* Add HTTP proxy support.
* Support notify with Growl.
* Support sound with SDL.
* Fix to get tweet from keyed account.
* Some bug fixes and performance improvements.
maradns-1.4.06:
This is the stable branch of MaraDNS.
* Fix for CVE-2011-0520
* Deadwood updated to 3.0.02
(2011.01.28)
maradns-1.4.05:
This is a stable branch of MaraDNS.
* Deadwood updated to the stable 3.0.01 release.
* MicroDNS now returns "not implemented" when given an EDNS packet
* FAQ updated.
(2010.09.25)
maradns-1.4.04:
This is the stable branch of MaraDNS.
* Bugfix: NAPTR records now work when ~ is used to separate
records
* NAPTR records now documented
* Bugfix: ANY queries now correctly work with NS referrals
* Example IPv6 addresses now use RFC-4193 compliant IPs
* Website updated to point out that Deadwood is now feature
complete and ready for beta-testing
* Some updates to the SQA regressions
* Deadwood updated to Deadwood 2.9.02
* Windows-only mkSecretTxt program added (*NIX users can
just type in "dd if=/dev/urandom of=secret.txt bs=64
count=1"; this gives Windows the same ability).
(2010.07.31)
0MQ version 2.1.6 (Stable), released on 2011/04/26
==================================================
Bug fixes
---------
* Fixed memory leak with threads on Windows.
* Assert during SUB socket termination fixed.
Changes
-------
* Checks zmq_msg_t validity at each operation.
* Inproc performance tests now work on Windows.
* PGM wire format specification improved in zmq_pgm(7)
* Added thread latency/throughput performance examples.
* Added "--with-system-pgm" configure option to use already installed
OpenPGM.
0MQ version 2.1.5 (Broken), released on 2011/04/20
==================================================
Note that this version contained a malformed patch and is not usable.
It is not available for download, but is available in the git via the
2.1.5 tag.
0MQ version 2.1.4 (Stable), released on 2011/03/30
==================================================
Bug fixes
---------
* Fix to OpenPGM which was asserting on small messages (Steven McCoy).
Changes
-------
* Upgraded OpenPGM to version 5.1.115 (Pieter Hintjens).
* OpenPGM build changed to not install OpenPGM artifacts.
0MQ version 2.1.3 (Stable), released on 2011/03/21
==================================================
Bug fixes
---------
* Fix to PUSH sockets, which would sometimes deliver tail frames of a
multipart message to new subscribers (Martin Sustrik).
* Fix to PUB sockets, which would sometimes deliver tail frames of a
multipart message to new subscribers (Martin Sustrik).
* Windows build was broken due to EPROTONOSUPPORT not being defined. This
has now been fixed (Martin Sustrik).
* Various fixes to make OpenVMS port work (Brett Cameron).
* Corrected Reference Manual to note that ZMQ_LINGER socket option may be
set at any time, not just before connecting/binding (Pieter Hintjens).
* Fix to C++ binding to properly close sockets (Guido Goldstein).
* Removed obsolete assert from pgm_socket.cpp (Martin Sustrik).
Changes
-------
* Removed stand-alone devices (/devices subdirectory) from distribution.
These undocumented programs remain available in older packages (Pieter
Hintjens).
* OpenPGM default rate raised to 40mbps by default (Steven McCoy).
* ZMQ_DEALER and ZMQ_ROUTER macros provided to ease upgrade to 0MQ/3.0.
These are scheduled to replace ZMQ_XREQ and ZMQ_XREP (Pieter Hintjens).
* Added man page for zmq_device(3) which was hereto undocumented (Pieter
Hintjens).
* Removed zmq_queue(3), zmq_forwarder(3), zmq_streamer(3) man pages
(Pieter Hintjens).
OpenPGM Integration
-------------------
* Upgraded OpenPGM to version 5.1.114 (Steven McCoy, Mikko Koppanen).
* Build system now calls OpenPGM build process directly, allowing easier
future upgrades of OpenPGM (Mikko Koppanen).
* Build system allows configuration with arbitrary versions of OpenPGM
(./configure --with-pgm=libpgm-x.y.z) (Mikko Koppanen).
