Mailinglist Archive: opensuse-updates (120 mails)
< Previous | Next > |
openSUSE-SU-2013:1676-1: moderate: update for whois
- From: opensuse-security@xxxxxxxxxxxx
- Date: Thu, 14 Nov 2013 20:04:32 +0100 (CET)
- Message-id: <20131114190432.E648A32169@maintenance.suse.de>
openSUSE Security Update: update for whois
______________________________________________________________________________
Announcement ID: openSUSE-SU-2013:1676-1
Rating: moderate
References: #848594
Cross-References: CVE-2011-2483
Affected Products:
openSUSE 11.4
______________________________________________________________________________
An update that fixes one vulnerability is now available.
Description:
- update to 5.0.26 [bnc#848594]
* Added the .cf TLD server.
* Updated the .bi TLD server.
* Added a new ASN allocation.
- includes changes from 5.0.25
* Added the .ax, .bn, .iq, .pw and .rw TLD servers.
* Updated one or more translations.
- includes updates changes 5.0.24:
* Merged documentation fixes and the whois.conf(5) man
page
* Added a new ASN allocation.
* Updated one or more translations.
- includes changes from 5.0.23
* whois.nic.or.kr switched from EUC-KR to UTF-8.
- includes changes from 5.0.22
* Fixed cross-compiling
- includes changes from 5.0.21
* Fixed parsing of 6to4 addresses
* Added the .xn--j1amh (.̮̼Ãâ¬, Ukraine) TLD server.
* Updated the .bi, .se and .vn TLD servers.
* Removed whois.pandi.or.id from the list of servers
which support the RIPE extensions, since it does not
anymore and queries are broken.
* Updated some disclaimer suppression strings.
* Respect DEB_HOST_GNU_TYPE when selecting CC for
cross-compiling.
- includes changes form 5.0.20
* Updated the .by, .ng, .om, .sm, .tn, .ug and .vn TLD
servers.
* Added the .bw, .td, .xn--mgb9awbf (ùÃâ¦Ã§Ãâ ., Oman),
.xn--mgberp4a5d4ar (.çÃâóùÃËïÊé, Saudi Arabia)
and .xn--mgbx4cd0ab (ﻢï» ﻴﺴﻳïºÂ., Malaysia) TLD
servers.
* Removed the .kp, .mc, .rw and .xn--mgba3a4f16a
(̤̱̤́̉ ., Iran) TLD servers.
- includes changes from 5.0.19
* Added the .post TLD server.
* Updated the .co.za SLD servers.
* Added the .alt.za, .net.za and .web.za SLD servers.
* whois.ua changed (?) the encoding to utf-8.
* Fixed the parsing of 6to4 addresses like whois
2002:xxxx::.
- includes changes from 5.0.18
* Updated the .ae and .xn--mgbaam7a8h (.çÃâ¦Ã§Ã±Ã§Ãª,
United Arabs Emirates) TLDs.
* Updated the server charset table for .fr and .it.
- includes changes from whois 5.0.17
* Updated the .bi, .fo, .gr and .gt TLD servers.
* Removed support for recursion of .org queries, it has
been a thick registry since 2005.
- includes changes from 5.0.16
* Added the .xn--80ao21a (.ÃÅ¡ÃÂÃâ, Kazakhstan) TLD server.
* Updated the .ec and .ee TLD servers.
* Removed the .xn--mgbc0a9azcg (.çÃâÃâ¦ÃºÃ±Ã¨, Morocco)
and .xn--mgberp4a5d4ar (.çÃâóùÃËïÊé, Saudi
Arabia) TLD servers.
* Added a new ASN allocation.
* Updated one or more translations.
- includes changes from 5.0.15
* Added the .xn--mgba3a4f16a (̤̱̤́̉ ., Iran) TLD
server.
* Updated the .pe TLD server, this time for real.
* Updated one or more translations.
- includes changes from 5.0.14
* Added the .sx TLD server.
* Updated the .pe TLD server.
- includes changes from 5.0.13
* Updated the .hr TLD server.
* Improved the package description
* Updated the FSF address in licenses.
- includes changes from 5.0.12
* Recursion disabled when the query string contains
spaces, because probably the query format will not be
compatible with the referral server (e.g. whois to
rwhois or ARIN to RIPE).
