mirror
/
openwrt-packages
mirror of https://git.openwrt.org/feed/packages.git
1
0
Fork 0
Code Releases Activity
31,342 Commits 9 Branches 1 Tag 144 MiB
Commit Graph

31342 Commits

Author SHA1 Message Date
Oskari Rauta b59db99c53 slirp4netns: update to 1.2.3 
changelog:
 - Fix some FD leaks (#334, thanks to @giuseppe)

As package belongs to network category, I moved it from utils to network folder

Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
 2024-02-16 19:29:07 +01:00
Noah Meyerhans d277e41e78 bind: bump to 9.18.24 
Fixes CVEs:

- CVE-2023-50387: Validating DNS messages containing a lot of DNSSEC signatures
  could cause excessive CPU load, leading to a denial-of-service condition.
- CVE-2023-50868: Preparing an NSEC3 closest encloser proof could cause
  excessive CPU load, leading to a denial-of-service condition.
- CVE-2023-4408: Parsing DNS messages with many different names could cause
  excessive CPU load.
- CVE-2023-5517: Specific queries could cause named to crash with an assertion
  failure when nxdomain-redirect was enabled.
- CVE-2023-5679: A bad interaction between DNS64 and serve-stale could cause
  named to crash with an assertion failure, when both of these features were
  enabled.

Signed-off-by: Noah Meyerhans <frodo@morgul.net>
 2024-02-16 07:02:24 -08:00
Oskari Rauta f03ac48d30 aardvark-dns: update to 1.10.0 
changelogs: https://github.com/containers/aardvark-dns/releases

Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
 2024-02-16 15:48:08 +01:00
Hirokazu MORIKAWA 52e6017ad1 node: February 14 2024 Security Releases 
Update to v20.11.1
This is a security release.

Notable changes
* CVE-2024-21892 - Code injection and privilege escalation through Linux capabilities- (High)
* CVE-2024-22019 - http: Reading unprocessed HTTP request with unbounded chunk extension allows DoS attacks- (High)
* CVE-2024-21896 - Path traversal by monkey-patching Buffer internals- (High)
* CVE-2024-22017 - setuid() does not drop all privileges due to io_uring - (High)
* CVE-2023-46809 - Node.js is vulnerable to the Marvin Attack (timing variant of the Bleichenbacher attack against PKCS#1 v1.5 padding) - (Medium)
* CVE-2024-21891 - Multiple permission model bypasses due to improper path traversal sequence sanitization - (Medium)
* CVE-2024-21890 - Improper handling of wildcards in --allow-fs-read and --allow-fs-write (Medium)
* CVE-2024-22025 - Denial of Service by resource exhaustion in fetch() brotli decoding - (Medium)
* undici version 5.28.3
* libuv version 1.48.0
* OpenSSL version 3.0.13+quic1 (Depends on shared library provided by OpenWrt)

Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
 2024-02-16 15:46:33 +01:00
Florian Eckert aa7b4e30f1
Merge pull request #23457 from TDT-AG/pr/20240216-procps-ng 
procps-ng: update to version 4.0.4 and rename old version 3.3.16 to procps-ng3
 2024-02-16 15:03:03 +01:00
Florian Eckert b36b68f76f
Merge pull request #23459 from TDT-AG/pr/20240216-glib2 
glib2: revert latest changes to get back to working version 2.74.0
 2024-02-16 15:01:26 +01:00
krant 56a90c28cc procps-ng: Re-add procps-ng with API version 4 
Signed-off-by: krant <aleksey.vasilenko@gmail.com>
 2024-02-16 13:48:41 +01:00
krant 04e8fac6e8 procps-ng3: update to 3.3.17 and install library only 
- Install library only (utilities are in procps-ng API version 4)
- Latest 3.3.17 version of 3.x series is used
- Refresh existing patch
- Add new patch from Alpine Linux

Signed-off-by: krant <aleksey.vasilenko@gmail.com>

- Rebase patch because of packages version update was reverted before

Signed-off-by: Florian Eckert <fe@dev.tdt.de>
 2024-02-16 13:48:41 +01:00
krant c1ef481e66 procps-ng: rename procps-ng to procps-ng3 
Signed-off-by: krant <aleksey.vasilenko@gmail.com>

- Rebase patch because of packages version update was reverted before

Signed-off-by: Florian Eckert <fe@dev.tdt.de>
 2024-02-16 13:48:41 +01:00
krant bf700b6616 Revert "procps-ng: update to 4.0.4" 
The props-ng packages adds a new API version that breaks other
downstream packages. This revert is a preparation commit to move the old
API to procps-ng3 so that the new API could use procps-ng packages
name again.

