Adolf Belka [Tue, 2 Dec 2025 11:57:45 +0000 (12:57 +0100)]
lvm2: Update to version 2.03.37
- Update from version 2.03.36 to 2.03.37
- No change to rootfile
- Changelog
2.03.37
Remove unsupported --blockdevice option from lvscan.
Support output in list mode for all lvmconfig --typeconfig types with --list.
Enhance shutdown performance of daemons using libdaemon.
Update lvmdevices(8).
Add --force option for lvmdevices --update.
Add --listids, --delid, --addid options for manipulation by device_id to
lvmdevices.
Add missing synchronization for vdopool.
Fix deadlock in lvmdbusd on SIGINT in lvm shell mode.
Add VG attr character and pr field for persistent reservation status to vgs.
Fix persistent reservations setting handling in vgmerge, vgsplit and
vgimportclone.
Add missing synchronization while converting cachevols.
Warn on classic snapshot on raid creation and error on activation if missing.
Translate udev device paths in lvmdbusd for test environments.
Use source='udev' in lvmdbusd to monitor processed udev events.
Symlink to /dev nodes when using alternative dev dir to trigger udev.
Avoid passing uninitilized buffer in dmeventd to fix valgrind report.
Improve lvmdbusd matching of udevd reported device paths.
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Adolf Belka [Tue, 2 Dec 2025 11:57:44 +0000 (12:57 +0100)]
libpng: Update to version 1.6.51
- Update from version 1.6.50 to 1.6.51
- Update of rootfile
- Four CVE fixes
- Changelog
1.6.51
Fixed CVE-2025-64505 (moderate severity):
Heap buffer overflow in `png_do_quantize` via malformed palette index.
(Reported by Samsung; analyzed by Fabio Gritti.)
Fixed CVE-2025-64506 (moderate severity):
Heap buffer over-read in `png_write_image_8bit` with 8-bit input and
`convert_to_8bit` enabled.
(Reported by Samsung and <weijinjinnihao@users.noreply.github.com>;
analyzed by Fabio Gritti.)
Fixed CVE-2025-64720 (high severity):
Buffer overflow in `png_image_read_composite` via incorrect palette
premultiplication.
(Reported by Samsung; analyzed by John Bowler.)
Fixed CVE-2025-65018 (high severity):
Heap buffer overflow in `png_combine_row` triggered via
`png_image_finish_read`.
(Reported by <yosiimich@users.noreply.github.com>.)
Fixed a memory leak in `png_set_quantize`.
(Reported by Samsung; analyzed by Fabio Gritti.)
Removed the experimental and incomplete ERROR_NUMBERS code.
(Contributed by Tobias Stoeckmann.)
Improved the RISC-V vector extension support; required RVV 1.0 or newer.
(Contributed by Filip Wasil.)
Added GitHub Actions workflows for automated testing.
Performed various refactorings and cleanups.
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Adolf Belka [Mon, 1 Dec 2025 16:11:07 +0000 (17:11 +0100)]
gnutls: Update to version 3.8.11
- Update from version 3.8.10 to 3.8.11
- Update of rootfile
- One CVE fix
- Changelog
3.8.11
libgnutls: Fix stack overwrite in gnutls_pkcs11_token_init
Reported by Luigino Camastra from Aisle Research. [GNUTLS-SA-2025-11-18,
CVSS: low] [CVE-2025-9820]
libgnutls: MAC algorithms for PSK binders is now configurable
The previous implementation assumed HMAC-SHA256 to calculate the
PSK binders. With the new gnutls_psk_allocate_client_credentials2()
and gnutls_psk_allocate_server_credentials2() functions, the
application can use other MAC algorithms such as HMAC-SHA384.
libgnutls: Expose a new function to provide the maximum record send size
A new function gnutls_record_get_max_send_size() has been added to
determine the maximum size of a TLS record to be sent to the peer.
libgnutls: Expose a new function to update keys without sending a KeyUpdate
to the peer. A new function gnutls_handshake_update_receiving_key()
has been added to allow updating the local receiving key without
sending any KeyUpdate messages.
libgnutls: PKCS#11 cryptographic provider configuration takes a token URI
instead of a module path. To allow using a PKCS#11 module exposing
multiple tokens, the "path" configuration keyword was replaced with
the "url" keyword.
libgnutls: Support crypto-auditing probe points
crypto-auditing is a project to monitor which cryptographic
operations are taking place in the library at run time, through
eBPF. This adds necessary probe points for that, in public key
cryptography and the TLS use-case. To enable this, run configure
with --enable-crypto-auditing.
build: The minimum version of Nettle has been updated to 3.10
Given Nettle 3.10 is ABI compatible with 3.6 and includes several
security relevant fixes, the library's minimum requirement of
Nettle is updated to 3.10.
build: The default priority file path is now constructed from sysconfdir
Previously, the location of the default priority file was
hard-coded to be /etc/gnutls/config. Now it takes into account of
the --sysconfdir option given to the configure script.
API and ABI modifications:
gnutls_psk_allocate_client_credentials2: New function
gnutls_psk_allocate_server_credentials2: New function
gnutls_record_get_max_send_size: New function
gnutls_handshake_update_receiving_key: New function
gnutls_audit_push_context: New function
gnutls_audit_pop_context: New function
gnutls_audit_current_context: New function
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Adolf Belka [Fri, 28 Nov 2025 13:53:09 +0000 (14:53 +0100)]
libarchive: Update to version 3.8.3
- Update from version 3.8.2 to 3.8.3
- Update of rootfile
- Changelog
3.8.3
Security fixes:
lib: Create temporary files in the target directory (#2753)
lha: Fix for an out-of-bounds buffer overrun when using p[H_LEVEL_OFFSET]
(#2768)
7-zip: Fix a buffer overrun when reading truncated 7zip headers (#2769)
Notable bugxies:
lz4 and zstd: Support both lz4 and zstd data with leading skippable frames
(#2771)
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Adolf Belka [Fri, 28 Nov 2025 13:53:07 +0000 (14:53 +0100)]
glib: Update to version 2.87.0
- Update from version 2.86.0 to 2.87.0
- Update of rootfile
- Changelog
2.87.0
* Update to Unicode 17.0.0 (!4793, work by Peng Wu)
* Support runtime extensions to `gdbus-codegen` tool to allow modifying its
output in project-specific ways (!4812, work by Sebastian Wick)
* Use document portal to open all the URIs for snaps (!4822, work by
Marco Trevisan)
* Add g_markup_parse_context_get_offset() API for getting error locations in XML
files (!4879, work by Matthias Clasen)
* Bugs fixed:
- GNOME/ptyxis#490 new tab does not open in current directory when hostname
contains a period (Christian Hergert)
- #672 hash resize broken for large sizes (Tobias Stoeckmann)
- #2608 Support nanosecond time resolution with stat() on macOS (André Barnabá
Silva)
- #2949 gdbus-server-auth test intermittently fails on macOS
- #3070 gio/g-file-info test fails on macOS (André Barnabá Silva)
- #3523 g_filename_from_uri rejects valid host names according to RFC 1123
(Christian Hergert)
- #3771 Should opening a .desktop file fail if Exec key contains invalid
escapes? (Philip Withnall)
- #3784 Memory leak related to g_get_home_dir (Tobias Stoeckmann)
- #3785 "gio trash --empty" returns 0 even when it fails to remove files
- #3790 _g_log_abort() should check TracerPid from /proc before raising
SIGTRAP
- #3805 [CI] Pipeline on 'main' failed for commit e6c52881
- #3806 fake-document-portal needs to use _g_fd_query_path() rather than
accessing /proc/self/fd directly (Marco Trevisan (Treviño))
- #3808 Uyghur language translation updated.
