are not allowed and it is therefore not possible to build this package
without SSL support (which is good). Remove makefile snippet which made
it look like it was possible to do this.
- Bug Fixes
The following vulnerabilities have been fixed.
* wnpa-sec-2014-06
The RTP dissector could crash. (Bug 9885)
Versions affected: 1.10.0 to 1.10.6
CVE-2014-2907
The following bugs have been fixed:
* RTP not decoded inside the conversation in v.1.10.1 (Bug 9021)
* SIP/SDP: disabled second media stream disables all media
streams (Bug 9835)
* Lua: trying to get/access a Preference before its
registered causes a segfault (Bug 9853)
* Some value_string strings contain newlines. (Bug 9878)
* Tighten the NO_MORE_DATA_CHECK macros (Bug 9932)
* Fix crash when calling "MAP Summary" dialog when no file is
open (Bug 9934)
* Fix comparing a sequence number of TCP fragment when its
value wraps over uint32_t limit (Bug 9936)
- Updated Protocol Support
ANSI A, DVB-CI, GSM DTAP, GSM MAP, IEEE 802.11, LCSAP, LTE RRC,
MAC LTE, Prism, RTP, SDP, SIP, and TCP
Python Simple SOAP library for client and server webservices interfaces, aimed
to be as small and easy as possible, supporting most common functionality.
Initially it was inspired by PHP Soap Extension (mimicking it functionality,
simplicity and ease of use), with many advanced features added.
- Delayed UDP connection
- makefile ignores LDFLAGS
- mem leak in config parser
- vtun3 server should offer vtun2-compatible encryption
- Parallel make Makefile.in race condition
- link timeout in UDP mode
Minor fixes in lfd_lzo.c to ensure correct type casting
Add description of "keepalive timeout:count;" syntax
to man page and vtund.conf sample.
Remove doubled if(send_a_file){...} block in linkfd.c.
- reduce connection chatter
- improve linking on rebuilds
Celery is an asynchronous task queue/job queue based on distributed message
passing. It is focused on real-time operation, but supports scheduling as well.
The execution units, called tasks, are executed concurrently on a single or more
worker servers using multiprocessing, Eventlet, or gevent. Tasks can execute
asynchronously (in the background) or synchronously (wait until ready).
u6rd is a user-space 6rd (RFC 5569) implementation, which uses
tun(4) and the raw socket interface.
It runs on the 6rd border router of a 6rd site that is isolated from
the native IPv6 Internet. In other words, it does not provide the
functionality of 6rd "relay" routers.
Collection.
Apache Libcloud is a Python library which hides differences between different
cloud provider APIs and allows you to manage different cloud resources through
a unified and easy to use API.
Resource you can manage with Libcloud are divided in the following categories:
* Cloud Servers and Block Storage - services such as Amazon EC2 and Rackspace
Cloud Servers (libcloud.compute.*)
* Cloud Object Storage and CDN - services such as Amazon S3 and Rackspace
CloudFiles (libcloud.storage.*)
* Load Balancers as a Service, LBaaS (libcloud.loadbalancer.*)
* DNS as a Service, DNSaaS (libcloud.dns.*)
Collection.
SoftLayer API bindings for Python. For use with SoftLayer's API.
This library provides a simple interface to interact with SoftLayer's XML-RPC
API and provides support for many of SoftLayer API's features like object masks
and a command-line interface that can be used to access various SoftLayer
services using the API.
3.8.0 (2014-03-28)
+ OS X: Implemented the reboot, shutdown and suspend queue completion actions
- Popup dialogs no longer automatically open if other dialogs are already open. This prevents FileZilla from becoming unresponsive on OS X
- Fix calculation of current transfer speed. In some situations the transfer speed tooltip over the activity indicators showed negative speeds
- Fix handling of focus item in local directory listings if connecting to a site with a default local directory
3.8.0-rc1 (2014-03-22)
+ MSW: Added suspend as new queue completion action
- Minor fixes to new updater
3.8.0-beta2 (2014-03-13)
+ Use Server Name Indication (SNI) With FTP over TLS and HTTP over TLS
- Minor updater improvements to further improve reliability
- Updated translations
3.8.0-beta1 (2014-03-10)
! Updated GnuTLS to latest version to address vulnerabilities in GnuTLS' certificate validation
+ Redesigned update dialog
- Fix initial state of the 'Enable' item in speed limit menu
- Date/Time handling routines now carry precision information, this avoids comparisons of timestamps with different accuracy, e.g. 2014-02-01 and 2014-02-01 10:00 now compare as being identical when using the "Overwrite if newer" file exists action
- MSW: Make handling of FD_CLOSE socket events more robust
3.7.4.1 (2014-02-11)
- Fix detection of modified files
- Additional fixes for site-specific bookmark handling
3.7.4 (2014-02-09)
+ Added SOCKS4 support
- Additional bugfix for site-specific bookmarks
- Improve compatibility with servers sending directory listings in Polish language or in EBCDIC encoding
- Handle set user id bit when populating permissions dialog.
