1 frr (7.5.1-1+pve) pve; urgency=medium
3 * update submodule to latest 7.5.1 tag
5 -- Proxmox Support Team <support@proxmox.com> Wed, 13 Jul 2021 12:00:45 +0100
7 frr (7.4-1+pve) pve; urgency=medium
9 * update submodule to latest 7.4 stable branch
10 (507bf79cd68e9b15ea964b439ba891f2854a5167)
12 -- Proxmox Support Team <support@proxmox.com> Wed, 25 Nov 2020 13:47:48 +0100
14 frr (7.2.1-1+pve1) pve; urgency=medium
18 -- Proxmox Support Team <support@proxmox.com> Fri, 14 Feb 2020 18:40:05 +0100
20 frr (7.2-2+pve~really7.1+stable1) pve; urgency=medium
22 * downgrade to stable 7.1 release branch, as the 7.2 tag has some regressions
25 -- Proxmox Support Team <support@proxmox.com> Tue, 26 Nov 2019 09:43:06 +0100
27 frr (7.2-1+pve) pve; urgency=medium
29 * update to upstream 7.2 release
31 -- Proxmox Support Team <support@proxmox.com> Fri, 15 Nov 2019 07:37:15 +0100
33 frr (6.0.1-0+pve) RELEASED; urgency=medium
37 -- Alexandre Derumier <aderumier@odiso.com> Mon, 31 Dec 2018 09:00:00 +0200
39 frr (6.0-0+pve) RELEASED; urgency=medium
41 [ Alexandre Derumier ]
42 * Proxmox initial release.
46 + Format Build-Depends to make diffs easier to read.
47 + Remove libjson-c2/c3 Build-Depends (pulled in by libjson-c-dev)
49 -- Alexandre Derumier <aderumier@odiso.com> Mon, 15 Oct 2018 04:46:06 +0200
51 frr (6.0-0) RELEASED; urgency=medium
53 * Staticd: New daemon responsible for management of static routes
54 * ISISd: Implement dst-src routing as per draft-ietf-isis-ipv6-dst-src-routing
55 * BFDd: new daemon for BFD (Bidrectional Forwarding Detection). Responsible
56 for notifying link changes to make routing protocols converge faster.
59 -- FRRouting-Dev <dev@lists.frrouting.org> Sun, 7 Oct 2018 08:10:00 -0700
61 frr (5.0.1-0) RELEASED; urgency=medium
63 * Support Automake 1.16.1
64 * BGPd: Support for flowspec ICMP, DSCP, packet length, fragment and tcp flags
65 * BGPd: fix rpki validation for ipv6
66 * VRF: Workaround for kernel bug on Linux 4.14 and newer
67 * Zebra: Fix interface based routes from zebra not marked up
68 * Zebra: Fix large zebra memory usage when redistribute between protocols
69 * Zebra: Allow route-maps to match on source instance
70 * BGPd: Backport peer-attr overrides, peer-level enforce-first-as and filtered-routes fix
71 * BGPd: fix for crash during display of filtered-routes
72 * BGPd: Actually display labeled unicast routes received
73 * Label Manager: Fix to work correctly behind a label manager proxy
74 * Debian Pkg: Fix build dependency for install-info
76 -- FRRouting-Dev <dev@lists.frrouting.org> Thu, 5 Jul 2018 00:38:00 -0700
78 frr (5.0-0) RELEASED; urgency=medium
80 * PIM: Add a Multicast Trace Command draft-ietf-idmr-traceroute-ipm-05
81 * IS-IS: Implement Three-Way Handshake as per RFC5303
82 * BGPD: Implement VPN-VRF route leaking per RFC4364.
83 * BGPD: Implement VRF with NETNS backend
85 * PBRD: Add a new Policy Based Routing Daemon
87 -- FRRouting-Dev <dev@lists.frrouting.org> Thu, 7 Jun 2018 17:47:00 -0700
89 frr (4.0-0) RELEASED; urgency=medium
91 * ISIS-MT - https://tools.ietf.org/html/rfc5120
92 * BGP - RPKI (RFC 6810)
93 * BGP - v4 labeled unicast as per RFC 3107
94 * BGP/Zebra - Type 2 and 3 EVPN with symmetric and asymmetric routing
95 * EIGRP - https://tools.ietf.org/html/rfc7868
96 * FRR - Tab completion for iface names, prefix-lists, route-maps, BGP peers
97 * BABEL - https://tools.ietf.org/html/rfc6126
98 * PIM VRF - Added the ability to work with VRF’s to PIM
99 * OSPFv2 VRF - Added the ability to work with VRF’s to OSPFv2
100 * OSPFv2 Experimental SR - draft-ietf-ospf-segment-routing-extensions-24
101 * ZEBRA - Add ability to create a static route that leaks across VRF’s.
103 -- FRRouting-Dev <dev@lists.frrouting.org> Sun, 11 Mar 2018 17:22:20 -0700
105 frr (3.0.3-1) RELEASED; urgency=medium
107 * New Enabled: PIM draft Unnumbered
109 -- FRRouting-Dev <dev@lists.frrouting.org> Wed, 18 Oct 2017 17:01:42 -0700
111 frr (3.0-1) RELEASED; urgency=medium
113 * Added Debian 9 Backport
115 -- FRRouting-Dev <dev@lists.frrouting.org> Mon, 16 Oct 2017 03:28:00 -0700
117 frr (3.0-0) RELEASED; urgency=medium
119 * New Enabled: BGP Shutdown Message
120 * New Enabled: BGP Large Community
121 * New Enabled: BGP RFC 7432 Partial Support w/ Ethernet VPN
122 * New Enabled: BGP EVPN RT-5
123 * New Enabled: LDP RFC 5561
124 * New Enabled: LDP RFC 5918
125 * New Enabled: LDP RFC 5919
126 * New Enabled: LDP RFC 6667
127 * New Enabled: LDP RFC 7473
128 * New Enabled: OSPF RFC 4552
129 * New Enabled: ISIS SPF Backoff draft
130 * New Enabled: PIM Unnumbered Interfaces
131 * New Enabled: PIM RFC 4611
132 * New Enabled: PIM Sparse Mode
133 * New Enabled: NHRP RFC 2332
134 * New Enabled: Label Manager
135 * Switched from hardening-wrapper to dpkg-buildflags.
137 -- FRRouting-Dev <dev@lists.frrouting.org> Fri, 13 Oct 2017 16:17:26 -0700
139 frr (2.0-0) RELEASED; urgency=medium
143 -- FRRouting-Dev <dev@lists.frrouting.org> Mon, 23 Jan 2017 16:30:22 -0400
145 quagga (0.99.24+cl3u5) RELEASED; urgency=medium
147 * Closes: CM-12846 - Resolve Memory leaks in 'show ip bgp neighbor json'
148 * Closes: CM-5878 - Display all ospf peers with 'show ip ospf neighbor detail all'
149 * Closes: CM-5794 - Add support for IPv6 static to null0
150 * Closes: CM-13060 - Reduce JSON memory usage.
151 * Closes: CM-10394 - protect 'could not get instance' error messages with debug
152 * Closes: CM-11173 - Move netlink error messages undeer a debug
153 * Closes: CM-13328 - Fixes route missing in hardware after reboot
155 -- dev-support <dev-support@cumulusnetworks.com> Fri, 11 Nov 2016 22:13:29 -0400
157 quagga (0.99.24+cl3u4) RELEASED; urgency=medium
159 * Closes: CM-12687 - Buffer overflow in zebra RA code
161 -- dev-support <dev-support@cumulusnetworks.com> Wed, 31 Aug 2016 12:36:10 -0400
163 quagga (0.99.24+cl3u3) RELEASED; urgency=medium
165 * New Enabled: Merge up-to 0.99.24 code from upstream
166 * New Enabled: Additional CLI simplification
167 * New Enabled: Various Bug Fixes
169 -- dev-support <dev-support@cumulusnetworks.com> Thu, 04 Aug 2016 08:43:36 -0700
171 quagga (0.99.23.1-1+cl3u2) RELEASED; urgency=medium
173 * New Enabled: VRF - See Documentation for how to use
174 * New Enabled: Improved interface statistics
175 * New Enabled: Various vtysh improvements
176 * New Enabled: Numerous compile warnings and SA fixes
177 * New Enabled: Improved priviledge handlingA
178 * New Enabled: Various OSPF CLI fixes
179 * New Enabled: Prefix-list Performance Improvements.
