Ivan Pavlov [Fri, 18 Jun 2021 07:10:57 +0000 (10:10 +0300)]
openvpn: update to 2.5.3
Fix a possible security issue with OpenSSL config autoloading on Windows (CVE-2021-3606).
Include a number of small improvements and bug fixes.
remove upstreamed: 115-fix-mbedtls-without-renegotiation.patch
Signed-off-by: Ivan Pavlov <AuthorReflex@gmail.com>
Rosen Penev [Fri, 18 Jun 2021 05:23:07 +0000 (22:23 -0700)]
Merge pull request #15855 from JamesVorder/yggdrasil/https
yggdrasil: allow HTTPS connections
Philip Prindeville [Fri, 18 Jun 2021 04:15:46 +0000 (22:15 -0600)]
Merge pull request #15890 from CodeFetch/patch-11
strongswan: fix PSK config generation
Vincent Wiemann [Thu, 17 Jun 2021 04:15:34 +0000 (06:15 +0200)]
strongswan: fix PSK config generation
There were closing curly braces missing and it was checking for empty
strings while it should have been checking for non-empty strings.
Signed-off-by: Vincent Wiemann <vincent.wiemann@ironai.com>
Philip Prindeville [Fri, 18 Jun 2021 01:42:40 +0000 (19:42 -0600)]
Merge pull request #15897 from pprindeville/strongswan-fix-dir-typo
strongswan: use correct directory for CA's
Philip Prindeville [Fri, 18 Jun 2021 00:53:08 +0000 (18:53 -0600)]
strongswan: use correct directory for CA's
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
Dirk Brenken [Thu, 17 Jun 2021 20:23:24 +0000 (22:23 +0200)]
banip: refine/fix nginx search pattern
* fix issue with nginx search pattern reported in forum support thread
Signed-off-by: Dirk Brenken <dev@brenken.org>
Rosen Penev [Thu, 17 Jun 2021 18:53:08 +0000 (11:53 -0700)]
Merge pull request #15875 from CodeFetch/patch-10
apparmor: fix packaging
Rosen Penev [Thu, 17 Jun 2021 18:50:09 +0000 (11:50 -0700)]
Merge pull request #15891 from pprindeville/strongswan-update-config
strongswan: fix sharing of ipsec section variables
Rosen Penev [Thu, 17 Jun 2021 18:49:22 +0000 (11:49 -0700)]
Merge pull request #15892 from ja-pa/knot-resolver-fix-scheduling
knot-resolver: change scheduling priority
Rosen Penev [Thu, 17 Jun 2021 18:48:52 +0000 (11:48 -0700)]
Merge pull request #15894 from Andy2244/samba_4.13.9
samba4: update to 4.13.9
Andy Walsh [Thu, 17 Jun 2021 16:28:08 +0000 (18:28 +0200)]
samba4: update to 4.13.9
* update to 4.13.9
Signed-off-by: Andy Walsh <andy.walsh44+github@gmail.com>
Alexandru Ardelean [Tue, 15 Jun 2021 09:25:34 +0000 (12:25 +0300)]
python-cryptography: bump to version 3.4.7
Dropped patches:
0004-Replace-EVP_CIPHER_CTX_cleanup-with-EVP_CIPHER_CTX_r.patch
0005-Switch-get_-Update-APIs-to-get0.patch
Reworked patches:
0001-Add-new-ASN1_STRING_get0_data-API.patch
0006-Add-X509_STORE_CTX_trusted_stack-compatibility-macro.patch
These 2 require that we keep only the CUSTOMIZATIONS stuff for now. Maybe
later we can drop this.
Ran 'make package/python-cryptography/refresh'.
Added patch:
0004-disable-rust.patch
upstream did a sloppy job with the CRYPTOGRAPHY_DONT_BUILD_RUST logic; we
need to patch it, to make sure the setuptools-rust isn't installed.
We may need to carry this patch in our tree for a bit longer than upstream,
because in newer versions, CRYPTOGRAPHY_DONT_BUILD_RUST logic gets removed.
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
Hannu Nyman [Thu, 17 Jun 2021 16:03:11 +0000 (19:03 +0300)]
nano: update to 5.8
Update nano editor version to 5.8.
