=== Server Release 3.0.12.4 27 april 2016 - fixed an other server crashes on malicious input (again) - fixed a deadlock on some query commands
Created attachment 441004 [details] teamspeak-server-bin-3.0.12.4.ebuild
Created attachment 443294 [details] teamspeak-server-bin-3.0.13.ebuild Version 3.0.13 is out. New updated eBuild and fixed systemd unit file #591054 Changelog: http://forum.teamspeak.com/threads/126318-TeamSpeak-3-Server-3-0-13-released + ipv6 support - binding voice to the any address (0.0.0.0 / 0::0), which is the default behaviour of the server, now supports clients connecting to all addresses instead of just the default ip of the network interface.
Created attachment 443296 [details, diff] teamspeak-server-bin-3.0.13.ebuild.diff
Created attachment 443298 [details] files/systemd/teamspeak3.service
It seems that the vulnerabilities found in 3.0.13 and bewlow, which were reported e.g. at http://seclists.org/fulldisclosure/2016/Aug/61 are fixed now. Quoting from http://forum.teamspeak.com/threads/126318: We've just released a new Hotfix version 3.0.13.2, that fixes several vulnerabilities that were discovered in the 3.0.13 release. We strongly advise to update your servers as soon as possible. === Server Release 3.0.13.2 15 august 2016 - fixed a crash introduced in 3.0.13.1 - fixed a deadlock in the server causing some instances to hang / be unresponsive - fixed a crash reported by a customer. === Server Release 3.0.13.1 15 august 2016 - fixed several vulnerabilities.
From ${URL}: While auditing the Teamspeak 3 server I've discovered several 0-day vulnerabilities which I'll describe in detail in this advisory. They exist in the newest version of the server, version 3.0.13. I found 10 vulnerabilities. Some of these are critical and allow remote code execution. For the average user, that means that these vulnerabilities can be exploited by a malicious attacker in order to take over any Teamspeak server, not only becoming serveradmin, but getting a shell on the affected machine.
Created attachment 443714 [details] teamspeak-server-bin-3.0.13.2.ebuild
Created attachment 443716 [details, diff] teamspeak-server-bin-3.0.13.2.ebuild.diff
=== Server Release 3.0.13.3 19 august 2016 - fixed a problem where virtual servers refuse to start due to invalid flags or order - fixed a crash in fix crash on servergroupautodelperm / servergroupautoaddperm
=== Server Release 3.0.13.4 7 september 2016 + "Error opening file: No such file or directory" message now includes filename - Fixed server crash when ipv6 client connects while using MariaDB (or MySQL) server - Database plugins are now checked more thoroughly at server startup ! To fix the problem with MariaDB, the server needs to alter columns in the client and bindings table. For large databases, this can take a while. It is recommended that all ts3servers that use the same database, are stopped and then one new ts3server is started first which does the update. After this, the other instances can be started too.
@maintainer(s), please bump the package.
(In reply to Aaron Bauman from comment #11) > @maintainer(s), please bump the package. Please also bump directly to 3.0.13.6. === Server Release 3.0.13.5 24 october 2016 - not logging received packets with 0 bytes any more - fixed ftinitdownload/ftinitupload can hang on server query === Server Release 3.0.13.6 9 november 2016 - Fixed virtual server stops responding to clients - TSDNS server now also listens on ipv6 when available * TSDNS server Documentation updated My eBuilds are here still valid. I am running 3.0.13.6 quite a time here..
Created attachment 454962 [details] teamspeak-server-bin-3.0.13.6.ebuild
Created attachment 454964 [details, diff] teamspeak-server-bin-3.0.13.6.ebuild.diff
@ Conrad, thank you for the ebuild, now in tree: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=adf0a5bb06d2eb393ec45dab0e62708abee3f5a2 Cleanup via https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=713b5bca0965cd0e55fcf6d82cd427cc2e2ff9b3 Package was never stable so nothing left to do for us.
