| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
* Changes in Wget 1.18
* By default, on server redirects to a FTP resource, use the original
URL to get the local file name. Close CVE-2016-4971. This
introduces a backward-incompatibility for HTTP->FTP redirects and
any script that relies on the old behaviour must use
--trust-server-names.
* Check the HSTS file is not world-writable before using it.
* Parse <img srcset> attributes on a recursive download.
* Fix problem with SNI server names having trailing dot(s)
* New options --bind-dns-address and --dns-servers.
* When Wget is built with libiconv, it now converts non-ASCII URIs to
the locale's codeset when it creates files. The encoding of the
remote files and URIs is taken from --remote-encoding, defaulting to
UTF-8. The result is that non-ASCII URIs and files downloaded via
HTTP/HTTPS and FTP will have names on the local filesystem that
correspond to their remote names.
|
|
Wireshark 2.0.4 Release Notes
What's New
Bug Fixes
The following vulnerabilities have been fixed:
* [1]wnpa-sec-2016-29
The SPOOLS dissector could go into an infinite loop. Discovered by
the CESG.
* [2]wnpa-sec-2016-30
The IEEE 802.11 dissector could crash. ([3]Bug 11585)
* [4]wnpa-sec-2016-31
The IEEE 802.11 dissector could crash. Discovered by Mateusz
Jurczyk. ([5]Bug 12175)
* [6]wnpa-sec-2016-32
The UMTS FP dissector could crash. ([7]Bug 12191)
* [8]wnpa-sec-2016-33
Some USB dissectors could crash. Discovered by Mateusz Jurczyk.
([9]Bug 12356)
* [10]wnpa-sec-2016-34
The Toshiba file parser could crash. Discovered by iDefense Labs.
([11]Bug 12394)
* [12]wnpa-sec-2016-35
The CoSine file parser could crash. Discovered by iDefense Labs.
([13]Bug 12395)
* [14]wnpa-sec-2016-36
The NetScreen file parser could crash. Discovered by iDefense Labs.
([15]Bug 12396)
* [16]wnpa-sec-2016-37
The Ethernet dissector could crash. ([17]Bug 12440)
The following bugs have been fixed:
* Saving pcap capture file with ERF encapsulation creates an invalid
pcap file. ([18]Bug 3606)
* Questionable calling of Ethernet dissector by encapsulating
protocol dissectors. ([19]Bug 9933)
* Wireshark 1.12.0 does not dissect HTTP correctly. ([20]Bug 10335)
* Don't copy details of hidden columns. ([21]Bug 11788)
* RTP audio player crashes. ([22]Bug 12166)
* Crash when saving RTP audio Telephony->RTP->RTP
Streams->Analyze->Save->Audio. ([23]Bug 12211)
* Edit - preferences - add column field not showing dropdown for
choices. ([24]Bug 12321)
* Using _ws.expert in a filter can cause a crash. ([25]Bug 12335)
* Crash in SCCP dissector UAT (Qt UI only). ([26]Bug 12364)
* J1939 frame without data = malformed packet ? ([27]Bug 12366)
* The stream number in tshark's "-z follow,tcp,<stream number>"
option is 0-origin rather than 1-origin. ([28]Bug 12383)
* IP Header Length display filter should show calculated value.
([29]Bug 12387)
* Multiple file radio buttons should be check boxes. ([30]Bug 12388)
* Wrong check for getaddrinfo and gethostbyname on Solaris 11.
([31]Bug 12391)
* ICMPv6 dissector doesn't respect actual packet length. ([32]Bug
12400)
* Format DIS header timestamp mm:ss.nnnnnn. ([33]Bug 12402)
* RTP Stream Analysis can no longer be sorted in 2.0.3. ([34]Bug
12405)
* RTP Stream Analysis fails to complete in 2.0.3 when packets are
sliced. ([35]Bug 12406)
* Network-Layer Name Resolution uses first 32-bits of IPv6 DNS
address as IPv4 address in some circumstances. ([36]Bug 12412)
* BACnet decoder incorrectly flags a valid APDU as a "Malformed
Packet". ([37]Bug 12422)
* Valid ISUP messages marked with warnings. ([38]Bug 12423)
* Profile command line switch "-C" not working in Qt interface.