- #3809 GRegex tests fail with pcre2 10.47: different error for ^(a)\g{3
(Marco Trevisan (Treviño))
- #3811 g_get_user_special_dir doesn't strip trailing slash from $HOME/
(Tobias Stoeckmann)
- !4753 GIO/Win32: Remove custom definitions of system interfaces
- !4759 GWin32AppInfo: Allow focus-stealing when requested via
GAppLaunchContext
- !4764 subprojects: Update libffi, pcre2, proxy-libintl
- !4789 gio: add some nullable / zero-terminated annotations
- !4790 gstring: Support large strings in g_string_replace
- !4792 gtype: Define copy and free functions for GTypeClass and
GTypeInterface
- !4793 gunicode: Update the code for Unicode 17.0.0
- !4794 CI/MSYS2: Use builtin b_coverage option
- !4795 Meson: Add arguments and defines to all C-like languages
- !4798 GDBus: Add `(out)` annotation to quark in
g_dbus_error_register_error_domain()
- !4803 Add missing `(array length=n_values)` annotation to `GEnumClass` /
`GFlagsClass`
- !4806 build: Post-release version bump
- !4807 Add missing "nullable" to parameter docs of GList/GSList
- !4810 gutils: Mark load_user_special_dirs unlocked
- !4811 Update Esperanto translation
- !4812 gdbus-codegen: Support extensions and changing the
GDBusInterfaceSkeleton type to inherit from
- !4813 Update Serbian translation
- !4815 gfile: Expand documentation around file equality
- !4816 strfuncs: Check for overflows when joining strings
- !4817 Mark a couple of functions as constructors and not methods
- !4819 utils: Fix a leak when user-dirs.dirs declares a variable twice
- !4820 gio/tests: Fix a race condition in /gdbus/connection/flush
- !4822 GDesktopAppInfo: Use document portal to open all the URIs for snaps
- !4823 gio/gdocumentportal: Use the target name when opening a symlink
- !4825 gdbus-codegen: Supress coverity warning in skeleton finalization
- !4827 ghostutils: Treat 0x80 (and above) as non-ASCII
- !4829 docs: Fix typos in win32-build.md
- !4830 giowin32: Fix uninitialised variable error on msys2-clang64
- !4831 macros: Add C23/C++23 standards
- !4832 gtypes: Support more overflow check implementations
- !4835 Update Portuguese translation
- !4837 tests: Fix another clang compiler warning
- !4838 GLocalFile: keep suffix name when trashing
- !4840 gpattern: Support patterns/strings longer than G_MAXUINT
- !4843 tests: Use integer widths rather than maximum values for strfuncs
check
- !4844 Forward-port !4839 “Update Romanian translation” to main
- !4847 GFile entity tags: Update HTTP reference link to point to RFC9110
ETags description
- !4849 Update British English translation (main)
- !4851 Docs: New file-name-encodings image: light/dark, color
- !4855 glib-compile-resources: print error message when the temp file cannot
be created
- !4856 Mark return value of g_dbus_interface_get_info() as `nullable`
- !4857 Docs: Migrate gvariant-*.svg licenses to comments
- !4858 gsocketcontrolmessage: Fix a minor typo in a doc comment
- !4860 Fix `g_memory_monitor_base_query_mem_ratio` on Solaris
- !4861 gio/tests/gapplication: Check the values received on action activation
- !4862 ci: Temporarily disable macos-arm64 CI as it has issues creating temp
files
- !4863 ci: Temporarily disable msys2-mingw32 CI
- !4864 ci: Update Fedora CI image to Fedora 41
- !4866 Fix various scan-build errors
- !4870 Reenable MSYS2 CI
- !4874 ci: use APFS for macOS TMPDIR
- !4877 gresolver: Fix loopback detection of IPv6 addresses
- !4879 Add g_markup_parse_context_get_offset
- !4887 glib-unix: Add Solaris implementation of g_unix_fd_query_path
- !4893 ci: Use CI/CD file variable tokens for secrets
- !4894 gthread-win32: Ignore error when setting thread priority
- !4895 gunixmounts: fix out of bounds write in AIX mount table parser
- !4896 ci: Actually use token file for the issue bot
- !4897 Re-enable PCRE2 tests for 32-bit Visual Studio builds
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Adolf Belka [Fri, 28 Nov 2025 13:53:06 +0000 (14:53 +0100)]
git: Update to version 2.52.0
- Update from version 2.51.0 to 2.52.0
- Update of rootfile
- Changelog
2.52.0
UI, Workflows & Features
* The "list" subcommand of "git refs" acts as a front-end for
"git for-each-ref".
* "git cmd --help-all" now works outside repositories.
* "git diff-tree" learned "--max-depth" option.
* A new subcommand "git repo" gives users a way to grab various
repository characteristics.
* A new command "git last-modified" has been added to show the closest
ancestor commit that touched each path.
* The "git refs exists" command that works like "git show-ref --exists"
has been added.
* "git repo info" learns the short-hand option "-z" that is the same as
"--format=nul", and learns to report the objects format used in the
repository.
* "core.commentChar=auto" that attempts to dynamically pick a
suitable comment character is non-workable, as it is too much
trouble to support for little benefit, and is marked as deprecated.
* "git send-email" learned to drive "git imap-send" to store already
sent e-mails in an IMAP folder.
* The "promisor-remote" capability mechanism has been updated to
allow the "partialCloneFilter" settings and the "token" value to be
communicated from the server side.
* Declare that "git init" that is not otherwise configured uses
'main' as the initial branch, not 'master', starting Git 3.0.
* Keep giving hint about the default initial branch name for users
who may be surprised after Git 3.0 switch-over.
* The stash.index configuration variable can be set to make "git stash
pop/apply" pretend that it was invoked with "--index".
* "git fast-import" learned that "--signed-commits=<how>" option that
corresponds to that of "git fast-export".
* Marking a hunk 'selected' in "git add -p" and then splitting made
all the split pieces 'selected'; this has been changed to make them
all 'undecided', which gives better end-user experience.
* Configuration variables that take a pathname as a value
(e.g. blame.ignorerevsfile) can be marked as optional by prefixing
":(optional)" before its value.
* Show 'P'ipe command in "git add -p".
* "git sparse-checkout" subcommand learned a new "clean" action to
prune otherwise unused working-tree files that are outside the
areas of interest.
* "git fast-import" is taught to handle signed tags, just like it
recently learned to handle signed commits, in different ways.
* A new configuration variable commitGraph.changedPaths allows to
turn "--changed-paths" on by default for "git commit-graph".
* "Symlink symref" has been added to the list of things that will
disappear at Git 3.0 boundary.
* "git maintenance" command learns the "geometric" strategy where it
avoids doing maintenance tasks that rebuilds everything from
scratch.
* "git repo structure", a new command.
* The help text and manual page of "git bisect" command have been
made consistent with each other.
Performance, Internal Implementation, Development Support etc.
* string_list_split*() family of functions have been extended to
simplify common use cases.
* Arrays of strbuf is often a wrong data structure to use, and
strbuf_split*() family of functions that create them often have
better alternatives. Update several code paths and replace
strbuf_split*().
* Revision traversal limited with pathspec, like "git log dir/*",
used to ignore changed-paths Bloom filter when the pathspec
contained wildcards; now they take advantage of the filter when
they can.
* Doc lint updates to encourage the newer and easier-to-use
`synopsis` format, with fixes to a handful of existing uses.
* Remove dependency on the_repository and other globals from the
commit-graph code, and other changes unrelated to de-globaling.
* Discord has been added to the first contribution documentation as
another way to ask for help.
* Inspired by Ezekiel's recent effort to showcase Rust interface, the
hash function implementation used to hash lines have been updated
to the one used for ELF symbol lookup by Glibc.
* Instead of scanning for the remaining items to see if there are
still commits to be explored in the queue, use khash to remember
which items are still on the queue (an unacceptable alternative is
to reserve one object flag bits).
* The bulk-checkin code used to depend on a file-scope static
singleton variable, which has been updated to pass an instance
throughout the callchain.
* The work to build on the bulk-checkin infrastructure to create many
objects at once in a transaction and to abstract it into the
generic object layer continues.
* CodingGuidelines now spells out how bitfields are to be written.
* Adjust to the way newer versions of cURL selectively enable tracing
options, so that our tests can continue to work.
* The clear_alloc_state() API function was not fully clearing the
structure for reuse, but since nobody reuses it, replace it with a
variant that frees the structure as well, making the callers simpler.
* "git range-diff" learned a way to limit the memory consumed by
O(N*N) cost matrix.
* Some places in the code confused a variable that is *not* a boolean
to enable color but is an enum that records what the user requested
to do about color. A couple of bugs of this sort have been fixed,
while the code has been cleaned up to prevent similar bugs in the
future.
* The build procedure based on meson learned a target to only build
documentation, similar to "make doc".
(merge ff4ec8ded0 ps/meson-build-docs later to maint).
* Dip our toes a bit to (optionally) use Rust implemented helper
called from our C code.
* Documentation for "git log --pretty" options has been updated
to make it easier to translate.
* Instead of three library archives (one for git, one for reftable,
and one for xdiff), roll everything into a single libgit.a archive.
This would help later effort to FFI into Rust.
* The beginning of SHA1-SHA256 interoperability work.
* Build procedure for a few credential helpers (in contrib/) have
been updated.
* CI improvements to handle the recent Rust integration better.
* The code in "git repack" machinery has been cleaned up to prepare
for incremental update of midx files.
* Two slightly different ways to get at "all the packfiles" in API
has been cleaned up.
* The code to walk revision graph to compute merge base has been
optimized.
* AI guidelines has been added to our documentation set.
* Contributed credential helpers (obviously in contrib/) now have "cd
$there && make install" target.
* The "MyFirstContribution" tutorial tells the reader how to send out
their patches; the section gained a hint to verify the message
reached the mailing list.
* The "debug" ref-backend was missing a method implementation, which
has been corrected.
* Build procedure for Wincred credential helper has been updated.
* The build procedure based on meson learned to allow builders to
specify the directory to install HTML documents.
* Building "git contacts" script (in contrib/) left the resulting
file unexecutable, which has been corrected.
Bug Fixes
* During interactive rebase, using 'drop' on a merge commit lead to
an error, which was incorrect.
* "git refs migrate" to migrate the reflog entries from a refs
backend to another had a handful of bugs squashed.
* "git remote rename origin upstream" failed to move origin/HEAD to
upstream/HEAD when origin/HEAD is unborn and performed other
renames extremely inefficiently, which has been corrected.
(merge 16c4fa26b9 ps/remote-rename-fix later to maint).
* "git describe" has been optimized by using better data structure.
(merge 08bb69d70f rs/describe-with-prio-queue later to maint).
* "git push" had a code path that led to BUG() but it should have
been a die(), as it is a response to a usual but invalid end-user
action to attempt pushing an object that does not exist.
* Various bugs about rename handling in "ort" merge strategy have
been fixed.
* "git jump" (in contrib/) fails to parse the diff header correctly
when a file has a space in its name, which has been corrected.
(merge 621ce9c1c6 gh/git-jump-pathname-with-sp later to maint).
