| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
| |
fixes #4159
|
| |
|
|
|
|
|
|
| |
Fixes #4262
(cherry picked from commit bdc65e149a4e99828d13892a714517aa8a8679f8)
|
|
|
|
| |
fixes #4237
|
|
|
|
| |
fixes #4191
|
|
|
|
| |
fixes #4196
|
|
|
|
| |
fixes #4209
|
|
|
|
| |
fixes #4093
|
|
|
|
| |
fixes #4099
|
|
|
|
|
|
|
| |
ref #4104
fixes #4105
(cherry picked from commit 8fcb0a179888b5ce69a7ba1939f77397a7453782)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Fixed with 5.4.40:
- CVE-2014-9709
- CVE-2015-1352
- CVE-2015-2301
- CVE-2015-2301
- CVE-2015-2783
- CVE-2015-3329
- CVE-2015-3330
Fixed with 5.4.39:
- CVE-2015-2305
- CVE-2015-2331
- CVE-2015-2348
- CVE-2015-2787
Fixed with 5.4.38:
- CVE-2014-9705
- CVE-2015-0235 (migitation)
- CVE-2015-0273
Fixed with 5.4.37:
- CVE-2015-0231
- CVE-2014-9427
- CVE-2015-0232
- CVE-2014-9652
Fixed with 5.4.36:
- CVE-2014-8142
Fixed with 5.4.35:
CVE-2014-3710
Fixed with 5.4.34:
- CVE-2014-3669
- CVE-2014-3670
- CVE-2014-3668
Fixed with 5.4.33:
- no CVE
fixes #3710
fixes #4111
|
|
|
|
| |
fixes #4116
|
|
|
|
|
|
|
|
| |
CVE-2015-1802
CVE-2015-1803
CVE-2015-1804
fixes #4122
|
|
|
|
|
|
|
|
|
| |
CVE-2015-0286, CVE-2015-0287, CVE-2015-0289, CVE-2015-0293,
CVE-2015-0209, CVE-2015-0288
all patches refreshed
(cherry picked from commit 277a95771cd6d25fda3bfa77ba5bf04ceb34210a)
|
|
|
|
|
|
|
|
| |
fixes #3889
CVE-2014-9637
CVE-2015-1395
CVE-2015-1396
|
|
|
|
| |
fixes #3992
|
|
|
|
| |
fixes #3998
|
|
|
|
| |
fixes #3987
|
|
|
|
| |
fixes #3982
|
|
|
|
| |
fixes #3879
|
|
|
|
| |
fixes #3896
|
|
|
|
| |
https://support.zabbix.com/browse/ZBX-8582
|
|
|
|
| |
fixes #3901
|
|
|
|
| |
fixes #3906
|
|
|
|
|
| |
ref #3971
fixes #3972
|
|
|
|
| |
fixes #3943
|
|
|
|
| |
fixes #3958
|
|
|
|
|
|
| |
ref #3965
ref #3966
fixes #3967
|
| |
|
|
|
|
|
|
|
|
|
| |
fixes #3836
(cherry picked from commit b49992f595070138cedb536b7320199788836015)
Conflicts:
main/privoxy/APKBUILD
|
|
|
|
|
|
|
| |
ref #3854
fixes #3855
(cherry picked from commit 5ac69ea49d71a514ca0d499827d11c4b5bb05d93)
|
|
|
|
|
|
|
| |
(CVE-2014-8116,CVE-2014-8117,CVE-2014-9620,CVE-2014-9621)
fixes #3805
fixes #3860
|
|
|
|
| |
fixes #3849
|
|
|
|
| |
fixes #3653
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
fixes #3687
CVE-2014-3571 DTLS segmentation fault in dtls1_get_record
CVE-2015-0206 DTLS memory leak in dtls1_buffer_record
CVE-2014-3569 no-ssl3 configuration sets method to NULL
CVE-2014-3572 ECDHE silently downgrades to ECDH [Client]
CVE-2015-0204 RSA silently downgrades to EXPORT_RSA [Client]
CVE-2015-0205 DH client certificates accepted without verification [Server]
CVE-2014-8275 Certificate fingerprints can be modified
CVE-2014-3570 Bignum squaring may produce incorrect results
(cherry picked from commit 26dd384585d2182a35bd9450091726b6472b3b24)
Conflicts:
main/openssl/APKBUILD
|
| |
|
|
|
|
| |
fixes #3584
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
fixes #2805
fixes #2808
fixes #2942
fixes #3151
fixes #3580
fixes #3584
CVE-2013-4389
CVE-2013-6414
CVE-2013-6415
CVE-2013-6417
CVE-2014-0081
CVE-2014-0082
CVE-2014-0130
CVE-2014-3482
CVE-2014-3483
CVE-2014-7818
CVE-2014-7819
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
fixes #2579
fixes #2805
fixes #2808
fixes #2942
fixes #3151
fixes #3474
fixes #3580
fixes #3584
CVE-2013-0334
CVE-2013-4389
CVE-2013-4492
CVE-2013-6414
CVE-2013-6415
CVE-2013-6417
CVE-2014-0081
CVE-2014-0082
CVE-2014-0130
CVE-2014-3482
CVE-2014-3483
CVE-2014-7818
CVE-2014-7819
|
|
|
|
|
|
|
|
|
|
|
| |
fixes #3481
fixes #3531
CVE-2014-8326
CVE-2014-8958
CVE-2014-8959
CVE-2014-8960
CVE-2014-8961
|
| |
|
| |
|
|
|
|
| |
fixes #3572
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The 4.2.5 release fixes:
CVE-2014-2599 / XSA-89 HVMOP_set_mem_access is not preemptible
CVE-2014-3124 / XSA-92 HVMOP_set_mem_type allows invalid P2M entries to be
created
CVE-2014-3967,CVE-2014-3968 / XSA-96 Vulnerabilities in HVM MSI injection
CVE-2014-4021 / XSA-100 Hypervisor heap contents leaked to guests
In addition we add patches for:
CVE-2014-7154 / XSA-104 Race condition in HVMOP_track_dirty_vram
CVE-2014-7155 / XSA-105 Missing privilege level checks in x86 HLT, LGDT,
LIDT, and LMSW emulation
CVE-2014-7156 / XSA-106 Missing privilege level checks in x86 emulation of
software interrupts
CVE-2014-7188 / XSA-108 Improper MSR range used for x2APIC emulation
fixes #3458
Conflicts:
main/xen/APKBUILD
|
|
|
|
|
|
| |
(CVE-2014-3635,CVE-2014-3636,CVE-2014-3637,CVE-2014-3638,CVE-2014-3639)
fixes #3450
|
|
|
|
| |
fixes #3463
|
|
|
|
| |
fixes #3427
|
|
|
|
|
| |
Fix the configure script to correctly detect if TLS is available. TLS is
needed for rlm_unix to work without segfaulting.
|
|
|
|
|
|
| |
(CVE-2014-3513,CVE-2014-3567,CVE-2014-3568)
fixes #3435
|
|
|
|
| |
fixes #3409
|