feed/packages.git
4 years agolibarchive: update to version 3.4.1 (security fix)
Jan Pavlinec [Thu, 16 Jan 2020 14:47:08 +0000 (15:47 +0100)]
libarchive: update to version 3.4.1 (security fix)

Fixes CVE-2019-19221

Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry-picked from df634dcc926650de22248b89620c649c0fef7602)
(cherry picked from commit ba43556aed90705bc04fd074d39ee6ea012a71f2)

4 years agophp7: update to version 7.2.30
Josef Schlehofer [Wed, 22 Apr 2020 16:04:10 +0000 (18:04 +0200)]
php7: update to version 7.2.30

Fixes:
CVE-2020-7066
CVE-2020-7064

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit 09738290a319cc2af74a0be9a52aa5a76b6ca98e)

4 years agophp7: fix dependencies for mysqlnd (fixes #11113)
Michael Heimpold [Sun, 26 Jan 2020 20:53:14 +0000 (21:53 +0100)]
php7: fix dependencies for mysqlnd (fixes #11113)

When during the build the openssl extension is also selected, then
the mysqlnd extension depends on it, too.

Signed-off-by: Michael Heimpold <mhei@heimpold.de>
(cherry picked from commit 50b1cd3757497a569538d751f4681a40df1b1202)

4 years agoMerge pull request #11926 from stangri/18.06-simple-adblock
Hannu Nyman [Wed, 22 Apr 2020 17:57:48 +0000 (20:57 +0300)]
Merge pull request #11926 from stangri/18.06-simple-adblock

[18.06] simple-adblock: bugfix: start downloads on cold boot/fresh install

4 years agosimple-adblock: bugfix: start downloads on cold boot
Stan Grishin [Wed, 22 Apr 2020 17:46:23 +0000 (17:46 +0000)]
simple-adblock: bugfix: start downloads on cold boot

Signed-off-by: Stan Grishin <stangri@melmac.net>
4 years agoMerge pull request #11907 from BKPepe/18.06-git
tripolar [Tue, 21 Apr 2020 08:04:02 +0000 (10:04 +0200)]
Merge pull request #11907 from BKPepe/18.06-git

[18.06] git: update to version 2.20.4

4 years agogit: update to version 2.20.4
Josef Schlehofer [Tue, 21 Apr 2020 06:11:24 +0000 (08:11 +0200)]
git: update to version 2.20.4

Fixes CVE-2020-11008

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
4 years agoMerge pull request #11857 from BKPepe/18.06-git
Josef Schlehofer [Tue, 21 Apr 2020 05:22:14 +0000 (07:22 +0200)]
Merge pull request #11857 from BKPepe/18.06-git

[18.06] git: update to version 2.20.3

4 years agoMerge pull request #11883 from yousong/wget1806
tripolar [Sat, 18 Apr 2020 17:55:52 +0000 (19:55 +0200)]
Merge pull request #11883 from yousong/wget1806

[18.06] acme: depends on wget-ssl

4 years agoacme: depends on wget-ssl
Yousong Zhou [Mon, 6 Apr 2020 02:31:49 +0000 (10:31 +0800)]
acme: depends on wget-ssl

Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com>
(cherry picked from commit d917d662aedd9c133217b5c6d8c5a4f4a6bd3dea)

4 years agowget: make the ssl variant provides wget-ssl
Yousong Zhou [Mon, 6 Apr 2020 02:20:55 +0000 (10:20 +0800)]
wget: make the ssl variant provides wget-ssl

This is to address the need for specifying dependency on a wget
implementation with ssl support.

Now we have a game of names for opkg

 1. uclient-fetch: minimal version by openwrt project
 2. wget-nossl: gnu wget w/o ssl support
 3. wget-ssl: for the moment since this commit, gnu wget w/ ssl support
 4. wget: uclient-fetch, wget-nossl, or wget-ssl
 5. gnu-wget: wget-nossl or wget-ssl

By the time we provide some dummy package like uclient-fetch-ssl and
make it also provide wget-ssl, I guess by then we will also need
gnu-wget-ssl...

Ref: https://github.com/openwrt/packages/issues/11534
Ref: https://github.com/openwrt/packages/pull/9941
Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com>
(cherry picked from commit 585e4a38feca24c9650d4e762b44146ecd75d4d0 &
resolved conflict)

4 years agowget: do not provide itself
Karel Kočí [Tue, 26 Nov 2019 12:56:22 +0000 (13:56 +0100)]
wget: do not provide itself

The package wget should not say that it provides itself.

This also make gnu-wget provide general so it is not written in Makefile
twice.

