-
dpkg (1.15.5.6ubuntu4.10) lucid-security; urgency=medium
* SECURITY UPDATE: OpenPGP Armor Header Line parsing issue
- scripts/Dpkg/Control/{Hash,Package}.pm: adjust parsing logic.
- scripts/Makefile.*, scripts/t/700_Dpkg_Control.t,
scripts/t/700_Dpkg_Control/*: added bunch of tests.
- Patch thanks to Guillem Jover
- CVE-2015-0840
-- Marc Deslauriers <email address hidden> Thu, 09 Apr 2015 10:47:12 -0400
-
dpkg (1.15.5.6ubuntu4.9) lucid-security; urgency=medium
* SECURITY UPDATE: arbitrary file modification via dpkg-source
- scripts/Dpkg/Source/Patch.pm: Use a better regex for patch header
parsing
- 5348cbc981a65c3c9b05bb4d13553bda930c2d78
- CVE-2014-3864
- CVE-2014-3865
-- Marc Deslauriers <email address hidden> Mon, 09 Jun 2014 13:03:40 -0400
-
dpkg (1.15.5.6ubuntu4.8) lucid-security; urgency=medium
* SECURITY UPDATE: directory traversal in dpkg-source
- scripts/Dpkg/Source/Patch.pm: outright reject C-style filenames in
patches
- a12eb58959d0a10584a428f4a3103a49204c410f
- CVE-2014-0471
-- Marc Deslauriers <email address hidden> Thu, 01 May 2014 08:05:44 -0400
-
dpkg (1.15.5.6ubuntu4.7) lucid-security; urgency=medium
* SECURITY UPDATE: directory traversal in dpkg-source
- scripts/Dpkg/Source/Patch.pm: correctly parse C-style diff
filenames.
- Patch thanks to Guillem Jover <email address hidden>
- CVE-2014-0471
-- Marc Deslauriers <email address hidden> Wed, 23 Apr 2014 19:52:02 -0400
-
dpkg (1.15.5.6ubuntu4.6) lucid-proposed; urgency=low
* Cherry-pick fixes for sync() behaviour in dpkg (LP: #624877):
- Disable by default usage of synchronous sync(2), as it causes undesired
I/O on unrelated file systems. Closes: #588339, #595927, #600075
- On Linux use sync_file_range() to initiate asynchronous writeback
of just unpacked files. Suggested by Ted Ts'o <email address hidden>.
Thanks to Jonathan Nieder <email address hidden>. Closes: #605009
-- Michael Jeanson <email address hidden> Fri, 14 Sep 2012 09:43:09 -0400
-
dpkg (1.15.5.6ubuntu4.5) lucid-security; urgency=low
* SECURITY UPDATE: relative directory and symlink following in source pkgs.
- scripts/Dpkg/Source/Archive.pm, scripts/Dpkg/Source/Patch.pm,
scripts/Dpkg/Source/Package/V2.pm: applied fixes from Raphael Hertzog,
thanks to Raphael Geissert.
- CVE-2010-1679
-- Kees Cook <email address hidden> Thu, 06 Jan 2011 11:08:21 -0800
-
dpkg (1.15.5.6ubuntu4.4) lucid-proposed; urgency=low
* scripts/Dpkg/Source/Archive.pm: Drop -k parameter from the tar call used
by dpkg-source to extract tarballs. Upstream binary files modified by the
packager were not properly installed due to this. Patch based on that of
Raphaël Hertzog (upstream, debian git). (LP: #633015)
-- Dave Walker (Daviey) <email address hidden> Sat, 02 Oct 2010 00:30:53 +0100
-
dpkg (1.15.5.6ubuntu4.3) lucid-security; urgency=low
* SECURITY UPDATE: no change rebuild to use the new statically linked libbz2
which fixed CVE-2010-0405
-- Jamie Strandboge <email address hidden> Mon, 20 Sep 2010 07:56:11 -0500
-
dpkg (1.15.5.6ubuntu4.2) lucid-proposed; urgency=low
* Backport my patch from dpkg 1.15.6.1:
- Accept source packages without "Format" field for compatibility with
very old source packages (LP: #632280).
