-
dpkg (1.16.18) wheezy; urgency=medium
* Remove trailing space before handling blank line dot-separator in
Dpkg::Control::Hash. Regression introduced in dpkg 1.16.16.
Reported by Jakub Wilk <email address hidden>. Closes: #789580
* Only use the SHELL environment variable for interactive shells.
Closes: #788819
* Move tar option --no-recursion before -T in dpkg-deb. With tar > 1.28 the
--no-recursion option is now positional, and needs to be passed before
the -T option, otherwise the tarball will end up with duplicated entries.
Thanks to Richard Purdie <email address hidden>.
Closes: #807940
* Initialize Config-Version also for packages previously in triggers-pending
state, otherwise we end up not passing the previously configured version
to «postinst configure», which might consider this a first install instead
of an upgrade. Closes: #801156
* Fix memory leaks in dpkg infodb format upgrade logic.
* Fix physical file offset comparison in dpkg. Closes: #808912
Thanks to Yuri Gribov <email address hidden>.
* Do not accept empty field names in dpkg. Closes: #769111
* When sys_siglist is defined in the system, try to use NSIG as we cannot
compute the array size with sizeof(). If NSIG is missing fallback to 32
items. Prompted by Igor Pashev <email address hidden>.
-- Guillem Jover <email address hidden> Sun, 20 Mar 2016 10:23:24 +0100
-
dpkg (1.16.17) wheezy-security; urgency=high
[ Guillem Jover ]
* Fix an off-by-one write access in dpkg-deb when parsing the .deb magic.
Reported by Jacek Wielemborek <email address hidden>. Closes: #798324
* Fix an off-by-one write access in dpkg-deb when parsing the old format
.deb control member size. Thanks to Hanno Böck <email address hidden>.
Fixes CVE-2015-0860.
* Fix an off-by-one read access in dpkg-deb when parsing ar member names.
Thanks to Hanno Böck <email address hidden>.
[ Updated programs translations ]
* Catalan (Jordi Mallach).
[ Updated man page translations ]
* Fix incorrect translation in German (Helge Kreutzmann)
-- Guillem Jover <email address hidden> Wed, 25 Nov 2015 22:34:58 +0100
-
dpkg (1.16.16) wheezy-security; urgency=high
[ Guillem Jover ]
* Do not leak long tar names on bogus or truncated archives.
* Do not leak the filepackages iterator when a directory is used by other
packages.
* Do not leak color string on «dselect --color».
* Fix memory leaks when parsing alternatives.
* Fix memory leaks in buffer_copy() on error conditions.
* Fix possible out of bounds buffer read access in the error output on
bogus ar member sizes.
* Fix file triggers/Unincorp descriptor leak on subprocesses. Regression
introduced with the initial triggers implementation in dpkg 1.14.17.
Closes: #751021
* Fix a descriptor leak on dselect subprocesses when --debug is used.
* Do not run qsort() over the scandir() list in libcompat if it is NULL.
* Fix off-by-one stack buffer overrun in start-stop-daemon on GNU/Linux and
GNU/kFreeBSD if the executable pathname is longer than _POSIX_PATH_MAX.
Although this should not have security implications as the buffer is
surrounded by two arrays (so those catch accesses even if the stack
grows up or down), and we are compiling with -fstack-protector anyway.
* Add a workaround to start-stop-daemon for bogus OpenVZ Linux kernels that
prepend, instead of appending, the " (deleted)" marker in /proc/PID/exe.
Closes: #731530
* Fix off-by-one error in libdpkg command argv size calculation.
Based on a patch by Bálint Réczey <email address hidden>. Closes: #760690
* Escape package and architecture names on control file parsing warning,
as those get injected into a variable that is used as a format string,
and they come from the package fields, which are under user control.
Regression introduced in dpkg 1.16.0. Fixes CVE-2014-8625. Closes: #768485
Reported by Joshua Rogers <email address hidden>.
* Do not match partial field names in control files. Closes: #769119
Regression introduced in dpkg 1.10.
* Fix out-of-bounds buffer read accesses when parsing field and trigger
names or checking package ownership of conffiles and directories.
Reported by Joshua Rogers <email address hidden>.
* Add powerpcel support to cputable. Thanks to Jae Junh <email address hidden>.
* Fix OpenPGP Armor Header Line parsing in Dpkg::Control::Hash. We should
only accept [\r\t ] as trailing whitespace, although RFC4880 does not
clarify what whitespace really maps to, we should really match the GnuPG
implementation anyway, as that's what we use to verify the signatures.
Reported by Jann Horn <email address hidden>. Fixes CVE-2015-0840.
[ Raphaël Hertzog ]
* Drop myself from Uploaders.
[ Updated scripts translations ]
* Fix typos in German (Helge Kreutzmann)
* Swedish (Peter Krefting).
[ Updated man page translations ]
* Fix typos in German (Helge Kreutzmann)
* Swedish (Peter Krefting).
-- Guillem Jover <email address hidden> Thu, 09 Apr 2015 08:45:47 +0200
-
dpkg (1.16.15) wheezy-security; urgency=high
[ Guillem Jover ]
* Test suite:
- Add test cases for Dpkg::Source::Patch CVE-2014-0471 and CVE-2014-3127.
- Add test case for patch disabling hunks; not security sensitive.
* Correctly parse patch headers in Dpkg::Source::Patch, to avoid directory
traversal attempts from hostile source packages when unpacking them.
Reported by Javier Serrano Polo <email address hidden> as an unspecified
directory traversal; meanwhile also independently found by me both
#749183 and what was supposed to be #746498, which was later on published
and ended up being just a subset of the other non-reported issue.
Fixes CVE-2014-3864 and CVE-2014-3865. Closes: #746498, #749183
[ Updated programs translations ]
* Merge translated strings from master.
[ Updated scripts translations ]
* German (Helge Kreutzmann).
[ Updated man page translations ]
* Merge translated strings from master.
* Unfuzzy or update trivial translations (Guillem Jover).
-- Guillem Jover <email address hidden> Thu, 05 Jun 2014 22:24:36 +0200
-
dpkg (1.16.12) stable; urgency=low
* Fix value caching in Dpkg::Arch by not shadowing the variables.
Closes: #724949
-- Guillem Jover <email address hidden> Mon, 30 Sep 2013 16:52:37 +0200
-
dpkg (1.16.10) unstable; urgency=low
[ Guillem Jover ]
* Fix typos in 1.16.9 changelog entry. Closes: #691954
Thanks to Nicolás Alvarez <email address hidden>.
* Add missing @LIBLZMA_LIBS@ to Libs.Private in libdpkg.pc.in.
* Do not use an undefined va_list variable in dpkg_put_errno().
* Abort installation if we cannot set the security context for a file.
* Fix OpenPGP armored signature parsing, to be resilient against doctored
input, including source package control files. Closes: #695919
* Make sure the OpenGPG armor contains a signature block, even on EOF.
* Do not accept Armor Header Lines inside a paragraph.
* Do not abort dselect when multiarch is detected, as that only makes
users downgrade and hold on an older version w/ worse multiarch support.
* Fix warning in Dpkg::Source::Archive with «perl -w» due to redefinition
of getcwd() by removing unused POSIX modules usage. Closes: #700978
[ Updated programs translations ]
* Esperanto (Felipe Castro).
* Spanish (Javier Fernández-Sanguino).
* Vietnamesea (Trần Ngọc Quân). Closes: #692100
[ Updated scripts translations ]
* Fix mistranslation in French translation of scripts.
Thanks to Filipus Klutiero. Closes: #698530
* Fix typos in French translation of scripts.
Thanks to Sylvestre Ledru. Closes: #702627
* Fix Russian translation (wrong order of parameters in a string).
Thanks to Andrey Rahmatullin for noticing and Yuri Kozlov for fixing
the translation. Closes: #698869
-- Guillem Jover <email address hidden> Fri, 08 Mar 2013 04:41:26 +0100
-
dpkg (1.16.9) unstable; urgency=low
[ Raphaël Hertzog ]
* Fix dpkg-source regression in "3.0 (quilt)" source packages while
unapplying patches that remove all files in a directory. Closes: #683547
* Fix segfault in field format parsing on empty strings, affecting
«dpkg-query -W -f ''» and «dpkg-deb -W --showformat=''». LP: #1035512
* Fix dpkg's French usage string which was missing the final “s“ in
--print-foreign-architectures. Closes: #685863
[ Guillem Jover ]
* Use “statoverrides” instead of “statusoverrides” in dpkg-statoverride.
Closes: #686995
* Comment out dpkg(1) documentation about disabled --command-fd option.
Closes: #685677
* Cleanup dpkg-divert unit-test environment to avoid build failures.
Closes: #687656
* Fix update-alternatives test suite to behave correctly on non-Debian
binary paths. Known to be affecting at least Gentoo and Mac OS X.
* Do not leak subcall command arguments in update-alternatives.
* Fix segfault on update-alternatives when passing --slave without any
action at all. LP: #1037431
* Fix memory leak in dpkg filesavespackage().
* Do not print garbage (or worse) on dpkg shared conffile debug output.
* Use a hash instead of a ref to a hash for keys() in Dpkg::BuildFlags
get_feature_areas(). This causes compilation failures with older perl
versions, which can be an issue with partial upgrades.
* Fix filter subpattern debug output format string to print an actual
value instead of just blanks.
* Ignore trailing filter subpattern slashes on reinclusion comparison.
This makes sure to reinclude directories previously excluded so that
contained files marked for inclusion do not fail to unpack due to a
missing directory. Closes: #688416
* Do not consider obsolete conffiles as actively owned by the package.
This ensures conffile entries are not misshandled nor mixed up when
configuring packages owning the non-obsolete conffiles. Closes: #689836
Based on a patch by Andreas Beckmann <email address hidden>.
* Properly mark in the database obsolete conffiles on package replaces.
* Sync the Conffiles field values for all package instances. Because
only the first package instance being configured will have a *.dpkg-new
conffile available to be processed, the subsequent ones need to use the
hash from the previously processed entries.
* Fix logic for previously configured conffiles, so that the shared
conffile checks actually work on reinstallation. Closes: #684776
* Avoid info database corruption and bogus accesses on unknown format
values, by always reading the format file and validating it.
