhclient-script.linux.
      (LP: #856984)
    - Sanitize environment in dhclient-script.linux. (LP: #1045986)
    - Don't call 'ip addr flush' as it breaks IPv6 networking. (LP: #1023174)
    - debian/apparmor-profile.dhclient: update to add the new paths used by
      NetworkManager for its conf and leases files; standardized under
      /var/lib/NetworkManager.
    - Remaining Ubuntu patches:
      + dhclient-fix-backoff
      + dhclient-more-debug (LP: #35265)
      + dhclient-safer-timeout (LP: #838968)
      + dhcpd.conf-subnet-examples (LP: #26661)
      + multi-ip-addr-per-if (LP: #717166)
      + onetry_retry_after_initial_success (LP: #974284)
      + revert-next-server
    - Dropped Ubuntu patches:
      + dhclient-onetry-call-clientscript (now in Debian)

  * Add InfiniBand support patches from RedHat.
  * Update dhcpd apparmor profile for LPF. (LP: #1107686)

Available diffs

Deleted in precise-proposed on 2013-04-11 (Reason: SRU abandoned (verification-failed))
isc-dhcp (4.1.ESV-R4-0ubuntu5.7) precise; urgency=low

  * Allow dhcpd to read /etc/ldap/ldap.conf for isc-dhcp-server-ldap.
    (LP: #1057358). Backported from Stéphane Graber's quantal patch.
 -- chiluk <email address hidden>   Thu, 31 Jan 2013 16:44:46 -0600
Superseded in raring-release on 2013-02-27
Deleted in raring-proposed on 2013-02-28 (Reason: moved to release)
isc-dhcp (4.2.4-4ubuntu1) raring; urgency=low

  * Merge from Debian, remaining changes:
    - Apparmor profiles for dhclient and dhcpd.
    - Upstart jobs for isc-dhcp-server, isc-dhcp-server6, isc-dhcp-relay and
      isc-dhcp-relay6. (LP: #944849)
    - Separate default file for isc-dhcp-relay6. (LP: #944849)
    - Apport hook for isc-dhcp-client and isc-dhcp-server.
    - dhclient.conf: Set for IPv6 (dhcp6.*) (LP: #770324)
    - If /etc/ltsp/dhcpd.conf exists, use that instead of /etc/dhcp/dhcpd.conf
    - Drop isc-dhcp-server/new_auth_behavior question from high to medium
    - Create user/group dhcpd (LP: #727837)
    - Create /etc/dhcp/ddns-keys/ for DDNS updates (LP: #341817)
    - Build with extra hardening and use --enable-paranoia to run dhcpd as user
      (LP: #727837)
    - Add IPv6 support to dhclient-script.linux.udeb
    - Wait for /etc/resolv.conf to be writable in dhclient-script.linux.
      (LP: #856984)
    - Sanitize environment in dhclient-script.linux. (LP: #1045986)
    - Don't call 'ip addr flush' as it breaks IPv6 networking. (LP: #1023174)
    - debian/apparmor-profile.dhclient: update to add the new paths used by
      NetworkManager for its conf and leases files; standardized under
      /var/lib/NetworkManager.
    - Remaining Ubuntu patches:
      + dhclient-fix-backoff
      + dhclient-more-debug (LP: #35265)
      + dhclient-safer-timeout (LP: #838968)
      + dhcpd.conf-subnet-examples (LP: #26661)
      + multi-ip-addr-per-if (LP: #717166)
      + onetry_retry_after_initial_success (LP: #974284)
      + revert-next-server
    - Dropped Ubuntu patches:
      + dhclient-onetry-call-clientscript (now in Debian)
  * Fix isc-dhcp-server-ldap not actually containing ldap support.
    Thanks to Christian Hoffmann for tracking down the issue. (LP: #1071928)
  * Don't set fqdn.fqdn in dhclient.conf as that seems to confuse some DHCP
    servers. An alternative would have been to only set fqdn.fqdn and not
    host-name, but that appears to confuse another set of servers.
    For now go with just host-name which is the most common and if becomes a
    big problem for IPv6 (where fqdn.fqdn is apparently required), then we'll
    need to have a separate dhclient6.conf file and change all the calls to
    dhclient -6 to use that file instead. (LP: #1088682)
  * Include patch from RedHat/Fedora to deal with hardware/xen/virtio offload
    of UDP checksums. (LP: #930962)

Available diffs

Superseded in raring-release on 2013-01-18
Deleted in raring-proposed on 2013-01-19 (Reason: moved to release)
isc-dhcp (4.2.4-3ubuntu2) raring; urgency=low

  * debian/apparmor-profile.dhclient: update to add the new paths used by
    NetworkManager for its conf and leases files; standardized under
    /var/lib/NetworkManager.
 -- Mathieu Trudel-Lapierre <email address hidden>   Fri, 04 Jan 2013 14:50:31 -0500

Available diffs

Superseded in raring-release on 2013-01-04
Deleted in raring-proposed on 2013-01-06 (Reason: moved to release)
isc-dhcp (4.2.4-3ubuntu1) raring; urgency=low

