summaryrefslogtreecommitdiffstats
path: root/meta-networking
Commit message (Collapse)AuthorAgeFilesLines
...
* net-snmp-native: dependency with libpci-nativeChristos Gavros2025-01-291-2/+2
| | | | | | | | | | | | Building of net-snmp-native aborted due to missing dependency with libpci-native. Fixed by keeping the dependency on for target recipe and removing it for native CC: Yoann Congal <yoann.congal@smile.fr> CC: Randy MacLeod <randy.macleod@windriver.com> Signed-off-by: Christos Gavros <gavrosc@yahoo.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* civetweb: fix pathes in cmake fileGyorgy Sarvari2025-01-251-2/+7
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | 1. The do_install:append() deleted the TMPDIR from the cmake file, however that left two absolute pathes in the file: /usr/lib/libssl.so and /usr/lib/libcrypto.so. In case another project is trying to link to civetweb-server with cmake, it fails with the following error: ninja: error: '/usr/lib/libssl.so', needed by 'examples/prometheus/prometheus_example', missing and no known rule to make it Instead of only deleting the TMPDIR, change it to ${CMAKE_SYSROOT} - a variable set by cmake.bbclass. This allows other projects to find the required interfacing libraries successfully. 2. When linking to civetweb-server from another project using cmake, the cmake file verifies if the /usr/bin/civetweb binary exists. When using the class-target package, this file is not included in the sysroot during build-time, so this check fails with the following error: CMake Error at ${RECIPE_SYSROOT}/usr/lib/cmake/civetweb/civetweb-targets.cmake:97 (message): The imported target "civetweb::server" references the file "${RECIPE_SYSROOT}/usr/bin/civetweb" but this file does not exist. Possible reasons include: To avoid this error, this check is deleted for class-target. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* ntp: set CONFIG_SITE in do_compileRoss Burton2025-01-241-0/+5
| | | | | | | | | Recent changes in to the autotools class in core means that it no longer sets CONFIG_SITE for compile tasks. However, ntp decides to reconfigure itself mid-build, so the CONFIG_SITE values are lost. Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* ncftp: update for autoconf changes in coreRoss Burton2025-01-241-1/+2
| | | | | | | | | | ACLOCALEXTRAPATH is no longer used, so pass the required -I via EXTRA_AUTORECONF. Also explicitly disable aclocal as the aclocal is hand-maintained. Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* ncftp: Replace references to ACLOCALEXTRAPATHKhem Raj2025-01-243-1/+96
| | | | | | | | - ACLOCALEXTRAPATH is gone in core with commit 878e1517d4890b31332a506ce903d57e1d7dff87 - Add patches to fix build with latest clang and gcc - Drop disabling warnings as the fixes above take care of the problem Signed-off-by: Khem Raj <raj.khem@gmail.com>
* openvpn: upgrade 2.6.12 -> 2.6.13Wang Mingyu2025-01-241-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | Changelog: =========== - Refuse clients if username or password is longer than USER_PASS_LEN - Improve peer fingerprint documentation - console_systemd: remove the timeout when using 'systemd-ask-password' - Fix missing spaces in various messages - GHA: Update macOS runners - GHA: Simplify macOS builds - Various typo fixes - forward: Fix potential unaligned access in drop_if_recursive_routing - send uname() release as IV_PLAT_VER= on non-windows versions - preparing release 2.6.13 - Route: remove incorrect routes on exit - Use a more robust way to get dco-win version - Fix check_addr_clash argument order - Add calls to nvlist_destroy to avoid leaks - proxy.c: Clear sensitive data after use - Protect cached username, password and token on client - Fix more of uninitialized struct user_pass local vars - Fix IPv6 in port-share journal - Fix port-share journal doc Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* proftpd: define suffix for CVE version comparisonPeter Marko2025-01-151-0/+1
