1 quagga (1.2.4-1) unstable; urgency=medium
3 * New maintainer (Closes: #884919)
4 * New upstream release (Closes: #890563)
10 -- Brett Parker <iDunno@sommitrealweird.co.uk> Sat, 17 Mar 2018 15:33:00 +0000
12 quagga (1.2.2-1) unstable; urgency=medium
14 * New upstream release (Closes: #879474, #857187).
15 * Rework patches to apply against new upstream version.
16 * Change zebra daemon GID to allow writing to /run/quagga (Closes: #880522).
17 * Change group permissions on Quagga.conf (Closes: #847106).
18 * Add missing build-dep on libc-ares-dev.
19 * Add patch for documentation fixes (Closes: #879971).
21 -- Scott Leggett <scott@sl.id.au> Sun, 05 Nov 2017 22:11:44 +1100
23 quagga (1.1.1-3) unstable; urgency=medium
25 * Fix upgrade file conflict with old quagga packages (Closes: #859581).
27 -- Scott Leggett <scott@sl.id.au> Wed, 05 Apr 2017 21:41:14 +1000
29 quagga (1.1.1-2) unstable; urgency=medium
31 * Remove libquagga0 and libquagga-dev binary packages (Closes: #856936).
32 - Move shared objects into quagga-core, as they are currently intended
33 by upstream to be private.
34 - Avoid shipping headers and static libraries at all.
35 - Upstream plans to ship with a stable API/ABI in future, and these
36 changes will be reviewed then.
38 -- Scott Leggett <scott@sl.id.au> Sun, 26 Mar 2017 23:04:32 +1100
40 quagga (1.1.1-1) unstable; urgency=low
43 - New upstream bugfix release, fixes CVE-2017-5495 (Closes: #852454).
44 * Remove patch disabling debug print statements; fixed upstream.
45 * Update libquagga0.symbols for libzebra SONAME bump.
47 -- Scott Leggett <scott@sl.id.au> Fri, 27 Jan 2017 10:48:50 +1100
49 quagga (1.1.0-3) unstable; urgency=low
51 * Update .service file patch (Closes: #849953).
53 -- Scott Leggett <scott@sl.id.au> Tue, 03 Jan 2017 22:07:12 +0800
55 quagga (1.1.0-2) unstable; urgency=low
58 * Check for existing dpkg-statoverride on /etc/quagga (Closes: #847355).
60 -- Scott Leggett <scott@sl.id.au> Fri, 09 Dec 2016 22:56:55 +1100
62 quagga (1.1.0-1) unstable; urgency=low
64 * New upstream release (Closes: #774760, #516226, #830515)
65 * Import packaging from the last debian release 1.0.20160315-3.
66 * Remove dump_fix.patch applied upstream.
67 * Remove patch which is no longer relevant.
68 * Remove patch for CVE-2016-1245 fixed upstream.
69 * Rely on automatic -dbgsym package rather than deprecated -dbg.
70 * Remove deprecated XS-testsuite header in debian/control.
71 * Remove template comment from debian/watch.
72 * Add patch to fix spelling and grammar errors.
73 * Register quagga-doc with doc-base.
74 * Add patch to fix ospfclient(8) manpage numbering.
75 * Added patch to avoid debug print statements on vtysh startup.
76 * Adopt package, set myself as maintainer (Closes: #836418).
77 * Add quagga user to quaggavty group in preinst.
78 * Drop patch for Debian pager default in vtysh (Closes: #788243).
79 * Update debian/copyright.
80 * Bump compat level to 10 (Closes: #534833).
81 * Use systemd .service files rather than init.d scripts (Closes: #678946,
82 #805840, #839819, #412483).
83 * Split quagga package out into multiple packages (Closes: #705306).
84 * Remove debconf question which left packages in inconsistent state.
85 * Add patch for manpage versioning.
86 * Update README.Debian, README.Maintainer.
87 * Removed patch on vtysh.conf.
88 * Add NEWS.Debian about the major changes to the package.
90 -- Scott Leggett <scott@sl.id.au> Mon, 21 Nov 2016 21:30:12 +1100
92 quagga (1.0.20160315-3) unstable; urgency=high
94 * Apply patch to fix CVE-2016-1245. Closes: #841162.
96 -- Florian Weimer <fw@deneb.enyo.de> Tue, 18 Oct 2016 22:06:18 +0200
98 quagga (1.0.20160315-2) unstable; urgency=high
103 - Set QA group as maintainer, as Christian orphaned the package (see
105 - Bump Standards-Version to 3.9.8.
107 - CVE-2016-4049: Missing size check in bgp_dump_routes_func in
108 bgpd/bgp_dump.c allowing DoS (Closes: #822787).
109 - CVE-2016-4036: World readable sensitive files in /etc/quagga
112 -- Hugo Lefeuvre <hle@debian.org> Sun, 11 Sep 2016 21:37:00 +0200
114 quagga (1.0.20160315-1) unstable; urgency=high
117 CVE-2016-2342: VPNv4 NLRI parses memcpys to stack on unchecked length
119 * New upstream release
120 * babeld has been removed from the Quagga upstream project.
121 There is a implementation available in the Debian "babeld" package.
122 * Removed no longer recognized configure options: --enable-ospf-te,
123 --enable-opaque-lsa and --enable-ipv6
124 * Removed configure options that are now default: --enable-pimd and
127 -- Christian Brunotte <ch@debian.org> Wed, 30 Mar 2016 23:34:33 +0200
129 quagga (0.99.24.1-2) unstable; urgency=low
131 * Renamed manpage pim.8 to quagga-pim.8 as the former name is already used
132 by the pimd package. Closes: 780252
134 -- Christian Brunotte <ch@debian.org> Thu, 12 Mar 2015 22:37:41 +0100
136 quagga (0.99.24.1-1) unstable; urgency=low
138 * New upstream release
139 * Upstream fix for Zebra crash.
141 -- Christian Brunotte <ch@debian.org> Sun, 08 Mar 2015 02:04:18 +0100
143 quagga (0.99.24-1) unstable; urgency=low
145 * New upstream release
147 -- Christian Brunotte <ch@debian.org> Wed, 04 Mar 2015 22:15:50 +0100
149 quagga (0.99.23.1-1) unstable; urgency=medium
151 * New upstream release
152 * Added .png figures for info files to quagga-doc package.
153 * Changed dependency from iproute to iproute2 (thanks to Andreas
154 Henriksson). Closes: #753736
155 * Added texlive-fonts-recommended to build-depends to get ecrm1095 font
156 (thanks to Christoph Biedl). Closes: #651545
158 -- Christian Brunotte <ch@debian.org> Tue, 30 Sep 2014 00:20:12 +0200
160 quagga (0.99.23-1) unstable; urgency=low
162 * New upstream release
163 * Removed debian/patches/readline-6.3.diff which was already in upstream.
165 -- Christian Hammers <ch@debian.org> Tue, 08 Jul 2014 09:15:48 +0200
167 quagga (0.99.22.4-4) unstable; urgency=medium
169 * Fix build failure with readline-6.3 (thanks to Matthias Klose).
172 -- Christian Hammers <ch@debian.org> Sun, 23 Mar 2014 15:28:42 +0100
174 quagga (0.99.22.4-3) unstable; urgency=low
176 * Added status to init script (thanks to Peter J. Holzer). Closes: #730625
177 * Init script now sources /lib/lsb/init-functions.
178 * Switched from hardening-wrapper to dpkg-buildflags.
180 -- Christian Hammers <ch@debian.org> Wed, 01 Jan 2014 19:12:01 +0100
182 quagga (0.99.22.4-2) unstable; urgency=low
184 * Fixed typo in package description (thanks to Davide Prina).
