fa10722e72
libffi: modified desc to build on stage 0 allways.
10 years ago
cdea1bb01f
sysvinit: enhanced build to be able live with toybox
10 years ago
6001d3a816
libffi: Updated (3.0.10 -> 3.2.1)
...
Also marked as crosscompilable as newer glib needs it.
10 years ago
a2891bdd3b
iasl: Updated (20120420 -> 20141107) See note.
...
Also marked iasl croscompileable and simplified conf file
taking advantage of the new versions autotools compatibility.
10 years ago
25a9645980
toybox: enhanced to build only whhen needed at stage 1.
10 years ago
80ab3451b7
toybox: enhancen conf to actually build the toybox binary.
10 years ago
d64e47d998
toybox: improved build so that it removes all optimisations, also disabled patch if it is already available.
10 years ago
c8902e2d87
toybox: Added toybox 0.5.1 - An all-in-one Linux command line.
10 years ago
67a1e5e60e
musl: fixed sysvinit package to build
10 years ago
74cec92b13
patch: Updated (2.7.1 -> 2.7.2) SECURITY! (CVE-2015-119)
10 years ago
26e46f1a2e
file: Updated (5.21 -> 5.22) SECURITY! (CVE-2015-9620) and (CVE-2014-9621)
10 years ago
879991d3c5
openssl: Updated (1.0.1j -> 1.0.1k) SECURITY! See note.
...
This update solves eight security issues namingly:
1. DTLS segmentation fault in dtls1_get_record (CVE-2014-3571)
2. DTLS memory leak in dtls1_buffer_record (CVE-2015-0206)
3. no-ssl3 configuration sets method to NULL (CVE-2014-3569)
4. ECDHE silently downgrades to ECDH [Client] (CVE-2014-3572)
5. RSA silently downgrades to EXPORT_RSA [Client] (CVE-2015-0204)
6. DH client certificates accepted without verification [Server] (CVE-2015-0205)
7. Certificate fingerprints can be modified (CVE-2014-8275)
8. Bignum squaring may produce incorrect results (CVE-2014-3570)
URL for this Security Advisory:
https://www.openssl.org/news/secadv_20150108.txt
10 years ago
485b6ccf08
file: Updated (5.16 -> 5.21) SECURITY! (CVE-2014-1943)
10 years ago
17a9d4a927
pv: Updated (1.5.1 -> 1.5.7)
10 years ago
f6971dda35
curl: Updated (7.38.0 -> 7.39.0) SECURITY! (CVE-2014-3707)
10 years ago
58a90ab362
gnutls: Updated (3.2.12.1 -> 3.2.20) SECURITY! (CVE-2014-8564)
10 years ago
fccfa4ec27
yadifa: enhanced package build by enabling optional features
10 years ago
00028b4c1a
yadifa: Updated (1.0.4 -> 2.0.0)
10 years ago
7919ba75c8
yadifa: Updated (1.0.3 -> 1.0.4)
10 years ago
fe60deae3f
pdns: Updated (3.3.1 -> 3.4.1)
10 years ago
6082e04211
haproxy: Updated (1.5.7 -> 1.5.8)
10 years ago
2aad76a786
haproxy: Updated (1.5.6 -> 1.5.7)
10 years ago
9a1c7fd410
haproxy: Updated (1.5.5 -> 1.5.6)
10 years ago
40ef6e552e
haproxy: Updated (1.5.4 -> 1.5.5)
10 years ago
f8aa818a6f
openvpn: Updated (2.3.4 -> 2.3.5)
10 years ago
9ae99a8240
tzdata: Updated (2014h -> 2014i)
10 years ago
ec8aa8cb36
dropbear: Updated (2014.65 -> 2014.66)
10 years ago
d32a1d4b70
repmgr: Updated (1.2.0 -> 2.0.1)
10 years ago
56d25132ce
tar: fixed typo in tar.conf slipped in at previous commit.
10 years ago
71692ec66d
php: Updated (5.4.30 -> 5.4.34)
10 years ago
40ff642066
nginx: Updated (1.6.1 -> 1.6.2) SECURITY! (CVE-2014-3616)
10 years ago
c88ec777cc
nginx: Updated (1.6.0 -> 1.6.1) SECURITY! (CVE-2014-3556)
10 years ago
92ab1e48f3
libxml: fixed build with our older than 1.13 aclocal.
10 years ago
7c286e3626
tar: Updated (1.26 -> 1.28)
10 years ago
caa80173e3
libxml: Updated (2.9.1 -> 2.9.2) SECURITY! (CVE-2014-3660)
10 years ago
cc345d2554
wget: Updated (1.15 -> 1.16) SECURITY! (CVE-2014-4877)
10 years ago
71bfa5c1f0
bash: Updated (4.2.50 -> 4.2.53) SECURITY! (CVE-2014-6278)
10 years ago
31cd467ba6
curl: Updated (7.37.0 -> 7.38.0) SECURITY! (CVE-2014-3613) and (CVE-2014-3620)
10 years ago
2b8ed315d0
linux: added lib64/firmware to the manual flistdel because it is owned by fhs.
10 years ago
a4c83c11e6
openssl: Updated (1.0.1i -> 1.0.1j) SECURITY! (CVE-2014-3513)
...
also (CVE-2014-3567) and (CVE-2014-3568) and other
non security bugfixes.
10 years ago
90a54a2acd
openssh: Updated (6.6p1 -> 6.7p1) See note!
...
NOTE:
This update mitigates the following security issue:
http://seclists.org/fulldisclosure/2014/Oct/35
also it contains updates that make it potentially
incompatible with previous versions, namingly:
Potentially-incompatible changes
* sshd(8): The default set of ciphers and MACs has been altered to
remove unsafe algorithms. In particular, CBC ciphers and arcfour*
are disabled by default.
The full set of algorithms remains available if configured
explicitly via the Ciphers and MACs sshd_config options.
* sshd(8): Support for tcpwrappers/libwrap has been removed.
* OpenSSH 6.5 and 6.6 have a bug that causes ~0.2% of connections
using the curve25519-sha256@libssh.org KEX exchange method to fail
when connecting with something that implements the specification
correctly. OpenSSH 6.7 disables this KEX method when speaking to
one of the affected versions.
10 years ago
346d84c82a
dibbler: Added dibbler 1.0.0RC2 - A portable DHCPv6 implementation.
10 years ago
7b1543d539
npd6: Added npd6 1.1.0 - An IPv6 neighbor proxy daemon
10 years ago
725bc61f78
vserver: removed typo hotfix patch.
...
The patch is not obsolete as the typo that it fixes is still there
but the whole code gets disabled if CONFIG_USER_NS is set to n which
is a requirement for the vserver patch.
10 years ago
9f64efc2b6
linux: removed disabled patches
10 years ago
64ed2dc9b9
bash: Updated (4.2.45 -> 4.2.50) multiple security issues.
...
Including Shellshock solved.
10 years ago
f5ca8678ec
vserver: added a typo hotfix and forcefuly disabled CONFIG_USER_NS.
10 years ago
43aed9ff8e
tzdata: Updated (2014g -> 2014h)
10 years ago
e4f5e30f5c
tzdata: Updated (2014f -> 2014g)
10 years ago
dfbcc137c3
openvpn: Updated (2.3.3 -> 2.3.4)
10 years ago
Nagy Karoly Gabriel