It is time for the next maintainance update of the IPFire series 2 which is called Core Update 58. This update comes with cryptodev, a bunch of security fixes and minor bugfixes.
cryptodev has been ported from BSD and provides the kernel crypto system to the userspace. The advantages we gain from that is much faster hashing, encryption and decryption of data. On a normal system, the performance will double, on systems that come with crypto processors like VIA Padlock or Marvell CESA, the speed will be significantly higher and the CPU load will be much lower. More information about cryptodev can be found on our wiki.
The update is shipping fixes for security issues in two packages: openssl (0.9.8u) and libpng (1.2.46).
- strongswan: 4.6.2 – Minor bugfixes (#10037).
- fireinfo: 2.1.4 – Improved detection of number of CPUs on ARM devices.
- openvpn: Update to 2.2.2 and now compiled with —enable-password-save (#10036).
- vim: A small line at the bottom shows more information (#10021).
- The hardware database, GeoIP database and usb_modeswitch database have been updated to enable newest hardware to work with IPFire.
Updated addons since the last Core Update:
- samba (addressed two security problems) details are to be found here.
- clamav 0.97.4
- git 220.127.116.11
- pound, which is now able to handle more than one certificate per IP choosing them by their common names or SANs.
We recommend to update to this version as soon as possible, because we think it is the best version of IPFire that has ever been released. If you think so as well, please consider a small donation.
Please notice the recent posts on the planet, where the developers talk about geeky stuff.