Signed-off-by: Florian Eckert <fe@dev.tdt.de>

This reverts commit 81629ba591.
 2024-02-16 13:47:52 +01:00
Florian Eckert 56188542b6 glib2: update to version 2.74.7 
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
 2024-02-16 12:02:11 +01:00
Florian Eckert 71b7b44789 glib2: do not set default meson options 
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
 2024-02-16 12:02:11 +01:00
Florian Eckert 7b33b15032 Revert "glib2: update to 2.78.4" 
So that we have a working ModemManager again and can look at the problem
revert the update to version 2.78.4 for now.

Signed-off-by: Florian Eckert <fe@dev.tdt.de>

This reverts commit 08c7b0dfca.
 2024-02-16 12:02:05 +01:00
Florian Eckert 445f75e3f1 Revert "glib2: use internal pcre2" 
This is must also get revert to get back to working glib2 version 2.74.0

Signed-off-by: Florian Eckert <fe@dev.tdt.de>

This reverts commit 9f57ef2d6e.
 2024-02-16 12:01:46 +01:00
Oskari Rauta 6f5c1eb171 crun: update to 1.14.1 
Changelogs: https://github.com/containers/crun/releases
Previous version was 1.12

Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
 2024-02-16 16:55:47 +08:00
Oskari Rauta e3222ee145 netavark: update to 1.10.3 
changelogs: https://github.com/containers/netavark/releases

wrapper script and config file removed as they have become obsolete,
firewall driver is now configured in containers.conf

Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
 2024-02-16 16:55:18 +08:00
Oskari Rauta 5717d032c5 netbird: update to 0.25.8 
changes: https://github.com/netbirdio/netbird/compare/v0.25.2...v0.25.8

Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
 2024-02-16 16:54:34 +08:00
Javier Marcet caf12d069b docker-compose: Update to version 2.24.6 
Signed-off-by: Javier Marcet <javier@marcet.info>
 2024-02-16 14:01:19 +08:00
Oskari Rauta 3d0e1e524e efivar: disable mold linker 
efivar fails to build with mold linker, so it should
be opted out. I also added missing maintainer.

Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
 2024-02-16 14:00:59 +08:00
Peter van Dijk 454290bf6c pdns-recursor: update to 5.0.2 (fixes CVE-2023-50387, CVE-2023-50868) 
Signed-off-by: Peter van Dijk <peter.van.dijk@powerdns.com>
 2024-02-15 14:16:16 -08:00
Etienne Champetier f394fa3aa6
Merge pull request #23316 from dhewg/prom 
prometheus-node-exporter-ucode: fix sporadic wifi errors and warnings
 2024-02-14 22:59:27 -05:00
Rosen Penev 8644d22460 mpd: update to 0.23.15 
Signed-off-by: Rosen Penev <rosenp@gmail.com>
 2024-02-14 19:24:52 -08:00
Rosen Penev 7536aebe63 zmq: update to 4.3.5 
Remove GCC13 backport.

Refresh other patches.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
 2024-02-14 17:40:25 -08:00
Rosen Penev 8bdf5f94bd taglib: update to 2.0 
Switched to local tarball as the utf8cpp subproject needs to be used.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
 2024-02-14 17:33:34 -08:00
Rosen Penev ad2c58bfec libcap-ng: update to 0.84 
Signed-off-by: Rosen Penev <rosenp@gmail.com>
 2024-02-14 17:28:07 -08:00
Rosen Penev b935ee1721 hidapi: update to 0.14.0 
Signed-off-by: Rosen Penev <rosenp@gmail.com>
 2024-02-14 17:27:56 -08:00
Rosen Penev e9c77f2d33 libnpupnp: update to 6.1.0 
Signed-off-by: Rosen Penev <rosenp@gmail.com>
 2024-02-14 17:27:39 -08:00
Rosen Penev 8834711487 mpc: update to 0.35 
Signed-off-by: Rosen Penev <rosenp@gmail.com>
 2024-02-14 17:24:05 -08:00
Rosen Penev c6dc9227fe libxerces-c: update to 3.2.5 
Signed-off-by: Rosen Penev <rosenp@gmail.com>
 2024-02-14 17:23:29 -08:00
Rosen Penev 440a86ee7d libupnp: update to 1.14.18 
Signed-off-by: Rosen Penev <rosenp@gmail.com>
 2024-02-14 17:23:11 -08:00
Rosen Penev 41cd4c388a libtins: update to 4.5 
Remove upstream backport.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
 2024-02-14 17:13:58 -08:00
Rosen Penev 819dabf439 log4cplus: update to 2.1.1 
Signed-off-by: Rosen Penev <rosenp@gmail.com>
 2024-02-14 17:09:50 -08:00
Paul Donald 9dad4285d3 p910nd: bump release 
Signed-off-by: Paul Donald <newtwen@gmail.com>
 2024-02-14 17:07:13 -08:00
Rosen Penev 7cb3cc7dc2 libv4l: update to 1.26.1 
meson now available.

