packages/utils/unzip, branch master

treewide: cleanup URLs

2026-05-08T20:28:27Z

This commit converts plain HTTP URLs to HTTPS, and updates old or outdated URLs. Signed-off-by: Yanase Yuki

unzip: refresh patches

2026-04-29T06:41:42Z

Fixes: ``` 2026-04-28T14:55:09.6675796Z '/builder/build_dir/target-aarch64_generic_musl/unzip-6.0/unzip60/patches/0001-fix-heap-based-buffer-overflow-in-the-CRC32-verifica.patch' -> '/feed/utils/unzip/patches/0001-fix-heap-based-buffer-overflow-in-the-CRC32-verifica.patch' 2026-04-28T14:55:09.6707616Z '/builder/build_dir/target-aarch64_generic_musl/unzip-6.0/unzip60/patches/0002-fix-heap-based-buffer-overflow-in-the-test_compr_eb-.patch' -> '/feed/utils/unzip/patches/0002-fix-heap-based-buffer-overflow-in-the-test_compr_eb-.patch' 2026-04-28T14:55:09.6739766Z '/builder/build_dir/target-aarch64_generic_musl/unzip-6.0/unzip60/patches/0003-fix-heap-based-buffer-overflow-in-the-getZip64Data-f.patch' -> '/feed/utils/unzip/patches/0003-fix-heap-based-buffer-overflow-in-the-getZip64Data-f.patch' 2026-04-28T14:55:09.6770773Z '/builder/build_dir/target-aarch64_generic_musl/unzip-6.0/unzip60/patches/0004-fix-out-of-bounds-read-or-write-and-crash.patch' -> '/feed/utils/unzip/patches/0004-fix-out-of-bounds-read-or-write-and-crash.patch' 2026-04-28T14:55:09.6802381Z '/builder/build_dir/target-aarch64_generic_musl/unzip-6.0/unzip60/patches/0005-fix-heap-based-buffer-over-read-and-application-cras.patch' -> '/feed/utils/unzip/patches/0005-fix-heap-based-buffer-over-read-and-application-cras.patch' 2026-04-28T14:55:09.6832719Z '/builder/build_dir/target-aarch64_generic_musl/unzip-6.0/unzip60/patches/0006-fix-infinite-loop-because-of-an-empty-bzip2-data.patch' -> '/feed/utils/unzip/patches/0006-fix-infinite-loop-because-of-an-empty-bzip2-data.patch' 2026-04-28T14:55:09.6863943Z '/builder/build_dir/target-aarch64_generic_musl/unzip-6.0/unzip60/patches/0007-fix-error-to-prevent-unsigned-overflow.patch' -> '/feed/utils/unzip/patches/0007-fix-error-to-prevent-unsigned-overflow.patch' 2026-04-28T14:55:09.6895530Z '/builder/build_dir/target-aarch64_generic_musl/unzip-6.0/unzip60/patches/0008-fix-buffer-overflow-in-the-list_files-function.patch' -> '/feed/utils/unzip/patches/0008-fix-buffer-overflow-in-the-list_files-function.patch' 2026-04-28T14:55:09.6926806Z '/builder/build_dir/target-aarch64_generic_musl/unzip-6.0/unzip60/patches/0009-fix-buffer-overflow-in-the-zi_short-function.patch' -> '/feed/utils/unzip/patches/0009-fix-buffer-overflow-in-the-zi_short-function.patch' 2026-04-28T14:55:09.6958683Z '/builder/build_dir/target-aarch64_generic_musl/unzip-6.0/unzip60/patches/0010-unix.c-Remove-build-date.patch' -> '/feed/utils/unzip/patches/0010-unix.c-Remove-build-date.patch' 2026-04-28T14:55:09.6990350Z '/builder/build_dir/target-aarch64_generic_musl/unzip-6.0/unzip60/patches/0011-fix-heap-based-buffer-overflow-in-the-password-prote.patch' -> '/feed/utils/unzip/patches/0011-fix-heap-based-buffer-overflow-in-the-password-prote.patch' 2026-04-28T14:55:09.7023549Z '/builder/build_dir/target-aarch64_generic_musl/unzip-6.0/unzip60/patches/012-fix-gcc15-build.patch' -> '/feed/utils/unzip/patches/012-fix-gcc15-build.patch' 2026-04-28T14:55:09.7047649Z make[2]: Leaving directory '/feed/utils/unzip' 2026-04-28T14:55:09.7051724Z time: package/feeds/packages_ci/unzip/refresh#1.41#1.81#2.76 2026-04-28T14:55:09.7059428Z make[1]: Leaving directory '/builder' 2026-04-28T14:55:09.7071281Z ##[endgroup] 2026-04-28T14:55:09.7104892Z Dirty patches detected, please refresh and review the diff ``` Fixes: f9e7e2db94a768d24201df27c4b619e724f95536 ("unzip: add valid patche headers and missing CVE informations") Signed-off-by: Josef Schlehofer

