Christian Wiese
c2f3fb2f48
vserver: Updated kernel patch (3.4.24 -> 3.4.30)
12 years ago
Gernot Tenchio
34cb48494c
gnutls: Updated (2.12.22 -> 2.12.23)
...
See: Lucky Thirteen: Breaking the TLS and DTLS Record Protocols
http://www.isg.rhul.ac.uk/tls/
12 years ago
Gernot Tenchio
3f0ebf89a6
gnutls: Updated (2.12.20 -> 2.12.22)
12 years ago
Gernot Tenchio
e271bc1fa4
p11-kit: Added p11-kit 0.14 - Library for loading and sharing PKCS#11 modules
12 years ago
Christian Wiese
a159e62a2c
frandom: Added frandom 1.1 - A fast Linux kernel random number generator
12 years ago
Christian Wiese
474d0821b2
cryptsetup: Updated (1.5.1 -> 1.6.0)
12 years ago
Christian Wiese
a7a97a987c
cryptsetup: improved to select an alternative crypto backend if libgcrypt is not installed
12 years ago
Christian Wiese
ca5da9976b
cryptsetup: Updated (1.4.3 -> 1.5.1)
12 years ago
Christian Wiese
5915b141e3
openssl: Updated (1.0.1d -> 1.0.1e) (CVE-2013-0169)
...
This bugfix release corrects the fix for CVE-2013-0169 done in openssl 1.0.1d.
12 years ago
Christian Wiese
14ec2ff0f5
openssl: Updated (1.0.1c -> 1.0.1d) (SECURITY UPDATE!)
...
Fixing following CVE's
- SSL, TLS and DTLS Plaintext Recovery Attack (CVE-2013-0169)
- TLS 1.1 and 1.2 AES-NI crash (CVE-2012-2686)
- OCSP invalid key DoS issue (CVE-2013-0166)
Reference: http://www.openssl.org/news/secadv_20130205.txt
12 years ago
Nagy Karoly Gabriel
46a5799db0
util-vserver: Updated (0.30.216-pre3029 -> 0.30.216-pre3038)
12 years ago
Christian Wiese
45744f036b
libgpg-error: changed build prio (109.000 -> 108.800)
...
Note:
libgpg-error needs to be build before libgcrypt
12 years ago
Christian Wiese
0965288cca
libgpg-error: changed to build at cross stage if requested
12 years ago
Christian Wiese
366864eb66
libgcrypt: changed build prio (109.100 -> 108.900)
12 years ago
Christian Wiese
416fbfa5f6
libgcrypt: changed to build at cross stage if requested
12 years ago
Christian Wiese
badaf78510
gnutls: changed to build at cross stage if requested
12 years ago
Christian Wiese
f11be48563
nettle: changed to build at cross stage if requested
12 years ago
Christian Wiese
f0824cc295
openssh: changed to not enable X11Forwarding by default
12 years ago
Christian Wiese
8621bd2ddb
openssh: remove obsolete patch for setting UsePrivilegeSeparation
...
Note:
By default UsePrivilegeSeparation is set to "sandbox" which enforces additional
restrictions to the pre-authentication unprivileged process.
12 years ago
Christian Wiese
f6f4a5045a
openssh: Updated (6.0p1 -> 6.1p1)
12 years ago
Christian Wiese
03ca5b06fb
vserver: Updated kernel patch (3.4.23-vs2.3.3.9 -> 3.4.24-vs2.3.3.9)
12 years ago
Christian Wiese
1bbfd5831a
vserver: Updated kernel patch (3.4.22-vs2.3.3.9 -> 3.4.23-vs2.3.3.9)
12 years ago
Gernot Tenchio
40bad9cb58
csprng: Added csprng 1.1 - Cryptographically secure pseudorandom number generator
12 years ago
Christian Wiese
6dc3fc0fca
vserver: Updated (2.3.3.8 -> 2.3.3.9)
12 years ago
Christian Wiese
0a50664a40
radsecproxy: Updated (1.6 -> 1.6.2)
12 years ago
Christian Wiese
ca7f167d93
freeradius: improved to build with '--with-udpfromto' to always reply from the IP the request was sent to
...
Note:
This is essential for "multi-homed" servers listening on multiple IPs.
12 years ago
Christian Wiese
470ca9c322
freeradius: changed to not install rlm_*.{a,la} files of the modules which makes no sense anyway
12 years ago
Christian Wiese
e9872c364c
freeradius: changed to build rlm_unix again
12 years ago
Christian Wiese
effbaf3ec1
freeradius: Updated (2.1.12 -> 2.2.0)
12 years ago
Nagy Karoly Gabriel
b4a718b84b
util-vserver: made to compile with new gcc>4.7
12 years ago
Gernot Tenchio
02dc17bcd3
clamav: Updated (0.97.5 -> 0.97.6)
12 years ago
Gernot Tenchio
2b467fce25
clamav: Updated (0.97.4 -> 0.97.5)
12 years ago
Christian Wiese
85471ee666
libprelude: fixed to build with glibc >= 2.16 where 'gets' is not defined in the gnulib anymore
12 years ago
Christian Wiese
4ecd1e4732
gnutls: fixed to build with glibc >= 2.16 where 'gets' is not defined in the gnulib anymore
12 years ago
Christian Wiese
dbc9e020d3
vserver: Updated (2.3.3.6 -> 2.3.3.8)
12 years ago
Christian Wiese
209929898e
heimdal: changed to use readline if available
...
Note:
This also avoids the installation of the included libeditline.
13 years ago
Gernot Tenchio
e59a6de47c
msktutil: Added msktutil 0.4 - Microsoft Keytab Utility
13 years ago
Christian Wiese
8d93a1ecc7
vserver: Updated (2.3.3.5 -> 2.3.3.6)
13 years ago
Christian Wiese
8d250f96c7
vserver: Updated (2.3.2.3 -> 2.3.3.5)
13 years ago
Christian Wiese
e922c7991e
gnutls: Updated (2.12.19 -> 2.12.20)
13 years ago
Christian Wiese
0baabe115b
openssl: improved to enable kerberos support if available
...
Note:
Despite the fact that openssl's "Configure" script seems to offer support
for MIT Kerberos and Heimdal only the MIT flavour is officially supported!
13 years ago
Christian Wiese
63a44388cd
openssl: changed to also build at stage 3
...
Note:
This is needed to solve the possible circular dependency with kerberos
implementations like MIT kerberos (krb5 package) or Heimdal (heimdal
package).
13 years ago
Christian Wiese
9b684e6938
cryptsetup: Updated (1.4.2 -> 1.4.3)
13 years ago
Christian Wiese
2d3d1ef361
heimdal: improved to use systems sqlite if available
13 years ago
Christian Wiese
d244a40194
heimdal: replaced patch for not installing hcrypto related manpages
13 years ago
Christian Wiese
53bc361604
heimdal: fixed to also patch toplevel Makefile.am to not install kerberized applications
13 years ago
Christian Wiese
4ca13a445b
heimdal: changed to not install catpages
13 years ago
Christian Wiese
d7c23bf363
heimdal: changed to not inject -D_REENTRANT anymore
...
Note:
-D_REENTRANT is used automatically when using compiling with -pthread
13 years ago
Christian Wiese
06faa53292
heimdal: fixed pthread detection when using linux 3.x kernels
13 years ago
Christian Wiese
910e8e3cad
krb5: Updated (1.10.1 -> 1.10.2)
13 years ago