Commit Graph

48087 Commits

Author SHA1 Message Date
Francois Perrad
89376e7a0e package/moarvm: bump to version 2019.07.1
Signed-off-by: Francois Perrad <francois.perrad@gadz.org>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-16 21:20:43 +02:00
Christopher McCrory
74cfd2c0a0 package/memcached: bump to version 1.5.19
Signed-off-by: Christopher McCrory <chrismcc@gmail.com>
[Bernd: bump version 1.5.19, added patches to fix cross build]
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2019-10-15 11:23:29 +02:00
James Hilliard
c87ae6c296 package/haveged: bump to version 1.9.8
Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Acked-by: Pierre-Jean Texier <pjtexier@koncepto.io>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2019-10-15 11:20:41 +02:00
James Hilliard
62dbc17ef4 package/intel-microcode: bump to version 20190918
Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2019-10-15 11:20:29 +02:00
Baruch Siach
39db688a37 package/openssh: bump to version 8.1p1
This bump is not marked as security bump. The 8.1 release fixes a XMSS
key parsing code vulnerability. This code can not be enabled without
explicit definition of the WITH_XMSS macro.

Update LICENCE hash; converted to UTF-8.

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2019-10-15 11:20:03 +02:00
Einar Jon Gunnarsson
c799744cf9 package/openresolv: bump to version 3.9.2
Version 3.9.2 strips the trailing comments generated by udhcpc
LICENSE copyright updated to 2019

Signed-off-by: Einar Jon Gunnarsson <tolvupostur@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-15 09:24:24 +02:00
Jörg Krause
4dc4317e35 package/fdk-aac: bump to version 2.0.1
This version is a minor update with a number of crash/fuzz fixes only.

Signed-off-by: Jörg Krause <joerg.krause@embedded.rocks>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-15 09:21:44 +02:00
Baruch Siach
d4d17e52d6 package/tcpdump: security bump to version 4.9.3
CHANGES summary:

    Fix buffer overflow/overread vulnerabilities:
      CVE-2017-16808 (AoE)
      CVE-2018-14468 (FrameRelay)
      CVE-2018-14469 (IKEv1)
      CVE-2018-14470 (BABEL)
      CVE-2018-14466 (AFS/RX)
      CVE-2018-14461 (LDP)
      CVE-2018-14462 (ICMP)
      CVE-2018-14465 (RSVP)
      CVE-2018-14881 (BGP)
      CVE-2018-14464 (LMP)
      CVE-2018-14463 (VRRP)
      CVE-2018-14467 (BGP)
      CVE-2018-10103 (SMB - partially fixed, but SMB printing disabled)
      CVE-2018-10105 (SMB - too unreliably reproduced, SMB printing disabled)
      CVE-2018-14880 (OSPF6)
      CVE-2018-16451 (SMB)
      CVE-2018-14882 (RPL)
      CVE-2018-16227 (802.11)
      CVE-2018-16229 (DCCP)
      CVE-2018-16301 (was fixed in libpcap)
      CVE-2018-16230 (BGP)
      CVE-2018-16452 (SMB)
      CVE-2018-16300 (BGP)
      CVE-2018-16228 (HNCP)
      CVE-2019-15166 (LMP)
      CVE-2019-15167 (VRRP)
    Fix for cmdline argument/local issues:
      CVE-2018-14879 (tcpdump -V)

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-15 09:21:06 +02:00
Baruch Siach
4a96d62749 package/sudo: security bump to version 1.8.28
Fixes CVE-2019-14287: a sudo user may be able to run a command as root
when the Runas specification explicitly disallows root access as long as
the ALL keyword is listed first.

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-15 09:20:57 +02:00
James Hilliard
9cf61746a2 package/network-manager: bump to version 1.21.2
per upstream commit: e9f2ea6c22f36cb7986d2228763629ed44b9e76b
e9f2ea6c22

The update to the GPL text in COPYRIGHT is purely cosmetic.

Added COPYING.LGPL to licenses for libnm.

