v0.12.28:
BUG FIXES:
build: build the 0.12 version of Terraform with Go 1.12.13, rather than 0.13 Terraform's 1.14.2
v0.12.27:
BUG FIXES:
backend/remote: fix panic when there's a connection error to the remote backend
Instead:
1. Package makefiles including their own options.mk
2. Packages say "SUBST_CLASSES+=djberrno" to get the hack, if needed
3. Packages adjust SUBST_FILES.djberrno, if needed
Should fix bulk build failures due to multiple inclusions of options.mk
and/or incorrect definitions of DJB_ERRNO_HACK.
Approved during the freeze by wiz@.
05/20/2020 Version 4.3.3
- Increase cache buffers size to accomodate VLAN edits (#594)
- Correct L2 header length to correct IP header offset (#583)
- Fix warnings from gcc version 10 (#580)
- Heap Buffer Overflow in randomize_iparp (#579)
- Use after free in get_ipv6_next (#578)
- Heap Buffer Overflow in git_ipv6_next (#576)
- Call pcap_freecode() on pcap_compile() (#572)
- Increase max snaplen to 262144 (#571)
- Fix divide by zero in fuzzing (#570)
- Unique IP repeats at very high iteration counts (#566)
- Fails to compile on FreeBSD amd64 13.0 (#558)
- Heap Buffer Overflow in do_checksum (#556) (#577)
- Attempt to correct corrupt pcap files, if possible (#557)
- Fix GCC v10 warnings (#555)
- Remove some duplicated SOURCES entries (#551)
- Expand /dev/bpfX hard limit to fix macOS Mojave (#550)
- Implement --loopdelay-ms when using --loop=0 (#546)
- Heap overflow packet2tree and get_l2len (#530)
03/12/2019 Version 4.3.2
- CVE-2019-8381 memory access in do_checksum() (#538)
- CVE-2019-8376 NULL pointer dereference get_layer4_v6() (#537)
- CVE-2019-8377 NULL pointer dereference get_ipv6_l4proto() (#536)
- Rename Ethereal to Wireshark (#545)
12/27/2018 Version 4.3.1
- Fix checkspell detected typos (#531)
11/10/2018 Version 4.3.0
- Fix maxOS TOS checksum failure (#524)
- TCP sequence edits seeding (#514)
- Fix issues identifed by Codacy (#493)
- CVE-2018-18408 use-after-free in post_args (#489)
- CVE-2018-18407 heap-buffer-overflow csum_replace4 (#488)
- CVE-2018-17974 heap-buffer-overflow dlt_en10mb_encode (#486)
- CVE-2018-17580 heap-buffer-overflow fast_edit_packet (#485)
- CVE-2018-17582 heap-buffer-overflow in get_next_packet (#484)
- Out-of-tree build (#482)
- CVE-2018-13112 heap-buffer-overflow in get_l2len (#477 dup #408)
- Closing stdin on pipe (#479)
- Second pcap file hangs on multiplier option (#472)
- Jumbo frame support for fragroute option (#466)
- TCP sequence edit ACK corruption (#451)
- TCP sequence number edit initial SYN packet should have zero ACK (#450)
- Travis CI build fails due to new build images (#432)
- Upgrade libopts to 5.18.12 to address version build issues (#430)
- Add ability to change tcp SEQ/ACK numbers (#425)
- Hang using loop and netmap options (#424)
- tcpprep -S not working for large cache files (#423)
- Unable to tcprewrite range of ports with --portmap (#422)
- --maxsleep broken for values less than 1000 (#421)
- -T flag breaks traffic replay timing (#419)
- Respect 2nd packet timing (#418)
- Avoid non-blocking behaviour when using STDIN (#416)
- pcap containing >1020 packets produces invalid cache file (#415)
- manpage typos (#413)
- Fails to open tap0 on Zephyr (#411)
- Heap-buffer-overflow in get_l2protocol (#410)
- Heap-buffer-overflow in packet2tree (#409)
- Heap-buffer-overflow in get_l2len (#408)
- Heap-buffer-overflow in flow_decode (#407)
- Rewrite zero IP total length field to match the actual packet length (#406)
- Stack-buffer-overflow in tcpcapinfo (#405)
- tcpprep --include option does not exclude (#404)
- Negative-size-param memset in dlt_radiotap_get_80211 (#402)
- tcpeplay --verbose option not working (#398)
- Fix replay when using --with-testnic (#178)
Update ruby-twitter to 7.0.0.
