Commit graph

5860 commits

Author SHA1 Message Date
Benjamin Hipple
d716c10dde
Merge pull request #86548 from r-ryantm/auto-update/dnsproxy
dnsproxy: 0.24.0 -> 0.27.1
2020-05-03 00:39:50 -04:00
R. RyanTM
2a962aecd6 amass: 3.5.4 -> 3.5.5 2020-05-02 10:18:50 +02:00
R. RyanTM
05fe7f3647 inadyn: 2.6 -> 2.7 2020-05-02 10:15:07 +02:00
R. RyanTM
cc5d997615 dnsproxy: 0.24.0 -> 0.27.1 2020-05-02 06:54:35 +00:00
Mario Rodas
8bc9fd2559
Merge pull request #84310 from r-ryantm/auto-update/minio-client
minio-client: 2020-03-06T23-29-45Z -> 2020-04-04T05-28-55Z
2020-05-01 23:35:54 -05:00
Oleksii Filonenko
a3ddfec8e0
wormhole: init at 0.1.5 2020-05-01 14:16:25 +00:00
Frederik Rietdijk
635ea98f2f
Merge pull request #86330 from NixOS/staging-next
Staging next
2020-05-01 08:37:12 +02:00
Mario Rodas
f0c66e1a3e
Merge pull request #86298 from magnetophon/mu
mu: 1.4.1 -> 1.4.3
2020-04-30 23:35:41 -05:00
Mario Rodas
c786eb9baa
Merge pull request #86303 from filalex77/frp-0.33.0
frp: 0.32.0 -> 0.33.0
2020-04-30 23:34:11 -05:00
Andreas Rammhold
bf3870a4c0
Merge pull request #86277 from mweinelt/dnsmasq/2.81
dnsmasq: 2.80 → 2.81
2020-05-01 03:50:57 +02:00
Maximilian Bosch
ee58c7a363
Merge pull request #82982 from cole-h/rust-cleanup
improve robustness of various Rust packages
2020-04-30 02:07:57 +02:00
Oleksii Filonenko
3bdfedde2a frp: 0.32.0 -> 0.33.0 2020-04-29 13:24:20 +03:00
Bart Brouns
7b8408fd4b mu: 1.4.1 -> 1.4.3 2020-04-29 11:32:15 +02:00
Pavel Goran
462fa8bbaf pykms: replace logging patch
The logging "sed-patch" that was introduced for version 20190611 worked poorly:
it was too intrusive (breaking the --logfile option), and it didn't prevent
using in-store file for logging by default. The new logging patch (an actual
"diff-patch") is less intrusive: it just changes the default log file's
location to be the current directory instead of the executable's directory.
2020-04-29 03:53:41 +00:00
Martin Weinelt
c9fef6230a dnsmasq: 2.80 → 2.81
Fixes: CVE-2019-14834

A vulnerability was found in dnsmasq before version 2.81, where the
memory leak allows remote attackers to cause a denial of service
(memory consumption) via vectors involving DHCP response creation.

Changelog:

version 2.81
	Improve cache behaviour for TCP connections. For ease of
	implementaion, dnsmasq has always forked a new process to handle
	each incoming TCP connection. A side-effect of this is that
	any DNS queries answered from TCP connections are not cached:
	when TCP connections were rare, this was not a problem.
	With the coming of DNSSEC, it is now the case that some
	DNSSEC queries have answers which spill to TCP, and if,
	for instance, this applies to the keys for the root, then
	those never get cached, and performance is very bad.
	This fix passes cache entries back from the TCP child process to
	the main server process, and fixes the problem.

	Remove the NO_FORK compile-time option, and support for uclinux.
	In an era where everything has an MMU, this looks like
	an anachronism, and it adds to (Ok, multiplies!) the
	combinatorial explosion of compile-time options. Thanks to
	Kevin Darbyshire-Bryant for the patch.

	Fix line-counting when reading /etc/hosts and friends; for
	correct error messages. Thanks to Christian Rosentreter
	for reporting this.

	Fix bug in DNS non-terminal code, added in 2.80, which could
	sometimes cause a NODATA rather than an NXDOMAIN reply.
	Thanks to Norman Rasmussen, Sven Mueller and Maciej Żenczykowski
	for spotting and diagnosing the bug and providing patches.

	Support TCP-fastopen (RFC-7413) on both incoming and
	outgoing TCP connections, if supported and enabled in the OS.

