]>
Commit | Line | Data |
---|---|---|
eb8309c7 | 1 | frr (2.1) Released; urgency=medium |
d8e4c438 DS |
2 | |
3 | * Switchover to FRR | |
4 | ||
8a2a3732 DS |
5 | -- frr <frr@lists.nox.tf> Mon, 23 Jan 2017 16:30:22 -0400 |
6 | ||
8ceb45dc DS |
7 | quagga (0.99.24+cl3u5) RELEASED; urgency=medium |
8 | ||
9 | * Closes: CM-12846 - Resolve Memory leaks in 'show ip bgp neighbor json' | |
10 | * Closes: CM-5878 - Display all ospf peers with 'show ip ospf neighbor detail all' | |
11 | * Closes: CM-5794 - Add support for IPv6 static to null0 | |
12 | * Closes: CM-13060 - Reduce JSON memory usage. | |
13 | * Closes: CM-10394 - protect 'could not get instance' error messages with debug | |
14 | * Closes: CM-11173 - Move netlink error messages undeer a debug | |
15 | * Closes: CM-13328 - Fixes route missing in hardware after reboot | |
16 | ||
17 | -- dev-support <dev-support@cumulusnetworks.com> Fri, 11 Nov 2016 22:13:29 -0400 | |
18 | ||
e544fa85 DS |
19 | quagga (0.99.24+cl3u4) RELEASED; urgency=medium |
20 | ||
21 | * Closes: CM-12687 - Buffer overflow in zebra RA code | |
22 | ||
23 | -- dev-support <dev-support@cumulusnetworks.com> Wed, 31 Aug 2016 12:36:10 -0400 | |
24 | ||
a79fb1aa | 25 | quagga (0.99.24+cl3u3) RELEASED; urgency=medium |
473b996b DS |
26 | |
27 | * New Enabled: Merge up-to 0.99.24 code from upstream | |
28 | * New Enabled: Additional CLI simplification | |
29 | * New Enabled: Various Bug Fixes | |
30 | ||
a79fb1aa JB |
31 | -- dev-support <dev-support@cumulusnetworks.com> Thu, 04 Aug 2016 08:43:36 -0700 |
32 | ||
33 | quagga (0.99.23.1-1+cl3u2) RELEASED; urgency=medium | |
4d916382 | 34 | |
dc181091 DS |
35 | * New Enabled: VRF - See Documentation for how to use |
36 | * New Enabled: Improved interface statistics | |
37 | * New Enabled: Various vtysh improvements | |
38 | * New Enabled: Numerous compile warnings and SA fixes | |
39 | * New Enabled: Improved priviledge handlingA | |
40 | * New Enabled: Various OSPF CLI fixes | |
41 | * New Enabled: Prefix-list Performance Improvements. | |
42 | * New Enabled: Allow more than 1k peers in Quagga | |
43 | and Performance Improvements | |
44 | * New Enabled: Systemd integration | |
45 | * New Enabled: Various ISIS fixes | |
46 | * New Enabled: BGP MRT improvements | |
47 | * New Enabled: Lowered default MRAI timers | |
48 | * New Enabled: Lowered default 'timers connect' | |
49 | * New Enabled: 'bgp log-neighbor-changes' enabled by default | |
50 | * New Enabled: BGP default keepalive to 3s and holdtime to 9s | |
51 | * New Enabled: OSPF spf timers are now '0 50 5000' by default | |
52 | * New Enabled: BGP hostname is displayed by default | |
53 | * New Enabled: BGP 'no-as-set' is the default for | |
54 | 'bgp as-path multipath-relax" | |
55 | * New Enabled: RA is on by default if using 5549 on an interface | |
56 | * New Enabled: peer-group restrictions relaxed, update-groups determine | |
57 | outbund policy anyway | |
58 | * New Enabled: BGP enabled 'maximum-paths 64' by default | |
59 | * New Enabled: OSPF "log-adjacency-changes" on by default | |
60 | * New Enabled: Zebra: Add IPv6 protocol filtering support | |
61 | * and setting src of IPv6 routes. | |
62 | * New Enabled: BGP and OSPF JSON commands added. | |
63 | * New Enabled: BGP Enable multiple instances support by default | |
64 | * New Enabled: 'banner motd file' command | |
65 | * New Enabled: Remove bad default passwords from default conf | |
66 | * New Enabled: BGP addpath TX | |
67 | * New Enabled: Simplified configuration for BGP Unnumbered | |
4d916382 | 68 | |
dc181091 DS |
69 | * New Deprecated: Remove unused 'show memory XXX' functionality |
70 | * New Deprecated: Remove babel protocol | |
71 | ||
72 | * Closes: CM-10435 Addition on hidden command | |
73 | "bfd multihop/singlehop" and "ptm-enable" per interface command | |
0904161c | 74 | * Closes: CM-9974 Get route counts right for show ip route summary |
0904161c | 75 | * Closes: CM-9786 BGP memory leak in peer hostname |
0904161c | 76 | * Closes: CM-9340 BGP: Ensure correct sequence of processing at exit |
dc181091 DS |
77 | * Closes: CM-9270 ripd: Fix crash when a default route is passed to rip |
78 | * Closes: CM-9255 BGPD crash around bgp_config_write () | |
79 | * Closes: CM-9134 ospf6d: Fix for crash when non area 0 network | |
80 | entered first | |
81 | * Closes: CM-8934 OSPFv3: Check area before scheduling SPF | |
0904161c | 82 | * Closes: CM-8514 zebra: Crash upon disabling a link |
0904161c | 83 | * Closes: CM-8295 BGP crash in group_announce_route_walkcb |
0904161c | 84 | * Closes: CM-8191 BGP: crash in update_subgroup_merge() |
0904161c | 85 | * Closes: CM-8015 lib: Memory reporting fails over 2GB |
0904161c | 86 | * Closes: CM-7926 BGP: crash from not NULLing freed pointers |
0904161c DS |
87 | |
88 | -- dev-support <dev-support@cumulusnetworks.com> Wed, 04 May 2016 16:22:52 -0700 | |
4d916382 DS |
89 | |
90 | quagga (0.99.23.1-1) unstable; urgency=medium | |
91 | ||
92 | * New upstream release | |
93 | * Added .png figures for info files to quagga-doc package. | |
94 | * Changed dependency from iproute to iproute2 (thanks to Andreas | |
95 | Henriksson). Closes: #753736 | |
96 | * Added texlive-fonts-recommended to build-depends to get ecrm1095 font | |
97 | (thanks to Christoph Biedl). Closes: #651545 | |
98 | ||
99 | -- Christian Brunotte <ch@debian.org> Tue, 30 Sep 2014 00:20:12 +0200 | |
100 | ||
101 | quagga (0.99.23-1) unstable; urgency=low | |
102 | ||
103 | * New upstream release | |
104 | * Removed debian/patches/readline-6.3.diff which was already in upstream. | |
105 | ||
106 | -- Christian Hammers <ch@debian.org> Tue, 08 Jul 2014 09:15:48 +0200 | |
107 | ||
108 | quagga (0.99.22.4-4) unstable; urgency=medium | |
109 | ||
110 | * Fix build failure with readline-6.3 (thanks to Matthias Klose). | |
111 | Closes: #741774 | |
112 | ||
113 | -- Christian Hammers <ch@debian.org> Sun, 23 Mar 2014 15:28:42 +0100 | |
114 | ||
115 | quagga (0.99.22.4-3) unstable; urgency=low | |
116 | ||
117 | * Added status to init script (thanks to Peter J. Holzer). Closes: #730625 | |
118 | * Init script now sources /lib/lsb/init-functions. | |
119 | * Switched from hardening-wrapper to dpkg-buildflags. | |
120 | ||
121 | -- Christian Hammers <ch@debian.org> Wed, 01 Jan 2014 19:12:01 +0100 | |
122 | ||
123 | quagga (0.99.22.4-2) unstable; urgency=low | |
124 | ||
125 | * Fixed typo in package description (thanks to Davide Prina). | |
126 | Closes: #625860 | |
127 | * Added Italian Debconf translation (thanks to Beatrice Torracca) | |
128 | Closes: #729798 | |
129 | ||
130 | -- Christian Hammers <ch@debian.org> Tue, 26 Nov 2013 00:47:11 +0100 | |
131 | ||
132 | quagga (0.99.22.4-1) unstable; urgency=high | |
133 | ||
134 | * SECURITY: | |
135 | "ospfd: CVE-2013-2236, stack overrun in apiserver | |
136 | ||
137 | the OSPF API-server (exporting the LSDB and allowing announcement of | |
138 | Opaque-LSAs) writes past the end of fixed on-stack buffers. This leads | |
139 | to an exploitable stack overflow. | |
140 | ||
141 | For this condition to occur, the following two conditions must be true: | |
142 | - Quagga is configured with --enable-opaque-lsa | |
143 | - ospfd is started with the "-a" command line option | |
144 | ||
145 | If either of these does not hold, the relevant code is not executed and | |
146 | the issue does not get triggered." | |
147 | Closes: #726724 | |
148 | ||
149 | * New upstream release | |
150 | - ospfd: protect vs. VU#229804 (malformed Router-LSA) | |
151 | (Quagga is said to be non-vulnerable but still adds some protection) | |
152 | ||
153 | -- Christian Hammers <ch@debian.org> Thu, 24 Oct 2013 22:58:37 +0200 | |
154 | ||
155 | quagga (0.99.22.1-2) unstable; urgency=low | |
156 | ||
