feed/packages.git
9 months agoconmon: update to 2.1.10
Oskari Rauta [Fri, 16 Feb 2024 08:01:25 +0000 (10:01 +0200)]
conmon: update to 2.1.10

bug fixes:
 - Fix incorrect free in conn_sock
 - logging: Respect log-size-max immediately after open
 - fix some issues flagged by SAST scan
 - src: fix write after end of buffer
 - src: open all files with O_CLOEXEC
 - oom-score: restore oom score before running exit command

new features:
 - Forward more messages on the sd-notify socket
 - logging: -l passthrough accepts TTYs

Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
9 months agoMerge pull request #23406 from stangri/master-adblock-fast
Stan Grishin [Fri, 16 Feb 2024 23:12:40 +0000 (16:12 -0700)]
Merge pull request #23406 from stangri/master-adblock-fast

adblock-fast: add force_dns_interface setting

9 months agoslirp4netns: update to 1.2.3
Oskari Rauta [Fri, 16 Feb 2024 07:52:32 +0000 (09:52 +0200)]
slirp4netns: update to 1.2.3

changelog:
 - Fix some FD leaks (#334, thanks to @giuseppe)

As package belongs to network category, I moved it from utils to network folder

Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
9 months agobind: bump to 9.18.24
Noah Meyerhans [Thu, 15 Feb 2024 17:36:41 +0000 (09:36 -0800)]
bind: bump to 9.18.24

Fixes CVEs:

- CVE-2023-50387: Validating DNS messages containing a lot of DNSSEC signatures
  could cause excessive CPU load, leading to a denial-of-service condition.
- CVE-2023-50868: Preparing an NSEC3 closest encloser proof could cause
  excessive CPU load, leading to a denial-of-service condition.
- CVE-2023-4408: Parsing DNS messages with many different names could cause
  excessive CPU load.
- CVE-2023-5517: Specific queries could cause named to crash with an assertion
  failure when nxdomain-redirect was enabled.
- CVE-2023-5679: A bad interaction between DNS64 and serve-stale could cause
  named to crash with an assertion failure, when both of these features were
  enabled.

Signed-off-by: Noah Meyerhans <frodo@morgul.net>
9 months agoaardvark-dns: update to 1.10.0
Oskari Rauta [Fri, 16 Feb 2024 07:33:02 +0000 (09:33 +0200)]
aardvark-dns: update to 1.10.0

changelogs: https://github.com/containers/aardvark-dns/releases

Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
9 months agonode: February 14 2024 Security Releases
Hirokazu MORIKAWA [Fri, 16 Feb 2024 06:14:51 +0000 (15:14 +0900)]
node: February 14 2024 Security Releases

Update to v20.11.1
This is a security release.

Notable changes
* CVE-2024-21892 - Code injection and privilege escalation through Linux capabilities- (High)
* CVE-2024-22019 - http: Reading unprocessed HTTP request with unbounded chunk extension allows DoS attacks- (High)
* CVE-2024-21896 - Path traversal by monkey-patching Buffer internals- (High)
* CVE-2024-22017 - setuid() does not drop all privileges due to io_uring - (High)
* CVE-2023-46809 - Node.js is vulnerable to the Marvin Attack (timing variant of the Bleichenbacher attack against PKCS#1 v1.5 padding) - (Medium)
* CVE-2024-21891 - Multiple permission model bypasses due to improper path traversal sequence sanitization - (Medium)
* CVE-2024-21890 - Improper handling of wildcards in --allow-fs-read and --allow-fs-write (Medium)
* CVE-2024-22025 - Denial of Service by resource exhaustion in fetch() brotli decoding - (Medium)
* undici version 5.28.3
* libuv version 1.48.0
* OpenSSL version 3.0.13+quic1 (Depends on shared library provided by OpenWrt)

Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
9 months agoMerge pull request #23457 from TDT-AG/pr/20240216-procps-ng
Florian Eckert [Fri, 16 Feb 2024 14:03:03 +0000 (15:03 +0100)]
Merge pull request #23457 from TDT-AG/pr/20240216-procps-ng

procps-ng: update to version 4.0.4 and rename old version 3.3.16 to procps-ng3

9 months agoMerge pull request #23459 from TDT-AG/pr/20240216-glib2
Florian Eckert [Fri, 16 Feb 2024 14:01:26 +0000 (15:01 +0100)]
Merge pull request #23459 from TDT-AG/pr/20240216-glib2

glib2: revert latest changes to get back to working version 2.74.0

9 months agoprocps-ng: Re-add procps-ng with API version 4 23457/head
krant [Thu, 15 Feb 2024 11:16:21 +0000 (13:16 +0200)]
procps-ng: Re-add procps-ng with API version 4

Signed-off-by: krant <aleksey.vasilenko@gmail.com>
9 months agoprocps-ng3: update to 3.3.17 and install library only
krant [Thu, 15 Feb 2024 11:11:09 +0000 (13:11 +0200)]
procps-ng3: update to 3.3.17 and install library only

- Install library only (utilities are in procps-ng API version 4)
- Latest 3.3.17 version of 3.x series is used
- Refresh existing patch
- Add new patch from Alpine Linux

Signed-off-by: krant <aleksey.vasilenko@gmail.com>
- Rebase patch because of packages version update was reverted before

Signed-off-by: Florian Eckert <fe@dev.tdt.de>
9 months agoprocps-ng: rename procps-ng to procps-ng3
krant [Thu, 15 Feb 2024 11:05:43 +0000 (13:05 +0200)]
procps-ng: rename procps-ng to procps-ng3

Signed-off-by: krant <aleksey.vasilenko@gmail.com>
- Rebase patch because of packages version update was reverted before

Signed-off-by: Florian Eckert <fe@dev.tdt.de>
9 months agoRevert "procps-ng: update to 4.0.4"
krant [Thu, 1 Feb 2024 15:34:58 +0000 (17:34 +0200)]
Revert "procps-ng: update to 4.0.4"

The props-ng packages adds a new API version that breaks other
downstream packages. This revert is a preparation commit to move the old
API to procps-ng3 so that the new API could use procps-ng packages
name again.

Signed-off-by: Florian Eckert <fe@dev.tdt.de>
This reverts commit 81629ba5918f48a0886e6f601d63d0b016ef8c1e.

9 months agoglib2: update to version 2.74.7 23459/head
Florian Eckert [Fri, 16 Feb 2024 09:55:47 +0000 (10:55 +0100)]
glib2: update to version 2.74.7

Signed-off-by: Florian Eckert <fe@dev.tdt.de>
9 months agoglib2: do not set default meson options
Florian Eckert [Fri, 16 Feb 2024 09:52:05 +0000 (10:52 +0100)]
glib2: do not set default meson options

Signed-off-by: Florian Eckert <fe@dev.tdt.de>
9 months agoRevert "glib2: update to 2.78.4"
Florian Eckert [Fri, 16 Feb 2024 09:17:59 +0000 (10:17 +0100)]
Revert "glib2: update to 2.78.4"

So that we have a working ModemManager again and can look at the problem
revert the update to version 2.78.4 for now.

Signed-off-by: Florian Eckert <fe@dev.tdt.de>
This reverts commit 08c7b0dfcae48114176762e93aa1b4ce5d42f8ad.

9 months agoRevert "glib2: use internal pcre2"
Florian Eckert [Fri, 16 Feb 2024 09:16:10 +0000 (10:16 +0100)]
Revert "glib2: use internal pcre2"

This is must also get revert to get back to working glib2 version 2.74.0

Signed-off-by: Florian Eckert <fe@dev.tdt.de>
This reverts commit 9f57ef2d6e339231278f36614d9b2fdd275a9339.