180 * New Enabled: Allow more than 1k peers in Quagga
181 and Performance Improvements
182 * New Enabled: Systemd integration
183 * New Enabled: Various ISIS fixes
184 * New Enabled: BGP MRT improvements
185 * New Enabled: Lowered default MRAI timers
186 * New Enabled: Lowered default 'timers connect'
187 * New Enabled: 'bgp log-neighbor-changes' enabled by default
188 * New Enabled: BGP default keepalive to 3s and holdtime to 9s
189 * New Enabled: OSPF spf timers are now '0 50 5000' by default
190 * New Enabled: BGP hostname is displayed by default
191 * New Enabled: BGP 'no-as-set' is the default for
192 'bgp as-path multipath-relax"
193 * New Enabled: RA is on by default if using 5549 on an interface
194 * New Enabled: peer-group restrictions relaxed, update-groups determine
195 outbund policy anyway
196 * New Enabled: BGP enabled 'maximum-paths 64' by default
197 * New Enabled: OSPF "log-adjacency-changes" on by default
198 * New Enabled: Zebra: Add IPv6 protocol filtering support
199 * and setting src of IPv6 routes.
200 * New Enabled: BGP and OSPF JSON commands added.
201 * New Enabled: BGP Enable multiple instances support by default
202 * New Enabled: 'banner motd file' command
203 * New Enabled: Remove bad default passwords from default conf
204 * New Enabled: BGP addpath TX
205 * New Enabled: Simplified configuration for BGP Unnumbered
207 * New Deprecated: Remove unused 'show memory XXX' functionality
208 * New Deprecated: Remove babel protocol
210 * Closes: CM-10435 Addition on hidden command
211 "bfd multihop/singlehop" and "ptm-enable" per interface command
212 * Closes: CM-9974 Get route counts right for show ip route summary
213 * Closes: CM-9786 BGP memory leak in peer hostname
214 * Closes: CM-9340 BGP: Ensure correct sequence of processing at exit
215 * Closes: CM-9270 ripd: Fix crash when a default route is passed to rip
216 * Closes: CM-9255 BGPD crash around bgp_config_write ()
217 * Closes: CM-9134 ospf6d: Fix for crash when non area 0 network
219 * Closes: CM-8934 OSPFv3: Check area before scheduling SPF
220 * Closes: CM-8514 zebra: Crash upon disabling a link
221 * Closes: CM-8295 BGP crash in group_announce_route_walkcb
222 * Closes: CM-8191 BGP: crash in update_subgroup_merge()
223 * Closes: CM-8015 lib: Memory reporting fails over 2GB
224 * Closes: CM-7926 BGP: crash from not NULLing freed pointers
226 -- dev-support <dev-support@cumulusnetworks.com> Wed, 04 May 2016 16:22:52 -0700
228 quagga (0.99.23.1-1) unstable; urgency=medium
230 * New upstream release
231 * Added .png figures for info files to quagga-doc package.
232 * Changed dependency from iproute to iproute2 (thanks to Andreas
233 Henriksson). Closes: #753736
234 * Added texlive-fonts-recommended to build-depends to get ecrm1095 font
235 (thanks to Christoph Biedl). Closes: #651545
237 -- Christian Brunotte <ch@debian.org> Tue, 30 Sep 2014 00:20:12 +0200
239 quagga (0.99.23-1) unstable; urgency=low
241 * New upstream release
242 * Removed debian/patches/readline-6.3.diff which was already in upstream.
244 -- Christian Hammers <ch@debian.org> Tue, 08 Jul 2014 09:15:48 +0200
246 quagga (0.99.22.4-4) unstable; urgency=medium
248 * Fix build failure with readline-6.3 (thanks to Matthias Klose).
251 -- Christian Hammers <ch@debian.org> Sun, 23 Mar 2014 15:28:42 +0100
253 quagga (0.99.22.4-3) unstable; urgency=low
255 * Added status to init script (thanks to Peter J. Holzer). Closes: #730625
256 * Init script now sources /lib/lsb/init-functions.
257 * Switched from hardening-wrapper to dpkg-buildflags.
259 -- Christian Hammers <ch@debian.org> Wed, 01 Jan 2014 19:12:01 +0100
261 quagga (0.99.22.4-2) unstable; urgency=low
263 * Fixed typo in package description (thanks to Davide Prina).
265 * Added Italian Debconf translation (thanks to Beatrice Torracca)
268 -- Christian Hammers <ch@debian.org> Tue, 26 Nov 2013 00:47:11 +0100
270 quagga (0.99.22.4-1) unstable; urgency=high
273 "ospfd: CVE-2013-2236, stack overrun in apiserver
275 the OSPF API-server (exporting the LSDB and allowing announcement of
276 Opaque-LSAs) writes past the end of fixed on-stack buffers. This leads
277 to an exploitable stack overflow.
279 For this condition to occur, the following two conditions must be true:
280 - Quagga is configured with --enable-opaque-lsa
281 - ospfd is started with the "-a" command line option
283 If either of these does not hold, the relevant code is not executed and
284 the issue does not get triggered."
287 * New upstream release
288 - ospfd: protect vs. VU#229804 (malformed Router-LSA)
289 (Quagga is said to be non-vulnerable but still adds some protection)
291 -- Christian Hammers <ch@debian.org> Thu, 24 Oct 2013 22:58:37 +0200
293 quagga (0.99.22.1-2) unstable; urgency=low
295 * Added autopkgtests (thanks to Yolanda Robla). Closes: #710147
296 * Added "status" command to init script (thanks to James Andrewartha).
298 * Added "libsnmp-dev" to Build-Deps. There not needed for the official
299 builds but for people who compile Quagga themselves to activate the
300 SNMP feature (which for licence reasons cannot be done by Debian).
301 Thanks to Ben Winslow). Closes: #694852
302 * Changed watchquagga_options to an array so that quotes can finally
303 be used as expected. Closes: #681088
304 * Fixed bug that prevented restarting only the watchquagga daemon
305 (thanks to Harald Kappe). Closes: #687124
307 -- Christian Hammers <ch@debian.org> Sat, 27 Jul 2013 16:06:25 +0200
309 quagga (0.99.22.1-1) unstable; urgency=low
311 * New upstream release
312 - ospfd restore nexthop IP for p2p interfaces
313 - ospfd: fix LSA initialization for build without opaque LSA
314 - ripd: correctly redistribute ifindex routes (BZ#664)
315 - bgpd: fix lost passwords of grouped neighbors
316 * Removed 91_ld_as_needed.diff as it was found in the upstream source.
318 -- Christian Hammers <ch@debian.org> Mon, 22 Apr 2013 22:21:20 +0200
320 quagga (0.99.22-1) unstable; urgency=low
322 * New upstream release.
323 - [bgpd] The semantics of default-originate route-map have changed.
324 The route-map is now used to advertise the default route conditionally.
325 The old behaviour which allowed to set attributes on the originated
326 default route is no longer supported.
327 - [bgpd] this version of bgpd implements draft-idr-error-handling. This was
328 added in 0.99.21 and may not be desirable. If you need a version
329 without this behaviour, please use 0.99.20.1. There will be a
330 runtime configuration switch for this in future versions.
331 - [isisd] is in "beta" state.
332 - [ospf6d] is in "alpha/experimental" state
333 - More changes are documented in the upstream changelog!
334 * debian/watch: Adjusted to new savannah.gnu.org site, thanks to Bart
336 * debian/patches/99_CVE-2012-1820_bgp_capability_orf.diff removed as its
338 * debian/patches/99_distribute_list.diff removed as its in the changelog.
339 * debian/patches/10_doc__Makefiles__makeinfo-force.diff removed as it
340 was just for Debian woody.
342 -- Christian Hammers <ch@debian.org> Thu, 14 Feb 2013 00:22:00 +0100
344 quagga (0.99.21-4) unstable; urgency=medium
346 * Fixed regression bug that caused OSPF "distribute-list" statements to be
347 silently ignored. The patch has already been applied upstream but there
348 has been no new Quagga release since then.