157 | * Added autopkgtests (thanks to Yolanda Robla). Closes: #710147 | |
158 | * Added "status" command to init script (thanks to James Andrewartha). | |
159 | Closes: #690013 | |
160 | * Added "libsnmp-dev" to Build-Deps. There not needed for the official | |
161 | builds but for people who compile Quagga themselves to activate the | |
162 | SNMP feature (which for licence reasons cannot be done by Debian). | |
163 | Thanks to Ben Winslow). Closes: #694852 | |
164 | * Changed watchquagga_options to an array so that quotes can finally | |
165 | be used as expected. Closes: #681088 | |
166 | * Fixed bug that prevented restarting only the watchquagga daemon | |
167 | (thanks to Harald Kappe). Closes: #687124 | |
168 | ||
169 | -- Christian Hammers <ch@debian.org> Sat, 27 Jul 2013 16:06:25 +0200 | |
170 | ||
171 | quagga (0.99.22.1-1) unstable; urgency=low | |
172 | ||
173 | * New upstream release | |
174 | - ospfd restore nexthop IP for p2p interfaces | |
175 | - ospfd: fix LSA initialization for build without opaque LSA | |
176 | - ripd: correctly redistribute ifindex routes (BZ#664) | |
177 | - bgpd: fix lost passwords of grouped neighbors | |
178 | * Removed 91_ld_as_needed.diff as it was found in the upstream source. | |
179 | ||
180 | -- Christian Hammers <ch@debian.org> Mon, 22 Apr 2013 22:21:20 +0200 | |
181 | ||
182 | quagga (0.99.22-1) unstable; urgency=low | |
183 | ||
184 | * New upstream release. | |
185 | - [bgpd] The semantics of default-originate route-map have changed. | |
186 | The route-map is now used to advertise the default route conditionally. | |
187 | The old behaviour which allowed to set attributes on the originated | |
188 | default route is no longer supported. | |
189 | - [bgpd] this version of bgpd implements draft-idr-error-handling. This was | |
190 | added in 0.99.21 and may not be desirable. If you need a version | |
191 | without this behaviour, please use 0.99.20.1. There will be a | |
192 | runtime configuration switch for this in future versions. | |
193 | - [isisd] is in "beta" state. | |
194 | - [ospf6d] is in "alpha/experimental" state | |
195 | - More changes are documented in the upstream changelog! | |
196 | * debian/watch: Adjusted to new savannah.gnu.org site, thanks to Bart | |
197 | Martens. | |
198 | * debian/patches/99_CVE-2012-1820_bgp_capability_orf.diff removed as its | |
199 | in the changelog. | |
200 | * debian/patches/99_distribute_list.diff removed as its in the changelog. | |
201 | * debian/patches/10_doc__Makefiles__makeinfo-force.diff removed as it | |
202 | was just for Debian woody. | |
203 | ||
204 | -- Christian Hammers <ch@debian.org> Thu, 14 Feb 2013 00:22:00 +0100 | |
205 | ||
206 | quagga (0.99.21-4) unstable; urgency=medium | |
207 | ||
208 | * Fixed regression bug that caused OSPF "distribute-list" statements to be | |
209 | silently ignored. The patch has already been applied upstream but there | |
210 | has been no new Quagga release since then. | |
211 | Thanks to Hans van Kranenburg for reporting. Closes: #697240 | |
212 | ||
213 | -- Christian Hammers <ch@debian.org> Sun, 06 Jan 2013 15:50:32 +0100 | |
214 | ||
215 | quagga (0.99.21-3) unstable; urgency=high | |
216 | ||
217 | * SECURITY: | |
218 | CVE-2012-1820 - Quagga contained a bug in BGP OPEN message handling. | |
219 | A denial-of-service condition could be caused by an attacker controlling | |
220 | one of the pre-configured BGP peers. In most cases this means, that the | |
221 | attack must be originated from an adjacent network. Closes: #676510 | |
222 | ||
223 | -- Christian Hammers <ch@debian.org> Fri, 08 Jun 2012 01:15:32 +0200 | |
224 | ||
225 | quagga (0.99.21-2) unstable; urgency=low | |
226 | ||
227 | * Renamed babeld.8 to quagga-babeld.8 as it conflicted with the | |
228 | original mapage of the babeld package which users might want to | |
229 | install in parallel as it is slightly more capable. Closes: #671916 | |
230 | ||
231 | -- Christian Hammers <ch@debian.org> Thu, 10 May 2012 07:53:01 +0200 | |
232 | ||
233 | quagga (0.99.21-1) unstable; urgency=low | |
234 | ||
235 | * New upstream release | |
236 | - [bgpd] BGP multipath support has been merged | |
237 | - [bgpd] SAFI (Multicast topology) support has been extended to propagate | |
238 | the topology to zebra. | |
239 | - [bgpd] AS path limit functionality has been removed | |
240 | - [babeld] a new routing daemon implementing the BABEL ad-hoc mesh routing | |
241 | protocol has been merged. | |
242 | - [isisd] a major overhaul has been picked up. Please note that isisd is | |
243 | STILL NOT SUITABLE FOR PRODUCTION USE. | |
244 | - a lot of bugs have been fixed | |
245 | * Added watchquagga daemon. | |
246 | * Added DEP-3 conforming patch comments. | |
247 | ||
248 | -- Christian Hammers <ch@debian.org> Sun, 06 May 2012 15:33:33 +0200 | |
249 | ||
250 | quagga (0.99.20.1-1) unstable; urgency=high | |
251 | ||
252 | * SECURITY: | |
253 | CVE-2012-0249 - Quagga ospfd DoS on malformed LS-Update packet | |
254 | CVE-2012-0250 - Quagga ospfd DoS on malformed Network-LSA data | |
255 | CVE-2012-0255 - Quagga bgpd DoS on malformed OPEN message | |
256 | * New upstream release. Closes: #664033 | |
257 | ||
258 | -- Christian Hammers <ch@debian.org> Fri, 16 Mar 2012 22:14:05 +0100 | |
259 | ||
260 | quagga (0.99.20-4) unstable; urgency=low | |
261 | ||
262 | * Switch to dpkg-source 3.0 (quilt) format. | |
263 | * Switch to changelog-format-1.0. | |
264 | ||
265 | -- Christian Hammers <ch@debian.org> Sat, 25 Feb 2012 18:52:06 +0100 | |
266 | ||
267 | quagga (0.99.20-3) unstable; urgency=low | |
268 | ||
269 | * Added --sysconfdir back to the configure options (thanks to Sven-Haegar | |
270 | Koch). Closes: #645649 | |
271 | ||
272 | -- Christian Hammers <ch@debian.org> Tue, 18 Oct 2011 00:24:37 +0200 | |
273 | ||
274 | quagga (0.99.20-2) unstable; urgency=low | |
275 | ||
276 | * Bumped standards version to 0.9.2. | |
277 | * Migrated to "dh" build system. | |
278 | * Added quagga-dbg package. | |
279 | ||
280 | -- Christian Hammers <ch@debian.org> Fri, 14 Oct 2011 23:59:26 +0200 | |
281 | ||
282 | quagga (0.99.20-1) unstable; urgency=low | |
283 | ||
284 | * New upstream release: | |
285 | "The primary focus of this release is a fix of SEGV regression in ospfd, | |
286 | which was introduced in 0.99.19. It also features a series of minor | |
287 | improvements, including better RFC compliance in bgpd, better support | |
288 | of FreeBSD and some enhancements to isisd." | |
289 | * Fixes off-by-one bug (removed 20_ospf6_area_argv.dpatch). Closes: #519488 | |
290 | ||
291 | -- Christian Hammers <ch@debian.org> Fri, 30 Sep 2011 00:59:24 +0200 | |
292 | ||
293 | quagga (0.99.19-1) unstable; urgency=high | |
294 | ||
295 | * SECURITY: | |
296 | "This release provides security fixes, which address assorted | |
297 | vulnerabilities in bgpd, ospfd and ospf6d (CVE-2011-3323, | |
298 | CVE-2011-3324, CVE-2011-3325, CVE-2011-3326 and CVE-2011-3327). | |
299 | * New upstream release. | |
300 | * Removed incorporated debian/patches/92_opaque_lsa_enable.dpatch. | |
301 | * Removed incorporated debian/patches/93_opaque_lsa_fix.dpatch. | |
302 | * Removed obsolete debian/README.Debian.Woody and README.Debian.MD5. | |
303 | ||
304 | -- Christian Hammers <ch@debian.org> Tue, 27 Sep 2011 00:16:27 +0200 | |
305 | ||
306 | quagga (0.99.18-1) unstable; urgency=low | |
307 | ||
308 | * SECURITY: | |
309 | "This release fixes 2 denial of services in bgpd, which can be remotely | |
310 | triggered by malformed AS-Pathlimit or Extended-Community attributes. | |
311 | These issues have been assigned CVE-2010-1674 and CVE-2010-1675. | |
312 | Support for AS-Pathlimit has been removed with this release." | |
313 | * Added Brazilian Portuguese debconf translation. Closes: #617735 | |
