* Tue Aug 08 2017 jengelh@inai.de
- Fix RPM groups. Replace old $RPM shell vars by macros.
* Fri Jul 17 2015 kkaempf@suse.com
- Refuse to write field value which contain \n
bsc#937533
Add 0001-Refuse-to-write-field-values-which-contain-n.-bsc-93.patch
* Wed Jan 15 2014 kkaempf@suse.com
- Split into libuser1 and libuser for shared lib policy
libuser-0.60.patch: adjust installation target.
- Fix build for SLE11. Add g_malloc0_n.patch
- Split off -lang subpackage.
* Wed Jan 15 2014 kkaempf@suse.com
- Updated to 0.60
0.60:
* New functions lu_homedir_remove_for_user() and
lu_homedir_remove_for_user_if_owned().
* libuser's pkg-config file no longer refers to internally-used libraries.
glib-2.0 and gobject-2.0 are still included because they are required to
use the API anyway.
* When setting dates in shadow fields, avoid the special value 0 if the clock is
incorrect.
* Miscellaneous cleanups.
* Sat Jun 15 2013 mc@suse.com
- add suse-ldap.dif: fix path to slapd in SUSE
- update to 0.59
0.59:
* Fixed security vulnerabilities:
* Race conditions in copying and removing home directories (CVE-2012-5630)
* Information disclosure when moving users' home directory (CVE-2012-5644)
Related changes:
- INCOMPATIBLE API CHANGES: lu_homedir_move() and lu_homedir_populate()
will refuse to use a pre-existing directory as a destination.
- setuid/setgid bits are now preserved when copying regular files in home
directories (from /etc/skel or when moving a home directory)
* Empty fields in /etc/shadow are now treated as "missing", like libc does.
* Specific values of the attributes can be used to represent "missing data".
* lchage(1) now handles missing fields on both input and output.
* Refuse to build when secure_getenv() is not available.
* Miscellaneous bug fixes and cleanups.
0.58
* API enhancements:
* New helpers for attribute access replace 4-5 function calls with 1:
lu_ent_get_first_{string,id,value_strdup}(),
lu_ent_set_{string,id,long}()
* New header <libuser/fs.h>, providing lu_homedir_{populate,move,remove},
lu_nscd_flush_cache(), and lu_mail_spool_{create,remove}.
* lu_users_enumerate_by_group_full() and lu_groups_enumerate_by_user_full()
are now fully supported.
* New module-private function lu_util_append_values().
* Documented that LU_*PASSWORD should not be manipulated directly.
* deleteUser in Python bindings now removes the mail spool instead of
creating it.
* New warning in libuser.conf.5 about storing a LDAP password in system-wide
configuration.
* Module interface ABI has changed.
* Miscellaneous bug fixes and cleanups, quite a few memory leaks fixed.
0.57.7
* lu_users_enumerate_by_group_full() added, implemented ONLY for LDAP for now.
Related functions and functionality in other modules will be added later.
Applications are advised to NOT USE these functions yet.
* group/user list by name of a user/group now returns an error if the
user/group was not found. The Python bindings enumerateUsersFull and
enumerateGroupsFull no longer crash in this situation.
* Updated translations.
0.57.6
* Make it possible to use ldapi: URLs by not trying to use TLS (based on
a patch by <davide.principi@nethesis.it>).
* Hopefully fix races in test suite, causing failures on slower computers.
* Mark --help messages for translation and improve them a bit.
* Update translations.
0.57.5
* Update translations.
0.57.4
* Don't crash when a database file size is a multiple of page size.
* Miscellaneous bug fixes and cleanups.
0.57.3
* Don't assume user/group IDs start at 500 in Python getFirstUnusedGid and
getFirstUnusedUid.
* Preserve S_ISGID and other bits when copying directories from /etc/skel.
* Deprecate lu_*_t typedefs: use {struct,enum} lu_* instead.
* Update to build with recent gtk-doc.
0.57.2
* Fix adding LDAP users with empty gecos.
* Correctly preserve algorithm used to hash an LDAP password when changing it.
* Don't hard-code ports used in the test suite (to allow parallel development
and builds).
* Miscellaneous bug fixes.
0.57.1
* Fix a crash when a module refuses to load with a warning (e.g. the "shadow"
module when /etc/shadow is not present)
0.57
* Resolve an ambiguity about "password" value format that could cause setting
a known plaintext password in LDAP accounts: the "files"/"shadow" and LDAP
modules may not be used together any more, and the module interface ABI has
changed to support this.
* Don't authenticate the user (in lchfn, lchsh, lpasswd) if the application
is not set*id and it does not need elevated privileges. In particular, this
allows the above programs to be used for LDAP administration by unprivileged
users.
* Change default crypt_style to sha512.
* Don't abort on invalid ID values.
* Miscellaneous bug fixes.
0.56.18
* Update translations.
0.56.17
* New Python constant VALUE_INVALID_ID and function validateIdValue.
* Update translations.
0.56.16
* Update translations.
0.56.15
* Update translations.
* Thu Feb 25 2010 prusnak@suse.cz
- updated to 0.56.14
* Mon Dec 01 2008 prusnak@suse.cz
- created package (version 0.56.9)
* based on Fedora package