NetCube-Systems-Austria/kumquat-buildroot
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
67,622 Commits 5 Branches 387 Tags 141 MiB
244fe62caf
Commit Graph

67622 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Peter Seiderer
244fe62caf package/coreutils: bump version to 9.3 
Bugfix release, fixing regressions introduced by 9.2. For details see [1].

[1] https://lists.gnu.org/archive/html/info-gnu/2023-04/msg00006.html

Signed-off-by: Peter Seiderer <ps.report@gmx.net>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 13:34:48 +02:00
Giulio Benetti
0bd9dabec5 package/rtl8189fs: bump to version 2023-03-27 on rtl8189fs branch 
Fixes:
http://autobuild.buildroot.net/results/a1c/a1c4c386e60a082d30cae686b9e1d27d01046266/

Signed-off-by: Giulio Benetti <giulio.benetti@benettiengineering.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 13:32:05 +02:00
Giulio Benetti
7c30ba90ce package/rtl8723ds: fix typo CLAGS renaming with CFLAGS 
Signed-off-by: Giulio Benetti <giulio.benetti@benettiengineering.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 13:31:25 +02:00
Francois Perrad
7cccb96696 package/libressl: bump to version 3.7.2 
Signed-off-by: Francois Perrad <francois.perrad@gadz.org>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 13:13:17 +02:00
Francois Perrad
460c9fa338 package/pciutils: bump to version 3.9.0 
remove patch, see commit 0478e1f3928bf "Avoid adding multiple version tags
to the same symbol":

https://github.com/pciutils/pciutils/commit/0478e1f3928bf

Signed-off-by: Francois Perrad <francois.perrad@gadz.org>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 13:12:05 +02:00
Petr Vorel
1740a066e9 package/iproute2: bump version to 6.2.0 
Backport 2 fixes from upcoming release (memory leak and incorrect JSON
output).

Signed-off-by: Petr Vorel <petr.vorel@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 13:06:36 +02:00
James Hilliard
8fb9e8ca6b package/gst1-python: bump version to 1.22.2 
Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 10:04:09 +02:00
James Hilliard
e29fff8388 package/gst-omx: bump version to 1.22.2 
Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 10:04:01 +02:00
James Hilliard
e4fb09f95f package/gstreamer1-editing-services: bump version to 1.22.2 
Drop patch which is now upstream.

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 10:03:55 +02:00
James Hilliard
e796e5a70b package/gst1-rtsp-server: bump version to 1.22.2 
Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 10:03:49 +02:00
James Hilliard
2231878df2 package/gst1-vaapi: bump version to 1.22.2 
Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 10:03:37 +02:00
James Hilliard
d34c0b3df4 package/gst1-libav: bump version to 1.22.2 
Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 10:03:32 +02:00
James Hilliard
e375104371 package/gst1-devtools: bump version to 1.22.2 
Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 10:03:25 +02:00
James Hilliard
1155c854dc package/gst1-plugins-ugly: bump version to 1.22.2 
Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 10:03:18 +02:00
James Hilliard
aab52c395e package/gst1-plugins-bad: bump version to 1.22.2 
Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 10:03:10 +02:00
James Hilliard
9b279b6699 package/gst1-plugins-good: bump version to 1.22.2 
Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 10:03:01 +02:00
James Hilliard
7812b59125 package/gst1-plugins-base: bump version to 1.22.2 
Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 10:02:53 +02:00
James Hilliard
42b9277479 package/gstreamer1: bump to version 1.22.2 
Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 10:02:46 +02:00
Daniel Lang
19a35e7236 package/tcpdump: security bump to version 4.99.4 
Fixes CVE-2023-1801

Signed-off-by: Daniel Lang <dalang@gmx.at>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 10:00:05 +02:00
Michael Fischer
4ed0608c88 package/sdl2: bump version to 2.26.5 
Signed-off-by: Michael Fischer <mf@go-sys.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 09:33:58 +02:00
Adrian Perez de Castro
d6b871e137 package/webkitgtk: security bump to version 2.38.6 
Bugfix release with many security fixes, including (but not limited to)
patches for CVE-2023-25358, CVE-2022-0108, CVE-2022-32885,
CVE-2023-27932, CVE-2023-27954, and CVE-2023-28205.

Release notes:

  https://webkitgtk.org/2023/04/20/webkitgtk2.38.6-released.html

Accompanying security advisory:

  https://webkitgtk.org/security/WSA-2023-0003.html

Signed-off-by: Adrian Perez de Castro <aperez@igalia.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 09:33:18 +02:00
Adrian Perez de Castro
b9c6684fa3 package/wpewebkit: security bump to version 2.38.6 
Bugfix release with many security fixes, including (but not limited to)
patches for CVE-2023-25358, CVE-2022-0108, CVE-2022-32885,
CVE-2023-27932, CVE-2023-27954, and CVE-2023-28205.