  * Merge from Debian, remaining changes:
    - Apparmor profiles for dhclient and dhcpd.
    - Upstart jobs for isc-dhcp-server, isc-dhcp-server6, isc-dhcp-relay and
      isc-dhcp-relay6. (LP: #944849)
    - Separate default file for isc-dhcp-relay6. (LP: #944849)
    - Apport hook for isc-dhcp-client and isc-dhcp-server.
    - dhcient.conf: Set for IPv6 (fqdn.fqdn and dhcp6.*) (LP: #770324)
    - If /etc/ltsp/dhcpd.conf exists, use that instead of /etc/dhcp/dhcpd.conf
    - Drop isc-dhcp-server/new_auth_behavior question from high to medium
    - Create user/group dhcpd (LP: #727837)
    - Create /etc/dhcp/ddns-keys/ for DDNS updates (LP: #341817)
    - Build with extra hardening and use --enable-paranoia to run dhcpd as user
      (LP: #727837)
    - Add IPv6 support to dhclient-script.linux.udeb
    - Wait for /etc/resolv.conf to be writable in dhclient-script.linux.
      (LP: #856984)
    - Sanitize environment in dhclient-script.linux. (LP: #1045986)
    - Don't call 'ip addr flush' as it breaks IPv6 networking. (LP: #1023174)
    - Remaining Ubuntu patches:
      + dhclient-fix-backoff
      + dhclient-more-debug (LP: #35265)
      + dhclient-onetry-call-clientscript
      + dhclient-safer-timeout (LP: #838968)
      + dhcpd.conf-subnet-examples (LP: #26661)
      + multi-ip-addr-per-if (LP: #717166)
      + onetry_retry_after_initial_success (LP: #974284)
      + revert-next-server

Available diffs

Superseded in raring-release on 2012-10-31
Deleted in raring-proposed on 2012-11-01 (Reason: moved to release)
isc-dhcp (4.2.4-2ubuntu1) raring; urgency=low

  * Merge from Debian, remaining changes:
    - Apparmor profiles for dhclient and dhcpd.
    - Upstart jobs for isc-dhcp-server, isc-dhcp-server6, isc-dhcp-relay and
      isc-dhcp-relay6. (LP: #944849)
    - Separate default file for isc-dhcp-relay6. (LP: #944849)
    - Apport hook for isc-dhcp-client and isc-dhcp-server.
    - dhcient.conf: Set for IPv6 (fqdn.fqdn and dhcp6.*) (LP: #770324)
    - If /etc/ltsp/dhcpd.conf exists, use that instead of /etc/dhcp/dhcpd.conf
    - Drop isc-dhcp-server/new_auth_behavior question from high to medium
    - Create user/group dhcpd (LP: #727837)
    - Create /etc/dhcp/ddns-keys/ for DDNS updates (LP: #341817)
    - Build with extra hardening and use --enable-paranoia to run dhcpd as user
      (LP: #727837)
    - Add IPv6 support to dhclient-script.linux.udeb
    - Wait for /etc/resolv.conf to be writable in dhclient-script.linux.
      (LP: #856984)
    - Sanitize environment in dhclient-script.linux. (LP: #1045986)
    - Don't call 'ip addr flush' as it breaks IPv6 networking. (LP: #1023174)
    - Remaining Ubuntu patches:
      + dhclient-fix-backoff
      + dhclient-more-debug (LP: #35265)
      + dhclient-onetry-call-clientscript
      + dhclient-safer-timeout (LP: #838968)
      + dhcpd.conf-subnet-examples (LP: #26661)
      + multi-ip-addr-per-if (LP: #717166)
      + onetry_retry_after_initial_success (LP: #974284)
      + revert-next-server

Superseded in quantal-updates on 2013-04-22
Deleted in quantal-proposed on 2013-04-24 (Reason: moved to -updates)
isc-dhcp (4.2.4-1ubuntu10.1) quantal-proposed; urgency=low

  * Re-introduce missing symlink for dhclient in
    /etc/apparmor/init/network-interface-security/ (LP: #1067473)
 -- Stephane Graber <email address hidden>   Tue, 16 Oct 2012 21:37:40 +0200
Superseded in raring-release on 2012-10-29
Published in quantal-release on 2012-10-09
isc-dhcp (4.2.4-1ubuntu10) quantal; urgency=low

  * Allow dhcpd to read /etc/ldap/ldap.conf for isc-dhcp-server-ldap.
    (LP: #1057358)
 -- Stephane Graber <email address hidden>   Tue, 09 Oct 2012 10:44:47 -0400

Available diffs

Superseded in precise-updates on 2013-05-31
Deleted in precise-proposed on 2013-06-01 (Reason: moved to -updates)
isc-dhcp (4.1.ESV-R4-0ubuntu5.6) precise-proposed; urgency=low

  [ Scott Moser ]
  * debian/apparmor-profile.dhcpd: use include directory to enable
    other packages to re-use isc-dhcp-server. (LP: #1049177)

