Thursday May 04, 2006 Random ramblings
Thursday May 04, 2006 Quagga 0.98.6 Release Candidate
A snapshot is available of the Quagga 0.98 stable branch, containing fixes for the recently reported RIPv1 vulnerabilities. This is a "Release Candidate" for 0.98.6, testing would be very much appreciated. All the fixes have been tested on their own and/or soaked in the unstable 0.99 series, however the fixes together in this tarball have not been fully tested - stress testing of OSPF virtual-link functionality in particular would be useful.
Changes in the snapshot:
-
Security:
- [ripd] bugs #261,#262: Fix RIPv1 info-leak and unauthenticated route updates
- [ripd] 0.98 specific command changes, allow no-auth to be set
- [bgpd] Fix infinite loop in community_str2com
- [docs] Update ripd docs on version and authentication, see bugs #261,#262
- [doc] Add text on 0.98 specific RIP authentication changes
- Major bugfixes:
-
Minor bugfixes:
- [ospfd] Fix incorrect byte-order conversion of OSPF_MAX_SEQUENCE_NUMBER
- [ospfd] fix rare leak of struct connected, in an error path.
- [ospfd] Make database exchange for NSSA database work
-
Trivial fixes/enhancements:
- [zebra] zebra_rib.c: Fix rib_delete_ipv6() to match routes in the RIB by
- [0.98] Make "show ip ospf neighbor xxx" commands work.
- [redhat] Update spec file with some changes from Fedora spec file
- [lib] 'show route-map' should print call action seperate from exit policy
- [ospfd] Fix failure of Fletcher checksum with certain compilers
- [ospfd] fix undefined effect expression
Many thanks to the many users involved who have reported bugs, helped diagnose them and tested iterations of proposed fixes.
( May 04 2006, 05:41:19 PM IST ) Permalink Comments [0]
Trackback URL: http://blogs.sun.com/paulj/entry/quagga_0_98_6_release
Comments:
Post a Comment:
