Update to ipsec-tools 0.7.1, fixes CVE-2008-3652
Changes since the 0.6 branch:
0.7.1 - 23 July 2008
o Fixes a memory leak when invalid proposal received
o Some fixes in DPD
o do not set default gss id if xauth is used
o fixed hybrid enabled builds
o fixed compilation on FreeBSD8
o cleanup in network port value manipulation
o gets ports from SADB_X_EXT_NAT_T_[SD]PORT if present in purge_ipsec_sp
i()
o Generates a log if cert validation has been disabled by configuration
o better handling for pfkey socket read errors
o Fixes in yacc / bison stuff
o new plog() macro (reduced CPU usage when logging is disabled)
o Try to works better with huge SPD/SAD
o Corrected modecfg option syntax
o Many other various fixes...
0.7 - 09 August 2007
o Xauth with pre-shared key PSK
o Xauth with certificates
o SHA2 support
o pkcs7 support
o system accounting (utmp)
o Darwin support
o configuration can be reloaded
o Support for UNIQUE generated policies
o Support for semi anonymous sainfos
o Support for ph1id to remoteid matching
o Plain RSA authentication
o Native LDAP support for Xauth and modecfg
o Group membership checks for Xauth and sainfo selection
o Camellia cipher support
o IKE Fragment force option
o Modecfg SplitNet attribute support
o Modecfg SplitDNS attribute support ( server side )
o Modecfg Default Domain attribute support
o Modecfg DNS/WINS server multiple attribute support
This commit is contained in:
manu
parent
d8ccdc851f
commit
2181a05305
3 changed files with 9 additions and 9 deletions
|
|
@ -1,4 +1,4 @@
|
|||
$NetBSD: CHANGES-2008,v 1.1885 2008/08/16 03:20:39 taca Exp $
|
||||
$NetBSD: CHANGES-2008,v 1.1886 2008/08/16 06:55:18 manu Exp $
|
||||
|
||||
Changes to the packages collection and infrastructure in 2008:
|
||||
|
||||
|
|
@ -3215,3 +3215,4 @@ Changes to the packages collection and infrastructure in 2008:
|
|||
Updated databases/ruby-DBD-sqlite to 0.2.2 [taca 2008-08-16]
|
||||
Updated databases/ruby-DBD-sqlite3 to 0.2.2 [taca 2008-08-16]
|
||||
Updated time/ruby-tzinfo to 0.3.9 [taca 2008-08-16]
|
||||
Updates security/ipsec-tools to 0.7.1 [manu 2008-08-16]
|
||||
|
|
|
|||
|
|
@ -1,9 +1,8 @@
|
|||
# $NetBSD: Makefile,v 1.27 2008/01/18 05:09:37 tnn Exp $
|
||||
# $NetBSD: Makefile,v 1.28 2008/08/16 06:55:18 manu Exp $
|
||||
|
||||
DISTNAME= ipsec-tools-0.6.7
|
||||
PKGREVISION= 1
|
||||
DISTNAME= ipsec-tools-0.7.1
|
||||
CATEGORIES= security
|
||||
MASTER_SITES= ${MASTER_SITE_SOURCEFORGE:=ipsec-tools/}
|
||||
MASTER_SITES= ${MASTER_SITE_NETBSD:=ipsec-tools/}
|
||||
EXTRACT_SUFX= .tar.bz2
|
||||
|
||||
MAINTAINER= manu@NetBSD.org
|
||||
|
|
|
|||
|
|
@ -1,5 +1,5 @@
|
|||
$NetBSD: distinfo,v 1.14 2007/04/11 06:51:19 ghen Exp $
|
||||
$NetBSD: distinfo,v 1.15 2008/08/16 06:55:18 manu Exp $
|
||||
|
||||
SHA1 (ipsec-tools-0.6.7.tar.bz2) = ed3a6566409c506d5a7cd82cf263a5b8df3fad55
|
||||
RMD160 (ipsec-tools-0.6.7.tar.bz2) = 97c27922f5be941fd6c69e35e69bed921b9f13e7
|
||||
Size (ipsec-tools-0.6.7.tar.bz2) = 723032 bytes
|
||||
SHA1 (ipsec-tools-0.7.1.tar.bz2) = 7a2ef71ece73710bf9a5ef2f63aacfcea1c58efb
|
||||
RMD160 (ipsec-tools-0.7.1.tar.bz2) = 98c5bb292006fb49eb78133059ee74d0dd3b8122
|
||||
Size (ipsec-tools-0.7.1.tar.bz2) = 784046 bytes
|
||||
|
|
|
|||
Loading…
Reference in a new issue