Josef Schlehofer [Thu, 16 Jan 2020 11:45:15 +0000 (12:45 +0100)]
libseccomp: add seccomp-syscalls.h to InstallDev
In the version 2.4.2, there was introduced a new header file.
Ship it to InstallDev
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
Rosen Penev [Tue, 14 Jan 2020 20:09:20 +0000 (12:09 -0800)]
Merge pull request #11023 from jefferyto/golang-goarm-fix-openwrt-18.06
[openwrt-18.06] golang: Fix selection of GOARM value
Jeffery To [Tue, 14 Jan 2020 16:59:28 +0000 (00:59 +0800)]
golang: Fix selection of GOARM value
This fixes how GOARM is selected for arm platforms, based on support for
VFP/VFPv3 rather than CPU version.
Fixes #10967.
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
Nikos Mavrogiannopoulos [Mon, 13 Jan 2020 21:57:13 +0000 (22:57 +0100)]
Merge pull request #10995 from BKPepe/libseccomp-18.06
[18.06] libseccomp: update to version 2.4.2
Josef Schlehofer [Sun, 12 Jan 2020 11:42:42 +0000 (12:42 +0100)]
libseccomp: update to version 2.4.2
Fixes CVE-2019-9893
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
Rosen Penev [Sat, 11 Jan 2020 02:11:03 +0000 (18:11 -0800)]
transmission: sync with master
Signed-off-by: Rosen Penev <rosenp@gmail.com>
Josef Schlehofer [Wed, 1 Jan 2020 12:04:17 +0000 (13:04 +0100)]
Merge pull request #10832 from BKPepe/git-18.06
[OpenWrt 18.06] git: Update to version 2.16.6 (security fix)
Josef Schlehofer [Wed, 18 Dec 2019 22:18:11 +0000 (23:18 +0100)]
git: Update to version 2.16.6 (security fix)
Fixes CVEs:
CVE-2018-17456
CVE-2019-1348
CVE-2019-1349
CVE-2019-1350
CVE-2019-1351
CVE-2019-1352
CVE-2019-1353
CVE-2019-1354
CVE-2019-1387
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
tripolar [Mon, 30 Dec 2019 13:03:47 +0000 (14:03 +0100)]
Merge pull request #10858 from BKPepe/wget-18.06
[OpenWrt 18.06] wget: fix CVE-2019-5953
Rosen Penev [Mon, 16 Sep 2019 03:06:09 +0000 (20:06 -0700)]
lcdgrilo: Fix compilation with newer Vala
It seems semantics changed slightly.
Cleaned up Makefile for consistency between packages.
Added PKG_BUILD_PARALLEL for faster compilation.
Fixed license information.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry-picked from
16fb706641222ac44f61aaee6161b2cb4596336d)
Rosen Penev [Fri, 6 Sep 2019 17:18:05 +0000 (10:18 -0700)]
lcdgrilo: Depend on vala/host instead
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry-picked from
5935670ba14ed575799e4df4e4227826e3fef682)
Eneas U de Queiroz [Sat, 8 Dec 2018 02:28:36 +0000 (00:28 -0200)]
lcdgrilo: remove check dependency
Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
(cherry-picked from
2e8b7358c4c336a5a5845351db642e8f45aa61d2)
Hannu Nyman [Sun, 29 Dec 2019 13:18:27 +0000 (15:18 +0200)]
nano: update to 4.7
Update nano to version 4.7
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
(cherry picked from commit
c62f8962ba3cf4e044941e372a155a97e5438ebd)
Hannu Nyman [Sat, 28 Dec 2019 20:33:00 +0000 (22:33 +0200)]
Merge pull request #10889 from EricLuehrsen/unbound_196_1806
[18.06] unbound: update to 1.9.6
Eric Luehrsen [Wed, 18 Dec 2019 05:06:26 +0000 (00:06 -0500)]
unbound: update to 1.9.6
Signed-off-by: Eric Luehrsen <ericluehrsen@gmail.com>
Eneas U de Queiroz [Thu, 13 Dec 2018 17:31:12 +0000 (15:31 -0200)]
grilo: copy vapi files to versioned vala dir
The version is obtained via `valac --api-version`
Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
(cherry-picked from
8d0c849e561bd5a984ccd2e99c67a7f9c4ed68f1)
Eneas U de Queiroz [Mon, 10 Dec 2018 02:25:21 +0000 (00:25 -0200)]
grilo: update vapi files, copy to unversioned dir
Updates vapigen-generated vapi files to vala-0.34.
