buildroot.git
6 years agogst1-validate: bump version to 1.14.4
Peter Seiderer [Thu, 4 Oct 2018 21:09:20 +0000 (23:09 +0200)]
gst1-validate: bump version to 1.14.4

Signed-off-by: Peter Seiderer <ps.report@gmx.net>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agogst1-plugins-ugly: bump version to 1.14.4
Peter Seiderer [Thu, 4 Oct 2018 21:09:19 +0000 (23:09 +0200)]
gst1-plugins-ugly: bump version to 1.14.4

Signed-off-by: Peter Seiderer <ps.report@gmx.net>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agogst1-plugins-bad: bump version to 1.14.4
Peter Seiderer [Thu, 4 Oct 2018 21:09:18 +0000 (23:09 +0200)]
gst1-plugins-bad: bump version to 1.14.4

Signed-off-by: Peter Seiderer <ps.report@gmx.net>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agogst1-plugins-good: bump version to 1.14.4
Peter Seiderer [Thu, 4 Oct 2018 21:09:17 +0000 (23:09 +0200)]
gst1-plugins-good: bump version to 1.14.4

Signed-off-by: Peter Seiderer <ps.report@gmx.net>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agogst1-plugins-base: bump version to 1.14.4
Peter Seiderer [Thu, 4 Oct 2018 21:09:16 +0000 (23:09 +0200)]
gst1-plugins-base: bump version to 1.14.4

Signed-off-by: Peter Seiderer <ps.report@gmx.net>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agogstreamer1: bump version to 1.14.4
Peter Seiderer [Thu, 4 Oct 2018 21:09:15 +0000 (23:09 +0200)]
gstreamer1: bump version to 1.14.4

Signed-off-by: Peter Seiderer <ps.report@gmx.net>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agognupg: drop mandatory dependency on ncurses
Trent Piepho [Wed, 3 Oct 2018 00:25:48 +0000 (00:25 +0000)]
gnupg: drop mandatory dependency on ncurses

This package only needs ncurses when readline support is enabled, as
it's the autoconf macro file for readline (used by autoconf to create
the gnupg configure script) that checks for and pulls in ncurses.

Since readline already depends on ncurses, gnupg need only depend on
readline (when enabled).

The host package always forces readline support off, so the
host-ncurses dependency can be removed entirely.

Signed-off-by: Trent Piepho <tpiepho@impinj.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/mesa3d: Fix header version dependency for Vulkan Intel driver
Bernd Kuhls [Wed, 3 Oct 2018 08:34:26 +0000 (10:34 +0200)]
package/mesa3d: Fix header version dependency for Vulkan Intel driver

memfd.h was included in kernel 3.17, not 3.18.

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/multicat: bump version to 2.3
Bernd Kuhls [Wed, 3 Oct 2018 08:16:42 +0000 (10:16 +0200)]
package/multicat: bump version to 2.3

Removed patch 0001, applied upstream.
Added sha256 hash provided by upstream.

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/dvblast: bump version to 3.4
Bernd Kuhls [Wed, 3 Oct 2018 08:16:41 +0000 (10:16 +0200)]
package/dvblast: bump version to 3.4

Added md5 hash provided by upstream.

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/bitstream: bump version to 1.4
Bernd Kuhls [Wed, 3 Oct 2018 08:16:40 +0000 (10:16 +0200)]
package/bitstream: bump version to 1.4

Added license hash.

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoconfigs/imx6ulevk: Bump u-boot to 2018.07
Marcin Niestroj [Wed, 3 Oct 2018 11:47:09 +0000 (13:47 +0200)]
configs/imx6ulevk: Bump u-boot to 2018.07

Signed-off-by: Marcin Niestroj <m.niestroj@grinn-global.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoconfigs/imx6ulevk: Bump Linux to 4.18.11
Marcin Niestroj [Wed, 3 Oct 2018 11:47:08 +0000 (13:47 +0200)]
configs/imx6ulevk: Bump Linux to 4.18.11

Signed-off-by: Marcin Niestroj <m.niestroj@grinn-global.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoscreen: fix parallel build
Fabrice Fontaine [Wed, 3 Oct 2018 21:06:24 +0000 (23:06 +0200)]
screen: fix parallel build

comm.h is needed to build list_display.o and list_generic.o otherwise
parallel builds will sometimes fail

Fixes:
 - http://autobuild.buildroot.org/results/43105f14857dbe72d8878fc7b3db67f7bdca93cc
 - http://autobuild.buildroot.org/results/47f4ecbec1355285633df287fc9c4e7cccde9378

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/libopusenc: bump to version 0.2
Jörg Krause [Thu, 4 Oct 2018 04:48:23 +0000 (06:48 +0200)]
package/libopusenc: bump to version 0.2

Signed-off-by: Jörg Krause <joerg.krause@embedded.rocks>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/luv: bump to version 1.22.0-1
Jörg Krause [Thu, 4 Oct 2018 04:42:58 +0000 (06:42 +0200)]
package/luv: bump to version 1.22.0-1

Also add hash for license file.

Signed-off-by: Jörg Krause <joerg.krause@embedded.rocks>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopython-logbook: bump to version 1.4.0
Asaf Kahlon [Wed, 3 Oct 2018 19:24:47 +0000 (22:24 +0300)]
python-logbook: bump to version 1.4.0

Also add license file (plus hash)

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/clamav: security bump to 0.100.2
Bernd Kuhls [Wed, 3 Oct 2018 18:16:52 +0000 (20:16 +0200)]
package/clamav: security bump to 0.100.2

Fixes CVE-2018-15378, CVE-2018-14680, CVE-2018-14681 & CVE-2018-14682:
http://lists.clamav.net/pipermail/clamav-announce/2018/000033.html

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agocrda: fix check-package warning
Thomas Petazzoni [Thu, 4 Oct 2018 12:20:31 +0000 (14:20 +0200)]
crda: fix check-package warning

In commit 3e79bd3f456cef12886ac6b086c8bc78e3e520f8 ("crda: bump
version to 4.14"), the value of CRDA_SOURCE was changed to use what is
the default value for <pkg>_SOURCE, triggering a warning from
check-package:

package/crda/crda.mk:8: remove default value of _SOURCE variable (http://nightly.buildroot.org/#generic-package-reference)

This commit fixes that by dropping CRDA_SOURCE entirely.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopython-crossbar: bump to version 18.9.2
Asaf Kahlon [Wed, 26 Sep 2018 15:35:05 +0000 (18:35 +0300)]
python-crossbar: bump to version 18.9.2

Update dependencies (and fix alphabetical order).
Add patch to remove idna direct dependency (was sent to upstream too:
https://github.com/crossbario/crossbar/pull/1406).

Fixes:
http://autobuild.buildroot.org/results/31d/31db5fd90514906a8c77f921c9650a386ec80101/

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Reviewed-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopython-twisted: bump to version 18.7.0
Asaf Kahlon [Wed, 26 Sep 2018 15:35:04 +0000 (18:35 +0300)]
python-twisted: bump to version 18.7.0

Add license hash.

Add a patch to fit python3.7 syntax ("async" is now a keyword).
The patch was already applied on upstream, but only after the last tag
was created.

Fixes:
http://autobuild.buildroot.org/results/704/7043ccfac86439406480649b3ead4882112d36e2/

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Reviewed-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopython-pyhamcrest: new package
Asaf Kahlon [Wed, 26 Sep 2018 15:35:03 +0000 (18:35 +0300)]
python-pyhamcrest: new package

Hamcrest framework for matcher objects.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Reviewed-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopython-pyasn1-modules: new package
Asaf Kahlon [Wed, 26 Sep 2018 15:35:02 +0000 (18:35 +0300)]
python-pyasn1-modules: new package

A collection of ASN.1-based protocols modules.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Reviewed-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopython-passlib: new package
Asaf Kahlon [Wed, 26 Sep 2018 15:35:01 +0000 (18:35 +0300)]
python-passlib: new package

comprehensive password hashing framework supporting over 30
schemes.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
[Thomas: fix license, it is BSD-3-Clause]
Reviewed-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopython-pytrie: bump to version 0.3.1
Asaf Kahlon [Wed, 26 Sep 2018 15:35:00 +0000 (18:35 +0300)]
python-pytrie: bump to version 0.3.1

For some reason (probably not on purpose) the license file was
removed from MANIFEST.in, and it's not available after package extraction.
I replaced it with PKG-INFO for now, and opened a PR on github:
https://github.com/gsakkis/pytrie/pull/3

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Reviewed-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopython-zope-interface: bump to version 4.5.0
Asaf Kahlon [Wed, 26 Sep 2018 15:34:59 +0000 (18:34 +0300)]
python-zope-interface: bump to version 4.5.0

Fix indentation for license hash.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Reviewed-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopython-u-msgpack: bump to version 2.5.0
Asaf Kahlon [Wed, 26 Sep 2018 15:34:58 +0000 (18:34 +0300)]
python-u-msgpack: bump to version 2.5.0

Also add license hash.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Reviewed-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopython-txtorcon: bump to version 18.1.0
Asaf Kahlon [Wed, 26 Sep 2018 15:34:57 +0000 (18:34 +0300)]
python-txtorcon: bump to version 18.1.0

Also add license hash.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
[Thomas: bump to 18.1.0, to fix Python 2.x issue, reported by Ricardo.]
Reviewed-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/vlc: fix linking with tremor
Bernd Kuhls [Mon, 1 Oct 2018 17:31:18 +0000 (19:31 +0200)]
package/vlc: fix linking with tremor

Patch 0004 is not enough anymore to fix linking with tremor (provides
libvorbisidec) so we provide the proper content for VORBIS_LIBS.

Fixes
http://autobuild.buildroot.net/results/15a/15a3c5b90de6c67db9887e3db67b3568f6d18e3a/
http://autobuild.buildroot.net/results/946/946f397bb81ce2c69384fa1e378c40600fd405b6/
http://autobuild.buildroot.net/results/f5d/f5d9f3df78626178274c1be878a2ae0b90394885/
http://autobuild.buildroot.net/results/2e5/2e5dc746a59798a56d3127aadc88593fc584c010/

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopython-subprocess32: bump to version 3.5.2
Asaf Kahlon [Fri, 28 Sep 2018 14:16:30 +0000 (17:16 +0300)]
python-subprocess32: bump to version 3.5.2

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agohaproxy: tweak thread activation
Fabrice Fontaine [Tue, 2 Oct 2018 19:28:58 +0000 (21:28 +0200)]
haproxy: tweak thread activation

If threads are enabled, as described in include/common/hathreads.h,
haproxy uses __sync_*_4 intrisics if gcc < 4.7. Otherwise, haproxy
uses __atomic_ intrinsics.

