cubixle/packages
1
0
Fork 0
mirror of https://github.com/novatiq/packages.git synced 2026-04-30 07:28:39 +01:00
Code Issues Packages Projects Releases Wiki Activity
16,930 Commits 8 Branches 1 Tag
openwrt-19.07
Commit Graph

2351 Commits

Author SHA1 Message Date
Jeffery To 18add705fa python,python3: Fix CVE-2019-16056, CVE-2019-16935 
These patches address issues:
CVE-2019-16056: email.utils.parseaddr mistakenly parse an email
CVE-2019-16935: A reflected XSS in python/Lib/DocXMLRPCServer.py (for
Python 2.7)

CVE-2019-16935 was fixed for python3 in #10109

Links to Python issues:
https://bugs.python.org/issue34155
https://bugs.python.org/issue38243

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
 2019-10-05 00:04:39 +08:00
Jeffery To 1d6436623a python-simplejson: Fix python[3]-decimal dependency 
simplejson depends on the decimal module[1][2]. This adds
python[3]-decimal to the package's DEPENDS.

[1]: https://github.com/simplejson/simplejson/blob/v3.16.0/simplejson/__init__.py#L110
[2]: https://github.com/simplejson/simplejson/blob/v3.16.0/simplejson/encoder.py#L7

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
 2019-10-04 22:46:39 +08:00
Eneas U de Queiroz 4bbeb730a5 python-certifi: bump to 2019.9.11 
Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
(cherry picked from commit acf7c540ca)
 2019-09-30 16:42:59 -03:00
Josef Schlehofer faf6ec5800 python3: backport three security patches 
Fixes: CVE-2019-16935

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry-picked from commit 80def9e)
 2019-09-30 10:02:40 +02:00
Rosen Penev 33ee8d1ec3 django: Update to 1.11.24 
Fixes a whole bunchs of CVEs:

CVE-2019-3498
CVE-2019-6975
CVE-2019-12308
CVE-2019-12781
CVE-2019-14232
CVE-2019-14233
CVE-2019-14234
CVE-2019-14235

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit 64a02079da)
 2019-09-30 10:27:06 +03:00
Josef Schlehofer f2a06eb9dc golang: Update to version 1.13.1 
Fixes CVE-2019-16276

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry-picked from commit 65b7bd6cc0)
 2019-09-29 20:42:52 +02:00
Jeffery To 2c829c973b golang: Use new -trimpath option when compiling Go packages 
Go 1.13 added a new -trimpath option to the "go build" command[1] that
removes system paths from compiled executables. This replaces the
previous -trimpath flags.

There are still system paths in the compiled executable (for crti.o and
crtn.o, when cross-compiling); these appear to be stripped during the
packaging process.

[1]: https://golang.org/doc/go1.13#trimpath

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry-picked from commit 22ee6e86a0)
 2019-09-29 00:42:22 +02:00
Xingwang Liao c7f1bdc592 golang: Update to 1.13 
Signed-off-by: Xingwang Liao <kuoruan@gmail.com>
(cherry-picked from commit 0849e32659)
 2019-09-29 00:42:09 +02:00
Hirokazu MORIKAWA d97123b729 node: fix http/2 DoS 
This is a security release.

Node.js, as well as many other implementations of HTTP/2,
have been found
vulnerable to Denial of Service attacks.
See https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md
for more information.

Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
(cherry-picked from 81bccf9068)
 2019-09-27 12:44:16 -07:00
Hirokazu MORIKAWA 976fd4e9c1 node: fix host build error on macOS 
fix host build error on macOS
reference: https://github.com/openwrt/packages/issues/9616

Related: https://github.com/openwrt/packages/issues/7171
(This correspondence is necessary to build with macOS.)

Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
(cherry-picked from c69d5a0241)
 2019-09-27 12:43:43 -07:00
Rosen Penev 5b903f68eb Merge pull request #10084 from BKPepe/sentrysdk-1907 
[OpenWrt 19.07] python-sentry-sdk: Update to version 0.12.2
 2019-09-27 12:09:37 -07:00
Rosen Penev 884c89b5e9 jamvm: Don't compile on ARM64 
Not supported.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry-picked from ccd2b767d)
 2019-09-27 10:10:33 -07:00
Jan Pavlinec a0d4cc9170 treewide: add PKG_CPE_ID for cvescanner 
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry-picked from ceadbcbb64)
 2019-09-26 19:36:27 -07:00
Jan Pavlinec 937b19ebb7 treewide: add PKG_CPE_ID for better cvescanner coverage 
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry-picked from bf2f1a0263)
 2019-09-26 19:36:27 -07:00
Sven Eckelmann 1142f52078 treewide: Change .*GPL.*+ licenses to SPDX compatible identifier 
The CONTRIBUTING.md requests an (or multiple) SPDX identifier for GPL
licenses. But a lot of packages did use a different, non-SPDX style with a
"+" at the end instead of "-or-later".

