| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
Bump PKGREVISION since dependency would change with ruby193-base.
|
|
|
|
|
|
SAML assertion in SAML plugin
|
|
Bugfixes:
* Auditor: Handle ruby 1.9 differences in ods-kaspcheck.
* Auditor: Require dnsruby 1.53 for bugfixes.
* Bugfix #262: Drudgers seem to be in a waiting state, but the RRset
FIFO queue is full. Do an additional broadcast.
* Enforcer: Check HSM connection when waking up from sleep, attempt to
reconnect if it is not valid. (r5511 in trunk, ported into the branch
due to issues seen when CKR_DEVICE_ERROR returned by HSM.)
* libhsm: Added hsm_check_context() to check if the associated
sessions are still alive. (Required for the above.)
* ods-ksmutil: key import was not setting the retire time.
* Signer Engine: Fix a threading issue, that could leave a zone without a task.
* Signer Engine: Update the signed zone file if only the $TTL or
explicit TTL has been changed.
* Signer Engine: Remove the NSEC3PARAM RR when doing NSEC3 to NSEC rollover.
* Signer Engine: Deal with carriage returns (dos format) in zone file.
* Signer Engine: is PT0S means that refresh equals signtime.
* Signer Engine: Defense in depth in signer for duplicate keys.
* Signer Engine: Make sure that all required zonelist elements exist,
otherwise error.
* Signer Engine: Warn the user if the serial is b0rk, and you can not
use the serial from the signconf.
* Signer Engine: Log Auditor exit code.
* Fix a similar bug like #257: Error in ods-signerd, where a corrupted
backup file results in an invalid pointer free().
|
|
Changes from previous:
version 0.009; 2011-04-28
* in XS, use PERL_NO_GET_CONTEXT for efficiency
* in XS, declare "PROTOTYPES: DISABLE" to prevent automatic generation
of unintended prototypes
* jump through hoops to avoid compiler warnings
* use full stricture in test suite
* in Build.PL, complete declaration of configure-time requirements
* slightly reformat some Perl and C code to avoid exceeding 80 columns
* include META.json in distribution
* add MYMETA.json and MYMETA.yml to .cvsignore
|
|
Changes from previous:
1.06 2010.12.07
- Fixed an issue introduced in 1.05 on 32-bit systems in
Crypt::OpenPGP::Util::bigint2bin, where $base needed to be a
bigint. Thanks to Sam Crawley for the fix.
1.05 2010.12.06
- Removed Math::Pari as a dependency of Crypt::OpenPGP itself (it's
still a dependency of some of the backends, including Crypt::RSA).
Thanks to Sam Crawley for the patch.
- Skipped RIPEMD160 test on amd64 due to known bug in Crypt::RIPEMD160
(see rt19138 & rt53323). Thanks to Sam Crawley for the patch.
|
|
fixes PR pkg/44577.
|
|
Fixed wrong result on 64 bit platforms.
|
|
Bump PKGREVISIONs
|
|
Bump PKGREVISION
|
|
Bump PKGREVISION
|
|
Changes from previous:
0.44 Mon May 2 21:36:13 EDT 2011
Bump Math::BigInt dependency to get the new 'try GMP' syntax.
0.43 Tue Mar 8 09:13:31 EST 2011
Stable release
|
|
|
|
Changes from previous:
[Changes for 0.68 - Fri, 13 May 2011 11:51:50 +0200]
* Fix breakage introduced by 0.67 (Andreas König).
[Changes for 0.67 - Sun, 17 Apr 2011 16:29:23 +0200]
* Better handling of \r (Andreas König, Zefram) (Closes RT#46339).
|
|
MAKE_DIRS_PERMS. Add user-destdir support.
|
|
Changelog:
Version 4.46, 2011.11.04, urgency: LOW:
* New features
- Added Unix socket support (e.g. "connect = /var/run/stunnel/socket").
- Added "verify = 4" mode to ignore CA chain and only verify peer certificate.
- Removed the limit of 16 IP addresses for a single 'connect' option.
- Removed the limit of 256 stunnel.conf sections in PTHREAD threading model.