9 months agocrun: update to 1.14.1
Oskari Rauta [Fri, 16 Feb 2024 06:50:40 +0000 (08:50 +0200)]
crun: update to 1.14.1

Changelogs: https://github.com/containers/crun/releases
Previous version was 1.12

Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
9 months agonetavark: update to 1.10.3
Oskari Rauta [Fri, 16 Feb 2024 07:29:15 +0000 (09:29 +0200)]
netavark: update to 1.10.3

changelogs: https://github.com/containers/netavark/releases

wrapper script and config file removed as they have become obsolete,
firewall driver is now configured in containers.conf

Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
9 months agonetbird: update to 0.25.8
Oskari Rauta [Fri, 16 Feb 2024 06:39:41 +0000 (08:39 +0200)]
netbird: update to 0.25.8

changes: https://github.com/netbirdio/netbird/compare/v0.25.2...v0.25.8

Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
9 months agodocker-compose: Update to version 2.24.6
Javier Marcet [Thu, 15 Feb 2024 18:32:48 +0000 (19:32 +0100)]
docker-compose: Update to version 2.24.6

Signed-off-by: Javier Marcet <javier@marcet.info>
9 months agoefivar: disable mold linker
Oskari Rauta [Fri, 16 Feb 2024 05:46:19 +0000 (07:46 +0200)]
efivar: disable mold linker

efivar fails to build with mold linker, so it should
be opted out. I also added missing maintainer.

Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
9 months agopdns-recursor: update to 5.0.2 (fixes CVE-2023-50387, CVE-2023-50868)
Peter van Dijk [Tue, 13 Feb 2024 13:19:43 +0000 (14:19 +0100)]
pdns-recursor: update to 5.0.2 (fixes CVE-2023-50387, CVE-2023-50868)

Signed-off-by: Peter van Dijk <peter.van.dijk@powerdns.com>
9 months agoMerge pull request #23316 from dhewg/prom
Etienne Champetier [Thu, 15 Feb 2024 03:59:27 +0000 (22:59 -0500)]
Merge pull request #23316 from dhewg/prom

prometheus-node-exporter-ucode: fix sporadic wifi errors and warnings

9 months agompd: update to 0.23.15
Rosen Penev [Thu, 15 Feb 2024 00:28:48 +0000 (16:28 -0800)]
mpd: update to 0.23.15

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agozmq: update to 4.3.5
Rosen Penev [Thu, 15 Feb 2024 00:41:59 +0000 (16:41 -0800)]
zmq: update to 4.3.5

Remove GCC13 backport.

Refresh other patches.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agotaglib: update to 2.0
Rosen Penev [Thu, 15 Feb 2024 00:37:09 +0000 (16:37 -0800)]
taglib: update to 2.0

Switched to local tarball as the utf8cpp subproject needs to be used.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agolibcap-ng: update to 0.84
Rosen Penev [Wed, 14 Feb 2024 22:20:53 +0000 (14:20 -0800)]
libcap-ng: update to 0.84

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agohidapi: update to 0.14.0
Rosen Penev [Wed, 14 Feb 2024 22:19:06 +0000 (14:19 -0800)]
hidapi: update to 0.14.0

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agolibnpupnp: update to 6.1.0
Rosen Penev [Wed, 14 Feb 2024 22:30:30 +0000 (14:30 -0800)]
libnpupnp: update to 6.1.0

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agompc: update to 0.35
Rosen Penev [Wed, 14 Feb 2024 23:24:06 +0000 (15:24 -0800)]
mpc: update to 0.35

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agolibxerces-c: update to 3.2.5
Rosen Penev [Wed, 14 Feb 2024 22:38:52 +0000 (14:38 -0800)]
libxerces-c: update to 3.2.5

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agolibupnp: update to 1.14.18
Rosen Penev [Wed, 14 Feb 2024 23:21:58 +0000 (15:21 -0800)]
libupnp: update to 1.14.18

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agolibtins: update to 4.5
Rosen Penev [Wed, 14 Feb 2024 22:37:29 +0000 (14:37 -0800)]
libtins: update to 4.5

Remove upstream backport.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agolog4cplus: update to 2.1.1
Rosen Penev [Wed, 14 Feb 2024 22:32:42 +0000 (14:32 -0800)]
log4cplus: update to 2.1.1

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agop910nd: bump release
Paul Donald [Wed, 14 Feb 2024 22:58:07 +0000 (23:58 +0100)]
p910nd: bump release

Signed-off-by: Paul Donald <newtwen@gmail.com>
9 months agolibv4l: update to 1.26.1
Rosen Penev [Wed, 14 Feb 2024 22:10:24 +0000 (14:10 -0800)]
libv4l: update to 1.26.1

meson now available.

