| 2022-05-05 02:42:45 |
Bryce Harrington |
description |
Upstream: tbd
Debian: 5.9.1+dfsg-1
Ubuntu: 5.9.1+dfsg-1ubuntu2.1
Debian does new releases regularly, so it's likely there will be newer versions available before FF that we can pick up if this merge is done later in the cycle.
### New Debian Changes ###
net-snmp (5.9.1+dfsg-1) unstable; urgency=medium
[ Owen Evans ]
* Enable Blumenthal AES-192 and AES-256 encryption Closes: #972985
[ Ferenc Wágner ]
* Enable systemd integration and UDP socket activation
Closes: #985369
[ Sergio Durigan Junior ]
* d/libsnmp-dev.install: Don't install archive (.a) files.
The archive files are just temporary files generated in order to
create the final shared objects (.so), and we don't need to ship them
in the package.
[ Debian Janitor ]
* Trim trailing whitespace.
[ Vagrant Cascadian ]
* Embed path to ps and uname. Closes: #978598
[ Craig Small ]
* Make the perl agent code more tolerant of perl types, thanks
to Guillem Jover for the patch Closes: #977573
* Make CI files use correct libmariadb-dev package names
Closes: #975477
* mib2c: Add recommends and fix error message Closes: #990706
* Add configuration directory for snmpd
* New upstream release
* Add Recommends: procps for snmpd Closes: #993997
-- Craig Small <csmall@debian.org> Mon, 20 Sep 2021 21:35:58 +1000
net-snmp (5.9+dfsg-3) unstable; urgency=medium
* Source only upload - no changes Closes: #970798
-- Craig Small <csmall@debian.org> Fri, 25 Sep 2020 09:10:00 +1000
net-snmp (5.9+dfsg-2) unstable; urgency=medium
* Move SNMP.3pm back to perl package Closes: #969436
* Moved snmptrapd library into its own package to not pull in mysql
dependencies for snmp/snmpd Closes: #953948
-- Craig Small <csmall@debian.org> Sun, 06 Sep 2020 21:52:58 +1000
net-snmp (5.9+dfsg-1) unstable; urgency=medium
[ Sergio Durigan Junior ]
* Link libnetsnmptrapd against MYSQL_LIBS
- d/p/Link-libnetsnmptrapd-against-MYSQL_LIBS.patch: When building
with MySQL (MariaDB) support, this library must be linked against the
MySQL client library, or else it will have unresolved symbols.
(Closes: #886221)
[ Craig Small ]
* New upstream release
* Removed patches included in upstream
* Library soname changed to 40
* Remove dbg packages, no need to migrate as new soname
-- Craig Small <csmall@debian.org> Sat, 22 Aug 2020 17:11:17 +1000
net-snmp (5.8+dfsg-5) unstable; urgency=medium
* Allow extend to be read-only Closes: #966544
* Stop using mib_index files CVE-2020-15861 Closes: 966599
-- Craig Small <csmall@debian.org> Fri, 31 Jul 2020 20:29:41 +1000
net-snmp (5.8+dfsg-4) unstable; urgency=high
[ Sergio Durigan Junior ]
* Fix segmentation fault that happens when using the snmpv3
protocol with snmpbulkget. (LP #1877027) (Debian Bug #963713)
This is a rework of the patches introduced in the last release,
to fix CVE-2019-20892.
- d/p/move-securityStateRef-into-free_securityStateRef.patch:
Consolidate the check of the securityStateRef pointer into the
free_securityStateRef function.
- d/p/prevent-snmpv3-bulkget-errors-double-free.patch:
Prevent snmpv3 bulkget errors from becoming resulting in a
double free.
- d/p/fix-usmStateReference-free.patch:
Fix typo on usm_free_usmStateReference from last patch.
- d/p/unexport-struct-usmStateReference.patch:
Unexport struct usmStateReference and to prevent ABI breakages,
since it will be necessary to add a reference count to it.