349 Thanks to Hans van Kranenburg for reporting. Closes: #697240
351 -- Christian Hammers <ch@debian.org> Sun, 06 Jan 2013 15:50:32 +0100
353 quagga (0.99.21-3) unstable; urgency=high
356 CVE-2012-1820 - Quagga contained a bug in BGP OPEN message handling.
357 A denial-of-service condition could be caused by an attacker controlling
358 one of the pre-configured BGP peers. In most cases this means, that the
359 attack must be originated from an adjacent network. Closes: #676510
361 -- Christian Hammers <ch@debian.org> Fri, 08 Jun 2012 01:15:32 +0200
363 quagga (0.99.21-2) unstable; urgency=low
365 * Renamed babeld.8 to quagga-babeld.8 as it conflicted with the
366 original mapage of the babeld package which users might want to
367 install in parallel as it is slightly more capable. Closes: #671916
369 -- Christian Hammers <ch@debian.org> Thu, 10 May 2012 07:53:01 +0200
371 quagga (0.99.21-1) unstable; urgency=low
373 * New upstream release
374 - [bgpd] BGP multipath support has been merged
375 - [bgpd] SAFI (Multicast topology) support has been extended to propagate
376 the topology to zebra.
377 - [bgpd] AS path limit functionality has been removed
378 - [babeld] a new routing daemon implementing the BABEL ad-hoc mesh routing
379 protocol has been merged.
380 - [isisd] a major overhaul has been picked up. Please note that isisd is
381 STILL NOT SUITABLE FOR PRODUCTION USE.
382 - a lot of bugs have been fixed
383 * Added watchquagga daemon.
384 * Added DEP-3 conforming patch comments.
386 -- Christian Hammers <ch@debian.org> Sun, 06 May 2012 15:33:33 +0200
388 quagga (0.99.20.1-1) unstable; urgency=high
391 CVE-2012-0249 - Quagga ospfd DoS on malformed LS-Update packet
392 CVE-2012-0250 - Quagga ospfd DoS on malformed Network-LSA data
393 CVE-2012-0255 - Quagga bgpd DoS on malformed OPEN message
394 * New upstream release. Closes: #664033
396 -- Christian Hammers <ch@debian.org> Fri, 16 Mar 2012 22:14:05 +0100
398 quagga (0.99.20-4) unstable; urgency=low
400 * Switch to dpkg-source 3.0 (quilt) format.
401 * Switch to changelog-format-1.0.
403 -- Christian Hammers <ch@debian.org> Sat, 25 Feb 2012 18:52:06 +0100
405 quagga (0.99.20-3) unstable; urgency=low
407 * Added --sysconfdir back to the configure options (thanks to Sven-Haegar
408 Koch). Closes: #645649
410 -- Christian Hammers <ch@debian.org> Tue, 18 Oct 2011 00:24:37 +0200
412 quagga (0.99.20-2) unstable; urgency=low
414 * Bumped standards version to 0.9.2.
415 * Migrated to "dh" build system.
416 * Added quagga-dbg package.
418 -- Christian Hammers <ch@debian.org> Fri, 14 Oct 2011 23:59:26 +0200
420 quagga (0.99.20-1) unstable; urgency=low
422 * New upstream release:
423 "The primary focus of this release is a fix of SEGV regression in ospfd,
424 which was introduced in 0.99.19. It also features a series of minor
425 improvements, including better RFC compliance in bgpd, better support
426 of FreeBSD and some enhancements to isisd."
427 * Fixes off-by-one bug (removed 20_ospf6_area_argv.dpatch). Closes: #519488
429 -- Christian Hammers <ch@debian.org> Fri, 30 Sep 2011 00:59:24 +0200
431 quagga (0.99.19-1) unstable; urgency=high
434 "This release provides security fixes, which address assorted
435 vulnerabilities in bgpd, ospfd and ospf6d (CVE-2011-3323,
436 CVE-2011-3324, CVE-2011-3325, CVE-2011-3326 and CVE-2011-3327).
437 * New upstream release.
438 * Removed incorporated debian/patches/92_opaque_lsa_enable.dpatch.
439 * Removed incorporated debian/patches/93_opaque_lsa_fix.dpatch.
440 * Removed obsolete debian/README.Debian.Woody and README.Debian.MD5.
442 -- Christian Hammers <ch@debian.org> Tue, 27 Sep 2011 00:16:27 +0200
444 quagga (0.99.18-1) unstable; urgency=low
447 "This release fixes 2 denial of services in bgpd, which can be remotely
448 triggered by malformed AS-Pathlimit or Extended-Community attributes.
449 These issues have been assigned CVE-2010-1674 and CVE-2010-1675.
450 Support for AS-Pathlimit has been removed with this release."
451 * Added Brazilian Portuguese debconf translation. Closes: #617735
452 * Changed section for quagga-doc from "doc" to "net".
453 * Added patch to fix FTBFS with latest GCC. Closes: #614459
455 -- Christian Hammers <ch@debian.org> Tue, 22 Mar 2011 23:13:34 +0100
457 quagga (0.99.17-4) unstable; urgency=low
459 * Added comment to init script (thanks to Marc Haber). Closes: #599524
461 -- Christian Hammers <ch@debian.org> Thu, 13 Jan 2011 23:53:29 +0100
463 quagga (0.99.17-3) unstable; urgency=low
465 * Fix FTBFS with ld --as-needed (thanks to Matthias Klose at Ubuntu).
468 -- Christian Hammers <ch@debian.org> Thu, 13 Jan 2011 23:27:06 +0100
470 quagga (0.99.17-2) unstable; urgency=low
472 * Added Danisch Debconf translation (thanks to Joe Dalton). Closes: #596259
474 -- Christian Hammers <ch@debian.org> Sat, 18 Sep 2010 12:20:07 +0200
476 quagga (0.99.17-1) unstable; urgency=high
479 "This release provides two important bugfixes, which address remote crash
480 possibility in bgpd discovered by CROSS team.":
481 1. Stack buffer overflow by processing certain Route-Refresh messages
483 2. DoS (crash) while processing certain BGP update AS path messages
487 -- Christian Hammers <ch@debian.org> Wed, 25 Aug 2010 00:52:48 +0200
489 quagga (0.99.16-1) unstable; urgency=low
491 * New upstream release. Closes: #574527
492 * Added chrpath to debian/rules to fix rpath problems that lintian spottet.
494 -- Christian Hammers <ch@debian.org> Sun, 21 Mar 2010 17:05:40 +0100
496 quagga (0.99.15-2) unstable; urgency=low
498 * Applied patch for off-by-one bug in ospf6d that caused a segmentation
499 fault when using the "area a.b.c.d filter-list prefix" command (thanks
500 to Steinar H. Gunderson). Closes: 519488
502 -- Christian Hammers <ch@debian.org> Sun, 14 Feb 2010 20:02:03 +0100
504 quagga (0.99.15-1) unstable; urgency=low
506 * New upstream release
507 "This fixes some annoying little ospfd and ospf6d regressions, which made
508 0.99.14 a bit of a problem release (...) This release still contains a
509 regression in the "no ip address ..." command, at least on Linux.
510 See bug #486, which contains a workaround patch. This release should be
511 considered a 1.0.0 release candidate. Please test this release as widely
513 * Fixed wrong port number in zebra.8 (thanks to Thijs Kinkhorst).
515 * Added Russian Debconf tanslation (thanks to Yuri Kozlov).
517 * Removed so-version in build-dep to libreadline-dev on request of
519 * Added README.source with reference to dpatch as suggested by lintian.
520 * Bumped standards versionto 3.8.3.
522 -- Christian Hammers <ch@debian.org> Sun, 13 Sep 2009 18:12:06 +0200
524 quagga (0.99.14-1) unstable; urgency=low
526 * New upstream release
527 "This release contains a regression fix for ospf6d, various small fixes
528 and some hopefully very significant bgpd stability fixes.
529 This release should be considered a 1.0.0 release candidate. Please test
530 this release as widely as possible."
531 * Fixes bug with premature LSA aging in ospf6d. Closes: #535030
532 * Fixes section number in zebra.8 manpage. Closes: #517860
534 -- Christian Hammers <ch@debian.org> Sat, 25 Jul 2009 00:40:38 +0200
536 quagga (0.99.13-2) unstable; urgency=low
538 * Added Japanese Debconf translation (thanks to Hideki Yamane).