| | | | | | | | Similarly to old openssl versions, proftpd has patch releases with characters instead of numbers. Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* proftpd: upgrade 1.3.8b -> 1.3.8cPeter Marko2025-01-153-15/+15
| | | | | | | See https://github.com/proftpd/proftpd/blob/1.3.8/RELEASE_NOTES Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* proftpd: define UPSTREAM_CHECK_GITTAGREGEXPeter Marko2025-01-151-0/+3
| | | | | | | | | Patch releases have character after version devtool upgrade would currently downgrade 1.3.8b -> 1.3.8 This will make it upgrade 1.3.8b -> 1.3.8c Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wpan-tools: upgrade 0.9 -> 0.10Wang Mingyu2025-01-141-2/+2
| | | | | | | | | | License-Update: Delete unnecessary blank lines Changelog: https://github.com/linux-wpan/wpan-tools/releases/tag/wpan-tools-0.10 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* lldpd: upgrade 1.0.18 -> 1.0.19Wang Mingyu2025-01-141-1/+1
| | | | | | | | | | | | | | | Changelog: ========= - Support of both Apple Silicon and Intel for macOS package. - Add cvlan/svlan/tpmr capabilities. - Disable LLDP in firmware for Intel X7xx cards on FreeBSD. - Add lldpctl_watch_sync_unblock to liblldpctl. - Add C++ wrapper for lldpctl. - Fix AppArmor policy for /run/lldpd/lldpd.socket.lock. - Do not query stats for a down interface on Linux. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* chrony: upgrade 4.5 -> 4.6.1Wang Mingyu2025-01-141-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Changelog: ============ Enhancements ------------ * Add ntsaeads directive to enable only selected AEAD algorithms for NTS * Add activate option to local directive to set activation threshold * Add ipv4 and ipv6 options to server/pool/peer directive * Add kod option to ratelimit directive for server KoD RATE support * Add leapseclist directive to read NIST/IERS leap-seconds.list file * Add ptpdomain directive to set PTP domain for NTP over PTP * Allow disabling pidfile * Improve copy server option to accept unsynchronised status instantly * Log one selection failure on start * Add offset command to modify source offset correction * Add timestamp sources to ntpdata report Workarounds ----------- * Negotiate use of compliant NTS keys with AES-128-GCM-SIV AEAD algorithm (by default the keys are generated differently than in RFC 8915 for compatibility with chrony server and client versions 4.4, 4.5, and 4.6) * Switch to compliant NTS keys if first response from server is NTS NAK Bug fixes --------- * Fix crash on sources reload during initstepslew or RTC initialisation * Fix source refreshment to not repeat failed name resolving attempts Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* vsomeip: Skip building, needs porting to boost >= 1.87Khem Raj2025-01-131-0/+1
| | | | Signed-off-by: Khem Raj <raj.khem@gmail.com>
* vsomeip: Upgrade to 3.5.3Khem Raj2025-01-135-1494/+13
| | | | | | | Drop backports and not needed patches Add local SRC_URI For googletests Signed-off-by: Khem Raj <raj.khem@gmail.com>
* fping: upgrade 5.2 -> 5.3Wang Mingyu2025-01-071-1/+1
| | | | | Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* chrony: fix do_fetch errorJiaying Song2025-01-021-1/+1
| | | | | | | | Change the SRC_URI to the correct value due to the following error: WARNING: chrony-4.5-r0.wr2401 do_fetch: Failed to fetch URL https://download.tuxfamily.org/chrony/chrony-4.5.tar.gz, attempting MIRRORS if available Signed-off-by: Jiaying Song <jiaying.song.cn@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* snort3: upgrade 3.3.4.0 -> 3.6.1.0Yi Zhao2025-01-011-1/+1
| | | | | | | | | | | | | | https://github.com/snort3/snort3/releases/tag/3.6.1.0 https://github.com/snort3/snort3/releases/tag/3.6.0.0 https://github.com/snort3/snort3/releases/tag/3.5.2.0 https://github.com/snort3/snort3/releases/tag/3.5.1.0 https://github.com/snort3/snort3/releases/tag/3.5.0.0 https://github.com/snort3/snort3/releases/tag/3.3.7.0 https://github.com/snort3/snort3/releases/tag/3.3.6.0 https://github.com/snort3/snort3/releases/tag/3.3.5.0 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* frr: upgrade 10.2 -> 10.2.1Yi Zhao2025-01-011-1/+1