* Clarify that the most probable reason for multiarch database
inconcistencies is due to upgrades from unofficial dpkg versions.
* Only satisfy a dependency on a “Multi-Arch: foreign” if arch-unqualified.
* Take architecture into account in virtual packages on remove and
configure dpkg actions. Closes: #683411
* Update update-alternatives --query format and examples in man page to
match the implementation.
* Add two missing 3rd person ‘s’ in dpkg-gensymbols(1). Closes: #689863
Thanks to Paul Menzel <email address hidden>.
* Fix regression on old-style binNMUs for packages that specify an
explicit binary version to dpkg-gencontrol, by always fixing up the
source version. Closes: #690823
[ Updated programs translations ]
* Catalan (Guillem Jover).
* Czech (Miroslav Kure).
* Danish (Joe Dalton). Closes: #690808
* French (Christian Perrier).
* German (Sven Joachim).
* Italian (Milo Casagrande).
* Japanese (Kenshi Muto).
* Polish (Michał Kułach). Closes: #690449
* Portuguese (Miguel Figueiredo). Closes: #682582, #690431
* Russian (Yuri Kozlov). Closes: #688050, #690415
* Slovak (Ivan Masár). Closes: #690426
* Swedish (Peter Krefting).
* Thai (Theppitak Karoonboonyanan). Closes: #690678
* Traditional Chinese (imacat). Closes: #687002
[ Updated scripts translations ]
* Polish (Michał Kułach). Closes: #683104
* Spanish (Omar Campagne). Closes: #685297
[ Updated dselect translations ]
* Basque (Iñaki Larrañaga Murgoitio). Closes: #686421
* Czech (Miroslav Kure).
* Danish (Joe Dalton). Closes: #689820
* Polish (Michał Kułach).
[ Updated man page translations ]
* French (Thomas Vincent, Sylvestre Ledru, Christian Perrier).
Closes: #682978, #683221
* German (Helge Kreutzmann).
* Japanese (Hideki Yamane). Closes: #685103
* Polish (Michał Kułach).
* Spanish (Omar Campagne, Guillem Jover). Closes: #683514
* Swedish (Peter Krefting).
-- Guillem Jover <email address hidden> Sat, 20 Oct 2012 05:59:50 +0200
-
dpkg (1.16.8) unstable; urgency=low
[ Updated programs translations ]
* Esperanto (Felipe Castro).
* French (Christian Perrier).
* Polish (Michał Kułach). Closes: #680561
* Russian (Yuri Kozlov). Closes: #677850, #680411
* Slovak (Ivan Masár).
* Spanish (Javier Fernández-Sanguino)
[ Updated man page translations ]
* French (Christian Perrier).
[ Updated scripts translations ]
* French (Christian Perrier).
* Russian (Yuri Kozlov).
[ Updated dselect translations ]
* Danish (Joe Dalton). Closes: #680108
* Russian (Yuri Kozlov).
* Traditional Chinese (Asho Yeh - 阿信).
-- Guillem Jover <email address hidden> Sat, 21 Jul 2012 02:11:04 +0200
-
dpkg (1.16.4.3) unstable; urgency=low
* On «update-alternatives --install» only warn for now on out of range
priorities and clamp the values, as there seems to be packages using
priorities > INT_MAX, which although bogus as they were previously
overflowing the int used to store them, that would cause installation
failures when upgrading from squeeze. This will be reverted to an
error after wheezy. Closes: #676874
-- Guillem Jover <email address hidden> Sun, 17 Jun 2012 10:56:15 +0200
-
dpkg (1.16.3) unstable; urgency=low
[ Guillem Jover ]
* Do not look for newline beyond the read buffer on dpkg-deb extract.
* Check update-alternative name and link arguments for all commands.
Closes: #665050
* Check all dpkg-divert filename arguments to be absolute and to not
contain newlines. Closes: #21722
* Print errors while reading the file list files on a new line instead
of just after the progress percentage. Closes: #552517
* Document in dpkg-source(1) that patches for source format “3.0 (quilt)”
are expected to apply without any fuzz. Closes: #666752
Based on a patch by Luca Capello <email address hidden>.
* Remove redundant -Wformat-security from default dpkg-buildflags, which
is already implied by -Werror=format-security. Closes: #664964
Suggested by Peter Eisentraut <email address hidden>.
* Document in dpkg-query(1) that commands producing multiple paragraphs
will preserve the order of the packages specified on the argument list.
* Change start-stop-daemon --exec on GNU/Hurd, FreeBSD, NetBSD, OpenBSD
and Solaris to check for executables matching device and inode numbers
instead of filenames.
* Change start-stop-daemon --name on GNU/Hurd to check the process' argv[1]
in addition to argv[0], to handle both binaries and interpreted scripts.
Reported by Mats Erik Andersson <email address hidden>.
* Handle deb format versions as major.minor integers instead of strings or
floats, the latter being susceptible to parsing errors depending on the
current locale (although this was only affecting the old deb format).
* Ignore the minor format version number for deb-split format, unifying
the behaviour with the deb format.
* Add support for an abitable containing arch attribute overrides.
* Add x32 support to abitable, ostable and triplettable. Closes: #667037
* Fix start-stop-daemon to work with relative --exec arguments and --chdir.
