aboutsummaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAge
...
| * openconnect: make host dependency more resilientNikos Mavrogiannopoulos2024-02-16
| | | | | | | | | | | | | | | | | | Retry when resolveip fails as it seems to be causing issues on startup depending on various unpredictable parameters. Resolves: #23185 Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
* | Merge pull request #23463 from mhei/fix-aprMichael Heimpold2024-02-19
|\ \ | | | | | | apr/subversion: fix subversion build and apache-mod-php8 build regres…
| * | apr/subversion: fix subversion build and apache-mod-php8 build regression ↵Michael Heimpold2024-02-17
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | (fixes #23460) The recent upgrade of apr included a change with should fix the subversion build. Unfortunately, this fix resulted in a build regression of apache-mod-php8. The new approach is to pass the locations of the apr config helpers to configure via parameter. Fixes: 68dd7b7cf632 ("apr: update to 1.7.4") Signed-off-by: Michael Heimpold <mhei@heimpold.de>
* | | mariadb: fix compilation with newer fmtRosen Penev2024-02-18
| | | | | | | | | | | | | | | | | | Upstream backport. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | | libfmt: fix compilation with mariadbRosen Penev2024-02-18
| | | | | | | | | | | | | | | | | | Upstream backport. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | | h2o: remove, nothing depends on it anymorePeter van Dijk2024-02-18
| | | | | | | | | | | | Signed-off-by: Peter van Dijk <peter.van.dijk@powerdns.com>
* | | dnsdist: update to 1.9.0Peter van Dijk2024-02-18
| | | | | | | | | | | | Signed-off-by: Peter van Dijk <peter.van.dijk@powerdns.com>
* | | unbound: update to latest upstream release version 1.19.1S. Brusch2024-02-18
| | | | | | | | | | | | | | | | | | | | | | | | Maintainer: @EricLuehrsen Fixes: CVE-2023-50387, CVE-2023-50868 Release notes: https://nlnetlabs.nl/news/2024/Feb/13/unbound-1.19.1-released/ Run tested: BPi-R3, mediatek/filogic, OpenWrt 23.05.2 Signed-off-by: S. Brusch <ne20002@gmx.ch>
* | | qemu: update to 8.2.0Vladimir Ermakov2024-02-18
| | | | | | | | | | | | | | | | | | | | | | | | - Refresh patches. - Disable new features like AF XDP, Rutabaga VGA, libkeyutils - Delete removed features such as HAX hypervisor Signed-off-by: Vladimir Ermakov <vooon341@gmail.com>
* | | openblas: enable ARM-specific optimizationskrant2024-02-17
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | OpenBLAS allows to specify per-family CPU optimizations during build stage. This package supports manual specification of a family during configuration. This commit adds automatic detection of target family, while keeping manual override as a backup. Automatically detected ARM families: - Cortex-A9 without NEON - Cortex-A9 with NEON - Cortex-A15 - Cortex-A53 - Cortex-A72 Signed-off-by: krant <aleksey.vasilenko@gmail.com>
* | | yt-dlp: bump to version 2023.12.30Alexander Egorenkov2024-02-17
| | | | | | | | | | | | Signed-off-by: Alexander Egorenkov <egorenar-dev@posteo.net>
* | | haproxy: update to v2.8.6Christian Lachner2024-02-17
| | | | | | | | | | | | | | | | | | | | | - Update haproxy PKG_VERSION and PKG_HASH - See changes: http://git.haproxy.org/?p=haproxy-2.8.git;a=shortlog Signed-off-by: Christian Lachner <gladiac@gmail.com>
* | | podman: update to 4.9.3Oskari Rauta2024-02-17
| | | | | | | | | | | | | | | | | | | | | | | | Changelogs: https://github.com/containers/podman/releases Patches refreshed Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
* | | conmon: update to 2.1.10Oskari Rauta2024-02-17
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | bug fixes: - Fix incorrect free in conn_sock - logging: Respect log-size-max immediately after open - fix some issues flagged by SAST scan - src: fix write after end of buffer - src: open all files with O_CLOEXEC - oom-score: restore oom score before running exit command new features: - Forward more messages on the sd-notify socket - logging: -l passthrough accepts TTYs Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
* | | Merge pull request #23406 from stangri/master-adblock-fastStan Grishin2024-02-16
|\ \ \ | |/ / |/| | adblock-fast: add force_dns_interface setting
| * | adblock-fast: add force_dns_interface settingStan Grishin2024-02-14
