openwrt-mirror/packages
1
0
Fork 0
mirror of https://github.com/openwrt/packages.git synced 2025-12-22 01:44:32 +04:00
Code Issues Packages Projects Releases Wiki Activity
28,065 Commits 12 Branches 1 Tag
e56dcfef59b430d15d58d7acafe98cea9b55b45c
Commit Graph

28065 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Lucian Cristian
e56dcfef59 libreswan: update to 4.12 
fix CVE-2023-38710, CVE-2023-38711, CVE-2023-38712

Signed-off-by: Lucian Cristian <lucian.cristian@gmail.com>
(cherry picked from commit 5a1b878010)
 2023-09-20 00:21:46 +02:00
Lucian Cristian
bbd1312705 libreswan: update to 4.11 
Fixes https://libreswan.org/security/CVE-2023-30570

Signed-off-by: Lucian Cristian <lucian.cristian@gmail.com>
(cherry picked from commit a5c2eececb)
 2023-09-20 00:21:39 +02:00
Josef Schlehofer
b949001ea8 ffmpeg: update to version 5.1.3 
Fixes CVEs:
CVE-2022-3964 [1]
CVE-2022-3965 [2]

[1] https://nvd.nist.gov/vuln/detail/CVE-2022-3964
[2] https://nvd.nist.gov/vuln/detail/CVE-2022-3965

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit 87b2a2bb57)
 2023-09-17 13:46:07 +02:00
Stan Grishin
494a053faa Merge pull request #22123 from stangri/openwrt-22.03-https-dns-proxy 
[22.03] https-dns-proxy: improve boot up startup
 2023-09-16 18:59:27 -07:00
Stan Grishin
52e318a15c https-dns-proxy: improve boot up startup 
Signed-off-by: Stan Grishin <stangri@melmac.ca>
(cherry picked from commit 22d21e28a7)
 2023-09-16 23:52:31 +00:00
Stan Grishin
d38d78edba Merge pull request #22116 from stangri/openwrt-22.03-curl 
[22.03] curl: update to version 8.3.0
 2023-09-16 16:43:18 -07:00
Josef Schlehofer
8d617af751 unbound: update to version 1.17.1 
- Refreshed one patch
- Removed deprecated AUTORELEASE

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit 97e69ec89c)
 2023-09-16 12:58:07 +02:00
John Audia
f4c5b4389e ffmpeg: update to 5.1.2 
Bump to latest upstream version

Signed-off-by: John Audia <therealgraysky@proton.me>
(cherry picked from commit 6b71d2fbde)
 2023-09-16 12:32:24 +02:00
John Audia
4e4e494a6c ffmpeg: update to 5.1.1 
Bump to latest upstream version

Signed-off-by: John Audia <therealgraysky@proton.me>
(cherry picked from commit 73e02994fb)
 2023-09-16 12:32:14 +02:00
Jeffery To
d02538e0e9 python-sentry-sdk: Update to 1.29.2, update list of dependencies 
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from commit f279ae9418)
 2023-09-16 12:29:17 +02:00
Josef Schlehofer
f7560f4896 treewide: change my no longer used email 
Since February 2023, I decided to no longer work with Turris, I mean CZ.NIC company
due to some reasons how the development goes and since that day my work address is not
available and not sure if there is some redirect to someone else, but if anyone wants to
reach me, use my email address, where they can find me.

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit 1e1b2051db)
 2023-09-16 12:26:40 +02:00
Josef Schlehofer
adad342905 curl: update to version 8.3.0 
Release notes:
https://curl.se/changes.html#8_3_0

Fixes:
CVE-2023-38039 [1]

[1] https://curl.se/docs/CVE-2023-38039.html

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit 07c0a5eab8)
 2023-09-16 10:25:56 +00:00
Olivier Poitrey
7564720af8 nextdns: Update to version 1.40.1 
Signed-off-by: Olivier Poitrey <rs@nextdns.io>
 2023-09-16 17:02:17 +08:00
Sibren Vasse
cda94a1660 openssh: update to 9.3p2 
Signed-off-by: Sibren Vasse <github@sibrenvasse.nl>
(cherry picked from commit 731f0d70a8)
 2023-09-15 15:57:27 +02:00
Darren Tucker
3013608d01 openssh: sftp no longer needs crypto or zlib. 
OpenSSH 9.1p1 removed remaining dependencies and stopped linking sftp,
sftp-server and scp against libcrypto or libz.  This change moves those
package dependencies from the default to those that still need them.
In particular, this will allow sftp-server to be installed for use with
Dropbear without needing to install zlib or openssl.

Signed-off-by: Darren Tucker <dtucker@dtucker.net>
(cherry picked from commit 74c4ad2c0c)
 2023-09-15 15:57:18 +02:00
Darren Tucker
63593c9bf0 openssh: Use CDN first for source downloads. 
Also point to https for website.

