Age | Commit message (Collapse) | Author | Files | Lines |
|
net/samba: security patch
Revisions pulled up:
- net/samba/Makefile 1.201
- net/samba/Makefile.mirrors 1.7
- net/samba/distinfo 1.74
- net/samba/patches/patch-ee 1.3
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Jun 19 14:08:56 UTC 2010
Modified Files:
pkgsrc/net/samba: Makefile Makefile.mirrors distinfo
Added Files:
pkgsrc/net/samba/patches: patch-ee
Log Message:
Add a patch to fix CVE-2010-2063.
Bump PKGREVISION.
|
|
net/samba33: security update
Revisions pulled up:
- net/samba33/Makefile 1.10
- net/samba33/distinfo 1.4
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jun 16 14:34:35 UTC 2010
Modified Files:
pkgsrc/net/samba33: Makefile distinfo
Log Message:
Update samba33 package to 3.3.13.
Changes since 3.3.12
--------------------
o Jeremy Allison <jra@samba.org>
* BUG 7494: Fix for CVE-2010-2063.
|
|
security update
Revisions pulled up:
- pkgsrc/net/wireshark/Makefile 1.46
- pkgsrc/net/wireshark/distinfo 1.32
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tron
Date: Thu Jun 10 18:24:40 UTC 2010
Modified Files:
pkgsrc/net/wireshark: Makefile distinfo
Log Message:
Update "wireshark" package to version 1.2.9. Changes since version 1.2.8:
- Bug Fixes
- The following vulnerabilities have been fixed.
- The SMB dissector could dereference a NULL pointer. (Bug 4734)
- J. Oquendo discovered that the ASN.1 BER dissector could overrun
the stack.
- The SMB PIPE dissector could dereference a NULL pointer on some
platforms.
- The SigComp Universal Decompressor Virtual Machine could go into an
infinite loop. (Bug 4826)
- The SigComp Universal Decompressor Virtual Machine could overrun
a buffer. (Bug 4837)
- The following bugs have been fixed:
- Cannot open file with File -> Open. (Bug 1791)
- Application crash when changing real-time option. (Bug 4035)
- Crash in filter autocompletion. (Bug 4306)
- The XML dissector doesn't allow dots (".") in tags. (Bug 4405)
- Live capture stops when using zlib 1.2.5. (Bug 4708)
- Want to be able to apply decode as to Data Portion of Lan Trace.
(Bug 4721)
- SABP short pdu (packet_per.c). (Bug 4743)
- Kerberos pre-auth type constants - MS extensions are wrong. (Bug 4752)
- Check HTTP Content-Length parsing for overflow. (Bug 4758)
- Wrong variable used for proto_tree_add_text() in ptp dissector.
(Bug 4773)
- Crash when close window frame of gtk file chooser. (Bug 4778)
- Wrong decoding for BGP ORF. (Bug 4782)
- Crash when Ctrl-Backspacing the display filter. (Bug 4797)
- Acker AFI field incorrect size in PGM dissector. (Bug 4798)
- Fedora 13: wireshark fails to build (linking problem). (Bug 4815)
- The NFS FH hash (nfs.fh.hash) incorrectly matches multiple filehandles.
(Bug 4839)
- AES-CTR decoding not working, (dissectors/packet_ipsec.c using gcrypt).
(Bug 4838)
- Updated Protocol Support
ASN.1 BER, BGP, HTTP, IGMP, IPsec, Kerberos, NFS, PGM, PTP, SABP, SigComp,
SMB, TCAP, XML,
- Updated Capture File Support
ERF, PacketLogger.
To generate a diff of this commit:
cvs rdiff -u -r1.45 -r1.46 pkgsrc/net/wireshark/Makefile
cvs rdiff -u -r1.31 -r1.32 pkgsrc/net/wireshark/distinfo
|
|
net/bftpd: security update
Revisions pulled up:
- net/bftpd/Makefile 1.11-1.12
- net/bftpd/distinfo 1.5-1.6
- net/bftpd/patches/patch-aa 1.4
- net/bftpd/patches/patch-ab delete
- net/bftpd/patches/patch-ac 1.1
---
Module Name: pkgsrc
Committed By: obache
Date: Thu May 27 14:14:30 UTC 2010
Modified Files:
pkgsrc/net/bftpd: Makefile distinfo
pkgsrc/net/bftpd/patches: patch-aa
Added Files:
pkgsrc/net/bftpd/patches: patch-ac
Removed Files:
pkgsrc/net/bftpd/patches: patch-ab
Log Message:
Update bftpd to 2.8
Based on PR#43352 by Wen Heping.
pkgsrc changes:
* set LICENSE=gnu-gpl-v2
* simplify patch-aa.
