Fabrice Fontaine [Thu, 25 Jan 2024 17:47:52 +0000 (18:47 +0100)]
libs/libyang: assign PKG_CPE_ID
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:cesnet:libyang
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
3c823356581c8b2d0eb99705e335d721e300c9e7)
Fabrice Fontaine [Thu, 25 Jan 2024 21:19:56 +0000 (22:19 +0100)]
multimedia/gst1-plugins-bad: assign PKG_CPE_ID
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:freedesktop:gst-plugins-bad
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
480aaec2caf2dfd00ea06858ceaf446347c5ceaa)
Fabrice Fontaine [Thu, 25 Jan 2024 21:58:07 +0000 (22:58 +0100)]
lang/vala: assign PKG_CPE_ID
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:gnome:vala
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
72e92747a784e122cfba37ff4548255d47e2e8b5)
Fabrice Fontaine [Thu, 25 Jan 2024 21:36:46 +0000 (22:36 +0100)]
libs/freetype: fix PKG_CPE_ID
There is not a single CVE under cpe:/a:freetype:freetype2
so use cpe:/a:freetype:freetype:
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:freetype:freetype
Fixes: 456ae2f541f698e6b9106b696d385d52164ed860
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
eb2c47d493d4ef6338e1c1e92d982e2ebad43591)
Fabrice Fontaine [Thu, 25 Jan 2024 20:43:47 +0000 (21:43 +0100)]
utils/domoticz: assign PKG_CPE_ID
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:domoticz:domoticz
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
1ebffab763d0813ce7b6300c64a03dca765ddf25)
Fabrice Fontaine [Thu, 25 Jan 2024 21:25:23 +0000 (22:25 +0100)]
libs/libinput: assign PKG_CPE_ID
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:freedesktop:libinput
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
17d25745bad380bd197ca4d4bda49accdc18aa04)
Fabrice Fontaine [Thu, 25 Jan 2024 20:58:40 +0000 (21:58 +0100)]
net/fail2ban: assign PKG_CPE_ID
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:fail2ban:fail2ban
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
4d18c15388b64a281f5b877e4855b68d5eec6f35)
Fabrice Fontaine [Thu, 25 Jan 2024 20:21:36 +0000 (21:21 +0100)]
utils/crun: assign PKG_CPE_ID
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:crun_project:crun
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
a22a7b92c8e1cb78769afbfda598953b54397036)
Fabrice Fontaine [Thu, 25 Jan 2024 21:42:17 +0000 (22:42 +0100)]
utils/pax-utils: assign PKG_CPE_ID
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:gentoo:pax-utils
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
37223bbca64de4e7eacb58d1d24d259fa967661a)
Fabrice Fontaine [Thu, 25 Jan 2024 20:39:30 +0000 (21:39 +0100)]
lang/python/python-docker: assign PKG_CPE_ID
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:docker:docker-py
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
dd52b70c4c17c0a7d093173c269fc99acb684876)
Fabrice Fontaine [Thu, 25 Jan 2024 08:02:12 +0000 (09:02 +0100)]
admin/atop: assign PKG_CPE_ID
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:atop_project:atop
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
07de80e8b49b03091ae7b2973e3060c2fa33b66b)
Fabrice Fontaine [Thu, 25 Jan 2024 21:29:06 +0000 (22:29 +0100)]
libs/libmbim: assign PKG_CPE_ID
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:freedesktop:libmbim
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
c24fb4a2f7083c858ad2e9764242cf1b5c2e1a61)
Fabrice Fontaine [Thu, 25 Jan 2024 21:03:09 +0000 (22:03 +0100)]
net/fastd: assign PKG_CPE_ID
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:fastd_project:fastd
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
9404f17af14b561cd40f64c1ec3f9d7c25633f4f)
Fabrice Fontaine [Thu, 25 Jan 2024 17:26:16 +0000 (18:26 +0100)]
utils/augeas: assign PKG_CPE_ID
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:augeas:augeas
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
229fccfc251272373e347552a404e0f3a6f3034f)
Fabrice Fontaine [Thu, 25 Jan 2024 17:52:05 +0000 (18:52 +0100)]
utils/cgroupfs-mount: assign PKG_CPE_ID
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:cgroupfs-mount_project:cgroupfs-mount
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
f91be9a87f04249ee615a9379f2f3e5fd91c47f4)
Fabrice Fontaine [Wed, 24 Jan 2024 21:31:37 +0000 (22:31 +0100)]
utils/acl: assign PKG_CPE_ID
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Aacl_project%3Aacl
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
0d4d5546249b3e013251507bf9d2bdf995b5666d)
Fabrice Fontaine [Thu, 25 Jan 2024 17:39:36 +0000 (18:39 +0100)]
net/bwm-ng: assign PKG_CPE_ID
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:bwm-ng_project:bwm-ng
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
ff56f877330035e0a5367e80ca56b1eac7fb3b2d)