Signed-off-by: Karel Kočí <karel.koci@nic.cz>
Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com>
(cherry picked from commit 75f2be7d509e802f2d946d732e7a7539c2b27d2e &
resolved conflict)

4 years agoruby: update to 2.5.8
Luiz Angelo Daros de Luca [Thu, 9 Apr 2020 18:36:35 +0000 (15:36 -0300)]
ruby: update to 2.5.8

This release includes security fixes, specially:

* CVE-2020-10663: Unsafe Object Creation Vulnerability in JSON (Additional fix)
* CVE-2020-10933: Heap exposure vulnerability in the socket library

Signed-off-by: Luiz Angelo Daros de Luca <luizluca@gmail.com>
4 years agogit: update to version 2.20.3
Josef Schlehofer [Wed, 15 Apr 2020 15:17:42 +0000 (17:17 +0200)]
git: update to version 2.20.3

Fixes CVE-2020-5260

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
4 years agonlbwmon: update to latest Git HEAD
Jo-Philipp Wich [Sat, 11 Apr 2020 21:22:41 +0000 (23:22 +0200)]
nlbwmon: update to latest Git HEAD

34a1887 nfnetlink: disable sequence number checking

Signed-off-by: Jo-Philipp Wich <jo@mein.io>
(cherry picked from commit 53c48fae1502e7f87fd93ff299db98cd119fa304)

4 years agoMerge pull request #11821 from stangri/18.06-https-dns-proxy
Hannu Nyman [Sat, 11 Apr 2020 07:48:29 +0000 (10:48 +0300)]
Merge pull request #11821 from stangri/18.06-https-dns-proxy

[18.06] https-dns-proxy: bugfix: memory leak

4 years agohttps-dns-proxy: bugfix: memory leak
Stan Grishin [Sat, 11 Apr 2020 00:25:39 +0000 (00:25 +0000)]
https-dns-proxy: bugfix: memory leak

Signed-off-by: Stan Grishin <stangri@melmac.net>
4 years agonlbwmon: update to latest Git HEAD
Jo-Philipp Wich [Fri, 10 Apr 2020 22:23:12 +0000 (00:23 +0200)]
nlbwmon: update to latest Git HEAD

e757e06 nfnetlink: allow specifying the socket buffer size
33c77cb nfnetlink: properly handle nl_recvmsgs() failures
95cced5 protocol: Include whitespace when reading names

Signed-off-by: Jo-Philipp Wich <jo@mein.io>
(cherry picked from commit d81d777a0f009fe74d233de307a03f9951d6b960)

4 years agonlbwmon: bump to latest git
DENG Qingfang [Sat, 15 Feb 2020 17:52:15 +0000 (01:52 +0800)]
nlbwmon: bump to latest git

e921ca0a Add further commonly used protocols to the protocol file.

Signed-off-by: DENG Qingfang <dengqf6@mail2.sysu.edu.cn>
(cherry picked from commit 5e140462e42af3e5cb7680863794339f11ddda7d)

4 years agonlbwmon: add procd reload trigger for nlbwmon config
Richard Yu [Mon, 9 Dec 2019 12:23:29 +0000 (20:23 +0800)]
nlbwmon: add procd reload trigger for nlbwmon config

Signed-off-by: Richard Yu <yurichard3839@gmail.com>
(cherry picked from commit d5517583104c8521d978a911bff921588ba0e988)

4 years agonlbwmon: receive dhcp interface triggers
Kevin Darbyshire-Bryant [Mon, 5 Nov 2018 18:01:50 +0000 (18:01 +0000)]
nlbwmon: receive dhcp interface triggers

Not all interfaces may have been allocated address at nlbwmon startup so
it may not collect statistics as expected/configured.

Add interface triggers to catch dhcp events and restart as required.

Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>
(cherry picked from commit 662d3f16d2702fe55116c852f5d456e90891ee89)

4 years agonet/nlbwmon: run with lower priority
Marc Benoit [Thu, 5 Apr 2018 22:03:34 +0000 (18:03 -0400)]
net/nlbwmon: run with lower priority

Even on a powerful platform a nlbwmon process'
activities are sometimes affecting throoughput and
latency. This is a backgroud process, that should not
be running with default priority.
Even if it is a little deplayed, that is not a worry in
this case. The routing should be the main priority,
bandwidth stats collection can wait a bit.

