Change logs for procps source package in Mantic

procps (2:4.0.3-1ubuntu1.23.10.1) mantic-security; urgency=medium

  * SECURITY UPDATE: heap-based buffer overflow
    - debian/patches/CVE-2023-4016.patch: replace the use of malloc() with calloc()
      in ps/parser.c to prevent the potential for an arithmetic overflow when
      allocating memory.
    - CVE-2023-4016

 -- Ian Constantin <email address hidden>  Mon, 06 Nov 2023 14:12:55 +0200

procps (2:4.0.3-1ubuntu1) lunar; urgency=medium

  * Merge from Debian unstable.  Remaining changes:
    -  debian/sysctl.d (Ubuntu-specific):
       + 10-console-messages.conf: stop low-level kernel messages on console.
       + 10-kernel-hardening.conf: add the kptr_restrict setting
       + 10-ipv6-privacy.conf: add a file to sysctl.d to apply the defaults
         for IPv6 privacy extensions for interfaces. (LP: #176125, #841353)
       + 10-magic-sysrq.conf: Disable most magic sysrq by default, allowing
         critical sync, remount, reboot functions. (LP: #194676, LP: #1025467)
       + 10-network-security.conf: enable rp_filter.
       + 10-ptrace.conf: describe new PTRACE setting.
       + 10-zeropage.conf: safe mmap_min_addr value for graceful fall-back.
         for armhf, and arm64.
       + 10-qemu.conf.s390x for qemu.
    - ignore_eaccess.patch: If we get eaccess when opening a sysctl file for
      writing, don't error out.  Otherwise package upgrades can fail,
      especially in containers.
      - Adjust logic due to rc no longer being propagated (LP: #1903351)
    - ignore_erofs.patch: Same as ignore_eaccess but for the case where
      part of /proc is read/only.
      - Adjust logic due to rc no longer being propagated (LP: #1903351)
    - d/t/stack-limit: add basic autopkgtest to validate limits
    - Add basic autopkgtest to validate sysctl-defaults (LP: #1962038)
  * Refresh patches
  * Dropped changes (applied upstream or in Debian):
    - debian/procps.maintscript: handle migration of link-protect.conf from
      /etc to /usr.
      - Added in Focal, should be clean as of Jammy.
    - debian/rules: Fix cross build (Closes: #1031343)
    - negative_committed_mem.patch: fix new 'free commited' test

procps (2:4.0.3-1) unstable; urgency=medium

  * New upstream release
    - docs: Translated manpages installed
    - pgrep: make --terminal respect other criteria
    - ps: c flag shows command name again Closes: #1026326
    - skill: Match on -p again Closes: #1025915
    - vmstat: Referesh memory statistics Closes: #1027963
    - vmstat: Fix initial si,so,bi,bo,in & cs values Closes: #668580
  * Update standards version
  * Improve cross-building Closes: #1031343

 -- Lukas Märdian <email address hidden>  Mon, 20 Feb 2023 09:32:53 +0100