| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
net/haproxy: security update
Pullup ticket #4165 - requested by morr
net/haproxy: security update
Revisions pulled up:
- net/haproxy/Makefile 1.8
- net/haproxy/distinfo 1.6
- net/haproxy/patches/patch-aa 1.3
- net/haproxy/patches/patch-ab 1.2
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: morr
Date: Wed Apr 17 19:55:38 UTC 2013
Modified Files:
pkgsrc/net/haproxy: Makefile distinfo
pkgsrc/net/haproxy/patches: patch-aa patch-ab
Log Message:
Security update to version 1.4.23.
ChangeLog:
2013/04/03 : 1.4.23
- CONTRIB: halog: sort URLs by avg bytes_read or total bytes_read
- BUG: fix garbage data when http-send-name-header replaces an existing header
- BUG/MEDIUM: remove supplementary groups when changing gid
- BUG/MINOR: Correct logic in cut_crlf()
- BUG/MINOR: config: use a copy of the file name in proxy configurations
- BUG/MINOR: epoll: correctly disable FD polling in fd_rem()
- MINOR: halog: sort output by cookie code
- BUG/MINOR: halog: -ad/-ac report the correct number of output lines
- BUG/MINOR: halog: fix help message for -ut/-uto
- BUG/MEDIUM: http: set DONTWAIT on data when switching to tunnel mode
- BUG/MEDIUM: command-line option -D must have precedence over "debug"
- OPTIM: halog: keep a fast path for the lines-count only
- MINOR: halog: add a parameter to limit output line count
- BUG: halog: fix broken output limitation
- MEDIUM: checks: avoid accumulating TIME_WAITs during checks
- MEDIUM: checks: prevent TIME_WAITs from appearing also on timeouts
- BUG/MAJOR: cli: show sess <id> may randomly corrupt the back-ref list
- BUG/MINOR: http: don't report client aborts as server errors
- BUG/MINOR: http: don't log a 503 on client errors while waiting for requests
- BUG/MEDIUM: tcp: process could theorically crash on lack of source ports
- BUG/MINOR: http: don't abort client connection on premature responses
- BUILD: no need to clean up when making git-tar
- MINOR: http: always report PR-- flags for redirect rules
- BUG/MINOR: time: frequency counters are not totally accurate
- BUG/MINOR: http: don't process abortonclose when request was sent
- BUG/MINOR: epoll: use a fix maxevents argument in epoll_wait()
- BUG/MINOR: config: fix improper check for failed memory alloc in ACL parser
- BUG/MEDIUM: checks: ensure the health_status is always within bounds
- CLEANUP: http: remove a useless null check
- BUG/MEDIUM: signal: signal handler does not properly check for signal bounds
- BUG/MEDIUM: uri_auth: missing NULL check and memory leak on memory shortage
- CLEANUP: config: slowstart is never negative
- BUILD: improve the makefile's support for libpcre
- BUG/MINOR: checks: fix an warning introduced by commit 2f61455a
- MEDIUM: halog: add support for counting per source address (-ic)
- DOC: mention the new HTTP 307 and 308 redirect statues (cherry picked from commit b67fdc4cd8bde202f2805d98683ddab929469a05)
- MEDIUM: poll: do not use FD_* macros anymore
- BUG/MAJOR: ev_select: disable the select() poller if maxsock > FD_SETSIZE
- BUILD: enable poll() by default in the makefile
- BUILD: add explicit support for Mac OS/X
- BUG/CRITICAL: using HTTP information in tcp-request content may crash the process
- MEDIUM: http: implement redirect 307 and 308
- MINOR: http: status 301 should not be marked non-cacheable
To generate a diff of this commit:
cvs rdiff -u -r1.6 -r1.7 pkgsrc/net/haproxy/Makefile
cvs rdiff -u -r1.4 -r1.5 pkgsrc/net/haproxy/distinfo
cvs rdiff -u -r1.2 -r1.3 pkgsrc/net/haproxy/patches/patch-aa
cvs rdiff -u -r1.1 -r1.2 pkgsrc/net/haproxy/patches/patch-ab
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: morr
Date: Thu Jun 20 21:36:28 UTC 2013
Modified Files:
pkgsrc/net/haproxy: Makefile distinfo
Log Message:
Security update to version 1.4.24.
