]> git.proxmox.com Git - mirror_frr.git/blame - debian/changelog
projects / mirror_frr.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
Merge pull request #336 from dwalton76/bgpd-allowas-in-removal
[mirror_frr.git] / debian / changelog
CommitLineData
eb8309c7 1frr (2.1) Released; urgency=medium
d8e4c438
DS		 2
3 * Switchover to FRR
4
8a2a3732
DS		 5 -- frr <frr@lists.nox.tf> Mon, 23 Jan 2017 16:30:22 -0400
6
8ceb45dc
DS		 7quagga (0.99.24+cl3u5) RELEASED; urgency=medium
8
9 * Closes: CM-12846 - Resolve Memory leaks in 'show ip bgp neighbor json'
10 * Closes: CM-5878 - Display all ospf peers with 'show ip ospf neighbor detail all'
11 * Closes: CM-5794 - Add support for IPv6 static to null0
12 * Closes: CM-13060 - Reduce JSON memory usage.
13 * Closes: CM-10394 - protect 'could not get instance' error messages with debug
14 * Closes: CM-11173 - Move netlink error messages undeer a debug
15 * Closes: CM-13328 - Fixes route missing in hardware after reboot
16
17 -- dev-support <dev-support@cumulusnetworks.com> Fri, 11 Nov 2016 22:13:29 -0400
18
e544fa85
DS		 19quagga (0.99.24+cl3u4) RELEASED; urgency=medium
20
21 * Closes: CM-12687 - Buffer overflow in zebra RA code
22
23 -- dev-support <dev-support@cumulusnetworks.com> Wed, 31 Aug 2016 12:36:10 -0400
24
a79fb1aa 25quagga (0.99.24+cl3u3) RELEASED; urgency=medium
473b996b
DS		 26
27 * New Enabled: Merge up-to 0.99.24 code from upstream
28 * New Enabled: Additional CLI simplification
29 * New Enabled: Various Bug Fixes
30
a79fb1aa
JB		 31 -- dev-support <dev-support@cumulusnetworks.com> Thu, 04 Aug 2016 08:43:36 -0700
32
33quagga (0.99.23.1-1+cl3u2) RELEASED; urgency=medium
4d916382 34
dc181091
DS		 35 * New Enabled: VRF - See Documentation for how to use
36 * New Enabled: Improved interface statistics
37 * New Enabled: Various vtysh improvements
38 * New Enabled: Numerous compile warnings and SA fixes
39 * New Enabled: Improved priviledge handlingA
40 * New Enabled: Various OSPF CLI fixes
41 * New Enabled: Prefix-list Performance Improvements.
42 * New Enabled: Allow more than 1k peers in Quagga
43 and Performance Improvements
44 * New Enabled: Systemd integration
45 * New Enabled: Various ISIS fixes
46 * New Enabled: BGP MRT improvements
47 * New Enabled: Lowered default MRAI timers
48 * New Enabled: Lowered default 'timers connect'
49 * New Enabled: 'bgp log-neighbor-changes' enabled by default
50 * New Enabled: BGP default keepalive to 3s and holdtime to 9s
51 * New Enabled: OSPF spf timers are now '0 50 5000' by default
52 * New Enabled: BGP hostname is displayed by default
53 * New Enabled: BGP 'no-as-set' is the default for
54 'bgp as-path multipath-relax"
55 * New Enabled: RA is on by default if using 5549 on an interface
56 * New Enabled: peer-group restrictions relaxed, update-groups determine
57 outbund policy anyway
58 * New Enabled: BGP enabled 'maximum-paths 64' by default
59 * New Enabled: OSPF "log-adjacency-changes" on by default
60 * New Enabled: Zebra: Add IPv6 protocol filtering support
61 * and setting src of IPv6 routes.
62 * New Enabled: BGP and OSPF JSON commands added.
63 * New Enabled: BGP Enable multiple instances support by default
64 * New Enabled: 'banner motd file' command
65 * New Enabled: Remove bad default passwords from default conf
66 * New Enabled: BGP addpath TX
67 * New Enabled: Simplified configuration for BGP Unnumbered
4d916382 68
dc181091
DS		 69 * New Deprecated: Remove unused 'show memory XXX' functionality
70 * New Deprecated: Remove babel protocol
71
72 * Closes: CM-10435 Addition on hidden command
73 "bfd multihop/singlehop" and "ptm-enable" per interface command
0904161c 74 * Closes: CM-9974 Get route counts right for show ip route summary
0904161c 75 * Closes: CM-9786 BGP memory leak in peer hostname
0904161c 76 * Closes: CM-9340 BGP: Ensure correct sequence of processing at exit
dc181091
DS		 77 * Closes: CM-9270 ripd: Fix crash when a default route is passed to rip
78 * Closes: CM-9255 BGPD crash around bgp_config_write ()
79 * Closes: CM-9134 ospf6d: Fix for crash when non area 0 network
80 entered first
81 * Closes: CM-8934 OSPFv3: Check area before scheduling SPF
0904161c 82 * Closes: CM-8514 zebra: Crash upon disabling a link
0904161c 83 * Closes: CM-8295 BGP crash in group_announce_route_walkcb
0904161c 84 * Closes: CM-8191 BGP: crash in update_subgroup_merge()
0904161c 85 * Closes: CM-8015 lib: Memory reporting fails over 2GB
0904161c 86 * Closes: CM-7926 BGP: crash from not NULLing freed pointers
0904161c
DS		 87
88 -- dev-support <dev-support@cumulusnetworks.com> Wed, 04 May 2016 16:22:52 -0700
4d916382
DS		 89
90quagga (0.99.23.1-1) unstable; urgency=medium
91
92 * New upstream release
93 * Added .png figures for info files to quagga-doc package.
94 * Changed dependency from iproute to iproute2 (thanks to Andreas
95 Henriksson). Closes: #753736
96 * Added texlive-fonts-recommended to build-depends to get ecrm1095 font
97 (thanks to Christoph Biedl). Closes: #651545
98
99 -- Christian Brunotte <ch@debian.org> Tue, 30 Sep 2014 00:20:12 +0200
100
101quagga (0.99.23-1) unstable; urgency=low
102
103 * New upstream release
104 * Removed debian/patches/readline-6.3.diff which was already in upstream.
105
106 -- Christian Hammers <ch@debian.org> Tue, 08 Jul 2014 09:15:48 +0200
107
108quagga (0.99.22.4-4) unstable; urgency=medium
109
110 * Fix build failure with readline-6.3 (thanks to Matthias Klose).
111 Closes: #741774
112
113 -- Christian Hammers <ch@debian.org> Sun, 23 Mar 2014 15:28:42 +0100
114
115quagga (0.99.22.4-3) unstable; urgency=low
116
117 * Added status to init script (thanks to Peter J. Holzer). Closes: #730625
118 * Init script now sources /lib/lsb/init-functions.
119 * Switched from hardening-wrapper to dpkg-buildflags.
120
121 -- Christian Hammers <ch@debian.org> Wed, 01 Jan 2014 19:12:01 +0100
122
123quagga (0.99.22.4-2) unstable; urgency=low
124
125 * Fixed typo in package description (thanks to Davide Prina).
126 Closes: #625860
127 * Added Italian Debconf translation (thanks to Beatrice Torracca)
128 Closes: #729798
129
130 -- Christian Hammers <ch@debian.org> Tue, 26 Nov 2013 00:47:11 +0100
131
132quagga (0.99.22.4-1) unstable; urgency=high
133
134 * SECURITY:
135 "ospfd: CVE-2013-2236, stack overrun in apiserver
136
137 the OSPF API-server (exporting the LSDB and allowing announcement of
138 Opaque-LSAs) writes past the end of fixed on-stack buffers. This leads
139 to an exploitable stack overflow.
140
141 For this condition to occur, the following two conditions must be true:
142 - Quagga is configured with --enable-opaque-lsa
143 - ospfd is started with the "-a" command line option
144
145 If either of these does not hold, the relevant code is not executed and
146 the issue does not get triggered."
