webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-05-11 09:48:24 +02:00
Code Issues Packages Projects Releases Wiki Activity
10,488 Commits 2 Branches 1 Tag
fcffac1340f61923786af8a860c12056a9ef3706
Commit Graph

873 Commits

Author SHA1 Message Date
Michael Tremer
c3e1954331 strongswan: Update to 5.3.2 
This release fixes a security issue filed under CVE-2015-4171.

https://www.strongswan.org/blog/2015/06/08/strongswan-vulnerability-(cve-2015-4171).html

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-06-12 17:15:51 +02:00
Arne Fitzenreiter
3d9b9dd30e Revert "Python: Update to 2.7.9" 
This reverts commit 765423cebe.

build fails.
 2015-06-10 14:49:40 +02:00
Michael Tremer
41ed4795fe strongswan: Update to 5.3.1 
Fixed a denial-of-service and potential remote code execution vulnerability
triggered by IKEv1/IKEv2 messages that contain payloads for the respective
other IKE version. Such payload are treated specially since 5.2.2 but because
they were still identified by their original payload type they were used as
such in some places causing invalid function pointer dereferences.
The vulnerability has been registered as CVE-2015-3991.

https://www.strongswan.org/blog/2015/06/01/strongswan-vulnerability-%28cve-2015-3991%29.html

The increased buffer size has been fixed in bug #943 upstream
  https://wiki.strongswan.org/issues/943
 2015-06-04 19:26:44 +02:00
Michael Tremer
1292598207 Merge remote-tracking branch 'mfischer/python' into next 2015-05-26 14:30:27 +02:00
Michael Tremer
efbd3a9abc dnsmasq: Import patches from upstream 2015-05-20 23:35:38 +02:00
Matthias Fischer
bbe4537de3 dnsmasq: again - latest upstream patches 2015-05-17 00:39:39 +02:00
Matthias Fischer
7cbd533265 dnsmasq: import latest upstream patches 2015-05-09 21:21:34 +02:00
Michael Tremer
d81456730c strongswan: Use --wait option for iptables commands 2015-05-07 22:40:08 +02:00
Arne Fitzenreiter
ad39b30985 qemu: update to 2.3.0 2015-05-06 19:12:06 +02:00
Arne Fitzenreiter
5ea73f5660 dracut: add sdhci-pci module to initrd. 
fixes #10792
 2015-05-05 22:34:30 +02:00
Michael Tremer
afa91a4df5 fireinfo: Fix SEGV on QEMU without KVM 2015-05-04 16:02:39 +02:00
Michael Tremer
6caea1086d Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next 2015-04-29 11:26:35 +02:00
Michael Tremer
85a6f39c39 Merge remote-tracking branch 'stevee/core-90-ddnsctrl' into next 2015-04-29 11:26:20 +02:00
Michael Tremer
5f20677864 dnsmasq: Import more upstream fixes 
Fixes: #10786