* "git diff --no-index" run inside a subdirectory under control of a
Git repository operated at the top of the working tree and stripped
the prefix from the output, and oddballs like "-" (stdin) did not
work correctly because of it. Correct the set-up by undoing what
the set-up sequence did to cwd and prefix.
* Various options to "git diff" that makes comparison ignore certain
aspects of the differences (like "space changes are ignored",
"differences in lines that match these regular expressions are
ignored") did not work well with "--name-only" and friends.
(merge b55e6d36eb ly/diff-name-only-with-diff-from-content later to maint).
* The above caused regressions, which has been corrected.
* Documentation for "git rebase" has been updated.
(merge 3f7f2b0359 je/doc-rebase later to maint).
* The start_delayed_progress() function in the progress eye-candy API
did not clear its internal state, making an initial delay value
larger than 1 second ineffective, which has been corrected.
* The compatObjectFormat extension is used to hide an incomplete
feature that is not yet usable for any purpose other than
developing the feature further. Document it as such to discourage
its use by mere mortals.
* "git log -L..." compared trees of multiple parents with the tree of the
merge result in an unnecessarily inefficient way.
(merge 0a15bb634c sg/line-log-merge-optim later to maint).
* Under a race against another process that is repacking the
repository, especially a partially cloned one, "git fetch" may
mistakenly think some objects we do have are missing, which has
been corrected.
* "git fetch" can clobber a symref that is dangling when the
remote-tracking HEAD is set to auto update, which has been
corrected.
* "git describe <blob>" misbehaves and/or crashes in some corner
cases, which has been taught to exit with failure gracefully.
(merge 7c10e48e81 jk/describe-blob later to maint).
* Manual page for "gitk" is updated with the current maintainer's
name.
* Update the instructions for using GGG in the MyFirstContribution
document to say that a GitHub PR could be made against `git/git`
instead of `gitgitgadget/git`.
* Makefile tried to run multiple "cargo build" which would not work
very well; serialize their execution to work around this problem.
* "git repack --path-walk" lost objects in some corner cases, which
has been corrected.
* "git ls-files <pathspec>..." should not necessarily have to expand
the index fully if a sparsified directory is excluded by the
pathspec; the code is taught to expand the index on demand to avoid
this.
(merge 681f26bccc ds/ls-files-lazy-unsparse later to maint).
* Windows "real-time monitoring" interferes with the execution of
tests and affects negatively in both correctness and performance,
which has been disabled in Gitlab CI.
* A broken or malicious "git fetch" can say that it has the same
object for many many times, and the upload-pack serving it can
exhaust memory storing them redundantly, which has been corrected.
* A corner case bug in "git log -L..." has been corrected.
* "git rev-parse --short" and friends failed to disambiguate two
objects with object names that share common prefix longer than 32
characters, which has been fixed.
(merge 8655908b9e jc/longer-disambiguation-fix later to maint).
* Some among "git add -p" and friends ignored color.diff and/or
color.ui configuration variables, which is an old regression, which
has been corrected.
* "git subtree" (in contrib/) did not work correctly when splitting
squashed subtrees, which has been improved.
* Import a newer version of the clar unit testing framework.
(merge 93dbb6b3c5 ps/clar-updates later to maint).
* "git send-email --compose --reply-to=<address>" used to add
duplicated Reply-To: header, which made mailservers unhappy. This
has been corrected.
(merge f448f65719 nb/send-email-no-dup-reply-to later to maint).
* "git rebase -i" failed to clean-up the commit log message when the
command commits the final one in a chain of "fixup" commands, which
has been corrected.
* There are double frees and leaks around setup_revisions() API used
in "git stash show", which has been fixed, and setup_revisions()
API gained a wrapper to make it more ergonomic when using it with
strvec-manged argc/argv pairs.
(merge a04bc71725 jk/setup-revisions-freefix later to maint).
* Deal more gracefully with directory / file conflicts when the files
backend is used for ref storage, by failing only the ones that are
involved in the conflict while allowing others.
* "git last-modified" operating in non-recursive mode used to trigger
a BUG(), which has been corrected.
* The use of "git config get" command to learn how ANSI color
sequence is for a particular type, e.g., "git config get
--type=color --default=reset no.such.thing", isn't very ergonomic.
(merge e4dabf4fd6 ps/config-get-color-fixes later to maint).
* The "do you still use it?" message given by a command that is
deeply deprecated and allow us to suggest alternatives has been
updated.
* Clang-format update to let our control macros be formatted the way we
had them traditionally, e.g., "for_each_string_list_item()" without
space before the parentheses.
* A few places where a size_t value was cast to curl_off_t without
checking has been updated to use the existing helper function.
* "git reflog write" did not honor the configured user.name/email
which has been corrected.
* Handling of an empty subdirectory of .git/refs/ in the ref-files
backend has been corrected.
* Our CI script requires "sudo" that can be told to preserve
environment, but Ubuntu replaced with "sudo" with an implementation
that lacks the feature. Work this around by reinstalling the
original version.
* The reftable backend learned to sanity check its on-disk data more
carefully.
(merge 466a3a1afd kn/reftable-consistency-checks later to maint).
* A lot of code clean-up of xdiff.
Split out of a larger topic.
(merge 8b9c5d2e3a en/xdiff-cleanup later to maint).
* "git format-patch --range-diff=... --notes=..." did not drive the
underlying range-diff with correct --notes parameter, ending up
comparing with different set of notes from its main patch output
you would get from "git format-patch --notes=..." for a singleton
patch.
* The code in "git add -p" and friends to iterate over hunks was
riddled with bugs, which has been corrected.
* A few more things that patch authors can do to help maintainer to
keep track of their topics better.
(merge 1a41698841 tb/doc-submitting-patches later to maint).
* An earlier addition to "git diff --no-index A B" to limit the
output with pathspec after the two directories misbehaved when
these directories were given with a trailing slash, which has been
corrected.
* The "--short" option of "git status" that meant output for humans
and "-z" option to show NUL delimited output format did not mix
well, and colored some but not all things. The command has been
updated to color all elements consistently in such a case.
* Unicode width table update.
* GPG signing test set-up has been broken for a year, which has been
corrected.
(merge 516bf45749 jc/t1016-setup-fix later to maint).
* Recent OpenSSH creates the Unix domain socket to communicate with
ssh-agent under $HOME instead of /tmp, which causes our test to
fail doe to overly long pathname in our test environment, which has
been worked around by using "ssh-agent -T".
* strbuf_split*() to split a string into multiple strbufs is often a
wrong API to use. A few uses of it have been removed by
simplifying the code.
(merge 2ab72a16d9 ob/gpg-interface-cleanup later to maint).
* "git shortlog" knows "--committer" and "--author" options, which
the command line completion (in contrib/) did not handle well,
which has been corrected.
(merge c568fa8e1c kf/log-shortlog-completion-fix later to maint).
* "git bisect" command did not react correctly to "git bisect help"
and "git bisect unknown", which has been corrected.
(merge 2bb3a012f3 rz/bisect-help-unknown later to maint).
* The 'q'(uit) command in "git add -p" has been improved to quit
without doing any meaningless work before leaving, and giving EOF
(typically control-D) to the prompt is made to behave the same way.
* The wildmatch code had a corner case bug that mistakenly makes
"foo**/bar" match with "foobar", which has been corrected.
(merge 1940a02dc1 jk/match-pathname-fix later to maint).
* Tests did not set up GNUPGHOME correctly, which is fixed but some
flaky tests are exposed in t1016, which needs to be addressed
before this topic can move forward.
(merge 6cd8369ef3 tz/test-prepare-gnupghome later to maint).
* The patterns used in the .gitignore files use backslash in the way
documented for fnmatch(3); document as such to reduce confusion.
(merge 8a6d158a1d jk/doc-backslash-in-exclude later to maint).
* The version of macos image used in GitHub CI has been updated to
macos-14, as the macos-13 that we have been using got deprecated.
Perforce binary used there has been changed to arm64 version to
match.
(merge 73b9cdb7c4 jc/ci-use-macos-14 later to maint).
(merge ffff0bb0da jc/ci-use-arm64-p4-on-macos later to maint).
* Other code cleanup, docfix, build fix, etc.
(merge 529a60a885 ua/t1517-short-help-tests later to maint).
(merge 22d421fed9 ac/deglobal-fmt-merge-log-config later to maint).
(merge a60203a015 dk/t7005-editor-updates later to maint).
(merge 16684b6fae ps/reftable-libgit2-cleanup later to maint).
(merge e5c27bd3d8 je/doc-add later to maint).
(merge 13296ac909 ps/object-store-midx-dedup-info later to maint).
(merge f9a6705d9a tc/t0450-harden later to maint).
(merge a66fc22bf9 rs/get-oid-with-flags-cleanup later to maint).
(merge 15b8abde07 js/mingw-includes-cleanup later to maint).
(merge 2cebca0582 tb/cat-file-objectmode-update later to maint).
(merge 8f487db07a kh/doc-patch-id-1 later to maint).
(merge f711f37b05 eb/t1016-hash-transition-fix later to maint).
(merge 85333aa1af jk/test-delete-gpgsig-leakfix later to maint).
2.51.2
Bug Fixes
* Recently we attempted to improve "git diff -w --quiet" and friends
to handle cases where patch output would be suppressed, but it
introduced a bug that emits unnecessary output, which has been
corrected.
* The code to squelch output from "git diff -w --name-status"
etc. for paths that "git diff -w -p" would have stayed silent
leaked output from dry-run patch generation, which has been
corrected.
