]> git.proxmox.com Git - mirror_frr.git/blob - changelog-auto.in
*: remove second parameter on install_node()
[mirror_frr.git] / changelog-auto.in
1 frr (@VERSION@-0) UNRELEASED; urgency=medium
2
3 * autoconf changelog entry -- for git autobuilds only.
4 remove and replace when creating releases!
5 (tools/tarsource.sh will handle this)
6
7 -- FRRouting-Dev <dev@lists.frrouting.org> Thu, 25 Oct 2018 16:36:50 +0200
8
9 frr (6.0-2) testing; urgency=medium
10
11 * add install-info to build deps
12 * remove trailing whitespace from control
13 * cleanup tcp-zebra configure options
14 * drop unused SMUX client OID MIBs
15 * remove /proc check
16 * remove --enable-poll
17 * remove libtool .la files
18 * drop texlive-latex-base, texlive-generic-recommended build deps
19 * consistently allow python2 or python3
20 * remove bad USE_* options, add WERROR
21 * drop libncurses5 dep
22 * remove backports mechanism
23 * use better dependency for pythontools (binNMU compatible)
24 * remove bogus shlib:Depends on frr-dbg
25 * create frr-snmp and frr-rpki-rtrlib
26 * make frr-pythontools a "Recommends:"
27 * use redistclean target
28 * update to Debian Policy version 4.2.1
29 * raise debhelper compat level to 9
30 * ditch development-only files
31 * modernise dh_missing and use fail mode
32 * disable zeromq and FPM
33 * always install /etc/init.d/frr
34 * put frr-doc package in 'doc' section
35 * install HTML docs, drop tools/
36 * fix install for {frr,rfptest,ospfclient}
37 * add watch file
38 * change python dependency and shebang to python3:any
39 * use set -e in maintscripts
40 * put myself in as maintainer
41 * update copyright file
42 * closes: #863249
43
44 -- David Lamparter <equinox-debian@diac24.net> Thu, 25 Oct 2018 16:36:50 +0200
45
46 frr (6.0-1) RELEASED; urgency=medium
47
48 * New Enabled: PIM draft Unnumbered
49
50 -- FRRouting-Dev <dev@lists.frrouting.org> Wed, 18 Oct 2017 17:01:42 -0700
51
52 frr (3.0-1) RELEASED; urgency=medium
53
54 * Added Debian 9 Backport
55
56 -- FRRouting-Dev <dev@lists.frrouting.org> Mon, 16 Oct 2017 03:28:00 -0700
57
58 frr (3.0-0) RELEASED; urgency=medium
59
60 * New Enabled: BGP Shutdown Message
61 * New Enabled: BGP Large Community
62 * New Enabled: BGP RFC 7432 Partial Support w/ Ethernet VPN
63 * New Enabled: BGP EVPN RT-5
64 * New Enabled: LDP RFC 5561
65 * New Enabled: LDP RFC 5918
66 * New Enabled: LDP RFC 5919
67 * New Enabled: LDP RFC 6667
68 * New Enabled: LDP RFC 7473
69 * New Enabled: OSPF RFC 4552
70 * New Enabled: ISIS SPF Backoff draft
71 * New Enabled: PIM Unnumbered Interfaces
72 * New Enabled: PIM RFC 4611
73 * New Enabled: PIM Sparse Mode
74 * New Enabled: NHRP RFC 2332
75 * New Enabled: Label Manager
76 * Switched from hardening-wrapper to dpkg-buildflags.
77
78 -- FRRouting-Dev <dev@lists.frrouting.org> Fri, 13 Oct 2017 16:17:26 -0700
79
80 frr (2.0-0) RELEASED; urgency=medium
81
82 * Switchover to FRR
83
84 -- FRRouting-Dev <dev@lists.frrouting.org> Mon, 23 Jan 2017 16:30:22 -0400
85
86 quagga (0.99.24+cl3u5) RELEASED; urgency=medium
87
88 * Closes: CM-12846 - Resolve Memory leaks in 'show ip bgp neighbor json'
89 * Closes: CM-5878 - Display all ospf peers with 'show ip ospf neighbor detail all'
90 * Closes: CM-5794 - Add support for IPv6 static to null0
91 * Closes: CM-13060 - Reduce JSON memory usage.
92 * Closes: CM-10394 - protect 'could not get instance' error messages with debug
93 * Closes: CM-11173 - Move netlink error messages undeer a debug
94 * Closes: CM-13328 - Fixes route missing in hardware after reboot
95
96 -- dev-support <dev-support@cumulusnetworks.com> Fri, 11 Nov 2016 22:13:29 -0400
97
98 quagga (0.99.24+cl3u4) RELEASED; urgency=medium
99
100 * Closes: CM-12687 - Buffer overflow in zebra RA code
101
102 -- dev-support <dev-support@cumulusnetworks.com> Wed, 31 Aug 2016 12:36:10 -0400
103
104 quagga (0.99.24+cl3u3) RELEASED; urgency=medium
105
106 * New Enabled: Merge up-to 0.99.24 code from upstream
107 * New Enabled: Additional CLI simplification
108 * New Enabled: Various Bug Fixes
109
110 -- dev-support <dev-support@cumulusnetworks.com> Thu, 04 Aug 2016 08:43:36 -0700
111
112 quagga (0.99.23.1-1+cl3u2) RELEASED; urgency=medium
113
114 * New Enabled: VRF - See Documentation for how to use
115 * New Enabled: Improved interface statistics
116 * New Enabled: Various vtysh improvements
117 * New Enabled: Numerous compile warnings and SA fixes
118 * New Enabled: Improved priviledge handlingA
119 * New Enabled: Various OSPF CLI fixes
120 * New Enabled: Prefix-list Performance Improvements.
121 * New Enabled: Allow more than 1k peers in Quagga
122 and Performance Improvements
123 * New Enabled: Systemd integration
124 * New Enabled: Various ISIS fixes
125 * New Enabled: BGP MRT improvements
126 * New Enabled: Lowered default MRAI timers
127 * New Enabled: Lowered default 'timers connect'
128 * New Enabled: 'bgp log-neighbor-changes' enabled by default
129 * New Enabled: BGP default keepalive to 3s and holdtime to 9s
130 * New Enabled: OSPF spf timers are now '0 50 5000' by default
131 * New Enabled: BGP hostname is displayed by default
132 * New Enabled: BGP 'no-as-set' is the default for
133 'bgp as-path multipath-relax"
134 * New Enabled: RA is on by default if using 5549 on an interface
135 * New Enabled: peer-group restrictions relaxed, update-groups determine
136 outbund policy anyway
137 * New Enabled: BGP enabled 'maximum-paths 64' by default
138 * New Enabled: OSPF "log-adjacency-changes" on by default
139 * New Enabled: Zebra: Add IPv6 protocol filtering support
140 * and setting src of IPv6 routes.
141 * New Enabled: BGP and OSPF JSON commands added.
142 * New Enabled: BGP Enable multiple instances support by default
143 * New Enabled: 'banner motd file' command
144 * New Enabled: Remove bad default passwords from default conf
145 * New Enabled: BGP addpath TX
146 * New Enabled: Simplified configuration for BGP Unnumbered
147
148 * New Deprecated: Remove unused 'show memory XXX' functionality
149 * New Deprecated: Remove babel protocol
150
151 * Closes: CM-10435 Addition on hidden command
152 "bfd multihop/singlehop" and "ptm-enable" per interface command
153 * Closes: CM-9974 Get route counts right for show ip route summary
154 * Closes: CM-9786 BGP memory leak in peer hostname
155 * Closes: CM-9340 BGP: Ensure correct sequence of processing at exit
156 * Closes: CM-9270 ripd: Fix crash when a default route is passed to rip
157 * Closes: CM-9255 BGPD crash around bgp_config_write ()
158 * Closes: CM-9134 ospf6d: Fix for crash when non area 0 network
159 entered first
160 * Closes: CM-8934 OSPFv3: Check area before scheduling SPF
161 * Closes: CM-8514 zebra: Crash upon disabling a link
162 * Closes: CM-8295 BGP crash in group_announce_route_walkcb
163 * Closes: CM-8191 BGP: crash in update_subgroup_merge()
164 * Closes: CM-8015 lib: Memory reporting fails over 2GB
165 * Closes: CM-7926 BGP: crash from not NULLing freed pointers
166
167 -- dev-support <dev-support@cumulusnetworks.com> Wed, 04 May 2016 16:22:52 -0700
168
169 quagga (0.99.23.1-1) unstable; urgency=medium
170
171 * New upstream release
172 * Added .png figures for info files to quagga-doc package.