314 | * Changed section for quagga-doc from "doc" to "net". | |
315 | * Added patch to fix FTBFS with latest GCC. Closes: #614459 | |
316 | ||
317 | -- Christian Hammers <ch@debian.org> Tue, 22 Mar 2011 23:13:34 +0100 | |
318 | ||
319 | quagga (0.99.17-4) unstable; urgency=low | |
320 | ||
321 | * Added comment to init script (thanks to Marc Haber). Closes: #599524 | |
322 | ||
323 | -- Christian Hammers <ch@debian.org> Thu, 13 Jan 2011 23:53:29 +0100 | |
324 | ||
325 | quagga (0.99.17-3) unstable; urgency=low | |
326 | ||
327 | * Fix FTBFS with ld --as-needed (thanks to Matthias Klose at Ubuntu). | |
328 | Closes: #609555 | |
329 | ||
330 | -- Christian Hammers <ch@debian.org> Thu, 13 Jan 2011 23:27:06 +0100 | |
331 | ||
332 | quagga (0.99.17-2) unstable; urgency=low | |
333 | ||
334 | * Added Danisch Debconf translation (thanks to Joe Dalton). Closes: #596259 | |
335 | ||
336 | -- Christian Hammers <ch@debian.org> Sat, 18 Sep 2010 12:20:07 +0200 | |
337 | ||
338 | quagga (0.99.17-1) unstable; urgency=high | |
339 | ||
340 | * SECURITY: | |
341 | "This release provides two important bugfixes, which address remote crash | |
342 | possibility in bgpd discovered by CROSS team.": | |
343 | 1. Stack buffer overflow by processing certain Route-Refresh messages | |
344 | CVE-2010-2948 | |
345 | 2. DoS (crash) while processing certain BGP update AS path messages | |
346 | CVE-2010-2949 | |
347 | Closes: #594262 | |
348 | ||
349 | -- Christian Hammers <ch@debian.org> Wed, 25 Aug 2010 00:52:48 +0200 | |
350 | ||
351 | quagga (0.99.16-1) unstable; urgency=low | |
352 | ||
353 | * New upstream release. Closes: #574527 | |
354 | * Added chrpath to debian/rules to fix rpath problems that lintian spottet. | |
355 | ||
356 | -- Christian Hammers <ch@debian.org> Sun, 21 Mar 2010 17:05:40 +0100 | |
357 | ||
358 | quagga (0.99.15-2) unstable; urgency=low | |
359 | ||
360 | * Applied patch for off-by-one bug in ospf6d that caused a segmentation | |
361 | fault when using the "area a.b.c.d filter-list prefix" command (thanks | |
362 | to Steinar H. Gunderson). Closes: 519488 | |
363 | ||
364 | -- Christian Hammers <ch@debian.org> Sun, 14 Feb 2010 20:02:03 +0100 | |
365 | ||
366 | quagga (0.99.15-1) unstable; urgency=low | |
367 | ||
368 | * New upstream release | |
369 | "This fixes some annoying little ospfd and ospf6d regressions, which made | |
370 | 0.99.14 a bit of a problem release (...) This release still contains a | |
371 | regression in the "no ip address ..." command, at least on Linux. | |
372 | See bug #486, which contains a workaround patch. This release should be | |
373 | considered a 1.0.0 release candidate. Please test this release as widely | |
374 | as possible." | |
375 | * Fixed wrong port number in zebra.8 (thanks to Thijs Kinkhorst). | |
376 | Closes: #517860 | |
377 | * Added Russian Debconf tanslation (thanks to Yuri Kozlov). | |
378 | Closes: #539464 | |
379 | * Removed so-version in build-dep to libreadline-dev on request of | |
380 | Matthias Klose. | |
381 | * Added README.source with reference to dpatch as suggested by lintian. | |
382 | * Bumped standards versionto 3.8.3. | |
383 | ||
384 | -- Christian Hammers <ch@debian.org> Sun, 13 Sep 2009 18:12:06 +0200 | |
385 | ||
386 | quagga (0.99.14-1) unstable; urgency=low | |
387 | ||
388 | * New upstream release | |
389 | "This release contains a regression fix for ospf6d, various small fixes | |
390 | and some hopefully very significant bgpd stability fixes. | |
391 | This release should be considered a 1.0.0 release candidate. Please test | |
392 | this release as widely as possible." | |
393 | * Fixes bug with premature LSA aging in ospf6d. Closes: #535030 | |
394 | * Fixes section number in zebra.8 manpage. Closes: #517860 | |
395 | ||
396 | -- Christian Hammers <ch@debian.org> Sat, 25 Jul 2009 00:40:38 +0200 | |
397 | ||
398 | quagga (0.99.13-2) unstable; urgency=low | |
399 | ||
400 | * Added Japanese Debconf translation (thanks to Hideki Yamane). | |
401 | Closes: #510714 | |
402 | * When checking for obsoleted config options in preinst, print filename | |
403 | where it occures (thanks to Michael Bussmann). Closes: #339489 | |
404 | ||
405 | -- Christian Hammers <ch@debian.org> Sun, 19 Jul 2009 17:13:23 +0200 | |
406 | ||
407 | quagga (0.99.13-1) unstable; urgency=low | |
408 | ||
409 | * New upstream release | |
410 | "This release is contains a number of small fixes, for potentially | |
411 | irritating issues, as well as small enhancements to vtysh and support | |
412 | for linking to PCRE (a much faster regex library)." | |
413 | * Added build-dep to gawk as configure required it for memtypes.awk | |
414 | * Replaced build-dep to gs-gpl with ghostscript as requested by lintian | |
415 | * Minor changes to copyright and control files to make lintian happy. | |
416 | ||
417 | -- Christian Hammers <ch@debian.org> Wed, 24 Jun 2009 17:53:28 +0200 | |
418 | ||
419 | quagga (0.99.12-1) unstable; urgency=high | |
420 | ||
421 | * New upstream release | |
422 | "This release fixes an urgent bug in bgpd where it could hit an assert | |
423 | if it received a long AS_PATH with a 4-byte ASN." Noteworthy bugfixes: | |
424 | + [bgpd] Fix bgp ipv4/ipv6 accept handling | |
425 | + [bgpd] AS4 bugfix by Chris Caputo | |
426 | + [bgpd] Allow accepted peers to progress even if realpeer is in Connect | |
427 | + [ospfd] Switch Fletcher checksum back to old ospfd version | |
428 | ||
429 | -- Christian Hammers <ch@debian.org> Mon, 22 Jun 2009 00:16:33 +0200 | |
430 | ||
431 | quagga (0.99.11-1) unstable; urgency=low | |
432 | ||
433 | * New upstream release | |
434 | "Most regressions in 0.99 over 0.98 are now believed to be fixed. This | |
435 | release should be considered a release-candidate for a new stable series." | |
436 | + bgpd: Preliminary UI and Linux-IPv4 support for TCP-MD5 merged | |
437 | + zebra: ignore dead routes in RIB update | |
438 | + [ospfd] Default route needs to be refreshed after neighbour state change | |
439 | + [zebra:netlink] Set proto/scope on all route update messages | |
440 | * Removed debian/patches/20_*bgp*md5*.dpatch due to upstream support. | |
441 | ||
442 | -- Christian Hammers <ch@debian.org> Thu, 09 Oct 2008 22:56:38 +0200 | |
443 | ||
444 | quagga (0.99.10-1) unstable; urgency=medium | |
445 | ||
446 | * New upstream release | |
447 | + bgpd: 4-Byte AS Number support | |
448 | + Sessions were incorrectly reset if a partial AS-Pathlimit attribute | |
449 | was received. | |
450 | + Advertisement of Multi-Protocol prefixes (i.e. non-IPv4) had been | |
451 | broken in the 0.99.9 release. Closes: #467656 | |
452 | ||
453 | -- Christian Hammers <ch@debian.org> Tue, 08 Jul 2008 23:32:42 +0200 | |
454 | ||
455 | quagga (0.99.9-6) unstable; urgency=low | |
456 | ||
457 | * Fixed FTBFS by adding a build-dep to libpcre3-dev (thanks to Luk Claes). | |
458 | Closes: #469891 | |
459 | ||
460 | -- Christian Hammers <ch@debian.org> Sat, 12 Apr 2008 12:53:51 +0200 | |
461 | ||
462 | quagga (0.99.9-5) unstable; urgency=low | |
463 | ||
464 | * C.J. Adams-Collier and Paul Jakma suggested to build against libpcre3 | |
465 | which is supposed to be faster. | |
466 | ||
467 | -- Christian Hammers <ch@debian.org> Sun, 02 Mar 2008 13:19:42 +0100 | |
468 | ||
469 | quagga (0.99.9-4) unstable; urgency=low | |
470 | ||
471 | * Added hardening-wrapper to the build-deps (thanks to Moritz Muehlenhoff). | |
472 | ||
473 | -- Christian Hammers <ch@debian.org> Tue, 29 Jan 2008 22:33:56 +0100 | |
474 | ||
475 | quagga (0.99.9-3) unstable; urgency=low | |
476 | ||
477 | * Replaced the BGP patch by a new one so that the package builds again | |
478 | with kernels above 2.6.21! | |
479 | * debian/control: | |
480 | + Moved quagga-doc to section doc to make lintian happy. | |
