File openconnect.changes of Package openconnect
-------------------------------------------------------------------
Tue Jun 19 08:30:53 UTC 2012 - cfarrell@suse.com
- license update: LGPL-2.1+
No LGPL-2.1 "only" licenses found. Fedora also uses LGPL-2.1 "or later"
as license
-------------------------------------------------------------------
Mon Jun 18 17:49:29 UTC 2012 - toddrme2178@gmail.com
- Fixes buffer overflow security vulnerability. See:
* CVE-2012-3291
* BNC#767616
- Update to version 3.99
* Enable native TPM support when built with GnuTLS.
* Enable PKCS#11 token support when built with GnuTLS.
* Eliminate all SSL library exposure through libopenconnect.
* Parse split DNS information, provide $CISCO_SPLIT_DNS
environment variable to vpnc-script.
* Attempt to provide new-style MTU information to server (on
Linux only, unless specified on command line).
* Allow building against GnuTLS, including DTLS support.
* Add --with-pkgconfigdir= option to configure for FreeBSD's
benefit (fd#48743).
- Update to version 3.20
* Cope with non-keepalive HTTP response on authentication success
* Fix progress callback with incorrect cbdata which caused KDE
crash.
- Update to version 3.19
* Add --config option for reading options from file.
* Improve OpenSSL DTLS compatibility to work on Ubuntu 10.04.
* Flush progress logging output promptly after each message.
* Add symbol versioning for shared library (on sane platforms).
* Add openconnect_set_cancel_fd() function to allow clean
cancellation.
* Fix corruption of URL in openconnect_parse_url() if it
specifies a port number.
* Fix inappropriate exit() calls from library code.
* Library namespace cleanup — all symbols now have the prefix
openconnect_ on platforms where symbol versioning works.
* Fix --non-inter option so it still uses login information from
command line.
- Update to version 3.18
* Fix autohate breakage with --disable-nls... hopefully.
* Fix buffer overflow in banner handling.
- Update to version 3.17
* Work around time() brokenness on Solaris.
* Fix interface plumbing on Solaris 10.
* Provide asprintf() function for (unpatched) Solaris 10.
* Make vpnc-script mandatory, like it is for vpnc
* Don't set Legacy IP address on tun device; let vpnc-script do
it.
* Detect OpenSSL even without pkg-config.
* Stop building static library by default.
* Invoke vpnc-script with "pre-init" reason to load tun module if
necessary.
- Update to version 3.16
* Fix build failure on Debian/kFreeBSD and Hurd.
* Fix memory leak of deflated packets.
* Fix memory leak of zlib state on CSTP reconnect.
* Eliminate memcpy() calls on packets from DTLS and tunnel device
* Use I_LINK instead of I_PLINK on Solaris to plumb interface for
Legacy IP.
* Plumb interface for IPv6 on Solaris, instead of expecting
vpnc-script to do it.
* Refer to vpnc-script and help web pages in openconnect output.
* Fix potential crash when processing libproxy results.
* Be more conservative in detecting libproxy without pkg-config.
- Add optional libproxy-devel buildrequires
- Add new mandatory vpnc buildrequires
- Package new documentation in doc package
- Remove static devel libraries since this is the new upstream
default
-------------------------------------------------------------------
Thu Jan 5 14:10:20 UTC 2012 - toddrme2178@gmail.com
- Update to version 3.15
* Fix for reading multiple packets from Solaris tun device.
* Call bindtextdomain() to ensure that translations are found in install path.
- Update to version 3.14
* Move executable to $prefix/sbin.
* Fix build issues on OSX, OpenIndiana, DragonFlyBSD, OpenBSD, FreeBSD & NetBSD.
* Fix non-portable (void *) arithmetic.
* Make more messages translatable.
* Attempt to make NLS support more portable (with fewer dependencies).
- Update to version 3.13
* Add --cert-expire-warning option.
* Give visible warning when server dislikes client SSL certificate.