- d/p/introduce-refcount-usmStateReference.patch:
Introduce refcount in the struct usmStateReference, and adjust
code to properly use the field.
- d/p/libsnmp-securitystateref: Rename to
d/p/move-securityStateRef-into-free_securityStateRef.
- d/p/doublefree_snmpusm: Rename to
d/p/prevent-snmpv3-bulkget-errors-double-free.patch.
[ Debian Janitor ]
* Trim trailing whitespace.
### Old Ubuntu Delta ###
net-snmp (5.9.1+dfsg-1ubuntu2) jammy; urgency=medium
* No-change rebuild for the perl update.
-- Matthias Klose <doko@ubuntu.com> Sun, 06 Feb 2022 13:33:00 +0100
net-snmp (5.9.1+dfsg-1ubuntu1) jammy; urgency=medium
* Merge with Debian unstable (LP: #1946877, #1912390). Remaining changes:
- Add apport hook:
+ d/control: add dh-apport to Build-Depends
+ d/rules: install the apport hook via debhelper
+ d/source.apport: apport hook
- d/p/lp1945960-*: backport patches for the OpenSSL3 transition
(LP #1945960)
* Dropped changes, incorporated by Debian:
- d/libsnmp-dev.install: Don't install archive (.a) files.
The archive files are just temporary files generated in order to
create the final shared objects (.so), and we don't need to ship
them in the package.
* Dropped changes, incorporated upstream:
- Fix segmentation fault when certificate contains extension
longer than 512 bytes (LP #1912389)
+ d/p/lp1912389-libsnmp-Handle-certificate-loading-errors-gracefully.patch:
Skip certificate if loading fails.
+ d/p/lp1912389-libsnmp-SSL-Increase-extension-buffer-size-to-preven.patch:
Make sure enough space is allocated for extensions longer than
512 bytes.
-- Sergio Durigan Junior <sergio.durigan@canonical.com> Tue, 11 Jan 2022 20:39:24 -0500
|
Upstream: tbd
Debian: 5.9.1+dfsg-1
Ubuntu: 5.9.1+dfsg-1ubuntu2.1
Debian does new releases regularly, so it's likely there will be newer versions available before FF that we can pick up if this merge is done later in the cycle.
As part of the merge, please also consider including a fix for LP: #1742761 "Drop dh-apport to reduce delta with Debian".
### New Debian Changes ###
net-snmp (5.9.1+dfsg-1) unstable; urgency=medium
[ Owen Evans ]
* Enable Blumenthal AES-192 and AES-256 encryption Closes: #972985
[ Ferenc Wágner ]
* Enable systemd integration and UDP socket activation
Closes: #985369
[ Sergio Durigan Junior ]
* d/libsnmp-dev.install: Don't install archive (.a) files.
The archive files are just temporary files generated in order to
create the final shared objects (.so), and we don't need to ship them
in the package.
[ Debian Janitor ]
* Trim trailing whitespace.
[ Vagrant Cascadian ]
* Embed path to ps and uname. Closes: #978598
[ Craig Small ]
* Make the perl agent code more tolerant of perl types, thanks
to Guillem Jover for the patch Closes: #977573
* Make CI files use correct libmariadb-dev package names
Closes: #975477
* mib2c: Add recommends and fix error message Closes: #990706
* Add configuration directory for snmpd
* New upstream release
* Add Recommends: procps for snmpd Closes: #993997
-- Craig Small <csmall@debian.org> Mon, 20 Sep 2021 21:35:58 +1000
net-snmp (5.9+dfsg-3) unstable; urgency=medium
* Source only upload - no changes Closes: #970798
-- Craig Small <csmall@debian.org> Fri, 25 Sep 2020 09:10:00 +1000
net-snmp (5.9+dfsg-2) unstable; urgency=medium
* Move SNMP.3pm back to perl package Closes: #969436
* Moved snmptrapd library into its own package to not pull in mysql
dependencies for snmp/snmpd Closes: #953948
-- Craig Small <csmall@debian.org> Sun, 06 Sep 2020 21:52:58 +1000
net-snmp (5.9+dfsg-1) unstable; urgency=medium
[ Sergio Durigan Junior ]
* Link libnetsnmptrapd against MYSQL_LIBS
- d/p/Link-libnetsnmptrapd-against-MYSQL_LIBS.patch: When building
with MySQL (MariaDB) support, this library must be linked against the
MySQL client library, or else it will have unresolved symbols.
