![[tokkee]](http://tokkee.org/images/avatar.png){kind=avatar}
diff --git a/debian/changelog b/debian/changelog
index d69f8270941dcd237b05e4457ea0f6b624dd05a5..dd1fecd94089c5eff61876e061b9edf2bdc2f3fd 100644 (file)
--- a/debian/changelog
+++ b/debian/changelog
-collectd (5.4.1-2) UNRELEASED; urgency=medium
+collectd (5.5.2-2) UNRELEASED; urgency=low
+ * debian/changelog:
+ - Set urgency back to low.
+ * debian/control:
+ - Update GCrypt's package name to libgcrypt20-dev.
+
+ -- Marc Fournier <marc@bl.uem.li> Wed, 21 Sep 2016 13:45:32 +0200
+
+collectd (5.5.2-1) unstable; urgency=high
+
+ * New upstream release.
+ - Fix heap overflow in the network plugin. Emilien Gaspar has identified a
+ heap overflow in parse_packet(), the function used by the network plugin
+ to parse incoming network packets. Thanks to Florian Forster for
+ reporting the bug in Debian. (Closes: #832507, CVE-2016-6254)
+ - Fix improper usage of gcry_control. A team of security researchers at
+ Columbia University and the University of Virginia discovered that
+ GCrypt's gcry_control is sometimes called without checking its return
+ value for an error. This may cause the program to be initialized without
+ the desired, secure settings. (Closes: #832577)
+ * debian/patches:
+ - bts832577-gcry-control.patch: Update for 5.5.2. Mostly part of the new
+ upstream release, except for: Don't abort() if gcrypt initialization
+ failed.
+ - Drop bts823012_librrd8.patch; merged upstream.
+ * Rebuild with linux-libc-dev >= 4.6 (now in testing and unstable) to
+ accommodate a change to rtnl_link_stats64. Thanks to Gábor Gombás for
+ reporting this (Closes: #829634).
+
+ -- Sebastian Harl <tokkee@debian.org> Fri, 29 Jul 2016 00:02:11 +0200
+
+collectd (5.5.1-5) unstable; urgency=low
+
+ * debian/control, debian/rules:
+ - Disable the sigrok plugin on non-Linux; restrict build dependency to
+ linux-any; thanks to Andreas Beckmann for reporting this
+ (Closes: #825606).
+ * debian/rules:
+ - Fix failure to build twice in a row introduced by dh_autoreconf_clean;
+ drop the separate config.status target and, hence, a dependency on the
+ configure script.
+ * debian/patches/:
+ - Added gcc6.patch: Fix FTBFS with GCC 6; thanks to Lucas Nussbaum for
+ reporting this (Closes: #831194).
+
+ -- Sebastian Harl <tokkee@debian.org> Sun, 17 Jul 2016 23:30:33 +0200
+
+collectd (5.5.1-4) unstable; urgency=medium
+
+ * debian/control:
+ - Add dh-autoreconf to Build-Depends.
+ - Update standards-version to 3.9.8 (no changes).
+
+ -- Marc Fournier <marc@bl.uem.li> Tue, 31 May 2016 18:16:43 +0200
+
+collectd (5.5.1-3) unstable; urgency=medium
+
+ * Re-enable gmond plugin. Thanks to Michael Tautschnig and Jean-Michel
+ Vourgère for fixing #812462.
+ * debian/patches:
+ - Add bts823012_librrd8.patch. Properly detect thread safety with librrd8.
+ Thanks to Jean-Michel Vourgère for the patch (Closes: #823012).
+ * debian/collectd.conf:
+ - Add missing example blocks in main configuration file (Closes: #806196).
+
+ -- Marc Fournier <marc@bl.uem.li> Wed, 25 May 2016 23:14:14 +0200
+
+collectd (5.5.1-2) unstable; urgency=medium
+
+ * Disable the gmond plugin for now. Ganglia is not available in testing
+ (cf. #812462). Thanks to Santiago Vila for reporting this
+ (Closes: #819241).
+ * Update standards-version to 3.9.7 (no changes).
+
+ -- Sebastian Harl <tokkee@debian.org> Sat, 02 Apr 2016 11:02:49 +0200
+
+collectd (5.5.1-1) unstable; urgency=medium
+
+ * New upstream release:
+ - The "LC_NUMERIC" locale is now forced to "C", preventing problems on
+ environments where the locale uses a comma as decimal separator. Thanks
+ to Hubert Jarosz for reporting this (Closes: #799289).
+ - Fixed FTBFS with GCC 6.0; thanks to Martin Michlmayr for reporting this
+ (Closes: #811580).