  [ Stéphane Graber ]
  * Update onetry_retry_after_initial_success to disable the onetry variable
    early enough to actually prevent dhclient from exiting. (LP: #974284)
  * Update droppriv patch to also call initgroups() (LP: #727837)
 -- Stephane Graber <email address hidden>   Tue, 18 Sep 2012 10:34:10 -0400
Obsolete in natty-updates on 2013-06-04
Obsolete in natty-security on 2013-06-04
isc-dhcp (4.1.1-P1-15ubuntu9.6) natty-security; urgency=low

  [ Jamie Strandboge ]
  * debian/dhclient-script.linux: Explicitly set the PATH to that of
    ENV_SUPATH in /etc/login.defs and unset various other variables. We need
    to do this so /sbin/dhclient cannot abuse the environment to escape
    AppArmor confinement via this script. Don't worry about
    debian/dhclient-script.linux.udeb or debian/dhclient-script.kfreebsd*
    since AppArmor isn't used in these environments.
    - LP: #1045986

  [ Marc Deslauriers ]
  * SECURITY UPDATE: denial of service via ipv6 lease expiration time
    reduction
    - debian/patches/CVE-2012-3955.patch: properly handle time reduction in
      server/dhcpv6.c, server/mdb6.c.
    - CVE-2012-3955
 -- Marc Deslauriers <email address hidden>   Fri, 14 Sep 2012 13:04:46 -0400
Published in oneiric-updates on 2012-09-18
Published in oneiric-security on 2012-09-18
isc-dhcp (4.1.1-P1-17ubuntu10.5) oneiric-security; urgency=low

  [ Jamie Strandboge ]
  * debian/dhclient-script.linux: Explicitly set the PATH to that of
    ENV_SUPATH in /etc/login.defs and unset various other variables. We need
    to do this so /sbin/dhclient cannot abuse the environment to escape
    AppArmor confinement via this script. Don't worry about
    debian/dhclient-script.linux.udeb or debian/dhclient-script.kfreebsd*
    since AppArmor isn't used in these environments.
    - LP: #1045986

  [ Marc Deslauriers ]
  * SECURITY UPDATE: denial of service via ipv6 lease expiration time
    reduction
    - debian/patches/CVE-2012-3955.patch: properly handle time reduction in
      server/dhcpv6.c, server/mdb6.c.
    - CVE-2012-3955
 -- Marc Deslauriers <email address hidden>   Fri, 14 Sep 2012 13:02:05 -0400
Superseded in quantal-release on 2012-10-09
isc-dhcp (4.2.4-1ubuntu9) quantal; urgency=low

  * SECURITY UPDATE: denial of service via ipv6 lease expiration time
    reduction
    - debian/patches/CVE-2012-3955.patch: properly handle time reduction in
      server/dhcpv6.c, server/mdb6.c.
    - CVE-2012-3955
 -- Marc Deslauriers <email address hidden>   Fri, 14 Sep 2012 12:50:12 -0400

Available diffs

Superseded in precise-updates on 2013-01-25
Published in precise-security on 2012-09-18
isc-dhcp (4.1.ESV-R4-0ubuntu5.5) precise-security; urgency=low

  [ Jamie Strandboge ]
  * debian/dhclient-script.linux: Explicitly set the PATH to that of
    ENV_SUPATH in /etc/login.defs and unset various other variables. We need
    to do this so /sbin/dhclient cannot abuse the environment to escape
    AppArmor confinement via this script. Don't worry about
    debian/dhclient-script.linux.udeb or debian/dhclient-script.kfreebsd*
    since AppArmor isn't used in these environments.
    - LP: #1045986

  [ Marc Deslauriers ]
  * SECURITY UPDATE: denial of service via ipv6 lease expiration time
    reduction
    - debian/patches/CVE-2012-3955.patch: properly handle time reduction in
      server/dhcpv6.c, server/mdb6.c.
    - CVE-2012-3955
 -- Marc Deslauriers <email address hidden>   Fri, 14 Sep 2012 12:58:33 -0400
Superseded in quantal-release on 2012-09-14
isc-dhcp (4.2.4-1ubuntu8) quantal; urgency=low

  [ Scott Moser ]
  * debian/apparmor-profile.dhcpd: use include directory to enable
    other packages to re-use isc-dhcp-server. (LP: #1049177)

  [ Stéphane Graber ]
  * Re-introduce the wait_for_rw code in dhclient-script which got lost
    in the last merge, this code is there for the few rare systems that
    aren't using resolvconf and don't have /etc mounted read/write by the
    time dhclient-script is called.
  * Update onetry_retry_after_initial_success to disable the onetry variable
    early enough to actually prevent dhclient from exiting. (LP: #974284)
 -- Stephane Graber <email address hidden>   Wed, 12 Sep 2012 17:30:26 -0400

Available diffs

Superseded in quantal-release on 2012-09-12
Deleted in quantal-proposed on 2012-09-14 (Reason: moved to release)
isc-dhcp (4.2.4-1ubuntu7) quantal-proposed; urgency=low