* Add the "+" flag by default to queries to
whois.arin.net if the argument looks like an IP
address. Also add the "a" and "n" flags. No thanks to
ARIN for breaking every whois client.
* Added the .cv, .lk, .mq, .sy, .so, .biz.ua, .co.ua,
.pp.ua, .qa, .xn--3e0b707e (.Ãâ¢ÅêµÂ, Korea),
.xn--45brj9c (.à ¦Âà ¦¾à ¦°à ¦¤, India, Bengali),
.xn--90a3ac (.áà Ãâ, Serbia), .xn--clchc0ea0b2g2a9gcd
(.à ®šà ®¿à ®â¢Ã ¯Âà ®â¢Ã ®ªà ¯Âà ®ªà ¯âà ®°à ¯Â,
Singapore, Tamil),
.xn--fpcrj9c3d (.à °Âà °¾à °°à °¤à ±Â, India, Telugu),
.xn--fzc2c9e2c (.à ¶½à ¶âà ¶šà ·Â, Sri Lanka, Sinhala),
.xn--gecrj9c (.à ªÂà ª¾à ª°à ª¤, India, Gujarati),
.xn--h2brj9c (.à ¤Âà ¤¾à ¤°à ¤¤, India, Hindi),
.xn--lgbbat1ad8j (.çÃâìòçæñ, Algeria),
.xn--mgbayh7gpa (.çÃâçñïÃâ , Jordan),
.xn--mgbbh1a71e (.èþçñê, India, Urdu),
.xn--mgbc0a9azcg (.çÃâÃâ¦ÃºÃ±Ã¨, Morocco),
.xn--ogbpf8fl (.óÃËñÊé, Syria), .xn--s9brj9c
(.à ¨Âà ¨¾à ¨°à ¨¤, India, Punjabi), .xn--xkc2al3hye2a
(.à ®â¡Ã ®²à ®â¢Ã ¯Âà ®â¢Ã ¯Ë, Sri Lanka, Tamil), .xn--wgbl6a
(.Ãâ֖, Qatar), .xn--xkc2dl3a5ee0h
(.à ®â¡Ã ®¨à ¯Âà ®¤à ®¿à ®¯à ®¾, India, Tamil), .xn--yfro4i67o
(.æâ°åŠå¡, Singapore, Chinese) and .xxx TLD servers.
(Closes: #642424),
* Added the .priv.at pseudo-SLD server.
* Updated the .co, .gf, .gp, .kr, .li, .rs, .ru, .su,
.sv, .ua and .xn--p1ai TLD servers. (Closes: #590425,
#634830, #627478)
* Added a new ASN allocation.
* Fixed a typo and -t syntax in whois(1). (Closes:
#614973, #632588)
* Made whois return an error in some cases, code
contributed by David Souther.
* Split HAVE_LINUX_CRYPT_GENSALT from HAVE_XCRYPT to
support SuSE, which has it builtin in the libc. Added
untested support for Solaris' crypt_gensalt(3). This
and the following changes have been contributed by
Ludwig Nussel of SuSE.
* mkpasswd: stop rejecting non-ASCII characters.
* mkpasswd: added support for the 2y algorithm, which
fixes CVE-2011-2483.
* mkpasswd: raised the number of rounds for 2a/2y from 4
to 5, which is the current default.
* mkpasswd: removed support for 2 and {SHA}, which
actually are not supported by FreeBSD and libxcrypt.
- packaging changes
* removed patches accepted upstream:
whois-5.0.11-mkpasswd-support-Owl-patched-libcrypt.diff
whois-5.0.11-mkpasswd-crypt_gensalt-might-change-the-prefix.
diff whois-5.0.11-mkpasswd-support-8bit-characters.diff
whois-5.0.11-mkpasswd-add-support-for-the-new-2y-blowfish-ta
g-CVE-2011-2483.diff
whois-5.0.11-mkpasswd-set-default-blowfish-rounds-to-5.diff
whois-5.0.11-mkpasswd-remove-obsolete-settings.diff
* removed patches no longer required:
whois-5.0.11-mkpasswd-fix-compiler-warnings.diff
* updated patches: whois-4.7.33-nb.patch to
whois-5.0.25-nb.patch
* verify source signatures
- crypt_gensalt moved to separate library libowcrypt
(fate#314945)
- update to 5.0.26 [bnc#848594]
* Added the .cf TLD server.