173 * Changed dependency from iproute to iproute2 (thanks to Andreas
174 Henriksson). Closes: #753736
175 * Added texlive-fonts-recommended to build-depends to get ecrm1095 font
176 (thanks to Christoph Biedl). Closes: #651545
177
178 -- Christian Brunotte <ch@debian.org> Tue, 30 Sep 2014 00:20:12 +0200
179
180 quagga (0.99.23-1) unstable; urgency=low
181
182 * New upstream release
183 * Removed debian/patches/readline-6.3.diff which was already in upstream.
184
185 -- Christian Hammers <ch@debian.org> Tue, 08 Jul 2014 09:15:48 +0200
186
187 quagga (0.99.22.4-4) unstable; urgency=medium
188
189 * Fix build failure with readline-6.3 (thanks to Matthias Klose).
190 Closes: #741774
191
192 -- Christian Hammers <ch@debian.org> Sun, 23 Mar 2014 15:28:42 +0100
193
194 quagga (0.99.22.4-3) unstable; urgency=low
195
196 * Added status to init script (thanks to Peter J. Holzer). Closes: #730625
197 * Init script now sources /lib/lsb/init-functions.
198 * Switched from hardening-wrapper to dpkg-buildflags.
199
200 -- Christian Hammers <ch@debian.org> Wed, 01 Jan 2014 19:12:01 +0100
201
202 quagga (0.99.22.4-2) unstable; urgency=low
203
204 * Fixed typo in package description (thanks to Davide Prina).
205 Closes: #625860
206 * Added Italian Debconf translation (thanks to Beatrice Torracca)
207 Closes: #729798
208
209 -- Christian Hammers <ch@debian.org> Tue, 26 Nov 2013 00:47:11 +0100
210
211 quagga (0.99.22.4-1) unstable; urgency=high
212
213 * SECURITY:
214 "ospfd: CVE-2013-2236, stack overrun in apiserver
215
216 the OSPF API-server (exporting the LSDB and allowing announcement of
217 Opaque-LSAs) writes past the end of fixed on-stack buffers. This leads
218 to an exploitable stack overflow.
219
220 For this condition to occur, the following two conditions must be true:
221 - Quagga is configured with --enable-opaque-lsa
222 - ospfd is started with the "-a" command line option
223
224 If either of these does not hold, the relevant code is not executed and
225 the issue does not get triggered."
226 Closes: #726724
227
228 * New upstream release
229 - ospfd: protect vs. VU#229804 (malformed Router-LSA)
230 (Quagga is said to be non-vulnerable but still adds some protection)
231
232 -- Christian Hammers <ch@debian.org> Thu, 24 Oct 2013 22:58:37 +0200
233
234 quagga (0.99.22.1-2) unstable; urgency=low
235
236 * Added autopkgtests (thanks to Yolanda Robla). Closes: #710147
237 * Added "status" command to init script (thanks to James Andrewartha).
238 Closes: #690013
239 * Added "libsnmp-dev" to Build-Deps. There not needed for the official
240 builds but for people who compile Quagga themselves to activate the
241 SNMP feature (which for licence reasons cannot be done by Debian).
242 Thanks to Ben Winslow). Closes: #694852
243 * Changed watchquagga_options to an array so that quotes can finally
244 be used as expected. Closes: #681088
245 * Fixed bug that prevented restarting only the watchquagga daemon
246 (thanks to Harald Kappe). Closes: #687124
247
248 -- Christian Hammers <ch@debian.org> Sat, 27 Jul 2013 16:06:25 +0200
249
250 quagga (0.99.22.1-1) unstable; urgency=low
251
252 * New upstream release
253 - ospfd restore nexthop IP for p2p interfaces
254 - ospfd: fix LSA initialization for build without opaque LSA
255 - ripd: correctly redistribute ifindex routes (BZ#664)
256 - bgpd: fix lost passwords of grouped neighbors
257 * Removed 91_ld_as_needed.diff as it was found in the upstream source.
258
259 -- Christian Hammers <ch@debian.org> Mon, 22 Apr 2013 22:21:20 +0200
260
261 quagga (0.99.22-1) unstable; urgency=low
262
263 * New upstream release.
264 - [bgpd] The semantics of default-originate route-map have changed.
265 The route-map is now used to advertise the default route conditionally.
266 The old behaviour which allowed to set attributes on the originated
267 default route is no longer supported.
268 - [bgpd] this version of bgpd implements draft-idr-error-handling. This was
269 added in 0.99.21 and may not be desirable. If you need a version
270 without this behaviour, please use 0.99.20.1. There will be a
271 runtime configuration switch for this in future versions.
272 - [isisd] is in "beta" state.
273 - [ospf6d] is in "alpha/experimental" state
274 - More changes are documented in the upstream changelog!
275 * debian/watch: Adjusted to new savannah.gnu.org site, thanks to Bart
276 Martens.
277 * debian/patches/99_CVE-2012-1820_bgp_capability_orf.diff removed as its
278 in the changelog.
279 * debian/patches/99_distribute_list.diff removed as its in the changelog.
280 * debian/patches/10_doc__Makefiles__makeinfo-force.diff removed as it
281 was just for Debian woody.
282
283 -- Christian Hammers <ch@debian.org> Thu, 14 Feb 2013 00:22:00 +0100
284
285 quagga (0.99.21-4) unstable; urgency=medium
286
287 * Fixed regression bug that caused OSPF "distribute-list" statements to be
288 silently ignored. The patch has already been applied upstream but there
289 has been no new Quagga release since then.
290 Thanks to Hans van Kranenburg for reporting. Closes: #697240
291
292 -- Christian Hammers <ch@debian.org> Sun, 06 Jan 2013 15:50:32 +0100
293
294 quagga (0.99.21-3) unstable; urgency=high
295
296 * SECURITY:
297 CVE-2012-1820 - Quagga contained a bug in BGP OPEN message handling.
298 A denial-of-service condition could be caused by an attacker controlling
299 one of the pre-configured BGP peers. In most cases this means, that the
300 attack must be originated from an adjacent network. Closes: #676510
301
302 -- Christian Hammers <ch@debian.org> Fri, 08 Jun 2012 01:15:32 +0200
303
304 quagga (0.99.21-2) unstable; urgency=low
305
306 * Renamed babeld.8 to quagga-babeld.8 as it conflicted with the
307 original mapage of the babeld package which users might want to
308 install in parallel as it is slightly more capable. Closes: #671916
309
310 -- Christian Hammers <ch@debian.org> Thu, 10 May 2012 07:53:01 +0200
311
312 quagga (0.99.21-1) unstable; urgency=low
313
314 * New upstream release
315 - [bgpd] BGP multipath support has been merged
316 - [bgpd] SAFI (Multicast topology) support has been extended to propagate
317 the topology to zebra.
318 - [bgpd] AS path limit functionality has been removed
319 - [babeld] a new routing daemon implementing the BABEL ad-hoc mesh routing
320 protocol has been merged.
321 - [isisd] a major overhaul has been picked up. Please note that isisd is
322 STILL NOT SUITABLE FOR PRODUCTION USE.
323 - a lot of bugs have been fixed
324 * Added watchquagga daemon.
325 * Added DEP-3 conforming patch comments.
326
327 -- Christian Hammers <ch@debian.org> Sun, 06 May 2012 15:33:33 +0200
328
329 quagga (0.99.20.1-1) unstable; urgency=high
330
331 * SECURITY:
332 CVE-2012-0249 - Quagga ospfd DoS on malformed LS-Update packet
333 CVE-2012-0250 - Quagga ospfd DoS on malformed Network-LSA data
334 CVE-2012-0255 - Quagga bgpd DoS on malformed OPEN message
335 * New upstream release. Closes: #664033
336
337 -- Christian Hammers <ch@debian.org> Fri, 16 Mar 2012 22:14:05 +0100
338
339 quagga (0.99.20-4) unstable; urgency=low
340
341 * Switch to dpkg-source 3.0 (quilt) format.
342 * Switch to changelog-format-1.0.
