Commit Graph

65454 Commits

Author SHA1 Message Date
Bernd Kuhls
96db6a8ac9 package/rsync: bump version to 3.2.7
Release notes: https://download.samba.org/pub/rsync/NEWS

Switched _SITE and package URL to https.

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2022-10-29 18:09:43 +02:00
Bernd Kuhls
66c05c24ba package/php: security bump version to 8.1.12
Changelog: https://www.php.net/ChangeLog-8.php#8.1.12

Fixes:
- CVE-2022-31630: http://bugs.php.net/81739
- CVE-2022-37454: http://bugs.php.net/81738

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2022-10-29 18:09:22 +02:00
Fabrice Fontaine
6905bbc143 package/dahdi-tools: bump to version 3.2.0
https://github.com/asterisk/dahdi-tools/compare/v3.1.0...v3.2.0

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2022-10-29 18:08:41 +02:00
Fabrice Fontaine
6cbfed0dbf package/dahdi-linux: bump to version 3.2.0
- Use official tarball
- This bump will fix the following build failures with kernel >= 5.16:

/home/autobuild/autobuild/instance-6/output-1/build/dahdi-linux-5c840cf43838e0690873e73409491c392333b3b8/drivers/dahdi/wct4xxp/base.c:45:10: fatal error: stdbool.h: No such file or directory
   45 | #include <stdbool.h>
      |          ^~~~~~~~~~~

[...]

../dahdi-linux-5c840cf43838e0690873e73409491c392333b3b8/drivers/dahdi/xpp/xbus-core.c: In function ‘xbus_read_proc_open’:
../dahdi-linux-5c840cf43838e0690873e73409491c392333b3b8/drivers/dahdi/xpp/xbus-core.c:1845:43: error: implicit declaration of function ‘PDE_DATA’; did you mean ‘NODE_DATA’? [-Werror=implicit-function-declaration]
 1845 |  return single_open(file, xbus_proc_show, PDE_DATA(inode));
      |                                           ^~~~~~~~
      |                                           NODE_DATA

5c840cf438...v3.2.0

Fixes:
 - http://autobuild.buildroot.org/results/3f23559f01a7783d82ad4e0b2d6792171e6f2b79
 - http://autobuild.buildroot.org/results/f3f226fb661a6b1998381f5fb7cb306771c2ecc0

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2022-10-29 18:08:18 +02:00
Fabrice Fontaine
7c7b4f88bc package/pahole: bump to version 1.24
https://git.kernel.org/pub/scm/devel/pahole/pahole.git/tree/NEWS?h=v1.24

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2022-10-29 18:07:49 +02:00
Fabrice Fontaine
21531fa31a package/zsh: security bump to version 5.9
Security and bug fix release with several feature additions.

https://zsh.sourceforge.io/releases.html

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2022-10-29 18:07:15 +02:00
Bernd Kuhls
3383613ad3 package/fetchmail: bump version to 6.4.34
Switched _SITE to https.

Removed patch which was applied upstream:
28c476ec45

Release notes:
https://sourceforge.net/p/fetchmail/mailman/message/37721221/
https://sourceforge.net/p/fetchmail/mailman/message/37699234/
https://sourceforge.net/p/fetchmail/mailman/message/37687601/
https://sourceforge.net/p/fetchmail/mailman/message/37681775/
https://sourceforge.net/p/fetchmail/mailman/message/37645690/

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2022-10-29 18:06:24 +02:00
Fabrice Fontaine
18b5d6205d package/wolfssl: security bump to version 5.5.2
In the case that the WOLFSSL_CALLBACKS macro is set when building
wolfSSL, there is a potential heap over read of 5 bytes when handling
TLS 1.3 client connections. This heap over read is limited to wolfSSL
builds explicitly setting the macro WOLFSSL_CALLBACKS, the feature does
not get turned on by any other build options. The macro
WOLFSSL_CALLBACKS is intended for debug use only, but if having it
enabled in production, users are recommended to disable
WOLFSSL_CALLBACKS. Users enabling WOLFSSL_CALLBACKS are recommended to
update their version of wolfSSL. CVE 2022-42905

https://github.com/wolfSSL/wolfssl/releases/tag/v5.5.2-stable

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2022-10-29 18:05:45 +02:00
Bernd Kuhls
8941d02bf1 package/samba4: security bump version to 4.15.11
Added patch from Gentoo to fix uClibc build:
access.c:(.text+0x1e8): undefined reference to `innetgr'