3.7.4-rc1 (2014-02-01)
+ Added Corsican and Kabyle translations
+ SFTP now supports the hmac-sha2-256 algorithm
- MSW: Show local timestamps for old files using the correct daylight saving time (DST) offset.
- Fix loading of transfer queue if starting FileZilla while another instance is in the process of shutting down
- Fix interaction between site-specific bookmarks and multiple tabs
- Don't resume uploads when there's zero octets left to transfer
- Improve symbolic link detection when using MLSD
- If processing a queue with files queued on multiple servers and not storing passwords, the password was not always asked prior to switching servers
- Use the correct name element when importing sites
- MSW: Show actual Windows version in about dialog regardless of app-compat settings
2014-04-08 libmms-0.6.4 release (blutomat <blutomat@gmail.com>)
---------------------------------------------------------------
* Fix a possible heap memory overrun in get_answer().
Reported by Alex Chapman.
2014-04-02 libmms-0.6.3 release (blutomat <blutomat@gmail.com>)
---------------------------------------------------------------
* Some changes for more recent automake versions
* Remove glib dependency from uri.c and thus from whole libmms, patch by Andre Przywara
http://sourceforge.net/p/libmms/patches/11/
* Fix several issues that prevented seeking from working, patch by John Lindgren
http://sourceforge.net/p/libmms/patches/12/
* Remove dependency on iconv
https://sourceforge.net/p/libmms/bugs/15/
* Fix connecting to certain mms streams, patch by gstblub
http://sourceforge.net/p/libmms/bugs/13/
- Now depends on :mod:`amqp` 1.4.5.
- RabbitMQ 3.3 changes QoS semantics (Issue #339).
See the RabbitMQ release notes here:
http://www.rabbitmq.com/blog/2014/04/02/breaking-things-with-rabbitmq-3-3/
A new connection property has been added that can be used to detect
whether the remote server is using this new QoS behavior::
>>> Connection('amqp://').qos_behavior_matches_spec
False
so if your application depends on the old semantics you can
use this to set the ``apply_global`` flag appropriately::
def update_prefetch_count(channel, new_value):
channel.basic_qos(
0, new_value,
not channel.connection.client.qos_behavior_matches_spec,
)
- Users of :mod:`librabbitmq` is encouraged to upgrade to librabbitmq 1.5.0.
The ``kombu[librabbitmq]`` extra has been updated to depend on this
version.
- Pools: Now takes transport options into account when comparing connections
(Issue #333).
- MongoDB: Fixes Python 3 compatibility.
- Async: select: Ignore socket errors when attempting to unregister handles
from the loop.
- Pidbox: Can now be configured to use a serializer other than json,
but specifying a serializer argument to :class:`~kombu.pidbox.Mailbox`.
- Message decompression now works with Python 3.
- Can now deserialize more AMQP types.
Now handles types ``short string``, ``short short int``,
``short short unsigned int``, ``short int``, ``short unsigned int``,
``long unsigned int``, ``long long int``, ``long long unsigned int``
and ``float`` which for some reason was missing, even in the original
amqplib module.
- SSL: Workaround for Python SSL bug.
A bug in the python socket library causes ``ssl.read/write()``
on a closed socket to raise :exc:`AttributeError` instead of
:exc:`IOError`.
Fix contributed by Craig Jellick.
- ``Transport.__del_`` now handles errors occurring at late interpreter
shutdown (Issue #36).
rcorder: Circular dependency on provision `named' in file `/etc/rc.d/ntpdate'.
Fix it by aping -r1.22 of src/etc/rc.d/named, which had replaced
"SERVERS" with "NETWORKING mountcritremote syslogd". Problem and
fix reported by Nathan Arthur.
Bump version by exactly nine years.
8.5.4
Issue #32: Add logging around large DCC messages to facilitate
troubleshooting.
Issue #31: Fix error in connection wrapper for SSL example.
8.5.3
Issue #28: Fix TypeError in version calculation in irc.bot CTCP version.
8.5.2
Updated DCC send and receive scripts (Issue #27).
8.5.1
Fix timestamp support in schedule.DelayedCommand construction.
