pkgsrc-Changes-HG archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

[pkgsrc/trunk]: pkgsrc/net/tcpdump Updated tcpdump to 4.9.2.



details:   https://anonhg.NetBSD.org/pkgsrc/rev/5d0b82e76331
branches:  trunk
changeset: 367896:5d0b82e76331
user:      wiz <wiz%pkgsrc.org@localhost>
date:      Fri Sep 08 11:10:41 2017 +0000

description:
Updated tcpdump to 4.9.2.

Sunday September 3, 2017 denis%ovsienko.info@localhost
  Summary for 4.9.2 tcpdump release
    Do not use getprotobynumber() for protocol name resolution.  Do not do
      any protocol name resolution if -n is specified.
    Improve errors detection in the test scripts.
    Fix a segfault with OpenSSL 1.1 and improve OpenSSL usage.
    Clean up IS-IS printing.
    Fix buffer overflow vulnerabilities:
      CVE-2017-11543 (SLIP)
      CVE-2017-13011 (bittok2str_internal)
    Fix infinite loop vulnerabilities:
      CVE-2017-12989 (RESP)
      CVE-2017-12990 (ISAKMP)
      CVE-2017-12995 (DNS)
      CVE-2017-12997 (LLDP)
    Fix buffer over-read vulnerabilities:
      CVE-2017-11541 (safeputs)
      CVE-2017-11542 (PIMv1)
      CVE-2017-12893 (SMB/CIFS)
      CVE-2017-12894 (lookup_bytestring)
      CVE-2017-12895 (ICMP)
      CVE-2017-12896 (ISAKMP)
      CVE-2017-12897 (ISO CLNS)
      CVE-2017-12898 (NFS)
      CVE-2017-12899 (DECnet)
      CVE-2017-12900 (tok2strbuf)
      CVE-2017-12901 (EIGRP)
      CVE-2017-12902 (Zephyr)
      CVE-2017-12985 (IPv6)
      CVE-2017-12986 (IPv6 routing headers)
      CVE-2017-12987 (IEEE 802.11)
      CVE-2017-12988 (telnet)
      CVE-2017-12991 (BGP)
      CVE-2017-12992 (RIPng)
      CVE-2017-12993 (Juniper)
      CVE-2017-11542 (PIMv1)
      CVE-2017-11541 (safeputs)
      CVE-2017-12994 (BGP)
      CVE-2017-12996 (PIMv2)
      CVE-2017-12998 (ISO IS-IS)
      CVE-2017-12999 (ISO IS-IS)
      CVE-2017-13000 (IEEE 802.15.4)
      CVE-2017-13001 (NFS)
      CVE-2017-13002 (AODV)
      CVE-2017-13003 (LMP)
      CVE-2017-13004 (Juniper)
      CVE-2017-13005 (NFS)
      CVE-2017-13006 (L2TP)
      CVE-2017-13007 (Apple PKTAP)
      CVE-2017-13008 (IEEE 802.11)
      CVE-2017-13009 (IPv6 mobility)
      CVE-2017-13010 (BEEP)
      CVE-2017-13012 (ICMP)
      CVE-2017-13013 (ARP)
      CVE-2017-13014 (White Board)
      CVE-2017-13015 (EAP)
      CVE-2017-11543 (SLIP)
      CVE-2017-13016 (ISO ES-IS)
      CVE-2017-13017 (DHCPv6)
      CVE-2017-13018 (PGM)
      CVE-2017-13019 (PGM)
      CVE-2017-13020 (VTP)
      CVE-2017-13021 (ICMPv6)
      CVE-2017-13022 (IP)
      CVE-2017-13023 (IPv6 mobility)
      CVE-2017-13024 (IPv6 mobility)
      CVE-2017-13025 (IPv6 mobility)
      CVE-2017-13026 (ISO IS-IS)
      CVE-2017-13027 (LLDP)
      CVE-2017-13028 (BOOTP)
      CVE-2017-13029 (PPP)
      CVE-2017-13030 (PIM)
      CVE-2017-13031 (IPv6 fragmentation header)
      CVE-2017-13032 (RADIUS)
      CVE-2017-13033 (VTP)
      CVE-2017-13034 (PGM)
      CVE-2017-13035 (ISO IS-IS)
      CVE-2017-13036 (OSPFv3)
      CVE-2017-13037 (IP)
      CVE-2017-13038 (PPP)
      CVE-2017-13039 (ISAKMP)
      CVE-2017-13040 (MPTCP)
      CVE-2017-13041 (ICMPv6)
      CVE-2017-13042 (HNCP)
      CVE-2017-13043 (BGP)
      CVE-2017-13044 (HNCP)
      CVE-2017-13045 (VQP)
      CVE-2017-13046 (BGP)
      CVE-2017-13047 (ISO ES-IS)
      CVE-2017-13048 (RSVP)
      CVE-2017-13049 (Rx)
      CVE-2017-13050 (RPKI-Router)
      CVE-2017-13051 (RSVP)
      CVE-2017-13052 (CFM)
      CVE-2017-13053 (BGP)
      CVE-2017-13054 (LLDP)
      CVE-2017-13055 (ISO IS-IS)
      CVE-2017-13687 (Cisco HDLC)
      CVE-2017-13688 (OLSR)
      CVE-2017-13689 (IKEv1)
      CVE-2017-13690 (IKEv2)
      CVE-2017-13725 (IPv6 routing headers)