* Windows "real-time monitoring" interferes with the execution of
tests and affects negatively in both correctness and performance,
which has been disabled in Gitlab CI.
* An earlier addition to "git diff --no-index A B" to limit the
output with pathspec after the two directories misbehaved when
these directories were given with a trailing slash, which has been
corrected.
* The "--short" option of "git status" that meant output for humans
and "-z" option to show NUL delimited output format did not mix
well, and colored some but not all things. The command has been
updated to color all elements consistently in such a case.
* Unicode width table update.
* Recent OpenSSH creates the Unix domain socket to communicate with
ssh-agent under $HOME instead of /tmp, which causes our test to
fail doe to overly long pathname in our test environment, which has
been worked around by using "ssh-agent -T".
Also contains various documentation updates, code cleanups and minor fixups.
2.51.1
Bug Fixes
* The "do you still use it?" message given by a command that is
deeply deprecated and allow us to suggest alternatives has been
updated.
* The compatObjectFormat extension is used to hide an incomplete
feature that is not yet usable for any purpose other than
developing the feature further. Document it as such to discourage
its use by mere mortals.
* Manual page for "gitk" is updated with the current maintainer's
name.
* Update the instructions for using GGG in the MyFirstContribution
document to say that a GitHub PR could be made against `git/git`
instead of `gitgitgadget/git`.
* Clang-format update to let our control macros be formatted the way we
had them traditionally, e.g., "for_each_string_list_item()" without
space before the parentheses.
* A few places where a size_t value was cast to curl_off_t without
checking has been updated to use the existing helper function.
* The start_delayed_progress() function in the progress eye-candy API
did not clear its internal state, making an initial delay value
larger than 1 second ineffective, which has been corrected.
* Makefile tried to run multiple "cargo build" which would not work
very well; serialize their execution to work around this problem.
* Adjust to the way newer versions of cURL selectively enable tracing
options, so that our tests can continue to work.
* During interactive rebase, using 'drop' on a merge commit led to
an error, which has been corrected.
* "git refs migrate" to migrate the reflog entries from a refs
backend to another had a handful of bugs squashed.
* "git push" had a code path that led to BUG() but it should have
been a die(), as it is a response to a usual but invalid end-user
action to attempt pushing an object that does not exist.
* Various bugs about rename handling in "ort" merge strategy have
been fixed.
* "git diff --no-index" run inside a subdirectory under control of a
Git repository operated at the top of the working tree and stripped
the prefix from the output, and oddballs like "-" (stdin) did not
work correctly because of it. Correct the set-up by undoing what
the set-up sequence did to cwd and prefix.
* Various options to "git diff" that make comparison ignore certain
aspects of the differences (like "space changes are ignored",
"differences in lines that match these regular expressions are
ignored") did not work well with "--name-only" and friends.
* Under a race against another process that is repacking the
repository, especially a partially cloned one, "git fetch" may
mistakenly think some objects we do have are missing, which has
been corrected.
* "git repack --path-walk" lost objects in some corner cases, which
has been corrected.
cf. <CABPp-BHFxxGrqKc0m==TjQNjDGdO=H5Rf6EFsf2nfE1=TuraOQ@mail.gmail.com>
* Fixes multiple crashes around midx write-out codepaths.
* A broken or malicious "git fetch" can say that it has the same
object for many many times, and the upload-pack serving it can
exhaust memory storing them redundantly, which has been corrected.
* A corner case bug in "git log -L..." has been corrected.
* Some among "git add -p" and friends ignored color.diff and/or
color.ui configuration variables, which is an old regression, which
has been corrected.
* "git rebase -i" failed to clean-up the commit log message when the
command commits the final one in a chain of "fixup" commands, which
has been corrected.
* Deal more gracefully with directory / file conflicts when the files
backend is used for ref storage, by failing only the ones that are
involved in the conflict while allowing others.
Also contains various documentation updates, code cleanups and minor fixups.
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Adolf Belka [Fri, 28 Nov 2025 13:53:05 +0000 (14:53 +0100)]
coreutils: Update to version 9.9
- Update from version 9.8 to 9.9
- Update of rootfile
- Changelog
9.9
Bug fixes
`basenc --base58` would not operate correctly with input > 15561475 bytes.
[bug introduced with --base58 in coreutils-9.8]
'cksum --check' now supports base64 encoded input in untagged format:
- for all length adjustable algorithms (blake2b, sha2, sha3),
- if that base64 input starts with a tag like "SHA1" etc.
Previously an error was given, about invalid input format.
[bug introduced in coreutils-9.2]
'cksum --check -a sha2' has better support for tagged format. Previously
an unneeded but explicit '-a sha2' did not match standard tags like SHA256.
Also non standard SHA2 tags with a bad length resulted in undefined behavior.
[bug introduced in coreutils-9.8]
'cp' restores performance with transparently compressed files, which
regressed due to the avoidance of copy offload, seen with OpenZFS at least.
[bug introduced in coreutils-9.8]
`env` on macOS, for now only when built with --disable-nls,
will no longer always set a __CF_USER_TEXT_ENCODING environment variable.
[bug introduced in coreutils-9.8]
'nice' now limits the adjusted niceness value to its supported range on
GNU/Hurd.
[This bug was present in "the beginning".]
'numfmt' no longer reads out-of-bounds memory with trailing blanks in input.
[bug introduced with numfmt in coreutils-8.21]
'numfmt' no longer outputs invalid characters with multi-byte blanks in input.
[bug introduced in coreutils-9.5]
'rm -d DIR' no longer fails on Ceph snapshot directories.
Although these directories are nonempty, 'rmdir DIR' succeeds on them.
[bug introduced in coreutils-8.16]
'sort --compress-program' now diagnoses if it can't write more data to an
exited compressor. Previously sort could have exited silently in this case.
[bug introduced in coreutils-6.8]
'tail' outputs the correct number of lines again for non-small -n values.
Previously it may have output too few lines.
[bug introduced in coreutils-9.8]
'unexpand' no longer triggers a heap buffer overflow with --tabs arguments
that use the GNU extension /NUM or +NUM formats.
[bug introduced in coreutils-8.28]
Changes in behavior
'cp' with default options may again, like with versions before v9.8,
miss opportunities to create holes with file systems that support
SEEK_HOLE only trivially. This change is a consequence of the
abovementioned copy offload fix.
'sort --compress-program' will continue without compressing temporary files
if the specified program cannot be executed. Also malformed shell scripts
without a "shebang line" will no longer be executed.
New Features
'numfmt' now accepts the --unit-separator=SEP option, to output or accept
a separator between the number and unit. For e.g. "1234 M".
Improvements
'fmt', 'date', 'nl', and 'pr' will now exit promptly upon receiving a write
error, which is significant when reading large / unbounded inputs.
install, sort, and split now use posix_spawn() to invoke child programs more
efficiently and more independently from their own memory usage.
'numfmt':
- parses numbers with a non-breaking space character before a unit
- parses numbers containing grouping characters from the current locale
- supports a multi-byte --delimiter character
- no longer processes input indefinitely in the presence of write errors
wc -l now operates 10% faster on hosts that support AVX512 instructions.
Build-related
chcon and runcon are not built by default if selinux headers are not present,
or if the --without-selinux configure option is specified.
This can be overridden with the --with-selinux configure option.
nproc no longer fails to build with Android API level <= 20.
[build issue introduced in coreutils-9.8]
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Additional fix for CVE-2025-11411 (possible domain hijacking attack),
to include YXDOMAIN and non-referral nodata answers in the mitigation
as well, reported by TaoFei Guo from Peking University, Yang Luo and
JianJun Chen from Tsinghua University."
Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Wed, 26 Nov 2025 16:20:30 +0000 (16:20 +0000)]
iptables: Migrate towards nftables
This patches changes that iptables will now use the nftables backend by
default. This way, we are able to migrate to nftables inside the kernel
without changing anything in the firewall scripts.
Fixes: #13911 - Migrate from iptables-legacy to iptables-nft Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Tue, 25 Nov 2025 11:31:56 +0000 (12:31 +0100)]
hostapd: Read the correct capabilities for the right band
Some modules don't support the same capabilities in the 2.4/5 GHz bands.
Therefore we need to abort parsing once we have found the correct
capabilities.
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Adolf Belka [Fri, 14 Nov 2025 11:17:43 +0000 (12:17 +0100)]
gnupg: Update to version 2.4.8
- Update from version 1.4.23 (2018) to 2.4.8 (2025)
- The old 1.4 branch is left available for users that have old documents stored that
required PGP-2.6 support for decryption. As PGP-2.6 has been obsolete for a long time
it is not in gnupg-2.4 branch.
- IPFire is not using pgp-2.6 for the addon and update packages. Therefore version 1.4.23
is not required.
- This patch updates gnupg to the current released branch. This branch requires
libassuan, libksba and npth libraries to be available for both the build and run time
stages. keyboxd is required for the key import stage. Additional patches are in this
set for the above changes
- This update was tested out on my vm. I built the updated gnupg in a CU198 version.
This was then installed and 11 addons successfully installed. Then the install was
successfully updated to CU199 (unstable). Then a further 3 addons were successfully
installed. In both versions the list updates also occurred successfully.
Tested-by: Adolf Belka <adolf.belka@ipfire.org> Signed-off-by: Adolf Belka <adolf.belka@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Adolf Belka [Fri, 14 Nov 2025 11:17:44 +0000 (12:17 +0100)]
libassuan: Update to version 3.0.2 and make into core program
- libassuan was previously an addon package, although not used by anything in IPFire.
