alpine issueshttps://gitlab.alpinelinux.org/groups/alpine/-/issues2020-07-02T11:37:51Zhttps://gitlab.alpinelinux.org/alpine/aports/-/issues/11709main/linux-lts: add config-virt.ppc64le2020-07-02T11:37:51ZTrung Lêmain/linux-lts: add config-virt.ppc64leHi core team
Lately there has been much attention from the PowerPC community on PPC64LE Linux thanks to the commitment of both IBM and Red Hat to make sure Linux experience on PPC64LE is of a first class. One aspect that OpenPOWER reall...Hi core team
Lately there has been much attention from the PowerPC community on PPC64LE Linux thanks to the commitment of both IBM and Red Hat to make sure Linux experience on PPC64LE is of a first class. One aspect that OpenPOWER really shines is virtualisation. PowerPC users have been hosting standard Alpine with qemu-kvm for quite awhile. The reliability and performance is very impressive. To me it is just right that linux-lts package should have the virt variant for ppc64le.
Because I am not 100% sure why ppc64le was not supported originally I would like to use this GitLab Issue as a communication medium to explore more details from the core team.
Lastly I am more than happy to contribute in the packaging if the team is okay with the proposal.https://gitlab.alpinelinux.org/alpine/aports/-/issues/11710pdns-recursor: Access restriction bypass (CVE-2020-14196)2020-07-02T09:11:50ZAlicha CHpdns-recursor: Access restriction bypass (CVE-2020-14196)An issue has been found in PowerDNS Recursor where the ACL applied to the internal web server via webserver-allow-from is not properly enforced, allowing a remote attacker to send HTTP queries to the internal web server, bypassing the re...An issue has been found in PowerDNS Recursor where the ACL applied to the internal web server via webserver-allow-from is not properly enforced, allowing a remote attacker to send HTTP queries to the internal web server, bypassing the restriction.
* Affects: PowerDNS Recursor up to and including 4.3.1, 4.2.2 and 4.1.16
* Not affected: 4.3.2, 4.2.3, 4.1.17
#### Reference:
https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2020-04.html
### Affected branches:
* [x] master (5dcc709a2d71bb5090c2fdd2a78cab88d6395f1d)
* [x] 3.12-stable (dd21c19424d1d735dd938315faf44a8841d2a376)https://gitlab.alpinelinux.org/alpine/aports/-/issues/11711Package request: move openconnect to community2020-08-13T07:38:24ZMogens JensenPackage request: move openconnect to communityNot sure about the process for this, but I would like to propose that the package openconnect is moved to community repository. I have been using OpenConnect on Alpine everyday for the last year or so, connecting to multiple Cisco VPN ga...Not sure about the process for this, but I would like to propose that the package openconnect is moved to community repository. I have been using OpenConnect on Alpine everyday for the last year or so, connecting to multiple Cisco VPN gateways and I have not experienced any problems with the package. However, it would be very nice to be able to use OpenConnect on stable Alpine releases, as this is more appropriate for routers and other network devices.https://gitlab.alpinelinux.org/alpine/aports/-/issues/11712monitoring-plugins check_dns does not work with Busybox nslookup2021-03-05T17:06:23ZHenrik Riomarmonitoring-plugins check_dns does not work with Busybox nslookupThe `check_dns` command in the monitoring-plugins package is broken with Busybox nslookup.
Without installing `bind-host`
```
$ /usr/lib/monitoring-plugins/check_dns -H www.google.com -w 0.3 -c 1
DNS CRITICAL - '/usr/bin/nslookup -sil'...The `check_dns` command in the monitoring-plugins package is broken with Busybox nslookup.
