Debian

Available patches from Ubuntu

To see Ubuntu differences wrt. to Debian, write down a grep-dctrl query identifying the packages you're interested in:
grep-dctrl -n -sPackage Sources.Debian
(e.g. -FPackage linux-ntfs or linux-ntfs)

Modified packages are listed below:

Debian ( Changelog | PTS | Bugs ) Ubuntu ( Changelog | txt | LP | Bugs ) | Diff from Ubuntu

Source: iptables

iptables (1.8.4-3ubuntu1) focal; urgency=medium * Merge from Debian unstable. Remaining changes: - debian/control: add linuxdoc-tools dep - 9000-howtos.patch: add howtos/ and install them - 9002-libxt_recent-Add-support-for-reap-option.patch: Some changes are upstream, patch needed for additional reap option checks. - debian/iptables-dev.doc-base.netfilter-extensions, debian/iptables-dev.doc-base.netfilter-hacking, debian/iptables.doc-base.nat, debian/iptables.doc-base.packet-filter: add howtos - Swap alternative priority around so we prefer legacy. - Demote nftables from Recommends to Suggests for focal. - autopkgtest: allow-stderr on command9 to fix regression -- Jamie Strandboge <jamie@ubuntu.com> Thu, 13 Feb 2020 22:23:25 +0000

Modifications :
  1. Download patch debian/iptables.install

    --- 1.8.4-3/debian/iptables.install 2019-12-04 10:57:41.000000000 +0000 +++ 1.8.4-3ubuntu1/debian/iptables.install 2020-01-20 15:48:28.000000000 +0000 @@ -7,3 +7,4 @@ usr/lib/*/xtables/libxt_*.so usr/sbin/* usr/share/man/man1 usr/share/man/man8 +howtos/NAT*html debian/tmp/howtos/packet*html usr/share/doc/iptables/html
  2. Download patch debian/tests/control

    --- 1.8.4-3/debian/tests/control 2019-12-04 10:57:41.000000000 +0000 +++ 1.8.4-3ubuntu1/debian/tests/control 2020-01-20 15:48:28.000000000 +0000 @@ -32,7 +32,7 @@ Restrictions: needs-root, isolation-cont Test-Command: iptables-nft-save Depends: @ -Restrictions: needs-root, isolation-container +Restrictions: needs-root, isolation-container, allow-stderr Test-Command: ip6tables-nft-save Depends: @
  3. Download patch debian/iptables.postinst

