SHA256
1
0
forked from pool/amanda
Commit Graph

12 Commits

Author SHA256 Message Date
Martin Pluskal
100da041cd Accepting request 1101187 from home:pgajdos
- version update to 3.5.4
  * Fixed: arg checking for runtar.c (CVE-2023-30577) [bsc#1213701]
- modified patches
  % amanda-2.6.1p1-avoid-perl-provides.patch (refreshed)

OBS-URL: https://build.opensuse.org/request/show/1101187
OBS-URL: https://build.opensuse.org/package/show/Archiving/amanda?expand=0&rev=92
2023-07-31 08:29:49 +00:00
Danilo Spinella
f222b598b9 Accepting request 1096531 from home:dspinella:branches:Archiving
- Fix the user owner of the files in /usr from amanda to root, bsc#1172572

OBS-URL: https://build.opensuse.org/request/show/1096531
OBS-URL: https://build.opensuse.org/package/show/Archiving/amanda?expand=0&rev=90
2023-07-03 11:21:26 +00:00
Martin Pluskal
c54a62dd0b Accepting request 1073593 from home:dspinella:branches:Archiving
- Update to version 3.5.3:
  * Fixed: removed vulnerable jQuery dependency
  * Fixed: fix suppressed 1st char of error message in
    common-src/bsdtcp-security.c
  * docs: improved README with Markdown
  * docs: updated README file name for docs in Debian builds
  * Fixed: post_inst_functions.sh to create amkey
  * Fixed: added extern keyword for tu_debugging_enabled declaration in
    testutils.h
  * Fixed: https://sogis.eu complaint symmetric encryption key derivation algorithm
  * Fixed: removed perror to fix information leak vulnerability found in the
    calcsize SUID binary. (CVE-2022-37703, bsc#1203390)
  * Fixed: added filter for RSH environment settings in rundump to fix
    privilege escalation vulnerability (CVE-2022-37704, bsc#1208033)
  * Fixed: arg checking for runtar.c (CVE-2022-37705, bsc#1208032)
- Remove upstreamed patches:
  * CVE-2022-37705.patch
  * amanda-3.5.1-GCC10_extern.patch
  * amanda-3.5.2-fix-tests.patch

OBS-URL: https://build.opensuse.org/request/show/1073593
OBS-URL: https://build.opensuse.org/package/show/Archiving/amanda?expand=0&rev=88
2023-03-21 17:54:53 +00:00
Martin Pluskal
0ac83544ed Accepting request 1066165 from home:dgarcia:branches:Archiving
- Add CVE-2022-37705.patch to fix privilege scalation
  (boo#1208032, gh#zmanda/amanda#194)

OBS-URL: https://build.opensuse.org/request/show/1066165
OBS-URL: https://build.opensuse.org/package/show/Archiving/amanda?expand=0&rev=86
2023-02-17 08:52:31 +00:00
Martin Pluskal
542a96e5f9 Accepting request 1008779 from home:kukuk:branches:Archiving
- %_docdir/amanda should be mode 755 and not 644

OBS-URL: https://build.opensuse.org/request/show/1008779
OBS-URL: https://build.opensuse.org/package/show/Archiving/amanda?expand=0&rev=84
2022-10-12 10:29:25 +00:00
Danilo Spinella
dfaf1cfff6 Accepting request 999574 from home:1Antoine1:branches:Archiving
- Update to version 3.5.2:
  * amstatus
    + new --[no]taped argument, useful when running
      'watch amstatus CONF --summary --notaped' if the run have
      many tapes
  * amvault
    + new --uniq, --no-uniq argument
    + Behavior change: The default is --uniq
    + new --delayed argument
    + new --run-delayed argument
- Switch sources from Sourceforge to Github.
- Drop amanda-timestamp.patch: Makefile now handles
  SOURCE_DATE_EPOCH.
- Refresh patches on Perl bindings so that they apply on swig files
  since generated C files are not included in sources anymore:
  * amanda-2.6.1p1-return_val.patch
  * amanda-3.5-no_return_in_nonvoid_fnc.patch
- Add amanda-3.5.2-fix-tests.patch: Fix tests on Tumbleweed
  (gh#zmanda/amanda#167).
- Add build dependencies on swig and rpcgen: Generated files are
  not included in sources anymore.
- Remove redundant %configure options.

OBS-URL: https://build.opensuse.org/request/show/999574
OBS-URL: https://build.opensuse.org/package/show/Archiving/amanda?expand=0&rev=82
2022-08-29 08:30:38 +00:00
307e250da2 Accepting request 814699 from home:kstreitova:branches:Archiving
- add amanda-3.5.1-GCC10_extern.patch to fix build with GCC10

OBS-URL: https://build.opensuse.org/request/show/814699
OBS-URL: https://build.opensuse.org/package/show/Archiving/amanda?expand=0&rev=80
2020-06-15 12:13:41 +00:00
ebe4d094e7 Accepting request 755217 from home:kstreitova:branches:Archiving
- change %{_libexecdir}/amanda/application/ owner to root otherwise
  chkstat refuses to set correct permissions there
- add missing BuildRequires

OBS-URL: https://build.opensuse.org/request/show/755217
OBS-URL: https://build.opensuse.org/package/show/Archiving/amanda?expand=0&rev=78
2019-12-09 12:05:50 +00:00
Martin Pluskal
1961194672 Accepting request 739477 from home:RBrownSUSE:branches:Archiving
Remove obsolete Groups tag (fate#326485)

OBS-URL: https://build.opensuse.org/request/show/739477
OBS-URL: https://build.opensuse.org/package/show/Archiving/amanda?expand=0&rev=77
2019-10-17 13:07:03 +00:00
Martin Pluskal
4d68e0746f Accepting request 703736 from home:kstreitova:branches:Archiving
- update the list of suid binaries [bsc#1110797]
  * added: ambind, ambsdtar, amgtar, amstar
  * removed: amcheck, planner, dumper
- update README.SUSE and add a note about setuid binaries and the
  fact that user amanda and members of the group amanda should be
  considered privileged users

OBS-URL: https://build.opensuse.org/request/show/703736
OBS-URL: https://build.opensuse.org/package/show/Archiving/amanda?expand=0&rev=76
2019-05-19 16:15:26 +00:00
Stephan Kulow
82d3df702c Accepting request 672190 from Archiving
dropping it was a mistake. We fixed our setup to make users
aware of the risks and this is still in usage

OBS-URL: https://build.opensuse.org/request/show/672190
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/amanda?expand=0&rev=1
2019-02-24 16:12:31 +00:00
Martin Pluskal
ae5c13aad8 OBS-URL: https://build.opensuse.org/package/show/Archiving/amanda?expand=0&rev=74 2018-12-06 13:03:45 +00:00