Fabrice Fontaine [Thu, 25 Jan 2024 21:49:41 +0000 (22:49 +0100)]
libs/libgee: assign PKG_CPE_ID
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:gnome:libgee
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
4bdc29ece49d9e4706b31c7243a9ad0ed3eaae6c)
Fabrice Fontaine [Thu, 1 Feb 2024 21:12:24 +0000 (22:12 +0100)]
libs/libpam: fix PKG_CPE_ID
linux-pam:linux-pam is a better CPE ID than kernel:linux-pam as this CPE
ID has the latest CVEs (whereas kernel:linux-pam only has a
SUSE-specific CVE):
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:linux-pam:linux-pam
Fix:
6f74b0c4f15a095b1069a8aaeb19a32dfbc7539a
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
2269848bffffba9b6adf44c75b676f642a1fd893)
Fabrice Fontaine [Thu, 1 Feb 2024 22:22:16 +0000 (23:22 +0100)]
net/krb5: fix PKG_CPE_ID
mit:kerberos_5 is a better CPE ID than mit:kerberos as this CPE ID has
the latest CVEs (whereas mit:kerberos only has CVEs until 2018):
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:mit:kerberos_5
Fix:
299e5b0a9bce19d6e96cb9ff217028b36ee2dd36
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
302761f0e81d7a9729849384a77ffe62273ec527)
Fabrice Fontaine [Thu, 1 Feb 2024 17:24:48 +0000 (18:24 +0100)]
libs/vips: fix PKG_CPE_ID
libvips:libvips is a better CPE ID than vips:vips as this CPE ID has the
latest CVEs (whereas vips only has an old CVE from 2010):
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:libvips:libvips
Fix:
299e5b0a9bce19d6e96cb9ff217028b36ee2dd36
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
a220c04b5007ac53042603c4642cf760262b5fc8)
Fabrice Fontaine [Fri, 2 Feb 2024 19:18:23 +0000 (20:18 +0100)]
admin/sudo: fix PKG_CPE_ID
sudo_project:sudo is a better CPE ID than todd_miller:sudo as this CPE
ID has the latest CVEs (whereas todd_miller:sudo only has CVEs up to
2016):
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:sudo_project:sudo
Fixes: 8ce9f30c421255c514b1b2e41fc92eafd7976583 (sudo: Update to 1.8.24)
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
253944fc6255c9984d52a0bea82a4f95926fb554)
Fabrice Fontaine [Fri, 2 Feb 2024 19:08:34 +0000 (20:08 +0100)]
utils/squashfs-tools: fix PKG_CPE_ID
There is not a single CVE linked to phillip_lougher:squashfs so use
squashfs-tools_project:squashfs-tools instead:
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:squashfs-tools_project:squashfs-tools
Fixes: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 (treewide: add PKG_CPE_ID for better cvescanner coverage)
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
9e770d6c1d465dc4c5c129a559ee5203a90d8f0f)
Fabrice Fontaine [Sun, 4 Feb 2024 10:06:04 +0000 (11:06 +0100)]
lang/python/python-aiohttp: fix PKG_CPE_ID
aiohttp:aiohttp is a better CPE ID than aio-libs_projet:aiohttp as this
CPE ID has the latest CVEs (whereas aio-libs_project:aiohttp only has
one CVE from 2018):
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:aiohttp:aiohttp
Fixes: 2edf5034f1c09fe60af52087abe7b6fcef9433fc (python-aiohttp: add a new package)
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
8b9965fcb30f1f7401cad5ec9967e65ae72398b3)
Fabrice Fontaine [Fri, 2 Feb 2024 17:09:46 +0000 (18:09 +0100)]
lang/python/python-urllib3: fix PKG_CPE_ID
There is not a single CVE linked to urllib3_project:urllib3 so use
python:urllib3 instead:
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:python:urllib3
Fixes: 6dcaa769d8ce8921dc3bfaf78ab9a8c1cef4a9b9 (python-urllib3: update to version 1.25)
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
d369edb57105104b7a6085b9217366705d0ca118)
Fabrice Fontaine [Fri, 2 Feb 2024 17:15:55 +0000 (18:15 +0100)]
lang/python/python-requests: fix PKG_CPE_ID
There is not a single CVE linked to python-requests:requests so use
python:requests instead:
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:python:requests
Fixes: ceadbcbb64de727c3a974e552d9a723d532e4e40 (treewide: add PKG_CPE_ID for cvescanner)
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
c0aec8bc086af80e932a54eb9d68a29dcaa1f068)
Fabrice Fontaine [Fri, 2 Feb 2024 17:38:11 +0000 (18:38 +0100)]
libs/redis: fix PKG_CPE_ID
There is not a single CVE linked to pivotal_software:redis so use
redis:redis instead:
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:redis:redis
Fixes: ceadbcbb64de727c3a974e552d9a723d532e4e40 (treewide: add PKG_CPE_ID for cvescanner)
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
5c089b16baa0b98afb52ee4f6b37ef9410d9cc42)
Fabrice Fontaine [Fri, 2 Feb 2024 20:48:01 +0000 (21:48 +0100)]
net/vsftpd: fix PKG_CPE_ID
vsftpd_project:vsftpd is a better CPE ID than beasts:vsftpd as this CPE
ID has the latest CVEs (whereas beasts:vsftpd only has CVEs up to 2015):
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:vsftpd_project:vsftpd
