-
amanda (1:3.5.1-11.1) unstable; urgency=medium
* Non-maintainer upload.
* Apply upstream fix for CVE-2023-30577 (Closes: #1055253)
-- Tobias Frost <email address hidden> Sun, 03 Dec 2023 14:09:23 +0100
-
amanda (1:3.5.1-11) unstable; urgency=medium
* d/p/49-fix-CVE-2022-37705_part_2: 48-fix-CVE-2022-37705 broken one use
case at least, this patch fix it, fixing the following two bugs.
* Bug fix: "backups fail with the following summary "FAILED [no
backup size line]"", thanks to Norman Lyon (Closes: #1032330).
* Bug fix: "Amanda is unusable", thanks to Kamil Jonca (Closes:
#1032884).
-- Jose M Calhariz <email address hidden> Tue, 21 Mar 2023 17:35:47 +0000
-
amanda (1:3.5.1-10) unstable; urgency=medium
* d/p/48-fix-CVE-2022-37705: Fix CVE-2022-37705.
* d/p/50-fix-CVE-2022-37704: Partial fix for CVE-2022-37704
* d/p/52-fix-CVE-2022-37704_part_2: Partial fix for CVE-2022-37704,
second vector (RSH).
* d/p/56-fix-CVE-2022-37703: Fix CVE-2022-37703.
* Bug fix: "CVE-2022-37704 CVE-2022-37705", thanks to Salvatore
Bonaccorso (Closes: #1029829).
-- Jose M Calhariz <email address hidden> Sun, 26 Feb 2023 16:53:55 +0000
-
amanda (1:3.5.1-9) unstable; urgency=medium
* debian/amanda-server.README.Debian: Move some text.
* d/p/46-disable-check-hex: Disable hexencode_test, upstream have not
yet fixed the test. (Closes: #1008447).
-- Jose M Calhariz <email address hidden> Tue, 12 Jul 2022 23:56:59 +0100
-
amanda (1:3.5.1-8) unstable; urgency=medium
* Create a new set of config files for quick deploys and update
README.Debian accordingly and specially for auth=ssh.
* Started to debug the behaviour of taperflush and friends. Patch
disabled for now: 42-experimental.
* Bug fix: "Please add support for TI RPC implementation", thanks to
Aurelien Jarno for the patch (Closes: #972435).
* Bug fix: "amanda ftbfs with glibc-2.32", thanks to Matthias Klose
(Closes: #974204).
-- Jose M Calhariz <email address hidden> Sun, 22 Aug 2021 16:34:26 +0100
-
amanda (1:3.5.1-7) unstable; urgency=medium
* Reverting extra changes from 1:3.5.1-6 for possible a release on
bullseye.
-- Jose M Calhariz <email address hidden> Mon, 28 Jun 2021 22:46:06 +0100
-
amanda (1:3.5.1-6) unstable; urgency=medium
* Bug fix: "On a minimal installation there is no Mail command available
to send email", thanks to Jose M Calhariz (Closes: #990080).
-- Jose M Calhariz <email address hidden> Tue, 22 Jun 2021 13:10:01 +0100
-
amanda (1:3.5.1-5) unstable; urgency=medium
* Bump debhelper compatibility level to 10, no changes needed.
* Bump Standards-Version to 4.0.1, problems with reproducible builds
requires further research.
* Temporary fix: "merged /usr and tar path problem in
/etc/amanda-security.conf", thanks to Charles Curley, #939411.
* Bug fix: "'lexical' taperscan in Amanda 3.5 ignores
tapes; pool assignment", thanks to Nathan Stratton Treadway
(Closes: #909231). Was already accepted by upstream.
* Bug fix: "ftbfs with GCC-10", thanks to Matthias Klose and Václav
Doležal (Closes: #956995).
-- Jose M Calhariz <email address hidden> Sun, 02 Aug 2020 21:57:24 +0100
-
amanda (1:3.5.1-4) unstable; urgency=medium
* Move ambind to amanda-common. (Closes: #942828)
* Fix, lexical.pm last_use_label ignores storage field on tapelist.
* Fix for small DLEs.