8.5
irc.client.NickMask is now a Unicode object on Python 2. Fixes issue
reported in pull request #19.
Issue #24: Added DCCConnection.send_bytes for transmitting binary data.
privmsg remains to support transmitting text.
8.4
Code base now runs natively on Python 2 and Python 3, but requires six to
be installed.
Issue #25: Rate-limiting has been updated to be finer grained (preventing
bursts exceeding the limit following idle periods).
8.3.2
Issue #22: Catch error in bot.py on NAMREPLY when nick is not in any visible
channel.
8.3.1
Fixed encoding errors in server on Python 3.
8.3
Added a set_keepalive method to the ServerConnection. Sends a periodic PING
message every indicated interval.
8.2
Added support for throttling send_raw messages via the ServerConnection
object. For example, on any connection object:
connection.set_rate_limit(30)
That would set the rate limit to 30 Hz (30 per second). Thanks to Jason Kendall for the suggestion and bug fixes.
8.1.2
Fix typo in client.NickMask.
8.1.1
Fix typo in bot.py.
8.1
Issue #15: Added client support for ISUPPORT directives on server connections. Now, each ServerConnection has a features attribute which reflects the features supported by the server. See the docs for irc.features for details about the implementation.
8.0.1
Issue #14: Fix errors when handlers of the same priority are added under Python 3. This also fixes the unintended behavior of allowing handlers of the same priority to compare as unequal.
8.0
This release brings several backward-incompatible changes to the scheduled commands.
Refactored implementation of schedule classes. No longer do they override the datetime constructor, but now only provide suitable classmethods for construction in various forms.
Removed backward-compatible references from irc.client.
Remove 'arguments' parameter from scheduled commands.
Clients that reference the schedule classes from irc.client or that construct them from the basic constructor will need to update to use the new class methods:
- DelayedCommand -> DelayedCommand.after
- PeriodicCommand -> PeriodicCommand.after
Arguments may no longer be passed to the 'function' callback, but one is encouraged instead to use functools.partial to attach parameters to the callback. For example:
DelayedCommand.after(3, func, ('a', 10))
becomes:
func = functools.partial(func, 'a', 10)
DelayedCommand.after(3, func)
This mode puts less constraints on the both the handler and the caller. For example, a caller can now pass keyword arguments instead:
func = functools.partial(func, name='a', quantity=10)
DelayedCommand.after(3, func)
Readability, maintainability, and usability go up.
7.1.2
Issue #13: TypeError on Python 3 when constructing PeriodicCommand (and thus execute_every).
7.1.1
Fixed regression created in 7.0 where PeriodicCommandFixedDelay would only cause the first command to be scheduled, but not subsequent ones.
7.1
Moved scheduled command classes to irc.schedule module. Kept references for backwards-compatibility.
7.0
PeriodicCommand now raises a ValueError if it's created with a negative or zero delay (meaning all subsequent commands are immediately due). This fixes#12.
Renamed the parameters to the IRC object. If you use a custom event loop and your code constructs the IRC object with keyword parameters, you will need to update your code to use the new names, so:
IRC(fn_to_add_socket=adder, fn_to_remove_socket=remover, fn_to_add_timeout=timeout)
becomes:
IRC(on_connect=adder, on_disconnect=remover, on_schedule=timeout)
If you don't use a custom event loop or you pass the parameters positionally, no change is necessary.
6.0.1
Fixed some unhandled exceptions in server client connections when the client would disconnect in response to messages sent after select was called.
6.0
Moved LineBuffer and DecodingLineBuffer from client to buffer module. Backward-compatible references have been kept for now.
Removed daemon mode and log-to-file options for server.
Miscellaneous bugfixes in server.
5.1.1
Fix error in 2to3 conversion on irc/server.py (issue #11).
5.1
The IRC library is now licensed under the MIT license.
Added irc/server.py, based on hircd by Ferry Boender.
Added support for CAP command (pull request #10), thanks to Danneh Oaks.
5.0
Another backward-incompatible change. In irc 5.0, many of the unnecessary getter functions have been removed and replaced with simple attributes. This change addresses issue #2. In particular:
Connection._get_socket() -> Connection.socket (including subclasses)
Event.eventtype() -> Event.type
Event.source() -> Event.source
Event.target() -> Event.target
Event.arguments() -> Event.arguments
The nm_to_* functions were removed. Instead, use the NickMask class attributes.
