2010-12-30 21:01:46 +01:00
|
|
|
1) On systems running Upstart, shorewall-init cannot reliably secure
|
2010-12-30 20:47:25 +01:00
|
|
|
the firewall before interfaces are brought up.
|
2011-07-15 17:35:35 +02:00
|
|
|
|
|
|
|
|
2) A harmless 'unitialized variable' diagnostic is issued by the
|
|
|
|
|
compiler when it is displaying the capabilities.
|
|
|
|
|
|
2011-07-19 16:01:02 +02:00
|
|
|
Corrected in Shorewall 4.4.21.
|
|
|
|
|
|
2011-07-19 00:51:56 +02:00
|
|
|
3) As the result of a typo, an orphan filter chain named FORWAR can
|
|
|
|
|
be created under rare circumstances. This chain is deleted by
|
|
|
|
|
OPTIMIZE level 4.
|
|
|
|
|
|
2011-07-19 16:01:02 +02:00
|
|
|
Corrected in Shorewall 4.4.21.
|
|
|
|
|
|
|
|
|
|
4) The SNAT options --persistent and --randomize (/etc/shorewall/masq)
|
2011-07-19 00:51:56 +02:00
|
|
|
generate invalid iptables input.
|
|
|
|
|
|
2011-07-19 16:01:02 +02:00
|
|
|
Corrected in Shorewall 4.4.21.
|
|
|
|
|
|
|
|
|
|
5) The LOGMARK log level was generated invalid iptables input making
|
|
|
|
|
it unusable.
|
|
|
|
|
|
|
|
|
|
Corrected in Shorewall 4.4.21.
|
|
|
|
|
|
2011-07-23 17:16:49 +02:00
|
|
|
6) Under rare conditions, long port lists (>15 ports) can result in
|
|
|
|
|
the following failure when optimization level 4 is enabled.
|
|
|
|
|
|
|
|
|
|
Use of uninitialized value in numeric gt (>)
|
|
|
|
|
at /usr/share/shorewall/Shorewall/Chains.pm line 1264.
|
|
|
|
|
|
|
|
|
|
ERROR: Internal error in
|
|
|
|
|
Shorewall::Chains::decrement_reference_count at
|
|
|
|
|
/usr/share/shorewall/Shorewall/Chains.pm line 1264
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2011-07-19 16:01:02 +02:00
|
|
|
|
2011-07-19 00:51:56 +02:00
|
|
|
|