Fixes: 1371b7be878382b8b52cd73ff72a3a41d28013c4 (vsftpd: Fix compilation without ECC or deprecated APIs)
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
803c7b0571221451aa98407842a5fc4142a38493)
Fabrice Fontaine [Fri, 2 Feb 2024 19:35:54 +0000 (20:35 +0100)]
net/tinc: fix PKG_CPE_ID
tinc-vpn:tinc is a better CPE ID than tinc:tinc as this CPE ID has the
latest CVEs (whereas tinc:tinc only has CVEs up to 2002):
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:tinc-vpn:tinc
Fixes: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 (treewide: add PKG_CPE_ID for better cvescanner coverage)
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
b52f465c7b2c6fc8438f5a09aab3bbb26eba9de5)
Fabrice Fontaine [Fri, 2 Feb 2024 19:43:57 +0000 (20:43 +0100)]
net/tinyproxy: fix PKG_CPE_ID
tinyproxy_project:tinyproxy is a better CPE ID than banu:tinyproxy as
this CPE ID has the latest CVEs (whereas banu:tinyproxy only has CVEs up
to 2012):
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:tinyproxy_project:tinyproxy
Fixes: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 (treewide: add PKG_CPE_ID for better cvescanner coverage)
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
d6d157f644ec57b682c246f6c876936f0bcb9baa)
Fabrice Fontaine [Fri, 2 Feb 2024 19:50:37 +0000 (20:50 +0100)]
utils/tmux: fix PKG_CPE_ID
tmux_project:tmux is a better CPE ID than nicholas_marriott:tmux as this
CPE ID has the latest CVE (whereas nicholas_marriott:tmux only has a CVE
from 2011):
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:tmux_project:tmux
Fixes: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 (treewide: add PKG_CPE_ID for better cvescanner coverage)
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
c42dcc5fd69a6f5d8cfe2aba9af0c5dccdd73e05)
Fabrice Fontaine [Fri, 2 Feb 2024 21:23:24 +0000 (22:23 +0100)]
utils/zsh: fix PKG_CPE_ID
zsh:zsh is a better CPE ID than zsh_project:zsh as this CPE ID has the
latest CVEs (whereas zsh_project:zsh only has CVEs up to 2017):
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:zsh:zsh
Fixes: ff056fcffcacf2632505bb108bf8e8c2a3cef09c (zsh: Update to 5.6.2)
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
00e038942a5856b01ee359706dbb4398148ba162)
Fabrice Fontaine [Fri, 2 Feb 2024 17:48:20 +0000 (18:48 +0100)]
net/boinc: fix PKG_CPE_ID
boinc_project:boinc has never been a valid CPE ID so use
rom_walton:boinc instead:
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:rom_walton:boinc
Fixes: 9c2bd865c715cad8646157d6bbfb669d9970c322 (boinc: new package for distributed computing/data acquisition)
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
013a2f2dfa1f6b7e582588c8641b0ecbc7cf223e)
Fabrice Fontaine [Thu, 1 Feb 2024 21:31:08 +0000 (22:31 +0100)]
utils/lrzsz: fix PKG_CPE_ID
PKG_CPE_ID was missing ":lrzsz"
Fixes: 6d6c4b21b5e22a9f1058db5b61521a298e00a5f0 (lrzsz: update to v0.12.21rc and fix a CVE)
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
da56ee5bed54bf0f58a4a51d7849b9de2880dfde)
Fabrice Fontaine [Thu, 1 Feb 2024 17:27:39 +0000 (18:27 +0100)]
libs/expat: fix PKG_CPE_ID
There is not a single CVE linked to libexpat:expat so use
libexpat_project:libexpat instead:
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:libexpat_project:libexpat
Fixes: 70c62ef2d77aef5d8a27ccca2b147bc2a69dc7f8 (expat: update to version 2.2.7 (security fix))
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
77a02f1efcdb3ff5d7ce697806075bc34ed2ed4b)
Fabrice Fontaine [Thu, 1 Feb 2024 17:30:52 +0000 (18:30 +0100)]
libs/libidn2: fix PKG_CPE_ID
There is not a single CVE linked to libidn2_project:libidn2 so use
gnu:libidn2 instead:
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:gnu:libidn2
Fixes: ceadbcbb64de727c3a974e552d9a723d532e4e40 (treewide: add PKG_CPE_ID for cvescanner)
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
b5b4545b2452ef3a9a4d958a22f5cc053be0523c)
Fabrice Fontaine [Thu, 1 Feb 2024 22:04:45 +0000 (23:04 +0100)]
net/miniupnpc: fix PKG_CPE_ID
cpe:/a:miniupnp_project:miniupnpc is the correct CPE ID for miniupnpc:
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:miniupnp_project:miniupnpc
Fixes: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 (treewide: add PKG_CPE_ID for better cvescanner coverage)
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
0d96d38c6c1f5645efb129fde2e5e06c8ffc2bdc)
Fabrice Fontaine [Thu, 1 Feb 2024 22:31:04 +0000 (23:31 +0100)]
multimedia/motion: fix PKG_CPE_ID
motion_project:motion is a better CPE ID than lavrsen:motion as this CPE
ID has the latest CVE (whereas lavrsen:motion only a CVE from 2008):
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:motion_project:motion