481 | * Added Spanish debconf translation (thanks to Carlos Galisteo de Cabo). | |
482 | Closes: #428574 | |
483 | * debian/control: (thanks to Marco Rodrigues) | |
484 | + Bump Standards-Version to 3.7.3 (no changes needed). | |
485 | + Add Homepage field. | |
486 | ||
487 | -- Christian Hammers <ch@debian.org> Mon, 28 Jan 2008 22:29:18 +0100 | |
488 | ||
489 | quagga (0.99.9-2.1) unstable; urgency=low | |
490 | ||
491 | * Non-maintainer upload. | |
492 | * debian/rules: fixed bashisms. (Closes: #459122) | |
493 | ||
494 | -- Miguel Angel Ruiz Manzano <debianized@gmail.com> Tue, 22 Jan 2008 14:37:21 -0300 | |
495 | ||
496 | quagga (0.99.9-2) unstable; urgency=low | |
497 | ||
498 | * Added CVE id for the security bug to the last changelog entry. | |
499 | Closes: 442133 | |
500 | ||
501 | -- Christian Hammers <ch@debian.org> Tue, 25 Sep 2007 22:01:31 +0200 | |
502 | ||
503 | quagga (0.99.9-1) unstable; urgency=high | |
504 | ||
505 | * SECURITY: | |
506 | "This release fixes two potential DoS conditions in bgpd, reported by Mu | |
507 | Security, where a bgpd could be crashed if a peer sent a malformed OPEN | |
508 | message or a malformed COMMUNITY attribute. Only configured peers can do | |
509 | this, hence we consider these issues to be very low impact." CVE-2007-4826 | |
510 | ||
511 | -- Christian Hammers <ch@debian.org> Wed, 12 Sep 2007 21:12:41 +0200 | |
512 | ||
513 | quagga (0.99.8-1) unstable; urgency=low | |
514 | ||
515 | * New upstream version. | |
516 | ||
517 | -- Christian Hammers <ch@debian.org> Fri, 17 Aug 2007 00:07:04 +0200 | |
518 | ||
519 | quagga (0.99.7-3) unstable; urgency=medium | |
520 | ||
521 | * Applied patch for FTBFS with linux-libc-dev (thanks to Andrew J. Schorr | |
522 | and Lucas Nussbaum). Closes: #429003 | |
523 | ||
524 | -- Christian Hammers <ch@debian.org> Fri, 22 Jun 2007 21:34:55 +0200 | |
525 | ||
526 | quagga (0.99.7-2) unstable; urgency=low | |
527 | ||
528 | * Added Florian Weimar as co-maintainer. Closes: 421977 | |
529 | * Added Dutch debconf translation (thanks to Bart Cornelis). | |
530 | Closes: #420932 | |
531 | * Added Portuguese debconf translation (thanks to Rui Branco). | |
532 | Closes: #421185 | |
533 | * Improved package description (thanks to Reuben Thomas). | |
534 | Closes: #418933 | |
535 | * Added CVE Id to 0.99.6-5 changelog entry. | |
536 | ||
537 | -- Christian Hammers <ch@debian.org> Wed, 02 May 2007 20:27:12 +0200 | |
538 | ||
539 | quagga (0.99.7-1) unstable; urgency=low | |
540 | ||
541 | * New upstream release. Closes: #421553 | |
542 | ||
543 | -- Christian Hammers <ch@debian.org> Mon, 30 Apr 2007 14:22:34 +0200 | |
544 | ||
545 | quagga (0.99.6-6) unstable; urgency=medium | |
546 | ||
547 | * Fixes FTBFS with tetex-live. Closes: #420468 | |
548 | ||
549 | -- Christian Hammers <ch@debian.org> Mon, 23 Apr 2007 21:34:13 +0200 | |
550 | ||
551 | quagga (0.99.6-5) unstable; urgency=high | |
552 | ||
553 | * SECURITY: | |
554 | The bgpd daemon was vulnerable to a Denial-of-Service. Configured peers | |
555 | could cause a Quagga bgpd to, typically, assert() and abort. The DoS | |
556 | could be triggered by peers by sending an UPDATE message with a crafted, | |
557 | malformed Multi-Protocol reachable/unreachable NLRI attribute. | |
558 | This is CVE-2007-1995 and Quagga Bug#354. Closes: #418323 | |
559 | ||
560 | -- Christian Hammers <ch@debian.org> Thu, 12 Apr 2007 23:21:58 +0200 | |
561 | ||
562 | quagga (0.99.6-4) unstable; urgency=low | |
563 | ||
564 | * Improved note in README.Debian for SNMP self-builders (thanks to Matthias | |
565 | Wamser). Closes: #414788 | |
566 | ||
567 | -- Christian Hammers <ch@debian.org> Wed, 14 Mar 2007 02:18:57 +0100 | |
568 | ||
569 | quagga (0.99.6-3) unstable; urgency=low | |
570 | ||
571 | * Updated German Debconf translation (thanks to Matthias Julius). | |
572 | Closes: #409327 | |
573 | ||
574 | -- Christian Hammers <ch@debian.org> Sat, 10 Feb 2007 15:06:16 +0100 | |
575 | ||
576 | quagga (0.99.6-2) unstable; urgency=low | |
577 | ||
578 | * Updated config.guess/config.sub as suggested by lintian. | |
579 | * Corrected README.Debian text regarding the WANT_SNMP flag. | |
580 | ||
581 | -- Christian Hammers <ch@debian.org> Sun, 17 Dec 2006 01:45:37 +0100 | |
582 | ||
583 | quagga (0.99.6-1) unstable; urgency=low | |
584 | ||
585 | * New upstream release. Closes: #402361 | |
586 | ||
587 | -- Christian Hammers <ch@debian.org> Mon, 11 Dec 2006 00:28:09 +0100 | |
588 | ||
589 | quagga (0.99.5-5) unstable; urgency=high | |
590 | ||
591 | * Changed Depends on adduser to Pre-Depends to avoid uninstallability | |
592 | in certain cases (thanks to Steve Langasek, Lucas Nussbaum). | |
593 | Closes: #398562 | |
594 | ||
595 | -- Christian Hammers <ch@debian.org> Wed, 15 Nov 2006 17:46:34 +0100 | |
596 | ||
597 | quagga (0.99.5-4) unstable; urgency=low | |
598 | ||
599 | * Added default PAM file and some explanations regarding PAM authentication | |
600 | of vtysh which could prevent the start at boot-time when used wrong. | |
601 | Now PAM permits anybody to access the vtysh tool (a malicious user could | |
602 | build his own vtysh without PAM anyway) and the access is controled by | |
603 | the read/write permissions of the vtysh socket which are only granted to | |
604 | users belonging to the quaggavty group (thanks to Wakko Warner). | |
605 | Closes: #389496 | |
606 | * Added "case" to prerm script so that the Debconf question is not called a | |
607 | second time in e.g. "new-prerm abort-upgrade" after being NACKed in the | |
608 | old-prerm. | |
609 | ||
610 | -- Christian Hammers <ch@debian.org> Fri, 3 Nov 2006 01:22:15 +0100 | |
611 | ||
612 | quagga (0.99.5-3) unstable; urgency=medium | |
613 | ||
614 | * Backport CVS fix for an OSPF DD Exchange regression (thanks to Matt | |
615 | Brown). Closes: #391040 | |
616 | ||
617 | -- Christian Hammers <ch@debian.org> Wed, 25 Oct 2006 19:47:11 +0200 | |
618 | ||
619 | quagga (0.99.5-2) unstable; urgency=medium | |
620 | ||
621 | * Added LSB info section to initscript. | |
622 | * Removed unnecessary depends to libncurses5 to make checklib happy. | |
623 | The one to libcap should remain though as it is just temporarily | |
624 | unused. | |
625 | ||
626 | -- Christian Hammers <ch@debian.org> Thu, 21 Sep 2006 00:04:07 +0200 | |
627 | ||
628 | quagga (0.99.5-1) unstable; urgency=low | |
629 | ||
630 | * New upstream release. Closes: #38704 | |
631 | * Upstream fixes ospfd documentary inconsistency. Closes: #347897 | |
632 | * Changed debconf question in prerm to "high" (thanks to Rafal Pietrak). | |
633 | ||
634 | -- Christian Hammers <ch@debian.org> Mon, 11 Sep 2006 23:43:42 +0200 | |
635 | ||
636 | quagga (0.99.4-4) unstable; urgency=low | |
637 | ||
638 | * Recreate /var/run if not present because /var is e.g. on a tmpfs | |
639 | filesystem (thanks to Martin Pitt). Closes: #376142 | |
640 | * Removed nonexistant option from ospfd.8 manpage (thanks to | |
641 | David Medberry). Closes: 378274 | |
642 | ||
643 | -- Christian Hammers <ch@debian.org> Sat, 15 Jul 2006 20:22:12 +0200 | |
644 | ||
645 | quagga (0.99.4-3) unstable; urgency=low | |
646 | ||
647 | * Removed invalid semicolon from rules file (thanks to Philippe Gramoulle). | |
648 | ||
649 | -- Christian Hammers <ch@debian.org> Tue, 27 Jun 2006 23:36:07 +0200 | |
650 | ||
651 | quagga (0.99.4-2) unstable; urgency=high | |
652 | ||
653 | * Set urgency to high as 0.99.4-1 fixes a security problem! | |
654 | * Fixed building of the info file. | |
655 | ||
656 | -- Christian Hammers <ch@debian.org> Sun, 14 May 2006 23:04:28 +0200 | |
657 | ||
658 | quagga (0.99.4-1) unstable; urgency=low | |
659 | ||
660 | * New upstream release to fix a security problem in the telnet interface | |
661 | of the BGP daemon which could be used for DoS attacks (CVE-2006-2276). | |