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
Philip Prindeville [Thu, 17 Jun 2021 06:18:46 +0000 (00:18 -0600)]
strongswan: fix sharing of ipsec section variables
Variables set in config_ipsec() need to be shared with do_postamble()
function, so change scoping to parent (prepare_env()).
Also, remove unused settings like "remote_sourceip", "reqid", and
"packet_marker".
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
Rosen Penev [Thu, 17 Jun 2021 13:22:12 +0000 (06:22 -0700)]
Merge pull request #15879 from neheb/lesss
less: update to 590
Jan Pavlinec [Thu, 17 Jun 2021 12:59:32 +0000 (14:59 +0200)]
knot-resolver: change scheduling priority
This should prevent some resolving issues by other router app.
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
Rosen Penev [Wed, 16 Jun 2021 22:21:07 +0000 (15:21 -0700)]
Merge pull request #15880 from neheb/ogg
libogg: update to 1.3.5
Vincent Wiemann [Tue, 15 Jun 2021 20:04:31 +0000 (22:04 +0200)]
apparmor: fix packaging
Removes the BUILDONLY flag as otherwise no packages will be created.
Signed-off-by: Vincent Wiemann <vincent.wiemann@ironai.com>
Rosen Penev [Wed, 16 Jun 2021 21:03:14 +0000 (14:03 -0700)]
Merge pull request #15888 from tru7/linknx
linknx: adopt new libesmtp version
Rosen Penev [Wed, 16 Jun 2021 21:03:00 +0000 (14:03 -0700)]
Merge pull request #15882 from neheb/es
libesmtp: update to 1.1.0
Rosen Penev [Wed, 16 Jun 2021 02:03:43 +0000 (19:03 -0700)]
libesmtp: update to 1.1.0
New upstream. Uses meson now. Removed outdated patches.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
Rosen Penev [Wed, 16 Jun 2021 19:52:09 +0000 (12:52 -0700)]
Merge pull request #15878 from neheb/hdpa
hdparm: update to 9.62
Othmar Truniger [Wed, 16 Jun 2021 15:14:25 +0000 (17:14 +0200)]
linknx: adopt new libesmtp version
Signed-off-by: Othmar Truniger <github@truniger.ch>
James Vorderbruggen [Sun, 13 Jun 2021 16:09:57 +0000 (12:09 -0400)]
yggdrasil: allow HTTPS connections
Signed-off-by: James Vorderbruggen <jamesvorder@gmail.com>
Felix Fietkau [Wed, 16 Jun 2021 10:58:31 +0000 (12:58 +0200)]
unbound: fix build on non-linux systems
Override places that call uname to detect target features
Signed-off-by: Felix Fietkau <nbd@nbd.name>
Rosen Penev [Wed, 16 Jun 2021 08:27:52 +0000 (01:27 -0700)]
Merge pull request #15881 from neheb/capn
libcap-ng: update to 0.8.2
Rosen Penev [Wed, 16 Jun 2021 02:04:15 +0000 (19:04 -0700)]
libcap-ng: update to 0.8.2
Signed-off-by: Rosen Penev <rosenp@gmail.com>
Rosen Penev [Wed, 16 Jun 2021 02:04:40 +0000 (19:04 -0700)]
libogg: update to 1.3.5
Switch to AUTORELEASE for simplicity.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
Rosen Penev [Wed, 16 Jun 2021 02:05:11 +0000 (19:05 -0700)]
less: update to 590
Switch to AUTORELEASE for simplicity.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
Rosen Penev [Wed, 16 Jun 2021 02:05:34 +0000 (19:05 -0700)]
hdparm: update to 9.62
Switch to AUTORELEASE for simplicity.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
Rosen Penev [Wed, 16 Jun 2021 01:04:32 +0000 (18:04 -0700)]
Merge pull request #15876 from mstorchak/tmux
tmux: update to 3.2a
Alexandru Ardelean [Mon, 14 Jun 2021 12:12:05 +0000 (15:12 +0300)]
django: bump to version 3.2.4
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
Daniel Golle [Tue, 15 Jun 2021 08:34:17 +0000 (09:34 +0100)]
auc: update to version 0.1.7
No longer fail in case a package is part of multiple lists (which may
happen temporarily in case it becomes 'nonshared').
