Package: charybdis / 3.4.2-5+deb8u2

Metadata

Package Version Patches format
charybdis 3.4.2-5+deb8u2 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
sasl spoofing 836714.patch | (download)

modules/m_sasl.c | 6 6 + 0 - 0 !
1 file changed, 6 insertions(+)

 [patch] sasl: disallow beginning : and space anywhere in authenticate
 parameter

This is a FIX FOR A SECURITY VULNERABILITY. All Charybdis users must
apply this fix if you support SASL on your servers, or unload m_sasl.so
in the meantime.

fix paths | (download)

include/config.h | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 fix install path of libraries

 the last remaining infraction to the FHS... the private libraries of
 charybdis need to be out of the main /usr/lib. --libdir works for
 makefiles, but doesn't get propagated down into config.h.

ircd.conf.patch | (download)

doc/Makefile.in | 2 1 + 1 - 0 !
doc/example.conf | 532 0 + 532 - 0 !
doc/ircd.conf | 532 532 + 0 - 0 !
3 files changed, 533 insertions(+), 533 deletions(-)

 rename the example.conf file to ircd.conf
 The example.conf is really a good sample ircd.conf file. Since we
 would like to ship a working config for the Debian package, it would
 better to install the ircd.conf directly. This should not affect
 existing installs because make install actually checks if the config
 file exists.
non static sqlite | (download)

bandb/Makefile.in | 11 5 + 6 - 0 !
1 file changed, 5 insertions(+), 6 deletions(-)

 make sqlite compilation non-static
 To comply with Debian policy (section 4.13), static linking is now
 disabled, to ease work from the security team.
extra clean | (download)

Makefile.in | 2 1 + 1 - 0 !
libratbox/Makefile.in | 2 1 + 1 - 0 !
libratbox/src/Makefile.in | 2 1 + 1 - 0 !
3 files changed, 3 insertions(+), 3 deletions(-)

 fix clean targets
 some generated files are forgotten when cleaning

gnutls.patch | (download)

README.FIRST | 3 2 + 1 - 0 !
libratbox/configure.ac | 27 27 + 0 - 0 !
libratbox/include/arc4random.h | 2 1 + 1 - 0 !
libratbox/src/Makefile.am | 7 4 + 3 - 0 !
libratbox/src/arc4random.c | 2 1 + 1 - 0 !
libratbox/src/gnutls.c | 609 609 + 0 - 0 !
libratbox/src/nossl.c | 2 1 + 1 - 0 !
7 files changed, 645 insertions(+), 7 deletions(-)

 restore gnutls support

 This patch was accepted upstream because the license exception for
 OpenSSL was refused. We have yet to actually fix gnutls support as per
 #705369 but at least we have a legal package again with *some* TLS
 support.
gnutls30 | (download)

libratbox/configure.ac | 3 2 + 1 - 0 !
1 file changed, 2 insertions(+), 1 deletion(-)

---
libratbox gnutls add gnutls v3 api compatibility wit.patch | (download)

libratbox/src/gnutls.c | 18 17 + 1 - 0 !
1 file changed, 17 insertions(+), 1 deletion(-)

 [patch] libratbox/gnutls: add gnutls v3 api compatibility without
 breaking v2


CVE 2015 5290 | (download)

include/monitor.h | 5 2 + 3 - 0 !
modules/m_monitor.c | 2 2 + 0 - 0 !
src/monitor.c | 17 12 + 5 - 0 !
3 files changed, 16 insertions(+), 8 deletions(-)

---