343
344 -- Christian Hammers <ch@debian.org> Sat, 25 Feb 2012 18:52:06 +0100
345
346 quagga (0.99.20-3) unstable; urgency=low
347
348 * Added --sysconfdir back to the configure options (thanks to Sven-Haegar
349 Koch). Closes: #645649
350
351 -- Christian Hammers <ch@debian.org> Tue, 18 Oct 2011 00:24:37 +0200
352
353 quagga (0.99.20-2) unstable; urgency=low
354
355 * Bumped standards version to 0.9.2.
356 * Migrated to "dh" build system.
357 * Added quagga-dbg package.
358
359 -- Christian Hammers <ch@debian.org> Fri, 14 Oct 2011 23:59:26 +0200
360
361 quagga (0.99.20-1) unstable; urgency=low
362
363 * New upstream release:
364 "The primary focus of this release is a fix of SEGV regression in ospfd,
365 which was introduced in 0.99.19. It also features a series of minor
366 improvements, including better RFC compliance in bgpd, better support
367 of FreeBSD and some enhancements to isisd."
368 * Fixes off-by-one bug (removed 20_ospf6_area_argv.dpatch). Closes: #519488
369
370 -- Christian Hammers <ch@debian.org> Fri, 30 Sep 2011 00:59:24 +0200
371
372 quagga (0.99.19-1) unstable; urgency=high
373
374 * SECURITY:
375 "This release provides security fixes, which address assorted
376 vulnerabilities in bgpd, ospfd and ospf6d (CVE-2011-3323,
377 CVE-2011-3324, CVE-2011-3325, CVE-2011-3326 and CVE-2011-3327).
378 * New upstream release.
379 * Removed incorporated debian/patches/92_opaque_lsa_enable.dpatch.
380 * Removed incorporated debian/patches/93_opaque_lsa_fix.dpatch.
381 * Removed obsolete debian/README.Debian.Woody and README.Debian.MD5.
382
383 -- Christian Hammers <ch@debian.org> Tue, 27 Sep 2011 00:16:27 +0200
384
385 quagga (0.99.18-1) unstable; urgency=low
386
387 * SECURITY:
388 "This release fixes 2 denial of services in bgpd, which can be remotely
389 triggered by malformed AS-Pathlimit or Extended-Community attributes.
390 These issues have been assigned CVE-2010-1674 and CVE-2010-1675.
391 Support for AS-Pathlimit has been removed with this release."
392 * Added Brazilian Portuguese debconf translation. Closes: #617735
393 * Changed section for quagga-doc from "doc" to "net".
394 * Added patch to fix FTBFS with latest GCC. Closes: #614459
395
396 -- Christian Hammers <ch@debian.org> Tue, 22 Mar 2011 23:13:34 +0100
397
398 quagga (0.99.17-4) unstable; urgency=low
399
400 * Added comment to init script (thanks to Marc Haber). Closes: #599524
401
402 -- Christian Hammers <ch@debian.org> Thu, 13 Jan 2011 23:53:29 +0100
403
404 quagga (0.99.17-3) unstable; urgency=low
405
406 * Fix FTBFS with ld --as-needed (thanks to Matthias Klose at Ubuntu).
407 Closes: #609555
408
409 -- Christian Hammers <ch@debian.org> Thu, 13 Jan 2011 23:27:06 +0100
410
411 quagga (0.99.17-2) unstable; urgency=low
412
413 * Added Danisch Debconf translation (thanks to Joe Dalton). Closes: #596259
414
415 -- Christian Hammers <ch@debian.org> Sat, 18 Sep 2010 12:20:07 +0200
416
417 quagga (0.99.17-1) unstable; urgency=high
418
419 * SECURITY:
420 "This release provides two important bugfixes, which address remote crash
421 possibility in bgpd discovered by CROSS team.":
422 1. Stack buffer overflow by processing certain Route-Refresh messages
423 CVE-2010-2948
424 2. DoS (crash) while processing certain BGP update AS path messages
425 CVE-2010-2949
426 Closes: #594262
427
428 -- Christian Hammers <ch@debian.org> Wed, 25 Aug 2010 00:52:48 +0200
429
430 quagga (0.99.16-1) unstable; urgency=low
431
432 * New upstream release. Closes: #574527
433 * Added chrpath to debian/rules to fix rpath problems that lintian spottet.
434
435 -- Christian Hammers <ch@debian.org> Sun, 21 Mar 2010 17:05:40 +0100
436
437 quagga (0.99.15-2) unstable; urgency=low
438
439 * Applied patch for off-by-one bug in ospf6d that caused a segmentation
440 fault when using the "area a.b.c.d filter-list prefix" command (thanks
441 to Steinar H. Gunderson). Closes: 519488
442
443 -- Christian Hammers <ch@debian.org> Sun, 14 Feb 2010 20:02:03 +0100
444
445 quagga (0.99.15-1) unstable; urgency=low
446
447 * New upstream release
448 "This fixes some annoying little ospfd and ospf6d regressions, which made
449 0.99.14 a bit of a problem release (...) This release still contains a
450 regression in the "no ip address ..." command, at least on Linux.
451 See bug #486, which contains a workaround patch. This release should be
452 considered a 1.0.0 release candidate. Please test this release as widely
453 as possible."
454 * Fixed wrong port number in zebra.8 (thanks to Thijs Kinkhorst).
455 Closes: #517860
456 * Added Russian Debconf tanslation (thanks to Yuri Kozlov).
457 Closes: #539464
458 * Removed so-version in build-dep to libreadline-dev on request of
459 Matthias Klose.
460 * Added README.source with reference to dpatch as suggested by lintian.
461 * Bumped standards versionto 3.8.3.
462
463 -- Christian Hammers <ch@debian.org> Sun, 13 Sep 2009 18:12:06 +0200
464
465 quagga (0.99.14-1) unstable; urgency=low
466
467 * New upstream release
468 "This release contains a regression fix for ospf6d, various small fixes
469 and some hopefully very significant bgpd stability fixes.
470 This release should be considered a 1.0.0 release candidate. Please test
471 this release as widely as possible."
472 * Fixes bug with premature LSA aging in ospf6d. Closes: #535030
473 * Fixes section number in zebra.8 manpage. Closes: #517860
474
475 -- Christian Hammers <ch@debian.org> Sat, 25 Jul 2009 00:40:38 +0200
476
477 quagga (0.99.13-2) unstable; urgency=low
478
479 * Added Japanese Debconf translation (thanks to Hideki Yamane).
480 Closes: #510714
481 * When checking for obsoleted config options in preinst, print filename
482 where it occures (thanks to Michael Bussmann). Closes: #339489
483
484 -- Christian Hammers <ch@debian.org> Sun, 19 Jul 2009 17:13:23 +0200
485
486 quagga (0.99.13-1) unstable; urgency=low
487
488 * New upstream release
489 "This release is contains a number of small fixes, for potentially
490 irritating issues, as well as small enhancements to vtysh and support
491 for linking to PCRE (a much faster regex library)."
492 * Added build-dep to gawk as configure required it for memtypes.awk
493 * Replaced build-dep to gs-gpl with ghostscript as requested by lintian
494 * Minor changes to copyright and control files to make lintian happy.
495
496 -- Christian Hammers <ch@debian.org> Wed, 24 Jun 2009 17:53:28 +0200
497
498 quagga (0.99.12-1) unstable; urgency=high
499
500 * New upstream release
501 "This release fixes an urgent bug in bgpd where it could hit an assert
502 if it received a long AS_PATH with a 4-byte ASN." Noteworthy bugfixes:
503 + [bgpd] Fix bgp ipv4/ipv6 accept handling
504 + [bgpd] AS4 bugfix by Chris Caputo
505 + [bgpd] Allow accepted peers to progress even if realpeer is in Connect
506 + [ospfd] Switch Fletcher checksum back to old ospfd version
507
508 -- Christian Hammers <ch@debian.org> Mon, 22 Jun 2009 00:16:33 +0200
509
510 quagga (0.99.11-1) unstable; urgency=low
511
512 * New upstream release
513 "Most regressions in 0.99 over 0.98 are now believed to be fixed. This
514 release should be considered a release-candidate for a new stable series."
515 + bgpd: Preliminary UI and Linux-IPv4 support for TCP-MD5 merged
516 + zebra: ignore dead routes in RIB update
517 + [ospfd] Default route needs to be refreshed after neighbour state change
518 + [zebra:netlink] Set proto/scope on all route update messages
519 * Removed debian/patches/20_*bgp*md5*.dpatch due to upstream support.
