This change bumps Python3 version to 3.7.1.
Patch `002-fix-implicit-dh-free-declaration.patch` is now included in
upstream.
This also fixes CVE-2018-1061.
https://www.cvedetails.com/cve/CVE-2018-1061/
Compile & run-tested on x86.
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
Building would not work for packages that depended on this when the
build directory was deleted after compiled, so they failed when
BUILDBOT=y.
Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
All of these are either not needed or not valid.
Added a patch to remove the OPENSSL_WITH_DEPRECATED dependency.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
* proactively scan and switch to a higher prioritized uplink,
despite of an already existing connection,
this is configurable via 'trm_proactive' option
(default '1', enabled)
* fix some minor list trim issues
* optimize wlan scanning behavior
* refine debug messages
Signed-off-by: Dirk Brenken <dev@brenken.org>
Added missed 'g' in Bangkok for zoneinfo-simple package.
Also removed dedicated version for code, as we shouldn't mix different versions.
Signed-off-by: Vladimir Ulrich <admin@evl.su>
Previously, an old git revision was used. Moved to stable. Reorganized the Makefile as a result.
The stable version is based on a newer git revision. UScan can also properly track this now.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
Adopt the package from the oldpackages repo at https://git.archive.openwrt.org/$
Update to version 2.3.10 (released Nov 2016)
Update source URL
Depend only on GLib2, not glib1.2
Signed-off-by: Peter Denison <openwrt@marshadder.org>
Added zabbix-server-frontend package, which allow to use website
interface.
To make frontend working, it is required to add some options to uhttpd
config witch allow php working.
uci add_list uhttpd.main.index_page='index.html, default.html,
index.php'
uci add_list uhttpd.main.interpreter='.php=/usr/bin/php-cgi'
uci set uhttpd.main.index_file='index.html, default.html, index.php'
uci commit
Compile tested: Yes, brcm2708
Run tested: Yes, brcm2708
Signed-off-by: Krystian Kozak <krystian.kozak20@gmail.com>
A multi-year DNSSEC root key update is in progress, as described at
https://www.isc.org/downloads/bind/bind-keys/. This change refreshes the
bind.keys file, ensuring that the new key, in place as of 2018-10-11,
will be recognized and trusted.
Signed-off-by: Noah Meyerhans <frodo@morgul.net>
delv is a tool for sending DNS queries and validating the results, using the
same internal resolver and validator logic as named.
Signed-off-by: Noah Meyerhans <frodo@morgul.net>
This includes the fix for CVE-2018-5738: When recursion is enabled but the
allow-recursion and allow-query-cache ACLs are not specified, they should be
limited to local networks, but they were inadvertently set to match the default
allow-query, thus allowing remote queries.
Signed-off-by: Noah Meyerhans <frodo@morgul.net>
Full changelog at https://c-ares.haxx.se/changelog.html
Of interest:
* fixes warnings with modern gcc
* reports not found for onion addresses per RFC7686
Signed-off-by: Karl Palsson <karlp@etactica.com>
Bump from 0.7.5 to 0.7.6. Upstream changelog:
Fixed CVE-2018-10933
Added support for OpenSSL 1.1
Added SHA256 support for ssh_get_publickey_hash()
Fixed config parsing
Fixed random memory corruption when importing pubkeys
Backported upstream patches since 0.7.6 to fix interactive
authentication issues amongst other things:
9d5cf209 libcrypto: Fix memory leak in evp_final()
10397321 gssapi: Set correct state after sending GSSAPI_RESPONSE (select mechanism OID)
7ad80ba1 server: Fix compile error
acb0e4f4 examples: Explicitly track auth state in samplesshd-kbdint
3fe7510b messages: Check that the requested service is 'ssh-connection'
734e3ce6 server: Set correct state after sending INFO_REQUEST (Kbd Interactive)
e4c6d591 packet: Add missing break in ssh_packet_incoming_filter()
f81ca616 misc: Add strndup implementation if not provides by the OS
Refresh patches.
Remove local backport for OpenSSL 1.1 support as is now in release
Remove PKG_INSTALL & CMAKE vars that are defaulted anyway
Add PKG_CPE_ID:=cpe:/a:libssh:libssh for CVE tracking
Remove BROKEN tag as is no longer broken
Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>