Closes: #669047
* Ignore request to rename a file owned by the diverting package on
«dpkg-divert --add --rename». Closes: #588077
* Clarify dpkg-gensymbols(1) by way of examples that architecture wildcards
are supported in symbols files. Closes: #670048
* Fix memory leak due to Dpkg::Control objects not being garbage-collected.
Thanks to Ben Harris <email address hidden>. Closes: #669012
* Compute the md5sum hash on unpack for empty files too, so that these
can be checked correctly for matching content when installing multiple
package instances.
* Generate md5sums files automatically at unpack time if missing from the
binary package. Closes: #155676, #155799
* Add missing list and md5sums database file checks to «dpkg --audit».
[ Helge Kreutzmann ]
* Fix a typo in man/dpkg-buildflags.1.
[ Updated dpkg translations ]
* French (Christian Perrier).
* German (Sven Joachim).
* Swedish (Peter Krefting).
[ Updated dselect translations ]
* French (Christian Perrier).
* German (Sven Joachim).
* Swedish (Peter Krefting).
[ Updated scripts translations ]
* French (Christian Perrier).
* Swedish (Peter Krefting).
[ Updated scripts translations ]
* French (Christian Perrier).
* German (Helge Kreutzmann).
* Swedish (Peter Krefting).
-- Guillem Jover <email address hidden> Fri, 27 Apr 2012 10:10:10 +0200
-
dpkg (1.16.2) unstable; urgency=low
[ Guillem Jover ]
* Move <config.h> and <compat.h> to the top of trigdeferred.l to properly
use the configured features and compat code.
* Honour --disable-nls when the system lacks obstack support, by updating
the obstack compat module from gnulib.
* Link the libdpkg unit tests with libcompat and libintl, so that systems
needing them will compile correctly.
* Check for the presence of the strnlen declaration and correctly provide
the compat one in case the systems lacks it.
* Do not assume existence of paths on the build system in the test suite.
* Do not fail to link dselect on MacOS X when using --disable-nls.
* Remove versioned coreutils Pre-Depends from dpkg due to the ancient
md5sum transition. Reported by Bill Allombert <email address hidden>.
Closes: #643746
* Change dpkg-architecture to only compute the requested variables. This:
- Fixes the bootstrapping problem, as the dpkg build system only needs
the host architecture, for which dpkg itself is not required.
- Reduces the amount of work performed, including loading and parsing
unnecessary table files or calling either of gcc or dpkg programs.
* Improve error message in dpkg-gencontrol and dpkg-gensymbols when
debian/control does not have any package stanza. Closes: #642473
Based on a patch by Kyle Willmon <email address hidden>.
* Add Pre-Depends on tar >= 1.23 (satisfied in stable) to dpkg due to it
using the ‘--warning=no-timestamp’ option. Closes: #642802
* Do not segfault on GNU/Linux when dpkg cannot retrieve the block size
for the filesystem containing the info database. LP: #872734
* Fix two memory leaks per tar entry in the tar extractor used on unpack.
* Mark dpkg and dselect as Multi-Arch foreign.
Reported by Steve Langasek <email address hidden>.
* Mark dpkg-dev and libdpkg-perl as Multi-Arch foreign. Closes: #648217
Thanks to Colin Watson <email address hidden>.
* Add new deb-origin.5 man page. Closes: #608884
Thanks to Matt Kraai <email address hidden>.
* Return correct status on start-stop-daemon --status when using --pidfile.
* Treat dpkg-deb compression level independently for each backend. This
has the effect of changing the current behaviour for level 0 on all
compressors except gzip.
* Add new dpkg-deb -S option to specify the compression strategy. The only
currently supported value is “extreme” for xz. Closes: #647915
* Stop using brace expansion to install man pages by using dh_installman
instead of dh_install, the former does not abort on empty glob expansion.
* Do not use absolute paths for programs in perl and shell code.
* Add missing ‘*’ in asprintf() and vasprintf() compat declarations.
* Add support for virtual output binary:Summary and db:Status-Abbrev fields.
Closes: #192619, #427945
* Add support for virtual output source:Package and source:Version fields.
Closes: #653575
* Use a different temporary file per process on libcompat's vsnprintf()
function to avoid race conditions from children after fork(3).
Reported by Daniel Ruoso <email address hidden>. Closes: #655411
* Fix start-stop-daemon --exec and --name options on FreeBSD, NetBSD and
OpenBSD by swapping the process matching implementations.
* Fix start-stop-daemon --name option on GNU/Hurd to match the process name.
* Document in more detail the implications of start-stop-daemon matching
options. Closes: #367608
* Improve and clarify dpkg-shlibdeps superfluous linking warning messages.
Based on a patch by Peter Eisentraut <email address hidden>. Closes: #656496
* Relax --merge-avail Packages file parser, to not fail on bogus versions.
* When building only arch-indep binaries with «dpkg-buildpackage -A», name
the .changes file using ‘all’ as architecture. Closes: #661638
* Handle unknown architectures gracefully in dpkg-buildflags.
Closes: #663004
* Add missing --status-logger to dpkg --help output.
* Do not print bogus errno string for invalid package names in dpkg
--ignore-depends option.
