[Backport release-22.05] pacparser: 1.3.7 -> 1.4.0

[Backport release-22.05] imagemagick: 7.1.0-55 -> 7.1.0-56

(cherry picked from commit 21c2734135ec88e347ad6b5ef58bc768177bf7aa)

Fixes CVE-2019-25078 (and possibly other security related issues without CVE ID).

https://github.com/manugarg/pacparser/releases/tag/v1.4.0
https://github.com/manugarg/pacparser/releases/tag/v1.3.9
https://github.com/manugarg/pacparser/releases/tag/v1.3.8
(cherry picked from commit d6e3f5491b55c91c86e46b916416d074e6a5624f)

[Backport release-22.05] trafficserver: 9.1.3 -> 9.1.4

Fixes CVE-2022-32749 and CVE-2022-40743.

https://raw.githubusercontent.com/apache/trafficserver/9.1.x/CHANGELOG-9.1.4
(cherry picked from commit ede90bb8e12e26702efec3cc0e6f67745b6df67d)

Invoke `install` separately for each directory to get ownership right --
i.e. not always owned by root. When owned by root, user sessions break
as no user processes are allowed to create directores there. On normal
systems the directories already exist, but in clean environments / NixOS
test VMs, the bug shows.

Before:
$ namei -l /home/user1/.cache/borg
f: /home/user1/.cache/borg
drwxr-xr-x root root /
drwxr-xr-x root root home
drwx------ user1 users user1
drwxr-xr-x root root .cache
drwxr-xr-x user1 users borg

After:
$ namei -l /home/user1/.cache/borg
f: /home/user1/.cache/borg
drwxr-xr-x root root /
drwxr-xr-x root root home
drwx------ user1 users user1
drwxr-xr-x user1 users .cache
drwxr-xr-x user1 users borg
(cherry picked from commit ab5e4f74ef366643de6c309084004bc48c5599c4)

[22.05] traefik: add patch for CVE-2022-41717

(cherry picked from commit 84ea2f024f9ecd5fc422b01c33ca859556875af6)

...into staging-next-22.05

https://github.com/systemd/systemd-stable/compare/v250.8...v250.9

also fixes an security issue with systemd-coredump:
https://www.openwall.com/lists/oss-security/2022/12/21/3

250.9 added optional support for `libqrencode.so.3` too, so handle that
too.

[22.05] Wire desktop Bump

[22.05] Linux kernel updates 2022-12-23

[Backport release-22.05] matrix-synapse: 1.73.0 -> 1.74.0

(cherry picked from commit 1ecc5414ce18550f6bbd0b4b7945055f23803262)

(cherry picked from commit 7a3b8510894a6ed5f226df89efe984252a6f8b42)

(cherry picked from commit afc5e7cc9ad0868f9ff43618de7819a09a22ccfe)

(cherry picked from commit d3e0241c4dde7e85072f9594ee1f8dc837282e8a)

(cherry picked from commit f6f17ce513f6ecbb62c29111225d36cb23467d52)

(cherry picked from commit 734f672b6778744fbf860712d9bd0cade2b8e402)

(cherry picked from commit a464cfcb3666a5cc2bcff8f3708eb93176d9c529)

(cherry picked from commit 600ca141ded4e22313eda18b85b31927cc34d106)

Fixes CVE-2020-29260.

https://github.com/LibVNC/libvncserver/releases/tag/LibVNCServer-0.9.14
(cherry picked from commit 0dc0b93db1ec3c59a5259213df06572d9625ee01)

Signed-off-by: Sumner Evans <me@sumnerevans.com>
(cherry picked from commit c5e381b6c231a518b3f95dfb55c66afee9618842)

[Backport release-22.05] pjsip: add patch for CVE-2022-31031

https://gnupg.org/blog/20221017-pepe-left-the-ksba.html

Fixes: CVE-2022-3515
(cherry picked from commit bae75df20ec7f187b9995f4f27016de54f3ca02b)

https://curl.se/docs/CVE-2022-43551.html
https://curl.se/docs/CVE-2022-43552.html

Fixes: CVE-2022-43551, CVE-2022-43552

https://www.openwall.com/lists/oss-security/2022/12/20/2

Fixes LLDP underflow issue while parsing malformed Auto Attach TLVs.

https://www.openvswitch.org/releases/NEWS-2.17.1.txt
https://www.openvswitch.org/releases/NEWS-2.17.2.txt
https://www.openvswitch.org/releases/NEWS-2.17.3.txt
https://www.openvswitch.org/releases/NEWS-2.17.4.txt
https://www.openvswitch.org/releases/NEWS-2.17.5.txt

(cherry picked from commit 59fb0606d1d37a8f4dc08f2fa088706dd8df4a21)

(cherry picked from commit 32a43582e7dc2eadc58c572b8eb83be992cd6ffa)

[Backport release-22.05] librewolf: 107.0.1-2 -> 108.0-1

Diff: https://github.com/ImageMagick/ImageMagick/compare/7.1.0-54...7.1.0-55
(cherry picked from commit d0be85dd11eb919bedd912d7125767dfbfa728be)