c8ffd908 |
1 | courier-authlib (0.61.0-1+lenny1hcoop1) lenny; urgency=low |
2 | |
3 | * Merge from Debian. Remaining changes: |
4 | + authpam.c: |
5 | - Revert the disabling of pam_setcred so that IMAP works on AFS. |
6 | + courier_auth_config.h: |
7 | - Set the userdb path to be /etc/courier/userdb. |
8 | + preauthuserdbcommon.c: |
9 | - Get AFS tokens. |
10 | |
11 | -- Michael Olson (HCoop) <mwolson@hcoop.net> Thu, 09 Apr 2009 23:43:21 -0400 |
12 | |
0fde1ce3 |
13 | courier-authlib (0.61.0-1+lenny1) testing-security; urgency=high |
14 | |
15 | * Non-maintainer upload by the security team |
16 | * Fix several sql-injection vulnerabilities in authpgsqllib.c by using |
17 | PQsetClientEncoding() and PQescapeStringConn() |
18 | Fixes: CVE-2008-2380 |
19 | |
20 | -- Steffen Joeris <white@debian.org> Mon, 08 Dec 2008 13:48:12 +0000 |
21 | |
22 | courier-authlib (0.61.0-1) unstable; urgency=low |
23 | |
24 | * new upstream release |
25 | * lintian: |
26 | - debian/compat file |
27 | - don't ignore make clean errors |
28 | |
29 | -- Stefan Hornburg (Racke) <racke@linuxia.de> Thu, 17 Jul 2008 12:59:36 +0200 |
30 | |
31 | courier-authlib (0.60.1-2.1) unstable; urgency=high |
32 | |
33 | * Non-maintainer upload by the security team |
34 | * Fix sql injection vulnerability by changing to use |
35 | mysql_set_character_set instead of SET NAMES |
36 | (Change was introduced by upstream in 0.60.6) |
37 | (Closes: #485424) |
38 | |
39 | -- Steffen Joeris <white@debian.org> Mon, 09 Jun 2008 15:29:23 +0000 |
40 | |
3f2ad2d4 |
41 | courier-authlib (0.60.2-0hcoop7) unstable; urgency=low |
42 | |
43 | * Revert last change. Now the AFS token code is before the callback. |
44 | |
45 | -- Michael Olson (HCoop) <mwolson@hcoop.net> Thu, 07 Feb 2008 22:37:30 -0500 |
46 | |
2cdb8e7d |
47 | courier-authlib (0.60.2-0hcoop6) unstable; urgency=low |
48 | |
49 | * Move acquiting of AFS vmail tokens to just after callback. |
50 | |
51 | -- Michael Olson (HCoop) <mwolson@hcoop.net> Sat, 02 Feb 2008 20:29:01 -0500 |
52 | |
51201864 |
53 | courier-authlib (0.60.2-0hcoop5) unstable; urgency=low |
54 | |
55 | * Move acquiring of AFS vmail tokens to preauthuserdbcommon.c. |
56 | |
57 | -- Michael Olson (HCoop) <mwolson@hcoop.net> Fri, 01 Feb 2008 21:55:37 -0500 |
58 | |
05980d6f |
59 | courier-authlib (0.60.2-0hcoop4) unstable; urgency=low |
60 | |
61 | * authuserdb: Try using a separate get-token script. |
62 | |
63 | -- Michael Olson (HCoop) <mwolson@hcoop.net> Wed, 30 Jan 2008 13:17:14 -0500 |
64 | |
63de08e7 |
65 | courier-authlib (0.60.2-0hcoop3) unstable; urgency=low |
66 | |
67 | * Fix bug in previous patch. |
68 | |
69 | -- Michael Olson (HCoop) <mwolson@hcoop.net> Sun, 27 Jan 2008 16:19:18 -0500 |
70 | |
c0398a7b |
71 | courier-authlib (0.60.2-0hcoop2) unstable; urgency=low |
72 | |
73 | * Get token after authenticating a vmail user. |
74 | |
75 | -- Michael Olson (HCoop) <mwolson@hcoop.net> Sat, 26 Jan 2008 15:28:19 -0500 |
76 | |
34c781f2 |
77 | courier-authlib (0.60.2-0hcoop1) unstable; urgency=low |
78 | |
79 | * New upstream release. Remaining changes: |
80 | - Revert the disabling of pam_setcred so that IMAP works as expected. |
81 | - Set the userdb path to be /etc/courier/userdb. |
82 | |
83 | -- Michael Olson (HCoop) <mwolson@hcoop.net> Fri, 25 Jan 2008 19:24:41 -0500 |
84 | |
0fde1ce3 |
85 | courier-authlib (0.60.1-2) unstable; urgency=low |
86 | |
87 | * added LSB dependency info to init scripts (Closes: #460221, thanks to |
88 | Petter Reinholdtsen <pere@hungry.com> for the patch) |
89 | |
90 | -- Stefan Hornburg (Racke) <racke@linuxia.de> Mon, 7 Apr 2008 13:21:37 +0200 |
91 | |
92232671 |
92 | courier-authlib (0.60.1-1hcoop1) unstable; urgency=low |
93 | |
94 | * Sync from Debian. Remaining changes: |
95 | - Revert the disabling of pam_setcred so that IMAP works as expected. |
