webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-05-11 01:38:25 +02:00
Code Issues Packages Projects Releases Wiki Activity
20,343 Commits 2 Branches 1 Tag
094bbe083b20dfe8404ca3f27ae8f2b3d7821864
Commit Graph

1410 Commits

Author SHA1 Message Date
Michael Tremer
0f354672a2 flac: Update to 1.3.2 
The previous version fails to build on i586

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-16 19:14:33 +00:00
Michael Tremer
11e78f38b9 Package openssl-compat (1.0.2.n) 
This is provided for compatibility with binaries that have
been compiled against this version of OpenSSL.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 22:19:45 +00:00
Michael Tremer
7e63e4f806 transmission: Patch to build against OpenSSL 1.1 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 22:19:45 +00:00
Michael Tremer
0d0fe16e22 net-snmp: Patch to build against OpenSSL 1.1 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 22:19:45 +00:00
Michael Tremer
3b10b31303 elinks: Patch to build against OpenSSL 1.1 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 22:19:45 +00:00
Michael Tremer
07b8dcd0b2 openssh: Update to 7.6p1 and patch against OpenSSL 1.1 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 22:19:45 +00:00
Michael Tremer
5a9bbaa93d openssl: Update to version 1.1 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 22:19:45 +00:00
Michael Tremer
e9e3dd9fee qemu: Make it build with newer glibcs 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 20:56:12 +00:00
Michael Tremer
c19196e1c5 nfs: Fix building with newer glibcs 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 20:56:12 +00:00
Michael Tremer
ce7f9c3a0e libtirpc: Fix build against newer glibcs 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 20:56:12 +00:00
Michael Tremer
f794504ec6 dma: Don't only use TLSv1 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 20:56:12 +00:00
Michael Tremer
65a75e0ddf glibc: Update to 2.27 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 20:56:12 +00:00
Michael Tremer
f1a5a25a40 flex: Patch against SEGV with newer glibc 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 20:56:12 +00:00
Michael Tremer
6ffe2da8c9 iproute2: Update to 4.14.1 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 20:56:12 +00:00
Michael Tremer
f6b0901df9 hostname: Update to 3.20 
Drops dependency to obsolete RPCSVC code in glibc.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 20:56:12 +00:00
Michael Tremer
dca7011c1f make: Patch against SEGV when using globbing functions 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 20:56:12 +00:00
Michael Tremer
85439ac74c toolchain: Add bison 
This is required by glibc 2.27

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 20:56:12 +00:00
Arne Fitzenreiter
11b5e5cb8e toolchain: update to gcc-7.3.0 and enable retpolines on x86_64 and i586 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2018-02-11 20:56:12 +00:00
Arne Fitzenreiter
27ee5072c5 mdadm: fix build with gcc-7 2018-02-11 20:56:12 +00:00
Arne Fitzenreiter
eaec148fd8 sarg: update to 2.3.11 (needed for gcc-7) 2018-02-11 20:56:12 +00:00
Arne Fitzenreiter
97e4adb8fd Merge remote-tracking branch 'origin/next' into kernel-4.14 2018-01-28 11:24:12 +01:00
Matthias Fischer
9a57c6cdd3 clamav: Update to 0.99.3 
Excerpt from 'README':

"ClamAV 0.99.3 is a hotfix release to patch a set of vulnerabilities.

- fixes for the following CVE's: CVE-2017-6418, CVE-2017-6420,
  CVE-2017-12374, CVE-2017-12375, CVE-2017-12376, CVE-2017-12377,
  CVE-2017-12378, CVE-2017-12379, CVE-2017-12380.
- also included are 2 minor fixes to properly detect openssl install
  locations on FreeBSD 11, and prevent false warnings about zlib 1.2.1#
  version numbers."

For details see:
http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html

Best,
Matthias

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-01-27 16:26:45 +00:00
Arne Fitzenreiter
09cdb999da Merge remote-tracking branch 'arne_f/gcc-7-retpol' into kernel-4.14 2018-01-27 10:26:11 +01:00
Arne Fitzenreiter
7520b95a8b toolchain: update to gcc-7.3.0 and enable retpolines on x86_64 and i586 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2018-01-26 20:48:08 +01:00
Arne Fitzenreiter
33e3a1bd84 mdadm: fix build with gcc-7 2018-01-26 12:23:00 +01:00
Arne Fitzenreiter
38391953e0 sarg: update to 2.3.11 (needed for gcc-7) 2018-01-26 12:20:57 +01:00
Erik Kapfer
adf3f4f4fe LZ4: New compression library. 
New lossless data compression algorithm.

Signed-off-by: Erik Kapfer <erik.kapfer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-01-23 13:20:58 +00:00
Matthias Fischer
eb03c511fd squid 3.5.27: Patch for SA 2018:2 
As announced, here is the second patch for 'squid 3.5.27'.