* Change dpkg-query to not load the available file by default for --list
and --show, add a new --load-avail option to expose the old behaviour.
* Only allow setting selections via «dpkg --set-selections» for known
packages (i.e. those present in either the status or available files).
* Always ignore older versions when parsing the available file, not only
for --update-avail and --merge-avail.
* Mark not-installed non-arch-qualified selections for removal.
* Add new «dpkg --assert-multi-arch» command to allow checking for
multi-arch support availability.
* Bump Standards-Version to 3.9.3 (no changes needed).
* Add architecture consistency checks to «dpkg --audit».
* Add new dpkg --add-architecture and --remove-architecture commands to
track supported architectures.
[ Raphaël Hertzog ]
* Update Dpkg::Shlibs to look into multiarch paths when cross-building
too. Closes: #595144
* Rewrite architecture.mk with explicit loops instead of duplicating many
similar lines. Based on a patch by Thorsten Glaser <email address hidden>.
* Modify dpkg-gencontrol and dpkg-distaddfile to grab a write lock
on debian/control before updating debian/files to avoid simultaneous
updates. Closes: #642608
Add libfile-fcntllock-perl to dpkg-dev's Depends since we use this module
to handle the locking.
* Update dpkg-gensymbols(1) to clarify that -e accepts shell patterns
expansions and not regular expressions. And let dpkg-gensymbols output a
warning when a pattern doesn't match any file. Closes: #649248
* Add new option "-a <arch>" to dpkg-checkbuilddeps to check build
dependencies for another architecture. This is really basic for now since
it assumes all build dependencies must be satisfied on the listed
architecture. Closes: #648180 Thanks to Colin Watson for the patch.
* Error out if a dpkg database .list file is not a regular file. LP: #369898
* Fix dpkg-mergechangelogs to not error out on invalid versions.
Closes: #651993
* Fix dpkg-source --commit on "3.0 (quilt)" when an explicit patch file
is given with a relative filename. Closes: #652414
* Further clarify in dpkg-source(1) the conditions under which it's possible
to pass an explicit patch file to dpkg-source --commit.
* Add new --query-features command to dpkg-buildflags. Thanks to Kees Cook
for the patch. Closes: #651481
* Fix description of Multi-Arch in deb-control(5). Closes: #654453
Thanks to Jakub Wilk for spotting the mistake.
* Drop misleading spaces in deb-symbols(5) in the format description.
* Clean up dpkg-architecture(1) dropping useless information and
adding a reference to /usr/share/dpkg/architecture.mk.
* Update dpkg-buildpackage to use the "build-arch" (for -B) and
"build-indep" (for -A) targets unless "make -qn" says that they do not
exist. Closes: #229357
* Improve deb-shlibs(5) to mention that the dependency field must
use the same syntax than a Depends field. Closes: #658696
* Update dpkg-maintscript-helper(1) to recommend usage of the version
removing/renaming a conffile with a "~" suffix as "priorversion"
parameter. Thanks to Sam Morris <email address hidden> for the patch.
Closes: #658854
* Fix debug output of dpkg-maintscript-helper. LP: #936340
[ Jonathan Nieder ]
* Bump po4a version in Build-Depends to 0.41, since earlier versions do
not handle --srcdir correctly. Closes: #644370
[ Guillem Jover, Steve Langasek, Raphaël Hertzog ]
* Add new dpkg --print-foreign-architectures command.
* Add support for virtual output binary:Package field.
* Implement Multi-Arch support.
[ Helge Kreutzmann ]
* Fix a typo in man/dpkg-deb.1.
[ Updated dpkg translations ]
* German (Sven Joachim).
* Italian (Milo Casagrande). Closes: #627832, #657849
* Swedish (Peter Krefting).
* French (Christian Perrier)
* Polish (Michał Kułach). Closes: #658126
[ Updated scripts translations ]
* German (Helge Kreutzmann).
* Spanish (Omar Campagne). Closes: #636238
* Swedish (Peter Krefting).
[ Updated man page translations ]
* German (Helge Kreutzmann), including typo fix in dpkg-genchanges
Closes: #646496, sub optimal translation of package states LP: #368783
and an fix by Chris Leick
* Japanese (TAKAHASHI Motonobu).
* Spanish (Omar Campagne). Closes: #643969
* Swedish (Peter Krefting).
* Minor errors corrected in French (thanks to David Prévot)
* Fix translation of -B and -A options of dpkg-buildpackage.
Thanks to Vincent Danjean. Closes: #654626
[ Updated dselect translations ]
* Dutch (Jeroen Schot). Closes: #651813
-- Guillem Jover <email address hidden> Mon, 19 Mar 2012 07:27:12 +0100
-
dpkg (1.16.1.2) unstable; urgency=medium
[ Raphaël Hertzog ]
* Fix another typo to correctly set DEB_*_ARCH_BITS in architecture.mk.
* Set urgency to medium as changes are minor, and it should migrate
quickly in case 1.16.2 comes soon.
[ Jonathan Nieder ]
* Update dpkg-buildflags(1) to note that the processor option
-D_FORTIFY_SOURCE=2 is set in CPPFLAGS now instead of CFLAGS and
CXXFLAGS. Closes: #646073
-- Raphaël Hertzog <email address hidden> Fri, 25 Nov 2011 11:18:30 +0100
-
dpkg (1.16.1.1) unstable; urgency=low
[ Raphaël Hertzog ]
* Fix dpkg-source to not ignore the automatic patch when checking
for unrecorded changes. Closes: #643148
* Let dpkg-source --commit create debian/patches when required.