Tested on Netgear R7800
Signed-off-by: Marc Benoit <marcb62185@gmail.com>
(cherry picked from commit 9b3ecbd64a6328e13981165660d8930e8bb2446a)

4 years agoMerge pull request #11803 from stangri/18.06-simple-adblock
Rosen Penev [Wed, 8 Apr 2020 01:39:35 +0000 (18:39 -0700)]
Merge pull request #11803 from stangri/18.06-simple-adblock

[18.06] simple-adblock: bugfixes: remove escape chars from log, restore from cache on boot

4 years agosimple-adblock: bugfixes: remove escape chars from log, restore from cache on boot
Stan Grishin [Tue, 7 Apr 2020 21:55:51 +0000 (21:55 +0000)]
simple-adblock: bugfixes: remove escape chars from log, restore from cache on boot

Signed-off-by: Stan Grishin <stangri@melmac.net>
4 years agonano: update to 4.9.2
Hannu Nyman [Tue, 7 Apr 2020 15:05:11 +0000 (18:05 +0300)]
nano: update to 4.9.2

Update nano editor to version 4.9.2

Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
(cherry picked from commit f11833d46cf71be65439397e2a7e03643fc78af2)

4 years agoMerge pull request #11773 from BKPepe/msmtp
Josef Schlehofer [Mon, 6 Apr 2020 07:45:41 +0000 (09:45 +0200)]
Merge pull request #11773 from BKPepe/msmtp

[18.06] msmtp: update to version 1.8.7

4 years agomsmtp: update to version 1.8.7
Josef Schlehofer [Sun, 5 Apr 2020 20:50:23 +0000 (22:50 +0200)]
msmtp: update to version 1.8.7

- It brings oauthbearer support
- It switches from OpenSSL to GnuTLS, which is fully compatible and
  brings more parameters

Makefile changes:
- Fix SPDX License Identifier
- Add PKG_CPE_ID
- The Project does not use sourceforce anymore.
- Uses GnuTLS instead of OpenSSL, which was discouraged

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
4 years agonano: update to 4.9.1
Hannu Nyman [Sun, 5 Apr 2020 16:20:19 +0000 (19:20 +0300)]
nano: update to 4.9.1

Update nano editor to version 4.9.1

 2020.03.31 - GNU nano 4.9.1 "Sapperdeflap"
 Two bugs introduced in version 4.9 are fixed: the cursor
 getting misplaced when undoing line cuts, and filtering
 of the whole buffer to a new buffer not working.

Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
(cherry picked from commit f5c47a2606cea00ef70ae696224cd201ca1aceb8)

4 years agoMerge pull request #11756 from gladiac1337/haproxy-1.8.25-openwrt-18.06
Hannu Nyman [Fri, 3 Apr 2020 13:47:09 +0000 (16:47 +0300)]
Merge pull request #11756 from gladiac1337/haproxy-1.8.25-openwrt-18.06

[openwrt-18.06] haproxy: Update HAProxy to v1.8.25

4 years agohaproxy: Update HAProxy to v1.8.25
Christian Lachner [Fri, 3 Apr 2020 07:24:53 +0000 (09:24 +0200)]
haproxy: Update HAProxy to v1.8.25

- Update haproxy download URL and hash
- This fixes CVE-2020-11100 (http://git.haproxy.org/?p=haproxy-1.8.git;a=commit;h=525fbbe388ba033d638ff2a4efb83ae6526db5ab)

Signed-off-by: Christian Lachner <gladiac@gmail.com>
4 years agoMerge pull request #11700 from stangri/18.06-simple-adblock
Hannu Nyman [Sun, 29 Mar 2020 07:01:04 +0000 (10:01 +0300)]
Merge pull request #11700 from stangri/18.06-simple-adblock

[18.06] simple-adblock: support multiple dnsmasq instances + internal refactoring

4 years agosimple-adblock: support multiple dnsmasq instances; rework communication between...
Stan Grishin [Sun, 29 Mar 2020 05:13:29 +0000 (05:13 +0000)]
simple-adblock: support multiple dnsmasq instances; rework communication between principal package and luci app

Signed-off-by: Stan Grishin <stangri@melmac.net>
4 years agonano: update to 4.9
Hannu Nyman [Thu, 26 Mar 2020 19:36:36 +0000 (21:36 +0200)]
nano: update to 4.9

Update nano editor to version 4.9

Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
(cherry picked from commit 09fd4445b3f7c426212ed61b3989e1994255a8aa)

4 years agoMerge pull request #11626 from nxhack/18_06_icu_fix_CVE-2020-10531
Rosen Penev [Sun, 22 Mar 2020 01:08:46 +0000 (18:08 -0700)]
Merge pull request #11626 from nxhack/18_06_icu_fix_CVE-2020-10531

[openwrt-18.06] icu: fix CVE-2020-10531

4 years agoMerge pull request #11616 from stangri/18.06-https-dns-proxy
Hannu Nyman [Sat, 21 Mar 2020 07:47:15 +0000 (09:47 +0200)]
Merge pull request #11616 from stangri/18.06-https-dns-proxy

[18.06] https-dns-proxy: support for dnsmasq noresolv option

4 years agoicu: fix CVE-2020-10531
Hirokazu MORIKAWA [Fri, 20 Mar 2020 23:29:38 +0000 (08:29 +0900)]
icu: fix CVE-2020-10531

FIX CVE-2020-10531
 An integer overflow, leading to a heap-based buffer overflow, exists in the UnicodeString::doAppend() function in common/unistr.cpp.

Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
4 years agohttps-dns-proxy: support for dnsmasq noresolv option
Stan Grishin [Fri, 20 Mar 2020 21:22:49 +0000 (21:22 +0000)]
https-dns-proxy: support for dnsmasq noresolv option

Signed-off-by: Stan Grishin <stangri@melmac.net>
4 years agoopenvswitch: fix PIE build against 4.14 kernel
Yousong Zhou [Mon, 16 Mar 2020 07:25:51 +0000 (15:25 +0800)]
openvswitch: fix PIE build against 4.14 kernel

Reported-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com>
Ref: https://github.com/openwrt/packages/pull/11567
(cherry picked from commit e9d6414437d27803a16b5d96c48b45140e989e5e)

4 years agophp7: update to 7.2.28
Michael Heimpold [Tue, 25 Feb 2020 21:35:15 +0000 (22:35 +0100)]
php7: update to 7.2.28

This fixes:
  - CVE-2020-7062
  - CVE-2020-7063

Signed-off-by: Michael Heimpold <mhei@heimpold.de>
(cherry picked from commit 95c72d8abaa8a99471275ae0723e4d941f36d81a)

4 years agophp7: update to 7.2.27
Michael Heimpold [Fri, 7 Feb 2020 20:09:24 +0000 (21:09 +0100)]
php7: update to 7.2.27

This fixes:
  - CVE-2020-7059
  - CVE-2020-7060

Signed-off-by: Michael Heimpold <mhei@heimpold.de>
(cherry picked from commit 3cf0c61f2ee1b94c8b09adb8c1cbc79281cfc32d)

4 years agoxl2tpd: fix building failure caused by pfc
Yousong Zhou [Fri, 18 Oct 2019 11:30:30 +0000 (11:30 +0000)]
xl2tpd: fix building failure caused by pfc

Fixes openwrt/packages#10270

Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com>
(cherry picked from commit 0412c20f1b2d2e1f8b8c7e101aae6f66be50690a)

4 years agoxl2tpd: bump to version 1.3.15
Yousong Zhou [Mon, 14 Oct 2019 07:05:26 +0000 (07:05 +0000)]
xl2tpd: bump to version 1.3.15

Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com>
Ref: https://github.com/openwrt/packages/issues/11418
(cherry picked from commit 620ba386b4ffd38911e7ddf0c864979c0f834a11)

4 years agoicu: bump proper variable.
Rosen Penev [Wed, 19 Feb 2020 02:50:21 +0000 (18:50 -0800)]
icu: bump proper variable.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
4 years agoicu: backport upstream ARC patch
Rosen Penev [Sun, 16 Feb 2020 07:01:20 +0000 (23:01 -0800)]
icu: backport upstream ARC patch

Signed-off-by: Rosen Penev <rosenp@gmail.com>
4 years agonano: update to 4.8
Hannu Nyman [Sat, 8 Feb 2020 09:24:35 +0000 (11:24 +0200)]
nano: update to 4.8

Update nano editor to version 4.8

Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
(cherry picked from commit 7bc96280d31470b7dda75315154c8df72bde222a)

4 years agoMerge pull request #11252 from neheb/i22p
Rosen Penev [Fri, 7 Feb 2020 03:08:00 +0000 (19:08 -0800)]
Merge pull request #11252 from neheb/i22p

i2pd: fix various issues in 18.06

4 years agoi2pd: move chmod command
Rosen Penev [Wed, 5 Feb 2020 02:50:35 +0000 (18:50 -0800)]
i2pd: move chmod command

Similar change to upstream.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
4 years agoi2pd: Move DATADIR to /var/lib/i2pd, fix #5693
David Yang [Sun, 4 Mar 2018 16:58:43 +0000 (00:58 +0800)]
i2pd: Move DATADIR to /var/lib/i2pd, fix #5693

Original author: dartraiden <wowemuh@gmail.com>

Signed-off-by: David Yang <mmyangfl@gmail.com>
4 years agoMerge pull request #11227 from micmac1/sqlite3-18.06-2
Hannu Nyman [Mon, 3 Feb 2020 20:41:35 +0000 (22:41 +0200)]
Merge pull request #11227 from micmac1/sqlite3-18.06-2

[18.06] sqlite3: bump to 3.31.1

4 years agosqlite3: bump to 3.31.1
Sebastian Kemper [Mon, 3 Feb 2020 19:19:17 +0000 (20:19 +0100)]
sqlite3: bump to 3.31.1

Upstreamed patch removed.