These deprecated function aliases were removed from irc.client:
- parse_nick_modes -> modes.parse_nick_modes
- parse_channel_modes -> modes.parse_channel_modes
- generated_events -> events.generated
- protocol_events -> events.protocol
- numeric_events -> events.numeric
- all_events -> events.all
- irc_lower -> strings.lower
Also, the parameter name when constructing an event was renamed from eventtype to simply type.
4.0
Removed deprecated arguments to ServerConnection.connect. See notes on the 3.3 release on how to use the connect_factory parameter if your application requires ssl, ipv6, or other connection customization.
3.6.1
Filter out disconnected sockets when processing input.
3.6
Created two new exceptions in irc.client: MessageTooLong and InvalidCharacters.
Use explicit exceptions instead of ValueError when sending data.
3.5
SingleServerIRCBot now accepts keyword arguments which are passed through to the ServerConnection.connect method. One can use this to use SSL for connections:
factory = irc.connection.Factory(wrapper=ssl.wrap_socket)
bot = irc.bot.SingleServerIRCBot(..., connect_factory = factory)
Upstream changes:
* 5.{5,6,7}.2.1 *
snmpd:
- SECURITY: a denial of service attack vector was discovered on
the linux implementation of the ICMP-MIB. This release fixes
this bug and all users are encouraged to update their SNMP
agent if they make use of the ICMP-MIB table objects.
Fixes CVE-2014-2284.
Implemented a new function to read the ZID file if the ZID file backend
is SQlite3. This is not a security problem because the ZRTP cache was
always public and readable, refer to RFC6189.
SQL statement returns all ZID records, sorted by date, newest on top. The
function can then step thru the DB cursor and read the records.
The version also include sevral fixes, usually compiler warnings, some
small problems reported by 'cppcheck' analyser.
Because we have a new set of functions the API changed, thus it's necessary
to recompile applications that use the new library version.
- **MongoDB**: Now endures a connection failover (Issue #123).
- **MongoDB**: Fixed ``KeyError`` when a replica set member is removed.
Also fixes celery#971 and celery/#898.
- **MongoDB**: Fixed MongoDB broadcast cursor re-initialization bug.
- **Async**: Fixed bug in lax semaphore implementation where in
some usage patterns the limit was not honored correctly.
- **Redis**: Fixed problem with fanout when using Python 3 (Issue #324).
- **Redis**: Fixed ``AttributeError`` from attempting to close a non-existing
connection (Issue #320).
- Redis: Fixed serious race condition that could lead to data loss.
The delivery tags were accidentally set to be an incremental number
local to the channel, but the delivery tags need to be globally
unique so that a message can not overwrite an older message
in the backup store.
This change is not backwards incompatible and you are encouraged
to update all your system using a previous version as soon as possible.
- Now depends on :mod:`amqp` 1.4.4.
- Pidbox: Now makes sure message encoding errors are handled by default,
so that a custom error handler does not need to be specified.
- Redis: The fanout exchange can now use AMQP patterns to route and filter
messages.
This change is backwards incompatible and must be enabled with
the ``fanout_patterns`` transport option::
>>> conn = kombu.Connection('redis://', transport_options={
... 'fanout_patterns': True,
... })
When enabled the exchange will work like an amqp topic exchange
if the binding key is a pattern.
This is planned to be default behavior in the future.
- Redis: Fixed ``cycle`` no such attribute error.
* caldav/davclient.py - minor api difference; it feels more
object-oriented to write principal = client.principal() than
principal = Principal(client)
* caldav/tests/test_caldav.py - work to reflect the above
* docs/source/index.rst - work to reflect the above
* docs/source/index.rst - added documentation that the tests may
fail if several test runs are performed simultaneously
* caldav/davclient.py - support for unicode and utf8
* caldav/lib/url.py - support for unicode and utf8
* caldav/objects.py - minor doc enhancement
* tests/test_caldav.py - load an event or a calendar by the URL
* tests/test_caldav.py - test calendar.events()
* tests/test_caldav.py - test utf8 and unicode
* docs/source/index.rst - documentation on how to run the test
suite towards private calendar servers
* caldav/lib/url.py (make): function for backward compatibility
* tests/: more test code, including backward compatibility test
* caldav/lib/namespace.py: fixing issue
* caldav/objects.py (Calendar): compatibility hack for zimbra -
gotcha! Use Calendar display name in the Calendar URL instead of
Calendar ID.
* caldav/objects.py: internal change - _create method now returns
nothing, but sets self.url and self.id instead.
* caldav/objects.py (DAVObject): convenience fix - made client a
conditional parameter to __init__. Defaults to parent.client if
parent is given.