Added 2 patches to fix missing intl dependency and musl support.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agolibmpdclient: update to 2.22
Rosen Penev [Wed, 14 Feb 2024 22:24:38 +0000 (14:24 -0800)]
libmpdclient: update to 2.22

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agofaad2: update to 2.11.1
Rosen Penev [Wed, 14 Feb 2024 22:17:18 +0000 (14:17 -0800)]
faad2: update to 2.11.1

CMake is used now.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agolibidn: update to 1.42
Rosen Penev [Wed, 14 Feb 2024 22:22:35 +0000 (14:22 -0800)]
libidn: update to 1.42

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agovala: remove pcre2 patch
Rosen Penev [Sun, 11 Feb 2024 02:32:12 +0000 (18:32 -0800)]
vala: remove pcre2 patch

Issue was avoided with glib2.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agoglib2: use internal pcre2
Rosen Penev [Sun, 11 Feb 2024 02:20:13 +0000 (18:20 -0800)]
glib2: use internal pcre2

For some strange reason, glib2 does not link properly with a static
pcre2. Work around by bundling own copy.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agoMerge pull request #23400 from Rondom/rondom-fix-libstrophe-license
Michael Heimpold [Wed, 14 Feb 2024 21:49:59 +0000 (22:49 +0100)]
Merge pull request #23400 from Rondom/rondom-fix-libstrophe-license

libstrophe: Specify correct PKG_LICENSE

9 months agopython-aiohttp: update to 3.9.3
Rosen Penev [Sat, 10 Feb 2024 23:28:11 +0000 (15:28 -0800)]
python-aiohttp: update to 3.9.3

Fixes CVE-2023-47627

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agomoreutils: update to 0.68
krant [Sun, 11 Feb 2024 21:38:44 +0000 (23:38 +0200)]
moreutils: update to 0.68

- Refresh patches

Signed-off-by: krant <aleksey.vasilenko@gmail.com>
9 months agoimagemagick: update to 7.1.1-28
krant [Tue, 13 Feb 2024 08:48:58 +0000 (10:48 +0200)]
imagemagick: update to 7.1.1-28

- Use .xz for PKG_SOURCE

Signed-off-by: krant <aleksey.vasilenko@gmail.com>
9 months agosoftethervpn5: version update to 5.02.5181 (incl. vulnerability fixes)
Thomas Winkler [Wed, 10 Jan 2024 15:04:00 +0000 (16:04 +0100)]
softethervpn5: version update to 5.02.5181 (incl. vulnerability fixes)

softethervpn5: The softethervpn5 package is due for an update from recent source. This PR implements a Makefile update to pull December 2023 release, which includes fixes for recently-disclosed vulnerabilities. The build patches are also updated accordingly.

Signed-off-by: Thomas Winkler <tewinkler86@gmail.com>
9 months agolibstrophe: Specify correct PKG_LICENSE 23400/head
Andreas Gnau [Tue, 13 Feb 2024 13:41:28 +0000 (14:41 +0100)]
libstrophe: Specify correct PKG_LICENSE

libstrophe is dual-licensed as MIT OR GPL-3.0-only, which is also
reflected by the SPDX-License-Identifier lines in the source files.
Correct PKG_LICENSE in the Makefile accordingly.