  * debian/dhclient-script.linux: Explicitly set the PATH to that of
    ENV_SUPATH in /etc/login.defs and unset various other variables. We need
    to do this so /sbin/dhclient cannot abuse the environment to escape
    AppArmor confinement via this script. This can be removed once AppArmor
    supports environment filtering (LP: 1045985). Don't worry about
    debian/dhclient-script.linux.udeb or debian/dhclient-script.kfreebsd*
    since AppArmor isn't used in these environments.
    - LP: #1045986

Available diffs

Superseded in quantal-release on 2012-09-07
Deleted in quantal-proposed on 2012-09-08 (Reason: moved to release)
isc-dhcp (4.2.4-1ubuntu5) quantal-proposed; urgency=low

  * debian/isc-dhcp-client.apport, debian/isc-dhcp-server.apport: add
    filter on AppArmor profile names to prevent false positives from
    denials originating in other packages.
 -- Marc Deslauriers <email address hidden>   Mon, 20 Aug 2012 09:45:10 -0400
Deleted in precise-proposed on 2012-09-07 (Reason: removing as the verification of the bug being fixed failed)
isc-dhcp (4.1.ESV-R4-0ubuntu5.3) precise-proposed; urgency=low

  * Move onetry_retry_after_initial_success to the proper spot in the patch
    stack so that it actually gets applied. (LP: #974284)
 -- Stephane Graber <email address hidden>   Fri, 27 Jul 2012 10:09:55 -0400
Superseded in oneiric-updates on 2012-09-18
Superseded in oneiric-security on 2012-09-18
isc-dhcp (4.1.1-P1-17ubuntu10.3) oneiric-security; urgency=low

  * SECURITY UPDATE: denial of service via malformed client identifiers
    - debian/patches/CVE-2012-3571.dpatch: validate packets in
      common/options.{c,h}.
    - CVE-2012-3571.dpatch
  * SECURITY UPDATE: denial of service via memory leaks
    - debian/patches/CVE-2012-3954.dpatch: properly manage memory in
      common/options.c and server/dhcpv6.c.
    - CVE-2012-3954
  * This update does _not_ contain the changes from 4.1.1-P1-17ubuntu10.3
    in oneiric-proposed.
 -- Marc Deslauriers <email address hidden>   Wed, 25 Jul 2012 17:25:22 -0400
Superseded in precise-updates on 2012-09-18
Superseded in precise-security on 2012-09-18
isc-dhcp (4.1.ESV-R4-0ubuntu5.2) precise-security; urgency=low

  * SECURITY UPDATE: denial of service via malformed client identifiers
    - debian/patches/CVE-2012-3571.dpatch: validate packets in
      common/options.{c,h}.
    - CVE-2012-3571.dpatch
  * SECURITY UPDATE: denial of service via memory leaks
    - debian/patches/CVE-2012-3954.dpatch: properly manage memory in
      common/options.c and server/dhcpv6.c.
    - CVE-2012-3954
 -- Marc Deslauriers <email address hidden>   Wed, 25 Jul 2012 17:04:18 -0400
Superseded in natty-updates on 2012-09-18
Superseded in natty-security on 2012-09-18
isc-dhcp (4.1.1-P1-15ubuntu9.4) natty-security; urgency=low

  * SECURITY UPDATE: denial of service via malformed client identifiers
    - debian/patches/CVE-2012-3571.dpatch: validate packets in
      common/options.{c,h}.
    - CVE-2012-3571.dpatch
  * SECURITY UPDATE: denial of service via memory leaks
    - debian/patches/CVE-2012-3954.dpatch: properly manage memory in
      common/options.c and server/dhcpv6.c.
    - CVE-2012-3954
 -- Marc Deslauriers <email address hidden>   Wed, 25 Jul 2012 17:28:23 -0400
Superseded in quantal-release on 2012-08-21
isc-dhcp (4.2.4-1ubuntu4) quantal; urgency=low

  * debian/isc-dhcp-server.isc-dhcp-server[6].upstart: chown /var/lib/dhcp
    and the lease files to 'root:root'. This is needed due to the change
    in 4.2.4-1ubuntu1 to use the upstream code for dropping privileges which
    requires the lease files be owned by root. (LP: #1028526)
 -- Jamie Strandboge <email address hidden>   Tue, 24 Jul 2012 11:24:36 -0500

Available diffs

Superseded in quantal-release on 2012-07-24
isc-dhcp (4.2.4-1ubuntu3) quantal; urgency=low

  * Hardcode "ip -4 addr flush" in place of "ip addr flush" as
    flushing addresses on an IPv6 interface destroy the interface's entry
    in /proc/sys/net/ipv6/conf... This is a workaround for LP: #1023174
 -- Stephane Graber <email address hidden>   Tue, 10 Jul 2012 18:10:59 -0400

Available diffs

Superseded in quantal-release on 2012-07-10
isc-dhcp (4.2.4-1ubuntu2) quantal; urgency=low

  * Don't fail if /etc/dhcp/ddns-keys already exists.
 -- Stephane Graber <email address hidden>   Tue, 03 Jul 2012 18:28:41 -0400