147 Closes: #726724
148
149 * New upstream release
150 - ospfd: protect vs. VU#229804 (malformed Router-LSA)
151 (Quagga is said to be non-vulnerable but still adds some protection)
152
153 -- Christian Hammers <ch@debian.org> Thu, 24 Oct 2013 22:58:37 +0200
154
155quagga (0.99.22.1-2) unstable; urgency=low
156
157 * Added autopkgtests (thanks to Yolanda Robla). Closes: #710147
158 * Added "status" command to init script (thanks to James Andrewartha).
159 Closes: #690013
160 * Added "libsnmp-dev" to Build-Deps. There not needed for the official
161 builds but for people who compile Quagga themselves to activate the
162 SNMP feature (which for licence reasons cannot be done by Debian).
163 Thanks to Ben Winslow). Closes: #694852
164 * Changed watchquagga_options to an array so that quotes can finally
165 be used as expected. Closes: #681088
166 * Fixed bug that prevented restarting only the watchquagga daemon
167 (thanks to Harald Kappe). Closes: #687124
168
169 -- Christian Hammers <ch@debian.org> Sat, 27 Jul 2013 16:06:25 +0200
170
171quagga (0.99.22.1-1) unstable; urgency=low
172
173 * New upstream release
174 - ospfd restore nexthop IP for p2p interfaces
175 - ospfd: fix LSA initialization for build without opaque LSA
176 - ripd: correctly redistribute ifindex routes (BZ#664)
177 - bgpd: fix lost passwords of grouped neighbors
178 * Removed 91_ld_as_needed.diff as it was found in the upstream source.
179
180 -- Christian Hammers <ch@debian.org> Mon, 22 Apr 2013 22:21:20 +0200
181
182quagga (0.99.22-1) unstable; urgency=low
183
184 * New upstream release.
185 - [bgpd] The semantics of default-originate route-map have changed.
186 The route-map is now used to advertise the default route conditionally.
187 The old behaviour which allowed to set attributes on the originated
188 default route is no longer supported.
189 - [bgpd] this version of bgpd implements draft-idr-error-handling. This was
190 added in 0.99.21 and may not be desirable. If you need a version
191 without this behaviour, please use 0.99.20.1. There will be a
192 runtime configuration switch for this in future versions.
193 - [isisd] is in "beta" state.
194 - [ospf6d] is in "alpha/experimental" state
195 - More changes are documented in the upstream changelog!
196 * debian/watch: Adjusted to new savannah.gnu.org site, thanks to Bart
197 Martens.
198 * debian/patches/99_CVE-2012-1820_bgp_capability_orf.diff removed as its
199 in the changelog.
200 * debian/patches/99_distribute_list.diff removed as its in the changelog.
201 * debian/patches/10_doc__Makefiles__makeinfo-force.diff removed as it
202 was just for Debian woody.
203
204 -- Christian Hammers <ch@debian.org> Thu, 14 Feb 2013 00:22:00 +0100
205
206quagga (0.99.21-4) unstable; urgency=medium
207
208 * Fixed regression bug that caused OSPF "distribute-list" statements to be
209 silently ignored. The patch has already been applied upstream but there
210 has been no new Quagga release since then.
211 Thanks to Hans van Kranenburg for reporting. Closes: #697240
212
213 -- Christian Hammers <ch@debian.org> Sun, 06 Jan 2013 15:50:32 +0100
214
215quagga (0.99.21-3) unstable; urgency=high
216
217 * SECURITY:
218 CVE-2012-1820 - Quagga contained a bug in BGP OPEN message handling.
219 A denial-of-service condition could be caused by an attacker controlling
220 one of the pre-configured BGP peers. In most cases this means, that the
221 attack must be originated from an adjacent network. Closes: #676510
222
223 -- Christian Hammers <ch@debian.org> Fri, 08 Jun 2012 01:15:32 +0200
224
225quagga (0.99.21-2) unstable; urgency=low
226
227 * Renamed babeld.8 to quagga-babeld.8 as it conflicted with the
228 original mapage of the babeld package which users might want to
229 install in parallel as it is slightly more capable. Closes: #671916
230
231 -- Christian Hammers <ch@debian.org> Thu, 10 May 2012 07:53:01 +0200
232
233quagga (0.99.21-1) unstable; urgency=low
234
235 * New upstream release
236 - [bgpd] BGP multipath support has been merged
237 - [bgpd] SAFI (Multicast topology) support has been extended to propagate
238 the topology to zebra.
239 - [bgpd] AS path limit functionality has been removed
240 - [babeld] a new routing daemon implementing the BABEL ad-hoc mesh routing
241 protocol has been merged.
242 - [isisd] a major overhaul has been picked up. Please note that isisd is
243 STILL NOT SUITABLE FOR PRODUCTION USE.
244 - a lot of bugs have been fixed
245 * Added watchquagga daemon.
246 * Added DEP-3 conforming patch comments.
247
248 -- Christian Hammers <ch@debian.org> Sun, 06 May 2012 15:33:33 +0200
249
250quagga (0.99.20.1-1) unstable; urgency=high
251
252 * SECURITY:
253 CVE-2012-0249 - Quagga ospfd DoS on malformed LS-Update packet
254 CVE-2012-0250 - Quagga ospfd DoS on malformed Network-LSA data
255 CVE-2012-0255 - Quagga bgpd DoS on malformed OPEN message
256 * New upstream release. Closes: #664033
257
258 -- Christian Hammers <ch@debian.org> Fri, 16 Mar 2012 22:14:05 +0100
259
260quagga (0.99.20-4) unstable; urgency=low
261
262 * Switch to dpkg-source 3.0 (quilt) format.
263 * Switch to changelog-format-1.0.
264
265 -- Christian Hammers <ch@debian.org> Sat, 25 Feb 2012 18:52:06 +0100
266
267quagga (0.99.20-3) unstable; urgency=low
268
269 * Added --sysconfdir back to the configure options (thanks to Sven-Haegar
270 Koch). Closes: #645649
271
272 -- Christian Hammers <ch@debian.org> Tue, 18 Oct 2011 00:24:37 +0200
273
274quagga (0.99.20-2) unstable; urgency=low
275
276 * Bumped standards version to 0.9.2.
277 * Migrated to "dh" build system.
278 * Added quagga-dbg package.
279
280 -- Christian Hammers <ch@debian.org> Fri, 14 Oct 2011 23:59:26 +0200
281
282quagga (0.99.20-1) unstable; urgency=low
283
284 * New upstream release:
285 "The primary focus of this release is a fix of SEGV regression in ospfd,
286 which was introduced in 0.99.19. It also features a series of minor
287 improvements, including better RFC compliance in bgpd, better support
288 of FreeBSD and some enhancements to isisd."
289 * Fixes off-by-one bug (removed 20_ospf6_area_argv.dpatch). Closes: #519488
290
291 -- Christian Hammers <ch@debian.org> Fri, 30 Sep 2011 00:59:24 +0200
292
293quagga (0.99.19-1) unstable; urgency=high
294
295 * SECURITY:
296 "This release provides security fixes, which address assorted
297 vulnerabilities in bgpd, ospfd and ospf6d (CVE-2011-3323,
298 CVE-2011-3324, CVE-2011-3325, CVE-2011-3326 and CVE-2011-3327).
299 * New upstream release.
300 * Removed incorporated debian/patches/92_opaque_lsa_enable.dpatch.
301 * Removed incorporated debian/patches/93_opaque_lsa_fix.dpatch.
302 * Removed obsolete debian/README.Debian.Woody and README.Debian.MD5.
303
304 -- Christian Hammers <ch@debian.org> Tue, 27 Sep 2011 00:16:27 +0200
305
306quagga (0.99.18-1) unstable; urgency=low
307
308 * SECURITY:
309 "This release fixes 2 denial of services in bgpd, which can be remotely
310 triggered by malformed AS-Pathlimit or Extended-Community attributes.