Files are now copied to $(STAGING_DIR_HOSTPKG)/share/vala/vapi, without
the vala version being hardcoded.
Removed copyright line, and redundant PKG_BUILD_DEPENDS and
TARGET_LDFLAGS.
Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
(cherry-picked from
1b794e93e356c35b7c4d09019a0364e237efdbc6)
Rosen Penev [Wed, 7 Aug 2019 22:24:55 +0000 (15:24 -0700)]
lcdproc: Fix non x86 platforms on musl
Musl only specifies in/outb for x86/x86. Use the fallback path in case
musl is used.
This should fail compilation during the linking stage but for some reason
does not. Will do if -Werror=implicit-function-declaration is specified.
Fixed up license information.
Other small cleanups.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry-picked from
fa40b85f20f697e4c0b7b96b77b3a40902c72605)
Rosen Penev [Mon, 23 Dec 2019 05:44:56 +0000 (21:44 -0800)]
Merge pull request #10763 from leonghui/wiki-link-update-18.06
[18.06] treewide: replace old wiki links
Michael Heimpold [Wed, 18 Dec 2019 19:57:14 +0000 (20:57 +0100)]
php7: update to 7.2.26
This fixes:
- CVE-2019-11046
- CVE-2019-11044
- CVE-2019-11045
- CVE-2019-11050
- CVE-2019-11047
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
(cherry picked from commit
d5c18b1d5e7171a23e17ec9fd3604f794a336f1e)
Josef Schlehofer [Sat, 21 Dec 2019 19:48:21 +0000 (20:48 +0100)]
bind: Update to version 9.11.14
Add patch to fix compile issue:
stats.c: In function 'setcounter':
stats.c:300:29: error: 'val' undeclared (first use in this function); did you mean 'value'?
stats->counters[counter] = val;
^~~
value
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
Josef Schlehofer [Sat, 21 Dec 2019 18:57:15 +0000 (19:57 +0100)]
wget: fix CVE-2019-5953
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
Hannu Nyman [Sat, 21 Dec 2019 18:07:27 +0000 (20:07 +0200)]
Merge pull request #10855 from BKPepe/python3-18.06
[OpenWrt 18.06] python3: Updated to version 3.6.10
Josef Schlehofer [Sat, 21 Dec 2019 12:50:01 +0000 (13:50 +0100)]
python3: Updated to version 3.6.10
Remove backported patches:
025-bpo-34155-Dont-parse-domains-containing-GH-13079-GH-.patch
026-bpo-38243-xmlrpc.server-Escape-the-server_title-GH-1.patch
Fixes CVE-2019-16056
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
Rosen Penev [Sat, 21 Dec 2019 15:02:17 +0000 (07:02 -0800)]
Merge pull request #10846 from cshoredaniel/pr-18.06-fix-nut-cgi-initscript
nut: Fix NUT CGI startup script
Daniel F. Dickinson [Tue, 17 Dec 2019 11:17:53 +0000 (06:17 -0500)]
nut: Fix NUT CGI startup script
Commit
c1aa1f784c737283b281da7a541921a88a81e684 which backported
a number of fixes from master, missed one fix for nut-cgi. If
nut-cgi is installed standalone or nut-cgi starts before nut-server
(the default in 18.04.5) then the configuration file directory does
not get create and therefore there is no CGI configuration file.
This commit fixes that.
