-
heartbeat (1.2.4-14build1) edgy; urgency=low
* Fake-sync a newer Debian version to fix vulnerability (but not the newest
package since that is a new upstream version).
* Fixed CVE number in previous changelog (also fixed in latest Debian
version).
heartbeat (1.2.4-14) unstable; urgency=high
* CVE-2006-3121.patch
Fix remote denial of causes caused by insufficient bounds checking
on data read from the network.
CVE-2006-3121
* Python transition - http://wiki.debian.org/DebianPython/NewPolicy
(closes: #380841)
- Update build dependancy on debhelper from (>= 4.0.0) to (>= 5.0.37.2)
- Add dh_python call to debian/rules
- created debian/pycompat with contents of "2"
- heartebat: deplaced depenancy on python with one on {python:Depends}
- Added XB-Python-Version: ${python:Versions} to each package
- Use python-central
+ Add build depends on python-central (>= 0.5)
+ Add dh_pycentral call right before dh_python in debian/rules
+ Add XS-Python-Version: current in the source stanza of debian/control
-- Martin Pitt <email address hidden> Wed, 16 Aug 2006 10:54:31 +0200
-
heartbeat (1.2.4-13) unstable; urgency=low
* shmget-perms.patch
Fix local denial of service caused by incorrect permisions
on a shared memory page.
CVE-2006-3815, DSA-1128
(closes: #379904)
* ldirectord-1.141-emailalert-1-quiet.patch
Don't send email alerts if the alert address is not configured
(closes: #380593)
* ldirectord-1.139.patch, ldirectord-1.141-emailalert-2-global.patch
Allow emailalert and emailalertfreq directives to be global
as well as per-virtual service
* ldirectord-1.141-readline_workaround.patch
readline doesn't seem to return lines after Net::FTP
has been called, so split them up by hand.
* Added build dependancy on iptables, as it is needed to
supply the correct path to iptables for the portblock resource
(closes: #380180)
* Added recommends iptables to heartbeat-2, as it is needed
for the portblock resource to function correctly
-- Martin Pitt <email address hidden> Fri, 11 Aug 2006 15:31:45 +0100
-
heartbeat (1.2.4-12ubuntu1) edgy; urgency=low
* SECURITY UPDATE: Local DoS.
* Add debian/patches/01-shm_permissions.patch:
- Fix permissions of created shared memory block to not be
world-read/writable.
- Patch taken from upstream:
http://cvs.linux-ha.org/viewcvs/viewcvs.cgi/linux-ha/heartbeat/heartbeat.c?r1=1.513&r2=1.514
- CVE-2006-3815
* Apply above patch inline (build system does not do that automatically).
-- Martin Pitt <email address hidden> Wed, 26 Jul 2006 11:15:27 +0200
-
heartbeat (1.2.4-12) unstable; urgency=low
* ldirectord: Add dependancy on libmailtools-perl (Mail::Send)
(closes: #376786)
* ldirectord: Add misggingdependancy on libnet-perl
(Net::SMTP, Net::FTP, Net::POP3)
* ldirectord: Remove unneccesary depenancy on adduser
-- Ubuntu Archive Auto-Sync <email address hidden> Thu, 06 Jul 2006 03:02:36 +0100
-
heartbeat (1.2.4-11) unstable; urgency=low
* Remove the unneccesary Build-Depends on automake as part of
automake transition. http://wiki.debian.org/AutomakeTransition
(closes #376623)
-- Ubuntu Archive Auto-Sync <email address hidden> Wed, 05 Jul 2006 16:40:47 +0100
-
heartbeat (1.2.4-10) unstable; urgency=low
* Update ldirectordy from 1.77.2.32 to 1.77.2.45 (1.135)
- 1.77.2.45
Only log to stdio during init
Thanks to Jan Yenya Kasprzak
- 1.77.2.44
When daemonised, use /dev/null instead of /dev/console for stdout
and stderr as /dev/console may not always be available
Thanks to Jan Yenya Kasprzak
- 1.77.2.43
Test for istead of defined as (Fedora Core at least) the latter
is always true.
