** Description changed: Upstream: tbd - Debian: 5.9.1+dfsg-1 + Debian: 5.9.1+dfsg-1 Ubuntu: 5.9.1+dfsg-1ubuntu2.1 - Debian does new releases regularly, so it's likely there will be newer versions available before FF that we can pick up if this merge is done later in the cycle. + As part of the merge, please also consider including a fix for LP: + #1742761 "Drop dh-apport to reduce delta with Debian". ### New Debian Changes ### net-snmp (5.9.1+dfsg-1) unstable; urgency=medium - [ Owen Evans ] - * Enable Blumenthal AES-192 and AES-256 encryption Closes: #972985 + [ Owen Evans ] + * Enable Blumenthal AES-192 and AES-256 encryption Closes: #972985 - [ Ferenc Wágner ] - * Enable systemd integration and UDP socket activation - Closes: #985369 + [ Ferenc Wágner ] + * Enable systemd integration and UDP socket activation + Closes: #985369 - [ Sergio Durigan Junior ] - * d/libsnmp-dev.install: Don't install archive (.a) files. - The archive files are just temporary files generated in order to - create the final shared objects (.so), and we don't need to ship them - in the package. + [ Sergio Durigan Junior ] + * d/libsnmp-dev.install: Don't install archive (.a) files. + The archive files are just temporary files generated in order to + create the final shared objects (.so), and we don't need to ship them + in the package. - [ Debian Janitor ] - * Trim trailing whitespace. + [ Debian Janitor ] + * Trim trailing whitespace. - [ Vagrant Cascadian ] - * Embed path to ps and uname. Closes: #978598 + [ Vagrant Cascadian ] + * Embed path to ps and uname. Closes: #978598 - [ Craig Small ] - * Make the perl agent code more tolerant of perl types, thanks - to Guillem Jover for the patch Closes: #977573 - * Make CI files use correct libmariadb-dev package names - Closes: #975477 - * mib2c: Add recommends and fix error message Closes: #990706 + [ Craig Small ] + * Make the perl agent code more tolerant of perl types, thanks + to Guillem Jover for the patch Closes: #977573 + * Make CI files use correct libmariadb-dev package names + Closes: #975477 + * mib2c: Add recommends and fix error message Closes: #990706 - * Add configuration directory for snmpd - * New upstream release - * Add Recommends: procps for snmpd Closes: #993997 + * Add configuration directory for snmpd + * New upstream release + * Add Recommends: procps for snmpd Closes: #993997 - -- Craig Small <[email protected]> Mon, 20 Sep 2021 21:35:58 +1000 + -- Craig Small <[email protected]> Mon, 20 Sep 2021 21:35:58 +1000 net-snmp (5.9+dfsg-3) unstable; urgency=medium - * Source only upload - no changes Closes: #970798 + * Source only upload - no changes Closes: #970798 - -- Craig Small <[email protected]> Fri, 25 Sep 2020 09:10:00 +1000 + -- Craig Small <[email protected]> Fri, 25 Sep 2020 09:10:00 +1000 net-snmp (5.9+dfsg-2) unstable; urgency=medium - * Move SNMP.3pm back to perl package Closes: #969436 - * Moved snmptrapd library into its own package to not pull in mysql - dependencies for snmp/snmpd Closes: #953948 + * Move SNMP.3pm back to perl package Closes: #969436 + * Moved snmptrapd library into its own package to not pull in mysql + dependencies for snmp/snmpd Closes: #953948 - -- Craig Small <[email protected]> Sun, 06 Sep 2020 21:52:58 +1000 + -- Craig Small <[email protected]> Sun, 06 Sep 2020 21:52:58 +1000 net-snmp (5.9+dfsg-1) unstable; urgency=medium - [ Sergio Durigan Junior ] - * Link libnetsnmptrapd against MYSQL_LIBS - - d/p/Link-libnetsnmptrapd-against-MYSQL_LIBS.patch: When building - with MySQL (MariaDB) support, this library must be linked against the - MySQL client library, or else it will have unresolved symbols. - (Closes: #886221) + [ Sergio Durigan Junior ] + * Link libnetsnmptrapd against MYSQL_LIBS + - d/p/Link-libnetsnmptrapd-against-MYSQL_LIBS.patch: When building + with MySQL (MariaDB) support, this library must be linked against the + MySQL client library, or else it will have unresolved symbols. + (Closes: #886221) - [ Craig Small ] - * New upstream release - * Removed patches included in upstream - * Library soname changed to 40 - * Remove dbg packages, no need to migrate as new soname + [ Craig Small ] + * New upstream release + * Removed patches included in upstream + * Library soname changed to 40 + * Remove dbg packages, no need to migrate as new soname - -- Craig Small <[email protected]> Sat, 22 Aug 2020 17:11:17 +1000 + -- Craig Small <[email protected]> Sat, 22 Aug 2020 17:11:17 +1000 net-snmp (5.8+dfsg-5) unstable; urgency=medium - * Allow extend to be read-only Closes: #966544 - * Stop using mib_index files CVE-2020-15861 Closes: 966599 + * Allow extend to be read-only Closes: #966544 + * Stop using mib_index files CVE-2020-15861 Closes: 966599 - -- Craig Small <[email protected]> Fri, 31 Jul 2020 20:29:41 +1000 + -- Craig Small <[email protected]> Fri, 31 Jul 2020 20:29:41 +1000 net-snmp (5.8+dfsg-4) unstable; urgency=high - [ Sergio Durigan Junior ] - * Fix segmentation fault that happens when using the snmpv3 - protocol with snmpbulkget. (LP #1877027) (Debian Bug #963713) - This is a rework of the patches introduced in the last release, - to fix CVE-2019-20892. - - d/p/move-securityStateRef-into-free_securityStateRef.patch: - Consolidate the check of the securityStateRef pointer into the - free_securityStateRef function. - - d/p/prevent-snmpv3-bulkget-errors-double-free.patch: - Prevent snmpv3 bulkget errors from becoming resulting in a - double free. - - d/p/fix-usmStateReference-free.patch: - Fix typo on usm_free_usmStateReference from last patch. - - d/p/unexport-struct-usmStateReference.patch: - Unexport struct usmStateReference and to prevent ABI breakages, - since it will be necessary to add a reference count to it. - - d/p/introduce-refcount-usmStateReference.patch: - Introduce refcount in the struct usmStateReference, and adjust - code to properly use the field. - - d/p/libsnmp-securitystateref: Rename to - d/p/move-securityStateRef-into-free_securityStateRef. - - d/p/doublefree_snmpusm: Rename to - d/p/prevent-snmpv3-bulkget-errors-double-free.patch. + [ Sergio Durigan Junior ] + * Fix segmentation fault that happens when using the snmpv3 + protocol with snmpbulkget. (LP #1877027) (Debian Bug #963713) + This is a rework of the patches introduced in the last release, + to fix CVE-2019-20892. + - d/p/move-securityStateRef-into-free_securityStateRef.patch: + Consolidate the check of the securityStateRef pointer into the + free_securityStateRef function. + - d/p/prevent-snmpv3-bulkget-errors-double-free.patch: + Prevent snmpv3 bulkget errors from becoming resulting in a + double free. + - d/p/fix-usmStateReference-free.patch: + Fix typo on usm_free_usmStateReference from last patch. + - d/p/unexport-struct-usmStateReference.patch: + Unexport struct usmStateReference and to prevent ABI breakages, + since it will be necessary to add a reference count to it. + - d/p/introduce-refcount-usmStateReference.patch: + Introduce refcount in the struct usmStateReference, and adjust + code to properly use the field. + - d/p/libsnmp-securitystateref: Rename to + d/p/move-securityStateRef-into-free_securityStateRef. + - d/p/doublefree_snmpusm: Rename to + d/p/prevent-snmpv3-bulkget-errors-double-free.patch. - [ Debian Janitor ] - * Trim trailing whitespace. - + [ Debian Janitor ] + * Trim trailing whitespace. ### Old Ubuntu Delta ### net-snmp (5.9.1+dfsg-1ubuntu2) jammy; urgency=medium - * No-change rebuild for the perl update. + * No-change rebuild for the perl update. - -- Matthias Klose <[email protected]> Sun, 06 Feb 2022 13:33:00 +0100 + -- Matthias Klose <[email protected]> Sun, 06 Feb 2022 13:33:00 +0100 net-snmp (5.9.1+dfsg-1ubuntu1) jammy; urgency=medium - * Merge with Debian unstable (LP: #1946877, #1912390). Remaining changes: - - Add apport hook: - + d/control: add dh-apport to Build-Depends - + d/rules: install the apport hook via debhelper - + d/source.apport: apport hook - - d/p/lp1945960-*: backport patches for the OpenSSL3 transition - (LP #1945960) - * Dropped changes, incorporated by Debian: - - d/libsnmp-dev.install: Don't install archive (.a) files. - The archive files are just temporary files generated in order to - create the final shared objects (.so), and we don't need to ship - them in the package. - * Dropped changes, incorporated upstream: - - Fix segmentation fault when certificate contains extension - longer than 512 bytes (LP #1912389) - + d/p/lp1912389-libsnmp-Handle-certificate-loading-errors-gracefully.patch: - Skip certificate if loading fails. - + d/p/lp1912389-libsnmp-SSL-Increase-extension-buffer-size-to-preven.patch: - Make sure enough space is allocated for extensions longer than - 512 bytes. + * Merge with Debian unstable (LP: #1946877, #1912390). Remaining changes: + - Add apport hook: + + d/control: add dh-apport to Build-Depends + + d/rules: install the apport hook via debhelper + + d/source.apport: apport hook + - d/p/lp1945960-*: backport patches for the OpenSSL3 transition + (LP #1945960) + * Dropped changes, incorporated by Debian: + - d/libsnmp-dev.install: Don't install archive (.a) files. + The archive files are just temporary files generated in order to + create the final shared objects (.so), and we don't need to ship + them in the package. + * Dropped changes, incorporated upstream: + - Fix segmentation fault when certificate contains extension + longer than 512 bytes (LP #1912389) + + d/p/lp1912389-libsnmp-Handle-certificate-loading-errors-gracefully.patch: + Skip certificate if loading fails. + + d/p/lp1912389-libsnmp-SSL-Increase-extension-buffer-size-to-preven.patch: + Make sure enough space is allocated for extensions longer than + 512 bytes. - -- Sergio Durigan Junior <[email protected]> Tue, 11 Jan + -- Sergio Durigan Junior <[email protected]> Tue, 11 Jan 2022 20:39:24 -0500
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1971295 Title: Merge net-snmp from Debian unstable for kinetic To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/net-snmp/+bug/1971295/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
