-
freeradius (1.1.3-1ubuntu0.1) edgy-security; urgency=low
* SECURITY UPDATE: denial of service in EAP-TTLS module (LP: #106006).
* debian/patches/01_CVE-2007-2028.dpatch: Properly free VALUE_PAIR
structures on rejected authentication, to avoid memory leaks. Patch from
Red Hat Bugzilla.
* References
CVE-2007-2028
-- William Grant <email address hidden> Tue, 20 Nov 2007 20:05:29 +1100
-
freeradius (1.1.3-1) unstable; urgency=low
[ Stephen Gran ]
* Add and rework ubuntu /var/run/tmpfs patch
* Add LSB init script headers
* Actually trap errors in init script, how about?
[ Mark Hymers ]
* New upstream version.
* New version of autotools in 1.1.3. Closes: #380204
* Remove previous patches merged upstream:
- 01-actually_check_for_unset_password.dpatch
* Only do user creation, group addition, chmod and chown stuff in postinst
on an initial install to avoid clobbering local changes.
-- J?r?mie Corbier <email address hidden> Fri, 01 Sep 2006 17:42:11 +0100
-
freeradius (1.1.2-2ubuntu1) edgy; urgency=low
* Merge from debian unstable.
* Remove previous patches merged upstream:
- 14_freeradius-dictionary-fix.dpatch
freeradius (1.1.2-2) unstable; urgency=low
[ Stephen Gran ]
* Acknowledge my previous NMU's (closes: #351732, #359042)
* Init scripts overhaul:
- now use reload on upgrade of modules
- replace sleep statements with --retry, as time based tests are
fragile
- no longer exit with an error if stop fails because the
daemon isn't running (closes: #374670, #351735)
- stop using command -v in /bin/sh scripts
* General maintainer script overhaul:
- Don't rm -rf something in /etc (ouch)
- Use chown -R instead of 'find .. -exec'
- should not need to manually remove the init script on purge (it's a dpkg
managed conffile)
- Only do user management stuff if user is missing. No point rerunning it
every upgrade.
- Install /etc/freeradius/dictionary with relaxed permissions, but never
touch it again (closes: #334299)
- switch to debhelper files where possible. I like an easy to read
Makefile.
* Arg. Move README.rfc to the freeradius package where it belongs.
[ Mark Hymers ]
* Document building SSL/PostgreSQL modules in debian/rules, add
control.postgresql to make it more convenient. Tested on AMD64 using
system libtool.
freeradius (1.1.2-1) unstable; urgency=low
[ Mark Hymers ]
* New maintainers
* New upstream version.
* Remove previous patches merged upstream:
- 01_NET-SNMP_build_support.dpatch
- 02_document_actual_shared_secret_maximum_length.dpatch
- 12_more_dialup_admin_various_fixes.dpatch
- 14_broken_parse.dpatch
- 15_CVE-2006-1354.dpatch
* Use --with-system-libtool during configure. Add B-D: on libtool
Removes obsolete dpatches:
- 06_libtool14_vs_rlm_eap_tls.dpatch
- 13_a_libtool_to_call_your_own.dpatch
* Remove freeradius.undocumented as we don't install links to
undocumented(7) anymore (not recommended since policy 3.5.8.0)
[ Stephen Gran ]
* Update to Standards Version 3.7.2 (no changes)
* Remove doc/rfc/ to make -legal happy (closes: #365192)
- this means repacked tarball. See README.rfc for details
* Test for unset variable, rather than empty variable in clean_radacct,
monthly_tot_stats and truncate_radacct (closes: #374053)
freeradius (1.1.0-1.2) unstable; urgency=high
* Non-maintainer upload.
* [ CVE-2006-1354 ]:
src/modules/rlm_eap/types/rlm_eap_mschapv2/rlm_eap_mschapv2.c:
Due to insufficient input validation it is possible for a remote
attacker to bypass authentication or cause a denial of service.
(closes: #359042)
freeradius (1.1.0-1.1) unstable; urgency=low
* Non-maintainer upload.
* Upstream patch to fix parsing config file (closes: #351732)
Fixes: fails to start on amd64 (error in dictionary parsing code)
-- Jeremie Corbier <email address hidden> Sat, 8 Jul 2006 19:41:05 +0200
-
freeradius (1.1.0-1ubuntu2) dapper; urgency=low
* Init script makes sure /var/run/freeradius exists and is owned by the
the right user (Closes: Malone #39205).
-- Jeremie Corbier <email address hidden> Mon, 8 May 2006 23:31:14 +0200