For details about this and the previous patch (2018_1) regarding "ESI Response
processing" and "HTTP message processing", see:

http://squid-web-proxy-cache.1019090.n4.nabble.com/squid-announce-ADVISORY-SQUID-2018-1-Denial-of-Service-issue-in-ESI-Response-processing-tp4684618.html

http://squid-web-proxy-cache.1019090.n4.nabble.com/squid-announce-ADVISORY-SQUID-2018-2-Denial-of-Service-issue-in-HTTP-Message-processing-td4684617.html

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-01-23 13:08:19 +00:00
Matthias Fischer
101765c0fd squid 3.5.27: Patch for SA 2018:1 
http://www.squid-cache.org/Versions/v3/3.5/changesets/

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-01-23 13:07:43 +00:00
Jonatan Schlag
2da45fe0e1 dmidecode: update to version 3.1 
The removed patches are included in this version so there is no need
that we apply them.

Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-01-20 14:33:52 +00:00
Arne Fitzenreiter
d952f7557e Merge remote-tracking branch 'origin/next' into kernel-4.14 2017-12-18 18:22:06 +01:00
Michael Tremer
d7dde64550 Drop phpSANE 
The upstream project is dead.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-12-16 12:38:01 +00:00
Michael Tremer
b2d4fa028f Drop cacti 
This package was discontinued upstream and seems to be
a bit more lively again. However, nobody of the team
wants to maintain cacti. Therefore this is being dropped
for now.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-12-16 12:35:12 +00:00
Michael Tremer
ba03193ba7 fireinfo: Update to 2.1.12 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-12-14 17:44:20 +00:00
Arne Fitzenreiter
5b117ef49a Merge remote-tracking branch 'origin/next' into kernel-4.14 2017-11-29 17:37:51 +01:00
Arne Fitzenreiter
0476a6570d samba: import security updates from redhead 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2017-11-27 18:20:59 +01:00
Arne Fitzenreiter
2e1fe3c816 kernel: update to 4.14.1 
only x86_config has updated yet and grsecurity is removed.

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2017-11-22 12:29:36 +01:00
Arne Fitzenreiter
d23a284f02 Revert "kernel: revert an upstream patch that break 8TB Blockdevices on 32bit" 
This reverts commit c64e080f3a.
 2017-11-02 19:20:41 +01:00
Arne Fitzenreiter
c64e080f3a kernel: revert an upstream patch that break 8TB Blockdevices on 32bit 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2017-11-01 13:38:18 +01:00
Arne Fitzenreiter
d12ad00385 Merge remote-tracking branch 'origin/master' into kernel-4.9 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2017-10-22 21:57:30 +02:00
Michael Tremer
d7d5774529 KRACK attack: Patch wpa_supplicant & hostapd 
A vulnerability was found in how a number of implementations can be
triggered to reconfigure WPA/WPA2/RSN keys (TK, GTK, or IGTK) by
replaying a specific frame that is used to manage the keys. Such
reinstallation of the encryption key can result in two different types
of vulnerabilities: disabling replay protection and significantly
reducing the security of encryption to the point of allowing frames to
be decrypted or some parts of the keys to be determined by an attacker
depending on which cipher is used.

This fixes: CVE-2017-13077, CVE-2017-13078, CVE-2017-13079,
  CVE-2017-13080, CVE-2017-13081, CVE-2017-13082, CVE-2017-13086,
  CVE-2017-13087, CVE-2017-13088

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-10-16 15:49:35 +01:00
Matthias Fischer
e3fc1d0a2b apache: Update to 2.4.28 
http://apache.mirror.digionline.de//httpd/CHANGES_2.4.28

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-10-09 14:46:00 +01:00
Matthias Fischer
b76d0433be apache2: Import patch for CVE-2017-9798 ("optionsbleed") 
Imported from:
https://svn.apache.org/viewvc/httpd/httpd/branches/2.4.x/server/core.c?r1=1805223&r2=1807754&pathrev=1807754&view=patch

For details see:
https://nvd.nist.gov/vuln/detail/CVE-2017-9798

Best,
Matthias

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-09-20 22:01:50 +01:00
Michael Tremer
b9863c8845 apache2: Import patch for PR61382 
We usually do not download patches, but rather ship them with
our source.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-09-07 12:27:43 +01:00
Matthias Fischer
c60ad61a14 squid: Update to 3.5.27 
Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-08-23 11:32:33 +01:00
Matthias Fischer
41d06f42b7 unbound: Update to 1.6.4 
Hi, ("...back in town...") ;-)

For details see:
http://www.unbound.net/download.html

I had to remove the patch file: it wouldn't apply.

Best,
Matthias

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-08-15 11:50:03 +01:00
Matthias Fischer
6edc270abc squid 3.5.26: latest patches (14169-14182) 
Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-08-15 11:49:51 +01:00
Arne Fitzenreiter
b389d73110 Merge branch 'master' into kernel-4.9 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2017-07-09 12:47:16 +02:00
Arne Fitzenreiter
da504bdc57 grub: ignore missing .symtab in modules 
old binutis add an empty .symtab section at stripping
and grub check that this exists also on modules that export
no symbols.

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2017-07-05 17:42:21 +02:00
Michael Tremer
dff0a94825 directfb: Fix compilation on ARM 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-06-22 16:06:06 +01:00