<feed xmlns='http://www.w3.org/2005/Atom'>
<title>linux/meta-openembedded.git/meta-networking/recipes-support/strongswan/files, branch pyro</title>
<subtitle>Mirror of git.openembedded.org/meta-openembedded</subtitle>
<id>https://git.enea.com/cgit/linux/meta-openembedded.git/atom?h=pyro</id>
<link rel='self' href='https://git.enea.com/cgit/linux/meta-openembedded.git/atom?h=pyro'/>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/'/>
<updated>2017-01-19T08:25:44+00:00</updated>
<entry>
<title>strongswan: delete obsolete patches</title>
<updated>2017-01-19T08:25:44+00:00</updated>
<author>
<name>Oleksandr Kravchuk</name>
<email>oleksandr.kravchuk@pelagicore.com</email>
</author>
<published>2016-12-30T06:41:56+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=c0e27d549e575a334f4dc9b35aa183371002ee53'/>
<id>urn:sha1:c0e27d549e575a334f4dc9b35aa183371002ee53</id>
<content type='text'>
Signed-off-by: Oleksandr Kravchuk &lt;oleksandr.kravchuk@pelagicore.com&gt;
Signed-off-by: Martin Jansa &lt;Martin.Jansa@gmail.com&gt;
</content>
</entry>
<entry>
<title>strongswan: install strongswan-swanctl systemd service by default.</title>
<updated>2016-01-05T17:43:33+00:00</updated>
<author>
<name>Chris Patterson</name>
<email>pattersonc@ainfosec.com</email>
</author>
<published>2015-12-18T20:49:42+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=1dbb1ff9b15e42ace9ac12c8e0630b9e520e17cd'/>
<id>urn:sha1:1dbb1ff9b15e42ace9ac12c8e0630b9e520e17cd</id>
<content type='text'>
Matches start-on-boot behaviour of current strongswan.service.

Signed-off-by: Chris Patterson &lt;pattersonc@ainfosec.com&gt;
Signed-off-by: Martin Jansa &lt;Martin.Jansa@gmail.com&gt;
Signed-off-by: Joe MacDonald &lt;joe_macdonald@mentor.com&gt;
</content>
</entry>
<entry>
<title>strongswan: add configure patch fix for systemd</title>
<updated>2016-01-05T17:43:33+00:00</updated>
<author>
<name>Chris Patterson</name>
<email>pattersonc@ainfosec.com</email>
</author>
<published>2015-12-18T20:49:41+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=7d46b0877541b94b1765236006434b905d896a7a'/>
<id>urn:sha1:7d46b0877541b94b1765236006434b905d896a7a</id>
<content type='text'>
Fixes strongswan configure script for systemd &gt;= 209,
where it merged libsystemd-journal and libsystemd-daemon
into libsystemd.

Signed-off-by: Chris Patterson &lt;pattersonc@ainfosec.com&gt;
Signed-off-by: Martin Jansa &lt;Martin.Jansa@gmail.com&gt;
Signed-off-by: Joe MacDonald &lt;joe_macdonald@mentor.com&gt;
</content>
</entry>
<entry>
<title>strongswan: uprev to version 5.2.0</title>
<updated>2014-08-21T19:35:07+00:00</updated>
<author>
<name>Jackie Huang</name>
<email>jackie.huang@windriver.com</email>
</author>
<published>2014-08-18T07:05:02+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=778ddba7010febf0b5c8029f09e83a3288eaa18b'/>
<id>urn:sha1:778ddba7010febf0b5c8029f09e83a3288eaa18b</id>
<content type='text'>
* removed two patches which were already integrated in 5.2.0:
  strongswan-4.3.3-5.1.1_asn1_unwrap.patch
  strongswan-5.0.0-5.1.2_reject_child_sa.patch

Signed-off-by: Jackie Huang &lt;jackie.huang@windriver.com&gt;
Signed-off-by: Martin Jansa &lt;Martin.Jansa@gmail.com&gt;
</content>
</entry>
<entry>
<title>strongswan: Security Advisory - strongswan - CVE-2014-2891</title>
<updated>2014-08-05T20:23:58+00:00</updated>
<author>
<name>Yue Tao</name>
<email>Yue.Tao@windriver.com</email>
</author>
<published>2014-07-28T08:17:05+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=18bea207810b73828451a60f2d647c91f83d1883'/>
<id>urn:sha1:18bea207810b73828451a60f2d647c91f83d1883</id>
<content type='text'>
strongSwan before 5.1.2 allows remote attackers to cause a denial of
service (NULL pointer dereference and IKE daemon crash) via a crafted
ID_DER_ASN1_DN ID payload.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-2891

Signed-off-by: Yue Tao &lt;Yue.Tao@windriver.com&gt;
Signed-off-by: Jackie Huang &lt;jackie.huang@windriver.com&gt;
Signed-off-by: Martin Jansa &lt;Martin.Jansa@gmail.com&gt;
</content>
</entry>
<entry>
<title>strongswan: Security Advisory - strongswan - CVE-2014-2338</title>
<updated>2014-05-09T14:18:40+00:00</updated>
<author>
<name>Yue Tao</name>
<email>Yue.Tao@windriver.com</email>
</author>
<published>2014-05-09T09:05:50+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=6938319b3265f83a4bcc7fca31dec5c525a32022'/>
<id>urn:sha1:6938319b3265f83a4bcc7fca31dec5c525a32022</id>
<content type='text'>
IKEv2 in strongSwan 4.0.7 before 5.1.3 allows remote attackers to bypass
authentication by rekeying an IKE_SA during (1) initiation or (2)
re-authentication, which triggers the IKE_SA state to be set to
established.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-2338

Signed-off-by: Yue Tao &lt;Yue.Tao@windriver.com&gt;
Signed-off-by: Roy Li &lt;rongqing.li@windriver.com&gt;
Signed-off-by: Joe MacDonald &lt;joe@deserted.net&gt;
</content>
</entry>
<entry>
<title>strongswan: update verion to 5.1.1</title>
<updated>2014-03-14T12:51:45+00:00</updated>
<author>
<name>Jackie Huang</name>
<email>jackie.huang@windriver.com</email>
</author>
<published>2014-03-04T06:38:42+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=238093bf8c37bff8fc92341d8dcd481a2b6a6a1f'/>
<id>urn:sha1:238093bf8c37bff8fc92341d8dcd481a2b6a6a1f</id>
<content type='text'>
* Add a patch to fix the function parameter.
* Add PACKAGECONFIG for optional packages instead of explicitly
  disable, and set sqlite and curl as default.
* Remove the split package strongswan-plugins.
* Add configure option --without-lib-prefix so it doesn't
  search for libraries in includedir and libdir to avoid QA error.

Signed-off-by: Jackie Huang &lt;jackie.huang@windriver.com&gt;
Signed-off-by: Joe MacDonald &lt;joe@deserted.net&gt;
</content>
</entry>
</feed>