| | | | | | | | | | | | | | | | | | | | | * allow users to specify list of interfaces/networks to force the DNS Hijacking on Signed-off-by: Stan Grishin <stangri@melmac.ca>
* | | slirp4netns: update to 1.2.3Oskari Rauta2024-02-16
| | | | | | | | | | | | | | | | | | | | | | | | | | | changelog: - Fix some FD leaks (#334, thanks to @giuseppe) As package belongs to network category, I moved it from utils to network folder Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
* | | bind: bump to 9.18.24Noah Meyerhans2024-02-16
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fixes CVEs: - CVE-2023-50387: Validating DNS messages containing a lot of DNSSEC signatures could cause excessive CPU load, leading to a denial-of-service condition. - CVE-2023-50868: Preparing an NSEC3 closest encloser proof could cause excessive CPU load, leading to a denial-of-service condition. - CVE-2023-4408: Parsing DNS messages with many different names could cause excessive CPU load. - CVE-2023-5517: Specific queries could cause named to crash with an assertion failure when nxdomain-redirect was enabled. - CVE-2023-5679: A bad interaction between DNS64 and serve-stale could cause named to crash with an assertion failure, when both of these features were enabled. Signed-off-by: Noah Meyerhans <frodo@morgul.net>
* | | aardvark-dns: update to 1.10.0Oskari Rauta2024-02-16
| | | | | | | | | | | | | | | | | | changelogs: https://github.com/containers/aardvark-dns/releases Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
* | | node: February 14 2024 Security ReleasesHirokazu MORIKAWA2024-02-16
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Update to v20.11.1 This is a security release. Notable changes * CVE-2024-21892 - Code injection and privilege escalation through Linux capabilities- (High) * CVE-2024-22019 - http: Reading unprocessed HTTP request with unbounded chunk extension allows DoS attacks- (High) * CVE-2024-21896 - Path traversal by monkey-patching Buffer internals- (High) * CVE-2024-22017 - setuid() does not drop all privileges due to io_uring - (High) * CVE-2023-46809 - Node.js is vulnerable to the Marvin Attack (timing variant of the Bleichenbacher attack against PKCS#1 v1.5 padding) - (Medium) * CVE-2024-21891 - Multiple permission model bypasses due to improper path traversal sequence sanitization - (Medium) * CVE-2024-21890 - Improper handling of wildcards in --allow-fs-read and --allow-fs-write (Medium) * CVE-2024-22025 - Denial of Service by resource exhaustion in fetch() brotli decoding - (Medium) * undici version 5.28.3 * libuv version 1.48.0 * OpenSSL version 3.0.13+quic1 (Depends on shared library provided by OpenWrt) Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* | | Merge pull request #23457 from TDT-AG/pr/20240216-procps-ngFlorian Eckert2024-02-16
|\ \ \ | | | | | | | | procps-ng: update to version 4.0.4 and rename old version 3.3.16 to procps-ng3
| * | | procps-ng: Re-add procps-ng with API version 4krant2024-02-16
| | | | | | | | | | | | | | | | Signed-off-by: krant <aleksey.vasilenko@gmail.com>
| * | | procps-ng3: update to 3.3.17 and install library onlykrant2024-02-16
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | - Install library only (utilities are in procps-ng API version 4) - Latest 3.3.17 version of 3.x series is used - Refresh existing patch - Add new patch from Alpine Linux Signed-off-by: krant <aleksey.vasilenko@gmail.com> - Rebase patch because of packages version update was reverted before Signed-off-by: Florian Eckert <fe@dev.tdt.de>
| * | | procps-ng: rename procps-ng to procps-ng3krant2024-02-16
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: krant <aleksey.vasilenko@gmail.com> - Rebase patch because of packages version update was reverted before Signed-off-by: Florian Eckert <fe@dev.tdt.de>
| * | | Revert "procps-ng: update to 4.0.4"krant2024-02-16
| | |/ | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | The props-ng packages adds a new API version that breaks other downstream packages. This revert is a preparation commit to move the old API to procps-ng3 so that the new API could use procps-ng packages name again. Signed-off-by: Florian Eckert <fe@dev.tdt.de> This reverts commit 81629ba5918f48a0886e6f601d63d0b016ef8c1e.