Release notes:

  https://wpewebkit.org/release/wpewebkit-2.38.6.html

Accompanying security advisory:

  https://wpewebkit.org/security/WSA-2023-0003.html

Signed-off-by: Adrian Perez de Castro <aperez@igalia.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 09:32:37 +02:00
Francois Perrad
60d8e52576 package/lua: bump to version 5.4.5 
Signed-off-by: Francois Perrad <francois.perrad@gadz.org>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 09:29:32 +02:00
Romain Naour
272bfb4cab Config.in.legacy: add missing binutils 2.36.x entry 
Commit [1] removed binutils 2.36.1 but forgot to add the legacy
entry.

[1] d08639e6b9

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Cc: Waldemar Brodkorb <wbx@openadk.org>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 09:28:57 +02:00
Frank Vanbever
a1e0e7276c package/libmodsecurity: bump to version 3.0.9 
- Drop 0003-Revert-Fix-maxminddb-link-on-FreeBSD.patch, handling of libmaxminddb
  was fixed upstream in d2b700d
- Drop 0004-build-pcre.m4-fix-build-without-pcre.patch, handling of PCRE was
  fixed upstream in 791964a

Signed-off-by: Frank Vanbever <frank.vanbever@mind.be>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 09:26:55 +02:00
Bernd Kuhls
72edd5633e package/ffmpeg: bump version to 4.4.4 
Changelog:
https://git.videolan.org/?p=ffmpeg.git;a=blob;f=Changelog;hb=refs/heads/release/4.4

Rebased all patches, switched _SITE to https.

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 09:24:33 +02:00
Bernd Kuhls
3ed1653bfb package/dav1d: bump version to 1.1.0 
Release notes:
https://code.videolan.org/videolan/dav1d/-/blob/master/NEWS

Switched _SITE to https.

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 09:24:19 +02:00
Bernd Kuhls
f32673ff8d package/intel-microcode: security bump version to 20230214 
Release notes:
https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/blob/main/releasenote.md

CVE-2022-21216
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00700.html

CVE-2022-33196
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00738.html

CVE-2022-38090
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00767.html

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 09:23:35 +02:00
Francis Laniel
492c803117 package/tbb: bump to version 2021.8.0. 
- Remove upstream patches as they are no more needed.

Signed-off-by: Francis Laniel <flaniel@linux.microsoft.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 09:22:56 +02:00
Bernd Kuhls
d2fd83bac7 package/hwdata: bump version to 0.369 
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 09:22:49 +02:00
Bagas Sanjaya
ffc50351b7 package/git: security bump to version 2.40.1 
Fix three CVEs (CVE-2023-25652, CVE-2023-25815, and CVE-2023-29007).
For details on these, see release announcement at [1].

[1]: https://lore.kernel.org/git/xmqqa5yv3n93.fsf@gitster.g/

Signed-off-by: Bagas Sanjaya <bagasdotme@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 09:21:43 +02:00
Bernd Kuhls
0022cde530 package/tvheadend: bump version 
Rebased patch.

Upstream removed the dependency to libavresample:
17a357fee8

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 09:16:22 +02:00
Bernd Kuhls
e2ad585bc5 package/xmrig: bump version to 6.19.2 
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 09:15:13 +02:00
Bernd Kuhls
01ddf437e2 package/libva-utils: bump version to 2.18.1 
Release notes:
https://github.com/intel/libva-utils/blob/v2.18-branch/NEWS

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 09:15:05 +02:00
Bernd Kuhls
cbeca8c042 package/libva: bump version to 2.18.0 
Release notes: https://github.com/intel/libva/blob/v2.18-branch/NEWS

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 09:14:57 +02:00
Bernd Kuhls
162053090f package/libxml2: security bump to version 2.10.4 
- [CVE-2023-29469] Hashing of empty dict strings isn't deterministic
- [CVE-2023-28484] Fix null deref in xmlSchemaFixupComplexType
- schemas: Fix null-pointer-deref in xmlSchemaCheckCOSSTDerivedOK

https://gitlab.gnome.org/GNOME/libxml2/-/tags/v2.10.4

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 09:14:47 +02:00
Bernd Kuhls
83f6a49871 package/x11r7/xserver_xorg-server: security bump version to 21.1.8 
Release notes:
https://lists.x.org/archives/xorg-announce/2023-March/003377.html

Fixes CVE-2023-1393:
https://lists.x.org/archives/xorg-announce/2023-March/003374.html