* caldav/objects.py (Calendar): convenience fix - made methods
Calendar.event_by_uid and Calendar.event_by_url. Calendar.event
is an alias to Calendar.event_by_uid for backwards compatibility.
Those methods also loads the object from the remote server (hmmm
... does that make sense, it's inconsistent with the
CalendarSet.calendar method)
* caldav/objects.py (Event): a potential compatibility fix - when
creating an event, some servers seems to want the uid to match the
URL (zimbra will yield 302 on the PUT request). However, I wasn't
able to GET the event from zimbra, neither before nor after this
fix :-(
* caldav/elements/cdav.py: compatibility fix - collation
"i; octet" (with whitespace) not recognized by baikal. "i;octet"
(without whitespace) is OK.
* caldav/objects.py (Calendar): Convenience fix: method add_event
for making it easier to add events. Better error handling; if
calendar creation succeeds but setting calendar name fails, delete
the calendar before raising the exception.
* caldav/objects.py (Event): Bugfix for zimbra - 302 is now an
acceptable return code when creating a new event.
* caldav/davclient.py (DAVClient.request, DAVResponse): Full HTTP
communication is now available in debug logs
* caldav/davclient.py (DAVClient.__init__): Username and password
can now (optionally) be given as separate parameters instead of as
a part of the configuration URL
* caldav/objects.py: By now it's sufficient to pass the base URL
while initializing the DAVClient object. The library will find
the principal URL and home calendar set URL through GETPROP
* caldav/objects.py (Calendar): workaround for problem that
calendar name didn't get set on some (all?) caldav servers.
* caldav/objects.py (Principal, CalendarSet): created a method
calendar() to make it easier to generate a calendar object
(without server-side communication), and make_calendar for
creating a new calendar at the server side.
* tests/test_caldav.py: all broken tests have been disabled.
Temporary made smaller tests to demonstrate what is actually
working on all caldav servers I've tested against (Zimbra,
DAViCal, Baikal and SoGo).
* caldav/objects.py (DAVObject): (internal change) set __str__ and
__repr__ to make debugging easier
* caldav/objects.py: (internal change) Since the principal path and the calendar
home set path are different on most CALDav server implementations,
a new class CalendarSet has been made.
* caldav/lib/url.py: (internal change) Complete rewrite and
API-change. internally all URLs are now handled as objects
* caldav/objects.py (Principal): (internal change) made it
possible to set principal.calendar_home_set (hardly useful except
for from the unit testing code).
* All files: misc minor changes to reflect all the changes above.
---------------------
Features:
* Server is logging remote control commands
* 'knotc reload' doesn't refresh unchanged zones
* 'knotc -f refresh' forces zone retransfer
Bugfixes:
* Missing notifications after DDNS/automatic resign
* Zone is rebootstrapped if the zone file is unreadable
* Progressive bootstrap retry backoff
* Zone file parser allows asterisk as part of the label
* Journal maximum entry size fixes
* Sign DNSKEYs in non-apex nodes as regular RR sets
* Various spelling and typo fixes
Upstream changes:
* Added handler for SIGXFSZ signal (Eric Stanley)
* Fixed bug #444: Nagios 3.5.0 problem with macro $ADMINEMAIL$ :
@ is converted to %40 after 2 nagios reload (Duplicate of bug #407)
* Fixed bug #407: Reloading nagios config causes spaces in
notifications to become plus signs (Alexey Dvoryanchikov)
* Fixed bug #445: Adding triggered downtime for child hosts causes
a SIGSEGV on restart/reload (Eric Stanley)
* Fixed bug #375: Freshness expiration never reached and bug #427:
freshness threshold doesn't work if it is set long (Scott Wilkerson,
Eric Stanley)
* Fixed bug #432: Downtime scheduled as "Nagios Process" and not
the Users name (Sam Lansing, Eric Stanley)
off-by-one errors causing information leakage and possibly DoS.
Restructure the patch files to follow the newer naming conventions.
Add the rc.d script to PLIST.
Bump PKGREVISION.
future releases, the most prominent of which is removal of rancid-fe and
several device-specific script in exchange for device-specific and generic
libraries and a generic script. The generic script, which assumed the
name rancid, loads the relevant library and runs commands as defined by a
configuration file, which means less code duplication, users can more
easily adjust the commands that are run and create their own "device_types"
or filters without altering the base code, and hopefully this means it is
easier for users to upgrade to future versions.
See rancid.types.conf(5). Please, for your benefit and ours, do not alter
the rancid.types.base configuration file; new versions of RANCiD purposely
overwrite this file at installation time.
