SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for openswan-2.6.21-5.SEL5_5.6.x86_64.rpm :

* Thu Dec 15 2011 Eddy Nigg - Rebuild for StartCom Linux 5.0.x
* Sat Oct 29 2011 Avesh Agarwal - 2.6.21-5.6Resolves: #748967 cve-2011-4073 updated patch by upstream
* Thu Oct 27 2011 Avesh Agarwal - 2.6.21-5.5Resolves: #748967 cve-2011-4073
* Thu Feb 24 2011 Avesh Agarwal - 2.6.21-5.4Resolves: #680044
* Wed May 12 2010 Avesh Agarwal - 2.6.21-5.3Resolves: #591105
* Fri Jan 22 2010 Avesh Agarwal - 2.6.21-5.2- Fixes openswan logging NSS database password issueResolves: #557688
* Mon Nov 09 2009 Avesh Agarwal - 2.6.21-5.1- Addresses bz 533883- Addresses key zeroization- Updates package description Resolves: #533883
* Wed Jul 15 2009 Avesh Agarwal - 2.6.21-5- Improved FIPS integrity check functionalityResolves: #469763 FIPS-140: Add integrity checking
* Sat Jun 27 2009 Avesh Agarwal - 2.6.21-4- Added support for using PSK with NSS (rhbz 507844)- Fixed several warnings and undid unnecessary comments- Updated README.nss with an example configuration- Fixed Openswan ASN.1 parser vulnerability (CVE-2009-2185)Resolves: CVE-2009-2185Resolves: #507844
* Tue May 19 2009 Avesh Agarwal - 2.6.21-3- Revised patch to support fips integrity check functionalityResolves: #469763 FIPS-140: Add integrity checking
* Sat May 09 2009 Avesh Agarwal - 2.6.21-2- Revised patch to support fips integrity check functionalityResolves: #469763 FIPS-140: Add integrity checking
* Wed Apr 22 2009 Avesh Agarwal - 2.6.21-1- Upstream release- Major patches for support of NSS and fipscheck librariesResolves: #444801 FIPS-140-2: Meet certification requirements for plutoResolves: #469763 FIPS-140: Add integrity checkingResolves: #438998 Openswan\'s \'cannot route...\' problemResolves: #449725 Openswan seg fault using manual keying.Resolves: #463931 /etc/ipsec.conf includes /etc/ipsec.d/
*.conf which is missingResolves: #466861 avc: denied { write } for pid=2193 comm=\"ip\" path=\"/var/run/pluto/ipsec_setup.out\"Resolves: #487708 Misleading package description
* Fri Mar 27 2009 Avesh Agarwal - 2.6.14-2- security update (CVE-2009-0790, CVE-2008-4190)Resolves: CVE-2009-0790, CVE-2008-4190
* Sat Jun 07 2008 Steve Grubb - 2.6.14-1- new upstream releaseResolves: #444575 openswan doesn\'t delete expired SA\'s
* Fri Jun 06 2008 Steve Grubb - 2.6.14rc10-1- new upstream release
* Thu Jun 05 2008 Steve Grubb - 2.6.14rc7-1- new upstream releaseResolves: #439771 openswan and strongswan fail to interoperate with IKEv2Resolves: #441383 openswan should negotiate CCM algorithmResolves: #442955 openswan doesn\'t accept null esp auth algResolves: #442956 openswan logging segfault when phase2alg=nullResolves: #444166 openswan IKEv2 crashes when interoperating with racoon2
* Thu Apr 24 2008 Steve Grubb - 2.6.12-2Resolves: #442333 AVC denials on start of openswan host-to-host tunnel
* Wed Apr 23 2008 Steve Grubb - 2.6.12-1- new upstream releaseResolves: #432821 left/rightsourceip tags not workingResolves: #439985 opeswan IKEv2 responder fails when encr=aes and dh=modp1024Resolves: #441588 openswan IKEv2 crashes when interoperating with racoon2Resolves: #442333 AVC denials on start of openswan host-to-host tunnel
* Thu Apr 10 2008 Steve Grubb - 2.6.11-1- new upstream releaseResolves: #438826 openswan IKEv2 hangs between intel and ppc64 machinesResolves: #439985 opeswan IKEv2 responder fails when encr=aes and dh=modp1024
* Fri Mar 14 2008 Steve Conklin - 2.6.09-1Resolves: rhbz#432315Resolves: rhbz#432805Resolves: rhbz#432821- Moved to latest upstream- removed init script patch and will use upstream- Added protostack=netkey to ipsec.conf- New patch to include definition of HOST_NAME_MAX
* Fri Feb 08 2008 Linda Wang - 2.6.07-2Related: rhbz#253052- Latest upstream
* Fri Feb 08 2008 Linda Wang - 2.6.07-1Related: rhbz#253052- Latest upstream
* Thu Feb 07 2008 Steve Conklin - 2.6.05-1- Latest upstream- remove selinux test and message from verify script- forgot the following bz earlierResolves: rhbz#253052 Request for IPSec IKEv2
* Tue Jan 29 2008 Steve Conklin - 2.6.03-9- cleanup some init problemsResolves: rhbz#430149 openswan init script errorsResolves: rhbz#430150 openswan emits spurious warnings
* Mon Jan 21 2008 Steve Conklin - 2.6.03-8Related: rhbz#235224- rpmdiff spotted these:- Cleaned out unused man page- patch error in barf script
* Fri Jan 18 2008 Steve Conklin - 2.6.03-7- Addressed the last set of small changes for package review
