aboutsummaryrefslogtreecommitdiff
path: root/lang
Commit message (Collapse)AuthorAge
* python-requests: bump to version 2.26.0Alexandru Ardelean2021-07-23
| | | | | | | | | This version prefers charset_normalizer instead of chardet. chardet is still usable if available. Dropping patches for idna. Not required anymore. Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
* python-dateutil: bump to version 2.8.2Alexandru Ardelean2021-07-23
| | | | Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
* Merge pull request #16098 from neheb/erlaRosen Penev2021-07-19
|\ | | | | erlang: disable PIE
| * erlang: disable PIERosen Penev2021-07-11
| | | | | | | | | | | | Fails to compile with it on. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | Merge pull request #15798 from siger-yeung/masterRosen Penev2021-07-19
|\ \ | | | | | | luaossl: add luaossl(rel-20200709) to feeds
| * | luaossl: add luaossl(rel-20200709) to feedsSiger Yang2021-06-10
| | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Siger Yang <sigeryeung@gmail.com> luaossl: fix maintainer Signed-off-by: Siger Yang <sigeryeung@gmail.com>
* | | golang: Update to 1.16.6Jeffery To2021-07-19
| | | | | | | | | | | | | | | | | | | | | Includes fix for CVE-2021-34558 (crypto/tls: clients can panic when provided a certificate of the wrong type for the negotiated parameters). Signed-off-by: Jeffery To <jeffery.to@gmail.com>
* | | Merge pull request #16118 from commodo/python-updates1Rosen Penev2021-07-15
|\ \ \ | | | | | | | | python-{simplejson,cffi,pillow}: update versions
| * | | pillow: bump to version 8.3.1Alexandru Ardelean2021-07-14
| | | | | | | | | | | | | | | | Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
| * | | python-cffi: bump to version 1.14.6Alexandru Ardelean2021-07-14
| | | | | | | | | | | | | | | | Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
| * | | python-simplejson: bump to version 3.17.3Alexandru Ardelean2021-07-14
| | | | | | | | | | | | | | | | Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
* | | | Merge pull request #16134 from luizluca/ruby-3.0.2Rosen Penev2021-07-15
|\ \ \ \ | |/ / / |/| | | ruby: update to 3.0.2
| * | | ruby: update to 3.0.2Luiz Angelo Daros de Luca2021-07-15
| | |/ | |/| | | | | | | | | | | | | | | | | | | | | | | | | This release fixes some bugs and these vulnerabilities: * CVE-2021-31810: Trusting FTP PASV responses vulnerability in Net::FTP * CVE-2021-32066: A StartTLS stripping vulnerability in Net::IMAP * CVE-2021-31799: A command injection vulnerability in RDoc Signed-off-by: Luiz Angelo Daros de Luca <luizluca@gmail.com>
* / | python3: use gdbm for Berkley dbmAlexandru Ardelean2021-07-13
|/ / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Python works with GNU DBM and with Berkley DBM. Berkley DBM has been under Oracle for some time. And it's not clear how many Python users actually use DBM. In the packages feed, we have both libdb47 (which is now under Oracle) and GNU DBM. The GNU DBM has a compatibility layer for Berkley DBM. There are newer versions than libdb47, but it's probably not worth having them yet. The libbd47 tarball is ~40+ MB. Odds are newer versions will be bigger and more bloated. This change merges the old `python3-gdbm` package into the `python3-dbm` package, since they are effectively using the same underlying library now, i.e. gdbm. Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
* | python3: do a simple ls on pip & setuptools if not selected for buildAlexandru Ardelean2021-07-06
| | | | | | | | | | | | | | | | | | I seem to forget to check/select setuptools and pip (that come bundled with Python). This change will do a simple 'ls' on the 2 wheel files, so that the build fails even if just building Python. Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
* | python3: update to version 3.9.6Alexandru Ardelean2021-07-06
