Freebox Server (Ultra V9/ Pop V8/ Delta V7 / Revolution V6 / Mini 4K)

  • État Nouveau
  • Pourcentage achevé
    0%
  • Type Anomalie
  • Catégorie Freebox OS
  • Assignée à Personne
  • Système d'exploitation Tous
  • Sévérité Critique
  • Priorité Très Basse
  • Basée sur la version 4.7.6
  • Due pour la version Non décidée
  • Échéance Non décidée
  • Votes 2
  • Privée
Concerne le projet: Freebox Server (Ultra V9/ Pop V8/ Delta V7 / Revolution V6 / Mini 4K)
Ouverte par Neustradamus_ - 13/04/2021
Dernière modification par Neustradamus_ - 07/06/2023

FS#34522 - Demande de mises à jour des composants inclus dans les firmwares Freebox

Ticket rassemblant toutes les mises à jour des composants qui sont utilisés dans les firmwares Freebox etc. par Iliad/Free/Freebox.


Ce ticket fait suite à la fermeture de mon ticket historique :
- https://dev.freebox.fr/bugs/task/22518

A ne pas mélanger avec un autre ticket qui lui traite des oublis ou manquements sur le site floss.freebox.fr :
- https://dev.freebox.fr/bugs/task/34521

Rappel : Depuis la version 1.02.29, device-mapper a fusionné dans LVM2.

Freebox OS 4.2.10 utilise toujours la version 1.02.27 (2008-06-25), il y a une version 1.02.28 (2008-09-18).
- ftp://sources.redhat.com/pub/dm/ avant sa fusion dans LVM2

Actuellement, la dernière version est la 1.02.171 (2020-03-26)
- https://github.com/lvmteam/lvm2/blob/master/WHATS_NEW_DM
- Plus de 12 ans sans mise à jour !

- ipsec-tools 0.8.1 (pas à jour "0.8.2" et obsolète) a été remplacé par strongSwan, non ? Une raison de l'utiliser encore ?
- bridge-utils 1.5 (pas à jour "1.7" et obsolète) a été remplacé par iproute2, non ? Une raison de l'utiliser encore ?

bridge-utils 1.7 (2020-07-02) :
- https://git.kernel.org/pub/scm/linux/kernel/git/shemminger/bridge-utils.git/
Mais il est préférable d'utiliser iproute2


par2cmdline 0.8.1 (2020-02-09) :
- https://github.com/Parchive/par2cmdline/releases

libexif 0.6.22 (2020-05-18) :
- https://github.com/libexif/libexif/releases

v4l-utils 1.20.0 (2020-05-21) :
master git :
- https://git.linuxtv.org/v4l-utils.git

jansson 2.13.1 (2020-05-07)
- https://github.com/akheron/jansson/releases

libevent 2.1.12-stable (2020-07-05) :
- https://libevent.org/

ncurses-6.2 (2020-02-12) :
- https://www.gnu.org/software/ncurses/

mtd-utils 2.1.2 (2020-07-13) :
- http://www.linux-mtd.infradead.org/

pciutils 3.7.0 (2020-05-31) :
- https://github.com/pciutils/pciutils/releases

rpcbind 1.2.5 (2018-08-15) :
rpcbind 1.2.6 RC6 (2020-06-09) :
- http://git.linux-nfs.org/?p=steved/rpcbind.git;a=summary

xz 5.2.5 (2020-03-17) :
- https://tukaani.org/xz/

iw 5.9 (2020-02-10) :
- https://wireless.wiki.kernel.org/en/users/documentation/iw
- https://git.kernel.org/pub/scm/linux/kernel/git/jberg/iw.git/

bzip2 1.0.8 (2019-07-13) :
- https://www.sourceware.org/bzip2/
- https://sourceware.org/pub/bzip2/?C=M;O=D
bzip2 n'est pas à jour, failles toujours présentes :
- https://dev.freebox.fr/bugs/task/22518#comment115067
- https://dev.freebox.fr/bugs/task/30938
- https://www.cvedetails.com/vulnerability-list/vendor_id-1198/product_id-2068/version_id-202215/Bzip-Bzip2-1.0.6.html

Linux IPv6 Router Advertisement Daemon: radvd 2.19 (2020-09-23) :
- https://radvd.litech.org/
- https://github.com/radvd-project/radvd/releases

FreeType 2.10.4 (2020-10-20) : CVE fix: CVE-2020-15999 :
- https://www.freetype.org/

alsa 1.2.4 (2020-10-20) :
- https://www.alsa-project.org/

GStreamer 1.16.3 old-stable (2020-10-21) :
- https://gstreamer.freedesktop.org/

Dropbear 2020.81 (2020-10-29) :
- https://matt.ucc.asn.au/dropbear/dropbear.html

libjpeg-turbo 2.0.6 (2020-11-17) :
libjpeg-turbo 2.0.90 = 2.1 beta1 (2020-11-25) :
- https://libjpeg-turbo.org/
- https://sourceforge.net/projects/libjpeg-turbo/files/
CVEs:
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=libjpeg-turbo
- https://www.cvedetails.com/vulnerability-list/vendor_id-17075/product_id-40849/Libjpeg-turbo-Libjpeg-turbo.html

Bonne nouvelle après presque 4 ans depuis la 2.7.1, minicom 2.8 est enfin là :
- https://salsa.debian.org/minicom-team/minicom
- https://salsa.debian.org/minicom-team/minicom/-/tags
Rappel de la faille de sécurité (CVE) de 2017 (qui n'est toujours pas corrigée dans les firmwares) :
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=minicom

BusyBox 1.32.1 (stable) (2021-01-01) :
BusyBox 1.33.0 (2020-12-29) :
- https://busybox.net/

tcpdump 4.99.0 (stable) (2020-12-30) :
- https://www.tcpdump.org/

libpcap 1.10.0 (2020-12-30) :
- https://www.tcpdump.org/

ppp 2.4.9 (2021-01-04) // Corrections de failles de sécurité inclus
- https://github.com/paulusmack/ppp
- https://download.samba.org/pub/ppp/

PulseAudio 14.2 (2021-01-16) :
- https://www.freedesktop.org/wiki/Software/PulseAudio/

ethtool (5.3 en 4.2.10) :
- ethtool 5.10 (2020-12-16)
- ethtool 5.9 (2020-10-15)
- ethtool 5.8 (2020-08-04)
- ethtool 5.7 (2020-06-04)
- ethtool 5.6 (2020-05-12)
- ethtool 5.4 (2020-01-10)
- https://mirrors.edge.kernel.org/pub/software/network/ethtool/

hdparam 9.60 (2020-11-21), mise à jour 2 ans après la précédente :
- https://sourceforge.net/projects/hdparm/
- https://sourceforge.net/projects/hdparm/files/hdparm/

hfsprogs "diskdev_cmds" 667.40.1 (2021-01-04) :
- https://opensource.apple.com/tarballs/diskdev_cmds/

iptables 1.8.7 (2021-01-15):
- https://netfilter.org/projects/iptables/

Libarchive 3.5.1 (2020-12-26) :
- https://github.com/libarchive/libarchive/releases
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=libarchive

smartmontools 7.2 (2020-12-30)
- https://www.smartmontools.org/

libgcrypt LTS 1.8.7 (2020-10-23) :
- https://www.gnupg.org/software/libgcrypt/

libgcrypt 1.9.2 (2021-02-17) :
- https://www.gnupg.org/software/libgcrypt/

readline 8.1 (2021-01-18) :
- http://git.savannah.gnu.org/cgit/readline.git

strace 5.11 (2021-02-17) :
- https://github.com/strace/strace/releases

procps-ng 3.3.17 (2021-02-09)
- https://gitlab.com/procps-ng/procps/-/tags

PCRE 10.36 (2020-12-04) :
- https://sourceforge.net/projects/pcre/files/

Il faudrait mettre à jour hostap avec le git :
- http://w1.fi/cgit/hostap/
- Master, depuis la 2.9, beaucoup d'améliorations…

lz4 1.9.3 (2020-11-16) :
- http://www.lz4.org/
- https://github.com/lz4/lz4/releases

libusb 1.0.24 (2020-12-10) :
- https://libusb.info/
- https://github.com/libusb/libusb/releases

elfutils 0.183 (2021-02-07) :
- https://sourceware.org/elfutils/
- https://sourceware.org/git/?p=elfutils.git;a=summary

fribidi 1.0.10 (2020-07-05) :
- https://github.com/fribidi/fribidi/releases

gmp 6.2.1 (2020-11-14) :
- https://gmplib.org/
- https://gmplib.org/repo/

CUPS 2.3.3op2 :
- https://github.com/OpenPrinting/cups/releases
- https://github.com/OpenPrinting/cups/releases/tag/v2.3.3op2
- https://github.com/OpenPrinting/cups
- https://github.com/OpenPrinting

Le projet n’est plus géré par Apple depuis le départ de son fondateur.
La dernière version de CUPS gérée par Apple est la 2.3.3.

Advanced NTFS-3G Features:
- https://jp-andre.pagesperso-orange.fr/advanced-ntfs-3g.html

OpenVPN 2.4.10 - Old stable - (2020-12-09) :
OpenVPN 2.5.1 (2021-02-24) :
- https://openvpn.net/
- https://github.com/OpenVPN/openvpn/releases
- https://sourceforge.net/p/openvpn/mailman/message/37226597/

Berkeleyy DB: Actuellement utilisé : 5.3.21
Il y a aussi 5.3.28 avant de passer en 6.0.19…

Notes :
2.0 - 6.0.19 is licensed under the Sleepycat License
6.0.20 - 7.3.6 is licensed under the GNU AGPL v3
7.3.7 and newer is licensed under the Apache License, Version 2.0

Dnsmasq 2.85 (2021-04-07) qui corrige des bugs de 2.83/2.84 + faille CVE-2021-3448 :
- https://thekelleys.org.uk/dnsmasq/CHANGELOG
- https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=summary

Kernel Linux (note: WireGuard a été ajouté depuis 5.6+) :
- longterm: 5.10.29 (2021-04-10)
- longterm: 5.4.111 (2021-04-10)
- https://www.kernel.org/

rng-tools 6.12 (2021-03-11) :
- https://github.com/nhorman/rng-tools/releases
- https://github.com/nhorman/rng-tools/tree/v6.12

nettle 3.7.2 (2021-03-21) :
- https://www.lysator.liu.se/~nisse/nettle/
- https://git.lysator.liu.se/nettle/nettle

LibGD 2.3.3 (2021-03-06) | 2.3.0 : CVE fixes | 2.3.2 : Support for HEIF/AVIF
- http://libgd.github.io/
- https://github.com/libgd/libgd/releases

e2fsprogs 1.46.2 (2021-03-01) :
- https://git.kernel.org/pub/scm/fs/ext2/e2fsprogs.git
- https://sourceforge.net/projects/e2fsprogs/files/e2fsprogs/

nginx 1.19.9 dev (2021-03-30) :
- https://nginx.org/

zstd (Zstandard) 1.4.9 (2021-03-03) :
- https://github.com/facebook/zstd/releases

xfsprogs 5.11.0 (2021-03-12) :
- https://git.kernel.org/pub/scm/fs/xfs/xfsprogs-dev.git

Curl 7.76.0 (2021-03-31) :
- https://curl.haxx.se/
- https://github.com/curl/curl/releases

nfs-utils 2.5.3 (tag 2021-02-20) :
nfs-utils 2.5.4 RC2 (tag 2021-04-07) :
- http://git.linux-nfs.org/?p=steved/nfs-utils.git;a=summary

OpenSSL 1.1.1k (2021-03-25) :
OpenSSL 3.0.0 Alpha 14 (2021-04-08) :
- https://www.openssl.org/

iproute2 5.11.0 (2021-02-23) :
- https://mirrors.edge.kernel.org/pub/linux/utils/net/iproute2/

GStreamer 1.18.4 (2021-03-15) :
- https://gstreamer.freedesktop.org/

Qemu 5.0.1 (2020-09-15) :
Qemu 5.1.0 (2020-08-11) :
Qemu 5.2.0 (2020-12-08) :
Qemu 6.0.0 RC2 (2021-04-06) :
- https://www.qemu.org/

libtirpc 1.3.1 (2020-12-01) :
libtirpc 1.3.2 RC2 (2021-04-07) :
- http://git.linux-nfs.org/?p=steved/libtirpc.git;a=summary

GnuTLS 3.7.1 (2021-03-10) :
- https://www.gnutls.org/

strongSwan 5.9.2 (2021-02-26) :
strongSwan 6.0 DR6 (2021-03-21) :
strongSwan 5.9.3 DR1 (2021-03-31) :
- https://www.strongswan.org/download.html
- https://github.com/strongswan/strongswan/releases

fuse 3.10.3 (2021-04-12) :
- https://github.com/libfuse/libfuse/releases

pjsip 2.11 (2021-03-17) :
- https://github.com/pjsip/pjproject/releases

i2ctools 3.0.3 (2010-12-12) :
i2ctools 3.1.2 (2016-06-23) :
i2ctools 4.2 (2020-09-22) :
- https://git.kernel.org/pub/scm/utils/i2c-tools/i2c-tools.git/

Libgpg-error : 1.42 (2021-03-22) :
- https://gnupg.org/software/libgpg-error/

util-linux 2.37 RC1 (2021-04-12) :
util-linux 2.36.2 (2021-02-12) :
- https://github.com/karelzak/util-linux/releases

Qt 5.12.10 LTS (2020-11-10) :
- https://www.qt.io/blog/qt-5.12.10-released
- https://lists.qt-project.org/pipermail/development/2020-November/040556.html
Qt 5.15.2 LTS (2020-11-20) :
- https://www.qt.io/blog/qt-5.15.2-released
- https://lists.qt-project.org/pipermail/development/2020-November/040678.html
Qt 5.15.3 LTS (2021-03-04) :
- https://www.qt.io/blog/commercial-lts-qt-5.15.3-released
Qt 6.0.3 (2021-03-31) :
- https://www.qt.io/blog/qt-6.0.3-released
- https://lists.qt-project.org/pipermail/development/2021-March/041174.html
Qt 6.1.0 Beta 3 (2021-04-09) :
- https://lists.qt-project.org/pipermail/development/2021-April/041193.html

expat 2.3.0 (2021-03-25) :
- https://libexpat.github.io/
- https://sourceforge.net/projects/expat/files/expat/
- https://github.com/libexpat/libexpat/
- https://github.com/libexpat/libexpat/releases

sg3-utils 1.46 (2021-03-29) :
- http://sg.danny.cz/sg/sg3_utils.html

FFmpeg 4.4 (2021-04-08) :
- https://ffmpeg.org/
- https://ffmpeg.org/index.html#news
- https://github.com/FFmpeg/FFmpeg/releases

nginx 1.20.0 (2021-04-20) :
- https://nginx.org/

Et avec tout ce retard de mise a jour Free propose une Freebox Pro…

OpenVPN 2.5.2 (2021-04-20) :
- https://openvpn.net/
- https://github.com/OpenVPN/openvpn/releases
- https://sourceforge.net/p/openvpn/mailman/message/37265943/

Note : Freebox OS 4.3.1 a OpenSSL 1.1.1k + OpenVPN 2.5.0 + Kernel 5.4.60.

OpenSSL 3.0.0 Alpha 15 (2021-04-22) :
- https://www.openssl.org/

Qemu 6.0.0 RC5 (2021-04-26) :
- https://www.qemu.org/

iproute2 5.12.0 (2021-04-27) :
- https://mirrors.edge.kernel.org/pub/linux/utils/net/iproute2/

Curl 7.76.1 (2021-04-14) :
- https://curl.haxx.se/
- https://github.com/curl/curl/releases

Kernel Linux (note: WireGuard a été ajouté depuis 5.6+) :
- longterm: 5.10.33 (2021-04-28)
- longterm: 5.4.115 (2021-04-28)
- https://www.kernel.org/

hdparam 9.61 (2021-04-26) :
- https://sourceforge.net/projects/hdparm/
- https://sourceforge.net/p/hdparm/news/
- https://sourceforge.net/projects/hdparm/files/hdparm/

libjpeg-turbo 2.1.0 (2021-04-23) :
- https://libjpeg-turbo.org/
- https://sourceforge.net/projects/libjpeg-turbo/files/
CVEs :
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=libjpeg-turbo
- https://www.cvedetails.com/vulnerability-list/vendor_id-17075/product_id-40849/Libjpeg-turbo-Libjpeg-turbo.html

ludo453 a commenté le 20.05.2021 08:19

@Neustradamus Bonjour avez vous remis toutes les box du canal béta sur le canal régulier ? Merci

Désoler c'est le seul moyen de vous contacter.

@ludo453 : Attention, je ne travaille pas chez Iliad/Free/Freebox.

Je demande, depuis de nombreuses années, de mettre à jour le code afin d'éviter les failles de sécurité, de corriger les bugs et d'ajouter les améliorations.

Il y a eu des évolutions mais pas tout, bien sûr, mettre à jour régulièrement évite les incompatibilités s'il y a rien de fait depuis de nombreuses années.

ludo453 a commenté le 20.05.2021 10:35

@Neustradamus ok je comprend

sfdisk dans util-linux :
- https://github.com/karelzak/util-linux/blob/master/disk-utils/sfdisk.c

Advanced NTFS-3G 2017.3.23AR.6
- https://jp-andre.pagesperso-orange.fr/advanced-ntfs-3g.html
- https://jp-andre.pagesperso-orange.fr/advanced-ntfs-3g.html#download

libusb-compat 0.1.7 (2018-08-20) :
- https://libusb.info/
- https://github.com/libusb/libusb-compat-0.1/releases

xfsprogs 5.12.0 (2021-05-21) :
- https://git.kernel.org/pub/scm/fs/xfs/xfsprogs-dev.git

hdparam 9.62 (2021-05-10) :
- https://sourceforge.net/projects/hdparm/
- https://sourceforge.net/p/hdparm/news/
- https://sourceforge.net/projects/hdparm/files/hdparm/

Curl 7.77.0 (2021-05-26) :
- https://curl.haxx.se/
- https://github.com/curl/curl/releases

Kernel Linux (note: WireGuard a été ajouté depuis 5.6+) :
- mainline: 5.13 (2021-06-27)
- stable: 5.12.14 (2021-06-30)
- longterm: 5.10.47 (2021-06-30)
- longterm: 5.4.129 (2021-06-30)
- https://www.kernel.org/

iproute2 5.13.0 (2021-06-29) :
- https://mirrors.edge.kernel.org/pub/linux/utils/net/iproute2/

Qemu 6.0.0 (2021-04-29) :
- https://www.qemu.org/

OpenSSL 3.0.0 Beta 1 (2021-06-17) :
- https://www.openssl.org/

OpenVPN 2.5.3 (2021-06-17) :
- https://openvpn.net/
- https://github.com/OpenVPN/openvpn/releases
- https://sourceforge.net/p/openvpn/mailman/message/37304996/

nginx 1.20.1 (2021-05-25) :
- https://nginx.org/

expat 2.4.1 (2021-05-23) :
- https://libexpat.github.io/
- https://sourceforge.net/projects/expat/files/expat/
- https://github.com/libexpat/libexpat/
- https://github.com/libexpat/libexpat/releases

util-linux 2.37 (2021-06-01) :
- https://github.com/karelzak/util-linux/releases

fuse 3.10.4 (2021-06-09) :
- https://github.com/libfuse/libfuse/releases

GnuTLS 3.7.2 (2021-05-29) :
GnuTLS 3.6.16 (2021-05-24) :
- https://www.gnutls.org/

libgcrypt LTS 1.8.8 (2021-06-02) :
- https://www.gnupg.org/software/libgcrypt/

libgcrypt 1.9.3 (2021-04-19) :
- https://www.gnupg.org/software/libgcrypt/

strongSwan 6.0 DR7 (2021-06-30) :
strongSwan 5.9.3 RC1 (2021-06-24) :
- https://www.strongswan.org/download.html
- https://github.com/strongswan/strongswan/releases

GStreamer 1.19.1 unstable (2021-06-01) :
- https://gstreamer.freedesktop.org/

zstd (Zstandard) 1.5.0 (2021-05-14) :
- https://github.com/facebook/zstd/releases

nettle 3.7.3 (2021-06-02) :
- https://www.lysator.liu.se/~nisse/nettle/
- https://git.lysator.liu.se/nettle/nettle/
- https://git.lysator.liu.se/nettle/nettle/-/tags

nfs-utils 2.5.4 (2021-06-10) :
- http://git.linux-nfs.org/?p=steved/nfs-utils.git;a=summary

rpcbind 1.2.6 (2021-05-10) :
- http://git.linux-nfs.org/?p=steved/rpcbind.git;a=summary

libtirpc 1.3.2 (2021-05-10) :
- http://git.linux-nfs.org/?p=steved/libtirpc.git;a=summary

rng-tools 6.13 (2021-06-11) :
- https://github.com/nhorman/rng-tools/releases
- https://github.com/nhorman/rng-tools/tree/v6.13

Dnsmasq 2.86test4 (2021-06-26) :
- https://thekelleys.org.uk/dnsmasq/CHANGELOG
- https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=summary

elfutils 0.185 (2021-05-22) :
- https://sourceware.org/elfutils/
- https://sourceware.org/git/?p=elfutils.git;a=summary

PCRE 10.37 (2021-05-26) :
PCRE 8.45 (2021-06-22) :
- https://sourceforge.net/projects/pcre/files/

strace 5.12 (2021-04-26) :
- https://github.com/strace/strace/releases

hfsprogs “diskdev_cmds” 667.100.2 (2021-05-15) :
- https://opensource.apple.com/tarballs/diskdev_cmds/

ethtool (5.3 en 4.4.0) :
- ethtool 5.12 (2021-05-02)
- ethtool 5.10 (2020-12-16)
- ethtool 5.9 (2020-10-15)
- ethtool 5.8 (2020-08-04)
- ethtool 5.7 (2020-06-04)
- ethtool 5.6 (2020-05-12)
- ethtool 5.4 (2020-01-10)
- https://mirrors.edge.kernel.org/pub/software/network/ethtool/

tcpdump 4.99.1 (stable) (2021-06-09) :
- https://www.tcpdump.org/

libpcap 1.10.1 (2021-06-09) :
- https://www.tcpdump.org/

BusyBox 1.33.1 stable (2021-05-03) :
- https://busybox.net/

alsa 1.2.5.1 (2021-06-14) :
- https://www.alsa-project.org/

cracklib 2.9.7 (2019-03-03) :
- https://github.com/cracklib/cracklib

e2fsprogs 1.46.2 (2021-03-01) :
- https://git.kernel.org/pub/scm/fs/ext2/e2fsprogs.git
- https://sourceforge.net/projects/e2fsprogs/files/e2fsprogs/

iperf 3.10.1 (2021-06-02) :
- http://software.es.net/iperf/ - https://github.com/esnet/iperf
- https://github.com/esnet/iperf/releases
- https://sourceforge.net/projects/iperf/

libseccomp 2.5.1 (2020-11-20) :
- https://github.com/seccomp/libseccomp
- https://github.com/seccomp/libseccomp/releases

lzo 2.10 (2017-03-01) :
- http://www.oberhumer.com/opensource/lzo/

mmc-utils :
- https://git.kernel.org/pub/scm/linux/kernel/git/cjb/mmc-utils.git
- https://packages.debian.org/sid/mmc-utils
- https://developer.puri.sm/licenses/Librem5/Birch/mmc-utils.html

stress 1.0.4 :
- https://tracker.debian.org/pkg/stress
- https://salsa.debian.org/debian/stress
- https://github.com/cooljeanius/stress-1.0.4

cramfs-tools 2.1 (2019-09-30) :
- https://www.kernel.org/doc/html/latest/filesystems/cramfs.html
- https://github.com/npitre/cramfs-tools/
- https://github.com/npitre/cramfs-tools/releases

glib 2.68.3 (2021-06-10) :
- https://developer.gnome.org/glib/
- https://gitlab.gnome.org/GNOME/glib
- https://gitlab.gnome.org/GNOME/glib/-/tags

rrdtool 1.7.2
- https://oss.oetiker.ch/rrdtool/

mdadm 4.1 (2018-10-26) :
mdadm 4.2 RC1 (2021-04-14) :
- http://neil.brown.name/blog/mdadm
- https://mirrors.edge.kernel.org/pub/linux/utils/raid/mdadm/

attr 2.5.1 (2021-03-16) :
- https://savannah.nongnu.org/projects/attr/
- http://download.savannah.nongnu.org/releases/attr/?C=M&O=D

cairo 1.17.4 (2020-11-29) :
- https://www.cairographics.org/

glib-networking 2.68.1 (2021-04-22) :
- https://gitlab.gnome.org/GNOME/glib-networking
- https://gitlab.gnome.org/GNOME/glib-networking/-/tags

harfbuzz 2.8.1 (2021-05-04) :
- https://www.freedesktop.org/wiki/Software/HarfBuzz/
- https://github.com/behdad/harfbuzz

htop 3.0.5 (2021-01-11) :
- https://hisham.hm/htop/

libdrm 2.4.106 (2021-05-18) :
- https://dri.freedesktop.org/
- https://dri.freedesktop.org/libdrm/
- https://dri.freedesktop.org/libdrm/?C=M;O=D
- https://cgit.freedesktop.org/mesa/drm/
- https://gitlab.freedesktop.org/mesa/drm/
- https://gitlab.freedesktop.org/mesa/drm/-/tags

libsoup 2.66.5 (2020-12-13) :
libsoup 2.99.8 (2021-06-04) :
- https://wiki.gnome.org/Projects/libsoup
- https://libsoup.org/
- https://download.gnome.org/sources/libsoup/?C=M&O=D
- https://github.com/GNOME/libsoup
- https://github.com/GNOME/libsoup/releases
- https://gitlab.gnome.org/GNOME/libsoup
- https://gitlab.gnome.org/GNOME/libsoup/-/tags

nss-mdns 0.15.1 (2021-06-12) :
- https://github.com/lathiat/nss-mdns

pango 1.48.9 (2021-06-29) :
- https://www.pango.org/
- https://download.gnome.org/sources/pango/?C=M&O=D

slang 2.3.2 (2018-03-04) :
slang pre2.3.3-56 (2021-05-24) :
- https://www.jedsoft.org/slang/
- https://www.jedsoft.org/releases/slang/
- http://www.jedsoft.org/snapshots/

strongSwan 5.9.3 (2021-07-06) :
strongSwan 6.0 DR8 (2021-07-06) :
- https://www.strongswan.org/download.html
- https://github.com/strongswan/strongswan/releases

WireGuard en beta test, inscription ici : https://dev.freebox.fr/bugs/task/35342

Donc Kernel Linux 5.10.x par la même occasion, je suppose.

Linux Kernel :
- 5.15 (2021-10-31)
- 5.10.76 LTS (2021-10-27)
- 5.4.156 LTS (2021-10-27)
- 4.19.214 LTS (2021-10-27)

5.15 avec ksmbd et ntfs3
5.6+ avec Wireguard

Il faudrait renommer, c'est possible il y a déjà des noms avec "-" :
- "bridgeutils" en "bridge-utils"
- "CryptoJS" en "crypto-js"
- "devicemapper" en "device-mapper"
- "ipsectools" en "ipsec-tools"
- "libeventreal" en "libevent"
- "libgpgerror" en "libgpg-error"
- "libinih" en "inih"
- "libjpeg" en "libjpeg-turbo"
- "ksmbdtools" en "ksmbd-tools"
- "mtd" en "mtd-utils"
- "nfsutils" en "nfs-utils"
- "ntfs3g" en "ntfs-3g"
- "procps" en "procps-ng"
- "sg3utils" en "sg3-utils"
- "util-linux" en "util-linux"
- "wireguard-tools" en "wireguard-tools"
- "wirelesstool" en "wireless_tool"
- "xtermjs" en "xterm.js"

A supprimer réellement : bridge-utils (remplacé par iproute2) + libnfsidmap (fusionné dans nfs-utils) + sfdisk (inclus dans util-linux) + wireless_tools (remplacé par iw)


Berkeley DB 6.0.19
Qui peut être utilisée : https://download.oracle.com/otndocs/products/berkeleydb/html/changelog_6_0.html#idp509784
Par ailleurs, Bloomberg a forké Berkeley DB "As of 2022, Bloomberg LP continues to develop a fork of BDB within their Comdb2 database, under the original Sleepycat permissive license."
- https://github.com/bloomberg/comdb2/tree/master/berkdb
- https://en.wikipedia.org/wiki/Comdb2
- https://en.wikipedia.org/wiki/Sleepycat_License
- https://en.wikipedia.org/wiki/Berkeley_DB

bridge-utils 1.7.1 (2021-03-22)
- https://mirrors.edge.kernel.org/pub/linux/utils/net/bridge-utils/

busybox :
Si on reste sur 1.21.x afin de remplacer 1.21.0: BusyBox 1.21.1 (2013-06-29):
- https://busybox.net/
- https://www.cvedetails.com/vulnerability-list/vendor_id-4282/product_id-7452/Busybox-Busybox.html

Récapitulatif complet :
- 1.21.1 (2013-06-29)
- 1.22.1 (2014-01-20)
- 1.23.2 (2015-03-23)
- 1.24.2 (2016-03-17)
- 1.25.1 (2016-10-07)
- 1.26.2 (2017-01-10)
- 1.27.2 (2017-08-17)
- 1.28.4 (2018-05-22)
- 1.29.3 (2018-09-09)
- 1.30.1 (2019-02-14)
- 1.31.1 (2019-10-25)
- 1.32.1 (2021-01-01)
- 1.34.1 (2021-09-30)
- 1.33.2 (2021-11-24)
- 1.35.0 (2021-12-26)

bzip2 1.0.8 (2019-07-13) - Correction de failles
- https://sourceware.org/bzip2/
- https://www.cvedetails.com/vulnerability-list/vendor_id-1198/product_id-2068/Bzip-Bzip2.html

cracklib 2.9.8 (2022-09-02)
- https://github.com/cracklib/cracklib
- https://www.cvedetails.com/vulnerability-list/vendor_id-15910/product_id-34539/Cracklib-Project-Cracklib.html

crypto-js 4.1.1 (2021-09-14)
- https://github.com/brix/crypto-js

curl 7.86.0 (2022-10-26)
- https://curl.haxx.se/
- https://github.com/curl/curl/releases

device-mapper 1.02.185 (2022-05-18)
- https://github.com/lvmteam/lvm2/tree/master/device_mapper
- https://github.com/lvmteam/lvm2/blob/master/WHATS_NEW_DM

dnsmasq 2.87 (2022-09-25) qui corrige des bugs + failles CVEs :
- https://www.cvedetails.com/vulnerability-list/vendor_id-8351/product_id-14557/Thekelleys-Dnsmasq.html
- https://thekelleys.org.uk/dnsmasq/doc.html
- https://thekelleys.org.uk/dnsmasq/CHANGELOG
- https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=summary
Version test en cours : 2.88test1.

dropbear 2022.82 (2022-04-01)
- https://matt.ucc.asn.au/dropbear/dropbear.html
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=dropbear
- https://www.cvedetails.com/vulnerability-list/vendor_id-15806/Dropbear-Ssh-Project.html

e2fsprogs 1.46.5 (2021-12-30)
- https://git.kernel.org/pub/scm/fs/ext2/e2fsprogs.git
- https://sourceforge.net/projects/e2fsprogs/files/e2fsprogs/
- https://www.cvedetails.com/vulnerability-list/vendor_id-15251/E2fsprogs-Project.html

ethtool 6.0 (2022-10-10)
ethtool 5.19 (2022-08-22)
ethtool 5.18 (2022-06-14)
ethtool 5.17 (2022-04-04)
ethtool 5.16 (2022-01-19)
ethtool 5.15 (2021-11-09)
ethtool 5.14 (2021-09-12)
ethtool 5.13 (2021-07-09)
ethtool 5.12 (2021-05-02)
ethtool 5.10 (2020-12-16)
ethtool 5.9 (2020-10-15)
ethtool 5.8 (2020-08-04)
ethtool 5.7 (2020-06-04)
ethtool 5.6 (2020-05-12)
ethtool 5.4 (2020-01-10)
- https://mirrors.edge.kernel.org/pub/software/network/ethtool/

expat 2.5.0 (2022-10-25) - Correction de failles
- https://libexpat.github.io/
- https://sourceforge.net/projects/expat/files/expat/
- https://github.com/libexpat/libexpat/
- https://github.com/libexpat/libexpat/releases
- https://www.cvedetails.com/vulnerability-list/vendor_id-16735/Libexpat-Project.html

ffmpeg 5.1.2 (2022-09-25)
ffmpeg 4.4.3 (2022-10-09)
ffmpeg 4.3.5 (2022-10-10)
ffmpeg 4.2.8 (2022-10-11)
ffmpeg 4.1.10 (2022-10-21)
ffmpeg 3.4.12 (2022-10-27)
ffmpeg 3.2.19 (2022-10-28)
- https://ffmpeg.org/
- https://ffmpeg.org/index.html#news
- https://github.com/FFmpeg/FFmpeg/releases

flot 4.2.3 (2022-08-01)
- https://github.com/flot/flot/tags
- http://www.flotcharts.org/

glib 2.74.1 (2022-10-25)
- https://gitlab.gnome.org/GNOME/glib/-/releases
- https://docs.gtk.org/glib/

hdparm 9.65 (2022-09-07)
- https://sourceforge.net/p/hdparm/news/
- https://sourceforge.net/projects/hdparm/files/hdparm/

hfsprogs "diskdev_cmds" 667.40.1 (2021-01-04)
- https://opensource.apple.com/tarballs/diskdev_cmds/

i18next 22.0.4 (2022-10-28)
- https://github.com/i18next/i18next/releases
- https://github.com/i18next/i18next
- https://www.i18next.com/

inih r56 (2022-07-12)
- https://github.com/benhoyt/inih
- https://github.com/benhoyt/inih/releases

iproute2 en 6.0.0 (2022-10-04)
- https://mirrors.edge.kernel.org/pub/linux/utils/net/iproute2/
- https://git.kernel.org/pub/scm/network/iproute2/iproute2.git

ipsec-tools 0.8.2 (2014-02-27)
- https://www.cvedetails.com/vulnerability-list/vendor_id-2282/Ipsec-tools.html
- https://launchpad.net/debian/+source/ipsec-tools/+changelog
- https://salsa.debian.org/debian/ipsec-tools/commits/master
- https://salsa.debian.org/debian/ipsec-tools
- http://ipsec-tools.sourceforge.net/
Project abandonné, non sécurisé, strongswan est déjà utilisé, à supprimer enfin ?

iptables 1.8.8 (2022-05-13)
- https://netfilter.org/projects/iptables/
- https://netfilter.org/projects/iptables/files/changes-iptables-1.8.8.txt

iw 5.19 (2022-05-27)
- https://git.kernel.org/pub/scm/linux/kernel/git/jberg/iw.git

jansson 2.14 (2021-09-09)
- https://github.com/akheron/jansson/releases

jquery 3.6.1 (2022-08-26)
- https://github.com/jquery/jquery/tags
- https://github.com/jquery/jquery
- https://jquery.com/
- https://www.cvedetails.com/vulnerability-list/vendor_id-6538/product_id-11031/Jquery-Jquery.html

ksmbd/ksmbd-tools 3.4.6 (2022-10-09)
- https://github.com/cifsd-team/ksmbd-tools/releases
- https://github.com/cifsd-team/ksmbd-tools

libarchive 3.6.1 (2022-04-08) - Correction de failles
- https://github.com/libarchive/libarchive/releases
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=libarchive
- https://www.cvedetails.com/vulnerability-list/vendor_id-12872/product_id-26168/Libarchive-Libarchive.html

libevent 2.1.12-stable (2020-07-05)
- https://libevent.org/
- https://github.com/libevent/libevent
- https://raw.githubusercontent.com/libevent/libevent/release-2.1.12-stable/ChangeLog

libffi 3.4.4 (2022-10-24)
- https://sourceware.org/libffi/
- https://github.com/libffi/libffi
- https://github.com/libffi/libffi/releases

libgcrypt (LTS) 1.8.9 (2022-02-07) | libgcrypt 1.10.1 (2022-03-28)
- https://www.gnupg.org/software/libgcrypt/
- https://www.gnupg.org/software/libgcrypt/
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=libgcrypt
- https://www.cvedetails.com/vulnerability-list/vendor_id-4711/product_id-25777/Gnupg-Libgcrypt.html

libgd 2.3.3 (2021-03-06) | 2.3.0 : CVE fixes | 2.3.2 : Support for HEIF/AVIF
- http://libgd.github.io/
- https://github.com/libgd/libgd/releases
- https://www.cvedetails.com/vulnerability-list/vendor_id-6668/Libgd.html

libgeoip 1.6.12 (2018-01-17)
- https://github.com/maxmind/geoip-api-c/tree/master/libGeoIP
- https://packages.debian.org/sid/libgeoip-dev

libgpg-error 1.46 (2022-10-07)
- https://gnupg.org/software/libgpg-error/

libjpeg-turbo 2.1.4 (2022-09-13) - Correction de failles
- https://libjpeg-turbo.org/
- https://sourceforge.net/projects/libjpeg-turbo/files/
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=libjpeg-turbo
- https://www.cvedetails.com/vulnerability-list/vendor_id-17075/product_id-40849/Libjpeg-turbo-Libjpeg-turbo.html

libpcap 1.10.1 (2021-06-09)
- https://www.tcpdump.org/

minicom 2.8 (2021-01-01)
- https://salsa.debian.org/minicom-team/minicom
- https://salsa.debian.org/minicom-team/minicom/-/tags/2.8

netatalk 3.11.13 (2022-03-22) - Correction de failles
- https://netatalk.sourceforge.io/
- https://netatalk.sourceforge.io/3.1/ReleaseNotes3.1.13.html

nss-dns 0.15.1 (2021-06-12)
- https://github.com/lathiat/nss-mdns

ntfs-3g 2022.5.17 (2022-05-26) - Correction de failles
- https://github.com/tuxera/ntfs-3g
- https://www.cvedetails.com/vulnerability-list/vendor_id-17875/product_id-45193/Tuxera-Ntfs-3g.html

openssl 1.1.1s (2022-11-01) ou 3.0.7 (2022-11-01) - Correction de failles
- https://mta.openssl.org/pipermail/openssl-announce/2022-October/000240.html
- https://www.cvedetails.com/vulnerability-list/vendor_id-217/product_id-383/Openssl-Openssl.html
- https://www.openssl.org/

openvpn 2.5.8 (2022-10-28) - Correction de failles
- https://www.cvedetails.com/vulnerability-list/vendor_id-3278/Openvpn.html
- https://github.com/OpenVPN/openvpn
- http://openvpn.net/
- https://community.openvpn.net/openvpn/wiki/ChangesInOpenvpn25

ncurses 6.3 (2021-10-21)
- https://invisible-island.net/ncurses/announce.html
- https://invisible-mirror.net/archives/ncurses/?C=M;O=D
- https://www.gnu.org/software/ncurses/
- https://ftp.gnu.org/gnu/ncurses/?C=M;O=D

nfs-utils 2.6.2 (2022-08-09)
- https://sourceforge.net/projects/nfs/files/nfs-utils/
- http://git.linux-nfs.org/?p=steved/nfs-utils.git;a=summary
A noter que libnfsidmap a été fusionné dans nfs-utils !
Actuellement utilisé : libnfsidmap 0.25 (2011-12-06), dernière version avant fusion : 0.27 (2017-01-10) :
- http://www.citi.umich.edu/projects/nfsv4/linux/
- https://fedorapeople.org/~steved/libnfsidmap

libnl 3.7.0 (2022-07-06)
- https://github.com/thom311/libnl

libpng 1.6.38 (2022-09-14)
- http://www.libpng.org/pub/png/libpng.html
- https://github.com/glennrp/libpng/tags

libtirpc 1.3.3 (2022-08-07) :
- https://www.cvedetails.com/vulnerability-list/vendor_id-16462/product_id-37578/Libtirpc-Project-Libtirpc.html
- https://sourceforge.net/projects/libtirpc/files/
- http://git.linux-nfs.org/?p=steved/libtirpc.git;a=summary

libxml 2.10.3 (2022-10-14)
- https://www.cvedetails.com/vulnerability-list/vendor_id-1962/product_id-3311/Xmlsoft-Libxml2.html
- http://xmlsoft.org/
- https://github.com/GNOME/libxml2/
- https://gitlab.gnome.org/GNOME/libxml2/

lzo 2.10 (2017-03-01)
- http://www.oberhumer.com/opensource/lzo/

Material Design Icons 7.0.96 (2022-09-20)
- https://github.com/Templarian/MaterialDesign-JS/tags
- https://github.com/Templarian/MaterialDesign

moment 2.29.4 (2022-07-06)
- https://momentjs.com/
- https://github.com/moment/moment
- https://github.com/moment/moment/tags

moment-timezone 0.5.38 (2022-10-15)
- https://momentjs.com/timezone/
- https://github.com/moment/moment-timezone
- https://github.com/moment/moment-timezone/tags

mosquitto 1.6.15 (2021-06-09) + 2.0.15 (2022-08-16)
- https://mosquitto.org/
- https://github.com/eclipse/mosquitto
- https://github.com/eclipse/mosquitto/tags

mtd-utils 2.1.5 (2022-10-07)
- http://www.linux-mtd.infradead.org/
- 2.1.2: https://lists.infradead.org/pipermail/linux-mtd/2020-July/081299.html
- 2.1.3: https://lists.infradead.org/pipermail/linux-mtd/2021-July/087588.html
- 2.1.4: https://lists.infradead.org/pipermail/linux-mtd/2022-January/090742.html
- 2.1.5: https://lists.infradead.org/pipermail/linux-mtd/2022-October/095383.html

nginx-1.22.1 stable (2022-10-19) | nginx-1.23.2 mainline (2022-10-19)
- https://nginx.org/
- https://nginx.org/en/security_advisories.html

par2cmdline 0.8.1 (2020-02-09)
- https://github.com/Parchive/par2cmdline

pciutils 3.8.0 (2022-08-10)
- https://github.com/pciutils/pciutils/tags

pcre 8.45 (2021-06-21) | 10.40 (2022-04-15)
- https://www.pcre.org/
- https://github.com/PCRE2Project/pcre2
- https://github.com/PCRE2Project/pcre2/releases
- pcre2: https://www.cvedetails.com/vulnerability-list/vendor_id-3265/product_id-33513/Pcre-Pcre2.html
- pcre: https://www.cvedetails.com/vulnerability-list/vendor_id-3265/product_id-5715/Pcre-Pcre.html
- https://sourceforge.net/projects/pcre/files/pcre/

ppp 2.4.9 (2021-01-04) - Correction de failles
- https://github.com/paulusmack/ppp
- https://download.samba.org/pub/ppp/
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=ppp

procps-ng 4.0.1 (2022-10-20)
- https://gitlab.com/procps-ng/procps/-/tags
CVEs toujours là dans les Server car mise à jour non réalisée…
- http://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=procps-ng
- https://www.cvedetails.com/bugtraq-bid/104214/Procps-ng-Procps-Multiple-Security-Vulnerabilities.html

radvd 2.19 (2020-09-23) :
- http://www.litech.org/radvd/
- https://github.com/reubenhwk/radvd

readline 8.2 (2022-09-26)
- http://git.savannah.gnu.org/cgit/readline.git
- https://tiswww.case.edu/php/chet/readline/rltop.html

rpcbind 1.2.6 (2021-05-10) | 1.2.7 RC2 (2022-07-12)
- http://git.linux-nfs.org/?p=steved/rpcbind.git;a=summary

rrdtool 1.8.0 (2022-03-13)
- https://oss.oetiker.ch/rrdtool/
- https://github.com/oetiker/rrdtool-1.x

util-linux 2.38.1 (2022-08-04)
- https://github.com/util-linux/util-linux
- https://github.com/util-linux/util-linux/tags
Cela permet la mise à jour de sfdisk…

sg3-utils 1.47 (2021-11-10)
- http://sg.danny.cz/sg/sg3_utils.html

smartmontools 7.3 (2022-02-28)
- https://www.smartmontools.org/

strace 6.0 (2022-10-29)
- https://github.com/strace/strace

strongswan 5.9.8 (2022-10-03) - Correction de failles
- https://github.com/strongswan/strongswan/releases/tag/5.9.8
- https://www.strongswan.org/blog/2022/10/03/strongswan-vulnerability-(cve-2022-40617).html
- https://www.cvedetails.com/vulnerability-list/vendor_id-2278/product_id-3992/Strongswan-Strongswan.html
- https://www.strongswan.org/download.html
- https://github.com/strongswan/strongswan/releases
Version test en cours : strongSwan 6.0 Beta 1 (2022-10-22) :
- https://download.strongswan.org/CHANGES6dr.txt

tcpdump 4.99.1 (stable) (2021-06-09)
- https://www.tcpdump.org/

wireguard-tools 1.0.20210914 (2021-09-14)
- https://github.com/WireGuard/wireguard-tools
- https://github.com/WireGuard/wireguard-tools/tags

xfsprogs 5.19.0 (2022-08-12) | 6.0.0 rc0 (2022-09-15)
- https://git.kernel.org/pub/scm/fs/xfs/xfsprogs-dev.git

xterm.js 5.0.0 (2022-09-15)
- https://xtermjs.org/
- https://github.com/xtermjs/xterm.js/

xz 5.2.7 (2022-09-30)
- https://tukaani.org/xz/

yajl 2.1.0 (2014-03-19)
- https://lloyd.github.io/yajl/
- https://github.com/lloyd/yajl
- https://github.com/lloyd/yajl/tags

zlib 1.2.13 (2022-10-14) - Correction de failles
- http://zlib.net/
- https://github.com/madler/zlib
- https://www.cvedetails.com/vulnerability-list/vendor_id-13265/Zlib.html

zstd (Zstandard) en 1.5.2 (2022-01-20)
- https://facebook.github.io/zstd/
- https://github.com/facebook/zstd

strace 6.1 (2022-12-12)
- https://github.com/strace/strace

tcpdump 4.99.2 (stable) (2022-12-31)
- https://www.tcpdump.org/

libpcap 1.10.2 (2022-12-31)
- https://www.tcpdump.org/

Linux Kernel : https://www.kernel.org/
- mainline: 6.2-rc2 2023-01-01)
- stable: 6.1.2 (2022-12-31)
- stable: 6.0.16 (2022-12-31)
- longterm: 5.15.86 (2022-12-31)
- longterm: 5.10.161 (2022-12-21)
- longterm: 5.4.228 (2022-12-19)
- longterm: 4.19.269 (2022-12-14)
- longterm: 4.14.302 (2022-12-14)
- longterm: 4.9.336 (2022-12-14)

xz 5.4.1 (2023-01-11)
xz 5.2.10 (2022-12-13) - old stable
- https://tukaani.org/xz/

libpcap 1.10.3 (2023-01-12)
- https://www.tcpdump.org/

tcpdump 4.99.3 (stable) (2023-01-12)
- https://www.tcpdump.org/

PPP 2.5.0 (2023-04-04)
- https://github.com/paulusmack/ppp
- https://download.samba.org/pub/ppp/

Note: Il y a toujours des failles dans la version actuellement utilisée "2.4.8" :
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=ppp

Erreur dans le précédent commentaire… On ne peut pas éditer…

netatalk 3.1.14 (2023-01-10) - Correction de failles (Apple AFP / AppleShare - Mac)
- https://netatalk.sourceforge.io/
- https://github.com/Netatalk/netatalk/
- https://github.com/Netatalk/netatalk/releases
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=netatalk

libevent 2.2.1-alpha (2023-05-21)
- https://libevent.org/
- https://github.com/libevent/libevent/blob/release-2.2.1-alpha/ChangeLog

Pensez à renommer libeventreal en libevent.

netatalk 3.1.15 (2023-04-28) - Correction de failles (Apple AFP / AppleShare - Mac)
- https://netatalk.sourceforge.io/
- https://github.com/Netatalk/netatalk/
- https://github.com/Netatalk/netatalk/releases
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=netatalk

En autres, 3.1.15 :
- FIX: CVE-2022-43634
- FIX: CVE-2022-45188

tcpdump 4.99.4 (stable) (2023-04-07)
- https://www.tcpdump.org/

Rappel du 2022-11-01 :

wireguard-tools 1.0.20210914 (2021-09-14)
- https://github.com/WireGuard/wireguard-tools
- https://github.com/WireGuard/wireguard-tools/tags

xz 5.4.5 (2023-11-01)
xz 5.2.12 (2023-05-04) - old stable
- https://tukaani.org/xz/
- https://github.com/tukaani-project/xz/

libpcap 1.10.4 (2023-04-07)
- https://www.tcpdump.org/

FFmpeg:
5.1.4 (2023-11-10)
6.0.1 (2023-11-10)
6.1 (2023-11-11)
- https://ffmpeg.org/
- https://ffmpeg.org/index.html#news
- https://github.com/FFmpeg/FFmpeg/releases

strongSwan 5.9.14 (2024-03-19) / strongSwan 6.0.0beta6 (2024-03-20) :
- https://www.strongswan.org/download.html
- https://github.com/strongswan/strongswan/releases

@mbizon, @mmakassikis: Il n'y a pas eu de corrections dans Freebox OS, il y a toujours les 2 CVEs dans bzip 1.0.6:
- https://www.cvedetails.com/vulnerability-list/vendor_id-1198/product_id-2068/version_id-557742/Bzip-Bzip2-1.0.6.html

La dernière version est la 1.0.8 (2019-07-13) :
- https://sourceware.org/bzip2/downloads.html
- https://sourceware.org/pub/bzip2/?C=M;O=D

En développement ici :
- https://gitlab.com/bzip2/bzip2

OpenSSL 3.3.1 (2024-06-04), 3.2.2 (2024-06-04), 3.1.6 (2024-06-04), 3.0.14 (2024-06-04) afin de corriger des bugs et failles (CVEs).

OpenSSL 1.1.1* n’est plus maintenu depuis le mois de septembre 2023.
- https://openssl-library.org/post/2023-03-28-1.1.1-eol/

Fin de vie suivante :
- 3.0.x sera corrigé jusqu’au 7 septembre 2026 (LTS)
- 3.1.x sera corrigé jusqu’au 14 mars 2025
- 3.2.x sera corrigé jusqu’au 23 novembre 2025
- 3.3.x sera corrigé jusqu’au 10 avril 2026

Liens :
- https://openssl-library.org/news/openssl-3.0-notes/index.html
- https://openssl-library.org/news/openssl-3.1-notes/index.html
- https://openssl-library.org/news/openssl-3.2-notes/index.html
- https://openssl-library.org/news/openssl-3.3-notes/index.html
- https://www.cvedetails.com/vulnerability-list/vendor_id-217/product_id-383/Openssl-Openssl.html
- https://www.openssl.org/

Les versions d'OpenSSL 3.3.2, 3.2.3, 3.1.7 et 3.0.15 sont prévues pour le 3 septembre 2024 après-midi avec de nouvelles corrections de failles de sécurité.

FFmpeg:
- https://ffmpeg.org/
- https://ffmpeg.org/index.html#news
- https://github.com/FFmpeg/FFmpeg/tags

- 7.1 2024-09-30
- 4.3.8 2024-08-06
- 5.1.6 2024-08-05
- 7.0.2 2024-08-03
- 6.1.2 2024-08-02
- 4.2.10 2024-08-01
- 4.4.5 2024-07-29

xz
5.2.13 (2024-05-29)
5.4.7 (2024-05-29)
5.6.3 (2024-10-01)
- https://tukaani.org/xz/
- https://github.com/tukaani-project/xz/

Important : Le code a été vérifié après avoir eu une tentative de backdoor.

libpcap 1.10.5 (2024-08-30)
- https://www.tcpdump.org/

tcpdump 4.99.5 (stable) (2024-08-30)
- https://www.tcpdump.org/

PPP 2.5.1 (2024-09-18)
- https://github.com/ppp-project/ppp/tags
- https://github.com/ppp-project/ppp/releases
- https://download.samba.org/pub/ppp/

Note: Il y a toujours des failles dans la version actuellement utilisée "2.4.8" :
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=ppp

sg3-utils 1.48 (2023-08-01)
- http://sg.danny.cz/sg/sg3_utils.html

util-linux 2.40.2 (2024-07-04)
- https://github.com/util-linux/util-linux
- https://github.com/util-linux/util-linux/tags
Cela permet la mise à jour de sfdisk…

rpcbind 1.2.7 (2024-07-25) | 1.2.8 RC2 (2024-11-11)
- http://git.linux-nfs.org/?p=steved/rpcbind.git;a=summary

nginx-1.26.2 stable (2024-08-14) | nginx-1.27.3 mainline (2024-11-26)
- https://nginx.org/
- https://nginx.org/news.html
- https://nginx.org/en/security_advisories.html

Chargement...

Activer les raccourcis clavier

Liste des tâches

Détails de la tâche

Édition de la tâche