| Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
| Name: quagga | Distribution: openSUSE Leap 15.2 |
| Version: 1.1.1 | Vendor: openSUSE |
| Release: lp152.4.2 | Build date: Fri Nov 15 02:28:24 2019 |
| Group: Productivity/Networking/Routing | Build host: armbuild25 |
| Size: 4776075 | Source RPM: quagga-1.1.1-lp152.4.2.src.rpm |
| Packager: https://bugs.opensuse.org | |
| Url: http://www.quagga.net | |
| Summary: Routing Software for BGP, OSPF and RIP | |
Quagga is a routing software suite, providing implementations of OSPFv2, OSPFv3, RIP v1 and v2, RIPv3 and BGPv4. Quagga is a fork of GNU Zebra.
LGPL-2.1+
* Fri Feb 09 2018 mt@suse.de
- Applied security fix for bgpd DoS via specially crafted BGP
UPDATE messages (CVE-2017-16227,bsc#1065641)
[+ quagga-CVE-2017-16227-bgpd-Fix-AS_PATH-size-calculation.patch]
- Applied security fix for bgpd bounds check issue via attribute
length (CVE-2018-5378,Quagga-2018-0543,bsc#1079798)
[+ Quagga-2018-0543-bgpd.bsc1079798.patch]
- Applied security fix for bgpd double free when processing UPDATE
message (CVE-2018-5379,Quagga-2018-1114,bsc#1079799)
[+ Quagga-2018-1114-bgpd.bsc1079799.patch]
- Applied security fix for bgpd code-to-string conversion tables
overrun (CVE-2018-5380,Quagga-2018-1550,bsc#1079800)
[+ Quagga-2018-1550-bgpd-bsc1079800.patch]
- Applied security fix for bgpd infinite loop on certain invalid
OPEN messages (CVE-2018-5381,Quagga-2018-1975,bsc#1079801)
[+ Quagga-2018-1975-bdpd.bsc1079801.patch]
* Thu Nov 23 2017 rbrown@suse.com
- Replace references to /var/adm/fillup-templates with new
%_fillupdir macro (boo#1069468)
* Tue Apr 11 2017 mt@suse.de
- Disabled passwords in default zebra.conf config file, causing
to disable vty telnet interface by default. The vty interface
is available via "vtysh" utility using pam authentication to
permit management access for root without password (bsc#1021669).
- Changed owner of /etc/quagga to quagga:quagga to permit to manage
quagga via vty interface.
* Mon Apr 03 2017 tchvatal@suse.com
- Remove FIXME's added by spec-cleaner by using proper phases for the
prereq deps
- Remove code checking for the proc mounting (build scripts do that
for us anyway) + remove the commented out autoconf
- Use content of %tmpfiles_create macro rather than 2 lines of checks
- Use version in zebra provides/obsoletes to avoid rpmlint warning
* Thu Mar 30 2017 mt@suse.de
- Update to quagga-1.1.1, a security and bug fix release (fate#323168):
See http://mirror.easyname.at/nongnu/quagga/quagga-1.1.1.changelog.txt
for complete changelog, a digest of the changes:
- Telnet 'vty' interface DoS fix due to unbounded memory
allocation (CVE-2017-5495,bsc#1021669)
- revert opsf6d: Update router-LSA when nbr's interface-ID changes
See http://mirror.easyname.at/nongnu/quagga/quagga-1.0.20161017.changelog.txt
for complete changelog, a digest of the changes:
- isisd: Fix size of malloc
- isisd: check for the existance of the correct list
- ospf6d: fix off-by-one on display of spf reasons
- ospf6d: don't access nexthops out of bounds
- bgpd: fix off-by-one in attribute flags handling
- zebra: stack overrun in IPv6 RA receive code (CVE-2016-1245)
- bgpd: Fix buffer overflow error in bgp_dump_routes_func
- Added libfpm_pb0 and libquagga_pb0 shared library sub-packages,
adjusted libzebra0 sub-package name to libzebra1.