* OpenPGM uses new PGM_ODATA_MAX_RTE controlling original data instead of
PGM_TXW_MAX_RTE covering entire channel (Steven McCoy).
Building
--------
* 0MQ builds properly on FreeBSD (Mikko Koppanen).
0MQ version 2.1.2 (rc2), released on 2011/03/06
===============================================
Bug fixes
---------
* 0MQ now correctly handles durable inproc sockets; previously it ignored
explicit identities on inproc sockets.
* Various memory leaks were fixed.
* OpenPGM sender/receiver creation fixed.
0MQ version 2.1.1 (rc1), released on 2011/02/23
===============================================
New functionality
-----------------
* New socket option ZMQ_RECONNECT_IVL_MAX added, allows for exponential
back-off strategy when reconnecting.
* New socket option ZMQ_RECOVERY_IVL_MSEC added, as a fine-grained
counterpart to ZMQ_RECOVERY_IVL (for multicast transports).
* If memory is exhausted, 0MQ warns with an explicit message before
aborting the process.
* Size of inproc HWM and SWAP is sum of peers' HWMs and SWAPs (Douglas
Greager, Martin Sustrik).
Bug fixes
---------
* 0MQ no longer asserts in mailbox.cpp when multiple peers connect with
the same identity.
* 0MQ no longer asserts when rejecting an oversized message.
* 0MQ no longer asserts in pipe.cpp when the swap fills up.
* zmq_poll now works correctly with an empty poll set.
* Many more.
Building
--------
* 0MQ now builds correctly on CentOS, Debian 6, and SunOS/gcc3.
* Added WithOpenPGM configuration into MSVC builds.
Known issues
------------
* OpenPGM integration is still not fully stable.
0MQ version 2.1.0 (Beta), released on 2010/12/01
================================================
New functionality
-----------------
* New semantics for zmq_close () and zmq_term () ensure that all messages
are sent before the application terminates. This behaviour may be
modified using the new ZMQ_LINGER socket option; for further details
refer to the reference manual.
* The new socket options ZMQ_FD and ZMQ_EVENTS provide a way to integrate
0MQ sockets into existing poll/event loops.
* Sockets may now be migrated between OS threads, as long as the
application ensures that a full memory barrier is issued.
* The 0MQ ABI exported by libzmq.so has been formalised; DSO symbol
visibility is used on supported platforms to ensure that only public ABI
symbols are exported. The library ABI version has been set to 1.0.0 for
this release.
* OpenPGM has been updated to version 5.0.92. This version no longer
depends on GLIB, and integration with 0MQ should be much improved.
* zmq_poll() now honors timeouts precisely, and no longer returns if no
events are signaled.
* Blocking calls now return EINTR if interrupted by the delivery of a
signal; this also means that language bindings which previously had
problems with handling SIGINT/^C should now work correctly.
* The ZMQ_TYPE socket option was added; this allows retrieval of the socket
type after creation.
* Added a ZMQ_VERSION macro to zmq.h for compile-time API version
detection.
* The ZMQ_RECONNECT_IVL and ZMQ_BACKLOG socket options have been added.
Bug fixes
---------
* Forwarder and streamer devices now handle multi-part messages correctly.
* 0MQ no longer asserts when malformed data is received on the wire.
* 0MQ internal timers now work correctly if the TSC jumps backwards.
* The internal signalling functionality (mailbox) has been improved
to automatically resize socket buffers on POSIX systems.
* Many more.
Building
--------
* 0MQ now builds correctly with many more non-GCC compilers (Sun Studio,
Intel ICC, CLang).
* AIX and HP-UX builds should work now.
* FD_SETSIZE has been set to 1024 by default for MSVC builds.
* Windows builds using GCC (MinGW) now work out of the box.
Distribution
------------
* A simple framework for regression tests has been added, along with a few
basic self-tests. The tests can be run using "make check".
Fixes https://www.isc.org/CVE-2011-1907.
--- 9.8.0-P1 released ---
3100. [security] Certain response policy zone configurations could
trigger an INSIST when receiving a query of type
RRSIG. [RT #24280]
* aria2-metalink option is removed. This is enabled by default already.
