Age | Commit message (Collapse) | Author | Files | Lines |
|
|
|
* Fix peer communication vulnerability (no known exploits) reported
by Ben Hawkes
|
|
|
|
* Add ipv6_bind_address (option "ipv6_listening_ip")
* disable IPv6 when socket(PF_INTET6, ...) errors with EAFNOSUPPORT
* Add IPV6 multicast membership only on selected "LAN" interfaces
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
* FIX: at getting tab order, unwanted non-existet tab may be created.
* FIX: properly handle mentions to multiple accounts.
* CHANGE: colorize rule of metions for tweets with multi accounts.
*
|
|
|
|
- remove duplicated entry
|
|
Conditionalize C++ standard on the compiler being used (the curve code
in zeromq uses "long long" which is not vali in C++98).
|
|
|
|
|
|
|
|
|
|
but it doesn't seem to be adequate. Should fix Linux build.
|
|
|
|
|
|
(lather, rinse, repeat)
|
|
Should fix shlib check failure.
|
|
|
|
* trivial bug fixes.
|
|
Bump PKGREVISION
|
|
|
|
2014-06-16: 0.7.0 "Kryoptonite"
- Partial IPv6 support (#107)
Client can connect to iodined through an relaying IPv6
nameserver. Server only supports IPv4 for now.
Traffic inside tunnel is IPv4.
- Add socket activation for systemd, by Michael Scherer.
- Add automated lookup of external ip (via -n auto).
- Bugfix for OS X (Can't assign requested address)
- Fix DNS tunneling bug caused by uninitialized variable, #94
- Handle spaces when entering password interactively, fixes #93.
Patch by Hagar.
- Add -R option to set OpenBSD routing domain for the DNS socket.
Patch by laurent at gouloum fr, fixes #95.
- Add android patches and makefile, from Marcel Bokhorst, fixes #105.
- Added missing break in iodine.c, by Pavel Pergamenshchik, #108.
- A number of minor patches from Frank Denis, Gregor Herrmann and
Barak A. Pearlmutter.
- Testcase compilation fixes for OS X and FreeBSD
- Do not let sockets be inherited by sub-processes, fixes #99.
- Add unspecified RR type (called PRIVATE; id 65399, in private use
range). For servers with RFC3597 support. Fixes #97.
- Fix authentication bypass vulnerability; found by Oscar Reparaz.
|
|
(The options need work too, after the freeze.)
|
|
==============================
Release Notes for Samba 3.6.24
June 23, 2014
==============================
This is a security release in order to address
CVE-2014-0244 (Denial of service - CPU loop) and
CVE-2014-3493 (Denial of service - Server crash/memory corruption).
o CVE-2014-0244:
All current released versions of Samba are vulnerable to a denial of
service on the nmbd NetBIOS name services daemon. A malformed packet
can cause the nmbd server to loop the CPU and prevent any further
NetBIOS name service.
This flaw is not exploitable beyond causing the code to loop expending
CPU resources.
o CVE-2014-3493:
All current released versions of Samba are affected by a denial of service
crash involving overwriting memory on an authenticated connection to the
smbd file server.
|
|
|
|
SyntaxError: Non-UTF-8 code starting with '\xb7' in file youtube-dl on line 3, but no encoding declared; see http://python.org/dev/peps/pep-0263/ for details
by installing the original unmodified file and a wrapper script.
I'm not sure why it broke or why this works better, but it does for me (TM).
Bump PKGREVISION.
|
|
|
|
|
|
|
|
From Youri Mout on tech-pkg.
|
|
A list of changes is not available unfortunately. But the update seems
to prevent crashes with a message like this one:
rtorrent: Read past initial payload after incoming encrypted handshake
|
|
======
- The wheel distribution did not support Python 2.6 by failing to list
the extra dependencies required.
- Durable and auto_delete queues/exchanges can be be cached using
``maybe_declare``.
|
|
|
|
* Fixes account authentication related issues.
* Change match empty extract condition to match all tweets.
|
|
|
|
3859. [bug] Don't call qsort with a null pointer. [RT #35968]
3858. [bug] Disable GCC 4.9 "delete null pointer check".
[RT #35968]
3742. [port] linux: libcap support: declare curval at start of
block. [RT #35387]
--- 9.9.5-W1 released ---
3724. [bug] win32: Fixed a bug that prevented dig and
host from exiting properly after completing
a UDP query. [RT #35288]
|
|
|
|
|
|
- The following vulnerabilities have been fixed.
* wnpa-sec-2014-07
The frame metadissector could crash. (Bug 9999, Bug 10030)
Versions affected: 1.10.0 to 1.10.7
CVE-2014-4020
= The following bugs have been fixed:
* VoIP flow graph crash upon opening. (Bug 9179)
* Tshark with "-F pcap" still generates a pcapng file. (Bug 9991)
* IPv6 Next Header 0x3d recognized as SHIM6. (Bug 9995)
* Failed to export pdml on large pcap. (Bug 10081)
* TCAP: set a fence on info column after calling sub
dissector (Bug 10091)
* Dissector bug in JSON protocol. (Bug 10115)
* GSM RLC MAC: do not skip too many lines of the CSN_DESCR
when the field is missing (Bug 10120)
* Wireshark PEEKREMOTE incorrectly decoding QoS data packets
from Cisco Sniffer APs. (Bug 10139)
* IEEE 802.11: fix dissection of HT Capabilities (Bug 10166)
- Updated Protocol Support
CIP, EtherNet/IP, GSM RLC MAC, IEEE 802.11, IPv6, and TCAP
- New and Updated Capture File Support
pcap-ng, and PEEKREMOTE
|
|
heads-up.
|
|
- Change rancid script exec(); move cmd-line options to rancid.types.*
files. This allows older scripts to function without change, ie:
needing to support -t.
- clogin: missing variable initialization
- ios.pm: filter fan speed setting on 2900, etc.
- fnrancid: fix filter match for encrypted pwd
- ios.pm: filter vlan traffic counters on gsr, 6400 & switches
- srancid: fix up time filter for dell 3448
- ios.pm: some ASAs do not support show vlan
- ios.pm: bgp password filtering removing neighbor address
- rancid.types.base: dell definition missing inloop configuration
- rancid: display useful error if inloop is not configured
- dell.pm: missing variable declarations
- nxrancid: filter INTAKE temps and cycling file BufferMonitor-1HourData
|
|
|