Closes: #10687
Signed-off-by: Daniel F. Dickinson <cshored@thecshore.com>
Rosen Penev [Thu, 19 Dec 2019 00:14:35 +0000 (16:14 -0800)]
Merge pull request #10752 from stangri/18.06-https-dns-proxy
[18.06] https-dns-proxy: switch to https-dns-proxy package name
Josef Schlehofer [Wed, 18 Dec 2019 22:18:11 +0000 (23:18 +0100)]
git: Update to version 2.16.6 (security fix)
Fixes CVEs:
CVE-2018-17456
CVE-2019-1348
CVE-2019-1349
CVE-2019-1350
CVE-2019-1351
CVE-2019-1352
CVE-2019-1353
CVE-2019-1354
CVE-2019-1387
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
Stan Grishin [Tue, 10 Dec 2019 22:42:15 +0000 (15:42 -0700)]
https-dns-proxy: switch to https-dns-proxy package name
Signed-off-by: Stan Grishin <stangri@melmac.net>
Leong Hui Wong [Sat, 14 Dec 2019 07:31:54 +0000 (15:31 +0800)]
treewide: update wiki links
Signed-off-by: Leong Hui Wong <wong.leonghui@gmail.com>
Rosen Penev [Wed, 11 Dec 2019 06:58:11 +0000 (22:58 -0800)]
Merge pull request #10744 from luizluca/libvpx-fixcve
[18.06] libvpx: backport security fixes
Luiz Angelo Daros de Luca [Mon, 9 Dec 2019 23:34:30 +0000 (20:34 -0300)]
libvpx: backport security fixes
Fixes CVE-2019-9232 CVE-2019-9325 CVE-2019-9371 CVE-2019-9433.
From: openwrt/telephony#492
Signed-off-by: Luiz Angelo Daros de Luca <luizluca@gmail.com>
W. Michael Petullo [Thu, 9 Aug 2018 11:29:13 +0000 (07:29 -0400)]
luajit: install libluajit-5.1.so.2
Signed-off-by: W. Michael Petullo <mike@flyn.org>
(cherry-picked from commit
30d5958)
W. Michael Petullo [Mon, 6 Aug 2018 00:21:52 +0000 (20:21 -0400)]
luajit: add .hpp to InstallDev
Signed-off-by: W. Michael Petullo <mike@flyn.org>
(cherry-picked from commit
efb7d0be6dd7882748d337391c5568d829bf17f5)
Hannu Nyman [Sun, 1 Dec 2019 12:25:17 +0000 (14:25 +0200)]
nano: update to 4.6
Update nano editor to version 4.6
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
(cherry picked from commit
421dae85a3525f9772bbada523758490a926be3c)
Hannu Nyman [Fri, 29 Nov 2019 15:30:09 +0000 (17:30 +0200)]
Merge pull request #10678 from gladiac1337/haproxy-1.8.23-openwrt-18.06
[openwrt-18.06] haproxy: Update HAProxy to v1.8.23
Christian Lachner [Fri, 29 Nov 2019 13:01:50 +0000 (14:01 +0100)]
haproxy: Update HAProxy to v1.8.23
- Update haproxy download URL and hash
- This fixes CVE-2019-19330 (See: https://nvd.nist.gov/vuln/detail/CVE-2019-19330)
Signed-off-by: Christian Lachner <gladiac@gmail.com>
Daniel Golle [Thu, 28 Nov 2019 17:38:11 +0000 (18:38 +0100)]
transmission: sync with master branch
Fixes to init-script were not cherry-picked properly, sync it with
version found in master branch.