Fixes: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 (treewide: add PKG_CPE_ID for better cvescanner coverage)
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
1a50def3051ef64f4ce6240a74512177e7d51e6d)
Fabrice Fontaine [Fri, 2 Feb 2024 17:20:15 +0000 (18:20 +0100)]
net/nbd: fix PKG_CPE_ID
There is not a single CVE linked to network_block_device:nbd so use
network_block_device_project:network_block_device instead:
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:network_block_device_project:network_block_device
Fixes: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 (treewide: add PKG_CPE_ID for better cvescanner coverage)
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
222df5ed5d469f42034fea230666c011e7ea3e30)
Fabrice Fontaine [Fri, 2 Feb 2024 17:17:47 +0000 (18:17 +0100)]
lang/python/python-pip: fix PKG_CPE_ID
There is not a single CVE linked to python:pip so use pypa:pip instead:
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:pypa:pip
Moreover, CPE_ID missed PKG_ prefix
Fixes: eee273507b868ad5f6f7e744d513c85330967906 (python3: Split pip into separate source package)
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
acad8ffb5f4b9f2f380a22c53702c048e22c82ea)
Fabrice Fontaine [Thu, 1 Feb 2024 10:13:06 +0000 (11:13 +0100)]
utils/gpsd: fix PKG_CPE_ID
gpsd_project:gpsd is a better CPE ID than berlios:gps_daemon as this CPE
ID has the latest CVEs (whereas berlios:gps_daemon only has one CVE from
2004):
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:gpsd_project:gpsd
Fixes: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 (treewide: add PKG_CPE_ID for better cvescanner coverage)
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
1b1c28c9a03f7742ffaeda7ac2b22d82182a1137)
Fabrice Fontaine [Fri, 2 Feb 2024 22:01:37 +0000 (23:01 +0100)]
utils/ntfs-3g: fix PKG_CPE_ID
tuxera:ntfs-3g is a better CPE ID than ntfs-3g:ntfs-3g as this CPE ID
has the latest CVEs (whereas ntfs-3g:ntfs-3g only has one CVE from 2007):
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:tuxera:ntfs-3g
Fixes: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 (treewide: add PKG_CPE_ID for better cvescanner coverage)
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
52a5e71b49dd3d10d57a20f4cb9e83aad8fbbc5e)
Fabrice Fontaine [Fri, 2 Feb 2024 17:37:33 +0000 (18:37 +0100)]
treewide: assign PKG_CPE_ID
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
[davici: not present in 23.05]
(cherry picked from commit
5afe5c9031190844f267357c68efe3c9c3cbe51d)
Fabrice Fontaine [Fri, 2 Feb 2024 17:24:43 +0000 (18:24 +0100)]
lang/python/python-yaml: fix PKG_CPE_ID
There is not a single CVE linked to pyyaml_project:pyyaml so use
pyyaml:pyyaml instead:
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:pyyaml:pyyaml
Fixes: c06a04c754bdcfdb2ea0bd1d654128863a2b6738 (python-yaml: update to version 5.1)
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
94734c4bf9ff99c0b2001c4934a3c3f1398aca38)
Fabrice Fontaine [Tue, 30 Jan 2024 20:27:53 +0000 (21:27 +0100)]
treewide: fix licence typos
- PKG_LICENCE -> PKG_LICENSE
- PKC_LICENSE_FILES -> PKG_LICENSE_FILES
- BSD 3-Clause -> BSD-3-Clause
- BSD-3-clause -> BSD-3-Clause
- BSD-2-clause -> BSD-2-Clause
- Public Domain -> Public-Domain
- PublicDomain -> Public-Domain
- Drop unneeded ',' in PKG_LICENSE or PKG_LICENSE_FILES
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
(cherry picked from commit
820fcc5fb979ad9ac630231dcf12ce76342d1c01)
John Audia [Mon, 1 Jul 2024 10:20:33 +0000 (06:20 -0400)]
openssh: bump to 9.8p1
Release notes: https://www.openssh.com/txt/release-9.8
* 9.8p1 fixes CVE-2024-6387
* Adjusted Makefile to provide /usr/lib/sshd-session
* Given the troubles with -fzero-call-used-regs and all the
broken checks, makes sense to skip it
Build system: x86/64
Build-tested: x86/64/AMD Cezanne
Run-tested: x86/64/AMD Cezanne
Signed-off-by: John Audia <therealgraysky@proton.me>
(cherry picked from commit
75674f0439ee497bc6b77222a23e3974d150be89)
Milinda Brantini [Tue, 2 Jul 2024 07:26:38 +0000 (15:26 +0800)]
dockerd: Update to 27.0.3
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
(cherry picked from commit
e7ef6ae485008486a587b05df1489152abfb6248)
Milinda Brantini [Tue, 2 Jul 2024 07:25:31 +0000 (15:25 +0800)]
docker: Update to 27.0.3
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
(cherry picked from commit
d9925c4813d8d5c44705c81a63d54c3304170ade)
Milinda Brantini [Fri, 28 Jun 2024 06:03:15 +0000 (14:03 +0800)]
docker: Update to 27.0.2
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
(cherry picked from commit
ec1320310ab09ddfaf0a10b447e8f4c99f5e617b)
Milinda Brantini [Fri, 28 Jun 2024 06:02:35 +0000 (14:02 +0800)]
runc: Update to 1.1.13
This is the thirteenth patch release in the 1.1.z release branch of runc.
