Includes fixes for:
* CVE-2021-3177 - ctypes: Buffer overflow in PyCArg_repr
* CVE-2021-23336 - urllib parse_qsl(): Web cache poisoning - semicolon
as a query args separator
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
A treewide script ran to find dirty patches, this was the only packages
found with issues. From now on the CI should no longer return false
positives on dirty patches.
Signed-off-by: Paul Spooren <mail@aparcar.org>
Switch to AUTORELEASE for easier changes.
Fix not having all of the libraries.
Remove upstream patches and refresh other one.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
The crude loop I wrote to come up with this changeset:
find -L package/feeds/packages/ -name patches | \
sed 's/patches$/refresh/' | sort | xargs make
Signed-off-by: Ilya Lipnitskiy <ilya.lipnitskiy@gmail.com>
Major changes for version 3.3.5 are:
- Rename "streams" parameter to "vfs objects = streams_xattr".
- Enable smb2 leases by default.
- Ignore ksmbd.subauth creation failure.
- Fix bugs that related to guest ok = yes.
Signed-off-by: Martin Blumenstingl <martin.blumenstingl@googlemail.com>
Major changes for version 3.3.5 are:
- Add support for version 4 dos attribute structure of samba.
- Implement maximal allowed desired access.
- Fix several error handling.
- Fix a few smbtorture failures.
Signed-off-by: Martin Blumenstingl <martin.blumenstingl@googlemail.com>
* fix search string/pipe preparation for the background service
* fix IPSet maxelem limitation, made it more flexible
* fix potential error during resume action
* add Cisco Talos IP blacklist
* update readme
Signed-off-by: Dirk Brenken <dev@brenken.org>
We should be using "00" to deal with alphabetical order.
Fixes: e9a126c145 ("rng-tools: start as early as possible")
Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
Raspberry Pi devices (bcm2708) need this to get from:
[ 102.310494] random: crng init done
to:
[ 12.539744] random: crng init done
Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
Bugs:
- Fix SSH hostname parsing when it contains leading 's', 'h', and remove the quiet
option that was hiding the error (via docker-py bump to 4.4.2)
- Fix key error for --no-log-prefix option
- Fix incorrect CLI environment variable name for service profiles: COMPOSE_PROFILES
instead of COMPOSE_PROFILE
- Fix fish completion
Miscellaneous:
- Bump cryptography to 3.3.2
- Remove log driver filter
Signed-off-by: Javier Marcet <javier@marcet.info>