96 | - Set the userdb path to be /etc/courier/userdb. |
97 | |
f53ed7f1 |
98 | -- Michael Olson (HCoop) <mwolson@hcoop.net> Fri, 25 Jan 2008 18:28:11 -0500 |
92232671 |
99 | |
64ff59ba |
100 | courier-authlib (0.60.1-1) unstable; urgency=low |
101 | |
102 | * new upstream release |
103 | |
104 | -- Stefan Hornburg (Racke) <racke@linuxia.de> Mon, 15 Oct 2007 10:56:16 +0200 |
105 | |
106 | courier-authlib (0.60.0-1) unstable; urgency=low |
107 | |
108 | * new upstream release, now under GPL version 3 |
109 | |
110 | -- Stefan Hornburg (Racke) <racke@linuxia.de> Sun, 30 Sep 2007 21:58:35 +0200 |
111 | |
112 | courier-authlib (0.59.3-2) unstable; urgency=low |
113 | |
114 | * dropped alternative build dependency on postgresql-dev |
115 | (Closes: #429964, thanks to Lior Kaplan <kaplan@debian.org> for the report |
116 | |
117 | -- Stefan Hornburg (Racke) <racke@linuxia.de> Thu, 21 Jun 2007 20:26:38 +0200 |
118 | |
4360c3b9 |
119 | courier-authlib (0.59.3-1hcoop1) unstable; urgency=low |
120 | |
121 | [Adam Megacz] |
122 | * Revert the disabling of pam_setcred so that IMAP works as expected. |
123 | * Set the userdb path to be /etc/courier/userdb. |
124 | * userdb: Allow "+", ":", and "_" in usernames. |
125 | |
126 | -- Michael Olson (HCoop) <mwolson@hcoop.net> Fri, 25 Jan 2008 17:46:10 -0500 |
127 | |
426e7833 |
128 | courier-authlib (0.59.3-1) unstable; urgency=low |
129 | |
130 | * new upstream release |
131 | |
132 | -- Stefan Hornburg (Racke) <racke@linuxia.de> Mon, 23 Apr 2007 10:18:17 +0200 |
133 | |
134 | courier-authlib (0.59.1-0.1) experimental; urgency=low |
135 | |
136 | * new upstream release |
137 | |
138 | -- Stefan Hornburg (Racke) <racke@linuxia.de> Wed, 17 Jan 2007 11:58:29 +0100 |
139 | |
140 | courier-authlib (0.58-5) unstable; urgency=low |
141 | |
142 | * added dependency and build dependency on expect (Closes: #400812, |
143 | thanks to Peter Troeger <peter@troeger.eu> for the report) |
144 | |
145 | -- Stefan Hornburg (Racke) <racke@linuxia.de> Wed, 29 Nov 2006 11:42:45 +0100 |
146 | |
147 | courier-authlib (0.58-4) unstable; urgency=medium |
148 | |
149 | * call dh_makeshlibs during binary-arch target in order to get proper shlib |
150 | information for libcourierauth.so (Closes: #378249, thanks to Charles |
151 | Fry <cfry@debian.org> for the report and Steinar H. Gunderson |
152 | <sesse@debian.org> for the patch) |
153 | * ensure that courier-authdaemon is upgraded when switching to courier-authlib |
154 | * switch to lsb logging functions (Closes: #384823, thanks to David Härdeman |
155 | <david@2gen.com> for the patch) |
156 | |
157 | -- Stefan Hornburg (Racke) <racke@linuxia.de> Sat, 9 Sep 2006 17:37:11 +0200 |
158 | |
159 | courier-authlib (0.58-3.1) unstable; urgency=medium |
160 | |
161 | * Non-Maintainer Upload to fix security bug, caused by |
162 | /var/run/courier/authdaemon being world executable. Thanks to Martin |
163 | Ferrari for the fix. (Closes: #378571) |
164 | |
165 | -- Margarita Manterola <marga@debian.org> Tue, 1 Aug 2006 16:45:07 -0300 |
166 | |
167 | courier-authlib (0.58-3) unstable; urgency=low |
168 | |
169 | * remove all Courier runtime files on purge of courier-authdaemon |
170 | |
171 | -- Stefan Hornburg (Racke) <racke@linuxia.de> Tue, 6 Jun 2006 04:48:20 +0200 |
172 | |
173 | courier-authlib (0.58-2) unstable; urgency=low |
174 | |
175 | * set ownership of /var/run/courier and /var/run/courier/authdaemon to |
176 | daemon.daemon (Closes: #368358, #368360) |
177 | |
178 | -- Stefan Hornburg (Racke) <racke@linuxia.de> Tue, 23 May 2006 09:43:15 +0200 |
179 | |
180 | courier-authlib (0.58-1.0) unstable; urgency=low |
181 | |
182 | * first upload to unstable |
183 | |
184 | -- Stefan Hornburg (Racke) <racke@linuxia.de> Fri, 12 May 2006 16:53:38 +0200 |
185 | |