* Updated the .bi TLD server.
* Added a new ASN allocation.
- includes changes from 5.0.25
* Added the .ax, .bn, .iq, .pw and .rw TLD servers.
* Updated one or more translations.
- includes updates changes 5.0.24:
* Merged documentation fixes and the whois.conf(5) man
page
* Added a new ASN allocation.
* Updated one or more translations.
- includes changes from 5.0.23
* whois.nic.or.kr switched from EUC-KR to UTF-8.
- includes changes from 5.0.22
* Fixed cross-compiling
- includes changes from 5.0.21
* Fixed parsing of 6to4 addresses
* Added the .xn--j1amh (.̮̼Ãâ¬, Ukraine) TLD server.
* Updated the .bi, .se and .vn TLD servers.
* Removed whois.pandi.or.id from the list of servers
which support the RIPE extensions, since it does not
anymore and queries are broken.
* Updated some disclaimer suppression strings.
* Respect DEB_HOST_GNU_TYPE when selecting CC for
cross-compiling.
- includes changes form 5.0.20
* Updated the .by, .ng, .om, .sm, .tn, .ug and .vn TLD
servers.
* Added the .bw, .td, .xn--mgb9awbf (ùÃâ¦Ã§Ãâ ., Oman),
.xn--mgberp4a5d4ar (.çÃâóùÃËïÊé, Saudi Arabia)
and .xn--mgbx4cd0ab (ﻢï» ﻴﺴﻳïºÂ., Malaysia) TLD
servers.
* Removed the .kp, .mc, .rw and .xn--mgba3a4f16a
(̤̱̤́̉ ., Iran) TLD servers.
- includes changes from 5.0.19
* Added the .post TLD server.
* Updated the .co.za SLD servers.
* Added the .alt.za, .net.za and .web.za SLD servers.
* whois.ua changed (?) the encoding to utf-8.
* Fixed the parsing of 6to4 addresses like whois
2002:xxxx::.
- includes changes from 5.0.18
* Updated the .ae and .xn--mgbaam7a8h (.çÃâ¦Ã§Ã±Ã§Ãª,
United Arabs Emirates) TLDs.
* Updated the server charset table for .fr and .it.
- includes changes from whois 5.0.17
* Updated the .bi, .fo, .gr and .gt TLD servers.
* Removed support for recursion of .org queries, it has
been a thick registry since 2005.
- includes changes from 5.0.16
* Added the .xn--80ao21a (.ÃÅ¡ÃÂÃâ, Kazakhstan) TLD server.
* Updated the .ec and .ee TLD servers.
* Removed the .xn--mgbc0a9azcg (.çÃâÃâ¦ÃºÃ±Ã¨, Morocco)
and .xn--mgberp4a5d4ar (.çÃâóùÃËïÊé, Saudi
Arabia) TLD servers.
* Added a new ASN allocation.
* Updated one or more translations.
- includes changes from 5.0.15
* Added the .xn--mgba3a4f16a (̤̱̤́̉ ., Iran) TLD
server.
* Updated the .pe TLD server, this time for real.
* Updated one or more translations.
- includes changes from 5.0.14
* Added the .sx TLD server.
* Updated the .pe TLD server.
- includes changes from 5.0.13
* Updated the .hr TLD server.
* Improved the package description
* Updated the FSF address in licenses.
- includes changes from 5.0.12
* Recursion disabled when the query string contains
spaces, because probably the query format will not be
compatible with the referral server (e.g. whois to
rwhois or ARIN to RIPE).
* Add the "+" flag by default to queries to
whois.arin.net if the argument looks like an IP
address. Also add the "a" and "n" flags. No thanks to
ARIN for breaking every whois client.
