lp://staging/ubuntu/lucid-security/bash

Created by Ubuntu Package Importer and last modified
Get this branch:
bzr branch lp://staging/ubuntu/lucid-security/bash
Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Ubuntu branches
Review team:
Ubuntu Development Team
Status:
Mature

Recent revisions

51. By Marc Deslauriers

* SECURITY UPDATE: incorrect function definition parsing with
  here-document delimited by end-of-file
  - debian/patches/CVE-2014-6277.dpatch: properly handle closing
    delimiter in copy_cmd.c, make_cmd.c.
  - CVE-2014-6277
* SECURITY UPDATE: incorrect function definition parsing via nested
  command substitutions
  - debian/patches/CVE-2014-6278.dpatch: properly handle certain parsing
    attempts in builtins/evalstring.c, parse.y, shell.h.
  - CVE-2014-6278
* debian/rules: added new patches to list.
* Updated patches with official upstream versions:
  - debian/patches/CVE-2014-6271.dpatch
  - debian/patches/CVE-2014-7169.dpatch
  - debian/patches/variables-affix.dpatch
  - debian/patches/CVE-2014-718x.dpatch

50. By Marc Deslauriers

* SECURITY UPDATE: out-of-bounds memory access
  - debian/patches/CVE-2014-718x.dpatch: guard against overflow and fix
    off-by-one in parse.y.
  - CVE-2014-7186
  - CVE-2014-7187
* SECURITY IMPROVEMENT: use prefixes and suffixes for function exports
  - debian/patches/variables-affix.dpatch: add prefixes and suffixes in
    variables.c.
* debian/rules: added new patches to list.

49. By Marc Deslauriers

* SECURITY UPDATE: incomplete fix for CVE-2014-6271
  - debian/patches/CVE-2014-7169.dpatch: fix logic in parse.y.
  - debian/rules: added new patch to list.
  - CVE-2014-7169

48. By Marc Deslauriers

* SECURITY UPDATE: incorrect function parsing
  - debian/patches/CVE-2014-6271.dpatch: fix function parsing in
    builtins/common.h, builtins/evalstring.c, variables.c.
  - debian/rules: added new patch to list.
  - CVE-2014-6271

47. By Matthias Klose

Rebuild statically linked bash-static binary against recent libc.

46. By Matthias Klose

* Apply upstream patches 003, 004, 005.
  - Fix crash with command completion on a word with a quoted globbing
    character.
  - Fix executing a shell function in Posix mode without local
    variables, bash will not propagate a variable in a special builtin's
    temporary environment to have global scope.
  - Fix the `read' builtin times out after the timeout specified with -t
    is exceeded, it does not reset the flags that tell signal handlers to
    process signals immediately instead of deferring their handling.
* Fix crash in declare builtin. LP: #556101.
* README.Debian:
  - Remove references to bash-minimal.
  - Mention that the upstream changelog can be found in the bash-doc
    package.

45. By Dustin Kirkland 

[ Dustin Kirkland ]
* Merge from debian testing. Remaining changes:
  - Build from the upstream sources, build the documentation in info format.
  - /etc/bash.bashrc:
    + add sudo hint
    + allow special characters
    + add ll, la, l aliases
  - /etc/skel/.bashrc:
    + don't set HISTCONTROL twice
    + set HISTSIZE to a reasonable 2000
    + eval lesspipe
    + enable colored grep
    + add ll, la, l aliases
* New bug fix, LP: #545262
  - /etc/skel/.bashrc: Uncomment useful aliases for ll, la, and l,
    to better match sysadmin's expectations coming from other
    enterprise distros

[ Matthias Klose ]
* Set HISTFILESIZE to 2000 in the skeleton bashrc. LP: #544542.

44. By Bryce Harrington

* Allow special characters in home path in /etc/bash.bashrc
  (LP: #330664)
* skel.bashrc: Don't set HISTCONTROL twice
  (LP: #465500)

43. By Matthias Klose

* Merge with Debian; remaining changes:
  - Build from the upstream sources, build the documentation in info format.
  - /etc/skel/.bashrc: eval lesspipe.

42. By Matthias Klose

Still ship the sh and sh(1) symlinks. LP: #429048.

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp://staging/ubuntu/utopic/bash
This branch contains Public information 
Everyone can see this information.

Subscribers