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-15 09:18:23 +02:00
Fabrice Fontaine
400434dc3d package/libsvgtiny: fix build with latest gperf
Remove second patch and retrieve two upstream patches to fix build with
latest gperf

Fixes:
 - http://autobuild.buildroot.org/results/51be63089209d38c2cf29b0e0b08f73a0e15c467

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-15 09:18:08 +02:00
Aleksander Morgado
9ab55a28e1 package/modem-manager: bump to version 1.10.6
Signed-off-by: Aleksander Morgado <aleksander@aleksander.es>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-14 23:26:45 +02:00
Aleksander Morgado
c289119aa5 package/libqmi: bump to version 1.24.0
Also drop the musl compat patch as it was already included upstream.

Signed-off-by: Aleksander Morgado <aleksander@aleksander.es>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-14 23:23:21 +02:00
Chris Packham
f896c47ad1 package/syslog-ng: bump version to 3.24.1
Drop patch applied upstream.

Signed-off-by: Chris Packham <judge.packham@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-14 23:23:07 +02:00
Chris Packham
6f7b03184b package/gst1-shark: bump version to 0.6.1
Signed-off-by: Chris Packham <judge.packham@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-14 23:22:48 +02:00
Aleksander Morgado
cc3b327ea0 package/libmbim: bump to version 1.20.0
Signed-off-by: Aleksander Morgado <aleksander@aleksander.es>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-14 23:22:09 +02:00
Fabio Estevam
e0d288e754 configs/imx6-sabreauto: select BR2_TARGET_UBOOT_NEEDS_LZOP
Select BR2_TARGET_UBOOT_NEEDS_LZOP in order to avoid the following
build error on a host machine without lzop installed:

/bin/sh: 1: lzop: not found

Fixes: https://gitlab.com/buildroot.org/buildroot/-/jobs/318105190

Suggested-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Fabio Estevam <festevam@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-14 23:15:58 +02:00
Fabrice Fontaine
0ebf031102 package/clamav: fix clamsubmit linking
As suggested by Arnout in review of
https://patchwork.ozlabs.org/patch/1175732/, set OBJC to $(TARGET_CC)

Fixes:
 - http://autobuild.buildroot.org/results/49973b2283c65de5155deaf633cd6569a37af375

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-14 23:14:02 +02:00
Pierre-Jean Texier
cbc744db37 package/ethtool: bump to version 5.3
Signed-off-by: Pierre-Jean Texier <pjtexier@koncepto.io>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-14 22:58:37 +02:00
Pierre-Jean Texier
aeefad4516 package/libubootenv: bump to version 3286c57
Also
 - add hash for license file
 - remove patches (already in version):
	- 0001-fw_printenv-remove-declaration-in-for-loop.patch
	- 0003-uboot_env-fix-build-with-musl-libc.patch
	- 0004-uboot_env-fix-compilation-for-glibc-version-2.28.patch
	- 0005-uboot_env-remove-pthread.h-header-file.patch

Signed-off-by: Pierre-Jean Texier <pjtexier@koncepto.io>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-14 22:51:03 +02:00
Jörg Krause
4fe540a919 package/musl: bump to version 1.1.24
News from upstream [1]:
"""
This version adds the GLOB_TILDE extension for glob, a non-stub
implementation of the catgets localization API, and posix_spawn
extensions for chdir in the child. Many arch-specific bugs are fixed,
some serious, including CVE-2019-14697 affecting several math
functions only on i386, broken riscv64 atomics, broken lseek with
large offsets on x32 and mipsn32, and broken setjmp/longjmp on mipsr6.
Various low-severity, non-arch-specific bugs are also fixed.

In addition, this release cycle sets the internal groundwork for
moving 32-bit archs to 64-bit time_t, needed for their future
viability as Y2038 approaches. Most of the changes are not externally
visible, but some affect which syscalls are used. Notably, mips64
stat-family functions can now report 64-bit file timestamps correctly,
and some time-related breakage on x32 is fixed. In addition, select no
longer stores remaining time back to the timeout argument. Previously,
whether it did so was arch-dependent and merely a consequence of the
Linux syscall behavior, which was found to be mildly non-conforming.
"""

Remove patches 0002 to 0005, which are included in the new version.
Note, that the CVE fix mentioned above is the same as patch 0004.

