From e49566afba729f45a59a84b8bf06777fb187920a Mon Sep 17 00:00:00 2001 From: Andy Fiddaman Date: Sat, 16 Nov 2024 16:34:35 +0000 Subject: [PATCH 1/3] libxml2 - update from 2.13.4 to 2.13.5 --- build/libxml2/build.sh | 2 +- build/libxml2/testsuite.log | 2 +- doc/packages.md | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/build/libxml2/build.sh b/build/libxml2/build.sh index 088344d96..ffde5db2a 100755 --- a/build/libxml2/build.sh +++ b/build/libxml2/build.sh @@ -18,7 +18,7 @@ . ../../lib/build.sh PROG=libxml2 -VER=2.13.4 +VER=2.13.5 PKG=library/libxml2 SUMMARY="XML C parser and toolkit" DESC="Portable XML parser and toolkit library" diff --git a/build/libxml2/testsuite.log b/build/libxml2/testsuite.log index 8ecf8cd33..869f6ab09 100644 --- a/build/libxml2/testsuite.log +++ b/build/libxml2/testsuite.log @@ -1,4 +1,4 @@ -Total 3821 tests, no errors +Total 3826 tests, no errors Total 49 tests, no errors Testing HTMLparser : 36 of 42 functions ... Testing HTMLtree : 18 of 18 functions ... diff --git a/doc/packages.md b/doc/packages.md index 216e0b1a5..9d80d02d7 100644 --- a/doc/packages.md +++ b/doc/packages.md @@ -48,7 +48,7 @@ | library/libffi | 3.4.5 | https://sourceware.org/libffi/ | library/libpsl | 0.21.5 | https://github.com/rockdaboot/libpsl/releases | library/libuv | 1.49.2 | https://github.com/libuv/libuv/releases | Currently used solely by bind -| library/libxml2 | 2.13.4 | https://github.com/GNOME/libxml2/tags http://xmlsoft.org/news.html +| library/libxml2 | 2.13.5 | https://github.com/GNOME/libxml2/tags http://xmlsoft.org/news.html | library/libxslt | 1.1.42 | https://gitlab.gnome.org/GNOME/libxslt/-/releases | library/lzlib | 1.14 | https://download.savannah.gnu.org/releases/lzip/lzlib/ | library/nettle | 3.10 | https://ftp.gnu.org/gnu/nettle/ https://www.lysator.liu.se/~nisse/nettle/ | Used solely by chrony From 4fc4fb88aebad6a04949ea675521a7691bf9b4bb Mon Sep 17 00:00:00 2001 From: Andy Fiddaman Date: Sat, 16 Nov 2024 16:34:42 +0000 Subject: [PATCH 2/3] sudo - update from 1.9.16 to 1.9.16p1 --- build/sudo/build.sh | 2 +- build/sudo/patches/mansections.patch | 2 +- build/sudo/patches/securepath.patch | 59 ---------------------------- build/sudo/patches/series | 1 - doc/packages.md | 2 +- 5 files changed, 3 insertions(+), 63 deletions(-) delete mode 100644 build/sudo/patches/securepath.patch diff --git a/build/sudo/build.sh b/build/sudo/build.sh index a5f4c9c06..4960207ee 100755 --- a/build/sudo/build.sh +++ b/build/sudo/build.sh @@ -18,7 +18,7 @@ . ../../lib/build.sh PROG=sudo -VER=1.9.16 +VER=1.9.16p1 PKG=security/sudo SUMMARY="Authority delegation tool" DESC="Provide limited super-user privileges to specific users" diff --git a/build/sudo/patches/mansections.patch b/build/sudo/patches/mansections.patch index e8bf786f6..3ca00a0ca 100644 --- a/build/sudo/patches/mansections.patch +++ b/build/sudo/patches/mansections.patch @@ -4,7 +4,7 @@ Solaris/illumos scheme. Adjust sudo to suit. diff -wpruN --no-dereference '--exclude=*.orig' a~/configure.ac a/configure.ac --- a~/configure.ac 1970-01-01 00:00:00 +++ a/configure.ac 1970-01-01 00:00:00 -@@ -1796,9 +1796,9 @@ case "$host" in +@@ -1800,9 +1800,9 @@ case "$host" in AS_IF([test "$with_AFS" = "yes"], [ AFS_LIBS="-lc -lucb" ]) diff --git a/build/sudo/patches/securepath.patch b/build/sudo/patches/securepath.patch deleted file mode 100644 index 6dd0cbbd5..000000000 --- a/build/sudo/patches/securepath.patch +++ /dev/null @@ -1,59 +0,0 @@ -Submitted upstream as: https://github.com/sudo-project/sudo/pull/409 - -commit 68175fe0f4ca339085483c2039f2dd9b0864df1f -Author: Andy Fiddaman -Date: Tue Sep 17 12:49:13 2024 +0000 - - Allow --secure-path-value=no - - This adds support for --with-secure-path-value=no to allow packagers - to ship the sudoers configuration file with the secure path - line commented out if required. - -diff --git a/configure.ac b/configure.ac -index e547f7941..4c3def4bf 100644 ---- a/configure.ac -+++ b/configure.ac -@@ -177,6 +177,7 @@ AC_SUBST([sssd_lib]) - AC_SUBST([nsswitch_conf]) - AC_SUBST([netsvc_conf]) - AC_SUBST([secure_path]) -+AC_SUBST([secure_path_config]) - AC_SUBST([secure_path_status]) - AC_SUBST([editor]) - AC_SUBST([pam_session]) -@@ -230,6 +231,7 @@ sesh_file="$libexecdir/sudo/sesh" - visudo="$sbindir/visudo" - nsswitch_conf=/etc/nsswitch.conf - secure_path="/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin" -+secure_path_config= - secure_path_status="disabled" - pam_session=on - pam_login_service=sudo -@@ -1068,9 +1070,11 @@ AC_ARG_WITH(ldap-secret-file, [AS_HELP_STRING([--with-ldap-secret-file], [path t - test -n "$with_ldap_secret_file" && ldap_secret="$with_ldap_secret_file" - SUDO_DEFINE_UNQUOTED(_PATH_LDAP_SECRET, "$ldap_secret", [Path to the ldap.secret file]) - --AC_ARG_WITH(secure-path-value, [AS_HELP_STRING([--with-secure-path-value], [value of secure_path in the default sudoers file])], -+AC_ARG_WITH(secure-path-value, [AS_HELP_STRING([--with-secure-path-value], [value of secure_path in the default sudoers file, or "no" to comment out by default])], - [case $with_secure_path_value in -- yes|no) AC_MSG_ERROR([must give --secure-path-value an argument.]) -+ yes) AC_MSG_ERROR([must give --with-secure-path-value an argument.]) -+ ;; -+ no) secure_path_config="# " - ;; - *) secure_path="$with_secure_path_value" - ;; -diff --git a/plugins/sudoers/sudoers.in b/plugins/sudoers/sudoers.in -index 8368c5e95..9e7621fde 100644 ---- a/plugins/sudoers/sudoers.in -+++ b/plugins/sudoers/sudoers.in -@@ -48,7 +48,7 @@ Defaults!@visudo@ env_keep += "SUDO_EDITOR EDITOR VISUAL" - ## Use a hard-coded PATH instead of the user's to find commands. - ## This also helps prevent poorly written scripts from running - ## artbitrary commands under sudo. --Defaults secure_path="@secure_path@" -+@secure_path_config@Defaults secure_path="@secure_path@" - ## - ## You may wish to keep some of the following environment variables - ## when running commands via sudo. diff --git a/build/sudo/patches/series b/build/sudo/patches/series index 5841ab8b0..a14c48869 100644 --- a/build/sudo/patches/series +++ b/build/sudo/patches/series @@ -2,4 +2,3 @@ audit-event.patch Makefile.in.patch mansections.patch pam-illumos.patch -securepath.patch diff --git a/doc/packages.md b/doc/packages.md index 9d80d02d7..df471c8b1 100644 --- a/doc/packages.md +++ b/doc/packages.md @@ -82,7 +82,7 @@ | runtime/perl | 5.40.0 | https://www.cpan.org/src/README.html | runtime/python-311 | 3.11.10 | https://www.python.org/downloads/source/ | runtime/python-312 | 3.12.7 | https://www.python.org/downloads/source/ -| security/sudo | 1.9.16 | https://www.sudo.ws/ +| security/sudo | 1.9.16p1 | https://www.sudo.ws/ | service/network/chrony | 4.5 | https://download.tuxfamily.org/chrony/ | service/network/ntpsec | 1.2.3 | https://github.com/ntpsec/ntpsec/tags https://blog.ntpsec.org/ | service/network/smtp/dma | 0.13 | https://github.com/corecode/dma/tags From 01029563dadd25fd563c115a38060c6a0e76b147 Mon Sep 17 00:00:00 2001 From: Andy Fiddaman Date: Sat, 16 Nov 2024 16:35:02 +0000 Subject: [PATCH 3/3] Fix alignment in doc/packages.md --- doc/packages.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/doc/packages.md b/doc/packages.md index df471c8b1..d193333c1 100644 --- a/doc/packages.md +++ b/doc/packages.md @@ -139,7 +139,7 @@ | library/python-3/meson-312 | 1.6.0 | https://github.com/mesonbuild/meson/releases https://mesonbuild.com/ | library/python-3/orjson-312 | 3.10.11 | https://github.com/ijl/orjson/releases | library/python-3/packaging-312 | 24.2 | https://pypi.org/project/packaging -| library/python-3/pip-312 | 24.3.1 | https://pypi.org/project/pip +| library/python-3/pip-312 | 24.3.1 | https://pypi.org/project/pip | library/python-3/pycodestyle-312 | 2.12.1 | https://pypi.org/project/pycodestyle/ | library/python-3/pycparser-312 | 2.22 | https://pypi.org/project/pycparser | library/python-3/pycurl-312 | 7.44.1 | https://pypi.org/project/pycurl