Not all of the device types have been converted to libraries yet, just
the prominent ones or those prominent to us: Cisco, Juniper, Compass,
Arbor, MRV. We also still have suggestions from users about this new
process to consider and/or implement.
3.0 also includes a new version of par(1) implemented in C. It fixes a
few bugs in the perl version and hopefully does not introduce any new ones.
NOTE WELL: The router.db field separator has been changed to ';' from ':'
to avoid conflict with IPv6 addresses and etc.
==== All Platforms ====
* Fix webseed crash
* Fix crash when adding UDP trackers whose host's canonical name couldn't be found
* Fix crash when sending handshakes to some peers immediately after adding a magnet link
* Fix crash when parsing incoming encrypted handshakes when the user is removing the related torrent
* Add safeguard to prevent zombie processes after running a script when a torrent finishes downloading
* Fix "bad file descriptor" error
* Queued torrents no longer show up as paused after exiting & restarting
* Fix 2.81 compilation error on OpenBSD
* Don't misidentify Tixati as BitTornado
==== Mac Client ====
* Fix bug that had slow download speeds until editing preferences
==== GTK+ Client ====
* Fix crash that occurred in some cases after using Torrent > Set Location
* Fix crash where on_app_exit() got called twice in a row
* Fix 2.81 compilation error on older versions of glib
* Can now open folders that have a '#' in their names
* Silence gobject warning when updating a blocklist from URL
==== Qt Client ====
* Qt 5 support
==== Web Client ====
* Fix syntax error in index.html's meta name="viewport"
* Fix file uploading issue in Internet Explorer 11
Changelog:
aria2 1.18.4
============
Release Note
------------
This release adds new RPC authorization mechanism using --rpc-secret
option. The existing --rpc-user and --rpc-passwd options are now
deprecated, and all applications using RPC API is strongly encouraged
to migrate to the new mechanism. See RPC INTERFACE section in aria2
manual page for the details. The new RPC method, aria2.saveSession,
was added, which tells aria2 server to save session file immediately.
There are several enhancements and bug fixes. See the changes for the
details.
Changes
-------
* Added support for RPC channel encryption in aria2rpc
Patch from David Macek
* Add aria2.saveSession RPC method
This method saves the current session to a file specified by
--save-session option. This method returns "OK" if it succeeds.
* Add numStoppedTotal key to aria2.getGlobalStat() RPC method response
It shows the number of stopped downloads in the current session and
not capped by --max-download-result option. On the other hand, the
existing numStopped key also shows the number of stopped downloads,
but it is capped by --max-download-result option.
* Better handling of 30x HTTP status codes
Reference: http://greenbytes.de/tech/tc/httpredirects/
* Implement new RPC authorization using --rpc-secret option
Add future deprecation warning to --rpc-user and --rpc-passwd. Warn
if neither --rpc-secret nor a combination of --rpc-user/rpc-passwd
is set.
* Add --enable-color option to enable/disable terminal color output
* Add DSCP support
* gnutls: Don't fail handshake if returned error is not fatal
* Add workaround GnuTLS bug with OCSP status extension and
non-blocking socket
GnuTLS version 3.1.3 - 3.1.18 and 3.2.0 - 3.2.8, inclusive, has this
bug. For these versions, we disable OCSP status extension.
* Make GnuTLS log level dependent on the aria2 ones
aria2 1.18.3
============
Release Note
------------
This release fixes the bug which may cause assertion failure after
multi-file downloads (e.g., multi-file metalink or torrent) are
performed several times due to the bad handling of --bt-max-open-files
option.
Changes
-------
* Fix crash if unpause failed before assigning BtProgressInfoFile
object
* Enable and check PIE in makerelease-osx
* Fix bug that numOpenFile_ is not reduced when MultiDiskAdaptor is
deleted
This bug caused assertion error in
RequestGroupMan::ensureMaxOpenFileLimit
o OSPF stub router option (RFC 3137).
o TTL security for OSPF and RIP.
o Protocol packet priority and traffic class handling.
o Multiple routing tables support for FreeBSD and OpenBSD.
o Extends constants to all filter data types.
o Implements eval command.
o 'bgppath ~ int set' filter operation.
o Several bugfixes.
Version 1.3.10 (2013-04-30)
o Lightweight BIRD client for embedded environments.
o Dynamic IPv6 router advertisements.
o New 'next hop keep' option for BGP.
o Smart default routing table for 'show route export/preexport/protocol'.
o Automatic router ID selection could be configured to use address of loopback.
o Allows configured global addresses of NBMA neighbors in OSPFv3.
o Allows BIRD commands from UNIX shell even in restricted mode.
o Route limits inherited from templates can be disabled.
o Symbol names enclosed by apostrophes can contain dots.
o Several bugfixes.