+ * debian/patches:
+ - Removed bts802249_varnish_41.patch; implemented upstream.
+ * debian/collectd.conf:
+ - Sync with upstream changes since 5.5.0.
+
+ -- Marc Fournier <marc@bl.uem.li> Fri, 22 Jan 2016 16:53:49 +0100
+
+collectd (5.5.0-4) unstable; urgency=medium
+
+ * debian/collectd-core.overrides:
+ - Update 'binary-or-shlib-defines-rpath' lintian override.
+ * debian/rules:
+ - Strip out non-deterministic bits out of generated jar files.
+ - Remove RTLD_GLOBAL workaround, which was fixed upstream.
+ * debian/patches:
+ - Add bts802249_varnish_41.patch (Closes: #802249)
+
+ -- Marc Fournier <marc@bl.uem.li> Mon, 16 Nov 2015 21:03:31 +0100
+
+collectd (5.5.0-3) unstable; urgency=medium
+
+ * debian/rules, debian/control:
+ - Avoid hiding compiler options at build time, allowing the buildd log
+ scanner to do it's job.
+ - Disable smart plugin on non-linux platforms, due to missing
+ libatasmart-dev build-dependency.
+ * debian/collectd-core.overrides:
+ - Update 'capitalization-error-in-description' lintian override.
+ * debian/rules, debian/collectd-core.collectd.service:
+ - Rename systemd service file to collectd-core.collectd.service, to honour
+ debhelper's naming convention.
+ * debian/collectd-core.collectd.service:
+ - Check for configuration file presence before starting the daemon.
+ - Check for configuration file validity before starting the daemon.
+ * debian/control, debian/changelog:
+ - Update my email address to match identity of current GPG key.
+
+ -- Marc Fournier <marc@bl.uem.li> Sun, 13 Sep 2015 21:42:53 +0200
+
+collectd (5.5.0-2) unstable; urgency=low
* debian/rules:
+ - Disable the turbostat plugin on !amd64,!i386; it's Intel-hardware
+ specific.
+
+ -- Sebastian Harl <tokkee@debian.org> Sun, 23 Aug 2015 15:35:26 +0200
+
+collectd (5.5.0-1) unstable; urgency=medium
+
+ [ Marc Fournier ]
+ * New upstream release:
+ - Battery plugin now prefers sysfs over (the deprecated) procfs for
+ reading values; thanks to Witold Baryluk for reporting this
+ (Closes: #630337).
+ - The configuration supports unquoted IPv6 addresses now; thanks to Geoff
+ Crompton for reporting this (Closes: #632713).
+ - Fixed a FTBFS using clang; thanks to Arthur Marble for reporting this
+ and providing a patch (Closes: #758481).
+ - collection.cgi now supports the df_complex types; thanks to Joel Franco
+ Guzmán for reporting this (Closes: #739625).
+ - Fixed an off-by-one error in the AVL tree implementation that broke
+ setups using only one threshold definition; thanks to Alexander Golovko
+ for reporting this (Closes: #754230).
+ - The disk plugin now (optionally) supports instance names based on a udev
+ attribute; thanks to Trent W. Buck for reporting this (Closes: #632936).
+ * debian/patches:
+ - Removed bts559801_plugin_find_fix.dpatch; merged upstream.
+ - Removed bts747093_lvm_segfault.dpatch; merged upstream.
+ - Removed bts750440_config_segfault.dpatch; merged upstream.
+ - Removed bts770681_riemann_ack.dpatch; merged upstream.
+ - Removed bts770683_curl_init.dpatch; merged upstream.
+ - Removed bts770688_snmp_memleak.dpatch; merged upstream.
+ - Removed bts770690_java_jni_thread_detach.dpatch; merged upstream.
+ - Removed bts770693_timestamps.dpatch; merged upstream.
+ - Removed bts770694_loglevel.dpatch; merged upstream.
+ - Removed collection.cgi.dpatch; merged upstream.
+ - Removed myplugin_api.dpatch; merged upstream.
+ * debian/rules, debian/collectd-dev.install, myplugin_includes.dpatch:
+ - Update path to header files moved to daemon/ subdirectory upstream.
+ * debian/rules, debian/control:
+ - Enable redis, write_redis plugins and add Build-depend on
+ libhiredis-dev (previous versions depended on credis which wasn't
+ packaged in Debian).
+ - Enable sigrok and uncomment Build-depend on libsigrok-dev.
+ - Re-enable varnish and uncomment Build-depend on libvarnishapi-dev
+ (support for varnish 4.x was added upstream).