([39]Bug 12425)
* MRCPv2: info column not showing info correctly. ([40]Bug 12426)
* Diameter: Experimental result code 5142. ([41]Bug 12428)
* Tshark crashes when analyzing RTP due to pointer being freed not
allocated. ([42]Bug 12430)
* NFS: missing information in getattr for supported exclusive create
attributes. ([43]Bug 12435)
* Ethernet type field with a value of 9100 is shown as "Unknown".
([44]Bug 12441)
* Documentation does not include support for Windows Server 2012 R2.
([45]Bug 12455)
* Column preferences ruined too easily. ([46]Bug 12465)
* SMB Open andX extended response decoded incorrectly. ([47]Bug
12472)
* SMB NtCreate andX with extended response sometimes incorrect.
([48]Bug 12473)
* Viewing NFSv3 Data, checking SRTs doesn't work. ([49]Bug 12478)
* Make wireshark with Qt enabled buildable on ARM. ([50]Bug 12483)
Updated Protocol Support
AFS, ANSI IS-637 A, BACapp, BT BNEP, Cisco FabricPath MiM, CSN.1,
DCERPC SPOOLS, DIS, Ethernet, GSM A RR, ICMPv6, IEEE 802.11, IPv4,
ISUP, J1939, JXTA, LAPSat, LPADm, LTE-RRC, MRCPv2, NFS, OpenFlow,
SGsAP, SMB, STT, TZSP, UMTS FP, and USB
New and Updated Capture File Support
Aethra, Catapult DCT2000, CoSine, DBS Etherwatch, ERF, iSeries, Ixia
IxVeriWave, NetScreen, Toshiba, and VMS TCPIPtrace
|
|
Upstream changes (from 3.3.x, which include changes during alpha releases):
* library
* Pluggaloid 1.1
* "open tweet" function
* profile
* brush up UI
* a bunch of settings for reply tweet view
* a bunch of settings for quoted retweet view
* fix issue that clicking video links just showed thumbnail image
* drop Ruby 2.0 support and requires 2.1 or later
* Cairo::SubPartsMessageBase
* "tweet in tweet view" function used for reply and quoted tweets,
which can be used third party plugins
* graph of plugin dependency now can be used by mikutter sources
* plugin dependency now can be put into dot file
|
|
|
|
|
|
Upstream changes: bugfixes and minor improvements
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
original manifest.xml file and the output from "svccfg export".
|
|
|
|
original manifest.xml file and the output from "svccfg export".
|
|
|
|
Guacamole is an HTML5 web application that provides access to desktop
environments using remote desktop protocols (such as VNC or RDP). Guacamole
is also the project that produces this web application, and provides an API
that drives it. This API can be used to power other similar applications or
services.
As an API, Guacamole provides a common and efficient means of streaming text
data over a JavaScript-based tunnel using either HTTP or WebSocket, and a
client implementation which supports the Guacamole protocol and renders the
remote display when combined with a Guacamole protocol stream from the
tunnel.
This package provides the Guacamole server.
|
|
|
|
https://svnweb.freebsd.org/ports/head/net-mgmt/net-snmp/files/patch-perl5.23?view=co
https://rt.perl.org/Public/Bug/Display.html?id=125907#txn-1363270
https://bugs.gentoo.org/show_bug.cgi?id=582368
Bump PKGREVISION.
|
|
Add LICENSE
No upstream changelog found.
|
|
Upstream changes:
0.80 Sunday May 8, 2016, 12:45:00 PM -0700
* etc/make_method
Make the build reproducible by dropping timestamps in
make_method output. (Niko Tyni)
* t/40_server.t
* t/40_server_xmllibxml.t
* t/50_client.t
Fixes for test problems with Strawberry Perl.
