bpfire

mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-10 02:55:55 +02:00

Author	SHA1	Message	Date
Arne Fitzenreiter	80a2765de5	core145: add files linked against new libpng, libdb also bump cups-filters, ghostscript, minidlna and qemu Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-13 20:44:43 +00:00
Arne Fitzenreiter	bd61ace39b	core145: add gnupg, squid and bump cups they are linked against updated openldap Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-13 18:46:04 +00:00
Arne Fitzenreiter	289a86a320	rootfiles: change MACHINE to xxxMACHINExxx berkeley has a file that nane contain MACHINE wich should not replaced by the build architecture. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-10 17:27:28 +00:00
Arne Fitzenreiter	c6744d67f0	mtools: update rootfile Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-10 07:36:12 +00:00
Arne Fitzenreiter	22fe6d6f6e	berkelay-compat: fix build on aarch64 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 21:11:25 +00:00
Arne Fitzenreiter	d1e20e8ca7	core145: fix firewall rules.pl path Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 19:27:02 +00:00
Arne Fitzenreiter	4c1d6ed23b	berkeley: fix typo Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 19:20:02 +00:00
Arne Fitzenreiter	d561f0d83b	berkeley: update automake before build without build fails on aarch64 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 15:21:27 +00:00
Matthias Fischer	ff7fd5e444	nano: Update to 4.9.2 For details see: https://www.nano-editor.org/news.php Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:29:20 +00:00
Arne Fitzenreiter	098f5bbc07	pcengines-apu-firmware: update to 4.11.0.6 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:29:04 +00:00
Arne Fitzenreiter	63decf77c7	clamav: fix database present check the mame of main.cvd has changed to main.cld on my system. Add both types and also ad bytecode.c?d Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:28:51 +00:00
Arne Fitzenreiter	2e00633faf	core145: add suricata and libhtp Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:27:50 +00:00
Peter Müller	d6d2019fae	Suricata: update to 5.0.3 Release notes (https://suricata-ids.org/2020/04/28/suricata-5-0-3-released/, truncated): This is the first release after Suricata joined the Oss-Fuzz program, leading to discovery of a number of (potential) security issues. We expect that in the coming months we’ll fix more such issues, as the fuzzers increase their coverage and we continue to improve the seed corpus. Feature #3481: GRE ERSPAN Type 1 Support Feature #3613: Teredo port configuration Feature #3673: datasets: add ‘dataset-remove’ unix command Bug #3240: Dataset hash-size or prealloc invalid value logging Bug #3241: Dataset reputation invalid value logging Bug #3342: Suricata 5.0 crashes while parsing SMB data Bug #3450: signature with sticky buffer with subsequent pcre check in a different buffer loads but will never match Bug #3491: Backport 5 BUG_ON(strcasecmp(str, “any”) in DetectAddressParseString Bug #3507: rule parsing: memory leaks Bug #3526: 5.0.x Kerberos vulnerable to TCP splitting evasion Bug #3534: Skip over ERF_TYPE_META records Bug #3552: file logging: complete files sometimes marked ‘TRUNCATED’ Bug #3571: rust: smb compile warnings Bug #3573: TCP Fast Open – Bypass of stateless alerts Bug #3574: Behavior for tcp fastopen Bug #3576: Segfault when facing malformed SNMP rules Bug #3577: SIP: Input not parsed when header values contain trailing spaces Bug #3580: Faulty signature with two threshold keywords does not generate an error and never match Bug #3582: random failures on sip and http-evader suricata-verify tests Bug #3585: htp: asan issue Bug #3592: Segfault on SMTP TLS Bug #3598: rules: memory leaks in pktvar keyword Bug #3600: rules: bad address block leads to stack exhaustion Bug #3602: rules: crash on ‘internal’-only keywords Bug #3604: rules: missing ‘consumption’ of transforms before pkt_data would lead to crash Bug #3606: rules: minor memory leak involving pcre_get_substring Bug #3609: ssl/tls: ASAN issue in SSLv3ParseHandshakeType Bug #3610: defrag: asan issue Bug #3612: rules/bsize: memory issue during parsing Bug #3614: build-info and configure wrongly display libnss status Bug #3644: Invalid memory read on malformed rule with Lua script Bug #3646: rules: memory leaks on failed rules Bug #3649: CIDR Parsing Issue Bug #3651: FTP response buffering against TCP stream Bug #3653: Recursion stack-overflow in parsing YAML configuration Bug #3660: Multiple DetectEngineReload and bad insertion into linked list lead to buffer overflow Bug #3665: FTP: Incorrect ftp_memuse calculation. Bug #3667: Signature with an IP range creates one IPOnlyCIDRItem by signe IP address Bug #3669: Rules reload with Napatech can hang Suricata UNIX manager process Bug #3672: coverity: data directory handling issues Bug #3674: Protocol detection evasion by packet splitting Optimization #3406: filestore rules are loaded without warning when filestore is not enabled Task #3478: libhtp 0.5.33 Task #3514: SMTP should place restraints on variable length items (e.g., filenames) Documentation #3543: doc: add ipv4.hdr and ipv6.hdr Bundled libhtp 0.5.33 Bundled Suricata-Update 1.1.2 Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Acked-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:26:11 +00:00
Peter Müller	257c9b114c	libhtp: update to 0.5.33 (Scanty) release notes: 0.5.33 (27 April 2020) ---------------------- - compression bomb protection - memory handling issue found by Oss-Fuzz - improve handling of anomalies in traffic Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Acked-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:26:00 +00:00
Stephan Feddersen	f3a5a90d74	WIO: wiographs.cgi - New position for back image Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:25:32 +00:00
Stephan Feddersen	eebbe98186	WIO: wio-lib.pl - Patch Bug 12284 - IPSec Connected since information was added Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:25:22 +00:00
