webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-10 02:55:55 +02:00
Code Issues Packages Projects Releases Wiki Activity
9,933 Commits 2 Branches 1 Tag
36ba4ebe992fd023f9c86efd8a8d66fa0aa751ad
Commit Graph

9933 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Michael Tremer
36ba4ebe99 Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next 2016-04-08 16:16:57 +01:00
Jonatan Schlag
b395d3289d New package ncat. 
Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-04-08 16:12:19 +01:00
Jonatan Schlag
45b7ed8519 Build nmap without ncat. 
Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-04-08 16:12:16 +01:00
Jonatan Schlag
33a24fccc2 Remove the nc symlink from netcat package and rename to gnu-netcat (gnu-netcat is no longer our standard netcat) 
Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-04-08 16:12:14 +01:00
Michael Tremer
78d49152a8 core101: Ship latest changes in CGI files 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-04-08 15:56:14 +01:00
Michael Tremer
0aff7b8196 {proxy,chpasswd}.cgi: Fix a remote code execution vulnerability 
Handcrafted requests with shell commands could be sent to these
CGI files and gain shell access as unprivileged user.

References: #11087

Reported-by: Yann Cam <yann.cam@gmail.com>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-04-08 15:54:53 +01:00
Michael Tremer
f367d5b388 ipinfo.cgi: Remove XSS vulnerability 
References: #11087

Reported-by: Yann Cam <yann.cam@gmail.com>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-04-08 15:54:53 +01:00
Marcel Lorenz
c954b6acdc bwm-ng: update to 0.6.1 
Signed-off-by: Marcel Lorenz <marcel.lorenz@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-04-08 14:59:40 +01:00
Arne Fitzenreiter
31db25e52b dmidecode: fix rootfile. 
symlink is not working at common/arch because the check will seek files.

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2016-04-08 13:38:05 +02:00
Arne Fitzenreiter
fa4ac4f3dd perl-Apache-Htpasswd: fix rootfiles 
Signel-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2016-04-08 13:32:28 +02:00
Michael Tremer
56f2056c67 Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next 2016-04-06 21:48:32 +01:00
Michael Tremer
c899b16e2e squid: Update rootfile 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-04-06 21:48:19 +01:00
Arne Fitzenreiter
9a6be06535 core101: start update. 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2016-04-06 19:57:46 +02:00
Arne Fitzenreiter
9f19223e4e mcelog: new package 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2016-04-06 19:44:34 +02:00
Jonatan Schlag
5a9c93964b New package iperf3 
Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-04-05 23:47:36 +01:00
Matthias Fischer
c07053012f pcre 8.38: latest patches from upstream (LFS) 
* Fix auto-callout (?# comment bug.
* Fix negated POSIX class within negated overall class UCP bug.
* Fix bug for isolated \E between an item and its qualifier
when auto callout is set.
* Give error for regexec with pmatch=NULL and REG_STARTEND set.
* Allow for up to 32-bit numbers in the ordin() function in  pcregrep.
* Fix \Q\E before qualifier bug when auto callouts are enabled.
* Fix /x bug when pattern starts with white space and (?-x).
* Fix copy named substring bug.
* Fix (by hacking) another length computation issue.
* Fix get_substring_list() bug when \K is used in an assertion.
* Fix pcretest bad behaviour for callout in lookbehind.
* Fix workspace overflow for (*ACCEPT) with deeply nested parentheses.
* Yet another duplicate name bugfix by overestimating the
memory needed  (i.e. another hack - PCRE2 has this "properly" fixed).
* Fix pcretest loop for global matching with an ovector size less than 2.
* Fix non-diagnosis of missing assertion after (?(?C).

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-04-05 22:56:33 +01:00
Matthias Fischer
8e6421d78e squid 3.4.14: Bugfix for #4323 (Netfilter broken cross-includes with Linux 4.2) 
For details see: http://bugs.squid-cache.org/show_bug.cgi?id=4323

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-04-05 22:56:04 +01:00
Michael Tremer
bdb319c0ca squid: Patch SQUID-2016:3/CVE-2016-3947 
http://www.squid-cache.org/Advisories/SQUID-2016_3.txt

 Due to a buffer overrun Squid pinger binary is vulnerable to
 denial of service or information leak attack when processing
 ICMPv6 packets.

 This bug also permits the server response to manipulate other
 ICMP and ICMPv6 queries processing to cause information leak.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-04-05 22:52:54 +01:00
Michael Tremer
52b08bc1ea perl-Apache-Htpasswd: New module 
Used to change passwords in Apache's htpasswd files

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-04-04 16:28:09 +01:00
Michael Tremer
6a30a2d4b7 Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next 2016-04-01 19:13:17 +01:00
Michael Tremer
251cde3dfc dmidecode: Move into core system 
This should not be a package

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-04-01 19:12:47 +01:00
Michael Tremer
0dbd30710d dmidecode: Only build on x86 
ARM is obviously not supported

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-04-01 19:11:30 +01:00
Arne Fitzenreiter
b3b5bbb95a Merge branch 'master' into next 2016-04-01 13:29:40 +02:00
Arne Fitzenreiter
b580a05b05 kernel: set pakver to 67 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2016-04-01 08:30:34 +02:00
Arne Fitzenreiter
c91595a143 e1000e: update to 3.3.3 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2016-04-01 08:25:08 +02:00
Arne Fitzenreiter
b64110cfd5 igb: fix hung at dev_get_stats() 
without this igb can bring the whole userspace to hung
with "cpu_stuck for more than 22s". I don't understand
why this bug is set to "wont-fix" at the bugtracker.

