Ubuntu
spice-vdagent package

Change log for spice-vdagent package in Ubuntu

123 of 23 results FirstPreviousNextLast
Published in mantic-release
Published in lunar-release
Published in kinetic-release
Deleted in kinetic-proposed (Reason: Moved to kinetic) 
spice-vdagent (0.22.1-3) unstable; urgency=medium

  [ Abhijith PA ]
  * New maintainer (Closes: #911430)

 -- Jelmer Vernooij <email address hidden>  Tue, 31 May 2022 20:33:55 +0100

Available diffs

Superseded in kinetic-release
Deleted in kinetic-proposed (Reason: Moved to kinetic) 
spice-vdagent (0.22.1-2) unstable; urgency=medium

  * QA upload.

  [ Jeremy Bicha ]
  * debian/rules: Enable all hardening flags

 -- Jelmer Vernooij <email address hidden>  Wed, 25 May 2022 12:06:34 +0100

Available diffs

Superseded in kinetic-release
Published in jammy-release
Deleted in jammy-proposed (Reason: Moved to jammy) 
spice-vdagent (0.22.1-1) unstable; urgency=medium

  * QA upload.

  [ Jeremy Bicha ]
  * New upstream release
  * Drop patches applied in new release
  * debian/spice-vdagent.install: Install new systemd user service
  * Build-Depend on debhelper-compat 13

  [ Abhijith PA ]
  * debian/control: Build-Depend on procps
  * Add patch to disable a build test that requires systemd running
  * Add trivial autopkgtest
  * Add salsa ci

 -- Jeremy Bicha <email address hidden>  Thu, 24 Feb 2022 10:08:24 -0500

Available diffs

Superseded in jammy-release
Deleted in jammy-proposed (Reason: Moved to jammy) 
spice-vdagent (0.20.0-3) unstable; urgency=medium

  * QA upload.
  * Add patch for autoconf 2.71 compatibility. (Closes: #994424)

 -- Adrian Bunk <email address hidden>  Thu, 14 Oct 2021 20:30:48 +0300
Superseded in jammy-release
Obsolete in impish-release
Deleted in impish-proposed (Reason: Moved to impish) 
spice-vdagent (0.20.0-2build1) impish; urgency=medium

  * No-change rebuild to build packages with zstd compression.

 -- Matthias Klose <email address hidden>  Thu, 07 Oct 2021 12:24:46 +0200
Superseded in impish-release
Obsolete in hirsute-release
Deleted in hirsute-proposed (Reason: moved to Release) 
spice-vdagent (0.20.0-2) unstable; urgency=medium

  * QA upload.
  * Set Maintainer to Debian QA Group. (see #911430)
  * Add changes from Ubuntu:
    * SECURITY UPDATE: Memory DoS via Arbitrary Entries in active_xfers Hash
      Table
      - debian/patches/CVE-2020-25650-1.patch: avoid agents allocating file
        transfers in src/vdagentd/vdagentd.c.
      - debian/patches/CVE-2020-25650-2.patch: avoid uncontrolled
        active_xfers allocations in src/vdagentd/vdagentd.c.
      - CVE-2020-25650
    * SECURITY UPDATE: Possible File Transfer DoS and Information Leak via
      active_xfers Hash Map
      - debian/patches/CVE-2020-25651-1.patch: cleanup active_xfers when the
        client disconnects in src/vdagentd/vdagentd.c.
      - debian/patches/CVE-2020-25651-2.patch: do not allow using an already
        used file-xfer id in src/vdagentd/vdagentd.c.
      - CVE-2020-25651
    * SECURITY UPDATE: Possibility to Exhaust File Descriptors in vdagentd
      - debian/patches/CVE-2020-25652-1.patch: avoid unlimited agent
        connections in src/udscs.c.
      - debian/patches/CVE-2020-25652-2.patch: limit number of agents per
        session to 1 in src/vdagentd/vdagentd.c.
      - CVE-2020-25652
    * SECURITY UPDATE: UNIX Domain Socket Peer PID Retrieved via SO_PEERCRED
      is Subject to Race Condition
      - debian/patches/CVE-2020-25653-1.patch: avoid user session hijacking
        in src/vdagent-connection.c, src/vdagent-connection.h,
        src/vdagentd/vdagentd.c.
      - debian/patches/CVE-2020-25653-2.patch: better check for sessions in
        src/vdagentd/console-kit.c, src/vdagentd/dummy-session-info.c,
        src/vdagentd/session-info.h, src/vdagentd/systemd-login.c,
        src/vdagentd/vdagentd.c.
      - CVE-2020-25653
    * Additional fixes:
      - debian/patches/CVE-2020-2565x-1.patch: avoid calling chmod in
        src/vdagentd/vdagentd.c.
    (Closes: #973769)