Stephan Feddersen	953882ff49	WIO: wio.cgi - Patch Bug 12284 - IPSec Connected since information was added Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:25:07 +00:00
Stephan Feddersen	19b568f119	WIO: wio.fr.pl - some typos were correct by Stéphane Pautrel Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:24:56 +00:00
Stephan Feddersen	b6cfb70a08	New WIO PAK_ver Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:24:46 +00:00
Peter Müller	f250bb04e2	Postfix: update to 3.5.1 Please refer to http://www.postfix.org/announcements/postfix-3.5.1.html for further information. Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:24:31 +00:00
Arne Fitzenreiter	7ca588c8ba	core145: add firewall rules.pl Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:23:49 +00:00
Michael Tremer	c22369a916	firewall: Log accepted connections even when NAT is active Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:21:16 +00:00
Arne Fitzenreiter	17482a3797	core145: add optionsfw.cgi Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:18:48 +00:00
Peter Müller	33389bfe67	optionsfw.cgi: properly translate on/off radio buttons This patch also scrubs a forgotten Smoothwall comment and replaces it by our IPFire template. :-) Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:17:53 +00:00
Peter Müller	33954320f9	graph.pl: fix intendation of user CPU load Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:17:35 +00:00
Peter Müller	a0774e3cc8	system.cgi: properly translate load average graph Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:17:23 +00:00
Arne Fitzenreiter	6b574add3d	core145: add graphs.pl Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:15:51 +00:00
Peter Müller	e01c49b466	graphs.pl: use brackets instead of hypens This simply makes more sense in most languages, as INPUT, OUTPUT and FORWARD are special cases of firewall hits in general. Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:14:01 +00:00
Peter Müller	85a1b7d151	de.pl: mention technical detail regarding new not SYN packets Since an appropriate translation of the firewall hits graph is not possible due to limited space, mentioning "NewNotSYN" at least clarifies the relationship between "Verworfene neue Pakete ohne SYN-Markierung protokollieren" and "NewNotSYN". Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:13:17 +00:00
Peter Müller	eeff238998	en.pl: fix spelling of "SYN" Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:12:46 +00:00
Peter Müller	992f944b3b	graphs.pl: fix spelling of "SYN" This merely is a cosmetic change, but since we are dealing with network packets here, the SYN flag must be capitalised. Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:12:35 +00:00
Matthias Fischer	79c88f5635	tmux: Update to 3.1 For details see: https://raw.githubusercontent.com/tmux/tmux/3.1/CHANGES Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:10:39 +00:00
Arne Fitzenreiter	1cf08de150	core145: add BerkeleyDB, berkeley, berkeley-compat and openldap Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:09:35 +00:00
Michael Tremer	18d000c486	netatalk: New package This package adds a daemon for Apple's File Protocol Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:03:59 +00:00
Michael Tremer	77ed195189	berkeley: Re-add 4.4 as compat package We have loads of packages linked against the older version which is difficult to update. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:03:42 +00:00
Michael Tremer	a3f1e8ee50	berkeley: Update to 5.3.28 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:03:23 +00:00
Michael Tremer	3ca0c6783a	openldap: Update to 2.4.49 This patch removes slapd which is unused in IPFire. Everything linked against the old version needs to be shipped with this update. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:03:02 +00:00
Michael Tremer	918292b668	BerkeleyDB: Update to 0.63 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:02:37 +00:00
Stéphane Pautrel	e0f480cdef	lang: Update French translation * Adds testing and unstable repository via Pakfire * TLS email modes * etc. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:02:10 +00:00
Michael Tremer	abeb95489d	Update translations Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:01:55 +00:00
Arne Fitzenreiter	baf066d6cd	core145: add hyperscan Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 12:01:03 +00:00
Erik Kapfer	b877372d92	hyperscan: Update to version 5.2.1 Several bugfixes, improvements and extra detection has been added. For the full changelog, take a look into here --> https://github.com/intel/hyperscan/blob/master/CHANGELOG.md . Signed-off-by: Erik Kapfer <ummeegge@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 11:54:34 +00:00
Arne Fitzenreiter	d32071c927	core145: add libenvent2 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 11:52:14 +00:00
Peter Müller	9f88095278	Tor: bump package version This is required in order to ship Tor compiled against libevent 2.1.11-stable. Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 11:51:07 +00:00
Peter Müller	bcd854f6c9	libevent2: update to 2.1.11-stable Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 11:50:35 +00:00
Arne Fitzenreiter	2d2ab33358	core145: add libusb Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 11:49:19 +00:00
Peter Müller	0f36d304b9	libusb: update to 1.0.23 Fixes: #11480 Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 11:48:24 +00:00
Erik Kapfer	73735ad99c	OpenVPN: Fix for N2N plausibility checks Fixes #12335 If no N2N name has been set, no directory and config has been created so it can not be deleted. 'goto VPNCONF_ERROR;' has been missing for N2N checks. Fixed also code formatting. Signed-off-by: Erik Kapfer <ummeegge@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-09 11:42:24 +00:00
Stefan Schantl	4bdddf8d11	70-log.menu: Fix ovpnclients section. Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org> Reviewed-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-06 06:03:52 +00:00
Arne Fitzenreiter	a4c89f6d7b	mpd: bump version that is linked against new ffmpeg Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-05-03 16:02:06 +00:00

1 2 3 4 5 ...

14639 Commits