Available diffs

Superseded in quantal-release on 2012-07-03
isc-dhcp (4.2.4-1ubuntu1) quantal; urgency=low

  * Merge from Debian. Remaining changes:
    (LP: #768171, LP: #841182, LP: #881558, LP: #872929, LP: #616809)
    - Use upstart jobs for isc-dhcp-server and isc-dhcp-relay.
    - Add IPv6 support to udeb dhclient-script (forwarded as Debian #635897).
    - Add an apport hook to isc-dhcp-client and isc-dhcp-server.
    - Add an apparmor profile to isc-dhcp-client and isc-dhcp-server.
    - Update default dhclient.conf to ask for IPv6 configuration.
    - Patches:
      + dhclient-fix-backoff
      + dhclient-more-debug
      + dhclient-onetry-call-clientscript
      + dhclient-safer-timeout
      + dhcpd.conf-subnet-examples
      + multi-ip-addr-per-if
      + onetry_retry_after_initial_success
      + revert-next-server
  * Set fqdn.fqdn to the result of gethostname(); (LP: #991360)
  * Replace old droppriv and deroot patches by use of --enable-paranoia
    and matching -user and -group parameters to dhcpd. (LP: #727837)
  * Allow read access to /etc/dhcp/ddns-keys/* for ddns. (LP: #341817)
    It's expected that people generate one key per zone and have it stored
    in both /etc/bind9 and /etc/dhcp/ddns-keys/ for security reason.
  * Fix apport hook to work with python3.

Superseded in quantal-release on 2012-07-03
Deleted in quantal-proposed on 2012-08-05 (Reason: moved to release)
isc-dhcp (4.1.ESV-R4-0ubuntu8) quantal-proposed; urgency=low

  * Add "-Wno-unused-but-set-variable" instead of replacing all
    options already set. Otherwise the config file will not be
    found (LP: #1006937) for example.
 -- Stefan Bader <email address hidden>   Tue, 05 Jun 2012 10:59:27 -0400
Deleted in oneiric-proposed on 2012-07-27 (Reason: moved to -updates)
isc-dhcp (4.1.1-P1-17ubuntu10.2) oneiric-proposed; urgency=low

  * debian/apparmor-profile.dhcpd:
    - allow writes to the compiled in default pid file (LP: #985417)
    - allow reads to /var/lib/wicd/* (LP: #588635)
 -- Adam Stokes <email address hidden>   Thu, 31 May 2012 12:15:31 -0400
Superseded in precise-updates on 2012-07-26
Deleted in precise-proposed on 2012-07-28 (Reason: moved to -updates)
isc-dhcp (4.1.ESV-R4-0ubuntu5.1) precise-proposed; urgency=low

  * Set -pf option for both isc-dhcp-server and isc-dhcp-server6 so they
    create their pid files in a path that's actually writable. (LP: #985417)
  * Also allow read access to the pid file in the apparmor profile,
    otherwise only the initial start succeeds. (LP: #1005062)
  * On upgrade from dhcp3-server, move /etc/default/dhcp3-server to
    /etc/default/isc-dhcp-server. (LP: #1003971)
  * On upgrade from dhcp3-relay, remove /etc/default/dhcp3-relay.
    (LP: #1005547)
  * Try to preseed isc-dhcp-relay with the values from
    /etc/default/dhcp3-relay. (LP: #1005547)
 -- Stephane Graber <email address hidden>   Sun, 27 May 2012 20:41:13 -0400
Superseded in quantal-release on 2012-06-05
isc-dhcp (4.1.ESV-R4-0ubuntu7) quantal; urgency=low

  * Also allow read access to the pid file in the apparmor profile,
    otherwise only the initial start succeeds. (LP: #985417)
  * Apparently the current CFLAGS weren't past to configure so hardcode
    CFLAGS="-Wno-unused-but-set-variable" for now which will allow it to
    build and not be any worse than what we had in the past.
    The merge with Debian's 4.2 should fix that mess for good.
 -- Stephane Graber <email address hidden>   Sun, 27 May 2012 20:35:21 -0400
Superseded in quantal-release on 2012-05-28
isc-dhcp (4.1.ESV-R4-0ubuntu6) quantal; urgency=low

  * Set -pf option for both isc-dhcp-server and isc-dhcp-server6 so they
    create their pid files in a path that's actually writable.
 -- Stephane Graber <email address hidden>   Sun, 27 May 2012 18:29:30 -0400
Superseded in quantal-release on 2012-05-27
Published in precise-release on 2012-04-10
isc-dhcp (4.1.ESV-R4-0ubuntu5) precise; urgency=low

  * When dhclient is called with -1, exit on failure to get a lease only
    when getting the initial lease. Once backgrounded, behave exactly like
    in normal mode. (LP: #974284)
 -- Stephane Graber <email address hidden>   Tue, 10 Apr 2012 14:19:23 +0200
Superseded in precise-release on 2012-04-10
isc-dhcp (4.1.ESV-R4-0ubuntu4) precise; urgency=low