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
(cherry-picked from
a79d6df674db68637d10b9d353d028c206c50e18)
Jan Pavlinec [Thu, 14 Nov 2019 14:12:58 +0000 (15:12 +0100)]
tor: update to version 4.1.6
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
Rosen Penev [Wed, 27 Nov 2019 21:37:07 +0000 (13:37 -0800)]
Merge pull request #9836 from cotequeiroz/grilo-plugins_xml
[18.06] grilo plugins: fix build errors
Eneas U de Queiroz [Mon, 26 Aug 2019 17:17:36 +0000 (14:17 -0300)]
grilo-plugins: adjust CONFIGURE_ARGS
Removed unused flags, and added --enable-compile-warnings=minimum to
avoid a build failure with fortify-headers:
In file included from [staging_dir/target]/usr/include/libxml2/libxml/tree.h:15:0,
from [staging_dir/target]/usr/include/libxml2/libxml/parser.h:16,
from grl-jamendo.c:32:
[staging_dir/toolchain]/include/fortify/stdio.h: In function 'snprintf':
[staging_dir/toolchain]/include/fortify/stdio.h:99:2: error: format not
a string literal, argument types not checked [-Werror=format-nonliteral]
return __orig_snprintf(__s, __n, __f, __builtin_va_arg_pack());
^~~~~~
Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
Eneas U de Queiroz [Wed, 12 Dec 2018 00:29:16 +0000 (22:29 -0200)]
grilo-plugins: remove XML::Parser build dependency
gnome-common.m4 and gnome-compiler-flags.m4 were taken from version
3.18.0, and match current master branch.
Disable building help and test directories.
Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
(cherry picked from commit
a87108fe408bc9ddcc2b2e9426b40ef431923875)
Eneas U de Queiroz [Sat, 8 Dec 2018 01:03:02 +0000 (23:03 -0200)]
grilo-plugins: use hostpkg glib-compile-resources
Add GLIB_COMPILE_RESOURCES to MAKE_FLAGS
Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
(cherry picked from commit
8e0b7978ec232345e7ba69c79cf447676295dd4e)
Rosen Penev [Mon, 25 Nov 2019 03:01:58 +0000 (19:01 -0800)]
transmission: Disable webseeding
It causes 100% CPU usage in certain situations. Just disable it.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry-picked from
6d9ee2ec86a461bbc976eaf7f97490657dc97e5c)
Rosen Penev [Mon, 9 Sep 2019 01:39:33 +0000 (18:39 -0700)]
transmission: Fix tracker issue with some firewalls
Some firewalls mandate a minimum size of 4k for SYN packets, which
transmission does not do by default. Upstream issue here:
https://github.com/transmission/transmission/issues/964
Cleanup:
Fixed license info.
Removed two unnecessary patches.
Ran shell script through shellcheck.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry-picked from
730a1697fed07269a3cca7c90878b50d3ef26465)
Josef Schlehofer [Sat, 23 Nov 2019 19:11:57 +0000 (20:11 +0100)]
php7: Update to version 7.2.25
- Fixes CVE-2019-11043
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit
9bc48abd2ae6e23907d2ccb07bdaed1b6345da64)
W. Michael Petullo [Sat, 19 Oct 2019 22:13:41 +0000 (18:13 -0400)]
php7: mark /etc/config/php7-fastcgi as conffile
Signed-off-by: W. Michael Petullo <mike@flyn.org>
(cherry picked from commit
5bc9bb04c5d19ea679a687f6731457e7492d4744)
Michael Heimpold [Tue, 15 Oct 2019 22:01:51 +0000 (00:01 +0200)]
php7-mod-xmlreader: add conditional dependency to php7-mod-dom (fixes #10201)
PHP7 fails to load xmlreader.so (php7-mod-xmlreader) module without
dom.so (php7-mod-dom) module loaded:
-snip-
PHP Warning: PHP Startup: Unable to load dynamic library 'xmlreader.so'
(tried: /usr/lib/php/xmlreader.so (Error relocating /usr/lib/php/xmlreader.so:
dom_node_class_entry: symbol not found), /usr/lib/php/xmlreader.so.so (Error
loading shared library /usr/lib/php/xmlreader.so.so: No such file or
directory)) in Unknown on line 0
^C
-snap-
However, this dependency only exists when during build also php7-mod-dom
is selected.