7.0.0
* Add Twitter::DirectMessageEvent (@FabienChaynes)
* Create Twitter::DirectMessageEvent with media (@FabienChaynes)
* Support for DM welcome messages (@FabienChaynes)
* Support for closing Twitter::Streaming::Connection (@okkez)
* Add Twitter::REST::Client#create_direct_message_event (@cyu)
* Add Twitter::REST::Client#premium_search
* Add Twitter::REST::AccountActivity
* Update all direct message methods to return Twitter::DirectMessageEvent
(@flikglick)
* Correctly handle different Twitter::Error::AlreadyRetweeted error messages
(@knu)
* Fix proxy setting sample (@nicklegr)
* Add Active Support presence methods on Twitter::NullObject (@davebrace)
* Upload GIFs over 5MB in chunks (@wild_dmitry)
* Track rate limit when searching tweets (@dsalahutdinov1)
* Add quote_count and reply_count attributes to Twitter::Tweet
* Drop support for Ruby 2.0, 2.1, and 2.2
Updaet ntp4 to 4.2.8p14.
pkgsrc changes:
* Incorporate several changes from NetBSD base.
* few pkglint fixes.
Quote from release announce:
NTP 4.2.8p14 (Harlan Stenn <stenn@ntp.org>, 2020 Mar 03)
Focus: Security, Bug fixes, enhancements.
Severity: MEDIUM
This release fixes three vulnerabilities: a bug that causes causes an ntpd
instance that is explicitly configured to override the default and allow
ntpdc (mode 7) connections to be made to a server to read some uninitialized
memory; fixes the case where an unmonitored ntpd using an unauthenticated
association to its servers may be susceptible to a forged packet DoS attack;
and fixes an attack against a client instance that uses a single
unauthenticated time source. It also fixes 46 other bugs and addresses
4 other issues.
Update ruby-ruby_smb to 2.0.1.
* store server time values and GUDI
* Fix issues with Mac OS X SMB server
- Set the unicode flag on the Negotiate SMB Header request
- Check if the Socket is closed before calling IO.select
- Improve Socket#recv_packet exception handling
* Update related to Win8 errors
- Change :encryption_required parameter name to a more meaningful name
according to the context: :session_encrypt_data and
:tree_connect_encrypt_data.
- #can_be_encrypted? now returns false with SMB1 packet.
- Improve exception handling in #recv_encrypt in case an encryption error
occurs on the server (this will help in detecting the unpatched Win8
bug).
- Only enable session encryption if the server supports it. This only
applies if session_encrypt_data was originally set (forced). If it is
not set, session encryption will stay disabled even if the server
supports encryption.
* More fixes
- Remove the `OEM` flag when initializing the `Net::NTLM::Client`.
Unicode is the default now and `Net::NTLM::Client` does not handle OEM
string correctly.
- Improve error message when an SMB1 `NtCreateAndxResponse` is received
without extended information.
v3.3.26:
More straightforward approach to configure tests suites
v3.3.25:
Allow updating gandi rrset ttl. Previously, a rrset ttl could be set only when creating a new record
Final customizations for hetzner dns api v1. The main fix is, that hetzner does not need the fqdn as record name. This leads to major errors like: record name=sub1.my-fqdn.tld --> record created with final name sub1.my-fqdn.tld.my-fqdn.tld
Delete config.yml delete circleci integration. no longer necessary.
