[Ipcop-svn] SF.net SVN: ipcop:[5910] ipcop/trunk

Thu, 06 Oct 2011 23:37:50 -0700 

Revision: 5910
          http://ipcop.svn.sourceforge.net/ipcop/?rev=5910&view=rev
Author:   gespinasse
Date:     2011-10-07 06:37:38 +0000 (Fri, 07 Oct 2011)
Log Message:
-----------
Upgrade openswan to 2.6.36, this fix CVE-2011-380

Modified Paths:
--------------
    ipcop/trunk/config/rootfiles/common/openswan
    ipcop/trunk/lfs/openswan
    ipcop/trunk/updates/2.0.1/ROOTFILES.i486-2.0.1
    ipcop/trunk/updates/2.0.1/information.xml
    ipcop/trunk/updates/2.0.1/setup

Modified: ipcop/trunk/config/rootfiles/common/openswan
===================================================================
--- ipcop/trunk/config/rootfiles/common/openswan        2011-10-07 06:05:26 UTC 
(rev 5909)
+++ ipcop/trunk/config/rootfiles/common/openswan        2011-10-07 06:37:38 UTC 
(rev 5910)
@@ -57,7 +57,6 @@
 usr/libexec/ipsec/setup
 usr/libexec/ipsec/showdefaults
 usr/libexec/ipsec/showhostkey
-usr/libexec/ipsec/showpolicy
 usr/libexec/ipsec/spi
 usr/libexec/ipsec/spigrp
 usr/libexec/ipsec/tncfg
@@ -164,7 +163,6 @@
 #usr/share/man/man8/ipsec_secrets.8
 #usr/share/man/man8/ipsec_showdefaults.8
 #usr/share/man/man8/ipsec_showhostkey.8
-#usr/share/man/man8/ipsec_showpolicy.8
 #usr/share/man/man8/ipsec_spi.8
 #usr/share/man/man8/ipsec_spigrp.8
 #usr/share/man/man8/ipsec_tncfg.8

Modified: ipcop/trunk/lfs/openswan
===================================================================
--- ipcop/trunk/lfs/openswan    2011-10-07 06:05:26 UTC (rev 5909)
+++ ipcop/trunk/lfs/openswan    2011-10-07 06:37:38 UTC (rev 5910)
@@ -33,7 +33,7 @@
 include Config
 
 PKG_NAME   = openswan
-VER        = 2.6.35
+VER        = 2.6.36
 HOST_ARCH  = all
 OTHER_SRC  = yes
 KERNEL_MOD = yes
@@ -59,7 +59,7 @@
 
 $(DL_FILE)                                     = $(DL_FROM)/$(DL_FILE)
 
-$(DL_FILE)_MD5                                 = 
7909a251fbbb807914545b7f42437013
+$(DL_FILE)_MD5                                 = 
b3a1733493520bb18729633b62ef8247
 
 install : $(TARGET)
 

Modified: ipcop/trunk/updates/2.0.1/ROOTFILES.i486-2.0.1
===================================================================
--- ipcop/trunk/updates/2.0.1/ROOTFILES.i486-2.0.1      2011-10-07 06:05:26 UTC 
(rev 5909)
+++ ipcop/trunk/updates/2.0.1/ROOTFILES.i486-2.0.1      2011-10-07 06:37:38 UTC 
(rev 5910)
@@ -135,6 +135,30 @@
 /usr/sbin/openvpn
 /usr/sbin/tcpdump
 ##
+## openswan-2.6.36 (only new files)
+/etc/rc.d/ipsec
+/usr/lib/ipsec/_copyright
+/usr/lib/ipsec/_realsetup
+/usr/lib/ipsec/_startklips
+/usr/libexec/ipsec/_pluto_adns
+/usr/libexec/ipsec/addconn
+/usr/libexec/ipsec/auto
+/usr/libexec/ipsec/barf
+/usr/libexec/ipsec/eroute
+/usr/libexec/ipsec/ikeping
+/usr/libexec/ipsec/klipsdebug
+/usr/libexec/ipsec/pluto
+/usr/libexec/ipsec/ranbits
+/usr/libexec/ipsec/rsasigkey
+/usr/libexec/ipsec/setup
+/usr/libexec/ipsec/showhostkey
+/usr/libexec/ipsec/spi
+/usr/libexec/ipsec/spigrp
+/usr/libexec/ipsec/tncfg
+/usr/libexec/ipsec/verify
+/usr/libexec/ipsec/whack
+/usr/sbin/ipsec
+##
 ## pciutils-3.1.8
 /usr/lib/libpci.so
 /usr/lib/libpci.so.3

Modified: ipcop/trunk/updates/2.0.1/information.xml
===================================================================
--- ipcop/trunk/updates/2.0.1/information.xml   2011-10-07 06:05:26 UTC (rev 
5909)
+++ ipcop/trunk/updates/2.0.1/information.xml   2011-10-07 06:37:38 UTC (rev 
5910)
@@ -7,7 +7,8 @@
             Add firewall logging to logsummary.<br />
             Upgrade acpid to 2.0.12, bind to 9.8.1, dnsmasq to 2.58,
             iptables to 1.4.12.1, iw to 3.1, ntp to 4.2.6p4,
-            openssh to 5.9, openssl to 1.0.0e, pciutils to 3.1.8, pixman to 
0.22.2, tzdata to 2011k,
+            openssh to 5.9, openssl to 1.0.0e, openswan to 2.6.36,
+            pciutils to 3.1.8, pixman to 0.22.2, tzdata to 2011k,
             several Perl CPAN modules.</description>
         <previousversion>2.0.0</previousversion>
         <installdate>INSTALLDATE</installdate>

Modified: ipcop/trunk/updates/2.0.1/setup
===================================================================
--- ipcop/trunk/updates/2.0.1/setup     2011-10-07 06:05:26 UTC (rev 5909)
+++ ipcop/trunk/updates/2.0.1/setup     2011-10-07 06:37:38 UTC (rev 5910)
@@ -74,6 +74,9 @@
 /bin/rm -f /usr/lib/libpci.so.3.1.8
 /bin/rm -f /usr/lib/libpixman-1.so.0.20.2
 
+# being only prove of concept code, should not have been installed by default
+/bin/rm -f /usr/libexec/ipsec/showpolicy
+
 # For new shared libs. May not always be required, but makes sure we do not 
forget
 /sbin/ldconfig
 

This was sent by the SourceForge.net collaborative development platform, the 
world's largest Open Source development site.


------------------------------------------------------------------------------
All of the data generated in your IT infrastructure is seriously valuable.
Why? It contains a definitive record of application performance, security
threats, fraudulent activity, and more. Splunk takes this data and makes
sense of it. IT sense. And common sense.
http://p.sf.net/sfu/splunk-d2dcopy2
_______________________________________________
Ipcop-svn mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/ipcop-svn

Reply via email to