* Accepted unreleased NMU, thank you Ondřej Nový.
* Fix "amanda-client: HOST localhost ERROR: //192.168.0.250/ftp:
Application 'amsamba': exited with status 1", (Closes: #931622).
* Add libjson-perl to Depends for amanda-common (Closes: #960561).
-- Jose M Calhariz <email address hidden> Tue, 02 Jun 2020 16:15:07 +0100
-
amanda (1:3.5.1-2) unstable; urgency=medium
* Repository moved to salsa.debian.org
* Add patches to fix amanda when there are many clients and some of them
fail: 24-for-jose-server, 28-protocol_check.
* Fix driver when memory allocation may fail: 26-driver-fix-crash.
-- Jose M Calhariz <email address hidden> Sat, 21 Apr 2018 21:29:30 +0100
-
amanda (1:3.5.1-1) unstable; urgency=medium
* New upstream version 3.5.1
* Fix compilation on Solaris
* Do not check all 'r' bit on suid binary
* Fix parsing of configuration override (-o)
- can unset some setting
* client code will not fail if shared memory is not available
* amreport
- lot of improvement
* allow '*' for a datestamp wildcard
* amgetconf
- print an empty string if a parameter is not set instead of 'no
such parameter'
* amdump
- new --no-dump, --no-flush and --no-vault argument
* amstatus fix
* lock holding disk to protect multiple parallel access
* Patches refreshed
* Patches dropped: fix-lintian-miss-spelling-amanda.conf.5.xml,
fix-lintian-miss-spelling-amanda-changers.7.xml,
25-fix-parsing-for-vault-conffile.c,
27-report-crc-errors-Report-human.pm
* Amanda now supports multiple amdumps running at the same time. The
fix "lock holding disk to protect multiple parallel access" is
important for this bug, (Closes: #881754).
-- Jose M Calhariz <email address hidden> Sun, 07 Jan 2018 19:20:39 +0000
-
amanda (1:3.5-2) unstable; urgency=medium
* Add patch: 25-fix-parsing-for-vault-conffile.c
* Add patch: 27-report-crc-errors-Report-human.pm
* Add Breaks and Replaces because some man pages migrated to
amanda-common.
-- Jose M Calhariz <email address hidden> Sun, 05 Nov 2017 15:16:57 +0000
-
amanda (1:3.3.9-5) unstable; urgency=low
* Created branch for the development of amanda for Debian 9 aka stretch.
* Fix "amanda-server: patches for newer smbclient/samba versions in
combination with amsamba", (Closes: #851961).
-- Jose M Calhariz <email address hidden> Tue, 24 Jan 2017 19:29:19 +0000
-
amanda (1:3.3.9-4) unstable; urgency=low
* Fix bug report "amanda-common: Amanda::Changer::robot::Interface::MTX
calls confess but does not use Carp", thank you Will Aoki for the
report and the patch, (Closes: #849481).
* Reproducible fix, use allways /bin/sh instead of @SHELL@, "amanda:
please make the build reproducible (shell), thank you Robbie Harwood
for the report and the patch, (Closes: #847009).
-- Jose M Calhariz <email address hidden> Sat, 07 Jan 2017 17:51:47 +0000
-
amanda (1:3.3.9-3) unstable; urgency=medium
* Add library -lssl to the list of libraries to link, (Closes: #828232, #843852)
* Fix perl depends:
* was missing a perlapi-* depend (Closes: #843700),
* was missing ${perl:Depends} on amanda-client.
-- Jose M Calhariz <email address hidden> Fri, 11 Nov 2016 21:39:15 +0000
-
amanda (1:3.3.9-2) unstable; urgency=medium
* Rebuild using new perl 5.24, (Closes: #839392, #839603).
* Add missing depend to amanda-server on perl.
-- Jose M Calhariz <email address hidden> Mon, 10 Oct 2016 19:33:17 +0100
-
amanda (1:3.3.9-1) unstable; urgency=low
* Imported Upstream version 3.3.9
* Changes for 3.3.9
* new --with-security-file configure option
- It set the default security file
- default to /etc/amanda-security.conf
* security-fix
- All previous release of amanda allow the 'amanda' user to execute
any code as root, and to execute an interactive shell as root.