  * debian/apparmor-profile.dhcpd:
    - allow writes to the compiled in default pid file (LP: #974054)
    - allow reads to /var/lib/wicd/* (LP: #588635)
 -- Jamie Strandboge <email address hidden>   Thu, 05 Apr 2012 07:19:11 -0500
Superseded in precise-release on 2012-04-05
isc-dhcp (4.1.ESV-R4-0ubuntu3) precise; urgency=low

  * Spawn separate IPv4 and IPv6 daemons. (LP: #944849)

  * Convert /etc/init.d/isc-dhcp-server to two upstart jobs:
    - /etc/init/isc-dhcp-server.conf (using /etc/isc-dhcp-server/dhcpd.conf)
    - /etc/init/isc-dhcp-server6.conf (using /etc/isc-dhcp-server/dhcpd6.conf)

  * Convert /etc/init.d/isc-dhcp-relay to two upstart jobs:
    - /etc/init/isc-dhcp-relay.conf (using /etc/default/isc-dhcp-relay)
    - /etc/init/isc-dhcp-relay6.conf (using /etc/default/isc-dhcp-relay6)

  * To enable isc-dhcp-server6, create /etc/isc-dhcp-server/dhcpd6.conf
  * To enable isc-dhcp-relay6, configure /etc/default/isc-dhcp-relay6
 -- Stephane Graber <email address hidden>   Tue, 06 Mar 2012 13:22:41 -0500
Superseded in precise-release on 2012-03-08
isc-dhcp (4.1.ESV-R4-0ubuntu2) precise; urgency=low

  * debian/control: Build-Depends on dh-apparmor (LP: #948132)
 -- Jamie Strandboge <email address hidden>   Tue, 06 Mar 2012 09:58:59 -0600
Superseded in precise-release on 2012-03-06
isc-dhcp (4.1.ESV-R4-0ubuntu1) precise; urgency=low

  * New upstream release (4.1-ESV-R4) (LP: #937169)
    https://deepthought.isc.org/article/AA-00566
  * Removed patches (now upstream):
    - CVE-2010-3611.dpatch
    - CVE-2011-0413.dpatch
    - CVE-2011-0997.dpatch
    - CVE-2011-2748-2749.dpatch
    - CVE-2011-4539.dpatch
    - dhclient-initial-random-delay-option.dpatch
    - fix_groff_warnings.dpatch
    - no-libcrypto.dpatch
  * Refreshed patches:
    - dhcp-4.1.0-ldap-code.dpatch
    - fix_exit_hook_doc_manpage.dpatch
 -- Stephane Graber <email address hidden>   Mon, 20 Feb 2012 13:05:01 -0500
Superseded in precise-release on 2012-02-22
isc-dhcp (4.1.1-P1-17ubuntu13) precise; urgency=low

  * debian/apparmor-profile.dhclient: allow the new pid file for dhclient which
    NetworkManager will use. (LP: #869635)
 -- Mathieu Trudel-Lapierre <email address hidden>   Thu, 16 Feb 2012 17:01:19 -0500
Superseded in natty-updates on 2012-07-26
Superseded in natty-security on 2012-07-26
isc-dhcp (4.1.1-P1-15ubuntu9.3) natty-security; urgency=low

  * SECURITY UPDATE: denial of service via regular expressions
    - debian/patches/CVE-2011-4539.dpatch: add check for null pointer in
      common/tree.c.
    - CVE-2011-4539
  * This update does _not_ contain the changes from 4.1.1-P1-15ubuntu9.2
    that is currently in -proposed.
 -- Marc Deslauriers <email address hidden>   Wed, 14 Dec 2011 15:55:43 -0500
Superseded in oneiric-updates on 2012-07-26
Superseded in oneiric-security on 2012-07-26
isc-dhcp (4.1.1-P1-17ubuntu10.1) oneiric-security; urgency=low

  * SECURITY UPDATE: denial of service via regular expressions
    - debian/patches/CVE-2011-4539.dpatch: add check for null pointer in
      common/tree.c.
    - CVE-2011-4539
 -- Marc Deslauriers <email address hidden>   Wed, 14 Dec 2011 15:53:48 -0500
Superseded in precise-release on 2012-02-16
isc-dhcp (4.1.1-P1-17ubuntu12) precise; urgency=low

  * SECURITY UPDATE: denial of service via regular expressions
    - debian/patches/CVE-2011-4539.dpatch: add check for null pointer in
      common/tree.c.
    - CVE-2011-4539
 -- Marc Deslauriers <email address hidden>   Wed, 14 Dec 2011 15:49:11 -0500
Superseded in precise-release on 2011-12-14
isc-dhcp (4.1.1-P1-17ubuntu11) precise; urgency=low

  * debian/dhclient-script.linux: fix for read-only /etc (LP: #857524)
 -- Scott Moser <email address hidden>   Mon, 24 Oct 2011 22:28:35 -0400
Deleted in natty-proposed on 2011-12-19 (Reason: moved to -updates)
isc-dhcp (4.1.1-P1-15ubuntu9.2) natty-proposed; urgency=low