ChangeLog:
- BUG/MAJOR: backend: consistent hash can loop forever in certain circumstances
- BUG/MEDIUM: checks: disable TCP quickack when pure TCP checks are used
- MEDIUM: protocol: implement a "drain" function in protocol layers
- BUG/CRITICAL: fix a possible crash when using negative header occurrences
To generate a diff of this commit:
cvs rdiff -u -r1.7 -r1.8 pkgsrc/net/haproxy/Makefile
cvs rdiff -u -r1.5 -r1.6 pkgsrc/net/haproxy/distinfo
|
|
net/wireshark: security update
Revisions pulled up:
- net/wireshark/Makefile 1.103
- net/wireshark/distinfo 1.66
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tron
Date: Tue Jun 11 22:57:59 UTC 2013
Modified Files:
pkgsrc/net/wireshark: Makefile distinfo
Log Message:
Update "wireshark" package to version 1.8.8. Changes since 1.8.7:
- Bug Fixes
The following vulnerabilities have been fixed.
o wnpa-sec-2013-32
The CAPWAP dissector could crash. Discovered by Laurent Butti.
(Bug 8725)
Versions affected: 1.8.0 to 1.8.7, 1.6.0 to 1.6.15.
o wnpa-sec-2013-33
The GMR-1 BCCH dissector could crash. Discovered by Sylvain
Munaut and Laurent Butti. (Bug 7664, Bug 8726 )
Versions affected: 1.8.0 to 1.8.7.
o wnpa-sec-2013-34
The PPP dissector could crash. Discovered by Laurent Butti.
(Bug 7880, Bug 8727 )
Versions affected: 1.8.0 to 1.8.7.
o wnpa-sec-2013-35
The NBAP dissector could crash. (Bug 8697)
Versions affected: 1.8.0 to 1.8.7.
o wnpa-sec-2013-36
The RDP dissector could crash. Discovered by Laurent Butti
(Bug 8729)
Versions affected: 1.8.0 to 1.8.7.
o wnpa-sec-2013-37
The GSM CBCH dissector could crash. Discovered by Laurent
Butti (Bug 8730)
Versions affected: 1.8.0 to 1.8.7.
o wnpa-sec-2013-38
The Assa Abloy R3 dissector could consume excessive memory and
CPU. (Bug 8764)
Versions affected: 1.8.0 to 1.8.7.
o wnpa-sec-2013-39
The HTTP dissector could overrun the stack. (Bug 8733)
Versions affected: 1.8.0 to 1.8.7, 1.6.0 to 1.6.15.
o wnpa-sec-2013-40
The Ixia IxVeriWave file parser could overflow the heap.
Discovered by Sachin Shinde. (Bug 8760)
Versions affected: 1.8.0 to 1.8.7.
o wnpa-sec-2013-41
The DCP ETSI dissector could crash. (Bug 8717)
Versions affected: 1.10.0, 1.8.0 to 1.8.7, 1.6.0 to 1.6.15.
The following bugs have been fixed:
o TRY_TO_FAKE_THIS_ITEM disables bounds errors. (Bug 3290)
o Multiple expert info in a packet does not cause the most
"severe" to be displayed in expert column. (Bug 7733)
o tshark -z io,stat reports bad byte counts if filter doesn't
match anything. (Bug 8066)
o Add decryption for WPA eapol 4-way handshake. (Bug 8680)
o wireshark is crashing while attempting to use 'SCTP' ->
'Prepare Filter for this Association'. (Bug 8731)
o Crash analyzing VoIP Calls (T38). (Bug 8736)
o IMAP Dissector, Missing byte. (Bug 8739)
o C12.22 Invocation Id shows negative sometimes. (Bug 8744)
o gsm_a_dtap dissector (SMS): under certain conditions fillbits
may be displayed for an alphanumeric TP-Originating-Address.