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
(cherry picked from commit
b8c22fc1ec392272235ce78ddc0ddfc40de5037d)
Stefaan Ghysels [Thu, 3 Oct 2019 11:44:23 +0000 (13:44 +0200)]
php7: bump to 7.2.23
Signed-off-by: Stefaan Ghysels <stefaang@gmail.com>
(cherry picked from commit
dacda44755b391b7bd09a15ea762ee551f7d2ce6)
Michael Heimpold [Sun, 8 Sep 2019 19:27:18 +0000 (21:27 +0200)]
php7: update to 7.2.22
While at, update the SPDX license id to most recent format.
Compile and run tested on mxs platform.
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
(cherry picked from commit
5805da860e0e9afbb0a8d71923dc1db296b07e5e)
Michael Heimpold [Sat, 3 Aug 2019 22:27:08 +0000 (00:27 +0200)]
php7: update to 7.2.21
This fixes CVE-2019-11042 and CVE-2019-11041.
Compile and run tested on mxs platform
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
(cherry picked from commit
8e419c6d4ca53054a5aedd0299fd0aadbfe75b62)
Rosen Penev [Thu, 21 Nov 2019 17:34:44 +0000 (09:34 -0800)]
Merge pull request #10609 from ja-pa/bind-update
[OpenWrt 18.06] bind: update to version 9.11.13 (security fix)
Jan Pavlinec [Thu, 21 Nov 2019 15:13:05 +0000 (16:13 +0100)]
bind: update to version 9.11.13 (security fix)
Fixes CVE-2019-6477
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
Josef Schlehofer [Tue, 19 Nov 2019 22:56:03 +0000 (23:56 +0100)]
unbound: Update to version 1.9.5
Fixes CVE-2019-18934
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
Rosen Penev [Wed, 13 Nov 2019 20:32:14 +0000 (12:32 -0800)]
Merge pull request #10520 from Kulipator/libmraa_ramips_fix
[18.06] Libmraa compilation fix
Archil Pirmisashvili [Wed, 13 Nov 2019 20:28:37 +0000 (22:28 +0200)]
Compilation fix & upgrade to version 0.8.1
Signed-off-by: Archil Pirmisashvili <kulipator@gmail.com>
RF-Networks [Sun, 10 Nov 2019 19:35:06 +0000 (21:35 +0200)]
Libmraa compilation fix
Signed-off-by: Archil Pirmisashvili <kulipator@gmail.com>
RF-Networks [Sun, 10 Nov 2019 19:02:14 +0000 (21:02 +0200)]
Libmraa compilation fix
Signed-off-by: Archil Pirmisashvili <kulipator@gmail.com>
Signed-off-by: RF-Networks <archil@rf-networks.com>
Jakub Piotr Cłapa [Thu, 22 Aug 2019 08:55:03 +0000 (10:55 +0200)]
perl: fixed host compilation of static perl on MacOS
All symbols on MacOS are prefixed with an underscore which
interfered with the filtering mechanism (added in perl 5.28)
for extension libraries to be linked into static perl.
Signed-off-by: Jakub Piotr Cłapa <jpc@loee.pl>
Rosen Penev [Sun, 10 Nov 2019 02:52:17 +0000 (18:52 -0800)]
Merge pull request #9671 from BKPepe/clamav1806
[OpenWrt 18.06] clamav: update to version 0.100.3
Rosen Penev [Sat, 2 Nov 2019 03:27:06 +0000 (20:27 -0700)]
protobuf-c: Fix typo on build dependency.
This was fixed in
3bcaa7a4fe4d2231788c20367aed2993a86490c2
Backported the fix here.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
Rosen Penev [Sat, 10 Aug 2019 20:44:07 +0000 (13:44 -0700)]
libgd: Properly disable iconv support
HAVE_ICONV and HAVE_ICONV_H are two different headers that both need to
evaluate to false. Added the extra CONFIGURE_VARS.
