| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
|
|
|
|
|
|
The gupnp-av-cp tool can be used, together with "coherence", to
remote-control the "rhythmbox" audio player, also with seperate
media stores like "mediatomb".
|
|
|
|
There are (at least) four diffent (and conflicting) libraries for
UUID creation. I've added patches to use the NetBSD native one
which should be present on other BSDs too.
Other OSes likely want to use the Linux/e2fs one (which is in
pkgsrc-wip), this also would need some more extensive autoconf
changes.
|
|
|
|
Debian. Since we patched out all the uses of ${UNAME}, we don't need
to collect it either. Fixes the last bit of PR 38083.
|
|
|
|
synchronous and asynchronous DNS queries.
|
|
|
|
|
|
|
|
|
|
From CHANGES:
2640. [security] A specially crafted update packet will cause named
to exit. [RT #20000]
|
|
|
|
This is for PR pkg/41796: Security fix CVE-2009-0696
|
|
https://www.isc.org/node/474
|
|
- add a patch to use hw.physmem64 instead of hw.physmem
- change paths around so VARBASE gets a workout too
- a bit of package makeup (DESTDIR, LICENSE)
|
|
Fixes a crash when dbus is not running.
|
|
Correctly cleans stale wpa sockets when closing wpa connection
|
|
Based on PR 41772 by Robert Elz.
Pkgsrc changes:
o MAKE_JOBS_SAFE=no, README said "Do not use a parallel make".
o remove patch-aj, libbind has been removed from the BIND 9 distribution
since 9.6.0.
o add bind-dig-sigchase option. requested by PR 41751.
Changes since 9.6.0:
--- 9.6.1 released ---
2607. [bug] named could incorrectly delete NSEC3 records for
empty nodes when processing a update request.
[RT #19749]
2606. [bug] "delegation-only" was not being accepted in
delegation-only type zones. [RT #19717]
2605. [bug] Accept DS responses from delegation only zones.
[RT # 19296]
2603. [port] win32: handle .exe extension of named-checkzone and
named-comilezone argv[0] names under windows.
[RT #19767]
2602. [port] win32: fix debugging command line build of libisccfg.
[RT #19767]
--- 9.6.1rc1 released ---
2599. [bug] Address rapid memory growth when validation fails.
[RT #19654]
2597. [bug] Handle a validation failure with a insecure delegation
from a NSEC3 signed master/slave zone. [RT #19464]
2596. [bug] Stale tree nodes of cache/dynamic rbtdb could stay
long, leading to inefficient memory usage or rejecting
newer cache entries in the worst case. [RT #19563]
2595. [bug] Fix unknown extended rcodes in dig. [RT #19625]
2592. [bug] Treat "any" as a type in nsupdate. [RT #19455]
2591. [bug] named could die when processing a update in
removed_orphaned_ds(). [RT #19507]
2588. [bug] SO_REUSEADDR could be set unconditionally after failure
of bind(2) call. This should be rare and mostly
harmless, but may cause interference with other
processes that happen to use the same port. [RT #19642]
2586. [bug] Missing cleanup of SIG rdataset in searching a DLZ DB
or SDB. [RT #19577]
2585. [bug] Uninitialized socket name could be referenced via a
statistics channel, triggering an assertion failure in
XML rendering. [RT #19427]
2584. [bug] alpha: gcc optimization could break atomic operations.
[RT #19227]
2583. [port] netbsd: provide a control to not add the compile
date to the version string, -DNO_VERSION_DATE.
2582. [bug] Don't emit warning log message when we attempt to
remove non-existant journal. [RT #19516]
2579. [bug] DNSSEC lookaside validation failed to handle unknown
algorithms. [RT #19479]
2578. [bug] Changed default sig-signing-type to 65534, because
65535 turns out to be reserved. [RT #19477]
2499. [port] solaris: lib/lwres/getaddrinfo.c namespace clash.
[RT #18837]
--- 9.6.1b1 released ---
2577. [doc] Clarified some statistics counters. [RT #19454]
2576. [bug] NSEC record were not being correctly signed when
a zone transitions from insecure to secure.
Handle such incorrectly signed zones. [RT #19114]
2574. [doc] Document nsupdate -g and -o. [RT #19351]
2573. [bug] Replacing a non-CNAME record with a CNAME record in a
single transaction in a signed zone failed. [RT #19397]
2568. [bug] Report when the write to indicate a otherwise
successful start fails. [RT #19360]
2567. [bug] dst__privstruct_writefile() could miss write errors.
write_public_key() could miss write errors.
dnssec-dsfromkey could miss write errors.