As a result, instead of adding a dependency on BR2_TOOLCHAIN_HAS_SYNC_4
and BR2_TOOLCHAIN_HAS_ATOMIC in Config.in, enable threads only if the
dependencies are fulfilled in haproxy.mk

Fixes:
 - http://autobuild.buildroot.org/results/7f24873ecdd9246c95c03bb8d2fcd4c16c488c6c

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Reviewed-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/mesa3d: dri i965 driver needs headers >= 3.17
Bernd Kuhls [Mon, 1 Oct 2018 14:42:38 +0000 (16:42 +0200)]
package/mesa3d: dri i965 driver needs headers >= 3.17

Since
https://cgit.freedesktop.org/mesa/mesa/commit/src/intel/tools/aubinator.c?h=18.2&id=3228335b55c300cd07c4aa69329e58e70afae6a8
the dri i965 driver needs linux/memfd.h which is not available in kernel
headers older than 3.17:
https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/log/include/uapi/linux/memfd.h?id=refs/tags/v3.18.36

Fixes
http://autobuild.buildroot.net/results/5aa/5aac9e9cad789da11b05cbf5d2a5e3f3cf8f1614/

[Peter: memfd.h added in 3.17]
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/ghostscript: fix removal of included lcms2
Bernd Kuhls [Mon, 1 Oct 2018 16:34:19 +0000 (18:34 +0200)]
package/ghostscript: fix removal of included lcms2

Ghostscript 9.24 changed the internal lcms2 version:
https://www.ghostscript.com/doc/9.24/News.htm

With this change the directory name was also changed which broke our
code to force the usage of the buildroot lcms2 package.

Fixes
http://autobuild.buildroot.net/results/d04/d04ad017bf06a442a7397f935959994ba72824e1/

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/samba4: Fix uClibc build on 64bit platforms by including stdint.h, updated...
Bernd Kuhls [Mon, 1 Oct 2018 13:55:49 +0000 (15:55 +0200)]
package/samba4: Fix uClibc build on 64bit platforms by including stdint.h, updated for 4.9.1

Fixes
http://autobuild.buildroot.net/results/68f/68f3fb75ba8a2f138e9c3f37b2681b81441e2cd9/

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopython-django: bump version to 1.11.16
Peter Korsgaard [Mon, 1 Oct 2018 11:32:55 +0000 (13:32 +0200)]
python-django: bump version to 1.11.16

Fixes a race condition in QuerySet.update_or_create() that could result in
data loss:

https://code.djangoproject.com/ticket/29499

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agocrda: bump version to 4.14
Peter Seiderer [Tue, 2 Oct 2018 20:02:23 +0000 (22:02 +0200)]
crda: bump version to 4.14

- changed download location
- rebased 0001-crda-support-python-3-in-utils-key2pub.py.patch

Changes since 3.18:
- 2018-01-05 Update gitignore
- 2018-01-05 crda: Fix error: `keys’ defined but not used

Signed-off-by: Peter Seiderer <ps.report@gmx.net>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoaircrack-ng: bump to version 1.4
Laurent Cans [Tue, 2 Oct 2018 19:53:01 +0000 (21:53 +0200)]
aircrack-ng: bump to version 1.4

- Remove patch (already in version)
- align LICENSE hash to minor modifications in file

Signed-off-by: Laurent Cans <laurent.cans@gmail.com>
Tested-by: Matt Weber <matthew.weber@rockwellcollins.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agortl8188eu: bump to latest commit
William Wennerström [Tue, 2 Oct 2018 15:45:36 +0000 (17:45 +0200)]
rtl8188eu: bump to latest commit

The rtl8188eu driver wouldn't build due to Linux kernel API changes.

Several fixes for API changes to Linux kernel >=4.11 has been commited
to the repository.

I have bumped to the latest commit and verified that it builds on master
(also successfully built on the 2018.08 branch).

Signed-off-by: William Wennerström <william@willeponken.me>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agostrongswan: add upstream security fix for CVE-2018-17540
Peter Korsgaard [Tue, 2 Oct 2018 15:35:52 +0000 (17:35 +0200)]
strongswan: add upstream security fix for CVE-2018-17540

The fix for CVE-2018-16151 / 16152 contained an exploitable bug.
For details, see:

https://www.strongswan.org/blog/2018/10/01/strongswan-vulnerability-(cve-2018-17540).html

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/dovecot-pigeonhole: bump version to 0.5.3
Bernd Kuhls [Tue, 2 Oct 2018 10:18:23 +0000 (12:18 +0200)]
package/dovecot-pigeonhole: bump version to 0.5.3

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/dovecot: bump version to 2.3.3
Bernd Kuhls [Tue, 2 Oct 2018 10:18:22 +0000 (12:18 +0200)]
package/dovecot: bump version to 2.3.3