    --- 1.8.4-3/debian/iptables.postinst 2019-12-04 10:57:41.000000000 +0000 +++ 1.8.4-3ubuntu1/debian/iptables.postinst 2020-01-20 15:48:28.000000000 +0000 @@ -4,27 +4,27 @@ set -e if [ "$1" = "configure" ] || [ "$1" = "abort-upgrade" ]; then update-alternatives \ - --install /usr/sbin/iptables iptables /usr/sbin/iptables-legacy 10 \ + --install /usr/sbin/iptables iptables /usr/sbin/iptables-legacy 20 \ --slave /usr/sbin/iptables-restore iptables-restore /usr/sbin/iptables-legacy-restore \ --slave /usr/sbin/iptables-save iptables-save /usr/sbin/iptables-legacy-save update-alternatives \ - --install /usr/sbin/ip6tables ip6tables /usr/sbin/ip6tables-legacy 10 \ + --install /usr/sbin/ip6tables ip6tables /usr/sbin/ip6tables-legacy 20 \ --slave /usr/sbin/ip6tables-restore ip6tables-restore /usr/sbin/ip6tables-legacy-restore \ --slave /usr/sbin/ip6tables-save ip6tables-save /usr/sbin/ip6tables-legacy-save update-alternatives \ - --install /usr/sbin/iptables iptables /usr/sbin/iptables-nft 20 \ + --install /usr/sbin/iptables iptables /usr/sbin/iptables-nft 10 \ --slave /usr/sbin/iptables-restore iptables-restore /usr/sbin/iptables-nft-restore \ --slave /usr/sbin/iptables-save iptables-save /usr/sbin/iptables-nft-save update-alternatives \ - --install /usr/sbin/ip6tables ip6tables /usr/sbin/ip6tables-nft 20 \ + --install /usr/sbin/ip6tables ip6tables /usr/sbin/ip6tables-nft 10 \ --slave /usr/sbin/ip6tables-restore ip6tables-restore /usr/sbin/ip6tables-nft-restore \ --slave /usr/sbin/ip6tables-save ip6tables-save /usr/sbin/ip6tables-nft-save update-alternatives \ - --install /usr/sbin/arptables arptables /usr/sbin/arptables-nft 20 \ + --install /usr/sbin/arptables arptables /usr/sbin/arptables-nft 10 \ --slave /usr/sbin/arptables-restore arptables-restore /usr/sbin/arptables-nft-restore \ --slave /usr/sbin/arptables-save arptables-save /usr/sbin/arptables-nft-save update-alternatives \ - --install /usr/sbin/ebtables ebtables /usr/sbin/ebtables-nft 20 \ + --install /usr/sbin/ebtables ebtables /usr/sbin/ebtables-nft 10 \ --slave /usr/sbin/ebtables-restore ebtables-restore /usr/sbin/ebtables-nft-restore \ --slave /usr/sbin/ebtables-save ebtables-save /usr/sbin/ebtables-nft-save fi
  4. Download patch debian/control

    --- 1.8.4-3/debian/control 2020-02-04 12:23:45.000000000 +0000 +++ 1.8.4-3ubuntu1/debian/control 2020-02-13 22:23:25.000000000 +0000 @@ -1,7 +1,8 @@ Source: iptables Section: net Priority: optional -Maintainer: Debian Netfilter Packaging Team <pkg-netfilter-team@lists.alioth.debian.org> +Maintainer: Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com> +XSBC-Original-Maintainer: Debian Netfilter Packaging Team <pkg-netfilter-team@lists.alioth.debian.org> Uploaders: Arturo Borrero Gonzalez <arturo@debian.org>, Alberto Molina Coballes <alb.molina@gmail.com>, Laurence J. Lane <ljlane@debian.org> @@ -14,6 +15,7 @@ Build-Depends: autoconf, libnetfilter-conntrack-dev, libnetfilter-conntrack3, libnfnetlink-dev, + linuxdoc-tools, libnftnl-dev (>= 1.1.5), libtool (>= 2.2.6) Standards-Version: 4.4.1 @@ -30,10 +32,9 @@ Depends: libip4tc2 (=${binary:Version}), netbase (>= 6.0), ${misc:Depends}, ${shlibs:Depends} -Suggests: firewalld, kmod +Suggests: firewalld, kmod, nftables Breaks: iptables-nftables-compat (<< 1.6.2~) Replaces: iptables-nftables-compat (<< 1.6.2~) -Recommends: nftables Description: administration tools for packet filtering and NAT The iptables/xtables framework has been replaced by nftables. You should consider migrating now.
  5. Download patch debian/iptables.doc-base.packet-filter

    --- 1.8.4-3/debian/iptables.doc-base.packet-filter 1970-01-01 00:00:00.000000000 +0000 +++ 1.8.4-3ubuntu1/debian/iptables.doc-base.packet-filter 2019-08-21 07:57:28.000000000 +0000 @@ -0,0 +1,10 @@ +Document: packet-filter +Title: Linux 2.4/2.6 Packet Filtering HOWTO +Author: Rusty Russell +Abstract: This document describes how to use iptables to filter + IP packets for the 2.6+ Linux kernels. +Section: Help/HOWTO + +Format: HTML +Index: /usr/share/doc/iptables/html/packet-filtering-HOWTO.html +Files: /usr/share/doc/iptables/html/packet-filtering-HOWTO*.html
  6. Download patch debian/patches/9002-libxt_recent-Add-support-for-reap-option.patch