Signed-off-by: Andreas Gnau <andreas.gnau@iopsys.eu>
9 months agoproxychains-ng: update to version 4.17
Daniel Bermond [Tue, 13 Feb 2024 21:06:31 +0000 (18:06 -0300)]
proxychains-ng: update to version 4.17

Maintainer   : myself
Build system : Arch Linux x86_64
Build tested : r7800 OpenWrt git master (r25151-2a2abed0be)
Run tested   : r7800 OpenWrt git master (r25151-2a2abed0be)

Signed-off-by: Daniel Bermond <dbermond@archlinux.org>
9 months agosnort3: clean up ucode usage
Eric Fahlgren [Wed, 7 Feb 2024 23:09:37 +0000 (15:09 -0800)]
snort3: clean up ucode usage

 - Add missing 'ucode' package dependency
 - Proto-ify the ConfigItem objects
 - Fix indentation and tab usage

Signed-off-by: Eric Fahlgren <ericfahlgren@gmail.com>
9 months agoyq: Update to 4.40.7
Tianling Shen [Wed, 14 Feb 2024 04:51:13 +0000 (12:51 +0800)]
yq: Update to 4.40.7

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
9 months agocloudflared: Update to 2024.2.0
Tianling Shen [Wed, 14 Feb 2024 04:51:05 +0000 (12:51 +0800)]
cloudflared: Update to 2024.2.0

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
9 months agov2ray-geodata: Update to latest version
Tianling Shen [Wed, 14 Feb 2024 04:50:54 +0000 (12:50 +0800)]
v2ray-geodata: Update to latest version

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
9 months agoadblock-fast: add force_dns_interface setting 23406/head
Stan Grishin [Wed, 14 Feb 2024 04:40:42 +0000 (04:40 +0000)]
adblock-fast: add force_dns_interface setting

* allow users to specify list of interfaces/networks to force the
  DNS Hijacking on

Signed-off-by: Stan Grishin <stangri@melmac.ca>
9 months agostlink: add packages
Daniel Golle [Tue, 13 Feb 2024 03:58:51 +0000 (03:58 +0000)]
stlink: add packages

stlink is an open source toolset to program and debug STM32 devices
and boards manufactured by STMicroelectronics.

Resulting binary packages:
 * stlink - library and shared chip info data
 * st-info - a programmer and chip information tool
 * st-flash - a flash manipulation tool
 * st-trace - a logging tool to record information on execution
 * st-util - a GDB server

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
9 months agoredis: update to 6.2.14
Rosen Penev [Sun, 11 Feb 2024 22:58:16 +0000 (14:58 -0800)]
redis: update to 6.2.14

Fixes CVE-2022-24735 and CVE-2022-24736

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agotio: update to 2.7
krant [Mon, 12 Feb 2024 15:34:58 +0000 (17:34 +0200)]
tio: update to 2.7

- Switch to Meson build
- Fix license file name
- Add libinih dependency

Signed-off-by: krant <aleksey.vasilenko@gmail.com>
9 months agominisatip: update to 1.3.2
krant [Mon, 12 Feb 2024 09:09:54 +0000 (11:09 +0200)]
minisatip: update to 1.3.2

Signed-off-by: krant <aleksey.vasilenko@gmail.com>
9 months agolibusb-compat: update to 0.1.8
krant [Mon, 12 Feb 2024 12:00:53 +0000 (14:00 +0200)]
libusb-compat: update to 0.1.8

- Update package URL

Signed-off-by: krant <aleksey.vasilenko@gmail.com>
9 months agozlog: update to 1.2.17
Rosen Penev [Sun, 11 Feb 2024 22:44:58 +0000 (14:44 -0800)]
zlog: update to 1.2.17

Rework to use local tarballs. Smaller and more stable.

Build with cmake. Faster and simpler. Needs a small patch though.

License was updated.

