- Bug Fixes
The following vulnerabilities have been fixed.
* wnpa-sec-2013-54
The Bluetooth HCI ACL dissector could crash. Discovered by
Laurent Butti. (Bug 8827)
Versions affected: 1.10.0 to 1.10.1
* wnpa-sec-2013-55
The NBAP dissector could crash. Discovered by Laurent
Butti. (Bug 9005)
Versions affected: 1.10.0 to 1.10.1, 1.8.0 to 1.8.9
* wnpa-sec-2013-56
The ASSA R3 dissector could go into an infinite loop.
Discovered by Ben Schmidt. (Bug 9020)
Versions affected: 1.10.0 to 1.10.1, 1.8.0 to 1.8.9
* wnpa-sec-2013-57
The RTPS dissector could overflow a buffer. Discovered by
Ben Schmidt. (Bug 9019)
Versions affected: 1.10.0 to 1.10.1, 1.8.0 to 1.8.9
* wnpa-sec-2013-58
The MQ dissector could crash. (Bug 9079)
Versions affected: 1.10.0 to 1.10.1, 1.8.0 to 1.8.9
* wnpa-sec-2013-59
The LDAP dissector could crash. Versions affected: 1.10.0
to 1.10.1, 1.8.0 to 1.8.9
* wnpa-sec-2013-60
The Netmon file parser could crash. Discovered by G.
Geshev. (Bug 8742)
Versions affected: 1.10.0 to 1.10.1, 1.8.0 to 1.8.9
- The following bugs have been fixed:
* Lua ByteArray:append() causes wireshark crash. (Bug
4461)
* Lua script can not get "data-text-lines" protocol data.
(Bug 5200)
* Lua: Trying to use Field.new("tcp.segments") to get
reassembled TCP data is failed. (Bug 5201)
* "Edit Interface Settings": "Capture Filter" combo box is
not populated across Wireshark sessions. (Bug 7278)
* PER normally small non-negative whole number decoding is
wrong when >= 64. (Bug 8841)
* Strange behavior of tree expand/collapse in packet details.
(Bug 8908)
* Incorrect parsing of IPFIX *IpTotalLength elements.
(Bug 8918)
* IO graph/advanced, max/min/summ error on frames with
multiple Diameter messages. (Bug 8980)
* pod2man error on reordercap.pod. (Bug 8982)
* SGI Nsym disambiguation is unconditionally displayed when
dissecting VHT. (Bug 8989)
* The Wireshark icon doesn't show up in OS X 10.5. (Bug
8993)
* Build fails if system Python is version 3+. (Bug 8995)
* SCSI dissector does not parse PERSISTENT RESERVE commands
correctly. (Bug 9012)
* SDP messages throws an assert. (Bug 9022)
* Wireshark fails to decode single-line, multiple Contact:
URIs in SIP responses. (Bug 9031)
* PN_MRP LinkUp Message is shown as LinkDown in info.
(Bug 9035)
* Dissector for EtherCAT: ADS highlighting in the Packet
Bytes Pane is incorrect. (Bug 9036)
* 802.11 HT Extended Capabilities B10 decode incorrect.
(Bug 9038)
* Wrong dissection of MSTI Root Identifiers for all MSTIs.
(Bug 9088)
* Weird malformed HTTP error. (Bug 9101)
* Warning for attempting to install 64-bit Wireshark on a
32-bit machine has an embedded "\n". (Bug 9103)
* Wireshark crashes when using "Export Specified Packets" >
"Displayed". (Bug 9106)
- Updated Protocol Support
ASN.1 PER, ASSA R3, Bluetooth HCI ACL, EtherCAT AMS, GTPv2,
HTTP, IEEE 802.11, IPFIX, ISDN SUP, LDAP, MQ, NBAP, Novell SSS,
PROFINET MRP, Radiotap, ROHC, RTPS, SCSI, SIP, and STP
- New and Updated Capture File Support
Microsoft Network Monitor, pcap-ng.
2013-09-01 Flickcurl Version 1.25 Released
More OAuth fixes including getting uploading fully working.
Multiple internal OAuth changes to simplify code.
Updated the coverage for API calls added in the last year
approximately.
Added new API call to get the most frequently used tags for a user.
This does not seem to work over OAuth:
flickcurl_tag** flickcurl_tags_getMostFrequentlyUsed(flickcurl* fc);
Added new API call to get the groups of a user:
flickcurl_group** flickcurl_people_getGroups(flickcurl* fc,
const char* user_id, const char* extras);
Added new API call to get contacts tagging suggestions but reordered
the parameters to match the rest of the contacts.get* API calls.
flickcurl_contact** flickcurl_contacts_getTaggingSuggestions(flickcurl* fc,
const char* include_self, const char* include_address_book,
int page, int per_page);
Added new API calls flickcurl_groups_join(),
flickcurl_groups_joinRequest() and flickcurl_groups_leave() for (some
of) the new group API:
int flickcurl_groups_join(flickcurl* fc, const char* group_id,
const char* accept_rules);
int flickcurl_groups_joinRequest(flickcurl* fc, const char* group_id,
const char* message, const char* accept_rules);
int flickcurl_groups_leave(flickcurl* fc, const char* group_id,
const char* delete_photos);
Updated the example code flickrdf.c to use the non-deprecated
flickcurl_photos_getInfo2()
Updated deprecated flickcurl-config(1) program to be independent of
pkg-config. This allows make distcheck to work.
This minor maintenance release provides accumulated build configuration
improvements and janitorial cleanups.
Alan Coopersmith (8):
xfindproxy only depends on xproto, not x11
Convert STRING_BYTES & STORE_STRING from macros to inline functions
Fix some clang warnings about implicit integer size/sign conversions
Stop casting malloc return values
Move global appContext into main() to avoid shadow warnings
Mark input string to cvthexkey() as const
Fix some clang integer conversion warnings in cvthexkey()
xfindproxy 1.0.3
Changes from History.txt:
=== 0.5.0 2013-08-26
* show RT/Fav count on % tw --id=1234552234
=== 0.4.9 2013-08-22
* show tweet by status_id % tw --id=1234543234
The PowerDNS nameserver is a modern, advanced and high performance
authoritative-only nameserver. It is written from scratch and conforms
to all the relevant DNS standards documents. PowerDNS is open source.
The PowerDNS nameserver utilizes a flexible backend architecture that
can access DNS information from any data source. This includes file
formats, BIND zone files, relational databases or LDAP directories.
This packages provides the SQLite version 3 backend module.
**** 0.72 Dec 28, 2012
Fix rt.cpan.org #82148
nxrrset fails to ignore RDATA.
Fix rt.cpan.org #82134
TSIG key and algorithm names not downcased in digest.
Class not forced to ANY.
Fix rt.cpan.org #82063
yxrrset, nxrrset and rr_del functions should force zero TTL.
Fix rt.cpan.org #82047
Clarify documentation to indicate that header counts may
differ from the number of RRs present if a packet is corrupt.
Fix rt.cpan.org #81941
Clarify documentation to make clear that bgread will not switch to
TCP when a truncated packet is received.
**** 0.71 Dec 15, 2012
Temporary workaround rt.cpan.org #81760
The rdatastr method for TXT RRs will return unconditionally
quoted rdata fields to work around an issue with updating
SpamAssassin rules. This workaround will be reverted after
release of a version of SpamAssassin which resolves the issue.
Fix rt.cpan.org #81942
Fix memory leak on packet cleanup. The back-reference via the
header attribute (with xbody) caused the garbage collector not
to clean a packet. Header is now explicitly cleaned via
Net::DNS::Packet::DESTROY.
Fix TSIG initialization
Uninitialised algorithm attribute caused signature generation
to fail silently when creating a TSIG signed packet.
Fix rt.cpan.org #81869
The rr_del auxilliary function broken by a conflicting change
in the RR.pm string parser. Note the ambiguous use of ANY,
which may stand for CLASS255 or TYPE255 depending upon the
argument string presented.
Fix rt.cpan.org #81756
Test failures on Perl 5.8.5 .. 5.8.8.
lc(), uc() and case insensitive regex matching broken for UTF8.
Thanks are due to Paul Howarth for patient work with perl -d.
Fix rt.cpan.org #81787
NXDOMAIN no longer reported by $resolver->errorstring.
Fix rt.cpan.org #81814
Allow zero in format, tag and algorithm fields of CERT RR.
Fix rt.cpan.org #81786
Substitute last owner for leading spaces in multiline zonefile RR.
Fix rt.cpan.org #77444
Make use of new extended header modus operandi for OPT records
also in the resolver. Preventing a warning.
**** 0.70 Dec 6, 2012
Feature added support for NID L32 L64 LP, RFC6742.
(allow ruby-2.0 and fixes locale data installation)
== 2.0.1: 2013-08-29
A bug fix release for the first time in a year!
=== Improvements
* Supported initial setup on environments that don't support opening a URI
from GTK+ such as OS X.
0.20.4
======
Changes since 0.20.3:
- Fix warnings in gtk-doc run.
- Some minor improvements to the documentation.
- Make the user-agent ASCII-only to fix issues with discovery when
g_get_application_name () returned a translated string.
- Force HTTP version to be 1.1 in SOAP requests.