 -- Adrian Bunk <email address hidden>  Thu, 03 Dec 2020 21:37:35 +0200
Published in bionic-updates
Published in bionic-security 
spice-vdagent (0.17.0-1ubuntu2.2) bionic-security; urgency=medium

  * SECURITY UPDATE: Memory DoS via Arbitrary Entries in active_xfers Hash
    Table
    - debian/patches/CVE-2020-25650-1.patch: avoid agents allocating file
      transfers in srcvdagentd.c.
    - debian/patches/CVE-2020-25650-2.patch: avoid uncontrolled
      active_xfers allocations in src/vdagentd.c.
    - CVE-2020-25650
  * SECURITY UPDATE: Possible File Transfer DoS and Information Leak via
    active_xfers Hash Map
    - debian/patches/CVE-2020-25651-1.patch: cleanup active_xfers when the
      client disconnects in src/vdagentd.c.
    - debian/patches/CVE-2020-25651-2.patch: do not allow using an already
      used file-xfer id in src/vdagentd.c.
    - CVE-2020-25651
  * SECURITY UPDATE: Possibility to Exhaust File Descriptors in vdagentd
    - debian/patches/CVE-2020-25652-1.patch: avoid unlimited agent
      connections in src/udscs.c.
    - debian/patches/CVE-2020-25652-2.patch: limit number of agents per
      session to 1 in src/vdagentd.c.
    - CVE-2020-25652
  * SECURITY UPDATE: UNIX Domain Socket Peer PID Retrieved via SO_PEERCRED
    is Subject to Race Condition
    - debian/patches/CVE-2020-25653-1.patch: avoid user session hijacking
      in src/udscs.c, src/udscs.h, src/vdagentd.c.
    - debian/patches/CVE-2020-25653-2.patch: better check for sessions in
      src/console-kit.c, src/dummy-session-info.c, src/session-info.h,
      src/systemd-login.c, src/vdagentd.c.
    - CVE-2020-25653
  * Additional fixes:
    - debian/patches/CVE-2020-2565x-1.patch: avoid calling chmod in
      src/vdagentd.c.

 -- Marc Deslauriers <email address hidden>  Mon, 02 Nov 2020 16:52:50 -0500
Published in focal-updates
Published in focal-security 
spice-vdagent (0.19.0-2ubuntu0.2) focal-security; urgency=medium

  * SECURITY UPDATE: Memory DoS via Arbitrary Entries in active_xfers Hash
    Table
    - debian/patches/CVE-2020-25650-1.patch: avoid agents allocating file
      transfers in src/vdagentd/vdagentd.c.
    - debian/patches/CVE-2020-25650-2.patch: avoid uncontrolled
      active_xfers allocations in src/vdagentd/vdagentd.c.
    - CVE-2020-25650
  * SECURITY UPDATE: Possible File Transfer DoS and Information Leak via
    active_xfers Hash Map
    - debian/patches/CVE-2020-25651-1.patch: cleanup active_xfers when the
      client disconnects in src/vdagentd/vdagentd.c.
    - debian/patches/CVE-2020-25651-2.patch: do not allow using an already
      used file-xfer id in src/vdagentd/vdagentd.c.
    - CVE-2020-25651
  * SECURITY UPDATE: Possibility to Exhaust File Descriptors in vdagentd
    - debian/patches/CVE-2020-25652-1.patch: avoid unlimited agent
      connections in src/udscs.c.
    - debian/patches/CVE-2020-25652-2.patch: limit number of agents per
      session to 1 in src/vdagentd/vdagentd.c.
    - CVE-2020-25652
  * SECURITY UPDATE: UNIX Domain Socket Peer PID Retrieved via SO_PEERCRED
    is Subject to Race Condition
    - debian/patches/CVE-2020-25653-1.patch: avoid user session hijacking
      in src/udscs.c, src/udscs.h, src/vdagentd/vdagentd.c.
    - debian/patches/CVE-2020-25653-2.patch: better check for sessions in
      src/vdagentd/console-kit.c, src/vdagentd/dummy-session-info.c,
      src/vdagentd/session-info.h, src/vdagentd/systemd-login.c,
      src/vdagentd/vdagentd.c.
    - CVE-2020-25653
  * Additional fixes:
    - debian/patches/CVE-2020-2565x-1.patch: avoid calling chmod in
      src/vdagentd/vdagentd.c.