311 These issues have been assigned CVE-2010-1674 and CVE-2010-1675.
312 Support for AS-Pathlimit has been removed with this release."
313 * Added Brazilian Portuguese debconf translation. Closes: #617735
314 * Changed section for quagga-doc from "doc" to "net".
315 * Added patch to fix FTBFS with latest GCC. Closes: #614459
316
317 -- Christian Hammers <ch@debian.org> Tue, 22 Mar 2011 23:13:34 +0100
318
319quagga (0.99.17-4) unstable; urgency=low
320
321 * Added comment to init script (thanks to Marc Haber). Closes: #599524
322
323 -- Christian Hammers <ch@debian.org> Thu, 13 Jan 2011 23:53:29 +0100
324
325quagga (0.99.17-3) unstable; urgency=low
326
327 * Fix FTBFS with ld --as-needed (thanks to Matthias Klose at Ubuntu).
328 Closes: #609555
329
330 -- Christian Hammers <ch@debian.org> Thu, 13 Jan 2011 23:27:06 +0100
331
332quagga (0.99.17-2) unstable; urgency=low
333
334 * Added Danisch Debconf translation (thanks to Joe Dalton). Closes: #596259
335
336 -- Christian Hammers <ch@debian.org> Sat, 18 Sep 2010 12:20:07 +0200
337
338quagga (0.99.17-1) unstable; urgency=high
339
340 * SECURITY:
341 "This release provides two important bugfixes, which address remote crash
342 possibility in bgpd discovered by CROSS team.":
343 1. Stack buffer overflow by processing certain Route-Refresh messages
344 CVE-2010-2948
345 2. DoS (crash) while processing certain BGP update AS path messages
346 CVE-2010-2949
347 Closes: #594262
348
349 -- Christian Hammers <ch@debian.org> Wed, 25 Aug 2010 00:52:48 +0200
350
351quagga (0.99.16-1) unstable; urgency=low
352
353 * New upstream release. Closes: #574527
354 * Added chrpath to debian/rules to fix rpath problems that lintian spottet.
355
356 -- Christian Hammers <ch@debian.org> Sun, 21 Mar 2010 17:05:40 +0100
357
358quagga (0.99.15-2) unstable; urgency=low
359
360 * Applied patch for off-by-one bug in ospf6d that caused a segmentation
361 fault when using the "area a.b.c.d filter-list prefix" command (thanks
362 to Steinar H. Gunderson). Closes: 519488
363
364 -- Christian Hammers <ch@debian.org> Sun, 14 Feb 2010 20:02:03 +0100
365
366quagga (0.99.15-1) unstable; urgency=low
367
368 * New upstream release
369 "This fixes some annoying little ospfd and ospf6d regressions, which made
370 0.99.14 a bit of a problem release (...) This release still contains a
371 regression in the "no ip address ..." command, at least on Linux.
372 See bug #486, which contains a workaround patch. This release should be
373 considered a 1.0.0 release candidate. Please test this release as widely
374 as possible."
375 * Fixed wrong port number in zebra.8 (thanks to Thijs Kinkhorst).
376 Closes: #517860
377 * Added Russian Debconf tanslation (thanks to Yuri Kozlov).
378 Closes: #539464
379 * Removed so-version in build-dep to libreadline-dev on request of
380 Matthias Klose.
381 * Added README.source with reference to dpatch as suggested by lintian.
382 * Bumped standards versionto 3.8.3.
383
384 -- Christian Hammers <ch@debian.org> Sun, 13 Sep 2009 18:12:06 +0200
385
386quagga (0.99.14-1) unstable; urgency=low
387
388 * New upstream release
389 "This release contains a regression fix for ospf6d, various small fixes
390 and some hopefully very significant bgpd stability fixes.
391 This release should be considered a 1.0.0 release candidate. Please test
392 this release as widely as possible."
393 * Fixes bug with premature LSA aging in ospf6d. Closes: #535030
394 * Fixes section number in zebra.8 manpage. Closes: #517860
395
396 -- Christian Hammers <ch@debian.org> Sat, 25 Jul 2009 00:40:38 +0200
397
398quagga (0.99.13-2) unstable; urgency=low
399
400 * Added Japanese Debconf translation (thanks to Hideki Yamane).
401 Closes: #510714
402 * When checking for obsoleted config options in preinst, print filename
403 where it occures (thanks to Michael Bussmann). Closes: #339489
404
405 -- Christian Hammers <ch@debian.org> Sun, 19 Jul 2009 17:13:23 +0200
406
407quagga (0.99.13-1) unstable; urgency=low
408
409 * New upstream release
410 "This release is contains a number of small fixes, for potentially
411 irritating issues, as well as small enhancements to vtysh and support
412 for linking to PCRE (a much faster regex library)."
413 * Added build-dep to gawk as configure required it for memtypes.awk
414 * Replaced build-dep to gs-gpl with ghostscript as requested by lintian
415 * Minor changes to copyright and control files to make lintian happy.
416
417 -- Christian Hammers <ch@debian.org> Wed, 24 Jun 2009 17:53:28 +0200
418
419quagga (0.99.12-1) unstable; urgency=high
420
421 * New upstream release
422 "This release fixes an urgent bug in bgpd where it could hit an assert
423 if it received a long AS_PATH with a 4-byte ASN." Noteworthy bugfixes:
424 + [bgpd] Fix bgp ipv4/ipv6 accept handling
425 + [bgpd] AS4 bugfix by Chris Caputo
426 + [bgpd] Allow accepted peers to progress even if realpeer is in Connect
427 + [ospfd] Switch Fletcher checksum back to old ospfd version
428
429 -- Christian Hammers <ch@debian.org> Mon, 22 Jun 2009 00:16:33 +0200
430
431quagga (0.99.11-1) unstable; urgency=low
432
433 * New upstream release
434 "Most regressions in 0.99 over 0.98 are now believed to be fixed. This
435 release should be considered a release-candidate for a new stable series."
436 + bgpd: Preliminary UI and Linux-IPv4 support for TCP-MD5 merged
437 + zebra: ignore dead routes in RIB update
438 + [ospfd] Default route needs to be refreshed after neighbour state change
439 + [zebra:netlink] Set proto/scope on all route update messages
440 * Removed debian/patches/20_*bgp*md5*.dpatch due to upstream support.
441
442 -- Christian Hammers <ch@debian.org> Thu, 09 Oct 2008 22:56:38 +0200
443
444quagga (0.99.10-1) unstable; urgency=medium
445
446 * New upstream release
447 + bgpd: 4-Byte AS Number support
448 + Sessions were incorrectly reset if a partial AS-Pathlimit attribute
449 was received.
450 + Advertisement of Multi-Protocol prefixes (i.e. non-IPv4) had been
451 broken in the 0.99.9 release. Closes: #467656
452
453 -- Christian Hammers <ch@debian.org> Tue, 08 Jul 2008 23:32:42 +0200
454
455quagga (0.99.9-6) unstable; urgency=low
456
457 * Fixed FTBFS by adding a build-dep to libpcre3-dev (thanks to Luk Claes).
458 Closes: #469891
459
460 -- Christian Hammers <ch@debian.org> Sat, 12 Apr 2008 12:53:51 +0200
461
462quagga (0.99.9-5) unstable; urgency=low
463
464 * C.J. Adams-Collier and Paul Jakma suggested to build against libpcre3
465 which is supposed to be faster.
466
467 -- Christian Hammers <ch@debian.org> Sun, 02 Mar 2008 13:19:42 +0100
468
469quagga (0.99.9-4) unstable; urgency=low
470
471 * Added hardening-wrapper to the build-deps (thanks to Moritz Muehlenhoff).
472
473 -- Christian Hammers <ch@debian.org> Tue, 29 Jan 2008 22:33:56 +0100
474
475quagga (0.99.9-3) unstable; urgency=low
476
477 * Replaced the BGP patch by a new one so that the package builds again
478 with kernels above 2.6.21!
479 * debian/control:
480 + Moved quagga-doc to section doc to make lintian happy.
481 * Added Spanish debconf translation (thanks to Carlos Galisteo de Cabo).