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2016-04-01 08:20:36 +02:00
Arne Fitzenreiter
f9855d6d55 igb: update to 5.3.4.4 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2016-04-01 08:13:59 +02:00
Matthias Fischer
8aa205f5fe bind: Update to 9.10.3-P4 
Changelog (excerpt):
[security] Duplicate EDNS COOKIE options in a response could
trigger an assertion failure. (CVE-2016-2088) [RT #41809]

[security] Fix resolver assertion failure due to improper
DNAME handling when parsing fetch reply messages.
(CVE-2016-1286) [RT #41753]

[security] Malformed control messages can trigger assertions
in named and rndc. (CVE-2016-1285) [RT #41666]

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-03-31 13:55:35 +01:00
Matthias Fischer
da0dec75a7 bind: Update to 9.10.3-p3 
Changelog (excerpt):
[bug] Fixed a regression in resolver.c:possibly_mark()
which caused known-bogus servers to be queried
anyway. [RT #41321]

[security] render_ecs errors were mishandled when printing out
a OPT record resulting in a assertion failure.
(CVE-2015-8705) [RT #41397]

[security] Specific APL data could trigger a INSIST.
(CVE-2015-8704) [RT #41396]

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-03-31 13:55:25 +01:00
Jonatan Schlag
4ffb9f95ad New package dmidecode 
Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-03-31 13:43:56 +01:00
Matthias Fischer
dc942e1959 binutils 2.24: Fixes for rootfiles 
Last builds were always complaining about changes in rootfiles...

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-03-31 13:39:46 +01:00
Michael Tremer
f1a015425b pcre: Delete old patches 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-03-31 13:35:57 +01:00
Matthias Fischer
0a0059c3e6 pcre: Update to 8.38 
Bugfix release

For complete changelog see:
http://www.pcre.org/original/changelog.txt

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-03-31 13:35:43 +01:00
Michael Tremer
20f79e190e opus: Build in parallel 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-03-29 21:56:05 +01:00
Michael Tremer
ad77dfeac1 opus: Don't ship development files 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-03-29 21:54:31 +01:00
Jonatan Schlag
02fa48b12c Enable spice support in qemu, add spice as a dependency for qemu and bump qemu version number. 
Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-03-29 21:49:48 +01:00
Jonatan Schlag
8d90174af5 Add all new packages (opus, python-pyparsing, python-six, spice-protocol, spice) to make.sh 
Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-03-29 21:49:45 +01:00
Jonatan Schlag
dc2f6cac63 New package spice 
Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-03-29 21:49:43 +01:00
Jonatan Schlag
7657c08d58 New package spice-protocol (required by spice (only for build)) 
Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-03-29 21:49:38 +01:00
Jonatan Schlag
e54c37bba1 New package python-pyparsing (required by spice (only for build)) 
Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-03-29 21:49:35 +01:00
Jonatan Schlag
ef1798872b New package python-six (required by spice (only for build)) 
Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-03-29 21:48:36 +01:00
Michael Tremer
a9d0172bac opus: Remove whitespace errors 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-03-29 21:48:23 +01:00
Jonatan Schlag
a7775d4dc4 New package opus (required by spice) 
Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-03-29 21:47:19 +01:00
Marcel Lorenz
f56d44e5f2 libxml2: update to 2.9.3 
Contains security fixes and other bug fixes:

CVE-2015-8242 Buffer overead with HTML parser in push mode (Hugh Davenport)
CVE-2015-7500 Fix memory access error due to incorrect entities boundaries (Daniel Veillard)
CVE-2015-7499-2 Detect incoherency on GROW (Daniel Veillard)
CVE-2015-7499-1 Add xmlHaltParser() to stop the parser (Daniel Veillard)
CVE-2015-5312 Another entity expansion issue (David Drysdale)
CVE-2015-7497 Avoid an heap buffer overflow in xmlDictComputeFastQKey (David Drysdale)
CVE-2015-7498 Avoid processing entities after encoding conversion failures (Daniel Veillard)
CVE-2015-8035 Fix XZ compression support loop (Daniel Veillard)
CVE-2015-7942-2 Fix an error in previous Conditional section patch (Daniel Veillard)
CVE-2015-7942 Another variation of overflow in Conditional sections (Daniel Veillard)
CVE-2015-1819 Enforce the reader to run in constant memory (Daniel Veillard)
CVE-2015-7941_2 Cleanup conditional section error handling (Daniel Veillard)
CVE-2015-7941_1 Stop parsing on entities boundaries errors (Daniel Veillard)

Signed-off-by: Marcel Lorenz <marcel.lorenz@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-03-29 14:40:52 +01:00
Jonatan Schlag
8fd9a68ee5 bump ebtables version number 
Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-03-29 14:13:42 +01:00
Jonatan Schlag
ea1cffd50d build ebtables with the new patch (nothing go into usr local) 
Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-03-29 14:13:38 +01:00
Jonatan Schlag
a365d9d04b add a patch for ebtables (to fix the problem with usr local) 
Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-03-29 14:13:35 +01:00
Matthias Fischer
dcea7ef891 nano: Update to 2.5.3 
Contains several bugfixes and improvements, for details see:
http://www.nano-editor.org/dist/v2.5/ChangeLog

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-03-29 13:15:41 +01:00
Arne Fitzenreiter
046894ab7f Merge remote-tracking branch 'origin/master' into next 2016-03-27 22:17:16 +02:00
Arne Fitzenreiter
ae04f2400a memtest: use always precompiled version 
gcc-4.9.3 build a corrupted version

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2016-03-27 11:04:49 +02:00