| | | | | | | | | | | | | | Refreshed patches. Bumped pip to 21.1.3. Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
* | Merge pull request #16038 from mhei/php7-updateMichael Heimpold2021-07-05
|\ \ | | | | | | php7: update to 7.4.21
| * | php7: update to 7.4.21Michael Heimpold2021-07-05
| | | | | | | | | | | | | | | | | | | | | | | | This fixes: - CVE-2021-21704 - CVE-2021-21705 Signed-off-by: Michael Heimpold <mhei@heimpold.de>
* | | Merge pull request #16037 from mhei/php8-updateMichael Heimpold2021-07-05
|\ \ \ | | | | | | | | php8: update to 8.0.8
| * | | php8: update to 8.0.8Michael Heimpold2021-07-05
| |/ / | | | | | | | | | | | | | | | | | | | | | This fixes: - CVE-2021-21704 - CVE-2021-21705 Signed-off-by: Michael Heimpold <mhei@heimpold.de>
* | | Merge pull request #16043 from commodo/pillowRosen Penev2021-07-05
|\ \ \ | | | | | | | | pillow: bump to version 8.3.0
| * | | pillow: bump to version 8.3.0Alexandru Ardelean2021-07-05
| |/ / | | | | | | | | | Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
* / / django: bump to version 3.2.5Alexandru Ardelean2021-07-05
|/ / | | | | | | | | | | | | | | | | | | Several bug-fixes. Fix CVE-2021-35042 Release notes: https://docs.djangoproject.com/en/3.2/releases/3.2.5/ Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
* | python-dateutil: add setuptools-scm build depAlexandru Ardelean2021-07-02
| | | | | | | | | | | | | | | | | | | | | | | | | | | | Following: https://github.com/openwrt/packages/pull/16004 https://github.com/openwrt/packages/pull/15995 https://github.com/openwrt/packages/issues/15988 It seems that dateutil requires setuptools-scm to be installed. As such, this is being added as a dependency. Also, bump setuptools-scm to version 6.0.1 Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
* | node: bump to 14.17.1Hirokazu MORIKAWA2021-06-18
| | | | | | | | | | | | | | | | Notable Changes: deps: update ICU to 69.1 (Michaƫl Zasso) errors: align source-map stacks with spec (Benjamin Coe) Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* | python-cryptography: bump to version 3.4.7Alexandru Ardelean2021-06-17
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Dropped patches: 0004-Replace-EVP_CIPHER_CTX_cleanup-with-EVP_CIPHER_CTX_r.patch 0005-Switch-get_-Update-APIs-to-get0.patch Reworked patches: 0001-Add-new-ASN1_STRING_get0_data-API.patch 0006-Add-X509_STORE_CTX_trusted_stack-compatibility-macro.patch These 2 require that we keep only the CUSTOMIZATIONS stuff for now. Maybe later we can drop this. Ran 'make package/python-cryptography/refresh'. Added patch: 0004-disable-rust.patch upstream did a sloppy job with the CRYPTOGRAPHY_DONT_BUILD_RUST logic; we need to patch it, to make sure the setuptools-rust isn't installed. We may need to carry this patch in our tree for a bit longer than upstream, because in newer versions, CRYPTOGRAPHY_DONT_BUILD_RUST logic gets removed. Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
* | django: bump to version 3.2.4Alexandru Ardelean2021-06-15
| | | | | | | | Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
* | python3: Add readline to dependency finder scriptJeffery To2021-06-15
| | | | | | | | Signed-off-by: Jeffery To <jeffery.to@gmail.com>
* | treewide: back to cmake.mkRosen Penev2021-06-12
| | | | | | | | | | | | Ninja was merged to base and therefore we can now use normal cmake.mk Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | python-twisted: Add tls/conch dependenciesJeffery To2021-06-12
| | | | | | | | | | | | | | | | By adding these dependencies, it is much easier for users (both applications that use Twisted and end users) to have secure communications by default. Signed-off-by: Jeffery To <jeffery.to@gmail.com>
* | python-twisted: Update to 21.2.0, redo patchesJeffery To2021-06-12
