new in sub-packages:
kamailio: rtpproxy-ng renamed to rtpengine
kamailio-extras: tsilo jsonrpc-s
kamailio-uuid: new (uuid module)
kamailio-ev: new (evapi module)
Fix the configure script to correctly detect if TLS is available. TLS is
needed for rlm_unix to work without segfaulting.
(cherry picked from commit d698c183c3183ce3772c4b833c0c4971394942fd)
By default BIND will happily serve as both an authoritative nameserver
and recursive resolver, but this is no longer a recommended or desirable
configuration. The previous default configuration did not draw attention
to this fact and the issues involved.
Users are now made to rename one of two sample configuration files,
named.conf.authoritative or named.conf.recursive. Comments inside either
file advise DNS administrators of the most prevalent security issues.
This ensures that users setting up an authoritative nameserver do not
unwittingly also operate a resolver. In the previous default
configuration, BIND would happily perform recursive resolution for
localhost, which means that the local machine may receive
non-authoritative data from what is supposed to be an authoritative
nameserver.
Both default configurations disable zone transfers by default, as BIND
defaults to enabling them for any host (!).
S8015256: Better class accessibility
S8022783, CVE-2014-6504: Optimize C2 optimizations
S8035162: Service printing service
S8035781: Improve equality for annotations
S8036805: Correct linker method lookup.
S8036810: Correct linker field lookup
S8036936: Use local locales
S8037066, CVE-2014-6457: Secure transport layer
S8037846, CVE-2014-6558: Ensure streaming of input cipher streams
S8038364: Use certificate exceptions correctly
S8038899: Safer safepoints
S8038903: More native monitor monitoring
S8038908: Make Signature more robust
S8038913: Bolster XML support
S8039509, CVE-2014-6512: Wrap sockets more thoroughly
S8039533, CVE-2014-6517: Higher resolution resolvers
S8041540, CVE-2014-6511: Better use of pages in font processing
S8041529: Better parameterization of parameter lists
S8041545: Better validation of generated rasters
S8041564, CVE-2014-6506: Improved management of logger resources
S8041717, CVE-2014-6519: Issue with class file parser
S8042609, CVE-2014-6513: Limit splashiness of splash images
S8042797, CVE-2014-6502: Avoid strawberries in LogRecord
S8044274, CVE-2014-6531: Proper property processing