(Bug 8756)
o TETRA dissector assertion. (Bug 8768)
o Mark retransmitted SYN and FIN packets as retransmissions.
- Updated Protocol Support
Bittorrent DHT, C12.22, CAPWAP, DCP ETSI, EAPOL, GMR-1 BCCH, GSM
CBCH, GSM SMS, HTTP, IMAP, NBAP, PPP, R3, RDP, SGsAP, T.38, TETRA
- New and Updated Capture File Support
Ixia IxVeriWave.
To generate a diff of this commit:
cvs rdiff -u -r1.102 -r1.103 pkgsrc/net/wireshark/Makefile
cvs rdiff -u -r1.65 -r1.66 pkgsrc/net/wireshark/distinfo
|
|
net/wireshark: security update
Revisions pulled up:
- net/wireshark/Makefile 1.98
- net/wireshark/distinfo 1.64
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tron
Date: Sun May 19 15:47:29 UTC 2013
Modified Files:
pkgsrc/net/wireshark: Makefile distinfo
Log Message:
Update "wireshark" package to version 1.8.7. Changes since 1.8.6:
- Bug Fixes
The following vulnerabilities have been fixed.
o wnpa-sec-2013-23
The RELOAD dissector could go into an infinite loop.
Discovered by Evan Jensen. (Bug 8364, (Bug 8546)
Versions affected: 1.8.0 to 1.8.6.
CVE-2013-2486
CVE-2013-2487
o wnpa-sec-2013-24
The GTPv2 dissector could crash. (Bug 8493)
Versions affected: 1.8.0 to 1.8.6.
o wnpa-sec-2013-25
The ASN.1 BER dissector could crash. (Bug 8599)
Versions affected: 1.8.0 to 1.8.6, 1.6.0 to 1.6.14.
o wnpa-sec-2013-26
The PPP CCP dissector could crash. (Bug 8638)
Versions affected: 1.8.0 to 1.8.6.
o wnpa-sec-2013-27
The DCP ETSI dissector could crash. Discovered by Evan Jensen.
(Bug 8231, bug 8540, bug 8541)
Versions affected: 1.8.0 to 1.8.6.
o wnpa-sec-2013-28
The MPEG DSM-CC dissector could crash. (Bug 8481)
Versions affected: 1.8.0 to 1.8.6.
o wnpa-sec-2013-29
The Websocket dissector could crash. Discovered by Moshe
Kaplan. (Bug 8448, Bug 8499)
Versions affected: 1.8.0 to 1.8.6.
o wnpa-sec-2013-30
The MySQL dissector could go into an infinite loop. Discovered
by Moshe Kaplan. (Bug 8458)
Versions affected: 1.8.0 to 1.8.6.
o wnpa-sec-2013-31
The ETCH dissector could go into a large loop. Discovered by
Moshe Kaplan. (Bug 8464)
Versions affected: 1.8.0 to 1.8.6.
The following bugs have been fixed:
o The Windows installer and uninstaller does a better job of
detecting running executables.
o Library mismatch when compiling on a system with an older
Wireshark version. (Bug 6011)
o SNMP dissector bug: STATUS_INTEGER_DIVIDE_BY_ZERO. (Bug 7359)
o A console window is never opened. (Bug 7755)
o GSM_MAP show malformed Packets when two IMSI. (Bug 7882)
o Fix include and libs search path when cross compiling. (Bug
7926)
o PER dissector crash. (Bug 8197)
o pcap-ng: name resolution block is not written to file on save.
(Bug 8317)
o Incorrect RTP statistics (Lost Packets indication not ok).
(Bug 8321)
o Decoding of GSM MAP E164 Digits. (Bug 8450)
o Silent installer and uninstaller not silent. (Bug 8451)
o Replace use of INCLUDES with AM_CPPFLAGS in all Makefiles to
placate recent autotools. (Bug 8452)
o Wifi details are not stored in the Decryption Key Management
dialog (post 1.8.x). (Bug 8446)
o IO Graph should not be limited to 100k points (NUM_IO_ITEMS).