* remove patch-ab, replace with SUBST instead, and also replace /etc in manpage.
* add patch-ac for fixes standalone mode. XXX: IPv4 only
* cosmetics fixes.
---
Module Name: pkgsrc
Committed By: obache
Date: Fri Jun 4 04:30:45 UTC 2010
Modified Files:
pkgsrc/net/bftpd: Makefile distinfo
Log Message:
Update bftpd to 2.9.
Jesse Smith <jessefrgsmith@yahoo.ca> -> 2.9
- Bftpdwill attempt to create it's utmp directory
if that directory does not exist. Fixes issue on
Ubuntu where the direcotry is wiped out at each
reboot.
- The ROOTDIR option now works properly for
anonymous users.
Thanks to Paul for reporting this bug.
|
|
net/kdenetwork4: security patch
Revisions pulled up:
- net/kdenetwork4/Makefile 1.10 via patch
- net/kdenetwork4/distinfo 1.9 via patch
- net/kdenetwork4/patches/patch-ba 1.1 via patch
- net/kdenetwork4/patches/patch-bb 1.1 via patch
---
Subject: CVS commit: pkgsrc/net/kdenetwork4
Date: Monday 17 May 2010, 09:21:39
From: Mark Davies <markd@netbsd.org>
To: pkgsrc-changes@netbsd.org
Module Name: pkgsrc
Committed By: markd
Date: Sun May 16 21:21:39 UTC 2010
Modified Files:
pkgsrc/net/kdenetwork4: Makefile distinfo
Added Files:
pkgsrc/net/kdenetwork4/patches: patch-ba patch-bb patch-bc patch-bd
Log Message:
Fix from KDE security advisory 20100513-1.
|
|
net/tor: bug fix update
Revisions pulled up:
- net/tor/Makefile 1.73
- net/tor/distinfo 1.42
---
Module Name: pkgsrc
Committed By: wiz
Date: Thu May 13 19:42:09 UTC 2010
Modified Files:
pkgsrc/net/tor: Makefile distinfo
Log Message:
Update to 0.2.1.26, from maintainer Christian Sturm in PR 43302:
Changes in version 0.2.1.26 - 2010-05-02
Tor 0.2.1.26 addresses the recent connection and memory overload
problems we've been seeing on relays, especially relays with their
DirPort open. If your relay has been crashing, or you turned it off
because it used too many resources, give this release a try.
This release also fixes yet another instance of broken OpenSSL libraries
that was causing some relays to drop out of the consensus.
o Major bugfixes:
- Teach relays to defend themselves from connection overload. Relays
now close idle circuits early if it looks like they were intended
for directory fetches. Relays are also more aggressive about closing
TLS connections that have no circuits on them. Such circuits are
unlikely to be re-used, and tens of thousands of them were piling
up at the fast relays, causing the relays to run out of sockets
and memory. Bugfix on 0.2.0.22-rc (where clients started tunneling
their directory fetches over TLS).
- Fix SSL renegotiation behavior on OpenSSL versions like on Centos
that claim to be earlier than 0.9.8m, but which have in reality
backported huge swaths of 0.9.8m or 0.9.8n renegotiation
behavior. Possible fix for some cases of bug 1346.
- Directory mirrors were fetching relay descriptors only from v2
directory authorities, rather than v3 authorities like they should.
Only 2 v2 authorities remain (compared to 7 v3 authorities), leading
to a serious bottleneck. Bugfix on 0.2.0.9-alpha. Fixes bug 1324.
o Minor bugfixes:
- Finally get rid of the deprecated and now harmful notion of "clique
mode", where directory authorities maintain TLS connections to
every other relay.
o Testsuite fixes:
- In the util/threads test, no longer free the test_mutex before all
worker threads have finished. Bugfix on 0.2.1.6-alpha.
