UbuntuUpdates.org

Package "networkd-dispatcher"

Name: networkd-dispatcher

Description:

Dispatcher service for systemd-networkd connection status changes

Latest version: 2.1-2~ubuntu20.04.3
Release: focal (20.04)
Level: updates
Repository: main
Homepage: https://github.com/craftyguy/networkd-dispatcher

Links


Download "networkd-dispatcher"


Other versions of "networkd-dispatcher" in Focal

Repository Area Version
base main 2.0.1-1
security main 2.1-2~ubuntu20.04.3

Changelog

Version: 2.1-2~ubuntu20.04.3 2022-05-04 20:06:21 UTC

  networkd-dispatcher (2.1-2~ubuntu20.04.3) focal-security; urgency=medium

  * SECURITY REGRESSION: Incomplete security fix (LP: #1971550)
    - debian/patches/CVE-2022-29799-regression.patch: Add initialized state
      in ADMIN_STATES in networkd-dispatcher.

 -- Rodrigo Figueiredo Zaiden <email address hidden> Wed, 04 May 2022 10:49:53 -0300

Source diff to previous version
1971550 networkd-dispatcher missing state 'initialized'

Version: 2.1-2~ubuntu20.04.2 2022-04-28 19:06:21 UTC

  networkd-dispatcher (2.1-2~ubuntu20.04.2) focal-security; urgency=medium

  * SECURITY UPDATE: Directory traversal
    - debian/patches/CVE-2022-29799-pre.patch: Add a word that is missing
      in exception messages in networkd-dispatcher and
      tests/test_networkd-dispatcher.py.
    - debian/patches/CVE-2022-29799.patch: Add allowed admin and
      operational states in networkd-dispatcher and throw exceptions in
      handle_state function if the current state is not one of those and
      add a test case test_handle_state in
      tests/test_networkd-dispatcher.py.
    - CVE-2022-29799
  * SECURITY UPDATE: Time-of-check-time-of-use race condition
    - debian/patches/CVE-2022-29800-1.patch: Add check_perms function that
      will be invoked in scripts_in_path function before appending a file
      path to the script_list in networkd-dispatcher and change
      test_scripts_in_path test case in tests/test_networkd-dispatcher.py
      with follow_symlinks set to false.
    - debian/patches/CVE-2022-29800-2.patch: Passes os.path.dirname(path)
      when checking for permissions in scripts_in_path function in
      networkd-dispatcher.
    - CVE-2022-29800

 -- Rodrigo Figueiredo Zaiden <email address hidden> Wed, 27 Apr 2022 19:10:25 -0300

Source diff to previous version

Version: 2.1-2~ubuntu20.04.1 2021-07-22 20:06:29 UTC

  networkd-dispatcher (2.1-2~ubuntu20.04.1) focal; urgency=medium

  [ Lukas Märdian ]
  * Add d/p/0003-Normalize-parsed-IP-address-value.patch to handle IP address
    networkctl output of systemd v244+ (LP: #1884248)

  [ Julian Andres Klode ]
  * debian/gbp.conf: Point to debian/bullseye

 -- Lukas Märdian <email address hidden> Mon, 12 Jul 2021 15:26:17 +0200

1884248 [SRU] networkd-dispatcher gives corrupted information



About   -   Send Feedback to @ubuntu_updates