186 * Added Italian Debconf translation (thanks to Beatrice Torracca)
189 -- Christian Hammers <ch@debian.org> Tue, 26 Nov 2013 00:47:11 +0100
191 quagga (0.99.22.4-1) unstable; urgency=high
194 "ospfd: CVE-2013-2236, stack overrun in apiserver
196 the OSPF API-server (exporting the LSDB and allowing announcement of
197 Opaque-LSAs) writes past the end of fixed on-stack buffers. This leads
198 to an exploitable stack overflow.
200 For this condition to occur, the following two conditions must be true:
201 - Quagga is configured with --enable-opaque-lsa
202 - ospfd is started with the "-a" command line option
204 If either of these does not hold, the relevant code is not executed and
205 the issue does not get triggered."
208 * New upstream release
209 - ospfd: protect vs. VU#229804 (malformed Router-LSA)
210 (Quagga is said to be non-vulnerable but still adds some protection)
212 -- Christian Hammers <ch@debian.org> Thu, 24 Oct 2013 22:58:37 +0200
214 quagga (0.99.22.1-2) unstable; urgency=low
216 * Added autopkgtests (thanks to Yolanda Robla). Closes: #710147
217 * Added "status" command to init script (thanks to James Andrewartha).
219 * Added "libsnmp-dev" to Build-Deps. There not needed for the official
220 builds but for people who compile Quagga themselves to activate the
221 SNMP feature (which for licence reasons cannot be done by Debian).
222 Thanks to Ben Winslow). Closes: #694852
223 * Changed watchquagga_options to an array so that quotes can finally
224 be used as expected. Closes: #681088
225 * Fixed bug that prevented restarting only the watchquagga daemon
226 (thanks to Harald Kappe). Closes: #687124
228 -- Christian Hammers <ch@debian.org> Sat, 27 Jul 2013 16:06:25 +0200
230 quagga (0.99.22.1-1) unstable; urgency=low
232 * New upstream release
233 - ospfd restore nexthop IP for p2p interfaces
234 - ospfd: fix LSA initialization for build without opaque LSA
235 - ripd: correctly redistribute ifindex routes (BZ#664)
236 - bgpd: fix lost passwords of grouped neighbors
237 * Removed 91_ld_as_needed.diff as it was found in the upstream source.
239 -- Christian Hammers <ch@debian.org> Mon, 22 Apr 2013 22:21:20 +0200
241 quagga (0.99.22-1) unstable; urgency=low
243 * New upstream release.
244 - [bgpd] The semantics of default-originate route-map have changed.
245 The route-map is now used to advertise the default route conditionally.
246 The old behaviour which allowed to set attributes on the originated
247 default route is no longer supported.
248 - [bgpd] this version of bgpd implements draft-idr-error-handling. This was
249 added in 0.99.21 and may not be desirable. If you need a version
250 without this behaviour, please use 0.99.20.1. There will be a
251 runtime configuration switch for this in future versions.
252 - [isisd] is in "beta" state.
253 - [ospf6d] is in "alpha/experimental" state
254 - More changes are documented in the upstream changelog!
255 * debian/watch: Adjusted to new savannah.gnu.org site, thanks to Bart
257 * debian/patches/99_CVE-2012-1820_bgp_capability_orf.diff removed as its
259 * debian/patches/99_distribute_list.diff removed as its in the changelog.
260 * debian/patches/10_doc__Makefiles__makeinfo-force.diff removed as it
261 was just for Debian woody.
263 -- Christian Hammers <ch@debian.org> Thu, 14 Feb 2013 00:22:00 +0100
265 quagga (0.99.21-4) unstable; urgency=medium
267 * Fixed regression bug that caused OSPF "distribute-list" statements to be
268 silently ignored. The patch has already been applied upstream but there
269 has been no new Quagga release since then.
270 Thanks to Hans van Kranenburg for reporting. Closes: #697240
272 -- Christian Hammers <ch@debian.org> Sun, 06 Jan 2013 15:50:32 +0100
274 quagga (0.99.21-3) unstable; urgency=high
277 CVE-2012-1820 - Quagga contained a bug in BGP OPEN message handling.
278 A denial-of-service condition could be caused by an attacker controlling
279 one of the pre-configured BGP peers. In most cases this means, that the
280 attack must be originated from an adjacent network. Closes: #676510
282 -- Christian Hammers <ch@debian.org> Fri, 08 Jun 2012 01:15:32 +0200
284 quagga (0.99.21-2) unstable; urgency=low
286 * Renamed babeld.8 to quagga-babeld.8 as it conflicted with the
287 original mapage of the babeld package which users might want to
288 install in parallel as it is slightly more capable. Closes: #671916
290 -- Christian Hammers <ch@debian.org> Thu, 10 May 2012 07:53:01 +0200
292 quagga (0.99.21-1) unstable; urgency=low
294 * New upstream release
295 - [bgpd] BGP multipath support has been merged
296 - [bgpd] SAFI (Multicast topology) support has been extended to propagate
297 the topology to zebra.
298 - [bgpd] AS path limit functionality has been removed
299 - [babeld] a new routing daemon implementing the BABEL ad-hoc mesh routing
300 protocol has been merged.
301 - [isisd] a major overhaul has been picked up. Please note that isisd is
302 STILL NOT SUITABLE FOR PRODUCTION USE.
303 - a lot of bugs have been fixed
304 * Added watchquagga daemon.
305 * Added DEP-3 conforming patch comments.
307 -- Christian Hammers <ch@debian.org> Sun, 06 May 2012 15:33:33 +0200
309 quagga (0.99.20.1-1) unstable; urgency=high
312 CVE-2012-0249 - Quagga ospfd DoS on malformed LS-Update packet
313 CVE-2012-0250 - Quagga ospfd DoS on malformed Network-LSA data
314 CVE-2012-0255 - Quagga bgpd DoS on malformed OPEN message
315 * New upstream release. Closes: #664033
317 -- Christian Hammers <ch@debian.org> Fri, 16 Mar 2012 22:14:05 +0100
319 quagga (0.99.20-4) unstable; urgency=low
321 * Switch to dpkg-source 3.0 (quilt) format.
322 * Switch to changelog-format-1.0.
324 -- Christian Hammers <ch@debian.org> Sat, 25 Feb 2012 18:52:06 +0100
326 quagga (0.99.20-3) unstable; urgency=low
328 * Added --sysconfdir back to the configure options (thanks to Sven-Haegar
329 Koch). Closes: #645649
331 -- Christian Hammers <ch@debian.org> Tue, 18 Oct 2011 00:24:37 +0200
333 quagga (0.99.20-2) unstable; urgency=low
335 * Bumped standards version to 0.9.2.
336 * Migrated to "dh" build system.
337 * Added quagga-dbg package.
339 -- Christian Hammers <ch@debian.org> Fri, 14 Oct 2011 23:59:26 +0200
341 quagga (0.99.20-1) unstable; urgency=low
343 * New upstream release:
344 "The primary focus of this release is a fix of SEGV regression in ospfd,
345 which was introduced in 0.99.19. It also features a series of minor
346 improvements, including better RFC compliance in bgpd, better support
347 of FreeBSD and some enhancements to isisd."
348 * Fixes off-by-one bug (removed 20_ospf6_area_argv.dpatch). Closes: #519488
350 -- Christian Hammers <ch@debian.org> Fri, 30 Sep 2011 00:59:24 +0200
352 quagga (0.99.19-1) unstable; urgency=high
355 "This release provides security fixes, which address assorted
356 vulnerabilities in bgpd, ospfd and ospf6d (CVE-2011-3323,
357 CVE-2011-3324, CVE-2011-3325, CVE-2011-3326 and CVE-2011-3327).
358 * New upstream release.
