forked from pool/amanda
c54a62dd0b
- Update to version 3.5.3: * Fixed: removed vulnerable jQuery dependency * Fixed: fix suppressed 1st char of error message in common-src/bsdtcp-security.c * docs: improved README with Markdown * docs: updated README file name for docs in Debian builds * Fixed: post_inst_functions.sh to create amkey * Fixed: added extern keyword for tu_debugging_enabled declaration in testutils.h * Fixed: https://sogis.eu complaint symmetric encryption key derivation algorithm * Fixed: removed perror to fix information leak vulnerability found in the calcsize SUID binary. (CVE-2022-37703, bsc#1203390) * Fixed: added filter for RSH environment settings in rundump to fix privilege escalation vulnerability (CVE-2022-37704, bsc#1208033) * Fixed: arg checking for runtar.c (CVE-2022-37705, bsc#1208032) - Remove upstreamed patches: * CVE-2022-37705.patch * amanda-3.5.1-GCC10_extern.patch * amanda-3.5.2-fix-tests.patch OBS-URL: https://build.opensuse.org/request/show/1073593 OBS-URL: https://build.opensuse.org/package/show/Archiving/amanda?expand=0&rev=88 |
||
---|---|---|
.gitattributes | ||
.gitignore | ||
amanda-2.6.1p1-avoid-perl-provides.patch | ||
amanda-2.6.1p1-return_val.patch | ||
amanda-2.6.1p1-shellbang.patch | ||
amanda-3.3.2-returnvalues.patch | ||
amanda-3.5-no_return_in_nonvoid_fnc.patch | ||
amanda-3.5.3.tar.gz | ||
amanda-howto-collection.pdf.tar.bz2 | ||
amanda-libnsl.patch | ||
amanda-SUSE.tar.bz2 | ||
amanda.changes | ||
amanda.spec |