This can be verified by passing -Werror=implicit-function-declaration
Added PKG_LICENSE_FILES
Updated homepage URL.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry-picked from
bf2f1a02636a9b74e1d824cab384b8f3f9e7d819)
Yousong Zhou [Mon, 9 Sep 2019 02:59:50 +0000 (02:59 +0000)]
wget: provides gnu-wget
So that packages like acme requiring features from it can depend on it
explicitly, not the more basic "wget" which is also provided by
"uclient-fetch"
Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com>
[port to 18.06 to fix acme package backport]
Signed-off-by: Toke Høiland-Jørgensen <toke@redhat.com>
Toke Høiland-Jørgensen [Tue, 29 Oct 2019 08:44:47 +0000 (09:44 +0100)]
acme: Bring up-to-date with master
There are quite a few bugfixes in the version of the ACME package in
master, and the old version in 18.06 have some issues as seen in #10328.
This commit ports over all changes from the master branch in one go.
Signed-off-by: Toke Høiland-Jørgensen <toke@redhat.com>
Luiz Angelo Daros de Luca [Sun, 27 Oct 2019 14:40:26 +0000 (11:40 -0300)]
ruby: bump to 2.5.7
2.5.7 fixes:
* CVE-2019-16255: A code injection vulnerability of Shell#[] and Shell#test
* CVE-2019-16254: HTTP response splitting in WEBrick (Additional fix)
* CVE-2019-15845: A NUL injection vulnerability of File.fnmatch and File.fnmatch?
* CVE-2019-16201: Regular Expression Denial of Service vulnerability of WEBrick’s Digest access authentication
2.5.6 fixes:
* Multiple jQuery vulnerabilities in RDoc
* About 40 bugs
Changelog: https://github.com/ruby/ruby/compare/v2_5_5...v2_5_7
Signed-off-by: Luiz Angelo Daros de Luca <luizluca@gmail.com>
Josef Schlehofer [Tue, 22 Oct 2019 12:36:23 +0000 (14:36 +0200)]
python-cryptography: fix CVE-2018-10903
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
Josef Schlehofer [Tue, 22 Oct 2019 11:29:26 +0000 (13:29 +0200)]
python-cryptography: Add support for LibreSSL 2.7.x
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
Hannu Nyman [Mon, 21 Oct 2019 18:54:57 +0000 (21:54 +0300)]
Merge pull request #10324 from jefferyto/python-2.7.17-openwrt-18.06
[openwrt-18.06] python: Update to 2.7.17, refresh patches
Jeffery To [Mon, 21 Oct 2019 15:30:53 +0000 (23:30 +0800)]
python: Update to 2.7.17, refresh patches
Patches already merged and so removed:
* 019-bpo-36216-Add-check-for-characters-in-netloc-that-normalize-to-separators-GH-12216.patch
* 020-bpo-36216-Only-print-test-messages-when-verbose-GH-12291.patch
* 021-2.7-bpo-35121-prefix-dot-in-domain-for-proper-subdom.patch
* 027-bpo-38243-Escape-the-server-title-of-DocXMLRPCServer.patch
* 028-bpo-34155-Dont-parse-domains-containing-GH-13079.patch
Patches no longer necessary and so removed:
* 017_lib2to3_fix_pyc_search.patch
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from
83b300aa83f3cf663747998f4500a8592acf9959)
Rosen Penev [Mon, 21 Oct 2019 16:14:14 +0000 (09:14 -0700)]
Merge pull request #10312 from stangri/18.06-vpnbypass