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 09:14:28 +02:00
Bernd Kuhls
839c0c7d7c package/apache: security bump version to 2.4.57 
Release notes:
https://lists.apache.org/thread/lp9t6w2t0qsbbo14lylk2yvfj8hgfoh9

Changelog: https://downloads.apache.org/httpd/CHANGES_2.4.57
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 09:14:18 +02:00
Bernd Kuhls
987a80f8f4 package/{mesa3d, mesa3d-headers}: bump version to 23.0.3 
Release notes:
https://lists.freedesktop.org/archives/mesa-announce/2023-March/000713.html
https://lists.freedesktop.org/archives/mesa-announce/2023-April/000714.html
https://lists.freedesktop.org/archives/mesa-announce/2023-April/000717.html

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 09:14:09 +02:00
Bernd Kuhls
1fb66e2852 package/php: bump version to 8.2.5 
Changelog:
https://www.php.net/ChangeLog-8.php#8.2.4
https://www.php.net/ChangeLog-8.php#8.2.5

Release notes:
https://news-web.php.net/php.announce/351
https://news-web.php.net/php.announce/352

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-05-01 09:13:59 +02:00
Bernd Kuhls
eadff4efe9 {toolchain, linux-headers}: add support for 6.3 headers 
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-04-30 22:42:00 +02:00
Bernd Kuhls
b73d16cdcf {toolchain, linux-headers}: add support for 6.2 headers 
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-04-30 22:41:39 +02:00
Bernd Kuhls
d79fce3edd {linux, linux-headers}: bump 4.{14, 19}.x / 5.{4, 10, 15}.x / 6.1.x series 
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2023-04-30 22:41:21 +02:00
Yann E. MORIN
d89fdaea2b package/readline: fix "Upstream:" tag 
The test chckes that the "Upstream:" tag be on the first column, without
any leading character (no space, no bracket of any kind).

Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
 2023-04-24 21:02:29 +02:00
Peter Seiderer
2dff6e93ca package/readline: add upstream patch to fix crash with invalid locale specification 
Add upstream patch to fix crash with invalid locale specification (see [1]
for details).

Fixes:

  - https://bugs.busybox.net/show_bug.cgi?id=15456

[1] https://lists.gnu.org/archive/html/bug-readline/2022-10/msg00002.html

Signed-off-by: Peter Seiderer <ps.report@gmx.net>
Tested-by: Stefan Agner <stefan@agner.ch>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
 2023-04-24 20:38:02 +02:00
Yann E. MORIN
4f38b5dcbd support/testing: complete the grammar fix 
Commit a3e796b74e (utils/check-package: fix grammar) only partially
fixed the test-case (git commit --amend missed the test-case...)

Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
 2023-04-23 21:53:02 +02:00
Yann E. MORIN
a3e796b74e utils/check-package: fix grammar 
The past participle for "to fix" is "fix". The "did you forget" got
eluded into "forget", so again a past participle.

Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
 2023-04-23 21:49:46 +02:00
Yann E. MORIN
3d8212c4b2 utils/docker-run: allow running without a tty 
Currently, utils/docker-run spawns a container with a tty, so that he
user can interact properly in the container.

However, that requires a tty when calling docker-run, which is not
always guaranteed, e.g. if called from a git hook.

Since the script is a bash script already, we can use an array to store
options passed to docker, and only add the -t option when there is
actually a tty available.

Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Cc: Ricardo Martincoski <ricardo.martincoski@gmail.com>
 2023-04-23 19:34:00 +02:00
Maxim Kochetkov
6104b62d95 package/postgresql: ignore CVE-2017-8806 
CVE-2017-8806 is related to postgresql-common package, as present in
Debian and its derivatives; Buildroot does not have that package.
It is false positive for postgresql, so ignore it.

To be noted, is that a similar CVE [0] applied to postgresql itself, as
stated in [1], but that was fixed a while ago [2], and we need not
ignore it.

[0] https://nvd.nist.gov/vuln/detail/CVE-2017-12172
[1] https://ubuntu.com/security/CVE-2017-8806
[2] https://git.postgresql.org/gitweb/?p=postgresql.git;a=commit;h=dfc015dcf46c1996bd7ed5866e9e045d258604b3

Signed-off-by: Maxim Kochetkov <fido_max@inbox.ru>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
 2023-04-23 17:21:15 +02:00
Christian Stewart
e538824692 DEVELOPERS: update email address 
This patch updates my email address in the DEVELOPERS file.

Signed-off-by: Christian Stewart <christian@aperture.us>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
 2023-04-23 16:43:11 +02:00