Fixes DNSSEC validation when falling back to TCP.
 2015-04-29 11:24:23 +02:00
Stefan Schantl
2bcd81934d ddns: Add more upstream patches. 2015-04-28 21:06:19 +02:00
Arne Fitzenreiter
0e2f9b011b openssl: disable ssse3 on amd cpu's 
amd with ssse3 (bulldozer and fusion) has serious performance problems
with the vpaes code. (-evp is 40% slower)
 2015-04-28 20:51:03 +02:00
Michael Tremer
1cbc5ca0a4 Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next 2015-04-28 11:14:45 +02:00
Arne Fitzenreiter
f68ae02d39 openssl: auto enable padlock engine. 2015-04-27 22:15:20 +02:00
Michael Tremer
30ca037fb3 glibc: Fix CVE-2013-7423 and CVE-2015-1781 
CVE-2013-7423: Fix invalid file descriptor reuse while sending DNS query
CVE-2015-1781: Fix buffer overflow in gethostbyname_r with misaligned buffer
 2015-04-27 21:20:46 +02:00
Michael Tremer
ffe32bf7ae strongswan: Increase stroke buffer size to 8k 2015-04-27 20:58:45 +02:00
Michael Tremer
6ac0a1a38f dnsmasq: Import latest fixes from upstream 2015-04-27 18:10:34 +02:00
Stefan Schantl
1b1401b9df Drop obsolete ddns patches. 2015-04-26 17:14:36 +02:00
Stefan Schantl
b0b8729a32 ddns: Add upstream patch for fixing bug 10815. 2015-04-26 17:12:55 +02:00
Michael Tremer
37de68c965 openssl: Enable all assembly optimisations build SSE2 optimised version 
Fixes #10814
 2015-04-23 13:33:35 +02:00
Michael Tremer
1245aa72df openssl: Fix build by updating the patches 2015-04-19 11:59:19 +02:00
Michael Tremer
d54a2ce452 dnsmasq: Import more patches from upstream 2015-04-18 16:11:29 +02:00
Arne Fitzenreiter
758d959652 Merge remote-tracking branch 'origin/master' into next 2015-04-13 17:11:41 +02:00
Michael Tremer
18bbd71bdc collectd: Ignore any errors if openvpn status files are missing 2015-04-13 15:45:52 +02:00
Arne Fitzenreiter
d4ee6f0813 Merge remote-tracking branch 'origin/master' into next 2015-04-12 22:53:06 +02:00
Michael Tremer
abd93c4241 collectd: Ignore errors from OpenVPN configuration file 2015-04-12 22:44:50 +02:00
Arne Fitzenreiter
0fbba54e82 Merge branch 'master' into next 
Conflicts:
	lfs/monit
 2015-04-11 21:58:09 +02:00
Arne Fitzenreiter
ad592fb878 backports: rt2x00 supress more queue warnings 2015-04-09 15:34:14 +02:00
Arne Fitzenreiter
9ee54998cb hostapd: increase EAPOL timeouts 
Android clients need more time because sleep modes and low wlan interrupt priority.
 2015-04-09 15:32:42 +02:00
Michael Tremer
263d0a71a9 dnsmasq: Import latest patches from upstream 2015-04-09 14:35:47 +02:00
Michael Tremer
979c846343 collectd: Fix typo in "derive" 2015-04-09 14:33:54 +02:00
Michael Tremer
c6ce1e7ecb dnsmasq: Import latest patches from upstream 2015-04-04 15:23:17 +02:00
Michael Tremer
6ecbdec1b7 Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next 2015-03-31 00:59:59 +02:00
Michael Tremer
df5fbff531 strongswan: Update to 5.3.0 
Enable support for CCM and CTR
 2015-03-31 00:59:28 +02:00
Michael Tremer
b34ba990aa Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next 2015-03-31 00:55:47 +02:00
Michael Tremer
23e591db40 strongswan: Update to 5.3.0 
Enable support for CCM and CTR
 2015-03-31 00:55:31 +02:00
Arne Fitzenreiter
0a565414dd kernel: backports: rt2800usb: suppress more queue warnings 2015-03-29 22:43:56 +02:00
Arne Fitzenreiter
5b3bd19f31 kernel: fix hyperv net driver for legacy hyperv 2008. 2015-03-29 19:46:14 +02:00
Arne Fitzenreiter
a8d9f5cec1 Merge remote-tracking branch 'origin/next' into kernel-test 
Conflicts:
	lfs/openssl-compat
 2015-03-29 19:33:04 +02:00
Arne Fitzenreiter
fffb0165b6 kernel: update to 3.14.37 2015-03-29 19:29:55 +02:00
Arne Fitzenreiter
5f7a8b7e1c openssl: Fix soname version of build 2015-03-20 11:17:25 +01:00
Arne Fitzenreiter
79cfa337b1 Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next 2015-03-19 19:19:32 +01:00
Arne Fitzenreiter
2acac5421f cyrus-sasl: Update to version 2.1.26 2015-03-19 19:18:49 +01:00
Michael Tremer
506e4b9671 openssl: Rebase "disable SSLv2, SSLv3" patch 2015-03-19 16:04:35 +01:00
Michael Tremer
498b3cd3a8 openssl: Remove "fix parallel build" patch 2015-03-19 16:03:58 +01:00
Michael Tremer
a0297133a1 openssl: Update weak-ciphers and build patches 2015-03-19 15:54:43 +01:00