pkg-vulnerabilites: add last days CVEs
+ 7-zip,
avahi (fixed upstream, no stable releases with the fix)
docopt.cpp (no further information, unclear if fixed or not upstream, assume
not fixed),
epiphany, expat,
gimp (fixed upstream, no stable releases with the fix),
gitea
nodejs (no useful details in the CVE and ZDI-26-043, NPM author says that it
works as intended, maybe we should follow that too once details are published
(and/or maybe that will be rejected)),
py-orjson (a PR was proposed but not accepted, assume not fixed),
py-protobuf (not fixed, possible PR under review),
python (fixed upstream, no stable releases with the fix),
sentencepiece
interfaces: looks like an oversight in validation
In the configuration there only exists "track6", but for "idassoc6" we
were looking for that instead which PHP could confuse with a "0" value
when empty.
PR: https://forum.opnsense.org/index.php?topic=50488.0
dns/ddclient: Update 3.11.2 => 4.0.0
Changelog:
https://github.com/ddclient/ddclient/releases/tag/v4.0.0
This release moves the default configuration file location from
/usr/local/etc/ to /usr/local/etc/ddclient/. Please move your
existing ddclient.conf to the new location before restarting ddclient.
- Fix warnings from portclippy.
- Parametrize ddclient with PORTNAME.
- Simplify and optimize do-install.
- Move docs installation to do-install-DOCS-on.
PR: 292669
Co-authored-by: Vladimir Druzenko <vvd at FreeBSD.org>
fdt_dma: extend dma_req with controller-specific ancillary data
To support the i.MX23's DMA controller, it is necessary to pass
controller-specific ancillary data (i.MX23: pio words) to the controller with
each request.
[Polly] Reject scalable vector types (#177871)
Polly currently does not consider types without fixed length, which can
be encountered if an input source uses e.g. ARM SVE builtins. Such
programs have already been optimized manually. Non-fixed type lengths
also add to the difficulty of dependency analysis. Skip such types
entirely for now.
Fixes: #177859
Merge tag 'scsi-fixes' of git://git.kernel.org/pub/scm/linux/kernel/git/jejb/scsi
Pull SCSI fixes from James Bottomley:
"Only one core change, the rest are drivers.
The core change reorders some state operations in the error handler to
try to prevent missed wake ups of the error handler (which can halt
error processing and effectively freeze the entire system)"
* tag 'scsi-fixes' of git://git.kernel.org/pub/scm/linux/kernel/git/jejb/scsi:
scsi: qla2xxx: Sanitize payload size to prevent member overflow
scsi: target: iscsi: Fix use-after-free in iscsit_dec_session_usage_count()
scsi: target: iscsi: Fix use-after-free in iscsit_dec_conn_usage_count()
scsi: core: Wake up the error handler when final completions race against each other
scsi: storvsc: Process unsupported MODE_SENSE_10
scsi: xen: scsiback: Fix potential memory leak in scsiback_remove()
[mlir][DialectUtils] Fix 0 step handling in `constantTripCount` (#177329)
A step size of "zero" does not indicate "zero iterations". It may
indicate an infinite number of iterations.
This commit makes some transformations more conservative. We used to
fold away some loops with step size 0 and that's now no longer the case.
Relation discussion:
https://discourse.llvm.org/t/infinite-loops-and-dead-code/89530
Initial import of devel/ocaml-ounit2, version 2.2.7.
OUnit is a unit test framework for OCaml. It allows one to easily
create unit-tests for OCaml code. It is loosely based on [HUnit],
a unit testing framework for Haskell. It is similar to [JUnit],
and other XUnit testing frameworks.