* Thu Jan 17 2008 Steve Conklin - 2.6.03-6- Moved everything else out of /usr/lib- Added tmraz\'s patch to remove extra slashes in makefile- Removed macros from changelog entries
* Thu Jan 17 2008 Steve Conklin - 2.6.03-5- Removed userland macros from spec file
* Thu Jan 17 2008 Steve Conklin - 2.6.03-4- Removed use of xmlto and the BuildRequires- moved scripts from /usr/lib to /usr/libexec- removed man3 pages for libopenswan functions (we don\'t deliver)
* Wed Jan 16 2008 Steve Conklin - 2.6.03-3- Removed _smp_mflags macro from from the spec file build section- Added BuildRequires for xmlto- Changed License from GPL to GPL+- removed klips ifdefs from spec file- Added patch to move example configs to doc dir- Added a patch to make the link to init script relative, for chroot environments
* Fri Jan 11 2008 Steve Conklin - 2.6.03-2- Removed copy of file that no longer exists
* Fri Jan 11 2008 Steve Conklin - 2.6.03-1- Latest upstream tarball, includes fixes
* Thu Jan 10 2008 Steve Conklin - 2.6.02-2- Rebase to 2.6.02, add initial ikev2 support
* Tue Sep 18 2007 Steve Conklin - 2.4.9-2- Forgot changelog on last entry
* Tue Sep 18 2007 Steve Conklin - 2.4.9-1- sync to upstream latest
* Tue Mar 20 2007 Florian La Roche - 2.4.7-3- do not use epoch macro, it is unset
* Wed Feb 28 2007 Harald Hoyer - 2.4.7-2- specfile review
* Fri Jan 26 2007 Harald Hoyer - 2.4.7-1- removed key generation from install phase- version 2.4.7
* Thu Jul 13 2006 Jesse Keating - 2.4.5-2.1- rebuild
* Thu May 18 2006 Harald Hoyer - 2.4.5-2- fixed typo (bug #191930)
* Sat May 06 2006 Harald Hoyer - 2.4.5-1- version 2.4.5
* Fri Feb 10 2006 Jesse Keating - 2.4.4-1.1.2.1- bump again for double-long bug on ppc(64)
* Tue Feb 07 2006 Jesse Keating - 2.4.4-1.1.2- rebuilt for new gcc4.1 snapshot and glibc changes
* Fri Dec 09 2005 Jesse Keating - rebuilt
* Fri Nov 18 2005 Harald Hoyer - 2.4.4-1.1- version 2.4.4- fixes NISCC Vulnerability Advisory 273756/NISCC/ISAKMP- fixes NISCC Advisory 3756/NISCC/ISAKMP
* Wed Nov 02 2005 Harald Hoyer - 2.4.2-0.dr5.1- version 2.4.2dr5
* Wed Oct 26 2005 Harald Hoyer - 2.4.2-0.dr1.1- version 2.4.2dr1
* Wed Sep 14 2005 Harald Hoyer - 2.4.0-1- version 2.4.0
* Thu Sep 01 2005 Harald Hoyer - 2.4.0-0.rc4.1- new version
* Mon Aug 01 2005 Florian La Roche - remove sysv startup links to build with current rpm
* Fri May 13 2005 Harald Hoyer - 2.3.1-3- added openswan-2.3.1-nat_t_aggr.patch- added openswan-2.3.1-iproute2.patch- added openswan-2.3.1-cisco.patch- NAT-T/XAUTH/AGGR-MODE is now possible with a Cisco VPN 3000
* Thu Apr 28 2005 Harald Hoyer - 2.3.1-2- added Requires(post) of coreutils bash (bug 155699)- added Requires(preun) initscripts chkconfig
* Thu Apr 14 2005 Harald Hoyer - 2.3.1-1- version 2.3.1
* Tue Apr 05 2005 Jeremy Katz - 2.3.0-6- remove some duplicate copies of the docs
* Wed Mar 02 2005 Harald Hoyer - rebuilt
* Mon Feb 21 2005 Harald Hoyer - 2.3.0-4- fixed bug rh#149164
* Fri Feb 18 2005 Harald Hoyer - 2.3.0-3- patched code to compile with gcc4
* Fri Jan 14 2005 Harald Hoyer - 2.3.0-2- Do not enable the initscript per default
* Tue Jan 11 2005 Harald Hoyer - 2.3.0-1- version 2.3.0- reimported specfile- PIEd openswan- cleaned up initial config files and added include directives for easy config drop in
* Wed Jan 05 2005 Paul Wouters - Updated for x86_64 and klips on 2.6
* Tue Nov 02 2004 Dan Walsh - 2.1.5-3- Apply selinux patch
* Fri Oct 22 2004 Bill Nottingham - 2.1.5-2- don\'t run by default. again.
* Thu Oct 14 2004 Harald Hoyer - 2.1.5-1- added selinux patch from Daniel Walsh- initscript now uses translated strings- version 2.1.5 with minor fixes
* Wed Sep 22 2004 Harald Hoyer - 2.1.4-7- added more build reqs (bug #132877)
* Fri Sep 10 2004 Bill Nottingham - 2.1.4-6- don\'t run by default- don\'t create/chmod directories in %post, just include them with the right perms- fix debuginfo- fix docs
* Tue Aug 24 2004 Jason Vas Dias - 2.1.4-5- Added debuginfo package
* Tue Aug 24 2004 Jason Vas Dias - 2.1.4-4- Install man-pages- Fix initscript \'fail()\' func to write newline before failure()
* Fri Aug 20 2004 Jason Vas Dias - 2.1.4-3- Fix \'service ipsec status\' output
* Thu Aug 19 2004 Jason Vas Dias - 2.1.4-2- Normalize initscripts for Red Hat and add translation string support
* Wed Aug 18 2004 Harald Hoyer - 2.1.4-1- initial import
* Wed May 26 2004 Ken Bantoft - Initial version, based on FreeS/WAN .spec
  
ICM