[RT #19360]
2564. [bug] Only take EDNS fallback steps when processing timeouts.
[RT #19405]
2563. [bug] Dig could leak a socket causing it to wait forever
to exit. [RT #19359]
2562. [doc] ARM: miscellaneous improvements, reorganization,
and some new content.
2561. [doc] Add isc-config.sh(1) man page. [RT #16378]
2560. [bug] Add #include <config.h> to iptable.c. [RT #18258]
2559. [bug] dnssec-dsfromkey could compute bad DS records when
reading from a K* files. [RT #19357]
2557. [cleanup] PCI compliance:
* new libisc log module file
* isc_dir_chroot() now also changes the working
directory to "/".
* additional INSISTs
* additional logging when files can't be removed.
2556. [port] Solaris: mkdir(2) on tmpfs filesystems does not do the
error checks in the correct order resulting in the
wrong error code sometimes being returned. [RT #19249]
2554. [bug] Validation of uppercase queries from NSEC3 zones could
fail. [RT #19297]
2553. [bug] Reference leak on DNSSEC validation errors. [RT #19291]
2552. [bug] zero-no-soa-ttl-cache was not being honoured.
[RT #19340]
2551. [bug] Potential Reference leak on return. [RT #19341]
2550. [bug] Check --with-openssl=<path> finds <openssl/opensslv.h>.
[RT #19343]
2549. [port] linux: define NR_OPEN if not currently defined.
[RT #19344]
2548. [bug] Install iterated_hash.h. [RT #19335]
2547. [bug] openssl_link.c:mem_realloc() could reference an
out-of-range area of the source buffer. New public
function isc_mem_reallocate() was introduced to address
this bug. [RT #19313]
2545. [doc] ARM: Legal hostname checking (check-names) is
for SRV RDATA too. [RT #19304]
2544. [cleanup] Removed unused structure members in adb.c. [RT #19225]
2543. [contrib] Update contrib/zkt to version 0.98. [RT #19113]
2542. [doc] Update the description of dig +adflag. [RT #19290]
2541. [bug] Conditionally update dispatch manager statistics.
[RT #19247]
2539. [security] Update the interaction between recursion, allow-query,
allow-query-cache and allow-recursion. [RT #19198]
2538. [bug] cache/ADB memory could grow over max-cache-size,
especially with threads and smaller max-cache-size
values. [RT #19240]
2537. [experimental] Added more statistics counters including those on socket
I/O events and query RTT histograms. [RT #18802]
2536. [cleanup] Silence some warnings when -Werror=format-security is
specified. [RT #19083]
2535. [bug] dig +showsearh and +trace interacted badly. [RT #19091]
2532. [bug] dig: check the question section of the response to
see if it matches the asked question. [RT #18495]
2531. [bug] Change #2207 was incomplete. [RT #19098]
2530. [bug] named failed to reject insecure to secure transitions
via UPDATE. [RT #19101]
2529. [cleanup] Upgrade libtool to silence complaints from recent
version of autoconf. [RT #18657]
2528. [cleanup] Silence spurious configure warning about
--datarootdir [RT #19096]
2527. [bug] named could reuse cache on reload with
enabling/disabling validation. [RT #19119]
2525. [experimental] New logging category "query-errors" to provide detailed
internal information about query failures, especially
about server failures. [RT #19027]
2524. [port] sunos: dnssec-signzone needs strtoul(). [RT #19129]
2523. [bug] Random type rdata freed by dns_nsec_typepresent().
[RT #19112]
2522. [security] Handle -1 from DSA_do_verify() and EVP_VerifyFinal().
2521. [bug] Improve epoll cross compilation support. [RT #19047]
2519. [bug] dig/host with -4 or -6 didn't work if more than two
nameserver addresses of the excluded address family
preceded in resolv.conf. [RT #19081]
2517. [bug] dig +trace with -4 or -6 failed when it chose a
nameserver address of the excluded address.
[RT #18843]
2516. [bug] glue sort for responses was performed even when not
needed. [RT #19039]
2514. [bug] dig/host failed with -4 or -6 when resolv.conf contains
a nameserver of the excluded address family.
