webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-23 09:22:59 +02:00
Code Issues Packages Projects Releases Wiki Activity
4,978 Commits 2 Branches 1 Tag
d9efec0d7bc7bd6c0588ba978f6331a3449ddc8d
Commit Graph

708 Commits

Author SHA1 Message Date
Arne Fitzenreiter
102d54873b apache: update to 2.2.23. 
Fixed in Apache httpd 2.2.23

low: XSS in mod_negotiation when untrusted uploads are supported CVE-2012-2687
    Note: This issue is also known as CVE-2008-0455.

low: insecure LD_LIBRARY_PATH handling CVE-2012-0883

http://httpd.apache.org/security/vulnerabilities_22.html
 2012-09-30 22:34:41 +02:00
Michael Tremer
1cded5eefd dhcp: Fix installation of configuration files. 2012-09-21 14:06:37 +02:00
Michael Tremer
6de056b1de Rootfile update. 2012-09-18 16:33:47 +02:00
Michael Tremer
082b492ecc Merge branch 'dhcpd' into next 2012-09-17 21:41:23 +02:00
Michael Tremer
78ab9b049f dhcp: Update to 4.2.2. 2012-09-17 21:41:05 +02:00
Michael Tremer
26c8b40955 Merge remote-tracking branch 'dweismueller/telnet' into next 
Conflicts:
	make.sh
 2012-09-17 19:10:23 +02:00
Arne Fitzenreiter
dcd949d821 usb_modeswitch_data: update to 20120815. 2012-09-03 09:58:28 +02:00
Arne Fitzenreiter
f5dc4b2b2f configroot: fix rootfile again. 2012-09-03 09:02:26 +02:00
Arne Fitzenreiter
2f062ab1af configroot: update rootfile. 2012-09-02 17:32:28 +02:00
Michael Tremer
d23fc91220 Add a script to create VLAN interfaces (on console). 2012-08-24 15:58:38 +02:00
Michael Tremer
a53c3c2621 minidlna: Add initscript and all the other fancy install stuff. 2012-08-24 15:37:36 +02:00
Daniel Weismueller
19b630e4ca inetutils: don't compile telnet anymore. 2012-08-09 16:55:31 +02:00
Michael Tremer
45fba4eaff nasm: Update to 2.10.03. 
nasm >= 2.0 is required to build flac.
 2012-08-07 20:21:06 +02:00
Michael Tremer
3c4eaa3d2d glibc: Ship the icon data. 
This is required that the iconv function (part of glibc) works
properly.
Those files also need to be shipped with the next core update.
 2012-08-02 18:24:32 +02:00
Michael Tremer
75bc929eb9 Update connections.cgi: Show byte counters. 
The connections.cgi file has been rewritten to read
the needed information directly from the kernel.

Byte counters have been added which show how much data
has been transmitted over one connection in each
direction.
 2012-07-18 12:21:23 +02:00
Arne Fitzenreiter
50ffddd92b usb-modeswitch-data: update database to 20120531. 2012-07-06 22:51:49 +02:00
Arne Fitzenreiter
eba8a82614 squid: update to 3.1.20. 2012-07-03 13:41:13 +02:00
Erik Kapfer
6140e7e0c2 openvpn: Introduce CCD. 2012-06-20 19:58:38 +02:00
Jan Lentfer
f48a9af787 pam: Update 0.99.10.0. 
The prior verion in base system did not build with
the new version of bison and flex.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2012-06-17 17:00:10 +02:00
Jan Lentfer
1477d98572 flex: Update to 2.5.35. 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2012-06-17 17:00:08 +02:00
Jan Lentfer
f32b3974b4 m4: Update to 1.4.16. 
This is a prerequisite for updating bison and flex

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2012-06-17 17:00:05 +02:00
Jan Lentfer
5794d15497 bison: Update to 2.5.1. 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2012-06-17 17:00:00 +02:00
Arne Fitzenreiter
a526de38bc strongswan: update to 4.6.3. 2012-05-05 23:25:07 +02:00
Arne Fitzenreiter
6bdc390235 python: update to 2.7.3. 2012-05-05 23:23:53 +02:00
Arne Fitzenreiter
8f17b54f96 openssl: security update to 0.9.8w. (CVE-2012-2131). 
SN1 BIO incomplete fix (CVE-2012-2131)
=======================================

It was discovered that the fix for CVE-2012-2110 released on 19 Apr
2012 was not sufficient to correct the issue for OpenSSL 0.9.8.

Please see http://www.openssl.org/news/secadv_20120419.txt for details
of that vulnerability.

This issue only affects OpenSSL 0.9.8v.  OpenSSL 1.0.1a and 1.0.0i
already contain a patch sufficient to correct CVE-2012-2110.