662 | Closes: 366980 | |
663 | ||
664 | -- Christian Hammers <ch@debian.org> Sat, 13 May 2006 19:54:40 +0200 | |
665 | ||
666 | quagga (0.99.3-3) unstable; urgency=low | |
667 | ||
668 | * Added CVE numbers for the security patch in 0.99.3-2. | |
669 | ||
670 | -- Christian Hammers <ch@debian.org> Sat, 6 May 2006 17:14:22 +0200 | |
671 | ||
672 | quagga (0.99.3-2) unstable; urgency=high | |
673 | ||
674 | * SECURITY: | |
675 | Added security bugfix patch from upstream BTS for security problem | |
676 | that could lead to injected routes when using RIPv1. | |
677 | CVE-2006-2223 - missing configuration to disable RIPv1 or require | |
678 | plaintext or MD5 authentication | |
679 | CVE-2006-2224 - lack of enforcement of RIPv2 authentication requirements | |
680 | Closes: #365940 | |
681 | * First amd64 upload. | |
682 | ||
683 | -- Christian Hammers <ch@debian.org> Thu, 4 May 2006 00:22:09 +0200 | |
684 | ||
685 | quagga (0.99.3-1) unstable; urgency=low | |
686 | ||
687 | * New upstream release | |
688 | ||
689 | -- Christian Hammers <ch@debian.org> Wed, 25 Jan 2006 13:37:27 +0100 | |
690 | ||
691 | quagga (0.99.2-1) unstable; urgency=low | |
692 | ||
693 | * New upstream release | |
694 | Closes: #330248, #175553 | |
695 | ||
696 | -- Christian Hammers <ch@debian.org> Wed, 16 Nov 2005 00:25:52 +0100 | |
697 | ||
698 | quagga (0.99.1-7) unstable; urgency=low | |
699 | ||
700 | * Changed debian/rules check for mounted /proc directory to check | |
701 | for /proc/1 as not all systems (e.g. 2.6 arm kernels) have | |
702 | /proc/kcore which is a optional feature only (thanks to Lennert | |
703 | Buytenhek). Closes: #335695 | |
704 | * Added Swedish Debconf translation (thanks to Daniel Nylander). | |
705 | Closes: #331367 | |
706 | ||
707 | -- Christian Hammers <ch@debian.org> Thu, 27 Oct 2005 20:53:19 +0200 | |
708 | ||
709 | quagga (0.99.1-6) unstable; urgency=low | |
710 | ||
711 | * Fixed debconf dependency as requested by Joey Hess. | |
712 | ||
713 | -- Christian Hammers <ch@debian.org> Mon, 26 Sep 2005 20:47:35 +0200 | |
714 | ||
715 | quagga (0.99.1-5) unstable; urgency=low | |
716 | ||
717 | * Rebuild with libreadline5-dev as build-dep as requested by | |
718 | Matthias Klose. Closes: #326306 | |
719 | * Made initscript more fault tolerant against missing lines in | |
720 | /etc/quagga/daemons (thanks to Ralf Hildebrandt). Closes: #323774 | |
721 | * Added dependency to adduser. | |
722 | ||
723 | -- Christian Hammers <ch@debian.org> Tue, 13 Sep 2005 21:42:17 +0200 | |
724 | ||
725 | quagga (0.99.1-4) unstable; urgency=low | |
726 | ||
727 | * Added French Debconf translation (thanks to Mohammed Adnene Trojette). | |
728 | Closes: #319324 | |
729 | * Added Czech Debconf translation (thanks to Miroslav Kure). | |
730 | Closes: #318127 | |
731 | ||
732 | -- Christian Hammers <ch@debian.org> Sun, 31 Jul 2005 04:19:41 +0200 | |
733 | ||
734 | quagga (0.99.1-3) unstable; urgency=low | |
735 | ||
736 | * A Debconf question now asks the admin before upgrading if the daemon | |
737 | should really be stopped as this could lead to the loss of network | |
738 | connectivity or BGP flaps (thanks to Michael Horn and Achilleas Kotsis). | |
739 | Also added a hint about setting Quagga "on hold" to README.Debian. | |
740 | Closes: #315467 | |
741 | * Added patch to build on Linux/ARM. | |
742 | ||
743 | -- Christian Hammers <ch@debian.org> Sun, 10 Jul 2005 22:19:38 +0200 | |
744 | ||
745 | quagga (0.99.1-2) unstable; urgency=low | |
746 | ||
747 | * Fixed SNMP enabled command in debian/rules (thanks to Christoph Kluenter). | |
748 | Closes: #306840 | |
749 | ||
750 | -- Christian Hammers <ch@debian.org> Sat, 4 Jun 2005 14:04:01 +0200 | |
751 | ||
752 | quagga (0.99.1-1) unstable; urgency=low | |
753 | ||
754 | * New upstream version. Among others: | |
755 | - BGP graceful restart and "match ip route-source" added | |
756 | - support for interface renaming | |
757 | - improved threading for better responsivness under load | |
758 | * Switched to dpatch to make diffs cleaner. | |
759 | * Made autoreconf unnecessary. | |
760 | * Replaced quagga.dvi and quagga.ps by quagga.pdf in quagga-doc. | |
761 | (the PostScript would have needed Makefile corrections and PDF | |
762 | is more preferable anyway) | |
763 | * Added isisd to the list of daemons in /etc/init.d/quagga (thanks | |
764 | to Ernesto Elbe). | |
765 | * Added hint for "netlink-listen: overrun" messages (thanks to | |
766 | Hasso Tepper). | |
767 | * Added preinst check that bails out if old smux options are in use | |
768 | as Quagga would not start up else anyway (thanks to Bjorn Mork). | |
769 | Closes: #308320 | |
770 | ||
771 | -- Christian Hammers <ch@debian.org> Fri, 13 May 2005 01:18:24 +0200 | |
772 | ||
773 | quagga (0.98.3-7) unstable; urgency=high | |
774 | ||
775 | * Removed SNMP support as linking against NetSNMP introduced a dependency | |
776 | to OpenSSL which is not compatible to the GPL which governs this | |
777 | application (thanks to Faidon Liambotis). See README.Debian for more | |
778 | information. Closes: #306840 | |
779 | * Changed listening address of ospf6d and ripngd from 127.0.0.1 to "::1". | |
780 | * Added build-dep to groff to let drafz-zebra-00.txt build correctly. | |
781 | ||
782 | -- Christian Hammers <ch@debian.org> Wed, 4 May 2005 20:08:14 +0200 | |
783 | ||
784 | quagga (0.98.3-6) testing-proposed-updates; urgency=high | |
785 | ||
786 | * Removed "Recommends kernel-image-2.4" as aptitude then | |
787 | installes a kernel-image for an arbitrary architecture as long | |
788 | as it fullfill that recommendation which can obviously fatal | |
789 | at the next reboot :) Also it is a violation of the policy | |
790 | which mandates a reference to real packages (thanks to Holger Levsen). | |
791 | Closes: #307281 | |
792 | ||
793 | -- Christian Hammers <ch@debian.org> Tue, 3 May 2005 22:53:39 +0200 | |
794 | ||
795 | quagga (0.98.3-5) unstable; urgency=high | |
796 | ||
797 | * The patch which tried to remove the OpenSSL dependency, which is | |
798 | not only unneccessary but also a violation of the licence and thus RC, | |
799 | stopped working a while ago, since autoreconf is no longer run before | |
800 | building the binaries. So now ./configure is patched directly (thanks | |
801 | to Faidon Liambotis for reporting). Closes: #306840 | |
802 | * Raised Debhelper compatibility level from 3 to 4. Nothing changed. | |
803 | * Added build-dep to texinfo (>= 4.7) to ease work for www.backports.org. | |
804 | ||
805 | -- Christian Hammers <ch@debian.org> Fri, 29 Apr 2005 02:31:03 +0200 | |
806 | ||
807 | quagga (0.98.3-4) unstable; urgency=low | |
808 | ||
809 | * Removed Debconf upgrade note as it was considered a Debconf abuse | |
810 | and apart from that so obvious that it was not even worth to be | |
811 | put into NEWS.Debian (thanks to Steve Langasek). Closes: #306384 | |
812 | ||
813 | -- Christian Hammers <ch@debian.org> Wed, 27 Apr 2005 00:10:24 +0200 | |
814 | ||
815 | quagga (0.98.3-3) unstable; urgency=medium | |
816 | ||
817 | * Adding the debconf module due to a lintian suggestion is a very | |
818 | bad idea if no db_stop is called as the script hangs then (thanks | |
819 | to Tore Anderson for reporting). Closes: #306324 | |
820 | ||
821 | -- Christian Hammers <ch@debian.org> Mon, 25 Apr 2005 21:55:58 +0200 | |
822 | ||
823 | quagga (0.98.3-2) unstable; urgency=low | |
824 | ||
825 | * Added debconf confmodule to postinst as lintian suggested. | |
826 | ||
827 | -- Christian Hammers <ch@debian.org> Sun, 24 Apr 2005 13:16:00 +0200 | |
828 | ||
829 | quagga (0.98.3-1) unstable; urgency=low | |
830 | ||
831 | * New upstream release. | |
832 | Mmost notably fixes last regression in bgpd (reannounce of prefixes | |