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agolinks: fix X11 library/includes detection
Peter Korsgaard [Tue, 2 Oct 2018 09:30:15 +0000 (11:30 +0200)]
links: fix X11 library/includes detection

Fixes:
http://autobuild.buildroot.net/results/4b0/4b02713ed5c10b58f390f96ea25f2a45c9a47af4/
http://autobuild.buildroot.net/results/ac6/ac668f867b9de7a2c61d263a894480afc181dd9b/
http://autobuild.buildroot.net/results/f02/f0248b3bf4a73210f210f422c8df067a6ea28aa1/

The configure script uses AC_PATH_X, which searches the host for the X11
libraries/headers, causing build failures.

https://www.gnu.org/software/autoconf/manual/autoconf-2.65/html_node/System-Services.html

Fix it by using --x-includes / --x-libraries like we do elsewhere.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agox265: disable parallel build
Fabrice Fontaine [Mon, 1 Oct 2018 20:57:39 +0000 (22:57 +0200)]
x265: disable parallel build

It seems package has a parallel build issue on ARM cortex A8 or A9 since
at least version 2.5:

[ 94%] Linking CXX shared library libx265.so
ipfilter8.S.o: file not recognized: File truncated
collect2: error: ld returned 1 exit status
CMakeFiles/x265-shared.dir/build.make:221: recipe for target 'libx265.so.160' failed

Fixes:
 - http://autobuild.buildroot.org/results/f6ea88324a8f9ac8ee780ddd71ec61f922e20210
 - http://autobuild.buildroot.org/results/3bd91a5694936650ce936a408ddd50338f65f8b0

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoconfigs/riotboard: bump kernel to version 4.18.10
Nikolay Dimitrov [Mon, 1 Oct 2018 20:23:25 +0000 (23:23 +0300)]
configs/riotboard: bump kernel to version 4.18.10

Signed-off-by: Nikolay Dimitrov <nikolay.dimitrov@retrohub.org>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopython-txaio: bump to version 18.8.1
Asaf Kahlon [Wed, 26 Sep 2018 15:34:56 +0000 (18:34 +0300)]
python-txaio: bump to version 18.8.1

Also add license hash.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Reviewed-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopython-sortedcontainers: bump to version 2.0.5
Asaf Kahlon [Wed, 26 Sep 2018 15:34:55 +0000 (18:34 +0300)]
python-sortedcontainers: bump to version 2.0.5

Also add license hash.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Reviewed-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopython-sdnotify: bump to version 0.3.2
Asaf Kahlon [Wed, 26 Sep 2018 15:34:54 +0000 (18:34 +0300)]
python-sdnotify: bump to version 0.3.2

Also add license hash.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Reviewed-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopython-pyopenssl: bump to version 18.0.0
Asaf Kahlon [Wed, 26 Sep 2018 15:34:53 +0000 (18:34 +0300)]
python-pyopenssl: bump to version 18.0.0

Also add license hash

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Reviewed-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopython-pynacl: bump to version 1.2.1
Asaf Kahlon [Wed, 26 Sep 2018 15:34:52 +0000 (18:34 +0300)]
python-pynacl: bump to version 1.2.1

Also add license hash.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Reviewed-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopkg-toolchain-external.mk: fix s/CC_TARGET_ARCH/GCC_TARGET_ARCH/ typo
Peter Korsgaard [Mon, 1 Oct 2018 15:33:59 +0000 (17:33 +0200)]
pkg-toolchain-external.mk: fix s/CC_TARGET_ARCH/GCC_TARGET_ARCH/ typo

commit e0d14fb21b (toolchain-external: drop no longer needed
CC_TARGET_<foo>_ variables) dropped the CC_TARGET_* variables, but missed
one.  Fix that.

Reported-by: Mark Corbin <mark.corbin@embecosm.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agohaproxy: fix linking with lua
Fabrice Fontaine [Fri, 28 Sep 2018 17:35:19 +0000 (19:35 +0200)]
haproxy: fix linking with lua

Use LUA_LIB_NAME to give lua library name otherwise haproxy can't find
it

Fixes:
 - http://autobuild.buildroot.net/results/28b6672188bb0082ac1467d3b45904880e3634f3

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agolua: fix dynamic library install
Fabrice Fontaine [Fri, 28 Sep 2018 17:35:18 +0000 (19:35 +0200)]
lua: fix dynamic library install

In 0002-shared-libs-for-lua.patch, revision number is used to set
library name:
TO_SOLIB = liblua.so.$(R)

However, library is built using PKG_VERSION which is passed only during
build step:
$(CC) -o $@.$(PKG_VERSION) -shared -Wl,-soname="$@.$(PKG_VERSION)" $?

