1
shadow (1:4.1.5.1-1ubuntu2) raring; urgency=low
3
* Revert build-dependency from gettext:any to gettext, now that gettext is
6
-- Colin Watson <cjwatson@ubuntu.com> Thu, 29 Nov 2012 15:27:11 +0000
8
shadow (1:4.1.5.1-1ubuntu1) raring; urgency=low
10
* The "Yorkshire Blue" release.
11
* Merge from Debian unstable. Remaining changes:
12
- debian/passwd.upstart: Add an upstrat job to clear locks on
13
[shadow-]passwd/group. (LP: #523896).
14
- Build-depend on gettext:any for cross-building support.
15
- Allow LXC devices (lxc/console, lxc/tty[1234]) that we'll start using
18
+ Update documentation of USERGROUPS_ENAB: with pam_umask, the UPG
19
handling does not only apply to "former (pre-PAM) uses".
20
+ Update documentation of UMASK: Explain that USERGROUPS_ENAB will modify
21
this default for UPGs. (Closes: #583971)
22
- debian/{source_shadow.py,rules}: Add apport hook
23
- debian/patches/495_stdout-encrypted-password: chpasswd can report
24
password hashes on stdout (Debian bug 505640).
26
* Dropped changes, merged in Debian:
27
- Fix case of ttyAMA0-3 devices and move them near the ttyAM0-15 ones;
28
Debian #544184; fixes console on Vexpress boards (e.g. in QEMU).
29
- use SHA512 by default for password crypt routine.
30
- debian/rules: fix FTBFS from newer libtools
31
- Mark passwd Multi-Arch: foreign.
33
-- Dmitrijs Ledkovs <dmitrij.ledkov@ubuntu.com> Tue, 23 Oct 2012 09:59:19 +0100
35
shadow (1:4.1.5.1-1) unstable; urgency=low
37
* The "Gruyère" release.
39
[ Nicolas FRANCOIS (Nekral) ]
40
* New upstream release:
41
- login: log into utmp(x) but not into wtmp (this is done by pam_lastlog).
42
Log to utmp(x) was broken by the fix for #605329. Closes: 659957
43
- userdel: Fix segfault when userdel removes the user's group.
45
- manpages: .so links point to paths relative to the top-level manual
46
hierarchy. Closes: #661025
47
- useradd(8): Return code 13 no more documented. Closes: #661802
48
* debian/patches/series, debian/patches/428_grpck_add_prune_option: Removed.
49
The -p option was not documented and was meant to fix consequences of a
50
bug now fixed more than 10 years ago.
51
* debian/shadowconfig.sh: Display issues, but dot not prompt interactively
52
to fix passwd/group/shadow/gshadow issues. Closes: #638263
53
* debian/control: Bump Standards-Version to 3.9.3 (no changes needed).
54
* debian/rules: Simplify setting of hardening flags. cdbs 0.4.103 needed to
55
get hardened version of shadow-utils. Restore previous requirement on
59
* Complete Polish translation of logoutd(8). Closes: #668880
60
* German translation of manpages completed. Closes: #673234
63
* Separation of static and dynamic motd components in login PAM module
66
-- Nicolas FRANCOIS (Nekral) <nicolas.francois@centraliens.net> Fri, 25 May 2012 15:42:01 +0200
68
shadow (1:4.1.5-1) unstable; urgency=low
70
* The "Charolais" release.
72
[ Nicolas FRANCOIS (Nekral) ]
73
* New upstream release:
74
- su: Fix possible tty hijacking by dropping the controlling terminal when
75
executing a command (CVE-2005-4890). Closes: #628843
76
- userdel: Check the existence of the user's mail spool before trying to
77
remove it. If it does not exist, a warning is issued, but no failure.
79
- userdel: Do not remove a group with the same name as the user
80
(usergroup) if this group isn't the user's primary group.
82
- su: Close the PAM session as root (fix issues with pam_mount and
83
pam_systemd). Closes: #580434
84
- Fix several typos in manpages. Thanks to Simon Brandmair.
86
- userdel error message has been clarified when the user is still
87
executing processes (it used to complain that the user is logged in).
89
- passwd(1) references chpasswd(8). Closes: #609117
90
- Spaces have been added between options and arguments in the Russian
91
manpages. Closes: #606159
92
- Fix handling of numerical dates in usermod -e. Closes: #621810
93
- usermod: When the shadow file exists but there are no shadow entries, an
94
entry is created if the password is changed and passwd requires a shadow
95
entry, or if aging features are used (-e or -f). Closes: 632461
96
- Added diagnosis for lock failures. Closes: #616167
97
- grpck/pwck: NIS entries were dropped by -s (sort). Closes: #622765
98
- login does not log into utmp(x) and wtmp. This is already done by
99
pam_lastlog. Closes: #605329
100
- groupmod: document that /etc/passwd can be modified by groupmod -g.