- Use tmpfiles_create RPM macro to create quagga rundir and adjust
tmpfiles config to contain proper rundir at install time.
- Removed obsolete patches:
quagga-CVE-2016-1245-stack-overrun-in-IPv6-RA-receive.patch
quagga-CVE-2016-4049-fix-buf-ovflow-bgp-dump-routes.patch
quagga-autoconf-detect-AM_SILENT_RULES.patch
- Do not enable zebra's tcp interface (port 2600) to use default
unix socket for communication between the daemons (fate#323170).
- Added quagga.log and create and su statemets to logrotate config,
changed default zebra log file name from quagga.log to zebra.log.
- Cleaned up the spec file using spec-cleaner.
* Sat Oct 22 2016 jengelh@inai.de
- Implement shared library policy
- Check for user/group before adding them to the system
- Trim description
* Tue Oct 18 2016 mt@suse.de
- Add quagga-CVE-2016-1245-stack-overrun-in-IPv6-RA-receive.patch:
Fix for a zebra stack overrun in IPv6 RA receive code.
(CVE-2016-1245, bsc#1005258)
* Tue Jul 05 2016 toddrme2178@gmail.com
- Fix Group tag.
* Wed May 04 2016 pwieczorkiewicz@suse.com
- Add quagga-CVE-2016-4049-fix-buf-ovflow-bgp-dump-routes.patch
Fix for a buffer overflow error in bgp_dump_routes_func.
(CVE-2016-4049, bsc#977012)
* Thu Apr 07 2016 meissner@suse.com
- replace quagga.keyring with the newer upstream keyring.
* Fri Apr 01 2016 pwieczorkiewicz@suse.com
- Add the %{_rundir} macro handling to spec in order to distinguish
/run/ vs /var/run distro versions.
* Fri Apr 01 2016 pwieczorkiewicz@suse.com
- Add quagga-autoconf-detect-AM_SILENT_RULES.patch:
Fix autoconf issue of missing AM_SILENT_RULES macro.
- Add build requirement for xz
* Thu Mar 31 2016 pwieczorkiewicz@suse.com
- Disallow unprivileged users to enter config directory /etc/quagga
(group: quagga, mode: 750) and read configuration files installed
there (group: quagga, mode: 640). (boo#770619)
- Add sysconfig.quagga:
Fillup template for /etc/sysconfig/quagga
- Update to version 1.0.20160315:
See http://savannah.spinellicreations.com//quagga/quagga-1.0.20160315.changelog.txt
Remove double read of stream
- Update to version 1.0.20160309:
See http://savannah.spinellicreations.com//quagga/quagga-1.0.20160309.changelog.txt
Add code to extract.pl.in to prevent further cli function
overwrites
Fixed if_add_update possible null dereference
Fix _netlink_route_debug message
Check prefix length from zebra is sensible
Fix privilege dropping to use system defined groups
Additional centos 6 -enable-werror fixes
Fix code to use srandom/random
Removal of 'show ip mroute'
* : add/cleanup initialisers, missing includes, VRF ID in the
API message header, assorted warning
call if_init()/if_terminate() from vrf_init()/vrf_terminate()
fix "babeld: Remove babeld from Quagga" (336724d)
fix in_addr initialisers and more initialisers (for BSD)
fix signedness mix-ups
use an ifindex_t type, defined in lib/if.h, for ifindex values
use long long to print time_t
use void * for printing pointers
babeld: Remove babeld from Quagga
bgpd: add back old forms of 'show <afi> <safi>' for compatibility
add "show ip bgp dampening" command tree
add nexthop length to AF macro
add some peer_lock/unlock debug code
add support for timer commands with peer-group syntax
allow using rtt in route-map's set metric
bgp_scan shouldn't queue up route_nodes with no routes
for processing
check capability falls on right multiple of size,
where possible.
check rtt later after the real peer is known
cleanup vty bgp_node_afi/safi utils
compile fix for clearing-completion FSM fix, using
workqueue helper.