- The update of gnupg to the 2.4 branch requires libassuan to be available for both the
build and the runtime, therefore this patch changes it from an addon package to a
core program.
- Update from version 3.0.1 to 3.0.2
- Update of rootfile
- Changelog
3.0.2
* Fix for FreeBSD to set the pid of assuan_peercred_t.
[rAdfa5e6532d]
* Use socklen_t for the length of socket address. [T5924]
* Fix errno setting on Widnows for assuan_sock_bind failure. [T7456]
* New assuan_sock_get_flag "w32_error" to get the actual Windows
error after a system call and not just the mapped errno. [T7456]
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Adolf Belka [Sat, 22 Nov 2025 19:49:21 +0000 (20:49 +0100)]
dhcpcd: Update to version 10.3.0
- Update from version 10.2.4 to 10.3.0
- No change in rootfile
- Changelog
10.3.0
privsep: enforce message boundaries with MSG_EOR on our messages
by @glebius in #533
Protocols will notify when dhcpcd can exit by @rsmarples in #536
DHCP: Don't request T1 and T2
DHCP: Don't request a lease time
DHCP6: Don't exit if using DHCP4 INFORM in non manager mode
ND: Route Information Option prefix is optional
ipv6: respect slaac hwaddr to really use the hwaddr
When stopping all interfaces at exit and releasing, remove persistance
NetBSD: Delete RTF_CONNECTED route when changing it
privsep: Drain the log when the root process is exiting
eloop: vastly reworked, kqueue and epoll support on by default
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Adolf Belka [Tue, 11 Nov 2025 12:03:03 +0000 (13:03 +0100)]
libxcrypt: Update to version 4.5.1
- Update from version 4.4.38 to 4.5.1
- No change to rootfile
- Changelog
4.5.1
* Do not include undefined symbols in version-script. (issue #181, #213).
* Fix build with clang-20+ on macOS (issue #216).
4.5.0
* Implement the sm3crypt ($sm3$) hashing algorithm (issue #188).
* Implement the sm3-yescrypt ($sm3y$) hashing algorithm (issue #206).
* Fix the implementation of the crypt(3) functions and the crypt_gensalt(3)
functions to not overwrite the output buffer too early. (issue #209).
* Fix the strcpy_or_abort() function to call abort() in -DNDEBUG builds.
* Add some more testcases.
* Several fixes for issues found by Coverity.
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Adolf Belka [Tue, 11 Nov 2025 12:03:01 +0000 (13:03 +0100)]
harfbuzz: Update to version 12.2.0
- Update from version 12.1.0 to 12.2.0
- Update of rootfile
- Changelog
12.2.0
- While Windows platform contain the matching of the ChainContext rules to
within the syllable for those features that are applied per syllable (in
Indic-like and USE shapers), in 2015 we decided that in HarfBuzz we would
allow the backtrack / lookahead parts of the rule to match across syllables.
However, our implementation had a latent bug, causing the backtrack sequence
to be matched within syllable most of the time, and inconsistently so. As
such, and after empirical testing, we have decided to match the Windows
implementation for this, so now both backtrack and lookahead sequences are
contained to within the syllable, just like DirectWrite does.
- Disable legacy `kern` table for most shapers, enabling it only for default,
Arabic, Hangul, and Hebrew shapers.
- When dropping `STAT` table during subsetting, drop also named IDs that are
referenced only by it.
- Don’t apply synthetic slant to glyph origin, fixing horizontal shift in
slanted glyphs.
- Various build and fuzzing fixes.
- Documentation fixes.
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Adolf Belka [Tue, 11 Nov 2025 12:03:00 +0000 (13:03 +0100)]
fetchmail: Update to version 6.6.0
- Update from version 6.5.7 to 6.6.0
- Fetchmail 6.5 will go out of support at the end of 2025. The 6.6 releases added a
feature compatibly so there is no reason to support an additional branch.
- No change in rootfile
- Changelog
6.6.0
FEATURE:
* SMTP TLS and STARTTLS support. By default, this works opportunistically,
attempting to set up a TLS connection to the smtphost if it understands EHLO
and offers STARTTLS, but will not enforce peer certificate validity for
compatibility, esp. because "localhost" (the default SMTP host) usually
isn't listed in the X.509 certificates.
Behavior can be tweaked by adding /notls (cleartext connection), /tls
(TLS-wrapped connection, negotiating TLS before conversing otherwise),
or /starttls (requiring EHLO to offer STARTTLS, requesting the latter and
requiring the server certificate to validate) to the SMTP host's name.
Also, you can add /tlsproto=... where ... accepts the same parameters
as the --sslproto option, which see.
Ports, if not specified, default to 25 for opportunistic and /notls modes,
465 for /tls and 587 for /starttls, but can be overridden either by giving,
say /25 or /smtp for /starttls.
TRANSLATIONS were updated by these fine people (randomized order):
* it: Luca Vercelli [Italian]
* pl: Jakub Bogusz [Polish]
* fr: Frédéric Marchal [French]
* sv: Göran Uddeborg [Swedish]
* sq: Besnik Bleta [Albanian]
* ro: Remus-Gabriel Chelu [Romanian]
* ja: Takeshi Hamasaki [Japanese]
* de: Matthias Andree [German]
* cs: Petr Pisar [Czech]
* eo: Keith Bowes [Esperanto]
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Adolf Belka [Tue, 11 Nov 2025 12:02:59 +0000 (13:02 +0100)]
curl: Update to version 8.17.0
- Update from version 8.16.0 to 8.17.0
- Update of rootfile
- Changelog
8.17.0
Changes:
build: drop Heimdal support
build: drop the winbuild build system
krb5: drop support for Kerberos FTP
libssh2: up the minimum requirement to 1.9.0
multi: add notifications API
progress: expand to use 6 characters per size
ssl: support Apple SecTrust configurations
tool_getparam: add --knownhosts
vssh: drop support for wolfSSH
wcurl: import v2025.11.04
write-out: make %header{} able to output *all* occurrences of a header
Bugfixes:
ares: fix leak in tracing
asyn-ares: remove wrong comment about the callback argument
asyn-ares: use the duped hostname pointer for all calls
asyn-thrdd resolver: clear timeout when done
asyn-thrdd: drop pthread_cancel
autotools: add support for libgsasl auto-detection via pkg-config
autotools: capitalize Rustls in the log output
autotools: drop detection of ancient OpenSSL libs RSAglue and rsaref
autotools: fix duplicate UNIX and BSD flags in buildinfo.txt
autotools: fix silly mistake in clang detection for buildinfo.txt
autotools: make --enable-code-coverage support llvm/clang
autotools: merge `if`s in GnuTLS/OpenSSL feature detection
aws-lc: re-enable large read-ahead with v1.61.0 again
base64: accept zero length argument to base64_encode
build: address some -Weverything warnings, update picky warnings
build: avoid overriding system open and stat symbols
build: avoid overriding system symbols for fopen functions
build: avoid overriding system symbols for socket functions
build: show llvm/clang in platform flags and buildinfo.txt
c-ares: when resolving failed, persist error
cf-h2-proxy: break loop on edge case
cf-ip-happy: mention unix domain path, not port number
cf-socket: always check Curl_cf_socket_peek() return code
cf-socket: check params and remove accept procondition
cf-socket: make set_local_ip void, and remove failf()
cf-socket: set FD_CLOEXEC on all sockets opened
cf-socket: tweak a memcpy() to read better
cf-socket: use the right byte order for ports in bindlocal
cfilter: unlink and discard
cfilters: check return code from Curl_pollset_set_out_only()
checksrc: allow disabling warnings on FIXME/TODO comments
checksrc: catch banned functions when preceded by (
checksrc: fix possible endless loop when detecting BANNEDFUNC
checksrc: fix possible endless loops in the banned function logic
checksrc: fix to handle ) predecing a banned function
checksrc: reduce directory-specific exceptions
CI.md: refresh
cmake/FindGSS: dedupe pkg-config module strings
cmake/FindGSS: drop wrong header check for GNU GSS
cmake/FindGSS: fix pkg-config fallback logic for CMake <3.16
cmake/FindGSS: simplify/de-dupe lib setup
cmake/FindGSS: whitespace/formatting
cmake: add and use local FindGnuTLS module
cmake: add CURL_CODE_COVERAGE option
cmake: build the "all" examples source list dynamically
cmake: clang detection tidy-ups
cmake: drop exclamation in comment looking like a name
cmake: fix `HAVE_GNUTLS_SRP` detection after adding local FindGnuTLS module
cmake: fix building docs when the base directory contains .3
cmake: fix Linux pre-fill `HAVE_POSIX_STRERROR_R` (when `_CURL_PREFILL=ON`)
cmake: fix Linux pre-fills for non-glibc (when `_CURL_PREFILL=ON`)
cmake: minor Heimdal flavour detection fix
cmake: pre-fill three more type sizes on Windows
cmake: say 'absolute path' in option descriptions and docs
cmake: support building some complicated examples, build them in CI
cmake: use modern alternatives for get_filename_component()
cmake: use more COMPILER_OPTIONS, LINK_OPTIONS / LINK_FLAGS
cmdline-docs: extended, clarified, refreshed
cmdline-opts/_PROGRESS.md: explain the suffixes
configure: add "-mt" for pthread support on HP-UX
conn: fix hostname move on connection reuse
conncache: prevent integer overflow in maxconnects calculation
connect: for CONNECT_ONLY, CURLOPT_TIMEOUT does not apply
connect: remove redundant condition in shutdown start
cookie: avoid saving a cookie file if no transfer was done
cookie: only count accepted cookies in Curl_cookie_add
cookie: remove the temporary file on (all) errors
cpool: make bundle->dest an array; fix UB
curl.h: remove incorrect comment about CURLOPT_PINNEDPUBLICKEY
curl_easy_getinfo: error code on NULL arg
curl_easy_setopt.md: add missing CURLOPT_POSTFIELDS
curl_mem_undef.h: limit to CURLDEBUG for non-memalloc overrides
curl_ngtcp2: fix `-Wunreachable-code` with H3 !verbose !unity clang
curl_osslq: error out properly if BIO_ADDR_rawmake() fails
curl_path: make sure just whitespace is illegal
Curl_resolv: fix comment. 'entry' argument is not optional
curl_slist_append.md: clarify that a NULL pointer is not acceptable