* lib/RPC/XML/Client.pm
Fix leak caused by failing to free Expat parser. We don't want
to return from the method until the parser's been freed. We
therefore need to call $parser->release() before the return
statements caused by request failures. (Tom Grimwood-Taylor)
* lib/RPC/XML/Server.pm
One socket-opt change, one typo corrected.
* lib/RPC/XML.pm
Applied patch for numeric regexes and critic cleanup. Addresses
GitHub pull request #10 and RT #111636.
* t/60_net_server.t
RT #99578: Work-around fix for Net::Server+IO::Socket::IP. If a
system's IPv6 declaration of localhost was before the IPv4
declaration in the hosts file, this test would fail.
|
|
-----------------------------------------------
0.23 Thu Jul 2 18:56:20 UTC 2015
- Added support for appid and appkey because Inoreader now requires them.
(RT #105624)
|
|
-------------------------------
2.16 2016-04-13T02:27:43Z
commit 3ae73a349f70f06c60de3f635916929bc8643429
Author: Alex Vandiver <alex@chmrr.net>
Date: Tue Apr 12 00:33:21 2016 -0700
Ensure that IO::Socket::IP is DESTROY'd before can_bind returns
be316f1f worked around a core perl bug[1] which causes Perl < 5.24.0
to DESTROY the IO::Socket::IP object too late, causing the empty port
to not actually be empty if it was used immediately.
Unfortunately, this change was lost in ba745fd1, which again put the
return of `can_bind` on the stack along with the actual return value,
re-instating the bug.
Split the statement across two statements again, and add a comment on
the importance of preserving it.
[1] https://rt.perl.org/Public/Bug/Display.html?id=124248
2.15 2016-03-15T00:25:52Z
- Add listen_socket function and listen option for race-free operation
|
|
|
|
|
|
|
|
Copas is a dispatcher based on coroutines that can be used for
asynchronous networking. For example TCP or UDP based servers.
But it also features timers and client support for http(s), ftp
and smtp requests.
|
|
From: https://github.com/diegonehab/luasocket/issues/122
https://github.com/diegonehab/luasocket/issues/123 (duplicate)
|
|
|
|
Upstream changes:
#mikutter 3.4.0-alpha3
* allow selecting events on clicks of reply and tweet with comments
* wrong tweet region size of reply and tweet with comments in some case
#mikutter 3.4.0-alpha2
* change place of custom rake task
* update po translation files
#mikutter 3.4.0-alpha1
See "new functions of mikutter 3.4" for details.
http://mikutter.blogspot.jp/2016/04/mikutter-34.html
* tweet tab
* new in-reply-to format
* open video URL using browser
* drop Ruby 2.0 support
* plugin dependency map
* "about" window supports alpha releases
|
|
|
|
PowerDNS Authoritative Server 3.4.9
===================================
This is a minor bugfix and performance release. Two contributions
by Kees Monshouwer make 3.4.9 fully compatible with the new single
key ECDSA default that is coming in version 4.0.0.
Changes since 3.4.8:
- use OpenSSL for ECDSA signing where available (Kees Monshouwer)
- allow common signing key (Kees Monshouwer)
- Add a disable-syslog setting
- fix SOA caching with multiple backends (Kees Monshouwer)
- whitespace-related zone parsing fixes ticket #3568
- bindbackend: fix, set domain in list() (Kees Monshouwer)
PowerDNS Authoritative Server 3.4.8
===================================
This is a small bugfix release. Additionally, the deb/RPM packages
on downloads.powerdns.com (those with -static in the name) for
3.4.8 have been built against Botan 1.10.11 instead of Botan
1.10.3 like previous packages. Please see the Botan Security page
for more information on the fixes in Botan 1.10.11. As a PowerDNS
user, these issues only affect you if you ran our -static packages
and allowed your users to upload private keys to your
configuration.