359 * Removed incorporated debian/patches/92_opaque_lsa_enable.dpatch.
360 * Removed incorporated debian/patches/93_opaque_lsa_fix.dpatch.
361 * Removed obsolete debian/README.Debian.Woody and README.Debian.MD5.
363 -- Christian Hammers <ch@debian.org> Tue, 27 Sep 2011 00:16:27 +0200
365 quagga (0.99.18-1) unstable; urgency=low
368 "This release fixes 2 denial of services in bgpd, which can be remotely
369 triggered by malformed AS-Pathlimit or Extended-Community attributes.
370 These issues have been assigned CVE-2010-1674 and CVE-2010-1675.
371 Support for AS-Pathlimit has been removed with this release."
372 * Added Brazilian Portuguese debconf translation. Closes: #617735
373 * Changed section for quagga-doc from "doc" to "net".
374 * Added patch to fix FTBFS with latest GCC. Closes: #614459
376 -- Christian Hammers <ch@debian.org> Tue, 22 Mar 2011 23:13:34 +0100
378 quagga (0.99.17-4) unstable; urgency=low
380 * Added comment to init script (thanks to Marc Haber). Closes: #599524
382 -- Christian Hammers <ch@debian.org> Thu, 13 Jan 2011 23:53:29 +0100
384 quagga (0.99.17-3) unstable; urgency=low
386 * Fix FTBFS with ld --as-needed (thanks to Matthias Klose at Ubuntu).
389 -- Christian Hammers <ch@debian.org> Thu, 13 Jan 2011 23:27:06 +0100
391 quagga (0.99.17-2) unstable; urgency=low
393 * Added Danisch Debconf translation (thanks to Joe Dalton). Closes: #596259
395 -- Christian Hammers <ch@debian.org> Sat, 18 Sep 2010 12:20:07 +0200
397 quagga (0.99.17-1) unstable; urgency=high
400 "This release provides two important bugfixes, which address remote crash
401 possibility in bgpd discovered by CROSS team.":
402 1. Stack buffer overflow by processing certain Route-Refresh messages
404 2. DoS (crash) while processing certain BGP update AS path messages
408 -- Christian Hammers <ch@debian.org> Wed, 25 Aug 2010 00:52:48 +0200
410 quagga (0.99.16-1) unstable; urgency=low
412 * New upstream release. Closes: #574527
413 * Added chrpath to debian/rules to fix rpath problems that lintian spottet.
415 -- Christian Hammers <ch@debian.org> Sun, 21 Mar 2010 17:05:40 +0100
417 quagga (0.99.15-2) unstable; urgency=low
419 * Applied patch for off-by-one bug in ospf6d that caused a segmentation
420 fault when using the "area a.b.c.d filter-list prefix" command (thanks
421 to Steinar H. Gunderson). Closes: 519488
423 -- Christian Hammers <ch@debian.org> Sun, 14 Feb 2010 20:02:03 +0100
425 quagga (0.99.15-1) unstable; urgency=low
427 * New upstream release
428 "This fixes some annoying little ospfd and ospf6d regressions, which made
429 0.99.14 a bit of a problem release (...) This release still contains a
430 regression in the "no ip address ..." command, at least on Linux.
431 See bug #486, which contains a workaround patch. This release should be
432 considered a 1.0.0 release candidate. Please test this release as widely
434 * Fixed wrong port number in zebra.8 (thanks to Thijs Kinkhorst).
436 * Added Russian Debconf tanslation (thanks to Yuri Kozlov).
438 * Removed so-version in build-dep to libreadline-dev on request of
440 * Added README.source with reference to dpatch as suggested by lintian.
441 * Bumped standards versionto 3.8.3.
443 -- Christian Hammers <ch@debian.org> Sun, 13 Sep 2009 18:12:06 +0200
445 quagga (0.99.14-1) unstable; urgency=low
447 * New upstream release
448 "This release contains a regression fix for ospf6d, various small fixes
449 and some hopefully very significant bgpd stability fixes.
450 This release should be considered a 1.0.0 release candidate. Please test
451 this release as widely as possible."
452 * Fixes bug with premature LSA aging in ospf6d. Closes: #535030
453 * Fixes section number in zebra.8 manpage. Closes: #517860
455 -- Christian Hammers <ch@debian.org> Sat, 25 Jul 2009 00:40:38 +0200
457 quagga (0.99.13-2) unstable; urgency=low
459 * Added Japanese Debconf translation (thanks to Hideki Yamane).
461 * When checking for obsoleted config options in preinst, print filename
462 where it occures (thanks to Michael Bussmann). Closes: #339489
464 -- Christian Hammers <ch@debian.org> Sun, 19 Jul 2009 17:13:23 +0200
466 quagga (0.99.13-1) unstable; urgency=low
468 * New upstream release
469 "This release is contains a number of small fixes, for potentially
470 irritating issues, as well as small enhancements to vtysh and support
471 for linking to PCRE (a much faster regex library)."
472 * Added build-dep to gawk as configure required it for memtypes.awk
473 * Replaced build-dep to gs-gpl with ghostscript as requested by lintian
474 * Minor changes to copyright and control files to make lintian happy.
476 -- Christian Hammers <ch@debian.org> Wed, 24 Jun 2009 17:53:28 +0200
478 quagga (0.99.12-1) unstable; urgency=high
480 * New upstream release
481 "This release fixes an urgent bug in bgpd where it could hit an assert
482 if it received a long AS_PATH with a 4-byte ASN." Noteworthy bugfixes:
483 + [bgpd] Fix bgp ipv4/ipv6 accept handling
484 + [bgpd] AS4 bugfix by Chris Caputo
485 + [bgpd] Allow accepted peers to progress even if realpeer is in Connect
486 + [ospfd] Switch Fletcher checksum back to old ospfd version
488 -- Christian Hammers <ch@debian.org> Mon, 22 Jun 2009 00:16:33 +0200
490 quagga (0.99.11-1) unstable; urgency=low
492 * New upstream release
493 "Most regressions in 0.99 over 0.98 are now believed to be fixed. This
494 release should be considered a release-candidate for a new stable series."
495 + bgpd: Preliminary UI and Linux-IPv4 support for TCP-MD5 merged
496 + zebra: ignore dead routes in RIB update
497 + [ospfd] Default route needs to be refreshed after neighbour state change
498 + [zebra:netlink] Set proto/scope on all route update messages
499 * Removed debian/patches/20_*bgp*md5*.dpatch due to upstream support.
501 -- Christian Hammers <ch@debian.org> Thu, 09 Oct 2008 22:56:38 +0200
503 quagga (0.99.10-1) unstable; urgency=medium
505 * New upstream release
506 + bgpd: 4-Byte AS Number support
507 + Sessions were incorrectly reset if a partial AS-Pathlimit attribute
509 + Advertisement of Multi-Protocol prefixes (i.e. non-IPv4) had been
510 broken in the 0.99.9 release. Closes: #467656
512 -- Christian Hammers <ch@debian.org> Tue, 08 Jul 2008 23:32:42 +0200
514 quagga (0.99.9-6) unstable; urgency=low
516 * Fixed FTBFS by adding a build-dep to libpcre3-dev (thanks to Luk Claes).
519 -- Christian Hammers <ch@debian.org> Sat, 12 Apr 2008 12:53:51 +0200
521 quagga (0.99.9-5) unstable; urgency=low
523 * C.J. Adams-Collier and Paul Jakma suggested to build against libpcre3
524 which is supposed to be faster.