As a result, dynamic library is not installed in staging or target paths
since bump to lua 5.3.5

So, instead of replacing R by PKG_VERSION and passing this variable in
all steps, simply update R to 5

Fixes:
 - http://autobuild.buildroot.net/results/28b6672188bb0082ac1467d3b45904880e3634f3

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Acked-by: Francois Perrad <francois.perrad@gadz.org>
Signed-off-by: Fabrice Fontaine &lt;<a href="mailto:fontaine.fabrice@gmail.com" target="_blank">fontaine.fabrice@gmail.com</a>&gt;<br></blockquote><div><br></div><div>Acked-by: Francois Perrad &lt;<a href="mailto:francois.perrad@gadz.org" target="_blank">francois.perrad@gadz.org</a>&gt;</div><div> </div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agotoolchain-external: drop no longer needed CC_TARGET_<foo>_ variables
Thomas Petazzoni [Sun, 23 Sep 2018 20:38:50 +0000 (22:38 +0200)]
toolchain-external: drop no longer needed CC_TARGET_<foo>_ variables

Since the introduction of the GCC_TARGET_<foo> variables in
arch/arch.mk in commit bd0640a2139119e2fdb4b384ebf32d1edcb0fdaa
("arch: allow GCC target options to be optionally overwritten") and
the removal of the BR2_GCC_TARGET_CPU_REVISION, the CC_TARGET_<foo>_
variables in pkg-toolchain-external.mk map 1:1 with the corresponding
GCC_TARGET_<foo> variables.

So let's drop the CC_TARGET_<foo>_ variables, and use directly the
GCC_TARGET_<foo> ones.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoarch: drop BR2_GCC_TARGET_CPU_REVISION option
Thomas Petazzoni [Sun, 23 Sep 2018 20:38:49 +0000 (22:38 +0200)]
arch: drop BR2_GCC_TARGET_CPU_REVISION option

In commit 325bb37942f8d3826dab9dc6e88b25234e67a2cf, support for the
Blackfin architecture was removed. This was our only use of
BR2_GCC_TARGET_CPU_REVISION, and since this config option somewhat
complicates the calculation of the --with-cpu/-mcpu option values,
let's drop it.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoxen: security bump to version 4.10.2
Peter Korsgaard [Sun, 30 Sep 2018 20:43:54 +0000 (22:43 +0200)]
xen: security bump to version 4.10.2

Drop 0003-memfd-fix-configure-test.patch applied upstream.

The 4.10.2 version brings a large number of fixes:

https://xenproject.org/downloads/xen-archives/xen-project-410-series/xen-4102.html

Including a number of security fixes:

XSA-260: x86: mishandling of debug exceptions (CVE-2018-8897)
XSA-261: x86 vHPET interrupt injection errors (CVE-2018-10982)
XSA-262: qemu may drive Xen into unbounded loop (CVE-2018-10981)
XSA-263: Speculative Store Bypass (CVE-2018-3639)
XSA-264: preemption checks bypassed in x86 PV MM handling (CVE-2018-12891)
XSA-265: x86: #DB exception safety check can be triggered by a guest
         (CVE-2018-12893)
XSA-266: libxl fails to honour readonly flag on HVM emulated SCSI disks
         (CVE-2018-12892)
XSA-267: Speculative register leakage from lazy FPU context switching
         (CVE-2018-3665)
XSA-268: Use of v2 grant tables may cause crash on ARM (CVE-2018-15469)
XSA-269: x86: Incorrect MSR_DEBUGCTL handling lets guests enable BTS
         (CVE-2018-15468)
XSA-272: oxenstored does not apply quota-maxentity (CVE-2018-15470)
XSA-273: L1 Terminal Fault speculative side channel (CVE-2018-3620,
         CVE-2018-3646)

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agostrongswan: add upstream security patch
Peter Korsgaard [Sun, 30 Sep 2018 20:12:15 +0000 (22:12 +0200)]
strongswan: add upstream security patch

Fixes the following security issues:

CVE-2018-16151: The OID parser in the ASN.1 code in gmp allows any number of
random bytes after a valid OID.

CVE-2018-16152: The algorithmIdentifier parser in the ASN.1 code in gmp
doesn't enforce a NULL value for the optional parameter which is not used
with any PKCS#1 algorithm.

For more details, see the advisory:
https://www.strongswan.org/blog/2018/09/24/strongswan-vulnerability-(cve-2018-16151,-cve-2018-16152).html

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoirqbalance: ui needs ncurses
Fabrice Fontaine [Wed, 26 Sep 2018 18:17:05 +0000 (20:17 +0200)]
irqbalance: ui needs ncurses

Fixes:
 - http://autobuild.buildroot.org/results/227543e9760dedeeb4360de49e09baebed98f894

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoDEVELOPERS: remove Nathan Lynch
Thomas Petazzoni [Mon, 1 Oct 2018 06:48:14 +0000 (08:48 +0200)]
DEVELOPERS: remove Nathan Lynch

In a private e-mail, Nathan said he no longer has the time to work on
this package, and would like to be removed from the DEVELOPERS file.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopython-pycparser: bump to version 2.19
Asaf Kahlon [Wed, 26 Sep 2018 15:34:51 +0000 (18:34 +0300)]
python-pycparser: bump to version 2.19

Also add license hash.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agolinux-firmware: fix tarball hash
Peter Korsgaard [Mon, 1 Oct 2018 06:35:06 +0000 (08:35 +0200)]
linux-firmware: fix tarball hash

Fixes:
http://autobuild.buildroot.net/results/8f6116799dcf9991e5e5253b404506b1439e0a7b/
http://autobuild.buildroot.net/results/d10/d10102bd728e368389ebef8eda7a3eb75caa7d4f/

Commit e14102c6f2f6eb31844 (linux-firmware: bump version and fix hash)
updated the git revision but used an invalid hash, causing download
failures.