[18.06] vpnbypass: bugfix: PROCD command not found on stop
Stan Grishin [Mon, 21 Oct 2019 04:21:30 +0000 (21:21 -0700)]
vpnbypass: bugfix: PROCD command not found on stop
Signed-off-by: Stan Grishin <stangri@melmac.net>
Rosen Penev [Sun, 20 Oct 2019 17:16:28 +0000 (10:16 -0700)]
Merge pull request #10279 from BKPepe/sudo-18.06
[OpenWrt 18.06] sudo: Update to version 1.8.28p1
Josef Schlehofer [Sat, 19 Oct 2019 14:32:44 +0000 (16:32 +0200)]
sudo: Update to version 1.8.28p1
- Use HTTPS for downloading tarball and for their website
- Add PKG_CPE_ID
- Remove inactive maintainer
- Refreshed patches
Fixes: CVE-2019-14287
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
Jan Pavlinec [Wed, 18 Sep 2019 11:30:11 +0000 (13:30 +0200)]
irssi: update to version 1.2.2 (security fix)
Fixes CVE-2019-15717
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry-picked from commit
b42159dea3ed38c3755c1b641d47209878247763)
Noah Meyerhans [Wed, 16 Oct 2019 15:38:11 +0000 (08:38 -0700)]
Merge branch 'pr/10215' into openwrt-18.06
https://github.com/openwrt/packages/pull/10215
Josef Schlehofer [Mon, 14 Oct 2019 19:21:03 +0000 (21:21 +0200)]
Merge pull request #9997 from flyn-org/openldap-18.06
openldap: update to 2.4.48
Rosen Penev [Mon, 14 Oct 2019 16:29:16 +0000 (09:29 -0700)]
Merge pull request #10237 from jefferyto/gammu-fix-lib-symlinks-openwrt-18.06
[openwrt-18.06] gammu: Fix lib symlinks
Jeffery To [Mon, 14 Oct 2019 09:12:41 +0000 (17:12 +0800)]
gammu: Fix lib symlinks
This fixes the symlinks for libGammu.so and libgsmsd.so. Previously, the
symlinks were overwritten by $(INSTALL_BIN) with copies of their
sources.
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
Josef Schlehofer [Sun, 13 Oct 2019 09:04:48 +0000 (11:04 +0200)]
bind: Update to version 9.11.11
Change License to MPL-2.0 and add PKG_LICENSE_FILES.
For more details look at https://www.isc.org/blogs/bind9-adopts-the-mpl-2-0-license-with-bind-9-11-0/
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
Rosen Penev [Fri, 11 Oct 2019 19:49:51 +0000 (12:49 -0700)]
Merge pull request #10108 from BKPepe/expat-1806
[OpenWrt 18.06] expat: Update to version 2.2.9
Rosen Penev [Tue, 8 Oct 2019 20:58:14 +0000 (13:58 -0700)]
Merge pull request #10167 from BKPepe/unbound18.06
[OpenWrt 18.06] unbound: Update to version 1.9.4
Alexandru Ardelean [Wed, 27 Feb 2019 10:18:17 +0000 (12:18 +0200)]
python3-pip: fix install rule
This seems to have slipped for some time. No idea if it ever worked.
It could be that this worked at some point.
In any case, the shebang is properly updated now.
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
(cherry-picked from commit
1b96dc01715f4f03f758ff1d087caf15726016af)
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(bump PKG_RELEASE for python3-pip)
Hannu Nyman [Mon, 7 Oct 2019 15:17:03 +0000 (18:17 +0300)]
nano: update to 4.5
Update nano editor to version 4.5.