Release notes:
https://www.samba.org/samba/history/samba-4.15.8.html

https://www.samba.org/samba/history/samba-4.15.9.html
o CVE-2022-2031:  Samba AD users can bypass certain restrictions associated with
                  changing passwords.
                  https://www.samba.org/samba/security/CVE-2022-2031.html

o CVE-2022-32744: Samba AD users can forge password change requests for any user.
                  https://www.samba.org/samba/security/CVE-2022-32744.html

o CVE-2022-32745: Samba AD users can crash the server process with an LDAP add
                  or modify request.
                  https://www.samba.org/samba/security/CVE-2022-32745.html

o CVE-2022-32746: Samba AD users can induce a use-after-free in the server
                  process with an LDAP add or modify request.
                  https://www.samba.org/samba/security/CVE-2022-32746.html

o CVE-2022-32742: Server memory information leak via SMB1.
                  https://www.samba.org/samba/security/CVE-2022-32742.html

https://www.samba.org/samba/history/samba-4.15.10.html

https://www.samba.org/samba/history/samba-4.15.11.html
o CVE-2022-3437:  There is a limited write heap buffer overflow in the GSSAPI
                  unwrap_des() and unwrap_des3() routines of Heimdal (included
                  in Samba).
                  https://www.samba.org/samba/security/CVE-2022-3437.html

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2022-10-29 18:05:34 +02:00
James Hilliard
014ec19dfe package/python-aiojobs: bump to version 1.1.0
Add new python-async-timeout runtime dependency.

License hash changed due to removal of full license text:
db3e047550

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-28 08:58:33 +02:00
Fabrice Fontaine
a5faa07794 package/empty: bump to version 0.6.22b
- Drop EMPTY_STRIP_COMPONENTS (not needed anymore)
- Update hash of COPYRIGHT (update in year with
  c308663530)

10.08.2022 0.6.22b
--------------------------------------------------------------------------------
* Man pages directory parameterization
* Tarball clenup, repacking

https://sourceforge.net/p/empty/code/ci/master/tree/CHANGELOG

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-28 08:56:57 +02:00
Fabrice Fontaine
123fa2d801 package/libffi: bump to version 3.4.4
3.4.4 Oct-23-2022
    Important aarch64 fixes, including support for linux builds
      with Link Time Optimization (-flto).
    Fix x86 stdcall stack alignment.
    Fix x86 Windows msvc assembler compatibility.
    Fix moxie and or1k small structure args.

https://github.com/libffi/libffi/releases/tag/v3.4.4

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-28 08:56:03 +02:00
Fabrice Fontaine
a30e31a05e package/sratom: bump to version 0.6.14
- Update hash of COPYING (standard ISC licence used since
  145ed2fe97)
- meson must be used since
  75e647def0

https://github.com/lv2/sratom/blob/v0.6.14/NEWS

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-28 08:55:15 +02:00
Fabrice Fontaine
5fe9ae335f package/lv2: bump to version 1.18.10
- Update hash of COPYING (standard ISC text used since
  0030682770)
- meson must be used since
  d4a970f696

https://github.com/lv2/lv2/blob/v1.18.10/NEWS

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-28 08:55:04 +02:00
Fabrice Fontaine
1f54af8c4f package/lz4: bump to version 1.9.4
LZ4 v1.9.4 is a maintenance release, featuring a substantial amount
(~350 commits) of minor fixes and improvements, making it a recommended
upgrade. The stable portion of liblz4 API is unmodified, making this
release a drop-in replacement for existing features.

- Drop patch (already in version)
- Update hash of lib/LICENSE (update in year with
  87a80acbe7)

https://github.com/lz4/lz4/releases/tag/v1.9.4

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-28 08:53:52 +02:00
Fabrice Fontaine
ae29bb2880 package/lz4: fix LZ4_CPE_ID_VENDOR
cpe:2.3🅰️yann_collet:lz4, which was added by commit
63332c33aa, was never a valid CPE
identifier for this package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Ayann_collet%3Alz4

cpe:2.3🅰️lz4_project:lz4 is a valid CPE identifier for this package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Alz4_project%3Alz4

While at it, also drop the note added by commit
45db4bb08e

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-28 08:53:13 +02:00
Francois Perrad
8ab39ac65e package/luajit: bump to 6c4826f12c4d33b8b978004bc681eb1eef2be977
Signed-off-by: Francois Perrad <francois.perrad@gadz.org>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-28 08:52:36 +02:00
James Hilliard
488055eb58 package/python-pyzmq: bump to version 24.0.1
Migrate to setuptools infrastructure.