-- Colin Watson <email address hidden> Tue, 07 Sep 2010 12:05:25 +0100
-
dpkg (1.15.5.6ubuntu4.1) lucid-proposed; urgency=low
* Backport proposed patch from Guillem Jover:
- On Linux, call sync() (which is synchronous) before rename() rather
than calling fsync() once per file (LP: #570805).
-- Colin Watson <email address hidden> Mon, 28 Jun 2010 14:32:02 +0100
-
dpkg (1.15.5.6ubuntu4) lucid; urgency=low
* Backport from upstream:
- Restore fsync during package unpack (LP: #559915). This is now done
by deferring the fsync and rename for normal files in tar extraction
so that it's done in one pass afterwards, to avoid massive I/O
degradation due to the serialization from each write + fsync. When
creating hard links to normal files on extraction use the .dpkg-new
filename for source as the file is not yet in place due to the rename
deferral.
- Fix dpkg to not lose package metadata on filesystems where readdir()
returns new files added after the opendir() call, btrfs in particular
triggered the problematic behaviour. Closes: #575891
- Report deferred trigger errors on status-fd. Closes: #574599,
LP: #540252
Thanks to Michael Vogt <email address hidden>.
-- Colin Watson <email address hidden> Thu, 15 Apr 2010 12:38:50 +0100
-
dpkg (1.15.5.6ubuntu3) lucid; urgency=low
* Revert fsync during package unpack for now; it's unacceptably slow for
packages with lots of small files, and we can't ship beta-1 this way.
We'll do something better once it's decided upstream (LP: #537241).
-- Colin Watson <email address hidden> Tue, 16 Mar 2010 10:04:38 +0000
-
dpkg (1.15.5.6ubuntu2) lucid; urgency=high
* Backport from upstream:
- Use FIEMAP when available (on Linux based systems) to sort the .list
files loading order. With a cold cache it improves up to a 70%.
Thanks to Morten Hustveit <email address hidden>. LP: #442114
- Call fsync(2) after writing files on disk, to get the atomicity
guarantees when doing rename(2). Based on a patch by Jean-Baptiste
Lallement <email address hidden>.
Closes: #430958, LP: #512096
* Security fixes by Raphaël Hertzog, also backported from upstream
(CVE-2010-0396):
- Modify dpkg-source to error out when it would apply patches containing
insecure paths (with "/../") and also error out when it would apply a
patch through a symlink. Those checks are required as patch will
happily modify files outside of the target directory and unpacking a
source package should not be able to have any side-effect outside of
the target directory. LP: #532445
- Also error out when the quilt series contains a path with "/../" as
this can cause patch to create files outside of the source package due
to the -B .pc/$path option that it gets.
-- Colin Watson <email address hidden> Thu, 11 Mar 2010 00:34:28 +0000
-
dpkg (1.15.5.6ubuntu1) lucid; urgency=low
* Resynchronise with Debian. Remaining changes:
Ubuntu-specific adjustments (probably):
- Adjust versioned emacs22 conflicts to cope with versions in Ubuntu.
Miscellaneous bug fixes:
- Avoid duplicate attempts to [f]close in obscure error situations which
might conceivably close wrong fds.
- Revert change to stop outputting a newline after a postinst is run
(Debian #392317).
Build options:
- Point to https://wiki.ubuntu.com/DistCompilerFlags from
dpkg-buildpackage(1).
- Set default LDFLAGS to -Wl,-Bsymbolic-functions. (We've already taken
this hit in Ubuntu.)
- Implement handling of hardening-wrapper options via DEB_BUILD_OPTIONS.
* Drop lpia hacks; lpia is no longer supported.