833 | with changed attributes works again), race condition in netlink | |
834 | handling while using IPv6, MTU changes handling in ospfd and several | |
835 | crashes in ospfd, bgpd and ospf6d. | |
836 | ||
837 | -- Christian Hammers <ch@debian.org> Mon, 4 Apr 2005 12:51:24 +0200 | |
838 | ||
839 | quagga (0.98.2-2) unstable; urgency=low | |
840 | ||
841 | * Added patch to let Quagga compile with gcc-4.0 (thanks to | |
842 | Andreas Jochens). Closes: #300949 | |
843 | ||
844 | -- Christian Hammers <ch@debian.org> Fri, 25 Mar 2005 19:33:30 +0100 | |
845 | ||
846 | quagga (0.98.2-1) unstable; urgency=medium | |
847 | ||
848 | * Quoting the upstream announcement: | |
849 | The 0.98.1 release unfortunately was a brown paper bag release with | |
850 | respect to ospfd. [...] 0.98.2 has been released, with one crucial change | |
851 | to fix the unfortunate mistake in 0.98.1, which caused problems if | |
852 | ospfd became DR. | |
853 | * Note: the upstream tarball had a strange problem, apparently redhat.spec | |
854 | was twice in it? At least debuild gave a strange error message so I | |
855 | unpacked it by hand. No changes were made to the .orig.tar.gz! | |
856 | ||
857 | -- Christian Hammers <ch@debian.org> Fri, 4 Feb 2005 01:31:36 +0100 | |
858 | ||
859 | quagga (0.98.1-1) unstable; urgency=medium | |
860 | ||
861 | * New upstream version | |
862 | "fixing a fatal OSPF + MD5 auth regression, and a non-fatal high-load | |
863 | regression in bgpd which were present in the 0.98.0 release." | |
864 | * Upstream version fixes bug in ospfd that could lead to crash when OSPF | |
865 | packages had a MTU > 1500. Closes: #290566 | |
866 | * Added notice regarding capability kernel support to README.Debian | |
867 | (thanks to Florian Weimer). Closes: #291509 | |
868 | * Changed permission setting in postinst script (thanks to Bastian Blank). | |
869 | Closes: #292690 | |
870 | ||
871 | -- Christian Hammers <ch@debian.org> Tue, 1 Feb 2005 02:01:27 +0100 | |
872 | ||
873 | quagga (0.98.0-3) unstable; urgency=low | |
874 | ||
875 | * Fixed problem in init script. Closes: #290317 | |
876 | * Removed obsolete "smux peer enable" patch. | |
877 | ||
878 | -- Christian Hammers <ch@debian.org> Fri, 14 Jan 2005 17:37:27 +0100 | |
879 | ||
880 | quagga (0.98.0-2) unstable; urgency=low | |
881 | ||
882 | * Updated broken TCP MD5 patch for BGP (thanks to John P. Looney | |
883 | for telling me). | |
884 | ||
885 | -- Christian Hammers <ch@debian.org> Thu, 13 Jan 2005 02:03:54 +0100 | |
886 | ||
887 | quagga (0.98.0-1) unstable; urgency=low | |
888 | ||
889 | * New upstream release | |
890 | * Added kernel-image-2.6 as alternative to 2.4 to the recommends | |
891 | (thanks to Faidon Liambotis). Closes: #289530 | |
892 | ||
893 | -- Christian Hammers <ch@debian.org> Mon, 10 Jan 2005 19:36:17 +0100 | |
894 | ||
895 | quagga (0.97.5-1) unstable; urgency=low | |
896 | ||
897 | * New upstream version. | |
898 | * Added Czech debconf translation (thanks to Miroslav Kure). | |
899 | Closes: #287293 | |
900 | * Added Brazilian debconf translation (thanks to Andre Luis Lopes). | |
901 | Closes: #279352 | |
902 | ||
903 | -- Christian Hammers <ch@debian.org> Wed, 5 Jan 2005 23:49:57 +0100 | |
904 | ||
905 | quagga (0.97.4-2) unstable; urgency=low | |
906 | ||
907 | * Fixed quagga.info build problem. | |
908 | ||
909 | -- Christian Hammers <ch@debian.org> Wed, 5 Jan 2005 22:38:01 +0100 | |
910 | ||
911 | quagga (0.97.4-1) unstable; urgency=low | |
912 | ||
913 | * New upstream release. | |
914 | ||
915 | -- Christian Hammers <ch@debian.org> Tue, 4 Jan 2005 01:45:22 +0100 | |
916 | ||
917 | quagga (0.97.3-2) unstable; urgency=low | |
918 | ||
919 | * Included isisd in the daemon list. | |
920 | * Wrote an isisd manpage. | |
921 | * It is now ensured that zebra is always the last daemon to be stopped. | |
922 | * (Thanks to Hasso Tepper for mailing me a long list of suggestions | |
923 | which lead to this release) | |
924 | ||
925 | -- Christian Hammers <ch@debian.org> Sat, 18 Dec 2004 13:14:55 +0100 | |
926 | ||
927 | quagga (0.97.3-1) unstable; urgency=medium | |
928 | ||
929 | * New upstream version. | |
930 | - Fixes important OSPF bug. | |
931 | * Added ht-20040911-smux.patch regarding Quagga bug #112. | |
932 | * Updated ht-20041109-0.97.3-bgp-md5.patch for BGP with TCP MD5 | |
933 | (thanks to Matthias Wamser). | |
934 | ||
935 | -- Christian Hammers <ch@debian.org> Tue, 9 Nov 2004 17:45:26 +0100 | |
936 | ||
937 | quagga (0.97.2-4) unstable; urgency=low | |
938 | ||
939 | * Added Portuguese debconf translation (thanks to Andre Luis Lopes). | |
940 | Closes: #279352 | |
941 | * Disabled ospfapi server by default on recommendation of Paul Jakma. | |
942 | ||
943 | -- Christian Hammers <ch@debian.org> Sun, 7 Nov 2004 15:07:05 +0100 | |
944 | ||
945 | quagga (0.97.2-3) unstable; urgency=low | |
946 | ||
947 | * Added Andrew Schorrs VTY Buffer patch from the [quagga-dev 1729]. | |
948 | ||
949 | -- Christian Hammers <ch@debian.org> Tue, 2 Nov 2004 00:46:56 +0100 | |
950 | ||
951 | quagga (0.97.2-2) unstable; urgency=low | |
952 | ||
953 | * Changed file and directory permissions and ownerships according to a | |
954 | suggestion from Paul Jakma. Still not perfect though. | |
955 | * Fixed upstream vtysh.conf.sample file. | |
956 | * "ip ospf network broadcast" is now saved correctly. Closes: #244116 | |
957 | * Daemon options are now in /etc/quagga/debian.conf to be user | |
958 | configurable (thanks to Simon Raven and Hasso Tepper). Closes: #266715 | |
959 | ||
960 | -- Christian Hammers <ch@debian.org> Tue, 26 Oct 2004 23:35:45 +0200 | |
961 | ||
962 | quagga (0.97.2-1) unstable; urgency=low | |
963 | ||
964 | * New upstream version. | |
965 | Closes: #254541 | |
966 | * Fixed warning on unmodular kernels (thanks to Christoph Biedl). | |
967 | Closes: #277973 | |
968 | ||
969 | -- Christian Hammers <ch@debian.org> Mon, 25 Oct 2004 00:47:04 +0200 | |
970 | ||
971 | quagga (0.97.1-2) unstable; urgency=low | |
972 | ||
973 | * Version 0.97 introduced shared libraries. They are now included. | |
974 | (thanks to Raf D'Halleweyn). Closes: #277446 | |
975 | ||
976 | -- Christian Hammers <ch@debian.org> Wed, 20 Oct 2004 15:32:06 +0200 | |
977 | ||
978 | quagga (0.97.1-1) unstable; urgency=low | |
979 | ||
980 | * New upstream version. | |
981 | * Removed some obsolete files from debian/patches. | |
982 | * Added patch from upstream bug 113. Closes: #254541 | |
983 | * Added patch from upstream that fixes a compilation problem in the | |
984 | ospfclient code (thanks to Hasso Tepper). | |
985 | * Updated German debconf translation (thanks to Jens Nachtigall) | |
986 | Closes: #277059 | |
987 | ||
988 | -- Christian Hammers <ch@debian.org> Mon, 18 Oct 2004 01:16:35 +0200 | |
989 | ||
990 | quagga (0.96.5-11) unstable; urgency=low | |
991 | ||
992 | * Fixed /tmp/buildd/* paths in binaries. | |
993 | For some unknown reason the upstream Makefile modified a .h file at | |
994 | the end of the "debian/rules build" target. During the following | |
995 | "make install" one library got thus be re*compiled* - with /tmp/buildd | |
996 | paths as sysconfdir (thanks to Peder Chr. Norgaard). Closes: #274050 | |
997 | ||
998 | -- Christian Hammers <ch@debian.org> Fri, 1 Oct 2004 01:21:02 +0200 | |
999 | ||
1000 | quagga (0.96.5-10) unstable; urgency=medium | |
1001 | ||
1002 | * The BGP routing daemon might freeze on network disturbances when | |
1003 | their peer is also a Quagga/Zebra router. | |
1004 | Applied patch from http://bugzilla.quagga.net/show_bug.cgi?id=102 | |
1005 | which has been confirmed by the upstream author. | |
1006 | (thanks to Gunther Stammwitz) | |
1007 | * Changed --enable-pam to --with-libpam (thanks to Hasso Tepper). | |
1008 | Closes: #264562 | |
