Martin Pluskal
100da041cd
Accepting request 1101187 from home:pgajdos
...
- version update to 3.5.4
* Fixed: arg checking for runtar.c (CVE-2023-30577) [bsc#1213701]
- modified patches
% amanda-2.6.1p1-avoid-perl-provides.patch (refreshed)
OBS-URL: https://build.opensuse.org/request/show/1101187
OBS-URL: https://build.opensuse.org/package/show/Archiving/amanda?expand=0&rev=92
2023-07-31 08:29:49 +00:00
Danilo Spinella
f222b598b9
Accepting request 1096531 from home:dspinella:branches:Archiving
...
- Fix the user owner of the files in /usr from amanda to root, bsc#1172572
OBS-URL: https://build.opensuse.org/request/show/1096531
OBS-URL: https://build.opensuse.org/package/show/Archiving/amanda?expand=0&rev=90
2023-07-03 11:21:26 +00:00
Martin Pluskal
c54a62dd0b
Accepting request 1073593 from home:dspinella:branches:Archiving
...
- Update to version 3.5.3:
* Fixed: removed vulnerable jQuery dependency
* Fixed: fix suppressed 1st char of error message in
common-src/bsdtcp-security.c
* docs: improved README with Markdown
* docs: updated README file name for docs in Debian builds
* Fixed: post_inst_functions.sh to create amkey
* Fixed: added extern keyword for tu_debugging_enabled declaration in
testutils.h
* Fixed: https://sogis.eu complaint symmetric encryption key derivation algorithm
* Fixed: removed perror to fix information leak vulnerability found in the
calcsize SUID binary. (CVE-2022-37703, bsc#1203390)
* Fixed: added filter for RSH environment settings in rundump to fix
privilege escalation vulnerability (CVE-2022-37704, bsc#1208033)
* Fixed: arg checking for runtar.c (CVE-2022-37705, bsc#1208032)
- Remove upstreamed patches:
* CVE-2022-37705.patch
* amanda-3.5.1-GCC10_extern.patch
* amanda-3.5.2-fix-tests.patch
OBS-URL: https://build.opensuse.org/request/show/1073593
OBS-URL: https://build.opensuse.org/package/show/Archiving/amanda?expand=0&rev=88
2023-03-21 17:54:53 +00:00
Martin Pluskal
0ac83544ed
Accepting request 1066165 from home:dgarcia:branches:Archiving
...
- Add CVE-2022-37705.patch to fix privilege scalation
(boo#1208032, gh#zmanda/amanda#194)
OBS-URL: https://build.opensuse.org/request/show/1066165
OBS-URL: https://build.opensuse.org/package/show/Archiving/amanda?expand=0&rev=86
2023-02-17 08:52:31 +00:00
Martin Pluskal
542a96e5f9
Accepting request 1008779 from home:kukuk:branches:Archiving
...
- %_docdir/amanda should be mode 755 and not 644
OBS-URL: https://build.opensuse.org/request/show/1008779
OBS-URL: https://build.opensuse.org/package/show/Archiving/amanda?expand=0&rev=84
2022-10-12 10:29:25 +00:00
Danilo Spinella
dfaf1cfff6
Accepting request 999574 from home:1Antoine1:branches:Archiving
...
- Update to version 3.5.2:
* amstatus
+ new --[no]taped argument, useful when running
'watch amstatus CONF --summary --notaped' if the run have
many tapes
* amvault
+ new --uniq, --no-uniq argument
+ Behavior change: The default is --uniq
+ new --delayed argument
+ new --run-delayed argument
- Switch sources from Sourceforge to Github.
- Drop amanda-timestamp.patch: Makefile now handles
SOURCE_DATE_EPOCH.
- Refresh patches on Perl bindings so that they apply on swig files
since generated C files are not included in sources anymore:
* amanda-2.6.1p1-return_val.patch
* amanda-3.5-no_return_in_nonvoid_fnc.patch
- Add amanda-3.5.2-fix-tests.patch: Fix tests on Tumbleweed
(gh#zmanda/amanda#167).
- Add build dependencies on swig and rpcgen: Generated files are
not included in sources anymore.
- Remove redundant %configure options.
OBS-URL: https://build.opensuse.org/request/show/999574
OBS-URL: https://build.opensuse.org/package/show/Archiving/amanda?expand=0&rev=82
2022-08-29 08:30:38 +00:00
307e250da2
Accepting request 814699 from home:kstreitova:branches:Archiving
...
- add amanda-3.5.1-GCC10_extern.patch to fix build with GCC10
OBS-URL: https://build.opensuse.org/request/show/814699
OBS-URL: https://build.opensuse.org/package/show/Archiving/amanda?expand=0&rev=80
2020-06-15 12:13:41 +00:00
ebe4d094e7
Accepting request 755217 from home:kstreitova:branches:Archiving
...
- change %{_libexecdir}/amanda/application/ owner to root otherwise
chkstat refuses to set correct permissions there
- add missing BuildRequires
OBS-URL: https://build.opensuse.org/request/show/755217
OBS-URL: https://build.opensuse.org/package/show/Archiving/amanda?expand=0&rev=78
2019-12-09 12:05:50 +00:00
Martin Pluskal
1961194672
Accepting request 739477 from home:RBrownSUSE:branches:Archiving
...
Remove obsolete Groups tag (fate#326485)
OBS-URL: https://build.opensuse.org/request/show/739477
OBS-URL: https://build.opensuse.org/package/show/Archiving/amanda?expand=0&rev=77
2019-10-17 13:07:03 +00:00
Martin Pluskal
4d68e0746f
Accepting request 703736 from home:kstreitova:branches:Archiving
...
- update the list of suid binaries [bsc#1110797]
* added: ambind, ambsdtar, amgtar, amstar
* removed: amcheck, planner, dumper
- update README.SUSE and add a note about setuid binaries and the
fact that user amanda and members of the group amanda should be
considered privileged users
OBS-URL: https://build.opensuse.org/request/show/703736
OBS-URL: https://build.opensuse.org/package/show/Archiving/amanda?expand=0&rev=76
2019-05-19 16:15:26 +00:00
Stephan Kulow
82d3df702c
Accepting request 672190 from Archiving
...
dropping it was a mistake. We fixed our setup to make users
aware of the risks and this is still in usage
OBS-URL: https://build.opensuse.org/request/show/672190
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/amanda?expand=0&rev=1
2019-02-24 16:12:31 +00:00
Martin Pluskal
ae5c13aad8
OBS-URL: https://build.opensuse.org/package/show/Archiving/amanda?expand=0&rev=74
2018-12-06 13:03:45 +00:00