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
(cherry picked from commit
bfd66f2d23483513f80e109df2e0e02de782e5b4)
(fix also license tag and add CVE)
Hannu Nyman [Mon, 7 Oct 2019 15:08:58 +0000 (18:08 +0300)]
Merge pull request #10164 from stangri/18.06-simple-adblock
[18.06] simple-adblock: bugfix: proper dnsmasq reload on stop, rework start/stop logic
Josef Schlehofer [Fri, 4 Oct 2019 09:57:24 +0000 (11:57 +0200)]
unbound: Update to version 1.9.4
Fixes CVE-2019-16866
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
Eric Luehrsen [Fri, 30 Aug 2019 02:45:45 +0000 (22:45 -0400)]
unbound: update to 1.9.3
Signed-off-by: Eric Luehrsen <ericluehrsen@gmail.com>
Stan Grishin [Sun, 6 Oct 2019 16:33:48 +0000 (09:33 -0700)]
simple-adblock: bugfix: proper dnsmasq reload on stop, rework start/stop logic
Signed-off-by: Stan Grishin <stangri@melmac.net>
Hannu Nyman [Sat, 5 Oct 2019 14:17:46 +0000 (17:17 +0300)]
Merge pull request #10156 from gladiac1337/haproxy-1.8.21-openwrt-18.06
[openwrt-18.06] haproxy: Update HAProxy to v1.8.21
Christian Lachner [Sat, 5 Oct 2019 11:26:02 +0000 (13:26 +0200)]
haproxy: Update HAProxy to v1.8.21
- Update haproxy download URL and hash
- Add new patches (see https://www.haproxy.org/bugs/bugs-1.8.21.html)
Signed-off-by: Christian Lachner <gladiac@gmail.com>
Hannu Nyman [Sat, 5 Oct 2019 08:27:49 +0000 (11:27 +0300)]
Merge pull request #10155 from jefferyto/python-bpo-38243-34155-openwrt-18.06
[openwrt-18.06] python: Fix CVE-2019-16056, CVE-2019-16935
Hannu Nyman [Sat, 5 Oct 2019 08:26:08 +0000 (11:26 +0300)]
Merge pull request #10143 from stangri/18.06-simple-adblock
[18.06] simple-adblock: bugfix and improvements (check description)
Jeffery To [Fri, 4 Oct 2019 16:58:08 +0000 (00:58 +0800)]
python: Fix CVE-2019-16056, CVE-2019-16935
These patches address issues:
CVE-2019-16056: email.utils.parseaddr mistakenly parse an email
CVE-2019-16935: A reflected XSS in python/Lib/DocXMLRPCServer.py
Links to Python issues:
https://bugs.python.org/issue34155
https://bugs.python.org/issue38243
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
Stan Grishin [Fri, 4 Oct 2019 01:42:02 +0000 (18:42 -0700)]
simple-adblock: bugfix and improvements (check description)
Signed-off-by: Stan Grishin <stangri@melmac.net>
Rosen Penev [Wed, 1 May 2019 02:37:52 +0000 (19:37 -0700)]
clamav: Remove build hacks
Simplified the Makefile and fixes compilation with uClibc-ng. Also added
IPv6 support.
Took the time to clean up the Makefile with other useful options.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry-picked from commit
012e4c1)
Josef Schlehofer [Tue, 6 Aug 2019 20:42:44 +0000 (22:42 +0200)]
clamav: update to version 0.100.3
Fixes CVEs:
0.100.1
- CVE-2017-16932
- CVE-2018-0360
- CVE-2018-0361
0.100.2
- CVE-2018-15378
- CVE-2018-14680
- CVE-2018-14681
- CVE-2018-14682
0.100.3
- CVE-2019-1787
- CVE-2019-1788
- CVE-2019-1789
Use HTTPS in URL
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
Rosen Penev [Wed, 2 Oct 2019 19:05:53 +0000 (12:05 -0700)]
Merge pull request #10120 from BKPepe/youtubedl-1806
[OpenWrt 18.06] youtube-dl: Update to version 2019.9.28
Hannu Nyman [Tue, 1 Oct 2019 20:18:46 +0000 (23:18 +0300)]
haveged: convert to procd
Convert haveged init script to use procd
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
(cherry picked from commit
4f717a6f65b5c495aec770b507913befa40b8997)
Hannu Nyman [Tue, 1 Oct 2019 18:38:11 +0000 (21:38 +0300)]
haveged: update to 1.9.8
Update haveged to 1.9.8
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
(cherry picked from commit
e5b308308b528b912ec1352b85bf2de13d94ce3f)
Josef Schlehofer [Mon, 30 Sep 2019 21:23:16 +0000 (23:23 +0200)]
youtube-dl: Update to version 2019.9.28
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
Rosen Penev [Mon, 30 Sep 2019 20:30:46 +0000 (13:30 -0700)]
Merge pull request #10118 from BKPepe/libgcrypt-1806
[OpenWrt 18.06] libgcrypt: backport fix for CVE-2019-13627