Without installing `bind-host`
```
$ /usr/lib/monitoring-plugins/check_dns -H www.google.com -w 0.3 -c 1
DNS CRITICAL - '/usr/bin/nslookup -sil' msg parsing exited with no address
```
After installing the `bind-tools` package
```
$ /usr/lib/monitoring-plugins/check_dns -H www.google.com -w 0.3 -c 1
DNS OK: 0.184 seconds response time. www.google.com returns 172.217.21.164,2a00:1450:400f:80a::2004|time=0.183755s;0.300000;1.000000;0.000000
```
We should add `bind-tools` as a dependency to `monitoring-plugins` or fix `check_dns` to work with `Busybox`Francesco ColistaFrancesco Colistahttps://gitlab.alpinelinux.org/alpine/aports/-/issues/11713firefox-esr: Multiple vulnerabilities (CVE-2020-12417, CVE-2020-12418, CVE-20...2020-07-03T14:51:31ZAlicha CHfirefox-esr: Multiple vulnerabilities (CVE-2020-12417, CVE-2020-12418, CVE-2020-12419, CVE-2020-12420, CVE-2020-12421)* CVE-2020-12417: Memory corruption due to missing sign-extension for ValueTags on ARM64
* CVE-2020-12418: Information disclosure due to manipulated URL object
* CVE-2020-12419: Use-after-free in nsGlobalWindowInner
* CVE-2020-12420: Use...* CVE-2020-12417: Memory corruption due to missing sign-extension for ValueTags on ARM64
* CVE-2020-12418: Information disclosure due to manipulated URL object
* CVE-2020-12419: Use-after-free in nsGlobalWindowInner
* CVE-2020-12420: Use-After-Free when trying to connect to a STUN server
* CVE-2020-12421: Add-On updates did not respect the same certificate trust rules as software updates
#### Fixed In Version:
Firefox ESR 68.10
#### Reference:
https://www.mozilla.org/en-US/security/advisories/mfsa2020-25/
### Affected branches:
* [x] master
* [x] 3.12-stableRasmus Thomsenoss@cogitri.devRasmus Thomsenoss@cogitri.devhttps://gitlab.alpinelinux.org/alpine/aports/-/issues/11714Having python installed in v3.11 and upgrading to v3.12 causes issues2022-07-06T12:30:24ZHenrik RiomarHaving python installed in v3.11 and upgrading to v3.12 causes issuesIf the python package is in `/etc/apk/world` before the upgrade to v3.12 it will also be in the `/etc/apk/world` file after upgrade. But that is no package called python on v3.12. (Now they are called python2 and python3)
That `python` ...If the python package is in `/etc/apk/world` before the upgrade to v3.12 it will also be in the `/etc/apk/world` file after upgrade. But that is no package called python on v3.12. (Now they are called python2 and python3)
That `python` is in `/etc/apk/world` will then "make sure" that updates to python3 does not get installed with `apk upgrade` just get
```
OK: 336MiB in 175 package
```
or similar back.https://gitlab.alpinelinux.org/alpine/aports/-/issues/11715realtek.ko should be added to netboot initramfs2020-12-22T11:21:49ZAleksey Mrealtek.ko should be added to netboot initramfsI believe this issue, while related, is different from #11344.
I try to boot Alpine using PXE.
I am using `vmlinuz-lts`, `initramfs-lts`, and `modloop-lts` from `latest-stable/releases/x86_64/netboot/`.
Boot fails with same diagnostics:...I believe this issue, while related, is different from #11344.
I try to boot Alpine using PXE.
I am using `vmlinuz-lts`, `initramfs-lts`, and `modloop-lts` from `latest-stable/releases/x86_64/netboot/`.
Boot fails with same diagnostics:
```
realtek.ko not loaded, maybe it needs to be added to initramfs?
```
Problem is that `initramfs-lts` has only `r8169.ko`,
`realtek.ko` is located in modloop, which is loaded from network using HTTP.
This is pretty usual setup for PXE boot, so I think `realtek.ko` should be moved to netboot initramfs.
P.S: PXE setup is proven by years and boots fine on different hardware now.
EDIT:
v3.11 and v3.12 are affected.
v3.10 is not affected by this.Natanael CopaNatanael Copahttps://gitlab.alpinelinux.org/alpine/aports/-/issues/11716git-dbg missing?2020-07-13T09:23:38ZElliegit-dbg missing?I am experiencing a crash in git, but I can't figure out how to install debugging symbols for it to get a useful backtrace in gdb.
