Difuse/packages
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
25023 commits 8 branches 0 tags 65 MiB
Commit graph

25023 commits

This branch
This branch
All branches
Author SHA1 Message Date
Hirokazu MORIKAWA
aaa46eb44e libuv: fix CVE-2021-22918 
idna: fix OOB read in punycode decoder

libuv was vulnerable to out-of-bounds reads in the uv__idna_toascii()
function which is used to convert strings to ASCII. This is called by
the DNS resolution function and can lead to information disclosures or
crashes.

b7466e31e4
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990561
https://nodejs.org/en/blog/vulnerability/july-2021-security-releases/

Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
 2021-07-06 13:49:15 +09:00
Daniel Golle
194e7f0286
uvol: fix units with lvm backend 
Free and total bytes are now properly returned as bytes by LVM2 as
requested. No longer multiply values.
Fix parameter order of 'create' command in usage output while at it.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
 2021-07-06 05:27:13 +01:00
Oskari Rauta
18cf9866d0 apparmor: add missing parser.conf 
Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
 2021-07-06 03:38:44 +03:00
Michael Heimpold
42aa15b653
Merge pull request #16038 from mhei/php7-update 
php7: update to 7.4.21
 2021-07-05 20:58:41 +02:00
Michael Heimpold
7984c71bdd
Merge pull request #16037 from mhei/php8-update 
php8: update to 8.0.8
 2021-07-05 20:58:30 +02:00
Daniel Golle
cb02b42007
mwan3: use default routes from additional tables 
Until now the additional tables listed in gobal 'rt_table_lookup' were
not considered for interfaces.
In order to be able to also use interface-defined routes from tables
other than main, consider also tables listed in 'rt_table_lookup'.
Update version to 2.10.10 as requested by maintainer.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
 2021-07-05 18:58:52 +01:00
Othmar Truniger
13ef8a8d9c libfmt: bump to version 8.0.1 
Signed-off-by: Othmar Truniger <github@truniger.ch>
 2021-07-05 16:41:21 +02:00
Rosen Penev
6dee6ce5a6
Merge pull request #16043 from commodo/pillow 
pillow: bump to version 8.3.0
 2021-07-05 02:55:21 -07:00
Rosen Penev
1315dc6fa7
Merge pull request #16041 from commodo/django-bump 
django: bump to version 3.2.5
 2021-07-05 02:54:47 -07:00
Alexandru Ardelean
4361d88892 pillow: bump to version 8.3.0 
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
 2021-07-05 11:35:01 +03:00
Alexandru Ardelean
d3a64a36e9 django: bump to version 3.2.5 
Several bug-fixes.
Fix CVE-2021-35042

Release notes:
  https://docs.djangoproject.com/en/3.2/releases/3.2.5/

Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
 2021-07-05 10:58:30 +03:00
Michael Heimpold
7ddd5280d4 php8: update to 8.0.8 
This fixes:
  - CVE-2021-21704
  - CVE-2021-21705

Signed-off-by: Michael Heimpold <mhei@heimpold.de>
 2021-07-05 00:15:59 +02:00
Michael Heimpold
f15aba89f7 php7: update to 7.4.21 
This fixes:
    - CVE-2021-21704
    - CVE-2021-21705

Signed-off-by: Michael Heimpold <mhei@heimpold.de>
 2021-07-05 00:13:35 +02:00
Rosen Penev
f39a2bc32f
Merge pull request #16012 from commodo/python-dateutil 
python-dateutil: add setuptools-scm build dep
 2021-07-03 15:16:26 -07:00
Rosen Penev
4b6ad9fd0f
Merge pull request #16025 from rs/nextdns-1.34.2-master 
nextdns: Update to version 1.34.2
 2021-07-03 15:15:21 -07:00
Michael Heimpold
20c884bbd5 libzip: fix typo in patch (fixes #15992) 
This prevented expansion of libdir in pkgconfig.

Signed-off-by: Michael Heimpold <mhei@heimpold.de>
 2021-07-02 23:59:53 +02:00
Olivier Poitrey
687b9b4917 nextdns: Update to version 1.34.2 
Signed-off-by: Olivier Poitrey <rs@nextdns.io>
 2021-07-02 18:54:56 +00:00
Alexandru Ardelean
e2026346cc python-dateutil: add setuptools-scm build dep 
Following:
  https://github.com/openwrt/packages/pull/16004
  https://github.com/openwrt/packages/pull/15995
  https://github.com/openwrt/packages/issues/15988

It seems that dateutil requires setuptools-scm to be installed.
As such, this is being added as a dependency.