unzip: add valid patche headers and missing CVE informations

2025-09-08T07:23:42Z

This commit adds a valid git patch header for each patch, so that additional information can be stored. This is in this case and 'CVE:' tag. This can be used by CVE scanner to find out if the patch fixes a CVE. Signed-off-by: Florian Eckert

unzip: fix build GCC 15.1

2025-07-09T10:52:06Z

refer to: https://gitlab.alpinelinux.org/alpine/aports/-/blob/b7410ac718d5eeae21001de5cae9159f597bb517/main/unzip/gcc15.patch fix this: unix/unxcfg.h:120:15: error: conflicting types for 'gmtime'; have 'struct tm *(void)' 120 | struct tm *gmtime(), *localtime(); | ^~~~~~ In file included from unix/unxcfg.h:119: /home/nasbdh9/openwrt/staging_dir/toolchain-x86_64_gcc-15.1.0_musl/include/time.h:59:12: note: previous declaration of 'gmtime' with type 'struct tm *(const time_t *)' {aka 'struct tm *(const long int *)'} 59 | struct tm *gmtime (const time_t *); | ^~~~~~ unix/unxcfg.h:120:26: error: conflicting types for 'localtime'; have 'struct tm *(void)' 120 | struct tm *gmtime(), *localtime(); | ^~~~~~~~~ /home/nasbdh9/openwrt/staging_dir/toolchain-x86_64_gcc-15.1.0_musl/include/time.h:60:12: note: previous declaration of 'localtime' with type 'struct tm *(const time_t *)' {aka 'struct tm *(const long int *)'} 60 | struct tm *localtime (const time_t *); | ^~~~~~~~~ Signed-off-by: Tan Zien

treewide: Run refresh on all packages

2021-02-21T00:02:15Z

The crude loop I wrote to come up with this changeset: find -L package/feeds/packages/ -name patches | \ sed 's/patches$/refresh/' | sort | xargs make Signed-off-by: Ilya Lipnitskiy

unzip: fix PKG_CPE_ID

2019-01-17T13:58:54Z

Signed-off-by: Jan Pavlinec

unzip: patch CVE-2018-1000035 and add PKG_CPE_IDE

2019-01-15T12:35:52Z

Signed-off-by: Jan Pavlinec

unzip: remove build timestamp

2017-11-17T12:39:30Z

Build timestamps prevent reproducible builds [0]. Thanks to debian for the patch. [0] https://reproducible-builds.org/docs/timestamps/ Signed-off-by: Alexander Couzens

treewide: run "make check FIXUP=1"

2017-08-30T04:41:14Z

fix Makefile chmod (644) replace MD5SUM with HASH add PKG_MIRROR_HASH when PKG_SOURCE_PROTO:=git (PKG_SOURCE_PROTO:=svn tarballs are not reproducible for now) Signed-off-by: Etienne Champetier

unzip: patch CVE-2014-9913 and CVE-2016-9844 vulnerabilities

2017-01-23T16:53:03Z

Signed-off-by: Álvaro Fernández Rojas