This is what I tried:
```
$ sudo apk add git-dbg
ERROR: unsatisfiable constraints:
git-dbg (missing):
...I am experiencing a crash in git, but I can't figure out how to install debugging symbols for it to get a useful backtrace in gdb.
This is what I tried:
```
$ sudo apk add git-dbg
ERROR: unsatisfiable constraints:
git-dbg (missing):
required by: world[git-dbg]
```
I did install musl-dbg, but with that the backtrace still looks pretty useless:
```
#0 0x0000aaaaaabcb00c in ?? ()
#1 0x0000aaaaaabb8220 in ?? ()
#2 0x0000aaaaaabb8aa4 in ?? ()
#3 0x0000aaaaaab00f30 in ?? ()
#4 0x0000aaaaaab0182c in ?? ()
#5 0x0000aaaaaaac7b84 in ?? ()
#6 0x0000aaaaaaac888c in ?? ()
#7 0x0000aaaaaaac75ec in ?? ()
#8 0x0000fffff7f7077c in libc_start_main_stage2 (main=0xaaaaaaac7540, argc=2, argv=0xfffffffffb98)
at src/env/__libc_start_main.c:94
#9 0x0000000000000000 in ?? ()
Backtrace stopped: previous frame identical to this frame (corrupt stack?)
```https://gitlab.alpinelinux.org/alpine/aports/-/issues/11717`git log` crashes, quite regularly but always at a different output line2023-02-07T18:49:43ZEllie`git log` crashes, quite regularly but always at a different output line`git log` crashes for me, quite regularly but always at a different output line:
```
$ git --no-pager log
commit 7ebe0c9833da54f781efe57daf11f15dbe405abf (HEAD -> master, origin/master, origin/HEAD)
Segmentation fault
$ git --no-pager l...`git log` crashes for me, quite regularly but always at a different output line:
```
$ git --no-pager log
commit 7ebe0c9833da54f781efe57daf11f15dbe405abf (HEAD -> master, origin/master, origin/HEAD)
Segmentation fault
$ git --no-pager log
commit 7ebe0c9833da54f781efe57daf11f15dbe405abf (HEAD -> master, origin/master, origin/HEAD)
Author: myauthor <my@email.address>
Date: Sat Jul 4 14:24:28 2020 +0200
Tweaks to exception frame data structure
commit 5f884593cf63245560b1059d2e39703b0f63ae1d
Segmentation fault
```
I run it on the PinePhone UBPorts CE (HW rev. 1.2) with postmarketOS based on Alpine Edge.
Since there is no git-gdb (I asked for it here #11716 ) this is all I have as a backtrace for now:
```
#0 0x0000aaaaaabcb00c in ?? ()
#1 0x0000aaaaaabb8220 in ?? ()
#2 0x0000aaaaaabb8aa4 in ?? ()
#3 0x0000aaaaaab00f30 in ?? ()
#4 0x0000aaaaaab0182c in ?? ()
#5 0x0000aaaaaaac7b84 in ?? ()
#6 0x0000aaaaaaac888c in ?? ()
#7 0x0000aaaaaaac75ec in ?? ()
#8 0x0000fffff7f7077c in libc_start_main_stage2 (main=0xaaaaaaac7540, argc=2, argv=0xfffffffffb98)
at src/env/__libc_start_main.c:94
#9 0x0000000000000000 in ?? ()
Backtrace stopped: previous frame identical to this frame (corrupt stack?)
```
Once git-gdb becomes available I will happily update this.
