New upstream release includes fixes for the following security issues:
* CVE-2017-3140: With certain RPZ configurations, a response with TTL 0 could
cause named to go into an infinite query loop
* CVE-2017-3142: An error in TSIG handling could permit unauthorized zone
transfers or zone updates.
* CVE-2017-3143: An error in TSIG handling could permit unauthorized zone
transfers or zone updates.
Signed-off-by: Noah Meyerhans <frodo@morgul.net>
auto-endian auf UTF-16 doesn't work with all drivers, some fail to
interpret the byte-order-marking. Hence explicitely use UTF16BE on
big-endian systems and UTF16LE otherwise.
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
afraid.org has a new update API with better IPV6 support. It needs to be
specifically enabled for each domain, so the original v1 api has been
Signed-off-by: Thomas Guyot-Sionnest <dermoth@aei.ca>
Update (lib)expat to 2.2.2
Fixes following CVEs: CVE-2017-9233 and CVE-2016-9063 (2.2.2)
Update homepage URL
Signed-off-by: Daniel Engberg <daniel.engberg.lists@pyret.net>
On ar71xx the package grow by less than 1k
150377 screen_4.6.0-1_mips_24kc.ipk
151356 screen_4.6.0-2_mips_24kc.ipk
Original commit by @nobk
Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
Flask is a microframework for Python based on Werkzeug, Jinja 2 and
good intentions. And before you ask: It.s BSD licensed!
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
Shairport is unmaintained and superseded by shairport-sync which
is in tree so there's no point in keeping this obsolete package.
Signed-off-by: Daniel Engberg <daniel.engberg.lists@pyret.net>
For now building from git using latest SHA (commits are relatively
infrequent). Set priority to come up immediately after network
interfaces are brought up. Patches have been submitted upstream
(but not yet accepted) to fix:
* a somewhat cross-compile unfriendly makefile;
* a header inclusion issue which causes MUSL compilation warnings;
* using the somewhat arcane posix_fallocate() in favor of the
more ubiquitous ftruncate() system call instead.
Hopefully the next release will include our submitted fixes and
we can transition to a numbered release.
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
Update (lib)opus to 1.2.1
Compile without floating point on NEON (ARM) capable hardware to enable
performance optimizations.
Discussion about this change:
https://github.com/openwrt/packages/pull/4574
Signed-off-by: Daniel Engberg <daniel.engberg.lists@pyret.net>
General cleanup of this port
Don't add libraries as dependencies and disable them later on in configure
arguments (curl and (lib)samplerate). Enabled from now on.
Fix dependencies and functionality provided by external libraries. If we link
(lib)ffmpeg we don't need to have external libraries for handling formats
that ffmpeg already handles.
Update PKG_MD5SUM (deprecated) to PKG_HASH
Sources:
https://github.com/mir-ror/moc/blob/master/decoder_plugins/ffmpeg/ffmpeg.c#L213
Signed-off-by: Daniel Engberg <daniel.engberg.lists@pyret.net>
If lighttpd's scripts are rotated from under it while they're still open,
this will cause some weird things to happen. Give it a heads up that
the logs have moved.
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
Add enabled config option in the global uci section; it allows to put into
place the snmpd config but not yet start the netsnmp daemon.
If config option is unset; netsnmp daemon will be started as before.
Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
Primarily a bugfix release for a CVE that doesn't affect lede/openwrt,
but also includes some websockets perfomance fixes.
Release notes at https://mosquitto.org/2017/07/version-1-4-13-released/
Signed-off-by: Karl Palsson <karlp@etactica.com>