- Fix potential crashes in XML parsing.
- Fix potential memory leak in gupnp_service_proxy_send_action_valist.
- Some codestyle fixes.
- Add gupnp_device_info_list_dlna_device_class_identifier () to retrieve the
content of <dlna:X_DLNADOC> nodes.
Bugs fixed in this release:
- https://bugzilla.gnome.org/show_bug.cgi?id=704953
- https://bugzilla.gnome.org/show_bug.cgi?id=702555
- https://bugzilla.gnome.org/show_bug.cgi?id=704094
- https://bugzilla.gnome.org/show_bug.cgi?id=700947
All contributors to this release:
Ludovic Ferrandis <ludovic.ferrandis@intel.com>
Jens Georg <mail@jensge.org>
Sébastien Bianti <sebastien.bianti@linux.intel.com>
Bastien Nocera <hadess@hadess.net>
0.14.4
======
- Fix gtk-doc warnings.
- Use SO_REUSEPORT on FreeBSD and Debian/kFreeBSD.
- Fix discovery issue with some devices when g_get_application_name returned a
non-ASCII translated version of the name.
- Fix a compiler warning about parentheses.
- Use GNOME_COMPILE_WARNINGS for a safe set of strict compiler warnings.
- Remove the use of INCLUDES which has been deprecated for a while.
All contributors to this release:
Jens Georg <jensg@openismus.com>
Bastien Nocera <hadess@hadess.net>
* Fix build with lua 5.2.
Changelog:
Main changes for LuaSocket 3.0-rc1 are IPv6 support and Lua 5.2 compatibility.
* Added: Compatible with Lua 5.2
- Note that unless you define LUA_COMPAT_MODULE, package
tables will not be exported as globals!
* Added: IPv6 support;
- Socket.connect and socket.bind support IPv6 addresses;
- Getpeername and getsockname support IPv6 addresses, and
return the socket family as a third value;
- URL module updated to support IPv6 host names;
- New socket.tcp6 and socket.udp6 functions;
- New socket.dns.getaddrinfo and socket.dns.getnameinfo functions;
* Added: getoption method;
* Fixed: url.unescape was returning additional values;
* Fixed: mime.qp, mime.unqp, mime.b64, and mime.unb64 could
mistaking their own stack slots for functions arguments;
* Fixed: Receiving zero-length datagram is now possible;
* Improved: Hidden all internal library symbols;
* Improved: Better error messages;
* Improved: Better documentation of socket options.
* Fixed: manual sample of HTTP authentication now uses correct
"authorization" header (Alexandre Ittner);
* Fixed: failure on bind() was destroying the socket (Sam Roberts);
* Fixed: receive() returns immediatelly if prefix can satisfy
bytes requested (M Joonas Pihlaja);
* Fixed: multicast didn't work on Windows, or anywhere
else for that matter (Herbert Leuwer, Adrian Sietsma);
* Fixed: select() now reports an error when called with more
sockets than FD_SETSIZE (Lorenzo Leonini);
* Fixed: manual links to home.html changed to index.html (Robert Hahn);
* Fixed: mime.unb64() would return an empty string on results that started
with a null character (Robert Raschke);
* Fixed: HTTP now automatically redirects on 303 and 307 (Jonathan Gray);
* Fixed: calling sleep() with negative numbers could
block forever, wasting CPU. Now it returns immediately (MPB);
* Improved: FTP commands are now sent in upper case to
help buggy servers (Anders Eurenius);
* Improved: known headers now sent in canonic
capitalization to help buggy servers (Joseph Stewart);
* Improved: Clarified tcp:receive() in the manual (MPB);
* Improved: Decent makefiles (LHF).
* Fixed: RFC links in documentation now point to IETF (Cosmin Apreutesei).
PR pkg/48156
* add a sc_warts2json utility program that prints out JSON renderings
of trace, ping, and dealias objects in scamper warts files. this is
useful when developing simple analysis programs in perl. the
initial implementation of JSON output for ping and trace was
supplied by Internap. Thanks a lot Internap!
* add a sc_speedtrap utility program that resolves a set of IPv6
interfaces for aliases (which interfaces belong to the same router).
documented in sc_speedtrap(1) man page.
http://www.caida.org/~mjl/pubs/speedtrap.pdf
* add a sc_ipiddump utility program that prints out all IPIDs received
in ping and dealias objects. documented in sc_ipiddump(1) man page.
in ping and dealias objects. documented in sc_ipiddump(1) man page.
in scamper:
* output json objects with -O json
* add -O debugfileappend, causing the debugfile to be appended to
rather than truncated
* do not output debugging information to stderr if NDEBUG was
specified
* drain fds that are not used by any measurement but have not been
closed yet
* improve the use of poll()
* allow a control socket client to specify its mixing priority
* correctly interpret the neighbour discovery cache sysctl on MacOS.
* fix build on MacOS systems without IPFW.
* fixes prompted by clang static analysis.
* fixes prompted by clang static analysis.
in sc_analysis_dump:
* improvements to the comment header printed automatically at the start
* add -M option to print out MPLS headers in ICMP extensions.
* add -Q option to print out Quoted IP TTL
* add -T option to print out the IP TTL of the response packet
in scamper-ping
* implement stats function so that the stats printed are not junk
* add an -M <mtu> option which causes scamper to send a PTB in
response to a packet larger than the given size.
* add a -P icmp-time option which causes ping to send ICMP timestamp
requests.
requests.
in scamper-sting:
* various improvements in the hole filling phase.
* add -U <userid>
in scamper-dealias:
* implement IPv6 support for Ally and RadarGun which is induced by
sending ICMP echo packets larger than a given pseudo MTU size
(causing a responses to be fragmented and thus an ID field revealed.
* implement IPv6 support for Mercator
* be more strict in declaring two interfaces to be aliases: infer
the byte ordering by determining if the shortest distance in a
sequence of ID values is in byte-swapped or not, and then using
that byte ordering mode.
=============================================
Release Highlights
==================
server
------
bug fixes
25713 fix crash in the delegate mechanism leading to various crashes, and
intra-cluster incompatibility between RabbitMQ 3.1.4 and other members
of the 3.1.x series (since 3.1.4)
25700 25710 prevent (harmless) errors being logged when pausing in
pause_minority mode (since 3.1.0)
LDAP plugin
-----------
bug fixes
25703 prevent channel crash when attempting to retrieve LDAP attribute that
does not exist (since 2.7.0)
Changes in 3.1.4
=============================================
Security Fixes
==============
server
------
25686 ensure DLX declaration checks for publish permission (since 2.8.0)
management plugin
-----------------
24803 update to a later version of Mochiweb that fixes a directory traversal
vulnerability allowing arbitrary file access on Windows (since 2.1.0)
Release Highlights
==================
server
------
bug fixes
25638 fix resource leak with mirrored queues when whole clusters stop
(since 3.0.0)
25624 fix queue crash in mirrored queue handling of messages during promotion
(since 2.6.0)
25615 25670 fix race conditions in mirrored queues when different cluster
nodes start and stop near-simultaneously (since 2.6.0)
25617 fix corrupt_cluster_status_files error after abrupt node shutdown
(since 3.0.0)
25645 fix mirrored queue sync failure in the presence of un-acked messages
not at the head of the queue (since 3.1.0)
25640 fix race condition leading to channel crash with low prefetch count
repeated basic.consume and basic.cancel (since 3.1.0)
25625 fix memory leak of mirrored queue messages during promotion
(since 2.6.0)
25649 allow hipe compilation on Erlang R16B01
25659 allow offline cluster node removal with a node which is not second
from last (since 3.0.0)
25648 make `rabbitmqctl join_cluster' idempotent (since 3.0.0)
25651 improve `rabbitmqctl cluster_status' handling of partition info when
cluster nodes are in the process of stopping (since 3.1.0)
25689 ensure launch of subprocesses to monitor disk space and file handles
works correctly when clink shell is installed on Windows (since 2.1.0)
25594 fix rabbit_error_logger crash during failed startup (since 1.4.0)
25631 fix bug in shutdown sequence that could lead to spurious
INTERNAL_ERRORs being sent to clients (since 3.1.0)
erlang client
-------------
bug fixes
25632 fix broken error handling in amqp_network_connection that could lead
to a crash during broker shutdown (since 2.4.0)
25688 fix bug in challenge-response auth handling (since 2.3.0)
enhancements
25674 add amqp_rpc_{client,server}:start_link()
STOMP plugin
------------
bug fixes
25691 fix connection crash on consumer cancellation notification (since 3.0.0)
build and packaging
-------------------
bug fixes
25668 add ssl support to OS X standalone package
25584 ensure that VERSION is set correctly when building src packages
(since 2.7.0)
Upstream changes:
1.06 August 21, 2013
! #87935 skip all MIME-Parser tests if it is not installed
! #87787 Use of uninitialized value $ns in Lite.pm
1.05 August 18, 2013
! #87848 Fix manifest, fix invalid http version from release blunder
======
* proxy/gnome: Fix "automatic" mode, which was mistakenly being
treated as "none" (Dan)
* proxy/gnome: Use this in Unity sessions as well as GNOME ones.