- This is a security vulnerability if you do not trust the 'amanda'
user.
- There is no need to upgrade if you trust the 'amanda' user and the
account is secure.
- good password
- secure xinetd.conf setting
- securae .amandahosts setting
- The 'amanda' user can read all files in the machine, it is what a
backup program do.
- The set of fix disable the abilities to run unwanted code as root
or to write file anywhere in the filesystem.
* /etc/amanda-security.conf
- A file that contains security setting.
- It list all binaries amanda can execute as root
- restore_by_amanda_user
- It tell if the 'amanda' user can do restore as root.
- It allow the 'amanda' user to write files anywhere in the
filesystem
- see: man amanda-security.conf
* amgtar/amstar/ambsdtar/runtar
- Disable arguments that can fork program.
- Verify the realpath (with symbolic link resolved) is in the
amanda-security.conf file.
- Verify the tar/star/bsdtar realpath program is secure
- owned by root and modifiable only by root.
- On restore, check the restore_by_amanda_user setting if not run
by root.
* Fix to configure and build with future openssl v1.1, but fail to link.
* Bump Standards-Version to 3.9.8, no changes needed.
* New configuration file /etc/amanda-security.conf.
* Update translations pt_BR (Closes: #816961) and tr (Closes: #759871).
* Fix uri on Vcs-* fields.
* Add missing description and author to patches.
* Use set command to setup options of scripts.
* Change to new style of rules.
* Make amanda build reproducible (Closes: #830725). Thank you Chris Lamb.
-- Jose M Calhariz <email address hidden> Sat, 13 Aug 2016 10:13:13 +0100
-
amanda (1:3.3.8-1) unstable; urgency=low
* New Upstream version
* Changes for 3.3.8
* s3 devices
New NEARLINE S3-STORAGE-CLASS for Google storage.
New AWS4 STORAGE-API
* amcryptsimple
Works with newer gpg2.
* amgtar
Default SPARSE value is NO if tar < 1.28.
Because a bug in tar with some filesystem.
* amstar
support include in backup mode.
* ampgsql
Add FULL-WAL property.
* Many bugs fix.
* Changes for 3.3.7p1
* Fix build in 3.3.7
* Changes for 3.3.7
* amvault
new --no-interactivity argument.
new --src-labelstr argument.
* amdump
compute crc32 of the streams and write them to the debug files.
* chg-robot
Add a BROKEN-DRIVE-LOADED-SLOT property.
* Many bugs fix.
* Refreshed patches.
* Dropped patches that were applied by the upstream: fix-misc-typos,
automake-add-missing, fix-amcheck-M.patch,
fix-device-src_rait-device.c, fix-amreport-perl_Amanda_Report_human.pm
* Change the email of the maintainer.
* "wrap-and-sort -at" all control files.
* swig is a new build depend.
* Bump standard version to 3.9.7, no changes needed.
* Replace deprecated dependency perl5 by perl, (Closes: #808209), thank
you Gregor Herrmann for the NMU.
* Move flag -DAMANDATES_FILE from build time to configure time.
* New patch fix-build-amcrc32chw to fix the build of amcr32chw.
* New patch fix-amgtar-exclude to fix problem with corrupted backups
with missing exclude files.
* amanda-common: drop depends on perl and tar.
* Bump debhelper compat mode to 9.
* Rename *.lintian to *.lintian-overrides and start using dh_lintian.
* Remove old depends and replaces on amanda-common.
* Stop editing amanda-*.substvars.
-- Jose M Calhariz <email address hidden> Sun, 03 Apr 2016 20:57:58 +0100
-
amanda (1:3.3.6-4.1) unstable; urgency=medium
* Non-maintainer upload with maintainer's permission.
* Fix "Depends on virtual package "perl5" which will is gone with
perl/5.22":
debian/control: drop "perl5" / replace it with "perl" in Depends/Suggests.
(Closes: #808209)
-- gregor herrmann <email address hidden> Tue, 29 Dec 2015 02:11:15 +0100
-
amanda (1:3.3.6-4) unstable; urgency=medium
* fix amreport with perl 5.20 (Closes: 760846).