* Added the .cv, .lk, .mq, .sy, .so, .biz.ua, .co.ua,
.pp.ua, .qa, .xn--3e0b707e (.Ãâ¢ÅêµÂ, Korea),
.xn--45brj9c (.à ¦Âà ¦¾à ¦°à ¦¤, India, Bengali),
.xn--90a3ac (.áà Ãâ, Serbia), .xn--clchc0ea0b2g2a9gcd
(.à ®šà ®¿à ®â¢Ã ¯Âà ®â¢Ã ®ªà ¯Âà ®ªà ¯âà ®°à ¯Â,
Singapore, Tamil),
.xn--fpcrj9c3d (.à °Âà °¾à °°à °¤à ±Â, India, Telugu),
.xn--fzc2c9e2c (.à ¶½à ¶âà ¶šà ·Â, Sri Lanka, Sinhala),
.xn--gecrj9c (.à ªÂà ª¾à ª°à ª¤, India, Gujarati),
.xn--h2brj9c (.à ¤Âà ¤¾à ¤°à ¤¤, India, Hindi),
.xn--lgbbat1ad8j (.çÃâìòçæñ, Algeria),
.xn--mgbayh7gpa (.çÃâçñïÃâ , Jordan),
.xn--mgbbh1a71e (.èþçñê, India, Urdu),
.xn--mgbc0a9azcg (.çÃâÃâ¦ÃºÃ±Ã¨, Morocco),
.xn--ogbpf8fl (.óÃËñÊé, Syria), .xn--s9brj9c
(.à ¨Âà ¨¾à ¨°à ¨¤, India, Punjabi), .xn--xkc2al3hye2a
(.à ®â¡Ã ®²à ®â¢Ã ¯Âà ®â¢Ã ¯Ë, Sri Lanka, Tamil), .xn--wgbl6a
(.Ãâ֖, Qatar), .xn--xkc2dl3a5ee0h
(.à ®â¡Ã ®¨à ¯Âà ®¤à ®¿à ®¯à ®¾, India, Tamil), .xn--yfro4i67o
(.æâ°åŠå¡, Singapore, Chinese) and .xxx TLD servers.
(Closes: #642424),
* Added the .priv.at pseudo-SLD server.
* Updated the .co, .gf, .gp, .kr, .li, .rs, .ru, .su,
.sv, .ua and .xn--p1ai TLD servers. (Closes: #590425,
#634830, #627478)
* Added a new ASN allocation.
* Fixed a typo and -t syntax in whois(1). (Closes:
#614973, #632588)
* Made whois return an error in some cases, code
contributed by David Souther.
* Split HAVE_LINUX_CRYPT_GENSALT from HAVE_XCRYPT to
support SuSE, which has it builtin in the libc. Added
untested support for Solaris' crypt_gensalt(3). This
and the following changes have been contributed by
Ludwig Nussel of SuSE.
* mkpasswd: stop rejecting non-ASCII characters.
* mkpasswd: added support for the 2y algorithm, which
fixes CVE-2011-2483.
* mkpasswd: raised the number of rounds for 2a/2y from 4
to 5, which is the current default.
* mkpasswd: removed support for 2 and {SHA}, which
actually are not supported by FreeBSD and libxcrypt.
- packaging changes
* removed patches accepted upstream:
whois-5.0.11-mkpasswd-support-Owl-patched-libcrypt.diff
whois-5.0.11-mkpasswd-crypt_gensalt-might-change-the-prefix.
diff whois-5.0.11-mkpasswd-support-8bit-characters.diff
whois-5.0.11-mkpasswd-add-support-for-the-new-2y-blowfish-ta
g-CVE-2011-2483.diff
whois-5.0.11-mkpasswd-set-default-blowfish-rounds-to-5.diff
whois-5.0.11-mkpasswd-remove-obsolete-settings.diff
* removed patches no longer required:
whois-5.0.11-mkpasswd-fix-compiler-warnings.diff
* updated patches: whois-4.7.33-nb.patch to
whois-5.0.25-nb.patch
* verify source signatures
- crypt_gensalt moved to separate library libowcrypt
(fate#314945)
Patch Instructions:
To install this openSUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- openSUSE 11.4:
zypper in -t patch 2013-161
To bring your system up-to-date, use "zypper patch".
