D-Bus 1.10.12 (2016-10-10)
==
The “not excessively inhospitable” release.
Security fixes:
• Do not treat ActivationFailure message received from root-owned systemd
name as a format string. In principle this is a security vulnerability,
but we do not believe it is exploitable in practice, because only
privileged processes can own the org.freedesktop.systemd1 bus name, and
systemd does not appear to send activation failures that contain "%".
Please note that this probably *was* exploitable in dbus versions
older than 1.6.30, 1.8.16 and 1.9.10 due to a missing check which at
the time was only thought to be a denial of service vulnerability
(CVE-2015-0245). If you are still running one of those versions,
patch or upgrade immediately.
(fd.o #98157, Simon McVittie)
Other fixes:
• Harden dbus-daemon against malicious or incorrect ActivationFailure
messages by rejecting them if they do not come from a privileged
process, or if systemd activation is not enabled
(fd.o #98157, Simon McVittie)
• Avoid undefined behaviour when setting reply serial number without going
via union DBusBasicValue (fd.o #98035, Marc Mutz)
• autogen.sh: fail cleanly if autoconf fails (Simon McVittie)
The only following features are tested on NetBSD/amd64 7.99.39 without vmt(4)
on VMware Workstation 12 Player 12.0.5 for Windows or ESXi 6.0u2.
* Hostname and IP address report
* Shutdown and reboot operations from host
* Copy and paste of text string between host and guest
* Guest clock sync
The other features are not tested. For example,
* Drag and drop between host and guest
* VM HA, heartbeat
* HGFS, shared folder
Changelog:
What's New
VMware Tools is a suite of utilities that enhances the performance of the virtual machine's guest operating system and improves management of the virtual machine. Read about the new and enhanced features in this release below:
Common versioning: Infrastructure changes to enable reporting of the true version of open-vm-tools. This feature is dependent on host support.
Quiesced snapshots enhancements for Linux guests running IO workload: Robustness related enhancements in quiesced snapshot operation. The vmtoolsd service supports caching of log messages when guest IO has been quiesced. Enhancements in the vmbackup plugin use a separate thread to quiesce the guest OS to avoid timeout issues due to heavy I/O in the guest.
Shared Folders: For Linux distributions with kernel version 4.0.0 and higher, there is a new FUSE based Shared Folders client which is used as a replacement for the kernel mode client.
ESXi Serviceability: Default vmtoolsd logging is directed to a file instead of syslog. vmware-toolbox-cmd is enhanced for setting vmtoolsd logging levels.
GuestInfo Enhancements: Plugin enhancements to report more than 64 IP addresses from the guest. These enhancements will be available only after upgrading the host because the guest IP addresses limit also exists on the host side.
Internationalization
open-vm-tools 10.0.0 supports the following languages:
English
French
German
Spanish
Italian
Japanese
Korean
Simplified Chinese
Traditional Chinese
Compatibility
open-vm-tools 10.0.0 is compatible with all supported versions of VMware vSphere, VMware Workstation 12.0 and VMware Fusion 8.0.
ChangeLog:
2016-10-03 Martin Mares <mj@ucw.cz>
* Released as 3.5.2.
* The L1 power management capability is now decoded more
thoroughly. Thanks to Rajat Jain for the patch.
* The table of configuration registers used by setpci
had a bug in the definition of SUBSYSTEM_VENDOR_ID.
Changes since 4.5.3: mostly bugfixes, including fixes for
security issues XSA-172, XSA-173, XSA-175, XSA-176, XSA-178, XSA-179, XSA-180,
XSA-181, XSA-182, XSA-183, XSA-184, XSA-185, XSA-186 and XSA-187.
All but XSA-175 were already fixed in pkgsrc.
Complete list of changes and links to the XSA advisories:
https://www.xenproject.org/downloads/xen-archives/xen-45-series/xen-455.html
Device Tree Compiler (dtc) toolchain for working with device tree source and
binary files and libfdt, a utility library for reading and manipulating the
binary format.
