-
avahi (0.6.23-4ubuntu4.1) jaunty-security; urgency=low
* SECURITY UPDATE: denial of service via crafted legacy unicast mDNS
query packet
- debian/patches/81_CVE-2009-0758.patch: account for network byte order
in avahi-core/server.c.
- CVE-2009-0758
* SECURITY UPDATE: denial of service via invalid DNS packet
- debian/patches/82_CVE-2010-2244.patch: fail gracefully on corrupt
packets in avahi-core/socket.c.
- CVE-2010-2244
-- Marc Deslauriers <email address hidden> Wed, 22 Sep 2010 13:02:35 -0400
-
avahi (0.6.23-4ubuntu4) jaunty; urgency=low
* Python 2.6 transition (fixes FTBFS) (lp: #346814).
-- Michael Bienia <email address hidden> Sun, 22 Mar 2009 16:11:27 +0100
-
avahi (0.6.23-4ubuntu3) jaunty; urgency=low
* Avahi init scripts (daemon or dnsconfd) do not need to be started before
gdm, and do not need to be stopped specially on shutdown.
-- Scott James Remnant <email address hidden> Fri, 27 Feb 2009 01:10:49 +0000
-
avahi (0.6.23-4ubuntu2) jaunty; urgency=low
* Build with libcap2-dev, the reasons for using libcap-dev have
long since been lost, LP: #248577
-- Jonathan Riddell <email address hidden> Mon, 09 Feb 2009 13:54:51 +0000
-
avahi (0.6.23-4ubuntu1) jaunty; urgency=low
* Merge from debian unstable, remaining changes: LP: #308856
- debian/patches/01_avahi-daemon.conf.patch: Disable IPv6. According to
upstream it is not ready yet and causes hiccups.
- debian/rules: Create an up to date PO template during build.
- debian/control: Build against libcap-dev instead of libcap2-dev
- debian/patches/80_CVE-2008-5081.patch: verify port is > 0 in server.c
avahi (0.6.23-4) unstable; urgency=low
* debian/avahi-{daemon,dnsconfd}.postinst
- When upgrading the init script priorities, check if the service is
enabled for the default runlevel before removing the old init script
symlinks to avoid accidentally re-enabling it. (Closes: #499815)
avahi (0.6.23-3) unstable; urgency=low
[ Loic Minier ]
* Generate a POT file during build; helps downstreams such as Ubuntu import
an always up-to-date pot, even we patch the source of upstream forgets to
do so; from Ubuntu; thanks Martin Pitt; closes: #486908.
[ Michael Biebl ]
* debian/avahi-daemon-check-dns.sh
- Fix quoting error in dns_has_local().
Thanks to James Westby for the patch. (Closes: #492466)
[ Sjoerd Simons ]
* debian/patches/14_CVE-2008-5081.patch
- Added. Don't abort on receiving an UDP packet with a source port of zero.
Fixes CVE-2008-5081 (Closes: #508700)
-- Bhavani Shankar <email address hidden> Sat, 17 Jan 2009 23:34:07 +0530
-
avahi (0.6.23-2ubuntu3) jaunty; urgency=low
* SECURITY UPDATE: denial of service via crafted mDNS packet
- debian/patches/80_CVE-2008-5081.patch: verify port is > 0 in server.c
- CVE-2008-5081
-- Jamie Strandboge <email address hidden> Thu, 18 Dec 2008 16:39:19 -0600
-
avahi (0.6.23-2ubuntu2) intrepid; urgency=low
* Build against libcap-dev instead of libcap2-dev
-- Jonathan Riddell <email address hidden> Sun, 27 Jul 2008 19:26:13 +0100