Closes: #643037
* Fix dpkg-buildflags --dump to return 0 as exit code and not 1.
* Update dpkg-buildflags(1) to not include quotes in the examples
setting DEB_BUILD_MAINT_OPTIONS.
* Stop outputting build flags in dpkg-buildpackage as it confuses
maintainers who are overriding them in debian/rules and who
are not seeing the expected value in the build log.
* Fix trigger setup code to not reset the status of packages
when they are in a status different from triggers-awaited,
triggers-pending or installed. Closes: #644492
* Fix dpkg-source to ignore changes on debian/patches/.dpkg-source-applied
when building a "2.0" source package. Closes: #642656
* Fix buildflags.mk to re-export the environment variables that
the maintainer can use to change the build flags. Closes: #644412
[ Guillem Jover ]
* Change dpkg-buildflags to set preprocessor option -D_FORTIFY_SOURCE=2
in CPPFLAGS, instead of CFLAGS and CXXFLAGS. Closes: #642521, #643632
* Fix typo to correctly set DEB_*_ARCH_BITS instead of DEB_*_ARCH in
architecture.mk. Thanks to Thorsten Glaser <email address hidden>.
* Make dpkg-buildflags disable full relro (bindnow) if relro is not enabled.
-- Guillem Jover <email address hidden> Fri, 14 Oct 2011 07:08:31 +0200
-
dpkg (1.16.1) unstable; urgency=low
[ Raphaël Hertzog ]
* Dpkg::Deps: Implement new "reset" method and bump module version to 1.01
due to this.
* Improved description of --search in dpkg-query(1). Closes: #621066
Thanks to Lars Buitinck <email address hidden> for the patch.
* Let update-alternatives fsync() its administrative files before
moving them in place to avoid empty files with some filesystems.
LP: #344019
* Tighten the regexp used by dpkg-source to ignore the .pc directory of
quilt. Thanks to Mike Hommey for noticing the problem.
* Change behaviour of dpkg-source's --extend-diff-ignore to also
extend the current diff-ignore if it has already been set.
* Fix dependency checking code to consider a dependency on a virtual
package provided by a package in triggers-pending status as satisfied.
* Do not fail when encountering a pre-dependency in triggers-awaited state,
instead process the awaited triggers. Closes: #526774
* "any" no longer hides "all" in the Architecture field of a .dsc.
* Fix dpkg --remove to really remove the triggers from the various
internal files in /var/lib/dpkg/info/triggers/. Closes: #525160
* Avoid a perl warning in dpkg-gensymbols when no symbols file has been
generated (because it would have been empty). Closes: #626684
* Re-enable the Package-List field but drop the Architecture column since we
have no clear use case yet. It can always be added later on.
Also drop the source line since it duplicates other fields.
Closes: #619131
* Add the extraction part of Dpkg::Source::Package to the supported API.
Useful to extract source packages without having to depend on dpkg-source
(and hence dpkg-dev).
* Add the Dpkg::Vendor module to the supported API. Useful for lintian
when dpkg-dev is absent.
* Check presence of required parameters in dpkg-vendor. Closes: #628726
Thanks to Niels Thykier <email address hidden> for the patch.
* Avoid a Perl warning in dpkg-buildflags when HOME is not set.
Closes: #635467
* dpkg-source can now also use debian/source/local-patch-header (that is not
included in the generated source package) instead of
debian/source/patch-header. Closes: #629582
* Changed dpkg-source --after-build to automatically unapply patches that it
has applied during --before-build.
* Fix two possible causes for the assertion failure "pigp->trigpend_head".
LP: #798793, #424358 Closes: #560251
* Use "special" instead of "particular" to qualify the "3.0 (custom)" format
in dpkg-source(1). Closes: #631435
* Add some supplementary checks to ensure debian/control has the required
fields. Closes: #631439
* dpkg-gensymbols(1): document syntax of comments. Closes: #630996
* Allow empty lines in symbols files to better delimit multiple libraries.
Thanks to Cyril Brulebois <email address hidden> for the patch.
* dpkg: if "prerm upgrade" fails when downgrading, do not try to run
"prerm failed-upgrade" with the prerm of the oldest prerm, it can't work
around a bug of a newer prerm anyway.
* dpkg: support new "interest-noawait" and "activate-noawait" trigger
directives.
* dpkg-buildflags(1): make it clear that DEB_*_(SET|APPEND) environment
variables are meant for users and should not be used by packages.
* update-alternatives: do not allow to reuse a slave link in another
slave alternative. Closes: #631547
* Improve dpkg-source's logic to identify ignored files. Closes: #632168
* Fix a small typo in dpkg-source(1). Closes: #632937
* Reword the description of dpkg-source --before-build and --after-build
to be clearer. Closes: #608260
* dpkg-buildpackage no longer exports the compiler flags. Closes: #560070
Packages must directly call dpkg-buildflags to retrieve them.
