head	1.3;
access;
symbols
	pkgsrc-2022Q4:1.2.0.14
	pkgsrc-2022Q4-base:1.2
	pkgsrc-2022Q3:1.2.0.12
	pkgsrc-2022Q3-base:1.2
	pkgsrc-2022Q2:1.2.0.10
	pkgsrc-2022Q2-base:1.2
	pkgsrc-2022Q1:1.2.0.8
	pkgsrc-2022Q1-base:1.2
	pkgsrc-2021Q4:1.2.0.6
	pkgsrc-2021Q4-base:1.2
	pkgsrc-2021Q3:1.2.0.4
	pkgsrc-2021Q3-base:1.2
	pkgsrc-2021Q2:1.2.0.2
	pkgsrc-2021Q2-base:1.2
	pkgsrc-2021Q1:1.1.0.8
	pkgsrc-2021Q1-base:1.1
	pkgsrc-2020Q4:1.1.0.6
	pkgsrc-2020Q4-base:1.1
	pkgsrc-2020Q3:1.1.0.4
	pkgsrc-2020Q3-base:1.1
	pkgsrc-2020Q2:1.1.0.2
	pkgsrc-2020Q2-base:1.1;
locks; strict;
comment	@# @;


1.3
date	2022.12.29.23.29.04;	author gutteridge;	state dead;
branches;
next	1.2;
commitid	m5QZrkS2OqmBEv7E;

1.2
date	2021.06.12.06.22.09;	author nia;	state Exp;
branches
	1.2.14.1;
next	1.1;
commitid	ANXxR8GCQOwm8OWC;

1.1
date	2020.06.21.15.30.39;	author nia;	state Exp;
branches;
next	;
commitid	WqMl0Cukg6K3C6dC;

1.2.14.1
date	2023.01.04.10.28.08;	author bsiegert;	state dead;
branches;
next	;
commitid	mVNMEDOhiSUW8d8E;


desc
@@


1.3
log
@tcpreplay: update to 4.4.2

08/28/2022 Version 4.4.2
    - remove autogen.sh from distribution tarballs (#745)
    - CVE-2022-37048 heap-overflow in get_l2len_protocol (#735)
    - replaying on a loopback interface is broken (#732)
    - replay edit with both --loop and --preload_pcap options (#729)
    - test suite bus error on armhf (#725)
    - CVE-2022-28487 format string vulnerability in fix_ipv6_checksums (#723)
    - CVE-2022-27942 heap-overflow in parse_mpls (#719)
    - CVE-2022-27940 CVE-2022-37047 CVE-2022-37049 heap-overflow in get_ipv6_next (#718)
    - CVE-2022-27939 reachable assertion in get_layer4_v6 (#717)
    - CVE-2022-25484 CVE-2022-27941 heap buffer overflow in get_l2len_protocol (#716)
    - remove bash-only test in configure script (#714)
@
text
@$NetBSD: patch-configure,v 1.2 2021/06/12 06:22:09 nia Exp $

Shell portability.

--- configure.orig	2021-05-02 00:25:04.000000000 +0000
+++ configure
@@@@ -23400,7 +23400,7 @@@@ fi
 
 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for 'make test' profile" >&5
 $as_echo_n "checking for 'make test' profile... " >&6; }
-if test "$host" == "$build" ; then
+if test "$host" = "$build" ; then
     { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5
 $as_echo "yes" >&6; }
 else
@


1.2
log
@tcpreplay: update to 4.3.4

This release is for bug fixes only.

    ASAN reports memory leaks while running tests
    local libopts compiler warnings
    DLT name for DLT_C_JNPR_ETHER in documentation
    clean up new_cidr_map() string manipulation on error exit
    fix gcc 8.3.0 build warnings
    invalid --pps value protection
    packets slowly drift further and further behind when they should be sent
    64 bit rollover can cause pps replay issues after several hours
    typo fixes
    DLT_NULL/DLT_LOOP support for cross-platform PF_INET6
    armv5 Freescale compile
    heap buffer overflow in tcpreplay fast_edit_packet
    heap buffer overflow in tcpreplay get_next_packet
    CVE-2020-24266 heap buffer overflow in tcpprep get_l2len
    CVE-2020-24265 heap buffer overflow in tcpprep
    fix UNUSED macro declaration
    handle malformed and unsupported packets as soft errors
    compile failure on aarch64-linux-android
    tcprewrite --fixlen not working on DLT conversion
    fix configure --without-libdnet
    ensure automake version is at least 1.15
    with multiplier option only first file can be sent and hang
    do not create tap0 if device already exists
@
text
@d1 1
a1 1
$NetBSD$
@


1.2.14.1
log
@Pullup ticket #6712 - requested by gutteridge
net/tcpreplay: security fix

Revisions pulled up:
- net/tcpreplay/Makefile                                        1.29
- net/tcpreplay/distinfo                                        1.19
- net/tcpreplay/patches/patch-configure                         deleted

---
   Module Name:    pkgsrc
   Committed By:   gutteridge
   Date:           Thu Dec 29 23:29:04 UTC 2022

   Modified Files:
            pkgsrc/net/tcpreplay: Makefile distinfo
   Removed Files:
            pkgsrc/net/tcpreplay/patches: patch-configure