Signed-off-by: Sven Eckelmann <sven@narfation.org>
(cherry-picked from bbb1ea7345)
 2019-09-26 19:36:25 -07:00
Rosen Penev 07f47d6ea5 jamvm: Add host build 
Needed for classpath. GCJ is also needed but that can be dealt with
separately.

Fix compilation with musl by defining _GNU_SOURCE. What's funny here is
that if __USE_GNU gets replaced, the host build fails. The man page says
_GNU_SOURCE for pthread_getattr_np but glibc violates that statement.

Removed classpath dependency. classpaths must select jamvm, not the other
way around.

Removed target whitelist. Switched to blacklist.

Fixed License information.

Various other cleanups.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry-picked from 2972cc98eb)
 2019-09-26 19:36:22 -07:00
Josef Schlehofer de686dc0e8 python-sentry-sdk: Update to version 0.12.2 
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
 2019-09-26 18:24:21 +02:00
Karel Kočí c004f8a7a6 python-intelhex: add new package 
This is Python library to parse, generate and in general handle files
in Intel HEX format.

Signed-off-by: Karel Kočí <cynerd@email.cz>
(cherry-picked from commit 306e276a3b)
 2019-09-17 08:44:59 +02:00
Karel Kočí c35c9d6932 python-schema: update to version 0.7.1 
Signed-off-by: Karel Kočí <karel.koci@nic.cz>
(cherry-picked from commit 7bb6d72a47)
 2019-09-17 08:41:40 +02:00
Michael Heimpold 41fb159a38 php7: update to 7.2.22 
While at, update the SPDX license id to most recent format.

Compile and run tested on mxs platform.

Signed-off-by: Michael Heimpold <mhei@heimpold.de>
(cherry picked from commit 5805da860e)
 2019-09-12 21:52:27 +02:00
Josef Schlehofer 24ef2a78e3 python-sqlalchemy: Update to version 1.3.7 
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry-picked from commit 2ee4b09760)
 2019-09-04 16:06:09 +02:00
Josef Schlehofer 38ba031f26 python-slugify: Update to version 3.0.3 
Change indentation in dependencies and as well in description

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry-picked from commit d3c2ff35b5)
 2019-09-04 16:05:56 +02:00
Josef Schlehofer 43e07c60a0 python-yaml: Update to version 5.1.2 
PKG_NAME should match the name of the folder

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry-picked from commit 3cfbdbf25b)
 2019-09-04 16:05:44 +02:00
Josef Schlehofer d49bde8ea9 python-voluptuous-serialize: Update to version 2.2.0 
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry-picked from commit af213059f5)
 2019-09-04 16:05:31 +02:00
Josef Schlehofer 5fa4f744ac python-voluptuous: Update to version 0.11.7 
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry-picked from commit 0835e5e6dc)
 2019-09-04 16:05:20 +02:00
Jeffery To f57f327f06 python-pyasn1: Update to 0.4.7 
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
 2019-09-03 02:52:18 +08:00
Alexandru Ardelean 76ea030571 python-dateutil: bump to version 2.8.0 
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
(cherry-picked from commit 0699a69ba1)
 2019-09-01 10:10:38 +02:00
Alexandru Ardelean 6464894728 python-lxml: bump to version 4.4.1 
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
(cherry-picked from commit 621f5777d3)
 2019-09-01 10:10:23 +02:00
Alexandru Ardelean 87fbf41ae8 python-pytz: bump to version 2019.2 
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
(cherry-picked from commit 16c9fcdda8)
 2019-09-01 10:09:45 +02:00
Eric Kinzie bc0001d5a5 luajit: fix building for 64-bit targets 
Host and target architectures need to have the same pointer size.
When building on x86_64, do not force 32-bit host binaries if the target
architecture is also 64-bit.

See http://luajit.org/install.html#cross

Add 64-bit arm (aarch64) to the list of architectures.

Signed-off-by: Eric Kinzie <ekinzie@labn.net>
(cherry-picked from commit 5b0ef0e1b9)
 2019-08-26 03:47:52 +02:00
Eneas U de Queiroz 40e86c8729 python-oauthlib: bump to 3.1.0 
This is a feature release including improvement to OIDC and security
enhancements, as well as bugfixes.

Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
(cherry-picked from commit ab990af307)
 2019-08-24 16:50:44 +02:00
Josef Schlehofer 03bc9a0b50 ruamel-yaml: Update to version 0.15.100 
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry-picked from commit 907287b)
 2019-08-21 22:24:30 +02:00
Jeffery To 999c2a5457 golang: Update to 1.12.9 
Includes fixes (in 1.12.8) for:
CVE-2019-14809 - https://nvd.nist.gov/vuln/detail/CVE-2019-14809
CVE-2019-9512 - https://nvd.nist.gov/vuln/detail/CVE-2019-9512
CVE-2019-9514 - https://nvd.nist.gov/vuln/detail/CVE-2019-9514

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
 2019-08-20 22:04:08 +08:00
Jeffery To e450748208 python,python3: Fix host Python compilation for macOS 
* Remove $$$$(pkg-config --static --libs libcrypto libssl) from
  HOST_LDFLAGS

  Having this leads to an "unknown type name 'u_int'" error on Mac.
  Removing it doesn't appear to affect Python's ability to find
  buildroot LibreSSL.

* Change -Wl,-rpath=... to -Wl,-rpath,... in HOST_LDFLAGS

  The equals sign version is not supported by the Mac linker (appears to
  be an GNU extension). The comma version is supported; -rpath and its
  argument will be separated by a space when passed to the linker.

* Add ac_cv_header_libintl_h=no to HOST_CONFIGURE_VARS for Mac

  Python on Mac doesn't expect to use libintl, but if gettext-full is
  compiled for host, it will try, leading to undefined symbol errors
  during compilation. This prevents configure from finding libintl.h.

Fixes #7171.
Fixes #9621.

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
 2019-08-17 05:14:42 +08:00
Jeffery To dec56a3140 python-twisted: Update to 19.7.0, refresh patches 
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
 2019-08-15 03:22:54 +08:00
Michael Stegeman 07d771ee1b node-mozilla-iot-gateway: Remove package 
As the WebThings Gateway moves into a full-fledged router
distribution, it no longer makes sense to have this as a
standalone package, as it now modifies system-wide settings.

References #9629
References mozilla-iot/gateway#2060
References https://gitlab.labs.nic.cz/turris/turris-os-packages/issues/452

Signed-off-by: Michael Stegeman <michael@stegeman.me>
 2019-08-08 08:44:20 -08:00
Rosen Penev 94d1ad766e Merge pull request #9649 from jefferyto/python-pyasn1-0.4.6-openwrt-19.07 
[openwrt-19.07] python-pyasn1: Update to 0.4.6
 2019-08-05 10:00:52 -07:00
Jeffery To f52637d3be python-pyasn1-modules: Update to 0.2.6 
Requires python-pyasn1 0.4.6 (#9649).

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
 2019-08-05 04:05:06 +08:00
Jeffery To 29289e244c python-pyasn1: Update to 0.4.6 
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
 2019-08-05 03:43:40 +08:00
Michael Heimpold 42a98950b8 php7: update to 7.2.21 
This fixes CVE-2019-11042 and CVE-2019-11041.

Compile and run tested on mxs platform

Signed-off-by: Michael Heimpold <mhei@heimpold.de>
 2019-08-04 00:44:31 +02:00
Eneas U de Queiroz 4273dfd32f bcrypt: add python-cffi/host build dependency 
Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
(cherry-picked from 86fb008751)
 2019-07-31 15:32:17 -07:00
Stepan Henek eee9c627c8 python-cachelib: package added 
Signed-off-by: Stepan Henek <stepan.henek@nic.cz>
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
 2019-07-22 22:58:31 +02:00
Josef Schlehofer 54e3c2280a python: add patch for CVE-2018-20852 
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
 2019-07-22 15:29:46 +02:00
Jeffery To 2d6700ed38 python,python3: Fix ctypes.util.find_library() 
Python's ctypes.util.find_library() function currently doesn't work for
musl libraries/systems[1].

This adds a patch to fix this function, based on a patch from Alpine
Linux[2].

Fixes #9448.

[1]: https://bugs.python.org/issue21622
[2]: https://git.alpinelinux.org/aports/tree/main/python2/musl-find_library.patch

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
 2019-07-22 04:52:27 +08:00
Jeffery To 91e92c99f2 golang: Update to 1.12.7 
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
 2019-07-20 20:54:08 +08:00
Hirokazu MORIKAWA 064528047e node-mozilla-iot-gateway: Remove unnecessary step 
Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
(cherry-picked from 1314b86231)
 2019-07-19 19:37:13 -07:00
Josef Schlehofer eda5cd792f python-pyrsistent: add a new package 
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
 2019-07-16 15:49:12 +02:00
Josef Schlehofer 670926f527 python-cachetools: add a new package 
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
 2019-07-16 15:49:08 +02:00
Eneas U de Queiroz b2df2da369 python-oauthlib: update to 3.0.2 (bugfix release) 
Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
(cherry picked from commit 6c4ba3a58d)
 2019-07-12 11:54:23 -03:00
Josef Schlehofer 62827e7592 python-sentry-sdk: Update to version 0.10.1 
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry-picked from commit 4a7b407d70 )
 2019-07-11 09:24:08 +02:00