* dpkg-buildflags supports a prepend command to modify the build
flags. Particularly useful for package maintainers who don't want
their supplementary flags to take precedence over user submitted
flags.
* Add new --dump action to dpkg-buildflags and make it the default action.
Closes: #603435
* dpkg-mergechangelogs now checks the return value of the close() call.
Thanks to Niels Thykier <email address hidden> for the patch. Closes: #633539
* Similar changes to dpkg-shlibdeps and dpkg-gencontrol, also by Niels.
* Fix update-alternatives to not remove a real file when dropping a
symlink for a slave that's not provided by the new current choice.
Closes: #633627
* Improve dpkg-source's error message complaining about the lack
of the upstream tarball. Closes: #634510
* Add some common makefile snippets for use in rules files in
/usr/share/dpkg/: default.mk, architecture.mk, buildflags.mk, pkg-info.mk,
vendor.mk Closes: #606839
* Fix the dpkg-divert test-suite to also skip test that would fail if run
under root. Closes: #634961
* Change merge conflict separators created by dpkg-mergechangelogs to match
the usual norm of being composed of 7 characters. LP: #815700
* With source format 2.0 and 3.0 (quilt), dpkg-source now fails by default
when upstream changes have not been recorded in a quilt patch. The new
--commit operation can be used to properly record the changes before-hand.
LP: #797839
And it fails before installing the automatic patch in debian/patches/
Closes: #615899
* dpkg-buildflags now supports "--export=configure" to output compilation
flags on a single line with double quotes as delimiter of the various
values. It also uses DEB_<flag>_MAINT_<op> to let the maintainer
extend the build flags to use. Last but not least, it can now also strip
options from the returned build flags.
* Fix possible segfault of dpkg in findbreakcycle(). LP: #733414
* dpkg-source now properly cleans up the temporary tarball generated for
native formats in case of unexpected interruption. Closes: #631494
* Fix simplification logic of union dependencies. Closes: #637564
* Fix dpkg's handling of a hardlink pointing to a conffile. Closes: #638291
* Add example of extend-diff-ignore's usage in dpkg-source(1).
Closes: #640198
* dpkg-buildflags now returns hardening flags by default. Closes: #489771
They can be individually enabled/disabled via DEB_BUILD_MAINT_OPTIONS,
see dpkg-buildflags(1). Thanks to Kees Cook for his help.
[ Guillem Jover ]
* Install deb-src-control(5) man pages in dpkg-dev. Closes: #620520
* Add ‘.gitmodules’ to the default dpkg-source ignore lists. Closes: #620490
* Document in dpkg-query(1) man page that on --listfiles each list of
files per package name is separated by a blank line. Same goes for
--status and --print-avail.
* Use execvp(3) unconditionally in command_exec(). Making the call always
fallback to use the system shell in case of error, such as with empty
maintainer scripts. Thanks to Jonathan Nieder <email address hidden>.
Closes: #622094
* Improve deb-split(5) format description by splitting debian-split
member contents into a list.
* Switch to debhelper compatibility level 7.
- Use dh_prep instead of deprecated “dh_clean -k”.
* Bump Standards-Version to 3.9.2 (no changes needed).
* Generate filenames following current conventions on “dpkg-split --join”,
by including the architecture in the debian-split member of a split
package and using underscores to separate filename parts.
* Support conffiles with spaces when diffing them. Closes: #147583
* Allow installing packages with bogus versions with new
--force-bad-version.
* Do not fail when unpacking a diverted hardlink. Closes: #245322
Based on a patch by Christopher Baines <email address hidden>.
* Document in dpkg-deb(1) that --fsys-tarfile will always process the
input archive sequentially. Closes: #616609
* Remove long non-functional --new and --old dpkg-deb option handling
from dpkg which were being treated as dpkg commands.
* Remove reference to --nocheck dpkg-deb option from dpkg man page as
the latter does not pass it to the former.
* Clarify the current dpkg behaviour when running the dpkg-deb and
dpkg-query back-ends, of not passing through back-end specific options
when running them from dpkg. Closes: #610940
* Use “unselected” as an adjective in dpkg output messages instead of
“deselected”. Closes: #231089
* Clarify exit status in dpkg-split and start-stop-daemon --help output.
* Clarify “EXIT STATUS” section in man pages by using a table.
* Add a --status command to start-stop-daemon returning LSB Init Script
status action exit codes.
* Add start-stop-daemon process name kernel limits for Solaris, NetBSD,
OpenBSD, FreeBSD and Darwin.
* On package removal, keep only directories actually containing conffiles,
and not directories just matching the substring in the conffile or the
directory itself. Thanks to Ondřej Surý <email address hidden>.
* On purge correctly remove symlinks acting as directories, when they are
not being used by any other package's files.
* Do not lose track of parent directories on removal so that they can
be properly cleaned up on purge if not used by any other package.
Based on a patch by Ondřej Surý <email address hidden>. Closes: #454694
* Add ‘.hgsigs’ to the default dpkg-source ignore lists.
Based on a patch by Jakub Wilk <email address hidden>. Closes: #627462
* Do not allow blank lines in field values. Closes: #308082
* Do not warn on missing architecture on packages in config-files state,
but then make sure the architecture field is usable. Closes: #604241
* Run du with --apparent-size when generating the Installed-Size field in
dpkg-gencontrol to get consistent results independent of build system.