Use the correct hash instead.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agosqlite: fix build without threads
Fabrice Fontaine [Sun, 30 Sep 2018 19:35:14 +0000 (21:35 +0200)]
sqlite: fix build without threads

If threads are not available, set SQLITE_THREADSAFE to 0.
Indeed, since version 3.25.0, the following line:
THREADSAFE_FLAGS=-DSQLITE_THREADSAFE=0
has been removed from configure.ac
As a result, SQLITE_THREADSAFE will be set to a default value of 1 even
if --disable-threadsafe is set

Fixes:
 - http://autobuild.buildroot.org/results/70b1582edcb787746e4483e80b27f86ac781f0fa

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopython-dateutil: bump to version 2.7.3
Asaf Kahlon [Sun, 30 Sep 2018 18:50:24 +0000 (21:50 +0300)]
python-dateutil: bump to version 2.7.3

Update site address in Config.in
Add license hash.
host-python-setuptools-scm is now needed for setup.py

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopython-ipaddress: bump to version 1.0.22
Asaf Kahlon [Sun, 30 Sep 2018 18:42:15 +0000 (21:42 +0300)]
python-ipaddress: bump to version 1.0.22

Also add license hash.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agosg3_utils: bump to version 1.44
Fabrice Fontaine [Sun, 30 Sep 2018 14:15:54 +0000 (16:15 +0200)]
sg3_utils: bump to version 1.44

- Fix minor/major undefined error with glibc 2.28
- Add hash for license files

Fixes:
 - http://autobuild.buildroot.org/results/1d396e85d35f40478b4b09b4ff80eee395a2e3c2

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopython-futures: bump to version 3.2.0
Asaf Kahlon [Sun, 30 Sep 2018 13:25:58 +0000 (16:25 +0300)]
python-futures: bump to version 3.2.0

Also add license hash.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agobootutils: drop package
Fabrice Fontaine [Sun, 30 Sep 2018 14:02:06 +0000 (16:02 +0200)]
bootutils: drop package

As suggested by Romain Naour during review of patch 976582
(https://patchwork.ozlabs.org/patch/976582), drop bootutils as "upstream
is dead since 2009" and "BootUtils is a collection of utilities to
facilitate booting of modern Kernel 2.6 based systems"

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/clang: bump to version 7.0.0
Valentin Korenblit [Sun, 30 Sep 2018 13:06:37 +0000 (15:06 +0200)]
package/clang: bump to version 7.0.0

LICENSE.TXT hash changed due to the Copyright date update.

Signed-off-by: Valentin Korenblit <valentinkorenblit@gmail.com>
Reviewed-by: Romain Naour <romain.naour@smile.fr>
Tested-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/llvm: bump to version 7.0.0
Valentin Korenblit [Sun, 30 Sep 2018 13:06:36 +0000 (15:06 +0200)]
package/llvm: bump to version 7.0.0

LLVM_BUILD_GLOBAL_ISEL does no longer exist

LICENSE.TXT hash changed due to the Copyright date update.

Signed-off-by: Valentin Korenblit <valentinkorenblit@gmail.com>
Reviewed-by: Romain Naour <romain.naour@gmail.com>
Tested-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/expedite: remove package
Romain Naour [Sun, 30 Sep 2018 12:55:46 +0000 (14:55 +0200)]
package/expedite: remove package

As noticed with the last version bump [1], expedite
is not actively maintained by upstream [2].

[1] http://lists.busybox.net/pipermail/buildroot/2018-September/231763.html
[2] https://sourceforge.net/p/enlightenment/mailman/message/36428571

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoqt5: bump latest version to 5.11.2
Peter Seiderer [Sat, 29 Sep 2018 20:17:02 +0000 (22:17 +0200)]
qt5: bump latest version to 5.11.2

- qt5canvas3d: update license info
- qt5serialbus: update license hash (LICENSE.FDL editorial change, see [1])
- qt5serialport: update license hash (LICENSE.FDL editorial change, see [2])

[1] https://code.qt.io/cgit/qt/qtserialbus.git/commit/?id=226bd2f84c807b5401a82832dafa48d34966052a
[2] https://code.qt.io/cgit/qt/qtserialport.git/commit/?id=e0bd3949c30ce9c1988a6d6a3c0850d16a1fb33a

Signed-off-by: Peter Seiderer <ps.report@gmx.net>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/opencv3: bump version to 3.4.3
Bernd Kuhls [Sun, 30 Sep 2018 11:55:49 +0000 (13:55 +0200)]
package/opencv3: bump version to 3.4.3

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/freeswitch: bump version to 1.8.2
Bernd Kuhls [Sun, 30 Sep 2018 10:10:06 +0000 (12:10 +0200)]
package/freeswitch: bump version to 1.8.2

Rebased patch 0002 after upstream commit:
https://freeswitch.org/stash/projects/FS/repos/freeswitch/commits/c2b2f49c1d0dcbfa77d5d861155a301fead93071

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agohaproxy: fix build with pcre2
Fabrice Fontaine [Fri, 28 Sep 2018 17:34:19 +0000 (19:34 +0200)]
haproxy: fix build with pcre2

Add a patch to customize path to pcre-config or pcre2-config instead of
messing with PCREDIR, PCRE2DIR and PCRE2_LDFLAGS variables

Fixes:
 - http://autobuild.buildroot.net/results/490bc87b43074623d2338cfd2acb77d5de0abaa6

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/expedite: bump to the latest version
Romain Naour [Sat, 29 Sep 2018 13:28:17 +0000 (15:28 +0200)]
package/expedite: bump to the latest version

While at it add license file hash.