Fixes CVE-2021-43521

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agolibmicrohttpd: update to 0.9.77
Rosen Penev [Sun, 11 Feb 2024 22:54:01 +0000 (14:54 -0800)]
libmicrohttpd: update to 0.9.77

Fixes CVE-2023-27371

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agolibao: backport fix for CVE-2017-11548
Rosen Penev [Sun, 11 Feb 2024 22:36:01 +0000 (14:36 -0800)]
libao: backport fix for CVE-2017-11548

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agoyajl: backport CVE-2023-33460 fix
Rosen Penev [Sun, 11 Feb 2024 22:27:25 +0000 (14:27 -0800)]
yajl: backport CVE-2023-33460 fix

Removed old uclibc patches. Not relevant with modern musl or glibc.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agopostgesql: update to 15.6
Rosen Penev [Sun, 11 Feb 2024 23:23:36 +0000 (15:23 -0800)]
postgesql: update to 15.6

Fixes CVE-2023-39417 and CVE-2023-39418

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agop910nd: hotplug shellcheck fixes
Paul Donald [Sun, 11 Feb 2024 17:41:23 +0000 (18:41 +0100)]
p910nd: hotplug shellcheck fixes

Signed-off-by: Paul Donald <newtwen@gmail.com>
9 months agop910nd: init: check device (/dev/usb/lpX) existence
Paul Donald [Sun, 11 Feb 2024 18:28:38 +0000 (19:28 +0100)]
p910nd: init: check device (/dev/usb/lpX) existence

this prevents the daemon exiting when a configured device
is not plugged in.

Signed-off-by: Paul Donald <newtwen@gmail.com>
9 months agop910nd: init: partial fix for openwrt/packages#10496
Paul Donald [Sat, 10 Feb 2024 21:02:58 +0000 (22:02 +0100)]
p910nd: init: partial fix for openwrt/packages#10496

Harmless to carry this fix until procd.sh adds the param

This parameter will mean umdns advertises not just "OpenWrt" but a more
appropriate string:

"Apple LaserWriter Pro 630"

Signed-off-by: Paul Donald <newtwen@gmail.com>
9 months agop910nd: hotplug+init: include extra ieee1284 properties
Paul Donald [Sun, 11 Feb 2024 03:13:53 +0000 (04:13 +0100)]
p910nd: hotplug+init: include extra ieee1284 properties

Apple and macOS GUI co-opts the mDNS note= param as "Location"

Signed-off-by: Paul Donald <newtwen@gmail.com>
9 months agop910nd: hotplug: minor bug fixes
Paul Donald [Sun, 11 Feb 2024 18:02:57 +0000 (19:02 +0100)]
p910nd: hotplug: minor bug fixes

Commit driver_home defaults before continuing

Fix missing path for serial number acquisition

Store current device if no previously configured device had one.
Also set CHAR_DEV so the printer can get its driver sent on first run.

Signed-off-by: Paul Donald <newtwen@gmail.com>
9 months agop910nd: hotplug: small refactor
Paul Donald [Sun, 11 Feb 2024 17:43:43 +0000 (18:43 +0100)]
p910nd: hotplug: small refactor

replace -a with &&

shorten uci commands via variables

add optional ieee1284_id parameters

Signed-off-by: Paul Donald <newtwen@gmail.com>
9 months agop910nd: init: add txtvers=1 to mDNS properties
Paul Donald [Sun, 11 Feb 2024 17:33:03 +0000 (18:33 +0100)]
p910nd: init: add txtvers=1 to mDNS properties

The spec https://developer.apple.com/bonjour/printing-specification/bonjourprinting-1.2.1.pdf
notes:

... if the meaning of any of the TXT record keys is changed, the txtvers value
will be incremented. The current value of this key is “1”, and if this key does not exist in
the TXT record, the default value of “1” is assumed. The txtvers SHOULD be the first
key/value pair in the TXT record.

Signed-off-by: Paul Donald <newtwen@gmail.com>
9 months agop910nd: init: line-break and conditionalize mDNS properties
Paul Donald [Sun, 11 Feb 2024 02:30:56 +0000 (03:30 +0100)]
p910nd: init: line-break and conditionalize mDNS properties

Signed-off-by: Paul Donald <newtwen@gmail.com>
9 months agop910nd: init: only run mDNS changes if mdns is set to on
Paul Donald [Sat, 10 Feb 2024 17:37:00 +0000 (18:37 +0100)]
p910nd: init: only run mDNS changes if mdns is set to on

i.e. don't do the extra work unless mdns setting is enabled

Signed-off-by: Paul Donald <newtwen@gmail.com>
9 months agop910nd: init script
Paul Donald [Sat, 10 Feb 2024 17:35:35 +0000 (18:35 +0100)]
p910nd: init script

Don't run procd with a name of p9100d or p9101d etc.
Use the original binary name: p910nd.

