webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-19 23:43:00 +02:00
Code Issues Packages Projects Releases Wiki Activity
4,806 Commits 2 Branches 1 Tag
36585d00bd91bb7207627ca4e46c5d3c6f20cd26
Commit Graph

2221 Commits

Author SHA1 Message Date
Arne Fitzenreiter
36585d00bd python: update to 2.7.3. 2012-05-12 19:31:17 +02:00
Arne Fitzenreiter
a6f4183e83 openssl: security update to 0.9.8w. (CVE-2012-2131). 
SN1 BIO incomplete fix (CVE-2012-2131)
=======================================

It was discovered that the fix for CVE-2012-2110 released on 19 Apr
2012 was not sufficient to correct the issue for OpenSSL 0.9.8.

Please see http://www.openssl.org/news/secadv_20120419.txt for details
of that vulnerability.

This issue only affects OpenSSL 0.9.8v.  OpenSSL 1.0.1a and 1.0.0i
already contain a patch sufficient to correct CVE-2012-2110.

Thanks to Red Hat for discovering and fixing this issue.

Affected users should upgrade to 0.9.8w.

References
==========

URL for this Security Advisory:
http://www.openssl.org/news/secadv_20120424.txt
 2012-05-12 19:28:24 +02:00
Arne Fitzenreiter
9f82cdb1f8 samba: security update to 3.5.15. (CVE-2012-2111). 
This security release addresses CVE-2012-2111 (incorrect permission checks when
granting/removing privileges could compromise file server security).
 2012-05-02 10:10:07 +02:00
Arne Fitzenreiter
de887913ee samba: security update to 3.5.14. (CVE-2012-1182). 
Further information can be found in the security advisory:
http://www.samba.org/samba/security/CVE-2012-1182
 2012-04-10 20:21:37 +02:00
Arne Fitzenreiter
b7d1e1c4a4 GeoIP: update database to 03032012. 2012-04-07 11:37:35 +02:00
Arne Fitzenreiter
2c0a849f7a cryptodev: update to 1.4. 2012-04-07 11:36:40 +02:00
Arne Fitzenreiter
f028065fd1 openssl: fix aes accleration via cryptodev. 2012-04-07 11:36:20 +02:00
Michael Tremer
a4826680bc pound: Add patch to select certificates by their SANs. 
http://www.apsis.ch/pound/pound_list/archive/2012/2012-02/1329442080000#1329442080000
 2012-04-07 11:35:46 +02:00
Arne Fitzenreiter
844d37795d clamav: updated to 0.97.4. 2012-04-07 11:35:28 +02:00
Arne Fitzenreiter
ef5d80c033 openssl: update to 0.9.8u. 2012-04-07 11:35:01 +02:00
Arne Fitzenreiter
67ab1d6206 samba: update to 3.5.13. 2012-04-07 11:34:31 +02:00
Michael Tremer
25a063e66d git: Update to 1.7.9.3. 2012-04-07 11:33:52 +02:00
Michael Tremer
88511b6145 fireinfo: Update to 2.1.4. 
Fixes an issue with the detection of online CPUs on ARM.
 2012-04-07 11:32:51 +02:00
Arne Fitzenreiter
d2bbe7f46e usb_modeswitch: update to 1.2.3. 2012-04-07 11:32:16 +02:00
Arne Fitzenreiter
5d934a73dc strongswan: update to 4.6.2. 
fixes #10037
 2012-04-07 11:31:34 +02:00
Michael Tremer
8cbc8e01b3 libpng: Update to 1.2.46. 
Fixes several security issues from 2011.
 2012-04-07 11:30:03 +02:00
Michael Tremer
524fc72621 openvpn: Update to 2.2.2. 
Add --enable-password-save switch that was requested by the
community.

See bug #10036.
 2012-04-07 11:22:53 +02:00
Michael Tremer
870f68d7f2 vim: Add "set ruler" option to configuration file. 
This will show a small line at the bottom which displays
the current cursor position and more.

References bug #10021.
 2012-04-07 11:22:01 +02:00
Dirk Wagner
dc083d18df pound: update to latest stable 2.6 2012-02-11 18:27:13 +01:00
Dirk Wagner
3412d9ef01 Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next 2012-02-10 20:46:44 +01:00
Dirk Wagner
bc48f66315 nut: update to latest version 2.6.3 2012-02-10 20:45:52 +01:00
Michael Tremer
a73f60abb8 strongswan: Customize the welcome banner. 
References:
 http://forum.ipfire.org/index.php/topic,5993.0.html
 http://forum.ipfire.org/index.php/topic,3329.0.html
 2012-02-10 11:01:42 +01:00
Arne Fitzenreiter
261f88ebe6 apache: fix typo. 2012-02-08 19:59:36 +01:00
Arne Fitzenreiter
2b5d1d8f70 cups: update to 1.4.8. 2012-02-08 07:50:17 +01:00
Arne Fitzenreiter
5971e9a1aa squid: update to 3.19. 2012-02-08 07:48:52 +01:00
Arne Fitzenreiter
7e4506e9c7 apache: security update to 2.2.22. 
Fix six low and moderate security flaws. Most of them are not important for ipfire.
low: mod_setenvif .htaccess privilege escalation CVE-2011-3607
low: mod_log_config crash CVE-2012-0021
low: scoreboard parent DoS CVE-2012-0031
moderate: mod_proxy reverse proxy exposure CVE-2011-4317
moderate: error responses can expose cookies CVE-2012-0053
moderate: mod_proxy reverse proxy exposure CVE-2011-3368

