webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-23 09:22:59 +02:00
Code Issues Packages Projects Releases Wiki Activity
4,846 Commits 2 Branches 1 Tag
3648650e7628193cf271c984e7fcafa7dd59fe04
Commit Graph

2248 Commits

Author SHA1 Message Date
Erik Kapfer
e70bd5b742 mtr+tcpick: Two new binary addons. 2012-05-27 21:36:44 +02:00
Michael Tremer
7de1da3fdf fireinfo: Update to 2.1.5. 
Fixes issues on the Raspberry Pi Computer.
 2012-05-19 11:22:18 +02:00
Arne Fitzenreiter
7f76d8cb4a GeoIP: update database to 01052012. 2012-05-12 19:15:38 +02:00
Arne Fitzenreiter
4a3ae7fa37 dhcpcd: ignore MTU Smaller than 577. 
Normally 576 is the smallest valid mtu but some cable provider set this
also if they support much higher mtu's. Fedora does not accept
this to prevent speed problems with such isp connections so we do the same.
If you really need mtu=576 you can still force at at the setup.
 2012-05-12 17:13:45 +02:00
Arne Fitzenreiter
be5a3b36a7 php: security update to 5.3.13 (CVE-2012-2311). 2012-05-12 15:33:42 +02:00
Arne Fitzenreiter
d7d2dca964 openssh: update to 6.0p1. 2012-05-12 15:32:47 +02:00
Arne Fitzenreiter
423d77a71f openssl: security update to 0.9.8x (CVE-2012-2333). 
Invalid TLS/DTLS record attack (CVE-2012-2333)
===============================================

A flaw in the OpenSSL handling of CBC mode ciphersuites in TLS 1.1, 1.2 and
DTLS can be exploited in a denial of service attack on both clients and
servers.

DTLS applications are affected in all versions of OpenSSL. TLS is only
affected in OpenSSL 1.0.1 and later.

Thanks to Codenomicon for discovering this issue using Fuzz-o-Matic fuzzing
as a service testing platform.

The fix was developed by Stephen Henson of the OpenSSL core team.

Affected users should upgrade to OpenSSL 1.0.1c, 1.0.0j or 0.9.8x

References
==========

URL for this Security Advisory:
http://www.openssl.org/news/secadv_20120510.txt
 2012-05-12 15:30:38 +02:00
Arne Fitzenreiter
6666803d83 Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next 2012-05-06 12:54:13 +02:00
Arne Fitzenreiter
9070a6c331 traceroute: update to 2.0.18 and fix name resolution. 
fixes #10097
 2012-05-06 12:51:14 +02:00
Arne Fitzenreiter
a526de38bc strongswan: update to 4.6.3. 2012-05-05 23:25:07 +02:00
Arne Fitzenreiter
6bdc390235 python: update to 2.7.3. 2012-05-05 23:23:53 +02:00
Arne Fitzenreiter
8f17b54f96 openssl: security update to 0.9.8w. (CVE-2012-2131). 
SN1 BIO incomplete fix (CVE-2012-2131)
=======================================

It was discovered that the fix for CVE-2012-2110 released on 19 Apr
2012 was not sufficient to correct the issue for OpenSSL 0.9.8.

Please see http://www.openssl.org/news/secadv_20120419.txt for details
of that vulnerability.

This issue only affects OpenSSL 0.9.8v.  OpenSSL 1.0.1a and 1.0.0i
already contain a patch sufficient to correct CVE-2012-2110.

Thanks to Red Hat for discovering and fixing this issue.

Affected users should upgrade to 0.9.8w.

