openwrt-packages.git - Community maintained packages for OpenWrt

	Commit message (Collapse)	Author	Age
...
*	giflib: fix CVEs	Rosen Penev	2024-02-10
\| \| \| \| \| \|	Patches taken from Fedora Signed-off-by: Rosen Penev <rosenp@gmail.com>
*	avahi: backport CVE fixes from upstream	Rosen Penev	2024-02-10
\| \| \| \|	Signed-off-by: Rosen Penev <rosenp@gmail.com>
*	libvpx: update to 1.14.0	Rosen Penev	2024-02-10
\| \| \| \| \| \|	Fixes CVE-2023-5217 Signed-off-by: Rosen Penev <rosenp@gmail.com>
*	libssh2: update to 1.11.0	Rosen Penev	2024-02-10
\| \| \| \| \| \|	Fixes CVE-2020-22218 Signed-off-by: Rosen Penev <rosenp@gmail.com>
*	libx264: update to 2024-01-13 revision	krant	2024-02-10
\| \| \| \| \| \| \|	- Fix CPU type detection to enable asm on ARM - Refresh patches Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	libfido2: update to 1.14.0	krant	2024-02-10
\| \| \| \| \| \|	- Don't set default and remove obsolete CMake options Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	libcbor: update to 0.11.0	krant	2024-02-10
\| \| \| \|	Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	file: update to 5.45	krant	2024-02-10
\| \| \| \| \| \|	- Remove default and non-existent configure options Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	cjson: update to 1.7.17	krant	2024-02-10
\| \| \| \|	Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	json-glib: update to 1.8.0	krant	2024-02-10
\| \| \| \| \| \|	- Don't set default Meson option Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	libextractor: update to 1.13	krant	2024-02-10
\| \| \| \| \| \| \|	- Remove obsolete configure option - Remove patch and var override since MEM_SRCDST_SUPPORTED is always on Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	glib2: update to 2.78.4	krant	2024-02-09
\| \| \| \| \| \| \| \| \|	- Use HTTPS for package URL - Don't set default Meson options - Remove upstreamed patch - Refresh remaining patches Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	apr-util: update to 1.6.3	krant	2024-02-07
\| \| \| \| \| \| \|	- Remove upstreamed patches - Fix OS path leak in iconv configure script Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	libfastjson: update to 1.2304.0	krant	2024-02-07
\| \| \| \| \| \|	- Use HTTPS for source URL Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	libffi: update to 3.4.4	krant	2024-02-07
\| \| \| \| \| \| \| \|	- Use proper tarball URL - Use HTTPS for package URL - Don't set default configure option Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	libinput: update to 1.25.0	krant	2024-02-07
\| \| \| \| \| \| \| \|	- Switch sources to git since no proper tarball is available - Switch URL to HTTPS - Don't set default Meson options Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	xmlrpc-c: install dev files only with 1st variant	Eneas U de Queiroz	2024-02-07
\| \| \| \| \| \| \| \| \| \| \| \| \|	This adds a variant check to run InstallDev only when the first variant is built. Otherwise, a dependent package may install the default version, even though the second variant ends up in the staging dir, causing downstream packages to miss library dependencies, such as: Package rtorrent-rpc is missing dependencies for the following libraries: libxmlrpc_xmlparse.so.3 libxmlrpc_xmltok.so.3 Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
*	openldap: update to 2.6.7	krant	2024-02-07
\| \| \| \| \| \| \|	- Remove dead mirror URL - Clean-up configure args Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	lmdb: update to 0.9.32	krant	2024-02-07
\| \| \| \| \| \| \|	- Switch to git source URL - Rebase the patch Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	minizip: update to 4.0.4	krant	2024-02-07
\| \| \| \| \| \| \|	- Don't set default cmake option - Switch URL to the official one Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	apr: update to 1.7.4	krant	2024-02-07
\| \| \| \| \| \| \|	- Remove upstreamed patches - Fix bindir in apr-1-config to fix subversion build Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	alsa-ucm-conf: update to 1.2.11	krant	2024-02-07
\| \| \| \|	Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	alsa-lib: update to 1.2.11	krant	2024-02-07
\| \| \| \| \| \| \|	- Change package URL to HTTPS - Refresh patches Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	libarchive: update to 3.7.2	krant	2024-02-07
\| \| \| \| \| \|	- Don't set CMake options matching the defaults Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	expat: update to 2.6.0	krant	2024-02-07
\| \| \| \| \| \|	- Don't set default CMake options Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	libmariadb: update to 3.1.23	krant	2024-02-07
\| \| \| \| \| \| \| \|	- Replace dead source URL - Rebase the patch - Remove superfluous cmake option Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	libid3tag: update to 0.16.3	krant	2024-02-06
\| \| \| \| \| \| \| \| \|	- Switch package URL to the new upstream - Switch PKG_SOURCE_PROTO to git - Switch to CMake build - Drop custom .pc file in favor of upstream version Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	oniguruma: bump to 6.9.9	Eneas U de Queiroz	2024-02-05
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Featured changes: - Update Unicode version 15.1.0 - NEW API: ONIG_OPTION_MATCH_WHOLE_STRING - Fixed: (?I) option was not enabled for character classes (Issue #264). - Changed specification to check for incorrect POSIX bracket (Issue #253). - Changed [[:punct:]] in Unicode encodings to be compatible with POSIX definition. (Issue #268) - Fixed: ONIG_OPTION_FIND_LONGEST behavior --- 6.9.8 - Whole options - (?C) : ONIG_OPTION_DONT_CAPTURE_GROUP - (?I) : ONIG_OPTION_IGNORECASE_IS_ASCII - (?L) : ONIG_OPTION_FIND_LONGEST - Fixed some problems found by OSS-Fuzz Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
