| Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
| Name: libzmq5 | Distribution: SUSE Linux Enterprise 15 |
| Version: 4.2.3 | Vendor: SUSE LLC <https://www.suse.com/> |
| Release: 3.15.4 | Build date: Fri Oct 16 16:01:01 2020 |
| Group: Productivity/Networking/Web/Servers | Build host: s390lp4 |
| Size: 620581 | Source RPM: zeromq-4.2.3-3.15.4.src.rpm |
| Packager: https://www.suse.com/ | |
| Url: http://www.zeromq.org/ | |
| Summary: Shared Library for ZeroMQ | |
The ZeroMQ messaging kernel is a library extending the standard socket interfaces with an abstraction of asynchronous message queues, multiple messaging patterns, message filtering (subscriptions) and seamless access to multiple transport protocols. This package holds the shared library part of the ZeroMQ package.
LGPL-3.0-or-later
* Fri Oct 02 2020 adam.majer@suse.de
- bsc1176256.patch: fix heap overflow when receiving malformed
ZMTP v1 packets (bsc#1176256)
- bsc1176257.patch: fixes a memory leak in client induced by
malicious server(s) without CURVE/ZAP (bsc#1176257)
- bsc1176259.patch: fix memory leak when processing PUB messages
with metadata (bsc#1176259)
- bsc1176258.patch: fix stack overflow in PUB/XPUB subscription
store (bsc#1176258)
* Mon Sep 07 2020 adam.majer@suse.de
- CVE-2020-15166.patch: fix the possibility of unauthenticated
clients causing a denial-of-service (bsc#1176116, CVE-2020-15166)
* Wed Jul 03 2019 vcizek@suse.com
- CVE-2019-13132.patch: Fix an unauthenticated remote code execution
due to a stack overflow on the server (bsc#1140255, CVE-2019-13132)
* Thu Jan 17 2019 astieger@suse.com
- mark license files using %license macro (bsc#1082318)
* Mon Jan 14 2019 adam.majer@suse.de
- CVE-2019-6250.patch: fix a remote execution vulnerability due to
pointer arithmetic overflow (bsc#1121717, CVE-2019-6250)
* Tue Jul 10 2018 dimstar@opensuse.org
- Add baselibs.conf: build libzmq5-32bit, as it is a required
dependency to libavfilter7-32bit (i.e ffmpeg 4).
* Thu Dec 14 2017 adam.majer@suse.de
- New upstream version 4.2.3
* API change: previously ZMQ_POLLOUT on a ZMQ_ROUTER socket
returned always true due to how the type works. When
ZMQ_ROUTER_MANDATORY is set, sending fails when the peer is
not available, but ZMQ_POLLOUT always returns true anyway,
which does not make sense. Now when ZMQ_ROUTER_MANDATORY is
set, ZMQ_POLLOUT on a ZMQ_ROUTER will return true only if
at least one peer is available.
Given ZMQ_POLLOUT with ZMQ_ROUTER was not usable at all
previously, we do not consider this a breakage warranting a
major or minor version increase.
* ZMQ_IDENTITY has been renamed to ZMQ_ROUTING_ID and
ZMQ_CONNECT_RID has been renamed to ZMQ_CONNTECT_ROUTING_ID
to disambiguate. ZMQ_IDENTITY and ZMQ_CONNECT_RID are still
available to keep backward compatibility, and will be
removed in a future release after further advance notice.
* DRAFT API change: zmq_poller_wait, zmq_poller_wait_all and
zmq_poller_poll have been changed to be inline with other
existing APIs that have a timeout to return EAGAIN instead
of ETIMEDOUT as the errno value.
* Existing non-DRAFT socket types ZMQ_REP/REQ, ZMQ_ROUTER/DEALER
and ZMQPUB/SUB, that were previously declared deprecated, have
been reinstated as stable and supported
* Curve: all remaining traces of debug output to console are now
removed, and new DRAFT events are available to properly debug
CURVE, PLAIN, GSSAPI and ZAP events and failures.