	Improve kernel-capability manipulation code under Linux. Dnsmasq
	now fails early if a required capability is not available, and
	tries not to request capabilities not required by its
	configuration.

	Add --shared-network config. This enables allocation of addresses
	by the DHCP server in subnets where the server (or relay) does not
	have an interface on the network in that subnet. Many thanks to
	kamp.de for sponsoring this feature.

	Fix broken contrib/lease_tools/dhcp_lease_time.c. A packet
	validation check got borked in commit 2b38e382 and release 2.80.
	Thanks to Tomasz Szajner for spotting this.

	Fix compilation against nettle version 3.5 and later.

	Fix spurious DNSSEC validation failures when the auth section
	of a reply contains unsigned RRs from a signed zone,
	with the exception that NSEC and NSEC3 RRs must always be signed.
        Thanks to Tore Anderson for spotting and diagnosing the bug.

	Add --dhcp-ignore-clid. This disables reading of DHCP client
	identifier option (option 61), so clients are only identified by
	MAC addresses.

	Fix a bug which stopped --dhcp-name-match from working when a hostname
	is supplied in --dhcp-host. Thanks to James Feeney for spotting this.

	Fix bug which caused very rarely caused zero-length DHCPv6 packets.
	Thanks to Dereck Higgins for spotting this.

	Add --tftp-single-port option.

	Enhance --conf-dir to load files in a deterministic order. Thanks to
	Evgenii Seliavka for the suggestion and initial patch.

	In the router advert code, handle case where we have two
	different interfaces on the same IPv6 net, and we are doing
	RA/DHCP service on only one of them. Thanks to NIIBE Yutaka
	for spotting this case and making the initial patch.

	Support prefixed ranges of ipv6 addresses in dhcp-host.
	This eases problems chain-netbooting, where each link in the
	chain requests an address using a different UID. With a single
	address, only one gets the "static" address, but with this
	fix, enough addresses can be reserved for all the stages of the
	boot. Many thanks to Harald Jensås for his work on this idea and
	earlier patches.

	Add filtering by tag of --dhcp-host directives. Based on a patch
	by Harald Jensås.

	Allow empty server spec in --rev-server, to match --server.

	Remove DSA signature verification from DNSSEC, as specified in
	RFC 8624. Thanks to Loganaden Velvindron for the original patch.

	Add --script-on-renewal option.
2020-04-29 04:22:08 +02:00
Jörg Thalheim
ef959a1d9b
Merge pull request #85984 from Mic92/wireguard 2020-04-26 11:28:55 +01:00
Maximilian Bosch
a4347f2b92
wireguard: reference missing nixosTests.wireguard 2020-04-25 20:22:14 +02:00
Jörg Thalheim
77dc7ef908
wireguard-tools: reference tests 2020-04-25 11:16:10 +01:00
Bruno Bigras
6478e659da httplz: 1.8.0 -> 1.9.2 2020-04-25 04:10:37 -04:00
Konrad Borowski
6d8e791b28 rtptools: update homepage link to use HTTPS 2020-04-24 19:44:59 -07:00
Konrad Borowski
409f57508d slimrat: remove
The package was marked as broken for 3 years, there were no
upstream updates for 8 years, and the program requires third
party services that don't provide APIs to work. I think it's
safe to say that this program is not going to work.
2020-04-24 17:18:07 +02:00
Jörg Thalheim
58c693c921
Merge pull request #85919 from xfix/fix-build-with-bash-completion 2020-04-24 12:10:11 +01:00
Konrad Borowski
d655b917c1 mosh: fix build with bash-completion 2.10
Fixes #85893
2020-04-24 12:47:18 +02:00
zowoq
478155679f slirp4netns: 1.0.0 -> 1.0.1
https://github.com/rootless-containers/slirp4netns/releases/tag/v1.0.1
2020-04-24 10:36:20 +10:00
Martin Milata
f35d50c68c openvpn: 2.4.7 -> 2.4.9
Fixes CVE-2020-11736
2020-04-23 14:25:37 +02:00
Frederik Rietdijk
cff0669a48 Merge master into staging-next 2020-04-23 08:11:16 +02:00
Martin Weinelt
e323fbabba babeld: 1.9.1 → 1.9.2
Dear all,

Babeld-1.9.2 is available from

  https://www.irif.fr/~jch/software/files/babeld-1.9.2.tar.gz
  https://www.irif.fr/~jch/software/files/babeld-1.9.2.tar.gz.asc

For more information about the Babel routing protocol, please see

  https://www.irif.fr/~jch/software/babel/

This is a bug fix release.  It fixes two bugs where IPv4 prefixes could be
represented incorrectly, with a range of confusing symptoms ; many thanks
to Faban Bläse for diagnosing the issue.  In addition, it fixes incorrect
parsing of unknown address encodings, thanks to Théo Bastian for the fix.