Thanks to Red Hat for discovering and fixing this issue.

Affected users should upgrade to 0.9.8w.

References
==========

URL for this Security Advisory:
http://www.openssl.org/news/secadv_20120424.txt
 2012-05-02 19:42:02 +02:00
Arne Fitzenreiter
b7be421741 usb_modeswitch: update to 1.2.3. 2012-03-10 17:37:23 +01:00
Arne Fitzenreiter
b21c471b73 strongswan: update to 4.6.2. 
fixes #10037
 2012-03-10 17:32:31 +01:00
Michael Tremer
54fd05358b Import VPN changes by the Special Interest Group. 
See here for more details:
  http://lists.ipfire.org/pipermail/sig-vpn/2012-March/000031.html
 2012-03-06 22:53:07 +01:00
Michael Tremer
9e7e1c143d Merge branch 'libpng-update' into next 2012-03-06 22:24:28 +01:00
Michael Tremer
eb12fca108 openvpn: Update to 2.2.2. 
Add --enable-password-save switch that was requested by the
community.

See bug #10036.
 2012-02-25 12:10:25 +01:00
Michael Tremer
d02a7f9d05 vim: Create configuration files for better usage. 
This commits also ships all syntax highlighting information
and among others in /usr/share/vim.

References bug #10021.
 2012-02-08 22:35:30 +01:00
Arne Fitzenreiter
7e4506e9c7 apache: security update to 2.2.22. 
Fix six low and moderate security flaws. Most of them are not important for ipfire.
low: mod_setenvif .htaccess privilege escalation CVE-2011-3607
low: mod_log_config crash CVE-2012-0021
low: scoreboard parent DoS CVE-2012-0031
moderate: mod_proxy reverse proxy exposure CVE-2011-4317
moderate: error responses can expose cookies CVE-2012-0053
moderate: mod_proxy reverse proxy exposure CVE-2011-3368

For details check: http://httpd.apache.org/security/vulnerabilities_22.html
 2012-02-08 07:43:48 +01:00
Arne Fitzenreiter
144815dabe php: security update to 5.3.10. 
5.3.10 Fixes arbitary remote code execution CVE-2012-0830
5.3.9 Fixes for CVE-2011-4566 and CVE-2011-4885
...
 2012-02-05 19:05:18 +01:00
Michael Tremer
aba19c3022 libpng: Update to 1.2.46. 
Fixes several security issues from 2011.
 2012-02-04 11:17:22 +01:00
Arne Fitzenreiter
834ca786da initscripts: rootfile update. 2012-01-26 17:39:00 +01:00
Arne Fitzenreiter
d8799d9280 Crypt-PasswdMD5: add new perl modul to use apache md5 passwords. 2012-01-21 20:11:01 +01:00
Arne Fitzenreiter
120cedf285 python-m2crypto: rootfile update. 2012-01-21 17:17:35 +01:00
Arne Fitzenreiter
18252bf794 usb-modeswitch: update to 1.2.2 and data 20120120. 2012-01-21 17:10:05 +01:00
Arne Fitzenreiter
a6d0d790eb flash-image: add automatic resizing /var partition at first boot. 2012-01-20 08:02:31 +01:00
Arne Fitzenreiter
920b610fa0 toolchain: remove old uname hack. 2011-12-31 02:45:19 +01:00
Arne Fitzenreiter
99f96fa93d squid: update to 3.1.18. 
enabled polish and russian error messages.
 2011-12-18 13:30:26 +01:00
Arne Fitzenreiter
68a3b9024c usb_modeswitch_data: update datebase to 20111023. 2011-12-09 19:22:11 +01:00
Arne Fitzenreiter
6c4eff0512 fw_ath9k_htc: updated firmware to 1.3. 2011-12-09 15:39:08 +01:00
Arne Fitzenreiter
c6b9920368 tzdata: rootfile update. 2011-12-03 23:35:58 +01:00
Arne Fitzenreiter
f56a85b243 tzdata: rootfile update. 2011-12-03 16:28:36 +01:00
Arne Fitzenreiter
89f3d66c24 snort: update to 2.9.1.2. 2011-11-27 12:50:19 +01:00
Arne Fitzenreiter
bc8fe5ffbb support build of different arm kernels and add verstile cfg. 2011-10-12 16:56:38 +00:00
Arne Fitzenreiter
346bd906f2 removed libevent2 from common rootfiles (again?). 2011-10-05 20:22:53 +02:00
Arne Fitzenreiter
7f7a741d0f rootfile updates: pakfire, crda, stage2. 2011-10-04 19:29:01 +02:00
Arne Fitzenreiter
c9ccb5c917 crda: rootfile update. 2011-10-03 14:28:57 +02:00