Signed-off-by: Sebastian Kemper <sebastian_ml@gmx.net>
4 years agoMerge pull request #11186 from micmac1/18.06-maria-10.1.44
Rosen Penev [Fri, 31 Jan 2020 00:30:19 +0000 (16:30 -0800)]
Merge pull request #11186 from micmac1/18.06-maria-10.1.44

[18.06] mariadb: security bump to 10.1.44

4 years agomariadb: security bump to 10.1.44
Sebastian Kemper [Thu, 30 Jan 2020 21:21:50 +0000 (22:21 +0100)]
mariadb: security bump to 10.1.44

Addresses CVE-2020-2574. Patches refreshed.

Signed-off-by: Sebastian Kemper <sebastian_ml@gmx.net>
4 years agoddns-scripts: Change protocols of afraid.org urls to HTTPS.
Kwonjin Jeong [Sat, 30 Nov 2019 18:14:33 +0000 (03:14 +0900)]
ddns-scripts: Change protocols of afraid.org urls to HTTPS.

- Use HTTPS protocol for updating urls for afraid.org to protect the password.
- Bump/align package version number.

Signed-off-by: Kwonjin Jeong <gram25gwh@gmail.com>
(cherry-picked from e25b55899927eb5638cc6a13a568ee4271eed2b2)

4 years agonode-hid: fix i386 build fail
Hirokazu MORIKAWA [Wed, 17 Apr 2019 05:55:05 +0000 (14:55 +0900)]
node-hid: fix i386 build fail

more stability for parallel build

Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
(cherry-picked from 1aa55f86b56766074677bcda23f19cd7e5b5601f)

4 years agonode-serialport: fix i386 build fail
Hirokazu MORIKAWA [Fri, 19 Apr 2019 00:22:23 +0000 (09:22 +0900)]
node-serialport: fix i386 build fail

more stability for parallel build

Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
(cherry-picked from 1ce1ca6e0622c6ad7fb61e44b7c96b028939186a)

4 years agoMerge pull request #11124 from stangri/18.06-https-dns-proxy
Hannu Nyman [Sun, 26 Jan 2020 20:39:51 +0000 (22:39 +0200)]
Merge pull request #11124 from stangri/18.06-https-dns-proxy

[18.06] https-dns-proxy: fix deleting server items, configurable dnsmasq settings change

4 years agoMerge pull request #11127 from micmac1/18.06-tiff
Jiri Slachta [Sun, 26 Jan 2020 17:27:28 +0000 (18:27 +0100)]
Merge pull request #11127 from micmac1/18.06-tiff

[18.06] tiff: update to 4.1.0

4 years agotiff: update version to 4.1.0
Jiri Slachta [Mon, 11 Nov 2019 20:49:06 +0000 (21:49 +0100)]
tiff: update version to 4.1.0

Signed-off-by: Jiri Slachta <jiri@slachta.eu>
4 years agotiff: patch security issues
Jan Pavlinec [Tue, 9 Apr 2019 11:28:10 +0000 (13:28 +0200)]
tiff: patch security issues

Fixes
CVE-2019-7663
CVE-2019-6128

Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
4 years agohttps-dns-proxy: fix deleting server items, configurable dnsmasq settings change
Stan Grishin [Sun, 26 Jan 2020 04:15:13 +0000 (21:15 -0700)]
https-dns-proxy: fix deleting server items, configurable dnsmasq settings change

Signed-off-by: Stan Grishin <stangri@melmac.net>
4 years agoMerge pull request #9795 from LoEE/jpc/git-macos-cross
Rosen Penev [Sat, 25 Jan 2020 23:25:00 +0000 (15:25 -0800)]
Merge pull request #9795 from LoEE/jpc/git-macos-cross

[18.06]git: fix cross compilation on macOS

4 years agolibsoup: fix intltool host dependency. Cleaup some build args
Ted Hess [Tue, 13 Nov 2018 21:31:57 +0000 (16:31 -0500)]
libsoup: fix intltool host dependency. Cleaup some build args

Signed-off-by: Ted Hess <thess@kitschensync.net>
(cherry-picked from 0daec55ce50d4dffae040645227a718ce528b978)