Itbrings in Go 1.22.x compatibility and fixes a few issues,
including anoccasional wrong nofile rlimit in runc exec,
and a race between runc list and runc delete.
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
(cherry picked from commit
c49a11723819fa0405513800aa340c5cfa7fc9b8)
Milinda Brantini [Thu, 27 Jun 2024 13:18:59 +0000 (21:18 +0800)]
dockerd: Update to 27.0.2
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
(cherry picked from commit
24d29581e20d7643b8636efa3a26463fb2fd7f62)
Milinda Brantini [Sun, 23 Jun 2024 07:12:20 +0000 (15:12 +0800)]
dockerd: Update to 26.1.4
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
(cherry picked from commit
001e7138ddd8aa7c13213cea86956785cb382995)
Milinda Brantini [Sun, 23 Jun 2024 08:09:02 +0000 (16:09 +0800)]
containerd: Update to 1.7.18
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
(cherry picked from commit
8f3a94645df07996d5e1a8f26d1c4355bf2928c3)
Milinda Brantini [Sun, 23 Jun 2024 08:12:39 +0000 (16:12 +0800)]
docker: Update to 26.1.4
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
(cherry picked from commit
ab5b9ea2f0f530f245f068a78288968535ba85a1)
Dirk Brenken [Sun, 30 Jun 2024 17:30:11 +0000 (19:30 +0200)]
adblock: update 4.1.5-11
* removed an accidentally commited flag of the upcoming adblock 5.x, this fixes a startup regression without trigger interface
Signed-off-by: Dirk Brenken <dev@brenken.org>
(cherry picked from commit
b76f6e1c166d0344f9022d1ca994946414d9d035)
Goetz Goerisch [Fri, 28 Jun 2024 07:29:01 +0000 (09:29 +0200)]
jool: update to 4.1.12
Update jool to 4.1.12
Changelog: https://github.com/NICMx/Jool/releases/tag/v4.1.12
Signed-off-by: Goetz Goerisch <ggoerisch@gmail.com>
(cherry picked from commit
28256b2710fdbdb07a76d37f768bae23af45c4cf)
Goetz Goerisch [Fri, 19 Apr 2024 16:34:19 +0000 (18:34 +0200)]
jool: update documentation
* corrected the documentation links for upstream
* fixed style to be correctly rendered
* add reference to OpenWrt tutorial
Signed-off-by: Goetz Goerisch <ggoerisch@gmail.com>
(cherry picked from commit
8b08b29271e9f8d26ce8d337ffb4261ea8a25914)
Tiago Gaspar [Fri, 9 Feb 2024 15:21:25 +0000 (15:21 +0000)]
jool: update to 4.1.11
Update jool to 4.1.11 and remove unneeded patch.
Changelog: https://github.com/NICMx/Jool/releases/tag/v4.1.11
Signed-off-by: Tiago Gaspar <tiagogaspar8@gmail.com>
(cherry picked from commit
643e3bf73a9222b460f00dcd23aa11b6ecf3e852)
Tiago Gaspar [Fri, 1 Sep 2023 17:46:15 +0000 (18:46 +0100)]
jool: update package to version 4.1.10
Update jool to version 4.1.10 and remove a no longer needed patch.
There was also a need to backport a patch to fix compile in some archs.
Signed-off-by: Tiago Gaspar <tiagogaspar8@gmail.com>
(cherry picked from commit
26bf35bb4338caaefad3b1be4ee2c99d8e618618)
Tianling Shen [Sat, 27 Apr 2024 05:18:55 +0000 (13:18 +0800)]
cloudflared: Update to 2024.4.1
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
462bfd84e484da313b3f096cc4dbaec54c8c94a1)
[rebased upon 23.05 branch]
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Ryan Keane [Thu, 20 Jun 2024 21:16:27 +0000 (17:16 -0400)]
cloudflared: Fix incorrect uci config syntax
Fix incorrect uci config syntax, caused by a careless newbie contributer.
Modify function append_param_arg() in init script, to support hyphenated
arguments.
Add more command parameters as uci options, no value is set to keep it default.