520
521 -- Christian Hammers <ch@debian.org> Thu, 09 Oct 2008 22:56:38 +0200
522
523 quagga (0.99.10-1) unstable; urgency=medium
524
525 * New upstream release
526 + bgpd: 4-Byte AS Number support
527 + Sessions were incorrectly reset if a partial AS-Pathlimit attribute
528 was received.
529 + Advertisement of Multi-Protocol prefixes (i.e. non-IPv4) had been
530 broken in the 0.99.9 release. Closes: #467656
531
532 -- Christian Hammers <ch@debian.org> Tue, 08 Jul 2008 23:32:42 +0200
533
534 quagga (0.99.9-6) unstable; urgency=low
535
536 * Fixed FTBFS by adding a build-dep to libpcre3-dev (thanks to Luk Claes).
537 Closes: #469891
538
539 -- Christian Hammers <ch@debian.org> Sat, 12 Apr 2008 12:53:51 +0200
540
541 quagga (0.99.9-5) unstable; urgency=low
542
543 * C.J. Adams-Collier and Paul Jakma suggested to build against libpcre3
544 which is supposed to be faster.
545
546 -- Christian Hammers <ch@debian.org> Sun, 02 Mar 2008 13:19:42 +0100
547
548 quagga (0.99.9-4) unstable; urgency=low
549
550 * Added hardening-wrapper to the build-deps (thanks to Moritz Muehlenhoff).
551
552 -- Christian Hammers <ch@debian.org> Tue, 29 Jan 2008 22:33:56 +0100
553
554 quagga (0.99.9-3) unstable; urgency=low
555
556 * Replaced the BGP patch by a new one so that the package builds again
557 with kernels above 2.6.21!
558 * debian/control:
559 + Moved quagga-doc to section doc to make lintian happy.
560 * Added Spanish debconf translation (thanks to Carlos Galisteo de Cabo).
561 Closes: #428574
562 * debian/control: (thanks to Marco Rodrigues)
563 + Bump Standards-Version to 3.7.3 (no changes needed).
564 + Add Homepage field.
565
566 -- Christian Hammers <ch@debian.org> Mon, 28 Jan 2008 22:29:18 +0100
567
568 quagga (0.99.9-2.1) unstable; urgency=low
569
570 * Non-maintainer upload.
571 * debian/rules: fixed bashisms. (Closes: #459122)
572
573 -- Miguel Angel Ruiz Manzano <debianized@gmail.com> Tue, 22 Jan 2008 14:37:21 -0300
574
575 quagga (0.99.9-2) unstable; urgency=low
576
577 * Added CVE id for the security bug to the last changelog entry.
578 Closes: 442133
579
580 -- Christian Hammers <ch@debian.org> Tue, 25 Sep 2007 22:01:31 +0200
581
582 quagga (0.99.9-1) unstable; urgency=high
583
584 * SECURITY:
585 "This release fixes two potential DoS conditions in bgpd, reported by Mu
586 Security, where a bgpd could be crashed if a peer sent a malformed OPEN
587 message or a malformed COMMUNITY attribute. Only configured peers can do
588 this, hence we consider these issues to be very low impact." CVE-2007-4826
589
590 -- Christian Hammers <ch@debian.org> Wed, 12 Sep 2007 21:12:41 +0200
591
592 quagga (0.99.8-1) unstable; urgency=low
593
594 * New upstream version.
595
596 -- Christian Hammers <ch@debian.org> Fri, 17 Aug 2007 00:07:04 +0200
597
598 quagga (0.99.7-3) unstable; urgency=medium
599
600 * Applied patch for FTBFS with linux-libc-dev (thanks to Andrew J. Schorr
601 and Lucas Nussbaum). Closes: #429003
602
603 -- Christian Hammers <ch@debian.org> Fri, 22 Jun 2007 21:34:55 +0200
604
605 quagga (0.99.7-2) unstable; urgency=low
606
607 * Added Florian Weimar as co-maintainer. Closes: 421977
608 * Added Dutch debconf translation (thanks to Bart Cornelis).
609 Closes: #420932
610 * Added Portuguese debconf translation (thanks to Rui Branco).
611 Closes: #421185
612 * Improved package description (thanks to Reuben Thomas).
613 Closes: #418933
614 * Added CVE Id to 0.99.6-5 changelog entry.
615
616 -- Christian Hammers <ch@debian.org> Wed, 02 May 2007 20:27:12 +0200
617
618 quagga (0.99.7-1) unstable; urgency=low
619
620 * New upstream release. Closes: #421553
621
622 -- Christian Hammers <ch@debian.org> Mon, 30 Apr 2007 14:22:34 +0200
623
624 quagga (0.99.6-6) unstable; urgency=medium
625
626 * Fixes FTBFS with tetex-live. Closes: #420468
627
628 -- Christian Hammers <ch@debian.org> Mon, 23 Apr 2007 21:34:13 +0200
629
630 quagga (0.99.6-5) unstable; urgency=high
631
632 * SECURITY:
633 The bgpd daemon was vulnerable to a Denial-of-Service. Configured peers
634 could cause a Quagga bgpd to, typically, assert() and abort. The DoS
635 could be triggered by peers by sending an UPDATE message with a crafted,
636 malformed Multi-Protocol reachable/unreachable NLRI attribute.
637 This is CVE-2007-1995 and Quagga Bug#354. Closes: #418323
638
639 -- Christian Hammers <ch@debian.org> Thu, 12 Apr 2007 23:21:58 +0200
640
641 quagga (0.99.6-4) unstable; urgency=low
642
643 * Improved note in README.Debian for SNMP self-builders (thanks to Matthias
644 Wamser). Closes: #414788
645
646 -- Christian Hammers <ch@debian.org> Wed, 14 Mar 2007 02:18:57 +0100
647
648 quagga (0.99.6-3) unstable; urgency=low
649
650 * Updated German Debconf translation (thanks to Matthias Julius).
651 Closes: #409327
652
653 -- Christian Hammers <ch@debian.org> Sat, 10 Feb 2007 15:06:16 +0100
654
655 quagga (0.99.6-2) unstable; urgency=low
656
657 * Updated config.guess/config.sub as suggested by lintian.
658 * Corrected README.Debian text regarding the WANT_SNMP flag.
659
660 -- Christian Hammers <ch@debian.org> Sun, 17 Dec 2006 01:45:37 +0100
661
662 quagga (0.99.6-1) unstable; urgency=low
663
664 * New upstream release. Closes: #402361
665
666 -- Christian Hammers <ch@debian.org> Mon, 11 Dec 2006 00:28:09 +0100
667
668 quagga (0.99.5-5) unstable; urgency=high
669
670 * Changed Depends on adduser to Pre-Depends to avoid uninstallability
671 in certain cases (thanks to Steve Langasek, Lucas Nussbaum).
672 Closes: #398562
673
674 -- Christian Hammers <ch@debian.org> Wed, 15 Nov 2006 17:46:34 +0100
675
676 quagga (0.99.5-4) unstable; urgency=low
677
678 * Added default PAM file and some explanations regarding PAM authentication
679 of vtysh which could prevent the start at boot-time when used wrong.
680 Now PAM permits anybody to access the vtysh tool (a malicious user could
681 build his own vtysh without PAM anyway) and the access is controled by
682 the read/write permissions of the vtysh socket which are only granted to
683 users belonging to the quaggavty group (thanks to Wakko Warner).
684 Closes: #389496
685 * Added "case" to prerm script so that the Debconf question is not called a
686 second time in e.g. "new-prerm abort-upgrade" after being NACKed in the
687 old-prerm.
688
689 -- Christian Hammers <ch@debian.org> Fri, 3 Nov 2006 01:22:15 +0100
690
691 quagga (0.99.5-3) unstable; urgency=medium
692
693 * Backport CVS fix for an OSPF DD Exchange regression (thanks to Matt
694 Brown). Closes: #391040
695
696 -- Christian Hammers <ch@debian.org> Wed, 25 Oct 2006 19:47:11 +0200
697
698 quagga (0.99.5-2) unstable; urgency=medium
699
700 * Added LSB info section to initscript.
701 * Removed unnecessary depends to libncurses5 to make checklib happy.
702 The one to libcap should remain though as it is just temporarily
703 unused.
704
705 -- Christian Hammers <ch@debian.org> Thu, 21 Sep 2006 00:04:07 +0200
706
707 quagga (0.99.5-1) unstable; urgency=low
708
709 * New upstream release. Closes: #38704
710 * Upstream fixes ospfd documentary inconsistency. Closes: #347897
711 * Changed debconf question in prerm to "high" (thanks to Rafal Pietrak).
712
713 -- Christian Hammers <ch@debian.org> Mon, 11 Sep 2006 23:43:42 +0200
714
715 quagga (0.99.4-4) unstable; urgency=low
716
717 * Recreate /var/run if not present because /var is e.g. on a tmpfs
718 filesystem (thanks to Martin Pitt). Closes: #376142
719 * Removed nonexistant option from ospfd.8 manpage (thanks to
720 David Medberry). Closes: 378274
721
722 -- Christian Hammers <ch@debian.org> Sat, 15 Jul 2006 20:22:12 +0200
723
724 quagga (0.99.4-3) unstable; urgency=low
725
726 * Removed invalid semicolon from rules file (thanks to Philippe Gramoulle).
727
728 -- Christian Hammers <ch@debian.org> Tue, 27 Jun 2006 23:36:07 +0200
729
730 quagga (0.99.4-2) unstable; urgency=high
731
732 * Set urgency to high as 0.99.4-1 fixes a security problem!
733 * Fixed building of the info file.
734
735 -- Christian Hammers <ch@debian.org> Sun, 14 May 2006 23:04:28 +0200
736
737 quagga (0.99.4-1) unstable; urgency=low
738
739 * New upstream release to fix a security problem in the telnet interface
740 of the BGP daemon which could be used for DoS attacks (CVE-2006-2276).
741 Closes: 366980
742
743 -- Christian Hammers <ch@debian.org> Sat, 13 May 2006 19:54:40 +0200
744
745 quagga (0.99.3-3) unstable; urgency=low
746
747 * Added CVE numbers for the security patch in 0.99.3-2.
748
749 -- Christian Hammers <ch@debian.org> Sat, 6 May 2006 17:14:22 +0200
750
751 quagga (0.99.3-2) unstable; urgency=high
752
753 * SECURITY:
754 Added security bugfix patch from upstream BTS for security problem
755 that could lead to injected routes when using RIPv1.
756 CVE-2006-2223 - missing configuration to disable RIPv1 or require
757 plaintext or MD5 authentication
758 CVE-2006-2224 - lack of enforcement of RIPv2 authentication requirements
759 Closes: #365940
760 * First amd64 upload.
761
762 -- Christian Hammers <ch@debian.org> Thu, 4 May 2006 00:22:09 +0200
763
764 quagga (0.99.3-1) unstable; urgency=low
765
766 * New upstream release
767
768 -- Christian Hammers <ch@debian.org> Wed, 25 Jan 2006 13:37:27 +0100
769
770 quagga (0.99.2-1) unstable; urgency=low
771
772 * New upstream release
773 Closes: #330248, #175553
774
775 -- Christian Hammers <ch@debian.org> Wed, 16 Nov 2005 00:25:52 +0100
776
777 quagga (0.99.1-7) unstable; urgency=low
778
779 * Changed debian/rules check for mounted /proc directory to check
780 for /proc/1 as not all systems (e.g. 2.6 arm kernels) have
781 /proc/kcore which is a optional feature only (thanks to Lennert
782 Buytenhek). Closes: #335695
783 * Added Swedish Debconf translation (thanks to Daniel Nylander).
784 Closes: #331367
785
786 -- Christian Hammers <ch@debian.org> Thu, 27 Oct 2005 20:53:19 +0200
787
788 quagga (0.99.1-6) unstable; urgency=low
789
790 * Fixed debconf dependency as requested by Joey Hess.
791
792 -- Christian Hammers <ch@debian.org> Mon, 26 Sep 2005 20:47:35 +0200
793
794 quagga (0.99.1-5) unstable; urgency=low
795
796 * Rebuild with libreadline5-dev as build-dep as requested by
797 Matthias Klose. Closes: #326306
798 * Made initscript more fault tolerant against missing lines in
799 /etc/quagga/daemons (thanks to Ralf Hildebrandt). Closes: #323774
800 * Added dependency to adduser.
801
802 -- Christian Hammers <ch@debian.org> Tue, 13 Sep 2005 21:42:17 +0200
803
804 quagga (0.99.1-4) unstable; urgency=low
805
806 * Added French Debconf translation (thanks to Mohammed Adnene Trojette).
807 Closes: #319324
808 * Added Czech Debconf translation (thanks to Miroslav Kure).
809 Closes: #318127
810
811 -- Christian Hammers <ch@debian.org> Sun, 31 Jul 2005 04:19:41 +0200
812
813 quagga (0.99.1-3) unstable; urgency=low
814
815 * A Debconf question now asks the admin before upgrading if the daemon
816 should really be stopped as this could lead to the loss of network
817 connectivity or BGP flaps (thanks to Michael Horn and Achilleas Kotsis).
818 Also added a hint about setting Quagga "on hold" to README.Debian.
819 Closes: #315467
820 * Added patch to build on Linux/ARM.
821
822 -- Christian Hammers <ch@debian.org> Sun, 10 Jul 2005 22:19:38 +0200
823
824 quagga (0.99.1-2) unstable; urgency=low
825
826 * Fixed SNMP enabled command in debian/rules (thanks to Christoph Kluenter).
827 Closes: #306840
828
829 -- Christian Hammers <ch@debian.org> Sat, 4 Jun 2005 14:04:01 +0200
830
831 quagga (0.99.1-1) unstable; urgency=low
832
833 * New upstream version. Among others:
834 - BGP graceful restart and "match ip route-source" added
835 - support for interface renaming
836 - improved threading for better responsivness under load
837 * Switched to dpatch to make diffs cleaner.
838 * Made autoreconf unnecessary.
839 * Replaced quagga.dvi and quagga.ps by quagga.pdf in quagga-doc.
840 (the PostScript would have needed Makefile corrections and PDF
841 is more preferable anyway)
842 * Added isisd to the list of daemons in /etc/init.d/quagga (thanks
843 to Ernesto Elbe).
844 * Added hint for "netlink-listen: overrun" messages (thanks to
845 Hasso Tepper).
846 * Added preinst check that bails out if old smux options are in use
847 as Quagga would not start up else anyway (thanks to Bjorn Mork).
848 Closes: #308320
849
850 -- Christian Hammers <ch@debian.org> Fri, 13 May 2005 01:18:24 +0200
851
852 quagga (0.98.3-7) unstable; urgency=high
853
854 * Removed SNMP support as linking against NetSNMP introduced a dependency
855 to OpenSSL which is not compatible to the GPL which governs this
856 application (thanks to Faidon Liambotis). See README.Debian for more
857 information. Closes: #306840
858 * Changed listening address of ospf6d and ripngd from 127.0.0.1 to "::1".
859 * Added build-dep to groff to let drafz-zebra-00.txt build correctly.
860
861 -- Christian Hammers <ch@debian.org> Wed, 4 May 2005 20:08:14 +0200
862
863 quagga (0.98.3-6) testing-proposed-updates; urgency=high
864
865 * Removed "Recommends kernel-image-2.4" as aptitude then
866 installes a kernel-image for an arbitrary architecture as long
867 as it fullfill that recommendation which can obviously fatal
868 at the next reboot :) Also it is a violation of the policy
869 which mandates a reference to real packages (thanks to Holger Levsen).
870 Closes: #307281
871
872 -- Christian Hammers <ch@debian.org> Tue, 3 May 2005 22:53:39 +0200
873
874 quagga (0.98.3-5) unstable; urgency=high
875
876 * The patch which tried to remove the OpenSSL dependency, which is
877 not only unneccessary but also a violation of the licence and thus RC,
878 stopped working a while ago, since autoreconf is no longer run before
879 building the binaries. So now ./configure is patched directly (thanks
880 to Faidon Liambotis for reporting). Closes: #306840
881 * Raised Debhelper compatibility level from 3 to 4. Nothing changed.
882 * Added build-dep to texinfo (>= 4.7) to ease work for www.backports.org.
883
884 -- Christian Hammers <ch@debian.org> Fri, 29 Apr 2005 02:31:03 +0200
885
886 quagga (0.98.3-4) unstable; urgency=low
887
888 * Removed Debconf upgrade note as it was considered a Debconf abuse
889 and apart from that so obvious that it was not even worth to be
890 put into NEWS.Debian (thanks to Steve Langasek). Closes: #306384
891
892 -- Christian Hammers <ch@debian.org> Wed, 27 Apr 2005 00:10:24 +0200
893
894 quagga (0.98.3-3) unstable; urgency=medium
895
896 * Adding the debconf module due to a lintian suggestion is a very
897 bad idea if no db_stop is called as the script hangs then (thanks
898 to Tore Anderson for reporting). Closes: #306324
899
900 -- Christian Hammers <ch@debian.org> Mon, 25 Apr 2005 21:55:58 +0200
901
902 quagga (0.98.3-2) unstable; urgency=low
903
904 * Added debconf confmodule to postinst as lintian suggested.