Add perl to run-time depends, at least one subcommand uses it.
(should perhaps be replaced, it's just for stat())
Fix path to REPLACE_PERL files.
Add rsync to BUILD_DEPENDS, it's needed for some tests.
Upstream changes:
* The index format has changed, which will trigger a full index
rebuild on the next index run, making that run more expensive than
usual.
* When given `--xdev`, `bup save` should no longer skip directories
that are explicitly listed on the command line when the directory is
both on a separate filesystem, and a subtree of another path listed
on the command line. Previously `bup save --xdev / /usr` could skip
"/usr" if it was on a separate filesystem from "/".
* Tags along a branch are no longer shown in the branch's directory in
the virtual filesystem (VFS). i.e. given `bup tag special
/foo/latest`, "/foo/special" will no longer be visible via `bup ls`,
`bup web`, `bup fuse`, etc., but the tag will still be available as
"/.tag/special".
* bup now provides experimental `rm` and `gc` subcommands, which
should allow branches and saves to be deleted, and their storage
space reclaimed (assuming nothing else refers to the relevant data).
For the moment, these commands require an `--unsafe` argument and
should be treated accordingly. Although if an attempt to `join` or
`restore` the data you still care about after a `gc` succeeds,
that's a fairly encouraging sign that the commands worked correctly.
(The `t/compare-trees` command in the source tree can be used to
help test before/after results.)
Note that the current `gc` command is probabilistic, which means it
may not remove *all* of the obsolete data from the repository, but
also means that the command should be fairly efficient, even for
large repositories.
* bup may have less impact on the filesystem cache. It now attempts
to leave the cache roughly the way it found it when running a `save`
or `split`.
* A specific Python can be specified at `./configure` time via PYTHON,
i.e. `PYTHON=/some/python ./configure`, and that Python will be
embedded in all of the relevant scripts as an explicit "#!/..." line
during `make install`.
* The way bup writes the data to disk (the packfiles in particular),
should be a bit safer now if there is a coincident power failure or
system crash.
* bup should be more likely to get the data to permanent storage
safely on OS X, which appears to follow a surprising interpretation
of the `fsync()` specification.
* The build system now creates and uses cmd/bup-python which refers to
the `./configure` selected python.
Clean up dependencies and resolve the json/json_pure conflict.
Changes since 3.8.6:
- PUP-4818: One part of the relative namespacing feature was not
removed when using the future parser. When a class was declared
with a resource like expression the references to classes were
still interpreted as being relative.
- PUP-6113: Puppet will no longer attempt to retrieve the
nonexistent password_min_age property from LDAP users on
Solaris.
- PUP-6073: launchd plists with line continuations no longer cause
the launchd service provider to return Error: Could not prefetch
service provider 'launchd': undefined method to_ruby for
nil:NilClass.
- PUP-5898: :undef caused unexpected behaviors with hashes due to
the 3.x calling convention also applying to resource
expressions.
- PUP-5637: Puppet systemd packages now include an ExecReload
command in the puppet.service files in order to facilitate
graceful restart on systemd systems.
- PUP-5356: Fixed the Puppet Nagios extension with Ruby 1.9.3+.
- PUP-4545: Removed a script that restarts Puppet in response to
network changes on EL based systems.
D-Bus 1.10.10 (2016-08-15)
==
The “tungsten door” release.