References
==========

URL for this Security Advisory:
http://www.openssl.org/news/secadv_20120424.txt
 2012-05-02 19:42:02 +02:00
Arne Fitzenreiter
9c166bf2a6 Merge branch 'master' into next 2012-05-02 16:55:26 +02:00
Arne Fitzenreiter
9f82cdb1f8 samba: security update to 3.5.15. (CVE-2012-2111). 
This security release addresses CVE-2012-2111 (incorrect permission checks when
granting/removing privileges could compromise file server security).
 2012-05-02 10:10:07 +02:00
Arne Fitzenreiter
de887913ee samba: security update to 3.5.14. (CVE-2012-1182). 
Further information can be found in the security advisory:
http://www.samba.org/samba/security/CVE-2012-1182
 2012-04-10 20:21:37 +02:00
Arne Fitzenreiter
b7d1e1c4a4 GeoIP: update database to 03032012. 2012-04-07 11:37:35 +02:00
Arne Fitzenreiter
2c0a849f7a cryptodev: update to 1.4. 2012-04-07 11:36:40 +02:00
Arne Fitzenreiter
f028065fd1 openssl: fix aes accleration via cryptodev. 2012-04-07 11:36:20 +02:00
Michael Tremer
a4826680bc pound: Add patch to select certificates by their SANs. 
http://www.apsis.ch/pound/pound_list/archive/2012/2012-02/1329442080000#1329442080000
 2012-04-07 11:35:46 +02:00
Arne Fitzenreiter
844d37795d clamav: updated to 0.97.4. 2012-04-07 11:35:28 +02:00
Arne Fitzenreiter
ef5d80c033 openssl: update to 0.9.8u. 2012-04-07 11:35:01 +02:00
Arne Fitzenreiter
67ab1d6206 samba: update to 3.5.13. 2012-04-07 11:34:31 +02:00
Michael Tremer
25a063e66d git: Update to 1.7.9.3. 2012-04-07 11:33:52 +02:00
Michael Tremer
88511b6145 fireinfo: Update to 2.1.4. 
Fixes an issue with the detection of online CPUs on ARM.
 2012-04-07 11:32:51 +02:00
Arne Fitzenreiter
d2bbe7f46e usb_modeswitch: update to 1.2.3. 2012-04-07 11:32:16 +02:00
Arne Fitzenreiter
5d934a73dc strongswan: update to 4.6.2. 
fixes #10037
 2012-04-07 11:31:34 +02:00
Michael Tremer
8cbc8e01b3 libpng: Update to 1.2.46. 
Fixes several security issues from 2011.
 2012-04-07 11:30:03 +02:00
Michael Tremer
524fc72621 openvpn: Update to 2.2.2. 
Add --enable-password-save switch that was requested by the
community.

See bug #10036.
 2012-04-07 11:22:53 +02:00
Michael Tremer
870f68d7f2 vim: Add "set ruler" option to configuration file. 
This will show a small line at the bottom which displays
the current cursor position and more.

References bug #10021.
 2012-04-07 11:22:01 +02:00
Arne Fitzenreiter
2b965cc534 GeoIP: update database to 03032012. 2012-04-06 19:22:23 +02:00
Arne Fitzenreiter
863b1f5fb6 cryptodev: update to 1.4. 2012-04-06 14:00:18 +02:00
Arne Fitzenreiter
9b33fb7e82 openssl: fix aes accleration via cryptodev. 2012-04-06 13:59:45 +02:00
Michael Tremer
343740678a pound: Add patch to select certificates by their SANs. 
http://www.apsis.ch/pound/pound_list/archive/2012/2012-02/1329442080000#1329442080000
 2012-04-06 13:42:27 +02:00
Arne Fitzenreiter
da43373bdb clamav: updated to 0.97.4. 2012-03-18 13:14:59 +01:00
Arne Fitzenreiter
d5e982c11b openssl: update to 0.9.8u. 2012-03-13 21:16:25 +01:00
Arne Fitzenreiter
6a6f993b29 samba: update to 3.5.13. 2012-03-13 20:47:09 +01:00
Michael Tremer
9368775639 git: Update to 1.7.9.3. 2012-03-11 16:53:32 +01:00
Michael Tremer
06b197d817 fireinfo: Update to 2.1.4. 
Fixes an issue with the detection of online CPUs on ARM.
 2012-03-11 14:50:44 +01:00
Arne Fitzenreiter
b7be421741 usb_modeswitch: update to 1.2.3. 2012-03-10 17:37:23 +01:00
Arne Fitzenreiter
b21c471b73 strongswan: update to 4.6.2. 
fixes #10037
 2012-03-10 17:32:31 +01:00
Michael Tremer
54fd05358b Import VPN changes by the Special Interest Group. 
See here for more details:
  http://lists.ipfire.org/pipermail/sig-vpn/2012-March/000031.html
 2012-03-06 22:53:07 +01:00
Michael Tremer
9e7e1c143d Merge branch 'libpng-update' into next 2012-03-06 22:24:28 +01:00
Michael Tremer
eb12fca108 openvpn: Update to 2.2.2. 
Add --enable-password-save switch that was requested by the
community.

See bug #10036.
 2012-02-25 12:10:25 +01:00
Michael Tremer
968d4ea400 vim: Add "set ruler" option to configuration file. 
This will show a small line at the bottom which displays
the current cursor position and more.

References bug #10021.
 2012-02-23 00:02:17 +01:00
Dirk Wagner
dc083d18df pound: update to latest stable 2.6 2012-02-11 18:27:13 +01:00
Dirk Wagner
3412d9ef01 Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next 2012-02-10 20:46:44 +01:00
Dirk Wagner
bc48f66315 nut: update to latest version 2.6.3 2012-02-10 20:45:52 +01:00
Michael Tremer
a73f60abb8 strongswan: Customize the welcome banner. 
References:
 http://forum.ipfire.org/index.php/topic,5993.0.html
 http://forum.ipfire.org/index.php/topic,3329.0.html
 2012-02-10 11:01:42 +01:00
Arne Fitzenreiter
261f88ebe6 apache: fix typo. 2012-02-08 19:59:36 +01:00
Arne Fitzenreiter
2b5d1d8f70 cups: update to 1.4.8. 2012-02-08 07:50:17 +01:00