It is still not possible have more than 63 sections on WIN32 platform.
http://msdn.microsoft.com/en-us/library/windows/desktop/ms740141(v=vs.85).aspx
* Optimizations
- Reduced per-connection memory usage.
- Performed a major refactoring of internal data structures. Extensive
internal testing was performed, but some regression bugs are expected.
* Bugfixes
- Fixed WIN32 compilation with Mingw32.
- Fixed non-blocking API emulation layer in UCONTEXT threading model.
- Fixed signal handling in UCONTEXT threading model.
|
|
This fixes a Possible buffer overflow/Denial of service problem
(CVE-2011-4128)
|
|
|
|
Changes from previous:
0.52 May 9, 2011
- release as stable
- skip bad passwd test when IO::Pty is not available
0.51_12 May 2, 2011
- require version 2 of the SSH protocol (bug report by Jo
Rhett)
- remove harmless "my $foo = ... if ..." bug
0.51_11 Apr 24, 2011
- encoding handling in sftp method was broken (bug report and
solution by Todd Rinaldo)
- sftp method was broken (regression)
- better support for sharing SSH connections with children
- more tests
- add sample for usage with Net::Telnet
- bad sample in documentation corrected
0.51_10 Mar 29, 2011
- error status was not reset between calls (regression)
- remove internal line numbers from error messages
- encoding errors were not propageted in pipe_in and pipe_out
methods
- minor debuging cleanup
- better messages on bad encoding errors
0.51_09 Mar 29, 2011
- add support for passphrase protected keys
- add support for passing the private key path as an explicit
constructor option
- bug solved on password handling
- bug solved in _fileno_dup_over
- remove redundant _check_master_and_clear_error
- more tests
- some doc improvements
0.51_08 Mar 28, 2011
- pipe_in and pipe_out were not correctly setting error status
on failure
- support argument_encoding in pipe_in and pipe_out
- document how to set StrictHostKeyChecking=no
- replace @error_prefix arguments by a localized stack
- use _load_module for Encode loading
- remove no-encoding hack on _master_ctl
0.51_07 Mar 22, 2011
- add encoding support
- undef $SIG{CHLD} inside blocking methods
0.51_06 Mar 16, 2011
- make hostname argument to constructor optional when
external_master is set
- better error handling in constructor
- s/reuse_master/external_master/. I never were happy with the
old option name.
- some minor doc corrections
0.51_05 Mar 15, 2011
- implement reuse_master feature
- do not propagate extra arguments from wait_for_master to
_wait_for_master
- accept ssh_opts in make_remote_command
0.51_04 Mar 10, 2011
- solve "Not enough arguments for grep" bug (reported by Tom
Wittbrodt)
- some documentation improvements
0.51_03 Mar 9, 2011
- error message corrected
- troubleshooting guide improved
- add pointer to OpenSSH Wikibook
- add autosudo.pl sample
- implement stdintout_dpipe_is_parent feature
0.51_02 Feb 10, 2011
- add support for test method
- add support for dpipe feature
- simplify _wait_for_master code
- remove spurious warnings generated when control command
failed to run (bug report by jaiieq from Perlmonks)
- timeout at object level where being ignored by _waitpid
- document how to run detached remote processes
0.51_01 Feb 1, 2011
- add support for kill_ssh_on_timeout feature and better
timeout handling
- set ssh option ServerAliveInterval
- system could return -1 on error instead of false
- add change_password.pl sample
- some tests were failing when using csh as the remote shell
(bug report by Scott Davis)
|
|
Bump PKGREVISION
|
|
to allow other packages that can't handle threads to link against this.
No revbump since there is no change to binary packages.
|
|
What's new in Sudo 1.7.8p1?
* Fixed matching of a Runas_Alias in the group section of a
Runas_Spec.
|
|
|
|
|
|
changes: minor fixes and cleanup
|
|
changes: minor fixes and cleanup
|
|
2.4
===
* Python 3 support! (Thorsten E. Behrens, Anders Sundman)
PyCrypto now supports every version of Python from 2.1 through 3.2.