curl_threads: delete WinCE fallback branch
CURLINFO_FTP_ENTRY_PATH.md: this is for SFTP as well
CURLOPT_COOKIEFILE.md: clarify when the cookies are loaded
CURLOPT_COPYPOSTFIELDS.md: used with MQTT and RTSP as well
CURLOPT_HEADER/WRITEFUNCTION.md: drop '* size' since size is always 1
CURLOPT_MAXLIFETIME_CONN: make default 24 hours
CURLOPT_POSTFIELDSIZE*: these also work for MQTT and RTSP
CURLOPT_SERVER_RESPONSE_TIMEOUT*: add default and see-also
CURLOPT_SSL_VERIFYHOST.md: add see-also to two other VERIFYHOST options
CURLOPT_TIMECONDITION.md: works for FILE and FTP as well
cw-out: fix EAGAIN handling on pause
cw-out: unify the error handling pattern in cw_out_do_write
digest_sspi: fix two memory leaks in error branches
dist: do not distribute CI.md
docs/cmdline-opts: drop double quotes from GLOBBING and URL examples
docs/libcurl: clarify some timeout option behavior
docs/libcurl: remove ancient version references
docs/libcurl: use lowercase must
docs: expand on quoting rules for file names in SFTP quote
docs: fix/tidy code fences
doh: cleanup resources on error paths
doswin: CloseHandle the thread on shutdown
easy_getinfo: check magic, Curl_close safety
ECH.md: make OpenSSL branch clone instructions work
examples/chkspeed: portable printing when outputting curl_off_t values
examples/http2-serverpush: fix file handle leaks
examples/sessioninfo: cast printf string mask length to int
examples/sessioninfo: do not disable security
examples/synctime: fix null termination assumptions
examples/synctime: make the sscanf not overflow the local buffer
examples/usercertinmem: avoid stripping const
examples/websocket: fix use of uninitialized rlen
examples: call curl_global_cleanup() where missing
examples: check more errors, fix cleanups, scope variables
examples: drop unused curl/mprintf.h includes
examples: fix build issues in 'complicated' examples
examples: fix more potential resource leaks, and more
examples: fix two build issues surfaced with WinCE
examples: fix two issues found by CodeQL
examples: fix two more cases of stat() TOCTOU
examples: improve global init, error checks and returning errors
examples: replace casts with `curl_off_t` printf masks
examples: return curl_easy_perform() results
firefox-db2pem.sh: add macOS support, tidy-ups
form.md: drop reference to MANUAL
ftp: add extra buffer length check
ftp: check errors on remote ip for data connection
ftp: fix ftp_do_more returning with *completep unset
ftp: fix port number range loop for PORT commands
ftp: fix the 213 scanner memchr buffer limit argument
ftp: improve fragile check for first digit > 3
ftp: reduce size of some struct fields
ftp: remove 'newhost' and 'newport' from the ftp_conn struct
ftp: remove misleading comments
ftp: remove the retr_size_saved struct field
ftp: remove the state_saved struct field
ftp: replace strstr() in ;type= handling
ftp: simplify the 150/126 size scanner
gnutls: check conversion of peer cert chain
gnutls: fix re-handshake comments
gssapi: make channel binding conditional on GSS_C_CHANNEL_BOUND_FLAG
gtls: avoid potential use of uninitialized variable in trace output
gtls: check the return value of gnutls_pubkey_init()
header.md: see-also --proxy-header and vice versa
hmac: free memory properly on errors
hostip: don't store negative resolves due unrelated errors
hostip: fix infof() output for non-ipv6 builds using IPv6 address
hostip: remove leftover INT_MAX check in Curl_dnscache_prune
http2: check push header names by length first
http2: cleanup pushed newhandle on fail
http2: ingress handling edge cases
HTTP3: clarify the status for "old" OpenSSL, not current
http: check the return value of strdup
http: fix `-Wunreachable-code` in !websockets !unity builds
http: fix `-Wunused-variable` in !alt-svc !proxy !ws builds
http: handle user-defined connection headers
http: look for trailing 'type=' in ftp:// without strstr
http: make Content-Length parser more WHATWG
http: only accept ';' as a separator for custom headers
http: return error for a second Location: header
http_aws_sigv4: check the return value of curl_maprintf()
http_proxy: fix adding custom proxy headers
httpsrr: free old pointers when storing new
httpsrr: send HTTPS query to the right target
imap: fix custom FETCH commands to handle literal responses
imap: parse and use UIDVALIDITY as a number
imap: treat capabilities case insensitively
INSTALL-CMAKE.md: add manual configuration examples
INSTALL-CMAKE.md: document useful build targets
INSTALL-CMAKE.md: fix descriptions for LDAP dependency options
INSTALL: update the list of known operating systems
INTERNALS: drop Winsock 2.2 from the dependency list
ip-happy: do not set unnecessary timeout
ip-happy: prevent event-based stall on retry
kerberos: bump minimum to 1.3 (2003-07-08), drop legacy logic
kerberos: drop logic for MIT Kerberos <1.2.3 (pre-2002) versions
kerberos: stop including gssapi/gssapi_generic.h
krb5: fix output_token allocators in the GSS debug stub (Windows)
krb5: return appropriate error on send failures
krb5_gssapi: fix memory leak on error path
krb5_sspi: the chlg argument is NOT optional
ldap: avoid null ptr deref on failure
ldap: do not base64 encode zero length string
ldap: do not pass a \n to failf()
ldap: tidy-up types, fix error code confusion
lib1514: fix return code mixup
lib: delete unused crypto header includes
lib: drop unused include and duplicate guards
lib: fix build error with verbose strings disabled
lib: remove newlines from failf() calls
lib: remove personal names from comments
lib: SSL connection reuse
lib: stop NULL-checking conn->passwd and ->user
lib: upgrade/multiplex handling
libcurl-multi.md: added curl_multi_get_offt mention
libcurl-security.md: mention long-running connections
libssh/libssh2: reject quote command lines with too much data
libssh/sftp: fix resume corruption by avoiding O_APPEND with rresume
libssh2/sftp: fix resume corruption by avoiding O_APPEND with rresume
libssh2/sftp_realpath: change state consistently
libssh2: avoid risking using an uninitialized local struct field
libssh2: bail out on chgrp and chown number parsing errors
libssh2: clarify that sshp->path is always at least one byte
libssh2: drop two redundant null-terminations
libssh2: error check and null-terminate in ssh_state_sftp_readdir_link()
libssh2: fix EAGAIN return in ssh_state_auth_agent
libssh2: fix return code for EAGAIN
libssh2: use sockindex consistently
libssh: acknowledge SSH_AGAIN in the SFTP state machine
libssh: catch a resume point larger than the size
libssh: clarify myssh_block2waitfor
libssh: drop two unused assignments
libssh: error on bad chgrp number
libssh: error on bad chown number and store the value
libssh: fix range parsing error handling mistake
libssh: make atime and mtime cap the timestamp instead of wrap
libssh: react on errors from ssh_scp_read
libssh: return out of memory correctly if aprintf fails
libssh: return the proper error for readdir problems
Makefile.example: bump default example from FTP to HTTPS
Makefile.example: fix option order
Makefile.example: make default options more likely to work
Makefile.example: simplify and make it configurable
managen: ignore version mentions < 7.66.0
managen: render better manpage references/links
managen: strict protocol check
managen: verify the options used in example lines
mbedtls: add support for 4.0.0
mbedtls: check result of setting ALPN
mbedtls: fix building with <3.6.1
mbedtls: fix building with sha-256 missing from PSA
mbedtls: handle WANT_WRITE from mbedtls_ssl_read()
md4: drop mbedtls implementation (not available in mbedtls v3+)
mdlinkcheck: reject URLs containing quotes
memdup0: handle edge case
mime: fix unpausing of readers
mime: fix use of fseek()
multi.h: add CURLMINFO_LASTENTRY
multi: check the return value of strdup()
multi_ev: remove unnecessary data check that confuses analysers
netrc: when the cached file is discarded, unmark it as loaded
nghttp3: return NGHTTP3_ERR_CALLBACK_FAILURE from recv_header
ngtcp2: add a comment explaining write result handling
ngtcp2: adopt ngtcp2_conn_get_stream_user_data if available
ngtcp2: check error code on connect failure
ngtcp2: close just-opened QUIC stream when submit_request fails
ngtcp2: compare idle timeout in ms to avoid overflow
ngtcp2: fix early return
ngtcp2: fix handling of blocked stream data
ngtcp2: fix returns when TLS verify failed
ngtcp2: overwrite rate-limits defaults
noproxy: fix the IPV6 network mask pattern match
NTLM: disable if DES support missing from OpenSSL or mbedTLS
ntlm: improved error path on bad incoming NTLM TYPE3 message
openldap/ldap; check for binary attribute case insensitively
openldap: avoid indexing the result at -1 for blank responses
openldap: check ber_sockbuf_add_io() return code
openldap: check ldap_get_option() return codes
openldap: do not pass newline to infof()
openldap: fix memory-leak in error path
openldap: fix memory-leak on oldap_do's exit path
openldap: limit max incoming size
openssl-quic: check results better
openssl-quic: handle error in SSL_get_stream_read_error_code
openssl-quic: ignore unexpected streams opened by server
openssl: better return code checks when logging cert data
openssl: call SSL_get_error() with proper error
openssl: check CURL_SSLVERSION_MAX_DEFAULT properly
openssl: clear retry flag on x509 error
openssl: combine all the x509-store flags
openssl: fail if more than MAX_ALLOWED_CERT_AMOUNT certs
openssl: fail the transfer if ossl_certchain() fails
openssl: fix build for v1.0.2
openssl: fix peer certificate leak in channel binding
openssl: fix resource leak in provider error path
openssl: fix unable do typo in failf() calls
openssl: free UI_METHOD on exit path
openssl: make the asn1_object_dump name null terminated
openssl: only try engine/provider if a cert file/name is provided
openssl: set io_need always
openssl: skip session resumption when verifystatus is set
os400: document threads handling in code.