[RT #18848]
2511. [cleanup] dns_rdata_tofmttext() add const to linebreak.
[RT #18885]
2506. [port] solaris: Check at configure time if
hack_shutup_pthreadonceinit is needed. [RT #19037]
2505. [port] Treat amd64 similarly to x86_64 when determining
atomic operation support. [RT #19031]
2503. [port] linux: improve compatibility with Linux Standard
Base. [RT #18793]
2502. [cleanup] isc_radix: Improve compliance with coding style,
document function in <isc/radix.h>. [RT #18534]
|
|
* Version 3.6 [2008 Oct 27]
SNMP interface auto-discovery (oid: ifInOctets[POS1/0])
better handling of solaris low descriptor limit
faster startup
correctly count aliases
new severity features
new data directory structure
show test results on webpage
overview webpage
friendlier notification messages
compute service
bugfixes
=> some config file changes may be needed
* Version 3.5 [2007 June 14]
SNMPv2c
SNMP get-bulk
UDP bug fixes
faster startup/shutdown
faster graphs
faster with large configs
Resolv in displayed config
checknow button
notification %O fix
notification conditional text
DARP (Failover and Redundancy)
acl simplification
detect GD at runtime
can specify units for time duration parameters
web page changes
data archiving interface
various config parameter inheritance changes
=> some config file changes may be needed
|
|
Based on PR 41779 by Fredrik Pettai.
Version 20090128:
I added a new feature to dnstop today that filters on "refused" response codes.
This might be useful in tracking the ongoing DNS-based DDoS attacks.
To use this new feature:
dnstop -R -f refused eth0
Version 20080321:
The interesting changes came in a patch from Dave Plonka:
Fixed a bug that cause dnstop to Memory fault when processing
a DNS packet greater than PCAP_SNAPLEN (previously 1460) bytes
in size.
Raised PCAP_SNAPLEN to 65535 to avoid truncating large DNS
packets.
Eliminated unnecessary stack buffers and memcpy calls when
handling packets.
Also some variables have been added to the Makefile at the request
of a packager so that it may be easier to customize where files are
installed, etc.
|
|
|
|
Issue raised by Koh-ichi Ito on nsd-users.
|
|
|
|
Shared directories can now be created independently by the pacakges
needing them and will be removed automatically by pkg_delete when empty.
Packages needing empty directories can use the @pkgdir command in PLIST.
Discussed and ok'd in thread starting at
http://mail-index.netbsd.org/tech-pkg/2009/06/30/msg003546.html
|
|
New features:
- Wireshark has a spiffy new start page.
- Display filters now autocomplete.
- Support for the c-ares resolver library has been added. It has many
- advantages over ADNS.
- Many new protocol dissectors and capture file formats have been added.
- Macintosh OS X support has been improved.
- GeoIP database lookups.
- OpenStreetMap + GeoIP integration.
- Improved Postscript(R) print output.
- The preference handling code is now much smarter about changes.
- Support for Pcap-ng, the next-generation capture file format.
- Support for process information correlation via IPFIX.
- Column widths are now saved.
- The last used configuration profile is now saved.
- Protocol preferences are changeable from the packet details context menu.
- Support for IP packet comparison.
- Capinfos now shows the average packet rate.
Security fixes:
- The AFS dissector could crash.
- The Infiniband dissector could crash on some platforms.
|
|
|
|
- Updating package for p5 module Cisco::Abbrev from 0.02 to 0.03
- Adjusting license according to module POD
Upstream changes:
0.03 2009-04-17
Added 'Eth' --> 'Ethernet' mapping.
Thanks to: Petya Kohts <kohts@yandex-team.ru>
|
|
|
|
|
|
Fix for PR#41506
Fix missing @dirrm entries from PLIST*
Before we go into the detailed changes, here are the top 5 improvements in Nmap 5:
1. The new Ncat tool aims to be your Swiss Army Knife for data transfer, redirection, and debugging. We released a whole users' guide detailing security testing and network administration tasks made easy with Ncat.
2. The addition of the Ndiff scan comparison tool completes Nmap's growth into a whole suite of applications which work together to serve network administrators and security practitioners. Ndiff makes it easy to automatically scan your network daily and report on any changes (systems coming up or going down or changes to the software services they are running). The other two tools now packaged with Nmap itself are Ncat and the much improved Zenmap GUI and results viewer.
