1. 02 Apr, 2021 2 commits
  2. 01 Apr, 2021 2 commits
  3. 24 Feb, 2021 2 commits
  4. 23 Feb, 2021 4 commits
  5. 21 Feb, 2021 4 commits
  6. 19 Feb, 2021 2 commits
  7. 18 Feb, 2021 15 commits
  8. 06 Feb, 2021 5 commits
  9. 20 Jan, 2021 1 commit
    • Paul Spooren's avatar
      imagebuilder: pass IB=1 on checking requirements · 920c05ef
      Paul Spooren authored
      
      
      The patch 4a1a58a3  build, imagebuilder: Do not require libncurses-dev
      was supposed to remove libncurses as a requirement for the ImageBuilder.
      However as the IB=1 is only exported during building, not for checking
      requirements, it did never actually work.
      
      This commit export IB=1 to the requirement check.
      Signed-off-by: Paul Spooren's avatarPaul Spooren <mail@aparcar.org>
      (cherry picked from commit 4f3806364011aa3aef26fcab2e7b71837a777bcc)
      920c05ef
  10. 19 Jan, 2021 1 commit
    • David Bentham's avatar
      OpenWrt v19.07.6: adjust config defaults · 6d67a21c
      David Bentham authored
      
      Signed-off-by: Hauke Mehrtens's avatarHauke Mehrtens <hauke@hauke-m.de>
      dnsmasq: Backport some security updates
      
      This fixes the following security problems in dnsmasq:
      * CVE-2020-25681:
        Dnsmasq versions before 2.83 is susceptible to a heap-based buffer
        overflow in sort_rrset() when DNSSEC is used. This can allow a remote
        attacker to write arbitrary data into target device's memory that can
        lead to memory corruption and other unexpected behaviors on the target
        device.
      * CVE-2020-25682:
        Dnsmasq versions before 2.83 is susceptible to buffer overflow in
        extract_name() function due to missing length check, when DNSSEC is
        enabled. This can allow a remote attacker to cause memory corruption
        on the target device.
      * CVE-2020-25683:
        Dnsmasq version before 2.83 is susceptible to a heap-based buffer
        overflow when DNSSEC is enabled. A remote attacker, who can create
        valid DNS replies, could use this flaw to cause an overflow in a heap-
        allocated memory. This flaw is caused b...
      6d67a21c
  11. 15 Jan, 2021 2 commits