- The master thread could starve the worker threads quite badly on
certain systems, causing them to run only partially in the allowed
window. This resulted in test failures. Now the master thread sleeps
occasionally for a few microseconds while the two worker-threads
compete for the mutex. Bugfix on 0.2.0.1-alpha.
|
|
security update
Revisions pulled up:
- pkgsrc/net/wireshark/Makefile 1.44
- pkgsrc/net/wireshark/distinfo 1.30
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tron
Date: Thu May 13 07:03:22 UTC 2010
Modified Files:
pkgsrc/net/wireshark: Makefile distinfo
Log Message:
Update "wireshark" package to version 1.2.8. Changes since 1.2.7:
- The following vulnerabilities have been fixed. See the security
advisory for details and a workaround.
o The DOCSIS dissector could crash. (Bug 4644), (bug 4646) -->
Versions affected: 0.9.6 to 1.0.12, 1.2.0 to 1.2.7
- The following bugs have been fixed:
o HTTP parser limits with Content-Length. (Bug 1958)
o MATE dissector bug with GOGs. (Bug 3010)
o Changing fonts and deleting system time from preferences,
results in wireshark crash. (Bug 3387)
o ERF file starting with record with timestamp=3D0,1 or 2 not
recognized as ERF file. (Bug 4503)
o The SSL dissector can not correctly resemple SSL records when
the record header is spit between packets. (Bug 4535)
o TCP reassembly can call subdissector with incorrect TCP
sequence number. (Bug 4624)
o PTP dissector displays big correction field values wrong. (Bug
4635)
o MSF is at Anthorn, not Rugby. (Bug 4678)
o ProtoField __tostring() description is missing in Wireshark's
Lua API Reference Manual. (Bug 4695)
o EVRC packet bundling not handled correctly. (Bug 4718)
o Completely unresponsive when run very first time by root user.
(Bug 4308)
- Updated Protocol Support: DOCSIS, HTTP, SSL
- Updated Capture File Support: ERF, PacketLogger.
To generate a diff of this commit:
cvs rdiff -u -r1.43 -r1.44 pkgsrc/net/wireshark/Makefile
cvs rdiff -u -r1.29 -r1.30 pkgsrc/net/wireshark/distinfo
|
|
net/bind96: portability fix
Revisions pulled up:
- net/bind96/Makefile 1.15
---
Module Name: pkgsrc
Committed By: gls
Date: Thu Apr 22 20:22:26 UTC 2010
Modified Files:
pkgsrc/net/bind96: Makefile
Log Message:
Disable kqueue on Dragonfly to make bind96 work.
As reported by Justin Sherrill in PR pkg/43195.
Bump PKGREVISION.
|
|
net/bind95: portability fix
Revisions pulled up:
- net/bind95/Makefile 1.17
---
Module Name: pkgsrc
Committed By: gls
Date: Thu Apr 22 20:21:09 UTC 2010
Modified Files:
pkgsrc/net/bind95: Makefile
Log Message:
Disable kqueue on Dragonfly to make bind95 work.
As reported by Justin Sherrill in PR pkg/43195.
Bump PKGREVISION.
|
|
pkgtools/pkg_install: bootstrap fix
Revisions pulled up:
- net/libfetch/files/fetch.cat3 1.14
---
Module Name: pkgsrc
Committed By: joerg
Date: Thu Apr 22 14:11:16 UTC 2010
Modified Files:
pkgsrc/net/libfetch/files: fetch.cat3
Log Message:
Regen.
|
|
net/samba: build fix and bug fix
net/samba33: build fix and bug fix
Revisions pulled up:
- net/samba/Makefile 1.199-1.200
- net/samba/files/winbindd.sh 1.5
- net/samba33/Makefile 1.8-1.9
---
Module Name: pkgsrc
Committed By: sborrill
Date: Wed Apr 14 14:51:01 UTC 2010
Modified Files:
pkgsrc/net/samba: Makefile
pkgsrc/net/samba33: Makefile
Log Message:
Add openssl bl3.mk file so that we play nicely with PREFER_PKGSRC+=openssl
---
Module Name: pkgsrc
Committed By: sborrill
Date: Thu Apr 15 09:36:50 UTC 2010
Modified Files:
pkgsrc/net/samba/files: winbindd.sh
Log Message:
winbindd does not have a -B flag. As far as I can see, it never did have
(It was added to this rc.d script as part of the upgrade to 3.0.20b, but
winbindd in 3.0.20b does not have a -B flag).
---
Module Name: pkgsrc
Committed By: sborrill
Date: Thu Apr 15 09:38:09 UTC 2010
Modified Files:
pkgsrc/net/samba: Makefile
pkgsrc/net/samba33: Makefile
Log Message:
Bump PKGREVISION due to removing -B flag from winbindd rc.d script
|
|
support (e.g. on Mac OS X). Tested - works on Mac OS X without X11.
|
|
|
|
Based on PR#43124 by Wen Heping.
Changes since version 1.2.0b1:
* Fix DIGEST-MD5 authentication (Aleksander Machniak, Bug #17285).