* | | Merge pull request #23459 from TDT-AG/pr/20240216-glib2Florian Eckert2024-02-16
|\ \ \ | | | | | | | | glib2: revert latest changes to get back to working version 2.74.0
| * | | glib2: update to version 2.74.7Florian Eckert2024-02-16
| | | | | | | | | | | | | | | | Signed-off-by: Florian Eckert <fe@dev.tdt.de>
| * | | glib2: do not set default meson optionsFlorian Eckert2024-02-16
| | | | | | | | | | | | | | | | Signed-off-by: Florian Eckert <fe@dev.tdt.de>
| * | | Revert "glib2: update to 2.78.4"Florian Eckert2024-02-16
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | So that we have a working ModemManager again and can look at the problem revert the update to version 2.78.4 for now. Signed-off-by: Florian Eckert <fe@dev.tdt.de> This reverts commit 08c7b0dfcae48114176762e93aa1b4ce5d42f8ad.
| * | | Revert "glib2: use internal pcre2"Florian Eckert2024-02-16
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This is must also get revert to get back to working glib2 version 2.74.0 Signed-off-by: Florian Eckert <fe@dev.tdt.de> This reverts commit 9f57ef2d6e339231278f36614d9b2fdd275a9339.
* | | | crun: update to 1.14.1Oskari Rauta2024-02-16
| | | | | | | | | | | | | | | | | | | | | | | | | | | | Changelogs: https://github.com/containers/crun/releases Previous version was 1.12 Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
* | | | netavark: update to 1.10.3Oskari Rauta2024-02-16
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | changelogs: https://github.com/containers/netavark/releases wrapper script and config file removed as they have become obsolete, firewall driver is now configured in containers.conf Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
* | | | netbird: update to 0.25.8Oskari Rauta2024-02-16
|/ / / | | | | | | | | | | | | | | | changes: https://github.com/netbirdio/netbird/compare/v0.25.2...v0.25.8 Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
* | | docker-compose: Update to version 2.24.6Javier Marcet2024-02-16
| | | | | | | | | | | | Signed-off-by: Javier Marcet <javier@marcet.info>
* | | efivar: disable mold linkerOskari Rauta2024-02-16
|/ / | | | | | | | | | | | | efivar fails to build with mold linker, so it should be opted out. I also added missing maintainer. Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
* | pdns-recursor: update to 5.0.2 (fixes CVE-2023-50387, CVE-2023-50868)Peter van Dijk2024-02-15
| | | | | | | | Signed-off-by: Peter van Dijk <peter.van.dijk@powerdns.com>
* | Merge pull request #23316 from dhewg/promEtienne Champetier2024-02-14
|\ \ | | | | | | prometheus-node-exporter-ucode: fix sporadic wifi errors and warnings
| * | prometheus-node-exporter-ucode: fix sporadic wifi errors and warningsAndre Heider2024-02-07
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Some properties may not yet be available, properly guard them. Fixes error like: daemon.err uhttpd[2116]: error running collector 'wifi': daemon.err uhttpd[2116]: left-hand side expression is null Signed-off-by: Andre Heider <a.heider@gmail.com>
* | | mpd: update to 0.23.15Rosen Penev2024-02-14
| | | | | | | | | | | | Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | | zmq: update to 4.3.5Rosen Penev2024-02-14
| | | | | | | | | | | | | | | | | | | | | | | | Remove GCC13 backport. Refresh other patches. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | | taglib: update to 2.0Rosen Penev2024-02-14
| | | | | | | | | | | | | | | | | | Switched to local tarball as the utf8cpp subproject needs to be used. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | | libcap-ng: update to 0.84Rosen Penev2024-02-14
| | | | | | | | | | | | Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | | hidapi: update to 0.14.0Rosen Penev2024-02-14
| | | | | | | | | | | | Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | | libnpupnp: update to 6.1.0Rosen Penev2024-02-14
| | | | | | | | | | | | Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | | mpc: update to 0.35Rosen Penev2024-02-14
| | | | | | | | | | | | Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | | libxerces-c: update to 3.2.5Rosen Penev2024-02-14
| | | | | | | | | | | | Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | | libupnp: update to 1.14.18Rosen Penev2024-02-14
| | | | | | | | | | | | Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | | libtins: update to 4.5Rosen Penev2024-02-14
| | | | | | | | | | | | | | | | | | Remove upstream backport. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | | log4cplus: update to 2.1.1Rosen Penev2024-02-14
| | | | | | | | | | | | Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | | p910nd: bump releasePaul Donald2024-02-14
| | | | | | | | | | | | Signed-off-by: Paul Donald <newtwen@gmail.com>
Powered by cgit, Themed by Ted Yin.