| Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
| Name: quagga-devel | Distribution: Trustix Secure Linux |
| Version: 0.99.9 | Vendor: Comodo Trustix |
| Release: 1tr | Build date: Thu Sep 20 09:27:47 2007 |
| Group: Trustix Official | Build host: ttrmgtnived.comodo.net |
| Size: 1402481 | Source RPM: quagga-0.99.9-1tr.src.rpm |
| Packager: Comodo Trustix <http://www.trustix.com> | |
| Url: http://www.quagga.net | |
| Summary: Header and object files for quagga development | |
The quagga-devel package contains the header and object files neccessary for developing OSPF-API and quagga applications.
GPL
* Thu Sep 20 2007 Nived Gopalan <nived at trustix dot org> 0.99.9-1tr
- New Upstream.
- SECURITY Fix: A vulnerability have been reported in Quagga, caused
due to bgpd improperly handling messages sent by peers. This can be
exploited to crash bgpd by sending a specially crafted "OPEN"
message with an invalid message length or an invalid parameter
length, or a specially crafted "UPDATE" message with a malformed
"COMMUNITY" attribute.
The Common Vulnerabilities and Exposures project (cve.mitre.org)
has assigned the name CVE-2007-4826 to this issue.
* Thu May 03 2007 Nived Gopalan <nived at trustix dot org> 0.99.7-1tr
- New Upstream.
- SECURITY Fix: Paul Jakma has reported a vulnerability in Quagga,
caused due to bgpd not checking the length information of the
"MP_UNREACH_NLRI" and "MP_REACH_NLRI" attributes. This can be
exploited to cause an assertion error or out of bounds read by
sending a specially crafted UPDATE message.
The Common Vulnerabilities and Exposures project (cve.mitre.org)
has assigned the name CVE-2007-1995 to this issue.
* Tue Jun 27 2006 Bipin S <bipin at trustix dot org> 0.98.6-2tr
- Added condition checking for %preun. Bug #1820.
* Tue May 23 2006 Nived Gopalan <nived at trustix dot org> 0.98.6-1tr
- New Upstream.
- SECURITY Fix: Konstantin V. Gavrilenko has reported two security issues
in Quagga, which can be exploited by malicious people to bypass certain
security restrictions and to disclose system information.
- An error in RIPd does not properly implement configurations that 1)
disable RIPv1 or 2) require plaintext or MD5 authentication. This allows
remote attackers to obtain sensitive information via REQUEST packets
such as SEND UPDATE.
- An error in RIPd does not properly enforce RIPv2 authentication
requirements. This allows remote attackers to modify routing state via
RIPv1 RESPONSE packets.
- Fredrik Widell has reported a vulnerability in Quagga caused due to an
infinite loop error in bgpd within the "community_str2com()" function.
This can be exploited to cause the process to consume large amounts of
CPU resources by issuing the "sh ip bgp command" command via the telnet
management interface.
The Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the names CVE-2006-2223, CVE-2006-2224 and CVE-2006-2276 to
these issues.
* Tue Jan 17 2006 Ajith Thampi <ajith at trustix dot org> 0.98.5-2tr
- Rebuilt
* Tue Sep 20 2005 Ajith Thampi <ajith at comodo dot com> 0.98.5-1tr
- Initial Entry into TSL 3.0
/usr/include/quagga /usr/include/quagga/buffer.h /usr/include/quagga/checksum.h /usr/include/quagga/command.h /usr/include/quagga/distribute.h /usr/include/quagga/filter.h /usr/include/quagga/getopt.h /usr/include/quagga/hash.h /usr/include/quagga/if.h /usr/include/quagga/if_rmap.h /usr/include/quagga/jhash.h /usr/include/quagga/keychain.h /usr/include/quagga/linklist.h /usr/include/quagga/log.h /usr/include/quagga/md5.h /usr/include/quagga/memory.h /usr/include/quagga/memtypes.h /usr/include/quagga/network.h /usr/include/quagga/ospfapi /usr/include/quagga/ospfapi/ospf_apiclient.h /usr/include/quagga/ospfd /usr/include/quagga/ospfd/ospf_api.h /usr/include/quagga/ospfd/ospf_asbr.h /usr/include/quagga/ospfd/ospf_dump.h /usr/include/quagga/ospfd/ospf_ism.h /usr/include/quagga/ospfd/ospf_lsa.h /usr/include/quagga/ospfd/ospf_lsdb.h /usr/include/quagga/ospfd/ospf_nsm.h /usr/include/quagga/ospfd/ospf_opaque.h /usr/include/quagga/ospfd/ospfd.h /usr/include/quagga/plist.h /usr/include/quagga/pqueue.h /usr/include/quagga/prefix.h /usr/include/quagga/privs.h /usr/include/quagga/route_types.h /usr/include/quagga/routemap.h /usr/include/quagga/sigevent.h /usr/include/quagga/smux.h /usr/include/quagga/sockopt.h /usr/include/quagga/sockunion.h /usr/include/quagga/str.h /usr/include/quagga/stream.h /usr/include/quagga/table.h /usr/include/quagga/thread.h /usr/include/quagga/vector.h /usr/include/quagga/version.h /usr/include/quagga/vty.h /usr/include/quagga/workqueue.h /usr/include/quagga/zassert.h /usr/include/quagga/zclient.h /usr/include/quagga/zebra.h /usr/lib/libospf.a /usr/lib/libospf.la /usr/lib/libospfapiclient.a /usr/lib/libospfapiclient.la /usr/lib/libzebra.a /usr/lib/libzebra.la
Generated by rpm2html 1.8.1
Fabrice Bellet, Mon May 20 05:14:11 2013