905
906 -- Christian Hammers <ch@debian.org> Sun, 24 Apr 2005 13:16:00 +0200
907
908 quagga (0.98.3-1) unstable; urgency=low
909
910 * New upstream release.
911 Mmost notably fixes last regression in bgpd (reannounce of prefixes
912 with changed attributes works again), race condition in netlink
913 handling while using IPv6, MTU changes handling in ospfd and several
914 crashes in ospfd, bgpd and ospf6d.
915
916 -- Christian Hammers <ch@debian.org> Mon, 4 Apr 2005 12:51:24 +0200
917
918 quagga (0.98.2-2) unstable; urgency=low
919
920 * Added patch to let Quagga compile with gcc-4.0 (thanks to
921 Andreas Jochens). Closes: #300949
922
923 -- Christian Hammers <ch@debian.org> Fri, 25 Mar 2005 19:33:30 +0100
924
925 quagga (0.98.2-1) unstable; urgency=medium
926
927 * Quoting the upstream announcement:
928 The 0.98.1 release unfortunately was a brown paper bag release with
929 respect to ospfd. [...] 0.98.2 has been released, with one crucial change
930 to fix the unfortunate mistake in 0.98.1, which caused problems if
931 ospfd became DR.
932 * Note: the upstream tarball had a strange problem, apparently redhat.spec
933 was twice in it? At least debuild gave a strange error message so I
934 unpacked it by hand. No changes were made to the .orig.tar.gz!
935
936 -- Christian Hammers <ch@debian.org> Fri, 4 Feb 2005 01:31:36 +0100
937
938 quagga (0.98.1-1) unstable; urgency=medium
939
940 * New upstream version
941 "fixing a fatal OSPF + MD5 auth regression, and a non-fatal high-load
942 regression in bgpd which were present in the 0.98.0 release."
943 * Upstream version fixes bug in ospfd that could lead to crash when OSPF
944 packages had a MTU > 1500. Closes: #290566
945 * Added notice regarding capability kernel support to README.Debian
946 (thanks to Florian Weimer). Closes: #291509
947 * Changed permission setting in postinst script (thanks to Bastian Blank).
948 Closes: #292690
949
950 -- Christian Hammers <ch@debian.org> Tue, 1 Feb 2005 02:01:27 +0100
951
952 quagga (0.98.0-3) unstable; urgency=low
953
954 * Fixed problem in init script. Closes: #290317
955 * Removed obsolete "smux peer enable" patch.
956
957 -- Christian Hammers <ch@debian.org> Fri, 14 Jan 2005 17:37:27 +0100
958
959 quagga (0.98.0-2) unstable; urgency=low
960
961 * Updated broken TCP MD5 patch for BGP (thanks to John P. Looney
962 for telling me).
963
964 -- Christian Hammers <ch@debian.org> Thu, 13 Jan 2005 02:03:54 +0100
965
966 quagga (0.98.0-1) unstable; urgency=low
967
968 * New upstream release
969 * Added kernel-image-2.6 as alternative to 2.4 to the recommends
970 (thanks to Faidon Liambotis). Closes: #289530
971
972 -- Christian Hammers <ch@debian.org> Mon, 10 Jan 2005 19:36:17 +0100
973
974 quagga (0.97.5-1) unstable; urgency=low
975
976 * New upstream version.
977 * Added Czech debconf translation (thanks to Miroslav Kure).
978 Closes: #287293
979 * Added Brazilian debconf translation (thanks to Andre Luis Lopes).
980 Closes: #279352
981
982 -- Christian Hammers <ch@debian.org> Wed, 5 Jan 2005 23:49:57 +0100
983
984 quagga (0.97.4-2) unstable; urgency=low
985
986 * Fixed quagga.info build problem.
987
988 -- Christian Hammers <ch@debian.org> Wed, 5 Jan 2005 22:38:01 +0100
989
990 quagga (0.97.4-1) unstable; urgency=low
991
992 * New upstream release.
993
994 -- Christian Hammers <ch@debian.org> Tue, 4 Jan 2005 01:45:22 +0100
995
996 quagga (0.97.3-2) unstable; urgency=low
997
998 * Included isisd in the daemon list.
999 * Wrote an isisd manpage.
1000 * It is now ensured that zebra is always the last daemon to be stopped.
1001 * (Thanks to Hasso Tepper for mailing me a long list of suggestions
1002 which lead to this release)
1003
1004 -- Christian Hammers <ch@debian.org> Sat, 18 Dec 2004 13:14:55 +0100
1005
1006 quagga (0.97.3-1) unstable; urgency=medium
1007
1008 * New upstream version.
1009 - Fixes important OSPF bug.
1010 * Added ht-20040911-smux.patch regarding Quagga bug #112.
1011 * Updated ht-20041109-0.97.3-bgp-md5.patch for BGP with TCP MD5
1012 (thanks to Matthias Wamser).
1013
1014 -- Christian Hammers <ch@debian.org> Tue, 9 Nov 2004 17:45:26 +0100
1015
1016 quagga (0.97.2-4) unstable; urgency=low
1017
1018 * Added Portuguese debconf translation (thanks to Andre Luis Lopes).
1019 Closes: #279352
1020 * Disabled ospfapi server by default on recommendation of Paul Jakma.
1021
1022 -- Christian Hammers <ch@debian.org> Sun, 7 Nov 2004 15:07:05 +0100
1023
1024 quagga (0.97.2-3) unstable; urgency=low
1025
1026 * Added Andrew Schorrs VTY Buffer patch from the [quagga-dev 1729].
1027
1028 -- Christian Hammers <ch@debian.org> Tue, 2 Nov 2004 00:46:56 +0100
1029
1030 quagga (0.97.2-2) unstable; urgency=low
1031
1032 * Changed file and directory permissions and ownerships according to a
1033 suggestion from Paul Jakma. Still not perfect though.
1034 * Fixed upstream vtysh.conf.sample file.
1035 * "ip ospf network broadcast" is now saved correctly. Closes: #244116
1036 * Daemon options are now in /etc/quagga/debian.conf to be user
1037 configurable (thanks to Simon Raven and Hasso Tepper). Closes: #266715
1038
1039 -- Christian Hammers <ch@debian.org> Tue, 26 Oct 2004 23:35:45 +0200
1040
1041 quagga (0.97.2-1) unstable; urgency=low
1042
1043 * New upstream version.
1044 Closes: #254541
1045 * Fixed warning on unmodular kernels (thanks to Christoph Biedl).
1046 Closes: #277973
1047
1048 -- Christian Hammers <ch@debian.org> Mon, 25 Oct 2004 00:47:04 +0200
1049
1050 quagga (0.97.1-2) unstable; urgency=low
1051
1052 * Version 0.97 introduced shared libraries. They are now included.
1053 (thanks to Raf D'Halleweyn). Closes: #277446
1054
1055 -- Christian Hammers <ch@debian.org> Wed, 20 Oct 2004 15:32:06 +0200
1056
1057 quagga (0.97.1-1) unstable; urgency=low
1058
1059 * New upstream version.
1060 * Removed some obsolete files from debian/patches.
1061 * Added patch from upstream bug 113. Closes: #254541
1062 * Added patch from upstream that fixes a compilation problem in the
1063 ospfclient code (thanks to Hasso Tepper).
1064 * Updated German debconf translation (thanks to Jens Nachtigall)
1065 Closes: #277059
1066
1067 -- Christian Hammers <ch@debian.org> Mon, 18 Oct 2004 01:16:35 +0200
1068
1069 quagga (0.96.5-11) unstable; urgency=low
1070
1071 * Fixed /tmp/buildd/* paths in binaries.
1072 For some unknown reason the upstream Makefile modified a .h file at
1073 the end of the "debian/rules build" target. During the following
1074 "make install" one library got thus be re*compiled* - with /tmp/buildd
1075 paths as sysconfdir (thanks to Peder Chr. Norgaard). Closes: #274050
1076
1077 -- Christian Hammers <ch@debian.org> Fri, 1 Oct 2004 01:21:02 +0200
1078
1079 quagga (0.96.5-10) unstable; urgency=medium
1080
1081 * The BGP routing daemon might freeze on network disturbances when
1082 their peer is also a Quagga/Zebra router.