Version 1.3.9 (2013-01-11)
o BIRD can be configured to keep and show filtered routes.
o Separate receive and import limits.
o Several new reconfiguration cmd options (undo, timeout, check).
o Configurable automatic router ID selection.
o Dragonfly BSD support.
o Fixed OSPFv3 vlinks.
o Several minor bugfixes.
Version 1.3.8 (2012-08-07)
o Generalized import and export route limits.
o RDNSS and DNSSL support for RAdv.
o Include in config file support wildcards.
o History deduplication in BIRD client.
o New route attributes krt_source, krt_metric.
o Different instance ID support for OSPFv3.
o Real broadcast mode for OSPFv2.
o Several minor bugfixes.
Version 1.3.7 (2012-03-22)
o Route Origin Authorization basics.
o RIPng working again.
o Extended clist operations in filters.
o Fixes several bugs in BSD iface handling.
o Several minor bugfixes and enhancements.
==============================
Release Notes for Samba 3.6.23
March 11, 2014
==============================
This is a security release in order to address
CVE-2013-4496 (Password lockout not enforced for SAMR password changes).
o CVE-2013-4496:
Samba versions 3.4.0 and above allow the administrator to implement
locking out Samba accounts after a number of bad password attempts.
However, all released versions of Samba did not implement this check for
password changes, such as are available over multiple SAMR and RAP
interfaces, allowing password guessing attacks.
== 1.7.2 - 21-Jan-2014
* Fixed a bug in the Ping::HTTP constructor where it was not honoring the
port if provided as the second argument. Thanks go to Florian Anderiasch
for the spot.
* Removed win32-open3 require in the Ping::External class since it isn't
needed in Ruby 1.9.x or later.
* Refactored the Ping::External class so that it checks the exit status rather
than try to parse output. Thanks go to Miguel Tubia for the suggestion.
* Dropped explicit support for Windows XP.
* Removed reference to win32-open3 in README.
== 1.7.1 - 26-Sep-2013
* Fixed a bug in the Ping::TCP class where it could return nil instead
of false. Thanks go to Grandy Nguyen for the patch.
== 1.7.0 - 25-Aug-2013
* Now requires Ruby 1.9.x or later.
* Replaced the main ping code for the Ping::TCP class. The timeout module
really doesn't work very well with sockets, and so a raw socket approach
combined with IO.select is now used instead.
* Updates to the doc/ping.txt file.
== 1.6.2 - 8-Aug-2013
* Fixed a bug in the ICMP ping helper module. Thanks go to Yuichi
Tsunematsu for the spot.
* The win32-security library is not just a development dependency. Thanks
again go to Yuichi Tsunematsu for the spot.
* Updated the icmp ping tests.
* Updated the gemspec for MS Windows.
== 1.6.1 - 17-Jul-2013
* Automatically set the scheme to "http" if not present when performing
HTTP pings. See https://bugs.ruby-lang.org/issues/8645 for an issue
with the uri library that led to this change. Thanks go to Preston Lee
for the spot.
* Removed the windows/system_info dependency, since it added other
dependencies just to check the Windows version. Instead, I added a
helper file that adds some needed Windows functions using FFI.
* Added Rake as a development dependency and updated the Gemfile
source because Bundler. Thanks to Jean-Philippe Doyle for the patches.
* Added some warning text to the Net::Ping::External tests for users
who are using OpenDNS. In short, you will probably get test failures
and surprising true results for bad hosts.
== 1.6.0 - 19-Mar-2013
* Split out the ldap portion of the code into its own branch.
* Don't require resolv-replace on Ruby 1.9.3 or later.
* Now gets proxy information from the http_proxy, https_proxy, and
no_proxy environment variables and uses that when making requests.
Thanks go to Kevin Olbrich for the patch.
## Changes between 1.9.x and 1.10.0
### Signed 16 Bit Integer Decoding
Signed 16 bit integers are now decoded correctly.
Contributed by Benjamin Conlan.
## Changes between 1.8.0 and 1.9.0
### Performance Improvements in AMQ::BitSet
`AMQ::BitSet#next_clear_bit` is now drastically more efficient
(down from 6 minutes for 10,000 iterations to 4 seconds for 65,536 iterations).
Contributed by Doug Rohrer, Dave Anderson, and Jason Voegele from
[Neo](http://www.neo.com).