The license file has changed because Arm was added to the copyright
file.

[1] https://www.musl-libc.org/download.html

Signed-off-by: Jörg Krause <joerg.krause@embedded.rocks>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-14 22:50:36 +02:00
James Hilliard
cda7313a0d package/nginx: bump to version 1.17.4
Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-14 22:39:40 +02:00
Asaf Kahlon
7fafd153b8 package/python-beautifulsoup4: bumo to version 4.8.1
* Add runtime dependency (soupsieve).
* Add hash for license file.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-14 22:24:53 +02:00
Asaf Kahlon
521e36f48a package/python-soupsieve: new package
A modern CSS selector implementation for Beautiful Soup.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-14 22:24:16 +02:00
Asaf Kahlon
5eaf234683 package/python-cheroot: bump to version 8.1.0
* Add host-python-setuptools-scm-git-archive as build-time dependecy.
* Update runtime dependecies list.
* Update license file name (and hash): LICENSE was renamed to LICENSE.md
  with no changes. After that, the copyright year was bumped.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-14 22:20:05 +02:00
Asaf Kahlon
13e560f56f package/python-jaraco-functools: new package
Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-14 22:17:53 +02:00
Asaf Kahlon
9359325c60 package/python-setuptools-scm-git-archive: new package
The package is only needed for building Python packages, so
it's going to be compiled for host only.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-14 22:14:26 +02:00
Asaf Kahlon
c35fc2ff38 package/python-pyroute2: bump to version 0.5.7
Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-14 22:04:02 +02:00
Asaf Kahlon
6d5d926cdd package/python-prompt-toolkit: bump to version 2.0.10
Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-14 22:03:47 +02:00
Asaf Kahlon
48ef0d1b2e package/python-pathlib2: bump to version 2.3.5
And remove scandir from runtime dependencies.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-14 22:03:19 +02:00
Asaf Kahlon
4e44552cf7 package/python-meld3: bump to version 2.0.0
Also add hashes for license files.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-14 22:02:35 +02:00
Asaf Kahlon
5709402e4c package/python-ibmiotf: bump to version 0.4.0
* Update dependency list.
* Take tarball from PyPI.
* Update license hash: same content, changed to UNIX line endings.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-14 21:59:26 +02:00
Asaf Kahlon
4a423d2d72 package/python-dataproperty: bump to version 0.43.1
* Update dependency list.
* Update license hash: same content, line endings are now CRLF.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-14 21:45:50 +02:00
Asaf Kahlon
c053127cda package/python-asn1crypto: bump to version 1.1.0
Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-14 21:45:28 +02:00
James Hilliard
5cce413eb1 package/pango: bump to version 1.44.6
Switch build system from autotools to meson.

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-14 21:41:59 +02:00
Fabrice Fontaine
ad8a032b67 package/policycoreutils: fix build with NLS
Fixes:
 - http://autobuild.buildroot.org/results/43b5580fa9f26eac71afa9f3cca413f2791c054d

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-14 21:40:30 +02:00
Asaf Kahlon
372088ca7c package/python-ws4py: add patch to fit Python 3.7 syntax
Patch comes from an upstream pull request, but doesn't apply as is since
the test is not part of the tarball.