(#698936, Iain Lane)
* proxy/libproxy: Fix handling of SOCKS proxies (#699359, Dan)
since 1.24 see file NEWS in the distfile.
Security fixes since 1.24:
* Fix crash when processing crafted commands (CVE-2012-4502)
(possible with IP addresses allowed by cmdallow and localhost)
* Don't send uninitialized data in SUBNETS_ACCESSED and CLIENT_ACCESSES
replies (CVE-2012-4503) (not used by chronyc)
Reviewed by: Joerg Sonnenberger <joerg@netbsd.org>
- trial now has an --exitfirst flag which stops the test run after
the first error or failure.
- twisted.internet.ssl.CertificateOptions now supports chain
certificates.
- twisted.internet.endpoints now provides ProcessEndpoint, a child
process endpoint.
- Factory now has a forProtocol classmethod that constructs an
instance and sets its protocol attribute.
- twisted.internet.endpoints.connectProtocol allows connecting to a
client endpoint using only a protocol instance, rather than
requiring a factory.
- twisted.trial.unittest.SynchronousTestCase.assertNoResult no longer
swallows the result, if the assertion succeeds.
- twisted.python.constants.FlagConstant implements __iter__ so that
it can be iterated upon to find the flags that went into a flag
set, and implements __nonzero__ to test as false when empty.
- assertIs and assertIsNot have now been added to
twisted.trial.unittest.TestCase.
- twisted.trial.unittest.TestCase.failureResultOf now takes an
optional expected failure type argument.
- The POSIX implementation of
twisted.internet.interfaces.IReactorProcess now does not change the
parent process UID or GID in order to run child processes with a
different UID or GID.
Upstream changes:
1.04 August 9, 2013
! #87605 Skip XML::Parser::Lite tests if it is missing [github.com/omega]
1.03 August 4, 2013
! #87195 Remove DIME::Tools dep until we can work around its issues
1.02 July 30, 2013
! #87421 1.01 release blew out xml versions. mea culpa.
1.01 July 29, 2013
! #84168 Test t/02-payload.t fails under Perl 5.17.10
! #87127 TEST.pl removed from MANIFEST
! revert #85713 - various reports of environment failures
1.0 July 16, 2013
! #85713 SOAP::Transport::HTTP, 500 error skips parsing of response
! No more Windows 98 client support. Wait, wut?
! Merge SOAP::Transport::TCP back into SOAP::Lite (for now)
! #82416: xop href cid: URI encoded support reported by Michael R. Davis (mrdvt92)
! #85208 bad test plan
! #83750 different headers for mod_perl vs mod_perl2 [Mithun Bhattacharya]
0.716 May 10, 2013
! #17275 Client unable to detect fatal SOAP failure (e.g. unable to connect to host)
! #81471 Force array context for correct Apache header parsing in SOAP::Transport::HTTP
! #45611 deserializing SOAP message with composite attachment raises exception
! #84168 Test t/02-payload.t fails under Perl 5.17.10
! #85098 Monkey patch for LWP::Protocol confuses the toolchain
! #78692 / #84724 / #83715 Sending large object (many levels deep) throws error Incorrect parameter
! #78502 t/08-schema.t noisy under 5.17.2 (unescaped left brace in regex is deprecated)
! #78608 Documentation for "+trace"
! #78639 Spelling error reported by Debian tools
==============================
Release Notes for Samba 3.5.22
August 05, 2013
==============================
This is a security release in order to address
CVE-2013-4124 (Missing integer wrap protection in EA list reading can cause
server to loop with DOS).
o CVE-2013-4124:
All current released versions of Samba are vulnerable to a denial of
service on an authenticated or guest connection. A malformed packet
can cause the smbd server to loop the CPU performing memory
allocations and preventing any further service.
A connection to a file share, or a local account is needed to exploit
this problem, either authenticated or unauthenticated if guest
connections are allowed.
This flaw is not exploitable beyond causing the code to loop
allocating memory, which may cause the machine to exceed memory
limits.
Changes since 3.5.21:
---------------------
o Jeremy Allison <jra@samba.org>
* BUG 10010: CVE-2013-4124: Missing integer wrap protection in EA list
reading can cause server to loop with DOS.
==============================
Release Notes for Samba 3.6.17
August 05, 2013
==============================
This is a security release in order to address
CVE-2013-4124 (Missing integer wrap protection in EA list reading can cause
server to loop with DOS).
o CVE-2013-4124:
All current released versions of Samba are vulnerable to a denial of
service on an authenticated or guest connection. A malformed packet
can cause the smbd server to loop the CPU performing memory
allocations and preventing any further service.
A connection to a file share, or a local account is needed to exploit
this problem, either authenticated or unauthenticated if guest
connections are allowed.
This flaw is not exploitable beyond causing the code to loop
allocating memory, which may cause the machine to exceed memory
limits.
Changes since 3.6.16:
---------------------
o Jeremy Allison <jra@samba.org>
* BUG 10010: CVE-2013-4124: Missing integer wrap protection in EA list
reading can cause server to loop with DOS.
This is a major update, many fixes and improvements.
Main reason for the update was to sync the embedded sftp client
with putty after fixes for vulnerabilities.
Update HOMEPAGE, MASTER_SITES.
Set USE_GNU_READLINE to catch up to 2012Q3 devel/readline builtin detection.
0.99.22.3 basically contains a security bugfix for OSPF-API.
0.99.22.2 was not released.
0.99.22.1 contains a few non-security bugfixes.
Changes in 0.99.22 since 0.99.21:
- [bgpd] The semantics of default-originate route-map have changed.
The route-map is now used to advertise the default route conditionally.
The old behaviour which allowed to set attributes on the originated
default route is no longer supported.
- [bgpd] There is now a replace-as option to neighbor ... local-as ...
no-prepend. For details, refer to the user documentation.
- [zebra] An FPM interface has been added. This provides an alternate
interface to routing information and is geared at OpenFlow & co.
- [snmp] AgentX is now supported; the old smux backend is considered
deprecated. ospf6d has also had OSPFV3-MIB added.
- [*] several issues with configuration save/load/apply have been fixed,
in particular on ospf "max-metric router-lsa administrative" and
"distribute-list", bgpd "no neighbor activate", isisd "metric-style",
- [*] a lot of bugs have been fixed, please refer to the git log
based on PR pkg/48082.
3.5.0 - 03/15/2013
------------------
* Fixed bug #403: The "configuration" page of the webui doesn't use entity
encoding when displaying the "command expansion" item (Eric Stanley, Phil
Randal)
* Fixed bug #424: Nagios Core 3.4.4 seg fault (core dump) on restart after
removing config for running service (Eric Stanley)
* Updated CGI utility functions to support UTF-8 characters (Eric Stanley)
* Fixed bug where selecting Command Expansion from Configuration CGI page would
display commands instead (Eric Stanley)
* Fixed bug #369: status.cgi crashes with segfault when there are german ulauts
(äöüß) in the hostname or the servicename (Eric Stanley)
* Fixed bug #418: Scheduled Downtime Notifications Resent On Nagios
Restart/reload (Eric Stanley)
* Change to tar.gz file fetch
* Use perl5 automatic PLIST
* Add a patch so this works with Net::DNS 0.69
* Modify dependence on Net::DNS to be >= 0.42 in accordance with distribution
* Bump PKGREVISION
Thanks to wiz@ for help when I got stuck (auto-plist, include order etc.)
Only print script warnings when a script is used. Remove stray mention of script-security system.
Move settings of user script into set_user_script function
Move checking of script file access into set_user_script
Provide more accurate warning message
Fix NULL-pointer crash in route_list_add_vpn_gateway().
Fix problem with UDP tunneling due to mishandled pktinfo structures.
Always push basic set of peer info values to server.
make 'explicit-exit-notify' pullable again
Fix proto tcp6 for server & non-P2MP modes
Fix Windows script execution when called from script hooks
Fixed tls-cipher translation bug in openssl-build
Fixed usage of stale define USE_SSL to ENABLE_SSL
Fix segfault when enabling pf plug-ins
- The following vulnerabilities have been fixed.
* wnpa-sec-2013-41
The DCP ETSI dissector could crash. (Bug 8717)
Versions affected: 1.10.0, 1.8.0 to 1.8.7
CVE-2013-4083
* wnpa-sec-2013-42
The P1 dissector could crash. Discovered by Laurent Butti.
(Bug 8826)
Versions affected: 1.10.0
CVE-2013-4920
* wnpa-sec-2013-43
The Radiotap dissector could crash. Discovered by Laurent
Butti. (Bug 8830)
Versions affected: 1.10.0
CVE-2013-4921
* wnpa-sec-2013-44
The DCOM ISystemActivator dissector could crash. Discovered
by Laurent Butti. (Bug 8828)
Versions affected: 1.10.0
CVE-2013-4924
CVE-2013-4926
* wnpa-sec-2013-45
The Bluetooth SDP dissector could go into a large loop.
