Changelog
procps (2:3.3.15-1ubuntu1) cosmic; urgency=medium
* Merge from Debian unstable. Remaining changes:
- debian/sysctl.d (Ubuntu-specific):
+ 10-console-messages.conf: stop low-level kernel messages on console.
+ 10-kernel-hardening.conf: add the kptr_restrict setting
+ 10-keyboard.conf.powerpc: mouse button emulation on PowerPC.
+ 10-ipv6-privacy.conf: add a file to sysctl.d to apply the defaults
for IPv6 privacy extensions for interfaces. (LP: #176125, #841353)
+ 10-link-restrictions.conf: even though the Ubuntu
kernel is built with these defaults in place, we want to make sure
that people running stock kernels don't miss out.
+ 10-magic-sysrq.conf: Disable most magic sysrq by default, allowing
critical sync, remount, reboot functions. (LP: #194676, LP: #1025467)
+ 10-network-security.conf: enable rp_filter.
+ 10-ptrace.conf: describe new PTRACE setting.
+ 10-zeropage.conf: safe mmap_min_addr value for graceful fall-back.
for armhf, and arm64.
+ 10-qemu.conf.s390x for qemu.
+ README: describe how this directory is supposed to work.
- debian/rules: Fix cross build
- ignore_eaccess.patch: If we get eaccess when opening a sysctl file for
writing, don't error out. Otherwise package upgrades can fail,
especially in containers.
- ignore_erofs.patch: Same as ignore_eaccess but for the case where
part of /proc is read/only.
* Drop redundant setting of net.ipv4.tcp_syncookies=1, it is now the kernel's default
(LP: #1773157)
* Update README about new commands for reloading configuration (LP: #1719159)
procps (2:3.3.15-1) unstable; urgency=medium
* New upstream release Closes: #899170
* library: Fix integer overflow and LPE in file2strvec CVE-2018-1124
* library: Use size_t for alloc functions CVE-2018-1126
* pgrep: Fix stack-based buffer overflow CVE-2018-1125
* ps: Fix buffer overflow in output buffer, causing DOS CVE-2018-1123
* Command Name increased from 16 to 64 characters
procps (2:3.3.14-1) unstable; urgency=medium
* New upstream release
- pgrep: Don't segfault on non match Closes: #894917
* Fix init scripti, thanks GSR! Closes: #895005
procps (2:3.3.13-1) unstable; urgency=medium
* New upstream release
- doc: Document I idle state in ps.1 and top.1 Closes: #886967
- kill: -l space between name parses correctly Closes: #854407
- library: don't use vm_min_free on non Linux Closes: #831396
- library: don't use SIGPWR on FreeBSD Closes: #832148
- pkill: Return 0 only if we can kill process Closes: #852758
- ps: avoid eip/esp address truncations Closes: #846361
- top: address a wishlist man page NLS suggestion Closes: #865689
- watch: define HOST_NAME_MAX where not defined Closes: #830734
* Update sysctl.conf sysrq key comments Closes: #882121
* Update the init script to use new LSB features
procps (2:3.3.12-4) unstable; urgency=medium
* Add sysctl configuration file to protect hard and soft links
This mitigates CVE-2017-18078 on non-Debian kernels Closes: #889098
* Update Vcs to Salsa
* Update notes about sysrq Closes: #882121
* Update standards to 4.1.3
-- Balint Reczey <email address hidden> Fri, 25 May 2018 12:09:30 +0200