4 years agoavrdude: Fix GPIO path building
Rosen Penev [Tue, 2 Jul 2019 17:07:53 +0000 (10:07 -0700)]
avrdude: Fix GPIO path building

%ud is a GNU extension. It's not really supported elsewhere.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry-picked from 536c6b8be7cb620f6258cbcb7e85a50662976f2b)

4 years agozerotier: add /etc/config/zerotier as configuration file
Josef Schlehofer [Wed, 22 Jan 2020 11:44:36 +0000 (12:44 +0100)]
zerotier: add /etc/config/zerotier as configuration file

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
4 years agolibseccomp: add seccomp-syscalls.h to InstallDev
Josef Schlehofer [Thu, 16 Jan 2020 11:45:15 +0000 (12:45 +0100)]
libseccomp: add seccomp-syscalls.h to InstallDev

In the version 2.4.2, there was introduced a new header file.
Ship it to InstallDev

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
4 years agoMerge pull request #11023 from jefferyto/golang-goarm-fix-openwrt-18.06
Rosen Penev [Tue, 14 Jan 2020 20:09:20 +0000 (12:09 -0800)]
Merge pull request #11023 from jefferyto/golang-goarm-fix-openwrt-18.06

[openwrt-18.06] golang: Fix selection of GOARM value

4 years agogolang: Fix selection of GOARM value
Jeffery To [Tue, 14 Jan 2020 16:59:28 +0000 (00:59 +0800)]
golang: Fix selection of GOARM value

This fixes how GOARM is selected for arm platforms, based on support for
VFP/VFPv3 rather than CPU version.

Fixes #10967.

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
4 years agoMerge pull request #10995 from BKPepe/libseccomp-18.06
Nikos Mavrogiannopoulos [Mon, 13 Jan 2020 21:57:13 +0000 (22:57 +0100)]
Merge pull request #10995 from BKPepe/libseccomp-18.06

[18.06] libseccomp: update to version 2.4.2

4 years agolibseccomp: update to version 2.4.2
Josef Schlehofer [Sun, 12 Jan 2020 11:42:42 +0000 (12:42 +0100)]
libseccomp: update to version 2.4.2

Fixes CVE-2019-9893

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
4 years agotransmission: sync with master
Rosen Penev [Sat, 11 Jan 2020 02:11:03 +0000 (18:11 -0800)]
transmission: sync with master

Signed-off-by: Rosen Penev <rosenp@gmail.com>
4 years agoMerge pull request #10832 from BKPepe/git-18.06
Josef Schlehofer [Wed, 1 Jan 2020 12:04:17 +0000 (13:04 +0100)]
Merge pull request #10832 from BKPepe/git-18.06

[OpenWrt 18.06] git: Update to version 2.16.6 (security fix)

4 years agogit: Update to version 2.16.6 (security fix)
Josef Schlehofer [Wed, 18 Dec 2019 22:18:11 +0000 (23:18 +0100)]
git: Update to version 2.16.6 (security fix)

Fixes CVEs:
CVE-2018-17456
CVE-2019-1348
CVE-2019-1349
CVE-2019-1350
CVE-2019-1351
CVE-2019-1352
CVE-2019-1353
CVE-2019-1354
CVE-2019-1387

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
4 years agoMerge pull request #10858 from BKPepe/wget-18.06
tripolar [Mon, 30 Dec 2019 13:03:47 +0000 (14:03 +0100)]
Merge pull request #10858 from BKPepe/wget-18.06

[OpenWrt 18.06] wget: fix CVE-2019-5953

4 years agolcdgrilo: Fix compilation with newer Vala
Rosen Penev [Mon, 16 Sep 2019 03:06:09 +0000 (20:06 -0700)]
lcdgrilo: Fix compilation with newer Vala

It seems semantics changed slightly.

Cleaned up Makefile for consistency between packages.

Added PKG_BUILD_PARALLEL for faster compilation.