526 -- Christian Hammers <ch@debian.org> Sun, 02 Mar 2008 13:19:42 +0100
528 quagga (0.99.9-4) unstable; urgency=low
530 * Added hardening-wrapper to the build-deps (thanks to Moritz Muehlenhoff).
532 -- Christian Hammers <ch@debian.org> Tue, 29 Jan 2008 22:33:56 +0100
534 quagga (0.99.9-3) unstable; urgency=low
536 * Replaced the BGP patch by a new one so that the package builds again
537 with kernels above 2.6.21!
539 + Moved quagga-doc to section doc to make lintian happy.
540 * Added Spanish debconf translation (thanks to Carlos Galisteo de Cabo).
542 * debian/control: (thanks to Marco Rodrigues)
543 + Bump Standards-Version to 3.7.3 (no changes needed).
544 + Add Homepage field.
546 -- Christian Hammers <ch@debian.org> Mon, 28 Jan 2008 22:29:18 +0100
548 quagga (0.99.9-2.1) unstable; urgency=low
550 * Non-maintainer upload.
551 * debian/rules: fixed bashisms. (Closes: #459122)
553 -- Miguel Angel Ruiz Manzano <debianized@gmail.com> Tue, 22 Jan 2008 14:37:21 -0300
555 quagga (0.99.9-2) unstable; urgency=low
557 * Added CVE id for the security bug to the last changelog entry.
560 -- Christian Hammers <ch@debian.org> Tue, 25 Sep 2007 22:01:31 +0200
562 quagga (0.99.9-1) unstable; urgency=high
565 "This release fixes two potential DoS conditions in bgpd, reported by Mu
566 Security, where a bgpd could be crashed if a peer sent a malformed OPEN
567 message or a malformed COMMUNITY attribute. Only configured peers can do
568 this, hence we consider these issues to be very low impact." CVE-2007-4826
570 -- Christian Hammers <ch@debian.org> Wed, 12 Sep 2007 21:12:41 +0200
572 quagga (0.99.8-1) unstable; urgency=low
574 * New upstream version.
576 -- Christian Hammers <ch@debian.org> Fri, 17 Aug 2007 00:07:04 +0200
578 quagga (0.99.7-3) unstable; urgency=medium
580 * Applied patch for FTBFS with linux-libc-dev (thanks to Andrew J. Schorr
581 and Lucas Nussbaum). Closes: #429003
583 -- Christian Hammers <ch@debian.org> Fri, 22 Jun 2007 21:34:55 +0200
585 quagga (0.99.7-2) unstable; urgency=low
587 * Added Florian Weimar as co-maintainer. Closes: 421977
588 * Added Dutch debconf translation (thanks to Bart Cornelis).
590 * Added Portuguese debconf translation (thanks to Rui Branco).
592 * Improved package description (thanks to Reuben Thomas).
594 * Added CVE Id to 0.99.6-5 changelog entry.
596 -- Christian Hammers <ch@debian.org> Wed, 02 May 2007 20:27:12 +0200
598 quagga (0.99.7-1) unstable; urgency=low
600 * New upstream release. Closes: #421553
602 -- Christian Hammers <ch@debian.org> Mon, 30 Apr 2007 14:22:34 +0200
604 quagga (0.99.6-6) unstable; urgency=medium
606 * Fixes FTBFS with tetex-live. Closes: #420468
608 -- Christian Hammers <ch@debian.org> Mon, 23 Apr 2007 21:34:13 +0200
610 quagga (0.99.6-5) unstable; urgency=high
613 The bgpd daemon was vulnerable to a Denial-of-Service. Configured peers
614 could cause a Quagga bgpd to, typically, assert() and abort. The DoS
615 could be triggered by peers by sending an UPDATE message with a crafted,
616 malformed Multi-Protocol reachable/unreachable NLRI attribute.
617 This is CVE-2007-1995 and Quagga Bug#354. Closes: #418323
619 -- Christian Hammers <ch@debian.org> Thu, 12 Apr 2007 23:21:58 +0200
621 quagga (0.99.6-4) unstable; urgency=low
623 * Improved note in README.Debian for SNMP self-builders (thanks to Matthias
624 Wamser). Closes: #414788
626 -- Christian Hammers <ch@debian.org> Wed, 14 Mar 2007 02:18:57 +0100
628 quagga (0.99.6-3) unstable; urgency=low
630 * Updated German Debconf translation (thanks to Matthias Julius).
633 -- Christian Hammers <ch@debian.org> Sat, 10 Feb 2007 15:06:16 +0100
635 quagga (0.99.6-2) unstable; urgency=low
637 * Updated config.guess/config.sub as suggested by lintian.
638 * Corrected README.Debian text regarding the WANT_SNMP flag.
640 -- Christian Hammers <ch@debian.org> Sun, 17 Dec 2006 01:45:37 +0100
642 quagga (0.99.6-1) unstable; urgency=low
644 * New upstream release. Closes: #402361
646 -- Christian Hammers <ch@debian.org> Mon, 11 Dec 2006 00:28:09 +0100
648 quagga (0.99.5-5) unstable; urgency=high
650 * Changed Depends on adduser to Pre-Depends to avoid uninstallability
651 in certain cases (thanks to Steve Langasek, Lucas Nussbaum).
654 -- Christian Hammers <ch@debian.org> Wed, 15 Nov 2006 17:46:34 +0100
656 quagga (0.99.5-4) unstable; urgency=low
658 * Added default PAM file and some explanations regarding PAM authentication
659 of vtysh which could prevent the start at boot-time when used wrong.
660 Now PAM permits anybody to access the vtysh tool (a malicious user could
661 build his own vtysh without PAM anyway) and the access is controled by
662 the read/write permissions of the vtysh socket which are only granted to
663 users belonging to the quaggavty group (thanks to Wakko Warner).
665 * Added "case" to prerm script so that the Debconf question is not called a
666 second time in e.g. "new-prerm abort-upgrade" after being NACKed in the
669 -- Christian Hammers <ch@debian.org> Fri, 3 Nov 2006 01:22:15 +0100
671 quagga (0.99.5-3) unstable; urgency=medium
673 * Backport CVS fix for an OSPF DD Exchange regression (thanks to Matt
674 Brown). Closes: #391040
676 -- Christian Hammers <ch@debian.org> Wed, 25 Oct 2006 19:47:11 +0200
678 quagga (0.99.5-2) unstable; urgency=medium
680 * Added LSB info section to initscript.
681 * Removed unnecessary depends to libncurses5 to make checklib happy.
682 The one to libcap should remain though as it is just temporarily
685 -- Christian Hammers <ch@debian.org> Thu, 21 Sep 2006 00:04:07 +0200
687 quagga (0.99.5-1) unstable; urgency=low
689 * New upstream release. Closes: #38704
690 * Upstream fixes ospfd documentary inconsistency. Closes: #347897
691 * Changed debconf question in prerm to "high" (thanks to Rafal Pietrak).
693 -- Christian Hammers <ch@debian.org> Mon, 11 Sep 2006 23:43:42 +0200
695 quagga (0.99.4-4) unstable; urgency=low
697 * Recreate /var/run if not present because /var is e.g. on a tmpfs
698 filesystem (thanks to Martin Pitt). Closes: #376142
699 * Removed nonexistant option from ospfd.8 manpage (thanks to
700 David Medberry). Closes: 378274
702 -- Christian Hammers <ch@debian.org> Sat, 15 Jul 2006 20:22:12 +0200
704 quagga (0.99.4-3) unstable; urgency=low
706 * Removed invalid semicolon from rules file (thanks to Philippe Gramoulle).