(Bug 8460)
o geographical_description: hf_gsm_a_geo_loc_deg_of_long 24 bit
field truncated to 23 bits. (Bug 8532)
o IRC message with multiple params causes malformed packet
exception. (Bug 8548)
o Part of Ping Reply Message in ICMPv6 Reply Message is marked
as "Malformed Packet". (Bug 8554)
o MP2T wiretap heuristic overriding ERF. (Bug 8556)
o Cannot read content of Ran Information Application Error Rim
Container. (Bug 8559)
o Endian error and IP:Port error when decoding BT-DHT response
message. (Bug 8572)
o "ACE4_ADD_FILE/ACE4_ADD_SUBDIRECTORY" should be
"ACE4_APPEND_DATA / ACE4_ADD_SUBDIRECTORY". (Bug 8575)
o wireshark crashes while displaying I/O Graph. (Bug 8583)
o GTPv2 MM Context (UMTS Key, Quad, and Quint Decoded)
incorrectly. (Bug 8596)
o DTLS 1.2 uses wrong PRF. (Bug 8608)
o RTP DTMF digits are no longer displayed in VoIP graph
analysis. (Bug 8610)
o Universal port not accepted in RSA Keys List window. (Bug
8618)
o Wireshark Dissector bug with HSRP Version 2. (Bug 8622)
o LISP control packet incorrectly identified as LISP data based
when UDP source port is 4341. (Bug 8627)
o Bad tcp checksum not detected. (Bug 8629)
o AMR Frame Type uses wrong Value String. (Bug 8681)
- Updated Protocol Support
AMR, ASN.1 BER, BAT, Bluetooth DHT, BSSGP, DTLS, E.164, Ericsson
A-bis OML, GSM A, GSM MAP, HDFSDATA, ICMP, ICMPv6, ixveriwave,
IRC, KDSP, LISP Data, MMS, NFS, OpenWire, PPP, RELOAD, RTP, SASP,
SIP, SSL/TLS, TCP, UA3G
- New and Updated Capture File Support
Endace ERF, NetScreen snoop.
To generate a diff of this commit:
cvs rdiff -u -r1.97 -r1.98 pkgsrc/net/wireshark/Makefile
cvs rdiff -u -r1.63 -r1.64 pkgsrc/net/wireshark/distinfo
|
|
net/socat: security update
Revisions pulled up:
- net/socat/Makefile 1.27
- net/socat/distinfo 1.17
---
Module Name: pkgsrc
Committed By: khorben
Date: Thu Apr 11 09:38:10 UTC 2013
Modified Files:
pkgsrc/net/socat: Makefile distinfo
Log Message:
Updated socat to version 1.7.2.1
Security update:
"A heap based buffer overflow vulnerability has been found with data that
happens to be output on the READLINE address." (CVE-2012-0219)
Tested according to the official advisory at
http://www.dest-unreach.org/socat/contrib/socat-secadv3.html
XXX pull-up to 2013Q1
|
|
net/netatalk: build fix
Revisions pulled up:
- net/netatalk/Makefile 1.97-1.98
---
Module Name: pkgsrc
Committed By: sborrill
Date: Sat Apr 6 10:04:13 UTC 2013
Modified Files:
pkgsrc/net/netatalk: Makefile
Log Message:
Fix build on older NetBSD. (hi joerg!)
---
Module Name: pkgsrc
Committed By: hauke
Date: Sat Apr 6 12:45:05 UTC 2013
Modified Files:
pkgsrc/net/netatalk: Makefile
Log Message:
Fix the fix:
No Extendes Attributes for NetBSD < 6.99.*, so ad(1) does not get
built, and should not appear in PLIST.
|
|
|
|
it will fallback to "yacc" (instead of "bison") and the library will
not link properly. This problem is probably only visible under Solaris
where "lex" is not "flex".
