aports/main/patch, branch master Main aports tree Stop using ftp://ftp.gnu.org and http://ftp.gnu.org in favour of the HTTPS variant 2019-11-27T07:29:16+00:00 Tom Parker-Shemilt palfrey@tevp.net 2019-11-14T15:52:59+00:00 2c843fd6dacfbad67368e3332b6024fae41b897c 






main/patch: security fixes
2019-08-08T06:29:51+00:00

Leonardo Arena
rnalrd@alpinelinux.org

2019-08-08T06:27:48+00:00

095fae596fc49100874f93b298316eb4f6d24f0f

CVE-2019-13638, CVE-2018-1000156

Fixes #10695

Update license, remove unsupported configure option





CVE-2019-13638, CVE-2018-1000156

Fixes #10695

Update license, remove unsupported configure option







main/patch: fix CVE-2019-13636
2019-07-23T18:40:55+00:00

Leo
thinkabit.ukim@gmail.com

2019-07-23T15:32:01+00:00

38b6dd1c340446b8eb31aefaf5396ba65ca94369

fixes #10688





fixes #10688







main/patch: security fix (CVE-2018-6952)
2019-01-25T12:38:57+00:00

Sören Tempel
soeren+git@soeren-tempel.net

2019-01-25T12:36:23+00:00

49d0c3b8bdfe17d2b541938002f02c38e5c3855a

This is a follow up for 58fc65d2b14f59efea945f9dc2dc39d9db45d72e which
fixed CVE-2018-6951 but didn't fix CVE-2018-6952 as a patch for it
wasn't available back then.

Should probably fix #8563 (can't see the issues as it is confidential).

https://savannah.gnu.org/bugs/index.php?53133





This is a follow up for 58fc65d2b14f59efea945f9dc2dc39d9db45d72e which
fixed CVE-2018-6951 but didn't fix CVE-2018-6952 as a patch for it
wasn't available back then.

Should probably fix #8563 (can't see the issues as it is confidential).

https://savannah.gnu.org/bugs/index.php?53133







main/patch: avoid using broken code in cross build
2018-09-03T17:34:59+00:00

Natanael Copa
ncopa@alpinelinux.org

2018-09-03T17:31:32+00:00

5251e5507c9726614be9b08fb3b4582d9932d9b2

The configure cross-compile logic fails to detect no-clobber properties
of gettimeofday and tzset functions and replaces them and some dependent
calls with the code from the bundled GNU portability library.





The configure cross-compile logic fails to detect no-clobber properties
of gettimeofday and tzset functions and replaces them and some dependent
calls with the code from the bundled GNU portability library.







main/patch: use coreutils for tests due to bug in busybox `cat -ve`
2018-04-27T15:30:45+00:00

Natanael Copa
ncopa@alpinelinux.org

2018-04-27T15:28:42+00:00

d91d0a1826a56b0b9c833250dfbfdc6be31b93fe

Reported upstream:
http://lists.busybox.net/pipermail/busybox/2018-April/086401.html





Reported upstream:
http://lists.busybox.net/pipermail/busybox/2018-April/086401.html







main/patch: update secinfo
2018-02-28T13:47:06+00:00

Leonardo Arena
rnalrd@alpinelinux.org

2018-02-28T13:47:06+00:00

c1e3fa7f5f3303a13a62d5485d7d3c8cc752ecf3

CVE-2016-10713 is already fixed





CVE-2016-10713 is already fixed







main/patch: security fix (CVE-2018-6951)
2018-02-28T13:43:35+00:00

Leonardo Arena
rnalrd@alpinelinux.org

2018-02-28T13:42:51+00:00

58fc65d2b14f59efea945f9dc2dc39d9db45d72e

Partially fixes #8563

Patch for CVE-2018-6952 not yet available:
https://savannah.gnu.org/bugs/index.php?53133





Partially fixes #8563

Patch for CVE-2018-6952 not yet available:
https://savannah.gnu.org/bugs/index.php?53133







main/patch: reconcile differences between adelie and alpine
2018-02-12T14:42:05+00:00

A. Wilcox
AWilcox@Wilcox-Tech.com

2018-02-10T19:17:56+00:00

1b1b28f6a7cacb6f9f12880ca880e05a6613d412












main/patch: add check
2018-02-11T14:29:59+00:00

Sören Tempel
soeren+git@soeren-tempel.net

2018-02-11T14:29:59+00:00

4fabfde466246166bf7012152949eeb2adea02d8