-- Jose M Calhariz <email address hidden> Tue, 04 Nov 2014 22:46:09 +0000
-
amanda (1:3.3.6-3) unstable; urgency=low
* Adopting package (Closes: 700484).
* Merge work done by William Blough/Bill Blough:
* fix-amserverconfig-template-path: fix directory hierarchy for
amserverconfig template files.
* fix-misc-typos: fix typo errors in various source files, (Closes:
724075)
* fix-lintian-manpage-warnings:
* Fix line breaks in man page.
* Fix FHS deviations in the man page.
* Update default directories to not use /usr/adm.
* automake-add-missing: let automake install missing files.
* Link upstream changelogs from -common package to -client and
-server packages.
* Add additional hardening flags.
* Fix bug "amanda-server: amcheck -M <email> does not work", (Closes:
#726798).
* Add PL translation (Closes: 731383).
* Create a TODO.
* fix-device-src_rait-device.c: Fix bug "Wrong use of unconverted
op->result instead of result", (Closes: 688466)
* Remove obsolete emacs variables.
* amanda-client: Add depends on libxml-simple-perl, (Closes: 732017).
-- Jose M Calhariz <email address hidden> Sat, 30 Aug 2014 00:17:47 +0100
-
amanda (1:3.3.6-1) unstable; urgency=low
* QA upload.
* New upstream release
- include swig 3.0.2: fix FTBFS with Perl 5.20: needs SWIG regeneration
(Closes: #752024)
* debian/patches
- drop gets-undef-ftbfs: it's unnecessary
* debian/control
- set Standards-Version: 3.9.5
- move Vcs repository to alioth collabmaint
-- Hideki Yamane <email address hidden> Wed, 30 Jul 2014 23:20:42 +0900
-
amanda (1:3.3.3-3) unstable; urgency=medium
* QA upload.
* debian/control
- add "Build-Depends: libssl-dev" to fix FTBFS (Closes: #747710)
-- Hideki Yamane <email address hidden> Tue, 27 May 2014 21:37:31 +0900
-
amanda (1:3.3.3-2) unstable; urgency=low
* QA upload.
[ Daniel T Chen ]
* Modified bundled stdio to check conditionally for gets(), fixing FTBFS
(closes: #701387).
-- Colin Watson <email address hidden> Tue, 14 May 2013 16:27:56 +0100
-
amanda (1:3.3.3-1) unstable; urgency=low
* orphan this package
* new upstream version, closes: #697783
* fix hard-coded amandabackup user in many scripts and docs,
closes: #693333, $699454
* fix amserverconfig trying to create /var/lib/lib/amanda, closes: #693331
-- Bdale Garbee <email address hidden> Wed, 20 Feb 2013 11:12:55 -0700
-
amanda (1:3.3.1-4) unstable; urgency=low
* eliminate spurious empty /var/log/amanda directory in amanda-server package
that generates piuparts errors, closes: #681568
-- Bdale Garbee <email address hidden> Sat, 14 Jul 2012 15:14:22 -0600
-
amanda (1:3.3.1-3) unstable; urgency=low
* patch from Robert Milan to fix kfreebsd FTBFS, closes: #667836
* patch from amanda-users mailing list via Jose Manuel dos Santos Calhariz
that fixes amrecover issue with VTAPE access, closes: #666088
-- Bdale Garbee <email address hidden> Thu, 12 Apr 2012 23:29:14 -0600
-
amanda (1:3.3.1-2) unstable; urgency=low
* patch from Michael Biebl to elide g_queue_free_full definition that
conflicts with glib 2.32 but isn't actually used, closes: #665675
-- Bdale Garbee <email address hidden> Tue, 03 Apr 2012 07:18:07 -0700
-
amanda (1:3.3.1-1) unstable; urgency=low
* new upstream version, closes: #655025, #658933
* enable hardening build flags, closes: #644437
* include Indonesian translation, closes: #658482
* relax build-deps by having dump and xfsdump only required on linux-any,
to allow amanda to build on kFreeBSD, closes: #661702
* clean up and expand the delivery of examples, closes: #496286, #647550
-- Bdale Garbee <email address hidden> Tue, 20 Mar 2012 14:59:38 +0100