 -- Marc Deslauriers <email address hidden>  Mon, 02 Nov 2020 16:27:12 -0500
Superseded in hirsute-release
Deleted in hirsute-proposed (Reason: moved to Release)
Obsolete in groovy-updates
Obsolete in groovy-security 
spice-vdagent (0.20.0-1ubuntu0.1) groovy-security; urgency=medium

  * SECURITY UPDATE: Memory DoS via Arbitrary Entries in active_xfers Hash
    Table
    - debian/patches/CVE-2020-25650-1.patch: avoid agents allocating file
      transfers in src/vdagentd/vdagentd.c.
    - debian/patches/CVE-2020-25650-2.patch: avoid uncontrolled
      active_xfers allocations in src/vdagentd/vdagentd.c.
    - CVE-2020-25650
  * SECURITY UPDATE: Possible File Transfer DoS and Information Leak via
    active_xfers Hash Map
    - debian/patches/CVE-2020-25651-1.patch: cleanup active_xfers when the
      client disconnects in src/vdagentd/vdagentd.c.
    - debian/patches/CVE-2020-25651-2.patch: do not allow using an already
      used file-xfer id in src/vdagentd/vdagentd.c.
    - CVE-2020-25651
  * SECURITY UPDATE: Possibility to Exhaust File Descriptors in vdagentd
    - debian/patches/CVE-2020-25652-1.patch: avoid unlimited agent
      connections in src/udscs.c.
    - debian/patches/CVE-2020-25652-2.patch: limit number of agents per
      session to 1 in src/vdagentd/vdagentd.c.
    - CVE-2020-25652
  * SECURITY UPDATE: UNIX Domain Socket Peer PID Retrieved via SO_PEERCRED
    is Subject to Race Condition
    - debian/patches/CVE-2020-25653-1.patch: avoid user session hijacking
      in src/vdagent-connection.c, src/vdagent-connection.h,
      src/vdagentd/vdagentd.c.
    - debian/patches/CVE-2020-25653-2.patch: better check for sessions in
      src/vdagentd/console-kit.c, src/vdagentd/dummy-session-info.c,
      src/vdagentd/session-info.h, src/vdagentd/systemd-login.c,
      src/vdagentd/vdagentd.c.
    - CVE-2020-25653
  * Additional fixes:
    - debian/patches/CVE-2020-2565x-1.patch: avoid calling chmod in
      src/vdagentd/vdagentd.c.

 -- Marc Deslauriers <email address hidden>  Thu, 29 Oct 2020 13:53:06 -0400
Superseded in hirsute-release
Obsolete in groovy-release
Deleted in groovy-proposed (Reason: moved to Release) 
spice-vdagent (0.20.0-1) unstable; urgency=medium

  * Team upload.
  * New upstream release
    - Fix race fixes between client and guest clipboard (Closes: #854936)
    - Bump libglib2.0-dev, libgtk-3-dev and libspice-protocol-dev BD
    - Drop d/p/vdagentd-Fix-session-lookup-for-new-GNOME-versions.patch,
      applied upstream
  * debian/gbp.conf: Enable pristine-tar
  * debian/control: Bump Standards-Version to 4.5.0 (no further changes)
  * debian/rules: Do not pass --as-needed to the linker, this is the default now
  * Import two patch from upstream to fix crash in containers and shutdown of
    the daemon

 -- Laurent Bigonville <email address hidden>  Sun, 26 Apr 2020 09:53:08 +0200

Available diffs

Superseded in groovy-release
Published in focal-release
Obsolete in eoan-release
Deleted in eoan-proposed (Reason: moved to Release) 
spice-vdagent (0.19.0-2) unstable; urgency=medium