| | | | | | | | ChangeLog: https://github.com/FRRouting/frr/commit/5f0beaa0fdd00b7a60c1765067d1b6fa65ce96c0 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* memcached: upgrade 1.6.33 -> 1.6.34Wang Mingyu2024-12-301-1/+1
| | | | | Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* spice: set CVE-2016-2150 status to fixedPeter Marko2024-12-271-0/+1
| | | | | | | | | | | | | | | | Debian has fixed this CVE with [1]. That patch is taken from [2]. .../tmp/work/core2-64-poky-linux/spice/0.15.2/git$ git describe 69628ea13 v0.13.1-190-g69628ea1 .../tmp/work/core2-64-poky-linux/spice/0.15.2/git$ git tag --contains 69628ea13 v0.13.2 [1] https://sources.debian.org/patches/spice/0.12.5-1%2Bdeb8u5/CVE-2016-2150/0002-improve-primary-surface-parameter-checks.patch/ [2] https://gitlab.freedesktop.org/spice/spice/-/commit/69628ea1375282cb7ca5b4dc4410e7aa67e0fc02 Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* strongswan: upgrade 5.9.14 -> 6.0.0Yi Zhao2024-12-261-13/+11
| | | | | | | | | | | | | | ChangeLog: https://github.com/strongswan/strongswan/releases/tag/6.0.0 The aes, curve25519, des, fips-prf, gmp, hmac, md5, pkcs12, rc2, sha1, sha2 plugins are not enabled by default[1]. Remove these plugins from RDEPENDS and add PACKAGECONFIG for them. [1] https://github.com/strongswan/strongswan/blob/6.0.0/NEWS#L38 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* networkmanager: upgrade 1.48.10 -> 1.50.0Yi Zhao2024-12-262-67/+1
| | | | | | | | | | | ChangeLog: https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/blob/1.50.0/NEWS Drop 0001-libnm-systemd-core-Disable-sd_dhcp6_client_set_duid_.patch as it has been merged upstream. Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* frr: upgrade 10.1.1 -> 10.2Yi Zhao2024-12-261-2/+2
| | | | | | | | ChangeLog: https://github.com/FRRouting/frr/releases/tag/frr-10.2 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* weechat: upgrade 4.0.4 -> 4.5.0Peter Marko2024-12-202-42/+3
| | | | | | | | | | | | | Solves CVE-2024-46613 Update dependencies: - remove openssl and icu - add cjson and gettext-native Remove patch to find gcrypt which is no longer needed. Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: upgrade 4.2.8 -> 4.2.9Peter Marko2024-12-201-1/+1
| | | | | | | | | | | Solves CVE-2024-9781 Release notes: https://www.wireshark.org/docs/relnotes/wireshark-4.2.7.html https://www.wireshark.org/docs/relnotes/wireshark-4.2.8.html Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* libmemcached: ignore CVE-2023-27478Peter Marko2024-12-201-0/+2
| | | | | | | | | | | | | | | | | Per [1] this is fixed by [2]. The commit message says that it is reverting feature added in: $ git tag --no-contains d7a0084 | grep 1.0.18 1.0.18 This recipe is for the original memcached which is unmaintained now. Hence the ignore instead of upgrade. [1] https://nvd.nist.gov/vuln/detail/CVE-2023-27478 [2] https://github.com/awesomized/libmemcached/commit/48dcc61a Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* libmemcached: merge inc into bbPeter Marko2024-12-202-19/+17
| | | | | | | | | After removing old libmemcached recipe version, these is no reasons anymore to have this split. The memcached resurrected project uses cmake and different urls. Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* libmemcached: remove recipe for version 1.0.7Peter Marko2024-12-201-4/+0
| | | | | | | This no longer compiles with latest toolchains. Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* memcached: upgrade 1.6.17 -> 1.6.33Peter Marko2024-12-203-116/+10
| | | | | | | | | Solves CVE-2023-46852 and CVE-2023-46853. Upgrade done via "devtool upgrade". Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* memcached: add UPSTREAM_CHECK_URIPeter Marko2024-12-201-0/+2
| | | | | | | | Download URL is not listable so devtool upgrade fails. Using homepage works as it contains link to latest release, Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* memcached: ignore disputed CVE-2022-26635Peter Marko2024-12-191-0/+2