Bump package revision because of this fix.
|
|
fixes following issues
* fail to startup or break configureation file with 3rd party plugins,
especially on Ruby 2.0.0.
* sometimes crash on Ruby 1.9.3.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
header files. Fix template lookup.
|
|
|
|
Bump PKGREVISION.
|
|
Add some missing includes. Prefer ext/hash_map over hash_map.
|
|
avoid a clang warning made fatal by -Werror.
|
|
with the next version.
|
|
|
|
--- 9.8.4-P2 released ---
3516. [security] Removed the check for regex.h in configure in order
to disable regex syntax checking, as it exposes
BIND to a critical flaw in libregex on some
platforms. [RT #32688]
|
|
--- 9.9.2-P2 released ---
3516. [security] Removed the check for regex.h in configure in order
to disable regex syntax checking, as it exposes
BIND to a critical flaw in libregex on some
platforms. [RT #32688]
|
|
the freeze.
|
|
|
|
isc-dhclient4
isc-dhcp4
isc-dhcpd4
isc-dhcrelay4
Changes since 4.2.5
- A security issue in Bind9 was found and fixed. This release includes the
fixed Bind9 code. There have been no code changes to the DHCP code.
[ISC-Bugs #32688]
CVE: CVE-2013-2266
|
|
|
|
|
|
Differences from previous 20100324 version:
Mon Mar 25 03:51:20 UTC 2013 lukem
* Fix incorrect use of test(1) in configure.
Fri Mar 22 09:00:00 UTC 2013 lukem
* Release as "tnftpd 20130322"
* Update build framekwork to autoconf 2.69, automake 1.11.1,
libtool 2.4.2.
* Replace glob with newer copy from NetBSD that does not suffer
from DoS exhaustion attacks.
Fix in NetBSD from Maksymilian Arciemowicz. See CVE-2010-2632
* Update to NetBSD-ftpd 20130321:
* Fix warnings and build issues
* Fix memcpy usage
* Fix remote crash (fix was already pulled up manually to
tnftpd 20100324). PR/43023 from Bruce Cran.
* Reduce priority of syslog message if getpeername returns
ENOTCONN. PR/18934 from Greg A Woods.
pkgsrc changes - use pkgsrc libtool and add LICENSE
|
|
if it is likely not going to run. Fix CONF_FILES.
|
|
|
|
|
|
private mail.
|
|
private mail. Diffs were provided in PR.
|
|
|
|
(and update description, comments)
* Ruby 2.0 support
* fix to display tweet when adding data source related plugins
* rare crash at drawing TL
|
|
Changelog:
aria2 1.16.4
============
Release Note
------------
This release fixes the bug that active downloads are not saved with
--save-session-interval and the bug that aria2 hangs when size of
download result exceeds its maximum. BitTorrent UDP tracker support
was added. If the filename specified using --save-session ends with
".gz", aria2 stores the session file in gzipped form. The -i option
can handle this gzipped file as well as plain text file. 1.15.2 based
Portuguese translated manual was added.
Changes
-------
* Make configure argument meaning more consistent and obvious.
Most other software uses --disable/--without for features it does
build or at least check by default.
Change aria2 configure options so that:
* --enable-*: do not build by default, unless --enable specified
* --disable-*: check and build by default, unless --disable specified
* --with-*: do not use by default, unless --with specified
* --without-*: check and use by default, unless without specified
Contributed by Nils Maier
* Allow for out-of-tree Sphinx builds
Contributed by Nils Maier
* Bring back datetime in console log
* Run checksum check if -V and -c are used and file is completed
With -c option, aria2 can continue download after the existing file
position. If it is not completed, then after completion aria2 runs
checksum checking if available. But if existing file has already
been completed, then CreateRequestCommand exits without issuing
checksum checking. And aria2 treats it download error because it
needs checksum verification but it has not been done. This change
fixes this by properly checking download state and issue checksum
checking before CreateRequestCommand.
* Support for gzipped -i and --save-session
Saved sessions may very large, as in hundreds and even thousands of
megabyte when dealing with large queues. Add support to save and
reload sessions to gzipped files, when libz is available.