Add new host-python-packaging dependency.

Refresh zmq version override patch.

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-28 08:49:48 +02:00
James Hilliard
32d8e23b97 package/python-numpy: bump to version 1.23.4
License hash changed due to date update:
4fc42f99b7

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-28 08:49:47 +02:00
James Hilliard
671af46426 package/python-greenlet: bump to version 1.1.3.post0
Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-28 08:49:46 +02:00
James Hilliard
aff25f871a package/python-bottle: bump to version 0.12.23
Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-28 08:49:45 +02:00
Baruch Siach
f03ae60451 boot/arm-trusted-firmware: don't enable SSP by default
SSP support requires support in ATF platform code. Not all platforms
implement plat_get_stack_protector_canary() hook. The result is build
failure:

(.text.asm.update_stack_protector_canary+0x4): undefined reference to `plat_get_stack_protector_canary'

Commit cf176128ec ("boot/arm-trusted-firmware: add SSP option")
originally introduces this issue. But then commit ccac9a5bbb
("boot/arm-trusted-firmware: don't force ENABLE_STACK_PROTECTOR") hid
the problem by effectively disabling SSP for all platforms. So only
after commit 09acc7cbc9 ("boot/arm-trusted-firmware: fix SSP
support") the issue showed up.

Make SSP an opt-in for platform that actually provide the
plat_get_stack_protector_canary() hook.

Cc: Sergey Matyukevich <geomatsi@gmail.com>
Cc: Dick Olsson <hi@senzilla.io>
Tested-by: Heiko Thiery <heiko.thiery@gmail.com>
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-28 08:46:15 +02:00
David Johnson
ce2e91bdc5 package/tzdata: install leap-seconds.list into results
add leap-seconds.list to installed files so it can be used by other packages

specifically, ntpd's ntp.conf can now include:
leapfile /usr/share/zoneinfo/leap-seconds.list

Signed-off-by: David Johnson <dave-git@centerclick.org>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-28 08:45:40 +02:00
Baruch Siach
400b63432e libcurl: security bump to version 7.86.0
Version 7.85.0 fixes CVE-2022-35252: When curl retrieves and parses
cookies from an HTTP(S) server, it accepts cookies using control codes
(byte values below 32). When cookies that contain such control codes are
later sent back to an HTTP(S) server, it might make the server return a
400 response. Effectively allowing a "sister site" to deny service to
siblings.

Drop upstream patches and autoreconf.

Cc: Matt Weber <matthew.weber@collins.com>
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-28 08:45:07 +02:00
Fabrice Fontaine
9f69217158 package/libgee: bump to version 0.20.6
https://gitlab.gnome.org/GNOME/libgee/-/blob/0.20.6/NEWS

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-27 12:49:30 +02:00
Fabrice Fontaine
559a46ff34 package/ksmbd-tools: bump to version 3.4.6
https://github.com/cifsd-team/ksmbd-tools/releases/tag/3.4.6

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-27 12:49:21 +02:00
Fabrice Fontaine
e75c1d888b package/libpfm4: bump to version 4.12.0
Major updates:
 - Add IBM Power10 core PMU support
 - Add Intel IcelakeX core PMU support
 - Add Intel SapphireRapid core PMU support
 - Add Intel SapphireRapid RAPL PMU support
 - Update Intel Icelake RAPL PMU support
 - Add support HiSilicon Kunpeng uncore PMUs
 - Add support HiSilicon Kunpeng core PMU
 - Remove arm_fujitsu_a64fx_support for ARM(32 bit)
 - Update Intel Skylake event table
 - Add Intel PERF_METRICS event support for Icelake
 - Add support for ARM Neoverse N2 core PMU
 - Add ARM SPE events for Neoverse N1 core PMU
 - Add cgroup-switches software event
 - Add Intel Tigerlake and Rocketlake core PMU support
 - Add AMD64 Fam19h Zen3 L3 PMU support
 - Add AMD64 Fam17h Zen2 RAPL support
 - Add AMD64 Fam19h Zen3 core PMU support
 - Add RAPL for AMD64 Fam19h Zen3 processor
 - Update ARM N1 event table
 - Update AMD Fam17h Zen2 event table
 - s390: Update counter definition for IBM z16

https://perfmon2.sourceforge.net/

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-27 12:49:15 +02:00
Thomas Petazzoni
f51600d04c package/mdio-tools: fix Config.in comment dependency
We want to show the headers >= 5.1 Config.in comment when the
BR2_LINUX_KERNEL is satisfied, not when it isn't.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-27 11:55:40 +02:00
Robert Marko
8fdf8731e7 package/mdio-tools: new package
mdio-tools are kernel module and accompanying tools for low-level
debugging of devices attached on MDIO bus like PHY-s, switches etc.