3. Nmap performance has improved dramatically. We spent last summer scanning much of the Internet and merging that data with internal enterprise scan logs to determine the most commonly open ports. This allows Nmap to scan fewer ports by default while finding more open ports. We also added a fixed-rate scan engine so you can bypass Nmap's congestion control algorithms and scan at exactly the rate (packets per second) you specify.
4. We released Nmap Network Scanning, the official Nmap guide to network discovery and security scanning. From explaining port scanning basics for novices to detailing low-level packet crafting methods used by advanced hackers, this book suits all levels of security and networking professionals. A 42-page reference guide documents every Nmap feature and option, while the rest of the book demonstrates how to apply those features to quickly solve real-world tasks. More than half the book is available in the free online edition.
5. The Nmap Scripting Engine (NSE) is one of Nmap's most powerful and flexible features. It allows users to write (and share) simple scripts to automate a wide variety of networking tasks. Those scripts are then executed in parallel with the speed and efficiency you expect from Nmap. All existing scripts have been improved, and 32 new ones added. New scripts include a whole bunch of MSRPC/NetBIOS attacks, queries, and vulnerability probes; open proxy detection; whois and AS number lookup queries; brute force attack scripts against the SNMP and POP3 protocols; and many more. All NSE scripts and modules are described in the new NSE documentation portal.
Details are here: http://nmap.org/changelog.html
|
|
|
|
Notes:
Version 1.2.5.
-msdl
- 11th release
- all message goes to stderr
- -o - (stdout) option added
- changed uinq filtering function in get_url_list_from_file()
- FreeBSD test done
|
|
ChangeLog:
V 1.7.1.1:
corrections:
corrected the "fixed possible SIGSEGV" fix because SIGSEGV still might
occur under those conditions. Thanks to Toni Mattila for first
reporting this problem.
ftruncate64 cut its argument to 32 bits on systems with 32 bit long type
socat crashed on systems without setenv() (esp. SunOS up to Solaris 9);
thanks to Todd Stansell for reporting this bug
with unidirectional EXEC and SYSTEM a close() operation was performed
on a random number which could result in hanging e.a.
fixed a compile problem caused by size_t/socklen_t mismatch on 64bit
systems
docu mentioned option so-bindtodev but correct name is so-bindtodevice.
Thanks to Jim Zimmerman for reporting.
docu changes:
added environment variables example to doc/socat-multicast.html
V 1.7.1.0:
new features:
address options shut-none, shut-down, and shut-close allow to control
socat's half close behaviour
with address option shut-null socat sends an empty packet to the peer
to indicate EOF
option null-eof changes the behaviour of sockets that receive an empty
packet to see EOF instead of ignoring it
introduced option names substuser-early and su-e, currently equivalent
to option substuser (thanks to Mike Perry for providing the patch)
corrections:
fixed some typos and improved some comments
V 1.7.0.1:
corrections:
fixed possible SIGSEGV in listening addresses when a new connection was
reset by peer before the socket addresses could be retrieved. Thanks to
Mike Perry for sending a patch.
fixed a bug, introduced with version 1.7.0.0, that let client
connections with option connect-timeout fail when the connections
succeeded. Thanks to Bruno De Fraine for reporting this bug.
option end-close "did not apply" to addresses PTY, SOCKET-CONNECT,
and most UNIX-* and ABSTRACT-*
half close of EXEC and SYSTEM addresses did not work for pipes and
sometimes socketpair
help displayed for some option a wrong type
under some circumstances shutdown was called multiple times for the
same fd
|
|
ChangeLog:
1.3.0 httping used to put an absolute URI in the GET/HEAD request when
not via proxy which is incorrect, that is now fixed
|
|
Changes:
- Modify "more pages" check in YouTube playlist.
- Delay opening file until there is data to write.
|
|
Upstream changes:
0.67 Friday July 10, 2009, 01:30:00 AM -0700
* lib/RPC/XML/Client.pm
* lib/RPC/XML/Server.pm
* t/70_compression_detect.t (added)
RT #47219: Mis-read the patch from previous fix, this actually
fixes it. Also added a test suite to check for
compression-detection.
0.66 Thursday July 9, 2009, 07:36:15 AM -0700
* lib/RPC/XML/Client.pm
* lib/RPC/XML/Server.pm
RT #47219: Re-did the detection of compression availability
(testing for the Compress::Zlib module) based on comments in
this bug.
