Required changes:
* Add qualifying '.' to scripts or to @INC, as appropriate since we're
enabling default_inc_excludes_dot;
* Add new platform/library definitions like double-double format and
locale library functions/headers;
* Delete patch 020 as it's been upstreamed;
Optional changes:
* Instead of using -@rm and having that fail, emit an error message,
and be ignored, just use @rm -f instead which will always succeed.
Security
[CVE-2017-12837] Heap buffer overflow in regular expression compiler
Compiling certain regular expression patterns with the case-insensitive
modifier could cause a heap buffer overflow and crash perl. This has
now been fixed. [perl #131582]
[CVE-2017-12883] Buffer over-read in regular expression parser
For certain types of syntax error in a regular expression pattern, the
error message could either contain the contents of a random, possibly
large, chunk of memory, or could crash perl. This has now been fixed.
[perl #131598]
[CVE-2017-12814] $ENV{$key} stack buffer overflow on Windows
A possible stack buffer overflow in the %ENV code on Windows has been
fixed by removing the buffer completely since it was superfluous anyway.
[perl #131665]
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
The standard way to pass -rdynamic (or -Wl,--dynamic-export) is via
the $ccdlflags variable. Do what is best practice.
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
Originally as PR #2383 but rewritten.
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
Signed-off-by: Alexander Ryzhov <openwrt@ryzhov-al.ru>
An unneccesary include in the init file was causing problems when using the package builder.
Signed-off-by: Jonathan Bennett <JBennett@incomsystems.biz>
- fix CVE-2017-9798
- fix#4926
make http2 support configurable, in case of enables libnghttp2
package dont build http2. instead use CONFIG_APACHE_HTTP2 to
enable http2 support
Signed-off-by: Thomas Heil <heil@terminal-consulting.de>
Added new "network" section with option "network", which takes network
interface name.
The start-up is migrated to use procd and depend either on the "network"
interface (after resolving it to a physical device), or on the PCAP_INTF
option from "config" section (usual place for raw interface name for
fwknopd). When the uci_enabled option is disabled, the value of PCAP_INTF
is taken from the user-provided fwknopd.conf.
Also fixed UCI_ENABLED variable evaluation.
Signed-off-by: Oldřich Jedlička <oldium.pro@gmail.com>
The l7-filter project hasn't been active for a very long time and support in
OpenWrt/LEDE has been dropped making this package orphaned.
Support in qos-script removed: bdb6c313de
(SVN: r45425)
Support in tree removed: d0ba3bb1e2
(SVN: r45423)
Signed-off-by: Daniel Engberg <daniel.engberg.lists@pyret.net>
Philip Prindeville
Etienne Champetier
Hannu Nyman
Jonathan Bennett
Steven Hessing
Alexandru Ardelean
Kevin Darbyshire-Bryant
Leonardo Medici
Leonardo Medici
Peter Wagner
Thomas Heil
Ted Hess
Eric Luehrsen
Rosen Penev
Oldřich Jedlička
Daniel Engberg
Stijn Tintel
Hauke Mehrtens
Federico Di Marco
Michael Heimpold