- Status Nouveau
- Percent Complete
- Task Type Anomalie
- Category Freebox OS
- Assigned To No-one
- Operating System Tous
- Severity Critical
- Priority Very Low
- Reported Version 4.7.6
- Due in Version Undecided
-
Due Date
Undecided
-
Votes
2
- AngryKiller (13/05/2021)
- L4igleNo1r (21/04/2021)
- Private
Attached to Project: Freebox Server (Ultra V9/ Pop V8/ Delta V7 / Revolution V6 / Mini 4K)
Opened by Neustradamus_ - 13/04/2021
Last edited by Neustradamus_ - 07/06/2023
Opened by Neustradamus_ - 13/04/2021
Last edited by Neustradamus_ - 07/06/2023
FS#34522 - Demande de mises à jour des composants inclus dans les firmwares Freebox
Ticket rassemblant toutes les mises à jour des composants qui sont utilisés dans les firmwares Freebox etc. par Iliad/Free/Freebox.
Ce ticket fait suite à la fermeture de mon ticket historique :
- https://dev.freebox.fr/bugs/task/22518
A ne pas mélanger avec un autre ticket qui lui traite des oublis ou manquements sur le site floss.freebox.fr :
- https://dev.freebox.fr/bugs/task/34521
Loading...
Available keyboard shortcuts
- Alt + ⇧ Shift + l Login Dialog / Logout
- Alt + ⇧ Shift + a Add new task
- Alt + ⇧ Shift + m My searches
- Alt + ⇧ Shift + t focus taskid search
Tasklist
- o open selected task
- j move cursor down
- k move cursor up
Task Details
- n Next task
- p Previous task
- Alt + ⇧ Shift + e ↵ Enter Edit this task
- Alt + ⇧ Shift + w watch task
- Alt + ⇧ Shift + y Close Task
Task Editing
- Alt + ⇧ Shift + s save task
Rappel : Depuis la version 1.02.29, device-mapper a fusionné dans LVM2.
Freebox OS 4.2.10 utilise toujours la version 1.02.27 (2008-06-25), il y a une version 1.02.28 (2008-09-18).
- ftp://sources.redhat.com/pub/dm/ avant sa fusion dans LVM2
Actuellement, la dernière version est la 1.02.171 (2020-03-26)
- https://github.com/lvmteam/lvm2/blob/master/WHATS_NEW_DM
- Plus de 12 ans sans mise à jour !
- ipsec-tools 0.8.1 (pas à jour "0.8.2" et obsolète) a été remplacé par strongSwan, non ? Une raison de l'utiliser encore ?
- bridge-utils 1.5 (pas à jour "1.7" et obsolète) a été remplacé par iproute2, non ? Une raison de l'utiliser encore ?
bridge-utils 1.7 (2020-07-02) :
- https://git.kernel.org/pub/scm/linux/kernel/git/shemminger/bridge-utils.git/
Mais il est préférable d'utiliser iproute2
par2cmdline 0.8.1 (2020-02-09) :
- https://github.com/Parchive/par2cmdline/releases
libexif 0.6.22 (2020-05-18) :
- https://github.com/libexif/libexif/releases
v4l-utils 1.20.0 (2020-05-21) :
master git :
- https://git.linuxtv.org/v4l-utils.git
jansson 2.13.1 (2020-05-07)
- https://github.com/akheron/jansson/releases
libevent 2.1.12-stable (2020-07-05) :
- https://libevent.org/
ncurses-6.2 (2020-02-12) :
- https://www.gnu.org/software/ncurses/
mtd-utils 2.1.2 (2020-07-13) :
- http://www.linux-mtd.infradead.org/
pciutils 3.7.0 (2020-05-31) :
- https://github.com/pciutils/pciutils/releases
rpcbind 1.2.5 (2018-08-15) :
rpcbind 1.2.6 RC6 (2020-06-09) :
- http://git.linux-nfs.org/?p=steved/rpcbind.git;a=summary
xz 5.2.5 (2020-03-17) :
- https://tukaani.org/xz/
iw 5.9 (2020-02-10) :
- https://wireless.wiki.kernel.org/en/users/documentation/iw
- https://git.kernel.org/pub/scm/linux/kernel/git/jberg/iw.git/
bzip2 1.0.8 (2019-07-13) :
- https://www.sourceware.org/bzip2/
- https://sourceware.org/pub/bzip2/?C=M;O=D
bzip2 n'est pas à jour, failles toujours présentes :
- https://dev.freebox.fr/bugs/task/22518#comment115067
- https://dev.freebox.fr/bugs/task/30938
- https://www.cvedetails.com/vulnerability-list/vendor_id-1198/product_id-2068/version_id-202215/Bzip-Bzip2-1.0.6.html
Linux IPv6 Router Advertisement Daemon: radvd 2.19 (2020-09-23) :
- https://radvd.litech.org/
- https://github.com/radvd-project/radvd/releases
FreeType 2.10.4 (2020-10-20) : CVE fix: CVE-2020-15999 :
- https://www.freetype.org/
alsa 1.2.4 (2020-10-20) :
- https://www.alsa-project.org/
GStreamer 1.16.3 old-stable (2020-10-21) :
- https://gstreamer.freedesktop.org/
Dropbear 2020.81 (2020-10-29) :
- https://matt.ucc.asn.au/dropbear/dropbear.html
libjpeg-turbo 2.0.6 (2020-11-17) :
libjpeg-turbo 2.0.90 = 2.1 beta1 (2020-11-25) :
- https://libjpeg-turbo.org/
- https://sourceforge.net/projects/libjpeg-turbo/files/
CVEs:
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=libjpeg-turbo
- https://www.cvedetails.com/vulnerability-list/vendor_id-17075/product_id-40849/Libjpeg-turbo-Libjpeg-turbo.html
Bonne nouvelle après presque 4 ans depuis la 2.7.1, minicom 2.8 est enfin là :
- https://salsa.debian.org/minicom-team/minicom
- https://salsa.debian.org/minicom-team/minicom/-/tags
Rappel de la faille de sécurité (CVE) de 2017 (qui n'est toujours pas corrigée dans les firmwares) :
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=minicom
BusyBox 1.32.1 (stable) (2021-01-01) :
BusyBox 1.33.0 (2020-12-29) :
- https://busybox.net/
tcpdump 4.99.0 (stable) (2020-12-30) :
- https://www.tcpdump.org/
libpcap 1.10.0 (2020-12-30) :
- https://www.tcpdump.org/
ppp 2.4.9 (2021-01-04) // Corrections de failles de sécurité inclus
- https://github.com/paulusmack/ppp
- https://download.samba.org/pub/ppp/
PulseAudio 14.2 (2021-01-16) :
- https://www.freedesktop.org/wiki/Software/PulseAudio/
ethtool (5.3 en 4.2.10) :
- ethtool 5.10 (2020-12-16)
- ethtool 5.9 (2020-10-15)
- ethtool 5.8 (2020-08-04)
- ethtool 5.7 (2020-06-04)
- ethtool 5.6 (2020-05-12)
- ethtool 5.4 (2020-01-10)
- https://mirrors.edge.kernel.org/pub/software/network/ethtool/
hdparam 9.60 (2020-11-21), mise à jour 2 ans après la précédente :
- https://sourceforge.net/projects/hdparm/
- https://sourceforge.net/projects/hdparm/files/hdparm/
hfsprogs "diskdev_cmds" 667.40.1 (2021-01-04) :
- https://opensource.apple.com/tarballs/diskdev_cmds/
iptables 1.8.7 (2021-01-15):
- https://netfilter.org/projects/iptables/
Libarchive 3.5.1 (2020-12-26) :
- https://github.com/libarchive/libarchive/releases
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=libarchive
smartmontools 7.2 (2020-12-30)
- https://www.smartmontools.org/
libgcrypt LTS 1.8.7 (2020-10-23) :
- https://www.gnupg.org/software/libgcrypt/
libgcrypt 1.9.2 (2021-02-17) :
- https://www.gnupg.org/software/libgcrypt/
readline 8.1 (2021-01-18) :
- http://git.savannah.gnu.org/cgit/readline.git
strace 5.11 (2021-02-17) :
- https://github.com/strace/strace/releases
procps-ng 3.3.17 (2021-02-09)
- https://gitlab.com/procps-ng/procps/-/tags
PCRE 10.36 (2020-12-04) :
- https://sourceforge.net/projects/pcre/files/
Il faudrait mettre à jour hostap avec le git :
- http://w1.fi/cgit/hostap/
- Master, depuis la 2.9, beaucoup d'améliorations…
lz4 1.9.3 (2020-11-16) :
- http://www.lz4.org/
- https://github.com/lz4/lz4/releases
libusb 1.0.24 (2020-12-10) :
- https://libusb.info/
- https://github.com/libusb/libusb/releases
elfutils 0.183 (2021-02-07) :
- https://sourceware.org/elfutils/
- https://sourceware.org/git/?p=elfutils.git;a=summary
fribidi 1.0.10 (2020-07-05) :
- https://github.com/fribidi/fribidi/releases
gmp 6.2.1 (2020-11-14) :
- https://gmplib.org/
- https://gmplib.org/repo/
CUPS 2.3.3op2 :
- https://github.com/OpenPrinting/cups/releases
- https://github.com/OpenPrinting/cups/releases/tag/v2.3.3op2
- https://github.com/OpenPrinting/cups
- https://github.com/OpenPrinting
Le projet n’est plus géré par Apple depuis le départ de son fondateur.
La dernière version de CUPS gérée par Apple est la 2.3.3.
Advanced NTFS-3G Features:
- https://jp-andre.pagesperso-orange.fr/advanced-ntfs-3g.html
OpenVPN 2.4.10 - Old stable - (2020-12-09) :
OpenVPN 2.5.1 (2021-02-24) :
- https://openvpn.net/
- https://github.com/OpenVPN/openvpn/releases
- https://sourceforge.net/p/openvpn/mailman/message/37226597/
Berkeleyy DB: Actuellement utilisé : 5.3.21
Il y a aussi 5.3.28 avant de passer en 6.0.19…
Notes :
2.0 - 6.0.19 is licensed under the Sleepycat License
6.0.20 - 7.3.6 is licensed under the GNU AGPL v3
7.3.7 and newer is licensed under the Apache License, Version 2.0
Dnsmasq 2.85 (2021-04-07) qui corrige des bugs de 2.83/2.84 + faille CVE-2021-3448 :
- https://thekelleys.org.uk/dnsmasq/CHANGELOG
- https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=summary
Kernel Linux (note: WireGuard a été ajouté depuis 5.6+) :
- longterm: 5.10.29 (2021-04-10)
- longterm: 5.4.111 (2021-04-10)
- https://www.kernel.org/
rng-tools 6.12 (2021-03-11) :
- https://github.com/nhorman/rng-tools/releases
- https://github.com/nhorman/rng-tools/tree/v6.12
nettle 3.7.2 (2021-03-21) :
- https://www.lysator.liu.se/~nisse/nettle/
- https://git.lysator.liu.se/nettle/nettle
LibGD 2.3.3 (2021-03-06) | 2.3.0 : CVE fixes | 2.3.2 : Support for HEIF/AVIF
- http://libgd.github.io/
- https://github.com/libgd/libgd/releases
e2fsprogs 1.46.2 (2021-03-01) :
- https://git.kernel.org/pub/scm/fs/ext2/e2fsprogs.git
- https://sourceforge.net/projects/e2fsprogs/files/e2fsprogs/
nginx 1.19.9 dev (2021-03-30) :
- https://nginx.org/
zstd (Zstandard) 1.4.9 (2021-03-03) :
- https://github.com/facebook/zstd/releases
xfsprogs 5.11.0 (2021-03-12) :
- https://git.kernel.org/pub/scm/fs/xfs/xfsprogs-dev.git
Curl 7.76.0 (2021-03-31) :
- https://curl.haxx.se/
- https://github.com/curl/curl/releases
nfs-utils 2.5.3 (tag 2021-02-20) :
nfs-utils 2.5.4 RC2 (tag 2021-04-07) :
- http://git.linux-nfs.org/?p=steved/nfs-utils.git;a=summary
OpenSSL 1.1.1k (2021-03-25) :
OpenSSL 3.0.0 Alpha 14 (2021-04-08) :
- https://www.openssl.org/
iproute2 5.11.0 (2021-02-23) :
- https://mirrors.edge.kernel.org/pub/linux/utils/net/iproute2/
GStreamer 1.18.4 (2021-03-15) :
- https://gstreamer.freedesktop.org/
Qemu 5.0.1 (2020-09-15) :
Qemu 5.1.0 (2020-08-11) :
Qemu 5.2.0 (2020-12-08) :
Qemu 6.0.0 RC2 (2021-04-06) :
- https://www.qemu.org/
libtirpc 1.3.1 (2020-12-01) :
libtirpc 1.3.2 RC2 (2021-04-07) :
- http://git.linux-nfs.org/?p=steved/libtirpc.git;a=summary
GnuTLS 3.7.1 (2021-03-10) :
- https://www.gnutls.org/
strongSwan 5.9.2 (2021-02-26) :
strongSwan 6.0 DR6 (2021-03-21) :
strongSwan 5.9.3 DR1 (2021-03-31) :
- https://www.strongswan.org/download.html
- https://github.com/strongswan/strongswan/releases
fuse 3.10.3 (2021-04-12) :
- https://github.com/libfuse/libfuse/releases
pjsip 2.11 (2021-03-17) :
- https://github.com/pjsip/pjproject/releases
i2ctools 3.0.3 (2010-12-12) :
i2ctools 3.1.2 (2016-06-23) :
i2ctools 4.2 (2020-09-22) :
- https://git.kernel.org/pub/scm/utils/i2c-tools/i2c-tools.git/
Libgpg-error : 1.42 (2021-03-22) :
- https://gnupg.org/software/libgpg-error/
util-linux 2.37 RC1 (2021-04-12) :
util-linux 2.36.2 (2021-02-12) :
- https://github.com/karelzak/util-linux/releases
Qt 5.12.10 LTS (2020-11-10) :
- https://www.qt.io/blog/qt-5.12.10-released
- https://lists.qt-project.org/pipermail/development/2020-November/040556.html
Qt 5.15.2 LTS (2020-11-20) :
- https://www.qt.io/blog/qt-5.15.2-released
- https://lists.qt-project.org/pipermail/development/2020-November/040678.html
Qt 5.15.3 LTS (2021-03-04) :
- https://www.qt.io/blog/commercial-lts-qt-5.15.3-released
Qt 6.0.3 (2021-03-31) :
- https://www.qt.io/blog/qt-6.0.3-released
- https://lists.qt-project.org/pipermail/development/2021-March/041174.html
Qt 6.1.0 Beta 3 (2021-04-09) :
- https://lists.qt-project.org/pipermail/development/2021-April/041193.html
expat 2.3.0 (2021-03-25) :
- https://libexpat.github.io/
- https://sourceforge.net/projects/expat/files/expat/
- https://github.com/libexpat/libexpat/
- https://github.com/libexpat/libexpat/releases
sg3-utils 1.46 (2021-03-29) :
- http://sg.danny.cz/sg/sg3_utils.html
FFmpeg 4.4 (2021-04-08) :
- https://ffmpeg.org/
- https://ffmpeg.org/index.html#news
- https://github.com/FFmpeg/FFmpeg/releases
nginx 1.20.0 (2021-04-20) :
- https://nginx.org/
Et avec tout ce retard de mise a jour Free propose une Freebox Pro…
OpenVPN 2.5.2 (2021-04-20) :
- https://openvpn.net/
- https://github.com/OpenVPN/openvpn/releases
- https://sourceforge.net/p/openvpn/mailman/message/37265943/
Note : Freebox OS 4.3.1 a OpenSSL 1.1.1k + OpenVPN 2.5.0 + Kernel 5.4.60.
OpenSSL 3.0.0 Alpha 15 (2021-04-22) :
- https://www.openssl.org/
Qemu 6.0.0 RC5 (2021-04-26) :
- https://www.qemu.org/
iproute2 5.12.0 (2021-04-27) :
- https://mirrors.edge.kernel.org/pub/linux/utils/net/iproute2/
Curl 7.76.1 (2021-04-14) :
- https://curl.haxx.se/
- https://github.com/curl/curl/releases
Kernel Linux (note: WireGuard a été ajouté depuis 5.6+) :
- longterm: 5.10.33 (2021-04-28)
- longterm: 5.4.115 (2021-04-28)
- https://www.kernel.org/
hdparam 9.61 (2021-04-26) :
- https://sourceforge.net/projects/hdparm/
- https://sourceforge.net/p/hdparm/news/
- https://sourceforge.net/projects/hdparm/files/hdparm/
libjpeg-turbo 2.1.0 (2021-04-23) :
- https://libjpeg-turbo.org/
- https://sourceforge.net/projects/libjpeg-turbo/files/
CVEs :
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=libjpeg-turbo
- https://www.cvedetails.com/vulnerability-list/vendor_id-17075/product_id-40849/Libjpeg-turbo-Libjpeg-turbo.html
@Neustradamus Bonjour avez vous remis toutes les box du canal béta sur le canal régulier ? Merci
Désoler c'est le seul moyen de vous contacter.
@ludo453 : Attention, je ne travaille pas chez Iliad/Free/Freebox.
Je demande, depuis de nombreuses années, de mettre à jour le code afin d'éviter les failles de sécurité, de corriger les bugs et d'ajouter les améliorations.
Il y a eu des évolutions mais pas tout, bien sûr, mettre à jour régulièrement évite les incompatibilités s'il y a rien de fait depuis de nombreuses années.
@Neustradamus ok je comprend
sfdisk dans util-linux :
- https://github.com/karelzak/util-linux/blob/master/disk-utils/sfdisk.c
Advanced NTFS-3G 2017.3.23AR.6
- https://jp-andre.pagesperso-orange.fr/advanced-ntfs-3g.html
- https://jp-andre.pagesperso-orange.fr/advanced-ntfs-3g.html#download
libusb-compat 0.1.7 (2018-08-20) :
- https://libusb.info/
- https://github.com/libusb/libusb-compat-0.1/releases
xfsprogs 5.12.0 (2021-05-21) :
- https://git.kernel.org/pub/scm/fs/xfs/xfsprogs-dev.git
hdparam 9.62 (2021-05-10) :
- https://sourceforge.net/projects/hdparm/
- https://sourceforge.net/p/hdparm/news/
- https://sourceforge.net/projects/hdparm/files/hdparm/
Curl 7.77.0 (2021-05-26) :
- https://curl.haxx.se/
- https://github.com/curl/curl/releases
Kernel Linux (note: WireGuard a été ajouté depuis 5.6+) :
- mainline: 5.13 (2021-06-27)
- stable: 5.12.14 (2021-06-30)
- longterm: 5.10.47 (2021-06-30)
- longterm: 5.4.129 (2021-06-30)
- https://www.kernel.org/
iproute2 5.13.0 (2021-06-29) :
- https://mirrors.edge.kernel.org/pub/linux/utils/net/iproute2/
Qemu 6.0.0 (2021-04-29) :
- https://www.qemu.org/
OpenSSL 3.0.0 Beta 1 (2021-06-17) :
- https://www.openssl.org/
OpenVPN 2.5.3 (2021-06-17) :
- https://openvpn.net/
- https://github.com/OpenVPN/openvpn/releases
- https://sourceforge.net/p/openvpn/mailman/message/37304996/
nginx 1.20.1 (2021-05-25) :
- https://nginx.org/
expat 2.4.1 (2021-05-23) :
- https://libexpat.github.io/
- https://sourceforge.net/projects/expat/files/expat/
- https://github.com/libexpat/libexpat/
- https://github.com/libexpat/libexpat/releases
util-linux 2.37 (2021-06-01) :
- https://github.com/karelzak/util-linux/releases
fuse 3.10.4 (2021-06-09) :
- https://github.com/libfuse/libfuse/releases
GnuTLS 3.7.2 (2021-05-29) :
GnuTLS 3.6.16 (2021-05-24) :
- https://www.gnutls.org/
libgcrypt LTS 1.8.8 (2021-06-02) :
- https://www.gnupg.org/software/libgcrypt/
libgcrypt 1.9.3 (2021-04-19) :
- https://www.gnupg.org/software/libgcrypt/
strongSwan 6.0 DR7 (2021-06-30) :
strongSwan 5.9.3 RC1 (2021-06-24) :
- https://www.strongswan.org/download.html
- https://github.com/strongswan/strongswan/releases
GStreamer 1.19.1 unstable (2021-06-01) :
- https://gstreamer.freedesktop.org/
zstd (Zstandard) 1.5.0 (2021-05-14) :
- https://github.com/facebook/zstd/releases
nettle 3.7.3 (2021-06-02) :
- https://www.lysator.liu.se/~nisse/nettle/
- https://git.lysator.liu.se/nettle/nettle/
- https://git.lysator.liu.se/nettle/nettle/-/tags
nfs-utils 2.5.4 (2021-06-10) :
- http://git.linux-nfs.org/?p=steved/nfs-utils.git;a=summary
rpcbind 1.2.6 (2021-05-10) :
- http://git.linux-nfs.org/?p=steved/rpcbind.git;a=summary
libtirpc 1.3.2 (2021-05-10) :
- http://git.linux-nfs.org/?p=steved/libtirpc.git;a=summary
rng-tools 6.13 (2021-06-11) :
- https://github.com/nhorman/rng-tools/releases
- https://github.com/nhorman/rng-tools/tree/v6.13
Dnsmasq 2.86test4 (2021-06-26) :
- https://thekelleys.org.uk/dnsmasq/CHANGELOG
- https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=summary
elfutils 0.185 (2021-05-22) :
- https://sourceware.org/elfutils/
- https://sourceware.org/git/?p=elfutils.git;a=summary
PCRE 10.37 (2021-05-26) :
PCRE 8.45 (2021-06-22) :
- https://sourceforge.net/projects/pcre/files/
strace 5.12 (2021-04-26) :
- https://github.com/strace/strace/releases
hfsprogs “diskdev_cmds” 667.100.2 (2021-05-15) :
- https://opensource.apple.com/tarballs/diskdev_cmds/
ethtool (5.3 en 4.4.0) :
- ethtool 5.12 (2021-05-02)
- ethtool 5.10 (2020-12-16)
- ethtool 5.9 (2020-10-15)
- ethtool 5.8 (2020-08-04)
- ethtool 5.7 (2020-06-04)
- ethtool 5.6 (2020-05-12)
- ethtool 5.4 (2020-01-10)
- https://mirrors.edge.kernel.org/pub/software/network/ethtool/
tcpdump 4.99.1 (stable) (2021-06-09) :
- https://www.tcpdump.org/
libpcap 1.10.1 (2021-06-09) :
- https://www.tcpdump.org/
BusyBox 1.33.1 stable (2021-05-03) :
- https://busybox.net/
alsa 1.2.5.1 (2021-06-14) :
- https://www.alsa-project.org/
cracklib 2.9.7 (2019-03-03) :
- https://github.com/cracklib/cracklib
e2fsprogs 1.46.2 (2021-03-01) :
- https://git.kernel.org/pub/scm/fs/ext2/e2fsprogs.git
- https://sourceforge.net/projects/e2fsprogs/files/e2fsprogs/
iperf 3.10.1 (2021-06-02) :
- http://software.es.net/iperf/ - https://github.com/esnet/iperf
- https://github.com/esnet/iperf/releases
- https://sourceforge.net/projects/iperf/
libseccomp 2.5.1 (2020-11-20) :
- https://github.com/seccomp/libseccomp
- https://github.com/seccomp/libseccomp/releases
lzo 2.10 (2017-03-01) :
- http://www.oberhumer.com/opensource/lzo/
mmc-utils :
- https://git.kernel.org/pub/scm/linux/kernel/git/cjb/mmc-utils.git
- https://packages.debian.org/sid/mmc-utils
- https://developer.puri.sm/licenses/Librem5/Birch/mmc-utils.html
stress 1.0.4 :
- https://tracker.debian.org/pkg/stress
- https://salsa.debian.org/debian/stress
- https://github.com/cooljeanius/stress-1.0.4
cramfs-tools 2.1 (2019-09-30) :
- https://www.kernel.org/doc/html/latest/filesystems/cramfs.html
- https://github.com/npitre/cramfs-tools/
- https://github.com/npitre/cramfs-tools/releases
glib 2.68.3 (2021-06-10) :
- https://developer.gnome.org/glib/
- https://gitlab.gnome.org/GNOME/glib
- https://gitlab.gnome.org/GNOME/glib/-/tags
rrdtool 1.7.2
- https://oss.oetiker.ch/rrdtool/
mdadm 4.1 (2018-10-26) :
mdadm 4.2 RC1 (2021-04-14) :
- http://neil.brown.name/blog/mdadm
- https://mirrors.edge.kernel.org/pub/linux/utils/raid/mdadm/
attr 2.5.1 (2021-03-16) :
- https://savannah.nongnu.org/projects/attr/
- http://download.savannah.nongnu.org/releases/attr/?C=M&O=D
cairo 1.17.4 (2020-11-29) :
- https://www.cairographics.org/
glib-networking 2.68.1 (2021-04-22) :
- https://gitlab.gnome.org/GNOME/glib-networking
- https://gitlab.gnome.org/GNOME/glib-networking/-/tags
harfbuzz 2.8.1 (2021-05-04) :
- https://www.freedesktop.org/wiki/Software/HarfBuzz/
- https://github.com/behdad/harfbuzz
htop 3.0.5 (2021-01-11) :
- https://hisham.hm/htop/
libdrm 2.4.106 (2021-05-18) :
- https://dri.freedesktop.org/
- https://dri.freedesktop.org/libdrm/
- https://dri.freedesktop.org/libdrm/?C=M;O=D
- https://cgit.freedesktop.org/mesa/drm/
- https://gitlab.freedesktop.org/mesa/drm/
- https://gitlab.freedesktop.org/mesa/drm/-/tags
libsoup 2.66.5 (2020-12-13) :
libsoup 2.99.8 (2021-06-04) :
- https://wiki.gnome.org/Projects/libsoup
- https://libsoup.org/
- https://download.gnome.org/sources/libsoup/?C=M&O=D
- https://github.com/GNOME/libsoup
- https://github.com/GNOME/libsoup/releases
- https://gitlab.gnome.org/GNOME/libsoup
- https://gitlab.gnome.org/GNOME/libsoup/-/tags
nss-mdns 0.15.1 (2021-06-12) :
- https://github.com/lathiat/nss-mdns
pango 1.48.9 (2021-06-29) :
- https://www.pango.org/
- https://download.gnome.org/sources/pango/?C=M&O=D
slang 2.3.2 (2018-03-04) :
slang pre2.3.3-56 (2021-05-24) :
- https://www.jedsoft.org/slang/
- https://www.jedsoft.org/releases/slang/
- http://www.jedsoft.org/snapshots/
strongSwan 5.9.3 (2021-07-06) :
strongSwan 6.0 DR8 (2021-07-06) :
- https://www.strongswan.org/download.html
- https://github.com/strongswan/strongswan/releases
WireGuard en beta test, inscription ici : https://dev.freebox.fr/bugs/task/35342
Donc Kernel Linux 5.10.x par la même occasion, je suppose.
OpenVPN 2.5.4 (2021-10-05) :
- https://openvpn.net/
- https://github.com/OpenVPN/openvpn/tags
- https://sourceforge.net/p/openvpn/mailman/message/37361288/
ntfs-3g 2021.8.22 (2021-08-22)
- https://github.com/tuxera/ntfs-3g/releases
CVE fixes:
- https://www.cvedetails.com/vulnerability-list/vendor_id-17875/product_id-45193/Tuxera-Ntfs-3g.html
hdparm 9.62 (2021-05-10)
- https://sourceforge.net/p/hdparm/news/
- https://sourceforge.net/projects/hdparm/files/hdparm/
Linux Kernel :
- 5.15 (2021-10-31)
- 5.10.76 LTS (2021-10-27)
- 5.4.156 LTS (2021-10-27)
- 4.19.214 LTS (2021-10-27)
5.15 avec ksmbd et ntfs3
5.6+ avec Wireguard
Il faudrait renommer, c'est possible il y a déjà des noms avec "-" :
- "bridgeutils" en "bridge-utils"
- "CryptoJS" en "crypto-js"
- "devicemapper" en "device-mapper"
- "ipsectools" en "ipsec-tools"
- "libeventreal" en "libevent"
- "libgpgerror" en "libgpg-error"
- "libinih" en "inih"
- "libjpeg" en "libjpeg-turbo"
- "ksmbdtools" en "ksmbd-tools"
- "mtd" en "mtd-utils"
- "nfsutils" en "nfs-utils"
- "ntfs3g" en "ntfs-3g"
- "procps" en "procps-ng"
- "sg3utils" en "sg3-utils"
- "util-linux" en "util-linux"
- "wireguard-tools" en "wireguard-tools"
- "wirelesstool" en "wireless_tool"
- "xtermjs" en "xterm.js"
A supprimer réellement : bridge-utils (remplacé par iproute2) + libnfsidmap (fusionné dans nfs-utils) + sfdisk (inclus dans util-linux) + wireless_tools (remplacé par iw)
Berkeley DB 6.0.19
Qui peut être utilisée : https://download.oracle.com/otndocs/products/berkeleydb/html/changelog_6_0.html#idp509784
Par ailleurs, Bloomberg a forké Berkeley DB "As of 2022, Bloomberg LP continues to develop a fork of BDB within their Comdb2 database, under the original Sleepycat permissive license."
- https://github.com/bloomberg/comdb2/tree/master/berkdb
- https://en.wikipedia.org/wiki/Comdb2
- https://en.wikipedia.org/wiki/Sleepycat_License
- https://en.wikipedia.org/wiki/Berkeley_DB
bridge-utils 1.7.1 (2021-03-22)
- https://mirrors.edge.kernel.org/pub/linux/utils/net/bridge-utils/
busybox :
Si on reste sur 1.21.x afin de remplacer 1.21.0: BusyBox 1.21.1 (2013-06-29):
- https://busybox.net/
- https://www.cvedetails.com/vulnerability-list/vendor_id-4282/product_id-7452/Busybox-Busybox.html
Récapitulatif complet :
- 1.21.1 (2013-06-29)
- 1.22.1 (2014-01-20)
- 1.23.2 (2015-03-23)
- 1.24.2 (2016-03-17)
- 1.25.1 (2016-10-07)
- 1.26.2 (2017-01-10)
- 1.27.2 (2017-08-17)
- 1.28.4 (2018-05-22)
- 1.29.3 (2018-09-09)
- 1.30.1 (2019-02-14)
- 1.31.1 (2019-10-25)
- 1.32.1 (2021-01-01)
- 1.34.1 (2021-09-30)
- 1.33.2 (2021-11-24)
- 1.35.0 (2021-12-26)
bzip2 1.0.8 (2019-07-13) - Correction de failles
- https://sourceware.org/bzip2/
- https://www.cvedetails.com/vulnerability-list/vendor_id-1198/product_id-2068/Bzip-Bzip2.html
cracklib 2.9.8 (2022-09-02)
- https://github.com/cracklib/cracklib
- https://www.cvedetails.com/vulnerability-list/vendor_id-15910/product_id-34539/Cracklib-Project-Cracklib.html
crypto-js 4.1.1 (2021-09-14)
- https://github.com/brix/crypto-js
curl 7.86.0 (2022-10-26)
- https://curl.haxx.se/
- https://github.com/curl/curl/releases
device-mapper 1.02.185 (2022-05-18)
- https://github.com/lvmteam/lvm2/tree/master/device_mapper
- https://github.com/lvmteam/lvm2/blob/master/WHATS_NEW_DM
dnsmasq 2.87 (2022-09-25) qui corrige des bugs + failles CVEs :
- https://www.cvedetails.com/vulnerability-list/vendor_id-8351/product_id-14557/Thekelleys-Dnsmasq.html
- https://thekelleys.org.uk/dnsmasq/doc.html
- https://thekelleys.org.uk/dnsmasq/CHANGELOG
- https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=summary
Version test en cours : 2.88test1.
dropbear 2022.82 (2022-04-01)
- https://matt.ucc.asn.au/dropbear/dropbear.html
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=dropbear
- https://www.cvedetails.com/vulnerability-list/vendor_id-15806/Dropbear-Ssh-Project.html
e2fsprogs 1.46.5 (2021-12-30)
- https://git.kernel.org/pub/scm/fs/ext2/e2fsprogs.git
- https://sourceforge.net/projects/e2fsprogs/files/e2fsprogs/
- https://www.cvedetails.com/vulnerability-list/vendor_id-15251/E2fsprogs-Project.html
ethtool 6.0 (2022-10-10)
ethtool 5.19 (2022-08-22)
ethtool 5.18 (2022-06-14)
ethtool 5.17 (2022-04-04)
ethtool 5.16 (2022-01-19)
ethtool 5.15 (2021-11-09)
ethtool 5.14 (2021-09-12)
ethtool 5.13 (2021-07-09)
ethtool 5.12 (2021-05-02)
ethtool 5.10 (2020-12-16)
ethtool 5.9 (2020-10-15)
ethtool 5.8 (2020-08-04)
ethtool 5.7 (2020-06-04)
ethtool 5.6 (2020-05-12)
ethtool 5.4 (2020-01-10)
- https://mirrors.edge.kernel.org/pub/software/network/ethtool/
expat 2.5.0 (2022-10-25) - Correction de failles
- https://libexpat.github.io/
- https://sourceforge.net/projects/expat/files/expat/
- https://github.com/libexpat/libexpat/
- https://github.com/libexpat/libexpat/releases
- https://www.cvedetails.com/vulnerability-list/vendor_id-16735/Libexpat-Project.html
ffmpeg 5.1.2 (2022-09-25)
ffmpeg 4.4.3 (2022-10-09)
ffmpeg 4.3.5 (2022-10-10)
ffmpeg 4.2.8 (2022-10-11)
ffmpeg 4.1.10 (2022-10-21)
ffmpeg 3.4.12 (2022-10-27)
ffmpeg 3.2.19 (2022-10-28)
- https://ffmpeg.org/
- https://ffmpeg.org/index.html#news
- https://github.com/FFmpeg/FFmpeg/releases
flot 4.2.3 (2022-08-01)
- https://github.com/flot/flot/tags
- http://www.flotcharts.org/
glib 2.74.1 (2022-10-25)
- https://gitlab.gnome.org/GNOME/glib/-/releases
- https://docs.gtk.org/glib/
hdparm 9.65 (2022-09-07)
- https://sourceforge.net/p/hdparm/news/
- https://sourceforge.net/projects/hdparm/files/hdparm/
hfsprogs "diskdev_cmds" 667.40.1 (2021-01-04)
- https://opensource.apple.com/tarballs/diskdev_cmds/
i18next 22.0.4 (2022-10-28)
- https://github.com/i18next/i18next/releases
- https://github.com/i18next/i18next
- https://www.i18next.com/
inih r56 (2022-07-12)
- https://github.com/benhoyt/inih
- https://github.com/benhoyt/inih/releases
iproute2 en 6.0.0 (2022-10-04)
- https://mirrors.edge.kernel.org/pub/linux/utils/net/iproute2/
- https://git.kernel.org/pub/scm/network/iproute2/iproute2.git
ipsec-tools 0.8.2 (2014-02-27)
- https://www.cvedetails.com/vulnerability-list/vendor_id-2282/Ipsec-tools.html
- https://launchpad.net/debian/+source/ipsec-tools/+changelog
- https://salsa.debian.org/debian/ipsec-tools/commits/master
- https://salsa.debian.org/debian/ipsec-tools
- http://ipsec-tools.sourceforge.net/
Project abandonné, non sécurisé, strongswan est déjà utilisé, à supprimer enfin ?
iptables 1.8.8 (2022-05-13)
- https://netfilter.org/projects/iptables/
- https://netfilter.org/projects/iptables/files/changes-iptables-1.8.8.txt
iw 5.19 (2022-05-27)
- https://git.kernel.org/pub/scm/linux/kernel/git/jberg/iw.git
jansson 2.14 (2021-09-09)
- https://github.com/akheron/jansson/releases
jquery 3.6.1 (2022-08-26)
- https://github.com/jquery/jquery/tags
- https://github.com/jquery/jquery
- https://jquery.com/
- https://www.cvedetails.com/vulnerability-list/vendor_id-6538/product_id-11031/Jquery-Jquery.html
ksmbd/ksmbd-tools 3.4.6 (2022-10-09)
- https://github.com/cifsd-team/ksmbd-tools/releases
- https://github.com/cifsd-team/ksmbd-tools
libarchive 3.6.1 (2022-04-08) - Correction de failles
- https://github.com/libarchive/libarchive/releases
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=libarchive
- https://www.cvedetails.com/vulnerability-list/vendor_id-12872/product_id-26168/Libarchive-Libarchive.html
libevent 2.1.12-stable (2020-07-05)
- https://libevent.org/
- https://github.com/libevent/libevent
- https://raw.githubusercontent.com/libevent/libevent/release-2.1.12-stable/ChangeLog
libffi 3.4.4 (2022-10-24)
- https://sourceware.org/libffi/
- https://github.com/libffi/libffi
- https://github.com/libffi/libffi/releases
libgcrypt (LTS) 1.8.9 (2022-02-07) | libgcrypt 1.10.1 (2022-03-28)
- https://www.gnupg.org/software/libgcrypt/
- https://www.gnupg.org/software/libgcrypt/
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=libgcrypt
- https://www.cvedetails.com/vulnerability-list/vendor_id-4711/product_id-25777/Gnupg-Libgcrypt.html
libgd 2.3.3 (2021-03-06) | 2.3.0 : CVE fixes | 2.3.2 : Support for HEIF/AVIF
- http://libgd.github.io/
- https://github.com/libgd/libgd/releases
- https://www.cvedetails.com/vulnerability-list/vendor_id-6668/Libgd.html
libgeoip 1.6.12 (2018-01-17)
- https://github.com/maxmind/geoip-api-c/tree/master/libGeoIP
- https://packages.debian.org/sid/libgeoip-dev
libgpg-error 1.46 (2022-10-07)
- https://gnupg.org/software/libgpg-error/
libjpeg-turbo 2.1.4 (2022-09-13) - Correction de failles
- https://libjpeg-turbo.org/
- https://sourceforge.net/projects/libjpeg-turbo/files/
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=libjpeg-turbo
- https://www.cvedetails.com/vulnerability-list/vendor_id-17075/product_id-40849/Libjpeg-turbo-Libjpeg-turbo.html
libpcap 1.10.1 (2021-06-09)
- https://www.tcpdump.org/
minicom 2.8 (2021-01-01)
- https://salsa.debian.org/minicom-team/minicom
- https://salsa.debian.org/minicom-team/minicom/-/tags/2.8
netatalk 3.11.13 (2022-03-22) - Correction de failles
- https://netatalk.sourceforge.io/
- https://netatalk.sourceforge.io/3.1/ReleaseNotes3.1.13.html
nss-dns 0.15.1 (2021-06-12)
- https://github.com/lathiat/nss-mdns
ntfs-3g 2022.5.17 (2022-05-26) - Correction de failles
- https://github.com/tuxera/ntfs-3g
- https://www.cvedetails.com/vulnerability-list/vendor_id-17875/product_id-45193/Tuxera-Ntfs-3g.html
openssl 1.1.1s (2022-11-01) ou 3.0.7 (2022-11-01) - Correction de failles
- https://mta.openssl.org/pipermail/openssl-announce/2022-October/000240.html
- https://www.cvedetails.com/vulnerability-list/vendor_id-217/product_id-383/Openssl-Openssl.html
- https://www.openssl.org/
openvpn 2.5.8 (2022-10-28) - Correction de failles
- https://www.cvedetails.com/vulnerability-list/vendor_id-3278/Openvpn.html
- https://github.com/OpenVPN/openvpn
- http://openvpn.net/
- https://community.openvpn.net/openvpn/wiki/ChangesInOpenvpn25
ncurses 6.3 (2021-10-21)
- https://invisible-island.net/ncurses/announce.html
- https://invisible-mirror.net/archives/ncurses/?C=M;O=D
- https://www.gnu.org/software/ncurses/
- https://ftp.gnu.org/gnu/ncurses/?C=M;O=D
nfs-utils 2.6.2 (2022-08-09)
- https://sourceforge.net/projects/nfs/files/nfs-utils/
- http://git.linux-nfs.org/?p=steved/nfs-utils.git;a=summary
A noter que libnfsidmap a été fusionné dans nfs-utils !
Actuellement utilisé : libnfsidmap 0.25 (2011-12-06), dernière version avant fusion : 0.27 (2017-01-10) :
- http://www.citi.umich.edu/projects/nfsv4/linux/
- https://fedorapeople.org/~steved/libnfsidmap
libnl 3.7.0 (2022-07-06)
- https://github.com/thom311/libnl
libpng 1.6.38 (2022-09-14)
- http://www.libpng.org/pub/png/libpng.html
- https://github.com/glennrp/libpng/tags
libtirpc 1.3.3 (2022-08-07) :
- https://www.cvedetails.com/vulnerability-list/vendor_id-16462/product_id-37578/Libtirpc-Project-Libtirpc.html
- https://sourceforge.net/projects/libtirpc/files/
- http://git.linux-nfs.org/?p=steved/libtirpc.git;a=summary
libxml 2.10.3 (2022-10-14)
- https://www.cvedetails.com/vulnerability-list/vendor_id-1962/product_id-3311/Xmlsoft-Libxml2.html
- http://xmlsoft.org/
- https://github.com/GNOME/libxml2/
- https://gitlab.gnome.org/GNOME/libxml2/
lzo 2.10 (2017-03-01)
- http://www.oberhumer.com/opensource/lzo/
Material Design Icons 7.0.96 (2022-09-20)
- https://github.com/Templarian/MaterialDesign-JS/tags
- https://github.com/Templarian/MaterialDesign
moment 2.29.4 (2022-07-06)
- https://momentjs.com/
- https://github.com/moment/moment
- https://github.com/moment/moment/tags
moment-timezone 0.5.38 (2022-10-15)
- https://momentjs.com/timezone/
- https://github.com/moment/moment-timezone
- https://github.com/moment/moment-timezone/tags
mosquitto 1.6.15 (2021-06-09) + 2.0.15 (2022-08-16)
- https://mosquitto.org/
- https://github.com/eclipse/mosquitto
- https://github.com/eclipse/mosquitto/tags
mtd-utils 2.1.5 (2022-10-07)
- http://www.linux-mtd.infradead.org/
- 2.1.2: https://lists.infradead.org/pipermail/linux-mtd/2020-July/081299.html
- 2.1.3: https://lists.infradead.org/pipermail/linux-mtd/2021-July/087588.html
- 2.1.4: https://lists.infradead.org/pipermail/linux-mtd/2022-January/090742.html
- 2.1.5: https://lists.infradead.org/pipermail/linux-mtd/2022-October/095383.html
nginx-1.22.1 stable (2022-10-19) | nginx-1.23.2 mainline (2022-10-19)
- https://nginx.org/
- https://nginx.org/en/security_advisories.html
par2cmdline 0.8.1 (2020-02-09)
- https://github.com/Parchive/par2cmdline
pciutils 3.8.0 (2022-08-10)
- https://github.com/pciutils/pciutils/tags
pcre 8.45 (2021-06-21) | 10.40 (2022-04-15)
- https://www.pcre.org/
- https://github.com/PCRE2Project/pcre2
- https://github.com/PCRE2Project/pcre2/releases
- pcre2: https://www.cvedetails.com/vulnerability-list/vendor_id-3265/product_id-33513/Pcre-Pcre2.html
- pcre: https://www.cvedetails.com/vulnerability-list/vendor_id-3265/product_id-5715/Pcre-Pcre.html
- https://sourceforge.net/projects/pcre/files/pcre/
ppp 2.4.9 (2021-01-04) - Correction de failles
- https://github.com/paulusmack/ppp
- https://download.samba.org/pub/ppp/
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=ppp
procps-ng 4.0.1 (2022-10-20)
- https://gitlab.com/procps-ng/procps/-/tags
CVEs toujours là dans les Server car mise à jour non réalisée…
- http://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=procps-ng
- https://www.cvedetails.com/bugtraq-bid/104214/Procps-ng-Procps-Multiple-Security-Vulnerabilities.html
radvd 2.19 (2020-09-23) :
- http://www.litech.org/radvd/
- https://github.com/reubenhwk/radvd
readline 8.2 (2022-09-26)
- http://git.savannah.gnu.org/cgit/readline.git
- https://tiswww.case.edu/php/chet/readline/rltop.html
rpcbind 1.2.6 (2021-05-10) | 1.2.7 RC2 (2022-07-12)
- http://git.linux-nfs.org/?p=steved/rpcbind.git;a=summary
rrdtool 1.8.0 (2022-03-13)
- https://oss.oetiker.ch/rrdtool/
- https://github.com/oetiker/rrdtool-1.x
util-linux 2.38.1 (2022-08-04)
- https://github.com/util-linux/util-linux
- https://github.com/util-linux/util-linux/tags
Cela permet la mise à jour de sfdisk…
sg3-utils 1.47 (2021-11-10)
- http://sg.danny.cz/sg/sg3_utils.html
smartmontools 7.3 (2022-02-28)
- https://www.smartmontools.org/
strace 6.0 (2022-10-29)
- https://github.com/strace/strace
strongswan 5.9.8 (2022-10-03) - Correction de failles
- https://github.com/strongswan/strongswan/releases/tag/5.9.8
- https://www.strongswan.org/blog/2022/10/03/strongswan-vulnerability-(cve-2022-40617).html
- https://www.cvedetails.com/vulnerability-list/vendor_id-2278/product_id-3992/Strongswan-Strongswan.html
- https://www.strongswan.org/download.html
- https://github.com/strongswan/strongswan/releases
Version test en cours : strongSwan 6.0 Beta 1 (2022-10-22) :
- https://download.strongswan.org/CHANGES6dr.txt
tcpdump 4.99.1 (stable) (2021-06-09)
- https://www.tcpdump.org/
wireguard-tools 1.0.20210914 (2021-09-14)
- https://github.com/WireGuard/wireguard-tools
- https://github.com/WireGuard/wireguard-tools/tags
xfsprogs 5.19.0 (2022-08-12) | 6.0.0 rc0 (2022-09-15)
- https://git.kernel.org/pub/scm/fs/xfs/xfsprogs-dev.git
xterm.js 5.0.0 (2022-09-15)
- https://xtermjs.org/
- https://github.com/xtermjs/xterm.js/
xz 5.2.7 (2022-09-30)
- https://tukaani.org/xz/
yajl 2.1.0 (2014-03-19)
- https://lloyd.github.io/yajl/
- https://github.com/lloyd/yajl
- https://github.com/lloyd/yajl/tags
zlib 1.2.13 (2022-10-14) - Correction de failles
- http://zlib.net/
- https://github.com/madler/zlib
- https://www.cvedetails.com/vulnerability-list/vendor_id-13265/Zlib.html
zstd (Zstandard) en 1.5.2 (2022-01-20)
- https://facebook.github.io/zstd/
- https://github.com/facebook/zstd
ntfs-3g 2022.10.3 (2022-10-03)
- https://github.com/tuxera/ntfs-3g
- https://www.cvedetails.com/vulnerability-list/vendor_id-17875/product_id-45193/Tuxera-Ntfs-3g.html
dropbear 2022.83 (2022-11-14) :
- https://matt.ucc.asn.au/dropbear/dropbear.html
- https://matt.ucc.asn.au/dropbear/CHANGES
iproute2 6.1.0 (2022-12-12/2022-12-14)
- https://mirrors.edge.kernel.org/pub/linux/utils/net/iproute2/
- https://git.kernel.org/pub/scm/network/iproute2/iproute2.git
strace 6.1 (2022-12-12)
- https://github.com/strace/strace
xfsprogs 6.1.0 (2022-12-23)
- https://git.kernel.org/pub/scm/fs/xfs/xfsprogs-dev.git
tcpdump 4.99.2 (stable) (2022-12-31)
- https://www.tcpdump.org/
libpcap 1.10.2 (2022-12-31)
- https://www.tcpdump.org/
Linux Kernel : https://www.kernel.org/
- mainline: 6.2-rc2 2023-01-01)
- stable: 6.1.2 (2022-12-31)
- stable: 6.0.16 (2022-12-31)
- longterm: 5.15.86 (2022-12-31)
- longterm: 5.10.161 (2022-12-21)
- longterm: 5.4.228 (2022-12-19)
- longterm: 4.19.269 (2022-12-14)
- longterm: 4.14.302 (2022-12-14)
- longterm: 4.9.336 (2022-12-14)
xfsprogs 6.1.1 (2023-01-13)
- https://git.kernel.org/pub/scm/fs/xfs/xfsprogs-dev.git
xz 5.4.1 (2023-01-11)
xz 5.2.10 (2022-12-13) - old stable
- https://tukaani.org/xz/
hfsprogs "diskdev_cmds" 697.60.3 (2022-09-26)
- https://opensource.apple.com/tarballs/diskdev_cmds/
- https://github.com/apple-oss-distributions/diskdev_cmds/tags
libpcap 1.10.3 (2023-01-12)
- https://www.tcpdump.org/
tcpdump 4.99.3 (stable) (2023-01-12)
- https://www.tcpdump.org/
ksmbd/ksmbd-tools 3.4.8 (2023-04-08) :
- https://github.com/cifsd-team/ksmbd-tools/releases
- https://github.com/cifsd-team/ksmbd-tools
PPP 2.5.0 (2023-04-04)
- https://github.com/paulusmack/ppp
- https://download.samba.org/pub/ppp/
Note: Il y a toujours des failles dans la version actuellement utilisée "2.4.8" :
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=ppp
dnsmasq 2.89 (2023-02-04)
- https://www.cvedetails.com/vulnerability-list/vendor_id-8351/product_id-14557/Thekelleys-Dnsmasq.html
- https://thekelleys.org.uk/dnsmasq/doc.html
- https://thekelleys.org.uk/dnsmasq/CHANGELOG
- https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=summary
La version actuellement utilisée "2.85" a des vulnérabilités, CVE.
netatalk 3.11.14 (2023-01-10) - Correction de failles (Apple AFP / AppleShare - Mac)
- https://netatalk.sourceforge.io/
- https://github.com/Netatalk/netatalk/
- https://github.com/Netatalk/netatalk/releases
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=netatalk
Erreur dans le précédent commentaire… On ne peut pas éditer…
netatalk 3.1.14 (2023-01-10) - Correction de failles (Apple AFP / AppleShare - Mac)
- https://netatalk.sourceforge.io/
- https://github.com/Netatalk/netatalk/
- https://github.com/Netatalk/netatalk/releases
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=netatalk
CUPS 2.4.2 (2022-05-26) - CVE fixes
- https://github.com/OpenPrinting/cups/releases/tag/v2.4.2
- https://github.com/OpenPrinting/cups/releases
- https://github.com/OpenPrinting/cups/tags
- https://github.com/OpenPrinting/cups
- https://github.com/OpenPrinting
libevent 2.2.1-alpha (2023-05-21)
- https://libevent.org/
- https://github.com/libevent/libevent/blob/release-2.2.1-alpha/ChangeLog
Pensez à renommer libeventreal en libevent.
openvpn 2.6.4 (2023-05-11) :
- https://www.cvedetails.com/vulnerability-list/vendor_id-3278/Openvpn.html
- https://github.com/OpenVPN/openvpn
- https://github.com/OpenVPN/openvpn/tags
- http://openvpn.net/
- https://openvpn.net/community-downloads/
netatalk 3.1.15 (2023-04-28) - Correction de failles (Apple AFP / AppleShare - Mac)
- https://netatalk.sourceforge.io/
- https://github.com/Netatalk/netatalk/
- https://github.com/Netatalk/netatalk/releases
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=netatalk
En autres, 3.1.15 :
- FIX: CVE-2022-43634
- FIX: CVE-2022-45188
iproute2 6.3.0 (2023-04-27)
- https://mirrors.edge.kernel.org/pub/linux/utils/net/iproute2/
- https://git.kernel.org/pub/scm/network/iproute2/iproute2.git
libusb 1.0.26 (2022-04-10) :
- https://libusb.info/
- https://github.com/libusb/libusb/releases
- https://github.com/libusb/libusb/tags
libusb-compat 0.1.8 (2022-11-18) :
- https://libusb.info/
- https://github.com/libusb/libusb-compat-0.1/releases
- https://github.com/libusb/libusb-compat-0.1/tags
CUPS 2.4.3 (2023-06-01)
- https://github.com/OpenPrinting/cups/releases/tag/v2.4.3
- https://github.com/OpenPrinting/cups/releases
- https://github.com/OpenPrinting/cups/tags
- https://github.com/OpenPrinting/cups
- https://github.com/OpenPrinting
Avec des failles (CVEs) corrigées.
CUPS 2.4.4 (2023-06-06)
- https://github.com/OpenPrinting/cups/releases/tag/v2.4.4
- https://github.com/OpenPrinting/cups/releases
- https://github.com/OpenPrinting/cups/tags
- https://github.com/OpenPrinting/cups
- https://github.com/OpenPrinting
tcpdump 4.99.4 (stable) (2023-04-07)
- https://www.tcpdump.org/
Dnsmasq 2.89 (2023-02-04) qui corrige des bugs | failles (CVEs) corrigé en 2.87 :
- https://www.cvedetails.com/vulnerability-list/vendor_id-8351/product_id-14557/Thekelleys-Dnsmasq.html
- https://thekelleys.org.uk/dnsmasq/doc.html
- https://thekelleys.org.uk/dnsmasq/CHANGELOG
- https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=summary
ksmbd/ksmbd-tools 3.4.9 (2023-07-25) :
- https://github.com/cifsd-team/ksmbd-tools/releases
- https://github.com/cifsd-team/ksmbd-tools
cc: @mmakassikis.
CUPS 2.4.6 (2023-06-22)
- https://github.com/OpenPrinting/cups/releases/tag/v2.4.6
- https://github.com/OpenPrinting/cups/releases
- https://github.com/OpenPrinting/cups/tags
- https://github.com/OpenPrinting/cups
- https://github.com/OpenPrinting
Avec des failles (CVEs) corrigées.
bzip2 1.0.8 (2019-07-13) avec plusieurs corrections de failles
- https://www.sourceware.org/bzip2/
- https://sourceware.org/pub/bzip2/?C=M;O=D
- https://www.cvedetails.com/vulnerability-list/vendor_id-1198/product_id-2068/version_id-557742/Bzip-Bzip2-1.0.6.html
xz 5.4.4 (2023-08-02)
xz 5.2.12 (2023-05-04) - old stable
- https://tukaani.org/xz/
- https://github.com/tukaani-project/xz/
zlib 1.3 (2023-08-18)
- https://zlib.net/
- https://github.com/madler/zlib
zstd (Zstandard) en 1.5.5 (2023-04-05)
- https://facebook.github.io/zstd/
- https://github.com/facebook/zstd
openvpn 2.6.6 (2023-08-14) et ainsi corriger la faille de sécurité actuellement présente avec OpenVPN 2.5.3, version du 17 juin 2021 ?
- https://www.cvedetails.com/vulnerability-list/vendor_id-3278/product_id-5768/version_id-1306242/Openvpn-Openvpn-2.5.3.html
- https://github.com/OpenVPN/openvpn
- https://github.com/OpenVPN/openvpn/tags
- http://openvpn.net/
- https://openvpn.net/community-downloads/
RAPPEL :
expat 2.5.0 (2022-10-25) - Correction de failles
- https://libexpat.github.io/
- https://sourceforge.net/projects/expat/files/expat/
- https://github.com/libexpat/libexpat/
- https://github.com/libexpat/libexpat/releases
- https://www.cvedetails.com/vulnerability-list/vendor_id-16735/Libexpat-Project.html
Beaucoup de failles de la version actuelle utilisée : 2.4.8.
smartmontools 7.4 (2023-08-04)
- https://www.smartmontools.org/
- https://sourceforge.net/projects/smartmontools/files/smartmontools/
Rappel du 2022-11-01 :
wireguard-tools 1.0.20210914 (2021-09-14)
- https://github.com/WireGuard/wireguard-tools
- https://github.com/WireGuard/wireguard-tools/tags
netatalk 3.1.16 (2023-09-11) - Correction de failles (Apple AFP / AppleShare - Mac)
- https://netatalk.sourceforge.io/
- https://github.com/Netatalk/netatalk/
- https://github.com/Netatalk/netatalk/releases
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=netatalk
hfsprogs "diskdev_cmds" 701.100.2 (2023-06-14)
- https://opensource.apple.com/tarballs/diskdev_cmds/
- https://github.com/apple-oss-distributions/diskdev_cmds/tags
openvpn 2.6.8 (2023-11-17) :
- https://www.cvedetails.com/vulnerability-list/vendor_id-3278/Openvpn.html
- https://github.com/OpenVPN/openvpn
- https://github.com/OpenVPN/openvpn/tags
- http://openvpn.net/
- https://openvpn.net/community-downloads/
ksmbd/ksmbd-tools 3.4.8 (2023-11-09) :
- https://github.com/cifsd-team/ksmbd-tools/releases
- https://github.com/cifsd-team/ksmbd-tools
ksmbd/ksmbd-tools 3.5.1 (2023-11-09) :
- https://github.com/cifsd-team/ksmbd-tools/releases
- https://github.com/cifsd-team/ksmbd-tools
hfsprogs "diskdev_cmds" 712 (2023-09-21)
- https://opensource.apple.com/tarballs/diskdev_cmds/
- https://github.com/apple-oss-distributions/diskdev_cmds/tags
netatalk 3.1.18 (2023-10-05) - Correction de failles (Apple AFP / AppleShare - Mac)
- https://netatalk.sourceforge.io/
- https://github.com/Netatalk/netatalk/
- https://github.com/Netatalk/netatalk/releases
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=netatalk
xz 5.4.5 (2023-11-01)
xz 5.2.12 (2023-05-04) - old stable
- https://tukaani.org/xz/
- https://github.com/tukaani-project/xz/
CUPS 2.4.7 (2023-09-20)
- https://github.com/OpenPrinting/cups/releases/tag/v2.4.7
- https://github.com/OpenPrinting/cups/releases
- https://github.com/OpenPrinting/cups/tags
- https://github.com/OpenPrinting/cups
- https://github.com/OpenPrinting
Avec des failles (CVEs) corrigées.
iproute2 6.6.0 (2023-11-04)
- https://mirrors.edge.kernel.org/pub/linux/utils/net/iproute2/
- https://git.kernel.org/pub/scm/network/iproute2/iproute2.git
libpcap 1.10.4 (2023-04-07)
- https://www.tcpdump.org/
strace 6.6 (2023-10-31)
- https://github.com/strace/strace
- https://github.com/strace/strace/releases
xfsprogs 6.5.0 (2023-10-12)
- https://git.kernel.org/pub/scm/fs/xfs/xfsprogs-dev.git
FFmpeg:
5.1.4 (2023-11-10)
6.0.1 (2023-11-10)
6.1 (2023-11-11)
- https://ffmpeg.org/
- https://ffmpeg.org/index.html#news
- https://github.com/FFmpeg/FFmpeg/releases
minicom 2.9 (2023-09-22)
- https://salsa.debian.org/minicom-team/minicom
- https://salsa.debian.org/minicom-team/minicom/-/tags/2.9
ksmbd 3.4.9 (2024-02-05) :
- https://github.com/cifsd-team/ksmbd/releases
- - https://github.com/cifsd-team/ksmbd
—
ksmbd-tools 3.5.1 (2023-11-09) :
- https://github.com/cifsd-team/ksmbd-tools/releases
- https://github.com/cifsd-team/ksmbd-tools
iproute2 6.7.0 (2024-01-08)
- https://mirrors.edge.kernel.org/pub/linux/utils/net/iproute2/
- https://git.kernel.org/pub/scm/network/iproute2/iproute2.git
dropbear 2024.85 (2024-04-25) :
- https://matt.ucc.asn.au/dropbear/dropbear.html
- https://matt.ucc.asn.au/dropbear/CHANGES
openvpn 2.6.11 (2024-06-20) :
- https://www.cvedetails.com/vulnerability-list/vendor_id-3278/Openvpn.html
- https://github.com/OpenVPN/openvpn
- https://github.com/OpenVPN/openvpn/tags
- http://openvpn.net/
- https://openvpn.net/community-downloads/
Note : Il y a aussi une 2.5.10 (2024-03-21).
strongSwan 5.9.14 (2024-03-19) / strongSwan 6.0.0beta6 (2024-03-20) :
- https://www.strongswan.org/download.html
- https://github.com/strongswan/strongswan/releases
ksmbd 3.5.0 (2024-05-15) :
- https://github.com/cifsd-team/ksmbd/releases
—
ksmbd-tools 3.5.2 (2024-04-06) :
- https://github.com/cifsd-team/ksmbd-tools/releases
- https://github.com/cifsd-team/ksmbd-tools
@mbizon, @mmakassikis: Il n'y a pas eu de corrections dans Freebox OS, il y a toujours les 2 CVEs dans bzip 1.0.6:
- https://www.cvedetails.com/vulnerability-list/vendor_id-1198/product_id-2068/version_id-557742/Bzip-Bzip2-1.0.6.html
La dernière version est la 1.0.8 (2019-07-13) :
- https://sourceware.org/bzip2/downloads.html
- https://sourceware.org/pub/bzip2/?C=M;O=D
En développement ici :
- https://gitlab.com/bzip2/bzip2
crypto-js 4.2.0 (2023-10-25) :
- https://github.com/brix/crypto-js/
- https://github.com/brix/crypto-js/tags
@mbizon, @mmakassikis: Dnsmasq 2.90 (2024-02-13) qui corrige des bugs | failles (CVEs) corrigées en 2.87 et 2.90 :
- https://www.cvedetails.com/vulnerability-list/vendor_id-8351/product_id-14557/Thekelleys-Dnsmasq.html
- https://thekelleys.org.uk/dnsmasq/doc.html
- https://thekelleys.org.uk/dnsmasq/CHANGELOG
- https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=summary
e2fsprogs 1.47.1 (2024-05-21) | Il y a plusieurs CVEs corrigées depuis la version actuellement utilisée :
- https://git.kernel.org/pub/scm/fs/ext2/e2fsprogs.git
- https://sourceforge.net/projects/e2fsprogs/files/e2fsprogs/
- https://www.cvedetails.com/vulnerability-list/vendor_id-15251/E2fsprogs-Project.html
OpenSSL 3.3.1 (2024-06-04), 3.2.2 (2024-06-04), 3.1.6 (2024-06-04), 3.0.14 (2024-06-04) afin de corriger des bugs et failles (CVEs).
OpenSSL 1.1.1* n’est plus maintenu depuis le mois de septembre 2023.