Thanks to Jan Yenya Kasprzak
- 1.77.2.42
Add email alerts to ldirectord.
Thanks to anthony
- 1.77.2.41
Make sure ldirectord does not detatch from the terminal in debug mode.
- 1.77.2.40
Actually sync with head 1.130
(previous commits were missing some older changes)
- 1.77.2.39
Remove uncaught alarm in eval which is a race condition in the connect
and sip checks.
Thanks to Keith Bucher and Julien Ducros
- 1.77.2.38
the the -> the
- 1.77.2.37
Fix a problem relating to zombie real servers appearing if the real
and virtual servers have different ports - comment inline
- 1.77.2.36
Allow authenticted LDAP access.
Thanks to Andreas Nolte
- 1.77.2.35
Actually use DNS over TCP for TCP servers.
Thanks to Todd Lyons
- 1.77.2.34
Delay checking of duplicates until we have enough information to
generate an acurate id for the service
- 1.77.2.33
Fix url check, seems like a regression from when the http and https
checks were merged
- 1.77.2.32
Handle socket errors, regresion introduced when SIP check was added
* Don't run deluser and delgroup in postrm
- These commands may not be available at this time (closes: #375507)
- If there are any files left that belong to this user or group
then they will be left unowned and get inhereited by the
next user that comes along that happens to have hacluster's
old userid or the old haclient groupid respectively.
-- Ubuntu Archive Auto-Sync <email address hidden> Fri, 30 Jun 2006 13:29:08 +0100
-
heartbeat (1.2.4-9) unstable; urgency=low
* Move IPv6addr from /etc/ha.d/resource.d/ into /usr/lib/heartbeat,
and then symlink that back into /etc/ha.d/resource.d/ as binaries
are not allowed in /etc (closes: #369815)
heartbeat (1.2.4-8) unstable; urgency=low
* Make use of invoke-rc.d
(closes: #346117, #367988)
* Update from standards version 3.6.2 to 3.7.2
heartbeat (1.2.4-7) unstable; urgency=low
* Removed duplicate depenancy on adduser
(closes: #356887)
* The chanlog entry in 1.2.4-2 refering to vanessa libraries and
~/.magic is incorrect. While the description of the .magic problem
is accurate, the affected dependancies are libstonith0,
libpils0, and possibly others, but not vanessa, as linux-ha
does not use thos libraries. This is a cut and paste error
as I updated the perdition packages at the same time.
heartbeat (1.2.4-5) unstable; urgency=low
* Don't try and stop heartbeat in preinst on the first install
(closes: #355806)
heartbeat (1.2.4-4) unstable; urgency=low
* Move hacluster user and haclient group creation (don't ask me why the
user and group names are different) from preinst to postinst.
Once upon a time there might have been a need for it in preinst,
but the current packaging changes files to have the hacluster user
and haclient group as neccessary in the postinst. So there is
no need to create them before postinst.
This is a better fix to #352027, and the pre-depends on adduser
has been changed to a depends accordingly.
(closes: #352027)
heartbeat (1.2.4-3) unstable; urgency=low
* Make /usr/bin/cl_status setgid
(closes: #351180)
* Fix inconsistency between hb_standb(1) man page and wiki
(closes: #351202)
* Add pre-depends on adduser
(closes: #352027)
-- Ubuntu Archive Auto-Sync <email address hidden> Thu, 15 Jun 2006 14:20:27 +0100
-
heartbeat (1.2.4-2) unstable; urgency=low
* Rebuild, as i386 upload was missing depenancies on vanessa libraries.
This was caused by a ~/.magic in the build environment that had very
unexpected side affects. Primarily causing file to return "data"
instead of "ELF" on ELF executables, and thus causing all executables
to be skipped by dh_shlibdeps.
* Add dependancy on openssh-client which is needed as 00-ssh_scp_path.patch
was removed in 1.2.4-1
* Slightly Enhanced package descriptions
(closes: #337895, #337896)
-- Simon Horman <email address hidden> Tue, 27 Dec 2005 13:38:55 +0900