webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-19 15:32:59 +02:00
Code Issues Packages Projects Releases Wiki Activity
11,243 Commits 2 Branches 1 Tag
2e1fe3c816068fa24db47db4798e178abe34d87e
Commit Graph

4970 Commits

Author SHA1 Message Date
Arne Fitzenreiter
2e1fe3c816 kernel: update to 4.14.1 
only x86_config has updated yet and grsecurity is removed.

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2017-11-22 12:29:36 +01:00
Arne Fitzenreiter
7a192dedb9 xtables-addons: update to 2.13 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2017-11-22 11:23:47 +01:00
Arne Fitzenreiter
bdfbc09f98 kernel: update to 4.9.61 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2017-11-09 16:01:03 +01:00
Arne Fitzenreiter
2c6e0e8eb3 Merge remote-tracking branch 'origin/master' into kernel-4.9 2017-11-02 23:40:49 +01:00
Arne Fitzenreiter
ada37d8472 kernel: update to 4.9.60 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2017-11-02 22:26:44 +01:00
Arne Fitzenreiter
d23a284f02 Revert "kernel: revert an upstream patch that break 8TB Blockdevices on 32bit" 
This reverts commit c64e080f3a.
 2017-11-02 19:20:41 +01:00
Michael Tremer
770c2c5222 wget: Update file extension 
Upstream does not distribute XZ compressed tarballs any more

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-11-02 15:38:11 +00:00
Michael Tremer
4a510319ca openssl: Update to 1.0.2m 
* bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)
* Malformed X.509 IPAddressFamily could cause OOB read (CVE-2017-3735)

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-11-02 15:31:04 +00:00
Arne Fitzenreiter
c64e080f3a kernel: revert an upstream patch that break 8TB Blockdevices on 32bit 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2017-11-01 13:38:18 +01:00
Arne Fitzenreiter
35f59319d8 kernel: update to 4.9.59 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2017-10-30 18:02:38 +01:00
Michael Tremer
a016c0ce6a wget: Update to 1.19.2 
Fixes CVE-2017-13089

A stack-based buffer overflow when processing chunked, encoded HTTP
responses was found in wget. By tricking an unsuspecting user into
connecting to a malicious HTTP server, an attacker could exploit
this flaw to potentially execute arbitrary code.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-10-29 18:33:03 +00:00
Wolfgang Apolinarski
bf24eeec20 Update to Apache 2.4.29 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-10-28 13:35:43 +01:00
Matthias Fischer
49f7ee5d72 snort: Update to 2.9.11 
For details see:

Release notes:
https://snort.org/downloads/snort/release_notes_2.9.11.txt

Changelog:
https://snort.org/downloads/snort/changelog_2.9.11.txt

Best,
Matthias

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-10-23 16:24:46 +01:00
Matthias Fischer
a809d7fa68 xz: Update to 5.2.3 
For details see:
https://git.tukaani.org/?p=xz.git;a=blob;f=NEWS;hb=HEAD

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-10-23 13:22:01 +01:00
Arne Fitzenreiter
d12ad00385 Merge remote-tracking branch 'origin/master' into kernel-4.9 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2017-10-22 21:57:30 +02:00
Arne Fitzenreiter
cb05d78cda kernel: update to 4.9.58 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2017-10-22 10:30:05 +02:00
Arne Fitzenreiter
4ad591338f kernel: update to 4.9.57 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2017-10-18 23:54:46 +02:00
Michael Tremer
348ba8e2c5 Revert "Use best XZ compression for smaller images and packages" 
This reverts commit 5fd54721c2.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-10-18 12:35:19 +01:00
Michael Tremer
9dcfcb0039 Revert "cdrom: Use -8 as compression parameter" 
This reverts commit 77ad762c43.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-10-18 12:35:04 +01:00
Michael Tremer
77ad762c43 cdrom: Use -8 as compression parameter 
This is a better compromise on memory usage and file size

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-10-17 21:16:41 +01:00
Michael Tremer
5fd54721c2 Use best XZ compression for smaller images and packages 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-10-17 15:23:26 +01:00
Michael Tremer
c061d66fca cdrom: Change format to XZ and compress in parallel 
This allows us to use all processor cores to compress
the image faster.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-10-17 14:58:52 +01:00
Michael Tremer
bc9544929c packages: Compress in parallel 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-10-17 14:58:28 +01:00
Matthias Fischer
5ed7bbd52f logrotate: Update to 3.13.0 
For details see:
https://github.com/logrotate/logrotate/releases

Best,
Matthias

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-10-16 19:19:39 +01:00
Michael Tremer
b62c826fd8 PDF-API2: Add optional dependencies to read TrueType fonts 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-10-16 17:43:32 +01:00
Michael Tremer
e3c3625c34 Make perl-PDF-API2 part of the base system 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-10-16 17:31:51 +01:00
Michael Tremer
30b0e0ca1b PDF-API2: Update to 2.033 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-10-16 17:28:51 +01:00
Michael Tremer
d7d5774529 KRACK attack: Patch wpa_supplicant & hostapd 
A vulnerability was found in how a number of implementations can be
triggered to reconfigure WPA/WPA2/RSN keys (TK, GTK, or IGTK) by
replaying a specific frame that is used to manage the keys. Such
reinstallation of the encryption key can result in two different types
of vulnerabilities: disabling replay protection and significantly
reducing the security of encryption to the point of allowing frames to
be decrypted or some parts of the keys to be determined by an attacker
depending on which cipher is used.