Changes since 3.4.7:
- Use AC_SEARCH_LIBS (Ruben Kerkhof)
- Check for inet_aton in libresolv (Ruben Kerkhof)
- Remove hardcoded -lresolv, -lnsl and -lsocket (Ruben Kerkhof)
- pdnssec: don't check disabled records (Pieter Lexis)
- pdnssec: check all records (including disabled ones) only in
verbose mode (Kees Monshouwer)
- traling dot in DNAME content (Kees Monshouwer)
- Fix luabackend compilation on FreeBSD i386 (RvdE)
- silence g++ 6.0 warnings and error (Kees Monshouwer)
- add gcc 5.3 and 6.0 support to boost.m4 (Kees Monshouwer)
PowerDNS Authoritative Server 3.4.7
===================================
This is a security release fixing Security Advisory 2015-03
Bug fixes:
- Ignore invalid/empty TKEY and TSIG records (Christian
Hofstaedtler)
- Don't reply to truncated queries (Christian Hofstaedtler)
- don't log out-of-zone ents during AXFR in (Kees Monshouwer)
- Prevent XSS by escaping user input. Thanks to Pierre Jaury and
Damien Cauquil at Sysdream for pointing this out.
- Handle NULL and boolean properly in gPGSql (Aki Tuomi)
- Improve negative caching (Kees Monshouwer)
- Do not divide timeout twice (Aki Tuomi)
- Correctly sort records with a priority.
Improvements:
- Direct query answers and correct zone-rectification in the GeoIP
backend (Aki Tuomi)
- Use token names to identify PKCS#11 keys (Aki Tuomi)
- Fix typo in an error message (Arjen Zonneveld)
- limit NSEC3 iterations in bindbackend (Kees Monshouwer)
- Initialize minbody (Aki Tuomi)
New features:
- OPENPGPKEY record-type (James Cloos and Kees Monshouwer)
- add global soa-edit settings (Kees Monshouwer)
|
|
(4.2.8p8) 2016/06/02 Released by Harlan Stenn <stenn@ntp.org>
* [Sec 3042] Broadcast Interleave. HStenn.
* [Sec 3043] Autokey association reset. perlinger@ntp.org, stenn@ntp.org
- validate origin timestamps on bad MACs, too. stenn@ntp.org
* [Sec 3044] Spoofed server packets are partially processed. HStenn.
* [Sec 3045] Bad authentication demobilizes ephemeral associations. JPerlinger.
* [Sec 3046] CRYPTO_NAK crash. stenn@ntp.org
* [Bug 3038] NTP fails to build in VS2015. perlinger@ntp.org
- provide build environment
- 'wint_t' and 'struct timespec' defined by VS2015
- fixed print()/scanf() format issues
* [Bug 3052] Add a .gitignore file. Edmund Wong.
* [Bug 3054] miscopt.html documents the allan intercept in seconds. SWhite.
* [Bug 3058] fetch_timestamp() mishandles 64-bit alignment. Brian Utterback,
JPerlinger, HStenn.
* Update the NEWS file for 4.2.8p8. HStenn.
* Fix typo in ntp-wait and plot_summary. HStenn.
* Make sure we have an "author" file for git imports. HStenn.
* Update the sntp problem tests for MacOS. HStenn.
|
|
|
|
|
|
page we explicitely remove, to avoid conflict.