  * Team upload.
  * d/p/vdagentd-Fix-session-lookup-for-new-GNOME-versions.patch: Fix session
    lookup for new GNOME versions (thanks to Iain Lane <email address hidden>)

 -- Laurent Bigonville <email address hidden>  Fri, 27 Sep 2019 10:40:40 +0200
Superseded in eoan-release
Deleted in eoan-proposed (Reason: moved to release) 
spice-vdagent (0.19.0-1) unstable; urgency=medium

  * Team upload.
  * Enable upstream tarball signature verification
  * New upstream version 0.19.0
    - tmpfiles.d/spice-vdagentd.conf now uses /run instead of /var/run
      (Closes: #910363)
  * debian/control: Adjust the build-dependencies
  * debian/control: Bump Standards-Version to 4.4.0 (no further changes)
  * debian/patches/systemd_service_default_file.patch: Refreshed
  * debian/docs: TODO file is gone and README has been renamed to README.md
  * Bump debhelper compatibility to 12.
    This will switch the package to dh_installsystemd and prevent the
    service to start on machines that are virtual machines with virtio
    channel enabled

 -- Laurent Bigonville <email address hidden>  Wed, 14 Aug 2019 11:14:49 +0200

Available diffs

Superseded in eoan-release
Obsolete in disco-release
Deleted in disco-proposed (Reason: moved to release) 
spice-vdagent (0.18.0-1) unstable; urgency=medium

  * Team upload.
  [ Laurent Bigonville ]
  * debian/watch: Update the URL
  * New upstream version 0.18.0 (Closes: #905771)
    - Quote the save directory before passing to shell (Closes: #883238
      CVE-2017-15108)
    - Drop the patches merged upstream
    - debian/patches/systemd_service_default_file.patch: Refreshed
    - debian/control: Bump the build-dependencies
  * debian/control: Build-depend against udev
  * debian/control: Drop dh-systemd, not needed with debhelper >= 10
  * debian/control: Bump Standards-Version to 4.2.1 (no further changes)
  * debian/control: Update Vcs- fields to the new URL
  * Enable GTK support, the X11 backend is deprecated
  * debian/rules: Reduce the number of runtime dependencies
  * debian/control: Fix typos in the Description.
    Thanks to Ludovic Rousseau <email address hidden> (Closes: #874678)
  * debian/rules: Use dh_auto_install instead of calling make directly
  * debian/rules: Use dh_missing --list-missing instead of dh_install

  [ Helmut Grohne ]
  * Fix FTCBFS: Let dh_auto_configure pass --host to ./configure.
    (Closes: #894116)

 -- Laurent Bigonville <email address hidden>  Wed, 03 Oct 2018 01:22:06 +0200
Superseded in disco-release
Obsolete in cosmic-release
Published in bionic-release
Superseded in bionic-release
Deleted in bionic-proposed (Reason: moved to release) 
spice-vdagent (0.17.0-1ubuntu2) bionic; urgency=medium

  * debian/patches/git_cve-2017-15108.patch:
    - Quote the save directory before passing to shell, that has been
      reported as CVE-2017-15108

 -- Sebastien Bacher <email address hidden>  Fri, 15 Dec 2017 15:21:23 +0100
Superseded in bionic-release
Obsolete in artful-release
Obsolete in zesty-release
Deleted in zesty-proposed (Reason: moved to release) 
spice-vdagent (0.17.0-1ubuntu1) zesty; urgency=medium

  * Add git-nodisplay-autostart.patch:
    - Backport commit that hides spice-vdagent from Ubuntu's
      Startup Applications

 -- Jeremy Bicha <email address hidden>  Thu, 19 Jan 2017 17:26:47 -0500
Superseded in zesty-release
Deleted in zesty-proposed (Reason: moved to release) 
spice-vdagent (0.17.0-1) unstable; urgency=low