Discovered by Laurent Butti. (Bug 8831)
Versions affected: 1.10.0, 1.8.0 to 1.8.8
CVE-2013-4927
* wnpa-sec-2013-46
The Bluetooth OBEX dissector could go into an infinite
loop. (Bug 8875)
Versions affected: 1.10.0
CVE-2013-4928
* wnpa-sec-2013-47
The DIS dissector could go into a large loop. (Bug
8911)
Versions affected: 1.10.0, 1.8.0 to 1.8.8
CVE-2013-4929
* wnpa-sec-2013-48
The DVB-CI dissector could crash. Discovered by Laurent
Butti. (Bug 8916)
Versions affected: 1.10.0, 1.8.0 to 1.8.8
CVE-2013-4930
* wnpa-sec-2013-49
The GSM RR dissector (and possibly others) could go into a
large loop. (Bug 8923)
Versions affected: 1.10.0, 1.8.0 to 1.8.8
CVE-2013-4931
* wnpa-sec-2013-50
The GSM A Common dissector could crash. (Bug 8940)
Versions affected: 1.10.0, 1.8.0 to 1.8.8
CVE-2013-4932
* wnpa-sec-2013-51
The Netmon file parser could crash. Discovered by G.
Geshev. (Bug 8742)
Versions affected: 1.10.0, 1.8.0 to 1.8.8
CVE-2013-4934
* wnpa-sec-2013-52
The ASN.1 PER dissector could crash. Discovered by
Oliver-Tobias Ripka. (Bug 8722)
Versions affected: 1.10.0, 1.8.0 to 1.8.8
CVE-2013-4935
* wnpa-sec-2013-53
The PROFINET Real-Time dissector could crash. (Bug
8904)
Versions affected: 1.10.0
CVE-2013-4936
- The following bugs have been fixed:
* Mark retransmitted SYN and FIN packets as retransmissions.
* Wireshark hides under Taskbar. (Bug 3034)
* IEEE 802.15.4 frame check sequence in "Chipcon mode" not
displayed correctly. (Bug 4507)
* Mask in Lua ProtoField.uint32() does not work as expected.
(Bug 5734)
* Crash when applying filter with Voip calls. (Bug 6090)
* Delta time regressions to tshark introduced with SVN 45071.
(Bug 8160)
* Add MAC-DATA support to TETRA dissector and other minor
improvements. (Bug 8708)
* Crash analyzing VoIP Calls (T38). (Bug 8736)
* Wireshark writes empty NRB FQDN which makes trace
unloadable. (Bug 8763)
* Quick launch icon is absent, so it shows up as a generic
icon. (Bug 8773)
* Wrong encoding for 2 pod files, UTF-8 characters in
another. (Bug 8774)
* SCSI (SPC) sense key specific information field must not
include SKSV. (Bug 8782)
* Wireshark crashes when closing Flow Graph with Graph
Analysis opened. (Bug 8793)
* Wrong size of LLRP ProtocolID Parameter in Accessspec
Parameter. (Bug 8809)
* Detection of IPv6 works only on Solaris 8. (Bug 8813)
* ip.opt.type triggers for TCP NOP option. (Bug 8823)
* DCOM-SYSACT dissector crash. (Bug 8828)
* Incorrect decoding of MPLS Echo Request with BGP FEC.
(Bug 8835)
* Buggy IEC104 dissector caused by commit r48958. (Bug
8849)
* ansi_637_tele dissector displays MSB as MBS for Call-Back
Number. (Bug 8851)
* LISP Map-Notify flags I and R shown incorrectly. (Bug
8852)
* ONTAP_V4 fhandle decoding leads to dissector bug. (Bug
8853)
* Dropped bytes in imap dissector. (Bug 8857)
* Kismet drone/server dissector improvements. (Bug 8864)
* TShark iostat_draw sizeof mismatch. (Bug 8888)
* SCTP bytes graph crash. (Bug 8889)
* Patch to Wireshark/tshark usage info and man pages to
document all timestamp (-t) options. (Bug 8906)
* Strange behavior of tree expand/collapse in packet details.
(Bug 8908)
* Graph Filter field limited to 256 characters. (Bug
8909)
* Filter doesn't support cflow ASN larger than 65535.
(Bug 8959)
* Wireshark crashes when switching from a v1.11.0 profile to
a v1.4.6 prof and then to a v1.5.1 prof. (Bug 8884)
* SIP stats shows incorrect values for Max/Ave setup times.
(Bug 8897)
* NFSv4 delegation not reported correctly. (Bug 8920)
* Issue with Capture Options Adapter List. (Bug 8932)
* RFC 5844 - IPv4 Support for Proxy Mobile IPv6 - Mobility
option IPv4 DHCP Support Mode Option malformed packet.
(Bug 8957)
* RFC 3775 - Mobility Support in IPv6 - Mobility option PadN
incorrectly highlights + 2 bytes. (Bug 8958)
* All mongodb query show as .
(Bug 8960)
- Updated Protocol Support
ANSI IS-637-A, ASN.1, ASN.1 PER, Bluetooth OBEX, Bluetooth SDB,
DCERPC NDR, DCOM ISystemActivator, DCP ETSI, Diameter 3GPP,
DIS, DVB-CI, Ethernet, GSM Common, GSM SMS, H.235, IEC104, IEEE
802.15.4, IEEE 802a, IMAP, IP, KDSP, LISP, LLRP, MAC-LTE,,
Mobile IPv6, MONGO, MPLS Echo, Netflow, NFS, NFSv4, P1,
PDCP-LTE, PN-IO, PN-RT, PPP, Radiotap, RLC,, RLC-LTE,, SCSI,
SIP, SMTP, SoulSeek, TCP, TETRA, and VNC
- New and Updated Capture File Support
Microsoft Network Monitor, pcap-ng.
* hostname is not stamped on anymore if already set
* hostname will be set to a FQDN when possible as per RFC4702 section 3.1
* a domain is derived from the FQDN if no domain option is set
* add new hostname_short command to send a short hostname for DDNS
* hostname_fqdn is now documented, along with a new server setting and the
potential problems associated with it
* the FQDN option is no longer sent by default for DHCPv4 messages
* Netplex_container: emits now backtraces if these are enabled.
* Http_fs: adding [last_response_status] method
* Rpc_client: fixing a potential endless loop when session IDs
are reused
* Rpc_client: fixing the shutdown when a TCP connection is
immediately refused, and GSS-API authentication is active.
* Netcgi_fcgi.run: no longer ignoring the sockaddr argument
(problem reported by Watanabe Masaki)
* Remove duplicate method Netpop.stat
--- 9.8.5-P2 released ---
3621. [security] Incorrect bounds checking on private type 'keydata'
can lead to a remotely triggerable REQUIRE failure
(CVE-2013-4854). [RT #34238]
--- 9.9.3-P2 released ---
3621. [security] Incorrect bounds checking on private type 'keydata'
can lead to a remotely triggerable REQUIRE failure
(CVE-2013-4854). [RT #34238]
Changes in 2.2.5
================
* FIX: Fix errors searching volumes
* NEW: Configurable symlink handling with a new volume option
'followsymlinks'. Setting the option causes afpd to follow
symlinks on the server side.
* UPD: Reload groups when reloading volumes. FR #71.
* FIX: Fix a possible crash in cname() where cname_mtouname calls
dirlookup() where the curdir is freed because the dircache
detected a dev/inode cache difference and evicted the object
from the cache. Fixes bug #498.
* FIX: Change default FinderInfo for directories to be all 0, fixes
bug 514.
Upstream changes:
0.22 2012/05/21 08:30:00
- Bug # 77072 requested to autodetect the need for using the PRET command.
The old test in t/10-complex.t was different & doesn't interfere. The docs
in the POD now mark the Pret option as optional for cases where auto-detect
doesn't work!
- Fixed issue with ccc that the server sometimes responds to a successful NOOP
twice, resulting in command/resonses getting out of sync. (Another hack)
- Fixed quot() bug introduced with Bug # 74025 uc() fix in the last release.
Accidently shifted off the arguments a 2nd time during the uc() call.
- Fixed the return code in restart() to always be 1 instead of undef, since
it never fails. Also moved its description towards the end of the POD text.
0.21 2012/02/15 08:30:00
- Fixed bad call to _croak_or_return () in _get_data_channel() when dealing
with failed certificates for data connections.
- Bug # 74547, a request to support ftp PRET command for distributed FTP data
channel transfers. New option to execute PRET before all PASV calls.
- updated t/10-complex.t to dynamically check if PRET is needed.
- Bug # 74035, as of Perl 5.12, uc($x) gives warning if $x is undef. Added
checks to avoid these warnings. Did via [ uc($x||""); ]
- Fixed both test cases to no longer send Port as undefined to get rid of
warnings in log file. (Passing undef wasn't realistic, was just convenient.)
- t/10-complex.t now explicity checks if any warnings are generated and does
a request for feadback instead of as an error if any are found. Should help
considerably with debugging any code changes in the future.
- Added new internal method _feat() to get additional commands to be
recognized by supported().
- Enhanced _help() in parsing it's response from the server & other significnt
enhancements. Major rewrite of this one method.
- Above rewite uncovered bug in t/10-complex.t to fix in a supported() test.
- Did some tweaking to the workings of the OverrideHELP option due to changes
in _help() & supported().
- Updated POD for supported() to describe changes to functionality.