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/efl: bump to version 1.21.1
Romain Naour [Sat, 29 Sep 2018 13:28:16 +0000 (15:28 +0200)]
package/efl: bump to version 1.21.1

Remove the --enable-i-really-know-what-i-am-doing[...] option removed by
upstream [1]. But keep BR2_PACKAGE_EFL_HAS_RECOMMENDED_CONFIG at Kconfig
level for Buildroot users since "warnings for disabling features have
been left intact".

Update license file hash since dates was removed from the license text.

[1] https://git.enlightenment.org/core/efl.git/commit/?id=1cda9fe749636484b1328e694a8dbbe4f9d0c31d

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agobootutils: fix build with glibc 2.28
Fabrice Fontaine [Sat, 29 Sep 2018 11:15:37 +0000 (13:15 +0200)]
bootutils: fix build with glibc 2.28

Replace first patch which was adding sys/types.h to fix musl issue by a
patch adding sys/sysmacros.h to fix build with glibc 2.28

Fixes:
 - http://autobuild.buildroot.org/results/c26761663a764a2eb7af54316a6dc78bd01490fb

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agosqlite: bump to version 3.25.2
Ferdinand van Aartsen [Fri, 28 Sep 2018 22:04:31 +0000 (00:04 +0200)]
sqlite: bump to version 3.25.2

Signed-off-by: Ferdinand van Aartsen <ferdinand@ombud.nl>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agomosquitto: security bump to version 1.5.3
Fabrice Fontaine [Fri, 28 Sep 2018 21:22:07 +0000 (23:22 +0200)]
mosquitto: security bump to version 1.5.3

Fix CVE-2018-12543. If a message is sent to Mosquitto with a topic that
begins with $, but is not $SYS, then an assert that should be unreachable is
triggered and Mosquitto will exit.

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopython-msgpack: bump to version 0.5.6
Asaf Kahlon [Sat, 29 Sep 2018 08:14:52 +0000 (11:14 +0300)]
python-msgpack: bump to version 0.5.6

Also add license hash.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/{mesa3d, mesa3d-headers}: bump version to 18.2.1
Bernd Kuhls [Sun, 30 Sep 2018 08:00:33 +0000 (10:00 +0200)]
package/{mesa3d, mesa3d-headers}: bump version to 18.2.1

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/samba4: bump version to 4.9.1
Bernd Kuhls [Sun, 30 Sep 2018 08:01:39 +0000 (10:01 +0200)]
package/samba4: bump version to 4.9.1

Release notes: https://www.samba.org/samba/history/samba-4.9.1.html

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/apache: security bump to version 2.4.35
Bernd Kuhls [Sun, 30 Sep 2018 07:59:17 +0000 (09:59 +0200)]
package/apache: security bump to version 2.4.35

Fixes: CVE-2018-11763: mod_http2, DoS via continuous SETTINGS frames
https://lists.apache.org/thread.html/d435b0267a76501b9e06c552b20c887171064cde38e46d678da4d3dd@%3Cannounce.httpd.apache.org%3E

Release notes:
https://lists.apache.org/thread.html/5d604774652fc073b1b161584d0d1efbdba7898c40ae2e2334725e5f@%3Cannounce.httpd.apache.org%3E

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopython-engineio: bump to version 2.3.1
Asaf Kahlon [Sun, 30 Sep 2018 04:43:37 +0000 (07:43 +0300)]
python-engineio: bump to version 2.3.1

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopython-cython: bump to version 0.28.5
Asaf Kahlon [Sat, 29 Sep 2018 17:55:14 +0000 (20:55 +0300)]
python-cython: bump to version 0.28.5

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoiozone: bump to version 3_482
Gilles Talis [Sat, 29 Sep 2018 15:09:04 +0000 (17:09 +0200)]
iozone: bump to version 3_482

Reworked patch from Gustavo Zacharias to make it apply to this version

Signed-off-by: Gilles Talis <gilles.talis@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agohttping: add license hash
Gilles Talis [Sat, 29 Sep 2018 15:09:03 +0000 (17:09 +0200)]
httping: add license hash

Signed-off-by: Gilles Talis <gilles.talis@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoocrad: add license hash
Gilles Talis [Sat, 29 Sep 2018 15:09:02 +0000 (17:09 +0200)]
ocrad: add license hash

Signed-off-by: Gilles Talis <gilles.talis@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agotesseract-ocr: bump to version 3.05.02
Gilles Talis [Sat, 29 Sep 2018 15:09:01 +0000 (17:09 +0200)]
tesseract-ocr: bump to version 3.05.02

Also added license hash

Signed-off-by: Gilles Talis <gilles.talis@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoleptonica: bump to version 1.76.0
Gilles Talis [Sat, 29 Sep 2018 15:09:00 +0000 (17:09 +0200)]
leptonica: bump to version 1.76.0

