-
opie (2.40~dfsg-0ubuntu3) maverick; urgency=low
* Rename all internal md5_* symbols to opiemd5_ to avoid collisions with
other packages (e.g. dovecot). It's fixed upstream in 2.4.1-test1.
(LP: #518653)
-- Simon Schubert <2@0x2c.org> Tue, 17 Aug 2010 13:51:56 +0200
-
opie (2.40~dfsg-0ubuntu2) maverick; urgency=low
* SECURITY UPDATE: denial of service via off-by-one
- libopie/readrec.c: use strncpy so we don't overflow principal.
- http://security.freebsd.org/patches/SA-10:05/opie.patch
- CVE-2010-1938
* libopie/newseed.c: fix snprintf's length argument so opiepasswd will
generate valid seeds. (LP: #569292)
-- Marc Deslauriers <email address hidden> Thu, 17 Jun 2010 10:30:54 -0400
-
opie (2.40~dfsg-0ubuntu1) jaunty; urgency=low
* New upstream version (from 2001), taken from the current OpenSuse srpm.
* Replace the RSA code directly in the repacked tarball.
* Apply patches from the OpenSuse package:
- Fix 'warning: array subscript is above array bounds'.
- Make opie.h C++ safe.
- Fixed a one byte buffer overflow.
- Aadd missing declarations.
- Fixed a single NUL byte overflow.
- Added return value to non-void function (main)
* Pass testsuite and fix build failure on armel.
-- Matthias Klose <email address hidden> Mon, 12 Jan 2009 12:16:09 +0100