Bump version to prepare for sync accross branches.
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
Rosen Penev [Tue, 15 Jun 2021 09:19:45 +0000 (02:19 -0700)]
Merge pull request #15873 from commodo/netatalk-drop
netatalk: drop package
Florian Eckert [Tue, 15 Jun 2021 09:16:54 +0000 (11:16 +0200)]
Merge pull request #15825 from TDT-AG/pr/
20210611-dockerd
dockerd: refactoring uciadd and ucidel handling
Alexandru Ardelean [Tue, 15 Jun 2021 09:06:03 +0000 (12:06 +0300)]
netatalk: drop package
Link to abandoned packages PR: https://github.com/openwrt/packages-abandoned/pull/18
AppleShare products have been unused for a while now (since Mac OS 9.2.2)
around 2002.
So, there should be fewer users requiring this package.
Last update of netatalk was in December 2018. Not sure if newer updates
will be created.
It's time to cut the cord on our end and move it to the abandoned packages.
Info: https://en.wikipedia.org/wiki/AppleShare
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
Rosen Penev [Tue, 15 Jun 2021 08:48:24 +0000 (01:48 -0700)]
Merge pull request #15849 from neheb/ppb
protobuf: update to 3.17.2
Rosen Penev [Tue, 15 Jun 2021 08:46:29 +0000 (01:46 -0700)]
Merge pull request #15848 from neheb/als
alsa stuff: update to 1.2.5
Rosen Penev [Tue, 15 Jun 2021 08:46:21 +0000 (01:46 -0700)]
Merge pull request #15847 from neheb/assh
autossh: fix compilation without ssh installed
Florian Eckert [Fri, 11 Jun 2021 09:26:20 +0000 (11:26 +0200)]
dockerd: refactoring uciadd and ucidel handling
This change makes the handling of adding and deleting interface, device
bridge and firewall more robust.
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
Jeffery To [Sun, 13 Jun 2021 18:21:53 +0000 (02:21 +0800)]
python3: Add readline to dependency finder script
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
Hirokazu MORIKAWA [Mon, 14 Jun 2021 03:31:48 +0000 (12:31 +0900)]
mg: bump to 6.9
Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
Maxim Storchak [Mon, 14 Jun 2021 23:30:59 +0000 (02:30 +0300)]
tmux: update to 3.2a
Signed-off-by: Maxim Storchak <m.storchak@gmail.com>
Rosen Penev [Mon, 14 Jun 2021 23:22:11 +0000 (16:22 -0700)]
Merge pull request #15868 from PowerDNS/pdns-recursor-4.5.2
pdns-recursor: update to 4.5.2
Rosen Penev [Mon, 14 Jun 2021 23:20:49 +0000 (16:20 -0700)]
Merge pull request #15869 from PowerDNS/pdns-4.4.1
pdns: update to 4.4.1
Peter van Dijk [Mon, 14 Jun 2021 19:25:07 +0000 (21:25 +0200)]
pdns: update to 4.4.1
Signed-off-by: Peter van Dijk <peter.van.dijk@powerdns.com>
Peter van Dijk [Mon, 14 Jun 2021 16:37:51 +0000 (18:37 +0200)]
pdns-recursor: update to 4.5.2
Signed-off-by: Peter van Dijk <peter.van.dijk@powerdns.com>
Rosen Penev [Mon, 14 Jun 2021 19:52:02 +0000 (12:52 -0700)]
Merge pull request #15864 from commodo/stress-ng-update
stress-ng: bump to version 0.12.10
Josef Schlehofer [Mon, 14 Jun 2021 18:39:37 +0000 (20:39 +0200)]
Merge pull request #15866 from ja-pa/redis-6.2.4
redis: update to version 6.2.4
Jan Pavlinec [Mon, 14 Jun 2021 12:33:22 +0000 (14:33 +0200)]
redis: update to version 6.2.4
Fixes CVE-2021-32625
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
Oskari Rauta [Wed, 21 Apr 2021 00:27:11 +0000 (03:27 +0300)]
parted: add new package
Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
Alexandru Ardelean [Mon, 24 May 2021 16:21:05 +0000 (19:21 +0300)]
stress-ng: bump to version 0.12.10
Patch `010-soft-float.patch` can be dropped.