Added 2 patches to fix missing intl dependency and musl support.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
 2024-02-14 17:06:52 -08:00
Rosen Penev bade2501e9 libmpdclient: update to 2.22 
Signed-off-by: Rosen Penev <rosenp@gmail.com>
 2024-02-14 17:06:38 -08:00
Rosen Penev f8af56c555 faad2: update to 2.11.1 
CMake is used now.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
 2024-02-14 17:06:21 -08:00
Rosen Penev 4f285f85a0 libidn: update to 1.42 
Signed-off-by: Rosen Penev <rosenp@gmail.com>
 2024-02-14 17:05:39 -08:00
Rosen Penev 93b7989d8e vala: remove pcre2 patch 
Issue was avoided with glib2.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
 2024-02-14 17:04:49 -08:00
Rosen Penev 9f57ef2d6e glib2: use internal pcre2 
For some strange reason, glib2 does not link properly with a static
pcre2. Work around by bundling own copy.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
 2024-02-14 17:04:49 -08:00
Michael Heimpold 0c39a397d2
Merge pull request #23400 from Rondom/rondom-fix-libstrophe-license 
libstrophe: Specify correct PKG_LICENSE
 2024-02-14 22:49:59 +01:00
Rosen Penev 648e566361 python-aiohttp: update to 3.9.3 
Fixes CVE-2023-47627

Signed-off-by: Rosen Penev <rosenp@gmail.com>
 2024-02-14 12:58:00 -08:00
krant d5074d3fe3 moreutils: update to 0.68 
- Refresh patches

Signed-off-by: krant <aleksey.vasilenko@gmail.com>
 2024-02-14 12:57:08 -08:00
krant 7b697342e9 imagemagick: update to 7.1.1-28 
- Use .xz for PKG_SOURCE

Signed-off-by: krant <aleksey.vasilenko@gmail.com>
 2024-02-14 12:56:45 -08:00
Thomas Winkler 1c2cee2b81 softethervpn5: version update to 5.02.5181 (incl. vulnerability fixes) 
softethervpn5: The softethervpn5 package is due for an update from recent source. This PR implements a Makefile update to pull December 2023 release, which includes fixes for recently-disclosed vulnerabilities. The build patches are also updated accordingly.

Signed-off-by: Thomas Winkler <tewinkler86@gmail.com>
 2024-02-14 12:55:57 -08:00
Andreas Gnau ccb4632c57
libstrophe: Specify correct PKG_LICENSE 
libstrophe is dual-licensed as MIT OR GPL-3.0-only, which is also
reflected by the SPDX-License-Identifier lines in the source files.
Correct PKG_LICENSE in the Makefile accordingly.

Signed-off-by: Andreas Gnau <andreas.gnau@iopsys.eu>
 2024-02-14 18:39:54 +01:00
Daniel Bermond 12d5029eb3 proxychains-ng: update to version 4.17 
Maintainer   : myself
Build system : Arch Linux x86_64
Build tested : r7800 OpenWrt git master (r25151-2a2abed0be)
Run tested   : r7800 OpenWrt git master (r25151-2a2abed0be)

Signed-off-by: Daniel Bermond <dbermond@archlinux.org>
 2024-02-14 23:49:22 +08:00
Eric Fahlgren db58c9cd81 snort3: clean up ucode usage 
- Add missing 'ucode' package dependency
 - Proto-ify the ConfigItem objects
 - Fix indentation and tab usage

Signed-off-by: Eric Fahlgren <ericfahlgren@gmail.com>
 2024-02-14 12:53:28 +08:00
Tianling Shen aec4766913
yq: Update to 4.40.7 
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
 2024-02-14 12:51:13 +08:00
Tianling Shen 87bd747652
cloudflared: Update to 2024.2.0 
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
 2024-02-14 12:51:05 +08:00
Tianling Shen 21a8b968d1
v2ray-geodata: Update to latest version 
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
 2024-02-14 12:50:54 +08:00