* t/60_net_server.t
RT #47220: Net::Server tests are not (currently) viable on
Windows. Also made script taint-safe.
* t/40_server.t
* t/50_client.t
* t/util.pl
RT #47221: Applied a patch from kmx@volny.cz, for better
Windows testing.
* lib/Apache/RPC/Server.pm
* lib/Apache/RPC/Status.pm
* lib/RPC/XML.pm
* lib/RPC/XML/Client.pm
* lib/RPC/XML/Function.pm
* lib/RPC/XML/Method.pm
* lib/RPC/XML/Parser.pm
* lib/RPC/XML/Procedure.pm
* lib/RPC/XML/Server.pm
All modules now use the "warnings" pragma.
|
|
Version 2.2.1
(June 21, 2009)
User-visible changes:
* Add: support for Vimeo (closes issue #19)
* Add: return codes for each error case (closes issue #22)
* Fix: return code is always 0 (closes issue #20)
* Change: --hosts output now matches cclive output
Version 2.2.0
(June 14, 2009)
FOREWORD
--------
This release is a major overhaul aimed to fix the previous design flaws
and clean up the codebase. Note that 2.2.0 breaks compatibility with
the earlier versions of clive.
Most users will not notice much differences after upgrading to 2.2.0
but those users who have used clive for anything more than "clive URL"
should read the changes carefully. The summary of changes section
includes more detailed changes that is recommended reading for all
users and maintainers.
2.2.0 changes the license from ISC to GPLv3. The license was last
changed in 2.1.0 to ISC but has now been reverted back to GPLv3 after
some further consideration.
Config::Tiny has been replaced with Getopt::ArgvFile. The latter had
some advantages over Config::Tiny that lead to the switch. For example,
instead of trying to memorize the (often confusing) config variable
names, users can now use command line options in the config file.
This also means that everytime a new feature is added to the program,
we are no longer required to modify the code responsible for parsing
the config file. Using Getopt::ArgvFile also required adding only one
line of code to the project whereas Config::Tiny required several.
cache no longer reads by default. This means that --cache-read option
must be invoked for clive to read previously stored video records
from the cache. The change was made after seeing how most users found
the reading from cache too confusing and frequently reported expired
link errors such as HTTP 403 as bugs even though the behaviour was
documented in the manual page. DAERTM?
--emit-csv now outputs very few details about the videos. Only those
fields that are known to be any use are printed out.
2.2.0 also removes a number of less used features that have lingered
in the project since the 1.x. Most of these features were never
requested and have only been burdening the program codebase since
their introduction.
Part time hackers and/or developers will notice that clive now follows
a new OO design -- as well as Perl5 allows it. While there are still
some considerations regarding the design and limitations that could not
quite be ported from C++ used in cclive, WYSIWYG.
Package/port maintainers will want to read the README file. The previously
used GNU Makefile is no longer used and clive installation now depends on
ExtUtils::MakeMaker instead.
SUMMARY of CHANGES
------------------
User-visible changes:
* License change
1. ISC -> GPLv3
2. Last changed in 2.1.0 (-> ISC)
* Slight improvements to program startup time
* Config file format changes (Config::Tiny -> Getopt::ArgvFile)
1. Command line options can now be used in config file
2. Breaks compatibility with previous versions
3. Cleaner and new format allows using cmdline options in configs
4. Format was last changed in 2.0.0
Example:
-----------------------------------------------
# Config::Tiny: clive 2.0 - 2.1
cat >> ~/.config/clive/config
[http]
proxy = "http://foo:1234"
[output]
savedir = "/home/user/videos"
# Getopt::ArgvFile: clive 2.2
cat >> ~/.cliverc
--proxy="http://foo:1234"
--savedir="/home/user/videos"
-----------------------------------------------
* Fix: Redtube video title parsing
* Cache changes
1. Cache is now passive (read:no, write:yes)
2. Add: --cache- option prefix
3. New option: --cache-read, --no-cache
5. Rename: misc. options (e.g. --show -> --cache-dump)
6. Record field changes
o Breaks compatibility with previous versions
7. New field delimiter '#'
8. New field order
* File path changes
1. ~/.config/clive/config -> ~/.cliverc
2. ~/.config/clive/recall -> ~/.clivelast
3. ~/.config/clive/cache -> ~/.clivecache
* --format changes
1. Add: --format=best support (closes issue #15 )
2. Rename: mp4 -> fmt18 (Youtube)
3. Rename: Dailymotion ID spark -> flv
* Bugfixes
1. cURL error handling
2. Google mp4 support
3. Do not strip link params (closes debian bug #530659)
4. --format=fmt6 (no longer supported by Youtube?)