It was upstreamed via https://github.com/ColinIanKing/stress-ng/pull/126
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
Daniel Golle [Sun, 13 Jun 2021 18:41:57 +0000 (19:41 +0100)]
auc: fix several issues
* don't segfault if server reply is incomplete
* always request 'generic' image on x86/generic and x86/64
* make SNAPSHOT branches sticky, eg. stay on 21.02-SNAPSHOT and do
not 'upgrade' to 21.02.0-rc2.
* output requested server URL when debugging
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
Daniel Golle [Sat, 15 May 2021 23:08:05 +0000 (00:08 +0100)]
squashfs-tools: build with xz by default
squashfs-tools aren't of much use without xz compression support
on OpenWrt, as we build kernel with squashfs supporting only xz.
Enabled support for xz compression by default.
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
Daniel Golle [Sat, 15 May 2021 22:30:23 +0000 (23:30 +0100)]
uvol: try to be more shellcheck compliant, fix LVM vol-up
* quotes around all variables
* always use 'read -r' instead of 'read'
* some more minor shellcheck fixes
* reorder LVM ops for 'up' call to allow it to succeed
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
Kevin Lyda [Sat, 12 Jun 2021 10:46:56 +0000 (11:46 +0100)]
prometheus-node-export-lua: add my email
Add my email address to the copyright for the file.
Signed-off-by: Kevin Lyda <kevin@lyda.ie>
Rosen Penev [Sun, 13 Jun 2021 20:00:36 +0000 (13:00 -0700)]
Merge pull request #15574 from AuthorReflex/ovpn-wolfssl
Enable using wolfSSL cryptographic API engine in OpenVPN
Daniel Engberg [Sun, 13 Jun 2021 16:46:24 +0000 (18:46 +0200)]
Merge pull request #15853 from jonathanunderwood/stubby-getdns-remove-maintainer
[stubby,getdns]: Remove maintainer from stubby and getdns packages
Jonathan G. Underwood [Sun, 13 Jun 2021 14:10:51 +0000 (15:10 +0100)]
stubby: remove maintainer
Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
Jonathan G. Underwood [Sun, 13 Jun 2021 14:10:40 +0000 (15:10 +0100)]
getdns: remove maintainer
Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
Ivan Pavlov [Wed, 5 May 2021 15:12:35 +0000 (18:12 +0300)]
openvpn: enable using wolfSSL cryptographic API engine
Support for wolfSSL has been upstreamed to the master OpenVPN branch
in
f6dca235ae560597a0763f0c98fcc9130b80ccf4 so we can use wolfSSL
directly in OpenVPN. So no more needed differnt SSL engine for OpenVPN
in systems based on wolfSSL library
Compiled && tested on ramips/mt7620, ramips/mt7621
Signed-off-by: Ivan Pavlov <AuthorReflex@gmail.com>
Dirk Brenken [Sun, 13 Jun 2021 06:06:33 +0000 (08:06 +0200)]
Merge pull request #15845 from dibdot/banip
banip: update 0.7.9
Dirk Brenken [Sat, 12 Jun 2021 21:00:50 +0000 (23:00 +0200)]
banip: update 0.7.9
* add switch 'ban_fetchinsecure' to allow insecure downloads
without certificate check (disabled by default)
* better explain 'ban_fetchparm' in readme
Signed-off-by: Dirk Brenken <dev@brenken.org>
Dirk Brenken [Sun, 13 Jun 2021 05:32:30 +0000 (07:32 +0200)]
Merge pull request #15844 from dibdot/adblock
adblock: update 4.1.3
Rosen Penev [Sun, 13 Jun 2021 04:29:14 +0000 (21:29 -0700)]
Merge pull request #15850 from neheb/ppbc
libprotobuf-c: update to 1.4.0
Rosen Penev [Sun, 13 Jun 2021 03:48:05 +0000 (20:48 -0700)]
libprotobuf-c: update to 1.4.0
Remove patch. Upstream fixed it.