0.20 2012/01/01 08:30:00
- Fixed bug # 73115 where it looks like the response() had unexpected breaks
in it. Instead of returning "xyz message" the FTPS server was returning
"x" on one line and "yz message" on another line. And the code was
treating "x" as the entire response (since there was no "-" after it.)
Fixed so that if a response starts with a number that's less than 3
digits with nothing else following it, to assume we hit this bug.
The risk to this fix is that we might try to read past the response
on some other server and cause things to hang. So that's an issue to
keep an eye out for after this release.
- Fixed minor issue with "HELP" not supported on some boxes. If this happens
supported() will now always return false unless you use OverrideHELP.
- Now prints the hash values chosen for new() to the logs.
- Fixed so scrubbing out sensitive info from the logs is only done when debug
is turned on instead of doing it all the time.
- Reorganized the options to new() in the POD to put the less useful and
special case options to new() last.
- Other minor POD corrections and additions.
0.19 2011/09/26 08:30:00
- If you use SSL_Advanced, it now writes to STDERR that you are using a
depreciated feature.
- Modified 10-complex.t & 20-certificate.t to honor the PERL_MM_USE_DEFAULT
envionment variable for the smoke testers to always use defaults, which
skips executing these 2 scripts. BUG # 69982.
(Same thing now happens for "make test < /dev/null" as well.)
Couldn't use ExtUtils::MakeMaker::prompt() per request since "make test"
wouldn't display the questions it was asking & it looked like it hung in
interactive mode for normal users! So based my solution on that function
using diag() instead of print.
- Fixed Typos in POD text Bug # 70438 & some misleading comments.
- Updated the README file to include comments on t/20-certificate.t and what
changes are required before you can use it.
- Updated t/20-certificate.t to highlight the section of code that the README
file is talking about and the initial prompt to remind the user to see the
the README file for the needed modifications before running the test!
0.18 2011/07/29 08:30:00
- Added SSL_Client_Certificate to support client certificates on the data
channel as well as the command channel. Bug ID: 69327.
- Depreciated SSL_Advanced in favor of SSL_Client_Certificate. SSL_Advanced
is now just an alias for SSL_Client_Certificate for backwards compatibility.
I just feel the new name better describes what we are trying to do with it
now that this feature is supported.
- More fixes/clarifications to the POD text.
- Fixed minor wild card issue with LIST & NLST if "+" was in the file name.
- Added restart() function to be compatable with Net::FTP for restarts.
- Added ability to restart downloads/get() where previous attempt left off.
- Added ability to restart uploads/put() where the previous attempt left off.
- Added append() command [APPE], it also uses OFFSET, but doesn't send the
REST command to the server.
- Added LocalAddr option to new(). Works against both the command channel
and the data channel.
- Masks out the user name used when generating a log file. Similar to how
this is already done for the password. Except it must also hide it in the
response to USER & PASS. Only masked when written to the log, message()
and last_message() still returns the user name unmasked in any response
string!
- Fixed a bug in t/10-complex.t and added optional environment variables
for some of the connection values to make it easier for me to quickly
rerun tests during development without having to key in ansers to questions
with no good default values over & over again.
- Wrote t/20-certificate.t to test certificates out. But this and
t/10-complex.t are probably incompatable in most settings. Anyone else
trying to use this test case will have to modify this code to point to their
certificate and provide it's password, since I'm not going to publish my
test client certificate.
- Calls to command() now return a reference to this class so that you can
code something like: "if ($ftps->command("NOOP")->response() == CMD_OK)".
This should be compatible since it shouldn't be called externally, and
you should always be calling response() afterwards anyway. It still calls
die if "Croak=>1" is used. Response() will return CMD_ERROR should
command() have issues to avoid hangs.
- Modifed Net::FTPSSL to use the new command()->response() format internally.
0.17 2011/01/03 08:30:00
- Fixed a subtle bug in response(), now tests if a parse succeeded instead
of assuming it. Allowed me to simplify this messy code quite a bit.
- Reordered the methods in the POD to put some of the more relevant FTP
commands closer to the top & the more obscure at the bottom to make
for easier reading of the documentation.
- Reworked t/10-complex.t quite a bit. Made sure croak was always turned
off immediately after a successful login. Also now using the same hash
for all the connection attempts. I really need to take the time to do
further redesign this script to make it easier to troubleshoot.
- Fixed the smoke tester failures. (They always answer NO to the deeper test)
- t/10-complex.t now checks if OverridePASV or OverrideHELP are needed against
the test server & dynamically adds it for the test cases if needed.
Net::FTPSSL still can't dynamically figure this out for itself.
- Added PASV/EPSV prompt to t/10-complex.t script instead of assuming PASV.
0.16 2010/11/30 08:30:00
- Used Perl's special variables to write the Perl verion and OS to the logs
to make support easier when trouble shooting tickets.
- Fixes for Bug Id 61432.
- On systems like "Connect:Enterprise UNIX", it incorrectly sends the
response to HELP partially in clear text and partially encrypted on the
command channel. This causes this class to barf and never recover once it
hits the clear text. So a new "OverrideHELP" option was created to bypass
calls to HELP if your server has this strange behavior. This is needed
since HELP is called internally by the Net::FTPSSL class via supported()!
** Maybe in the future I'll figure out a way to dynamically handle this. **
- On some systems the server administrator won't configure their servers
correctly to use the correct IP Address in the PASV response through a
firewall when establishing a new Data Channel Connection. To get arround
this, a new "OverridePASV" option was created to force the use of the
Specified Server Name instead of the invalid IP Address returned in the
PASV response!
** Maybe in the future I'll figure out a way to dynamically handle this. **
- Added "OverridePASV" & "OverrideHELP" test cases to t/10-complex.t
- Added EPSV support. Required the reorginization of some internal
undocumented methods that no one should be using.
- Added EPSV test to t/10-complex.t
0.15 2010/04/27 08:30:00
- Fixes for Bug Id 53719. Requested all internal calls to "ALLO" be
conditional since some server connections die when it receives an "ALLO"
command.
- Fixing the above bug uncovered an infinite loop if Croak was also turned on.
Now _croak_or_return() doesn't try to close the connection if called by
command() or response() or if recursion was detected.
- Fixed quot() to no longer upshift the command to upper case. Discovered
case where lower case was required. So it's now up the the caller to
put in upper case if it's required! Also no longer checks if the command
is valid according to HELP. Some servers attempt to be sneeky by not
advertising all available commands.
Upstream changes:
Changes for 1.31
- Eliminate global variables %D - thanks to bonsaiviking
Changes for 1.30
- Merged features of pull request #6 (bonsaiviking)
https://github.com/apersaud/Nmap-Parser/commit/7ccf752af
- Allow osclass elements within osmatch, Nmap XML format changed in 6.00
- the --checkzone option now actually works.
- canonical hostname checks are not done if the answer they are
found in doesn't have the "recursion available" flag set.
- the logic for printing the warning when canonical hostname
checks are skipped has been corrected.
- the way that canonical hostname checks are done has been fixed
so that only initial results from the query for A RRs are used.
- a warning is now printed whenever a query requesting recursion
results in an answer without the "ra" (recursion available) flag.
Bugs fixed in 3.1.3
==================================
management plugin
------------------
25643 fix bug that lead to incorrect reporting of accumulated
stats (since 3.1.2)
Bugs fixed in 3.1.2:
==================================
server
------
25636 fix startup failure when using SSL with Erlang/OTP R16B01
25571 fix potential deadlock in application shutdown handling (since 2.1.0)
25567 fix queue crash requeuing in-memory messages (since 2.7.0)
25599 fix queue record leak of exclusive durable queues after forceful
shutdown (since 3.0.1)
25576 fix bug in queue index where a broker crash between segment
deletion and journal truncation could prevent the broker from
subsequently starting (since 2.0.0)
25615 fix duplicate mirror queue slaves starting on a single node (since 2.6.0)
25588 ensure per-message-TTL is removed when messages are dead-lettered
(since 3.0.0)
25575 fix bug handling empty rabbit_serial leading to startup failure
(since 1.7.0)
25640 fix channel crash with a race between basic.ack and basic.cancel
when prefetch >= 1 (since 3.1.0)
25638 fix leak affecting HA/mirrored queues (since 3.0.0)
25611 improve stack traces when message store crash occurs
25612 fix crashing processes when stopping node as part of a cluster
(since 2.4.0)
stomp plugin
-------------
25564 fix handling of reply-to for non-temporary queue destinations
(since 3.1.0)
25566 allow unescaped colons in header values for STOMP 1.0 compatibility
management plugin
-----------------
25592 fix bug allowing unprivileged users to see stats for all vhosts
(since 3.1.0)
25600 fix consumer record leak in the management database (since 2.2.0)
25629 fix memory leak in the presence of long-lived channels and
short-lived queues (since 3.1.0)
25580 fix bug preventing definitions file from loading if it contained
a policy from a non default vhost (since 3.1.1)
LDAP plugin
-----------
25573 fix garbled login failure errors (since 2.3.0)
Java client
-----------
25633 fix quoting and escaping in json parser, avoid a potentially
non-terminating loop and improve error handling (since 2.8.2)
(thanks to Bradley Peabody)
Erlang client
-------------
25521 fix negotiated frame-max handling, which was being ignored (since 2.0.0)
25489 fix rpc client/server to ensure correlation-ids are valid UTF-8 strings
(since 2.0.0) (thanks to Daniel White)
- some address fixes to contrib
- fixed duplicate install-sh entry in archive
- set oid-mib-cache file for New_SNMP_util as well #106
- prevent spurious warnings about unknonwn values of inlast outlast in mrtg
- add the process id tmp file extensions, to guard against multiple rateup
instances messing things up for each other. (attempt to fix#115)
- quell warning in CnTWaLK mode #111
- spelling fixes
- make threshold checking more robust against incomplete information in the
config file #113
- support ifAlias for Vyatta gear
- CnTWaLK should add the count and not max index
- abort indexmaker if there is no data to be found
- fix for big5 translation
- in cfgmaker use ifdesc=alias only if there is actualy alias info
- fix of a file pointer leak found by coverity scan
- fix for kMG support in rateup
- add support for zyxel ifAlias
- add support for Matrix N7 Diamond
- enable warnings in cfgmaker and fix issues ...