* Don't try to call dl() if mbstring extension isn't loaded (Bug #17038).
Changes since version 1.1.7:
* Added support for adding a custom debug handler (Aleksander Machniak, Request #16681).
* Fix breakage with certain locales, especially Turkish.
* Fix reading authentication responses without literals (Bug #16647).
* Code cleanup.
|
|
|
|
changes.
Version 2.2.11
--------------
April 3, 2010
Bugfixes:
* Youtube, update patterns to reflect website changes
Version 2.2.10
--------------
March 24, 2010
Changes:
* Add buzzhumor.com support
* Mark ehrensenf.de support as broken
Bugfixes:
* Update --hosts format strings
* dailymotion.com
# Change format IDs to reflect website changes (yet again):
* h264-hd -> hd
* h264-hq -> hq
* removed h264 and spark-mini (no longer even listed)
# Parse title from elsewhere
* Title was previously parsed from the title HTML tag
* Which usually contained more than we cared for
# Spew out an error if the video looks like a partner video
* break.com
# Support, thanks to Werner Elsler for the fix
# Title parsing, ported from libquvi
|
|
Bug fixes:
- SNMPv3 Engine ID registration. (Bug 2426)
- Open file dialog always displayed when clicking anywhere on
Wireshark. (Bug 2478)
- tshark reports wrong number of bytes on big dumpfiles with -z
io,stat. (Bug 3205)
- Negative INTEGER number displayed as positive number in SNMP
dissector. (Bug 3230)
- Add support for FT_BOOLEAN fields to wslua FieldInfo. (Bug 4049)
- Wireshark crashes w/ GLib error when trying to play RTP
stream. (Bug 4119)
- Windows 2000 support has been restored. (Bug 4176)
- Wrong dissection on be_cell_id_list for bssmap. (Bug 4437)
- I/O Graph dropdown boxes not working correctly. (Bug 4487)
- Runtime Error when right-clicking field and selecting "Filter
Field Reference". (Bug 4522)
- In GSM SMS PDU TPVPF showing wrong. (Bug 4524)
- Profinet: May be wrong defined byte meaning. (Bug 4525)
- GLib-CRITICAL ** Message. (Bug 4547)
- Certain EDP display filters trigger Wireshark/tshark runtime
error. (Bug 4563)
- Some NCP frames trigger "Dissector bug, protocol NCP". (Bug 4565)
- The encapsulation abbreviation "bluetooth-h4" is ambiguous.(Bug 4613)
Updated Protocol Support:
- BSSMAP, DMP, GSM SMS, LDSS, NCP, PN/IO, PPP, SIP, SNMP
Requested by Alistair Crooks.
|
|
Changes in version 0.2.1.25 - 2010-03-16
o Major bugfixes:
- Fix a regression from our patch for bug 1244 that caused relays
to guess their IP address incorrectly if they didn't set Address
in their torrc and/or their address fails to resolve. Bugfix on
0.2.1.23; fixes bug 1269.
- When freeing a session key, zero it out completely. We only zeroed
the first ptrsize bytes. Bugfix on 0.0.2pre8. Discovered and
patched by ekir. Fixes bug 1254.
o Minor bugfixes:
- Fix a dereference-then-NULL-check sequence when publishing
descriptors. Bugfix on 0.2.1.5-alpha. Discovered by ekir; fixes
bug 1255.
- Fix another dereference-then-NULL-check sequence. Bugfix on
0.2.1.14-rc. Discovered by ekir; fixes bug 1256.
- Make sure we treat potentially not NUL-terminated strings correctly.
Bugfix on 0.1.1.13-alpha. Discovered by rieo; fixes bug 1257.
|
|
* The broadcast flag is now automatically set for interfaces that require
it, via platform detection. Currently qeth on Linux.
* Fix a file descriptor leak on Linux getting platform info.
* Don't send a maximum DHCP message size beyond what we can handle.
* ip_ip is now randomized.
* IPTOS_LOWDELAY and IP_DF flags are no longer set.
* SSID is now correctly terminated on Linux.
|
|
Requested by Rumko by PR#43069.
Version 2.2.6 - The "we don't have holidays" version.
----------
2009-09-16
GonoszTopi:
* Fixed obfuscated server UDP communication.
* Fixed cross-endian Kad node verification.
* Fixed name conflict in builtin PHP parser.
* Fixed configure finding unwanted Crypto++ installations.
Marcell:
* Properly update transfers tab's bottom pane's title.
mr_hyde:
* Fixed a bug in detecting and using the fallocate() function.