* Drop moves of various Conflicts to Breaks, which are moot since hardy
has newer versions of all the affected packages.
dpkg (1.15.5.6) unstable; urgency=low
* dpkg-source: with format "3.0 (quilt)" ensure quilt's .pc directory is
created before trying to register a new patch in .pc/applied-patches.
Thanks to Tommi Vainikainen <email address hidden> for the report and the
patch. Closes: #561237
* Fix dpkg-buildpackage to set "parallel=" in DEB_BUILD_OPTIONS instead of
the invalid "parallel=-1" when option "-j" is given. Closes: #562038
* Clarify how dpkg-source --print-format works and display messages on
STDERR when the requested format is discarded. Closes: #560391
* Add ${misc:Depends} in all Depends fields.
dpkg (1.15.5.5) unstable; urgency=low
* Allow again new lines in dpkg-source and dpkg-genchanges on substvar and
maintainer arguments.
dpkg (1.15.5.4) unstable; urgency=low
* Fix Dpkg::Index::get() and remove(). Thanks to Roderich Schupp
<email address hidden> for the patch. Closes: #558595
* Modify implementation of "3.0 (quilt)" source format to not be
behave differently depending on whether quilt is installed or not.
The option --without-quilt is thus gone and dpkg-source creates
and relies on the .pc directory to know whether patches are applied
or not. Closes: #557667
* Add new dpkg-source option --single-debian-patch supported by the source
format "3.0 (quilt)" so that it behaves more like 1.0 and its single diff
that is constantly updated with all upstream changes. Useful if the
workflow is VCS based and can't generate a full patch set.
* dpkg-source now uses debian/source/patch-header as header of the automatic
Debian patch in format "3.0 (quilt)".
* Fix Debian changelog parser so that the trailer line is again checked.
dpkg (1.15.5.3) unstable; urgency=low
[ Raphael Hertzog ]
* Avoid usage of IO::String in dpkg-scanpackages, rely on Dpkg::IPC
instead to directly get a pipe file descriptor. Closes: #557013
* Put "3.0 (quilt)" in the default list of formats tried by dpkg-source
after "1.0" and before "3.0 (native)".
* Let dpkg-source fail if several upstream orig.tar files are available
(using different compression scheme) since we don't know which one
to use.
* Add missing "use Dpkg::Gettext" in Dpkg::Changelog::Entry::Debian.
Closes: #557668
* When building "3.0 (quilt)" source packages, use QUILT_PATCH_OPTS="-t -F 0
-N -u -V never -g0" so that quilt is as strict as dpkg-source's internal
implementation of quilt. Closes: #557664, #558233
* Before accepting to build a 3.0 (quilt) source packages, ensure that
debian/patches is a directory (or non-existing) and that
debian/patches/series is a file (or non-existing). Closes: #557618
* Dpkg::IPC::fork_and_exec() now includes the changed environment
variables in the default error message displayed when the sub-process
fails.
[ Guillem Jover ]
* Verify that the alternative used in update-alternatives --set has been
registered instead of failing with an undefined value in the slave
method. Closes: #554136
* Strip leading spaces in the first line of a field's value in
Dpkg::Control::Hash. Closes: #557547
dpkg (1.15.5.2) unstable; urgency=low
* Change Dpkg::Version API to accept invalid versions by default and add
is_valid() method. The boolean evaluation of a version object returns
true if the version is valid, false otherwise.
* Update dpkg-shlibdeps to always use Dpkg::Version now that it can
contain the empty version string. Closes: #556786
* Keep compatibility with perl 5.8 by avoiding the _ prototype.
dpkg (1.15.5.1) unstable; urgency=low
* Fix build failures due to off_t type missmatch caused by not including
<config.h> first on the unit tests. Suggested by Pierre Habouzit and
Julien Cristau, thanks!
dpkg (1.15.5) unstable; urgency=low
[ Guillem Jover ]
* Remove obsolete conffiles on purge. Closes: #421367, #453005, #454628
* Update list of binaries dpkg checks on the PATH.
- Remove install-info, now a wrapper that will disappear soonish.