(Note: this ticket was forwarded from https://gitlab.com/postmarketOS/pmaports/-/issues/667 where it was suggested filing it here might be better suited)https://gitlab.alpinelinux.org/alpine/aports/-/issues/11719logwatch - referenced upstream URL appears to be incorrect2020-07-06T05:41:54ZDermot Bradleylogwatch - referenced upstream URL appears to be incorrect@vaka
The logwatch package indicates that "https://www.logwatch.org" is the homepage for info about upstream. However the page at this URL appears to be in Thai language, contains a reference to what seems to be a betting site and gene...@vaka
The logwatch package indicates that "https://www.logwatch.org" is the homepage for info about upstream. However the page at this URL appears to be in Thai language, contains a reference to what seems to be a betting site and generally feels a bit "dodgy" to me so I'm assuming either this domain lapsed at some point in the past and it was re-registered by someone else for "dodgy" purposes or else the site has been hacked.
Looks like the valid upstream URL should be "https://sourceforge.net/projects/logwatch/" instead.https://gitlab.alpinelinux.org/alpine/aports/-/issues/11720feat: clamav-client2020-09-05T22:08:16ZJohn Lanefeat: clamav-clientA package containing only the /usr/bin/clamdscan binary that is in the existing clamav-daemon package. The only dependency is libcrypto1.1.A package containing only the /usr/bin/clamdscan binary that is in the existing clamav-daemon package. The only dependency is libcrypto1.1.https://gitlab.alpinelinux.org/alpine/aports/-/issues/11721'etc' default gem missing in alipne ruby package2020-11-29T19:07:07ZCamden Narzt'etc' default gem missing in alipne ruby packageAccording to this bug report https://github.com/phusion/passenger/issues/2124, Alpine linux does not include the `etc` gem when you install ruby. It is supposed to be there (see: https://stdgems.org/#default-gems-ruby-271). We tried to f...According to this bug report https://github.com/phusion/passenger/issues/2124, Alpine linux does not include the `etc` gem when you install ruby. It is supposed to be there (see: https://stdgems.org/#default-gems-ruby-271). We tried to fix it on our end by adding an explicit dependency on the `etc` gem (any version) but that doesn't work because bundler can't figure out how to deal with it: https://github.com/phusion/passenger/issues/2283 so we'll have to revert that change.
So I'm reporting this here so you can choose what to do. Thanks for your time.Jakub JirutkaJakub Jirutkahttps://gitlab.alpinelinux.org/alpine/aports/-/issues/11722community/ffmpeg: libswscale bug: sws_scale() returns 0 even on success under...2020-07-09T16:54:11ZMarek Benccommunity/ffmpeg: libswscale bug: sws_scale() returns 0 even on success under certain conditions (aarch64), this breaks telegram-desktopAfter investigating why telegram-desktop crashed whenever I would try to view certain stickers, it appears that it uses sws_scale() and [checks the return value with an assert](https://github.com/desktop-app/lib_lottie/blob/804f05fc9bc47...After investigating why telegram-desktop crashed whenever I would try to view certain stickers, it appears that it uses sws_scale() and [checks the return value with an assert](https://github.com/desktop-app/lib_lottie/blob/804f05fc9bc47817c06f8c976771a377e59d100e/lottie/lottie_cache.cpp#L150), crashing the application if the call fails.
Interestingly enough, removing this assertion did make it work, since the call didn't actually fail, but returned 0 instead of the line count, which can be demonstrated with the following test program:
[conv_test.c](/uploads/03fdb964783240fc5b2a64a43d453dc9/conv_test.c)
To compile it:
`$ gcc -o conv_test conv_test.c -lswscale -lavutil`
Expected result (Debian Buster, x86_64, ffmpeg 4.1.4):
```
$ ./conv_test
./conv_test: sws_scale() = 32.