The session serializer will output gzipped contents when the file
ends with .gz, while the input file reader (UriListParser) will
accept whatever is thrown at it.
Document -i/--save-session gzip behaviour
Contributed by Nils Maier
* Do not use a virtual varargs function
This stuff breaks in some compiler (configurations)
Contributed by Nils Maier
* Check for sys/signal.h and/or signal.h
mingw-w64 does not actually have sys/signal.h, while OSX currently
has a broken signal.h Better check the presence of both and use
sys/signal.h if present, else signal.h
Contributed by Nils Maier
* Hygiene: Fix some clang warnings, mostly unused private members.
Contributed by Nils Maier
* Fix bustage on OSX with ./configure CC=cc CXX=c++ (clang)
Contributed by Nils Maier
* Do not reference RequestGroups longer than necessary
There is an initial vector of SharedHandle<RequestGroup> to seed the
DownloadEngine. This vector was however kept alive via main.cc ->
MultiUrlRequestInfo up until the program exits, hence effetively
leaking all initial RequestGroups and associated object instances.
Hence, as a matter of dirty-workaround, drop the contents of that
initial vector as soon as it is not required any longer.
Contributed by Nils Maier
* Detect console with on Windows
Contributed by Nils Maier
* Fix infinite loop when size of downloadResults_ exceeds maxDownloadResult_
* Support BitTorrent UDP tracker
It shares UDP listening port with IPv4 DHT. At the moment, in order
to enable UDP tracker support, enable IPv4 DHT.
* Show correct end byte in error message when HTTP response range is not ok
Previously, unless HTTP pipelining is enabled, end byte in that
message is always 0. With this change, it shows correct end byte
sent to the HTTP server.
* Add Portuguese manual
This translation is based on aria2 version 1.15.2 manual.
Contributed by Gilberto dos Santos Alves
* Fix bug that active downloads are not saved with --save-session-interval
|
|
|
|
* Switch bundler to 1.3.
* Add 2013 to copyright years.
* Update the eTLD database to the version as of 2013-02-18T20:02:07Z.
|
|
Changes for version 1.1.1:
* Incorporate various small pull requests
|
|
=== Transmission 2.77 (2013/02/18) ===
[http://trac.transmissionbt.com/query?milestone=2.77&group=component&order=severity All tickets closed by this release]
==== All Platforms ====
* Fix 2.75 regression that broke JSON parsing of real numbers in locales that don't use '.' as a decimal separator
* Don't invalidate the OS's file cache when closing files
* Fix overflow error when setting speed limits above ~8589 kB/s
* Generated magnet links didn't include webseeds
* Fix minor memory leaks when using webseeds
==== GTK+ Client ====
* Minor pluralization fixes in the UI
* Fix folder mis-selection issue in the Preferences dialog
* Fix GTK+ console warnings on shutdown
==== Qt Client ====
* Fix non Latin-1 symbol issue when showing file transfer speeds
* Fix issue when creating new torrents with multiple trackers
* Fix lost text selection in the properties dialog's 'comment' field
==== Daemon ====
* Fix documentation errors in the spec and manpages
==== Web Client ====
* Fix minor DOM leak
==== CLI ====
* Fix transmission-cli failure when the download directory doesn't exist
|
|
|
|
|
|
|
|
This is a major update in terms of pkgsrc patches, of which there are
far far too many. Analysis of patches was done by Karen Sirois of
BBN, and I have remvoed patches that have been applied upstream.
This builds fine and passes tests on NetBSD 6 i386. If you look after
some other platform (Dragonfly, Darwin, FreeBSD, etc.), please make
sure any problems are filed as upstream tickets; pkgsrc is not
appropriate to carry patches long-term that should be fixed upstream,
and this package has gotten out of hand.
(OK by adam@ to do the update, but he has not reviewed the changes, so
errors are my fault. It's quite likely there are issues on other
platforms.)