Add AUTORELEASE for simplicity.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
Rosen Penev [Sun, 13 Jun 2021 03:53:53 +0000 (20:53 -0700)]
protobuf: update to 3.17.2
Refreshed patch.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
Rosen Penev [Fri, 11 Jun 2021 03:21:32 +0000 (20:21 -0700)]
ninja: remove ninja-cmake.mk
Useless now that stock cmake.mk uses ninja.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
Rosen Penev [Thu, 10 Jun 2021 23:27:06 +0000 (16:27 -0700)]
treewide: back to cmake.mk
Ninja was merged to base and therefore we can now use normal cmake.mk
Signed-off-by: Rosen Penev <rosenp@gmail.com>
Rosen Penev [Sun, 13 Jun 2021 03:26:56 +0000 (20:26 -0700)]
alsa-utils: update to 1.2.5
Switch to AUTORELEASE for simplicity.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
Rosen Penev [Sun, 13 Jun 2021 03:20:17 +0000 (20:20 -0700)]
alsa-lib: update to 1.2.5
Refresh patches. Remove upstream one.
Switch to AUTORELEASE for simplicity.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
Rosen Penev [Sun, 13 Jun 2021 01:26:19 +0000 (18:26 -0700)]
autossh: fix compilation without ssh installed
configure script looks for host ssh. Just pass the configure variable
directly. --with-ssh doesn't work.
Also get rid of custom Compile section. It's not needed.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
Rosen Penev [Sat, 12 Jun 2021 23:08:21 +0000 (16:08 -0700)]
Merge pull request #15846 from neheb/shr
shairport-sync: update to 3.3.8
Rosen Penev [Sat, 12 Jun 2021 22:39:21 +0000 (15:39 -0700)]
shairport-sync: update to 3.3.8
Explicitly add libdaemon configure flag. It seems the default was
changed.
Add AUTORELEASE for simplicity.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
Rosen Penev [Sat, 12 Jun 2021 20:58:25 +0000 (13:58 -0700)]
Merge pull request #15842 from oleg-derevenetz/bwping-2.3
bwping: update to version 2.3
Rosen Penev [Sat, 12 Jun 2021 20:58:05 +0000 (13:58 -0700)]
Merge pull request #15839 from jefferyto/python-twisted-tls-conch
python-twisted: Add tls/conch dependencies
Dirk Brenken [Sat, 12 Jun 2021 20:24:23 +0000 (22:24 +0200)]
adblock: update 4.1.3
* fix a small json syntax issue in adblock.sources
* add easylist addon to reg_fr source
* add switch 'adb_fetchinsecure' to allow insecure downloads
without certificate check (disabled by default)
* better explain 'adb_fetchparm' in readme
Signed-off-by: Dirk Brenken <dev@brenken.org>
Rosen Penev [Sat, 12 Jun 2021 20:02:27 +0000 (13:02 -0700)]
Merge pull request #15837 from neheb/st
stubby: remove libidn2 and libunwind dependencies
Oleg Derevenetz [Sat, 12 Jun 2021 17:40:22 +0000 (20:40 +0300)]
bwping: update to version 2.3
Signed-off-by: Oleg Derevenetz <oleg-derevenetz@yandex.ru>
Jeffery To [Sat, 12 Jun 2021 10:40:09 +0000 (18:40 +0800)]
python-twisted: Add tls/conch dependencies
By adding these dependencies, it is much easier for users (both
applications that use Twisted and end users) to have secure
communications by default.