482 Closes: #428574
483 * debian/control: (thanks to Marco Rodrigues)
484 + Bump Standards-Version to 3.7.3 (no changes needed).
485 + Add Homepage field.
486
487 -- Christian Hammers <ch@debian.org> Mon, 28 Jan 2008 22:29:18 +0100
488
489quagga (0.99.9-2.1) unstable; urgency=low
490
491 * Non-maintainer upload.
492 * debian/rules: fixed bashisms. (Closes: #459122)
493
494 -- Miguel Angel Ruiz Manzano <debianized@gmail.com> Tue, 22 Jan 2008 14:37:21 -0300
495
496quagga (0.99.9-2) unstable; urgency=low
497
498 * Added CVE id for the security bug to the last changelog entry.
499 Closes: 442133
500
501 -- Christian Hammers <ch@debian.org> Tue, 25 Sep 2007 22:01:31 +0200
502
503quagga (0.99.9-1) unstable; urgency=high
504
505 * SECURITY:
506 "This release fixes two potential DoS conditions in bgpd, reported by Mu
507 Security, where a bgpd could be crashed if a peer sent a malformed OPEN
508 message or a malformed COMMUNITY attribute. Only configured peers can do
509 this, hence we consider these issues to be very low impact." CVE-2007-4826
510
511 -- Christian Hammers <ch@debian.org> Wed, 12 Sep 2007 21:12:41 +0200
512
513quagga (0.99.8-1) unstable; urgency=low
514
515 * New upstream version.
516
517 -- Christian Hammers <ch@debian.org> Fri, 17 Aug 2007 00:07:04 +0200
518
519quagga (0.99.7-3) unstable; urgency=medium
520
521 * Applied patch for FTBFS with linux-libc-dev (thanks to Andrew J. Schorr
522 and Lucas Nussbaum). Closes: #429003
523
524 -- Christian Hammers <ch@debian.org> Fri, 22 Jun 2007 21:34:55 +0200
525
526quagga (0.99.7-2) unstable; urgency=low
527
528 * Added Florian Weimar as co-maintainer. Closes: 421977
529 * Added Dutch debconf translation (thanks to Bart Cornelis).
530 Closes: #420932
531 * Added Portuguese debconf translation (thanks to Rui Branco).
532 Closes: #421185
533 * Improved package description (thanks to Reuben Thomas).
534 Closes: #418933
535 * Added CVE Id to 0.99.6-5 changelog entry.
536
537 -- Christian Hammers <ch@debian.org> Wed, 02 May 2007 20:27:12 +0200
538
539quagga (0.99.7-1) unstable; urgency=low
540
541 * New upstream release. Closes: #421553
542
543 -- Christian Hammers <ch@debian.org> Mon, 30 Apr 2007 14:22:34 +0200
544
545quagga (0.99.6-6) unstable; urgency=medium
546
547 * Fixes FTBFS with tetex-live. Closes: #420468
548
549 -- Christian Hammers <ch@debian.org> Mon, 23 Apr 2007 21:34:13 +0200
550
551quagga (0.99.6-5) unstable; urgency=high
552
553 * SECURITY:
554 The bgpd daemon was vulnerable to a Denial-of-Service. Configured peers
555 could cause a Quagga bgpd to, typically, assert() and abort. The DoS
556 could be triggered by peers by sending an UPDATE message with a crafted,
557 malformed Multi-Protocol reachable/unreachable NLRI attribute.
558 This is CVE-2007-1995 and Quagga Bug#354. Closes: #418323
559
560 -- Christian Hammers <ch@debian.org> Thu, 12 Apr 2007 23:21:58 +0200
561
562quagga (0.99.6-4) unstable; urgency=low
563
564 * Improved note in README.Debian for SNMP self-builders (thanks to Matthias
565 Wamser). Closes: #414788
566
567 -- Christian Hammers <ch@debian.org> Wed, 14 Mar 2007 02:18:57 +0100
568
569quagga (0.99.6-3) unstable; urgency=low
570
571 * Updated German Debconf translation (thanks to Matthias Julius).
572 Closes: #409327
573
574 -- Christian Hammers <ch@debian.org> Sat, 10 Feb 2007 15:06:16 +0100
575
576quagga (0.99.6-2) unstable; urgency=low
577
578 * Updated config.guess/config.sub as suggested by lintian.
579 * Corrected README.Debian text regarding the WANT_SNMP flag.
580
581 -- Christian Hammers <ch@debian.org> Sun, 17 Dec 2006 01:45:37 +0100
582
583quagga (0.99.6-1) unstable; urgency=low
584
585 * New upstream release. Closes: #402361
586
587 -- Christian Hammers <ch@debian.org> Mon, 11 Dec 2006 00:28:09 +0100
588
589quagga (0.99.5-5) unstable; urgency=high
590
591 * Changed Depends on adduser to Pre-Depends to avoid uninstallability
592 in certain cases (thanks to Steve Langasek, Lucas Nussbaum).
593 Closes: #398562
594
595 -- Christian Hammers <ch@debian.org> Wed, 15 Nov 2006 17:46:34 +0100
596
597quagga (0.99.5-4) unstable; urgency=low
598
599 * Added default PAM file and some explanations regarding PAM authentication
600 of vtysh which could prevent the start at boot-time when used wrong.
601 Now PAM permits anybody to access the vtysh tool (a malicious user could
602 build his own vtysh without PAM anyway) and the access is controled by
603 the read/write permissions of the vtysh socket which are only granted to
604 users belonging to the quaggavty group (thanks to Wakko Warner).
605 Closes: #389496
606 * Added "case" to prerm script so that the Debconf question is not called a
607 second time in e.g. "new-prerm abort-upgrade" after being NACKed in the
608 old-prerm.
609
610 -- Christian Hammers <ch@debian.org> Fri, 3 Nov 2006 01:22:15 +0100
611
612quagga (0.99.5-3) unstable; urgency=medium
613
614 * Backport CVS fix for an OSPF DD Exchange regression (thanks to Matt
615 Brown). Closes: #391040
616
617 -- Christian Hammers <ch@debian.org> Wed, 25 Oct 2006 19:47:11 +0200
618
619quagga (0.99.5-2) unstable; urgency=medium
620
621 * Added LSB info section to initscript.
622 * Removed unnecessary depends to libncurses5 to make checklib happy.
623 The one to libcap should remain though as it is just temporarily
624 unused.
625
626 -- Christian Hammers <ch@debian.org> Thu, 21 Sep 2006 00:04:07 +0200
627
628quagga (0.99.5-1) unstable; urgency=low
629
630 * New upstream release. Closes: #38704
631 * Upstream fixes ospfd documentary inconsistency. Closes: #347897
632 * Changed debconf question in prerm to "high" (thanks to Rafal Pietrak).
633
634 -- Christian Hammers <ch@debian.org> Mon, 11 Sep 2006 23:43:42 +0200
635
636quagga (0.99.4-4) unstable; urgency=low
637
638 * Recreate /var/run if not present because /var is e.g. on a tmpfs
639 filesystem (thanks to Martin Pitt). Closes: #376142
640 * Removed nonexistant option from ospfd.8 manpage (thanks to
641 David Medberry). Closes: 378274
642
643 -- Christian Hammers <ch@debian.org> Sat, 15 Jul 2006 20:22:12 +0200
644
645quagga (0.99.4-3) unstable; urgency=low
646
647 * Removed invalid semicolon from rules file (thanks to Philippe Gramoulle).
648
649 -- Christian Hammers <ch@debian.org> Tue, 27 Jun 2006 23:36:07 +0200
650
651quagga (0.99.4-2) unstable; urgency=high
652
653 * Set urgency to high as 0.99.4-1 fixes a security problem!
654 * Fixed building of the info file.
655
656 -- Christian Hammers <ch@debian.org> Sun, 14 May 2006 23:04:28 +0200
657
658quagga (0.99.4-1) unstable; urgency=low
659
660 * New upstream release to fix a security problem in the telnet interface
661 of the BGP daemon which could be used for DoS attacks (CVE-2006-2276).