540 * When checking for obsoleted config options in preinst, print filename
541 where it occures (thanks to Michael Bussmann). Closes: #339489
543 -- Christian Hammers <ch@debian.org> Sun, 19 Jul 2009 17:13:23 +0200
545 quagga (0.99.13-1) unstable; urgency=low
547 * New upstream release
548 "This release is contains a number of small fixes, for potentially
549 irritating issues, as well as small enhancements to vtysh and support
550 for linking to PCRE (a much faster regex library)."
551 * Added build-dep to gawk as configure required it for memtypes.awk
552 * Replaced build-dep to gs-gpl with ghostscript as requested by lintian
553 * Minor changes to copyright and control files to make lintian happy.
555 -- Christian Hammers <ch@debian.org> Wed, 24 Jun 2009 17:53:28 +0200
557 quagga (0.99.12-1) unstable; urgency=high
559 * New upstream release
560 "This release fixes an urgent bug in bgpd where it could hit an assert
561 if it received a long AS_PATH with a 4-byte ASN." Noteworthy bugfixes:
562 + [bgpd] Fix bgp ipv4/ipv6 accept handling
563 + [bgpd] AS4 bugfix by Chris Caputo
564 + [bgpd] Allow accepted peers to progress even if realpeer is in Connect
565 + [ospfd] Switch Fletcher checksum back to old ospfd version
567 -- Christian Hammers <ch@debian.org> Mon, 22 Jun 2009 00:16:33 +0200
569 quagga (0.99.11-1) unstable; urgency=low
571 * New upstream release
572 "Most regressions in 0.99 over 0.98 are now believed to be fixed. This
573 release should be considered a release-candidate for a new stable series."
574 + bgpd: Preliminary UI and Linux-IPv4 support for TCP-MD5 merged
575 + zebra: ignore dead routes in RIB update
576 + [ospfd] Default route needs to be refreshed after neighbour state change
577 + [zebra:netlink] Set proto/scope on all route update messages
578 * Removed debian/patches/20_*bgp*md5*.dpatch due to upstream support.
580 -- Christian Hammers <ch@debian.org> Thu, 09 Oct 2008 22:56:38 +0200
582 quagga (0.99.10-1) unstable; urgency=medium
584 * New upstream release
585 + bgpd: 4-Byte AS Number support
586 + Sessions were incorrectly reset if a partial AS-Pathlimit attribute
588 + Advertisement of Multi-Protocol prefixes (i.e. non-IPv4) had been
589 broken in the 0.99.9 release. Closes: #467656
591 -- Christian Hammers <ch@debian.org> Tue, 08 Jul 2008 23:32:42 +0200
593 quagga (0.99.9-6) unstable; urgency=low
595 * Fixed FTBFS by adding a build-dep to libpcre3-dev (thanks to Luk Claes).
598 -- Christian Hammers <ch@debian.org> Sat, 12 Apr 2008 12:53:51 +0200
600 quagga (0.99.9-5) unstable; urgency=low
602 * C.J. Adams-Collier and Paul Jakma suggested to build against libpcre3
603 which is supposed to be faster.
605 -- Christian Hammers <ch@debian.org> Sun, 02 Mar 2008 13:19:42 +0100
607 quagga (0.99.9-4) unstable; urgency=low
609 * Added hardening-wrapper to the build-deps (thanks to Moritz Muehlenhoff).
611 -- Christian Hammers <ch@debian.org> Tue, 29 Jan 2008 22:33:56 +0100
613 quagga (0.99.9-3) unstable; urgency=low
615 * Replaced the BGP patch by a new one so that the package builds again
616 with kernels above 2.6.21!
618 + Moved quagga-doc to section doc to make lintian happy.
619 * Added Spanish debconf translation (thanks to Carlos Galisteo de Cabo).
621 * debian/control: (thanks to Marco Rodrigues)
622 + Bump Standards-Version to 3.7.3 (no changes needed).
623 + Add Homepage field.
625 -- Christian Hammers <ch@debian.org> Mon, 28 Jan 2008 22:29:18 +0100
627 quagga (0.99.9-2.1) unstable; urgency=low
629 * Non-maintainer upload.
630 * debian/rules: fixed bashisms. (Closes: #459122)
632 -- Miguel Angel Ruiz Manzano <debianized@gmail.com> Tue, 22 Jan 2008 14:37:21 -0300
634 quagga (0.99.9-2) unstable; urgency=low
636 * Added CVE id for the security bug to the last changelog entry.
639 -- Christian Hammers <ch@debian.org> Tue, 25 Sep 2007 22:01:31 +0200
641 quagga (0.99.9-1) unstable; urgency=high
644 "This release fixes two potential DoS conditions in bgpd, reported by Mu
645 Security, where a bgpd could be crashed if a peer sent a malformed OPEN
646 message or a malformed COMMUNITY attribute. Only configured peers can do
647 this, hence we consider these issues to be very low impact." CVE-2007-4826
649 -- Christian Hammers <ch@debian.org> Wed, 12 Sep 2007 21:12:41 +0200
651 quagga (0.99.8-1) unstable; urgency=low
653 * New upstream version.
655 -- Christian Hammers <ch@debian.org> Fri, 17 Aug 2007 00:07:04 +0200
657 quagga (0.99.7-3) unstable; urgency=medium
659 * Applied patch for FTBFS with linux-libc-dev (thanks to Andrew J. Schorr
660 and Lucas Nussbaum). Closes: #429003
662 -- Christian Hammers <ch@debian.org> Fri, 22 Jun 2007 21:34:55 +0200
664 quagga (0.99.7-2) unstable; urgency=low
666 * Added Florian Weimar as co-maintainer. Closes: 421977
667 * Added Dutch debconf translation (thanks to Bart Cornelis).
669 * Added Portuguese debconf translation (thanks to Rui Branco).
671 * Improved package description (thanks to Reuben Thomas).
673 * Added CVE Id to 0.99.6-5 changelog entry.
675 -- Christian Hammers <ch@debian.org> Wed, 02 May 2007 20:27:12 +0200
677 quagga (0.99.7-1) unstable; urgency=low
679 * New upstream release. Closes: #421553
681 -- Christian Hammers <ch@debian.org> Mon, 30 Apr 2007 14:22:34 +0200
683 quagga (0.99.6-6) unstable; urgency=medium
685 * Fixes FTBFS with tetex-live. Closes: #420468
687 -- Christian Hammers <ch@debian.org> Mon, 23 Apr 2007 21:34:13 +0200
689 quagga (0.99.6-5) unstable; urgency=high
692 The bgpd daemon was vulnerable to a Denial-of-Service. Configured peers
693 could cause a Quagga bgpd to, typically, assert() and abort. The DoS
694 could be triggered by peers by sending an UPDATE message with a crafted,
695 malformed Multi-Protocol reachable/unreachable NLRI attribute.
696 This is CVE-2007-1995 and Quagga Bug#354. Closes: #418323
698 -- Christian Hammers <ch@debian.org> Thu, 12 Apr 2007 23:21:58 +0200
700 quagga (0.99.6-4) unstable; urgency=low
702 * Improved note in README.Debian for SNMP self-builders (thanks to Matthias
703 Wamser). Closes: #414788
705 -- Christian Hammers <ch@debian.org> Wed, 14 Mar 2007 02:18:57 +0100
707 quagga (0.99.6-3) unstable; urgency=low
709 * Updated German Debconf translation (thanks to Matthias Julius).
712 -- Christian Hammers <ch@debian.org> Sat, 10 Feb 2007 15:06:16 +0100
714 quagga (0.99.6-2) unstable; urgency=low
716 * Updated config.guess/config.sub as suggested by lintian.
717 * Corrected README.Debian text regarding the WANT_SNMP flag.
719 -- Christian Hammers <ch@debian.org> Sun, 17 Dec 2006 01:45:37 +0100
721 quagga (0.99.6-1) unstable; urgency=low
723 * New upstream release. Closes: #402361
725 -- Christian Hammers <ch@debian.org> Mon, 11 Dec 2006 00:28:09 +0100
727 quagga (0.99.5-5) unstable; urgency=high
729 * Changed Depends on adduser to Pre-Depends to avoid uninstallability
730 in certain cases (thanks to Steve Langasek, Lucas Nussbaum).