Package List:
- openSUSE 11.4 (i586 x86_64):
whois-5.0.26-7.1
whois-debuginfo-5.0.26-7.1
whois-debugsource-5.0.26-7.1
References:
http://support.novell.com/security/cve/CVE-2011-2483.html
https://bugzilla.novell.com/848594
______________________________________________________________________________
Announcement ID: openSUSE-SU-2013:1676-1
Rating: moderate
References: #848594
Cross-References: CVE-2011-2483
Affected Products:
openSUSE 11.4
______________________________________________________________________________
An update that fixes one vulnerability is now available.
Description:
- update to 5.0.26 [bnc#848594]
* Added the .cf TLD server.
* Updated the .bi TLD server.
* Added a new ASN allocation.
- includes changes from 5.0.25
* Added the .ax, .bn, .iq, .pw and .rw TLD servers.
* Updated one or more translations.
- includes updates changes 5.0.24:
* Merged documentation fixes and the whois.conf(5) man
page
* Added a new ASN allocation.
* Updated one or more translations.
- includes changes from 5.0.23
* whois.nic.or.kr switched from EUC-KR to UTF-8.
- includes changes from 5.0.22
* Fixed cross-compiling
- includes changes from 5.0.21
* Fixed parsing of 6to4 addresses
* Added the .xn--j1amh (.̮̼Ãâ¬, Ukraine) TLD server.
* Updated the .bi, .se and .vn TLD servers.
* Removed whois.pandi.or.id from the list of servers
which support the RIPE extensions, since it does not
anymore and queries are broken.
* Updated some disclaimer suppression strings.
* Respect DEB_HOST_GNU_TYPE when selecting CC for
cross-compiling.
- includes changes form 5.0.20
* Updated the .by, .ng, .om, .sm, .tn, .ug and .vn TLD
servers.
* Added the .bw, .td, .xn--mgb9awbf (ùÃâ¦Ã§Ãâ ., Oman),
.xn--mgberp4a5d4ar (.çÃâóùÃËïÊé, Saudi Arabia)
and .xn--mgbx4cd0ab (ﻢï» ﻴﺴﻳïºÂ., Malaysia) TLD
servers.
* Removed the .kp, .mc, .rw and .xn--mgba3a4f16a
(̤̱̤́̉ ., Iran) TLD servers.
- includes changes from 5.0.19
* Added the .post TLD server.
* Updated the .co.za SLD servers.
* Added the .alt.za, .net.za and .web.za SLD servers.
* whois.ua changed (?) the encoding to utf-8.
* Fixed the parsing of 6to4 addresses like whois
2002:xxxx::.
- includes changes from 5.0.18
* Updated the .ae and .xn--mgbaam7a8h (.çÃâ¦Ã§Ã±Ã§Ãª,
United Arabs Emirates) TLDs.
* Updated the server charset table for .fr and .it.
- includes changes from whois 5.0.17
* Updated the .bi, .fo, .gr and .gt TLD servers.
* Removed support for recursion of .org queries, it has
been a thick registry since 2005.
- includes changes from 5.0.16
* Added the .xn--80ao21a (.ÃÅ¡ÃÂÃâ, Kazakhstan) TLD server.
* Updated the .ec and .ee TLD servers.
* Removed the .xn--mgbc0a9azcg (.çÃâÃâ¦ÃºÃ±Ã¨, Morocco)
and .xn--mgberp4a5d4ar (.çÃâóùÃËïÊé, Saudi
Arabia) TLD servers.
* Added a new ASN allocation.
* Updated one or more translations.
- includes changes from 5.0.15
* Added the .xn--mgba3a4f16a (̤̱̤́̉ ., Iran) TLD
server.
* Updated the .pe TLD server, this time for real.
* Updated one or more translations.
- includes changes from 5.0.14
* Added the .sx TLD server.
* Updated the .pe TLD server.
- includes changes from 5.0.13
* Updated the .hr TLD server.
* Improved the package description
* Updated the FSF address in licenses.
- includes changes from 5.0.12
* Recursion disabled when the query string contains
spaces, because probably the query format will not be
compatible with the referral server (e.g. whois to
rwhois or ARIN to RIPE).
* Add the "+" flag by default to queries to
whois.arin.net if the argument looks like an IP
address. Also add the "a" and "n" flags. No thanks to
ARIN for breaking every whois client.