0.27.1
Improved the logging situation (includes fixing a false-positive "packets() made no progress adding records")
0.27.0
Large multi-resource responses are now split into separate packets which fixes a bad mdns-repeater/ChromeCast Audio interaction ending with ChromeCast Audio crash (and possibly some others) and improves RFC 6762 compliance
Added a warning presented when the listener passed to ServiceBrowser lacks update_service() callback
Added support for finding all services available in the browser example
Backwards incompatible:
Removed previously deprecated ServiceInfo address constructor parameter and property
pysmb-1.2.1
- Fix bug in deleteFiles() method which can fail for certain search patterns.
pysmb-1.2.0
- Add new parameter, delete_matching_folders, to deleteFiles() method to
support deletion of child folders that match the search pattern.
pysmb-1.1.29
- Fix unhandled exception for short NBNS queries
- Fix wildcard file deletion with servers on SMB2 protocol
Changes since 0.7.19
* Fixed returning from an iterator on Python 3.7+, by Sergey Kozlov.
* Fixed Python 3.8 SyntaxWarning on using `is not` with a string literal, by Stefan Nordhausen.
* Fixed DeprecationWarnings by using raw strings for escape characters used in regexes, by Sean McGinnis.
* Improved IPGlob documentation, by obkmeta.
* Fixed exception creation in corner cases by explicitly passin error message params as tuples, by
Matthias Urlichs.
* Stopped manually replacing shebang of an included script.
* Stopped using __file__ in all code that's expected to run in environments that don't support it
(like PyOxidizer-produced binaries).
* Updated all databases included in the package.
Specific bug fixes addressed in this release
FIXED Issue 182: https://github.com/netaddr/netaddr/issues/182
- test_ip_splitter_remove_prefix_larger_than_input_range fails with python 3.7
FIXED Issue 206: https://github.com/netaddr/netaddr/issues/206
- ""is not" with a literal." SyntaxWarning
FIXED Issue 198: https://github.com/netaddr/netaddr/issues/198
- oui databases are outdated
FIXED Issue 188: https://github.com/netaddr/netaddr/issues/188
- Avoid use of __file__
Miscellanea
- Python 2 versions older than 2.7 and Python 3 versions older than 3.5 should be considered
unsupported. No incompatible code has been introduced to the best of our knowledge but
there's no CI infrastructure in place to verify this and if there are any issues with
those versions they won't be fixed.
- Consequently, Python 2.7 and 3.5 support should be considered deprecated as 2.7 has
reached its end-of-life already and 3.5 will hit it soon.
- A CI setup has been introduced which allows us to test on a variety of Python versions
on all Mac, Linux and Windows.
v2.67.0
NOTES:
data-source/aws_secretsmanager_secret: The rotation_* attributes have been deprecated in favor of the new aws_secretsmanager_secret_rotation data source.
resource/aws_secretsmanager_secret: The rotation_* arguments have been deprecated in favor of the new aws_secretsmanager_secret_rotation resource. The new resource, which fixes workflow issues, prevents the existing resource from showing changes when attempting to remove rotation. Removal must be done with the new resource or manually.
FEATURES:
New Data Source: aws_ebs_volumes
New Data Source: aws_ec2_local_gateway_virtual_interface
New Data Source: aws_ec2_local_gateway_virtual_interface_group
New Data Source: aws_ec2_local_gateway_virtual_interface_groups
New Data Source: aws_ecr_authorization_token
New Data Source: aws_outposts_outpost
New Data Source: aws_outposts_outpost_instance_type
New Data Source: aws_outposts_outpost_instance_types
New Data Source: aws_outposts_outposts
New Data Source: aws_outposts_site
New Data Source: aws_outposts_sites
New Data Source: aws_secretsmanager_secret_rotation
New Data Source: aws_wafv2_web_acl
New Guide: Resource Tagging
New Resource: aws_ec2_local_gateway_route
New Resource: aws_ec2_local_gateway_route_table_vpc_association
New Resource: aws_ec2_tag
New Resource: aws_secretsmanager_secret_rotation
New Resource: aws_wafv2_web_acl
New Resource: aws_wafv2_web_acl_association
ENHANCEMENTS:
data-source/aws_vpc_dhcp_options: Add arn attribute
data-source/aws_efs_mount_target: Add availability_zone_name, availability_zone_id, mount_target_dns_name, and owner_id attributes
data-source/aws_internet_gateway: Add arn attribute
data-source/aws_lambda_function: Add file_system_config attribute
data-source/aws_workspaces_bundle: Add name and owner as search crieria
resource/aws_ec2_capacity_reservation: Add arn attribute and support for Linux SQL Server values in instance_platform argument
resource/aws_cloudwatch_log_stream: Support resource import
resource/aws_default_vpc_dhcp_options: Add arn attribute
resource/aws_devicefarm_project: Support resource import
resource/aws_ec2_traffic_mirror_target: Add arn attribute
resource/aws_ecs_capacity_provider: Implement API deletion support
resource/aws_efs_mount_target: Add availability_zone_name, availability_zone_id, mount_target_dns_name, and owner_id attributes
resource/aws_efs_mount_target: Add plan time validation for ip_address argument
resource_aws_elasticsearch_domain: Add support for elasticsearch warm storage
resource_aws_elasticsearch_domain: Add plan time validation for cloudwatch_log_group_arn, role_arn, and ebs_options.volume_type
resource/aws_flow_log: Add arn attribute
resource/aws_glue_catalog_table: Add arn attribute
resource/aws_guardduty_detector: Add tags argument and arn attribute
resource/aws_guardduty_ipset: Add tags argument and arn attribute
resource/aws_guardduty_threatintelset: Add tags argument and arn attribute
resource/aws_internet_gateway: Add arn attribute
resource/aws_key_pair: Add arn attribute
resource/aws_lambda_function: Add file_system_config attribute
resource/aws_service_discovery_http_namespace: Add tags argument
resource/aws_service_discovery_private_dns_namespace: Add tags argument
resource/aws_service_discovery_public_dns_namespace: Add tags argument
resource/aws_service_discovery_service: Add tags argument
resource/aws_vpc_dhcp_options: Add arn attribute
resource/aws_wafv2_ip_set: Increase addresses maximum amount of items limit from 50 to 10,000 to match AWS limits
BUG FIXES:
resource/aws_cloudfront_origin_access_identity: Properly trigger resource recreation when deleted outside Terraform
resource/aws_cognito_user_pool_client: Mark client_secret as sensitive
resource/aws_route: Ensure retries occur on read after creation if route not found for EC2 eventual consistency
Changelog:
List of changes:
Hotkey language fixed!2064 (merged) @kingu
TRANSLATION file for l10n !2065 (merged) @kingu
Fetch news from remmina.org optional !2066 (merged) @antenore
allow saving notes in connection profile !2067 (merged) @juarez.rudsatz
RDP: Improving hardware option parsing !2068 (merged) @antenore
Rearranged widgets in a new Behavior tab !2069 (merged) @juarez.rudsatz
Add separator only when there are saved profiles. Fixes#1914!2070 (merged) @antenore
Implementing resume all for FTP file transfer, should fix#2210!2072 (merged) @antenore
Spelling: Overwrite all file transfers !2073 (merged) @kingu
Spelling: Options for redirection x2, -: !2074 (merged) @kingu
Edit or connect using multiple profile files from the command line !2075 (merged) @antenore
Desktop session files for Remmina kiosk are optional !2076 (merged) @antenore
Update Ukrainian translation for the desktop file !2077 (merged) @yurchor
Remove 'translatable="yes"' from the fake label in remmina_spinner.glade !2079 (merged) @yurchor
Remove 'translatable="yes"' from the fake label !2078 (merged) @yurchor
Feat/lebowski !2080 (merged) @antenore
# pkgsrc changes
No OWNDIR needed for daemon's HOME
Add Perl path to LDFLAGS only when it is needed (snmp support)
List INSTALLATION_DIRS explicitly
Set PKG_SYSCONFSUBDIR, so that README.conf actually gets installed
Since editline is fully functional, avoid linking against the GPLv3 readline
# upstream changes
Numerous small changes, see ChangeLog.
gh is GitHub on the command line, and it's now available in beta.
It brings pull requests, issues, and other GitHub concepts to the
terminal next to where you are already working with git and your code.
Update bind911 to 9.11.20, fixing CVE-2020-8619.