  * New upstream release
  * Refresh debian/copyright
  * debian/patches:
    - Remove libsystemd.patch, applied upstream
    - systemd_service_default_file.patch, remove After=dbus.target,
      obsoleted by recent systemd
    - Refresh other patches
  * debian/control:
    - Add build-depends on libasound2-dev (>= 1.0.22)
    - Update build-depends on libspice-protocol-dev to 0.12.8
    - Update build-depends on libglib2.0-dev to 2.28
    - Update build-depends on debhelper to 10
    - Bump Standards-Version to 3.9.8
    - Use secure uri in vcs-*
  * debian/spice-vdagent.install:
    - Remove etc/rsyslog.d/spice-vdagentd.conf, removed upstream
  * debian/compat:
    - Update to version 10
  * debian/rules
    - Call dh with autoreconf

 -- Liang Guo <email address hidden>  Wed, 12 Oct 2016 15:41:11 +0800

Available diffs

Superseded in zesty-release
Obsolete in yakkety-release
Published in xenial-release
Obsolete in wily-release
Deleted in wily-proposed (Reason: moved to release) 
spice-vdagent (0.15.0-1.3) unstable; urgency=medium

  * Non-maintainer upload.
  [ Laurent Bigonville ]
  * Properly install the systemd .service and other support files (Closes:
    #791422)
  * debian/spice-vdagent.init: Pass parameters from $SPICE_VDAGENTD_EXTRA_ARGS
    variable to the spice-vdagentd daemon, so both LSB initscript and .service
    files behave the same.
  * debian/rules: Call dh_install with --list-missing parameter

  [ Michael Biebl ]
  * Use of the new libsystemd library instead of libsystemd-login (Closes:
    #779782)

 -- Laurent Bigonville <email address hidden>  Sun, 19 Jul 2015 15:05:48 +0200

Available diffs

Superseded in wily-release
Obsolete in vivid-release
Deleted in vivid-proposed (Reason: moved to release) 
spice-vdagent (0.15.0-1.2) unstable; urgency=medium


  * Non-maintainer upload, with permission from maintainer.
  * Use systemd for session information (Closes: #756243).
    Accordingly build-depend on libsystemd-login-dev, which is needed
    for getting session information from logind.
  * Start spice-vdagent in the GDM3 greeter session (Closes: #732924).

 -- intrigeri <email address hidden>  Tue, 07 Oct 2014 16:47:46 +0200
Superseded in vivid-release
Obsolete in utopic-release
Deleted in utopic-proposed (Reason: moved to release) 
spice-vdagent (0.15.0-1ubuntu1) utopic; urgency=medium

  * Merge with Debian unstable. Remaining Ubuntu changes:
    - Add libsystemd-login-dev build dep.
    - debian/rules: Use logind instead of ConsoleKit.
  * Fix fix-spelling-error-in-manpage.patch which didn't apply (how did that
    land in Debian??)
Superseded in utopic-release
Published in trusty-release
Obsolete in saucy-release
Deleted in saucy-proposed (Reason: moved to release) 
spice-vdagent (0.14.0-1ubuntu1) saucy; urgency=low

  * Merge with Debian unstable. Remaining Ubuntu changes:
    - Add libsystemd-login-dev build dep.
    - debian/rules: Use logind instead of ConsoleKit.
Superseded in saucy-release
Deleted in saucy-proposed (Reason: moved to release) 
spice-vdagent (0.10.1-1ubuntu1) saucy; urgency=low

  * Add libsystemd-login-dev build dep.
  * debian/rules: Use logind instead of ConsoleKit.
 -- Martin Pitt <email address hidden>   Wed, 01 May 2013 12:14:50 -0700
Superseded in saucy-release
Obsolete in raring-release
Obsolete in quantal-release 
spice-vdagent (0.10.1-1) unstable; urgency=low


  * New upstream release.
  * debian/copyright:
    - Update copyright information.
  * debian/control:
    - Add libpciaccess-dev and libxinerama-dev 
      to Build-Depends.
    - Bump Standards-Version to 3.9.3. 
  * debian/rules:
    - Compile with console kit

 -- Liang Guo <email address hidden>  Fri, 06 Apr 2012 14:03:30 +0800

Available diffs

Superseded in quantal-release
Published in precise-release 
spice-vdagent (0.8.1-1) unstable; urgency=low

  * Initial release (Closes: #605966)
 -- Ubuntu Archive Auto-Sync <email address hidden>   Sat,  12 Nov 2011 07:25:53 +0000
123 of 23 results FirstPreviousNextLast