| | | | | | | | Signed-off-by: Jeffery To <jeffery.to@gmail.com>
* | Merge pull request #15833 from jefferyto/python-incremental-21.3.0Josef Schlehofer2021-06-11
|\ \ | | | | | | python-incremental: Update to 21.3.0, refresh patch
| * | python-incremental: Update to 21.3.0, refresh patchJeffery To2021-06-12
| | | | | | | | | | | | Signed-off-by: Jeffery To <jeffery.to@gmail.com>
* | | Merge pull request #15830 from jefferyto/python-zope-interface-5.4.0Josef Schlehofer2021-06-11
|\ \ \ | | | | | | | | python-zope-interface: Update to 5.4.0
| * | | python-zope-interface: Update to 5.4.0Jeffery To2021-06-11
| |/ / | | | | | | | | | Signed-off-by: Jeffery To <jeffery.to@gmail.com>
* / / python-attrs: Update to 21.2.0Jeffery To2021-06-11
|/ / | | | | | | Signed-off-by: Jeffery To <jeffery.to@gmail.com>
* | golang: Update to 1.16.5Jeffery To2021-06-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | 1.16.1 included fixes for: * CVE-2021-27918 - encoding/xml: infinite loop when using xml.NewTokenDecoder with a custom TokenReader * CVE-2021-27919 - archive/zip: can panic when calling Reader.Open 1.16.4 included fixes for: * CVE-2021-31525 - net/http: ReadRequest can stack overflow due to recursion with very large headers 1.16.5 includes fixes for: * CVE-2021-33195 - net: Lookup functions may return invalid host names * CVE-2021-33196 - archive/zip: malformed archive may cause panic or memory exhaustion * CVE-2021-33197 - net/http/httputil: ReverseProxy forwards Connection headers if first one is empty Signed-off-by: Jeffery To <jeffery.to@gmail.com>
* | Merge pull request #15809 from mhei/php8-updateMichael Heimpold2021-06-08
|\ \ | | | | | | php8: update to 8.0.7
| * | php8: update to 8.0.7Michael Heimpold2021-06-08
| |/ | | | | | | Signed-off-by: Michael Heimpold <mhei@heimpold.de>
* / php7: update to 7.4.20Michael Heimpold2021-06-07
|/ | | | Signed-off-by: Michael Heimpold <mhei@heimpold.de>
* Merge pull request #15745 from neheb/tcl2Rosen Penev2021-06-03
|\ | | | | tcl: update to 8.6.11
| * tcl: update to 8.6.11Rosen Penev2021-06-01
| | | | | | | | Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | Merge pull request #15659 from commodo/python3-readlineRosen Penev2021-06-02
|\ \ | | | | | | python3: add python3-readline subpackage
| * | python3: add python3-readline subpackageAlexandru Ardelean2021-05-19
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Python3 comes with a built-in readline module. It wasn't included up until now; mostly because it wasn't considered. This change introduces it as a sub-package of the main Python3 package. readline support is included in Python. libreadline pulls libncursesw as a package, so python3-ncurses was updated to pull libncursesw as well. It should be the same package; mostly done for consistency. Resolves the issue reported here: https://forum.openwrt.org/t/python3-repl-missing-readline/90039 Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
* | | python-idna: bump to version 3.2Alexandru Ardelean2021-06-02
| | | | | | | | | | | | Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
* | | vala: update to 0.52.3Rosen Penev2021-06-01
| |/ |/| | | | | Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | Merge pull request #15701 from 1715173329/ackRosen Penev2021-06-01
|\ \ | | | | | | ack: add new packages
| * | perl-ack: add new packageTianling Shen2021-05-28
| | | | | | | | | | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
| * | perl-file-next: add new packageTianling Shen2021-05-28
| | | | | | | | | | | | | | | | | | This is required by ack. Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | | luajit: for powerpc, add FPU dependencyRosen Penev2021-05-31
| | | | | | | | | | | | | | | | | | powerpc support as of 2.1 does not work with soft float. Signed-off-by: Rosen Penev <rosenp@gmail.com>
Powered by cgit, Themed by Ted Yin.