Signed-off-by: Darren Tucker <dtucker@dtucker.net>
(cherry picked from commit 1daddd582f)
 2023-09-15 15:57:10 +02:00
Glen Huang
8669835b62 openssh: preserve authorized_keys 
The root user is usually the user that clients ssh into with, so in most
cases its authorized_keys determines what clients are allowed to ssh
into this device. Without preserving this file, they could potentially
be locked out after upgrading.

Signed-off-by: Glen Huang <me@glenhuang.com>
(cherry picked from commit e36a55c9ed)
 2023-09-15 15:57:00 +02:00
Sibren Vasse
b3704dc4ff openssh: update to 9.3p1 
Signed-off-by: Sibren Vasse <github@sibrenvasse.nl>
(cherry picked from commit 2c755759df)
 2023-09-15 15:54:12 +02:00
Sibren Vasse
5f181e80c2 openssh: actually build openssh-server-pam with pam support 
Signed-off-by: Sibren Vasse <github@sibrenvasse.nl>
(cherry picked from commit d41e918a36)
 2023-09-15 15:54:03 +02:00
Sibren Vasse
004c7f3a44 openssh: update to 9.2p1 
Signed-off-by: Sibren Vasse <github@sibrenvasse.nl>
(cherry picked from commit 5c43c1bade)
 2023-09-15 15:53:52 +02:00
Sibren Vasse
6fc31027de openssh: update to 9.1p1 
Signed-off-by: Sibren Vasse <github@sibrenvasse.nl>
(cherry picked from commit ba8cb7c16c)
 2023-09-15 15:53:27 +02:00
Sibren Vasse
fb446ac437 openssh: update to 9.0p1 
Remove upstreamed patches.

Signed-off-by: Sibren Vasse <github@sibrenvasse.nl>
(cherry picked from commit 08b45115d7)
 2023-09-15 15:53:10 +02:00
Rosen Penev
e51d6bbb1e glib2: update to 2.74.0 
Remove upstreamed patch and delete pointless one.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit 5d27631d9f)
 2023-09-15 09:55:19 +02:00
Rosen Penev
37a240dcdd glib2: remove libiconv/host build dependency 
No longer present. The original reason for having it was an unfortunate
side effect of the way meson uses HOST_LDFLAGS. Since the transistion to
use dependency('iconv'), this is no longer relevant.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit 568669dc46)
 2023-09-15 09:55:01 +02:00
Josef Schlehofer
6b5e69d11c syslog-ng: update to version 4.3.1 
Makefile changes:
- Since version 4.3.0, there is required to use pcre2 instead of pcre
Reference: https://github.com/syslog-ng/syslog-ng/pull/4537

- Disable c++ support by default to avoid picking libstdcpp dependency
Reference: https://github.com/syslog-ng/syslog-ng/pull/4484

Config changes:
- Bump version in config file

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit c43599b0c8)
 2023-09-15 09:30:01 +02:00
Tianling Shen
2fd3caba44 Merge pull request #22084 from jefferyto/golang-1.19.13-openwrt-22.03 
[openwrt-22.03] golang: Update to 1.19.13
 2023-09-11 09:55:44 +08:00
Jeffery To
ef6064771b golang: Update to 1.19.13 
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
 2023-09-11 04:06:34 +08:00
Jeffery To
99f9e68f7b python3: Update to 3.10.13 
Includes fix for CVE-2023-40217 (Bypass TLS handshake on closed
sockets).

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
 2023-09-08 19:01:59 +08:00
Liangbin Lian
9f1f0665ca transmission: add syscalls to seccomp filter 
Add missing syscalls found using `/etc/init.d/transmission trace`.

fix crash on adding torrent on x86_64 platform

Signed-off-by: Liangbin Lian <jjm2473@gmail.com>
 2023-09-07 19:26:48 -07:00
Moritz Warning
f88ff7f861 zerotier: update to 1.12.1 
* split up "fix makefile" patch logical distinct parts
* add libatomic dependency needed for prometheus-cpp-lite-1.0
* refresh patch series
* improve warning message in init script

Signed-off-by: Moritz Warning <moritzwarning@web.de>
(cherry picked from commit 6cf39ba626)
 2023-09-04 14:30:32 +08:00
Oskari Rauta
419374b406 zerotier: do not allow executable stack 
zerotier as default has executable stack.
[   11.343143] process '/usr/bin/zerotier-one' started with executable stack

executable stacks are not recommend, possibly provide a threat and there
seems to be no advantage of executable stack with zerotier-one - so let's
build it without instead.

Stack is executable on x86_64, but not on all archs, such as ramips.

Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
(cherry picked from commit 56f30520f2)
 2023-09-04 14:30:32 +08:00
Moritz Warning
41048a79f9 zerotier: update to 1.10.4 
Signed-off-by: Moritz Warning <moritzwarning@web.de>
(cherry picked from commit b5cde91594)
 2023-09-04 14:30:32 +08:00
Jan Hoffmann
1657fdb869 vnstat2: update to version 2.11 
This release breaks the noexit patch, because the code for removing old
now returns an error when no interfaces are configured. As it is run on
startup, the daemon exits in this case. To avoid this, add an additional
check so an error is only returned in an actual error case.

Signed-off-by: Jan Hoffmann <jan@3e8.eu>
(cherry picked from commit 9871979707)
 2023-09-04 14:30:05 +08:00
Jan Hoffmann
fc76c3e9fe vnstat2: update to version 2.10 
Signed-off-by: Jan Hoffmann <jan@3e8.eu>
(cherry picked from commit 4edbd1afe7)
 2023-09-04 14:30:05 +08:00
Stan Grishin
708ec95903 Merge pull request #22018 from stangri/openwrt-22.03-https-dns-proxy 
[22.03] https-dns-proxy: fix dns resolution not working on boot
 2023-09-03 18:03:07 -07:00
Stan Grishin
8819ac9f48 https-dns-proxy: fix dns resolution not working on boot 
* fix dns resolution not working on boot
* add hotplug-online script
* reorganizes files/ and Makefile to reflect files destinations

Signed-off-by: Stan Grishin <stangri@melmac.ca>
(cherry picked from commit 9a2c5ae18c)
 2023-09-03 20:37:46 +00:00
Leon M. Busch-George
4e2cd2ced5 wget: use pcre2 
Pcre (1) is unmaintained and reached its end of life in 2021.
The base system provides pcre2 exclusively since May.

Signed-off-by: Leon M. Busch-George <leon@georgemail.eu>
(cherry picked from commit 379946951c)
 2023-09-03 10:52:06 +02:00
Josef Schlehofer
5800425cb0 knot-resolver: update to version 5.7.0 
Changelog:
https://www.knot-resolver.cz/2023-01-26-knot-resolver-5.6.0.html
https://www.knot-resolver.cz/2023-08-22-knot-resolver-5.7.0.html

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit a531468114)
 2023-09-03 10:03:51 +02:00
Jan Hák
a8575f7084 knot: enable QUIC support 
Signed-off-by: Jan Hák <jan.hak@nic.cz>
(cherry picked from commit dea3e7acb6)
 2023-09-01 22:08:55 +02:00
Jan Hák
3159348b04 knot: update to version 3.3.0 
Signed-off-by: Jan Hák <jan.hak@nic.cz>
(cherry picked from commit e79e441513)
 2023-09-01 22:08:47 +02:00
Jan Hák
47e25fd7ac knot: update to version 3.2.9 
Signed-off-by: Jan Hák <jan.hak@nic.cz>
(cherry picked from commit f6aa1198eb)
 2023-09-01 22:08:37 +02:00
Jan Hák
94e1621abc knot: update to version 3.2.8 
Signed-off-by: Jan Hák <jan.hak@nic.cz>
(cherry picked from commit 9517ef080a)
 2023-09-01 22:08:28 +02:00
Jan Hák
4465026738 knot: update to version 3.2.7 
Signed-off-by: Jan Hák <jan.hak@nic.cz>
(cherry picked from commit 439694a012)
 2023-09-01 22:08:19 +02:00
Jan Hák
dca5104967 knot: update to version 3.2.6 
Signed-off-by: Jan Hák <jan.hak@nic.cz>
(cherry picked from commit bb946a19cd)
 2023-09-01 22:08:08 +02:00
Tianling Shen
981dbdf9c4 tmate: fix build against msgpack-c 6.0 
This patch is taken from
https://git.alpinelinux.org/aports/commit/?id=f923597f4bdea424dc28b1d026269df060596fac

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit 928710813b)
 2023-09-01 22:07:17 +02:00
Tianling Shen
6f180964af msgpack-c: Update to 6.0.0 
Removed 010-no-gtest.patch as upstream no longer detects it.

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit 394cc366b3)
 2023-09-01 22:06:35 +02:00
Tianling Shen
6c43ff614c tmate-ssh-server: fix build against msgpack-c 6.0 
This patch is taken from
https://git.alpinelinux.org/aports/commit/?id=f923597f4bdea424dc28b1d026269df060596fac

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit c49a1dad52)
 2023-09-01 22:06:10 +02:00
Nikos Mavrogiannopoulos
c30b106576 tang: do not require bash and curl (backport from 23.05) 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2023-08-31 18:45:39 +02:00
Nikos Mavrogiannopoulos
5918cb1143 tang: corrected hash for v14 
Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
 2023-08-30 09:27:27 +02:00
Ray Wang
e1a2aa82c9 natmap: update to 20230820 
Signed-off-by: Ray Wang <r@hev.cc>
(cherry picked from commit d5b99f9e8a)
 2023-08-30 09:48:31 +08:00