Userspace tools provide C22 or C45 reads and writes, benchmarking
and even dedicated Marvell Link Street tools via the included
kernel module.

Signed-off-by: Robert Marko <robimarko@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-27 11:52:44 +02:00
Fabrice Fontaine
3cf8930508 package/iproute2: bump to version 6.0.0
Drop patches (already in version)

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-27 08:54:18 +02:00
Fabrice Fontaine
9376ed7bc4 package/faad2: bump to version 2.10.1
https://github.com/knik0/faad2/releases/tag/2.10.1

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-27 08:54:08 +02:00
Danilo
777f8fbec5 package/tealdeer: bump version to 1.6.1
Signed-off-by: Danilo Bargen <mail@dbrgn.ch>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-27 08:51:22 +02:00
Fabrice Fontaine
810c0eecf1 package/shapelib: fix CVE-2022-0699
A double-free condition exists in contrib/shpsort.c of shapelib 1.5.0
and older releases. This issue may allow an attacker to cause a denial
of service or have other unspecified impact via control over malloc.

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-27 08:50:42 +02:00
Fabrice Fontaine
1545a88f9d package/shapelib: add SHAPELIB_CPE_ID_VENDOR
cpe:2.3🅰️osgeo:shapelib is a valid CPE identifier for this package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Aosgeo%3Ashapelib

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-27 08:50:26 +02:00
Fabrice Fontaine
5335c9d12c package/iperf: fix build without threads
Fix the following build failure without threads raised since bump to
version 2.1.8 in commit ede944f535:

Settings.cpp: In function 'void Settings_Interpret(char, const char*, thread_Settings*)':
Settings.cpp:1281:9: error: break statement not within loop or switch
 1281 |         break;
      |         ^~~~~

Fixes:
 - http://autobuild.buildroot.org/results/2bcddf8439f6913fdf19b1fc2d33999a787ab3b2

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-27 08:50:02 +02:00
Fabrice Fontaine
cff78c34fb package/usbguard: fix build without asciidoc
Set ac_cv_prog_A2X to disable build of documentation and avoid the
following build failure without a working a2x raised since at least bump
to version 1.1.1 in commit ad21d84a58:

a2x -v -f manpage doc/man/usbguard.1.adoc -D ./$(dirname doc/man/usbguard.1.roff)
a2x -v -f manpage doc/man/usbguard-dbus.8.adoc -D ./$(dirname doc/man/usbguard-dbus.8.roff)
/nvmedata/autobuild/instance-5/output-1/host/bin/python3: Error while finding module specification for 'asciidoc.a2x' (ModuleNotFoundError: No module named 'asciidoc')

Fixes:
 - http://autobuild.buildroot.org/results/e41950f3cd4bd83d9b067af498757cb9d2f207ef

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-27 08:49:32 +02:00
Tobias Waldekranz
b3f915c656 package/kmemd: new package
kmemd let's you inspect a live Linux kernel's memory using GDB.

Signed-off-by: Tobias Waldekranz <tobias@waldekranz.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-26 23:30:13 +02:00
Tobias Waldekranz
c86b69a16d package/libbpf: install in the correct lib directory
The libbpf build system currently uses the output of "uname -m" to
determine if the library should be installed in "lib" or
"lib64". However, uname -m returns the architecture of the build
machine, which often has nothing to do with the target CPU
architecture.

A patch has been submitted and accepted upstream to address this
issue, by using the $(CC) -dumpmachine output instead. This ensures
libbpf is installed in either "lib" or "lib64" depending on the
bitness of the target CPU architecture.

Signed-off-by: Tobias Waldekranz <tobias@waldekranz.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-26 22:35:14 +02:00
Tobias Waldekranz
51ecbe500f package/libbpf: remove architecture restrictions
Since Buildroot commit 3145adfb69 ("package/libbpf: needs headers >=
4.13"), libbpf depends on Linux headers >= 4.13. This requirement
renders the explicit list of supported architectures, previously added
in f693354c30 overly restrictive, as the syscall number for bpf(2)
has been defined since Linux 3.18.

Commit f693354c30 ("package/libbpf: add
BR2_PACKAGE_LIBBPF_ARCH_SUPPORTS") was introduced to fix a build issue
where a toolchain using very old kernel headers (3.13) failed to build
libbpf for ARM, but these architecture dependencies are no longer
needed due to the bump on the kernel headers version requirement.

