There is at least one recorded issue against our kiwix version. Upstream
does no longer support this version of the project. They have moved to a
different repository & software architecture.
Bumps to the latest stable version while fixing CVE-2018-14345 [1].
Changelog [2]:
- Support theme supplied avatars
- Compile against Qt 5.11
- Fix platform detection for HighDPI
- On close, switch VT to a running session if applicable
- Better ConsoleKit support
- Fix authentication when non-default hidden option ReuseSession=true is used (CVE-2018-14345)
- Hide sessions with NoDisplay=true
- Honor PAM's ambient supplemental groups
- Cleanup socket destruction
- Don't quit on SIGHUP
- Updated translations
[1] https://nvd.nist.gov/vuln/detail/CVE-2018-14345
[2] https://github.com/sddm/sddm/releases/tag/v0.18.0
The package hasn't been updated in a long time. There have been several
issues with the package. There is no dependant package in the
repository so marking it as insecure until someone maintains it sounds
reasonable.
'cloudflared' is a multi-purpose client-side tool for CloudFlare Argo
Tunnel, CloudFlare Access, as well as including a simple DNS-over-HTTP
(DoH) proxy tool as well.
However, 'cloudflared' is NOT available under an open source license.
Furthermore, the exact terms of redistribution (namely, if we are able
to redistribute binaries at all) are not entirely clear to me. As a
result, I have filed the following bug report concerning the terms of
redistribution for the source code and binaries:
https://github.com/cloudflare/cloudflared/issues/53
'cloudflared' does have source code available, however, and it
encourages users to use 'go install' in order to set it up, in fact (or
download their prebuilt, compiled binaries). So using the source seems
to be encouraged. Even then, I'm still not sure if Hydra can serve these
binaries.
In lieu of a more pointed answer regarding source/binary licensing, and
to avoid keeping this expression in my private tree, I've marked it as
'unfree' (to avoid Hydra serving it in any way) as well as compiled from
source (to avoid any 'redistribution allowed while unmodified' terms
that may crop up).
The dependencies for this build were generated using 'dep2nix'.
Signed-off-by: Austin Seipp <aseipp@pobox.com>