This fixes: CVE-2017-13077, CVE-2017-13078, CVE-2017-13079,
  CVE-2017-13080, CVE-2017-13081, CVE-2017-13082, CVE-2017-13086,
  CVE-2017-13087, CVE-2017-13088

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-10-16 15:49:35 +01:00
Arne Fitzenreiter
7cca0a3020 kernel: update to 4.9.56 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2017-10-14 07:19:13 +02:00
Michael Tremer
c484679bb3 Download sources via HTTPS 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-10-12 15:56:34 +01:00
Michael Tremer
fb76fc5144 installer: Fix detection if we have the correct ISO image mounted 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-10-12 15:50:31 +01:00
Arne Fitzenreiter
3515db6899 kernel: update to 4.9.55 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2017-10-12 13:45:31 +02:00
Michael Tremer
7ef43add02 ipfire-netboot: Update to v2.0 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-10-11 21:03:09 +01:00
Matthias Fischer
e735d91f03 unbound: Update to 1.6.7 
For details see:
http://www.unbound.net/download.html

Best,
Matthias

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-10-11 20:06:48 +01:00
Matthias Fischer
5c6ae344fc web-user-interface: Removed 'dial.cgi' from lfs-file 
'dial.cgi' was removed in

https://git.ipfire.org/?p=ipfire-2.x.git;a=commit;h=dc6ed83537e1bcc1347ad16bee095ef4d641bc69

Best,
Matthias

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-10-11 20:01:48 +01:00
Michael Tremer
0b289b3af0 netboot: Update to 1.2 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-10-11 19:59:48 +01:00
Arne Fitzenreiter
7ddef58e9e kernel: update to 4.9.53 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2017-10-11 15:20:00 +02:00
Matthias Fischer
e3fc1d0a2b apache: Update to 2.4.28 
http://apache.mirror.digionline.de//httpd/CHANGES_2.4.28

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-10-09 14:46:00 +01:00
Michael Tremer
027614d2dc Merge branch 'captive-portal' into next 2017-10-04 16:10:07 +01:00
Michael Tremer
1f06098ba7 captive-portal: Serve Ubuntu font files locally 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-10-04 12:55:17 +01:00
Michael Tremer
70f6cba43e Add Ubuntu font family package 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-10-04 12:47:28 +01:00
Matthias Fischer
67970637d0 openvpn: Update to 2.3.18 
Fixes CVE-2017-12166: out of bounds write in key-method 1

For details see:

https://community.openvpn.net/openvpn/wiki/CVE-2017-12166

Changelog:
https://community.openvpn.net/openvpn/wiki/ChangesInOpenvpn23#OpenVPN2.3.18

Removed an unrecognized 'configure'-option.

Best,
Matthias

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-09-30 12:33:15 +01:00
Matthias Fischer
fc9a434cbc tor: Update to 3.1.7 
Fixes TROVE-2017-008 and CVE-2017-0380 and others....

For details see  https://gitweb.torproject.org/tor.git/plain/ReleaseNotes?id=tor-0.3.1.7
"Tor 0.3.1.7 is the first stable release in the 0.3.1 series."

Best,
Matthias

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-09-30 12:33:11 +01:00
Arne Fitzenreiter
587ff16fd1 kernel: update to 4.9.52 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2017-09-27 19:28:23 +02:00
Arne Fitzenreiter
d62fd7553d Merge branch 'master' into next 2017-09-24 15:45:04 +02:00
Matthias Fischer
1b0ff72dad wpa_supplicant: Update to 2.6 
For details see:
https://w1.fi/cgit/hostap/plain/wpa_supplicant/ChangeLog

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-09-23 22:16:14 +01:00
Arne Fitzenreiter
3aa4579f8f Merge remote-tracking branch 'origin/next' 2017-09-23 10:38:18 +02:00
Michael Tremer
445b43f877 captive: Fix directory permissions 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-09-22 19:00:04 +01:00
Michael Tremer
c91899797b captive: Logo directory no longer exists 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-09-22 19:00:04 +01:00
Michael Tremer
22ce4c3ad6 apache2: Create captive portal logging directory 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-09-22 19:00:04 +01:00