Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted haveged 1.9.8-3 (source) into unstable
Date: Fri, 31 Jan 2020 04:54:28 +0000
Signed by: <nicoo@debian.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 31 Jan 2020 05:16:40 +0100
Source: haveged
Architecture: source
Version: 1.9.8-3
Distribution: unstable
Urgency: medium
Maintainer: Jérémy Bobbio <lunar@debian.org>
Changed-By: Nicolas Braud-Santoni <nicoo@debian.org>
Changes:
 haveged (1.9.8-3) unstable; urgency=medium
 .
   * debian/haveged.service
     + Sync with upstream's version
       - Service ordering changes
         - Start after systemd-tmpfiles-setup-dev.service
           This is required, otherwise /dev/random might not yet exist.
         - Start before systemd-journald
         - Set WantedBy=sysinit.target (rather than multi-user.target)
       - Drop `NoNewPrivileges` (useless, as haveged keeps running as root)
       - Update SuccessExitStatus
       - Always restart the service
       - Allow running haveged in containers
       - Normalise on Boolean “true” instead of “yes”
 .
     + Tighten-down security settings
       - Apply a syscall filter to the service
       - Set ProtectHostname, ProtectKernel{Logs,Modules}
       - Set Restrict{Namespaces,Realtime}, preventing access to
         potentially-vulnerable kernel features.
       - Set LockPersonality, MemoryDenyWriteExecute
 .
 .
   * Declare compliance with policy v4.5.0.
     No change required.
 .
   * Remove obsolete debian/source/include-binaries
Checksums-Sha1:
 a51d639d099a149508ab7107ca6999cffb8a26ae 2138 haveged_1.9.8-3.dsc
 a57f904be56ccbe0231b6755ae2cffb1b6d9edbb 10768 haveged_1.9.8-3.debian.tar.xz
 4ff7e649aa77a2da3497a5f755be050d2b56e62c 6948 haveged_1.9.8-3_amd64.buildinfo
Checksums-Sha256:
 7bcd3f0031db218a77517ee069b9412b8ae90ad071b528915a5be8b532bd5b3f 2138 haveged_1.9.8-3.dsc
 7df3a249548eedfc23d1c4701daba8ea1d0cf86ecb8219f0013528bc409ce733 10768 haveged_1.9.8-3.debian.tar.xz
 2d8c7b7f5413ef8c4dbaaf5df9ed0320813e4666f0ed30d226de77a9fa26027c 6948 haveged_1.9.8-3_amd64.buildinfo
Files:
 310028f18e0db81e58effeb0eb8ced7a 2138 misc optional haveged_1.9.8-3.dsc
 1fd2789a4c3debc02633ffe1ab1d950a 10768 misc optional haveged_1.9.8-3.debian.tar.xz
 7204486ec81d13dc3fbe941aeb00c387 6948 misc optional haveged_1.9.8-3_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=58Ot
-----END PGP SIGNATURE-----
News for package haveged