This way, all supplied parameters should be visible via e.g.:

ps
xargs -0 < /proc/{procid}/cmdline

Revise all p910nd strings to the variable DAEMON_NAME or CONFIG where
appropriate.

Signed-off-by: Paul Donald <newtwen@gmail.com>
9 months agorestic: update to 0.16.4
Fabian Lipken [Sun, 11 Feb 2024 14:36:03 +0000 (15:36 +0100)]
restic: update to 0.16.4

Signed-off-by: Fabian Lipken <dynasticorpheus@gmail.com>
9 months agodmidecode: update to 3.5
krant [Sun, 11 Feb 2024 19:03:43 +0000 (21:03 +0200)]
dmidecode: update to 3.5

Signed-off-by: krant <aleksey.vasilenko@gmail.com>
9 months agobash: update to 5.2.21
krant [Sun, 11 Feb 2024 16:44:07 +0000 (18:44 +0200)]
bash: update to 5.2.21

- Switch package URL to HTTPS

Signed-off-by: krant <aleksey.vasilenko@gmail.com>
9 months agogawk: update to 5.3.0
krant [Sun, 11 Feb 2024 21:13:17 +0000 (23:13 +0200)]
gawk: update to 5.3.0

Signed-off-by: krant <aleksey.vasilenko@gmail.com>
9 months agoMerge pull request #23354 from neheb/2
Alexandru Ardelean [Sun, 11 Feb 2024 10:29:34 +0000 (12:29 +0200)]
Merge pull request #23354 from neheb/2

tcpreplay: backport CVE fix

9 months agoconfuse: fix CVE-2022-40320
Rosen Penev [Sat, 10 Feb 2024 23:21:05 +0000 (15:21 -0800)]
confuse: fix CVE-2022-40320

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agoiodine: bump version to 0.8.0
Michael Gerlach [Sat, 10 Feb 2024 23:34:43 +0000 (00:34 +0100)]
iodine: bump version to 0.8.0

Signed-off-by: Michael Gerlach <n3ph@cccfr.de>
9 months agogiflib: fix CVEs
Rosen Penev [Sat, 10 Feb 2024 23:46:21 +0000 (15:46 -0800)]
giflib: fix CVEs

Patches taken from Fedora

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agoavahi: backport CVE fixes from upstream
Rosen Penev [Sat, 10 Feb 2024 23:43:42 +0000 (15:43 -0800)]
avahi: backport CVE fixes from upstream

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agolibvpx: update to 1.14.0
Rosen Penev [Sat, 10 Feb 2024 23:32:26 +0000 (15:32 -0800)]
libvpx: update to 1.14.0

Fixes CVE-2023-5217

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agolibssh2: update to 1.11.0
Rosen Penev [Sat, 10 Feb 2024 23:12:02 +0000 (15:12 -0800)]
libssh2: update to 1.11.0

Fixes CVE-2020-22218

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agotcpreplay: backport CVE fix 20305/head 23354/head
Rosen Penev [Sat, 10 Feb 2024 23:51:23 +0000 (15:51 -0800)]
tcpreplay: backport CVE fix

Low severity.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
9 months agostress-ng: bump to version 0.17.05
Alexandru Ardelean [Fri, 9 Feb 2024 08:46:26 +0000 (10:46 +0200)]
stress-ng: bump to version 0.17.05

Signed-off-by: Alexandru Ardelean <alex@shruggie.ro>
9 months agoacl: update to 2.3.2
Maxim Storchak [Sat, 10 Feb 2024 18:53:08 +0000 (20:53 +0200)]
acl: update to 2.3.2

Signed-off-by: Maxim Storchak <m.storchak@gmail.com>
9 months agoattr: update to 2.5.2
Maxim Storchak [Sat, 10 Feb 2024 18:49:22 +0000 (20:49 +0200)]
attr: update to 2.5.2