Also, bump setuptools-scm to version 6.0.1

Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
 2021-07-02 16:21:33 +03:00
Philip Prindeville
57a23bfde3
Merge pull request #16010 from pprindeville/strongswan-simplify-stroke-install 
strongswan: trivial improvement in 'stroke' packaging
 2021-07-01 17:05:41 -06:00
Michael Heimpold
d452429a56
Merge pull request #14716 from mhei/libgpiod-update 
libgpiod: update to 1.6.3
 2021-07-01 20:40:53 +02:00
Philip Prindeville
40d30f123d strongswan: trivial improvement in 'stroke' packaging 
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
 2021-07-01 12:12:15 -06:00
Rosen Penev
af9a4036c0
Merge pull request #16003 from zorun/tessdata_speed_build 
tessdata: uncompress tarball only once to speed up builds
 2021-06-30 16:31:10 -07:00
Baptiste Jonglez
7fe513971f tessdata: uncompress tarball only once to speed up builds 
The previous approach was to uncompress N times a big tarball (638 MB)
where N=130 is the number of supported languages.  Each iteration would
only extract a single file, but it still needs to uncompress the whole
tarball.  This is of course completely inefficient.

Now, we uncompress the tarball only once to extract all relevant files,
and then iterate N times to copy the file needed for each language.

This massively speeds up builds, at the expense of temporarily requiring
more build space (about 1 GB more)

Signed-off-by: Baptiste Jonglez <git@bitsofnetworks.org>
 2021-06-30 14:09:42 +02:00
Dirk Brenken
ab0881b0dc
Merge pull request #16000 from dibdot/adblock 
adblock: update 4.1.3-2
 2021-06-30 12:19:25 +02:00
Daniel Golle
1204cb82f9 auc: update to version 0.1.8 
This fixes support for x86, auc now selects the right combined image
depending on the system being booted in EFI mode or not.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
 2021-06-30 01:40:37 +01:00
Rosen Penev
dfee9d005d
Merge pull request #15979 from G-M0N3Y-2503/cache-domains-fix-wildcard 
cache-domains: Fixed missing wildcard entries
 2021-06-29 14:50:12 -07:00
Rosen Penev
ea8083639d
Merge pull request #15950 from rsalvaterra/lolcat 
lolcat: add package
 2021-06-29 14:45:47 -07:00
Rosen Penev
c61eb3ed98
Merge pull request #15797 from lnslbrty/update/libulfius-2.7.3 
libulfius: update to 2.7.3
 2021-06-29 14:41:49 -07:00
Rosen Penev
789a4e2a9a
Merge pull request #15877 from neheb/exfatp 
exfatprogs: update to 1.1.2
 2021-06-29 14:41:19 -07:00
Rosen Penev
e49cb15788
Merge pull request #15996 from PowerDNS/dnsdist-recursor-option-checking 
dnsdist, pdns-recursor: remove --enable-option-checking=fatal
 2021-06-29 14:41:03 -07:00
Michael Heimpold
4db1fba5a1 libgpiod: update to 1.6.3 
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
 2021-06-29 21:08:39 +02:00
Dirk Brenken
e5fd19d2e0
adblock: update 4.1.3-2 
* add a tcpdump option to resolve IPs in adblock reporting,
  set 'adb_represolve' accordingly (disabled by default). If enabled
  tcpdump will perform a reverse DNS (PTR) lookup for each IP address
* add 'stalkerware' source (provided by @astryzia)
* update readme

Signed-off-by: Dirk Brenken <dev@brenken.org>
 2021-06-29 21:03:33 +02:00
David Bauer
5f73d18eb1
Merge pull request #15998 from blocktrron/pr-udhcpsnoop 
udhcpsnoop: import package from TIP
 2021-06-29 19:50:13 +02:00
David Bauer
b24ff2e1e0 udhcpsnoop: import package from TIP 
Import the udhcpsnoop package from the TIP feed.