662 Closes: 366980
663
664 -- Christian Hammers <ch@debian.org> Sat, 13 May 2006 19:54:40 +0200
665
666quagga (0.99.3-3) unstable; urgency=low
667
668 * Added CVE numbers for the security patch in 0.99.3-2.
669
670 -- Christian Hammers <ch@debian.org> Sat, 6 May 2006 17:14:22 +0200
671
672quagga (0.99.3-2) unstable; urgency=high
673
674 * SECURITY:
675 Added security bugfix patch from upstream BTS for security problem
676 that could lead to injected routes when using RIPv1.
677 CVE-2006-2223 - missing configuration to disable RIPv1 or require
678 plaintext or MD5 authentication
679 CVE-2006-2224 - lack of enforcement of RIPv2 authentication requirements
680 Closes: #365940
681 * First amd64 upload.
682
683 -- Christian Hammers <ch@debian.org> Thu, 4 May 2006 00:22:09 +0200
684
685quagga (0.99.3-1) unstable; urgency=low
686
687 * New upstream release
688
689 -- Christian Hammers <ch@debian.org> Wed, 25 Jan 2006 13:37:27 +0100
690
691quagga (0.99.2-1) unstable; urgency=low
692
693 * New upstream release
694 Closes: #330248, #175553
695
696 -- Christian Hammers <ch@debian.org> Wed, 16 Nov 2005 00:25:52 +0100
697
698quagga (0.99.1-7) unstable; urgency=low
699
700 * Changed debian/rules check for mounted /proc directory to check
701 for /proc/1 as not all systems (e.g. 2.6 arm kernels) have
702 /proc/kcore which is a optional feature only (thanks to Lennert
703 Buytenhek). Closes: #335695
704 * Added Swedish Debconf translation (thanks to Daniel Nylander).
705 Closes: #331367
706
707 -- Christian Hammers <ch@debian.org> Thu, 27 Oct 2005 20:53:19 +0200
708
709quagga (0.99.1-6) unstable; urgency=low
710
711 * Fixed debconf dependency as requested by Joey Hess.
712
713 -- Christian Hammers <ch@debian.org> Mon, 26 Sep 2005 20:47:35 +0200
714
715quagga (0.99.1-5) unstable; urgency=low
716
717 * Rebuild with libreadline5-dev as build-dep as requested by
718 Matthias Klose. Closes: #326306
719 * Made initscript more fault tolerant against missing lines in
720 /etc/quagga/daemons (thanks to Ralf Hildebrandt). Closes: #323774
721 * Added dependency to adduser.
722
723 -- Christian Hammers <ch@debian.org> Tue, 13 Sep 2005 21:42:17 +0200
724
725quagga (0.99.1-4) unstable; urgency=low
726
727 * Added French Debconf translation (thanks to Mohammed Adnene Trojette).
728 Closes: #319324
729 * Added Czech Debconf translation (thanks to Miroslav Kure).
730 Closes: #318127
731
732 -- Christian Hammers <ch@debian.org> Sun, 31 Jul 2005 04:19:41 +0200
733
734quagga (0.99.1-3) unstable; urgency=low
735
736 * A Debconf question now asks the admin before upgrading if the daemon
737 should really be stopped as this could lead to the loss of network
738 connectivity or BGP flaps (thanks to Michael Horn and Achilleas Kotsis).
739 Also added a hint about setting Quagga "on hold" to README.Debian.
740 Closes: #315467
741 * Added patch to build on Linux/ARM.
742
743 -- Christian Hammers <ch@debian.org> Sun, 10 Jul 2005 22:19:38 +0200
744
745quagga (0.99.1-2) unstable; urgency=low
746
747 * Fixed SNMP enabled command in debian/rules (thanks to Christoph Kluenter).
748 Closes: #306840
749
750 -- Christian Hammers <ch@debian.org> Sat, 4 Jun 2005 14:04:01 +0200
751
752quagga (0.99.1-1) unstable; urgency=low
753
754 * New upstream version. Among others:
755 - BGP graceful restart and "match ip route-source" added
756 - support for interface renaming
757 - improved threading for better responsivness under load
758 * Switched to dpatch to make diffs cleaner.
759 * Made autoreconf unnecessary.
760 * Replaced quagga.dvi and quagga.ps by quagga.pdf in quagga-doc.
761 (the PostScript would have needed Makefile corrections and PDF
762 is more preferable anyway)
763 * Added isisd to the list of daemons in /etc/init.d/quagga (thanks
764 to Ernesto Elbe).
765 * Added hint for "netlink-listen: overrun" messages (thanks to
766 Hasso Tepper).
767 * Added preinst check that bails out if old smux options are in use
768 as Quagga would not start up else anyway (thanks to Bjorn Mork).
769 Closes: #308320
770
771 -- Christian Hammers <ch@debian.org> Fri, 13 May 2005 01:18:24 +0200
772
773quagga (0.98.3-7) unstable; urgency=high
774
775 * Removed SNMP support as linking against NetSNMP introduced a dependency
776 to OpenSSL which is not compatible to the GPL which governs this
777 application (thanks to Faidon Liambotis). See README.Debian for more
778 information. Closes: #306840
779 * Changed listening address of ospf6d and ripngd from 127.0.0.1 to "::1".
780 * Added build-dep to groff to let drafz-zebra-00.txt build correctly.
781
782 -- Christian Hammers <ch@debian.org> Wed, 4 May 2005 20:08:14 +0200
783
784quagga (0.98.3-6) testing-proposed-updates; urgency=high
785
786 * Removed "Recommends kernel-image-2.4" as aptitude then
787 installes a kernel-image for an arbitrary architecture as long
788 as it fullfill that recommendation which can obviously fatal
789 at the next reboot :) Also it is a violation of the policy
790 which mandates a reference to real packages (thanks to Holger Levsen).
791 Closes: #307281
792
793 -- Christian Hammers <ch@debian.org> Tue, 3 May 2005 22:53:39 +0200
794
795quagga (0.98.3-5) unstable; urgency=high
796
797 * The patch which tried to remove the OpenSSL dependency, which is
798 not only unneccessary but also a violation of the licence and thus RC,
799 stopped working a while ago, since autoreconf is no longer run before
800 building the binaries. So now ./configure is patched directly (thanks
801 to Faidon Liambotis for reporting). Closes: #306840
802 * Raised Debhelper compatibility level from 3 to 4. Nothing changed.
803 * Added build-dep to texinfo (>= 4.7) to ease work for www.backports.org.
804
805 -- Christian Hammers <ch@debian.org> Fri, 29 Apr 2005 02:31:03 +0200
806
807quagga (0.98.3-4) unstable; urgency=low
808
809 * Removed Debconf upgrade note as it was considered a Debconf abuse
810 and apart from that so obvious that it was not even worth to be
811 put into NEWS.Debian (thanks to Steve Langasek). Closes: #306384
812
813 -- Christian Hammers <ch@debian.org> Wed, 27 Apr 2005 00:10:24 +0200
814
815quagga (0.98.3-3) unstable; urgency=medium
816
817 * Adding the debconf module due to a lintian suggestion is a very
818 bad idea if no db_stop is called as the script hangs then (thanks
819 to Tore Anderson for reporting). Closes: #306324
820
821 -- Christian Hammers <ch@debian.org> Mon, 25 Apr 2005 21:55:58 +0200
822
823quagga (0.98.3-2) unstable; urgency=low
824
825 * Added debconf confmodule to postinst as lintian suggested.
826
827 -- Christian Hammers <ch@debian.org> Sun, 24 Apr 2005 13:16:00 +0200
828
829quagga (0.98.3-1) unstable; urgency=low
830
831 * New upstream release.
832 Mmost notably fixes last regression in bgpd (reannounce of prefixes
833 with changed attributes works again), race condition in netlink
834 handling while using IPv6, MTU changes handling in ospfd and several
835 crashes in ospfd, bgpd and ospf6d.