733 -- Christian Hammers <ch@debian.org> Wed, 15 Nov 2006 17:46:34 +0100
735 quagga (0.99.5-4) unstable; urgency=low
737 * Added default PAM file and some explanations regarding PAM authentication
738 of vtysh which could prevent the start at boot-time when used wrong.
739 Now PAM permits anybody to access the vtysh tool (a malicious user could
740 build his own vtysh without PAM anyway) and the access is controled by
741 the read/write permissions of the vtysh socket which are only granted to
742 users belonging to the quaggavty group (thanks to Wakko Warner).
744 * Added "case" to prerm script so that the Debconf question is not called a
745 second time in e.g. "new-prerm abort-upgrade" after being NACKed in the
748 -- Christian Hammers <ch@debian.org> Fri, 3 Nov 2006 01:22:15 +0100
750 quagga (0.99.5-3) unstable; urgency=medium
752 * Backport CVS fix for an OSPF DD Exchange regression (thanks to Matt
753 Brown). Closes: #391040
755 -- Christian Hammers <ch@debian.org> Wed, 25 Oct 2006 19:47:11 +0200
757 quagga (0.99.5-2) unstable; urgency=medium
759 * Added LSB info section to initscript.
760 * Removed unnecessary depends to libncurses5 to make checklib happy.
761 The one to libcap should remain though as it is just temporarily
764 -- Christian Hammers <ch@debian.org> Thu, 21 Sep 2006 00:04:07 +0200
766 quagga (0.99.5-1) unstable; urgency=low
768 * New upstream release. Closes: #38704
769 * Upstream fixes ospfd documentary inconsistency. Closes: #347897
770 * Changed debconf question in prerm to "high" (thanks to Rafal Pietrak).
772 -- Christian Hammers <ch@debian.org> Mon, 11 Sep 2006 23:43:42 +0200
774 quagga (0.99.4-4) unstable; urgency=low
776 * Recreate /var/run if not present because /var is e.g. on a tmpfs
777 filesystem (thanks to Martin Pitt). Closes: #376142
778 * Removed nonexistant option from ospfd.8 manpage (thanks to
779 David Medberry). Closes: 378274
781 -- Christian Hammers <ch@debian.org> Sat, 15 Jul 2006 20:22:12 +0200
783 quagga (0.99.4-3) unstable; urgency=low
785 * Removed invalid semicolon from rules file (thanks to Philippe Gramoulle).
787 -- Christian Hammers <ch@debian.org> Tue, 27 Jun 2006 23:36:07 +0200
789 quagga (0.99.4-2) unstable; urgency=high
791 * Set urgency to high as 0.99.4-1 fixes a security problem!
792 * Fixed building of the info file.
794 -- Christian Hammers <ch@debian.org> Sun, 14 May 2006 23:04:28 +0200
796 quagga (0.99.4-1) unstable; urgency=low
798 * New upstream release to fix a security problem in the telnet interface
799 of the BGP daemon which could be used for DoS attacks (CVE-2006-2276).
802 -- Christian Hammers <ch@debian.org> Sat, 13 May 2006 19:54:40 +0200
804 quagga (0.99.3-3) unstable; urgency=low
806 * Added CVE numbers for the security patch in 0.99.3-2.
808 -- Christian Hammers <ch@debian.org> Sat, 6 May 2006 17:14:22 +0200
810 quagga (0.99.3-2) unstable; urgency=high
813 Added security bugfix patch from upstream BTS for security problem
814 that could lead to injected routes when using RIPv1.
815 CVE-2006-2223 - missing configuration to disable RIPv1 or require
816 plaintext or MD5 authentication
817 CVE-2006-2224 - lack of enforcement of RIPv2 authentication requirements
819 * First amd64 upload.
821 -- Christian Hammers <ch@debian.org> Thu, 4 May 2006 00:22:09 +0200
823 quagga (0.99.3-1) unstable; urgency=low
825 * New upstream release
827 -- Christian Hammers <ch@debian.org> Wed, 25 Jan 2006 13:37:27 +0100
829 quagga (0.99.2-1) unstable; urgency=low
831 * New upstream release
832 Closes: #330248, #175553
834 -- Christian Hammers <ch@debian.org> Wed, 16 Nov 2005 00:25:52 +0100
836 quagga (0.99.1-7) unstable; urgency=low
838 * Changed debian/rules check for mounted /proc directory to check
839 for /proc/1 as not all systems (e.g. 2.6 arm kernels) have
840 /proc/kcore which is a optional feature only (thanks to Lennert
841 Buytenhek). Closes: #335695
842 * Added Swedish Debconf translation (thanks to Daniel Nylander).
845 -- Christian Hammers <ch@debian.org> Thu, 27 Oct 2005 20:53:19 +0200
847 quagga (0.99.1-6) unstable; urgency=low
849 * Fixed debconf dependency as requested by Joey Hess.
851 -- Christian Hammers <ch@debian.org> Mon, 26 Sep 2005 20:47:35 +0200
853 quagga (0.99.1-5) unstable; urgency=low
855 * Rebuild with libreadline5-dev as build-dep as requested by
856 Matthias Klose. Closes: #326306
857 * Made initscript more fault tolerant against missing lines in
858 /etc/quagga/daemons (thanks to Ralf Hildebrandt). Closes: #323774
859 * Added dependency to adduser.
861 -- Christian Hammers <ch@debian.org> Tue, 13 Sep 2005 21:42:17 +0200
863 quagga (0.99.1-4) unstable; urgency=low
865 * Added French Debconf translation (thanks to Mohammed Adnene Trojette).
867 * Added Czech Debconf translation (thanks to Miroslav Kure).
870 -- Christian Hammers <ch@debian.org> Sun, 31 Jul 2005 04:19:41 +0200
872 quagga (0.99.1-3) unstable; urgency=low
874 * A Debconf question now asks the admin before upgrading if the daemon
875 should really be stopped as this could lead to the loss of network
876 connectivity or BGP flaps (thanks to Michael Horn and Achilleas Kotsis).
877 Also added a hint about setting Quagga "on hold" to README.Debian.
879 * Added patch to build on Linux/ARM.
881 -- Christian Hammers <ch@debian.org> Sun, 10 Jul 2005 22:19:38 +0200
883 quagga (0.99.1-2) unstable; urgency=low
885 * Fixed SNMP enabled command in debian/rules (thanks to Christoph Kluenter).
888 -- Christian Hammers <ch@debian.org> Sat, 4 Jun 2005 14:04:01 +0200
890 quagga (0.99.1-1) unstable; urgency=low
892 * New upstream version. Among others:
893 - BGP graceful restart and "match ip route-source" added
894 - support for interface renaming
895 - improved threading for better responsivness under load
896 * Switched to dpatch to make diffs cleaner.
897 * Made autoreconf unnecessary.
898 * Replaced quagga.dvi and quagga.ps by quagga.pdf in quagga-doc.
899 (the PostScript would have needed Makefile corrections and PDF
900 is more preferable anyway)
901 * Added isisd to the list of daemons in /etc/init.d/quagga (thanks
903 * Added hint for "netlink-listen: overrun" messages (thanks to
905 * Added preinst check that bails out if old smux options are in use
906 as Quagga would not start up else anyway (thanks to Bjorn Mork).
909 -- Christian Hammers <ch@debian.org> Fri, 13 May 2005 01:18:24 +0200
911 quagga (0.98.3-7) unstable; urgency=high
913 * Removed SNMP support as linking against NetSNMP introduced a dependency
914 to OpenSSL which is not compatible to the GPL which governs this
915 application (thanks to Faidon Liambotis). See README.Debian for more
916 information. Closes: #306840
917 * Changed listening address of ospf6d and ripngd from 127.0.0.1 to "::1".
918 * Added build-dep to groff to let drafz-zebra-00.txt build correctly.
920 -- Christian Hammers <ch@debian.org> Wed, 4 May 2005 20:08:14 +0200
922 quagga (0.98.3-6) testing-proposed-updates; urgency=high
924 * Removed "Recommends kernel-image-2.4" as aptitude then
925 installes a kernel-image for an arbitrary architecture as long
926 as it fullfill that recommendation which can obviously fatal
927 at the next reboot :) Also it is a violation of the policy
928 which mandates a reference to real packages (thanks to Holger Levsen).