Signed-off-by: Ryan Keane <the.ra2.ifv@gmail.com>
(cherry picked from commit
2d711c8fbda489ab5f89b162c040b6502986e970)
[rebased upon 23.05 branch]
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Ryan Keane [Wed, 19 Jun 2024 10:25:28 +0000 (06:25 -0400)]
cloudflared: Add more run parameters in UCI
https://developers.cloudflare.com/cloudflare-one/connections/connect-networks/configure-tunnels/tunnel-run-parameters/
Close #24122
Signed-off-by: Ryan Keane <the.ra2.ifv@gmail.com>
(cherry picked from commit
31c91837f9f171828ef6d4bd1e1867f4c593e2cc)
[rebased upon 23.05 branch]
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Dirk Brenken [Thu, 27 Jun 2024 05:47:10 +0000 (07:47 +0200)]
adblock: update 4.1.5-10
* made the DNS Reporting / tcpdump parsing code more capable
* small init fixes
* update readme
Signed-off-by: Dirk Brenken <dev@brenken.org>
(cherry picked from commit
a029f01d81b021b6ab7fd24e5da7d9af03681aba)
Milinda Brantini [Tue, 18 Jun 2024 06:29:32 +0000 (14:29 +0800)]
aardvark-dns: update to 1.11.0
changelogs:
https://github.com/containers/aardvark-dns/compare/v1.10.0...v1.11.0
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
(cherry picked from commit
39f75472f5f3686833c890daea0dca0166ebb5db)
Oskari Rauta [Fri, 16 Feb 2024 07:33:02 +0000 (09:33 +0200)]
aardvark-dns: update to 1.10.0
changelogs: https://github.com/containers/aardvark-dns/releases
Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
(cherry picked from commit
f03ac48d30629b032ac2372b24d41a9f9b8e4732)
Daniel Golle [Sat, 22 Jun 2024 14:34:02 +0000 (15:34 +0100)]
libjwt: add package
Add package for JWT C Library built against OpenSSL.
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
(cherry picked from commit
57fdc5d2b98e6bdd96f8f0f6f0448579bc3ddbad)
Milinda Brantini [Thu, 20 Jun 2024 06:46:08 +0000 (14:46 +0800)]
powertop: update to 2.15
Release mainly focuses on bug fixes and patching compatibility issues.
Also, adds support to multiple platforms.
Removed obsolete patch as upstream has fixed.
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
Milinda Brantini [Fri, 21 Jun 2024 03:23:51 +0000 (11:23 +0800)]
xray-core: update to 1.8.16
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
(cherry picked from commit
f84ed39a615011d029077335578ba1d4db795e5d)
Milinda Brantini [Tue, 18 Jun 2024 06:13:43 +0000 (14:13 +0800)]
xray-core: update to 1.8.15
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
(cherry picked from commit
4cbfd4709e1050a85f51b42fafab3753a0329901)
Milinda Brantini [Thu, 20 Jun 2024 07:44:41 +0000 (15:44 +0800)]
natmap: reset PKG_RELEASE to 1
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
(cherry picked from commit
1d542b8919a0e98836055bdd251e0345b80a0bc6)
Milinda Brantini [Mon, 3 Jun 2024 16:36:36 +0000 (00:36 +0800)]
natmap: update to
20240603
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
(cherry picked from commit
b0a4fd300f23f99bc678162165c23e93bb1e24e8)
Dirk Brenken [Sat, 22 Jun 2024 08:12:59 +0000 (10:12 +0200)]
banip: update 1.0.0-4
* relax the firewall pre-check if fw4 is not running
* replace former stale tor feed source with 'https://www.dan.me.uk/torlist/?exit'
* add openvpn log term/search pattern example to the readme
* the default config now includes only log terms for dropbear and LuCI, all others are optional
* readme update
Signed-off-by: Dirk Brenken <dev@brenken.org>
(cherry picked from commit
d17f661aee8aab300bd73d682748eac61bea27a2)
Milinda Brantini [Thu, 20 Jun 2024 07:06:50 +0000 (15:06 +0800)]
golang: Update to 1.21.11
go1.21.11 (released 2024-06-04) includes
security fixes to the archive/zip and net/netip packages,
as well as bug fixes to the compiler,
the go command, the runtime, and the os package.
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
Glenn Strauss [Sun, 12 May 2024 07:11:32 +0000 (03:11 -0400)]
lighttpd: fix missing dependency for OpenSSL crypto library
This change will provide the necessary dependency resolution, fixing:
Package lighttpd is missing dependencies for the following libraries:
libcrypto.so.3
Fixes: #23794
Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>
(cherry picked from commit
a300185d49e87848f9b8027393196631841b32f6)
Petr Štetiar [Wed, 24 Apr 2024 19:28:40 +0000 (19:28 +0000)]
lighttpd: add option to use OpenSSL crypto library
Currently, it is not feasible to configure lighttpd to use OpenSSL as
its internal crypto library. Instead, one must rely on alternative
crypto libraries such as Nettle or mbedTLS. This setup is not ideal in
scenarios where a single crypto library is preferred. To address this
issue, lets propose introducing OpenSSL as an additional configuration
option. Similarly, propose GnuTLS as additional configuration option.
Closes: #24004
Co-developed-by: Glenn Strauss <gstrauss@gluelogic.com>
Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>
Signed-off-by: Petr Štetiar <ynezz@true.cz>
(cherry picked from commit
8c9597f1dcb0ab5965a5ecdb506e234c5da61a3e)
Rosen Penev [Mon, 13 May 2024 22:59:55 +0000 (15:59 -0700)]
schroot: fix compilation with GCC14
GCC now does not allow assigning an std::locale to an std::string. No
idea why it worked originally.