  * modify AppArmor profile for DHCP server to work with IPv6 thanks to
    Launchpad user nikolas for the patch (LP: #787212)
 -- Brian Murray <email address hidden>   Mon, 10 Oct 2011 08:25:07 -0700
Superseded in precise-release on 2011-10-25
Published in oneiric-release on 2011-09-23
isc-dhcp (4.1.1-P1-17ubuntu10) oneiric; urgency=low

  * make sure writing of /etc/resolv.conf actually waits until the file is
    writable (LP: #856984)
 -- Scott Moser <email address hidden>   Fri, 23 Sep 2011 11:26:29 -0400
Superseded in oneiric-release on 2011-09-23
isc-dhcp (4.1.1-P1-17ubuntu9) oneiric; urgency=low

  * debian/dhclient-script.linux.udeb: Leave previous nameservers in
    resolv.conf if we don't get any in the current lease (matching the
    non-udeb variant).
 -- Colin Watson <email address hidden>   Mon, 19 Sep 2011 21:40:33 +0100
Superseded in oneiric-release on 2011-09-20
isc-dhcp (4.1.1-P1-17ubuntu8) oneiric; urgency=low

  * debian/patches/dhclient-safer-timeout.dpatch: Increase default
    timeout to ensure we don't hit it.  Closes LP: #838968.
 -- Steve Langasek <email address hidden>   Fri, 02 Sep 2011 14:34:52 -0700
Superseded in oneiric-release on 2011-09-02
isc-dhcp (4.1.1-P1-17ubuntu7) oneiric; urgency=low

  * Add IPv6 support to udeb dhclient-script (forwarded as Debian #635897).
 -- Colin Watson <email address hidden>   Tue, 30 Aug 2011 14:44:23 +0100
Superseded in oneiric-release on 2011-09-01
isc-dhcp (4.1.1-P1-17ubuntu6) oneiric; urgency=low

  * SECURITY UPDATE: denial of service via specially crafted packets
    - debian/patches/CVE-2011-2748-2749.dpatch: tighten up restriction in
      common/discover.c, properly calculate length in common/options.c,
      validate packet->options in server/dhcp.c.
    - CVE-2011-2748
    - CVE-2011-2749
 -- Marc Deslauriers <email address hidden>   Thu, 11 Aug 2011 11:14:46 -0400
Superseded in natty-updates on 2011-12-15
Superseded in natty-security on 2011-12-15
isc-dhcp (4.1.1-P1-15ubuntu9.1) natty-security; urgency=low

  * SECURITY UPDATE: denial of service via specially crafted packets
    - debian/patches/CVE-2011-2748-2749.dpatch: tighten up restriction in
      common/discover.c, properly calculate length in common/options.c,
      validate packet->options in server/dhcp.c.
    - CVE-2011-2748
    - CVE-2011-2749
 -- Marc Deslauriers <email address hidden>   Thu, 11 Aug 2011 11:20:44 -0400
Superseded in oneiric-release on 2011-08-11
isc-dhcp (4.1.1-P1-17ubuntu5) oneiric; urgency=low

  * debian/isc-dhcp-{server,client}.apport: use new apport MAC function
    instead of parsing and attaching AppArmor events here.
 -- Marc Deslauriers <email address hidden>   Fri, 15 Jul 2011 08:21:11 -0400
Superseded in oneiric-release on 2011-07-15
isc-dhcp (4.1.1-P1-17ubuntu4) oneiric; urgency=low

  * adjust AppArmor profile for /var/run -> /run (LP: #810270)
 -- Jamie Strandboge <email address hidden>   Thu, 14 Jul 2011 08:26:44 -0500
Superseded in oneiric-release on 2011-07-14
isc-dhcp (4.1.1-P1-17ubuntu3) oneiric; urgency=low

  * Add DHCPv6 client configuration to dhclient.conf (LP: #770324)
 -- Stephane Graber <email address hidden>   Mon, 20 Jun 2011 09:41:26 -0400
Superseded in oneiric-release on 2011-06-20
isc-dhcp (4.1.1-P1-17ubuntu2) oneiric; urgency=low

  * debian/apparmor-profile.dhcpd: modify AppArmor profile for DHCP server to
    work with IPv6 thanks to Launchpad user nikolas for the patch. LP: #787212
 -- Brian Murray <email address hidden>   Fri, 03 Jun 2011 13:55:44 -0700
Superseded in oneiric-release on 2011-06-05
isc-dhcp (4.1.1-P1-17ubuntu1) oneiric; urgency=low

