Imported Debian patch 1.1.5-1

[nfs-utils.git] / debian / changelog

diff --git a/debian/changelog b/debian/changelog
index 66472bb52e2101c497ab79a11f2904a34d1f7ca9..27271f4c1e47769cf4741907ac75499baf50542c 100644 (file)
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,10 @@
+nfs-utils (1:1.1.5-1) experimental; urgency=low
+
+  * New upstream release 
+  * Update debian/watch
+
+ -- Anibal Monsalve Salazar <anibal@debian.org>  Fri, 06 Mar 2009 13:36:45 +1100
+
 nfs-utils (1:1.1.4-1) unstable; urgency=low
 
   * New upstream release. Patch status:
@@ -39,6 +46,17 @@ nfs-utils (1:1.1.3-1) unstable; urgency=low
 
  -- Anibal Monsalve Salazar <anibal@debian.org>  Tue, 29 Jul 2008 18:08:42 +1000
 
+nfs-utils (1:1.1.2-6lenny1) testing-proposed-updates; urgency=high
+
+  * Fix CVE-2008-4552
+    nfs-utils 1.1.2, and possibly other versions before 1.1.3, invokes the
+    host_ctl function with the wrong order of arguments, which causes TCP
+    Wrappers to ignore netgroups and allows remote attackers to bypass
+    intended access restrictions.
+    Closes: #502680
+
+ -- Anibal Monsalve Salazar <anibal@debian.org>  Sun, 19 Oct 2008 13:37:33 +1100
+
 nfs-utils (1:1.1.2-6) unstable; urgency=high
 
   * Load nfsd.ko before starting idmapd, to hopefully fix NFSv4 export issues.