Hello community, here is the log from the commit of package tcpdump checked in at Sat Jul 14 17:31:40 CEST 2007. -------- --- tcpdump/tcpdump.changes 2007-03-02 11:45:19.000000000 +0100 +++ /mounts/work_src_done/STABLE/tcpdump/tcpdump.changes 2007-07-12 11:43:45.000000000 +0200 @@ -1,0 +2,29 @@ +Thu Jul 12 11:37:08 CEST 2007 - prusnak@suse.cz + +- update to 3.9.6 + * added support for: + - OIF RSVP Extensions UNI 1.0 Rev. 2 and additional RSVP objects + - Message-id NACK c-type + - 802.3ah loopback ctrl msg + - Multiple-STP as per 802.1s + - rapid-SPT as per 802.1w + - CFM Link-trace msg, Link-trace-Reply msg, + - unidirectional link detection + - the olsr protocol as per RFC 3626 plus the LQ extensions from olsr.org + - variable-length checksum in DCCP, as per section 9 of RFC 4340 + - per-VLAN spanning tree and per-VLAN rapid spanning tree + - Multiple-STP as per 802.1s + - the cisco propriatry 'dynamic trunking protocol' + - the cisco proprietary VTP protocol + - additional values in pflog + * changes to both TCP and IP Printer Output + * fixed a potential buffer overflow in the 802.11 printer + * print basic info about a few more Cisco LAN protocols + * mDNS cleanup + * ICMP MPLS rework of the extension code + * use the correct codepoint for the OSPF simple text auth token entry + * use safeputs to print the password + * update dhcp6 options table as per IETF standardization activities +- fixed overflow in bgp (bgp-overflow.patch) [#291356] + +------------------------------------------------------------------- Old: ---- tcpdump-3.9.5-802_11-overflow.diff tcpdump-3.9.5-aliasing.diff tcpdump-3.9.5-autoconf.diff tcpdump-3.9.5-juniper.diff tcpdump-3.9.5-prototypes.diff tcpdump-3.9.5.tar.bz2 tcpdump-3.9.5-uninitialized.diff New: ---- tcpdump-3.9.6-802_11-overflow.diff tcpdump-3.9.6-aliasing.diff tcpdump-3.9.6-autoconf.diff tcpdump-3.9.6-bgp-overflow.diff tcpdump-3.9.6-juniper.diff tcpdump-3.9.6-prototypes.diff tcpdump-3.9.6.tar.bz2 tcpdump-3.9.6-uninitialized.diff ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ tcpdump.spec ++++++ --- /var/tmp/diff_new_pack.E18575/_old 2007-07-14 17:30:46.000000000 +0200 +++ /var/tmp/diff_new_pack.E18575/_new 2007-07-14 17:30:46.000000000 +0200 @@ -1,5 +1,5 @@ # -# spec file for package tcpdump (Version 3.9.5) +# spec file for package tcpdump (Version 3.9.6) # # Copyright (c) 2007 SUSE LINUX Products GmbH, Nuernberg, Germany. # This file and all modifications and additions to the pristine @@ -12,10 +12,10 @@ Name: tcpdump BuildRequires: libpcap libsmi openssl-devel -Version: 3.9.5 -Release: 7 +Version: 3.9.6 +Release: 1 Autoreqprov: on -License: BSD License and BSD-like +License: BSD 3-Clause Group: Productivity/Networking/Diagnostic URL: http://www.tcpdump.org/ Summary: A Packet Sniffer @@ -27,6 +27,7 @@ Patch3: %{name}-%{version}-uninitialized.diff Patch4: %{name}-%{version}-juniper.diff Patch5: %{name}-%{version}-802_11-overflow.diff +Patch6: %{name}-%{version}-bgp-overflow.diff BuildRoot: %{_tmppath}/%{name}-%{version}-build %description @@ -44,6 +45,7 @@ %patch3 %patch4 %patch5 +%patch6 %build %{suse_update_config -f} @@ -73,6 +75,32 @@ %{_sbindir}/* %changelog +* Thu Jul 12 2007 - prusnak@suse.cz +- update to 3.9.6 + * added support for: + - OIF RSVP Extensions UNI 1.0 Rev. 2 and additional RSVP objects + - Message-id NACK c-type + - 802.3ah loopback ctrl msg + - Multiple-STP as per 802.1s + - rapid-SPT as per 802.1w + - CFM Link-trace msg, Link-trace-Reply msg, + - unidirectional link detection + - the olsr protocol as per RFC 3626 plus the LQ extensions from olsr.org + - variable-length checksum in DCCP, as per section 9 of RFC 4340 + - per-VLAN spanning tree and per-VLAN rapid spanning tree + - Multiple-STP as per 802.1s + - the cisco propriatry 'dynamic trunking protocol' + - the cisco proprietary VTP protocol + - additional values in pflog + * changes to both TCP and IP Printer Output + * fixed a potential buffer overflow in the 802.11 printer + * print basic info about a few more Cisco LAN protocols + * mDNS cleanup + * ICMP MPLS rework of the extension code + * use the correct codepoint for the OSPF simple text auth token entry + * use safeputs to print the password + * update dhcp6 options table as per IETF standardization activities +- fixed overflow in bgp (bgp-overflow.patch) [#291356] * Fri Mar 02 2007 - prusnak@suse.cz - fixed one byte overflow (802_11-overflow.diff) [#250163] * Wed Jan 03 2007 - prusnak@suse.cz ++++++ tcpdump-3.9.5-802_11-overflow.diff -> tcpdump-3.9.6-802_11-overflow.diff ++++++ ++++++ tcpdump-3.9.5-aliasing.diff -> tcpdump-3.9.6-aliasing.diff ++++++ ++++++ tcpdump-3.9.5-autoconf.diff -> tcpdump-3.9.6-autoconf.diff ++++++ ++++++ tcpdump-3.9.6-bgp-overflow.diff ++++++ --- print-bgp.c +++ print-bgp.c @@ -669,7 +669,7 @@ tlen-=15; /* ok now the variable part - lets read out TLVs*/ - while (tlen>0) { + while (tlen>0 && strlen <= buflen) { if (tlen < 3) return -1; TCHECK2(pptr[0], 3); @@ -684,7 +684,7 @@ tlv_type, tlv_len); ttlv_len=ttlv_len/8+1; /* how many bytes do we need to read ? */ - while (ttlv_len>0) { + while (ttlv_len>0 && strlen <= buflen) { TCHECK(pptr[0]); strlen+=snprintf(buf+strlen,buflen-strlen, "%02x",*pptr++); ttlv_len--; ++++++ tcpdump-3.9.5-juniper.diff -> tcpdump-3.9.6-juniper.diff ++++++ ++++++ tcpdump-3.9.5-prototypes.diff -> tcpdump-3.9.6-prototypes.diff ++++++ ++++++ tcpdump-3.9.5.tar.bz2 -> tcpdump-3.9.6.tar.bz2 ++++++ ++++++ tcpdump-3.9.5-uninitialized.diff -> tcpdump-3.9.6-uninitialized.diff ++++++ ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org