5. Dailymotion ID parsing
* New options:
1. --home-dir
2. --recall-file
3. --cache-file
4. --no-cclass
5. --raw
6. --stop-after (closes issue #18)
* --emit-csv: changes to CSV fields (cleanup, print only the necessary fields)
1. clive 2.0 - 2.1:
page_link, video_link, filename, file_length_mb,
file_length_bytes, video_id, time_stamp, page_title,
initial_length, remaining_bytes
2. clive 2.2:
base_filename, file_length, video_link
* Remove options:
1. --savebatch
2. --renew (now obsolete)
3. --youtube-user (broken since 2.1)
4. --youtube-pass (...)
5. --no-login (...)
6. --clivepass (...)
7. --emit-xml
8. --background
9. --progress
10. --output
11. --append
12. --paste
13. --format=fmt6
* Other changes:
1. Long options: aliases (e.g. --output_file | --output-file | --outputfile)
2. --filename-format: new specifiers, rename some of the old ones
3. --format: exit with an error if id is not recognized by clive
4. Rename: -r -> -l (--recall)
5. Many short options have been removed (or reused)
Version 2.1.14
(May 25, 2009)
User-visible changes:
* Add: support for youtube-nocookie.com (closes issue #12)
* Add: fmt35 format ID for Youtube [closes issue #10 (and #13)]
* Fix: liveleak id parsing
* Rename: --format IDs for Youtube
** mp4_hd -> fmt22
** 3gpp -> fmt17
** xflv -> fmt6
* Rename: --output-video -> --output-file
* Rename: output:file -> output:filename_format (config file)
* Remove: --overwrite option (use --output-file instead)
|
|
- Updating package for p5 module Net::Packet from 3.25nb1 to 3.26
- Adjusting / Reordering dependencies according to META.yml
- Adding homepage / license
Upstream changes:
3.26 Sat Apr 19 18:41:12 CEST 2008
- new: added possibility to adjust snaplen in Dump.pm
=> contributed by Darien Kindlund
- bugfix: examples/read-pcap.pl
|
|
- Updating package for p5 module Net::Libdnet from 0.01nb1 to 0.92
- Adjusting master site and homepage
Upstream changes:
0.92 Wed May 13 20:59:41 CEST 2009
- applied http://rt.cpan.org/Ticket/Display.html?id=43899
- applied http://rt.cpan.org/Ticket/Display.html?id=45697
- copyright notice update
0.91 Sun Dec 7 19:15:43 CET 2008
- new: Net::Libdnet::Intf methods now return a Net::Libdnet::Entry::Intf object
- new: Net::Libdnet::Intf now also has getSrcIntfFromDst(), getSrcIpFromDst()
- update: constants renamed to be prefixed with DNET_
0.90 Tue Nov 25 22:44:42 CET 2008
- complete rewrite of XS code
- near full implementation of libdnet API
- two APIs: a low-level and a high-level object oriented one
- backward compatibility should remain
0.02 Tue Nov 25 20:59:27 CET 2008
- ownership transfered to me
- updated copyright notices
- still uses a BSD license
|
|
0.54 (06/17/2009)
(cb) Alfons Wittmann reported that signing requests broke caching due
to the current time being incorporated into every signed URL
submitted.
|
|
|
|
|
|
Add DESTDIR support.
changes since wide-dhcpv6-20070507
[common]
- fixed several memory-related problems
- fixed a improper handling of a domain-name ending with '.'
- fixed a replay-check failure
- fixed a typo in manuals
[dhcp6s]
- fixed a lifetime calculation failure in RENEW/REBIND process
for stateful-address.
- fixed a bug that dhcp6s cannot accept a relayed
request message with authentication option.
|
|
* A stack overflow vulnerability was fixed in dhclient that could allow remote attackers to execute arbitrary commands as root on the system, or simply terminate the client, by providing an over-long subnet-mask option.
|
|
* A stack overflow vulnerability was fixed in dhclient that could allow remote attackers to execute arbitrary commands as root on the system, or simply terminate the client, by providing an over-long subnet-mask option.
|
|
|