Signed-off-by: Maxim Storchak <m.storchak@gmail.com>
9 months agotgt: update to 1.0.90
Maxim Storchak [Sat, 10 Feb 2024 18:43:41 +0000 (20:43 +0200)]
tgt: update to 1.0.90

Signed-off-by: Maxim Storchak <m.storchak@gmail.com>
9 months agolibx264: update to 2024-01-13 revision
krant [Sat, 10 Feb 2024 08:39:53 +0000 (10:39 +0200)]
libx264: update to 2024-01-13 revision

- Fix CPU type detection to enable asm on ARM
- Refresh patches

Signed-off-by: krant <aleksey.vasilenko@gmail.com>
9 months agotelldus-mqtt: bump to 0.2
Peter Liedholm [Sat, 10 Feb 2024 17:49:33 +0000 (18:49 +0100)]
telldus-mqtt: bump to 0.2

Signed-off-by: Peter Liedholm <peterfromswe884@gmail.com>
9 months agonet-snmp: update to 5.9.4
Ivan Pavlov [Sat, 10 Feb 2024 05:07:50 +0000 (08:07 +0300)]
net-snmp: update to 5.9.4

Adjust patches for current version changes
Module "disk" renamed to "disk_hw"
Internal type "unknown" changed to "u_int32_t"
Add patch with removing macro syntax checking for successful build

Signed-off-by: Ivan Pavlov <AuthorReflex@gmail.com>
9 months agolibfido2: update to 1.14.0
krant [Fri, 9 Feb 2024 22:55:53 +0000 (00:55 +0200)]
libfido2: update to 1.14.0

- Don't set default and remove obsolete CMake options

Signed-off-by: krant <aleksey.vasilenko@gmail.com>
9 months agolibcbor: update to 0.11.0
krant [Fri, 9 Feb 2024 22:53:21 +0000 (00:53 +0200)]
libcbor: update to 0.11.0

Signed-off-by: krant <aleksey.vasilenko@gmail.com>
9 months agofile: update to 5.45
krant [Sat, 10 Feb 2024 07:47:11 +0000 (09:47 +0200)]
file: update to 5.45

- Remove default and non-existent configure options

Signed-off-by: krant <aleksey.vasilenko@gmail.com>
9 months agocjson: update to 1.7.17
krant [Fri, 9 Feb 2024 21:08:40 +0000 (23:08 +0200)]
cjson: update to 1.7.17

Signed-off-by: krant <aleksey.vasilenko@gmail.com>
9 months agojool: update to 4.1.11
Tiago Gaspar [Fri, 9 Feb 2024 15:21:25 +0000 (15:21 +0000)]
jool: update to 4.1.11

Update jool to 4.1.11 and remove unneeded patch.
Changelog: https://github.com/NICMx/Jool/releases/tag/v4.1.11

Signed-off-by: Tiago Gaspar <tiagogaspar8@gmail.com>
9 months agosquid: fix configure options
krant [Fri, 9 Feb 2024 20:44:43 +0000 (22:44 +0200)]
squid: fix configure options

- Remove non-existing 'dlmalloc' option
- Use 'with-cap' instead of 'with-libcap'
- Use 'with-xml2' instead of 'with-libxml2'
- Patch configure.ac to properly handle 'with-nettle'

Signed-off-by: krant <aleksey.vasilenko@gmail.com>
9 months agojson-glib: update to 1.8.0
krant [Fri, 9 Feb 2024 08:53:03 +0000 (10:53 +0200)]
json-glib: update to 1.8.0

- Don't set default Meson option

Signed-off-by: krant <aleksey.vasilenko@gmail.com>
9 months agolibextractor: update to 1.13
krant [Sat, 10 Feb 2024 07:35:54 +0000 (09:35 +0200)]
libextractor: update to 1.13

- Remove obsolete configure option
- Remove patch and var override since MEM_SRCDST_SUPPORTED is always on

Signed-off-by: krant <aleksey.vasilenko@gmail.com>