exploit a defect in EDNS option processing can cause named to terminate with
an assertion failure. This fixes a missing isc_buffer_availablelength check
when printing out a packet." (This doesn't affect 9.9.x in 5.5-stable).
A few other fixes most of which don't affect us (one notable one is a
fix for GCC 4.9.0 optimizing away a null pointer check, more info on this
at https://kb.isc.org/article/AA-01167/)
packets since those checksums are not calculated until after Snort sees
those packets.
This causes Snort to discard those packets instead of processing them,
which in turn prevents Snort from triggering alerts for them.
To fix this, set checksum_mode to "none" in snort.conf to disable
Snort's checksum verification feature.
Looks OK to maintainer Markus Lude.
This bug fix release also addresses two minor security issues
without being a dedicated security release:
o CVE-2014-0239: dns: Don't reply to replies (bug #10609).
o CVE-2014-0178: Malformed FSCTL_SRV_ENUMERATE_SNAPSHOTS response
(bug #10549).
Still not connected to bulk builds.
- move async and asyncd to -main package
- add asyncd rc script
- move @sample /var/db/munin/ to PLIST-main (requested by sthen@)
with input from ajacoutot@
OK sthen@
Apache Libcloud is a Python library which hides differences between
different cloud provider APIs and allows you to manage different cloud
resources through a unified and easy to use API.
<...>
ok jasper@
using a README from another submission by Vladimir Seleznev. ok landry@
IRSSI support for Off-The-Record (http://www.cypherpunks.ca/otr/)
messaging, allowing you to have private conversations over instant
messaging by providing:
Encryption
* No one else can read your instant messages.
Authentication
* You are assured the correspondent is who you think it is.
Deniability
* The messages you send do not have digital signatures that are
checkable by a third party. Anyone can forge messages after a
conversation to make them look like they came from you. However,
during a conversation, your correspondent is assured the messages
he sees are authentic and unmodified.
Perfect forward secrecy
* If you lose control of your private keys, no previous conversation is
compromised.