configured suppress value cannot be less than the reuse
value in bgp dampening
crash from not NULLing freed pointers
display of configured dampening parameters
do not allow a timers connect of 0
drop machineparse / random "show" improvements
enable "bgp log-neighbor-changes" by default
encap: add attribute handling, add encap SAFI (RFC5512),
extend extcommunity handling, encap show commands
fix: bgp_btoa to compile,
crash reported by NetDEF CI,
ecommunity_token initialiser,
graceful restart capability minsize,
memory leak in bgpd/bgp_route.c,
Null pointer dereference in bgp_info_mpath_update,
race in clearing completion,
small memory leak in str2prefix_rd,
SNMP write support
'struct peer' memory leaks
useless call in bgpd/bgp_mplsvpn.c
using of two pointers for struct thread_master *
VU#270232, VPNv4 NLRI parser memcpys to stack on
unchecked length (bsc#970952, CVE-2016-2342)
general MP/SAFI improvements
handle AS4 and EOI route distinguishers
if route-map does not exist DENY for redistribute
statements
ignore stale entry candidates during bestpath selection.
implicit updates in BGP may require a withdrawal from
zebra RIB
improve cleanup in bgp_delete()
memory cleanups for valgrind, plus debug changes
hook up bgp ENCAP and VPNv6 CLI node
lower BGP's default keepalive/holdtime to 3s/9s
lower the default 'timers connect' in BGP to 10 seconds
make bgp_info_cmp and multiple-path decision logic more
regular and robust to paths that do not have su_remote
info
make bgp_nlri_parse_encap conform with other nlri_parse
funcs
make _vpnv4 static handling SAFI-agnostic
modify maxpaths cli's to use MULTIPATH_NUM for range
only use routes from Established peers for best path
selection
OPEN parse errors should send OPEN_ERR and UNSPECIFIC
subcode.
peer_uptime overflows after 1 year
fix zAPI parsing
refactor route-map objects modifying integer values
regularise BGP NLRI sanity checks a bit
regularise bgp_update_receive, add missing notifies and
checks
remove the double-pass parsing of NLRIs
'set comm-list delete' stops as soon as it hits a
community-list entry with a deny
speed up "no-hit" withdraws for routeservers
tests - add null pointer protection to fix bgp test
failures
update dump to allow Extended Time Format
update rtt on soft clear
VPNv6 show commands
warn user that bgp is setting maximum-paths larger than
MULTIPATH_NUM
wire up VPNv6 protocol processing
fix struct/pointer sizeof mixups
fixup afi_t to be an enum and cleanup zebra.h
remove 'struct fifo' from lib/zebra.h
refactor FILTER_X in zebra.h
bgp: reorg cleanup to align process and bgp instance
init/destroy
build: add --enable-werror
ARM compilation warning fix
determine CFLAGS more intelligently
enable vtysh and pimd as part of default build
list actual release procedure
make libraries self-reliant
remove the old PIC/PIE patch, let libtool sort it out
rework how MULTIPATH_NUM is delivered to build
distro: fix redhat/quagga.spec.in
distro: redhat/rpm: remove with_ipv6, package pimd binary,
remove pam stack
redhat,CentOS: update to support CentOS/RHEL/Fedora,
upstart/init/systemd
doc: add AFI/SAFI show commands to manual
add 'OSPF Fundamentals' section to OSPF docs
distribute a modern version of texinfo.tex with the docs
older versions of texinfo seem to be sensitive to location
of unmacro
update bgpd docs, inc. on decision process, and with a
section on MED.
fixup of history handling
fix alignment assumptions on non-RT_ROUNDUP platforms.
