Package: chkrootkit / 0.52-3

Metadata

Package Version Patches format
chkrootkit 0.52-3 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
01_nostrip.patch | (download)

Makefile | 8 0 + 8 - 0 !
1 file changed, 8 deletions(-)

 don't strip the main binary, it should be done in debian/rules
02_workingdir.patch | (download)

chkrootkit | 2 2 + 0 - 0 !
1 file changed, 2 insertions(+)

 the base chkrootkit is designed to be run from it's build directory,
therefore it uses "./" as a prefix to all it's executables.  we need to
change to /usr/lib/chkrootkit to keep this working
03_linedup_reports.patch | (download)

chkrootkit | 33 29 + 4 - 0 !
1 file changed, 29 insertions(+), 4 deletions(-)

 (printn): use printf if available. upstream is not interested in it due to portability reasons.
04_backslashes.patch | (download)

chkrootkit | 4 2 + 2 - 0 !
1 file changed, 2 insertions(+), 2 deletions(-)

 two of the chkrootkit messages have unnecessary backslashes
05_disable_enye.patch | (download)

chkproc.c | 2 2 + 0 - 0 !
1 file changed, 2 insertions(+)

 disabling this check which was killing random processes
Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=457828

06_quiet.patch | (download)

chklastlog.c | 14 12 + 2 - 0 !
chkrootkit | 96 93 + 3 - 0 !
2 files changed, 105 insertions(+), 5 deletions(-)

 hide all output from tests
Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=142422
Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=190978
Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=229869
Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=306263

07_promisc.patch | (download)

ifpromisc.c | 53 27 + 26 - 0 !
1 file changed, 27 insertions(+), 26 deletions(-)

 fixes a number of issues related to promiscuous mode 
Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=333068
Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=214990
Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=202198

08_unidentified.patch | (download)

chkproc.c | 2 1 + 1 - 0 !
chkrootkit | 54 29 + 25 - 0 !
2 files changed, 30 insertions(+), 26 deletions(-)

 collection of all other changes to upstream source which haven't
been identified yet

09_excludes.patch | (download)

README | 27 27 + 0 - 0 !
chkrootkit | 122 66 + 56 - 0 !
2 files changed, 93 insertions(+), 56 deletions(-)

 add the ability to exclude specific files/directories from the checks, 

10_fixwarnings.patch | (download)

chklastlog.c | 2 1 + 1 - 0 !
chkwtmp.c | 1 1 + 0 - 0 !
2 files changed, 2 insertions(+), 1 deletion(-)

 some little fixes to silence compiler.

11_logpath.patch | (download)

README.chklastlog | 4 2 + 2 - 0 !
README.chkwtmp | 2 1 + 1 - 0 !
check_wtmpx.c | 4 2 + 2 - 0 !
chklastlog.c | 4 2 + 2 - 0 !
chkutmp.c | 2 1 + 1 - 0 !
chkwtmp.c | 2 1 + 1 - 0 !
6 files changed, 9 insertions(+), 9 deletions(-)

 read logs from /var/log instead of /var/adm

12_procpsv3.patch | (download)

chkproc.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 let chkproc default to procps version 3.

13_exitcode.patch | (download)

chkrootkit | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 provide exit code at the end of chkrootkit script.
14_chkutmp.diff | (download)

chkutmp.c | 12 7 + 5 - 0 !
1 file changed, 7 insertions(+), 5 deletions(-)

fixed chkutmp parser
15_kfreebsd.patch | (download)

ifpromisc.c | 1 1 + 0 - 0 !
1 file changed, 1 insertion(+)

 add missing include
16_php.patch | (download)

chkrootkit | 4 2 + 2 - 0 !
1 file changed, 2 insertions(+), 2 deletions(-)

 the check for suspect php files is broken by design.
1. Any non-text file contents confuse the results of the grep if they match.
2. Not file names are printed, but file contents. That can't be what the check
is supposed to achieve.
This patch fixes '/usr/bin/find: head terminated by signal 13' errors and
prints affected file names instead of their content.

17_Suckitfalse.patch | (download)

chkrootkit | 8 7 + 1 - 0 !
1 file changed, 7 insertions(+), 1 deletion(-)

 ignore false positive for suckit rootkit when systemd is /sbin/init
Author Giuseppe Iuculano <iuculano@debian.org>
Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=740898

18_fix stack smash.patch | (download)

chkutmp.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 fix good old stack smash
Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=457828

19_openssh.diff | (download)

chkrootkit | 2 2 + 0 - 0 !
1 file changed, 2 insertions(+)

 fix windigo rootkit search with openssh

20_Proper flags.patch | (download)

Makefile | 20 11 + 9 - 0 !
1 file changed, 11 insertions(+), 9 deletions(-)

 honor preprocesor and linker flags added at compile time by debhelper. thanks to lukas schwaighofer to point out some improvements.
21_fix_loc_function.patch | (download)

chkrootkit | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 handle calls to the loc() function consistently

22_fix_Makefile_target.patch | (download)

Makefile | 4 1 + 3 - 0 !
1 file changed, 1 insertion(+), 3 deletions(-)

 the "all" target should not calls `@exec make sense` instead of just depending on the "sense" target. thanks to lukas schwaighofer
23_fix_cross_compilation.patch | (download)

Makefile | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 fix cross compilation issue. thanks to lukas schwaighofer
24_ser2net_exception_in_scalper.patch | (download)

chkrootkit | 4 3 + 1 - 0 !
1 file changed, 3 insertions(+), 1 deletion(-)

 add exception for ser2net in scalper() (closes: #564147)
25_fix_noise_in_quiet_mode.patch | (download)

chkrootkit | 4 2 + 2 - 0 !
1 file changed, 2 insertions(+), 2 deletions(-)

 fix noise in quiet mode

chkrootkit outputs in quiet mode:

not tested
not tested

this patch has been already send upstream

26_fix chktcpd.patch | (download)

chkrootkit | 1 1 + 0 - 0 !
1 file changed, 1 insertion(+)

 reinitialize variable in check_tcpd
Bug-Ubuntu: https://bugs.launchpad.net/ubuntu/+source/chkrootkit/+bug/1808882