- explicitly import SOCK_DGRAM and AF_UNSPEC to make ipv6 support work
- Updated Net_SNMP_util.pm and SNMP_util.pm to latest versions
are replaced with .include "../../devel/readline/buildlink3.mk", and
USE_GNU_READLINE are removed,
* .include "../../devel/readline/buildlink3.mk" without USE_GNU_READLINE
are replaced with .include "../../mk/readline.buildlink3.mk".
- ares_set_servers_csv: fixed IPv6 address parsing
- nroff: fix two syntax mistakes
- build: fix build on msvc11
- Makefile.am: increment -version-info for 1.10.0 release
- README: remove unnecessary comment
- ares_version.h: copyright end range year is now 2013
- ares_parse_aaaa_reply: Plug memory leak
- ares_parse_txt_reply: return a ares_txt_reply node for each sub-string
- library init: documentation update
- library init: be recursive
- protocol parsing: check input data stricter
- Create ares_build.h when buidling from Git.
- Added -DCARES_STATICLIB to CFLAGS.
- ares_destroy() documentation: no new requests
- Documentation: properly document ARES_ECANCELLED
- ares_cancel(): cancel requests safely
- ares.h: stricter CARES_EXTERN linkage decorations logic
- ares_build.h.dist: enhance non-configure GCC ABI detection logic
- check __ILP32__ before 32 and 64bit processor architectures in
order to detect ILP32 programming model on 64 bit processors
which, of course, also support LP64 programming model, when using
gcc 4.7 or newer.
- keep 32bit processor architecture checks in order to support gcc
versions older than 4.7 which don't define __ILP32__
- check __LP64__ for gcc 3.3 and newer, while keeping 64bit processor
architecture checks for older versions which don't define __LP64__
- ares.h: there is no ares_free_soa function
- Makefile.am: empty AM_LDFLAGS definition for automake 1.7 compatibility
- ares_inet_ntop.3: s/socklen_t/ares_socklen_t
- configure: use XC_LIBTOOL for portability across libtool versions
- xc-lt-iface.m4: provide XC_LIBTOOL macro
- Makefile.am: use AM_CPPFLAGS instead of INCLUDES
- inet_ntop.c: s/socklen_t/ares_socklen_t
- inet_ntop.c: s/socklen_t/ares_socklen_t for portability
- ares.h: s/socklen_t/ares_socklen_t for portability
- ares_inet_ntop.3: 4th argument is socklen_t!
- spell inet correctly!
- ares_inet_pton/ntop: cleanup
- ares_inet_ntop/ares_inet_pton: added man pages
- curl_setup_once.h: definition of HAVE_CLOSE_S defines sclose() to close_s()
- config-dos.h: define HAVE_CLOSE_S for MSDOS/Watt-32
- config-dos.h: define strerror() to strerror_s_() for High-C
- ares_get_datatype: removed unused function
- ares__bitncmp: use two underscores for private functions
- ares__generate_new_id: moved to ares_query.c
- ares__swap_lists: make private and static
- Makefile.msvc: add four VS version strings
- ares_expand_name.3: clarify how to free the data
- zz40-xc-ovr.m4: fix 'wc' detection - follow-up 2
- Fix a pair of single quotes to double quotes.
- zz40-xc-ovr.m4: fix 'wc' detection - follow-up
- Take into account that 'wc' may return leading spaces and/or tabs.
- Set initial IFS to space, tab and newline.
- zz40-xc-ovr.m4: fix 'wc' detection
- Take into account that 'wc' may return leading spaces.
- Set internationalization behavior variables.
- zz40-xc-ovr.m4: check another three basic utilities
- zz40-xc-ovr.m4: 1.0 interface stabilization
- Stabilization results in 4 public interface m4 macros:
- Avoid one level of internal indirection
- Update comments
- Drop XC_OVR_ZZ40 macro
- zz40-xc-ovr.m4: emit witness message in configure BODY
- zz40-xc-ovr.m4: truly do version conditional overriding
- version conditional overriding
- catch unexpanded XC macros
- fix double words in comments
- zz40-xc-ovr.m4: fix variable assignment of subshell output bashism
- zz40-xc-ovr.m4: reinstate strict AC_REQUIRE macro dependencies
- zz40-xc-ovr.m4: avoid double single-quote usage
- zz40-xc-ovr.m4: parentheses balancing of 'case' statements
- zz40-xc-ovr.m4: internals overhauling
- Update comments
- Execute commands in subshells
- Faster path separator check
- Fix missing 'test' command
- Rename private macros
- Minimize AC_REQUIRE usage
- zz40-xc-ovr.m4: redirect errors and warnings to stderr
- configure: use XC_CONFIGURE_PREAMBLE early checks
- zz40-xc-ovr.m4: provide XC_CONFIGURE_PREAMBLE macro
- configure: autotools compatibility fixes - step I
- configure: fix automake 1.13 compatibility
- ares_private.h: use again memdebug.h instead of curl_memdebug.h
- configure.ac: replace AM_CONFIG_HEADER with AC_CONFIG_HEADERS
- cares-override.m4: provide AC_CONFIG_MACRO_DIR definition conditionally
- ares_private.h: use curl_memdebug.h instead of memdebug.h
- vc6cares.dsp: add ares_create_query.c and ares_parse_soa_reply.c
- cares-functions.m4: improve gethostname arg 2 data type check
- setup_once.h: HP-UX specific 'bool', 'false' and 'true' definitions.
- configure: check if compiler halts on function prototype mismatch
- cares-functions.m4: add gethostname arg 2 data type check and definition
- cares-functions.m4: update thread-safeness detection of getaddrinfo()
- setup_once.h: HP-UX <sys/socket.h> issue workaround
- setup_once.h: refactor inclusion of <unistd.h> and <sys/socket.h>
- Header inclusion clean-up
- setup_once.h: HP-UX specific TRUE and FALSE definitions
- ares_timeout.c: fix compiler warning
- ares_create_query.c: IRIX compilation fix
- c-ares/nameser.h: add some T_* defines for ns_t_* values
- adig: perror() doesn't work for socket errors on windows
- get_DNS_AdaptersAddresses: fix IPv6 parsing
- ares_create_query.3: mention when this is added
- Added new feature (rfc2671)
- code police: fix indents, < 80 columns, reflowed comments
- Cleaned up version awk script.
- read_udp_packets: bail out loop on bad sockets
- cares-compilers.m4: remove -Wstrict-aliasing=3 from clang
- cares-compilers.m4: -Wstrict-aliasing=3 for warning enabled gcc and clang builds
Upstream changes:
2.00 2013-06-11T04:41:43Z
[INCOMPATIBLE CHANGES]
- Change wait_port() API to take max_wait seconds, and wait exponentially.
Dropped wait_port_retry argument introduced at 1.27.
(miyagawa)
* Enable gobject-introspection support.
Changelog:
0.12.2
======
Changes since 0.12.1:
- Fix VAPI generation if GObject-introspection version is >= 1.36.
- Fix vala bindings for LastChangeParser.parse_last_change.
- Small improvement to resource matching.
- Fix DIDLLiteContainer.get_total_deleted_child_count return value.
- Fix compiling with -Wall -Werror.
- Fix gtk-doc warnings.
All contributors to this release:
Jens Georg <mail@jensge.org>
Ludovic Ferrandis <ludovic.ferrandis@intel.com>
0.12.1
======
Changes since 0.12.0:
- Fix compiler warnings.
- Update .gitignore.
All contributors to this release:
Andreas Henriksson <andreas@fatal.se>
Krzesimir Nowak <qdlacz@gmail.com>
* Enable gobject-introspection support.
Changelog:
0.10.2
======
- Fix vapi generation with GObject-introspection >= 1.36.
- Minor build clean-up.
- Check the XML profiles against their schema on make check-profiles.
- Re-enable some of the old tests on make check.
- Fix format detection for ADTS audio streams.
- Fix WMA bitrate detection.
- Fix gtk-doc warnings.
Profiles:
- Fix MPEG_TS_*_EU audio profiles to include proper bitrates and audio
formats.
- Remove depth matching in PNG profiles.
- Fix AAC level for MULT5 AAC.
