diff options
| author | Natanael Copa <ncopa@alpinelinux.org> | 2018-01-12 14:38:18 +0100 |
|---|---|---|
| committer | Natanael Copa <ncopa@alpinelinux.org> | 2018-01-12 14:38:18 +0100 |
| commit | df32af0519535d71dbccfbd94c5ada90046f5795 (patch) | |
| tree | 2fbac42aa284a6e2d7a0f797ef4853ceeba349ed | |
| parent | 44de51a713346f820d01c3028767c1c51257d813 (diff) | |
| download | alpine-secdb-df32af0519535d71dbccfbd94c5ada90046f5795.tar.bz2 alpine-secdb-df32af0519535d71dbccfbd94c5ada90046f5795.tar.xz | |
add v3.7
| -rw-r--r-- | secfixes.lua | 1 | ||||
| -rw-r--r-- | v3.7/community.yaml | 278 | ||||
| -rw-r--r-- | v3.7/main.yaml | 904 |
3 files changed, 1183 insertions, 0 deletions
diff --git a/secfixes.lua b/secfixes.lua index a25e9c2..0acd7b0 100644 --- a/secfixes.lua +++ b/secfixes.lua @@ -73,6 +73,7 @@ archs = { ["v3.4"] = { "x86_64", "x86", "armhf" }, ["v3.5"] = { "x86_64", "x86", "armhf", "aarch64" }, ["v3.6"] = { "x86_64", "x86", "armhf", "aarch64", "ppc64le", "s390x" }, + ["v3.7"] = { "x86_64", "x86", "armhf", "aarch64", "ppc64le", "s390x" }, } opts, args = require('optarg').from_opthelp(opthelp) diff --git a/v3.7/community.yaml b/v3.7/community.yaml new file mode 100644 index 0000000..868fcd2 --- /dev/null +++ b/v3.7/community.yaml @@ -0,0 +1,278 @@ +--- +distroversion: v3.7 +reponame: community +archs: + - x86_64 + - x86 + - armhf + - aarch64 + - ppc64le + - s390x +urlprefix: http://dl-cdn.alpinelinux.org/alpine +apkurl: "{{urlprefix}}/{{distroversion}}/{{reponame}}/{{arch}}/{{pkg.name}}-{{pkg.ver}}.apk" +packages: + - pkg: + name: chicken + secfixes: + 4.12.0-r3: + - CVE-2017-6949 + 4.12.0-r2: + - CVE-2017-9334 + 4.11.1-r0: + - CVE-2016-6830 + - CVE-2016-6831 + - pkg: + name: evince + secfixes: + 3.24.0-r2: + - CVE-2017-1000083 + - pkg: + name: exim + secfixes: + 4.89-r5: + - CVE-2017-1000369 + 4.89-r7: + - CVE-2017-16943 + 4.89.1-r0: + - CVE-2017-16944 + - pkg: + name: gtk-vnc + secfixes: + 0.7.0-r0: + - CVE-2017-5884 + - CVE-2017-5885 + - pkg: + name: libzip + secfixes: + 1.3.0: + - CVE-2017-14107 + - pkg: + name: mbedtls + secfixes: + 2.4.2-r0: + - CVE-2017-2784 + 2.6.0-r0: + - CVE-2017-14032 + - pkg: + name: neovim + secfixes: + 0.1.6-r1: + - CVE-2016-1248 + 0.2.0-r0: + - CVE-2017-5953 + - CVE-2017-6349 + - CVE-2017-6350 + - pkg: + name: nodejs-current + secfixes: + 9.2.1-r0: + - CVE-2017-15896 + - CVE-2017-15897 +# + - pkg: + name: pcmanfm + secfixes: + 1.2.5-r1: + - CVE-2017-8934 + - pkg: + name: pdns-recursor + secfixes: + 4.0.7-r0: + - CVE-2017-15090 + - CVE-2017-15092 + - CVE-2017-15093 + - CVE-2017-15094 + - pkg: + name: pdns + secfixes: + 4.0.5-r0: + - CVE-2017-15091 + - pkg: + name: php5 + secfixes: + 5.6.31-r0: + - CVE-2017-9224 + - CVE-2017-9226 + - CVE-2017-9227 + - CVE-2017-9228 + - CVE-2017-9229 + - pkg: + name: php7 + secfixes: + 7.1.11-r0: + - CVE-2016-1283 + 7.1.7-r0: + - CVE-2017-7890 + - CVE-2017-9224 + - CVE-2017-9226 + - CVE-2017-9227 + - CVE-2017-9228 + - CVE-2017-9229 + - pkg: + name: phpldapadmin + secfixes: + 1.2.3-r4: + - CVE-2017-11107 + - pkg: + name: phpmyadmin + secfixes: + 4.6.5.2-r0: + - CVE-2016-9847 + - CVE-2016-9848 + - CVE-2016-9849 + - CVE-2016-9850 + - CVE-2016-9851 + - CVE-2016-9852 + - CVE-2016-9853 + - CVE-2016-9854 + - CVE-2016-9855 + - CVE-2016-9856 + - CVE-2016-9857 + - CVE-2016-9858 + - CVE-2016-9859 + - CVE-2016-9860 + - CVE-2016-9861 + - CVE-2016-9862 + - CVE-2016-9863 + - CVE-2016-9864 + - CVE-2016-9865 + - CVE-2016-9866 + - pkg: + name: podofo + secfixes: + 0.9.5-r0: + - CVE-2017-6843 + - CVE-2017-6844 + - CVE-2017-6845 + - CVE-2017-6846 + - CVE-2017-6847 + - CVE-2017-6849 + - pkg: + name: postfixadmin + secfixes: + 3.0.2-r0: + - CVE-2017-5930 + - pkg: + name: roundcubemail + secfixes: + 1.2.7-r0: + - CVE-2017-16651 + 1.2.5-r0: + - CVE-2017-8114 + - pkg: + name: shadow + secfixes: + 4.5-r0: + - CVE-2017-12424 + 4.2.1-r11: + - CVE-2017-2616 + 4.2.1-r7: + - CVE-2016-6252 + - pkg: + name: slock + secfixes: + 1.3-r3: + - CVE-2016-6866 + - pkg: + name: tor + secfixes: + 0.3.0.8-r0: + - CVE-2017-0376 + - pkg: + name: webkit2gtk + secfixes: + 2.18.4-r0: + - CVE-2017-7156 + - CVE-2017-7157 + - CVE-2017-13856 + - CVE-2017-13866 + - CVE-2017-13870 + 2.14.5-r0: + - CVE-2017-2350 + - CVE-2017-2354 + - CVE-2017-2355 + - CVE-2017-2356 + - CVE-2017-2362 + - CVE-2017-2363 + - CVE-2017-2364 + - CVE-2017-2365 + - CVE-2017-2366 + - CVE-2017-2369 + - CVE-2017-2371 + - CVE-2017-2373 + - pkg: + name: wireshark + secfixes: + 2.4.3-r0: + - CVE-2017-17083 + - CVE-2017-17084 + - CVE-2017-17085 + 2.4.2-r0: + - CVE-2017-15191 + - CVE-2017-15192 + - CVE-2017-15193 + 2.4.1-r0: + - CVE-2017-13765 + - CVE-2017-13766 + - CVE-2017-13767 + 2.2.10-r0: + - CVE-2017-15191 + - CVE-2017-15192 + - CVE-2017-15193 + 2.2.9-r0: + - CVE-2017-13765 + - CVE-2017-13766 + - CVE-2017-13767 + 2.2.8-r0: + - CVE-2017-11406 + - CVE-2017-11407 + - CVE-2017-11408 + 2.2.7-r0: + - CVE-2017-9343 + - CVE-2017-9344 + - CVE-2017-9345 + - CVE-2017-9346 + - CVE-2017-9347 + - CVE-2017-9348 + - CVE-2017-9349 + - CVE-2017-9350 + - CVE-2017-9351 + - CVE-2017-9352 + - CVE-2017-9353 + - CVE-2017-9354 + 2.2.6-r0: + - CVE-2017-7700 + - CVE-2017-7701 + - CVE-2017-7702 + - CVE-2017-7703 + - CVE-2017-7704 + - CVE-2017-7705 + 2.2.5-r0: + - CVE-2017-6467 + - CVE-2017-6468 + - CVE-2017-6469 + - CVE-2017-6470 + - CVE-2017-6471 + - CVE-2017-6472 + - CVE-2017-6473 + - CVE-2017-6474 + 2.2.4-r1: + - CVE-2017-6014 + 2.0.5-r0: + - CVE-2016-6505 + - CVE-2016-6506 + - CVE-2016-6508 + - CVE-2016-6509 + - CVE-2016-6510 + - CVE-2016-6511 + - CVE-2016-6512 + - CVE-2016-6513 + - pkg: + name: zoneminder + secfixes: + 1.30.2-r0: + - CVE-2016-10140 + - CVE-2017-5595 + 1.30.2-r3: + - CVE-2017-5367 + - CVE-2017-5368 diff --git a/v3.7/main.yaml b/v3.7/main.yaml new file mode 100644 index 0000000..1087dbf --- /dev/null +++ b/v3.7/main.yaml @@ -0,0 +1,904 @@ +--- +distroversion: v3.7 +reponame: main +archs: + - x86_64 + - x86 + - armhf + - aarch64 + - ppc64le + - s390x +urlprefix: http://dl-cdn.alpinelinux.org/alpine +apkurl: "{{urlprefix}}/{{distroversion}}/{{reponame}}/{{arch}}/{{pkg.name}}-{{pkg.ver}}.apk" +packages: + - pkg: + name: apache2 + secfixes: + 2.4.27-r1: + - CVE-2017-9798 + 2.4.26-r0: + - CVE-2017-3167 + - CVE-2017-3169 + - CVE-2017-7659 + - CVE-2017-7668 + - CVE-2017-7679 + - pkg: + name: bash + secfixes: + 4.4.12-r1: + - CVE-2016-0634 + - pkg: + name: bind + secfixes: + 9.11.0_p5-r0: + - CVE-2017-3136 + - CVE-2017-3137 + - CVE-2017-3138 + 9.10.4_p5-r0: + - CVE-2016-9131 + - CVE-2016-9147 + - CVE-2016-9444 + - pkg: + name: binutils + secfixes: + 2.28-r1: + - CVE-2017-7614 + - pkg: + name: busybox + secfixes: + 1.27.2-r4: + - CVE-2017-16544 + - CVE-2017-15873 + - CVE-2017-15874 + - pkg: + name: bzip2 + secfixes: + 1.0.6-r5: + - CVE-2016-3189 + - pkg: + name: ctags + secfixes: + 5.8-r5: + - CVE-2014-7204 + - pkg: + name: curl + secfixes: + 7.57.0-r0: + - CVE-2017-8816 + - CVE-2017-8817 + - CVE-2017-8818 + 7.56.1-r0: + - CVE-2017-1000257 + 7.55.0-r0: + - CVE-2017-1000099 + - CVE-2017-1000100 + - CVE-2017-1000101 + 7.54.0-r0: + - CVE-2017-7468 + 7.53.1-r2: + - CVE-2017-7407 + 7.53.0: + - CVE-2017-2629 + 7.52.1: + - CVE-2016-9594 + 7.51.0: + - CVE-2016-8615 + - CVE-2016-8616 + - CVE-2016-8617 + - CVE-2016-8618 + - CVE-2016-8619 + - CVE-2016-8620 + - CVE-2016-8621 + - CVE-2016-8622 + - CVE-2016-8623 + - CVE-2016-8624 + - CVE-2016-8625 + 7.50.3: + - CVE-2016-7167 + 7.50.2: + - CVE-2016-7141 + 7.50.1: + - CVE-2016-5419 + - CVE-2016-5420 + - CVE-2016-5421 + 7.36.0: + - CVE-2014-0138 + - CVE-2014-0139 + - pkg: + name: dnsmasq + secfixes: + 2.78-r0: + - CVE-2017-13704 + - CVE-2017-14491 + - CVE-2017-14492 + - CVE-2017-14493 + - CVE-2017-14494 + - CVE-2017-14495 + - CVE-2017-14496 +# + - pkg: + name: elfutils + secfixes: + 0.168-r1: + - CVE-2017-7607 + - CVE-2017-7608 + - pkg: + name: expat + secfixes: + 2.2.0-r1: + - CVE-2017-9233 + - pkg: + name: ffmpeg + secfixes: + 3.3.4-r0: + - CVE-2017-14054 + - CVE-2017-14055 + - CVE-2017-14056 + - CVE-2017-14057 + - CVE-2017-14058 + - CVE-2017-14059 + - CVE-2017-14169 + - CVE-2017-14170 + - CVE-2017-14171 + - CVE-2017-14222 + - CVE-2017-14223 + - CVE-2017-14225 + - pkg: + name: freetype + secfixes: + 2.7.1-r1: + - CVE-2017-8105 + - CVE-2017-8287 + - pkg: + name: gdk-pixbuf + secfixes: + 2.36.6-r1: + - CVE-2017-6311 + - CVE-2017-6312 + - CVE-2017-6314 + - pkg: + name: ghostscript + secfixes: + 9.21-r2: + - CVE-2017-8291 + 9.21-r3: + - CVE-2017-7207 + - CVE-2017-5951 + - pkg: + name: git + secfixes: + 2.14.1: + - CVE-2017-1000117 + - pkg: + name: gnutls + secfixes: + 3.5.13-r0: + - CVE-2017-7507 + - pkg: + name: gst-plugins-good + secfixes: + 1.10.4-r0: + - CVE-2017-5840 + - CVE-2017-5841 + - CVE-2017-5845 + - CVE-2016-9634 + - CVE-2016-9635 + - CVE-2016-9636 + - CVE-2016-9808 + - CVE-2016-10198 + - CVE-2016-10199 + - pkg: + name: gst-plugins-ugly + secfixes: + 1.10.4-r0: + - CVE-2017-5846 + - CVE-2017-5847 + - pkg: + name: heimdal + secfixes: + 7.4.0-r0: + - CVE-2017-11103 + - pkg: + name: hostapd + secfixes: + 2.6-r2: + - CVE-2017-13077 + - CVE-2017-13078 + - CVE-2017-13079 + - CVE-2017-13080 + - CVE-2017-13081 + - CVE-2017-13082 + - CVE-2017-13086 + - CVE-2017-13087 + - CVE-2017-13088 + - pkg: + name: icu + secfixes: + 57.1-r1: + - CVE-2016-6293 + 58.1-r1: + - CVE-2016-7415 + 58.2-r2: + - CVE-2017-7867 + - CVE-2017-7868 + - pkg: + name: irssi + secfixes: + 1.0.3-r0: + - CVE-2017-9468 + - CVE-2017-9469 + 1.0.4-r0: + - CVE-2017-10965 + - CVE-2017-10966 + 1.0.5-r0: + - CVE-2017-15721 + - CVE-2017-15722 + - CVE-2017-15723 + - CVE-2017-15227 + - CVE-2017-15228 + - pkg: + name: jasper + secfixes: + 2.0.12-r1: + - CVE-2017-1000050 + - pkg: + name: lame + secfixes: + 3.100-r0: + - CVE-2017-9410 + - CVE-2017-9411 + - CVE-2017-9412 + - CVE-2015-9099 + 3.99.5-r6: + - CVE-2015-9099 + - CVE-2015-9100 + - CVE-2017-9410 + - CVE-2017-9411 + - CVE-2017-9412 + - CVE-2017-11720 + - pkg: + name: lcms2 + secfixes: + 2.8-r1: + - CVE-2016-10165 + - pkg: + name: libarchive + secfixes: + 3.3.2-r1: + - CVE-2017-14166 + - pkg: + name: libass + secfixes: + 0.13.4-r0: + - CVE-2016-7969 + - CVE-2016-7970 + - CVE-2016-7971 + - CVE-2016-7972 + - pkg: + name: libevent + secfixes: + 2.1.8-r0: + - CVE-2016-10195 + - CVE-2016-10196 + - CVE-2016-10197 + - pkg: + name: libgit2 + secfixes: + 0.25.1-r0: + - CVE-2016-10128 + - CVE-2016-10129 + - CVE-2016-10130 + 0.24.3-r0: + - CVE-2016-8568 + - CVE-2016-8569 + - pkg: + name: libgsf + secfixes: + 1.14.41-r0: + - CVE-2016-9888 + - pkg: + name: libidn + secfixes: + 1.33-r0: + - CVE-2015-8948 + - CVE-2016-6261 + - CVE-2016-6262 + - CVE-2016-6263 + - pkg: + name: libmspack + secfixes: + 0.5_alpha-r1: + - CVE-2017-6419 + - CVE-2017-11423 + - pkg: + name: libraw + secfixes: + 0.18.5-r0: + - CVE-2017-13735 + - CVE-2017-14265 + - pkg: + name: libressl + secfixes: + 2.5.3-r1: + - CVE-2017-8301 +# + - pkg: + name: libsndfile + secfixes: + 1.0.28-r2: + - CVE-2017-12562 + 1.0.28-r0: + - CVE-2017-7585 + - CVE-2017-7741 + - CVE-2017-7742 + 1.0.28-r1: + - CVE-2017-8361 + - CVE-2017-8362 + - CVE-2017-8363 + - CVE-2017-8365 + - pkg: + name: libsoup + secfixes: + 2.58.2-r0: + - CVE-2017-2885 + - pkg: + name: libtasn1 + secfixes: + 4.12-r1: + - CVE-2017-10790 + - pkg: + name: libvncserver + secfixes: + 0.9.11-r0: + - CVE-2016-9941 + - CVE-2016-9942 + - pkg: + name: libvorbis + secfixes: + 1.3.5-r3: + - CVE-2017-14160 + - pkg: + name: libxcursor + secfixes: + 1.1.15-r0: + - CVE-2017-16612 + - pkg: + name: libxdmcp + secfixes: + 1.1.2-r3: + - CVE-2017-2625 + - pkg: + name: libxfont + secfixes: + 1.5.4-r0: + - CVE-2017-16611 + - pkg: + name: libxfont2 + secfixes: + 2.0.3-r0: + - CVE-2017-16611 + - pkg: + name: libxml2 + secfixes: + 2.9.4-r1: + - CVE-2016-5131 + 2.9.4-r2: + - CVE-2016-9318 + 2.9.4-r4: + - CVE-2017-5969 + - pkg: + name: libxslt + secfixes: + 1.1.29-r1: + - CVE-2017-5029 + - pkg: + name: lxterminal + secfixes: + 0.3.0-r1: + - CVE-2016-10369 + - pkg: + name: mariadb + secfixes: + 10.1.22-r0: + - CVE-2017-3313 + - CVE-2017-3302 + 10.1.21-r0: + - CVE-2016-6664 + - CVE-2017-3238 + - CVE-2017-3243 + - CVE-2017-3244 + - CVE-2017-3257 + - CVE-2017-3258 + - CVE-2017-3265 + - CVE-2017-3291 + - CVE-2017-3312 + - CVE-2017-3317 + - CVE-2017-3318 + - pkg: + name: mosquitto + secfixes: + 1.4.13-r0: + - CVE-2017-9868 + 1.4.12-r0: + - CVE-2017-7650 + - pkg: + name: mupdf + secfixes: + 1.11-r1: + - CVE-2017-6060 + 1.10a-r2: + - CVE-2017-5991 + 1.10a-r1: + - CVE-2017-5896 + - pkg: + name: musl + secfixes: + 1.1.15-r4: + - CVE-2016-8859 + - pkg: + name: ncurses + secfixes: + 6.0_p20170701-r0: + - CVE-2017-10684 + - pkg: + name: newsbeuter + secfixes: + 2.9-r5: + - CVE-2017-14500 + 2.9-r4: + - CVE-2017-12904 + - pkg: + name: nginx + secfixes: + 1.12.1-r0: + - CVE-2017-7529 +# + - pkg: + name: nodejs + secfixes: + 6.11.1-r0: + - CVE-2017-1000381 + 6.11.5-r0: + - CVE-2017-14919 + 8.9.3-r0: + - CVE-2017-15896 + - CVE-2017-15897 +# + - pkg: + name: openjpeg + secfixes: + 2.3.0-r0: + - CVE-2017-14039 + 2.2.0-r2: + - CVE-2017-14040 + - CVE-2017-14041 + - CVE-2017-14151 + - CVE-2017-14152 + - CVE-2017-14164 + 2.2.0-r1: + - CVE-2017-12982 + 2.1.2-r1: + - CVE-2016-9580 + - CVE-2016-9581 + - pkg: + name: openldap + secfixes: + 2.4.44-r5: + - CVE-2017-9287 +# + - pkg: + name: openssh + secfixes: + 7.5_p1-r0: + - CVE-2017-15906 + 7.5_p1-r8: + - CVE-2016-10009 + - CVE-2016-10010 + - CVE-2016-10011 + - CVE-2016-10012 + - pkg: + name: openssl + secfixes: + 1.0.2h-r0: + - CVE-2016-2107 + - CVE-2016-2105 + - CVE-2016-2106 + - CVE-2016-2109 + - CVE-2016-2176 + 1.0.2h-r1: + - CVE-2016-2177 + - CVE-2016-2178 + 1.0.2h-r2: + - CVE-2016-2180 + 1.0.2h-r3: + - CVE-2016-2179 + - CVE-2016-2182 + - CVE-2016-6302 + - CVE-2016-6303 + 1.0.2h-r4: + - CVE-2016-2181 + 1.0.2i-r0: + - CVE-2016-2183 + - CVE-2016-6304 + - CVE-2016-6306 + 1.0.2m-r0: + - CVE-2017-3735 + - CVE-2017-3736 + 1.0.2n-r0: + - CVE-2017-3737 + - CVE-2017-3738 + - pkg: + name: p7zip + secfixes: + 16.02-r1: + - CVE-2016-9296 + - pkg: + name: pcre + secfixes: + 8.40-r2: + - CVE-2017-7186 + 7.8-r0: + - CVE-2017-11164 + - CVE-2017-16231 + - pkg: + name: perl + secfixes: + 5.26.1-r0: + - CVE-2017-12837 + - CVE-2017-12883 + - pkg: + name: postgresql + secfixes: + 9.6.4-r0: + - CVE-2017-7546 + - CVE-2017-7547 + - CVE-2017-7548 + 9.6.3-r0: + - CVE-2017-7484 + - CVE-2017-7485 + - CVE-2017-7486 + 10.1-r0: + - CVE-2017-15098 + - CVE-2017-15099 + - pkg: + name: py-django + secfixes: + 1.8.16-r0: + - CVE-2016-9013 + - CVE-2016-9014 + 1.10.7-r0: + - CVE-2017-7233 + - CVE-2017-7234 + 1.11.5-r0: + - CVE-2017-12794 + - pkg: + name: qemu + secfixes: + 2.8.1-r1: + - CVE-2016-7994 + - CVE-2016-7995 + - CVE-2016-8576 + - CVE-2016-8577 + - CVE-2016-8578 + - CVE-2016-8668 + - CVE-2016-8909 + - CVE-2016-8910 + - CVE-2016-9101 + - CVE-2016-9102 + - CVE-2016-9103 + - CVE-2016-9104 + - CVE-2016-9105 + - CVE-2016-9106 + - CVE-2017-2615 + - CVE-2017-2620 + - CVE-2017-5525 + - CVE-2017-5552 + - CVE-2017-5578 + - CVE-2017-5579 + - CVE-2017-5667 + - CVE-2017-5856 + - CVE-2017-5857 + - CVE-2017-5898 + - CVE-2017-5931 + - pkg: + name: quagga + secfixes: + 1.1.1-r0: + - CVE-2017-5495 + - pkg: + name: rpcbind + secfixes: + 0.2.4-r0: + - CVE-2017-8779 + - pkg: + name: ruby + secfixes: + 2.4.2-r0: + - CVE-2017-0898 + - CVE-2017-10784 + - CVE-2017-14033 + - CVE-2017-14064 + - CVE-2017-0899 + - CVE-2017-0900 + - CVE-2017-0901 + - CVE-2017-0902 + 2.4.3-r0: + - CVE-2017-17405 +# + - pkg: + name: samba + secfixes: + 4.7.3-r0: + - CVE-2017-14746 + - CVE-2017-15275 + 4.7.0-r0: + - CVE-2017-12150 + - CVE-2017-12151 + - CVE-2017-12163 + 4.6.1-r0: + - CVE-2017-2619 + - pkg: + name: spice + secfixes: + 0.12.8-r4: + - CVE-2017-7506 + 0.12.8-r3: + - CVE-2016-9577 + - CVE-2016-9578 + - pkg: + name: strongswan + secfixes: + 5.5.3-r0: + - CVE-2017-9022 + - CVE-2017-9023 + - pkg: + name: subversion + secfixes: + 1.9.7-r0: + - CVE-2017-9800 + - pkg: + name: sudo + secfixes: + 1.8.20_p2-r0: + - CVE-2017-1000368 + - pkg: + name: supervisor + secfixes: + 3.2.4-r0: + - CVE-2017-11610 + - pkg: + name: tar + secfixes: + 1.29-r1: + - CVE-2016-6321 + - pkg: + name: tcpdump + secfixes: + 4.9.0-r0: + - CVE-2016-7922 + - CVE-2016-7923 + - CVE-2016-7924 + - CVE-2016-7925 + - CVE-2016-7926 + - CVE-2016-7927 + - CVE-2016-7928 + - CVE-2016-7929 + - CVE-2016-7930 + - CVE-2016-7931 + - CVE-2016-7932 + - CVE-2016-7933 + - CVE-2016-7934 + - CVE-2016-7935 + - CVE-2016-7936 + - CVE-2016-7937 + - CVE-2016-7938 + - CVE-2016-7939 + - CVE-2016-7940 + - CVE-2016-7973 + - CVE-2016-7974 + - CVE-2016-7975 + - CVE-2016-7983 + - CVE-2016-7984 + - CVE-2016-7985 + - CVE-2016-7986 + - CVE-2016-7992 + - CVE-2016-7993 + - CVE-2016-8574 + - CVE-2016-8575 + - CVE-2017-5202 + - CVE-2017-5203 + - CVE-2017-5204 + - CVE-2017-5205 + - CVE-2017-5341 + - CVE-2017-5342 + - CVE-2017-5482 + - CVE-2017-5483 + - CVE-2017-5484 + - CVE-2017-5485 + - CVE-2017-5486 + 4.9.1-r0: + - CVE-2017-11108 + - pkg: + name: tiff + secfixes: + 4.0.9-r0: + - CVE-2017-16231 + - CVE-2017-16232 + 4.0.8-r1: + - CVE-2017-9936 + - CVE-2017-10688 + 4.0.7-r2: + - CVE-2017-7592 + - CVE-2017-7593 + - CVE-2017-7594 + - CVE-2017-7595 + - CVE-2017-7596 + - CVE-2017-7598 + - CVE-2017-7601 + - CVE-2017-7602 + 4.0.7-r1: + - CVE-2017-5225 + - pkg: + name: varnish + secfixes: + 5.2.1-r0: + - CVE-2017-8807 + 5.1.3-r0: + - CVE-2017-12425 + - pkg: + name: vim + secfixes: + 8.0.0329-r0: + - CVE-2017-5953 + 8.0.0056-r0: + - CVE-2016-1248 + - pkg: + name: vte + secfixes: + 0.28.2-r12: + - CVE-2012-2738 + - pkg: + name: wavpack + secfixes: + 5.1.0-r0: + - CVE-2016-10169 + - CVE-2016-10170 + - CVE-2016-10171 + - CVE-2016-10172 + - pkg: + name: weechat + secfixes: + 1.7.1-r0: + - CVE-2017-8073 + 1.9.1-r0: + - CVE-2017-14727 + - pkg: + name: wget + secfixes: + 1.19.1-r1: + - CVE-2017-6508 + 1.19.2-r0: + - CVE-2017-13090 + - pkg: + name: wpa_supplicant + secfixes: + 2.6-r7: + - CVE-2017-13077 + - CVE-2017-13078 + - CVE-2017-13079 + - CVE-2017-13080 + - CVE-2017-13081 + - CVE-2017-13082 + - CVE-2017-13086 + - CVE-2017-13087 + - CVE-2017-13088 + - pkg: + name: xen + secfixes: + 4.7.0-r0: + - CVE-2016-6258 XSA-182 + - CVE-2016-6259 XSA-183 + - CVE-2016-5403 XSA-184 + 4.7.0-r1: + - CVE-2016-7092 XSA-185 + - CVE-2016-7093 XSA-186 + - CVE-2016-7094 XSA-187 + 4.7.0-r5: + - CVE-2016-7777 XSA-190 + 4.7.1-r1: + - CVE-2016-9386 XSA-191 + - CVE-2016-9382 XSA-192 + - CVE-2016-9385 XSA-193 + - CVE-2016-9384 XSA-194 + - CVE-2016-9383 XSA-195 + - CVE-2016-9377 XSA-196 + - CVE-2016-9378 XSA-196 + - CVE-2016-9381 XSA-197 + - CVE-2016-9379 XSA-198 + - CVE-2016-9380 XSA-198 + 4.7.1-r3: + - CVE-2016-9932 XSA-200 + - CVE-2016-9815 XSA-201 + - CVE-2016-9816 XSA-201 + - CVE-2016-9817 XSA-201 + - CVE-2016-9818 XSA-201 + 4.7.1-r4: + - CVE-2016-10024 XSA-202 + - CVE-2016-10025 XSA-203 + - CVE-2016-10013 XSA-204 + 4.7.1-r5: + - XSA-207 + - CVE-2017-2615 XSA-208 + - CVE-2017-2620 XSA-209 + - XSA-210 + 4.7.2-r0: + - CVE-2016-9603 XSA-211 + - CVE-2017-7228 XSA-212 + 4.8.1-r2: + - CVE-2017-8903 XSA-213 + - CVE-2017-8904 XSA-214 + 4.9.0-r0: + - CVE-2017-10911 XSA-216 + - CVE-2017-10912 XSA-217 + - CVE-2017-10913 XSA-218 + - CVE-2017-10914 XSA-218 + - CVE-2017-10915 XSA-219 + - CVE-2017-10916 XSA-220 + - CVE-2017-10917 XSA-221 + - CVE-2017-10918 XSA-222 + - CVE-2017-10919 XSA-223 + - CVE-2017-10920 XSA-224 + - CVE-2017-10921 XSA-224 + - CVE-2017-10922 XSA-224 + - CVE-2017-10923 XSA-225 + 4.9.0-r1: + - CVE-2017-12135 XSA-226 + - CVE-2017-12137 XSA-227 + - CVE-2017-12136 XSA-228 + - CVE-2017-12855 XSA-230 + 4.9.0-r2: + - XSA-235 + 4.9.0-r4: + - CVE-2017-14316 XSA-231 + - CVE-2017-14318 XSA-232 + - CVE-2017-14317 XSA-233 + - CVE-2017-14319 XSA-234 + 4.9.0-r5: + - XSA-245 + 4.9.0-r6: + - CVE-2017-15590 XSA-237 + - XSA-238 + - CVE-2017-15589 XSA-239 + - CVE-2017-15595 XSA-240 + - CVE-2017-15588 XSA-241 + - CVE-2017-15593 XSA-242 + - CVE-2017-15592 XSA-243 + - CVE-2017-15594 XSA-244 + 4.9.0-r7: + - CVE-2017-15597 XSA-236 + 4.9.1-r1: + - XSA-246 + - XSA-247 + 4.9.1-r2: + - XSA-248 + - XSA-249 + - XSA-250 + - XSA-251 + - pkg: + name: xorg-server + secfixes: + 1.19.5-r0: + - CVE-2017-12176 + - CVE-2017-12177 + - CVE-2017-12178 + - CVE-2017-12179 + - CVE-2017-12180 + - CVE-2017-12181 + - CVE-2017-12182 + - CVE-2017-12183 + - CVE-2017-12184 + - CVE-2017-12185 + - CVE-2017-12186 + - CVE-2017-12187 + - CVE-2017-13721 + - CVE-2017-13723 |