931 -- Christian Hammers <ch@debian.org> Tue, 3 May 2005 22:53:39 +0200
933 quagga (0.98.3-5) unstable; urgency=high
935 * The patch which tried to remove the OpenSSL dependency, which is
936 not only unneccessary but also a violation of the licence and thus RC,
937 stopped working a while ago, since autoreconf is no longer run before
938 building the binaries. So now ./configure is patched directly (thanks
939 to Faidon Liambotis for reporting). Closes: #306840
940 * Raised Debhelper compatibility level from 3 to 4. Nothing changed.
941 * Added build-dep to texinfo (>= 4.7) to ease work for www.backports.org.
943 -- Christian Hammers <ch@debian.org> Fri, 29 Apr 2005 02:31:03 +0200
945 quagga (0.98.3-4) unstable; urgency=low
947 * Removed Debconf upgrade note as it was considered a Debconf abuse
948 and apart from that so obvious that it was not even worth to be
949 put into NEWS.Debian (thanks to Steve Langasek). Closes: #306384
951 -- Christian Hammers <ch@debian.org> Wed, 27 Apr 2005 00:10:24 +0200
953 quagga (0.98.3-3) unstable; urgency=medium
955 * Adding the debconf module due to a lintian suggestion is a very
956 bad idea if no db_stop is called as the script hangs then (thanks
957 to Tore Anderson for reporting). Closes: #306324
959 -- Christian Hammers <ch@debian.org> Mon, 25 Apr 2005 21:55:58 +0200
961 quagga (0.98.3-2) unstable; urgency=low
963 * Added debconf confmodule to postinst as lintian suggested.
965 -- Christian Hammers <ch@debian.org> Sun, 24 Apr 2005 13:16:00 +0200
967 quagga (0.98.3-1) unstable; urgency=low
969 * New upstream release.
970 Mmost notably fixes last regression in bgpd (reannounce of prefixes
971 with changed attributes works again), race condition in netlink
972 handling while using IPv6, MTU changes handling in ospfd and several
973 crashes in ospfd, bgpd and ospf6d.
975 -- Christian Hammers <ch@debian.org> Mon, 4 Apr 2005 12:51:24 +0200
977 quagga (0.98.2-2) unstable; urgency=low
979 * Added patch to let Quagga compile with gcc-4.0 (thanks to
980 Andreas Jochens). Closes: #300949
982 -- Christian Hammers <ch@debian.org> Fri, 25 Mar 2005 19:33:30 +0100
984 quagga (0.98.2-1) unstable; urgency=medium
986 * Quoting the upstream announcement:
987 The 0.98.1 release unfortunately was a brown paper bag release with
988 respect to ospfd. [...] 0.98.2 has been released, with one crucial change
989 to fix the unfortunate mistake in 0.98.1, which caused problems if
991 * Note: the upstream tarball had a strange problem, apparently redhat.spec
992 was twice in it? At least debuild gave a strange error message so I
993 unpacked it by hand. No changes were made to the .orig.tar.gz!
995 -- Christian Hammers <ch@debian.org> Fri, 4 Feb 2005 01:31:36 +0100
997 quagga (0.98.1-1) unstable; urgency=medium
999 * New upstream version
1000 "fixing a fatal OSPF + MD5 auth regression, and a non-fatal high-load
1001 regression in bgpd which were present in the 0.98.0 release."
1002 * Upstream version fixes bug in ospfd that could lead to crash when OSPF
1003 packages had a MTU > 1500. Closes: #290566
1004 * Added notice regarding capability kernel support to README.Debian
1005 (thanks to Florian Weimer). Closes: #291509
1006 * Changed permission setting in postinst script (thanks to Bastian Blank).
1009 -- Christian Hammers <ch@debian.org> Tue, 1 Feb 2005 02:01:27 +0100
1011 quagga (0.98.0-3) unstable; urgency=low
1013 * Fixed problem in init script. Closes: #290317
1014 * Removed obsolete "smux peer enable" patch.
1016 -- Christian Hammers <ch@debian.org> Fri, 14 Jan 2005 17:37:27 +0100
1018 quagga (0.98.0-2) unstable; urgency=low
1020 * Updated broken TCP MD5 patch for BGP (thanks to John P. Looney
1023 -- Christian Hammers <ch@debian.org> Thu, 13 Jan 2005 02:03:54 +0100
1025 quagga (0.98.0-1) unstable; urgency=low
1027 * New upstream release
1028 * Added kernel-image-2.6 as alternative to 2.4 to the recommends
1029 (thanks to Faidon Liambotis). Closes: #289530
1031 -- Christian Hammers <ch@debian.org> Mon, 10 Jan 2005 19:36:17 +0100
1033 quagga (0.97.5-1) unstable; urgency=low
1035 * New upstream version.
1036 * Added Czech debconf translation (thanks to Miroslav Kure).
1038 * Added Brazilian debconf translation (thanks to Andre Luis Lopes).
1041 -- Christian Hammers <ch@debian.org> Wed, 5 Jan 2005 23:49:57 +0100
1043 quagga (0.97.4-2) unstable; urgency=low
1045 * Fixed quagga.info build problem.
1047 -- Christian Hammers <ch@debian.org> Wed, 5 Jan 2005 22:38:01 +0100
1049 quagga (0.97.4-1) unstable; urgency=low
1051 * New upstream release.
1053 -- Christian Hammers <ch@debian.org> Tue, 4 Jan 2005 01:45:22 +0100
1055 quagga (0.97.3-2) unstable; urgency=low
1057 * Included isisd in the daemon list.
1058 * Wrote an isisd manpage.
1059 * It is now ensured that zebra is always the last daemon to be stopped.
1060 * (Thanks to Hasso Tepper for mailing me a long list of suggestions
1061 which lead to this release)
1063 -- Christian Hammers <ch@debian.org> Sat, 18 Dec 2004 13:14:55 +0100
1065 quagga (0.97.3-1) unstable; urgency=medium
1067 * New upstream version.
1068 - Fixes important OSPF bug.
1069 * Added ht-20040911-smux.patch regarding Quagga bug #112.
1070 * Updated ht-20041109-0.97.3-bgp-md5.patch for BGP with TCP MD5
1071 (thanks to Matthias Wamser).
1073 -- Christian Hammers <ch@debian.org> Tue, 9 Nov 2004 17:45:26 +0100
1075 quagga (0.97.2-4) unstable; urgency=low
1077 * Added Portuguese debconf translation (thanks to Andre Luis Lopes).
1079 * Disabled ospfapi server by default on recommendation of Paul Jakma.
1081 -- Christian Hammers <ch@debian.org> Sun, 7 Nov 2004 15:07:05 +0100
1083 quagga (0.97.2-3) unstable; urgency=low
1085 * Added Andrew Schorrs VTY Buffer patch from the [quagga-dev 1729].
1087 -- Christian Hammers <ch@debian.org> Tue, 2 Nov 2004 00:46:56 +0100
1089 quagga (0.97.2-2) unstable; urgency=low
1091 * Changed file and directory permissions and ownerships according to a
1092 suggestion from Paul Jakma. Still not perfect though.
1093 * Fixed upstream vtysh.conf.sample file.
1094 * "ip ospf network broadcast" is now saved correctly. Closes: #244116
1095 * Daemon options are now in /etc/quagga/debian.conf to be user
1096 configurable (thanks to Simon Raven and Hasso Tepper). Closes: #266715
1098 -- Christian Hammers <ch@debian.org> Tue, 26 Oct 2004 23:35:45 +0200
1100 quagga (0.97.2-1) unstable; urgency=low
1102 * New upstream version.
1104 * Fixed warning on unmodular kernels (thanks to Christoph Biedl).
1107 -- Christian Hammers <ch@debian.org> Mon, 25 Oct 2004 00:47:04 +0200
1109 quagga (0.97.1-2) unstable; urgency=low
1111 * Version 0.97 introduced shared libraries. They are now included.