| | | | | | | | | | | | | | Per [1] this is a problem of applications using memcached inproperly. This should not be a CVE against php-memcached, but for whatever software the issue was actually found in. php-memcached and libmemcached provide a VERIFY_KEY flag if they're too lazy to filter untrusted user input. [1] https://github.com/php-memcached-dev/php-memcached/issues/519 Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* spice-gtk: mark CVE-2012-4425 as fixedPeter Marko2024-12-191-0/+2
| | | | | | | | | | It is fixed by [1] since 0.15.3. NVD tracks this CVE as version-less. [1] https://cgit.freedesktop.org/spice/spice-gtk/commit/?id=efbf867bb88845d5edf839550b54494b1bb752b9 Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* spice: ignore CVE-2016-0749Peter Marko2024-12-191-0/+1
| | | | | | | | | | | NVD tracks this as version-less CVE for spice. It was fixed by [1] and [2] included in 0.13.2. [1] https://gitlab.freedesktop.org/spice/spice/-/commit/6b32af3e1746988bb5a5123263bcf61b65e5be7e [2] https://gitlab.freedesktop.org/spice/spice/-/commit/359ac42a7ac02dcd1013757559292006647cd5c4 Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* stunnel: upgrade 5.73 -> 5.74Wang Mingyu2024-12-192-5/+5
| | | | | | | | | | | | | | | fix-openssl-no-des.patch refreshed for 5.74 * Bugfixes - Fixed a stapling cache deallocation crash. - Fixed "redirect" with protocol negotiation. * Features - "protocolHost" support for "socks" protocol clients. - More detailed logs in OpenSSL 3.0 or later. Signed-off-by: Wang Mingyu <wangmy@cn.fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* mctp: upgrade 2.0 -> 2.1Chanh Nguyen2024-12-161-1/+1
| | | | | Signed-off-by: Chanh Nguyen <chanh@os.amperecomputing.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* bridge-utils: add CVE_PRODUCTBenjamin Bouvier2024-12-131-0/+2
| | | | | | | | Add exact CPE name (from NVD database) in CVE_PRODUCT in order to ensure CVE filtering and not be disturb by futur potential false-positive CVEs. Signed-off-by: Benjamin Bouvier <benjamin.bouvier@ekinops.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* proftpd: set status of CVE-2001-0027Peter Marko2024-12-101-0/+2
| | | | | | | | | | | | | | | | | | | This ancient CVE [1] is unversioned ("*") in NVD DB. "mod_sqlpw module in ProFTPD does not reset a cached password..." Looking at history and changelog, the module was removed [2] around the time when this CVE was published, likely as reaction to this CVE. "mod_sqlpw.c, mod_mysql.c and mod_pgsql.c have been REMOVED from the distribution. They are currently unmaintained and have numerous bugs." Note: It was later re-introduced as mod_sql when it got fixed under new maintainer. [1] https://nvd.nist.gov/vuln/detail/CVE-2001-0027 [2] https://github.com/proftpd/proftpd/blob/v1.3.8b/NEWS#L3362 Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* openhpi: explicitly disable ov-rest pluginMartin Jansa2024-12-071-0/+1
| | | | | | | | | | | | | | | | | | | | | | | | | * since elfutils upgrade to 0.192 in: https://git.openembedded.org/openembedded-core/commit/?id=1d6ac3c811798732e6addc798656bbe104661d77 json-c is detected in RSS and ov-rest plugin gets enabled, but fails to build: ../../../openhpi-3.8.0/plugins/ov_rest/ov_rest_event.c:78:10: fatal error: amqp_ssl_socket.h: No such file or directory    78 | #include <amqp_ssl_socket.h>       |          ^~~~~~~~~~~~~~~~~~~ compilation terminated. ../../../openhpi-3.8.0/plugins/ov_rest/ov_rest_re_discover.c:707:23: error: initialization of 'SaErrorT' {aka 'int'} from 'void *' makes integer from pointer without a cast [-Wint-conversion]   707 |         SaErrorT rv = NULL;       |                       ^~~~ * keep it explicitly disabled as it was disabled before * add rabbitmq-c dependency for the first issue, the 2nd issue could be worked around by: # openhpi-3.8.0/plugins/ov_rest/ov_rest_re_discover.c:707:23: error: initialization of 'SaErrorT' {aka 'int'} from 'void *' makes integer from pointer without a cast [-Wint-conversion] CFLAGS += "-Wno-error=int-conversion" or better fixed properly by someone actually using this recipe Signed-off-by: Martin Jansa <martin.jansa@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* ot-br-posix: Fix Musl build errordeepan.shivap2024-12-032-3/+28
