Update changelog etc and bump to release v10.1.2

Signed-off-by: Rob White <rob@blue-wave.net>
2026-01-10 04:17:55 -05:00 · 2023-07-29 11:48:11 +01:00
parent 7327c3cfa8
commit 66170872a1
5 changed files with 22 additions and 6 deletions
--- a/12
+++ b/12
@@ -1,3 +1,15 @@
+opennds (10.1.2)
+  * Security Advisory. This version contains fixes for multiple potential security vulnerabilities
+  * Credit - Stanislav Dashevskyi - standash.github.io [standash]
+  * It also contains some minor bug fixes
+  * Fix - Generate unique sha256 faskey if not set in config - CVE-2023-38324 [bluewavenet]
+  * Fix - NULL pointer dereference if user_agent is NULL - CVE-2023-38320, CVE-2023-38322 [bluewavenet]
+  * Fix - NULL pointer dereference if authdir is called with an incomplete or missing query string - CVE-2023-38313, CVE-2023-38314, CVE-2023-38315 [bluewavenet]
+  * Fix - remove deprecated and non-functioning unescape callback - CVE-2023-38316 [bluewavenet]
+  * Fix - prevent potential recursive dependency and detect if conflicting package is installed [bluewavenet]
+
+ -- Rob White <dot@blue-wave.net>  Sat, 29 Jul 2023 10:04:52 +0000
+
 opennds (10.1.1)
  * This version contains some minor bug fixes and documentation updates
  * Fix - send only contents of buffer, not entire buffer when serving page511 [bluewavenet]
--- a/docs/source/conf.py
+++ b/docs/source/conf.py
@@ -60,9 +60,9 @@ author = 'The openNDS Contributors'
 # built documents.
 #
 # The short X.Y version.
-version = '10.1.2beta'
+version = '10.1.2'
 # The full version, including alpha/beta/rc tags.
-release = '10.1.2beta'
+release = '10.1.2'

 # The language for content autogenerated by Sphinx. Refer to documentation
 # for a list of supported languages.
--- a/docs/source/config.rst
+++ b/docs/source/config.rst
@@ -900,15 +900,19 @@ In the following examples, replace with your own values for faspath:
 Set the Faskey
 **************

-Default: 1234567890
+Default: A system generated sha256 string

 A key phrase for NDS to encrypt the query string sent to FAS.

 Can be any text string with no white space.

+Hint and Example: Choose a secret string and use sha256sum utility to generate a hash.
+
+eg. Use the command - `echo "mysecretopenNDSfaskey" | sha256sum`
+
 Option faskey must be pre-shared with FAS. (It is automatically pre-shared with Themespec files)

-``option faskey 'mysecretopenNDSfaskey'``
+``option faskey '328411b33fe55127421fa394995711658526ed47d0affad3fe56a0b3930c8689'``

 Set Security Level: fas_secure_enabled
 **************************************
--- a/linux_openwrt/opennds/files/etc/config/opennds
+++ b/linux_openwrt/opennds/files/etc/config/opennds
@@ -606,7 +606,7 @@ config opennds
 	###########################################################################################

 	# Option: faskey
-	# Default: 1234567890
+	# Default: A system generated sha256 string
 	# A key phrase for NDS to encrypt the query string sent to FAS
 	# Can be any text string with no white space
 	# Hint and Example: Choose a secret string and use sha256sum utility to generate a hash.
--- a/src/conf.h
+++ b/src/conf.h
@@ -30,7 +30,7 @@
 #ifndef _CONF_H_
 #define _CONF_H_

-#define VERSION "10.1.2beta"
+#define VERSION "10.1.2"

 /*
 * Defines how many times should we try detecting the interface with the default route (in seconds).