* Added the .cv, .lk, .mq, .sy, .so, .biz.ua, .co.ua,
.pp.ua, .qa, .xn--3e0b707e (.Ãâ¢ÅêµÂ, Korea),
.xn--45brj9c (.à ¦Âà ¦¾à ¦°à ¦¤, India, Bengali),
.xn--90a3ac (.áà Ãâ, Serbia), .xn--clchc0ea0b2g2a9gcd
(.à ®šà ®¿à ®â¢Ã ¯Âà ®â¢Ã ®ªà ¯Âà ®ªà ¯âà ®°à ¯Â,
Singapore, Tamil),
.xn--fpcrj9c3d (.à °Âà °¾à °°à °¤à ±Â, India, Telugu),
.xn--fzc2c9e2c (.à ¶½à ¶âà ¶šà ·Â, Sri Lanka, Sinhala),
.xn--gecrj9c (.à ªÂà ª¾à ª°à ª¤, India, Gujarati),
.xn--h2brj9c (.à ¤Âà ¤¾à ¤°à ¤¤, India, Hindi),
.xn--lgbbat1ad8j (.çÃâìòçæñ, Algeria),
.xn--mgbayh7gpa (.çÃâçñïÃâ , Jordan),
.xn--mgbbh1a71e (.èþçñê, India, Urdu),
.xn--mgbc0a9azcg (.çÃâÃâ¦ÃºÃ±Ã¨, Morocco),
.xn--ogbpf8fl (.óÃËñÊé, Syria), .xn--s9brj9c
(.à ¨Âà ¨¾à ¨°à ¨¤, India, Punjabi), .xn--xkc2al3hye2a
(.à ®â¡Ã ®²à ®â¢Ã ¯Âà ®â¢Ã ¯Ë, Sri Lanka, Tamil), .xn--wgbl6a
(.Ãâ֖, Qatar), .xn--xkc2dl3a5ee0h
(.à ®â¡Ã ®¨à ¯Âà ®¤à ®¿à ®¯à ®¾, India, Tamil), .xn--yfro4i67o
(.æâ°åŠå¡, Singapore, Chinese) and .xxx TLD servers.
(Closes: #642424),
* Added the .priv.at pseudo-SLD server.
* Updated the .co, .gf, .gp, .kr, .li, .rs, .ru, .su,
.sv, .ua and .xn--p1ai TLD servers. (Closes: #590425,
#634830, #627478)
* Added a new ASN allocation.
* Fixed a typo and -t syntax in whois(1). (Closes:
#614973, #632588)
* Made whois return an error in some cases, code
contributed by David Souther.
* Split HAVE_LINUX_CRYPT_GENSALT from HAVE_XCRYPT to
support SuSE, which has it builtin in the libc. Added
untested support for Solaris' crypt_gensalt(3). This
and the following changes have been contributed by
Ludwig Nussel of SuSE.
* mkpasswd: stop rejecting non-ASCII characters.
* mkpasswd: added support for the 2y algorithm, which
fixes CVE-2011-2483.
* mkpasswd: raised the number of rounds for 2a/2y from 4
to 5, which is the current default.
* mkpasswd: removed support for 2 and {SHA}, which
actually are not supported by FreeBSD and libxcrypt.
- packaging changes
* removed patches accepted upstream:
whois-5.0.11-mkpasswd-support-Owl-patched-libcrypt.diff
whois-5.0.11-mkpasswd-crypt_gensalt-might-change-the-prefix.
diff whois-5.0.11-mkpasswd-support-8bit-characters.diff
whois-5.0.11-mkpasswd-add-support-for-the-new-2y-blowfish-ta
g-CVE-2011-2483.diff
whois-5.0.11-mkpasswd-set-default-blowfish-rounds-to-5.diff
whois-5.0.11-mkpasswd-remove-obsolete-settings.diff
* removed patches no longer required:
whois-5.0.11-mkpasswd-fix-compiler-warnings.diff
* updated patches: whois-4.7.33-nb.patch to
whois-5.0.25-nb.patch
* verify source signatures
- crypt_gensalt moved to separate library libowcrypt
(fate#314945)
- update to 5.0.26 [bnc#848594]
* Added the .cf TLD server.
