Navigation:
Browse pkgsrc
(this page)| 2014-03-11 15:05:19 by Jonathan Perkin | Files touched by this commit (350) |
Log message: Remove example rc.d scripts from PLISTs. These are now handled dynamically if INIT_SYSTEM is set to "rc.d", or ignored otherwise. |
| 2014-02-13 00:18:57 by Matthias Scheler | Files touched by this commit (1568) |
Log message: Recursive PKGREVISION bump for OpenSSL API version bump. |
| 2014-01-26 17:59:13 by Matthias Scheler | Files touched by this commit (2) |
Log message: Update "stunnel" package to version 4.56. Changes since 4.55: - Fixed a regression bug introduced in version 4.55 causing random crashes on several platforms, including Windows 7. - Fixed incorrect "stunnel -exit" process synchronisation. - Fixed FIPS detection with new versions of the OpenSSL library. - Failure to open the log file at startup is no longer ignored. |
| 2014-01-26 16:51:54 by Matthias Scheler | Files touched by this commit (1) |
Log message: Fix permissions so taht "etc/stunnel" belongs to the actual \ "root" user and not to the user that build the package. Bump package revision because of this fix. |
| 2013-10-31 16:58:31 by Jonathan Perkin | Files touched by this commit (1) |
Log message: Fix PKG_USERS usage. |
| 2013-07-12 12:45:05 by Jonathan Perkin | Files touched by this commit (181) |
Log message: Bump PKGREVISION of all packages which create users, to pick up change of sysutils/user_* packages. |
| 2013-05-31 14:42:58 by Thomas Klausner | Files touched by this commit (2880) |
Log message: Bump all packages for perl-5.18, that a) refer 'perl' in their Makefile, or b) have a directory name of p5-*, or c) have any dependency on any p5-* package Like last time, where this caused no complaints. |
2013-03-06 23:50:31 by Jean-Yves Migeon | Files touched by this commit (2) |  |
Log message:
Update stunnel to 4.55. Critical update that fixes CVE-2013-1762.
Changelog:
Version 4.55, 2013.03.03, urgency: HIGH:
Security bugfix
OpenSSL updated to version 1.0.1e in Win32/Android builds.
Buffer overflow vulnerability fixed in the NTLM authentication of the \
CONNECT protocol negotiation. See https://www.stunnel.org/CVE-2013-1762.html for \
details.
New features
SNI wildcard matching in server mode.
Terminal version of stunnel (tstunnel.exe) build for Win32.
Bugfixes
Fixed write half-close handling in the transfer() function (thx to \
Dustin Lundquist).
Fixed EAGAIN error handling in the transfer() function (thx to Jan Bee).
Restored default signal handlers before execvp() (thx to Michael Weiser).
Fixed memory leaks in protocol negotiation (thx to Arthur Mesh).
Fixed a file descriptor leak during configuration file reload (thx to \
Arthur Mesh).
Closed SSL sockets were removed from the the transfer() c->fds poll.
Minor fix in handling exotic inetd-mode configurations.
WCE compilation fixes.
IPv6 compilation fix in protocol.c.
Windows installer fixes.
|
| 2013-02-07 00:24:19 by Jonathan Perkin | Files touched by this commit (1351) | |
Log message: PKGREVISION bumps for the security/openssl 1.0.1d update. |
| 2013-01-09 00:45:40 by Jean-Yves Migeon | Files touched by this commit (2) | |
Log message:
Update to 4.54. Changelog:
New Win32 features
FIPS module updated to version 2.0.
OpenSSL DLLs updated to version 1.0.1c.
zlib DLL updated to version 1.2.7.
Engine DLLs added: 4758cca, aep, atalla, capi, chil, cswift, gmp, gost, \
nuron, padlock, sureware, ubsec.
Other new features
"session" option renamed to more readable \
"sessionCacheTimeout". The old name remains accepted for backward \
compatibility.
New service-level "sessionCacheSize" option to control session \
cache size.
New service-level option "reset" to control whether TCP RST \
flag is used to indicate errors. The default value is "reset = yes".
New service-level option "renegotiation" to disable SSL \
renegotiation. This feature is based on a public-domain patch by Janusz \
Dziemidowicz.
New FreeBSD socket options: IP_FREEBIND, IP_BINDANY, IPV6_BINDANY (thx \
to Janusz Dziemidowicz).
New parameters to configure TLS v1.1/v1.2 with OpenSSL version 1.0.1 or \
higher (thx to Henrik Riomar).
Bugfixes
Fixed "Application Failed to Initialize Properly (0xc0150002)" \
error.
Fixed missing SSL state debug log entries.
Fixed a race condition in libwrap code resulting in random stalls (thx \
to Andrew Skalski).
Session cache purged at configuration file reload to reduce memory leak. \
Remaining leak of a few kilobytes per section is yet to be fixed.
Fixed regression bug in "transparent = destination" \
functionality (thx to Stefan Lauterbach). This bug was introduced in stunnel \
4.51.
"transparent = destination" is now a valid endpoint in inetd mode.
"delay = yes" fixed to work even if specified *after* \
"connect" option.
Multiple "connect" targets fixed to also work with delayed \
resolver.
The number of resolver retries of EAI_AGAIN error has been limited to 3 \
in order to prevent infinite loops.
Fix some directory owner/group rights and take over maintainership as I
use it almost daily.
|
New packages: