Hello community,

here is the log from the commit of package patchinfo.2060 for 
openSUSE:12.3:Update checked in at 2013-10-22 10:22:51
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:12.3:Update/patchinfo.2060 (Old)
 and      /work/SRC/openSUSE:12.3:Update/.patchinfo.2060.new (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Package is "patchinfo.2060"

Changes:
--------
New Changes file:

NO CHANGES FILE!!!

New:
----
  _patchinfo

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ _patchinfo ++++++
<patchinfo>
  <issue id="787884" tracker="bnc">proftpd won't start without preexisting 
/var/run/proftpd</issue>
  <issue id="811793" tracker="bnc">/var/run/nologin is periodically re-created 
after upgrade to 12.3</issue>
  <issue id="843444" tracker="bnc">VUL-0: CVE-2013-4359: proftpd: remote denial 
of service</issue>
  <issue id="CVE-2013-4359" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>computersalat</packager>
  <description>
proftpd was updated to 1.3.4d.
  * Fixed broken build when using --disable-ipv6 configure option
  * Fixed mod_sql "SQLAuthType Backend" MySQL issues
- fix for bnc#843444 (CVE-2013-4359)
  * http://bugs.proftpd.org/show_bug.cgi?id=3973
  * add proftpd-sftp-kbdint-max-responses-bug3973.patch

- Improve systemd service file 
- use upstream tmpfiles.d file. related to [bnc#811793]
- Use /run instead of /var/run 

- update to 1.3.4c
  * Added Spanish translation.
  * Fixed several mod_sftp issues, including SFTPPassPhraseProvider,
    handling of symlinks for REALPATH requests, and response code logging.
  * Fixed symlink race for creating directories when UserOwner is in effect.
  * Increased performance of FTP directory listings.
- rebase and rename patches (remove version string)
  * proftpd-1.3.4a-dist.patch -&gt; proftpd-dist.patch
  * proftpd-1.3.4a-ftpasswd.patch -&gt; proftpd-ftpasswd.patch
  * proftpd-1.3.4a-strip.patch -&gt; proftpd-strip.patch

- fix proftpd.conf (rebase basic.conf patch)
  * IdentLookups is now a seperate module
    &lt;IfModule mod_ident.c&gt; IdentLookups on/off &lt;/IfModule&gt;
    is needed and module is not built cause crrodriguez disabled it.

- fix for bnc#787884
   (https://bugzilla.novell.com/show_bug.cgi?id=787884)
  * added extra Source proftpd.conf.tmpfile

- Disable ident lookups, this protocol is totally obsolete
 and dangerous. (add --disable-ident)
- Fix debug info generation ( add --disable-strip) 

- Add systemd unit 

- update to 1.3.4b
  + Fixed mod_ldap segfault on login when LDAPUsers with no filters used.
  + Fixed sporadic SFTP upload issues for large files.
  + Fixed SSH2 handling for some clients (e.g. OpenVMS).
  + New FactsOptions directive; see doc/modules/mod_facts.html#FactsOptions
  + Fixed build errors on Tru64, AIX, Cygwin.
- add Source Signatuire (.asc) file
- add noBuildDate patch
- add lang pkg
  * --enable-nls
- add configure option
  * --enable-openssl, --with-lastlog
</description>
  <summary>proftpd: security and bugfix update to 1.3.4d</summary>
</patchinfo>
-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org

Reply via email to