gdb: Add a directory of files with gdb macros
git: add (generated) cscope files to .gitignore
HACKING: Change format to MarkDown, fix spelling mistakes
rename to HACKING.md in prep for conversion to MarkDown
isisd: add a debug mode that traces LSP construction
add a slight delay to lsp_regenerate_schedule
add new adjacency to LSP neighbor list
add support to import routes from other protocols
allow to adjust lsp-mtu
always print adj->sysid (clang 3.6 warning)
annotate some function arguments with const
assorted fixes (unused variables, static)
Attached-bit in LSP header
don't corrupt memory for long hostnames
don't use POSIX reserved y1/yn names
do remove ipv6 routes from Zebra
drop packet received on multiple interfaces due to
the time gap in binding socket to an interface
fix: assertion in LSP refresh timer calculation
a typo in a log message
crash on processing own p2p hello
IPv6 mask application
LSPs not being regenerated after adjacency change
minor & vs. && mix-up
misleading wording in log
size_t confusions
handle lsp confusion (ISO/IEC 10589:2002 7.3.16.2)
initialize circuit to match area is_type
make send_lsp more robust
provide more detailed log for failed address removal
purge on correct level
remove superfluous checks after XMALLOC etc.
remove unused process_is_hello()
show interface's ipv6 addreses
lib: memory cleanups for valgrind, plus debug changes
add: CMD_RANGE_STR macro to command.h
facility to log all CLI commands
function to get precise remaining time of timer thread
getgrouplist() for Solaris
SAFI_ENCAP type, safi2str prefix utility
"show commandtree" CLI command
zlog_hexdump() for debugging
allow caller to provide prefix storage in sockunion2hostprefix
reduce strcmp in CLI hot paths
fix optional arguments with description interactions
constify sockunion api
don't have log functions change errno
fix: bookkeeping for libreadline malloc()s
duplicate variable name in smux.c and vty.c
Free Pointer dereference in lib/filter.c
POSIX capabilities on SunOS platforms
"reduce strcmp in CLI" fallout
"sockunion: add hash function" for BSD
vrf_bitmap leak in zclient_free()
hide internal prefix list structures
make prefix2str simpler to use, and use it in zclient
make sockunion2str safer to use
memory reporting fails over 2GB
move the interface list into "struct vrf"
display more info if cap_set_proc fails.
don't use CAP_NET_BROADCAST
remove unused 'show memory XXX' functionality
silence type range warning in macro
straighten out ORF prefix list support
stream: fix stream sanity checks
treat realloc of null pointer as alloc Now use zalloc
rather than alloc with null. Fixes issue seen in
bgp check tests.
use const consistently for zserv path
vrf: enable / disable a VRF
vty: add separate output fd support to VTYs
add vty_stdio()
add vty_stdio at-close hook
don't clear output buffer on input EOF
put stdin in raw mode for vty
reduce unneccessary C extension usage
support multiple VRFs by using linux netns
add trivial work_queue_is_scheduled helper
wrong #define used for IPV6_MINHOPCOUNT
zclient: can overflow (struct interface) hw_addr if
zebra is evil
consolidate error reporting for zclient_read_header
add "vrf_id" into the "struct interface"
move "struct vrf" to be a lib module
unify link layer type and hardware address handling
configure an interface in non-default VRF
ospf6d: fix for fast OSPF convergence
fix pointer arithmetic warning
fix uninitialized warning in SNMP
oi->cost is uint32, not short
use existing union, avoid strict-aliasing
ospfd: add missing unlock for ospf_interface_address_delete()
extend 'ip ospf area' to take address argument + rationalise
ospf enable
fast OSPF convergence
fix bug in 94266fa822ba, nbr_self rebuild didn't add
valid nbr_self
fix for 'no' + 'debug command' does not disable
'debug command'
fix unused warning in ospf_write
impl. per interface 'ip ospf area' command
lower the default OSPF spf timers to '0 50 5000'
make ospf_passive_interface_update calls friendly to
static analysis
move route_unlock_node() in ospf_ase_incremental_update()
ospf_ase.c, external_lsa locking fixes.
ospf_ls_upd_send() add missing unlock.