  * Merge from debian unstable.  Remaining changes:
    - Deroot server (Debian #308832).
    - Send hostname to DHCP server by default (LP #10239, Debian #151820).
    - dhclient-onetry-call-clientscript.dpatch: Call 'dhclient-script FAIL'
      when failing to get an address also when operating in oneshot mode
      (-1).  This fixes avahi-autoipd invocation through dhcdbd.
    - dhcpd.conf-subnet-examples.dpatch: Give an example for subnet-mask in
      dhcpd.conf.
    - dhclient-more-debug.dpatch: Show the requested/offered client IP in
      log output, for better debugging.
    - debian/dhclient-script.linux: Wait for /etc/resolv.conf to become
      writable; this isn't the case when ifup is called from an Upstart job
      triggered by udev (Ubuntu-specific until Debian uses this rule, too).
      Rewritten for 4.1.1-P1-17 changes.
    - revert-next-server.dpatch: Revert the need of the next-server option
      in dhcpd.conf so it points to the own IP again for tftp if the option
      is not set (patch by Oliver Grawert; disputed upstream).
    - debian/isc-dhcp-server.init.d: Allow LTSP to override default
      configuration in /etc/ltsp/dhcpd.conf.  Point that out in a header
      comment in debian/dhcpd.conf (Ubuntu-specific).
    - debian/isc-dhcp-server.config: Drop debconf question to medium
      (Ubuntu-specific).
    - Enable build hardening.  Add hardening-wrapper build dependency
      (Ubuntu-specific).
    - Add enforcing AppArmor profile for DHCP client and server.
    - Install apport hooks.
    - debian/dhclient-script.linux: Fix regression in host_name option
      handling, so that it's always honored when /etc/hostname is not set.
    - dhclient-fix-backoff.dpatch,
      dhclient-initial-random-delay-option.dpatch: Speed up DHCP negotiation
      (Debian #509089).
    - Fix configure test for ber_init to work correctly with 'ld
      --no-add-needed'.
    - isc-dhcp-client Breaks: network-manager (<< 0.8.2~rc1), since earlier
      versions were patched in Ubuntu to hardcode assumptions for
      dhcp3-client.
    - debian/patches/multi-ip-addr-per-if.dpatch: Resolve issue of
      interfaces not being able to have more than one IP address assigned.
    - debian/isc-dhcp-client.links: fix symlink ordering for new ISC
      package
    - debian/rules: add call to dh_link to get package symlinks back

Superseded in oneiric-release on 2011-05-30
isc-dhcp (4.1.1-P1-16.1ubuntu1) oneiric; urgency=low

  * Merge from debian unstable.  Remaining changes:
    - Deroot server (Debian #308832).
    - Send hostname to DHCP server by default (LP #10239, Debian #151820).
    - dhclient-onetry-call-clientscript.dpatch: Call 'dhclient-script FAIL'
      when failing to get an address also when operating in oneshot mode
      (-1).  This fixes avahi-autoipd invocation through dhcdbd.
    - dhcpd.conf-subnet-examples.dpatch: Give an example for subnet-mask in
      dhcpd.conf.
    - dhclient-more-debug.dpatch: Show the requested/offered client IP in
      log output, for better debugging.
    - debian/dhclient-script.linux: Wait for /etc/resolv.conf to become
      writable; this isn't the case when ifup is called from an Upstart job
      triggered by udev (Ubuntu-specific until Debian uses this rule, too).
    - revert-next-server.dpatch: Revert the need of the next-server option
      in dhcpd.conf so it points to the own IP again for tftp if the option
      is not set (patch by Oliver Grawert; disputed upstream).
    - debian/isc-dhcp-server.init.d: Allow LTSP to override default
      configuration in /etc/ltsp/dhcpd.conf.  Point that out in a header
      comment in debian/dhcpd.conf (Ubuntu-specific).
    - debian/isc-dhcp-server.config: Drop debconf question to medium
      (Ubuntu-specific).
    - Enable build hardening.  Add hardening-wrapper build dependency
      (Ubuntu-specific).
    - Add enforcing AppArmor profile for DHCP client and server.
    - Install apport hooks.
    - debian/dhclient-script.linux: Fix regression in host_name option
      handling, so that it's always honored when /etc/hostname is not set.
    - dhclient-fix-backoff.dpatch,
      dhclient-initial-random-delay-option.dpatch: Speed up DHCP negotiation
      (Debian #509089).
    - Fix configure test for ber_init to work correctly with 'ld
      --no-add-needed'.
    - isc-dhcp-client Breaks: network-manager (<< 0.8.2~rc1), since earlier
      versions were patched in Ubuntu to hardcode assumptions for
      dhcp3-client.
    - debian/patches/multi-ip-addr-per-if.dpatch: Resolve issue of
      interfaces not being able to have more than one IP address assigned.
    - debian/isc-dhcp-client.links: fix symlink ordering for new ISC
      package
    - debian/rules: add call to dh_link to get package symlinks back

Superseded in oneiric-release on 2011-05-18
Obsolete in natty-release on 2013-06-04
isc-dhcp (4.1.1-P1-15ubuntu9) natty; urgency=low

  * SECURITY UPDATE: arbitrary code execution via crafted hostname
    - Patch for CVE-2011-0997 was getting reverted during the build
      because of special quilt handling in debian/rules for the ldap
      patches.
    - debian/patches/00list: move CVE-2011-0997 patch before the ldap
      patches, and add comment.
    - CVE-2011-0997
 -- Marc Deslauriers <email address hidden>   Tue, 19 Apr 2011 08:45:56 -0400
175 of 84 results