Changelog:
aria2 1.11.1
============
Release Note
------------
This release fixes the bug that aria2 does not work on platforms which
have kqueue() system call due to invalid timeout parameter. The
--show-console-readout option was added. This option toggles the
appearance of console readout.
Changes
-------
* Added --show-console-readout option. This option toggles
appearance of console readout.
* Fixed the bug that microsecond part of timeval overwlows in
waitData(). This bug affects platforms which have kqueue() system
call. Those systems are FreeBSD, OpenBSD, NetBSD and Darwin (Mac OS
X).
aria2 1.11.0
============
Release Note
------------
This release adds JSON-RPC interface. The JSON-RPC and XML-RPC shares
same APIs. The JSON-RPC also supports JSONP. 2 new options were added:
--retry-wait and --async-dns-server. The downloads added by
aria2.addTorrent and aria2.addMetalink RPC method are now saved to the
file specified in --save-session option. The proxy options and related
environment variables now accept https:// and ftp:// scheme. This
release fixes the bug that causes segmentation fault when unpausing
downloads in some situations. MinGW32 build now looks for USERPROFILE
and the combination of HOMEDRIVE and HOMEPATH to get user's home
directory and doesn't check permission of .netrc file.
Changes
-------
* Updated gettext to 0.18
* Added JSON-RPC support. --enable-xml-rpc was deprecated and
--enable-rpc should be used instead. Similarly, --xml-rpc-*
options were replaced with --rpc-* options. We are implementing
JSON-RPC based on JSON-RPC 2.0 draft spec.
* Fixed rounding error in DownloadEngine::run(). This fixes the bug
that executeCommand() with Command::STATUS_ALL is not called in
every interval correctly because of rounding error in timer.
* Refresh buckets at DHT initialization without checking serialized
time. Checking serialized time does not work if you stop aria2 as
soon as it started DHT. The serialized time in dht.dat will be
updated, but buckets are not updated and still old. When you
restart aria2 again soon, it does not refresh buckets because
serialized time is recent.
* Save downloads added by aria2.addTorrent or aria2.addMetalink in
--save-session file. Uploaded data are saved as file named hex
string of sha1 hash of uploaded data plus extension(".torrent" for
torrent and ".meta4" for metalink). For example,
0a3893293e27ac0490424c06de4d09242215f0a6.torrent. The directory
where these files are saved is specified by --dir option. These
file paths are written in --save-session file.
* Fixed the bug that causes segmentation fault when unpause
RequestGroup which has resolved BtDependency.
* Look for USERPROFILE and the combination of HOMEDRIVE and HOMEPATH
to get user's home directory in MinGW32 build. Usually HOME
environment variable is defined in *nix like OSes, but not in
Windows. So in MinGW32 build, if HOME is not defined, we also look
for USERPROFILE and the combination of HOMEDRIVE and HOMEPATH.
* Fixed the bug that DownloadContext::basePath_ is not escaped.
* Added Date, Expires and Cache-Control response header field to RPC
response.
* Added --async-dns-server option. This option accepts comma
separated list of DNS server addresses used in asynchronous DNS
resolver. Usually asynchronous DNS resolver reads DNS server
addresses from /etc/resolv.conf. When this option is used, it uses
DNS servers specified in this option instead of ones in
/etc/resolv.conf. You can specify both IPv4 and IPv6 address. This
option is useful when the system does not have /etc/resolv.conf and
user does not have the permission to create it.
* Accept https:// and ftp:// in proxy options and environment variables.
* Fixed overflow in the calculation of progress percentage for file
allocation and hash check when off_t is 32bit.
* Accept HTTP 304 reply as success when If-None-Match request-header
field is specified using --header option. When --conditional-get
is used, --allow-overwrite is now required to overwrite existing
file.
* Added aria2.removeDownloadResult RPC method. The method signature
is aria2.removeDownloadResult(gid). This method removes
completed/error/removed download denoted by gid from memory. This
method returns "OK" for success.
* Use IP address of control connection to connect to the remote server in
FTP passive mode.
* Don't check permission of .netrc file in MinGW32 build.