708 -- Christian Hammers <ch@debian.org> Tue, 27 Jun 2006 23:36:07 +0200
710 quagga (0.99.4-2) unstable; urgency=high
712 * Set urgency to high as 0.99.4-1 fixes a security problem!
713 * Fixed building of the info file.
715 -- Christian Hammers <ch@debian.org> Sun, 14 May 2006 23:04:28 +0200
717 quagga (0.99.4-1) unstable; urgency=low
719 * New upstream release to fix a security problem in the telnet interface
720 of the BGP daemon which could be used for DoS attacks (CVE-2006-2276).
723 -- Christian Hammers <ch@debian.org> Sat, 13 May 2006 19:54:40 +0200
725 quagga (0.99.3-3) unstable; urgency=low
727 * Added CVE numbers for the security patch in 0.99.3-2.
729 -- Christian Hammers <ch@debian.org> Sat, 6 May 2006 17:14:22 +0200
731 quagga (0.99.3-2) unstable; urgency=high
734 Added security bugfix patch from upstream BTS for security problem
735 that could lead to injected routes when using RIPv1.
736 CVE-2006-2223 - missing configuration to disable RIPv1 or require
737 plaintext or MD5 authentication
738 CVE-2006-2224 - lack of enforcement of RIPv2 authentication requirements
740 * First amd64 upload.
742 -- Christian Hammers <ch@debian.org> Thu, 4 May 2006 00:22:09 +0200
744 quagga (0.99.3-1) unstable; urgency=low
746 * New upstream release
748 -- Christian Hammers <ch@debian.org> Wed, 25 Jan 2006 13:37:27 +0100
750 quagga (0.99.2-1) unstable; urgency=low
752 * New upstream release
753 Closes: #330248, #175553
755 -- Christian Hammers <ch@debian.org> Wed, 16 Nov 2005 00:25:52 +0100
757 quagga (0.99.1-7) unstable; urgency=low
759 * Changed debian/rules check for mounted /proc directory to check
760 for /proc/1 as not all systems (e.g. 2.6 arm kernels) have
761 /proc/kcore which is a optional feature only (thanks to Lennert
762 Buytenhek). Closes: #335695
763 * Added Swedish Debconf translation (thanks to Daniel Nylander).
766 -- Christian Hammers <ch@debian.org> Thu, 27 Oct 2005 20:53:19 +0200
768 quagga (0.99.1-6) unstable; urgency=low
770 * Fixed debconf dependency as requested by Joey Hess.
772 -- Christian Hammers <ch@debian.org> Mon, 26 Sep 2005 20:47:35 +0200
774 quagga (0.99.1-5) unstable; urgency=low
776 * Rebuild with libreadline5-dev as build-dep as requested by
777 Matthias Klose. Closes: #326306
778 * Made initscript more fault tolerant against missing lines in
779 /etc/quagga/daemons (thanks to Ralf Hildebrandt). Closes: #323774
780 * Added dependency to adduser.
782 -- Christian Hammers <ch@debian.org> Tue, 13 Sep 2005 21:42:17 +0200
784 quagga (0.99.1-4) unstable; urgency=low
786 * Added French Debconf translation (thanks to Mohammed Adnene Trojette).
788 * Added Czech Debconf translation (thanks to Miroslav Kure).
791 -- Christian Hammers <ch@debian.org> Sun, 31 Jul 2005 04:19:41 +0200
793 quagga (0.99.1-3) unstable; urgency=low
795 * A Debconf question now asks the admin before upgrading if the daemon
796 should really be stopped as this could lead to the loss of network
797 connectivity or BGP flaps (thanks to Michael Horn and Achilleas Kotsis).
798 Also added a hint about setting Quagga "on hold" to README.Debian.
800 * Added patch to build on Linux/ARM.
802 -- Christian Hammers <ch@debian.org> Sun, 10 Jul 2005 22:19:38 +0200
804 quagga (0.99.1-2) unstable; urgency=low
806 * Fixed SNMP enabled command in debian/rules (thanks to Christoph Kluenter).
809 -- Christian Hammers <ch@debian.org> Sat, 4 Jun 2005 14:04:01 +0200
811 quagga (0.99.1-1) unstable; urgency=low
813 * New upstream version. Among others:
814 - BGP graceful restart and "match ip route-source" added
815 - support for interface renaming
816 - improved threading for better responsivness under load
817 * Switched to dpatch to make diffs cleaner.
818 * Made autoreconf unnecessary.
819 * Replaced quagga.dvi and quagga.ps by quagga.pdf in quagga-doc.
820 (the PostScript would have needed Makefile corrections and PDF
821 is more preferable anyway)
822 * Added isisd to the list of daemons in /etc/init.d/quagga (thanks
824 * Added hint for "netlink-listen: overrun" messages (thanks to
826 * Added preinst check that bails out if old smux options are in use
827 as Quagga would not start up else anyway (thanks to Bjorn Mork).
830 -- Christian Hammers <ch@debian.org> Fri, 13 May 2005 01:18:24 +0200
832 quagga (0.98.3-7) unstable; urgency=high
834 * Removed SNMP support as linking against NetSNMP introduced a dependency
835 to OpenSSL which is not compatible to the GPL which governs this
836 application (thanks to Faidon Liambotis). See README.Debian for more
837 information. Closes: #306840
838 * Changed listening address of ospf6d and ripngd from 127.0.0.1 to "::1".
839 * Added build-dep to groff to let drafz-zebra-00.txt build correctly.
841 -- Christian Hammers <ch@debian.org> Wed, 4 May 2005 20:08:14 +0200
843 quagga (0.98.3-6) testing-proposed-updates; urgency=high
845 * Removed "Recommends kernel-image-2.4" as aptitude then
846 installes a kernel-image for an arbitrary architecture as long
847 as it fullfill that recommendation which can obviously fatal
848 at the next reboot :) Also it is a violation of the policy
849 which mandates a reference to real packages (thanks to Holger Levsen).
852 -- Christian Hammers <ch@debian.org> Tue, 3 May 2005 22:53:39 +0200
854 quagga (0.98.3-5) unstable; urgency=high
856 * The patch which tried to remove the OpenSSL dependency, which is
857 not only unneccessary but also a violation of the licence and thus RC,
858 stopped working a while ago, since autoreconf is no longer run before
859 building the binaries. So now ./configure is patched directly (thanks
860 to Faidon Liambotis for reporting). Closes: #306840
861 * Raised Debhelper compatibility level from 3 to 4. Nothing changed.
862 * Added build-dep to texinfo (>= 4.7) to ease work for www.backports.org.
864 -- Christian Hammers <ch@debian.org> Fri, 29 Apr 2005 02:31:03 +0200
866 quagga (0.98.3-4) unstable; urgency=low
868 * Removed Debconf upgrade note as it was considered a Debconf abuse
869 and apart from that so obvious that it was not even worth to be
870 put into NEWS.Debian (thanks to Steve Langasek). Closes: #306384
872 -- Christian Hammers <ch@debian.org> Wed, 27 Apr 2005 00:10:24 +0200
874 quagga (0.98.3-3) unstable; urgency=medium
876 * Adding the debconf module due to a lintian suggestion is a very
877 bad idea if no db_stop is called as the script hangs then (thanks
878 to Tore Anderson for reporting). Closes: #306324
880 -- Christian Hammers <ch@debian.org> Mon, 25 Apr 2005 21:55:58 +0200
882 quagga (0.98.3-2) unstable; urgency=low
884 * Added debconf confmodule to postinst as lintian suggested.