./conv_test: Source data:
./conv_test: uint256_t line[0] = { 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10 };
./conv_test: uint128_t line[1] = { 0x80, 0x80, 0x80, 0x7D, 0x80, 0x80, 0x73, 0x6A, 0x7F, 0x82, 0x68, 0x67, 0x80, 0x80, 0x80, 0x80 };
./conv_test: uint128_t line[2] = { 0x80, 0x80, 0x80, 0x7D, 0x80, 0x80, 0x73, 0x6B, 0x7F, 0x82, 0x69, 0x68, 0x80, 0x80, 0x80, 0x80 };
./conv_test: uint0_t line[3] = { };
./conv_test: uint0_t line[4] = { };
./conv_test: uint0_t line[5] = { };
./conv_test: uint0_t line[6] = { };
./conv_test: uint0_t line[7] = { };
./conv_test: Destination data:
./conv_test: uint1024_t line[0] = { 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x03, 0x00, 0xFF, 0x00, 0x03, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x0F, 0x00, 0xFF, 0x00, 0x0F, 0x00, 0xFF, 0x00, 0x19, 0x00, 0xFF, 0x00, 0x19, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x04, 0x00, 0x03, 0xFF, 0x04, 0x00, 0x03, 0xFF, 0x00, 0x1B, 0x00, 0xFF, 0x00, 0x1B, 0x00, 0xFF, 0x00, 0x1C, 0x00, 0xFF, 0x00, 0x1C, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF };
./conv_test: uint0_t line[1] = { };
./conv_test: uint0_t line[2] = { };
./conv_test: uint0_t line[3] = { };
./conv_test: uint0_t line[4] = { };
./conv_test: uint0_t line[5] = { };
./conv_test: uint0_t line[6] = { };
./conv_test: uint0_t line[7] = { };
$ uname -a
Linux hyper-brodmach 4.19.0-9-amd64 #1 SMP Debian 4.19.118-2+deb10u1 (2020-06-07) x86_64 GNU/Linux
```
Results on aarch64 (pinephone, Alpine Linux (edge, postmarketOS), ffmpeg 4.3):
```
$ ./conv_test
[swscaler @ 0xaaaadfaf40e0] No accelerated colorspace conversion found from yuv420p to bgra.
./conv_test: sws_scale() = 0.
./conv_test: Source data:
./conv_test: uint256_t line[0] = { 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10 };
./conv_test: uint128_t line[1] = { 0x80, 0x80, 0x80, 0x7D, 0x80, 0x80, 0x73, 0x6A, 0x7F, 0x82, 0x68, 0x67, 0x80, 0x80, 0x80, 0x80 };
./conv_test: uint128_t line[2] = { 0x80, 0x80, 0x80, 0x7D, 0x80, 0x80, 0x73, 0x6B, 0x7F, 0x82, 0x69, 0x68, 0x80, 0x80, 0x80, 0x80 };
./conv_test: uint0_t line[3] = { };
./conv_test: uint0_t line[4] = { };
./conv_test: uint0_t line[5] = { };
./conv_test: uint0_t line[6] = { };
./conv_test: uint0_t line[7] = { };
./conv_test: Destination data:
./conv_test: uint1024_t line[0] = { 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x03, 0x00, 0xFF, 0x00, 0x03, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x10, 0x00, 0xFF, 0x00, 0x10, 0x00, 0xFF, 0x00, 0x1A, 0x00, 0xFF, 0x00, 0x1A, 0x00, 0xFF, 0x00, 0x01, 0x00, 0xFF, 0x00, 0x01, 0x00, 0xFF, 0x04, 0x00, 0x03, 0xFF, 0x04, 0x00, 0x03, 0xFF, 0x00, 0x1C, 0x00, 0xFF, 0x00, 0x1C, 0x00, 0xFF, 0x00, 0x1D, 0x00, 0xFF, 0x00, 0x1D, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF, 0x00, 0x00, 0x00, 0xFF };
./conv_test: uint0_t line[1] = { };
./conv_test: uint0_t line[2] = { };
./conv_test: uint0_t line[3] = { };
./conv_test: uint0_t line[4] = { };
./conv_test: uint0_t line[5] = { };
./conv_test: uint0_t line[6] = { };
./conv_test: uint0_t line[7] = { };
$ uname -a
Linux dooshki-pinephone 5.7.0 #1-postmarketos-allwinner SMP Thu Jul 2 11:56:34 UTC 2020 aarch64 GNU/Linux
```
https://gitlab.alpinelinux.org/alpine/aports/-/issues/11725Error in the scons package due to a problem in the script shebang.2022-10-19T19:11:12ZTumeoError in the scons package due to a problem in the script shebang.The `scons` package is broken because the scons script did not find the python executable.