+ - Enable zfs_arc (support for ZFS on linux was added upstream).
+ - Add Build-depend on libatasmart-dev (required to build new smart
+ plugin).
+ - Add Build-depend on libcap-dev (used to avoid running new turbostat
+ plugin as root on Linux).
+ - Add Build-depend on libi2c-dev (required to build new barometer plugin).
+ - Add Build-depend on libldap2-dev (required to build new openldap
+ plugin).
+ - Add Build-depend on librdkafka-dev (required to build new write_kafka
+ plugin).
+ - Add Build-depend on libudev-dev (used by disk plugin to enable
+ udev-based device renaming on Linux) (Closes: #588153, #632936).
+ * debian/control, debian/rules, debian/collectd.service:
+ - Add systemd service file (Closes: #762586)
+ * debian/libcollectdclient1.symbols
+ - Updated for 5.5.
+
+ [ Sebastian Harl ]
+ * debian/control:
+ - Add virtual-mysql-server as an alternative to the mysql-server suggests;
+ thanks to Otto Kekäläinen for reporting this (Closes: 781980).
+ - Add Marc to uploaders.
+ - Update standards-version to 3.9.6 (no changes).
+ * debian/po:
+ - Update Dutch debconf template translation; thanks to Frans Spiesschaert
+ (Closes: #763783).
+ * Convert the package to "3.0 (quilt)" format; thanks to YunQiang Su for an
+ initial patch (Closes: #688719):
+ - Build-depend on debhelper (>= 7.0.50~) and drop dpatch.
+ - Renamed patch files from *.dpatch to *.patch and drop the dpatch header.
+ - Changed debian/patches/00list to debian/patches/series.
+ - Drop all patch operations from debian/rules.
+ * debian/collectd-core.overrides:
+ - Update the JRE path for the rpath override.
+
+ -- Marc Fournier <marc.fournier@camptocamp.com> Fri, 21 Aug 2015 13:29:17 +0200
+
+collectd (5.4.1-6+deb8u1) jessie-security; urgency=high
+
+ * debian/patches/CVE-2016-6254.dpatch: Fix heap overflow in the network
+ plugin. Emilien Gaspar has identified a heap overflow in parse_packet(),
+ the function used by the network plugin to parse incoming network packets.
+ Thanks to Florian Forster for reporting the bug in Debian.
+ (Closes: #832507, CVE-2016-6254)
+ * debian/patches/bts832577-gcry-control.dpatch: Fix improper usage of
+ gcry_control. A team of security researchers at Columbia University and
+ the University of Virginia discovered that GCrypt's gcry_control is
+ sometimes called without checking its return value for an error. This may
+ cause the program to be initialized without the desired, secure settings.
+ (Closes: #832577)
+
+ -- Sebastian Harl <tokkee@debian.org> Thu, 28 Jul 2016 22:25:08 +0200
+
+collectd (5.4.1-6) unstable; urgency=medium
+
+ * debian/patches:
+ - Added bts770681_riemann_ack: upstream fix for the write_riemann plugin
+ to avoid locking up a remote Riemann instance; thanks to Marc Fournier
+ for reporting this (Closes: #770681).
+ - Added bts747093_lvm_segfault: upstream fix for a segfault in the LVM
+ plugin; thanks to Bernd Zeimetz and Marc Fournier for reporting this
+ (Closes: #747093).
+ - Added bts770683_curl_init: upstream fix for a segfault in plugins using
+ libcurl caused by concurrent memory access; thanks to Marc Fournier for
+ reporting this (Closes: #770683, cf. #735173).
+ - Added bts750440_config_segfault: upstream fix for a segfault when
+ including empty config files; thanks to Bernd Zeimetz and Marc Fournier
+ for reporting this (Closes: #750440, #770685).
+ - Added bts770688_snmp_memleak: upstream fix for a memory leak in the
+ SNMP plugin; thanks to Marc Fournier for reporting this
+ (Closes: #770688).
+ - Added bts770690_java_jni_thread_detach: upstream fix for locking up the
+ Java plugin by not properly detaching from the JVM in error conditions;
+ thanks to Marc Fournier for reporting this (Closes: #770690).
+ - Added bts770693_timestamps: upstream fix for handling internal
+ timestamps; thanks to Marc Fournier for reporting this (Closes: #770693)
+ - Added bts770694_loglevel: upstream fix to correct logging behavior when
+ using an invalid log level; thanks to Marc Fournier for reporting this
+ (Closes: #770694, #687067).