886 -- Christian Hammers <ch@debian.org> Sun, 24 Apr 2005 13:16:00 +0200
888 quagga (0.98.3-1) unstable; urgency=low
890 * New upstream release.
891 Mmost notably fixes last regression in bgpd (reannounce of prefixes
892 with changed attributes works again), race condition in netlink
893 handling while using IPv6, MTU changes handling in ospfd and several
894 crashes in ospfd, bgpd and ospf6d.
896 -- Christian Hammers <ch@debian.org> Mon, 4 Apr 2005 12:51:24 +0200
898 quagga (0.98.2-2) unstable; urgency=low
900 * Added patch to let Quagga compile with gcc-4.0 (thanks to
901 Andreas Jochens). Closes: #300949
903 -- Christian Hammers <ch@debian.org> Fri, 25 Mar 2005 19:33:30 +0100
905 quagga (0.98.2-1) unstable; urgency=medium
907 * Quoting the upstream announcement:
908 The 0.98.1 release unfortunately was a brown paper bag release with
909 respect to ospfd. [...] 0.98.2 has been released, with one crucial change
910 to fix the unfortunate mistake in 0.98.1, which caused problems if
912 * Note: the upstream tarball had a strange problem, apparently redhat.spec
913 was twice in it? At least debuild gave a strange error message so I
914 unpacked it by hand. No changes were made to the .orig.tar.gz!
916 -- Christian Hammers <ch@debian.org> Fri, 4 Feb 2005 01:31:36 +0100
918 quagga (0.98.1-1) unstable; urgency=medium
920 * New upstream version
921 "fixing a fatal OSPF + MD5 auth regression, and a non-fatal high-load
922 regression in bgpd which were present in the 0.98.0 release."
923 * Upstream version fixes bug in ospfd that could lead to crash when OSPF
924 packages had a MTU > 1500. Closes: #290566
925 * Added notice regarding capability kernel support to README.Debian
926 (thanks to Florian Weimer). Closes: #291509
927 * Changed permission setting in postinst script (thanks to Bastian Blank).
930 -- Christian Hammers <ch@debian.org> Tue, 1 Feb 2005 02:01:27 +0100
932 quagga (0.98.0-3) unstable; urgency=low
934 * Fixed problem in init script. Closes: #290317
935 * Removed obsolete "smux peer enable" patch.
937 -- Christian Hammers <ch@debian.org> Fri, 14 Jan 2005 17:37:27 +0100
939 quagga (0.98.0-2) unstable; urgency=low
941 * Updated broken TCP MD5 patch for BGP (thanks to John P. Looney
944 -- Christian Hammers <ch@debian.org> Thu, 13 Jan 2005 02:03:54 +0100
946 quagga (0.98.0-1) unstable; urgency=low
948 * New upstream release
949 * Added kernel-image-2.6 as alternative to 2.4 to the recommends
950 (thanks to Faidon Liambotis). Closes: #289530
952 -- Christian Hammers <ch@debian.org> Mon, 10 Jan 2005 19:36:17 +0100
954 quagga (0.97.5-1) unstable; urgency=low
956 * New upstream version.
957 * Added Czech debconf translation (thanks to Miroslav Kure).
959 * Added Brazilian debconf translation (thanks to Andre Luis Lopes).
962 -- Christian Hammers <ch@debian.org> Wed, 5 Jan 2005 23:49:57 +0100
964 quagga (0.97.4-2) unstable; urgency=low
966 * Fixed quagga.info build problem.
968 -- Christian Hammers <ch@debian.org> Wed, 5 Jan 2005 22:38:01 +0100
970 quagga (0.97.4-1) unstable; urgency=low
972 * New upstream release.
974 -- Christian Hammers <ch@debian.org> Tue, 4 Jan 2005 01:45:22 +0100
976 quagga (0.97.3-2) unstable; urgency=low
978 * Included isisd in the daemon list.
979 * Wrote an isisd manpage.
980 * It is now ensured that zebra is always the last daemon to be stopped.
981 * (Thanks to Hasso Tepper for mailing me a long list of suggestions
982 which lead to this release)
984 -- Christian Hammers <ch@debian.org> Sat, 18 Dec 2004 13:14:55 +0100
986 quagga (0.97.3-1) unstable; urgency=medium
988 * New upstream version.
989 - Fixes important OSPF bug.
990 * Added ht-20040911-smux.patch regarding Quagga bug #112.
991 * Updated ht-20041109-0.97.3-bgp-md5.patch for BGP with TCP MD5
992 (thanks to Matthias Wamser).
994 -- Christian Hammers <ch@debian.org> Tue, 9 Nov 2004 17:45:26 +0100
996 quagga (0.97.2-4) unstable; urgency=low
998 * Added Portuguese debconf translation (thanks to Andre Luis Lopes).
1000 * Disabled ospfapi server by default on recommendation of Paul Jakma.
1002 -- Christian Hammers <ch@debian.org> Sun, 7 Nov 2004 15:07:05 +0100
1004 quagga (0.97.2-3) unstable; urgency=low
1006 * Added Andrew Schorrs VTY Buffer patch from the [quagga-dev 1729].
1008 -- Christian Hammers <ch@debian.org> Tue, 2 Nov 2004 00:46:56 +0100
1010 quagga (0.97.2-2) unstable; urgency=low
1012 * Changed file and directory permissions and ownerships according to a
1013 suggestion from Paul Jakma. Still not perfect though.
1014 * Fixed upstream vtysh.conf.sample file.
1015 * "ip ospf network broadcast" is now saved correctly. Closes: #244116
1016 * Daemon options are now in /etc/quagga/debian.conf to be user
1017 configurable (thanks to Simon Raven and Hasso Tepper). Closes: #266715
1019 -- Christian Hammers <ch@debian.org> Tue, 26 Oct 2004 23:35:45 +0200
1021 quagga (0.97.2-1) unstable; urgency=low
1023 * New upstream version.
1025 * Fixed warning on unmodular kernels (thanks to Christoph Biedl).
1028 -- Christian Hammers <ch@debian.org> Mon, 25 Oct 2004 00:47:04 +0200
1030 quagga (0.97.1-2) unstable; urgency=low
1032 * Version 0.97 introduced shared libraries. They are now included.
1033 (thanks to Raf D'Halleweyn). Closes: #277446
1035 -- Christian Hammers <ch@debian.org> Wed, 20 Oct 2004 15:32:06 +0200
1037 quagga (0.97.1-1) unstable; urgency=low
1039 * New upstream version.
1040 * Removed some obsolete files from debian/patches.
1041 * Added patch from upstream bug 113. Closes: #254541
1042 * Added patch from upstream that fixes a compilation problem in the
1043 ospfclient code (thanks to Hasso Tepper).
1044 * Updated German debconf translation (thanks to Jens Nachtigall)
1047 -- Christian Hammers <ch@debian.org> Mon, 18 Oct 2004 01:16:35 +0200
1049 quagga (0.96.5-11) unstable; urgency=low
1051 * Fixed /tmp/buildd/* paths in binaries.
1052 For some unknown reason the upstream Makefile modified a .h file at
1053 the end of the "debian/rules build" target. During the following
1054 "make install" one library got thus be re*compiled* - with /tmp/buildd
1055 paths as sysconfdir (thanks to Peder Chr. Norgaard). Closes: #274050
1057 -- Christian Hammers <ch@debian.org> Fri, 1 Oct 2004 01:21:02 +0200
1059 quagga (0.96.5-10) unstable; urgency=medium
1061 * The BGP routing daemon might freeze on network disturbances when
1062 their peer is also a Quagga/Zebra router.