* Updated the .bi TLD server.
* Added a new ASN allocation.
- includes changes from 5.0.25
* Added the .ax, .bn, .iq, .pw and .rw TLD servers.
* Updated one or more translations.
- includes updates changes 5.0.24:
* Merged documentation fixes and the whois.conf(5) man
page
* Added a new ASN allocation.
* Updated one or more translations.
- includes changes from 5.0.23
* whois.nic.or.kr switched from EUC-KR to UTF-8.
- includes changes from 5.0.22
* Fixed cross-compiling
- includes changes from 5.0.21
* Fixed parsing of 6to4 addresses
* Added the .xn--j1amh (.̮̼Ãâ¬, Ukraine) TLD server.
* Updated the .bi, .se and .vn TLD servers.
* Removed whois.pandi.or.id from the list of servers
which support the RIPE extensions, since it does not
anymore and queries are broken.
* Updated some disclaimer suppression strings.
* Respect DEB_HOST_GNU_TYPE when selecting CC for
cross-compiling.
- includes changes form 5.0.20
* Updated the .by, .ng, .om, .sm, .tn, .ug and .vn TLD
servers.
* Added the .bw, .td, .xn--mgb9awbf (ùÃâ¦Ã§Ãâ ., Oman),
.xn--mgberp4a5d4ar (.çÃâóùÃËïÊé, Saudi Arabia)
and .xn--mgbx4cd0ab (ﻢï» ﻴﺴﻳïºÂ., Malaysia) TLD
servers.
* Removed the .kp, .mc, .rw and .xn--mgba3a4f16a
(̤̱̤́̉ ., Iran) TLD servers.
- includes changes from 5.0.19
* Added the .post TLD server.
* Updated the .co.za SLD servers.
* Added the .alt.za, .net.za and .web.za SLD servers.
* whois.ua changed (?) the encoding to utf-8.
* Fixed the parsing of 6to4 addresses like whois
2002:xxxx::.
- includes changes from 5.0.18
* Updated the .ae and .xn--mgbaam7a8h (.çÃâ¦Ã§Ã±Ã§Ãª,
United Arabs Emirates) TLDs.
* Updated the server charset table for .fr and .it.
- includes changes from whois 5.0.17
* Updated the .bi, .fo, .gr and .gt TLD servers.
* Removed support for recursion of .org queries, it has
been a thick registry since 2005.
- includes changes from 5.0.16
* Added the .xn--80ao21a (.ÃÅ¡ÃÂÃâ, Kazakhstan) TLD server.
* Updated the .ec and .ee TLD servers.
* Removed the .xn--mgbc0a9azcg (.çÃâÃâ¦ÃºÃ±Ã¨, Morocco)
and .xn--mgberp4a5d4ar (.çÃâóùÃËïÊé, Saudi
Arabia) TLD servers.
* Added a new ASN allocation.
* Updated one or more translations.
- includes changes from 5.0.15
* Added the .xn--mgba3a4f16a (̤̱̤́̉ ., Iran) TLD
server.
* Updated the .pe TLD server, this time for real.
* Updated one or more translations.
- includes changes from 5.0.14
* Added the .sx TLD server.
* Updated the .pe TLD server.
- includes changes from 5.0.13
* Updated the .hr TLD server.
* Improved the package description
* Updated the FSF address in licenses.
- includes changes from 5.0.12
* Recursion disabled when the query string contains
spaces, because probably the query format will not be
compatible with the referral server (e.g. whois to
rwhois or ARIN to RIPE).
* Add the "+" flag by default to queries to
whois.arin.net if the argument looks like an IP
address. Also add the "a" and "n" flags. No thanks to
ARIN for breaking every whois client.
* Added the .cv, .lk, .mq, .sy, .so, .biz.ua, .co.ua,
.pp.ua, .qa, .xn--3e0b707e (.Ãâ¢ÅêµÂ, Korea),
.xn--45brj9c (.à ¦Âà ¦¾à ¦°à ¦¤, India, Bengali),
.xn--90a3ac (.áà Ãâ, Serbia), .xn--clchc0ea0b2g2a9gcd
(.à ®šà ®¿à ®â¢Ã ¯Âà ®â¢Ã ®ªà ¯Âà ®ªà ¯âà ®°à ¯Â,
Singapore, Tamil),
.xn--fpcrj9c3d (.à °Âà °¾à °°à °¤à ±Â, India, Telugu),
.xn--fzc2c9e2c (.à ¶½à ¶âà ¶šà ·Â, Sri Lanka, Sinhala),
.xn--gecrj9c (.à ªÂà ª¾à ª°à ª¤, India, Gujarati),
.xn--h2brj9c (.à ¤Âà ¤¾à ¤°à ¤¤, India, Hindi),
.xn--lgbbat1ad8j (.çÃâìòçæñ, Algeria),
.xn--mgbayh7gpa (.çÃâçñïÃâ , Jordan),
.xn--mgbbh1a71e (.èþçñê, India, Urdu),
.xn--mgbc0a9azcg (.çÃâÃâ¦ÃºÃ±Ã¨, Morocco),
.xn--ogbpf8fl (.óÃËñÊé, Syria), .xn--s9brj9c
(.à ¨Âà ¨¾à ¨°à ¨¤, India, Punjabi), .xn--xkc2al3hye2a
(.à ®â¡Ã ®²à ®â¢Ã ¯Âà ®â¢Ã ¯Ë, Sri Lanka, Tamil), .xn--wgbl6a
(.Ãâ֖, Qatar), .xn--xkc2dl3a5ee0h
(.à ®â¡Ã ®¨à ¯Âà ®¤à ®¿à ®¯à ®¾, India, Tamil), .xn--yfro4i67o
(.æâ°åŠå¡, Singapore, Chinese) and .xxx TLD servers.
(Closes: #642424),
* Added the .priv.at pseudo-SLD server.
* Updated the .co, .gf, .gp, .kr, .li, .rs, .ru, .su,
.sv, .ua and .xn--p1ai TLD servers. (Closes: #590425,
#634830, #627478)
* Added a new ASN allocation.
* Fixed a typo and -t syntax in whois(1). (Closes:
#614973, #632588)
* Made whois return an error in some cases, code
contributed by David Souther.
* Split HAVE_LINUX_CRYPT_GENSALT from HAVE_XCRYPT to
support SuSE, which has it builtin in the libc. Added
untested support for Solaris' crypt_gensalt(3). This
and the following changes have been contributed by
Ludwig Nussel of SuSE.
* mkpasswd: stop rejecting non-ASCII characters.
* mkpasswd: added support for the 2y algorithm, which
fixes CVE-2011-2483.
* mkpasswd: raised the number of rounds for 2a/2y from 4
to 5, which is the current default.
* mkpasswd: removed support for 2 and {SHA}, which
actually are not supported by FreeBSD and libxcrypt.
- packaging changes
* removed patches accepted upstream:
whois-5.0.11-mkpasswd-support-Owl-patched-libcrypt.diff
whois-5.0.11-mkpasswd-crypt_gensalt-might-change-the-prefix.
diff whois-5.0.11-mkpasswd-support-8bit-characters.diff
whois-5.0.11-mkpasswd-add-support-for-the-new-2y-blowfish-ta
g-CVE-2011-2483.diff
whois-5.0.11-mkpasswd-set-default-blowfish-rounds-to-5.diff
whois-5.0.11-mkpasswd-remove-obsolete-settings.diff
* removed patches no longer required:
whois-5.0.11-mkpasswd-fix-compiler-warnings.diff
* updated patches: whois-4.7.33-nb.patch to
whois-5.0.25-nb.patch
* verify source signatures
- crypt_gensalt moved to separate library libowcrypt
(fate#314945)
Patch Instructions:
To install this openSUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- openSUSE 11.4:
zypper in -t patch 2013-161
To bring your system up-to-date, use "zypper patch".
Package List:
- openSUSE 11.4 (i586 x86_64):
whois-5.0.26-7.1
whois-debuginfo-5.0.26-7.1
whois-debugsource-5.0.26-7.1
References:
http://support.novell.com/security/cve/CVE-2011-2483.html
https://bugzilla.novell.com/848594
< Previous | Next > |