Fix only release, including:
* CVE-2018-16396: Tainted flags are not propagated in Array#pack
and String#unpack with some directives
* CVE-2018-16395: OpenSSL::X509::Name equality check does not work
correctly
Signed-off-by: Luiz Angelo Daros de Luca <luizluca@gmail.com>
This adds a couple of patches when setting some openssl options:
* ECDSA code in openssh-compat.h and libressl-api-compat.c needs to be
be guarded by OPENSSL_HAS_ECC; otherwise, it will not build with
openssl compiled without ECC support.
* Fix openssl version number in openbsd-compat/openssl-compat.c which
failed to compile --with-ssl-engine; this option is used when
CONFIG_OPENSSL_ENGINE_CRYPTO=y
Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
Signed-off-by: Peter Wagner <tripolar@gmx.at>
Switched to HTTP as FTP can be problematic. uscan for example has issues
figuring out the latest version.
Added PKG_CPE_ID for proper CVE tracking.
Reorganized Makefile for consistency with other projects.
Add PKG_FIXUP:=autoreconf, needed to avoid host lib leakage on hosts
with unixodbc installed.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
[add PKG_FIXUP:=autoreconf - thanks jow]
Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
This reverts commit 6d6c15e1e9.
The package no longer cross-compiles when building for the x86/64 target
on an x86/64, resulting in the following error:
Package unixodbc is missing dependencies for the following libraries:
libc.so.6
libpthread.so.0
Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
The only known user of this library is currently unable to get their
application to work with with the fixed 0.7.6 release of this library.
To prevent accidental use by unknown parties of a flawed library, mark
it as BROKEN.
Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>
ICU 63 updates to CLDR 34 locale data with many additions and corrections,
and some new languages. ICU adds API for number and currency range formatting,
and API for additional Unicode properties and for constructing custom properties.
CLDR and ICU include data for testing readiness for the upcoming Japanese calendar era.
Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
The last commit added PKG_CPE_ID and now uscan detects a CVE that I missed
Reordered patches by date
Signed-off-by: Rosen Penev <rosenp@gmail.com>
[tweaked commit message]
Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>
This package forces the use of Google and Bing safe search by default.
It does this by adding hosts files for dnsmasq to use. These hosts replace the
normal IP addresses for Google and Bing with addresses that force safe
search to be turned on all the time.
Google and Bing Safe Search are suitable for most businesses, schools, and
families who wish to block adult content. This package also offers
YouTube's restricted and 'restricted moderate' via a configuration
option. The reason that this is not enabled is that it is probably more
suitable for children rather than a wide audience.
This package is designed so that other services that offer safe search can be
added easily in the future.
For more information about safe search please visit these URLs:
- https://support.google.com/websearch/answer/186669
- https://help.bing.microsoft.com/#apex/18/en-US/10003/0
- https://support.google.com/a/answer/6212415
Signed-off-by: Gregory L. Dietsche <gregory.dietsche@cuw.edu>
Disable PCRE process searching to avoid linking against libprce, which
would cause the build to fail due to a missing dependency. With the
--without-pcre switch, build fails due to an undefined reference, so do
it via CONFIGURE_VARS instead.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
[disable PCRE process searching]
Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>