I tried installing using Alpine 3.11.6 on podman.
Log:
```shell
podman run --rm -it alpine:latest
/ # cat /etc/os-release
NAME="Alpine Linux"
ID...The `scons` package is broken because the scons script did not find the python executable.
I tried installing using Alpine 3.11.6 on podman.
Log:
```shell
podman run --rm -it alpine:latest
/ # cat /etc/os-release
NAME="Alpine Linux"
ID=alpine
VERSION_ID=3.11.6
PRETTY_NAME="Alpine Linux v3.11"
HOME_URL="https://alpinelinux.org/"
BUG_REPORT_URL="https://bugs.alpinelinux.org/"
/ # apk update
fetch http://dl-cdn.alpinelinux.org/alpine/v3.11/main/x86_64/APKINDEX.tar.gz
fetch http://dl-cdn.alpinelinux.org/alpine/v3.11/community/x86_64/APKINDEX.tar.gz
v3.11.6-91-gd05b39805b [http://dl-cdn.alpinelinux.org/alpine/v3.11/main]
v3.11.6-90-g318b6c3504 [http://dl-cdn.alpinelinux.org/alpine/v3.11/community]
OK: 11271 distinct packages available
/ # apk upgrade
(1/1) Upgrading ca-certificates-cacert (20191127-r1 -> 20191127-r2)
OK: 6 MiB in 14 packages
/ # apk add scons
(1/11) Installing libbz2 (1.0.8-r1)
(2/11) Installing expat (2.2.9-r1)
(3/11) Installing libffi (3.2.1-r6)
(4/11) Installing gdbm (1.13-r1)
(5/11) Installing xz-libs (5.2.4-r0)
(6/11) Installing ncurses-terminfo-base (6.1_p20200118-r4)
(7/11) Installing ncurses-libs (6.1_p20200118-r4)
(8/11) Installing readline (8.0.1-r0)
(9/11) Installing sqlite-libs (3.30.1-r2)
(10/11) Installing python3 (3.8.2-r0)
(11/11) Installing scons (3.1.1-r0)
Executing busybox-1.31.1-r9.trigger
OK: 69 MiB in 25 packages
/ # scons
env: can't execute 'python': No such file or directory
```
The problem is in the scons script shebang, it refers to `/usr/bin/env python`, but the default python on Alpine is python 2.
Solutions:
- Patch the file `$builddir/script/scons` to use `python3` instead of `python` in the shebang.
- Eg: `sed 's/env python/env python3/' script/scons > script/scons`
Workarounds:
- Run scons using python3 directly: `python3 $(which scons)`https://gitlab.alpinelinux.org/alpine/aports/-/issues/11726opencv has unsatisfiable dependencies2022-03-16T16:57:40ZLeon Marzopencv has unsatisfiable dependenciesWhen trying to install opencv, this error shows up:
```
ERROR: unsatisfiable contraints:
so:libIlmImf-2_4.so.24 (missing):
required by: opencv-4.3.0-r0[so:libIlmImf-2_4.so.24]
```
Apparently, opencv wasn't rebuild against openexr v...When trying to install opencv, this error shows up:
```
ERROR: unsatisfiable contraints:
so:libIlmImf-2_4.so.24 (missing):
required by: opencv-4.3.0-r0[so:libIlmImf-2_4.so.24]
```
Apparently, opencv wasn't rebuild against openexr version 2.5https://gitlab.alpinelinux.org/alpine/aports/-/issues/11727minirootfs is missing udhcpc default.script2020-07-08T11:35:17ZLars Kellogg-Stedmanminirootfs is missing udhcpc default.scriptThe minirootfs includes busybox `udhcpc`, but does not include `/usr/share/udhcpc/default.script`. This means that anything built from the minirootfs tarball will be able to call `udhcpc` successfully, but it won't actually configure any...The minirootfs includes busybox `udhcpc`, but does not include `/usr/share/udhcpc/default.script`. This means that anything built from the minirootfs tarball will be able to call `udhcpc` successfully, but it won't actually configure any interfaces...which is a bit of a surprise.https://gitlab.alpinelinux.org/alpine/aports/-/issues/11728docker alpine:3.12 - doesn't recognize pip3 command2020-07-08T19:46:07ZMarti5pldocker alpine:3.12 - doesn't recognize pip3 commandAfter installing python3 in Alpine Docker image command:
**RUN pip3 install** (stuff) - generates an error 127 in **/bin/sh -c**.
This worked perfectly in version alpine:3.11.After installing python3 in Alpine Docker image command:
**RUN pip3 install** (stuff) - generates an error 127 in **/bin/sh -c**.
This worked perfectly in version alpine:3.11.https://gitlab.alpinelinux.org/alpine/aports/-/issues/11729openexr: Multiple vulnerabilities (CVE-2020-15304, CVE-2020-15305, CVE-2020-1...2020-09-15T14:19:05ZAlicha CHopenexr: Multiple vulnerabilities (CVE-2020-15304, CVE-2020-15305, CVE-2020-15306)### CVE-2020-15304
An issue was discovered in OpenEXR before 2.5.2. An invalid tiled input file could cause invalid memory access in TiledInputFile::TiledInputFile() in IlmImf/ImfTiledInputFile.cpp, as demonstrated by a NULL pointer de...### CVE-2020-15304
An issue was discovered in OpenEXR before 2.5.2. An invalid tiled input file could cause invalid memory access in TiledInputFile::TiledInputFile() in IlmImf/ImfTiledInputFile.cpp, as demonstrated by a NULL pointer dereference.
#### References:
* https://github.com/AcademySoftwareFoundation/openexr/blob/master/SECURITY.md
* https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15304
### CVE-2020-15305
An issue was discovered in OpenEXR before 2.5.2. Invalid input could cause a use-after-free in DeepScanLineInputFile::DeepScanLineInputFile() in IlmImf/ImfDeepScanLineInputFile.cpp.
#### References:
* https://github.com/AcademySoftwareFoundation/openexr/blob/master/SECURITY.md
* https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15305
### CVE-2020-15306
An issue was discovered in OpenEXR before v2.5.2. Invalid chunkCount attributes could cause a heap buffer overflow in getChunkOffsetTableSize() in IlmImf/ImfMisc.cpp.
#### References:
* https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15306
* https://github.com/AcademySoftwareFoundation/openexr/blob/master/SECURITY.md
### Affected branches:
* [x] master (376cd0a41f1ab0b154b539ed33f74dac0ef13ee8)
* [x] 3.12-stablehttps://gitlab.alpinelinux.org/alpine/aports/-/issues/11731Promote cloud-init from testing2021-01-06T04:22:11ZAdam StephensPromote cloud-init from testingHow can we get cloud-init promoted from testing in to the main or community repo?
If this isn't the correct place, feel free to redirect me. The wiki didn't provide much guidance on how a package gets out of testing except for "positive...How can we get cloud-init promoted from testing in to the main or community repo?
If this isn't the correct place, feel free to redirect me. The wiki didn't provide much guidance on how a package gets out of testing except for "positive feedback".
Thanks.
CC: @dbradleyhttps://gitlab.alpinelinux.org/alpine/aports/-/issues/11732feat: radsecproxy2021-10-02T22:01:52ZJosef Vybíhalfeat: radsecproxyRequest for new package `radsecproxy`: *A generic RADIUS proxy that in addition to usual RADIUS UDP transport, also supports TLS (RadSec), as well as RADIUS over TCP and DTLS.*
home: https://github.com/radsecproxy/radsecproxy
latest ta...Request for new package `radsecproxy`: *A generic RADIUS proxy that in addition to usual RADIUS UDP transport, also supports TLS (RadSec), as well as RADIUS over TCP and DTLS.*
home: https://github.com/radsecproxy/radsecproxy
latest tag: https://github.com/radsecproxy/radsecproxy/archive/1.8.1.tar.gz