openSUSE Build Service

Dirk Mueller (dirkmueller) committed over 1 year ago (revision 78)

buildservice-autocommit accepted request 1035295 from

Marius Tomaschewski (mtomaschewski) over 1 year ago (revision 77)

baserev update by copy to link target

Marius Tomaschewski (mtomaschewski) accepted request 1035188 from

Marius Tomaschewski (mtomaschewski) over 1 year ago (revision 76)

- Remove attempts to correct configuration file ownership and
  permissions in service files, that may lead to local privilege
  escalation from quagga to root (bsc#1191890,CVE-2021-44038).
  [+ remove-chown-chmod.service.patch]
- Correct hardening patches adding ReadWritePaths=/etc/quagga
- Add update-messages that quagga is not developed for years,
  is about to get dropped from Factory/Tumbleweed soon and
  users should migrate to FRR (https://frrouting.org/).

buildservice-autocommit accepted request 1032851 from

Factory Maintainer (factory-maintainer) over 1 year ago (revision 75)

baserev update by copy to link target

Marius Tomaschewski (mtomaschewski) accepted request 1003794 from

Stefan Schubert (schubi2) over 1 year ago (revision 74)

- Migration to /usr/etc: Saving user changed configuration files
  in /etc and restoring them while an RPM update.

buildservice-autocommit accepted request 985928 from

Lars Vogdt (lrupp) almost 2 years ago (revision 73)

baserev update by copy to link target

Lars Vogdt (lrupp) accepted request 985752 from

Stefan Schubert (schubi2) almost 2 years ago (revision 72)

- Moved logrotate files from user specific directory /etc/logrotate.d
  to vendor specific directory /usr/etc/logrotate.d.

Lars Vogdt (lrupp) accepted request 926713 from

Johannes Segitz (jsegitz) over 2 years ago (revision 71)

Automatic systemd hardening effort by the security team. This has not been tested. For details please see https://en.opensuse.org/openSUSE:Security_Features#Systemd_hardening_effort

Marius Tomaschewski (mtomaschewski) accepted request 884131 from

Cristian Rodríguez (elvigia) about 3 years ago (revision 70)

- Avoid using libpcre-posix, which is intended for systems without
  a working regex.h, symbols clash with libc and undefined behaviour
  may ensue.

buildservice-autocommit accepted request 698175 from

Tomáš Chvátal (scarabeus_iv) about 5 years ago (revision 69)

baserev update by copy to link target

Tomáš Chvátal (scarabeus_iv) accepted request 698166 from

Michael Vetter (jubalh) about 5 years ago (revision 68)

- bsc#1130588: Require shadow instead of old pwdutils

buildservice-autocommit accepted request 650573 from

Tomáš Chvátal (scarabeus_iv) over 5 years ago (revision 67)

baserev update by copy to link target

Tomáš Chvátal (scarabeus_iv) accepted request 649018 from

Martin Hauke (mnhauke) over 5 years ago (revision 66)

- Update to version 1.2.4
  Bugfix release
  See http://mirror.easyname.at/nongnu/quagga/quagga-1.2.4.changelog.txt
  for complete changelog.
- Update to version 1.2.3
  Bugfix and security release
  See http://mirror.easyname.at/nongnu/quagga/quagga-1.2.3.changelog.txt
  for complete changelog.
  * Security related changes:
    + Fixes CVE-2018-5278
    + Fixes CVE-2018-5279
    + Fixes CVE-2018-5280
    + Fixes CVE-2018-5281
- Update to version 1.2.2
  Bugfix and security release
  See http://mirror.easyname.at/nongnu/quagga/quagga-1.2.2.changelog.txt
  for complete changelog.
  * Security related changes:
    + Fixes CVE-2017-16227
- Update to version 1.2.1
  Bugfix release
  See http://mirror.easyname.at/nongnu/quagga/quagga-1.2.1.changelog.txt
  for complete changelog.
- Update to version 1.2.0
  Bugfix release
  See http://mirror.easyname.at/nongnu/quagga/quagga-1.2.0.changelog.txt
  for complete changelog.
- Rebase patch:
  * 0001-systemd-change-the-WantedBy-target.patch
- Removed patches (fixed upstream):

buildservice-autocommit accepted request 577176 from

Marius Tomaschewski (mtomaschewski) over 6 years ago (revision 65)

baserev update by copy to link target

Marius Tomaschewski (mtomaschewski) committed over 6 years ago (revision 64)

Added CVE to references in the patch files

Marius Tomaschewski (mtomaschewski) committed over 6 years ago (revision 63)

Added CVE's to the changelog:
  CVE-2018-5378,Quagga-2018-0543,bsc#1079798
  CVE-2018-5379,Quagga-2018-1114,bsc#1079799
  CVE-2018-5380,Quagga-2018-1550,bsc#1079800
  CVE-2018-5381,Quagga-2018-1975,bsc#1079801

Marius Tomaschewski (mtomaschewski) committed over 6 years ago (revision 62)

- Applied security fix for bgpd DoS via specially crafted BGP
  UPDATE messages  (CVE-2017-16227,bsc#1065641)
  [+ quagga-CVE-2017-16227-bgpd-Fix-AS_PATH-size-calculation.patch]
- Applied security fix for bgpd bounds check issue via attribute
  length (Quagga-2018-0543,bsc#1079798)
  [+ Quagga-2018-0543-bgpd.bsc1079798.patch]
- Applied security fix for bgpd double free when processing UPDATE
  message (Quagga-2018-1114,bsc#1079799)
  [+ Quagga-2018-1114-bgpd.bsc1079799.patch]
- Applied security fix for bgpd code-to-string conversion tables
  overrun (Quagga-2018-1550,bsc#1079800)
  [+ Quagga-2018-1550-bgpd-bsc1079800.patch]
- Applied security fix for bgpd infinite loop on certain invalid
  OPEN messages (Quagga-2018-1975,bsc#1079801)
  [+ Quagga-2018-1975-bdpd.bsc1079801.patch]

buildservice-autocommit accepted request 545122 from

Dirk Mueller (dirkmueller) over 6 years ago (revision 61)

baserev update by copy to link target

Dirk Mueller (dirkmueller) accepted request 544669 from

Richard Brown (RBrownSUSE) over 6 years ago (revision 60)

Replace references to /var/adm/fillup-templates with new %_fillupdir macro (boo#1069468)

buildservice-autocommit accepted request 487325 from

Marius Tomaschewski (mtomaschewski) about 7 years ago (revision 59)

baserev update by copy to link target

Places

Revisions of quagga

Places