Change log for proftpd package in Ubuntu
| 1 → 13 of 13 results | First • Previous • Next • Last |
proftpd (1.2.10-27ubuntu3.1) dapper-security; urgency=low
* [SECURITY] Fix various format string and buffer overflow
vulnerabilities (patches renamed from Debian Sarge's
1.2.10-20sarge1).
* debian/patches/:
- 34.SA22821.diff: Add, fix off-by-one in src/main.c::cmd_loop(),
- 35.SA22803_CVE-2006-5815.diff: Add, fix off-by-one in
src/support.c::sreplace(),
- 36.SA23141.diff: Add, fix boundary error in
contrib/mod_tls.c::tls_x509_name_oneline().
* References:
- CVE-2005-2390/Secunia 16181 (fixed in 1.2.10-20),
- CVE-2006-5815/Secunia 22803,
- Secunia 22821,
- Secunia 23141.
-- Daniel T Chen <email address hidden> Thu, 30 Nov 2006 21:07:10 -0500
proftpd (1.3.0-9ubuntu0.1) edgy-security; urgency=low
* SECURITY UPDATE: Fix off-by-one in src/support.c::sreplace() allowing
arbitrary remote command execution due to string manipulation flaw.
* debian/patches/CVE-2006-5815_support.c_sreplace-off-by-one.dpatch:
Add (and also enable in debian/patches/00list).
* References:
- CVE-2006-5815
- http://bugs.proftpd.org/show_bug.cgi?id=2858
-- Daniel T Chen <email address hidden> Tue, 28 Nov 2006 19:26:06 -0500
| Obsolete in dapper-backports |
proftpd (1.3.0-9~dapper1) dapper-backports; urgency=low * Automated backport upload; no source changes.
| Deleted in feisty-release (Reason: (From Debian) [auto-cruft] obsolete source package) |
| Obsolete in edgy-release |
proftpd (1.3.0-9) unstable; urgency=low
* Missing examples added to proftpd-doc: moved proftpd.examples to proftpd-doc.examples
* Added patch: sighup_fault
Daemon fails when receive SIGHUP and mod_ctrls is enabled.
Cfr http://bugs.proftpd.org/show_bug.cgi?id=2792
* Policy bumped to 3.7.2, no changes.
* proftpd.init: added /var/run/proftpd creation at run-time (ubuntu patch).
* Typo in README.Debian corrected
(closes: #369745)
* Russian debconf template revised
(closes: #367164)
* Added a note in README.Debian about AuthOrder and other issues.
proftpd (1.2.10-27ubuntu3) dapper; urgency=low * Argh, stop overriding MySQL's shlibs manually in debian/control. -- Adam Conrad <email address hidden> Fri, 7 Apr 2006 00:17:22 +1000
| Superseded in dapper-release |
proftpd (1.2.10-27ubuntu2) dapper; urgency=low * Rebuild against the new libmysqlclient15off with correct symbols. -- Adam Conrad <email address hidden> Thu, 6 Apr 2006 15:11:54 +1000
| Superseded in dapper-release |
proftpd (1.2.10-27ubuntu1) dapper; urgency=low
* Modified init script to create /var/run/proftpd if it doesn't exist (if
/var/run is a tmpfs for instance). (Closes: Malone #34255, #34122)
-- Jeremie Corbier <email address hidden> Sat, 18 Mar 2006 16:31:05 +0100
proftpd (1.2.10-27) unstable; urgency=low
* Transition libmysqlclient12 -> libmysqlclient15, retaining back-compatibility
for backporters, just in case.
(closes: #343799)
* Updated invalid de.po.
(closes: #326799)
* Now latest mod_ldap is backported to 1.2.10 API correctly. Thanks Stephan Jaeger.
(closes: #321937)
* Depends changed in Recommends in proftpd-common in respect with
other proftpd-* packages.
This will not remove proftpd-common when ever proftpd is removed, which is
not a good thing IMHO. The whole issue will be obsoleted in the new 1.3.0
packaging anyway, because it will remove the both proftpd-common and proftpd-*
in upgrading. Note that proftpd-common installs a few common scripts.
(closes: #341008)
* Added 33.documentation.diff patch for a couple of minor doc issues:
(closes: #309251,#306339)
* Removed Paul Martin as proftpd uploader, he is not active since years about that.
* Moved to level 4 compatibility for debhelper (no changes).
-- Francesco Paolo Lovergine <email address hidden> Wed, 11 Jan 2006 13:54:17 +0100
proftpd (1.2.10-26) unstable; urgency=low
* Changed /dev/tty into /dev/null to manage crappy update-inetd in batch processing.
That's definitively not required by policy, but useful...
(closes: #340262)
* Updated download location into copyright file.
(closes: #340240)
* Updated danish template
(closes: #340130)
-- Francesco Paolo Lovergine <email address hidden> Tue, 22 Nov 2005 11:37:51 +0100
proftpd (1.2.10-22) unstable; urgency=low
* Updated patch 29.misc-sql.diff to manage a signal 11 error.
See http://bugs.proftpd.org/attachment.cgi?id=2344 patch for report
http://bugs.proftpd.org/show_bug.cgi?id=2485#c19. Thanks Greg.
* Typo in rules files introduced prevented config.guess update.
Thanks Ryo Kato.
* Missed diskuse contrib tool added.
Thanks Ryo Kato.
* Added diskuse.8 man page.
* Little change to ftpquota.8 man page contents.
* proftpd.init corrected to use || instead of -o in xinetd tests.
Thanks Christoph Bussenius.
-- Francesco Paolo Lovergine <email address hidden> Fri, 2 Sep 2005 20:36:41 +0200
| Obsolete in hoary-backports |
proftpd (1.2.10-20~hoary1) hoary-backports; urgency=low * Automated backport upload; no source changes. -- Ubuntu Archive Auto-Backport <email address hidden> Mon, 22 Aug 2005 17:40:28 +0100
proftpd (1.2.10-8) unstable; urgency=medium
* Updated patch 22.mod_delay.c.diff to not check for DelayTable if DelayEngine is off.
See http://bugs.proftpd.org/show_bug.cgi?id=2540 for information.
(closes: #283811)
* Typo in rules, now removing README.cygwin, not README.cgywin :-/
-- Francesco Paolo Lovergine <email address hidden> Wed, 29 Dec 2004 22:51:30 +0100
proftpd (1.2.9-12) unstable; urgency=high
* Removed all autoconf-related rules within Makefile.in, so patch 07.autoconf.diff
has changed. Previous patch tried to force the use of a recent autoconf
instead. This freezes configure in the form issued by upstream.
(closes: #248612)
* Autotools file config.(guess|sub) moved into the build-tree.
-- Francesco Paolo Lovergine <email address hidden> Wed, 12 May 2004 15:00:07 +0200
| 1 → 13 of 13 results | First • Previous • Next • Last |