OS400: fix a use-after-free/double-free case
osslq: set idle timeout to 0
pingpong: remove two old leftover debug infof() calls
pop3: check for CAPA responses case insensitively
pop3: fix CAPA response termination detection
pop3: function could get the ->transfer field wrong
pytest: skip specific tests for no-verbose builds
quic: fix min TLS version handling
quic: ignore EMSGSIZE on receive
quic: improve UDP GRO receives
quic: remove data_idle handling
quiche: fix possible leaks on teardown
quiche: fix verbose message when ip quadruple cannot be obtained.
quiche: handle tls fail correctly
quiche: when ingress processing fails, return that error code
rtsp: use explicit postfieldsize if specified
runtests: tag tests that require curl verbose strings
rustls: exit on error
rustls: fix clang-tidy warning
rustls: fix comment describing cr_recv()
rustls: limit snprintf proper in cr_keylog_log_cb()
rustls: make read_file_into not reject good files
rustls: pass the correct result to rustls_failf
rustls: typecast variable for safer trace output
rustls: use %zu for size_t in failf() format string
sasl: clear canceled mechanism instead of toggling it
schannel: assign result before using it
schannel: fix memory leak
schannel: handle Curl_conn_cf_send() errors better
schannel: lower the maximum allowed time to block to 7 seconds
schannel: properly close the certfile on error
schannel_verify: do not call infof with an appended \n
schannel_verify: fix mem-leak in Curl_verify_host
schannel_verify: use more human friendly error messages
scp/sftp: fix disconnect
scripts: pass -- before passing xargs
setopt: accept *_SSL_VERIFYHOST set to 2L
setopt: allow CURLOPT_DNS_CACHE_TIMEOUT set to -1
setopt: fix unused variable warning in minimal build
setopt: make CURLOPT_MAXREDIRS accept -1 (again)
singleuse.pl: fix string warning
smb: adjust buffer size checks
smb: transfer debugassert to real check
smtp: check EHLO responses case insensitively
smtp: fix EOB handling
smtp: return value ignored
socks: advance iobuf instead of reset
socks: avoid UAF risk in error path
socks: deny server basic-auth if not configured
socks: handle error in verbose trace gracefully
socks: handle premature close
socks: make Curl_blockread_all return CURLcode
socks: properly maintain the status of 'done'
socks: rewwork, cleaning up socks state handling
socks_gssapi: also reset buffer length after free
socks_gssapi: make the gss_context a local variable
socks_gssapi: reject too long tokens
socks_gssapi: remove superfluous releases of the gss_recv_token
socks_gssapi: remove the forced "no protection"
socks_gssapi: replace `gss_release_buffer()` with curl free
socks_sspi: bail out on too long fields
socks_sspi: fix memory cleanup calls
socks_sspi: remove the enforced mode clearing
socks_sspi: restore non-blocking socket on error paths
socks_sspi: use the correct free function
socksd: remove --bindonly mention, there is no such option
spelling: fix new finds by typos-cli 1.39.0
src/var: remove dead code
ssl-session-cache: check use on config and availability
ssl-sessions.md: mark option experimental
strerror: drop workaround for SalfordC win32 header bug
sws: fix checking sscanf() return value
sws: pass in socket reference to allow function to close it
tcp-nodelay.md: expand the documentation
telnet: ignore empty suboptions
telnet: make bad_option() consider NULL a bad option too
telnet: make printsub require another byte input
telnet: print DISPlay LOCation in printsub without mutating buffer
telnet: refuse IAC codes in content
telnet: return error if WSAEventSelect fails
telnet: return error on crazy TTYPE or XDISPLOC lengths
telnet: send failure logged but not returned
telnet: use pointer[0] for "unknown" option instead of pointer[i]
test1100: fix missing `<protocol>` section
tests/libtest/cli*: fix init/deinit, leaks, and more
tests/server: drop pointless memory allocation overrides
tests/server: drop unsafe open() override in signal handler (Windows)
tftp: check and act on tftp_set_timeouts() returning error
tftp: check for trailing ";mode=" in URL without strstr
tftp: default timeout per block is now 15 seconds
tftp: error requests for blank filenames
tftp: handle tftp_multi_statemach() return code
tftp: pin the first used address
tftp: propagate expired timer from tftp_state_timeout()
tftp: return error if it hits an illegal state
tftp: return error when sendto() fails
thread: errno on thread creation
tidy-up: assortment of small fixes
tidy-up: avoid using the reserved macro namespace
tidy-up: fcntl.h includes
tidy-up: update MS links, allow long URLs via checksrc
tidy-up: URLs
time-cond.md: refer to the singular curl_getdate man page
TLS: IP address verification, extend test
TODO: fix a typo
TODO: remove already implemented or bad items
tool: fix exponential retry delay
tool_cb_hdr: fix fwrite check in header callback
tool_cb_hdr: size is always 1
tool_cb_rea: use poll instead of select if available
tool_cfgable: remove superfluous free calls
tool_doswin: fix to use curl socket functions
tool_filetime: cap crazy file times instead of erroring
tool_filetime: replace cast with the fitting printf mask (Windows)
tool_formparse: rewrite the headers file parser
tool_getparam/set_rate: skip the multiplication on overflow
tool_getparam: always disable "lib-ids" for tracing
tool_getparam: make --fail and --fail-with-body override each other
tool_getparam: warn if provided header looks malformed
tool_ipfs: check the return value of curl_url_get for gwpath
tool_ipfs: simplify the ipfs gateway logic
tool_msgs: make errorf() show if --show-error
tool_operate: improve wording in retry message
tool_operate: keep failed partial download for retry auto-resume
tool_operate: keep the progress meter for --out-null
tool_operate: move the checks that skip ca cert detection
tool_operate: retry on HTTP response codes 522 and 524
tool_operate: return error on strdup() failure
tool_paramhlp: remove outdated comment in str2tls_max()
tool_parsecfg: detect and error on recursive --config use
tool_progress: handle possible integer overflows
tool_progress: make max5data() use an algorithm
transfer: avoid busy loop with tiny speed limit
transfer: fix retry for empty downloads on reuse
transfer: reset retry count on each request
unit1323: sync time types and printf masks, drop casts
unit1664: drop casts, expand masks to full values
url: make Curl_init_userdefined return void
urldata: FILE is not a list-only protocol
urldata: make 'retrycount' a single byte
urldata: make redirect counter 16 bit
vauth/digest: improve the digest parser
version: add GSS backend name and version
vquic: fix idle-timeout checks (ms<-->ns), 64-bit log & honor 0=no-timeout
vquic: fix recvmsg loop for max_pkts
vquic: handling of io improvements
vquic: sending non-gso packets fix for EAGAIN
vtls: alpn setting, check proto parameter
vtls: check final cfilter node in find_ssl_filter
vtls: drop duplicate `CURL_SHA256_DIGEST_LENGTH` definition
vtls: properly handle SSL shutdown timeout
vtls: remove call to PKCS12_PBE_add()
vtls: unify the error handling in ssl_cf_connect().
vtls_int.h: clarify data_pending
vtls_scache: fix race condition
wcurl: sync to +dev snapshot
windows: replace _beginthreadex() with CreateThread()
windows: stop passing unused, optional argument for Win9x compatibility
windows: use consistent format when showing error codes
windows: use native error code types more
wolfssl: check BIO read parameters
wolfssl: clear variable to avoid uninitialized use
wolfssl: fix error check in shutdown
wolfssl: fix resource leak in verify_pinned error paths
wolfssl: no double get_error() detail
ws: clarify an error message
ws: fix some edge cases
ws: fix type conversion check
ws: reject curl_ws_recv called with NULL buffer with a buflen
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Skip unsupported algorithms when looking for a signing key.
A mix of supported and unsupported DNSSEC algorithms in the same zone
could cause validation failures. Unsupported algorithms are now ignored
when looking for signing keys. [GL #5622]
Fix dnssec-keygen key collision checking for KEY RRtype keys.