836
837 -- Christian Hammers <ch@debian.org> Mon, 4 Apr 2005 12:51:24 +0200
838
839quagga (0.98.2-2) unstable; urgency=low
840
841 * Added patch to let Quagga compile with gcc-4.0 (thanks to
842 Andreas Jochens). Closes: #300949
843
844 -- Christian Hammers <ch@debian.org> Fri, 25 Mar 2005 19:33:30 +0100
845
846quagga (0.98.2-1) unstable; urgency=medium
847
848 * Quoting the upstream announcement:
849 The 0.98.1 release unfortunately was a brown paper bag release with
850 respect to ospfd. [...] 0.98.2 has been released, with one crucial change
851 to fix the unfortunate mistake in 0.98.1, which caused problems if
852 ospfd became DR.
853 * Note: the upstream tarball had a strange problem, apparently redhat.spec
854 was twice in it? At least debuild gave a strange error message so I
855 unpacked it by hand. No changes were made to the .orig.tar.gz!
856
857 -- Christian Hammers <ch@debian.org> Fri, 4 Feb 2005 01:31:36 +0100
858
859quagga (0.98.1-1) unstable; urgency=medium
860
861 * New upstream version
862 "fixing a fatal OSPF + MD5 auth regression, and a non-fatal high-load
863 regression in bgpd which were present in the 0.98.0 release."
864 * Upstream version fixes bug in ospfd that could lead to crash when OSPF
865 packages had a MTU > 1500. Closes: #290566
866 * Added notice regarding capability kernel support to README.Debian
867 (thanks to Florian Weimer). Closes: #291509
868 * Changed permission setting in postinst script (thanks to Bastian Blank).
869 Closes: #292690
870
871 -- Christian Hammers <ch@debian.org> Tue, 1 Feb 2005 02:01:27 +0100
872
873quagga (0.98.0-3) unstable; urgency=low
874
875 * Fixed problem in init script. Closes: #290317
876 * Removed obsolete "smux peer enable" patch.
877
878 -- Christian Hammers <ch@debian.org> Fri, 14 Jan 2005 17:37:27 +0100
879
880quagga (0.98.0-2) unstable; urgency=low
881
882 * Updated broken TCP MD5 patch for BGP (thanks to John P. Looney
883 for telling me).
884
885 -- Christian Hammers <ch@debian.org> Thu, 13 Jan 2005 02:03:54 +0100
886
887quagga (0.98.0-1) unstable; urgency=low
888
889 * New upstream release
890 * Added kernel-image-2.6 as alternative to 2.4 to the recommends
891 (thanks to Faidon Liambotis). Closes: #289530
892
893 -- Christian Hammers <ch@debian.org> Mon, 10 Jan 2005 19:36:17 +0100
894
895quagga (0.97.5-1) unstable; urgency=low
896
897 * New upstream version.
898 * Added Czech debconf translation (thanks to Miroslav Kure).
899 Closes: #287293
900 * Added Brazilian debconf translation (thanks to Andre Luis Lopes).
901 Closes: #279352
902
903 -- Christian Hammers <ch@debian.org> Wed, 5 Jan 2005 23:49:57 +0100
904
905quagga (0.97.4-2) unstable; urgency=low
906
907 * Fixed quagga.info build problem.
908
909 -- Christian Hammers <ch@debian.org> Wed, 5 Jan 2005 22:38:01 +0100
910
911quagga (0.97.4-1) unstable; urgency=low
912
913 * New upstream release.
914
915 -- Christian Hammers <ch@debian.org> Tue, 4 Jan 2005 01:45:22 +0100
916
917quagga (0.97.3-2) unstable; urgency=low
918
919 * Included isisd in the daemon list.
920 * Wrote an isisd manpage.
921 * It is now ensured that zebra is always the last daemon to be stopped.
922 * (Thanks to Hasso Tepper for mailing me a long list of suggestions
923 which lead to this release)
924
925 -- Christian Hammers <ch@debian.org> Sat, 18 Dec 2004 13:14:55 +0100
926
927quagga (0.97.3-1) unstable; urgency=medium
928
929 * New upstream version.
930 - Fixes important OSPF bug.
931 * Added ht-20040911-smux.patch regarding Quagga bug #112.
932 * Updated ht-20041109-0.97.3-bgp-md5.patch for BGP with TCP MD5
933 (thanks to Matthias Wamser).
934
935 -- Christian Hammers <ch@debian.org> Tue, 9 Nov 2004 17:45:26 +0100
936
937quagga (0.97.2-4) unstable; urgency=low
938
939 * Added Portuguese debconf translation (thanks to Andre Luis Lopes).
940 Closes: #279352
941 * Disabled ospfapi server by default on recommendation of Paul Jakma.
942
943 -- Christian Hammers <ch@debian.org> Sun, 7 Nov 2004 15:07:05 +0100
944
945quagga (0.97.2-3) unstable; urgency=low
946
947 * Added Andrew Schorrs VTY Buffer patch from the [quagga-dev 1729].
948
949 -- Christian Hammers <ch@debian.org> Tue, 2 Nov 2004 00:46:56 +0100
950
951quagga (0.97.2-2) unstable; urgency=low
952
953 * Changed file and directory permissions and ownerships according to a
954 suggestion from Paul Jakma. Still not perfect though.
955 * Fixed upstream vtysh.conf.sample file.
956 * "ip ospf network broadcast" is now saved correctly. Closes: #244116
957 * Daemon options are now in /etc/quagga/debian.conf to be user
958 configurable (thanks to Simon Raven and Hasso Tepper). Closes: #266715
959
960 -- Christian Hammers <ch@debian.org> Tue, 26 Oct 2004 23:35:45 +0200
961
962quagga (0.97.2-1) unstable; urgency=low
963
964 * New upstream version.
965 Closes: #254541
966 * Fixed warning on unmodular kernels (thanks to Christoph Biedl).
967 Closes: #277973
968
969 -- Christian Hammers <ch@debian.org> Mon, 25 Oct 2004 00:47:04 +0200
970
971quagga (0.97.1-2) unstable; urgency=low
972
973 * Version 0.97 introduced shared libraries. They are now included.
974 (thanks to Raf D'Halleweyn). Closes: #277446
975
976 -- Christian Hammers <ch@debian.org> Wed, 20 Oct 2004 15:32:06 +0200
977
978quagga (0.97.1-1) unstable; urgency=low
979
980 * New upstream version.
981 * Removed some obsolete files from debian/patches.
982 * Added patch from upstream bug 113. Closes: #254541
983 * Added patch from upstream that fixes a compilation problem in the
984 ospfclient code (thanks to Hasso Tepper).
985 * Updated German debconf translation (thanks to Jens Nachtigall)
986 Closes: #277059
987
988 -- Christian Hammers <ch@debian.org> Mon, 18 Oct 2004 01:16:35 +0200
989
990quagga (0.96.5-11) unstable; urgency=low
991
992 * Fixed /tmp/buildd/* paths in binaries.
993 For some unknown reason the upstream Makefile modified a .h file at
994 the end of the "debian/rules build" target. During the following
995 "make install" one library got thus be re*compiled* - with /tmp/buildd
996 paths as sysconfdir (thanks to Peder Chr. Norgaard). Closes: #274050
997
998 -- Christian Hammers <ch@debian.org> Fri, 1 Oct 2004 01:21:02 +0200
999
1000quagga (0.96.5-10) unstable; urgency=medium
1001
1002 * The BGP routing daemon might freeze on network disturbances when
1003 their peer is also a Quagga/Zebra router.
1004 Applied patch from http://bugzilla.quagga.net/show_bug.cgi?id=102
1005 which has been confirmed by the upstream author.
1006 (thanks to Gunther Stammwitz)
1007 * Changed --enable-pam to --with-libpam (thanks to Hasso Tepper).
1008 Closes: #264562
1009 * Added patch for vtysh (thanks to Hasso Tepper). Closes: #215919
1010
1011 -- Christian Hammers <ch@debian.org> Mon, 9 Aug 2004 15:33:02 +0200
1012
1013quagga (0.96.5-9) unstable; urgency=low
1014
1015 * Rewrote the documentation chapter about SNMP support. Closes: #195653
1016 * Added MPLS docs.