1009 | * Added patch for vtysh (thanks to Hasso Tepper). Closes: #215919 | |
1010 | ||
1011 | -- Christian Hammers <ch@debian.org> Mon, 9 Aug 2004 15:33:02 +0200 | |
1012 | ||
1013 | quagga (0.96.5-9) unstable; urgency=low | |
1014 | ||
1015 | * Rewrote the documentation chapter about SNMP support. Closes: #195653 | |
1016 | * Added MPLS docs. | |
1017 | ||
1018 | -- Christian Hammers <ch@debian.org> Thu, 29 Jul 2004 21:01:52 +0200 | |
1019 | ||
1020 | quagga (0.96.5-8) unstable; urgency=low | |
1021 | ||
1022 | * Adjusted a grep in the initscript to also match a modprobe message | |
1023 | from older modutils packages (thanks to Faidon Paravoid). | |
1024 | ||
1025 | -- Christian Hammers <ch@debian.org> Wed, 28 Jul 2004 21:19:02 +0200 | |
1026 | ||
1027 | quagga (0.96.5-7) unstable; urgency=low | |
1028 | ||
1029 | * Added a "cd /etc/quagga/" to the init script as quagga tries to load | |
1030 | the config file first from the current working dir and then from the | |
1031 | config dir which could lead to confusion (thanks to Marco d'Itri). | |
1032 | Closes: #255078 | |
1033 | * Removed warning regarding problems with the Debian kernels from | |
1034 | README.Debian as they are no longer valid (thanks to Raphael Hertzog). | |
1035 | Closes: #257580 | |
1036 | * Added patch from Hasso Tepper that makes "terminal length 0" work | |
1037 | in vtysh (thanks to Matthias Wamser). Closes: #252579 | |
1038 | ||
1039 | -- Christian Hammers <ch@debian.org> Thu, 8 Jul 2004 21:53:21 +0200 | |
1040 | ||
1041 | quagga (0.96.5-6) unstable; urgency=low | |
1042 | ||
1043 | * Try to load the capability module as it is needed now. | |
1044 | ||
1045 | -- Christian Hammers <ch@debian.org> Tue, 8 Jun 2004 23:25:29 +0200 | |
1046 | ||
1047 | quagga (0.96.5-5) unstable; urgency=low | |
1048 | ||
1049 | * Changed the homedir of the quagga user to /etc/quagga/ to allow | |
1050 | admins to put ~/.ssh/authorized_keys there (thanks to Matthias Wamser). | |
1051 | Closes: #252577 | |
1052 | ||
1053 | -- Christian Hammers <ch@debian.org> Sat, 5 Jun 2004 14:47:31 +0200 | |
1054 | ||
1055 | quagga (0.96.5-4) unstable; urgency=medium | |
1056 | ||
1057 | * Fixed rules file to use the renamed ./configure option --enable-tcp-md5 | |
1058 | (thanks to Matthias Wamser). Closes: #252141 | |
1059 | ||
1060 | -- Christian Hammers <ch@debian.org> Tue, 1 Jun 2004 22:58:32 +0200 | |
1061 | ||
1062 | quagga (0.96.5-3) unstable; urgency=low | |
1063 | ||
1064 | * Provided default binary package name to all build depends that were | |
1065 | virtual packages (thanks to Goswin von Brederlow). Closes: #251625 | |
1066 | ||
1067 | -- Christian Hammers <ch@debian.org> Sat, 29 May 2004 22:48:53 +0200 | |
1068 | ||
1069 | quagga (0.96.5-2) unstable; urgency=low | |
1070 | ||
1071 | * New upstream version. | |
1072 | * New md5 patch version (thanks to Niklas Jakobsson and Hasso Tepper). | |
1073 | Closes: #250985 | |
1074 | * Fixes info file generation (thanks to Peder Chr. Norgaard). | |
1075 | Closes: #250992 | |
1076 | * Added catalan debconf translation (thanks to Aleix Badia i Bosch). | |
1077 | Closes: #250118 | |
1078 | * PATCHES: | |
1079 | This release contains BGP4 MD5 support which requires a kernel patch | |
1080 | to work. See /usr/share/doc/quagga/README.Debian.MD5. | |
1081 | (The patch is ht-20040525-0.96.5-bgp-md5.patch from Hasso Tepper) | |
1082 | ||
1083 | -- Christian Hammers <ch@debian.org> Thu, 27 May 2004 20:09:37 +0200 | |
1084 | ||
1085 | quagga (0.96.5-1) unstable; urgency=low | |
1086 | ||
1087 | * New upstream version. | |
1088 | * PATCHES: | |
1089 | This release contains BGP4 MD5 support which also requires a kernel patch. | |
1090 | See /usr/share/doc/quagga/README.Debian.MD5 and search for CAN-2004-0230. | |
1091 | ||
1092 | -- Christian Hammers <ch@debian.org> Sun, 16 May 2004 17:40:40 +0200 | |
1093 | ||
1094 | quagga (0.96.4x-10) unstable; urgency=low | |
1095 | ||
1096 | * SECURITY: | |
1097 | This release contains support for MD5 for BGP which is one suggested | |
1098 | prevention of the actually long known TCP SYN/RST attacks which got | |
1099 | much news in the last days as ideas were revealed that made them much | |
1100 | easier probable agains especially the BGP sessions than commonly known. | |
1101 | There are a lot of arguments agains the MD5 approach but some ISPs | |
1102 | started to require it. | |
1103 | See: CAN-2004-0230, http://www.us-cert.gov/cas/techalerts/TA04-111A.html | |
1104 | * PATCHES: | |
1105 | This release contains the MD5 patch from Hasso Tepper. It also seems to | |
1106 | required a kernel patch. See /usr/share/doc/quagga/README.Debian.MD5. | |
1107 | ||
1108 | -- Christian Hammers <ch@debian.org> Thu, 29 Apr 2004 01:01:38 +0200 | |
1109 | ||
1110 | quagga (0.96.4x-9) unstable; urgency=low | |
1111 | ||
1112 | * Fixed daemon loading order (thanks to Matt Kemner). | |
1113 | * Fixed typo in init script (thanks to Charlie Brett). Closes: #238582 | |
1114 | ||
1115 | -- Christian Hammers <ch@debian.org> Sun, 4 Apr 2004 15:32:18 +0200 | |
1116 | ||
1117 | quagga (0.96.4x-8) unstable; urgency=low | |
1118 | ||
1119 | * Patched upstream source so that quagga header files end up in | |
1120 | /usr/include/quagga/. Closes: #233792 | |
1121 | ||
1122 | -- Christian Hammers <ch@debian.org> Mon, 23 Feb 2004 01:42:53 +0100 | |
1123 | ||
1124 | quagga (0.96.4x-7) unstable; urgency=low | |
1125 | ||
1126 | * Fixed info file installation (thanks to Holger Dietze). Closes: #227579 | |
1127 | * Added Japanese translation (thanks to Hideki Yamane). Closes: #227812 | |
1128 | ||
1129 | -- Christian Hammers <ch@debian.org> Sun, 18 Jan 2004 17:28:29 +0100 | |
1130 | ||
1131 | quagga (0.96.4x-6) unstable; urgency=low | |
1132 | ||
1133 | * Added dependency to iproute. | |
1134 | * Initscript now checks not only for the pid file but also for the | |
1135 | daemons presence (thanks to Phil Gregory). Closes: #224389 | |
1136 | * Added my patch to configure file permissions. | |
1137 | ||
1138 | -- Christian Hammers <ch@debian.org> Mon, 15 Dec 2003 22:34:29 +0100 | |
1139 | ||
1140 | quagga (0.96.4x-5) unstable; urgency=low | |
1141 | ||
1142 | * Added patch which gives bgpd the CAP_NET_RAW capability to allow it | |
1143 | to bind to special IPv6 link-local interfaces (Thanks to Bastian Blank). | |
1144 | Closes: #222930 | |
1145 | * Made woody backport easier by applying Colin Watsons po-debconf hack. | |
1146 | Thanks to Marc Haber for suggesting it. Closes: #223527 | |
1147 | * Made woody backport easier by applying a patch that removes some | |
1148 | obscure whitespaces inside an C macro. (Thanks to Marc Haber). | |
1149 | Closes: #223529 | |
1150 | * Now uses /usr/bin/pager. Closes: #204070 | |
1151 | * Added note about the "official woody backports" on my homepage. | |
1152 | ||
1153 | -- Christian Hammers <ch@debian.org> Mon, 15 Dec 2003 20:39:06 +0100 | |
1154 | ||
1155 | quagga (0.96.4x-4) unstable; urgency=high | |
1156 | ||
1157 | * SECURITY: | |
1158 | Fixes another bug that was originally reported against Zebra. | |
1159 | . | |
1160 | http://rhn.redhat.com/errata/RHSA-2003-307.html | |
1161 | Herbert Xu reported that Zebra can accept spoofed messages sent on the | |
1162 | kernel netlink interface by other users on the local machine. This could | |
1163 | lead to a local denial of service attack. The Common Vulnerabilities and | |
1164 | Exposures project (cve.mitre.org) has assigned the name CAN-2003-0858 to | |
1165 | this issue. | |
1166 | ||
1167 | * Minor improvements to init script (thanks to Iustin Pop). | |
1168 | Closes: #220938 | |
1169 | ||
1170 | -- Christian Hammers <ch@debian.org> Sat, 22 Nov 2003 13:27:57 +0100 | |
1171 | ||
1172 | quagga (0.96.4x-3) unstable; urgency=low | |
1173 | ||