Signed-off-by: Tobias Waldekranz <tobias@waldekranz.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-26 22:08:25 +02:00
Giulio Benetti
9c2dec7a2b package/wilc-driver: disable package for s390x architecture
s390x doesn't support CONFIG_WIRELESS in Linux so let's disable this
package for this architecture.

Signed-off-by: Giulio Benetti <giulio.benetti@benettiengineering.com>
Reviewed-by: Kris Bahnsen <kris@embeddedTS.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-26 21:51:27 +02:00
Giulio Benetti
1e18cc291b package/rtl8821au: disable package for s390x architecture
s390x doesn't support CONFIG_WIRELESS in Linux so let's disable this
package for this architecture.

Signed-off-by: Giulio Benetti <giulio.benetti@benettiengineering.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-26 21:51:25 +02:00
Giulio Benetti
895692594f package/rtl8812au-aircrack-ng: disable package for s390x architecture
s390x doesn't support CONFIG_WIRELESS in Linux so let's disable this
package for this architecture.

Signed-off-by: Giulio Benetti <giulio.benetti@benettiengineering.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-26 21:51:23 +02:00
Giulio Benetti
5835a64d36 package/rtl8723ds: disable package for s390x architecture
s390x doesn't support CONFIG_WIRELESS in Linux so let's disable this
package for this architecture.

Signed-off-by: Giulio Benetti <giulio.benetti@benettiengineering.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-26 21:51:22 +02:00
Giulio Benetti
bff3a80402 package/rtl8723bu: disable package for s390x architecture
s390x doesn't support CONFIG_WIRELESS in Linux so let's disable this
package for this architecture.

Signed-off-by: Giulio Benetti <giulio.benetti@benettiengineering.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-26 21:51:20 +02:00
Giulio Benetti
33400378d0 package/rtl8189fs: disable package for s390x architecture
s390x doesn't support CONFIG_WIRELESS in Linux so let's disable this
package for this architecture.

Signed-off-by: Giulio Benetti <giulio.benetti@benettiengineering.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-26 21:51:19 +02:00
Giulio Benetti
682224d6f6 package/rtl8189es: disable package for s390x architecture
s390x doesn't support CONFIG_WIRELESS in Linux so let's disable this
package for this architecture.

Fixes:
http://autobuild.buildroot.net/results/693053491ba61edcff0f75a4f30c13958e7e12ce/

Signed-off-by: Giulio Benetti <giulio.benetti@benettiengineering.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-26 21:51:17 +02:00
James Hilliard
7630d0dde3 package/{glibc, localedef}: bump to version 2.36-66-ga1dc0be03c9dd850b864bd7a9c03cf8e396eb7ca
Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-26 21:50:06 +02:00
Fabrice Fontaine
26ec7c4d02 package/expat: security bump to version 2.5.0
Expat 2.5.0 has been released earlier today. Most importantly, this
release fixes CVE-2022-43680: a heap use-after-free vulnerability after
overeager destruction of a shared DTD in function
XML_ExternalEntityParserCreate in out-of-memory situations, with
expected impact of denial of service or potentially arbitrary code
execution.

https://blog.hartwork.org/posts/expat-2-5-0-released
https://github.com/libexpat/libexpat/blob/R_2_5_0/expat/Changes

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-26 21:49:56 +02:00
Christian Stewart
ba57ca36b9 package/go: security bump to 1.19.2
go1.19.2 includes security fixes to the archive/tar, net/http/httputil, and
regexp packages, as well as bug fixes to the compiler, the linker, the runtime,
and the go/types package.

https://go.dev/doc/devel/release#go1.19
https://github.com/golang/go/issues?q=milestone%3AGo1.19.2+label%3ACherryPickApproved

Signed-off-by: Christian Stewart <christian@paral.in>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-26 21:49:53 +02:00
Romain Naour
e548b7642a package/glibc: fix x86_64 builds with -Os
Backport upstream commit for x86_64 builds with -Os reported by [1].

[1] https://sourceware.org/bugzilla/show_bug.cgi?id=29576

Fixes:
https://gitlab.com/buildroot.org/buildroot/-/jobs/3134229902
https://gitlab.com/buildroot.org/buildroot/-/jobs/3134229956
http://autobuild.buildroot.net/results/5b442f95587ddc65a995bbd9e310c88a66c55b1f

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Reviewed-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2022-10-26 15:49:02 +02:00