Bug#635746: fail2ban: diff for NMU version 0.8.4-3+squeeze1

Thu, 28 Jul 2011 07:06:23 -0700 

Package: fail2ban
Severity: normal
User: [email protected]
Usertags: pu

Dear maintainer, please be advised that I am submitting the attached diff 
to the release team for consideration. It will be an NMU against Squeeze.

If they accept it I will upload this in the next day or so.

SRMs: this is to fix CVE-2009-5023 (there's a diff for lenny coming too).


-- 
Jonathan Wiltshire                                      [email protected]
Debian Developer                         http://people.debian.org/~jmw

4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC  74C3 5394 479D D352 4C51

diff -u fail2ban-0.8.4/debian/changelog fail2ban-0.8.4/debian/changelog
--- fail2ban-0.8.4/debian/changelog
+++ fail2ban-0.8.4/debian/changelog
@@ -1,3 +1,11 @@
+fail2ban (0.8.4-3+squeeze1) stable; urgency=low
+
+  * Non-maintainer upload.
+  * [e2232fc] Backport patch to fix CVE-2009-5023: Insecure creation of
+    tempfile (Closes: #544232)
+
+ -- Jonathan Wiltshire <[email protected]>  Thu, 28 Jul 2011 14:14:17 +0100
+
 fail2ban (0.8.4-3) unstable; urgency=low
 
   * Commenting out named-refused-udp jail and providing even fatter
only in patch2:
unchanged:
--- fail2ban-0.8.4.orig/config/action.d/dshield.conf
+++ fail2ban-0.8.4/config/action.d/dshield.conf
@@ -206,5 +206,5 @@
 # Notes.:  Base name of temporary files used for buffering
 # Values:  [ STRING ]  Default: /tmp/fail2ban-dshield
 #
-tmpfile = /tmp/fail2ban-dshield
+tmpfile = /var/run/fail2ban/tmp-dshield
 
only in patch2:
unchanged:
--- fail2ban-0.8.4.orig/config/action.d/mail-buffered.conf
+++ fail2ban-0.8.4/config/action.d/mail-buffered.conf
@@ -81,7 +81,7 @@
 
 # Default temporary file
 #
-tmpfile = /tmp/fail2ban-mail.txt
+tmpfile = /var/run/fail2ban/tmp-mail.txt
 
 # Destination/Addressee of the mail
 #
only in patch2:
unchanged:
--- fail2ban-0.8.4.orig/config/action.d/sendmail-buffered.conf
+++ fail2ban-0.8.4/config/action.d/sendmail-buffered.conf
@@ -101,5 +101,5 @@
 
 # Default temporary file
 #
-tmpfile = /tmp/fail2ban-mail.txt
+tmpfile = /var/run/fail2ban/tmp-mail.txt
 
only in patch2:
unchanged:
--- fail2ban-0.8.4.orig/config/action.d/mynetwatchman.conf
+++ fail2ban-0.8.4/config/action.d/mynetwatchman.conf
@@ -141,4 +141,4 @@
 # Notes.:  Base name of temporary files
 # Values:  [ STRING ]  Default: /tmp/fail2ban-mynetwatchman
 #
-tmpfile = /tmp/fail2ban-mynetwatchman
+tmpfile = /var/run/fail2ban/tmp-mynetwatchman

Attachment: signature.asc
Description: Digital signature

Reply via email to