The original Makefile in TIP repo spcifies GPL-2.0 as the PKG_LICENSE.
However this is a mistake, as the SPDX headers of the repos source files
all specify BSD-3-Clause as their license.

See https://github.com/Telecominfraproject/wlan-ap/blob/uCentral-trunk/feeds/ucentral/udhcpsnoop/Makefile

Signed-off-by: David Bauer <mail@david-bauer.net>
 2021-06-29 18:55:24 +02:00
Michael Heimpold
7ce9c89988
Merge pull request #15992 from mhei/libzip-fix-pkgconfig 
libzip: fix pkgconfig paths (fixes #15943)
 2021-06-29 13:51:11 +02:00
Peter van Dijk
d39c517f84 pdns-recursor: remove --enable-option-checking=fatal 
Signed-off-by: Peter van Dijk <peter.van.dijk@powerdns.com>
 2021-06-29 12:31:19 +02:00
Peter van Dijk
da9aab57ed dnsdist: remove --enable-option-checking=fatal 
Signed-off-by: Peter van Dijk <peter.van.dijk@powerdns.com>
 2021-06-29 12:31:19 +02:00
Josef Schlehofer
39dedfee16
Revert "uci2: update revision" 
I'm reverting this commit, because it is pulling newer source code, but
without doing a new version bump. This results that users who already
installed this library on their router will have different package
content than users who installed it after the commit.

The another small reason is that commit subject - update revision is cryptic itself and should be more bulletproof like saying update to version 1.1

More details: https://github.com/openwrt/packages/pull/15990#issuecomment-870333695

This reverts commit e779323481.

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
 2021-06-29 09:12:51 +02:00
Michael Heimpold
851c7a1e0a libzip: fix pkgconfig paths (fixes #15943) 
We should use upstream patch here, which can be removed later,
instead of maintaining our own one.

Reported-by: Rosen Penev <rosenp@gmail.com>
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
 2021-06-29 07:47:51 +02:00
Rosen Penev
0c025e503c
Merge pull request #15889 from flyn-org/podman 
podman: change permissions on /usr/share/containers/seccomp.json
 2021-06-28 12:50:21 -07:00
Rosen Penev
b09863963c
Merge pull request #15851 from brvphoenix/ariang 
ariang: update to 1.2.2
 2021-06-28 12:48:55 -07:00
Rosen Penev
ccb9e4d083
Merge pull request #15991 from Andy2244/wsdd2-1.8.5 
wsdd2: update to git 2021-06-28 (v1.8.5)
 2021-06-28 12:47:42 -07:00
Rosen Penev
c78dc1743b
Merge pull request #15990 from sartura/uci2-bump 
uci2: update revision
 2021-06-28 12:47:09 -07:00
Rosen Penev
81d2c660ef
Merge pull request #15982 from Andy2244/samba-4.14.5 
samba4: update to 4.14.5
 2021-06-28 12:45:21 -07:00
Rosen Penev
84f42d6b9e
Merge pull request #15981 from Andy2244/rpcbind-1.2.6 
rpcbind: update to 1.2.6
 2021-06-28 12:44:48 -07:00
Rosen Penev
59a1901e3b
Merge pull request #15980 from Andy2244/libtirpc-1.3.2 
libtirpc: update to 1.3.2
 2021-06-28 12:44:33 -07:00
Andy Walsh
584d37fb0c wsdd2: update to git 2021-06-28 (v1.8.5) 
* update to git 2021-06-28 (v1.8.5)
* add extra startup delay

Signed-off-by: Andy Walsh <andy.walsh44+github@gmail.com>
 2021-06-28 18:06:03 +02:00
Jakov Petrina
e779323481 uci2: update revision 
Pull in new API function from upstream.

Signed-off-by: Jakov Petrina <jakov.petrina@sartura.hr>
 2021-06-28 16:22:20 +02:00
Rui Salvaterra
d2582939ad lolcat: add package 
A pure C implementation of lolcat, probably the lightest out there.

Signed-off-by: Rui Salvaterra <rsalvaterra@gmail.com>
 2021-06-28 09:05:19 +01:00
Philip Prindeville
b609c35513
Merge pull request #15973 from pprindeville/strongswan-more-config-cleanup 
strongswan: miscellaneous cleanup of config file, etc
 2021-06-27 23:52:02 -06:00