Does not fix the build, but advances it; now it's having some kind
of bizarre problem with <sys/queue.h>.
While here, add three small patches to silence a large pile of const
warnings that made it impossible to see anything else that was going
on.
* use intmax_t instead of long long
* Don't limit the size of the environment
* Don't leak a directory file descriptor
* ansify
* dynamically allocate EARGS
* use getaddrinfo
2.9.1 - 01/27/2012
------------------
- Applied patch to allow packets arriving with a future time stamp
(Daniel Wittenberg)
- Updated server (nsca) to allow packets with older, smaller packet size
(Eric Stanley)
2.9 - 11/04/2011
----------------
- Add config directive to submit directly to checkresults directory
(Mike Lindsey)
- Support multi-line check output with 4000 character limit (Mike Lindsey)
2.8 - ??/??/????
----------------
- Added --with-log-facility option to control syslog logging (Ryan Ordway
and Brian Seklecki)
- Fixed bug where daemon would segfault if mcrypt library was not
initialized be fore timeout (Holger Weiss)
- Fixed bug with switching from dump file to command file when running
under sin gle mode (Ton Voon)
- Fix for small memory leak with running as a single process daemon (Daniel)
Bugfixes:
* Bugfix #461 (VU#517036 CVE-2012-2979): NSD denial of service vulnerability
from DNS packet when using --enable-zone-stats.
* Bugfix #460: man page correction - identity.
* Fix for nsd-patch segfault if zone has been removed from nsd.conf
"The Nmap Project is pleased to announce the immediate, free availability
of the Nmap Security Scanner version 6.00 from http://nmap.org/.
It is the product of almost three years of work, 3,924 code commits,
and more than a dozen point releases since the big Nmap 5 release in July
2009. Nmap 6 includes a more powerful Nmap Scripting Engine, 289 new scripts,
better web scanning, full IPv6 support, the Nping packet prober, faster scans, and much more! We recommend that all current users upgrade."
Here is a condensed Changelog:
Nmap 6.01 [2012-06-13]
o [Zenmap] Fixed a hang that would occur on Mac OS X 10.7.
o [Zenmap] Fixed a crash that happened when activating the host filter.
o Fixed a bug that caused Nmap to fail to find any network interface when
at least one of them is in the monitor mode.
http://seclists.org/nmap-dev/2012/q2/449http://seclists.org/nmap-dev/2012/q2/478
o Fixed the greppable output of hosts that time-out.
Nmap 6.00 [2012-05-21]
o Most important release since Nmap 5.00 in July 2009! For a list of
the most significant improvements and new features, see the
announcement at: http://nmap.org/6
o Some XML output improvements...
o Lots of NSE scripts added and updated...
o Fixed the routing table loop on OS X so that on-link routes appear.
o Upgraded included libpcap to version 1.2.1.
o Fixed a compilation problem on Solaris 9 caused by a missing
definition of IPV6_V6ONLY.
o Setting --min-parallelism by itself no longer forces the maximum
parallelism to the same value.
o [Zenmap] Fixed a crash that would happen in the profile editor when
the script.db file doesn't exist.
o [Zenmap] It is now possible to compare scans having the same name or
command line parameters.
o Fixed an error that could occur with ICMPv6 probes and -d4 debugging:
"Unexpected probespec2ascii type encountered"
o Applied a workaround to make pcap captures work better on Solaris 10.
o Fixed a bug that could cause Nsock timers to fire too early.
o Changed the way timeout calculations are made in the IPv6 OS engine.
Nmap 5.61TEST5 [2012-03-09]
o Integrated all of your IPv4 OS fingerprint submissions since June
2011 (about 1,900 of them). Added about 256 new fingerprints (and
deleted some bogus ones), bringing the new total to 3,572.
Additions include Apple iOS 5.01, OpenBSD 4.9 and 5.0, FreeBSD 7.0
through 9.0-PRERELEASE, and a ton of new WAPs, routers, and other
devices. Many existing fingerprints were improved. For more details,
see http://seclists.org/nmap-dev/2012/q1/431
o Integrated all of your service/version detection fingerprints
submitted since November 2010--more than 2,500 of them! Our
signature count increased more than 10% to 7,423 covering 862
protocols. Some amusing and bizarre new services are described at
http://seclists.org/nmap-dev/2012/q1/359
o Integrated your latest IPv6 OS submissions and corrections. We're
still low on IPv6 fingerprints, so please scan any IPv6 systems you
own or administer and submit them to http://nmap.org/submit/. Both
new fingerprints (if Nmap doesn't find a good match) and corrections
(if Nmap guesses wrong) are useful.
o IPv6 OS detection now includes a novelty detection system which
avoids printing a match when an observed fingerprint is too
different from fingerprints seen before. As the OS database is still
small, this helps to avoid making (essentially) wild guesses when
seeing a new operating system.
o Refactored the nsock library to add the nsock-engines system.
o [NSE] Added 43(!) NSE scripts, bringing the total up to 340.
o CPE (Common Platform Enumeration) OS classification is now supported
for IPv6 OS detection.
