- État Nouveau
- Pourcentage achevé
- Type Évolution
- Catégorie Freebox OS
- Assignée à Personne
- Système d'exploitation Tous
- Sévérité Critique
- Priorité Très Basse
- Basée sur la version 4.7.6
- Due pour la version Non décidée
-
Échéance
Non décidée
- Votes
- Privée
Concerne le projet: Freebox Server (Ultra V9/ Pop V8/ Delta V7 / Revolution V6 / Mini 4K)
Ouverte par Neustradamus_ - 08/01/2021
Dernière modification par Neustradamus_ - 07/06/2023
Ouverte par Neustradamus_ - 08/01/2021
Dernière modification par Neustradamus_ - 07/06/2023
FS#33690 - [Tous les Freebox Server] Demande de mise à jour (faille critique) : ppp 2.4.8 -> 2.4.9 | 2.5.0
Afin de résoudre certains problèmes de connexions, je redemande la mise à jour de ppp 2.4.8 → 2.4.9 (2021-01-04) | 2.5.0 (2023-04-04) et ainsi corriger de failles de sécurité (vulnérabilités) nommées CVEs en même temps
→ https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=ppp
→ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4603
→ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8597
→ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3310
→ https://github.com/paulusmack/ppp
→ https://download.samba.org/pub/ppp/
What's new in ppp-2.5.0. ************************ The 2.5.0 release is a major release of pppd which contains breaking changes for third-party plugins, a complete revamp of the build-system and that allows for flexibility of configuring features as needed. In Summary: * Support for PEAP authentication by Eivind Næss and Rustam Kovhaev * Support for loading PKCS12 certificate envelopes * Adoption of GNU Autoconf / Automake build environment, by Eivind Næss and others. * Support for pkgconfig tool has been added by Eivind Næss. * Bunch of fixes and cleanup to PPPoE and IPv6 support by Pali Rohár. * Major revision to PPPD's Plugin API by Eivind Næss. - Defines in which describes what features was included in pppd - Functions now prefixed with explicit ppp_* to indicate that pppd functions being called. - Header files were renamed to better align with their features, and now use proper include guards - A pppdconf.h file is supplied to allow third-party modules to use the same feature defines pppd was compiled with. - No extern declarations of internal variable names of pppd, continued use of these extern variables are considered unstable. * Lots of internal fixes and cleanups for Radius and PPPoE by Jaco Kroon * Dropped IPX support, as Linux has dropped support in version 5.15 for this protocol. * Many more fixes and cleanups. * Pppd is no longer installed setuid-root. * New pppd options: - ipv6cp-noremote, ipv6cp-nosend, ipv6cp-use-remotenumber, ipv6-up-script, ipv6-down-script - -v, show-options - usepeerwins, ipcp-no-address, ipcp-no-addresses, nosendip * On Linux, any baud rate can be set on a serial port provided the kernel serial driver supports that. Note that if you have built and installed previous versions of this package and you want to continue having configuration and TDB files in /etc/ppp, you will need to use the --sysconfdir option to ./configure.
What’s new in ppp-2.4.9. * Support for new EAP (Extensible Authentication Protocol) methods: - Support for EAP-TLS, from Jan Just Keijser and others - Support for EAP-MSCHAPv2, from Eivind Næss, Thomas Omerzu, Tijs Van Buggenhout and others * New pppd options: - chap-timeout - chapms-strip-domain - replacedefaultroute - noreplacedefaultroute - ipv6cp-accept-remote - lcp-echo-adaptive - ip-up-script - ip-down-script - ca - capath - cert - key - crl-dir - crl - max-tls-version - need-peer-eap * Fixes for CVE-2020-8597 and CVE-2015-3310. * libpcap is now required when compiling on Linux (previously, if libpcap was not present, pppd would be compiled without packet filtering support). * The rp-pppoe plugin has been renamed to pppoe, to distinguish it from the upstream rp-pppoe code. Its options have changed names, but the old names are kept as aliases. * The configure script now supports cross-compilation. * Many bug fixes and cleanups.
Chargement...
Activer les raccourcis clavier
- Alt + ⇧ Shift + l Se connecter/Se déconnecter
- Alt + ⇧ Shift + a Ouvrir une tâche
- Alt + ⇧ Shift + m Mes recherches
- Alt + ⇧ Shift + t Rechercher par ID de tâche
Liste des tâches
- o Ouvrir la tâche sélectionnée
- j Déplacer le curseur vers le bas
- k Déplacer le curseur vers le haut
Détails de la tâche
- n Tâche suivante
- p Tâche précédente
- Alt + ⇧ Shift + e ↵ Enter Modifier cette tâche
- Alt + ⇧ Shift + w Surveiller
- Alt + ⇧ Shift + y Fermer cette tâche
Édition de la tâche
- Alt + ⇧ Shift + s Enregistrer la tâche
Informations complémentaires :
libpcap 1.10.0 (2020-12-30) :
- https://www.tcpdump.org/
De la même entité :
tcpdump 4.99.0 (stable) (2020-12-30) :
- https://www.tcpdump.org/
Rappel :
PPP 2.4.9 (2021-01-04) - Correction de failles
- https://github.com/paulusmack/ppp
- https://download.samba.org/pub/ppp/
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=ppp
PPP 2.5.0 (2023-04-04)
- https://github.com/paulusmack/ppp
- https://download.samba.org/pub/ppp/
Note: Il y a toujours des failles dans la version actuellement utilisée "2.4.8" :
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=ppp