- https://openssl-library.org/post/2023-03-28-1.1.1-eol/
Fin de vie suivante :
- 3.0.x sera corrigé jusqu’au 7 septembre 2026 (LTS)
- 3.1.x sera corrigé jusqu’au 14 mars 2025
- 3.2.x sera corrigé jusqu’au 23 novembre 2025
- 3.3.x sera corrigé jusqu’au 10 avril 2026
Liens :
- https://openssl-library.org/news/openssl-3.0-notes/index.html
- https://openssl-library.org/news/openssl-3.1-notes/index.html
- https://openssl-library.org/news/openssl-3.2-notes/index.html
- https://openssl-library.org/news/openssl-3.3-notes/index.html
- https://www.cvedetails.com/vulnerability-list/vendor_id-217/product_id-383/Openssl-Openssl.html
- https://www.openssl.org/
Les versions d'OpenSSL 3.3.2, 3.2.3, 3.1.7 et 3.0.15 sont prévues pour le 3 septembre 2024 après-midi avec de nouvelles corrections de failles de sécurité.
OpenSSL 3.4.0 (2024-10-22)
- https://openssl-library.org/source/index.html
dropbear 2024.86 (2024-10-22) :
- https://matt.ucc.asn.au/dropbear/dropbear.html
- https://matt.ucc.asn.au/dropbear/CHANGES
strongSwan 6.0.0 (2024-12-03) :
- https://www.strongswan.org/download.html
- https://github.com/strongswan/strongswan/releases
openvpn 2.6.12 (2024-07-17) :
- https://www.cvedetails.com/vulnerability-list/vendor_id-3278/Openvpn.html
- https://github.com/OpenVPN/openvpn
- https://github.com/OpenVPN/openvpn/tags
- http://openvpn.net/
- https://openvpn.net/community-downloads/
openvpn 2.5.11 (2024-07-18) :
- https://www.cvedetails.com/vulnerability-list/vendor_id-3278/Openvpn.html
- https://github.com/OpenVPN/openvpn
- https://github.com/OpenVPN/openvpn/tags
- http://openvpn.net/
- https://openvpn.net/community-downloads/
iproute2 6.12.0 (2024-11-19)
- https://mirrors.edge.kernel.org/pub/linux/utils/net/iproute2/
- https://git.kernel.org/pub/scm/network/iproute2/iproute2.git
FFmpeg:
- https://ffmpeg.org/
- https://ffmpeg.org/index.html#news
- https://github.com/FFmpeg/FFmpeg/tags
- 7.1 2024-09-30
- 4.3.8 2024-08-06
- 5.1.6 2024-08-05
- 7.0.2 2024-08-03
- 6.1.2 2024-08-02
- 4.2.10 2024-08-01
- 4.4.5 2024-07-29
xz
5.2.13 (2024-05-29)
5.4.7 (2024-05-29)
5.6.3 (2024-10-01)
- https://tukaani.org/xz/
- https://github.com/tukaani-project/xz/
Important : Le code a été vérifié après avoir eu une tentative de backdoor.
libpcap 1.10.5 (2024-08-30)
- https://www.tcpdump.org/
tcpdump 4.99.5 (stable) (2024-08-30)
- https://www.tcpdump.org/
2.4.11 (2024-09-30)
- https://github.com/OpenPrinting/cups/tags
- https://github.com/OpenPrinting/cups
- https://github.com/OpenPrinting
Avec des failles (CVEs) corrigées.
strace 6.12 (2024-11-18)
- https://github.com/strace/strace
- https://github.com/strace/strace/releases
xfsprogs 6.12.0 (2024-12-02)
- https://git.kernel.org/pub/scm/fs/xfs/xfsprogs-dev.git
hfsprogs "diskdev_cmds" 735 (2024-09-24)
- https://opensource.apple.com/tarballs/diskdev_cmds/
- https://github.com/apple-oss-distributions/diskdev_cmds/tags
netatalk 4.0.7 (2024-11-24) - Correction de failles (Apple AFP / AppleShare - Mac)
- https://netatalk.sourceforge.io/
- https://github.com/Netatalk/netatalk/
- https://github.com/Netatalk/netatalk/releases
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=netatalk
expat 2.6.4 (2024-11-16) - Correction de failles
- https://libexpat.github.io/
- https://sourceforge.net/projects/expat/files/expat/
- https://github.com/libexpat/libexpat/
- https://github.com/libexpat/libexpat/releases
- https://www.cvedetails.com/vulnerability-list/vendor_id-16735/Libexpat-Project.html
zlib 1.3.1 (2024-01-22)
- https://zlib.net/
- https://github.com/madler/zlib
- https://github.com/madler/zlib/tags
zstd (Zstandard) 1.5.6 (2024-03-29)
- https://facebook.github.io/zstd/
- https://github.com/facebook/zstd
- https://github.com/facebook/zstd/tags
libusb 1.0.27 (2024-01-31) :
- https://libusb.info/
- https://github.com/libusb/libusb/releases
- https://github.com/libusb/libusb/tags
PPP 2.5.1 (2024-09-18)
- https://github.com/ppp-project/ppp/tags
- https://github.com/ppp-project/ppp/releases
- https://download.samba.org/pub/ppp/
Note: Il y a toujours des failles dans la version actuellement utilisée "2.4.8" :
- https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=ppp
sg3-utils 1.48 (2023-08-01)
- http://sg.danny.cz/sg/sg3_utils.html
sg3-utils 1.48 (2023-08-01)
- http://sg.danny.cz/sg/sg3_utils.html
- https://github.com/doug-gilbert/sg3_utils/tags
xterm.js 5.5.0 (2024-04-05)
- https://xtermjs.org/
- https://github.com/xtermjs/xterm.js
- https://github.com/xtermjs/xterm.js/tags
util-linux 2.40.2 (2024-07-04)
- https://github.com/util-linux/util-linux
- https://github.com/util-linux/util-linux/tags
Cela permet la mise à jour de sfdisk…
rrdtool 1.9.0 (2024-07-29)
- https://oss.oetiker.ch/rrdtool/
- https://github.com/oetiker/rrdtool-1.x
- https://github.com/oetiker/rrdtool-1.x/releases
- https://github.com/oetiker/rrdtool-1.x/tags
rpcbind 1.2.7 (2024-07-25) | 1.2.8 RC2 (2024-11-11)
- http://git.linux-nfs.org/?p=steved/rpcbind.git;a=summary
procps-ng 4.0.4 (2023-08-31) | 4.0.5-rc1 (2024-12-03)
- https://gitlab.com/procps-ng/procps/-/tags
CVEs toujours là dans les Server car mise à jour non réalisée…
- http://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=procps-ng
- https://www.cvedetails.com/bugtraq-bid/104214/Procps-ng-Procps-Multiple-Security-Vulnerabilities.html
pcre 10.44 (2024-06-07)
- https://www.pcre.org/
- https://github.com/PCRE2Project/pcre2
- https://github.com/PCRE2Project/pcre2/releases
- pcre2: https://www.cvedetails.com/vulnerability-list/vendor_id-3265/product_id-33513/Pcre-Pcre2.html
- pcre: https://www.cvedetails.com/vulnerability-list/vendor_id-3265/product_id-5715/Pcre-Pcre.html
- https://sourceforge.net/projects/pcre/files/pcre/
pciutils 3.13.0 (2024-05-30)
- https://github.com/pciutils/pciutils - https://github.com/pciutils/pciutils/tags
nginx-1.26.2 stable (2024-08-14) | nginx-1.27.3 mainline (2024-11-26)
- https://nginx.org/
- https://nginx.org/news.html
- https://nginx.org/en/security_advisories.html
mtd-utils 2.2.1 (2024-09-25)
- http://www.linux-mtd.infradead.org/
- 2.1.2: https://lists.infradead.org/pipermail/linux-mtd/2020-July/081299.html
- 2.1.3: https://lists.infradead.org/pipermail/linux-mtd/2021-July/087588.html
- 2.1.4: https://lists.infradead.org/pipermail/linux-mtd/2022-January/090742.html
- 2.1.5: https://lists.infradead.org/pipermail/linux-mtd/2022-October/095383.html
- 2.1.6: https://lists.infradead.org/pipermail/linux-mtd/2023-August/100922.html
- 2.2.0: https://lists.infradead.org/pipermail/linux-mtd/2024-March/104058.html
- 2.2.1: https://lists.infradead.org/pipermail/linux-mtd/2024-September/106193.html
mosquitto 2.0.20 (2024-10-16)
- https://mosquitto.org/
- https://github.com/eclipse/mosquitto
- https://github.com/eclipse/mosquitto/tags
moment-timezone 0.5.46 (2024-10-06)
- https://momentjs.com/timezone/
- https://github.com/moment/moment-timezone
- https://github.com/moment/moment-timezone/tags
moment 2.30.1 (2023-12-27)
- https://momentjs.com/
- https://github.com/moment/moment
- https://github.com/moment/moment/tags
Material Design Icons 7.4.47 (2023-12-27)
- https://github.com/Templarian/MaterialDesign-JS/tags
- https://github.com/Templarian/MaterialDesign
libxml 2.13.5 (2024-11-12)
- https://www.cvedetails.com/vulnerability-list/vendor_id-1962/product_id-3311/Xmlsoft-Libxml2.html - http://xmlsoft.org/
- https://github.com/GNOME/libxml2/
- https://gitlab.gnome.org/GNOME/libxml2/
- https://gitlab.gnome.org/GNOME/libxml2/-/tags
ksmbd-tools 3.5.3 (2024-12-05) :
- https://github.com/cifsd-team/ksmbd-tools/releases
- https://github.com/cifsd-team/ksmbd-tools