Fixes:
• On Linux, when dbus-daemon is run with reduced susceptibility to the
OOM killer (typically via systemd), do not let child processes inherit
that setting (fd.o #32851; Kimmo Hämäläinen, WaLyong Cho)
• Output valid shell syntax in ~/.dbus/session-bus/ if the bus address
contains a semicolon (fd.o #94746, Thiago Macieira)
• Fix memory leaks and thread safety in subprocess starting on Windows
(fd.o #95191, Ralf Habacker)
• Do not require systemd to have a service file if using it for activation
(fd.o #93194; Simon McVittie; backport from 1.11.0)
• Stop test-dbus-daemon incorrectly failing on platforms that cannot
discover the process ID of clients (fd.o #96653, Руслан Ижбулатов)
• In tests that exercise correct handling of crashing D-Bus services,
suppress Windows crash handler (fd.o #95155; Yiyang Fei, Ralf Habacker)
• Explicitly check for stdint.h (Ioan-Adrian Ratiu)
• update-activation-environment: produce better diagnostics on error
(fd.o #96653, Simon McVittie)
• Don't fail the build with an unused const variable warning under gcc 6
(fd.o #97282; Thomas Zimmermann, Simon McVittie)
• Merge dbus-1.10-ci branch, containing backports from 1.11.0 in build/test
code to support continuous integration (fd.o #93194, Simon McVittie)
· Avoid -Wunused-label when compiling with libselinux but no libaudit
· In development builds, allow OOM tests to be disabled as documented
· Accept and ignore the --tap argument in all "embedded tests", and run
all automated tests with that argument for better diagnostics
· Fix the systemd activation test under CMake by installing the required
files
· In Automake, fix shell syntax for installcheck-local with no DESTDIR
· In Automake, don't try to run manual tests in installcheck
· In CMake, don't run manual-tcp test as an automated test
· Add travis-ci.org build machinery
Overview of changes in GLib 2.48.2
==================================
Bugs fixed:
547200 g_utf8_find_next_char() issues
673101 resource compiler dependency generation not working for generated files
700756 GFile.new_for_path arguments misses (type filename) annotation
725902 build: simplify dtrace configuration
728207 gsocketservice: Documentation does not mention that is already active...
730187 glocalfileoutputstream: Fix an FD leak in an error path
746685 Doc: clarify that g_variant_get_data() can be used instead of g_varia...
750257 GSettings changed signal should clearly state the order required
753231 Memory is potentially used after free
755439 Memory leak in gdbusproxy.c
760115 gtestutils: add missing dash in seed argument's --help documentation
760423 gio-querymodules prints error messages as question marks on some locales
761810 gio: Support using GDBusObjectManagerServer at path /
766211 Fix the upper bound in g_unichar_iswide_bsearch
766899 Superflous HTML/XML comments
766933 GSocketAddress leaks in gnetworkmonitornetlink.c:read_netlink_messages()
767172 docs: Move GIO_USE_VFS to "okay for production" section
767218 Remove a UTF-8 ellipsis from gsignal.h
767824 Some UTC timezones incorrectly recognized on Windows 7
767949 Typos in glib docs
768453 Gdbus test: compilation fails due to -Werror=format-y2k errors
768504 keyfile: g_key_file_get_double behavior doesn't follow documentation
768551 Test failure: test_socket_address_to_string
768560 gio/tests/gsettings: fix GSettings reference leaks in some tests
768806 gdbus tool must swallow -- argument
769027 Docs misleadingly imply G_CHECKSUM_SHA512 is available since 2.16
Translations updated:
Indonesian
Portuguese
Turkish
5.22:
Baloo
* Compilation fixes for Windows
KDBusAddons
* KDBusService: turn '-' into '_' in object paths
KFileMetaData
* Merge branch 'externalextractors'
* Fixed external plugins and tests
* Added support for external writer plugins
* Added writer plugin support
* Add external extractor plugin support
5.23:
Baloo
* Fix using spaces in the tags kioslave
5.24:
Baloo
* DocumentUrlDB::del Only assert when children of dir actually exist
* Ignore malformed Queries which have a binary operator without
first argument
Solid
* Fix check that CPU is valid
* Handle reading /proc/cpuinfo for Arm processors
* Find CPUs by subsystem rather than driver
5.25:
KFileMetaData
* Check for xattr during config step, otherwise the build might fail
(if xattr.h is missing)
Solid
* Always update the Predicate parser from yacc/lex sources