1112 (thanks to Raf D'Halleweyn). Closes: #277446
1114 -- Christian Hammers <ch@debian.org> Wed, 20 Oct 2004 15:32:06 +0200
1116 quagga (0.97.1-1) unstable; urgency=low
1118 * New upstream version.
1119 * Removed some obsolete files from debian/patches.
1120 * Added patch from upstream bug 113. Closes: #254541
1121 * Added patch from upstream that fixes a compilation problem in the
1122 ospfclient code (thanks to Hasso Tepper).
1123 * Updated German debconf translation (thanks to Jens Nachtigall)
1126 -- Christian Hammers <ch@debian.org> Mon, 18 Oct 2004 01:16:35 +0200
1128 quagga (0.96.5-11) unstable; urgency=low
1130 * Fixed /tmp/buildd/* paths in binaries.
1131 For some unknown reason the upstream Makefile modified a .h file at
1132 the end of the "debian/rules build" target. During the following
1133 "make install" one library got thus be re*compiled* - with /tmp/buildd
1134 paths as sysconfdir (thanks to Peder Chr. Norgaard). Closes: #274050
1136 -- Christian Hammers <ch@debian.org> Fri, 1 Oct 2004 01:21:02 +0200
1138 quagga (0.96.5-10) unstable; urgency=medium
1140 * The BGP routing daemon might freeze on network disturbances when
1141 their peer is also a Quagga/Zebra router.
1142 Applied patch from http://bugzilla.quagga.net/show_bug.cgi?id=102
1143 which has been confirmed by the upstream author.
1144 (thanks to Gunther Stammwitz)
1145 * Changed --enable-pam to --with-libpam (thanks to Hasso Tepper).
1147 * Added patch for vtysh (thanks to Hasso Tepper). Closes: #215919
1149 -- Christian Hammers <ch@debian.org> Mon, 9 Aug 2004 15:33:02 +0200
1151 quagga (0.96.5-9) unstable; urgency=low
1153 * Rewrote the documentation chapter about SNMP support. Closes: #195653
1156 -- Christian Hammers <ch@debian.org> Thu, 29 Jul 2004 21:01:52 +0200
1158 quagga (0.96.5-8) unstable; urgency=low
1160 * Adjusted a grep in the initscript to also match a modprobe message
1161 from older modutils packages (thanks to Faidon Paravoid).
1163 -- Christian Hammers <ch@debian.org> Wed, 28 Jul 2004 21:19:02 +0200
1165 quagga (0.96.5-7) unstable; urgency=low
1167 * Added a "cd /etc/quagga/" to the init script as quagga tries to load
1168 the config file first from the current working dir and then from the
1169 config dir which could lead to confusion (thanks to Marco d'Itri).
1171 * Removed warning regarding problems with the Debian kernels from
1172 README.Debian as they are no longer valid (thanks to Raphael Hertzog).
1174 * Added patch from Hasso Tepper that makes "terminal length 0" work
1175 in vtysh (thanks to Matthias Wamser). Closes: #252579
1177 -- Christian Hammers <ch@debian.org> Thu, 8 Jul 2004 21:53:21 +0200
1179 quagga (0.96.5-6) unstable; urgency=low
1181 * Try to load the capability module as it is needed now.
1183 -- Christian Hammers <ch@debian.org> Tue, 8 Jun 2004 23:25:29 +0200
1185 quagga (0.96.5-5) unstable; urgency=low
1187 * Changed the homedir of the quagga user to /etc/quagga/ to allow
1188 admins to put ~/.ssh/authorized_keys there (thanks to Matthias Wamser).
1191 -- Christian Hammers <ch@debian.org> Sat, 5 Jun 2004 14:47:31 +0200
1193 quagga (0.96.5-4) unstable; urgency=medium
1195 * Fixed rules file to use the renamed ./configure option --enable-tcp-md5
1196 (thanks to Matthias Wamser). Closes: #252141
1198 -- Christian Hammers <ch@debian.org> Tue, 1 Jun 2004 22:58:32 +0200
1200 quagga (0.96.5-3) unstable; urgency=low
1202 * Provided default binary package name to all build depends that were
1203 virtual packages (thanks to Goswin von Brederlow). Closes: #251625
1205 -- Christian Hammers <ch@debian.org> Sat, 29 May 2004 22:48:53 +0200
1207 quagga (0.96.5-2) unstable; urgency=low
1209 * New upstream version.
1210 * New md5 patch version (thanks to Niklas Jakobsson and Hasso Tepper).
1212 * Fixes info file generation (thanks to Peder Chr. Norgaard).
1214 * Added catalan debconf translation (thanks to Aleix Badia i Bosch).
1217 This release contains BGP4 MD5 support which requires a kernel patch
1218 to work. See /usr/share/doc/quagga/README.Debian.MD5.
1219 (The patch is ht-20040525-0.96.5-bgp-md5.patch from Hasso Tepper)
1221 -- Christian Hammers <ch@debian.org> Thu, 27 May 2004 20:09:37 +0200
1223 quagga (0.96.5-1) unstable; urgency=low
1225 * New upstream version.
1227 This release contains BGP4 MD5 support which also requires a kernel patch.
1228 See /usr/share/doc/quagga/README.Debian.MD5 and search for CAN-2004-0230.
1230 -- Christian Hammers <ch@debian.org> Sun, 16 May 2004 17:40:40 +0200
1232 quagga (0.96.4x-10) unstable; urgency=low
1235 This release contains support for MD5 for BGP which is one suggested
1236 prevention of the actually long known TCP SYN/RST attacks which got
1237 much news in the last days as ideas were revealed that made them much
1238 easier probable agains especially the BGP sessions than commonly known.
1239 There are a lot of arguments agains the MD5 approach but some ISPs
1240 started to require it.
1241 See: CAN-2004-0230, http://www.us-cert.gov/cas/techalerts/TA04-111A.html
1243 This release contains the MD5 patch from Hasso Tepper. It also seems to
1244 required a kernel patch. See /usr/share/doc/quagga/README.Debian.MD5.
1246 -- Christian Hammers <ch@debian.org> Thu, 29 Apr 2004 01:01:38 +0200
1248 quagga (0.96.4x-9) unstable; urgency=low
1250 * Fixed daemon loading order (thanks to Matt Kemner).
1251 * Fixed typo in init script (thanks to Charlie Brett). Closes: #238582
1253 -- Christian Hammers <ch@debian.org> Sun, 4 Apr 2004 15:32:18 +0200
1255 quagga (0.96.4x-8) unstable; urgency=low
1257 * Patched upstream source so that quagga header files end up in
1258 /usr/include/quagga/. Closes: #233792
1260 -- Christian Hammers <ch@debian.org> Mon, 23 Feb 2004 01:42:53 +0100
1262 quagga (0.96.4x-7) unstable; urgency=low
1264 * Fixed info file installation (thanks to Holger Dietze). Closes: #227579
1265 * Added Japanese translation (thanks to Hideki Yamane). Closes: #227812
1267 -- Christian Hammers <ch@debian.org> Sun, 18 Jan 2004 17:28:29 +0100
1269 quagga (0.96.4x-6) unstable; urgency=low
1271 * Added dependency to iproute.
1272 * Initscript now checks not only for the pid file but also for the
1273 daemons presence (thanks to Phil Gregory). Closes: #224389
1274 * Added my patch to configure file permissions.
1276 -- Christian Hammers <ch@debian.org> Mon, 15 Dec 2003 22:34:29 +0100
1278 quagga (0.96.4x-5) unstable; urgency=low
1280 * Added patch which gives bgpd the CAP_NET_RAW capability to allow it
1281 to bind to special IPv6 link-local interfaces (Thanks to Bastian Blank).
1283 * Made woody backport easier by applying Colin Watsons po-debconf hack.
1284 Thanks to Marc Haber for suggesting it. Closes: #223527
1285 * Made woody backport easier by applying a patch that removes some
1286 obscure whitespaces inside an C macro. (Thanks to Marc Haber).
1288 * Now uses /usr/bin/pager. Closes: #204070
1289 * Added note about the "official woody backports" on my homepage.