Unfortunately, there is only one PATCHDIR... so keep around tkined.1
till after patching.
|
|
|
|
0.8.8h
-bug:0002659: wrong information about spine setup for icmps
-bug: Removed requirement for building man page, deferred to 1.0
0.8.8g
-bug:0002380: please build man page for spine
-bug:0002610: Spine is trying to use mysql results after data being freed
-bug:0002639: Spine does not respect snmp_retries from the database
-bug:0002640: Spine crashes randomly while polling using multiple threads on one device
-bug:0002549: Spine: hasCaps() always returns FALSE
-bug:0002638: Spine: ping_udp() uses uninitialised socket timeout
-bug:0002654: On RHEL 6.5, spine ./configure builds Makefile without crypto support
0.8.8f
-bug:0002604: cacti-spine, configure script ignores LDFLAGS in certain situations
0.8.8e
-bug#0002185: Multiple memory leaks found in spine
-bug#0002398: Buffer overflow
-bug#0002447: Building spine on Debian Jessie (testing) fails
-bug#0002536: Spine segfaults when 18k+ hosts are to be pulled
-bug#0002576: Call to a non-existent column of the database in poller.c
-bug#0002578: spine doesn't compile on ubuntu 12.04
-bug#0002585: Spine: buffer overflow in logging when RESULTS_BUFFER>LOGSIZE can SEGV
-bug#0002588: Spine "is_numeric" incorrectly returns TRUE for some hexadecimal values
0.8.8d
-feature: add snmp system information gathering
|
|
<http://www.cacti.net/changelog.php>.
The log and rrd database directories have been moved under VARBASE.
|
|
some changes by myself.
|
|
On NetBSD 6, the system pax fails to extract the tarball. Until this
is understood, just use gtar.
|
|
Tested with syncthing-android 0.7.18 (syncthing 0.13.0).
Packaging changes: increase GOPATH hackery.
Upstream changes: bug and security fixes, plus a major version upgrade
with an incompatible protocol.
Syncthing v0.13.0 "Copper Cockroach"
Upgrade Notes
v0.13 is not protocol compatible with v0.12.
The database format has changed. It will be migrated without rescan
on first startup, but the first startup may take longer than usual.
Major Changes Since v0.12
Devices now announce files that are in progress of being downloaded,
in addition to those that are already complete. This means a device
can serve parts of a file to other devices before it has completed
the download itself.
Folder labels are now distinct from the folder ID. The intention is
for the label to be human readable and for the ID to be machine
readable and unique. When upgrading, folder IDs are not
changed. However when creating new folders Syncthing will suggest a
random, unique folder ID.
When receiving a connection attempt from an unknown device Syncthing
will now show the name of that device, not only it's ID.
Syncthing will now manage port mappings on NAT-PMP compliant routers,
in addition to the existing UPnP support. Minor Changes and
Improvements
Ignored files can now be tagged with the prefix (?d) to indicate that
Syncthing may delete these files if they remain when deleting a
directory. Ignore patterns use less memory by default.
The address for sync connections, both the listening side and for
remote devices, can now be made IPv4- or IPv6-only. Use the tcp4:// or
tcp6:// schemes to specify one or the other. The default tcp:// is
still dual stack. Additionally, relays are now treated as listen
addresses and set in the same configuration setting.
The folder settings dialog has been cleaned up.
The environment variable ALL_PROXY_NO_FALLBACK can be set to disable
falling back to direct connections in the absence of a working proxy.
Many, many bug fixes.
Known Issues
The "Syncing" complete percentage for remote devices may erroneously
display more than 100% (i.e. 156% or 297%) while a remote device is
still synchronizing.
|
|
|
|
|
|
|
|
From Julian Fagir in PR lib/45579
|
|
Inadyn v1.99.15
Changes
* Support for new API at https://tunnelbroker.net, fixes issue #83. Use default@tunnelbroker.net to use the DYN.com API to update the IPv4 address for your IPv6-in-IPv4 tunnel. Thanks goes to Horst Venzke @hvenzke for reporting this problem!
* The old API for the IPv6-in-IPv4 system ipv6tb@he.net is now deprecated. Users should migrate to default@tunnelbroker.net
* Files generated by the GNU Configure & Build System is now no longer stored in GIT. Instead, users that rely on GIT must run the new ./autogen.sh script to generate the necessary files (configure).
Fixes
* Fix issue #100: regression from 1.99.13 pidfile is no longer created. Inadyn 1.x semantics incompatible with OpenBSD pidfile() that replaced local version in 1.99.14. Problem found by David Schury @daersc.
