redhat-cluster 2.20080826-0ubuntu1.3 source package in Ubuntu
Changelog
redhat-cluster (2.20080826-0ubuntu1.3) intrepid-security; urgency=low
* SECURITY UPDATE: insecure temporary file handling in fence_egenera
- debian/patches/900_CVE-2008-4192.dpatch: move logfile to protected
directory
- CVE-2008-4192
* SECURITY UPDATE: insecure temporary file handling in multiple places.
- debian/patches/900_fence_apc_manpage.dpatch: don't reference /tmp/apclog
in fence_apc man page, since it is not used
- debian/patches/900_fence_vmware.dpatch: move logfile to protected
directory
- debian/patches/900_tempfix_ASEHAagent.dpatch: use mktemp instead of
hard-coded file
- debian/patches/900_tempfix_daemons.dpatch: move logfile to protected
directory
- debian/patches/900_tempfix_fs.dpatch: move logfile to protected
directory
- debian/patches/900_tempfix_gfs2_debugfs.dpatch: use mkdtemp() in misc.c
- debian/patches/900_tempfix_gfs2_savemeta.dpatch: use mkstemp() in
savemeta.c
- debian/patches/900_tempfix_libgfs2.dpatch: use mkdtemp() in misc.c and
clean out (now) unneeded functions
- debian/patches/900_tempfix_lvm_by_vg.dpatch: don't log debugging
information to temporary file
- debian/patches/900_tempfix_oracledb.dpatch: use mktemp and move logfile
to protected directory
- debian/patches/900_tempfix_SAPDatabase.dpatch: use mktemp
- debian/patches/900_tempfix_smb.dpatch: use mktemp
- debian/patches/900_tempfix_svclib_nfslock.dpatch: use mktemp
- Patches based on upstream changes
- CVE-2008-6552
* SECURITY UPDATE: buffer overflow when adding entries to ccsais xml block
- debian/patches/901_ccsais_overflow.dpatch: define and check for
MAXXMLNODES in plugins/ccsais/config.c
- CVE-2008-6560
* SECURITY UPDATE: buffer overflow when adding entries to same xml block
- debian/patches/901_xmlconfig_overflow.dpatch: dynamically allocate
memory instead of using static buffers in plugins/xml/config.c
- CVE-XXXX-XXXX
* debian/rgmanager.dirs: install /var/log/cluster
-- Jamie Strandboge <email address hidden> Thu, 17 Dec 2009 13:01:28 -0600
Upload details
- Uploaded by:
- Jamie Strandboge
- Uploaded to:
- Intrepid
- Original maintainer:
- Ubuntu Development Team
- Architectures:
- any
- Section:
- admin
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| redhat-cluster_2.20080826.orig.tar.gz | 1.6 MiB | 8064d7596588f19191d60e9b154644944b042f6e1274e78955eddaa89547e3c6 |
| redhat-cluster_2.20080826-0ubuntu1.3.diff.gz | 62.0 KiB | c10f04b35c97642723e1a1f6a6bb48c6108a058e0d59fce2eea7df001fa942e8 |
| redhat-cluster_2.20080826-0ubuntu1.3.dsc | 1.9 KiB | fa26098b08987653dac6adf33be7b1ae162738f4a271f146e160fb15030df72a |
Available diffs
Binary packages built by this source
- cman: No summary available for cman in ubuntu intrepid.
No description available for cman in ubuntu intrepid.
- gfs-tools: No summary available for gfs-tools in ubuntu intrepid.
No description available for gfs-tools in ubuntu intrepid.
- gfs2-tools: No summary available for gfs2-tools in ubuntu intrepid.
No description available for gfs2-tools in ubuntu intrepid.
- gnbd-client: No summary available for gnbd-client in ubuntu intrepid.
No description available for gnbd-client in ubuntu intrepid.
- gnbd-server: No summary available for gnbd-server in ubuntu intrepid.
No description available for gnbd-server in ubuntu intrepid.
- libccs-dev: No summary available for libccs-dev in ubuntu intrepid.
No description available for libccs-dev in ubuntu intrepid.
- libccs-perl: No summary available for libccs-perl in ubuntu intrepid.
No description available for libccs-perl in ubuntu intrepid.
- libccs3: No summary available for libccs3 in ubuntu intrepid.
No description available for libccs3 in ubuntu intrepid.
- libcman-dev: No summary available for libcman-dev in ubuntu intrepid.
No description available for libcman-dev in ubuntu intrepid.
- libcman3: No summary available for libcman3 in ubuntu intrepid.
No description available for libcman3 in ubuntu intrepid.
- libdlm-dev: No summary available for libdlm-dev in ubuntu intrepid.
No description available for libdlm-dev in ubuntu intrepid.
- libdlm3: No summary available for libdlm3 in ubuntu intrepid.
No description available for libdlm3 in ubuntu intrepid.
- libdlmcontrol-dev: No summary available for libdlmcontrol-dev in ubuntu intrepid.
No description available for libdlmcontrol-dev in ubuntu intrepid.
- libdlmcontrol3: No summary available for libdlmcontrol3 in ubuntu intrepid.
No description available for libdlmcontrol3 in ubuntu intrepid.
- libfence-dev: No summary available for libfence-dev in ubuntu intrepid.
No description available for libfence-dev in ubuntu intrepid.
- libfence3: No summary available for libfence3 in ubuntu intrepid.
No description available for libfence3 in ubuntu intrepid.
- redhat-cluster-source: No summary available for redhat-cluster-source in ubuntu intrepid.
No description available for redhat-
cluster- source in ubuntu intrepid.
- redhat-cluster-suite: No summary available for redhat-cluster-suite in ubuntu intrepid.
No description available for redhat-
cluster- suite in ubuntu intrepid.
- rgmanager: No summary available for rgmanager in ubuntu intrepid.
No description available for rgmanager in ubuntu intrepid.