Fixes:
 - http://autobuild.buildroot.net/results/2999d8de19ed7bf7a5ce148da4b1b98f144bad9b

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
2019-10-14 09:26:48 +02:00
Bernd Kuhls
c898f95c27 package/mesa3d: add explicit option for Gallium VDPAU state tracker
Dependencies are too complex to have them handled automatically:

- needs mesa3d platform x11:
  https://cgit.freedesktop.org/mesa/mesa/tree/meson.build?h=19.2#n452
- needs specific gallium drivers:
  https://cgit.freedesktop.org/mesa/mesa/tree/meson.build?h=19.2#n459

Fixes:
http://autobuild.buildroot.net/results/a2c/a2c120193f5bace3a8bbcfa728dae7e290e15d6c/

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Reviewed-by: Romain Naour <romain.naour@gmail.com>
[Arnout: fix check-package issue]
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
2019-10-13 23:15:25 +02:00
Carlos Santos
c2856aa285 package/x11r7/xserver_xorg-server: fix mesa3d glx support
Commit 5cb821d563 added a new option to enable GLX support in mesa3d.
Before that, GLX was implicitly enabled whenever a DRI driver was built.
Adjust xserver_xorg-server to use the new GLX option instead of just
DRI.

Signed-off-by: Carlos Santos <unixmania@gmail.com>
Acked-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
2019-10-13 22:56:04 +02:00
Thomas Petazzoni
c13af538d7 package/libcap: bump to 2.27
This fixes breakage with gperf 3.1.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
2019-10-13 22:48:19 +02:00
Christopher McCrory
a42f45c5cb package/gperf: bump to version 3.1
Signed-off-by: Christopher McCrory <chrismcc@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
2019-10-13 22:48:03 +02:00
Petr Vorel
fb4588d056 package/ltp-testsuite: update patch
0002-pkeys-Fix-uclibc-build-caused-by-conflicting-signatu.patch
(patch was accepted in a slightly different form)

Signed-off-by: Petr Vorel <petr.vorel@gmail.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
2019-10-13 22:45:09 +02:00
Pierre-Jean Texier
cae6c05d24 DEVELOPERS: add Pierre-Jean Texier for mongoose
Signed-off-by: Pierre-Jean Texier <pjtexier@koncepto.io>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
2019-10-13 22:43:44 +02:00
Pierre-Jean Texier
aeee0b9bd7 package/mongoose: security bump to version 6.16
Fixes the following security vulnerability:

CVE-2019-13503: mq_parse_http in mongoose.c in Mongoose 6.15
has a heap-based buffer over-read.

See https://github.com/cesanta/mongoose/releases/tag/6.16

Signed-off-by: Pierre-Jean Texier <pjtexier@koncepto.io>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
2019-10-13 22:43:41 +02:00
Fabrice Fontaine
be09d22f50 package/clamav: select musl-fts if not glibc
By selecting musl-fts, a build failure on internal fts is avoided

Fixes:
 - http://autobuild.buildroot.org/results/8f0d45202c9a7dbb4d0c7431040384990f04008b

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
2019-10-13 22:19:33 +02:00
Fabrice Fontaine
aa36ff8f1a package/gst1-plugins-bad: drop patch
Patch is already in version in 1.16.1 thanks to
93a374d18e

Fixes:
 - http://autobuild.buildroot.org/results/9d54bf2ff8d557f98afdcb03f38053bcebf72e48

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
2019-10-13 22:16:59 +02:00
Bernd Kuhls
a75aab5a4c package/{mesa3d, mesa3d-headers}: bump version to 19.2.1
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
2019-10-13 22:00:47 +02:00
Fabrice Fontaine
99ce85cdb8 package/elfutils: fix build with musl-fts
Drop second patch and renumber the rest. Add explicit dependency on
musl-fts and link with it.

Fixes:
 - http://autobuild.buildroot.org/results/3f20ae917fde9d95eb061b779a5992db91355a57

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
2019-10-13 22:00:32 +02:00
Asaf Kahlon
bc35688239 package/python-arrow: bump to version 0.15.2
* Update dependency list.
* Add hash for license file.
* Remove docs/_themes/COPYING.txt from _LICENSE_FILES (the whole
  _themes directory was removed)

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-12 22:03:05 +02:00
Asaf Kahlon
140f61af5f package/python-backports-functools-lru-cache: new package
Backport of functools.lru_cache from Python 3.3.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2019-10-12 22:01:20 +02:00