1291 -- Christian Hammers <ch@debian.org> Mon, 15 Dec 2003 20:39:06 +0100
1293 quagga (0.96.4x-4) unstable; urgency=high
1296 Fixes another bug that was originally reported against Zebra.
1298 http://rhn.redhat.com/errata/RHSA-2003-307.html
1299 Herbert Xu reported that Zebra can accept spoofed messages sent on the
1300 kernel netlink interface by other users on the local machine. This could
1301 lead to a local denial of service attack. The Common Vulnerabilities and
1302 Exposures project (cve.mitre.org) has assigned the name CAN-2003-0858 to
1305 * Minor improvements to init script (thanks to Iustin Pop).
1308 -- Christian Hammers <ch@debian.org> Sat, 22 Nov 2003 13:27:57 +0100
1310 quagga (0.96.4x-3) unstable; urgency=low
1312 * Changed "more" to "/usr/bin/pager" as default pager if $PAGER or
1313 $VTYSH_PAGER is not set (thanks to Bastian Blank). Closes: #204070
1314 * Made the directory (but not the config/log files!) world accessible
1315 again on user request (thanks to Anand Kumria)). Closes: #213129
1316 * No longer providing sample configuration in /etc/quagga/. They are
1317 now only available in /usr/share/doc/quagga/ to avoid accidently
1318 using them without changing the adresses (thanks to Marc Haber).
1321 -- Christian Hammers <ch@debian.org> Sun, 16 Nov 2003 16:59:30 +0100
1323 quagga (0.96.4x-2) unstable; urgency=low
1325 * Fixed permission problem with pidfile (thanks to Kir Kostuchenko).
1328 -- Christian Hammers <ch@debian.org> Sun, 16 Nov 2003 14:24:08 +0100
1330 quagga (0.96.4x-1) unstable; urgency=low
1332 * Reupload of 0.96.4. Last upload-in-a-hurry produced a totally
1333 crappy .tar.gz file. Closes: #220621
1335 -- Christian Hammers <ch@debian.org> Fri, 14 Nov 2003 19:45:57 +0100
1337 quagga (0.96.4-1) unstable; urgency=high
1339 * SECURITY: Remote DoS of protocol daemons.
1340 Fix for a remote triggerable crash in vty layer. The management
1341 ports ("telnet myrouter ospfd") should not be open to the internet!
1343 * New upstream version.
1345 - Some improvements for bgp and rip.
1347 -- Christian Hammers <ch@debian.org> Thu, 13 Nov 2003 11:52:27 +0100
1349 quagga (0.96.3-3) unstable; urgency=low
1351 * Fixed pid file generation by substituting the daemons "-d" by the
1352 start-stop-daemon option "--background" (thanks to Micha Gaisser).
1355 -- Christian Hammers <ch@debian.org> Wed, 29 Oct 2003 05:17:49 +0100
1357 quagga (0.96.3-2) unstable; urgency=low
1359 * Readded GNOME-PRODUCT-ZEBRA-MIB.
1361 -- Christian Hammers <ch@debian.org> Thu, 23 Oct 2003 06:17:03 +0200
1363 quagga (0.96.3-1) unstable; urgency=medium
1365 * New upstream version.
1366 * Removed -u and -e in postrm due to problems with debhelper and userdel
1367 (thanks to Adam Majer and Jaakko Niemi). Closes: #216770
1368 * Removed SNMP MIBs as they are now included in libsnmp-base (thanks to
1369 David Engel and Peter Gervai). Closes: #216138, #216086
1370 * Fixed seq command in init script (thanks to Marc Haber). Closes: #215915
1371 * Improved /proc check (thanks to Marc Haber). Closes: #212331
1373 -- Christian Hammers <ch@debian.org> Thu, 23 Oct 2003 03:42:02 +0200
1375 quagga (0.96.2-9) unstable; urgency=medium
1377 * Removed /usr/share/info/dir.* which were accidently there and prevented
1378 the installation by dpkg (thanks to Simon Raven). Closes: #212614
1379 * Reworded package description (thanks to Anand Kumria). Closes: #213125
1380 * Added french debconf translation (thanks to Christian Perrier).
1383 -- Christian Hammers <ch@debian.org> Tue, 7 Oct 2003 13:26:58 +0200
1385 quagga (0.96.2-8) unstable; urgency=low
1387 * debian/rules now checks if /proc is mounted as ./configure needs
1388 it but just fails with an obscure error message if it is absent.
1389 (Thanks to Norbert Tretkowski). Closes: #212331
1391 -- Christian Hammers <ch@debian.org> Tue, 23 Sep 2003 12:57:38 +0200
1393 quagga (0.96.2-7) unstable; urgency=low
1395 * Last build was rejected due to a buggy dpkg-dev version. Rebuild.
1397 -- Christian Hammers <ch@debian.org> Mon, 22 Sep 2003 20:34:12 +0200
1399 quagga (0.96.2-6) unstable; urgency=low
1401 * Fixed init script so that is is now possible to just start
1402 the bgpd but not the zebra daemon. Also daemons are now actually
1403 started in the order defined their priority. (Thanks to Thomas Kaehn
1404 and Jochen Friedrich) Closes: #210924
1406 -- Christian Hammers <ch@debian.org> Fri, 19 Sep 2003 21:17:02 +0200
1408 quagga (0.96.2-5) unstable; urgency=low
1410 * For using quagga as BGP route server or similar, it is not
1411 wanted to have the zebra daemon running too. For this reason
1412 it can now be disabled in /etc/quagga/daemons, too.
1413 (Thanks to Jochen Friedrich). Closes: #210924
1414 * Attached *unapplied* patch for the ISIS protocol. I did not dare
1415 to apply it as long as upstream does not do it but this way give
1416 users the possibilities to use it if they like to.
1417 (Thanks to Remco van Mook)
1419 -- Christian Hammers <ch@debian.org> Wed, 17 Sep 2003 19:57:31 +0200
1421 quagga (0.96.2-4) unstable; urgency=low
1423 * Enabled IPV6 router advertisement feature by default on user request
1424 (thanks to Jochen Friedrich and Hasso Tepper). Closes: #210732
1425 * Updated GNU autoconf to let it build on hppa/parisc64 (thanks to
1426 lamont). Closes: #210492
1428 -- Christian Hammers <ch@debian.org> Sat, 13 Sep 2003 14:11:13 +0200
1430 quagga (0.96.2-3) unstable; urgency=medium
1432 * Removed unnecessary "-lcrypto" to avoid dependency against OpenSSL
1433 which would require further copyright addtions.
1435 -- Christian Hammers <ch@debian.org> Wed, 10 Sep 2003 01:37:28 +0200
1437 quagga (0.96.2-2) unstable; urgency=low
1439 * Added note that config files of quagga are in /etc/quagga and
1440 not /etc/zebra for the zebra users that migrate to quagga.
1441 (Thanks to Roberto Suarez Soto for the idea)
1442 * Fixed setgid rights in /etc/quagga.
1444 -- Christian Hammers <ch@debian.org> Wed, 27 Aug 2003 14:05:39 +0200
1446 quagga (0.96.2-1) unstable; urgency=low
1448 * This package has formally been known as "zebra-pj"!
1449 * New upstream release.
1450 Fixes "anoying OSPF problem".
1451 * Modified group ownerships so that vtysh can now be used by normal
1452 uses if they are in the quaggavty group.
1454 -- Christian Hammers <ch@debian.org> Mon, 25 Aug 2003 23:40:14 +0200
1456 quagga (0.96.1-1) unstable; urgency=low
1458 * Zebra-pj, the fork of zebra has been renamed to quagga as the original
1459 upstream author asked the new project membed not to use "zebra" in the
1460 name. zebra-pj is obsolete.
1462 -- Christian Hammers <ch@debian.org> Mon, 18 Aug 2003 23:37:20 +0200
1464 zebra-pj (0.94+cvs20030721-1) unstable; urgency=low
1467 - OSPF changes (integration of the OSPF API?)
1468 - code cleanups (for ipv6?)
1469 * Tightened Build-Deps to gcc-2.95 as 3.x does not compile a stable ospfd.
1470 This is a known problem and has been discussed on the mailing list.
1471 No other solutions so far.
1473 -- Christian Hammers <ch@debian.org> Mon, 21 Jul 2003 23:52:00 +0200
1475 zebra-pj (0.94+cvs20030701-1) unstable; urgency=low
1479 -- Christian Hammers <ch@debian.org> Tue, 1 Jul 2003 01:58:06 +0200