1017
1018 -- Christian Hammers <ch@debian.org> Thu, 29 Jul 2004 21:01:52 +0200
1019
1020quagga (0.96.5-8) unstable; urgency=low
1021
1022 * Adjusted a grep in the initscript to also match a modprobe message
1023 from older modutils packages (thanks to Faidon Paravoid).
1024
1025 -- Christian Hammers <ch@debian.org> Wed, 28 Jul 2004 21:19:02 +0200
1026
1027quagga (0.96.5-7) unstable; urgency=low
1028
1029 * Added a "cd /etc/quagga/" to the init script as quagga tries to load
1030 the config file first from the current working dir and then from the
1031 config dir which could lead to confusion (thanks to Marco d'Itri).
1032 Closes: #255078
1033 * Removed warning regarding problems with the Debian kernels from
1034 README.Debian as they are no longer valid (thanks to Raphael Hertzog).
1035 Closes: #257580
1036 * Added patch from Hasso Tepper that makes "terminal length 0" work
1037 in vtysh (thanks to Matthias Wamser). Closes: #252579
1038
1039 -- Christian Hammers <ch@debian.org> Thu, 8 Jul 2004 21:53:21 +0200
1040
1041quagga (0.96.5-6) unstable; urgency=low
1042
1043 * Try to load the capability module as it is needed now.
1044
1045 -- Christian Hammers <ch@debian.org> Tue, 8 Jun 2004 23:25:29 +0200
1046
1047quagga (0.96.5-5) unstable; urgency=low
1048
1049 * Changed the homedir of the quagga user to /etc/quagga/ to allow
1050 admins to put ~/.ssh/authorized_keys there (thanks to Matthias Wamser).
1051 Closes: #252577
1052
1053 -- Christian Hammers <ch@debian.org> Sat, 5 Jun 2004 14:47:31 +0200
1054
1055quagga (0.96.5-4) unstable; urgency=medium
1056
1057 * Fixed rules file to use the renamed ./configure option --enable-tcp-md5
1058 (thanks to Matthias Wamser). Closes: #252141
1059
1060 -- Christian Hammers <ch@debian.org> Tue, 1 Jun 2004 22:58:32 +0200
1061
1062quagga (0.96.5-3) unstable; urgency=low
1063
1064 * Provided default binary package name to all build depends that were
1065 virtual packages (thanks to Goswin von Brederlow). Closes: #251625
1066
1067 -- Christian Hammers <ch@debian.org> Sat, 29 May 2004 22:48:53 +0200
1068
1069quagga (0.96.5-2) unstable; urgency=low
1070
1071 * New upstream version.
1072 * New md5 patch version (thanks to Niklas Jakobsson and Hasso Tepper).
1073 Closes: #250985
1074 * Fixes info file generation (thanks to Peder Chr. Norgaard).
1075 Closes: #250992
1076 * Added catalan debconf translation (thanks to Aleix Badia i Bosch).
1077 Closes: #250118
1078 * PATCHES:
1079 This release contains BGP4 MD5 support which requires a kernel patch
1080 to work. See /usr/share/doc/quagga/README.Debian.MD5.
1081 (The patch is ht-20040525-0.96.5-bgp-md5.patch from Hasso Tepper)
1082
1083 -- Christian Hammers <ch@debian.org> Thu, 27 May 2004 20:09:37 +0200
1084
1085quagga (0.96.5-1) unstable; urgency=low
1086
1087 * New upstream version.
1088 * PATCHES:
1089 This release contains BGP4 MD5 support which also requires a kernel patch.
1090 See /usr/share/doc/quagga/README.Debian.MD5 and search for CAN-2004-0230.
1091
1092 -- Christian Hammers <ch@debian.org> Sun, 16 May 2004 17:40:40 +0200
1093
1094quagga (0.96.4x-10) unstable; urgency=low
1095
1096 * SECURITY:
1097 This release contains support for MD5 for BGP which is one suggested
1098 prevention of the actually long known TCP SYN/RST attacks which got
1099 much news in the last days as ideas were revealed that made them much
1100 easier probable agains especially the BGP sessions than commonly known.
1101 There are a lot of arguments agains the MD5 approach but some ISPs
1102 started to require it.
1103 See: CAN-2004-0230, http://www.us-cert.gov/cas/techalerts/TA04-111A.html
1104 * PATCHES:
1105 This release contains the MD5 patch from Hasso Tepper. It also seems to
1106 required a kernel patch. See /usr/share/doc/quagga/README.Debian.MD5.
1107
1108 -- Christian Hammers <ch@debian.org> Thu, 29 Apr 2004 01:01:38 +0200
1109
1110quagga (0.96.4x-9) unstable; urgency=low
1111
1112 * Fixed daemon loading order (thanks to Matt Kemner).
1113 * Fixed typo in init script (thanks to Charlie Brett). Closes: #238582
1114
1115 -- Christian Hammers <ch@debian.org> Sun, 4 Apr 2004 15:32:18 +0200
1116
1117quagga (0.96.4x-8) unstable; urgency=low
1118
1119 * Patched upstream source so that quagga header files end up in
1120 /usr/include/quagga/. Closes: #233792
1121
1122 -- Christian Hammers <ch@debian.org> Mon, 23 Feb 2004 01:42:53 +0100
1123
1124quagga (0.96.4x-7) unstable; urgency=low
1125
1126 * Fixed info file installation (thanks to Holger Dietze). Closes: #227579
1127 * Added Japanese translation (thanks to Hideki Yamane). Closes: #227812
1128
1129 -- Christian Hammers <ch@debian.org> Sun, 18 Jan 2004 17:28:29 +0100
1130
1131quagga (0.96.4x-6) unstable; urgency=low
1132
1133 * Added dependency to iproute.
1134 * Initscript now checks not only for the pid file but also for the
1135 daemons presence (thanks to Phil Gregory). Closes: #224389
1136 * Added my patch to configure file permissions.
1137
1138 -- Christian Hammers <ch@debian.org> Mon, 15 Dec 2003 22:34:29 +0100
1139
1140quagga (0.96.4x-5) unstable; urgency=low
1141
1142 * Added patch which gives bgpd the CAP_NET_RAW capability to allow it
1143 to bind to special IPv6 link-local interfaces (Thanks to Bastian Blank).
1144 Closes: #222930
1145 * Made woody backport easier by applying Colin Watsons po-debconf hack.
1146 Thanks to Marc Haber for suggesting it. Closes: #223527
1147 * Made woody backport easier by applying a patch that removes some
1148 obscure whitespaces inside an C macro. (Thanks to Marc Haber).
1149 Closes: #223529
1150 * Now uses /usr/bin/pager. Closes: #204070
1151 * Added note about the "official woody backports" on my homepage.
1152
1153 -- Christian Hammers <ch@debian.org> Mon, 15 Dec 2003 20:39:06 +0100
1154
1155quagga (0.96.4x-4) unstable; urgency=high
1156
1157 * SECURITY:
1158 Fixes another bug that was originally reported against Zebra.
1159 .
1160 http://rhn.redhat.com/errata/RHSA-2003-307.html
1161 Herbert Xu reported that Zebra can accept spoofed messages sent on the
1162 kernel netlink interface by other users on the local machine. This could
1163 lead to a local denial of service attack. The Common Vulnerabilities and
1164 Exposures project (cve.mitre.org) has assigned the name CAN-2003-0858 to
1165 this issue.
1166
1167 * Minor improvements to init script (thanks to Iustin Pop).
1168 Closes: #220938
1169
1170 -- Christian Hammers <ch@debian.org> Sat, 22 Nov 2003 13:27:57 +0100
1171
1172quagga (0.96.4x-3) unstable; urgency=low
1173
1174 * Changed "more" to "/usr/bin/pager" as default pager if $PAGER or
1175 $VTYSH_PAGER is not set (thanks to Bastian Blank). Closes: #204070
1176 * Made the directory (but not the config/log files!) world accessible
1177 again on user request (thanks to Anand Kumria)). Closes: #213129
1178 * No longer providing sample configuration in /etc/quagga/. They are
1179 now only available in /usr/share/doc/quagga/ to avoid accidently
1180 using them without changing the adresses (thanks to Marc Haber).