* Add localisation support.
* Fix build on Debian systems where dtls1_stop_timer() is not available.
* Fix libproxy detection.
* Enable a useful set of compiler warnings by default.
* Fix various minor compiler warnings.
- Update to version 3.12
* Fix DTLS compatibility with ASA firmware 8.4.1(11) and above.
* Fix build failures on GNU Hurd, on systems with ancient OpenSSL, and on Debian.
* Add --pid-file option.
* Print SHA1 fingerprint with server certificate details.
- spec file changes
* Package language files in a lang package
* Since the binary is in /usr/sbin, keep the manual as man8
* Package .a file in -devel package and have -devel package provide -devel-static
-------------------------------------------------------------------
Thu Aug 25 10:24:05 UTC 2011 - toddrme2178@gmail.com
- Simplified man file installation
- Cleaned up spec file formatting
-------------------------------------------------------------------
Mon Aug 8 14:28:45 UTC 2011 - toddrme2178@gmail.com
- Changed manuals to man1
-------------------------------------------------------------------
Sun Aug 7 23:05:10 UTC 2011 - toddrme2178@gmail.com
- Removed %{?_smp_mflags}
-------------------------------------------------------------------
Sun Aug 7 18:40:53 UTC 2011 - toddrme2178@gmail.com
- Removed unneeded libopenconnect.la file.
- Minor formatting changes to several spec file macros
-------------------------------------------------------------------
Sun Aug 7 16:11:47 UTC 2011 - toddrme2178@gmail.com
- Added upstream url to Source0: tag
- Switched back to original tar.gz file
-------------------------------------------------------------------
Sun Aug 7 13:50:57 UTC 2011 - toddrme2178@gmail.com
- Fixed license name
- Fixed spec file header
- Switched to %make_install macro
- Added %doc macro for manual files
- Removed norootforbuild
-------------------------------------------------------------------
Sun Aug 7 09:20:18 UTC 2011 - toddrme2178@gmail.com
- Moved .so file to devel package
-------------------------------------------------------------------
Thu Aug 4 09:35:34 UTC 2011 - toddrme2178@gmail.com
- Update to version 3.11
* Add Android.mk file for Android build support
* Add logging support for Android, in place of standard syslog().
* Switch back to using TLSv1, but without extensions.
* Make TPM support optional, dependent on OpenSSL ENGINE support.
- Update to version 3.10
* Switch to using GNU autoconf/automake/libtool.
* Produce shared library for authentication.
* Improve library API to make life easier for C++ users.
* Be more explicit about requiring pkg-config.
* Invoke script with reason=reconnect on CSTP reconnect.
* Add --non-inter option to avoid all user input.
- Update to version .02
* Install man page in make install target.
* Add openconnect_vpninfo_free() to libopenconnect.
* Clear cached peer_addr to avoid reconnecting to wrong host.
- Update to version 3.01
* Add libxml2 to pkg-config requirements.
- Update to version 3.00
* Create libopenconnect.a for GUI authentication dialog to use.
* Remove auth-dialog, which now lives in the network-manager-openconnect package.
* Cope with more entries in authentication forms.
* Add --csd-wrapper option to wrap CSD trojan.
* Report error and abort if CA file cannot be opened.
- Update to version 2.26
* Fix potential crash on relative HTTP redirect.
* Use correct TUN/TAP device node on Android.
* Check client certificate expiry date.
* Implement CSTP and DTLS rekeying (both by reconnecting CSTP).
* Add --force-dpd option to set minimum DPD interval.
* Don't print webvpn cookie in debug output.
* Fix host selection in NetworkManager auth dialog.
* Use SSLv3 instead of TLSv1; some servers (or their firewalls) don't accept any ClientHello options.
* Never include address family prefix on script-tun connections.
- Fix build errors and rpmlint errors
-------------------------------------------------------------------
Fri Aug 6 16:04:13 UTC 2010 - andrea@opensuse.org
- New pacakge