1063 Applied patch from http://bugzilla.quagga.net/show_bug.cgi?id=102
1064 which has been confirmed by the upstream author.
1065 (thanks to Gunther Stammwitz)
1066 * Changed --enable-pam to --with-libpam (thanks to Hasso Tepper).
1068 * Added patch for vtysh (thanks to Hasso Tepper). Closes: #215919
1070 -- Christian Hammers <ch@debian.org> Mon, 9 Aug 2004 15:33:02 +0200
1072 quagga (0.96.5-9) unstable; urgency=low
1074 * Rewrote the documentation chapter about SNMP support. Closes: #195653
1077 -- Christian Hammers <ch@debian.org> Thu, 29 Jul 2004 21:01:52 +0200
1079 quagga (0.96.5-8) unstable; urgency=low
1081 * Adjusted a grep in the initscript to also match a modprobe message
1082 from older modutils packages (thanks to Faidon Paravoid).
1084 -- Christian Hammers <ch@debian.org> Wed, 28 Jul 2004 21:19:02 +0200
1086 quagga (0.96.5-7) unstable; urgency=low
1088 * Added a "cd /etc/quagga/" to the init script as quagga tries to load
1089 the config file first from the current working dir and then from the
1090 config dir which could lead to confusion (thanks to Marco d'Itri).
1092 * Removed warning regarding problems with the Debian kernels from
1093 README.Debian as they are no longer valid (thanks to Raphael Hertzog).
1095 * Added patch from Hasso Tepper that makes "terminal length 0" work
1096 in vtysh (thanks to Matthias Wamser). Closes: #252579
1098 -- Christian Hammers <ch@debian.org> Thu, 8 Jul 2004 21:53:21 +0200
1100 quagga (0.96.5-6) unstable; urgency=low
1102 * Try to load the capability module as it is needed now.
1104 -- Christian Hammers <ch@debian.org> Tue, 8 Jun 2004 23:25:29 +0200
1106 quagga (0.96.5-5) unstable; urgency=low
1108 * Changed the homedir of the quagga user to /etc/quagga/ to allow
1109 admins to put ~/.ssh/authorized_keys there (thanks to Matthias Wamser).
1112 -- Christian Hammers <ch@debian.org> Sat, 5 Jun 2004 14:47:31 +0200
1114 quagga (0.96.5-4) unstable; urgency=medium
1116 * Fixed rules file to use the renamed ./configure option --enable-tcp-md5
1117 (thanks to Matthias Wamser). Closes: #252141
1119 -- Christian Hammers <ch@debian.org> Tue, 1 Jun 2004 22:58:32 +0200
1121 quagga (0.96.5-3) unstable; urgency=low
1123 * Provided default binary package name to all build depends that were
1124 virtual packages (thanks to Goswin von Brederlow). Closes: #251625
1126 -- Christian Hammers <ch@debian.org> Sat, 29 May 2004 22:48:53 +0200
1128 quagga (0.96.5-2) unstable; urgency=low
1130 * New upstream version.
1131 * New md5 patch version (thanks to Niklas Jakobsson and Hasso Tepper).
1133 * Fixes info file generation (thanks to Peder Chr. Norgaard).
1135 * Added catalan debconf translation (thanks to Aleix Badia i Bosch).
1138 This release contains BGP4 MD5 support which requires a kernel patch
1139 to work. See /usr/share/doc/quagga/README.Debian.MD5.
1140 (The patch is ht-20040525-0.96.5-bgp-md5.patch from Hasso Tepper)
1142 -- Christian Hammers <ch@debian.org> Thu, 27 May 2004 20:09:37 +0200
1144 quagga (0.96.5-1) unstable; urgency=low
1146 * New upstream version.
1148 This release contains BGP4 MD5 support which also requires a kernel patch.
1149 See /usr/share/doc/quagga/README.Debian.MD5 and search for CAN-2004-0230.
1151 -- Christian Hammers <ch@debian.org> Sun, 16 May 2004 17:40:40 +0200
1153 quagga (0.96.4x-10) unstable; urgency=low
1156 This release contains support for MD5 for BGP which is one suggested
1157 prevention of the actually long known TCP SYN/RST attacks which got
1158 much news in the last days as ideas were revealed that made them much
1159 easier probable agains especially the BGP sessions than commonly known.
1160 There are a lot of arguments agains the MD5 approach but some ISPs
1161 started to require it.
1162 See: CAN-2004-0230, http://www.us-cert.gov/cas/techalerts/TA04-111A.html
1164 This release contains the MD5 patch from Hasso Tepper. It also seems to
1165 required a kernel patch. See /usr/share/doc/quagga/README.Debian.MD5.
1167 -- Christian Hammers <ch@debian.org> Thu, 29 Apr 2004 01:01:38 +0200
1169 quagga (0.96.4x-9) unstable; urgency=low
1171 * Fixed daemon loading order (thanks to Matt Kemner).
1172 * Fixed typo in init script (thanks to Charlie Brett). Closes: #238582
1174 -- Christian Hammers <ch@debian.org> Sun, 4 Apr 2004 15:32:18 +0200
1176 quagga (0.96.4x-8) unstable; urgency=low
1178 * Patched upstream source so that quagga header files end up in
1179 /usr/include/quagga/. Closes: #233792
1181 -- Christian Hammers <ch@debian.org> Mon, 23 Feb 2004 01:42:53 +0100
1183 quagga (0.96.4x-7) unstable; urgency=low
1185 * Fixed info file installation (thanks to Holger Dietze). Closes: #227579
1186 * Added Japanese translation (thanks to Hideki Yamane). Closes: #227812
1188 -- Christian Hammers <ch@debian.org> Sun, 18 Jan 2004 17:28:29 +0100
1190 quagga (0.96.4x-6) unstable; urgency=low
1192 * Added dependency to iproute.
1193 * Initscript now checks not only for the pid file but also for the
1194 daemons presence (thanks to Phil Gregory). Closes: #224389
1195 * Added my patch to configure file permissions.
1197 -- Christian Hammers <ch@debian.org> Mon, 15 Dec 2003 22:34:29 +0100
1199 quagga (0.96.4x-5) unstable; urgency=low
1201 * Added patch which gives bgpd the CAP_NET_RAW capability to allow it
1202 to bind to special IPv6 link-local interfaces (Thanks to Bastian Blank).
1204 * Made woody backport easier by applying Colin Watsons po-debconf hack.
1205 Thanks to Marc Haber for suggesting it. Closes: #223527
1206 * Made woody backport easier by applying a patch that removes some
1207 obscure whitespaces inside an C macro. (Thanks to Marc Haber).
1209 * Now uses /usr/bin/pager. Closes: #204070
1210 * Added note about the "official woody backports" on my homepage.
1212 -- Christian Hammers <ch@debian.org> Mon, 15 Dec 2003 20:39:06 +0100
1214 quagga (0.96.4x-4) unstable; urgency=high
1217 Fixes another bug that was originally reported against Zebra.
1219 http://rhn.redhat.com/errata/RHSA-2003-307.html
1220 Herbert Xu reported that Zebra can accept spoofed messages sent on the
1221 kernel netlink interface by other users on the local machine. This could
1222 lead to a local denial of service attack. The Common Vulnerabilities and
1223 Exposures project (cve.mitre.org) has assigned the name CAN-2003-0858 to
1226 * Minor improvements to init script (thanks to Iustin Pop).