Fixed license information.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry-picked from 16fb706641222ac44f61aaee6161b2cb4596336d)

4 years agolcdgrilo: Depend on vala/host instead
Rosen Penev [Fri, 6 Sep 2019 17:18:05 +0000 (10:18 -0700)]
lcdgrilo: Depend on vala/host instead

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry-picked from 5935670ba14ed575799e4df4e4227826e3fef682)

4 years agolcdgrilo: remove check dependency
Eneas U de Queiroz [Sat, 8 Dec 2018 02:28:36 +0000 (00:28 -0200)]
lcdgrilo: remove check dependency

Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
(cherry-picked from 2e8b7358c4c336a5a5845351db642e8f45aa61d2)

4 years agonano: update to 4.7
Hannu Nyman [Sun, 29 Dec 2019 13:18:27 +0000 (15:18 +0200)]
nano: update to 4.7

Update nano to version 4.7

Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
(cherry picked from commit c62f8962ba3cf4e044941e372a155a97e5438ebd)

4 years agoMerge pull request #10889 from EricLuehrsen/unbound_196_1806
Hannu Nyman [Sat, 28 Dec 2019 20:33:00 +0000 (22:33 +0200)]
Merge pull request #10889 from EricLuehrsen/unbound_196_1806

[18.06] unbound: update to 1.9.6

4 years agounbound: update to 1.9.6
Eric Luehrsen [Wed, 18 Dec 2019 05:06:26 +0000 (00:06 -0500)]
unbound: update to 1.9.6

Signed-off-by: Eric Luehrsen <ericluehrsen@gmail.com>
4 years agogrilo: copy vapi files to versioned vala dir
Eneas U de Queiroz [Thu, 13 Dec 2018 17:31:12 +0000 (15:31 -0200)]
grilo: copy vapi files to versioned vala dir

The version is obtained via `valac --api-version`

Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
(cherry-picked from 8d0c849e561bd5a984ccd2e99c67a7f9c4ed68f1)

4 years agogrilo: update vapi files, copy to unversioned dir
Eneas U de Queiroz [Mon, 10 Dec 2018 02:25:21 +0000 (00:25 -0200)]
grilo: update vapi files, copy to unversioned dir

Updates vapigen-generated vapi files to vala-0.34.
Files are now copied to $(STAGING_DIR_HOSTPKG)/share/vala/vapi, without
the vala version being hardcoded.
Removed copyright line, and redundant PKG_BUILD_DEPENDS and
TARGET_LDFLAGS.

Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
(cherry-picked from 1b794e93e356c35b7c4d09019a0364e237efdbc6)

4 years agolcdproc: Fix non x86 platforms on musl
Rosen Penev [Wed, 7 Aug 2019 22:24:55 +0000 (15:24 -0700)]
lcdproc: Fix non x86 platforms on musl

Musl only specifies in/outb for x86/x86. Use the fallback path in case
musl is used.

This should fail compilation during the linking stage but for some reason
does not. Will do if -Werror=implicit-function-declaration is specified.

Fixed up license information.

Other small cleanups.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry-picked from fa40b85f20f697e4c0b7b96b77b3a40902c72605)

4 years agoMerge pull request #10763 from leonghui/wiki-link-update-18.06
Rosen Penev [Mon, 23 Dec 2019 05:44:56 +0000 (21:44 -0800)]
Merge pull request #10763 from leonghui/wiki-link-update-18.06

[18.06] treewide: replace old wiki links

4 years agophp7: update to 7.2.26
Michael Heimpold [Wed, 18 Dec 2019 19:57:14 +0000 (20:57 +0100)]
php7: update to 7.2.26

This fixes:
  - CVE-2019-11046
  - CVE-2019-11044
  - CVE-2019-11045
  - CVE-2019-11050
  - CVE-2019-11047

Signed-off-by: Michael Heimpold <mhei@heimpold.de>
(cherry picked from commit d5c18b1d5e7171a23e17ec9fd3604f794a336f1e)

4 years agobind: Update to version 9.11.14
Josef Schlehofer [Sat, 21 Dec 2019 19:48:21 +0000 (20:48 +0100)]
bind: Update to version 9.11.14

Add patch to fix compile issue:
stats.c: In function 'setcounter':
stats.c:300:29: error: 'val' undeclared (first use in this function); did you mean 'value'?
  stats->counters[counter] = val;
                             ^~~
                             value

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
4 years agowget: fix CVE-2019-5953
Josef Schlehofer [Sat, 21 Dec 2019 18:57:15 +0000 (19:57 +0100)]
wget: fix CVE-2019-5953

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
4 years agoMerge pull request #10855 from BKPepe/python3-18.06
Hannu Nyman [Sat, 21 Dec 2019 18:07:27 +0000 (20:07 +0200)]
Merge pull request #10855 from BKPepe/python3-18.06

[OpenWrt 18.06] python3: Updated to version 3.6.10

4 years agopython3: Updated to version 3.6.10
Josef Schlehofer [Sat, 21 Dec 2019 12:50:01 +0000 (13:50 +0100)]
python3: Updated to version 3.6.10

Remove backported patches:
025-bpo-34155-Dont-parse-domains-containing-GH-13079-GH-.patch
026-bpo-38243-xmlrpc.server-Escape-the-server_title-GH-1.patch