Also added license hash

Signed-off-by: Gilles Talis <gilles.talis@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agowebp: bump to version 1.0.0
Gilles Talis [Sat, 29 Sep 2018 15:08:59 +0000 (17:08 +0200)]
webp: bump to version 1.0.0

Signed-off-by: Gilles Talis <gilles.talis@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agobind: security bump to version 9.11.4-P2
Peter Korsgaard [Sat, 29 Sep 2018 19:30:39 +0000 (21:30 +0200)]
bind: security bump to version 9.11.4-P2

>From the release notes
(http://ftp.isc.org/isc/bind9/9.11.4-P2/RELEASE-NOTES-bind-9.11.4-P2.txt):

 * There was a long-existing flaw in the documentation for ms-self,
   krb5-self, ms-subdomain, and krb5-subdomain rules in update-policy
   statements.  Though the policies worked as intended, operators who
   configured their servers according to the misleading documentation may
   have thought zone updates were more restricted than they were; users of
   these rule types are advised to review the documentation and correct
   their configurations if necessary.  New rule types matching the
   previously documented behavior will be introduced in a future maintenance
   release.  [GL !708]

 * named could crash during recursive processing of DNAME records when
   deny-answer-aliases was in use.  This flaw is disclosed in CVE-2018-5740.
   [GL #387]

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopython-engineio: bump to version 2.3.0
Asaf Kahlon [Fri, 28 Sep 2018 14:37:45 +0000 (17:37 +0300)]
python-engineio: bump to version 2.3.0

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agohaproxy: security bump to 1.8.14
Fabrice Fontaine [Thu, 27 Sep 2018 20:21:56 +0000 (22:21 +0200)]
haproxy: security bump to 1.8.14

Fix CVE-2018-14645 (see
https://www.mail-archive.com/haproxy@formilux.org/msg31253.html)

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoxl2tp: bump to version 1.3.12
Fabrice Fontaine [Thu, 27 Sep 2018 18:19:07 +0000 (20:19 +0200)]
xl2tp: bump to version 1.3.12

Add hash for license file

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoghostscript: security bump to version 9.25
Peter Korsgaard [Thu, 27 Sep 2018 16:00:23 +0000 (18:00 +0200)]
ghostscript: security bump to version 9.25

Fixes the following security issues:

- CVE-2018-16543: In Artifex Ghostscript before 9.24, gssetresolution and
  gsgetresolution allow attackers to have an unspecified impact

- CVE-2018-17183: Artifex Ghostscript before 9.25 allowed a user-writable
  error exception table, which could be used by remote attackers able to
  supply crafted PostScript to potentially overwrite or replace error
  handlers to inject code.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoglibc: bump version for post-2.28 fixes
Peter Korsgaard [Thu, 27 Sep 2018 13:07:13 +0000 (15:07 +0200)]
glibc: bump version for post-2.28 fixes

Carlos O'Donell (1):
      Fix tst-setcontext9 for optimized small stacks.

DJ Delorie (3):
      RISC-V: Fix rounding save/restore bug.
      Regen RISC-V rvd ULPs
      Improve ChangeLog message.

Florian Weimer (6):
      Linux: Rewrite __old_getdents64 [BZ #23497]
      error, error_at_line: Add missing va_end calls
      nscd: Deallocate existing user names in file parser
      nss_files: Fix file stream leak in aliases lookup [BZ #23521]
      regex: Add test tst-regcomp-truncated [BZ #23578]
      misc: New test misc/tst-gethostid

H.J. Lu (1):
      i386: Use ENTRY and END in start.S [BZ #23606]

Martin Kuchta (1):
      pthread_cond_broadcast: Fix waiters-after-spinning case [BZ #23538]

Mingli Yu (1):
      Linux gethostid: Check for NULL value from gethostbyname_r [BZ #23679]

Paul Eggert (1):
      regex: fix uninitialized memory access

Samuel Thibault (2):
      hurd: Add missing symbols for proper libc_get/setspecific
      hurd: Avoid PLTs for __pthread_get/setspecific

Stefan Liebler (1):
      Fix segfault in maybe_script_execute.

Wilco Dijkstra (1):
      Fix strstr bug with huge needles (bug 23637)

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopython-psutil: bump to version 5.4.7
Asaf Kahlon [Wed, 26 Sep 2018 15:34:50 +0000 (18:34 +0300)]
python-psutil: bump to version 5.4.7

Also add license hash.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Reviewed-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopython-lmdb: bump to version 0.94
Asaf Kahlon [Wed, 26 Sep 2018 15:34:49 +0000 (18:34 +0300)]
python-lmdb: bump to version 0.94

Also add license hash.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Reviewed-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopython-jinja2: bump to version 2.10
Asaf Kahlon [Wed, 26 Sep 2018 15:34:48 +0000 (18:34 +0300)]
python-jinja2: bump to version 2.10

Also add license hash.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Reviewed-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopython-incremental: bump to version 17.5.0
Asaf Kahlon [Wed, 26 Sep 2018 15:34:47 +0000 (18:34 +0300)]
python-incremental: bump to version 17.5.0

Also add license hash.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Reviewed-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>