103
+ debian/patches/008_login_log_failure_in_FTMP
104
+ debian/patches/401_cppw_src.dpatch
105
+ debian/patches/402_cppw_selinux
106
+ debian/patches/428_grpck_add_prune_option
107
+ debian/patches/429_login_FAILLOG_ENAB
108
+ debian/patches/463_login_delay_obeys_to_PAM
109
+ debian/patches/501_commonio_group_shadow
110
+ debian/patches/505_useradd_recommend_adduser
111
+ debian/patches/506_relaxed_usernames
112
+ debian/patches/508_nologin_in_usr_sbin
113
+ debian/patches/523_su_arguments_are_concatenated
114
+ debian/patches/523_su_arguments_are_no_more_concatenated_by_default
115
+ debian/patches/542_useradd-O_option
116
+ debian/patches/900_testsuite_groupmems
117
- debian/patches/008_su_get_PAM_username: Removed, feature supported
119
- debian/patches/300_CVE-2011-0721: Removed, applied upstream.
120
- Upstream translation updates from Debian BTS:
121
+ Brazilian Portuguese. Closes: #622834
122
+ Catalan. Closes: #627526, #657763
123
+ Danish. Closes: #621330, #657514
124
+ German. Closes: #622908, #656503
125
+ French. Closes: #623608, #657621
126
+ Japanese. Closes: #620978
127
+ Kazakh. Closes: #620930
128
+ Portuguese. Closes: #623722, #656686
129
+ Russian. Closes: #622106, #655194
130
+ Spanish (Closes: #630618)
131
+ Swedish. Closes: #621126
132
+ Simplified Chinese. Closes: #655858
133
- Upstream manpages translation updates from Debian BTS:
134
+ French. Closes: #630250, #657622
135
+ German. Closes: #628777
136
+ Simplified Chinese. Closes: #602264, #655858
137
+ Danish added. Closes: #657516
138
+ Russian. Closes: #657710
139
* debian/control: mark passwd as 'Multi-Arch: foreign'. Closes: #614321
140
* debian/securetty.linux: Add IBM pSeries console ports. Closes: #597661
141
* debian/securetty.linux: Add serial Console for MIPS Swarm.
142
(http://lists.debian.org/debian-release/2011/02/msg00320.html)
143
* debian/securetty.linux: Add s390/s390x ports ttysclp0. Closes: #647469
144
* debian/securetty.linux: Fixed typo: ttyama -> ttyAMA. Closes: #544184
145
* debian/rules, debian/man.insert, debian/man.insert.sed: Bug #507673 has
146
been closed. It is no more needed to patch the generated manpages. This
147
also fix failures to build twice is a row. Closes: #636047
148
* debian/patches/401_cppw_src.dpatch: Replace progname by Prog. Rename
149
create_backup_file to create_copy. The lock functions do not set errno.
150
Do not report the error string on cppwexit.
151
* debian/patches/401_cppw_src.dpatch, debian/patches/402_cppw_selinux:
152
Synchronize with coding style.
153
* debian/patches/401_cppw_src.dpatch: Detect as well too many and too
155
* debian/patches/506_relaxed_usernames: Really check if the user/group
156
name starts with a dash. Also forbid names starting with '+' or '~'.
157
Document the naming policy in useradd.8 / groupadd.8.
158
* debian/patches/506_relaxed_usernames: Also forbid names containing a
160
* debian/patches/901_testsuite_gcov: Do not revert the locale when testing
161
with gcov to avoid coverage false negatives. This does not impact the
162
debian binary package, only the test package.
163
* debian/control: Add Build-Depends on libsemanage1-dev [linux-any]
164
* debian/rules: Do not hard-code CFLAGS and LDFLAGS. Build with all
165
hardening flags set. Closes: #657010
166
* debian/control: depends on dpkg-dev (>= 1.16.1~) for including
167
/usr/share/dpkg/buildflags.mk
168
* debian/control: Standards-Version: bumped to 3.9.2. No changes.
169
* debian/login.defs: Set the default encryption method to SHA512.
172
[ Christian Perrier ]
173
* Use "linux-any" instead of a negated list of architectures in
174
Build-Depends. Closes: #634465
176
-- Nicolas FRANCOIS (Nekral) <nicolas.francois@centraliens.net> Sun, 12 Feb 2012 22:27:03 +0100
1
178
shadow (1:4.1.4.2+svn3283-3ubuntu7) quantal; urgency=low
3
180
* debian/passwd.upstart: Add an upstrat job to clear locks on