1083 Applied patch from http://bugzilla.quagga.net/show_bug.cgi?id=102
1084 which has been confirmed by the upstream author.
1085 (thanks to Gunther Stammwitz)
1086 * Changed --enable-pam to --with-libpam (thanks to Hasso Tepper).
1087 Closes: #264562
1088 * Added patch for vtysh (thanks to Hasso Tepper). Closes: #215919
1089
1090 -- Christian Hammers <ch@debian.org> Mon, 9 Aug 2004 15:33:02 +0200
1091
1092 quagga (0.96.5-9) unstable; urgency=low
1093
1094 * Rewrote the documentation chapter about SNMP support. Closes: #195653
1095 * Added MPLS docs.
1096
1097 -- Christian Hammers <ch@debian.org> Thu, 29 Jul 2004 21:01:52 +0200
1098
1099 quagga (0.96.5-8) unstable; urgency=low
1100
1101 * Adjusted a grep in the initscript to also match a modprobe message
1102 from older modutils packages (thanks to Faidon Paravoid).
1103
1104 -- Christian Hammers <ch@debian.org> Wed, 28 Jul 2004 21:19:02 +0200
1105
1106 quagga (0.96.5-7) unstable; urgency=low
1107
1108 * Added a "cd /etc/quagga/" to the init script as quagga tries to load
1109 the config file first from the current working dir and then from the
1110 config dir which could lead to confusion (thanks to Marco d'Itri).
1111 Closes: #255078
1112 * Removed warning regarding problems with the Debian kernels from
1113 README.Debian as they are no longer valid (thanks to Raphael Hertzog).
1114 Closes: #257580
1115 * Added patch from Hasso Tepper that makes "terminal length 0" work
1116 in vtysh (thanks to Matthias Wamser). Closes: #252579
1117
1118 -- Christian Hammers <ch@debian.org> Thu, 8 Jul 2004 21:53:21 +0200
1119
1120 quagga (0.96.5-6) unstable; urgency=low
1121
1122 * Try to load the capability module as it is needed now.
1123
1124 -- Christian Hammers <ch@debian.org> Tue, 8 Jun 2004 23:25:29 +0200
1125
1126 quagga (0.96.5-5) unstable; urgency=low
1127
1128 * Changed the homedir of the quagga user to /etc/quagga/ to allow
1129 admins to put ~/.ssh/authorized_keys there (thanks to Matthias Wamser).
1130 Closes: #252577
1131
1132 -- Christian Hammers <ch@debian.org> Sat, 5 Jun 2004 14:47:31 +0200
1133
1134 quagga (0.96.5-4) unstable; urgency=medium
1135
1136 * Fixed rules file to use the renamed ./configure option --enable-tcp-md5
1137 (thanks to Matthias Wamser). Closes: #252141
1138
1139 -- Christian Hammers <ch@debian.org> Tue, 1 Jun 2004 22:58:32 +0200
1140
1141 quagga (0.96.5-3) unstable; urgency=low
1142
1143 * Provided default binary package name to all build depends that were
1144 virtual packages (thanks to Goswin von Brederlow). Closes: #251625
1145
1146 -- Christian Hammers <ch@debian.org> Sat, 29 May 2004 22:48:53 +0200
1147
1148 quagga (0.96.5-2) unstable; urgency=low
1149
1150 * New upstream version.
1151 * New md5 patch version (thanks to Niklas Jakobsson and Hasso Tepper).
1152 Closes: #250985
1153 * Fixes info file generation (thanks to Peder Chr. Norgaard).
1154 Closes: #250992
1155 * Added catalan debconf translation (thanks to Aleix Badia i Bosch).
1156 Closes: #250118
1157 * PATCHES:
1158 This release contains BGP4 MD5 support which requires a kernel patch
1159 to work. See /usr/share/doc/quagga/README.Debian.MD5.
1160 (The patch is ht-20040525-0.96.5-bgp-md5.patch from Hasso Tepper)
1161
1162 -- Christian Hammers <ch@debian.org> Thu, 27 May 2004 20:09:37 +0200
1163
1164 quagga (0.96.5-1) unstable; urgency=low
1165
1166 * New upstream version.
1167 * PATCHES:
1168 This release contains BGP4 MD5 support which also requires a kernel patch.
1169 See /usr/share/doc/quagga/README.Debian.MD5 and search for CAN-2004-0230.
1170
1171 -- Christian Hammers <ch@debian.org> Sun, 16 May 2004 17:40:40 +0200
1172
1173 quagga (0.96.4x-10) unstable; urgency=low
1174
1175 * SECURITY:
1176 This release contains support for MD5 for BGP which is one suggested
1177 prevention of the actually long known TCP SYN/RST attacks which got
1178 much news in the last days as ideas were revealed that made them much
1179 easier probable agains especially the BGP sessions than commonly known.
1180 There are a lot of arguments agains the MD5 approach but some ISPs
1181 started to require it.
1182 See: CAN-2004-0230, http://www.us-cert.gov/cas/techalerts/TA04-111A.html
1183 * PATCHES:
1184 This release contains the MD5 patch from Hasso Tepper. It also seems to
1185 required a kernel patch. See /usr/share/doc/quagga/README.Debian.MD5.
1186
1187 -- Christian Hammers <ch@debian.org> Thu, 29 Apr 2004 01:01:38 +0200
1188
1189 quagga (0.96.4x-9) unstable; urgency=low
1190
1191 * Fixed daemon loading order (thanks to Matt Kemner).
1192 * Fixed typo in init script (thanks to Charlie Brett). Closes: #238582
1193
1194 -- Christian Hammers <ch@debian.org> Sun, 4 Apr 2004 15:32:18 +0200
1195
1196 quagga (0.96.4x-8) unstable; urgency=low
1197
1198 * Patched upstream source so that quagga header files end up in
1199 /usr/include/quagga/. Closes: #233792
1200
1201 -- Christian Hammers <ch@debian.org> Mon, 23 Feb 2004 01:42:53 +0100
1202
1203 quagga (0.96.4x-7) unstable; urgency=low
1204
1205 * Fixed info file installation (thanks to Holger Dietze). Closes: #227579
1206 * Added Japanese translation (thanks to Hideki Yamane). Closes: #227812
1207
1208 -- Christian Hammers <ch@debian.org> Sun, 18 Jan 2004 17:28:29 +0100
1209
1210 quagga (0.96.4x-6) unstable; urgency=low
1211
1212 * Added dependency to iproute.
1213 * Initscript now checks not only for the pid file but also for the
1214 daemons presence (thanks to Phil Gregory). Closes: #224389
1215 * Added my patch to configure file permissions.
1216
1217 -- Christian Hammers <ch@debian.org> Mon, 15 Dec 2003 22:34:29 +0100
1218
1219 quagga (0.96.4x-5) unstable; urgency=low
1220
1221 * Added patch which gives bgpd the CAP_NET_RAW capability to allow it
1222 to bind to special IPv6 link-local interfaces (Thanks to Bastian Blank).
1223 Closes: #222930
1224 * Made woody backport easier by applying Colin Watsons po-debconf hack.
1225 Thanks to Marc Haber for suggesting it. Closes: #223527
1226 * Made woody backport easier by applying a patch that removes some
1227 obscure whitespaces inside an C macro. (Thanks to Marc Haber).
1228 Closes: #223529
1229 * Now uses /usr/bin/pager. Closes: #204070
1230 * Added note about the "official woody backports" on my homepage.
1231
1232 -- Christian Hammers <ch@debian.org> Mon, 15 Dec 2003 20:39:06 +0100
1233
1234 quagga (0.96.4x-4) unstable; urgency=high
1235
1236 * SECURITY:
1237 Fixes another bug that was originally reported against Zebra.
1238 .
1239 http://rhn.redhat.com/errata/RHSA-2003-307.html
1240 Herbert Xu reported that Zebra can accept spoofed messages sent on the
1241 kernel netlink interface by other users on the local machine. This could
1242 lead to a local denial of service attack. The Common Vulnerabilities and
1243 Exposures project (cve.mitre.org) has assigned the name CAN-2003-0858 to
1244 this issue.
1245
1246 * Minor improvements to init script (thanks to Iustin Pop).