(Closes: #886221)
[ Craig Small ]
* New upstream release
* Removed patches included in upstream
* Library soname changed to 40
* Remove dbg packages, no need to migrate as new soname
-- Craig Small <csmall@debian.org> Sat, 22 Aug 2020 17:11:17 +1000
net-snmp (5.8+dfsg-5) unstable; urgency=medium
* Allow extend to be read-only Closes: #966544
* Stop using mib_index files CVE-2020-15861 Closes: 966599
-- Craig Small <csmall@debian.org> Fri, 31 Jul 2020 20:29:41 +1000
net-snmp (5.8+dfsg-4) unstable; urgency=high
[ Sergio Durigan Junior ]
* Fix segmentation fault that happens when using the snmpv3
protocol with snmpbulkget. (LP #1877027) (Debian Bug #963713)
This is a rework of the patches introduced in the last release,
to fix CVE-2019-20892.
- d/p/move-securityStateRef-into-free_securityStateRef.patch:
Consolidate the check of the securityStateRef pointer into the
free_securityStateRef function.
- d/p/prevent-snmpv3-bulkget-errors-double-free.patch:
Prevent snmpv3 bulkget errors from becoming resulting in a
double free.
- d/p/fix-usmStateReference-free.patch:
Fix typo on usm_free_usmStateReference from last patch.
- d/p/unexport-struct-usmStateReference.patch:
Unexport struct usmStateReference and to prevent ABI breakages,
since it will be necessary to add a reference count to it.
- d/p/introduce-refcount-usmStateReference.patch:
Introduce refcount in the struct usmStateReference, and adjust
code to properly use the field.
- d/p/libsnmp-securitystateref: Rename to
d/p/move-securityStateRef-into-free_securityStateRef.
- d/p/doublefree_snmpusm: Rename to
d/p/prevent-snmpv3-bulkget-errors-double-free.patch.
[ Debian Janitor ]
* Trim trailing whitespace.
### Old Ubuntu Delta ###
net-snmp (5.9.1+dfsg-1ubuntu2) jammy; urgency=medium
* No-change rebuild for the perl update.
-- Matthias Klose <doko@ubuntu.com> Sun, 06 Feb 2022 13:33:00 +0100
net-snmp (5.9.1+dfsg-1ubuntu1) jammy; urgency=medium
* Merge with Debian unstable (LP: #1946877, #1912390). Remaining changes:
- Add apport hook:
+ d/control: add dh-apport to Build-Depends
+ d/rules: install the apport hook via debhelper
+ d/source.apport: apport hook
- d/p/lp1945960-*: backport patches for the OpenSSL3 transition
(LP #1945960)
* Dropped changes, incorporated by Debian:
- d/libsnmp-dev.install: Don't install archive (.a) files.
The archive files are just temporary files generated in order to
create the final shared objects (.so), and we don't need to ship
them in the package.
* Dropped changes, incorporated upstream:
- Fix segmentation fault when certificate contains extension
longer than 512 bytes (LP #1912389)
+ d/p/lp1912389-libsnmp-Handle-certificate-loading-errors-gracefully.patch:
Skip certificate if loading fails.
+ d/p/lp1912389-libsnmp-SSL-Increase-extension-buffer-size-to-preven.patch:
Make sure enough space is allocated for extensions longer than
512 bytes.
-- Sergio Durigan Junior <sergio.durigan@canonical.com> Tue, 11 Jan 2022 20:39:24 -0500 |
|