Sam Hocevar:
* Now really fixed that security issue.
Stu Redman:
* Fixed HTTP download if server transmits no content-length
* Fixed several cases of amulecmd printing zero on big endian machines
* Fixed amuleweb crashing on tiny downloads
* Added version resources to MSVC binaries
* Fixed wrong search text in search dialog after deleting a tab
* Fixed download limit in amuled (which was 50% of what was set)
Wuischke:
* Fix amuleweb progress bar display for files > 4GB
Special Thanks To:
* stefanero and his bleeding-edge system
|
|
While here, set LICENSE=gnu-gpl-v2.
2008-06-28 Roland Riegel <feedback@roland-riegel.de>
* Really fix compilation with g++ 4.3
2008-02-27 Roland Riegel <feedback@roland-riegel.de>
* If devices are given on the command line, display only these
* Use --sysconfdir as given to configure
|
|
Bump PKGREVISION
OK wiz@
|
|
Ok'ed during freeze by wiz@
|
|
security problem.
Bump PKGREVISION.
|
|
|
|
the build on linux. Fixes PR 42291.
Bump PKGREVISION.
Ok wiz@
|
|
|
|
|
|
Security fix when globbing paths.
Install example configuration files.
|
|
Changelog:
* Remember location of update download directory
* Cancel file renaming on actions that change the file list, such as changing sort order or performing a refresh
* Cancel file renaming if starting a drag&drop operation
* Filter invalid characters if downloading through double-clicking files or if adding from the search dialog
* Fix site-specific bookmarks menu
* The menu did not reflect initial value of preserve timestamp option properly
* MSW: Keep FileZilla subdirectory in startmenu when updating, preserves custom order
* MSW: Add AppID support to installer
|
|
Reported by Robert Elz in PR 43046.
|
|
internals no longer exported in the expected way.
|
|
Some of highlights are:
o Dramatically improved the version detection database, integrating
2,596 submissions that users contributed since February 3, 2009!
o Added 7 new NSE scripts for a grand total of 79!
o Performed a memory consumption audit and made changes to
dramatically reduce Nmap's footprint.
o A major service detection submission integration.
o Added some new service detection probes
o Added 14 new NSE scripts for a grand total of 72! You can learn
about them all at http://nmap.org/nsedoc/. Here are the new ones:
o Nmap's --traceroute has been rewritten for better performance.
o Integrated 1,349 fingerprints (and 81 corrections).
o [NSE] Default socket parallelism has been doubled from 10 to 20.
o [NSE] Now supports worker threads
o Zenmap now includes ports in the services view whenever Nmap found
them "interesting," whatever their state.
o [Ncat, Ndiff] The exit codes of these programs now reflect whether
they succeeded.
o Optimize MAC address prefix lookup by using an std::map
o Canonicalized the list of OS detection device types to a smaller set.
o Zenmap's UI performance has improved significantly.
o [NSE] socket garbage collection was rewritten for better performance.
Many many bugfixes!
For full changelog, see http://nmap.org/changelog.html
Ok'ed during freeze by wiz@
|
|
|
|
PR 43013 by Brook Milligan: fetch(3) violates RFC 1738 for ftp:// URLs
if the home directory is not the root directory.
Remember the current directory the first time a CWD / CDUP has to be
issued. Use the document as full URL if the URL started with two /
(quoted or not), otherwise append it to the initial directory.
|
|
|
|
|
|
|
|
|
|
Addresses PR 42920.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Removed net/p5-Net-Rendezvous
|
|
net/p5-Net-Rendezvous (supersedes).
Net::Bonjour is a set of modules that allow one to discover local services
via multicast DNS (mDNS) or enterprise services via traditional DNS. This
method of service discovery has been branded as Bonjour by Apple Computer.
|
|
pkgsrc changes:
- Adjust dependency path
Upstream changes:
IP-Country-2.27, 2009.07.25
---------------------------
Added dependency for Geography::Countries (thx Otto Hirr)
Database update (thx Aaron K Dancygier for reminder)
IP-Country-2.26, 2009.01.01
---------------------------
Database update
Thanks to Brad Fetter for the reminder
|
|
Upstream changes:
1.11 - Wed Nov 4 13:48:18 EST 2009
More test adjustments /re Win32 (BRAMBLE)
1.09
Refactored tests to prevent false negatives on Win32 (ADAMK)
1.08 Mon Nov 2 11:23:33 EST 2009
Test fixes and spelling corrections (BRAMBLE)
|