1247 Closes: #220938
1248
1249 -- Christian Hammers <ch@debian.org> Sat, 22 Nov 2003 13:27:57 +0100
1250
1251 quagga (0.96.4x-3) unstable; urgency=low
1252
1253 * Changed "more" to "/usr/bin/pager" as default pager if $PAGER or
1254 $VTYSH_PAGER is not set (thanks to Bastian Blank). Closes: #204070
1255 * Made the directory (but not the config/log files!) world accessible
1256 again on user request (thanks to Anand Kumria)). Closes: #213129
1257 * No longer providing sample configuration in /etc/quagga/. They are
1258 now only available in /usr/share/doc/quagga/ to avoid accidently
1259 using them without changing the adresses (thanks to Marc Haber).
1260 Closes: #215918
1261
1262 -- Christian Hammers <ch@debian.org> Sun, 16 Nov 2003 16:59:30 +0100
1263
1264 quagga (0.96.4x-2) unstable; urgency=low
1265
1266 * Fixed permission problem with pidfile (thanks to Kir Kostuchenko).
1267 Closes: #220938
1268
1269 -- Christian Hammers <ch@debian.org> Sun, 16 Nov 2003 14:24:08 +0100
1270
1271 quagga (0.96.4x-1) unstable; urgency=low
1272
1273 * Reupload of 0.96.4. Last upload-in-a-hurry produced a totally
1274 crappy .tar.gz file. Closes: #220621
1275
1276 -- Christian Hammers <ch@debian.org> Fri, 14 Nov 2003 19:45:57 +0100
1277
1278 quagga (0.96.4-1) unstable; urgency=high
1279
1280 * SECURITY: Remote DoS of protocol daemons.
1281 Fix for a remote triggerable crash in vty layer. The management
1282 ports ("telnet myrouter ospfd") should not be open to the internet!
1283
1284 * New upstream version.
1285 - OSPF bugfixes.
1286 - Some improvements for bgp and rip.
1287
1288 -- Christian Hammers <ch@debian.org> Thu, 13 Nov 2003 11:52:27 +0100
1289
1290 quagga (0.96.3-3) unstable; urgency=low
1291
1292 * Fixed pid file generation by substituting the daemons "-d" by the
1293 start-stop-daemon option "--background" (thanks to Micha Gaisser).
1294 Closes: #218103
1295
1296 -- Christian Hammers <ch@debian.org> Wed, 29 Oct 2003 05:17:49 +0100
1297
1298 quagga (0.96.3-2) unstable; urgency=low
1299
1300 * Readded GNOME-PRODUCT-ZEBRA-MIB.
1301
1302 -- Christian Hammers <ch@debian.org> Thu, 23 Oct 2003 06:17:03 +0200
1303
1304 quagga (0.96.3-1) unstable; urgency=medium
1305
1306 * New upstream version.
1307 * Removed -u and -e in postrm due to problems with debhelper and userdel
1308 (thanks to Adam Majer and Jaakko Niemi). Closes: #216770
1309 * Removed SNMP MIBs as they are now included in libsnmp-base (thanks to
1310 David Engel and Peter Gervai). Closes: #216138, #216086
1311 * Fixed seq command in init script (thanks to Marc Haber). Closes: #215915
1312 * Improved /proc check (thanks to Marc Haber). Closes: #212331
1313
1314 -- Christian Hammers <ch@debian.org> Thu, 23 Oct 2003 03:42:02 +0200
1315
1316 quagga (0.96.2-9) unstable; urgency=medium
1317
1318 * Removed /usr/share/info/dir.* which were accidently there and prevented
1319 the installation by dpkg (thanks to Simon Raven). Closes: #212614
1320 * Reworded package description (thanks to Anand Kumria). Closes: #213125
1321 * Added french debconf translation (thanks to Christian Perrier).
1322 Closes: #212803
1323
1324 -- Christian Hammers <ch@debian.org> Tue, 7 Oct 2003 13:26:58 +0200
1325
1326 quagga (0.96.2-8) unstable; urgency=low
1327
1328 * debian/rules now checks if /proc is mounted as ./configure needs
1329 it but just fails with an obscure error message if it is absent.
1330 (Thanks to Norbert Tretkowski). Closes: #212331
1331
1332 -- Christian Hammers <ch@debian.org> Tue, 23 Sep 2003 12:57:38 +0200
1333
1334 quagga (0.96.2-7) unstable; urgency=low
1335
1336 * Last build was rejected due to a buggy dpkg-dev version. Rebuild.
1337
1338 -- Christian Hammers <ch@debian.org> Mon, 22 Sep 2003 20:34:12 +0200
1339
1340 quagga (0.96.2-6) unstable; urgency=low
1341
1342 * Fixed init script so that is is now possible to just start
1343 the bgpd but not the zebra daemon. Also daemons are now actually
1344 started in the order defined their priority. (Thanks to Thomas Kaehn
1345 and Jochen Friedrich) Closes: #210924
1346
1347 -- Christian Hammers <ch@debian.org> Fri, 19 Sep 2003 21:17:02 +0200
1348
1349 quagga (0.96.2-5) unstable; urgency=low
1350
1351 * For using quagga as BGP route server or similar, it is not
1352 wanted to have the zebra daemon running too. For this reason
1353 it can now be disabled in /etc/quagga/daemons, too.
1354 (Thanks to Jochen Friedrich). Closes: #210924
1355 * Attached *unapplied* patch for the ISIS protocol. I did not dare
1356 to apply it as long as upstream does not do it but this way give
1357 users the possibilities to use it if they like to.
1358 (Thanks to Remco van Mook)
1359
1360 -- Christian Hammers <ch@debian.org> Wed, 17 Sep 2003 19:57:31 +0200
1361
1362 quagga (0.96.2-4) unstable; urgency=low
1363
1364 * Enabled IPV6 router advertisement feature by default on user request
1365 (thanks to Jochen Friedrich and Hasso Tepper). Closes: #210732
1366 * Updated GNU autoconf to let it build on hppa/parisc64 (thanks to
1367 lamont). Closes: #210492
1368
1369 -- Christian Hammers <ch@debian.org> Sat, 13 Sep 2003 14:11:13 +0200
1370
1371 quagga (0.96.2-3) unstable; urgency=medium
1372
1373 * Removed unnecessary "-lcrypto" to avoid dependency against OpenSSL
1374 which would require further copyright addtions.
1375
1376 -- Christian Hammers <ch@debian.org> Wed, 10 Sep 2003 01:37:28 +0200
1377
1378 quagga (0.96.2-2) unstable; urgency=low
1379
1380 * Added note that config files of quagga are in /etc/quagga and
1381 not /etc/zebra for the zebra users that migrate to quagga.
1382 (Thanks to Roberto Suarez Soto for the idea)
1383 * Fixed setgid rights in /etc/quagga.
1384
1385 -- Christian Hammers <ch@debian.org> Wed, 27 Aug 2003 14:05:39 +0200
1386
1387 quagga (0.96.2-1) unstable; urgency=low
1388
1389 * This package has formally been known as "zebra-pj"!
1390 * New upstream release.
1391 Fixes "anoying OSPF problem".
1392 * Modified group ownerships so that vtysh can now be used by normal
1393 uses if they are in the quaggavty group.
1394
1395 -- Christian Hammers <ch@debian.org> Mon, 25 Aug 2003 23:40:14 +0200
1396
1397 quagga (0.96.1-1) unstable; urgency=low
1398
1399 * Zebra-pj, the fork of zebra has been renamed to quagga as the original
1400 upstream author asked the new project membed not to use "zebra" in the
1401 name. zebra-pj is obsolete.
1402
1403 -- Christian Hammers <ch@debian.org> Mon, 18 Aug 2003 23:37:20 +0200
1404
1405 zebra-pj (0.94+cvs20030721-1) unstable; urgency=low
1406
1407 * New CVS build.
1408 - OSPF changes (integration of the OSPF API?)
1409 - code cleanups (for ipv6?)
1410 * Tightened Build-Deps to gcc-2.95 as 3.x does not compile a stable ospfd.
1411 This is a known problem and has been discussed on the mailing list.
1412 No other solutions so far.
1413
1414 -- Christian Hammers <ch@debian.org> Mon, 21 Jul 2003 23:52:00 +0200
1415
1416 zebra-pj (0.94+cvs20030701-1) unstable; urgency=low
1417
1418 * Initial Release.
1419
1420 -- Christian Hammers <ch@debian.org> Tue, 1 Jul 2003 01:58:06 +0200