    --- 1.8.4-3/debian/patches/9002-libxt_recent-Add-support-for-reap-option.patch 1970-01-01 00:00:00.000000000 +0000 +++ 1.8.4-3ubuntu1/debian/patches/9002-libxt_recent-Add-support-for-reap-option.patch 2019-08-21 07:57:28.000000000 +0000 @@ -0,0 +1,26 @@ +Description: Fix support for reap option. +Origin: 79ddbf202a06e6f018e087a328c2ca91e65a8463 +Author: Tim Gardner <tim.gardner@canonical.com> +Last-Update: <2013-06-07> + +Index: iptables/extensions/libxt_recent.c +=================================================================== +--- iptables.orig/extensions/libxt_recent.c 2013-10-23 19:37:20.190616082 -0400 ++++ iptables/extensions/libxt_recent.c 2013-10-23 19:37:20.186616082 -0400 +@@ -170,10 +170,16 @@ + + static void recent_check(struct xt_fcheck_call *cb) + { ++ struct xt_recent_mtinfo *info = cb->data; ++ + if (!(cb->xflags & F_ANY_OP)) + xtables_error(PARAMETER_PROBLEM, + "recent: you must specify one of `--set', `--rcheck' " + "`--update' or `--remove'"); ++ ++ if ((info->check_set & XT_RECENT_REAP) && !info->seconds) ++ xtables_error(PARAMETER_PROBLEM, ++ "recent: you must specify `--seconds' with `--reap'"); + } + + static void recent_print(const void *ip, const struct xt_entry_match *match,
  7. Download patch debian/iptables-dev.doc-base.netfilter-extensions

    --- 1.8.4-3/debian/iptables-dev.doc-base.netfilter-extensions 1970-01-01 00:00:00.000000000 +0000 +++ 1.8.4-3ubuntu1/debian/iptables-dev.doc-base.netfilter-extensions 2019-08-21 07:57:28.000000000 +0000 @@ -0,0 +1,9 @@ +Document: netfilter-extensions +Title: Netfilter Extensions HOWTO +Author: Fabrice MARIE <fabrice@celestix.com> +Abstract: This document describes how to install and use current iptables extensions for netfilter. +Section: Help/HOWTO + +Format: HTML +Index: /usr/share/doc/iptables-dev/html/netfilter-extensions-HOWTO.html +Files: /usr/share/doc/iptables-dev/html/netfilter-extensions-HOWTO-?.html
  8. Download patch debian/iptables.doc-base.nat

    --- 1.8.4-3/debian/iptables.doc-base.nat 1970-01-01 00:00:00.000000000 +0000 +++ 1.8.4-3ubuntu1/debian/iptables.doc-base.nat 2019-08-21 07:57:28.000000000 +0000 @@ -0,0 +1,11 @@ +Document: nat +Title: Linux 2.4/2.6 NAT HOWTO +Author: Rusty Russell +Abstract: This document describes how to do masquerading, transparent + proxying, port forwarding, and other forms of Network Address + Translations with the 2.6+ Linux Kernels. +Section: Help/HOWTO + +Format: HTML +Index: /usr/share/doc/iptables/html/NAT-HOWTO.html +Files: /usr/share/doc/iptables/html/NAT-HOWTO*.html
  9. Download patch debian/patches/series

    --- 1.8.4-3/debian/patches/series 2020-02-13 11:18:12.000000000 +0000 +++ 1.8.4-3ubuntu1/debian/patches/series 2020-02-13 22:23:25.000000000 +0000 @@ -9,3 +9,6 @@ 0202-725413-sctp_man_description.patch 0301-install_iptables_apply.patch 0401-580941-iptables_apply_update.patch + +9000-howtos.patch +9002-libxt_recent-Add-support-for-reap-option.patch
  10. Download patch debian/patches/9000-howtos.patch
  11. Download patch debian/iptables-dev.doc-base.netfilter-hacking