21 April 2020: babeld-1.9.2

  * Fixed two issues that could cause IPv4 routes to be represented
    incorrectly, with a range of confusing symptoms.  Thanks to
    Fabian Bläse.
  * Fixed incorrect parsing of TLVs with an unknown Address Encoding.
    Thanks to Théophile Bastian.
  * Fixed access to mis-aligned data structure.  Thanks to Antonin Décimo.

-- Juliusz Chroboczek

_______________________________________________
Babel-users mailing list
Babel-users@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/babel-users
2020-04-22 19:33:19 +02:00
Frederik Rietdijk
8374a2a0ee Merge master into staging-next 2020-04-22 17:20:20 +02:00
Emery Hemingway
59219a1e55 yggdrasil: declare tests from nixosTests 2020-04-22 11:45:04 +05:30
Emery Hemingway
a2e3fc32b3 cjdns: declare tests from nixosTests 2020-04-22 11:45:04 +05:30
Frederik Rietdijk
23be4a8b4d Merge master into staging-next 2020-04-21 19:59:56 +02:00
Jörg Thalheim
b1e93ddf4d ferm: 2.4.1 -> 2.5.1 2020-04-21 19:48:29 +02:00
Peter Hoeg
e43a6c9468 mu: minor cleanup 2020-04-21 19:36:47 +02:00
Frederik Rietdijk
803b3d296c Merge staging-next into staging 2020-04-21 08:29:51 +02:00
Daniel Fullmer
4b0b23db77 wifite2: 2.5.2 -> 2.5.3 2020-04-20 23:10:15 +02:00
Bart Brouns
ed79cb56b7 mu: 1.2 -> 1.4.1
msg2pdf is disabled for now:
https://github.com/djcb/mu/blob/1.4.1/NEWS.org
2020-04-20 11:03:03 +02:00
Léo Gaspard
2d6f7344d8
Merge pull request #74841 from tilpner/ferm-update
ferm: 2.4.1 -> 2.5
2020-04-20 00:59:46 +02:00
Alyssa Ross
a72c5b5388 modemmanager: enableParallelBuilding
Seems to work fine for me at -j48.
2020-04-19 22:35:29 +00:00
Mario Rodas
1406d8b314
Merge pull request #85343 from xrelkd/add/rshijack
rshijack: init at 0.3.0
2020-04-19 11:29:23 -05:00
rnhmjoj
55d52851a6
mitmproxy: 4.0.4 -> 5.1.1 2020-04-19 11:19:36 +02:00
Vladimír Čunát
e233a9d4dd
Merge #84442: staging-next branch 2020-04-18 23:11:00 +02:00
John Ericson
1ea80c2cc3 Merge remote-tracking branch 'upstream/master' into staging 2020-04-18 15:40:49 -04:00
xrelkd
07a85c01ac rshijack: init at 0.3.0 2020-04-19 02:20:15 +08:00
worldofpeace
21861f3a80
Merge pull request #85340 from xrelkd/add/sniffglue
sniffglue: init at 0.10.1
2020-04-18 14:16:40 -04:00
xrelkd
2b87ca0f9c sniffglue: init at 0.10.1 2020-04-19 01:57:35 +08:00
Oleksii Filonenko
9524aafeb7
httpie: 2.0.0 -> 2.1.0 2020-04-18 18:36:09 +03:00
Vladimír Čunát
d96487b9ca
Merge branch 'master' into staging-next
Hydra nixpkgs: ?compare=1582510
2020-04-18 07:42:26 +02:00
John Ericson
33c2a76c5e Merge remote-tracking branch 'upstream/master' into staging 2020-04-17 18:40:51 -04:00
Mario Rodas
ba947eba04
Merge pull request #85347 from zowoq/megatools
megatools: 1.10.2 -> 1.10.3
2020-04-17 05:54:19 -05:00
Maximilian Bosch
20252ee647
findomain: 1.4.5 -> 1.5.0
https://github.com/Edu4rdSHL/findomain/releases/tag/1.5.0
2020-04-17 00:28:13 +02:00