Thanks to Ludovic Brenta <email address hidden>. Closes: #630533
* Do not fail to unpack shared directories missing on the file system
from packages being replaced by other packages. Closes: #631808
* Do not require programs to define thisname, provide two new functions
to handle the program name (dpkg_set_progname and dpkg_get_progname).
Closes: #631757
* Man pages cleanup:
- Rename “USAGE” dselect(1) section to “ACTIONS” and clarify they can
be performed interactively or from command line.
- Add missing built-in methods to dselect(1).
- Add missing escaping to field dashes in deb-control(5).
- Use dashes instead of underscores for variable text.
- Clarify that several front-end fields are not dselect specific in
dpkg-query(1).
- Use [option...] instead of [options] and friends.
- Use italics or bold instead of surrounding the text with <>.
- Correctly format text with bold and italics.
- Use minus signs and hyphens consistently in man pages.
- Fix reference to /etc/dpkg/dselect.cfg.d instead of dpkg.cfg.d in
dselect(1).
- Add missing optional group|gid --chuid argument in start-stop-daemon(8).
* Refer to Sources and Packages files as part of a repository instead of
as being of exclusive use or owned by APT, which has never been the case.
* Unify somewhat dpkg-maintscript-helper --help output with other commands.
* Add build-indep and build-arch targets as aliases for build in
debian/rules.
* Use the perl interpreter found by configure to call dpkg-architecture.pl
in the m4 DPKG_ARCHITECTURE macro.
* Add new --verbose option to dpkg-deb and change --extract to honour it.
Closes: #293280
* Add new --raw-extract option to dpkg-deb combining --control and
--extract. Closes: #552123
* Defer hardlink renames so that there's never a point were the new
file contents are accessible from the final path before they have
been fsync()ed and cannot be executed causing ETXTBSY when trying
to open the to be installed paths for writing.
Thanks to Jonathan Nieder <email address hidden>. Closes: #635683
* Clarify the default dpkg-deb compression-levels on the man page.
* Clarify dpkg --update-avail usage error message. Closes: #628055
* Change Dpkg::Compression default values depending on the compressor
used, and as such dpkg-source inherits this functionality.
Prompted by Timo Juhani Lindfors <email address hidden>.
* Print an actual error or warning message instead of assert()ing on
readlink()/stat() size discrepancies. Closes: #639229
* Update alternative links only if they change. This allows for a
read-only file system and a writable database. Closes: #636700
Based on a patch by Salvatore Bonaccorso <email address hidden>.
* Fix double “error:” string in dpkg missing PATH error output.
Closes: #639997
* Do not warn on strange timestamps when unpacking with dpkg-deb.
Closes: #640298
* Reduce dpkg-trigger binary size by refactoring libdpkg modules so that
it does not end up pulling triglib.
* Reduce dpkg-deb binary size by refectoring libdpkg modules so that it
does not end up pulling triglib.
* Do not fail on --compare-version when generating parse warnings.
Existing packages with invalid versions should not fail on their
maintainer scripts due to that.
* Use the user name (instead of the user id) when setting the supplementary
groups in start-stop-daemon. Closes: #641834
* Use --srcdir and --destdir po4a options, and bump Build-Depends version
to 0.36.4.
[ Updated dpkg translations ]
* German (Sven Joachim). Closes: #620312
* Swedish (Peter Krefting).
* French (Christian Perrier).
[ Updated man page translations ]
* French (Christian Perrier).
* German (Helge Kreutzmann) including improvement by "Flo".
* Swedish (Peter Krefting).
[ Updated scripts translations ]
* French (Christian Perrier, Sylvestre Ledru). Closes: #637096
* German (Helge Kreutzmann).
* Swedish (Peter Krefting).
-- Guillem Jover <email address hidden> Fri, 23 Sep 2011 06:00:11 +0200
-
dpkg (1.16.0.3) unstable; urgency=medium
* Allow again Priority field values not known to dpkg. Regression introduced in 1.16.0. -- Guillem Jover <email address hidden> Wed, 04 May 2011 10:01:30 +0200
-
dpkg (1.16.0.2) unstable; urgency=high
* Fix dpkg-split --auto to not fail when opening the new depot file. * Fix dpkg-split to correctly set the last part split size. * Fix build failure on DEB_BUILD_OPTIONS=noopt due to a missing <locale.h> include in gettext.h needed by the gettext context functions. -- Guillem Jover <email address hidden> Sat, 16 Apr 2011 00:14:15 +0200
-
dpkg (1.16.0.1) unstable; urgency=low
[ Raphaël Hertzog ] * Fix regression affecting dpkg -R. Closes: #620636 * Don't fail during unpack if the system doesn't support changing timestamps of symlinks. Closes: #620679 -- Guillem Jover <email address hidden> Tue, 05 Apr 2011 07:28:20 +0200
-
dpkg (1.15.8.10) unstable; urgency=low
* Do not segfault on “update-alternatives --auto” when the link group only has alternatives which are dangling symlinks. Closes: #611545 -- Guillem Jover <email address hidden> Sun, 30 Jan 2011 20:28:27 +0100