+
+ -- Sebastian Harl <tokkee@debian.org> Sun, 23 Nov 2014 15:27:15 +0100
+
+collectd (5.4.1-5) unstable; urgency=medium
+
+ * debian/rules:
+ - Fixed a typo preventing the fix for #760719 to be active
+ (Closes: #760719).
+
+ -- Sebastian Harl <tokkee@debian.org> Sun, 28 Sep 2014 17:13:07 +0000
+
+collectd (5.4.1-4) unstable; urgency=medium
+
+ * debian/rules:
+ - Disable preprocessor warnings on kfreebsd to work around an error
+ resulting from a redefined macro in PostgreSQL's pg_config_manual.h;
+ thanks to Ivo De Decker for reporting this (Closes: #760719).
+ * debian/control, debian/rules:
+ - Disable the 'java' plugin on sparc for now. It fails to build.
+
+ -- Sebastian Harl <tokkee@debian.org> Sun, 28 Sep 2014 01:59:14 +0200
+
+collectd (5.4.1-3.1) unstable; urgency=medium
+
+ * Non-maintainer upload.
+ * debian/control:
+ - Build-Depend on libprotobuf-c-dev instead of libprotobuf-c0-dev due to
+ the protobuf-c transition (Closes: #756422).
+
+ -- Robert S. Edmonds <edmonds@debian.org> Tue, 12 Aug 2014 15:36:27 -0400
+
+collectd (5.4.1-3) unstable; urgency=medium
+
+ * debian/control:
+ - Added libupsclient-dev as primary alternate build-dep to
+ libupsclient1-dev; thanks to Laurent Bigonville for reporting this and
+ Marc Fournier for sending a patch (Closes: #730397).
+
+ -- Sebastian Harl <tokkee@debian.org> Mon, 28 Apr 2014 23:29:53 +0200
+
+collectd (5.4.1-2) unstable; urgency=medium
+
+ * debian/rules, debian/control:
- Disable varnish for now; it does not work with varnish 4;
c.f. https://bugs.debian.org/745902 (Closes: #745894).
+ - Drop build dependency on libvarnishapi-dev.
+ - Build-depend on libow-dev and re-enable the onewire plugin; thanks to
+ Adam Smutnicki for pointing this out (Closes: #744956).
+ * debian/rules:
- Added INSTALL_BASE= to perl options; else, modules are installed
into $HOME.
- Prepend collectd/core to collectd's header files; thanks to Sergio
Jimenez for reporting this (Closes: #739516).
- * debian/control:
- - Drop build dependency on libvarnishapi-dev.
* debian/patches:
- Added collection.cgi.dpatch fixing apache data-sources; thanks to
Fabiano Pires for reporting this and providing a patch
(Closes: #743881).
- Added myplugin_api.dpatch updating myplugin.c to the latest API.
- -- Sebastian Harl <tokkee@debian.org> Sat, 26 Apr 2014 15:29:43 +0200
+ -- Sebastian Harl <tokkee@debian.org> Sat, 26 Apr 2014 16:54:19 +0200
collectd (5.4.1-1) unstable; urgency=medium
-- gregor herrmann <gregoa@debian.org> Sun, 26 May 2013 00:52:37 +0200
+collectd (5.1.0-3+deb7u1) wheezy-security; urgency=high
+
+ * debian/patches/CVE-2016-6254.dpatch: Fix heap overflow in the network
+ plugin. Emilien Gaspar has identified a heap overflow in parse_packet(),
+ the function used by the network plugin to parse incoming network packets.
+ Thanks to Florian Forster for reporting the bug in Debian.
+ (Closes: #832507, CVE-2016-6254)
+ * debian/patches/bts832577-gcry-control.dpatch: Fix improper usage of
+ gcry_control. A team of security researchers at Columbia University and
+ the University of Virginia discovered that GCrypt's gcry_control is
+ sometimes called without checking its return value for an error. This may
+ cause the program to be initialized without the desired, secure settings.
+ (Closes: #832577)
+
+ -- Sebastian Harl <tokkee@debian.org> Thu, 28 Jul 2016 20:52:12 +0200
+
collectd (5.1.0-3) unstable; urgency=low
* debian/patches/migrate-4-5-df.dpatch, debian/collectd-core.postinst:
* Initial release (Closes: #373008).
* Removed upstream's debian/ directory from .orig.tar.gz.
* getifaddrs.dpatch: Patching src/traffic.c to read data from /proc instead
- of using getifaddrs(). getifaddrs() does not seem to work correctly on
+ of using getifaddrs(). getifaddrs() does not seem to work correctly on
AMD64.
-- Sebastian Harl <sh@tokkee.org> Fri, 7 Jul 2006 15:49:42 +0200