1229 -- Christian Hammers <ch@debian.org> Sat, 22 Nov 2003 13:27:57 +0100
1231 quagga (0.96.4x-3) unstable; urgency=low
1233 * Changed "more" to "/usr/bin/pager" as default pager if $PAGER or
1234 $VTYSH_PAGER is not set (thanks to Bastian Blank). Closes: #204070
1235 * Made the directory (but not the config/log files!) world accessible
1236 again on user request (thanks to Anand Kumria)). Closes: #213129
1237 * No longer providing sample configuration in /etc/quagga/. They are
1238 now only available in /usr/share/doc/quagga/ to avoid accidently
1239 using them without changing the adresses (thanks to Marc Haber).
1242 -- Christian Hammers <ch@debian.org> Sun, 16 Nov 2003 16:59:30 +0100
1244 quagga (0.96.4x-2) unstable; urgency=low
1246 * Fixed permission problem with pidfile (thanks to Kir Kostuchenko).
1249 -- Christian Hammers <ch@debian.org> Sun, 16 Nov 2003 14:24:08 +0100
1251 quagga (0.96.4x-1) unstable; urgency=low
1253 * Reupload of 0.96.4. Last upload-in-a-hurry produced a totally
1254 crappy .tar.gz file. Closes: #220621
1256 -- Christian Hammers <ch@debian.org> Fri, 14 Nov 2003 19:45:57 +0100
1258 quagga (0.96.4-1) unstable; urgency=high
1260 * SECURITY: Remote DoS of protocol daemons.
1261 Fix for a remote triggerable crash in vty layer. The management
1262 ports ("telnet myrouter ospfd") should not be open to the internet!
1264 * New upstream version.
1266 - Some improvements for bgp and rip.
1268 -- Christian Hammers <ch@debian.org> Thu, 13 Nov 2003 11:52:27 +0100
1270 quagga (0.96.3-3) unstable; urgency=low
1272 * Fixed pid file generation by substituting the daemons "-d" by the
1273 start-stop-daemon option "--background" (thanks to Micha Gaisser).
1276 -- Christian Hammers <ch@debian.org> Wed, 29 Oct 2003 05:17:49 +0100
1278 quagga (0.96.3-2) unstable; urgency=low
1280 * Readded GNOME-PRODUCT-ZEBRA-MIB.
1282 -- Christian Hammers <ch@debian.org> Thu, 23 Oct 2003 06:17:03 +0200
1284 quagga (0.96.3-1) unstable; urgency=medium
1286 * New upstream version.
1287 * Removed -u and -e in postrm due to problems with debhelper and userdel
1288 (thanks to Adam Majer and Jaakko Niemi). Closes: #216770
1289 * Removed SNMP MIBs as they are now included in libsnmp-base (thanks to
1290 David Engel and Peter Gervai). Closes: #216138, #216086
1291 * Fixed seq command in init script (thanks to Marc Haber). Closes: #215915
1292 * Improved /proc check (thanks to Marc Haber). Closes: #212331
1294 -- Christian Hammers <ch@debian.org> Thu, 23 Oct 2003 03:42:02 +0200
1296 quagga (0.96.2-9) unstable; urgency=medium
1298 * Removed /usr/share/info/dir.* which were accidently there and prevented
1299 the installation by dpkg (thanks to Simon Raven). Closes: #212614
1300 * Reworded package description (thanks to Anand Kumria). Closes: #213125
1301 * Added french debconf translation (thanks to Christian Perrier).
1304 -- Christian Hammers <ch@debian.org> Tue, 7 Oct 2003 13:26:58 +0200
1306 quagga (0.96.2-8) unstable; urgency=low
1308 * debian/rules now checks if /proc is mounted as ./configure needs
1309 it but just fails with an obscure error message if it is absent.
1310 (Thanks to Norbert Tretkowski). Closes: #212331
1312 -- Christian Hammers <ch@debian.org> Tue, 23 Sep 2003 12:57:38 +0200
1314 quagga (0.96.2-7) unstable; urgency=low
1316 * Last build was rejected due to a buggy dpkg-dev version. Rebuild.
1318 -- Christian Hammers <ch@debian.org> Mon, 22 Sep 2003 20:34:12 +0200
1320 quagga (0.96.2-6) unstable; urgency=low
1322 * Fixed init script so that is is now possible to just start
1323 the bgpd but not the zebra daemon. Also daemons are now actually
1324 started in the order defined their priority. (Thanks to Thomas Kaehn
1325 and Jochen Friedrich) Closes: #210924
1327 -- Christian Hammers <ch@debian.org> Fri, 19 Sep 2003 21:17:02 +0200
1329 quagga (0.96.2-5) unstable; urgency=low
1331 * For using quagga as BGP route server or similar, it is not
1332 wanted to have the zebra daemon running too. For this reason
1333 it can now be disabled in /etc/quagga/daemons, too.
1334 (Thanks to Jochen Friedrich). Closes: #210924
1335 * Attached *unapplied* patch for the ISIS protocol. I did not dare
1336 to apply it as long as upstream does not do it but this way give
1337 users the possibilities to use it if they like to.
1338 (Thanks to Remco van Mook)
1340 -- Christian Hammers <ch@debian.org> Wed, 17 Sep 2003 19:57:31 +0200
1342 quagga (0.96.2-4) unstable; urgency=low
1344 * Enabled IPV6 router advertisement feature by default on user request
1345 (thanks to Jochen Friedrich and Hasso Tepper). Closes: #210732
1346 * Updated GNU autoconf to let it build on hppa/parisc64 (thanks to
1347 lamont). Closes: #210492
1349 -- Christian Hammers <ch@debian.org> Sat, 13 Sep 2003 14:11:13 +0200
1351 quagga (0.96.2-3) unstable; urgency=medium
1353 * Removed unnecessary "-lcrypto" to avoid dependency against OpenSSL
1354 which would require further copyright addtions.
1356 -- Christian Hammers <ch@debian.org> Wed, 10 Sep 2003 01:37:28 +0200
1358 quagga (0.96.2-2) unstable; urgency=low
1360 * Added note that config files of quagga are in /etc/quagga and
1361 not /etc/zebra for the zebra users that migrate to quagga.
1362 (Thanks to Roberto Suarez Soto for the idea)
1363 * Fixed setgid rights in /etc/quagga.
1365 -- Christian Hammers <ch@debian.org> Wed, 27 Aug 2003 14:05:39 +0200
1367 quagga (0.96.2-1) unstable; urgency=low
1369 * This package has formally been known as "zebra-pj"!
1370 * New upstream release.
1371 Fixes "anoying OSPF problem".
1372 * Modified group ownerships so that vtysh can now be used by normal
1373 uses if they are in the quaggavty group.
1375 -- Christian Hammers <ch@debian.org> Mon, 25 Aug 2003 23:40:14 +0200
1377 quagga (0.96.1-1) unstable; urgency=low
1379 * Zebra-pj, the fork of zebra has been renamed to quagga as the original
1380 upstream author asked the new project membed not to use "zebra" in the
1381 name. zebra-pj is obsolete.
1383 -- Christian Hammers <ch@debian.org> Mon, 18 Aug 2003 23:37:20 +0200
1385 zebra-pj (0.94+cvs20030721-1) unstable; urgency=low
1388 - OSPF changes (integration of the OSPF API?)
1389 - code cleanups (for ipv6?)
1390 * Tightened Build-Deps to gcc-2.95 as 3.x does not compile a stable ospfd.
1391 This is a known problem and has been discussed on the mailing list.
1392 No other solutions so far.
1394 -- Christian Hammers <ch@debian.org> Mon, 21 Jul 2003 23:52:00 +0200
1396 zebra-pj (0.94+cvs20030701-1) unstable; urgency=low
1400 -- Christian Hammers <ch@debian.org> Tue, 1 Jul 2003 01:58:06 +0200