* Timing-attack countermeasures in _fastmath: When built against
libgmp version 5 or later, we use mpz_powm_sec instead of mpz_powm.
This should prevent the timing attack described by Geremy Condra at
PyCon 2011:
http://blip.tv/pycon-us-videos-2009-2010-2011/pycon-2011-through-the-side-channel-timing-and-implementation-attacks-in-python-4897955
* New hash modules (for Python >= 2.5 only): SHA224, SHA384, and
SHA512 (Frédéric Bertolus)
* Configuration using GNU autoconf. This should help fix a bunch of
build issues.
* Support using MPIR as an alternative to GMP.
* Improve the test command in setup.py, by allowing tests to be
performed on a single sub-package or module only. (Legrandin)
You can now do something like this:
python setup.py test -m Hash.SHA256 --skip-slow-tests
* Fix double-decref of "counter" when Cipher object initialisation
fails (Ryan Kelly)
* Apply patches from Debian's python-crypto 2.3-3 package (Jan
Dittberner, Sebastian Ramacher):
- fix-RSA-generate-exception.patch
- epydoc-exclude-introspect.patch
- no-usr-local.patch
* Fix launchpad bug #702835: "Import key code is not compatible with
GMP library" (Legrandin)
* More tests, better documentation, various bugfixes.
|
|
Bump PKGREVISION.
|
|
LICENSE=gnu-gpl-v2
Changes:
* Added config template for generating CSRs for SSL server certs with OpenSSL
* Some improve for vbs.py
|
|
Bump PKGREVISION.
|
|
|
|
* pure python module, C compiler is not required.
* register egg-info.
Bump PKGREVISION.
|
|
* LICENSE=gnu-lgpl-v2.1
* register egg-info.
Bump PKGREVISION.
|
|
* pure python module, C compiler is not required.
* register egg-info.
Bump PKGREVISION.
|
|
* remove needless things (not using `make' to build, no man, no bin).
* register egg-info.
Bump PKGREVISION.
|
|
freshclam/manager.c: fix error when compiling without DNS support (bb#3056)
libclamav/pdf.c: flag and dump PDF objects with /Launch (bb #3514)
libclamav/bytecode.c,bytecode_api.c: fix recursion level crash
|
|
|
|
this fixes CVE-2011-1528, CVE-2011-1529 & CVE-2011-4151
|
|
|
|
Changes from previous;
0.171 Tue Aug 09 13:09:00 BST 2011
- re-disting because I failed to notice MYMETA.* in the dist
0.170 Tue Aug 09 12:17:00 BST 2011
- fix user inflation code to handle arbitrary usernames
|
|
|
|
belongs to gdbm_compat. I.E. _don't_ use ndbm on Linux.
|
|
|
|
Bump PKGREVISION.
|
|
(Drop dependency on p5-Digest, it is not required even with prior version).
0.17 Sat Aug 27 13:59:31 2011
- fixed non-xs code, #70535
|
|
Taking a hint from the similarly-named Java Cryptography Architecture,
QCA aims to provide a straightforward and cross-platform crypto
API, using Qt datatypes and conventions. QCA separates the API from
the implementation, using plugins known as Providers. The advantage
of this model is to allow applications to avoid linking to or
explicitly depending on any particular cryptographic library. This
allows one to easily change or upgrade crypto implementations
without even needing to recompile the application. QCA should work
everywhere Qt does, including Windows/Unix/MacOSX.
Capabilities:
TLS, CMS, X.509, RSA, DSA, Diffie-Hellman, PKCS#7, PKCS#12, SHA0,
SHA1, SHA224, SHA256, SHA384, SHA512, MD2, MD4, MD5, RIPEMD160,
Blowfish, DES, 3DES, AES128, AES192, AES256, CAST5, HMAC(SHA1, MD5,
RIPEMD160), PBKDF1(MD2, SHA1), PBKDF2(SHA1)
This is the GnuPG plugin.
Packaged by jfranz@bsdprojects.net.
|
|
|
|
ride on last update.
|
|
Bug fix release.
|