* for compelete changelog see
https://github.com/zeromq/libzmq/releases/tag/v4.2.3
- drop remove_werror.patch: can now be disabled at configure time,
if needed.
* Thu Jun 01 2017 adam.majer@suse.de
- remove_werror.patch: don't use -Werror in compiler flags
- disable silent compilation flags
* Tue Mar 21 2017 adam.majer@suse.de
- New upstream version 4.2.2
* fix SO_NOSIGPIPE and connection closing by peer race condition
* fix IPv4-in-IPv6 mapped addresses parsing error
* zmq_z85_decode did validate its input. The function has been
fixed to correctly follow RFC32 and return NULL if the input is
invalid.
* for complete changelog see
https://github.com/zeromq/libzmq/releases/tag/v4.2.2
* Fri Feb 03 2017 jengelh@inai.de
- Compact the descriptions.
* Sat Dec 31 2016 adam.majer@suse.de
- New upstream version 4.2.1
* Bugfix release. For complete changelog see
https://github.com/zeromq/libzmq/releases/tag/v4.2.1
* Sat Nov 05 2016 mvyskocil@opensuse.org
- New upstream version 4.2.0
* For Pieter. Thanks for making all of this possible.
* This release introduces new APIs, but it is ABI compatible with
libzmq 4.1.2 and up.
* Fixed alignment problem on arm and sparc, need to rebuild
against 4.2.0
* New Context option ZMQ_MAX_MSGSZ
* New Socket options:
- ZMQ_HANDSHAKE_IVL
- ZMQ_SOCKS_PROXY
- ZMQ_XPUB_NODROP
- ZMQ_BLOCKY
- ZMQ_XPUB_MANUAL
- ZMQ_XPUB_WELCOME_MSG
- ZMQ_STREAM_NOTIFY
- ZMQ_INVERT_MATCHING
- ZMQ_HEARTBEAT_IVL
- ZMQ_HEARTBEAT_TTL
- ZMQ_HEARTBEAT_TIMEOUT
....
* see NEWS for all changes
- Packaging
* add --with-libsodium to link against libsodium and not internal
tweetnacl
* remove disable-silent-rules
* add --enable-curve to build curve_keygen tool
https://github.com/zeromq/libzmq/pull/2195
* add libunwind to build dependencies
* Wed Jun 29 2016 jengelh@inai.de
- Remove useless --with-pic, it's only for (non-built) static libs
* Tue Jun 28 2016 dmueller@suse.com
- skip testsuite on qemu-linux-user
* Fri Jun 17 2016 adam.majer@suse.de
- New upstream version 4.1.5
* Fixed #1806 - uninitialised read in curve getsockopt.
* Fixed #1807 - build broken with GCC 6.
* Fixed #1831 - potential assertion failure with latest libsodium.
* Fixed #1850 - detection issues with tweetnacl/libsodium.
* Fixed #1877 - Avoid terminating connections prematurely
* fixes some IPv6 related issues
- Removed 3ad076.patch, upstreamed
* Mon May 30 2016 adam.majer@suse.de
- Added patch 3ad076.patch
* based on https://github.com/zeromq/zeromq4-1/commit/3ad076.patch
* refreshed and removed NEWS section
* fixes unbinding when IPv6 is available
- Add '--disable-dependency-tracking' since we are not rebuilding
- Re-enable concurrent check target, but fall back to sequential on
failure. This allows quick test building, while allows
sequential unit test run. Run tests 3x before 'official' failure as
some are a little flaky (upstream acknowledges this)
* Mon May 30 2016 adam.majer@suse.de
- Append test_log in build output if there are failures
* Mon May 30 2016 adam.majer@suse.de
- Update to 4.1.4
* fixed build failure with latest libsodium
* handle IPv6 link local addresses
* fixed assertion failure in msg.cpp:390 on STREAM sockets
* fixed assertion failure in tcp.cpp after network reconnect
* fixed socket monitor hang
- Remove libsodium-init.patch - upstreamed
- Run %check rule sequentially to prevent assert failures
* Thu Nov 05 2015 idonmez@suse.com
- Add libsodium-init.patch to handle sodium_init() error.
* Tue Oct 06 2015 idonmez@suse.com
- Re-enable %check
* Mon Sep 28 2015 stephan.barth@suse.com
- update to version 4.1.3.
Changes from upstream:
* Fixed #1532 - getsockopt ZMQ_RCVMORE now resets all bits instead of only
32
* Fixed #1445 - zmq::socket_base_t::connect fails on tcp ipv6 address
* Tue Sep 22 2015 tampakrap@opensuse.org
- Fix the conditionals on the previous commit
* Tue Sep 22 2015 tampakrap@opensuse.org
- Conditionally use the pkgconfig style, to support SLE11
* Tue Jul 14 2015 tchvatal@suse.com
- Version bump to 4.1.2 bnc#937912:
* Added explicit reference to static link exception in every source file.
* Bumped ABI version to 5:0:0 since 4.1.x changed the ABI.
* Fixed STDINT event interface macros to work with CZMQ 3.0.
* Fixed installation of man pages when BUILD_DOC is not set.
* Fixed #1428 - regression on single-socket proxies.
* Tue Jun 16 2015 mvyskocil@opensuse.org
- Add pkgconfig(libsodium) as mandatory build dependency
- Change libuuid-devel to pkgconfig style
* Mon Jun 08 2015 mvyskocil@opensuse.org
- Build depends on openpgm-devel
* Sun Jun 07 2015 mvyskocil@opensuse.org
- Update to 4.1.1, bugfix release
- drop unecessary
zeromq_4.0.5_avoid_curve_test_hang_on_ppc64.patch
* Wed Jan 28 2015 normand@linux.vnet.ibm.com
- Add a zeromq_4.0.5_avoid_curve_test_hang_on_ppc64.patch
to avoid curve test to hang for ppc ppc64 ppc64le architectures
related bug ref: bnc#912460
This is a set of commits grab from zeromq4-x git tree
from https://github.com/zeromq/zeromq4-x.git
Merge pull request #101 from hintjens/master
Problem: issue #1273, protocol downgrade attack
Merge pull request #100 from hintjens/master
Problem: zmq_ctx_term has insane behavior by default
* Also fixes bnc#931978 CVE-2014-9721
* Fri Nov 28 2014 tchvatal@suse.com
- Split the curve-keygen binary to separate subpkg bnc#907584
* Add conflicts to new supackage
* Thu Nov 13 2014 tchvatal@suse.com
- Gracely continue when checks fail
* Thu Oct 16 2014 tchvatal@suse.com
- Remove sle11 support, not really needed for us here
- Add libsodium dep for testsuite where possible
- Version bump to 4.0.5 fixes bnc#898917 CVE-2014-7202 and
CVE-2014-7203:
* Fixed #1191; CURVE mechanism does not verify short term nonces.
* Fixed #1190; stream_engine is vulnerable to downgrade attacks.
* Fixed #1088; assertion failure for WSAENOTSOCK on Windows.
* Fixed #1015; race condition while connecting inproc sockets.
* Fixed #994; bump so library number to 4.0.0
* Fixed #939, assertion failed: !more (fq.cpp:99) after many ZAP requests.
* Fixed #872; lost first part of message over inproc://.
* Fixed #797, keep-alive on Windows.
/usr/lib64/libzmq.so.5 /usr/lib64/libzmq.so.5.1.3 /usr/share/licenses/libzmq5 /usr/share/licenses/libzmq5/COPYING /usr/share/licenses/libzmq5/COPYING.LESSER
Generated by rpm2html 1.8.1
Fabrice Bellet, Tue Jul 9 18:25:27 2024