- Add MPEG_TS_{SD,HD}_{EU,NA} profiles.
- Add MPEG_PS_{NTSC,PAL} profiles.
All contributors to this release:
Jens Georg <jensg@openismus.com>
0.10.1
======
- Add functionality to let the meta-data back-end provide a profile on its
own.
All contributors to this release:
Jens Georg <jensg@openismus.com>
0.10.0
======
- Various fixes for the GStreamer 0.10 meta-data back-end.
All contributors to this release:
Krzesimir Nowak <krnowak@openismus.com>
Jens Georg <mail@jensge.org>
0.9.5
=====
- Add --disable-maintainer-mode option.
- Add a GStreamer 0.10 meta-data back-end.
All contributors to this release:
Jens Georg <jensg@openismus.com>
0.9.4
=====
- Introduce new API to guess a DLNA profile from existing
GUPnPDLNAInformation.
- Introduce a new library to create GUPnPDLNAInformation from
GstDiscovererInfo.
- Fix an issue with GValue conversion.
- Get rid of the old profile backend and move most of it to the library
itself.
- Introduce single-include header file.
All contributors to this release:
Krzesimir Nowak <krnowak@openismus.com>
Jens Georg <jensg@openismus.com>
Changes in dependencies:
- vapigen >= 0.18 for GStreamer 1.0 vapis.
0.9.3
=====
- Fix underlinking of gstreamer plug-in.
- Fix out-of-srcdir build with --enable-gtk-doc.
- Fix signal G-I annotation.
- Link meta-data back-end as a plug-in.
All contributors to this release:
Jens Georg <mail@jensge.org>
Krzesimir Nowak <krnowak@openismus.com>
0.9.2
=====
- Remove the old gupnp-dlna-1.1.pc.in file.
- Remove gupnp and gstreamer-* dependencies from VAPI file generation.
- Lower vapigen requirements.
All contributors to this release:
Jens Georg <jensg@openismus.com>
Changes in dependencies:
- vapigen >= 0.14 instead of 0.18
0.9.1
=====
- Fix a potential crash in profile guessing.
- Fix issues from static code check.
- Lower GLib dependency to 2.32.
All contributors to this release:
Krzesimir Nowak <krnowak@openismus.com>
Mark Ryan <mark.d.ryan@intel.com>
Jens Georg <jensg@openismus.com>
Bugs fixed in this release:
- https://bugzilla.gnome.org/show_bug.cgi?id=689596
- https://bugzilla.gnome.org/show_bug.cgi?id=689598
- https://bugzilla.gnome.org/show_bug.cgi?id=689612
- https://bugzilla.gnome.org/show_bug.cgi?id=689615
- https://bugzilla.gnome.org/show_bug.cgi?id=689616
Changes in dependencies:
- GLib >= 2.32
0.9.0
=====
- Make DLNA profile handling independant from GStreamer.
- Add plugin architecture to support different meta-data extraction back-ends.
- Make GStreamer default implementation of meta-data extraction back-end.
- Split API docs into users and back-end implementers API.
All contributors to this release:
Krzesimir Nowak <krnowak@openismus.com>
Jens Georg <jensg@openismus.com>
Changes in API:
- so version bump
- API version bump to 2.0
Changes in dependencies:
- GStreamer 1.0
- GLib >= 2.34
0.7.0
=====
- Port to GStreamer 1.0
- Add parallel installability with gstreamer-0.10-based gupnp-dlna.
All contributors to this release:
Jens Georg <mail@jensge.org>
Riko Yamada <rik0yamada@yahoo.co.jp>
Dominique Leuenberger <dimstar@opensuse.org>
Changes in API:
- so version bump
- API version bump to 1.1
* Enable gobject-introspection support.
Changelog:
0.20.3
======
Changes since 0.20.2:
- Add a gupnp_context_manager_rescan_control_points feature.
- Fix VAPI generation if g-i version is >= 1.36.
- Some internal documentation updates.
- Check SID and return a proper error.
- Fix error code returned on invalid NT and NTS headers.
- Fix SEQ to be a uint32.
- Fall-back to unix static CM if netlink sockets are not availabe on runtime.
- Prevent some C++ name mangling in the examples.
- Fix compiling with -Wall -Wextra.
Bugs fixed in this release:
- https://bugzilla.gnome.org/show_bug.cgi?id=697314
- https://bugzilla.gnome.org/show_bug.cgi?id=696289
- https://bugzilla.gnome.org/show_bug.cgi?id=698192
- https://bugzilla.gnome.org/show_bug.cgi?id=698125
All contributors to this release:
Jens Georg <mail@jensge.org>
Jussi Kukkonen <jussi.kukkonen@intel.com>
Sébastien Bianti <sebastien.bianti@linux.intel.com>
Changes in dependencies:
vapigen >= 0.20 if gobject-introspection is >= 1.36
* Use gtk3 instead of gtk2.
Changelog:
0.14.3
======
- Add --interface, -i commandline option to gssdp-device-sniffer to specify a
network interface for it to run on.
- Update the GSSDP device sniffer to GTK+3.
- Depend on vapigen >= 0.20 if gobject-introspection is 1.36 or newer.
- Some minor UI fixes in gssdp-device-sniffer.
- Make it compile with -Wall -Wextra.
All contributors to this release:
Jens Georg <jensg@openismus.com>
Changes in dependencies:
Gtk+ >= 3.0
vapigen >= 0.20 if gobject-introspection is >= 1.36
Changelog:
2013-03-27 Keith Winstein <mosh-devel@mit.edu>
* Version 1.2.4 released.
* New features:
* Support port ranges with -p LOWPORT:HIGHPORT (Luke Mewburn)
* Ctrl-^ Ctrl-Z suspends mosh client (Nikolai Zeldovich)
* mm:ss display of lost-contact times (Kevin Ballard)
* Show infobar with control chars when Ctrl-^ is typed
* Put terminal in altscreen mode (Anders Kaseorg)
* Tell automake/Debian pkg about our checks (Anders Kaseorg)
* Platform support:
* OS X: Script to build a universal package (Peter Iannucci)
* FreeBSD: Fix build problems (Jimmy Olgeni)
* AIX: port by Anton Lundin
* Solaris with system curses (Anton Lundin)
* Cygwin and others: eliminate use of IO::Pty (Anton Lundin)
* Bug fixes:
* Fix bug (introduced in 1.2.3) where server stays around
if process quits while client is detached
* Clean up spurious entries from detached sessions warning
* Fix freeze when connectivity is one-directional for hours
(reported by Axel Beckert)
* Don't wipe title until a new one is set (sqweek)
* Eliminate memory leaks and cppcheck warnings (Anders Kaseorg)
Wireshark on 32- and 64-bit Windows supports automatic updates.
The packet bytes view is faster.
You can now display a list of resolved host names in "hosts" format within Wireshark.
The wireless toolbar has been updated.
Wireshark on Linux does a better job of detecting interface addition and removal.
It is now possible to compare two fields in a display filter (for example: udp.srcport != udp.dstport). The two fields must be of the same type for this to work.
The Windows installers ship with WinPcap 4.1.3, which supports Windows 8.
USB type and product name support has been improved.
All Bluetooth profiles and protocols are now supported.
Wireshark now calculates HTTP response times and presents the result in a new field in the HTTP response. Links from the request’s frame to the response’s frame and vice-versa are also added.
The main welcome screen and status bar now display file sizes using strict SI prefixes instead of old-style binary prefixes.
Capinfos now prints human-readable statistics with SI suffixes by default.
It is now possible to open a referenced packet (such as the matched request or response packet) in a new window.
Tshark can now display only the hex/ascii packet data without requiring that the packet summary and/or packet details are also displayed. If you want the old behavior, use -Px instead of just -x.
Wireshark can be compiled using GTK+ 3.
The Wireshark application icon, capture toolbar icons, and other icons have been updated.
Tshark’s filtering and multi-pass analysis have been reworked for consistency and in order to support dependent frame calculations during reassembly. See the man page descriptions for -2, -R, and -Y.
Tshark’s -G fields2 and -G fields3 options have been eliminated. The -G fields option now includes the 2 extra fields that -G fields3 previously provided, and the blurb information has been relegated to the last column since in many cases it is blank anyway.
Wireshark dropped the left-handed settings from the preferences. This is still configurable via the GTK settings (add "gtk-scrolled-window-placement = top-right" in the config file, which might be called /.gtkrc-2.0 or /.config/gtk-3.0/settings.ini).
Wireshark now ships with two global configuration files: Bluetooth, which contains coloring rules for Bluetooth and Classic, which contains the old-style coloring rules.
The LOAD() metric in the IO-graph now shows the load in IO units instead of thousands of IO units.
Bump 0.7.2 to 0.7.5
Following line in Makefile removed.
NOT_FOR_PLATFORM= DragonFly-*-*
Following line in Makefile Added.
BUILD_DEFS+= VARBASE
All the patches (for trying to add DragonFly)
are removed, now DragonFly is supported.
