Hi! After looking in the subversion logs I noticed some security updates. E.g.:
[... snipp ...] Openssl security update * and yet another php5 security update release, containing this fixes: - Fixed an integer overflow inside chunk_split() (CVE-2007-2872) - Fixed possible infinite loop in imagecreatefrompng. (CVE-2007-2756) - Fixed ext/filter Email Validation Vulnerability (CVE-2007-1900) - Fixed bug #41492 (CVE-2007-1887) - applied debian's security fixed for 0.9.2.1, because every unpatched version before 0.9.3.1 is vulnerable to three knows security issues (see madwifi.org). upgrade to latest php 4/5 release, because a lot of security related problems gets fixed. to be exact, the following list of CVE's ;) CVE-2007-0988, CVE-2007-1001, CVE-2007-1375, CVE-2007-1376, CVE-2007-1380, CVE-2007-1383, CVE-2007-1453, CVE-2007-1454, CVE-2007-1460, CVE-2007-1461, CVE-2007-1484, CVE-2007-1521, CVE-2007-1522, CVE-2007-1583, CVE-2007-1700, CVE-2007-1717, CVE-2007-1718, CVE-2007-1824, CVE-2007-1889, CVE-2007-1900 [... snipp ...] In my - personal - perspective an access point is a crucial point in the network structure. So why not creating a freewrt-security mailinglist to inform users to replace updated packages (e.g. openssl) to ensure better security ? So long, Andreas. -- "Things that try to look like things often do look more like things than things. Well-known fact." Granny Weatherwax - "Wyrd sisters"
pgpsF06BeyNEr.pgp
Description: PGP signature
_______________________________________________ freewrt-users mailing list freewrt-users@freewrt.org https://www.freewrt.org/lists/listinfo/freewrt-users