1174 | * Changed "more" to "/usr/bin/pager" as default pager if $PAGER or | |
1175 | $VTYSH_PAGER is not set (thanks to Bastian Blank). Closes: #204070 | |
1176 | * Made the directory (but not the config/log files!) world accessible | |
1177 | again on user request (thanks to Anand Kumria)). Closes: #213129 | |
1178 | * No longer providing sample configuration in /etc/quagga/. They are | |
1179 | now only available in /usr/share/doc/quagga/ to avoid accidently | |
1180 | using them without changing the adresses (thanks to Marc Haber). | |
1181 | Closes: #215918 | |
1182 | ||
1183 | -- Christian Hammers <ch@debian.org> Sun, 16 Nov 2003 16:59:30 +0100 | |
1184 | ||
1185 | quagga (0.96.4x-2) unstable; urgency=low | |
1186 | ||
1187 | * Fixed permission problem with pidfile (thanks to Kir Kostuchenko). | |
1188 | Closes: #220938 | |
1189 | ||
1190 | -- Christian Hammers <ch@debian.org> Sun, 16 Nov 2003 14:24:08 +0100 | |
1191 | ||
1192 | quagga (0.96.4x-1) unstable; urgency=low | |
1193 | ||
1194 | * Reupload of 0.96.4. Last upload-in-a-hurry produced a totally | |
1195 | crappy .tar.gz file. Closes: #220621 | |
1196 | ||
1197 | -- Christian Hammers <ch@debian.org> Fri, 14 Nov 2003 19:45:57 +0100 | |
1198 | ||
1199 | quagga (0.96.4-1) unstable; urgency=high | |
1200 | ||
1201 | * SECURITY: Remote DoS of protocol daemons. | |
1202 | Fix for a remote triggerable crash in vty layer. The management | |
1203 | ports ("telnet myrouter ospfd") should not be open to the internet! | |
1204 | ||
1205 | * New upstream version. | |
1206 | - OSPF bugfixes. | |
1207 | - Some improvements for bgp and rip. | |
1208 | ||
1209 | -- Christian Hammers <ch@debian.org> Thu, 13 Nov 2003 11:52:27 +0100 | |
1210 | ||
1211 | quagga (0.96.3-3) unstable; urgency=low | |
1212 | ||
1213 | * Fixed pid file generation by substituting the daemons "-d" by the | |
1214 | start-stop-daemon option "--background" (thanks to Micha Gaisser). | |
1215 | Closes: #218103 | |
1216 | ||
1217 | -- Christian Hammers <ch@debian.org> Wed, 29 Oct 2003 05:17:49 +0100 | |
1218 | ||
1219 | quagga (0.96.3-2) unstable; urgency=low | |
1220 | ||
1221 | * Readded GNOME-PRODUCT-ZEBRA-MIB. | |
1222 | ||
1223 | -- Christian Hammers <ch@debian.org> Thu, 23 Oct 2003 06:17:03 +0200 | |
1224 | ||
1225 | quagga (0.96.3-1) unstable; urgency=medium | |
1226 | ||
1227 | * New upstream version. | |
1228 | * Removed -u and -e in postrm due to problems with debhelper and userdel | |
1229 | (thanks to Adam Majer and Jaakko Niemi). Closes: #216770 | |
1230 | * Removed SNMP MIBs as they are now included in libsnmp-base (thanks to | |
1231 | David Engel and Peter Gervai). Closes: #216138, #216086 | |
1232 | * Fixed seq command in init script (thanks to Marc Haber). Closes: #215915 | |
1233 | * Improved /proc check (thanks to Marc Haber). Closes: #212331 | |
1234 | ||
1235 | -- Christian Hammers <ch@debian.org> Thu, 23 Oct 2003 03:42:02 +0200 | |
1236 | ||
1237 | quagga (0.96.2-9) unstable; urgency=medium | |
1238 | ||
1239 | * Removed /usr/share/info/dir.* which were accidently there and prevented | |
1240 | the installation by dpkg (thanks to Simon Raven). Closes: #212614 | |
1241 | * Reworded package description (thanks to Anand Kumria). Closes: #213125 | |
1242 | * Added french debconf translation (thanks to Christian Perrier). | |
1243 | Closes: #212803 | |
1244 | ||
1245 | -- Christian Hammers <ch@debian.org> Tue, 7 Oct 2003 13:26:58 +0200 | |
1246 | ||
1247 | quagga (0.96.2-8) unstable; urgency=low | |
1248 | ||
1249 | * debian/rules now checks if /proc is mounted as ./configure needs | |
1250 | it but just fails with an obscure error message if it is absent. | |
1251 | (Thanks to Norbert Tretkowski). Closes: #212331 | |
1252 | ||
1253 | -- Christian Hammers <ch@debian.org> Tue, 23 Sep 2003 12:57:38 +0200 | |
1254 | ||
1255 | quagga (0.96.2-7) unstable; urgency=low | |
1256 | ||
1257 | * Last build was rejected due to a buggy dpkg-dev version. Rebuild. | |
1258 | ||
1259 | -- Christian Hammers <ch@debian.org> Mon, 22 Sep 2003 20:34:12 +0200 | |
1260 | ||
1261 | quagga (0.96.2-6) unstable; urgency=low | |
1262 | ||
1263 | * Fixed init script so that is is now possible to just start | |
1264 | the bgpd but not the zebra daemon. Also daemons are now actually | |
1265 | started in the order defined their priority. (Thanks to Thomas Kaehn | |
1266 | and Jochen Friedrich) Closes: #210924 | |
1267 | ||
1268 | -- Christian Hammers <ch@debian.org> Fri, 19 Sep 2003 21:17:02 +0200 | |
1269 | ||
1270 | quagga (0.96.2-5) unstable; urgency=low | |
1271 | ||
1272 | * For using quagga as BGP route server or similar, it is not | |
1273 | wanted to have the zebra daemon running too. For this reason | |
1274 | it can now be disabled in /etc/quagga/daemons, too. | |
1275 | (Thanks to Jochen Friedrich). Closes: #210924 | |
1276 | * Attached *unapplied* patch for the ISIS protocol. I did not dare | |
1277 | to apply it as long as upstream does not do it but this way give | |
1278 | users the possibilities to use it if they like to. | |
1279 | (Thanks to Remco van Mook) | |
1280 | ||
1281 | -- Christian Hammers <ch@debian.org> Wed, 17 Sep 2003 19:57:31 +0200 | |
1282 | ||
1283 | quagga (0.96.2-4) unstable; urgency=low | |
1284 | ||
1285 | * Enabled IPV6 router advertisement feature by default on user request | |
1286 | (thanks to Jochen Friedrich and Hasso Tepper). Closes: #210732 | |
1287 | * Updated GNU autoconf to let it build on hppa/parisc64 (thanks to | |
1288 | lamont). Closes: #210492 | |
1289 | ||
1290 | -- Christian Hammers <ch@debian.org> Sat, 13 Sep 2003 14:11:13 +0200 | |
1291 | ||
1292 | quagga (0.96.2-3) unstable; urgency=medium | |
1293 | ||
1294 | * Removed unnecessary "-lcrypto" to avoid dependency against OpenSSL | |
1295 | which would require further copyright addtions. | |
1296 | ||
1297 | -- Christian Hammers <ch@debian.org> Wed, 10 Sep 2003 01:37:28 +0200 | |
1298 | ||
1299 | quagga (0.96.2-2) unstable; urgency=low | |
1300 | ||
1301 | * Added note that config files of quagga are in /etc/quagga and | |
1302 | not /etc/zebra for the zebra users that migrate to quagga. | |
1303 | (Thanks to Roberto Suarez Soto for the idea) | |
1304 | * Fixed setgid rights in /etc/quagga. | |
1305 | ||
1306 | -- Christian Hammers <ch@debian.org> Wed, 27 Aug 2003 14:05:39 +0200 | |
1307 | ||
1308 | quagga (0.96.2-1) unstable; urgency=low | |
1309 | ||
1310 | * This package has formally been known as "zebra-pj"! | |
1311 | * New upstream release. | |
1312 | Fixes "anoying OSPF problem". | |
1313 | * Modified group ownerships so that vtysh can now be used by normal | |
1314 | uses if they are in the quaggavty group. | |
1315 | ||
1316 | -- Christian Hammers <ch@debian.org> Mon, 25 Aug 2003 23:40:14 +0200 | |
1317 | ||
1318 | quagga (0.96.1-1) unstable; urgency=low | |
1319 | ||
1320 | * Zebra-pj, the fork of zebra has been renamed to quagga as the original | |
1321 | upstream author asked the new project membed not to use "zebra" in the | |
1322 | name. zebra-pj is obsolete. | |
1323 | ||
1324 | -- Christian Hammers <ch@debian.org> Mon, 18 Aug 2003 23:37:20 +0200 | |
1325 | ||
1326 | zebra-pj (0.94+cvs20030721-1) unstable; urgency=low | |
1327 | ||
1328 | * New CVS build. | |
1329 | - OSPF changes (integration of the OSPF API?) | |
1330 | - code cleanups (for ipv6?) | |
1331 | * Tightened Build-Deps to gcc-2.95 as 3.x does not compile a stable ospfd. | |
1332 | This is a known problem and has been discussed on the mailing list. | |
1333 | No other solutions so far. | |
1334 | ||
1335 | -- Christian Hammers <ch@debian.org> Mon, 21 Jul 2003 23:52:00 +0200 | |
1336 | ||
1337 | zebra-pj (0.94+cvs20030701-1) unstable; urgency=low | |
1338 | ||
1339 | * Initial Release. | |
1340 | ||
1341 | -- Christian Hammers <ch@debian.org> Tue, 1 Jul 2003 01:58:06 +0200 |