- Add programs used by dpkg itself: sh, rm, find, tar and dpkg-deb.
* Check and warn on duplicate conffiles in dpkg-deb. Closes: #131633
* Make the upstream build system silent by default with automake 1.11 or
newer, and always verbose when building the Debian packages.
* Fix small leak when parsing ‘--ignore-depends’ option values.
* Define compatibility WCOREDUMP only if the system does not have it.
* When start-stop-daemon fails to set the io scheduling warn instead of
finishing fatally. Closes: #553580
* Update md5 file paths in debian/copyright.
Thanks to Jonathan Nieder <email address hidden>.
* On ‘dpkg-trigger --help’ print the default admindir instead of the one
passed on the command line.
* Abort on configure if the required C99 extensions are not supported.
* Add C coding style document.
* Make dpkg as strict as dpkg-statoverride on input when validating the
parsed data from the statdb.
* Rewrite dpkg-statoverride in C.
* Use C99 snprintf function family semantics to avoid having to call them
in a loop to grow the varbuf buffer. This should reduce memory usage and
be slightly faster on varbufprintf calls.
* Use the size from stat to allocate the buffers for readlink, instead of
indefinitely calling readlink and growing the buffer. This should reduce
memory usage when handling lots of symlinks, and be slightly faster.
* Rework varbuf api to avoid increasing buffers indefinitely when adding
content to them, regardless of space being already available.
* Fix build macros to allow start-stop-deaemon to use TIOCNOTTY.
* Generate the autoconf version from git to make it easier to see when a
snapshot version is being used.
* Add infrastructure for doxygen, for now not installed anywhere.
* Allow overriding the pkg-config path to ease cross-compilation.
Suggested by Tollef Fog Heen <email address hidden>.
* Fix spelling errors in the Catalan translation. Closes: #553328
Thanks to Robert Millan.
* Update the FSF postal address in the source code license headers by
replacing it with a URL to the gnu.org page.
* Fix a file descriptor leak in dpkg-deb.
Reported by Raphael Geissert <email address hidden>.
* Fix resource leaks on error conditions in compat scandir.
* Add a new status-fd action when disappearing a package. Closes: #537338
[ Raphaël Hertzog ]
* Add versioned dependency on base-files (>= 5.0.0) to dpkg-dev to ensure
that /etc/dpkg/origins/default exists. Closes: #545274
* Update Standards-Version to 3.8.3 (no changes needed).
* Major changes to the perl API:
- Dpkg::Control is now Dpkg::Control::Info
- Dpkg::Cdata is gone and is replaced by a new Dpkg::Control
- Dpkg::Control::Fields contains authoritative information
about fields allowed in various types of control information
(and can be customized by each vendor). It also integrates
information that was previously available through Dpkg::Deps.
- Dpkg::Changelog has been split in multiple modules and largely
modified to offer an interface that is now more in line with the
other modules.
* All dpkg-* perl programs that work with control information have been
updated to use the new Dpkg::Control interface.
In this process, dpkg-scanpackages has been fixed to not skip non-standard
fields. Closes: #494136
* Create Launchpad-Bugs-Fixed directly in the changelog parsing code thanks
to a new vendor hook post-process-changelog-entry. Closes: #536066
* Integrate dpkg-ftp into dselect. Add the required Replaces and Conflicts.
* dpkg-scanpackages/dpkg-scansources now supports compressed override files.
* dpkg-scanpackages now supports a new --medium option as needed to
generate Packages.cd file for consumption by the multicd dselect access
method. Closes: #402527
* Integrate dpkg-multicd into dselect. Add the required Replaces and
Conflicts. The dpkg-scanpackages fork is dropped. Closes: #516631
* Fix bashisms in dselect multicd access method. Closes: #530070
* Add support of "xz" compression method for source packages. Add dependency
dpkg-dev → xz-utils to ensure xz and unxz are available.