186 | courier-authlib (0.58-0.4) experimental; urgency=low |
187 | |
188 | * changed alternative dependency for libmysqlclient-dev to |
189 | libmysqlclient15-dev (Closes: #356728, thanks to Stefan Huehner |
190 | <huehner@unix-ag.uni-kl.de> for the report) |
191 | |
192 | -- Stefan Hornburg (Racke) <racke@linuxia.de> Tue, 14 Mar 2006 11:14:11 +0100 |
193 | |
194 | courier-authlib (0.58-0.3) experimental; urgency=low |
195 | |
196 | * courier-authlib-userdb conflicts with pre-authlib courier-base package |
197 | |
198 | -- Stefan Hornburg (Racke) <racke@linuxia.de> Wed, 11 Jan 2006 09:33:10 +0100 |
199 | |
200 | courier-authlib (0.58-0.2) experimental; urgency=low |
201 | |
202 | * updated config.{guess,sub} to avoid FTBFS on some architectures |
203 | (Closes: #346105, thanks to Petr Salinger |
204 | <Petr.Salinger@t-systems.cz>) |
205 | |
206 | -- Stefan Hornburg (Racke) <racke@linuxia.de> Fri, 6 Jan 2006 11:13:19 +0100 |
207 | |
208 | courier-authlib (0.58-0.1) experimental; urgency=low |
209 | |
210 | * new upstream release |
211 | * transition to new PostgreSQL architecture (Closes: #339297, thanks to |
212 | Martin Pitt <mpitt@debian.org> for the report and the patch) |
213 | * added courier-authlib-mysql/postgresql prerm/postinst scripts to |
214 | restart courier-authdaemon |
215 | |
216 | -- Stefan Hornburg (Racke) <racke@linuxia.de> Thu, 5 Jan 2006 14:58:19 +0100 |
217 | |
218 | courier-authlib (0.57.20051004-2) experimental; urgency=low |
219 | |
220 | * ship configuration files with sane ownership/permissions |
221 | * restoring call to pam_acct_mgmt |
222 | |
223 | -- Stefan Hornburg (Racke) <racke@linuxia.de> Fri, 11 Nov 2005 00:49:19 +0100 |
224 | |
225 | courier-authlib (0.57.20051004-1) experimental; urgency=low |
226 | |
227 | * new upstream release: |
228 | - contains authtest manual page and authpasswd script |
229 | * keep authtest name instead of renaming to courierauthtest, there are |
230 | currently no conflicts with other binaries |
231 | * separate package courier-authlib-pipe for authpipe module |
232 | * revive courier-authdaemon package to allow seamless upgrades from sarge |
233 | * changed FSF address in copyright file |
234 | * changed BuildDepends from libmysqlclient10-dev to libmysqlclient14-dev |
235 | * use DH_COMPAT=4 |
236 | |
237 | -- Stefan Hornburg (Racke) <racke@linuxia.de> Tue, 25 Oct 2005 11:04:45 +0200 |
238 | |
239 | courier-authlib (0.56-0.5) experimental; urgency=low |
240 | |
241 | * added build dependency on procps (Closes: #311976, thanks to Kurt |
242 | Roeckx <kurt@roeckx.be> for the report) |
243 | |
244 | -- Stefan Hornburg (Racke) <racke@linuxia.de> Sat, 4 Jun 2005 22:03:43 +0200 |
245 | |
246 | courier-authlib (0.56-0.4) experimental; urgency=low |
247 | |
248 | * provide proper LDAP configuration file instead of an empty one (thanks |
249 | to Peter Mann <Peter.Mann@tuke.sk> for the report) |
250 | |
251 | -- Stefan Hornburg (Racke) <racke@linuxia.de> Tue, 31 May 2005 14:48:04 +0200 |
252 | |
253 | courier-authlib (0.56-0.3) experimental; urgency=low |
254 | |
255 | * added dependency to courier-authlib-dev on courier-authlib |
256 | * versioned dependencies for courier-authlib-* packages |
257 | |
258 | -- Stefan Hornburg (Racke) <racke@linuxia.de> Tue, 31 May 2005 11:13:01 +0200 |
259 | |
260 | courier-authlib (0.56-0.2) experimental; urgency=low |
261 | |
262 | * removed check for openssl binary (Closes: #311175, thanks to Kenshi |
263 | Muto <kmuto@debian.org> for the report) |
264 | |
265 | -- Stefan Hornburg (Racke) <racke@linuxia.de> Mon, 30 May 2005 13:23:02 +0200 |
266 | |
267 | courier-authlib (0.56-0.1) experimental; urgency=low |
268 | |
269 | * initial release |
270 | |
271 | -- Stefan Hornburg (Racke) <racke@linuxia.de> Fri, 27 May 2005 23:20:21 +0200 |
272 | |