-
amanda (1:3.3.0-1) unstable; urgency=low
* new upstream version, closes: #641453
* lots of packaging cleanup
* consolidate inetd and xinetd config handling in amanda-common package
* add a NEWS entry explaining the switch to bsdtcp auth as default
-- Bdale Garbee <email address hidden> Tue, 13 Sep 2011 12:42:40 -0600
-
amanda (1:3.2.1-1.1) unstable; urgency=low
* non-maintainer upload * clear dependency_libs in *.la files, closes: #621214 -- Luk Claes <email address hidden> Sat, 28 May 2011 17:04:18 +0200
-
amanda (1:3.2.1-1) unstable; urgency=low
* new upstream version, closes: #613178 * enable support for Amazon S3 storage on request from Christopher McCrory * fix for dh_perl usage to include private library, closes: #582220 * merge updated Vietnamese debconf translation, closes: #601919 * merge updated Danish debconf translation, closes: #608435 * merge updated Arabic debconf translation, closes: #596178 -- Bdale Garbee <email address hidden> Sun, 27 Feb 2011 11:54:58 -0700
-
amanda (1:3.2.0-1) unstable; urgency=low
* new upstream version -- Bdale Garbee <email address hidden> Wed, 01 Dec 2010 20:39:49 -0700
-
amanda (1:3.1.0-1) unstable; urgency=low
* new upstream version
-- Bdale Garbee <email address hidden> Mon, 14 Jun 2010 13:46:03 -0600
-
amanda (1:2.6.1p2-2) unstable; urgency=low
* add build depend on procps, closes: #552390
* add dh_perl call to rules and ${perl:Depends} to amanda-common deps so
that we comply with Perl policy, closes: #582220
-- Bdale Garbee <email address hidden> Mon, 14 Jun 2010 10:21:11 -0600
-
amanda (1:2.6.1p2-1) unstable; urgency=low
* new upstream version
* move more files out of amanda-common that really belong elsewhere
* deliver /usr/lib/amanda/application/am[gs]tar setuid, closes: #558094
* leave user backup groups alone on purge, closes: #572933
-- Bdale Garbee <email address hidden> Mon, 15 Mar 2010 15:23:20 -0600
-
amanda (1:2.6.1p1-2) unstable; urgency=low
* calcsize needs to be setuid, closes: #551156
* patch from upstream to fix init of xml_app.result in diskfile.c,
closes: #550098
* add note to server package README.Debian regarding mtio operations that
take too long putting noise in dmesg, closes: #506397
* merge Finnish translation of the debconf templates, closes: #535214
-- Bdale Garbee <email address hidden> Fri, 16 Oct 2009 02:10:52 -0600
-
amanda (1:2.6.1p1-1) unstable; urgency=low
* new upstream version, closes: #527090, #527489, #486405, #488713
* tweak configure to ensure ssh support is enabled, closes: #524618, #492352
* update debian/control to include my git packaging repo location
* resolve possible bashisms, closes: #530041
-- Bdale Garbee <email address hidden> Tue, 08 Sep 2009 11:40:42 -0600
-
amanda (1:2.5.2p1-5) unstable; urgency=low
* add --without-ipv6 as a short-term fix for amdump connectivity problems,
closes: #482754, #501281, #470202
-- Bdale Garbee <email address hidden> Thu, 26 Mar 2009 22:52:51 -0600
-
amanda (1:2.5.2p1-4) unstable; urgency=high
* high priority bug fixes intended for lenny release
* update version thresholds in Replaces to ease upgrades, closes: #476583
* don't set maxdumpsize in the default amanda.conf, closes: #475524
* freshen to latest standards version
* revert chg-multi.sh.in and patch since the new version previously pulled
in caused more problems than it solved, closes: #486384
* undo traps on amverify exit to prevent double reports, closes: #487405
* correct paths in amcrypt-ossl-asym(8) xml source, closes: #486739
-- Bdale Garbee <email address hidden> Sat, 16 Aug 2008 16:03:27 -0300
