Change logs for shadow source package in Mantic

shadow (1:4.13+dfsg1-1ubuntu1.1) mantic-security; urgency=medium

  * SECURITY UPDATE: unsanitized buffer leading to a password leak during
    gpasswd new password operation
    - debian/patches/CVE-2023-4641.patch: fix password leak in gpasswd.
    - CVE-2023-4641

 -- Camila Camargo de Matos <email address hidden>  Tue, 06 Feb 2024 09:53:32 -0300

shadow (1:4.13+dfsg1-1ubuntu1) lunar; urgency=medium

  * Merge from Debian unstable. Remaining changes:
    - d/login.defs: Enable private home directories by default
    - debian/login.defs: Update documentation of USERGROUPS_ENAB/UMASK
      + USERGROUPS_ENAB: with pam_umask, the UPG handling does not only apply
        to "former (pre-PAM) uses".
      + UMASK: Explain that USERGROUPS_ENAB will modify this default for UPGs.
    - debian/{source_shadow.py,login.install}: Add apport hook
    - debian/patches/1010_extrausers.patch:
      + Add support to passwd for libnss-extrausers
      + Add automatic detection of "extrausers" for usermod -G
    - d/p/1011_extrausers_toggle.patch: extrausers support for useradd/groupadd
    - d/p/1012_extrausers_chfn.patch: --extrausers support for chfn tool
    - d/p/1013_extrausers_deluser.patch: --extrausers support for userdel
    - d/p/1014_extrausers_delgroup.patch: --extrausers support for groupdel
    - d/p/1015_add_zsys_support.patch: zsys to handle home dir if available
    - d/p/1016_extrausers_gpasswd.patch: extrausers support for gpasswd
    - d/p/506_relaxed_usernames.patch, d/t/{control,numeric-username}:
      + disallow purely numeric usernames
    - d/t/smoke: Extend for extrausers support
  * Dropped changes (not needed anymore):
    - d/passwd.maintscript: cleanup /etc/init/passwd.conf 1:4.2-3.2ubuntu4~
  * Refresh patches:
    - d/p/1010_extrausers.patch
    - d/p/1011_extrausers_toggle.patch
    - d/p/1015_add_zsys_support.patch

shadow (1:4.13+dfsg1-1) unstable; urgency=medium

  [ Balint Reczey ]
  * debian/watch: Make watch file work with new GitHub UI
  * debian/control: Mark libsubid-dev as Multi-Arch: same
  * New upstream version 4.13
    - fix typo in useradd(8) (Closes: #1021380)
  * Refresh patches

  [ Debian Janitor ]
  * Remove constraints unnecessary since buster (oldstable)
    * login: Drop versioned constraint on util-linux in Breaks.
    Changes-By: deb-scrub-obsolete

shadow (1:4.12.3+dfsg1-3) unstable; urgency=medium

  [ Debian Janitor ]
  * Set upstream metadata fields: Bug-Database, Bug-Submit, Repository-Browse.

  [ Balint Reczey ]
  * Fix tree copying regressions introduced in 4.12.2. (Closes: #1023132)

shadow (1:4.12.3+dfsg1-2) unstable; urgency=medium

  * Cherry-pick upstream patch to fix regression in expiration date handling
    (Closes: #1021697)

shadow (1:4.12.3+dfsg1-1) unstable; urgency=medium

  [ Balint Reczey ]
  * New upstream release (Closes: #1004242, #1006848)
  * Refresh patches
  * debian/patches: Reorder patches in series to make it look sane
  * Fix Lintian elevated-privileges tag rename

  [ Johannes Schauer Marin Rodrigues ]
  * debian/shadowconfig: Support DPKG_ROOT without using chroot()
    (Closes:  #1007758)
  * useradd: cherry-pick patch from upstream to avoid creating several GB worth
    of sparse lastlog and faillog files for users with high uid values
    (Closes: #1019245)

  [ Debian Janitor ]
  * Update renamed lintian tag names in lintian overrides.
  * Update standards version to 4.6.1, no changes needed.

 -- Lukas Märdian <email address hidden>  Wed, 23 Nov 2022 11:55:02 +0100