* Fix issue #107: If an IP address update fails, e.g. due to temporary connectivity, HTTP transmission problems, etc. then Inadyn now forces an update in the next IP check cycle. (This is the configurable period interval in inadyn.conf.) Reported by Oliver Graute @redbrain17 and audited by @BulldozerBSG, thanks!
* Fix issue #108: Update README with correct alias syntax for Namecheap, issue reported by @quazar0
Inadyn v1.99.14
Changes
* New setting append-myip which, instead of appending your hostname alias, appends the current IP to the server GET update URL. See the README or the man pages for more details.
* Prevent Inadyn from bugging out if it cannot write a cache file when the -o, --once flag is given.
* Inadyn now defaults to a silent build, use make V=1 (like Linux) to get a verbose build. Useful for auto-builders etc.
* Migrate to libite for functions like pidfile(), strlcpy() etc.
* Add support for http://GiraDNS.com, thanks to Thorsten Mühlfelder, @thenktor!
* Add support for https://www.duiadns.net, thanks to Ionut Slaveanu, @svionut!
* Add Cygwin support for running Inadyn in Windows, thanks to Scott Mann, @sejmann!
Fixes
* Sanitized default logs by placing conditions for debug logs. Thanks to Frank Aurich, @1100101, for this work!
* Fix issue #82: build failure, no rule to build target CHANGELOG, a regression introduced in 1.99.13.
* Fix Duck DNS support, thanks to Ismani Nieuweboer, @YourDearestEigenvalue!
|
|
Changes:
2016.05.30
----------
[coub] add new extractor
[eyedottv] add new extractor
[radiocanada] add new extractor
[reuters] add new extractor
[*] various bug fixes and improvements
2016.05.21.2
------------
[*] check for python3 rsa module
2016.05.21.1
------------
[*] check for pandoc
2016.05.21
----------
[cbslocal] add a new extractor
[sendtonews] add a new extractor
[anvato] add a new extractor
[localnews8] add a new extractor
[learnr] add a new extractor
[formula1] add a new extractor
[abcnews] add a new extractor
[*] various bug fixes and improvements
2016.05.16
----------
[collegehumor] remove extractor
[3qsdn] add extractor
[cinemassacre] remove extractor
[sina] fix extraction
[openload] fix extraction
[ustudio] add support ustudio app/embed urls
[nrk] rework extractor
[*] various bug fixes and improvements
2016.05.10
----------
[socks] add support for SOCKS proxies
[ceskatele] add support for live streams
[mva] add new extractor
[litv] add new extractor
[fczenit] misc fixes
[udemy] modernize
[yandexmusic] modernize
[vevo] various improvements
[*] various bug fixes and improvements
|
|
Changelog:
Version 1.2.2 (2016-05-19)
ChangeLog:
- Remove margins from the buttons in the topbar. This caused
problems with some gtk+ themes.
- gtk+ < 3.20 was more inconsistend with adding style classes
to widgets than I thought, so the pre-3.20 fallback css added
in 1.2.1 caused the icons in the topbar to have the wrong color.
Version 1.2.1 (2016-05-10)
ChangeLog:
- Fix a11y labelling of several switches in the settings dialog
- Fix an input window clipping bug in the tweet info page
- Fix a few cases of overlapping widgets into window borders
- Remove the "Save as" context menu from inline media. This ha
not been working in a while but the context menu was still there.
- Rename the .sidebar style class to .topbar. This was used in corebird
before gtk+ used it, but now that the sidebar is at the top, the .sidebar
style from gtk+ themes collides with the horizontal alignment we use,
so use the more fitting '.topbar'.
- Show a focus outline in the topbar again. We are setting a custom
background color here, so we also need to set a fitting outline color.
- Fix a coloring but in the topbar, where wildcard selectors in themes
would overrde our foreground color.
|
