buildroot/package/libidn, branch 2019.02-op-build

libidn: bump to version 1.35

2018-09-08T13:11:26+00:00

Remove sha1 (no announcement made on http://lists.nongnu.org/archive/html/help-libidn/) Signed-off-by: Fabrice Fontaine Signed-off-by: Thomas Petazzoni

libidn: bump to version 1.34

2018-05-01T19:45:13+00:00

- Remove both patches (already in version) - Remove AUTORECONF = YES (patch removed) - Add hash for license files Signed-off-by: Fabrice Fontaine Signed-off-by: Thomas Petazzoni

libidn: fix build with gcc 7.x

2017-11-02T20:16:20+00:00

Fixes: http://autobuild.buildroot.net/results/f7fc775584ad35349f0d66ed8632ab18f3859f9c/ Note: this problem wasn't seen until now because we were only testing gcc 7.x/glibc, and the problematic code is not built when glibc is used. Signed-off-by: Thomas Petazzoni

libidn: fix build without makeinfo

2017-09-24T18:42:44+00:00

Build fails when the makeinfo utility is not installed on the host. Fixes: http://autobuild.buildroot.net/results/dfd/dfdfb34ed81ba3a4b7a7271be482e75eca849dbf/ http://autobuild.buildroot.net/results/b33/b33c0b0e6b1033ab1d1294a91b869ee6adcd391a/ http://autobuild.buildroot.net/results/940/9401cc10f6da6a2e3453ebc65ce573c370733fb5/ Signed-off-by: Baruch Siach Tested-by: Bernd Kuhls Signed-off-by: Peter Korsgaard

libidn: add fix for CVE-2017-14062

2017-09-22T15:36:42+00:00

Add upstream patch fixing CVE-2017-14062: Integer overflow in the decode_digit function in puny_decode.c in Libidn2 before 2.0.4 allows remote attackers to cause a denial of service or possibly have unspecified other impact. This issue also affects libidn. Unfortunately, the patch also triggers reconf of the documentation subdirectory, since lib/punycode.c is listed in GDOC_SRC that is defined in doc/Makefile.am. Add autoreconf to handle that. Signed-off-by: Baruch Siach Signed-off-by: Peter Korsgaard

libidn: use the new gettext logic

2017-07-04T23:28:44+00:00

This commit switches to use the new gettext logic, which involves: - using TARGET_NLS_DEPENDENCIES instead of hand-encoded dependencies on gettext/host-gettext - dropping BR2_PACKAGE_GETTEXT selection Signed-off-by: Thomas Petazzoni

package: use SPDX short identifier for LGPLv3/LGPLv3+

2017-04-01T13:18:39+00:00

We want to use SPDX identifier for license string as much as possible. SPDX short identifier for LGPLv3/LGPLv3+ is LGPL-3.0/LGPL-3.0+. This change is done using following command. find . -name "*.mk" | xargs sed -ri '/LICENSE( )?[\+:]?=/s/LGPLv3(\+)?/LGPL-3.0\1/g' Signed-off-by: Rahul Bedarkar Signed-off-by: Thomas Petazzoni

boot, package: use SPDX short identifier for GPLv3/GPLv3+

2017-04-01T13:17:59+00:00

We want to use SPDX identifier for license string as much as possible. SPDX short identifier for GPLv3/GPLv3+ is GPL-3.0/GPL-3.0+. This change is done using following command. find . -name "*.mk" | xargs sed -ri '/LICENSE( )?[\+:]?=/s/\/GPL-3.0/g' Signed-off-by: Rahul Bedarkar Acked-by: Arnout Vandecappelle (Essensium/Mind) Signed-off-by: Thomas Petazzoni

boot, linux, package: use SPDX short identifier for GPLv2/GPLv2+

2017-04-01T13:16:38+00:00

We want to use SPDX identifier for license strings as much as possible. SPDX short identifier for GPLv2/GPLv2+ is GPL-2.0/GPL-2.0+. This change is done by using following command. find . -name "*.mk" | xargs sed -ri '/LICENSE( )?[\+:]?=/s/\/GPL-2.0/g' Signed-off-by: Rahul Bedarkar Signed-off-by: Thomas Petazzoni

libidn: security bump to version 1.33

2016-07-23T13:06:43+00:00

Fixes: CVE-2015-8948 - out-of-bounds read in CLI tool. CVE-2016-6261 - out-of-bounds stack read in idna_to_ascii_4i. CVE-2016-6262 - followup fix to CVE-2015-8948. CVE-2016-6263 - stringprep_utf8_nfkc_normalize reject invalid UTF-8. Signed-off-by: Gustavo Zacarias Signed-off-by: Thomas Petazzoni