| | | | | | | | | | | | | Mistakenly removed musl-fixes.patch in previous commit. update & Include 0001-Musl-build-fix.patch based on latest upstream of ot-br-posix Remove CXXFLAGS:append:libc-musl:toolchain-clang = " -Wno-error=sign-compare -Wno-error=unused-but-set-variable", as issue is not reproducible with current SRCREV of ot-br-posix. Signed-off-by: deepan.shivap <deepan.shivap@lge.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: use inherit_defer for conditional casesGhislain Mangé2024-12-031-1/+1
| | | | | | | | | | | Conditionnal inherit may be missed when PACKAGECONFIG qt5 is activated after this inherit, eg in .bbappend. see patch [0] [0]: https://lists.openembedded.org/g/bitbake-devel/message/16815 Reviewed-by: Yoann Congal <yoann.congal@smile.fr> Signed-off-by: Ghislain Mangé <ghislain.mange@smile.fr> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: fix Qt5/6 configurationGhislain Mangé2024-12-031-1/+1
| | | | | | | | | | | | Wireshark is built with Qt6 by default when Qt is enabled. Forcibly disable Qt6 in our Qt5 PACKAGECONFIG Github issue: https://github.com/openembedded/meta-openembedded/issues/844 Reported-by: Ludovic Jozeau <ludovic.jozeau@smile.fr> Reviewed-by: Yoann Congal <yoann.congal@smile.fr> Signed-off-by: Ghislain Mangé <ghislain.mange@smile.fr> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* ot-br-posix: Fix GCC-14 build errordeepan.shivap2024-11-293-32/+295
| | | | | | | | | | | | | | GCC 14 compiler uses -fvisibility-inlines-hidden by default and it creates visibility conflicts. Add 0001-fix-build-on-GCC-14-for-yocto.patch file to resolve build error. Remove musl-fixes.patch, not applicable for latest Upstream. Update SRCREV to latest Upstream. Signed-off-by: deepan.shivap <deepan.shivap@lge.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* nbdkit: Bump to the newest stable repoMarcin Nowakowski2024-11-272-0/+71
| | | | | | | | | | | | | | | | Recently, the official nbdkit repo has been changed: from https://github.com/libguestfs/nbdkit into https://gitlab.com/nbdkit/nbdkit Additionally, the newest stable tag version is v1.40.4. The patch used with version 1.33.11 is also copied and modified to support the latest changes. The version 1.33.11 is not removed for reference purposes. It was tested with one of openbmc images. Signed-off-by: Khem Raj <raj.khem@gmail.com>
* mdns: Upgrade 2559.1.1 -> 2559.40.32Alex Kiernan2024-11-271-2/+2
| | | | | Signed-off-by: Alex Kiernan <alex.kiernan@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* meta: Add SECURITY.md file to all layersKhem Raj2024-11-231-0/+20
| | | | Signed-off-by: Khem Raj <raj.khem@gmail.com>
* dovecot: Upgrade to 2.3.21.1Khem Raj2024-11-232-1/+26
| | | | | | Fix build with icu-76.x while here Signed-off-by: Khem Raj <raj.khem@gmail.com>
* keepalived: Backport fix to build with muslKhem Raj2024-11-222-0/+35
| | | | Signed-off-by: Khem Raj <raj.khem@gmail.com>
* tcpdump: add CVE_PRODUCTBenjamin Bouvier2024-11-211-0/+2
| | | | | | | Add exact CPE name in CVE_PRODUCT. Signed-off-by: Benjamin Bouvier <benjamin.bouvier@ekinops.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* net-snmp: add CVE_PRODUCTBenjamin Bouvier2024-11-211-0/+2
| | | | | | | Add exact CPE name in CVE_PRODUCT. Signed-off-by: Benjamin Bouvier <benjamin.bouvier@ekinops.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* keepalived: Upgrade to 2.3.2Khem Raj2024-11-192-5/+3
| | | | | | | | | Changes are https://www.keepalived.org/release-notes/Release-2.3.0.html https://www.keepalived.org/release-notes/Release-2.3.1.html https://www.keepalived.org/release-notes/Release-2.3.2.html Signed-off-by: Khem Raj <raj.khem@gmail.com>