Sunday July 23, 2017 denis%ovsienko.info@localhost
  Summary for 4.9.1 tcpdump release
    CVE-2017-11108/Fix bounds checking for STP.
    Make assorted documentation updates and fix a few typos in tcpdump output.
    Fixup -C for file size >2GB (GH #488).
    Show AddressSanitizer presence in version output.
    Fix a bug in test scripts (exposed in GH #613).
    On FreeBSD adjust Capsicum capabilities for netmap.
    On Linux fix a use-after-free when the requested interface does not exist.

diffstat:

 net/tcpdump/Makefile   |   5 ++---
 net/tcpdump/distinfo   |  10 +++++-----
 net/tcpdump/options.mk |  12 +++---------
 3 files changed, 10 insertions(+), 17 deletions(-)

diffs (53 lines):

diff -r f5fd578450a2 -r 5d0b82e76331 net/tcpdump/Makefile
--- a/net/tcpdump/Makefile      Fri Sep 08 11:09:35 2017 +0000
+++ b/net/tcpdump/Makefile      Fri Sep 08 11:10:41 2017 +0000
@@ -1,7 +1,6 @@
-# $NetBSD: Makefile,v 1.46 2017/03/09 03:59:17 maya Exp $
+# $NetBSD: Makefile,v 1.47 2017/09/08 11:10:41 wiz Exp $
 
-DISTNAME=      tcpdump-4.9.0
-PKGREVISION=   2
+DISTNAME=      tcpdump-4.9.2
 CATEGORIES=    net
 MASTER_SITES=  http://www.tcpdump.org/release/
 
diff -r f5fd578450a2 -r 5d0b82e76331 net/tcpdump/distinfo
--- a/net/tcpdump/distinfo      Fri Sep 08 11:09:35 2017 +0000
+++ b/net/tcpdump/distinfo      Fri Sep 08 11:10:41 2017 +0000
@@ -1,7 +1,7 @@
-$NetBSD: distinfo,v 1.25 2017/02/02 18:08:29 maya Exp $
+$NetBSD: distinfo,v 1.26 2017/09/08 11:10:41 wiz Exp $
 
-SHA1 (tcpdump-4.9.0.tar.gz) = 2c4193685edb1040506a9ec0f15cd85825085697
-RMD160 (tcpdump-4.9.0.tar.gz) = fd558121691cacd4ea1412ef422792a1aca525e1
-SHA512 (tcpdump-4.9.0.tar.gz) = e98d73ae706d42e96b4069e196cf17af892eb97935664eebd08779b55b4da858bc1732d714efd16924f862aad0ba5550ceb2213c68414ed48907c46456c9fc82
-Size (tcpdump-4.9.0.tar.gz) = 1260309 bytes
+SHA1 (tcpdump-4.9.2.tar.gz) = f7dccebe94c3d07ac8744d43297ea2b98b35a13f
+RMD160 (tcpdump-4.9.2.tar.gz) = 966b95adee5c405dc7e631f73b43ced849ee1e80
+SHA512 (tcpdump-4.9.2.tar.gz) = e1bc19a5867d6e3628f3941bdf3ec831bf13784f1233ca1bccc46aac1702f47ee9357d7ff0ca62cddf211b3c8884488c21144cabddd92c861e32398cd8f7c44b
+Size (tcpdump-4.9.2.tar.gz) = 2298386 bytes
 SHA1 (patch-ah) = 75dbc11440b32349014919ac04a628d8d4d8c45c
diff -r f5fd578450a2 -r 5d0b82e76331 net/tcpdump/options.mk
--- a/net/tcpdump/options.mk    Fri Sep 08 11:09:35 2017 +0000
+++ b/net/tcpdump/options.mk    Fri Sep 08 11:10:41 2017 +0000
@@ -1,17 +1,11 @@
-# $NetBSD: options.mk,v 1.3 2012/06/12 15:46:01 wiz Exp $
+# $NetBSD: options.mk,v 1.4 2017/09/08 11:10:41 wiz Exp $
 
 PKG_OPTIONS_VAR=       PKG_OPTIONS.tcpdump
-PKG_SUPPORTED_OPTIONS= inet6 ssl libsmi
-PKG_SUGGESTED_OPTIONS= inet6 ssl
+PKG_SUPPORTED_OPTIONS= ssl libsmi
+PKG_SUGGESTED_OPTIONS= ssl
 
 .include "../../mk/bsd.options.mk"
 
-.if !empty(PKG_OPTIONS:Minet6)
-CONFIGURE_ARGS+=       --enable-ipv6
-.else
-CONFIGURE_ARGS+=       --disable-ipv6
-.endif
-
 .if !empty(PKG_OPTIONS:Mssl)
 USE_OLD_DES_API=       yes
 .include "../../security/openssl/buildlink3.mk"



Home | Main Index | Thread Index | Old Index