* Added --retry-wait option. This option was once existed in aria2
but erased on 2009-09-20. Now it is resurrected once again. We
choose 0 as default value for backward compatibility. Now we retry
HTTP download when remote server returns "503 Service Unavailable"
if --retry-wait > 0. We also added error code 29:
HTTP_SERVICE_UNAVAILABLE.
* Don't show metadata download and paused download in "Download Results".
This fixes some important bugs and is therefore recommended for all users.
Key changes:
* Security: Directory traversal vulnerability with disk redirection (disallow /.. requests)
* New maintainer: Peter Åstrand <astrand@...>
* Brush cache support
* Removed the hardcoded limit of the username length
* Increased domain name length to 255 chars
* Improved compatibility with PulseAudio/padsp
* Cleaned up and documented the return values
* Keyboard fix: avoid stuck keys in certain cases
* Support for new pointers
* License has been changed to GPLv3
* EWMH fixes for 64-bit machines
* RandR support: automatically resize session if using relative screen size
* Improved support for Windows 2008 Session Broker
* Japanese keyboard map has been improved
* New keyboard map: fr-bepo
* Many stability fixes regarding smart card redirection
* Windows 2008 R2 / 7: Fix sound playback when not using other redirections
* Windows 2008 R2 / 7: Solve disk redirection read-only issues
* Windows 2008 R2 / 7: Solve issue with recursive deletion
* Avoid exit when printing, if lpr command terminates early
PR#44929.
The main changes are to sc_tracediff, a program that displays traceroutes side
by side that have changed. There are bug fixes to sc_tracediff, as well as
enhancements.
* not to notify action from mute users.
* fix to locd JSON library correctly.
* deprecate SQLite plugin.
* support new Twitter search API.
* add settings not to move to ttweet Fav or RT by myself to top.
* fixes crash with old RubyGTK on ubuntu 11.04.
patch provided by Matthew Luckie via PR#44919.
A lot of changed in scamper since 2008.
For some idea about what is in scamper today, please check the website,
in particular the scamper man page.
* Several man-page updates
* Several buildsystem fixes
* Fixed a bug with GUI icon deletion on upgrade from 2.2-RC or earlier
* Change the default --tmp-dir path to a more suitable path
* Improve the mysprintf() issue in openvpnserv.c
* Fixed bug in port-share that could cause port share process to crash
* Fix the --client-cert-not-required feature
+ fixes cross-site scripting vulnerabilities (SA44036)
+ contains a lot of filename cleanup work (no more bb and hobbit)
please read upgrade-to-430.txt when upgrading from a previous pkg
(see also the install message)
change: Incoming SSL connections can time out waiting for SSL_accept to
complete
pkgsrc change: remove the patch which did daemonize omniNames in
the code -- this was bad because it sent all diagnostic output
to /dev/null. send it to background in the rc.d script instead, and
set a reasonable logfile location
Bug Fixes:
* Added explicit note on unbound-anchor usage: Please note usage of
unbound-anchor root anchor is at your own risk and under the terms of our
LICENSE (see that file in the source).
* Fix remove private address does not throw away entire response. [bugzilla: 361 ]
* Fix, time.elapsed variable not reset with stats_noreset.
* Fix no ADflag for NXDOMAIN in NSEC3 optout. And wildcard in optout.
* give config parse error for multiple names on a stub or forward zone.
* updated ldns tarball to 1.6.9(snapshot).
* iana portlist updated.
Changelog:
This release fixes a program crash that was happening with certain YouTube
videos, and fixes the date extraction regular expression in YouTube.