1181 Closes: #215918
1182
1183 -- Christian Hammers <ch@debian.org> Sun, 16 Nov 2003 16:59:30 +0100
1184
1185quagga (0.96.4x-2) unstable; urgency=low
1186
1187 * Fixed permission problem with pidfile (thanks to Kir Kostuchenko).
1188 Closes: #220938
1189
1190 -- Christian Hammers <ch@debian.org> Sun, 16 Nov 2003 14:24:08 +0100
1191
1192quagga (0.96.4x-1) unstable; urgency=low
1193
1194 * Reupload of 0.96.4. Last upload-in-a-hurry produced a totally
1195 crappy .tar.gz file. Closes: #220621
1196
1197 -- Christian Hammers <ch@debian.org> Fri, 14 Nov 2003 19:45:57 +0100
1198
1199quagga (0.96.4-1) unstable; urgency=high
1200
1201 * SECURITY: Remote DoS of protocol daemons.
1202 Fix for a remote triggerable crash in vty layer. The management
1203 ports ("telnet myrouter ospfd") should not be open to the internet!
1204
1205 * New upstream version.
1206 - OSPF bugfixes.
1207 - Some improvements for bgp and rip.
1208
1209 -- Christian Hammers <ch@debian.org> Thu, 13 Nov 2003 11:52:27 +0100
1210
1211quagga (0.96.3-3) unstable; urgency=low
1212
1213 * Fixed pid file generation by substituting the daemons "-d" by the
1214 start-stop-daemon option "--background" (thanks to Micha Gaisser).
1215 Closes: #218103
1216
1217 -- Christian Hammers <ch@debian.org> Wed, 29 Oct 2003 05:17:49 +0100
1218
1219quagga (0.96.3-2) unstable; urgency=low
1220
1221 * Readded GNOME-PRODUCT-ZEBRA-MIB.
1222
1223 -- Christian Hammers <ch@debian.org> Thu, 23 Oct 2003 06:17:03 +0200
1224
1225quagga (0.96.3-1) unstable; urgency=medium
1226
1227 * New upstream version.
1228 * Removed -u and -e in postrm due to problems with debhelper and userdel
1229 (thanks to Adam Majer and Jaakko Niemi). Closes: #216770
1230 * Removed SNMP MIBs as they are now included in libsnmp-base (thanks to
1231 David Engel and Peter Gervai). Closes: #216138, #216086
1232 * Fixed seq command in init script (thanks to Marc Haber). Closes: #215915
1233 * Improved /proc check (thanks to Marc Haber). Closes: #212331
1234
1235 -- Christian Hammers <ch@debian.org> Thu, 23 Oct 2003 03:42:02 +0200
1236
1237quagga (0.96.2-9) unstable; urgency=medium
1238
1239 * Removed /usr/share/info/dir.* which were accidently there and prevented
1240 the installation by dpkg (thanks to Simon Raven). Closes: #212614
1241 * Reworded package description (thanks to Anand Kumria). Closes: #213125
1242 * Added french debconf translation (thanks to Christian Perrier).
1243 Closes: #212803
1244
1245 -- Christian Hammers <ch@debian.org> Tue, 7 Oct 2003 13:26:58 +0200
1246
1247quagga (0.96.2-8) unstable; urgency=low
1248
1249 * debian/rules now checks if /proc is mounted as ./configure needs
1250 it but just fails with an obscure error message if it is absent.
1251 (Thanks to Norbert Tretkowski). Closes: #212331
1252
1253 -- Christian Hammers <ch@debian.org> Tue, 23 Sep 2003 12:57:38 +0200
1254
1255quagga (0.96.2-7) unstable; urgency=low
1256
1257 * Last build was rejected due to a buggy dpkg-dev version. Rebuild.
1258
1259 -- Christian Hammers <ch@debian.org> Mon, 22 Sep 2003 20:34:12 +0200
1260
1261quagga (0.96.2-6) unstable; urgency=low
1262
1263 * Fixed init script so that is is now possible to just start
1264 the bgpd but not the zebra daemon. Also daemons are now actually
1265 started in the order defined their priority. (Thanks to Thomas Kaehn
1266 and Jochen Friedrich) Closes: #210924
1267
1268 -- Christian Hammers <ch@debian.org> Fri, 19 Sep 2003 21:17:02 +0200
1269
1270quagga (0.96.2-5) unstable; urgency=low
1271
1272 * For using quagga as BGP route server or similar, it is not
1273 wanted to have the zebra daemon running too. For this reason
1274 it can now be disabled in /etc/quagga/daemons, too.
1275 (Thanks to Jochen Friedrich). Closes: #210924
1276 * Attached *unapplied* patch for the ISIS protocol. I did not dare
1277 to apply it as long as upstream does not do it but this way give
1278 users the possibilities to use it if they like to.
1279 (Thanks to Remco van Mook)
1280
1281 -- Christian Hammers <ch@debian.org> Wed, 17 Sep 2003 19:57:31 +0200
1282
1283quagga (0.96.2-4) unstable; urgency=low
1284
1285 * Enabled IPV6 router advertisement feature by default on user request
1286 (thanks to Jochen Friedrich and Hasso Tepper). Closes: #210732
1287 * Updated GNU autoconf to let it build on hppa/parisc64 (thanks to
1288 lamont). Closes: #210492
1289
1290 -- Christian Hammers <ch@debian.org> Sat, 13 Sep 2003 14:11:13 +0200
1291
1292quagga (0.96.2-3) unstable; urgency=medium
1293
1294 * Removed unnecessary "-lcrypto" to avoid dependency against OpenSSL
1295 which would require further copyright addtions.
1296
1297 -- Christian Hammers <ch@debian.org> Wed, 10 Sep 2003 01:37:28 +0200
1298
1299quagga (0.96.2-2) unstable; urgency=low
1300
1301 * Added note that config files of quagga are in /etc/quagga and
1302 not /etc/zebra for the zebra users that migrate to quagga.
1303 (Thanks to Roberto Suarez Soto for the idea)
1304 * Fixed setgid rights in /etc/quagga.
1305
1306 -- Christian Hammers <ch@debian.org> Wed, 27 Aug 2003 14:05:39 +0200
1307
1308quagga (0.96.2-1) unstable; urgency=low
1309
1310 * This package has formally been known as "zebra-pj"!
1311 * New upstream release.
1312 Fixes "anoying OSPF problem".
1313 * Modified group ownerships so that vtysh can now be used by normal
1314 uses if they are in the quaggavty group.
1315
1316 -- Christian Hammers <ch@debian.org> Mon, 25 Aug 2003 23:40:14 +0200
1317
1318quagga (0.96.1-1) unstable; urgency=low
1319
1320 * Zebra-pj, the fork of zebra has been renamed to quagga as the original
1321 upstream author asked the new project membed not to use "zebra" in the
1322 name. zebra-pj is obsolete.
1323
1324 -- Christian Hammers <ch@debian.org> Mon, 18 Aug 2003 23:37:20 +0200
1325
1326zebra-pj (0.94+cvs20030721-1) unstable; urgency=low
1327
1328 * New CVS build.
1329 - OSPF changes (integration of the OSPF API?)
1330 - code cleanups (for ipv6?)
1331 * Tightened Build-Deps to gcc-2.95 as 3.x does not compile a stable ospfd.
1332 This is a known problem and has been discussed on the mailing list.
1333 No other solutions so far.
1334
1335 -- Christian Hammers <ch@debian.org> Mon, 21 Jul 2003 23:52:00 +0200
1336
1337zebra-pj (0.94+cvs20030701-1) unstable; urgency=low
1338
1339 * Initial Release.
1340
1341 -- Christian Hammers <ch@debian.org> Tue, 1 Jul 2003 01:58:06 +0200
FRRouting mirror