Fixes CVE-2019-16056

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
4 years agoMerge pull request #10846 from cshoredaniel/pr-18.06-fix-nut-cgi-initscript
Rosen Penev [Sat, 21 Dec 2019 15:02:17 +0000 (07:02 -0800)]
Merge pull request #10846 from cshoredaniel/pr-18.06-fix-nut-cgi-initscript

nut: Fix NUT CGI startup script

4 years agonut: Fix NUT CGI startup script
Daniel F. Dickinson [Tue, 17 Dec 2019 11:17:53 +0000 (06:17 -0500)]
nut: Fix NUT CGI startup script

Commit c1aa1f784c737283b281da7a541921a88a81e684 which backported
a number of fixes from master, missed one fix for nut-cgi.  If
nut-cgi is installed standalone or nut-cgi starts before nut-server
(the default in 18.04.5) then the configuration file directory does
not get create and therefore there is no CGI configuration file.
This commit fixes that.

Closes: #10687
Signed-off-by: Daniel F. Dickinson <cshored@thecshore.com>
5 years agoMerge pull request #10752 from stangri/18.06-https-dns-proxy
Rosen Penev [Thu, 19 Dec 2019 00:14:35 +0000 (16:14 -0800)]
Merge pull request #10752 from stangri/18.06-https-dns-proxy

[18.06] https-dns-proxy: switch to https-dns-proxy package name

5 years agogit: Update to version 2.16.6 (security fix)
Josef Schlehofer [Wed, 18 Dec 2019 22:18:11 +0000 (23:18 +0100)]
git: Update to version 2.16.6 (security fix)

Fixes CVEs:
CVE-2018-17456
CVE-2019-1348
CVE-2019-1349
CVE-2019-1350
CVE-2019-1351
CVE-2019-1352
CVE-2019-1353
CVE-2019-1354
CVE-2019-1387

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
5 years agohttps-dns-proxy: switch to https-dns-proxy package name
Stan Grishin [Tue, 10 Dec 2019 22:42:15 +0000 (15:42 -0700)]
https-dns-proxy: switch to https-dns-proxy package name

Signed-off-by: Stan Grishin <stangri@melmac.net>
5 years agotreewide: update wiki links
Leong Hui Wong [Sat, 14 Dec 2019 07:31:54 +0000 (15:31 +0800)]
treewide: update wiki links

Signed-off-by: Leong Hui Wong <wong.leonghui@gmail.com>
5 years agoMerge pull request #10744 from luizluca/libvpx-fixcve
Rosen Penev [Wed, 11 Dec 2019 06:58:11 +0000 (22:58 -0800)]
Merge pull request #10744 from luizluca/libvpx-fixcve

[18.06] libvpx: backport security fixes

5 years agolibvpx: backport security fixes
Luiz Angelo Daros de Luca [Mon, 9 Dec 2019 23:34:30 +0000 (20:34 -0300)]
libvpx: backport security fixes

Fixes CVE-2019-9232 CVE-2019-9325 CVE-2019-9371 CVE-2019-9433.

From: openwrt/telephony#492

Signed-off-by: Luiz Angelo Daros de Luca <luizluca@gmail.com>
5 years agoluajit: install libluajit-5.1.so.2
W. Michael Petullo [Thu, 9 Aug 2018 11:29:13 +0000 (07:29 -0400)]
luajit: install libluajit-5.1.so.2

Signed-off-by: W. Michael Petullo <mike@flyn.org>
(cherry-picked from commit 30d5958)

5 years agoluajit: add .hpp to InstallDev
W. Michael Petullo [Mon, 6 Aug 2018 00:21:52 +0000 (20:21 -0400)]
luajit: add .hpp to InstallDev

Signed-off-by: W. Michael Petullo <mike@flyn.org>
(cherry-picked from commit efb7d0be6dd7882748d337391c5568d829bf17f5)

5 years agonano: update to 4.6
Hannu Nyman [Sun, 1 Dec 2019 12:25:17 +0000 (14:25 +0200)]
nano: update to 4.6

Update nano editor to version 4.6

Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
(cherry picked from commit 421dae85a3525f9772bbada523758490a926be3c)

5 years agoMerge pull request #10678 from gladiac1337/haproxy-1.8.23-openwrt-18.06
Hannu Nyman [Fri, 29 Nov 2019 15:30:09 +0000 (17:30 +0200)]
Merge pull request #10678 from gladiac1337/haproxy-1.8.23-openwrt-18.06

[openwrt-18.06] haproxy: Update HAProxy to v1.8.23