Also fixed compilation with full NLS.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit
c3e2dcc128adde5af8b0d07c38962cc4fd8b3a3b)
Rosen Penev [Mon, 13 May 2024 03:27:37 +0000 (20:27 -0700)]
stlink: fix compilation with GCC 14
Switch to local git tarballs. Smaller.
Upstream backport and a local patch.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit
41a5880f01529c7226af5c1fece9b8e0017c5132)
Ryan Doyle [Mon, 20 Feb 2023 08:46:15 +0000 (19:46 +1100)]
prometheus-node-exporter-lua: Add optional mwan3 collector
Supports interface metrics exposed by mwan3. The performance is a
little slow compared to other collectors (~300ms) as the ubus call is
where most of the time is spent. Any future speedups are likely better
put into mwan3's rpcd binary.
Signed-off-by: Ryan Doyle <ryan@doylenet.net>
[rename metrics,bump version]
Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
(cherry picked from commit
c279efb760ca516db7cdaee32216344df47f2203)
Rob Hoelz [Fri, 2 Dec 2022 15:25:17 +0000 (09:25 -0600)]
prometheus-node-exporter-lua: Add "node_textfile_mtime_seconds" metric
…for textfile collector, to make it more consistent with the upstream
Prometheus node-exporter
Signed-off-by: Rob Hoelz <rob@hoelz.ro>
[bump version]
Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
(cherry picked from commit
4edae8449946f46bbb3943eb0af066048ef37c54)
Antoine C [Wed, 5 Jun 2024 18:34:33 +0000 (19:34 +0100)]
prometheus-node-exporter-lua: remove duplicated nat samples
Merge duplicate src/dest samples by suming their value (bytes count)
Fixes #24166
Signed-off-by: Antoine C <hi@acolombier.dev>
[bump version number]
Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
(cherry picked from commit
cd8f67298c588a6e80c5991b6921222eea10a06f)
René Treffer [Mon, 3 Jun 2024 20:16:11 +0000 (22:16 +0200)]
prometheus-node-exporter-lua: fix netclass duplicate TYPE lines
Fixes
a315c40b7232bbc83582685c98e41466d84d7a35
[initial fix]
Signed-off-by: René Treffer <treffer@measite.de>
[fixup René version]
Signed-off-by: PichetGoulu <pichet@nosuid.be>
[actual commit]
Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
(cherry picked from commit
aa7ea7938f4b39fef4b8a0a3f9ab14c1119be515)
Balázs Urbán [Sun, 17 Mar 2024 18:59:20 +0000 (19:59 +0100)]
prometheus-node-exporter-lua-hostapd_stations: fix not reporting metrics
- fix incorrect interface name mapping in hostapd_stations exporter
Signed-off-by: Balázs Urbán <szalab9@gmail.com>
Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
(cherry picked from commit
1930d39a15113a8ede7d2794e394678e87697f5d)
Etienne Champetier [Sun, 2 Jun 2024 20:20:30 +0000 (22:20 +0200)]
prometheus-node-exporter-lua: add missing libubus-lua dependency
Fixes
a315c40b7232bbc83582685c98e41466d84d7a35
Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
(cherry picked from commit
fe489585c260a40832ce76ab1236751cf6561da8)
Ivan Mironov [Thu, 13 Jul 2023 15:21:52 +0000 (17:21 +0200)]
prometheus-node-exporter-lua: bump package version
Signed-off-by: Ivan Mironov <mironov.ivan@gmail.com>
(cherry picked from commit
41975220c0b177892bd0184387a354bc036bc983)
Ivan Mironov [Wed, 12 Jul 2023 23:45:44 +0000 (01:45 +0200)]
prometheus-node-exporter-lua: add basic hwmon exporter
This collector supports following metrics:
* node_hwmon_temp_celsius
* node_hwmon_pwm
and following auxiliary mappings:
* node_hwmon_chip_names
* node_hwmon_sensor_label
Tested on:
* Banana Pi BPI-r3 / OpenWrt 23.05.0-rc2
* TP-Link Archer C7 v5 / OpenWrt 22.03.5
Signed-off-by: Ivan Mironov <mironov.ivan@gmail.com>
(cherry picked from commit
431fefbdea559625c5b46ff2011237fefcbf1c1c)
Joel Pettersson [Sat, 13 May 2023 10:26:45 +0000 (12:26 +0200)]
prometheus-node-exporter-lua: Add thermal collector
Signed-off-by: Joel Pettersson <me@joelpet.se>
(cherry picked from commit
1eeb1dc2de82c093e2cd1ccc71ffd36a449301f9)
Dirk Brenken [Tue, 18 Jun 2024 15:03:23 +0000 (17:03 +0200)]
banip: update 1.0.0-3
* fixed a regression in the split Set function (reported in the forum)
* fixed regex for urlhaus feed
Signed-off-by: Dirk Brenken <dev@brenken.org>
(cherry picked from commit
2cc7cf3ca0aa6ad2cf5d67a66632ca5a516eb07b)
Dengfeng Liu [Thu, 13 Jun 2024 07:59:50 +0000 (15:59 +0800)]
apfree-wifidog: update to 7.06.2008
Signed-off-by: Dengfeng Liu <liudf0716@gmail.com>
(cherry picked from commit
a1b1bd87bf87643e8a3b9235c3b21a3099722658)
Dengfeng Liu [Thu, 13 Jun 2024 07:57:58 +0000 (15:57 +0800)]
apfree-wifidog: support rule group and websocket&dns proxy flag
Signed-off-by: Dengfeng Liu <liudf0716@gmail.com>
(cherry picked from commit
a34f47e7bb067f98419c217d132e529549d2ecc5)
Luiz Angelo Daros de Luca [Mon, 3 Jun 2024 03:44:22 +0000 (00:44 -0300)]
ruby: update to 3.2.4
The 3.2.3 release includes many bug-fixes. This release also includes
the update of uri.gem to 0.12.2 which contains the security fix.