* Fix dpkg-source --include-binaries to correctly compute the path name of
the discovered binary files. Closes: #554612
* Remove extra quoting that should not be there while passing an exclude
file to git ls-files during build of 3.0 (git) source package.
Thanks to Courtney Bane for the patch. Closes: #551829
* Optimize dpkg-source -b by avoiding many diff calls when not required.
Thanks to Mike Hommey for the idea. Closes: #554689
* Add new option --print-format to dpkg-source to be able to know by advance
the source format that would be used during a build.
* Modify dpkg-source -b to use default build options from
debian/source/options. Thus it's now possible to have sticky options, for
example for the choice of a compression method (--compression=<comp>).
* dpkg-source outputs the list of upstream files modified by the diff.gz
(applies only to source packages using format 1.0). Closes: #482166
It also recommends usage of 3.0 (quilt) format during dpkg-source -b if it
detects changes to upstream files that are stored in the .diff.gz.
* Add DEP-3 compliant headers to automatic patches created by dpkg-source
in 3.0 (quilt) source format. Closes: #543581
* Switch dpkg to source format "3.0 (native)" with bzip2 compression.
[ Updated dpkg translations ]
* Czech (Miroslav Kure).
* French (Christian Perrier).
* German (Sven Joachim).
* Italian (Milo Casagrande). Closes: #548615, #555806
* Polish (Wiktor Wandachowicz). Closes: #548541
* Swedish (Peter Krefting).
[ Updated dselect translations ]
* Czech (Miroslav Kure).
* French (Christian Perrier).
* German (Sven Joachim).
* Polish (Wiktor Wandachowicz). Closes: #548541
* Swedish (Peter Krefting).
[ Updated man page translations ]
* French (Christian Perrier).
* French translation error fixed (Christian Perrier)
Thanks to Pietro Battiston for spotting it. Closes: #545446
* German (Helge Kreutzmann).
* Polish (Wiktor Wandachowicz). Closes: #548541
* Swedish (Peter Krefting).
[ Updated scripts translations ]
* German (Helge Kreutzmann).
* Polish (Wiktor Wandachowicz). Closes: #548541
* Swedish (Peter Krefting).
-- Colin Watson <email address hidden> Sun, 14 Feb 2010 01:32:19 +0000
-
dpkg (1.15.4.1ubuntu1) lucid; urgency=low
* Resynchronise with Debian. Remaining changes:
Ubuntu-specific adjustments (probably):
- Use i686 for lpia in cputable and triplettable.
- Hack Dpkg::Arch to return i686 for lpia.
- Move various Conflicts to Breaks, since upgrades from stable Ubuntu
releases support Breaks.
- Adjust versioned emacs22 conflicts to cope with versions in Ubuntu.
Miscellaneous bug fixes:
- Avoid duplicate attempts to [f]close in obscure error situations which
might conceivably close wrong fds.
- Revert change to stop outputting a newline after a postinst is run
(Debian #392317).
- Use the two-arg form of open in Dpkg::Control so that "-" can be
passed to parse stdin as a control file (Debian #465340).
Launchpad integration:
- Add Launchpad-Bugs-Fixed handling in a few more places.
Build options:
- Point to https://wiki.ubuntu.com/DistCompilerFlags from
dpkg-buildpackage(1).
- Set default LDFLAGS to -Wl,-Bsymbolic-functions. (We've already taken
this hit in Ubuntu.)
- Implement handling of hardening-wrapper options via DEB_BUILD_OPTIONS.
dpkg (1.15.4.1) unstable; urgency=medium
* Do not mark any package as unseen in dselect. This is a workaround
until it learns how to store such information again. Closes: #545366
-- Colin Watson <email address hidden> Wed, 11 Nov 2009 11:34:56 +0000
-
dpkg (1.15.4ubuntu2) karmic; urgency=low
* dpkg: Adjust versioned emacs22 conflicts. LP: #432584.
-- Matthias Klose <email address hidden> Sun, 20 Sep 2009 10:08:33 +0200