--- 9.11.20 released ---
5437. [bug] Fix a data race in lib/dns/resolver.c:log_formerr().
[GL #1808]
5434. [security] It was possible to trigger an INSIST in
lib/dns/rbtdb.c:new_reference() with a particular zone
content and query patterns. (CVE-2020-8619) [GL #1111]
[GL #1718]
5433. [test] Prevent the resolver system test for change #5395
(max-recursion-queries) from failing on systems without
IPv6 support. [GL #1873]
5428. [bug] Clean up GSSAPI resources in nsupdate only after taskmgr
has been destroyed. Thanks to Petr Menšík. [GL !3316]
5427. [bug] Fix a regression in address/prefix length checking that
should have been a warning instead of an error.
[GL #1849]
5415. [test] Address race in dnssec system test that led to
test failures. [GL #1852]
5413. [test] Address race in autosign system test that led to
test failures. [GL #1852]
5412. [bug] 'provide-ixfr no;' failed to return up-to-date responses
when the serial was greater than or equal to the
current serial. [GL #1714]
5409. [performance] When looking up NSEC3 data in a zone database, skip the
check for empty non-terminal nodes; the NSEC3 tree does
not have any. [GL #1834]
5408. [protocol] Print Extended DNS Errors if present in OPT record.
[GL #1835]
5405. [bug] 'named-checkconf -p' could include spurious text in
server-addresses statements due to an uninitialized DSCP
value. [GL #1812]
0.10.15
- Added `assert_call_count` to improve ergonomics around ensuring a mock was called.
- Fix incorrect handling of paths with query strings.
- Add Python 3.9 support to CI matrix.
Features
Add L3 switching features for USW-Pro series.
Improvements
Add support for MongoDB 3.6.
Auto-optimize enables Wi-Fi AI.
Prioritize busy times in Wi-Fi AI logic.
Update Hotspot 2.0 for WFA requirements.
Add VHT160 option for Japan.
Show client icons on DPI and statistics pages.
Improve SSID validation.
Improve support for USP Plug.
Allow adopting UBB only if both devices are connected.
Allow changing VHT mode for 5GHz radio on UBB.
Adjust speed test statistics to longer intervals.
Add LTS notifications.
Add Analytics & Improvements opt-in modal which is displayed post upgrade.
Add description of SNMPv3 security options.
Allow sending test emails via Cloud Email service.
Make timezones dropdown searchable.
Update IANA timezone database.
Update inter-VLAN routing Network form.
Remove OP mode from Port Profiles.
Add MAC column to Insights/Known Clients.
Update available IDS/IPS categories to lessen false positives and improve resource use.
Rename UDM-Beacon to UAP-BeaconHD.
Improve Property Panel for USW Leaf.
Handle LCM sync event notifications on UDM.
Support U-LTE on UDM devices.
Support WAN failover for UDM devices.
Add UDM boot sound checkbox.
Various fixes and improvements in Beta Settings.
Various performance improvements.
Update translations and add missing events.
Known issues
Don't remind me button for LTS notifications doesn't function properly.
Blocking countries in map is not working, workaround is using the classic settings.
Incorrect DPI Statistics.
This allows rust-bin and rust to coexist in bulk builds (for testing, etc),
but the packages still may not be installed at the same time.
rust.mk as a solution for picking the correct rust variant was suggested
by gdt@. It is intended to be included directly by packages that do not
use cargo.mk, and indirectly by packages that do use cargo.mk.
rust.mk provides one user-settable variable:
RUST_TYPE
as before, whether to bootstrap rust from source or use
official binaries. may be "src" or "bin"
And two package-settable variables:
RUST_REQ
the minimum version of Rust required by the package.
defaults to "1.20.0"
RUST_RUNTIME
whether Rust is a runtime dependency, may be "yes" or "no"
Update ruby-xdr to 3.0.1.
3.0.1
Added
* Add encoding parameter to Union#to_xdr
((#7)[https://github.com/stellar/ruby-xdr/pull/7]).
Fixed
* Padding bytes are now properly validated when reading xdr values.
According to the XDR spec, padding must be zeros.