The dnssec-keygen utility program failed to detect possible KEY ID
collisions with existing keys generated using the non-default -T KEY
option (e.g., for SIG(0)). This has been fixed. [GL #5506]
dnssec-verify now uses exit code 1 when failing due to illegal options.
Previously, dnssec-verify exited with code 0 if the options could not
be parsed. This has been fixed. [GL #5574]
Prevent assertion failures of dig when a server is specified before the -b option.
Previously, dig could exit with an assertion failure when a server was
specified before the dig -b option. This has been fixed. [GL #5609]
Skip buffer allocations if not logging.
Previously, we allocated a 2KB buffer for IXFR change logging,
regardless of the log level.
This results in a 28% speedup in some scenarios."
Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Adolf Belka [Mon, 17 Nov 2025 17:30:47 +0000 (18:30 +0100)]
fwhosts.cgi: Don't check Country Code when locationgrp initially created
- When a location group is initially created the Country Code variable is blank. This
causes an error message that the Country Code is invalid before any country code
has been selected. This was flagged up by a new forum member.
- This change only checks the Country Code variable for being valid if it is not blank
- If this is not the best way to fix this problem, feel free to modify or replace it.
- Tested as working on my vm testbed.
Tested-by: Adolf Belka <adolf.belka@ipfire.org> Signed-off-by: Adolf Belka <adolf.belka@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Adolf Belka [Thu, 20 Nov 2025 14:22:29 +0000 (15:22 +0100)]
tshark: Update to version 4.6.1
- Update from version 4.6.0 to 4.6.1
- Update of rootfile
- Changelog
4.6.1
Bug Fixes
wnpa-sec-2025-05 BPv7 dissector crash. Issue 20770.
wnpa-sec-2025-06 Kafka dissector crash. Issue 20823.
The following bugs have been fixed:
L2CAP dissector doesn’t understand retransmission mode. Issue 2241.
DNS HIP dissector labels PK algorithm as HIT length. Issue 20768.
clang-cl error in "packet-zbee-direct.c" Issue 20776.
Writing to an LZ4-compressed output file might fail. Issue 20779.
endian.h conflics with libc for building plugins. Issue 20786.
TShark crash caused by Lua plugin. Issue 20794.
Wireshark stalls for a few seconds when selecting specific messages.
Issue 20797.
TLS Abbreviated Handshake Using New Session Ticket. Issue 20802.
Custom websocket dissector does not run. Issue 20803.
WINREG QueryValue triggers dissector bug in packet-dcerpc.c. Issue 20813.
Lua: FileHandler causing crash when reading packets. Issue 20817.
Apply As Filter for field with FT_NONE and BASE_NONE for a single byte
does not use the hex value. Issue 20818.
Layout preference Pane 3 problem with selecting Packet Diagram or None.
Issue 20819.
TCP dissector creates invalid packet diagram. Issue 20820.
Too many nested VLAN tags when opening as File Format. Issue 20831.
Omnipeek files not working in 4.6.0. Issue 20842.
Support UTF-16 strings in the IsoBus dissector for the string operations.
Issue 20845.
SNMP getBulkRequest request-id does not get filtered for correctly.
Issue 20849.
Fuzz job issue: fuzz-2025-11-12-12064814316.pcap. Issue 20852.
UDP Port 853 (DoQ) should be decoded as QUIC. Issue 20856.
Updated Protocol Support
802.11 Radiotap, AC DR, ASN.1 BER, ASN.1 PER, BPv7, BT L2CAP, CFM,
Darwin, DNS, DTLS, EAPOL-MKA, HTTP, HTTP3, ISObus VT, KRB5, LTP,
NAS-EPS, NETDFS, NMEA 0183, P1, RPC_NETLOGON, RTSE, SGP.22, SGP.32,
SMB, SNMP, TCP, TECMP, TFTP, VLAN, WINREG, X509AF, X509SAT, and ZBD
New and Updated Capture File Support
Peektagged
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Adolf Belka [Thu, 20 Nov 2025 14:22:28 +0000 (15:22 +0100)]
c-ares: Update to version 1.34.5
- Update from version 1.34.3 to 1.34.5
- Update of rootfile
- Changelog
1.34.5
Security:
CVE-2025-31498. A use-after-free bug has been uncovered in read_answers()
that was introduced in v1.32.3. Please see CVE-2025-31498
Changes:
Restore Windows XP support. PR #958
Bugfixes:
A missing mutex initialization would make busy polling for configuration
changes (platforms other than Windows, Linux, MacOS) eat too much CPU
PR #974
Pkgconfig may be generated wrong for static builds in relation to -pthread
PR #965
Localhost resolution can fail if only one address family is in /etc/hosts
PR #947
1.34.4
Changes:
QNX Port: Port to QNX 8, add primary config reading support, add CI build.
PR #934, PR #937, PR #938
Bugfixes:
Empty TXT records were not being preserved. PR #922
docs: update deprecation notices for ares_create_query() and
ares_mkquery(). PR #910
license: some files weren’t properly updated. PR #920
Fix bind local device regression from 1.34.0. PR #929, PR #931, PR #935
CMake: set policy version to prevent deprecation warnings. PR #932
CMake: shared and static library names should be the same on unix
platforms like autotools uses. PR #933
Update to latest autoconf archive macros for enhanced system compatibility.
PR #936
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Adolf Belka [Sat, 22 Nov 2025 19:52:27 +0000 (20:52 +0100)]
btrfs-progs: Update to version 6.17.1
- Update from version 6.17 to 6.17.1
- No change in rootfile
- Changelog
6.17.1
* inspect list-chunks: more sorting keys, descending order
* fi resize: add support for offline (unmounted) growing of single device
* device stats: add support for offline (unmounted) reads
* quota status: new command, overview what mode is enabled, tunables
* fi commit-stats: new command, print various commit stats from sysfs (since
kernel 6.1)
* balance start: print warning and delay start if there's a missing device
in the filesystem
* mkfs:
* print zoned mode (native, emulated)
* check:
* verify device bytes in super block item and in chunk tree
* other
* updated CI, new and updated tests
* cleanups, refactoring
* documentation updates
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Adolf Belka [Sat, 22 Nov 2025 19:45:04 +0000 (20:45 +0100)]
openvpn: Update to version 2.6.16
- Update from version 2.6.15 to 2.6.16
- No change to rootfile
- Changelog
2.6.16
Security fixes:
CVE-2025-13086: Fix memcmp check for the hmac verification in the 3way
handshake. This bug renders the HMAC based protection against state
exhaustion on receiving spoofed TLS handshake packets in the OpenVPN
server inefficient.
Bug fixes:
fix invalid pointer creation in tls_pre_decrypt() - technically this is a
memory over-read issue, in practice, the compilers optimize it away so
no negative effects could be observed.
Windows: in the interactive service, fix the "undo DNS config" handling.
Windows: in the interactive service, disallow using of "stdin" for the
config file, unless the caller is authorized OpenVPN Administrator
Windows: in the interactive service, change all netsh calls to use
interface index and not interface name - sidesteps all possible attack
avenues with special characters in interface names.
Windows: in the interactive service, improve error handling in some
"unlikely to happen" paths.
auth plugin/script handling: properly check for errors in creation on
$auth_failed_reason_file (arf).
for incoming TCP connections, close-on-exec option was applied to the wrong
socket fd, leaking socket FDs to child processes.
sitnl: set close-on-exec flag on netlink socket
ssl_mbedtls: fix missing perf_pop() call (optional performance profiling)
Windows MSI changes since 2.6.15-I001:
Built against OpenSSL 3.6.0
Included openvpn-gui updated to 11.58.0.0
Check the return value of GetProp()
Make config path check similar to that in interactive service
Escape the type id of password message received from openvpn
Add a message source for event logging
Check correct management daemon path when OpenVPN3 is enabled
Fix OpenVPN3 radio button label size when OVPN3 is enabled
Use GetTempPath() for debug file in plap as well
Migrate all saved plain usernames to encrypted format
Included win-dco driver updated to 2.8.0
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Stefan Schantl [Mon, 17 Nov 2025 11:49:55 +0000 (12:49 +0100)]
ffmpeg: Re-enable lame and SSL support
The ffmpeg developers decided at some point in the past to change some
defaults during configure and therefore we need to explit enable support
for lame and openssl.
Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Matthias Fischer [Sun, 16 Nov 2025 13:32:36 +0000 (14:32 +0100)]
nano: Update to 8.7
For details see:
https://www.nano-editor.org/news.php
"2025 November 12 - GNU nano 8.7 "Blue Highways"
At the Execute prompt, preceding the command with two pipe symbols
allows implementing a copy-to-clipboard feature in your nanorc (on
terminals that support OSC 52). See the doc/sample.nanorc file."
Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Robin Roevens [Tue, 11 Nov 2025 21:11:59 +0000 (22:11 +0100)]
zabbix_agentd: Update to 7.0.21 (LTS)
- Update of rootfile not required
Improvements:
- ZBXNEXT-9902 Changed timeout range for Zabbix JS and Zabbix get utilities
Bugs fixed:
- ZBX-25148 Added adjustments for sequential data entries with the same timestamp
- ZBX-25263 Fixed Zabbix agent to attempt next refresh of active checks in 60 seconds in case of connection errors
Full changelogs:
- https://www.zabbix.com/rn/rn7.0.19
- https://www.zabbix.com/rn/rn7.0.20
- https://www.zabbix.com/rn/rn7.0.21
Signed-off-by: Robin Roevens <robin.roevens@disroot.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
projects / ipfire-2.x.git / log