ospf_nbr_nbma_set()/ospf_snmp_vl_add() add unlock
PointToPoint neighbors are identified by router ID
remove another odd flooding hack in opaque LSA code
remove HAVE_OPAQUE_LSA and HAVE_OSPF_TE
remove the blocking of opaque LSAs origination and
flooding 'optimisation'
self nbrs needs to be rebuilt when router ID changes.
split up network interface enable a bit, for per-interface
area cmd
trap on state change seems to send incorrect value for
ospfNbrState
use route_node_lookup() instaed of route_node_get()
pimd: add ability to set DR Priority for an interface
add knowledge of different packet types
add support for configuring multicast static routes
assert when no route to source from a new igmp join
cast ioctl values when printing them
cast to sockaddr_in to sockaddr
change ioctl call failure from vty_out to zlog_warn
cleanup interface startup
cleanup zebra debugs to be protected by debug commands
create ability to modify hell and hold timers per interface
do not display some default values as part of a show run
ensure new generation_id is different from previous
fix first DR Election, leaked fd, out of tree build,
size_t zlog_err format string warning
limit pim hello log messages
mask unused zclient_broken()
notice when we receive a packet type we can't handle yet
stop DR election on every hello
use IPPROTO_IP (not SOL_IP) for IP_PKTINFO
'show debugging' collision
ripngd: add ECMP support
allow to enable/disable the ECMP feature
sockopt: add support for querying tcp round-trip-time
sockunion: add accessors for sockunion address
add hash function
solaris: create ioctl_solaris.h
drop duplicate __EXTENSION__ define
more warnings fixed
no ROUNDUP
tests: add CLI dummy command-exec tool
add more AS4 capability tests + little fixes for
couple of GR test cases.
add testcli reference in/out & do DejaGNU
vrf: add a runtime check before playing with netns
vtysh: add missing show thread/work-queues commands
adjust bad_cli_stomps in extract.pl.in to reflect
fixes & fix build
allow display of individual daemons configs
allow --with-libpam to build with --enable-werror
don't use '\0' as NULL
drop unused variables & RETSIGTYPE
fix Quagga.conf file read in.
fix the fix for babeld removal
when the config file is close to the boundry of
size of buffer vtysh hangs.
hook up bgp ENCAP and VPNv6 CLI node
fixup of history handling
reduce unneccessary C extension usage
support multiple VRFs by using linux netns
configure an interface in non-default VRF
zebra: fix struct/pointer sizeof mixups
add "vrf_id" into the "struct interface"
move "struct vrf" to be a lib module
unify link layer type and hardware address handling
configure an interface in non-default VRF
add hooks upon enabling / disabling a VRF
additional redistribute related logging
atomic FIB updates
clean up misc_null pragmas, RTADV define
configure static routes in any VRF
don't print uninitialized string
fix: addr sent in ZEBRA_IPV6_NEXTHOP_LOOKUP
build with rtadv disabled
change of distance on ipv6 route creating
duplicate routes
leaked sockets in rtadv.c
NetBSD interface stats printf
non usage of VRF_DEFAULT
route deletion on *BSD
rtadv detection, check for non-glibc linux
VRF code for *BSD
implement per-route mtu handling
let FIB stand for its respective VRF
let the route-map rule "match interface" work
for VRFs
the netlink sockets work per VRF
lookup the address in all VRFs when set the
route-map rule "set src"
maintain RTADV and router-id per VRF
make RTF_LLINFO optional to fix FreeBSD
make ZEBRA_FLAG_CHANGED internal status
remove HAVE_IPV6 from rib.h and zebra_rib.c
remove metric from kernel
rib->nexthop_num is double incremented
show interfaces in a specified VRF or all VRFs
show routes in a specified VRF or all VRFs
silence zebra_serv_un unused warning
simplify redistribution code
support FIB override routes
use link scope for interface routes
use prefix2str for logging where possible
use SA_SIZE for RT_ROUNDUP on FreeBSD
use prefix2str and unify show ip/ipv6 route code
wire up "debug zebra packet detail"
* Sat Oct 17 2015 mrueckert@suse.de
- run systemd-tmpfiles in %post to get the directory set up.