Upstream NEWS:
*5.7.2*
snmp:
- BUG: 3526549: CVE-2012-2141 Array index error leading to crash
snmpd:
- BUG: 3532090: Fix high ifIndex values crashing hrDeviceDescr
building:
- PATCH: 2091156: correctly declare dependencies in Makefile. 'make
-j <N>' should work now. Backport this to V5-4 as it is needed for
correct operation in the single threaded case of make miblib as
well.
Many other miscellaneous minor bug fixes
*5.7.1*
libnetsnmp:
- Fixed the mib-parsing-bug introduced shortly before 5.7
agent:
- fixed rounding errors for disk percentage calculations
openbsd:
- better support for recent openbsd releases
features:
- bug fixes with minimalist support after additional user feedback
Many other miscellaneous minor bug fixes
*5.7*
snmpd:
- Delivery of data via regularily scheduled notifications.
(see "Data Delivery via Notfications" in snmpd.conf)
- Many time-based config options can take (m)ins, (h)ours, ... arguments
(see the snmpd.conf manual page)
- The PING and TRACEROUTE MIBs now compile and work-ish on linux
http://www.net-snmp.org/wiki/index.php/DISMAN
- Mib handlers can now implement a data_clone function for
cloning the myvoid structure variable to avoid dangling pointers
- Fixed persistent storage of VACM MIB configuration
- Multi-homed agents send UDP responses from the proper IP address
- The hrStorageTable implementation now supports large filesystems better
- optimizations for large route tables
- Added a deliveryByNotify config token for regular data delivery
(see the snmpd.conf manual page and the NET-SNMP-PERIODIC-NOTIFY-MIB)
- [PATCH 3141462]: fix agentx subagent issues with multiple-object requests
- [PATCH 3057093]: linux uses libpci for creating useful ifDescr strings
- [PATCH 3131397]: huge speedups of the TCP/UDP Tables
libnetsnmp:
- Removed the older CMU compatibility support
- The SSH transport is now configurable
TLS/DTLS support:
- The SNMP over DTLS transport now properly supports IPv6
- Introduced new configuration tokens: localCert/peerCert
(deprecating serverCert, clientCert, defX509ServerPub, defX509ClientPub)
- Various fixes for the TLS/DTLS transports
apps:
- Added a per-variable timed output support to snmpwalk using -CT
- snmpinform now correctly uses the local engineID for informs
- A number of mib2c bug fixes
- New snmp.conf tokens for timeouts and retries
building:
- New flags to reduce the amount of compiled code to bare minimums.
This is provided by a new generic feature marking/selection mechanism.
http://www.net-snmp.org/wiki/index.php/Feature_Marking_and_Selection
- It's now possible to build without SNMPv3/USM
(e.g., if you only want TLS/DTLS with SNMPv3/TSM)
- It's possible to build the suite with no SET support
configure using --enable-read-only
- It's possible to build the agent as a notify-only agent
configure using --enable-notify-only
- Added a script to test memory usage with various config options
(see the local/minimalist/sizetests script)
- Net-SNMP can now be built to perform local DNSSEC validation
(install DNSSEC-Tools' libval and use --with-local-dnssec-validation)
testing:
- a number of new API unit-tests have been added to the suite
(to run the tests: cd testing && ./RUNFULLTESTS -g unit-tests)
- The unit tests can be more easily run under valgrind
(See http://bit.ly/jsgRnv for details)
openbsd:
- Support for updating the routing table via SNMP
win32:
- The testing suite works better under win32 environments
- Many building fixes for the win32 environment(s)
solaris:
- Net-SNMP now supports the SCTP-MIB
DragonFlyBSD, FreeBSD8:
- Net-SNMP should now work on DragonFlyBSD and FreeBSD8
And of course:
- Many other bug fixes. See the CHANGES and ChangeLog for details.
|
|
|
|
Rabbiter receives comments from twitter and sends them to Rabbit.
Rabbit shows them in your slides.
It is very useful when you talk on public event.
|
|
from 0.1.9 to 0.2.0...
Bump PKGREVISION.
|
|
|