## Changes between 1.7.0 and 1.8.0
### Body Framing Fix
Messages exactly 128 Kb in size are now framed correctly.
Contributed by Nicolas Viennot.
Bug Fixes:
- Fix nsd.db unclean close check. Previous databases are considered
unclean by the code and are created anew.
- Adds nsd.db larger than 400Tb check for sanity. Also test if
filesize as documented in the file is correct.
- nsd waits for tasks to complete on stop, prevents nsd.db corruption.
- fix to not delete tmpdir too early in shutdown process.
- disabled udb checking functionality that made it very slow,
this was enabled when enable-checking was turned on.
Features:
* separate ldns into core ldns inside ldns/ subdirectory. No more
configure --with-ldns is needed and unbound does not rely on libldns.
* Accept ip-address: as an alternative for interface: for
consistency with nsd.conf syntax.
* Fix ref#536: acl_deny_non_local and refuse_non_local added.
* so-reuseport: yesno option to distribute queries evenly over
threads on Linux (Thanks Robert Edmonds).
Reuseport is attempted, then fallback to without on failure.
* delay-close: msec option that delays closing ports for which
the UDP reply has timed out. Keeps the port open, only accepts
the correct reply. This correct reply is not used, but the port
is open so that no port-denied ICMPs are generated.
Bug Fixes:
* Fix#528: if very high logging (4 or more) segfault on allow_snoop.
* Fix#531: Set SO_REUSEADDR so that the wildcard interface and a
more specific interface port 53 can be used at the same time, and
one of the daemons is unbound.
* if configured --with-libunbound-only fix make install.
* Patch from Neel Goyal to fix callback in libunbound.
* Patch from Neel Goyal to fix async id assignment if callback
is called by libunbound in the mesh attach.
* Fix bug#537: compile python plugin without ldns library.
* Windows port, adjust %lld to %I64d, and warning in win_event.c.
* Fix#544: Fixed +i causes segfault when running with module conf
"iterator".
* Fix#547: no trustanchor written if filesystem full, fclose checked.
* unbound-event.h is installed if you configure --enable-event-api.
It contains low-level library calls, that use libevent's event_base
and a wireformat return packet in a buffer to perform async
resolution in the client's eventloop.
* speed up unbound, by reducing lock contention on localzones.lock.
* Fix parse (in ldns) of quoted parenthesized text strings.
* Detect libevent2 install automatically by configure and fixup
link with lib/event2 subdir.
* Fix#551: License change "Regents" to "Copyright holder", matching
the BSD license on opensource.org.
* Fix parse of #553(NSD) string in sldns, quotes without spaces.
* Be lenient when a NSEC NameError response with RCODE=NXDOMAIN is
received. This is okay according 4035, but not after revising
existence in 4592. NSEC empty non-terminals exist and thus the
RCODE should have been NOERROR. If this occurs, and the RRsets
are secure, we set the RCODE to NOERROR and the security status
of the response is also considered secure.
* iana portlist updated.
* Fix bug#561: contrib/cacti plugin did not report SERVFAIL rcodes
because of spelling..
Features:
* Return REFUSED for queries to non-hosted zones.
Bug Fixes:
* Fix expired zones to give SERVFAIL, also when parent zone loaded.
* documented nsd-control zonestatus output in nsd-control manpage.
* remove mention of nsdc from nsd-checkconf manpage.
* Disabled recvmmsg and sendmmsg usage by default because kernel
versions have implementation issues: ipv6 ignored, security issues.
* Detect libevent2 install automatically by configure, and use
event2 header files if necessary.
* Fix#551: change Regent to Copyright holder in the LICENSE,
to match the definition on opensource.org for the BSD License.
* Fix#552: zonefile loads on nsd-control reconfig when the name
of the file has changed.
* Fix leak of zone name after zonefile read and fix malloc too
large that would be leaked in the radix tree.
* Fix from 3.2: make SOA RDATA comparisons in XFR more lenient (only
check serial).
* Fix that NSD will delete and recreate not-clean-closed databases.
libnice 0.1.5 (2014-03-06)
==========================
API: nice_agent_recv() and nice_agent_recv_nonblocking() as an alternative to
the nice_agent_attach_recv()
API: nice_agent_recv_messages() and nice_agent_recv_messages_nonblocking() to
receive multiple messages at the same time
API: nice_agent_get_io_stream() to get a GIOStream in reliable mode
API: nice_agent_get_selected_socket() to extract the selected GSocket
Import Google's newer PseudoTCP code including window scaling
Improve PseudoTCP performance
Improve performance
Build fixes