* Sat Mar 21 2015 p.drouand@gmail.com
- Fix build for openSUSE 13.1/SLE12
* Sat Mar 14 2015 p.drouand@gmail.com
- Update to version 0.99.24.1
* zebra: don't print uninitialized string (3b02fe8)
This crept in as part of the MRIB improvements and I missed the compiler
warning between other noise. Unfortunately, printing an uninitialised
variable can in fact make zebra crash, so this is not trivial.
- Use systemd for openSUSE > 12.3
- Add patch from Fedora
* 0001-systemd-change-the-WantedBy-target.patch
/etc/logrotate.d/quagga /etc/pam.d/quagga /etc/quagga /etc/quagga/vtysh.conf /etc/quagga/zebra.conf /run/quagga /usr/bin/bgp_btoa /usr/bin/test_igmpv3_join /usr/bin/vtysh /usr/lib/systemd/system/bgpd.service /usr/lib/systemd/system/isisd.service /usr/lib/systemd/system/ospf6d.service /usr/lib/systemd/system/ospfd.service /usr/lib/systemd/system/ripd.service /usr/lib/systemd/system/ripngd.service /usr/lib/systemd/system/zebra.service /usr/lib/tmpfiles.d /usr/lib/tmpfiles.d/quagga.conf /usr/sbin/bgpd /usr/sbin/isisd /usr/sbin/ospf6d /usr/sbin/ospfclient /usr/sbin/ospfd /usr/sbin/pimd /usr/sbin/rcbgpd /usr/sbin/rcisisd /usr/sbin/rcospf6d /usr/sbin/rcospfd /usr/sbin/rcripd /usr/sbin/rcripngd /usr/sbin/rczebra /usr/sbin/ripd /usr/sbin/ripngd /usr/sbin/watchquagga /usr/sbin/zebra /usr/share/doc/packages/quagga /usr/share/doc/packages/quagga/AUTHORS /usr/share/doc/packages/quagga/COPYING /usr/share/doc/packages/quagga/COPYING.LIB /usr/share/doc/packages/quagga/ChangeLog /usr/share/doc/packages/quagga/NEWS /usr/share/doc/packages/quagga/README /usr/share/doc/packages/quagga/REPORTING-BUGS /usr/share/doc/packages/quagga/SERVICES /usr/share/doc/packages/quagga/TODO /usr/share/doc/packages/quagga/bgpd.conf.sample /usr/share/doc/packages/quagga/bgpd.conf.sample2 /usr/share/doc/packages/quagga/isisd.conf.sample /usr/share/doc/packages/quagga/ospf6d.conf.sample /usr/share/doc/packages/quagga/ospfd.conf.sample /usr/share/doc/packages/quagga/pimd.conf.sample /usr/share/doc/packages/quagga/ripd.conf.sample /usr/share/doc/packages/quagga/ripngd.conf.sample /usr/share/doc/packages/quagga/vtysh.conf.sample /usr/share/doc/packages/quagga/zebra.conf.sample /usr/share/fillup-templates/sysconfig.quagga /usr/share/info/quagga.info-1.gz /usr/share/info/quagga.info-2.gz /usr/share/info/quagga.info.gz /usr/share/man/man1/vtysh.1.gz /usr/share/man/man8/bgpd.8.gz /usr/share/man/man8/isisd.8.gz /usr/share/man/man8/ospf6d.8.gz /usr/share/man/man8/ospfclient.8.gz /usr/share/man/man8/ospfd.8.gz /usr/share/man/man8/pimd.8.gz /usr/share/man/man8/ripd.8.gz /usr/share/man/man8/ripngd.8.gz /usr/share/man/man8/watchquagga.8.gz /usr/share/man/man8/zebra.8.gz /var/log/quagga
Generated by rpm2html 1.8.1
Fabrice Bellet, Tue Apr 9 12:39:17 2024