-
oprofile (0.9.6-1.1ubuntu2.1) natty-security; urgency=low
* SECURITY UPDATE: shell metacharacter injection -e argument and arbitrary
file overwrite
- 0001-Sanitize-Event-Names.patch: only allow alphanumerics with -e
- 0002-Ensure-that-save-only-saves-things-in-SESSION_DIR.patch: ensure
that --save only saves things in $SESSION_DIR
- 0003-Avoid-blindly-source-SETUP_FILE-with.patch: don't execute commands
in $SETUP_FILE
- 0004-Do-additional-checks-on-user-supplied-arguments.patch: input
validation on user supplied values
- 0005-add-back-error_if_not_basename.patch: readd error_if_not_basename()
which was removed in 0003-Avoid-blindly-source-SETUP_FILE-with.patch
- CVE-2011-1760
-- Jamie Strandboge <email address hidden> Thu, 07 Jul 2011 11:05:23 -0500
-
oprofile (0.9.6-1.1ubuntu2) natty; urgency=low
* Build on ppc64.
-- Colin Watson <email address hidden> Mon, 21 Feb 2011 19:54:14 +0000
-
oprofile (0.9.6-1.1ubuntu1) maverick; urgency=low
* Merge from debian unstable. Remaining changes:
- Split out libopagent1 runtime library.
- debian/oprofile.postinst: Really really make it work this time by
adding the oprofile:oprofile system user and group as required for
JIT support (see README_PACKAGERS)
- Add documentation about vmlinux / linux-image-debug.ddeb.
- debian/patches/arm-factor-out-armv7-common-architectural-events,
debian/patches/arm-correct-usage-of-core-technology-for-v7-and-mpcore,
debian/patches/arm-add-support-for-cortex-a9-events:
ARMv7 cleanup and Cortex-A9 support, backported from
http://article.gmane.org/gmane.linux.oprofile/8563.
* Statically link libbfd. (LP: #588033)
oprofile (0.9.6-1.1) unstable; urgency=low
* Non-maintainer upload.
* Add patch by Yukiharu YABUKI to staticaly link against libbfd
(Closes: #537744, #573905)
-- Anders Kaseorg <email address hidden> Sat, 11 Sep 2010 18:21:40 +0200
