packages/net/vsftpd/patches, branch masterMirror of packages feedhttps://git.openwrt.org/feed/packages/atom?h=master2021-06-02T09:00:26Zvsftpd: update to 3.0.42021-06-02T09:00:26ZRosen Penev2021-06-02T01:03:21Zurn:sha1:3737c84bbdeb45c451c103664bab696e3f35692c
Switch to AUTORELEASE for simplicity.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
treewide: Run refresh on all packages2021-02-21T00:02:15ZIlya Lipnitskiy2021-02-21T00:02:15Zurn:sha1:5d8d4fbbcb5c5de9370711c19bb3510210989a98
The crude loop I wrote to come up with this changeset:
find -L package/feeds/packages/ -name patches | \
sed 's/patches$/refresh/' | sort | xargs make
Signed-off-by: Ilya Lipnitskiy <ilya.lipnitskiy@gmail.com>
vsftpd: Fix compilation without ECC or deprecated APIs2018-11-24T02:18:03ZRosen Penev2018-11-24T02:18:03Zurn:sha1:1371b7be878382b8b52cd73ff72a3a41d28013c4
Signed-off-by: Rosen Penev <rosenp@gmail.com>
vsftpd: update to 3.0.32015-08-17T19:21:23ZHannu Nyman2015-08-17T19:21:23Zurn:sha1:f1b60bac41d922f10f7f47c3c3a354268104a4db
Update vsftpd to 3.0.3 released in July 2015.
Changelog: https://security.appspot.com/vsftpd/Changelog.txt
Release blog: http://scarybeastsecurity.blogspot.fi/2015/07/vsftpd-303-released-and-horrors-of-ftp.html
- Increase VSFTP_AS_LIMIT to 200MB; various reports.
- Make the PWD response more RFC compliant; report from Barry Kelly
<barry@modeltwozero.com>.
- Remove the trailing period from EPSV response to work around BT Internet
issues; report from Tim Bishop <tdb@mirrorservice.org>.
- Fix syslog_enable issues vs. seccomp filtering. Report from Michal Vyskocil
<mvyskocil@suse.cz>. At least, syslogging seems to work on my Fedora now.
- Allow gettimeofday() in the seccomp sandbox. I can't repro failures, but I
probably have a different distro / libc / etc. and there are multiple reports.
- Some kernels support PR_SET_NO_NEW_PRIVS but not PR_SET_SECCOMP, so handle
this case gracefully. Report from Vasily Averin <vvs@odin.com>.
- List the TLS1.2 cipher AES128-GCM-SHA256 as first preference by default.
- Make some compile-time SSL defaults (such as correct client shutdown
handling) stricter.
- Disable Nagle algorithm during SSL data connection shutdown, to avoid 200ms
delays. From Tim Kosse <tim.kosse@filezilla-project.org>.
- Kill the FTP session if we see HTTP protocol commands, to avoid
cross-protocol attacks. A report from Jann Horn <jann@thejh.net>.
- Kill the FTP session if we see session re-use failure. A report from
Tim Kosse <tim.kosse@filezilla-project.org>.
(vsftpd-3.0.3pre1)
- Enable ECDHE, Tim Kosse <tim.kosse@filezilla-project.org>.
- Default cipher list is now just ECDHE-RSA-AES256-GCM-SHA384.
- Minor SSL logging improvements.
- Un-default tunable_strict_ssl_write_shutdown again. We still have
tunable_strict_ssl_read_eof defaulted now, which is the important one to prove
upload integrity.
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
[packages] vsftpd: CVE-2015-1419 Unspecified vulnerability in vsftp 3.0.2 and earlier allows remote attackers to bypass access restrictions via unknown vectors, related to deny_file parsing.2015-06-28T20:02:08ZCezary Jackiewicz2015-06-28T20:02:08Zurn:sha1:62fff58380787e886f26c95991c5b4804de3a511vsftpd: fix musl compatibility2015-06-16T18:50:04ZHannu Nyman2015-06-16T18:50:04Zurn:sha1:bc7c3799d4a406ece96e74418b2df2734f571bfc
Make vsftpd to compile with musl, while preserving uclibc compatibility.
When using musl:
* disable UTMPX functionality
* disable -lnsl option in upstream Makefile
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
vsftpd: import from oldpackages. No changes.2014-07-21T16:40:36ZHannu Nyman2014-07-21T16:40:36Zurn:sha1:aff2e9e76448a59782585605c9fbfbdba8fd5203