   Log Message:
   tcpreplay: update to 4.4.2

   08/28/2022 Version 4.4.2
        - remove autogen.sh from distribution tarballs (#745)
        - CVE-2022-37048 heap-overflow in get_l2len_protocol (#735)
        - replaying on a loopback interface is broken (#732)
        - replay edit with both --loop and --preload_pcap options (#729)
        - test suite bus error on armhf (#725)
        - CVE-2022-28487 format string vulnerability in fix_ipv6_checksums
   (#723)
        - CVE-2022-27942 heap-overflow in parse_mpls (#719)
        - CVE-2022-27940 CVE-2022-37047 CVE-2022-37049 heap-overflow in
   get_ipv6_next (#718)
        - CVE-2022-27939 reachable assertion in get_layer4_v6 (#717)
        - CVE-2022-25484 CVE-2022-27941 heap buffer overflow in
   get_l2len_protocol (#716)
        - remove bash-only test in configure script (#714)
@
text
@d1 1
a1 1
$NetBSD: patch-configure,v 1.2 2021/06/12 06:22:09 nia Exp $
@


1.1
log
@tcpreplay: Update to 4.3.3

05/20/2020 Version 4.3.3
    - Increase cache buffers size to accomodate VLAN edits (#594)
    - Correct L2 header length to correct IP header offset (#583)
    - Fix warnings from gcc version 10 (#580)
    - Heap Buffer Overflow in randomize_iparp (#579)
    - Use after free in get_ipv6_next (#578)
    - Heap Buffer Overflow in git_ipv6_next (#576)
    - Call pcap_freecode() on pcap_compile() (#572)
    - Increase max snaplen to 262144 (#571)
    - Fix divide by zero in fuzzing (#570)
    - Unique IP repeats at very high iteration counts (#566)
    - Fails to compile on FreeBSD amd64 13.0 (#558)
    - Heap Buffer Overflow in do_checksum (#556) (#577)
    - Attempt to correct corrupt pcap files, if possible (#557)
    - Fix GCC v10 warnings (#555)
    - Remove some duplicated SOURCES entries (#551)
    - Expand /dev/bpfX hard limit to fix macOS Mojave (#550)
    - Implement --loopdelay-ms when using --loop=0 (#546)
    - Heap overflow packet2tree and get_l2len (#530)

03/12/2019 Version 4.3.2
    - CVE-2019-8381 memory access in do_checksum() (#538)
    - CVE-2019-8376 NULL pointer dereference get_layer4_v6() (#537)
    - CVE-2019-8377 NULL pointer dereference get_ipv6_l4proto() (#536)
    - Rename Ethereal to Wireshark (#545)

12/27/2018 Version 4.3.1
    - Fix checkspell detected typos (#531)

11/10/2018 Version 4.3.0
    - Fix maxOS TOS checksum failure (#524)
    - TCP sequence edits seeding (#514)
    - Fix issues identifed by Codacy (#493)
    - CVE-2018-18408 use-after-free in post_args (#489)
    - CVE-2018-18407 heap-buffer-overflow csum_replace4 (#488)
    - CVE-2018-17974 heap-buffer-overflow dlt_en10mb_encode (#486)
    - CVE-2018-17580 heap-buffer-overflow fast_edit_packet (#485)
    - CVE-2018-17582 heap-buffer-overflow in get_next_packet (#484)
    - Out-of-tree build (#482)
    - CVE-2018-13112 heap-buffer-overflow in get_l2len (#477 dup #408)
    - Closing stdin on pipe (#479)
    - Second pcap file hangs on multiplier option (#472)
    - Jumbo frame support for fragroute option (#466)
    - TCP sequence edit ACK corruption (#451)
    - TCP sequence number edit initial SYN packet should have zero ACK (#450)
    - Travis CI build fails due to new build images (#432)
    - Upgrade libopts to 5.18.12 to address version build issues (#430)
    - Add ability to change tcp SEQ/ACK numbers (#425)
    - Hang using loop and netmap options (#424)
    - tcpprep -S not working for large cache files (#423)
    - Unable to tcprewrite range of ports with --portmap (#422)
    - --maxsleep broken for values less than 1000 (#421)
    - -T flag breaks traffic replay timing (#419)
    - Respect 2nd packet timing (#418)
    - Avoid non-blocking behaviour when using STDIN (#416)
    - pcap containing >1020 packets produces invalid cache file (#415)
    - manpage typos (#413)
    - Fails to open tap0 on Zephyr (#411)
    - Heap-buffer-overflow in get_l2protocol (#410)
    - Heap-buffer-overflow in packet2tree (#409)
    - Heap-buffer-overflow in get_l2len (#408)
    - Heap-buffer-overflow in flow_decode (#407)
    - Rewrite zero IP total length field to match the actual packet length (#406)
    - Stack-buffer-overflow in tcpcapinfo (#405)
    - tcpprep --include option does not exclude (#404)
    - Negative-size-param memset in dlt_radiotap_get_80211 (#402)
    - tcpeplay --verbose option not working (#398)
    - Fix replay when using --with-testnic (#178)
@
text
@d5 1
a5 1
--- configure.orig	2020-06-14 22:29:09.000000000 +0000
d7 9
a15 9
@@@@ -18537,7 +18537,7 @@@@ $as_echo_n "checking for autogen version
             test ${AUTOGEN_MAJOR} -lt 5 ; then
         { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5
 $as_echo "no" >&6; }
-        if test "x$enable_local_libopts" == "xno"; then
+        if test "x$enable_local_libopts" = "xno"; then
             as_fn_error $? "${AUTOGEN} is too old (${AUTOGEN_VERSION}) for building from source code. Upgrade to 5.18.4 or higher" "$LINENO" 5
         fi
         AUTOGEN_VERSION="${AUTOGEN_VERSION} - downlevel"
@