--- - branch: MAIN date: Sun Jul 13 12:04:11 UTC 2008 files: - new: '1.49' old: '1.48' path: pkgsrc/chat/silc-client/Makefile pathrev: pkgsrc/chat/silc-client/Makefile@1.49 type: modified - new: '1.11' old: '1.10' path: pkgsrc/chat/silc-client/Makefile.common pathrev: pkgsrc/chat/silc-client/Makefile.common@1.11 type: modified - new: '1.23' old: '1.22' path: pkgsrc/chat/silc-client/PLIST pathrev: pkgsrc/chat/silc-client/PLIST@1.23 type: modified - new: '1.7' old: '1.6' path: pkgsrc/chat/silc-client/PLIST.perl pathrev: pkgsrc/chat/silc-client/PLIST.perl@1.7 type: modified - new: '1.32' old: '1.31' path: pkgsrc/chat/silc-client/distinfo pathrev: pkgsrc/chat/silc-client/distinfo@1.32 type: modified - new: '1.5' old: '1.4' path: pkgsrc/chat/silc-client/options.mk pathrev: pkgsrc/chat/silc-client/options.mk@1.5 type: modified - new: '1.13' old: '1.12' path: pkgsrc/chat/silc-client/patches/patch-aa pathrev: pkgsrc/chat/silc-client/patches/patch-aa@1.13 type: modified - new: '1.13' old: '1.12' path: pkgsrc/chat/silc-client/patches/patch-ab pathrev: pkgsrc/chat/silc-client/patches/patch-ab@1.13 type: modified - new: '1.10' old: '1.9' path: pkgsrc/chat/silc-client/patches/patch-ac pathrev: pkgsrc/chat/silc-client/patches/patch-ac@1.10 type: modified - new: '1.5' old: '1.4' path: pkgsrc/chat/silc-client/patches/patch-ad pathrev: pkgsrc/chat/silc-client/patches/patch-ad@1.5 type: modified - new: '1.3' old: '0' path: pkgsrc/chat/silc-client/patches/patch-ae pathrev: pkgsrc/chat/silc-client/patches/patch-ae@1.3 type: added id: 20080713T120411Z.aa4568aa533fa8fc60be4239959a6958a016b271 log: | Upgrade silc-client to version 1.1.4. This fixes two security issues and various character set problems. The security issues fixed: * NICK_CHANGE buffer overflow: CVE-2007-3728. * pkcs_decode buffer overflow: CORE-2007-1212. Changes since version 1.0.4.1: - Fixed NEW_CLIENT packet handling crash. - Fixed partial encryption in CTR mode in AES. - Fixed printable fingerprint buffer overflow. - Fixed UNIX signal delivery il SILC scheduler. - Reprocess JOIN command synchronously after resolving channel user list. - In JOIN command reply check if the channel key is already saved. - Remove all channel keys and hmacs after giving LEAVE command. - Added missing channel unreferencing in CMODE, CUMODE, TOPIC, INVITE, BAN and KICK command replies. - Fixed connection authentication with public keys to use correct public key as responder. - Zero tail of CTR mode IV in IV Included mode. - Fixed CTR mode rekey. - Rewrote the IV Included CTR mode encryption/decryption in packet engine. - Fixed non-IPv6 compilation error. - Fixed channel private key deleting when deleting the channel. - Fixed TIMEOUT handling in user info resolving during JOINing, fixes crash. - Fixed mandatory UN and HN SILC public key identifier checking. - Fixed alignment issues with 64-bit CPUs. - Added "There are now xx nick's" to "are xx nicks". - Fixed USERS command user mode handling (integer overflow). - Fixed big-endian issues from aes implementation. - Fixed lib/silcutil/silcatomic.h compilation on IA64. - Fixed public key identifier parsing to check lengths correctly. - In silc_client_free check that scheduler is allocated before trying to free it. - Fixed buffer overflow in NICK_CHANGE notify. The destination buffer for old nicknames was too small. - Added support for rekey with PFS when using CTR mode encryption. - Added silc_idcache_move that can be used to move entries between caches. - Added better checks for invalid argument and notify payloads. - Fixed SILC_PACKET_FLAG_LONG_PAD bitmask value. - Set the destination ID to packet stream as SKE responder if ID was present in key exchange packet. - Compile sources with _GNU_SOURCE on Linux systems. - Fixed Unix signal task dispatching to not lock the signals when dispatching the callback to avoid deadlocks. - Added SILC_VERSION macro for checking package versions at compile time. - Use SILC_VERIFY to assert that silc_rwlock_wrlock can be called only once per thread on Unix. - Fixed USERS command reply write-lock unlocking. - Fixed silc_create_key_pair to check for valid identifier. - Rewrite signed public message handling, adopting the new hilight interface. - Fix off by one error when loading modules. - Don't delete hilight entry (because it's just a pointer, not a copy). - Added __SILC_TOOLKIT_x_x_x macro to all Toolkit distribution which can be used to check for Toolkit version in third-party software. - Added support for channel@server channel name strings to client library (SILC protocol version 1.3 change). - Added full_nicknames and full_channel_names settings to SilcClientParams that can be used to specify whether client library returns full nickname and channel name strings. Full strings are nick@server and channel@server. - Fixed unix connecting failure to return error code correctly. - Fixed SKE timeout double free crash. - Fixed MIME multipart decoding buffer overflow. - Fixed connection auth protocol timeout crash. - Fixed FSM machine finishing to check for existing threads at the final free callback to allow time for the threads to finish. - Fixed silc_client_get_clients_local to check the nick's server also if nick@server nickname string is given to the function. - And many more, oh well. For the user this means: better charset support, less crashes, nick names now potentially user#23, server specific channels and more sanity. Talked over a while ago with wiz with no objections. module: pkgsrc subject: 'CVS commit: pkgsrc/chat/silc-client' unixtime: '1215950651' user: tonnerre