Netatalk 2.4.1
REDISTRIBUTION LICENSING ALERT
If you redistribute binary Netatalk packages, please be advised that there may be incompatible licensing terms in this source package. To avoid potential issues when redistributing, it is strongly recommended to build this package with -Dwith-embedded-ssl=false when using the Meson build system. The Autotools build system is not affected. Alternatively, upgrade to Netatalk 2.4.2 or later.
Netatalk 2.4.1 is available!
The Netatalk team is proud to announce the latest version in the Netatalk 2.4 release series. Unlike the Netatalk 3.x releases, 2.x maintains support for the AppleTalk transport layer for networking with very old Mac and Apple II clients.
This release includes a patch for security vulnerabilities CVE-2024-38439, CVE-2024-38440, and CVE-2024-38441. Users of the 2.x release series are encouraged to update their servers to this version
Please see INSTALL for instructions how to use the new Meson build system. The online manual also has a new appendix with build instructions for specific operating systems.
The recommended version of the Netatalk Webmin module for this release is v2.0.
Please see NEWS for the full changelog.
Major Changes
Bundled WolfSSL
WolfSSL was introduced in Netatalk 2.4.0 as the recommended SSL provider for the DHX (DHCAST128) and Random Number user authentication modules.
In addition to the bundled WolfSSL library, the latest version of Netatalk now supports building with system provided WolfSSL libraries. At the time of release, only Debian and Ubuntu could be confirmed shipping a fully-featured WolfSSL library.
Alpine Linux, Arch Linux, DragonFly BSD and FreeBSD also ship WolfSSL libraries. However in our testing neither were complete enough to be used with Netatalk. On these platforms we will still use the bundled WolfSSL library.
What’s Changed
- [2.4] meson: with-rpath syntax is invalid by @rdmark in https://github.com/Netatalk/netatalk/pull/1131
- [2.4] docs: Indicate license for software package, and add SSLeay notice by @rdmark in https://github.com/Netatalk/netatalk/pull/1126
- [2.4] docker: Use guest auth only with INSECURE_AUTH flag by @rdmark in https://github.com/Netatalk/netatalk/pull/1127
- [2.4] meson: Remove obsolete with-libtirpc option by @dgsga in https://github.com/Netatalk/netatalk/pull/1129
- [2.4] autotools and meson: Use pkg-config to find libgcrypt by @dgsga in https://github.com/Netatalk/netatalk/pull/1133
- [2.4] Add copyright for mac_roman.h by @rdmark in https://github.com/Netatalk/netatalk/pull/1138
- [2.4] Debian Trixie expects systemd scripts in /usr/lib by @rdmark in https://github.com/Netatalk/netatalk/pull/1136
- [2.4] Don’t attempt to restart atalkd systemd service if NBP registrations fail by @NJRoadfan in https://github.com/Netatalk/netatalk/pull/1141
- [2.4] meson: Fix version number substitution by @dgsga in https://github.com/Netatalk/netatalk/pull/1150
- [2.4] Cleanup of copyright headers to make them more scanner friendly by @rdmark in https://github.com/Netatalk/netatalk/pull/1143
- [2.4] CVE-2024-38439,CVE-2024-38440,CVE-2024-38441: Harden user login by @rdmark in https://github.com/Netatalk/netatalk/pull/1159
- [2.4] docs: Rephrase tarball section of manual by @rdmark in https://github.com/Netatalk/netatalk/pull/1165
- [2.4] meson: Prioritize native WolfSSL package over built-in SSL library if it has the correct configuration by @dgsga in https://github.com/Netatalk/netatalk/pull/1161
- [2.4] meson: Restore SLP (srvloc) support by @dgsga in https://github.com/Netatalk/netatalk/pull/1153
Full Changelog: https://github.com/Netatalk/netatalk/compare/netatalk-2-4-0…netatalk-2-4-1
Note: The Debian deb package distributed with this release is built for Debian 12 Bookworm.
Release published on 2024-06-29
Generated from the original at GitHub