For details check: http://httpd.apache.org/security/vulnerabilities_22.html
 2012-02-08 07:43:48 +01:00
Arne Fitzenreiter
144815dabe php: security update to 5.3.10. 
5.3.10 Fixes arbitary remote code execution CVE-2012-0830
5.3.9 Fixes for CVE-2011-4566 and CVE-2011-4885
...
 2012-02-05 19:05:18 +01:00
Arne Fitzenreiter
edc2be7080 flash-images: activate autoresize also on arm. 2012-01-24 18:17:14 +01:00
Arne Fitzenreiter
76b8277500 flash-images: increase size of root partition. 
Minimal media-size is now 2GB.
 2012-01-22 10:57:35 +01:00
Arne Fitzenreiter
d8799d9280 Crypt-PasswdMD5: add new perl modul to use apache md5 passwords. 2012-01-21 20:11:01 +01:00
Arne Fitzenreiter
18252bf794 usb-modeswitch: update to 1.2.2 and data 20120120. 2012-01-21 17:10:05 +01:00
Arne Fitzenreiter
0b236f6067 rsync: update to 3.0.9. 2012-01-21 14:09:34 +01:00
Arne Fitzenreiter
a6d0d790eb flash-image: add automatic resizing /var partition at first boot. 2012-01-20 08:02:31 +01:00
Arne Fitzenreiter
6333b4e725 openssl: security update to 0.9.8t. 
prevent DTLS DoS attak (CVE-2012-0050)
 2012-01-19 21:39:58 +01:00
Arne Fitzenreiter
dc29e3d019 Merge branch 'master' into next 2012-01-05 14:59:54 +01:00
Arne Fitzenreiter
8384f58553 openssh: update to 5.9p1. 2012-01-05 14:38:01 +01:00
Arne Fitzenreiter
5d098ffb5a openssl: security update to 0.9.8s. 
DTLS Plaintext Recovery Attack (CVE-2011-4108)
Double-free in Policy Checks (CVE-2011-4109)
Uninitialized SSL 3.0 Padding (CVE-2011-4576)
Malformed RFC 3779 Data Can Cause Assertion Failures (CVE-2011-4577)
Affected users should upgrade to OpenSSL 1.0.0f or 0.9.8s.
SGC Restart DoS Attack (CVE-2011-4619)

http://www.openssl.org/news/secadv_20120104.txt
 2012-01-05 14:31:26 +01:00
Arne Fitzenreiter
f4afa6ddf7 Merge branch 'master' into next 2011-12-31 10:33:39 +01:00
Arne Fitzenreiter
920b610fa0 toolchain: remove old uname hack. 2011-12-31 02:45:19 +01:00
Robert Möker
683cc8e470 nagios_nrpe: Add --enable-command-args. 2011-12-29 19:35:48 +01:00
Michael Tremer
c01c550df8 Merge branch 'master' into next 2011-12-29 14:03:42 +01:00
Michael Tremer
da7ab3cf6d Merge remote-tracking branch 'ms/fake-uname' 
Conflicts:
	lfs/fake-environ
 2011-12-29 13:50:55 +01:00
Michael Tremer
c6f13fa77c nagios_nrpe: Disable linking against tcpwrappers. 
tcpwrappers is $%&"$%&/ and just causing headaches. Use the
stupid firewall if you want to block access from remote hosts.
 2011-12-29 13:44:09 +01:00
Michael Tremer
4c3656d99d Merge branch 'master' of ssh://git.ipfire.org/pub/git/ipfire-2.x 2011-12-28 16:46:46 +01:00
Arne Fitzenreiter
99f96fa93d squid: update to 3.1.18. 
enabled polish and russian error messages.
 2011-12-18 13:30:26 +01:00
Michael Tremer
b848d53c84 Build preload lib to fake output of uname. 2011-12-11 12:29:46 +01:00
Michael Tremer
4c8608f016 Build preload lib to fake output of uname. 2011-12-11 12:17:48 +01:00
Arne Fitzenreiter
68a3b9024c usb_modeswitch_data: update datebase to 20111023. 2011-12-09 19:22:11 +01:00
Arne Fitzenreiter
44613afdba usb_modeswitch: update to 1.2.0. 2011-12-09 19:21:51 +01:00
Arne Fitzenreiter
561dcd3d99 GeoIP: update database to 6.12.2011. 2011-12-09 15:40:05 +01:00