* Update BUILDLINK_API_DEPENDS.quvi to 0.4.0
Changelog:
0.2.15 Fri Apr 15 2011 Toni Gundogdu
Changes:
- Add support for reading URLs from the stdin
- quvi_supported: Improve URL checking (#29)
- Check additional URL parts (vs. domain only)
- Remove obsoleted (by new test suite) options from quvi command
- --test-all
- --test
- --page-title
- --video-id
- --file-length
- --file-suffix
- --dump
Changes: Build system
- New testsuite (see $top_srcdir/test/README)
- Use CPPFLAGS (src|lib|examples)/Makefile.am
- configure:
- Add --enable-nlfy, --enable-verbose-tests
- Rename --enable-broken -> --enable-todo
Changes: API
- Add "media" interface, deprecating the old "video" interface
- The deprecated symbols will be removed in 0.2.20
- Add quvi_next_media_url (depr. quvi_next_videolink)
- Add quvi_media_t (depr. quvi_video_t)
- Add QUVIPROP_MEDIAID (depr. QUVIPROP_VIDEOID)
- Add QUVIPROP_MEDIAURL (depr. QUVIPROP_VIDEOURL)
- Add QUVIPROP_MEDIACONTENTLENGTH (depr. QUVIPROP_VIDEOFILELENGTH)
- Add QUVIPROP_MEDIACONTENTTYPE (depr.QUVIPROP_VIDEOFILECONTENTTYPE)
- Add QUVIPROP_FILESUFFIX (depr. QUVIPROP_VIDEOFILESUFFIX)
- Add QUVIPROP_FORMAT (depr. QUVIPROP_VIDEOFORMAT)
- Add QUVIPROP_MEDIATHUMBNAILURL, QUVIPROP_MEDIADURATION
- Thanks to Bastien Nocera for the patch
Changes: Website scripts
- Add soundcloud.lua, ted.lua: Thanks to Bastien Nocera for scripts
- Add megavideo.lua: Thanks to Paul Kocialkowski for the script
- Add tvlux.lua
- collegehumor.lua: Mark as TODO (#35)
- cbsnews.lua (#30)
- Improve 'best' parsing (compare height and bitrate)
- Update format IDs
- youtube.lua:
- Add support for "#at=" as start-time
- Add support additional embed URL types (/e/,/embed/)
- Process the starttime string (#36)
- Remove the dangling format IDs (tgp_144p, webm_*)
- vimeo.lua: Exit with server returned error message (#27)
- arte.lua: Improve handling of expired URLs
Bugfixes:
- "error: (null)" with LUA scripts that use 'redirect' (#46)
- quvi: Do not exit if preceeding URL fails (#40)
- Compilation when PATH_MAX is not defined (#32)
Bugfixes: Build system
- Include doc subdir with --with-doc flag only (#33)
Bugfixes: Website scripts
- cbsnews.lua: attempt to compare number with nil (#30)
- Bug Fixes
The following vulnerabilities have been fixed. See the security
advisory for details and a workaround.
o The NFS dissector could crash on Windows. (Bug 5209)
Versions affected: 1.4.0 to 1.4.4.
o The X.509if dissector could crash. (Bug 5754, Bug 5793)
Versions affected: 1.2.0 to 1.2.15 and 1.4.0 to 1.4.4.
o Paul Makowski from SEI/CERT discovered that the DECT dissector
could overflow a buffer. He verified that this could allow
remote code execution on many platforms.
Versions affected: 1.4.0 to 1.4.4.
The following bugs have been fixed:
o Export HTTP > All - System Appears Hung (but isn't). (Bug 1671)
o Some HTTP responses don't decode with TCP reassembly on. (Bug 3785)
o Wireshark crashes when cancelling a large sort operation. (Bug 5189)
o Wireshark crashes if SSL preferences RSA key is actually a DSA key.
(Bug 5662)
o tshark incorrectly calculates TCP stream for some syn packets.
(Bug 5743)
o Wireshark not able to decode the PPP frame in a sflow
(RFC3176) flow sample packet because Wireshark incorrectly
read the protocol in PPP frame header. (Bug 5746)
o Mysql protocol dissector: all fields should be little endian.
(Bug 5759)
o Error when opening snoop from Juniper SSG-140. (Bug 5762)
o svnversion: command not found. (Bug 5798)
o capinfos: #ifdef HAVE_LIBGCRYPT block includes a line too
many. (Bug 5803)
o Value of TCP segment data cannot be copied. (Bug 5811)
o proto_field_is_referenced() is not exported in
libwireshark.dll. (Bug 5816)
o Wireshark ver. 1.4.4 not displayed "Granted QoS" field in a
A11 packet. (Bug 5822)
- Updated Protocol Support
HTTP, LDAP, MySQL, NFS, sFlow, SSL, TCP