- CVE-2023-36617: ReDoS vulnerability in URI
See: https://www.ruby-lang.org/en/news/2024/01/18/ruby-3-2-3-released/
The 3.2.4 release includes security fixes. Please check the topics below
for details.
- CVE-2024-27282: Arbitrary memory address read vulnerability with Regex search
- CVE-2024-27281: RCE vulnerability with .rdoc_options in RDoc
- CVE-2024-27280: Buffer overread vulnerability in StringIO
See: https://www.ruby-lang.org/en/news/2024/04/23/ruby-3-2-4-released/
Signed-off-by: Luiz Angelo Daros de Luca <luizluca@gmail.com>
Dirk Brenken [Sun, 16 Jun 2024 19:50:40 +0000 (21:50 +0200)]
banip: update 1.0.0-2
* fixed a possible "Argument list too long" error in the f_log function
* fixed multiple, incomplete digit character classes
* fixed/optimized split file handling
* cosmetics
Signed-off-by: Dirk Brenken <dev@brenken.org>
(cherry picked from commit
059a5303296cd8a56aa6777ef5c9a61bef5dd48a)
Milinda Brantini [Sun, 9 Jun 2024 16:50:11 +0000 (00:50 +0800)]
sing-box: update to 1.9.3
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
(cherry picked from commit
128c0f03ef0d166f9f6d2fe83cea55a6d80789df)
Milinda Brantini [Sun, 9 Jun 2024 00:24:06 +0000 (08:24 +0800)]
sing-box: update to 1.9.2
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
(cherry picked from commit
b82a70dd191f8e401d3aeb710d2aeb0530895b05)
Milinda Brantini [Sat, 8 Jun 2024 07:18:49 +0000 (15:18 +0800)]
sing-box: update to 1.9.1
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
(cherry picked from commit
909ec005b605857d529bc449843206195a4c1e32)
Stan Grishin [Sun, 21 Apr 2024 13:43:06 +0000 (13:43 +0000)]
unbound: pull in adblock-fast generated adb_list
* adblock-fast can generate the compatible adb_list-file, but it's
only pulled if net/adblock installed, this patch also pulls in the
adb_list file if net/adblock-fast is installed.
* also bump PKG_RELEASE
Signed-off-by: Stan Grishin <stangri@melmac.ca>
(cherry picked from commit
d7d1743c834dffeb7e3ea0c9ee16ec587788f0ca)
Michael Heimpold [Mon, 10 Jun 2024 04:52:18 +0000 (06:52 +0200)]
Merge pull request #24340 from mhei/23.05-php8-update-to-8.2.20
[23.05] php8: update to 8.2.20
Rosen Penev [Sat, 8 Jun 2024 22:40:19 +0000 (15:40 -0700)]
iperf3: fix usage with big endian
Upstream submissions.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit
37ade7efabae535bb4612177bc4cf0a32353b8e9)
John Audia [Sat, 25 May 2024 11:51:49 +0000 (07:51 -0400)]
iperf3: update to 3.17.1
Changelogs since last release:
https://github.com/esnet/iperf/releases/tag/3.17
https://github.com/esnet/iperf/releases/tag/3.17.1
Signed-off-by: John Audia <therealgraysky@proton.me>
(cherry picked from commit
b450fbc5eaf7bcfeac1b0e8641f5d46a5d3f821c)
Dirk Brenken [Sat, 8 Jun 2024 08:32:48 +0000 (10:32 +0200)]
banip: release 1.0
* made sure, that the domain lookup always add the found IPs to the underlying allow-/blocklist-Set
* major readme update
Signed-off-by: Dirk Brenken <dev@brenken.org>
(cherry picked from commit
cc709768b5a243d0f021834a9cc4ca872e5f84bb)
Michael Heimpold [Sat, 8 Jun 2024 04:22:25 +0000 (06:22 +0200)]
php8: update to 8.2.20
This fixes:
- CVE-2024-4577
- CVE-2024-5458
- CVE-2024-5585
Changelog: https://www.php.net/ChangeLog-8.php#8.2.20
Signed-off-by: Michael Heimpold <mhei@heimpold.de>