    --- 1.8.4-3/debian/iptables-dev.doc-base.netfilter-hacking 1970-01-01 00:00:00.000000000 +0000 +++ 1.8.4-3ubuntu1/debian/iptables-dev.doc-base.netfilter-hacking 2019-08-21 07:57:28.000000000 +0000 @@ -0,0 +1,9 @@ +Document: netfilter-hacking +Title: Linux netfilter Hacking HOWTO +Author: Rusty Russell +Abstract: This document describes the netfilter architecture for Linux, how to hack it, and some of the major systems which sit on top of it, such as packet filtering, connection tracking and Network Address Translation. +Section: Help/HOWTO + +Format: HTML +Index: /usr/share/doc/iptables-dev/html/netfilter-hacking-HOWTO.html +Files: /usr/share/doc/iptables-dev/html/netfilter-hacking-HOWTO-*.html

Debian ( Changelog | PTS | Bugs ) Ubuntu ( Changelog | txt | LP | Bugs ) | Diff from Ubuntu

Source: python-iptables

python-iptables (0.14.0~ds-1ubuntu4) focal; urgency=medium * No-change rebuild to drop python3.7. -- Matthias Klose <doko@ubuntu.com> Tue, 18 Feb 2020 10:23:11 +0100 python-iptables (0.14.0~ds-1ubuntu3) focal; urgency=medium * No-change rebuild to build with python3.8. -- Matthias Klose <doko@ubuntu.com> Fri, 18 Oct 2019 18:22:12 +0000 python-iptables (0.14.0~ds-1ubuntu2) focal; urgency=medium * No-change rebuild to build with python3.8. -- Matthias Klose <doko@ubuntu.com> Fri, 18 Oct 2019 18:10:48 +0000 python-iptables (0.14.0~ds-1ubuntu1) eoan; urgency=medium * Don't build with any sphinx extensions, segfaulting the doc build. -- Matthias Klose <doko@ubuntu.com> Thu, 03 Oct 2019 12:14:23 +0200

Modifications :
  1. Download patch debian/patches/no-sphinx-ext.diff

    --- 0.14.0~ds-1/debian/patches/no-sphinx-ext.diff 1970-01-01 00:00:00.000000000 +0000 +++ 0.14.0~ds-1ubuntu4/debian/patches/no-sphinx-ext.diff 2019-10-03 10:14:23.000000000 +0000 @@ -0,0 +1,11 @@ +--- a/doc/conf.py ++++ b/doc/conf.py +@@ -23,7 +23,7 @@ sys.path.append(os.path.abspath('../')) + + # Add any Sphinx extension module names here, as strings. They can be extensions + # coming with Sphinx (named 'sphinx.ext.*') or your custom ones. +-extensions = ['sphinx.ext.autodoc', 'sphinx.ext.doctest', 'sphinx.ext.intersphinx', 'sphinx.ext.todo', 'sphinx.ext.coverage', 'sphinx.ext.ifconfig'] ++#extensions = ['sphinx.ext.autodoc', 'sphinx.ext.doctest', 'sphinx.ext.intersphinx', 'sphinx.ext.todo', 'sphinx.ext.coverage', 'sphinx.ext.ifconfig'] + + # Add any paths that contain templates here, relative to this directory. + templates_path = ['_templates']
  2. Download patch debian/patches/series

    --- 0.14.0~ds-1/debian/patches/series 2019-09-10 09:56:35.000000000 +0000 +++ 0.14.0~ds-1ubuntu4/debian/patches/series 2019-10-03 10:14:23.000000000 +0000 @@ -1,3 +1,4 @@ 0001-Removed-badges-causing-privacy-breaches.patch 0002-Take-Multiarch-into-account-when-looking-for-xtables.patch 0003-include-host-triplet-in-library-search.patch +no-sphinx-ext.diff
  1. iptables
  2. python-iptables