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
Josef Schlehofer [Fri, 11 Jun 2021 23:20:52 +0000 (01:20 +0200)]
Merge pull request #15835 from jefferyto/python-twisted-21.2.0
python-twisted: Update to 21.2.0, redo patches
Rosen Penev [Fri, 11 Jun 2021 22:44:25 +0000 (15:44 -0700)]
stubby: remove libidn2 and libunwind dependencies
There's no good way to get rid of these, so just delete the cmake files.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
Jeffery To [Fri, 11 Jun 2021 22:18:50 +0000 (06:18 +0800)]
python-twisted: Update to 21.2.0, redo patches
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
Rosen Penev [Fri, 11 Jun 2021 20:25:11 +0000 (13:25 -0700)]
Merge pull request #15808 from rsalvaterra/getdns
Bump getdns/stubby to 1.7.0 and 0.4.0 respectively
Josef Schlehofer [Fri, 11 Jun 2021 20:16:46 +0000 (22:16 +0200)]
Merge pull request #15833 from jefferyto/python-incremental-21.3.0
python-incremental: Update to 21.3.0, refresh patch
Josef Schlehofer [Fri, 11 Jun 2021 20:16:24 +0000 (22:16 +0200)]
Merge pull request #15830 from jefferyto/python-zope-interface-5.4.0
python-zope-interface: Update to 5.4.0
Josef Schlehofer [Fri, 11 Jun 2021 20:16:08 +0000 (22:16 +0200)]
Merge pull request #15828 from jefferyto/python-attrs-21.2.0
python-attrs: Update to 21.2.0
Jeffery To [Fri, 11 Jun 2021 18:15:58 +0000 (02:15 +0800)]
python-incremental: Update to 21.3.0, refresh patch
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
Jeffery To [Fri, 11 Jun 2021 15:44:51 +0000 (23:44 +0800)]
python-zope-interface: Update to 5.4.0
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
Jeffery To [Fri, 11 Jun 2021 14:53:18 +0000 (22:53 +0800)]
python-attrs: Update to 21.2.0
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
Rui Salvaterra [Tue, 8 Jun 2021 16:17:25 +0000 (17:17 +0100)]
stubby: bump to 0.4.0
Remove obsolete patch.
Signed-off-by: Rui Salvaterra <rsalvaterra@gmail.com>
Rui Salvaterra [Tue, 8 Jun 2021 16:16:19 +0000 (17:16 +0100)]
getdns: bump to 1.7.0
Remove obsolete patches.
Signed-off-by: Rui Salvaterra <rsalvaterra@gmail.com>
Karl Palsson [Fri, 11 Jun 2021 13:00:35 +0000 (13:00 +0000)]
net/mosquitto: Update to 2.0.11
This is a security and bugfix release.
Full release notes: https://mosquitto.org/blog/2021/06/version-2-0-11-released/
Fixes a remotely triggered memory leak
Fixes broker reconnections in certain failure situations
Fixes (non-standard) qos0 queuing
Signed-off-by: Karl Palsson <karlp@etactica.com>
Rosen Penev [Fri, 11 Jun 2021 10:26:11 +0000 (03:26 -0700)]
Merge pull request #15789 from nickberry17/update_mm_and_libs
Update ModemManager and dependencies
Rosen Penev [Fri, 11 Jun 2021 10:25:40 +0000 (03:25 -0700)]
Merge pull request #15810 from neheb/ke
kea: update to 1.8.2
Rosen Penev [Fri, 11 Jun 2021 10:25:17 +0000 (03:25 -0700)]
Merge pull request #15814 from neheb/t1
tang: remove outdated key handling
Josef Schlehofer [Fri, 11 Jun 2021 09:31:48 +0000 (11:31 +0200)]
Merge pull request #15823 from jefferyto/golang-1.16.5
golang: Update to 1.16.5
Jeffery To [Fri, 11 Jun 2021 08:26:56 +0000 (16:26 +0800)]
golang: Update to 1.16.5
1.16.1 included fixes for:
* CVE-2021-27918 - encoding/xml: infinite loop when using
xml.NewTokenDecoder with a custom TokenReader
* CVE-2021-27919 - archive/zip: can panic when calling Reader.Open
1.16.4 included fixes for:
* CVE-2021-31525 - net/http: ReadRequest can stack overflow due to
recursion with very large headers
1.16.5 includes fixes for:
* CVE-2021-33195 - net: Lookup functions may return invalid host names
* CVE-2021-33196 - archive/zip: malformed archive may cause panic or
memory exhaustion
* CVE-2021-33197 - net/http/httputil: ReverseProxy forwards Connection
headers if first one is empty
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
Oskari Rauta [Tue, 8 Jun 2021 00:39:31 +0000 (03:39 +0300)]
cni: update to 0.8.1
This is a security release that fixes a single bug:
- tighten up plugin-finding logic (#811)
Users of libcni are strongly encouraged to update.
Added me to list of maintainers as requested by @dangowrt.
Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>