Branches for Trusty

Author: Kent Baxley
Revision Date: 2014-01-24 08:45:40 UTC

debian/control: fix the breaks and replaces version numbers
for libopenwsman1.

Author: Kent Baxley
Revision Date: 2014-06-06 12:55:02 UTC

* SECURITY UPDATE: Add security fixes from upstream openwsman (LP: #1319089)
  - debian/patches/ws-xml-make-default-prefix-buff-overflow-fix.patch:
    ws_xml_make_default_prefix() can overflow buf parameter via sprintf()
  - debian/patches/wsmc-create-request-fix-buff-overflow.patch:
    wsmc_create_request() potential buf[20] overflow via WSMAN_ACTION_RENEW
  - debian/patches/LocalSubscriptionOpUpdate-fix-fopen.patch:
    address LocalSubscriptionOpUpdate() unchecked fopen()
  - debian/patches/wsman-get-fault-status-sanity-guard-fix.patch:
    Fix incorrect order of sanity guards in wsman_get_fault_status_from_doc()
  - debian/patches/mem-allocation-wsman-init-plugins-fix.patch:
    Fix unchecked memory allocation in wsman_init_plugins(), p->ifc
  - debian/patches/mem-allocation-mem-double-newptr-fix.patch:
    Fix unchecked memory allocation in mem_double(), newptr
  - debian/patches/mem-allocation-dictionary-new-fix.patch:
    Fix unchecked memory allocation in dictionary_new(), d, d->val, d->key,
    d->hash
  - debian/patches/mem-allocation-u-error-new-fix.patch:
    Fix unchecked memory allocation in u_error_new(), *error
  - debian/patches/remove-unsafe-debug-call-from-sighup-handler.patch:
    sighup_handler() in wsmand.c use of unsafe functions in a signal handler
  - debian/patches/SHA512-password-fixes.patch:
    Support SHA512 password encoding, use safe_cmp to prevent brute-force
    attacks
  - debian/patches/increase-password-upper-limit.patch:
    increase password upper limit to 128 characters (from 64)

Author: Kent Baxley
Revision Date: 2014-06-06 12:55:02 UTC

* SECURITY UPDATE: Add security fixes from upstream openwsman (LP: #1319089)
  - debian/patches/ws-xml-make-default-prefix-buff-overflow-fix.patch:
    ws_xml_make_default_prefix() can overflow buf parameter via sprintf()
  - debian/patches/wsmc-create-request-fix-buff-overflow.patch:
    wsmc_create_request() potential buf[20] overflow via WSMAN_ACTION_RENEW
  - debian/patches/LocalSubscriptionOpUpdate-fix-fopen.patch:
    address LocalSubscriptionOpUpdate() unchecked fopen()
  - debian/patches/wsman-get-fault-status-sanity-guard-fix.patch:
    Fix incorrect order of sanity guards in wsman_get_fault_status_from_doc()
  - debian/patches/mem-allocation-wsman-init-plugins-fix.patch:
    Fix unchecked memory allocation in wsman_init_plugins(), p->ifc
  - debian/patches/mem-allocation-mem-double-newptr-fix.patch:
    Fix unchecked memory allocation in mem_double(), newptr
  - debian/patches/mem-allocation-dictionary-new-fix.patch:
    Fix unchecked memory allocation in dictionary_new(), d, d->val, d->key,
    d->hash
  - debian/patches/mem-allocation-u-error-new-fix.patch:
    Fix unchecked memory allocation in u_error_new(), *error
  - debian/patches/remove-unsafe-debug-call-from-sighup-handler.patch:
    sighup_handler() in wsmand.c use of unsafe functions in a signal handler
  - debian/patches/SHA512-password-fixes.patch:
    Support SHA512 password encoding, use safe_cmp to prevent brute-force
    attacks
  - debian/patches/increase-password-upper-limit.patch:
    increase password upper limit to 128 characters (from 64)

Author: Kent Baxley
Revision Date: 2014-06-06 18:04:08 UTC

update patch series

Author: Kent Baxley
Revision Date: 2014-01-24 08:45:40 UTC

debian/control: fix the breaks and replaces version numbers
for libopenwsman1.