ChangeLog of upstream:
0.7.5 [2013-06-22 13:57:31 +0200]:
- [2169efb] tokenizer: input buffer was too small (Vincent Bernat)
- [6712d3e] packaging: update packaging (Vincent Bernat)
0.7.4 [2013-06-22 12:15:47 +0200]:
- [1381217] bpf: on OpenBSD, invert the filter direction (Vincent Bernat)
- [96b97fa] NEWS: add an entry for the use of `setproctitle()` (Vincent Bernat)
- [f0d2157] compat: declare `setproctitle()` as a printf function (Vincent Bernat)
- [19ce813] debian: build-depends on libbssd-dev (Vincent Bernat)
- [e7103af] lldpd: when no `setproctitle()` available, don't count neighbors (Vincent Bernat)
- [480f1c6] lldpd: count number of chassis to get number of neighbors (Vincent Bernat)
- [25eb187] lldpd: don't call `lldpd_count_neighbors()` too many times (Vincent Bernat)
- [66879d4] build: use libbsd if available, also use `setproctitle()` (Vincent Bernat)
- [3f70e11] lldpcli: `configure system platform` to override platform description (Vincent Bernat)
- [decaec0] lldpcli: `configure system description` to override chassis description (Vincent Bernat)
- [994b337] lldpcli: split `conf.c` into `conf-system.c` and `conf-lldp.c`. (Vincent Bernat)
- [48d0a4b] lldpcli: `configure system interface pattern` instead of `configure lldp iface-pattern` (Vincent Bernat)
- [a3e0896] libevent: use GitHub git tree (Vincent Bernat)
- [c11e397] debian: sync packaging with official Debian package (Vincent Bernat)
- [e39f079] libevent: switch to patches-2.0 branch to get the appropriate automake fix (Vincent Bernat)
- [8677ddc] git: ignore test-driver, generated by recent automake versions (Vincent Bernat)
- [bea0d76] Fixed some boundary conditions in code that cleans remote ports on ttl expiry. (Roopa Prabhu)
- [5aeda65] liblldpctl: fix infinite loop when user is reading fixed chunks (Pradosh Mohapatra)
- [d823429] marshal: fix alignment issue when unserializing (Vincent Bernat)
- [bea7031] log: fix memory leak when using a log handler (Vincent Bernat)
- [a8da186] marshal: don't declare serialize/unserialize helper for string (Vincent Bernat)
- [02cf035] lldpd: fix an alignment (non-)issue (Vincent Bernat)
- [bd8a886] lldpcli: don't use an hack to pass the writer to watch callback (Vincent Bernat)
- [985a4cb] marshal: provide type-specific serialization/unserialization functions (Vincent Bernat)
- [aba549a] client: fix a memory leak when changing lldpd configuration (Vincent Bernat)
- [93afd29] ctl: fix a memory leak when cleaning control socket (Vincent Bernat)
- [e681c85] client: trigger interface refresh when updating interface pattern (Vincent Bernat)
- [e26a25c] lib: fix a memory leak when modifying interface pattern (Vincent Bernat)
- [0093777] lldpcli: document "configure lldp iface-pattern" in manual page (Vincent Bernat)
- [7e516f1] lldpctl.h: document possibility to write iface-pattern (Vincent Bernat)
- [346a0f6] lldpcli: Add support to set iface-pattern (roopa)
- [0728cb8] sonmp: allow SONMP unittests to work without a global config (Vincent Bernat)
- [ea481e3] man: document tx-hold (Vincent Bernat)
- [cb5f739] man: tx-interval cannot be set per port (Vincent Bernat)
- [c10302a] lldpd: Add tx_hold (roopa)
- [5920dbf] lldpcli: don't rely on `fgetln()` providing a NULL-terminated string (Vincent Bernat)
- [655145c] lldpcli: don't free input line (Vincent Bernat)
- [d1dc456] lib: keep space for new values in `lldpctl_key_t` (Vincent Bernat)
- [40116b4] debian: synchronize packaging with Debian (Vincent Bernat)
- [e91ca9d] release: prepare 0.7.3 (Vincent Bernat)
0.7.3 [2013-05-09 00:05:36 +0200]:
- [a1728b7] NEWS: add a word about Solaris support (Vincent Bernat)
- [b1a8985] solaris: less intrusive way to get CMSG_* macros (Vincent Bernat)
- [815b799] solaris: assume that IP forwarding is disabled (Vincent Bernat)
- [c3e340b] solaris: preliminary support (Vincent Bernat)
- [d0787f4] NEWS: add an entry about LLDP-MED fast start. (Vincent Bernat)
- [486a613] lldpcli: allow to enable/disable fast-start and set delay (Vincent Bernat)
- [d6d42d5] lldpd: enable fast start by default (Vincent Bernat)
- [be511d0] lldpd: make fast start work only when receiving LLDP-MED LLDPDU (Vincent Bernat)
- [b9de0ca] lldpd: fast start support (roopa)
- [7ba4a18] configure: use `AC_PROG_EGREP` to find a suitable `grep -E` (Vincent Bernat)
- [ae5cae0] lib: use uint8_t instead of u_int8_t (Vincent Bernat)
- [91e0280] configure: display configured OS (Vincent Bernat)
- [885aa4f] lldpcli: complete the manual page with the syntax of "show statistics" (Vincent Bernat)
- [d947819] lldpcli: summary of statistics is done on provided ports only (Vincent Bernat)
- [048ed9d] lldpcli: fix two warnings introduced by the previous commit (Vincent Bernat)
- [adcb76f] NEWS: add an entry for "show statistics summary" command (Vincent Bernat)
- [5331eb2] lldpcli: global stats command (roopa)
- [1b3eea3] os: add support for DragonFly BSD (Vincent Bernat)
- [de461f1] netlink: fix IP address discovery (Vincent Bernat)
- [3fc1a10] lldpcli: fix typo in the man page for setting altitude (Vincent Bernat)
- [45a83f3] bsd: don't report a warning when no media information is present (Vincent Bernat)
Kombu is a messaging framework for Python.
The aim of Kombu is to make messaging in Python as easy as possible by providing
an idiomatic high-level interface for the AMQ protocol, and also provide proven
and tested solutions to common messaging problems.
Remove bogus removal of dlpisubs.c, and force the configure script to
avoid any getifaddrs implementation on SunOS which would result in it
not being included.
Fixes build on SunOS. Thanks to Jörn Clausen for testing on Solaris 10.
Bump PKGREVISION. Approved during freeze by wiz.
ChangeLog:
- BUG/MAJOR: backend: consistent hash can loop forever in certain circumstances
- BUG/MEDIUM: checks: disable TCP quickack when pure TCP checks are used
- MEDIUM: protocol: implement a "drain" function in protocol layers
- BUG/CRITICAL: fix a possible crash when using negative header occurrences
mimms is a program designed to allow you to download streams using
the MMS protocol and save them to your computer, as opposed to
watching them live. Similar functionality is available in full
media player suites such as Xine, MPlayer, and VLC, but mimms is
quick and easy to use and, for the time being, remains a useful
program.
Originally, mimms was forked directly from the last known version
of mmsclient, which was for years unmaintained. mimms was started
with the following goals:
* Keep a working copy of "mmsclient" (now "mimms") well maintained
* Fix lots of the bugs that were in mmsclient
* Extend the functionality of the program in useful ways
Since the 2.x series, mimms shares no code with mmsclient, and
actually does all of it's MMS operations using libmms, a library
based off of the xine-improved mmsclient code, which is designed
to allow multiple implementations of MMS clients without requiring
a fragmented code base. The mimms 3.x series is implemented entirely
in python, and is freed from the details of the MMS protocol and
architecture dependence, and can focus on usability.
2.006nb1 to 2.007.
Upstream changes:
2.007 Jan 09 2013
- Update run_dequeue to clear out signals after fork.
- Add serialize none for PreFork and PreForkSimple servers that
at not multi-port.
- Allow for auto-assigned port to be the same when hostname
resolves to multiple ips/ipvs (RT #78024)
- Fix bug in header parsing (RT #82125)
- Fix warning bug (RT #78828)
- Fix wrong wantarray context in Proto::TCP (RT #31437)
- Simplify _get_commandline to just use $0 - no fishing in proc
(RT #80260)
- Fix uninitialized begin (RT #78830)
- Fix misplaced +2 (RT #78827)
- Fix various spelling errors and pod nits (RT #77994)
- Allow for log calls from the MUX object (RT #78514)
- Give an error at begin time of SSLEAY if the need Fcntl function
is not available on this platform (RT #82542)
- Make all of the tests self cancel much earlier if there is an
error handling the request.
- Add a stronger timeout to PreFork tests - ideally we'd like to
find a real way to test these one windows (RT #811411, #81993) -
still broken - but shouldn't hang
- Superficial changes to help packagers not list Log4perl as
dependency (it is optional)
to 2.70.
Upstream changes:
2013-05-21 Shlomi Fish <shlomif@shlomifish.org>
* Fix a typo:
- https://rt.cpan.org/Ticket/Display.html?id=73143
* Add t/style-trailing-space.t and got rid of trailing space.
* New Release IO-Socket-INET6-2.70
# Addressable 2.3.4
- fixed issue with encoding altering its inputs
- query string normalization now leaves ';' characters alone
- FakeFS is detected before attempting to load unicode tables
- additional testing to ensure frozen objects don't cause problems