[...]
Nmap 5.61TEST4 [2012-01-02] -> Nmap 5.61TEST1
[...]
Lots of Bugfixes!
Thanks to jschauma@ for analysing a NetBSD related problem,
and to David Fifield for providing the (upstream) patch.
Choqok is a Free/Open Source micro-blogging client for the K Desktop
Environment. It currently supports Twitter.com, Identi.ca and opendesktop.org
services.
4.058 to 4.062.
pkgsrc changes:
- currect license conditions
upstream changes:
4.062 Wed Jun 6 12:34:48 PDT 2012
documentation updates courtesy of
Ben Bullock <benkasminbullock@gmail.com>
Thank you Ben.
4.061 Tue May 8 16:24:03 PDT 2012
fixed bug in Lite v1.44 that returned
$ip->num() = 2^128 for 0.0.0.0/0
Thanks to Sebastian <debug@test1.org> for spotting it.
4.060 Fri Apr 6 16:00:02 PDT 2012
In Lite.pm v1.43,
fix bug #75976, change in behavior introduced in v4.050
where an empty string supplied to "new" previously returned
'undef' and now returns 'default' for ipV4 or ipV6
4.059 Wed Mar 7 12:50:04 PST 2012
add is_rfc1918 to Lite.pm v1.42
documentation updates
0.715
! #75938 Change to warning / add configuration variable to allow XML tags starting with /xml/i
! #76902 Missing info in "SSL CERTIFICATE AUTHENTICATION" documentation
! #74577 work around/fixes for success with MS WS https/compressed
! #74308 SOAP-Lite fails for operations with period in name
! #73802 client did not set the encoding of the soap-envelope to 'iso-8859-1' in HTTP-request
! #75019 HTTP server doesn't process PIPE signal
! #72836 Processing a SOAP 1.2 request breaks the next SOAP 1.1 response
! #70381 SOAP-Lite performance
! #53375 comments after <?xml .. >
! #63693 Uninitalized value (again)
! #37360 Use of uninitialized variables in SOAP tests
! fixed encoding in xmlrpc keys
! #15176 problems with SOAP::Header ->value
Changes since 4.2.4-P1
! An issue with the use of lease times was found and fixed. Making
certain changes to the end time of an IPv6 lease could cause the
server to abort. Thanks to Glen Eustace of Massey University,
New Zealand for finding this issue.
[ISC-Bugs #30281]
CVE: CVE-2012-3955
--- 9.6-ESV-R7-P3 released ---
3364. [security] Named could die on specially crafted record.
[RT #30416]
3358 [bug] Fix declaration of fatal in bin/named/server.c
and bin/nsupdate/main.c. [RT #30522]
1.1.4:
This new release contains a lot of bug fixes, thank to many reports
from our users. It is also the first release compatible with GNUTLS
version 3.x.
1.1.3:
This new release is a minor bug fix release, addressing a few issues
in dbg_interactive.fdx, as well as a memory leak in the sessions
module.
Bump PKGREVISION
---
Module Name: pkgsrc
Committed By: sbd
Date: Sun Aug 19 07:28:36 UTC 2012
Modified Files:
pkgsrc/net/samba: INSTALL.nss_winbind Makefile options.mk
Added Files:
pkgsrc/net/samba: DEINSTALL.nss_winbind
Log Message:
NSS winbind option install script fixes:
1) Move the INSTALL_TEMPLATES line to the 'winbind' option section.
2) Enable the install script on all platforms.
3) Use the value of ${NSS_WINBIND} in the script as the name of the
library (should work on all platforms).
4) In the install script only create the symlink if ${NSS_WINBIND} doesn't
start with '@comment' (i.e. no nss winbind on this platform) and the
target file exists and the symlink _doesn't_ already exist.
5) Create a DEINSTALL_TEMPLATES to remove the nss winbind symlink if it
exists and point to the correct target.
Bump PKGREVISION.
To generate a diff of this commit:
cvs rdiff -u -r0 -r1.1 pkgsrc/net/samba/DEINSTALL.nss_winbind
cvs rdiff -u -r1.1 -r1.2 pkgsrc/net/samba/INSTALL.nss_winbind
cvs rdiff -u -r1.220 -r1.221 pkgsrc/net/samba/Makefile
cvs rdiff -u -r1.29 -r1.30 pkgsrc/net/samba/options.mk