*	opus: update to 1.4	krant	2024-02-05
\| \| \| \| \| \| \|	- Add patch to fix build on ARM - Use official source URL Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	libsamplerate: update to 0.2.2	krant	2024-02-04
\| \| \| \| \| \| \|	- Update package/source URLs to official ones - Change license according to upstream Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	freetype: update to 2.13.2	krant	2024-02-04
\| \| \| \| \| \|	- change package URL to HTTPS Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	libmaxminddb: update to 1.9.1	krant	2024-02-04
\| \| \| \|	Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	libstrophe: update 0.13.0	krant	2024-02-04
\| \| \| \| \| \| \|	- Use common Github URL - Add missing zlib dependency Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	libsndfile: update to 1.2.2	krant	2024-02-04
\| \| \| \| \| \| \| \| \| \|	- Update package URL to the official one - Update source URL to the official one - Modernize CMake options - Fixup pkgconfig file - Enable mpg123 support per users request (+7kB) Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	treewide: assign PKG_CPE_ID	Fabrice Fontaine	2024-02-04
\| \| \| \|	Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
*	leptonica: update to 1.84.1	krant	2024-02-04
\| \| \| \| \| \| \| \|	- remove upstreamed patch - explicitly disable openjpeg to ignore host-installed library - fix .cmake and .pc paths Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	flac: update to 1.4.3	krant	2024-02-04
\| \| \| \|	Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	libs/libidn2: fix PKG_CPE_ID	Fabrice Fontaine	2024-02-04
\| \| \| \| \| \| \| \| \| \|	There is not a single CVE linked to libidn2_project:libidn2 so use gnu:libidn2 instead: https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:gnu:libidn2 Fixes: ceadbcbb64de727c3a974e552d9a723d532e4e40 (treewide: add PKG_CPE_ID for cvescanner) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
*	libs/expat: fix PKG_CPE_ID	Fabrice Fontaine	2024-02-04
\| \| \| \| \| \| \| \| \| \| \|	There is not a single CVE linked to libexpat:expat so use libexpat_project:libexpat instead: https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:libexpat_project:libexpat Fixes: 70c62ef2d77aef5d8a27ccca2b147bc2a69dc7f8 (expat: update to version 2.2.7 (security fix)) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
*	libs/redis: fix PKG_CPE_ID	Fabrice Fontaine	2024-02-04
\| \| \| \| \| \| \| \| \| \|	There is not a single CVE linked to pivotal_software:redis so use redis:redis instead: https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:redis:redis Fixes: ceadbcbb64de727c3a974e552d9a723d532e4e40 (treewide: add PKG_CPE_ID for cvescanner) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
*	libs/libgd: fix license	Fabrice Fontaine	2024-02-04
\| \| \| \| \| \| \| \|	libgd is licensed under its own "GD" license and not MIT Fixes: 60feea09c9d343f648045e5e85e7788e75d4e039 (libgd: import from oldpackages, add myself as maintainer, add license...) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
*	libs/tiff: fix license	Fabrice Fontaine	2024-02-04
\| \| \| \| \| \| \| \|	tiff is licensed under its own "libtiff" license and not BSD-3-Clause Fixes: 364de5bc3f16eba42f93d36e848b998b3579e39e (tiff: add licensing information) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
*	libidn2: update to 2.3.7	krant	2024-02-02
\| \| \| \|	Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	libs/vips: fix PKG_CPE_ID	Fabrice Fontaine	2024-02-02
\| \| \| \| \| \| \| \| \| \| \|	libvips:libvips is a better CPE ID than vips:vips as this CPE ID has the latest CVEs (whereas vips only has an old CVE from 2010): https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:libvips:libvips Fix: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
*	libpsl: update to 0.21.5	krant	2024-02-02
\| \| \| \|	Signed-off-by: krant <aleksey.vasilenko@gmail.com>
*	libs/libpam: fix PKG_CPE_ID	Fabrice Fontaine	2024-02-01
\| \| \| \| \| \| \| \| \| \| \|	linux-pam:linux-pam is a better CPE ID than kernel:linux-pam as this CPE ID has the latest CVEs (whereas kernel:linux-pam only has a SUSE-specific CVE): https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:linux-pam:linux-pam Fix: 6f74b0c4f15a095b1069a8aaeb19a32dfbc7539a Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
*	libs/libdaq3: assign PKG_LICENSE_FILES	Fabrice Fontaine	2024-01-31
\| \| \| \|	Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
*	libs/libev: fix license	Fabrice Fontaine	2024-01-31
\| \| \| \| \| \| \| \| \| \| \|	libev is licensed under BSD-2-Clause or GPL-2.0-or-later since its addition to openwrt While at it, assign PKG_LICENSE_FILES Fixes: 67b39f8f9b703e2cf95616b8e591ec76278a5846 Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
*	libs/libpciaccess: assign PKG_LICENSE	Fabrice Fontaine	2024-01-31
\| \| \| \| \| \|	libpciaccess is licensed under MIT Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
*	treewide: fix licence typos	Fabrice Fontaine	2024-01-31
\| \| \| \| \| \| \| \| \| \| \| \| \|	- PKG_LICENCE -> PKG_LICENSE - PKC_LICENSE_FILES -> PKG_LICENSE_FILES - BSD 3-Clause -> BSD-3-Clause - BSD-3-clause -> BSD-3-Clause - BSD-2-clause -> BSD-2-Clause - Public Domain -> Public-Domain - PublicDomain -> Public-Domain - Drop unneeded ',' in PKG_LICENSE or PKG_LICENSE_FILES Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>