ChangeLog:
2003-03-31 MAEKAWA Masahide <maekawa@daemon-systems.org>
* 0.17.2
* Fix a bug that the fallback of file compare algorithm doesn't work.
* Fix a bug to calculate the length of file name in Attic.
This is mostly a security fix release.
See the list of changes since 8.12.8 below.
Package change: always put M4 in MAKE_ENV so we are sure of the one used.
Note: this also update mail/libmilter the same version.
8.12.9/8.12.9 2003/03/29
SECURITY: Fix a buffer overflow in address parsing due to
a char to int conversion problem which is potentially
remotely exploitable. Problem found by Michal Zalewski.
Note: an MTA that is not patched might be vulnerable to
data that it receives from untrusted sources, which
includes DNS.
To provide partial protection to internal, unpatched sendmail MTAs,
8.12.9 changes by default (char)0xff to (char)0x7f in
headers etc. To turn off this conversion compile with
-DALLOW_255 or use the command line option -d82.101.
To provide partial protection for internal, unpatched MTAs that may be
performing 7->8 or 8->7 bit MIME conversions, the default
for MaxMimeHeaderLength has been changed to 2048/1024.
Note: this does have a performance impact, and it only
protects against frontal attacks from the outside.
To disable the checks and return to pre-8.12.9 defaults,
set MaxMimeHeaderLength to 0/0.
Do not complain about -ba when submitting mail. Problem noted
by Derek Wueppelmann.
Fix compilation with Berkeley DB 1.85 on systems that do not
have flock(2). Problem noted by Andy Harper of Kings
College London.
Properly initialize data structure for dns maps to avoid various
errors, e.g., looping processes. Problem noted by
Maurice Makaay.
CONFIG: Prevent multiple application of rule to add smart host.
Patch from Andrzej Filip.
CONFIG: Fix queue group declaration in MAILER(`usenet').
CONTRIB: buildvirtuser: New option -t builds the virtusertable
text file instead of the database map.
Portability:
Revert wrong change made in 8.12.7 and actually use the
builtin getopt() version in sendmail on Linux.
This can be overridden by using -DSM_CONF_GETOPT=0
in which case the OS supplied version will be used.
Changes by hubertf and seb; these changes tested on NetBSD, Linux and Irix.
Modified Files:
src/usr.sbin/pkg_install/add: perform.c pkg_add.1
Log Message:
Implement remaining TODO item in pkg upgrade (pkg_add -u):
* Upgrade step 1/4: Check if the new version is ok with all pkgs
* (from +REQUIRED_BY) that require this pkg
Inspired by bsd.pkg.mk's upgrade(?) target.
Modified Files:
src/usr.sbin/pkg_install/admin: main.c
src/usr.sbin/pkg_install/info: main.c perform.c
Log Message:
Consistently check findmatchingname() return value for error condition.
Among other this fixes 'pkg_info -e whateverpkg' exit status when
/var/db/pkg is missing: it is now 1 and not 0.
Modified Files:
src/usr.sbin/pkg_install/lib: version.h
Log Message:
Bump to "20030325" after today's changes from seb and me
This contains security problem solved by samba 2.2.8.
pkgsrc changes:
o pkgsrc organization changesd as samba package.
o note explicitly security problem fixed by samba 2.2.8.
o remove own quota support patch.
Changes from ja-samba-2.2.4.1.0 package:
Changelog of Samba2.2 Japanese Edition
Samba Users Group Japan
Here is the fix list of Samba2.2 Japanese Edition.
The sign of each line means:
*: Fix of Samba Japanese Edition only
x: Fix of sending a patch to Samba Team
c: Fix of being commited a patch by Samba Team
samba-2.2.7a-ja-1.1
~~~~~~~~~~~~~~~~~~~
Changes to the original version
c Fixed two security problems which is fixed at samba 2.2.8
[sugj-tech:5211]
samba-2.2.7a-ja-1.0beta1
~~~~~~~~~~~~~~~~~~~~~~~
Changes to the internationalized version
* Fixed build problem when gettext 0.11.x installed [sugj-tech:5177]
* Fixed memory leak of winbindd [sugj-tech:5152]
* Added 'ldap referrals' parameter [sugj-tech:5124]
* Fixed parameter of 'printing' was set on FreeBSD [sugj-tech:5155]
* Fixed reseting parameters of smbd and nmbd by SIGHUP
[sugj-tech:5160]
* Fixed setting change of the 'printing' parameter works together
with print-related parameters [sugj-tech:5155]
* Fixed error message when old getgroups() is used [sugj-tech:5166]
* Fixed warning message when leap second is set [sugj-tech:5166]
* Fixed altname command of smbclient [sugj-tech:5019]
* Fixed close share command of smbcontrol with Japanese
[sugj-tech:5014]
* Fixed compile problem on Tru64 UNIX [sugj-tech:5033]
* Fixed compile problem of tdb directory [sugj-tech:5033]
* Fixed to enable domain logon to Japanese domain name
[sugj-tech:5043]
* Fixed smbspool command with Japanese [sugj-tech:5048,5112]
* Fixed recycle.c of VFS module [samba-jp:13590]
* Fixed memory allocation of make_printerdef [sugj-tech:5106]
* Fixed compile problem before FreeBSD 2.2.8 [sugj-tech:5112]
* Fixed querydispinfo command of rpcclient [sugj-tech:5112]
* Fixed rpcclient for Japanese resource [sugj-tech:5112]
* Changed option of client tools from '-t' to '-T' [sugj-tech:5077]
* Update smbchartool and removed jcode.pl [sugj-tech:5091]
* Fixed encoding when using euc3 coding system [sugj-tech:5122]
samba-2.2.5-ja-1.0beta3
~~~~~~~~~~~~~~~~~~~~~~~
Changes to the internationalized version
* Added %j macro which means printing job name [sugj-tech:4998]
Changes to the original version
* Fixed counting characters of unistr_to_dos() [sugj-tech:5004]
* Fixed compile problem with --with-quotas on NetBSD [sugj-tech:4965]
ChangeLog:
2003-03-29 MAEKAWA Masahide <maekawa@daemon-systems.org>
* 0.17.1
* ANNOUNCE: Public cvsync service
cvsync.allbsd.org provides the distribution and source trees of
FreeBSD, NetBSD, OpenBSD, OpenDarwin, XFree86, and TenDRA via cvsync.
URL: http://www.allbsd.org/#pub-cvsync
* mk/*.mk
Make compile on old BSDs.
2003-03-28 MAEKAWA Masahide <maekawa@daemon-systems.org>
* Fix signed vs unsigned problem.
