aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* main/alpine-conf: fix setup-apkcacheNatanael Copa2015-03-192-4/+41
| | | | | | fixes #3976 (cherry picked from commit 8751d8eebf4ec79352ab99ea542e4ff8e7611ff1)
* main/alpine-conf: fix typo in setup-diskNatanael Copa2015-03-192-4/+33
| | | | | | fixes #3979 (cherry picked from commit fa535ab866a2c4085039cb509567fa09239b0cfa)
* main/vlc: security upgrade to 2.1.6Natanael Copa2015-03-181-5/+5
| | | | | | | | | | | fixes #3872 CVE-2014-9625 CVE-2014-9626 CVE-2014-9627 CVE-2014-9628 CVE-2014-9629 CVE-2014-9630
* main/patch: security upgrade to 2.7.5Natanael Copa2015-03-182-185/+7
| | | | | | CVE-2014-9637 CVE-2015-1395 CVE-2015-1396
* main/py-pillow: security upgrade to 2.7.0 (CVE-2014-9601)Natanael Copa2015-03-181-4/+4
| | | | fixes #4009
* main/gzip: make uncompress a symlinkNatanael Copa2015-03-181-1/+4
| | | | | | | | So we can have /usr on separate filesystem fixes #4011 (cherry picked from commit 68726cf157624bf6e040d6f8c1b1f9c0ebb21b38)
* main/cups: security upgrade to 2.0.2 (CVE-2014-9679)Natanael Copa2015-03-181-4/+4
| | | | fixes #3996
* main/xorg-server: security upgrade to 1.16.4 (CVE-2015-0255)Natanael Copa2015-03-181-4/+4
| | | | fixes #4001
* main/sipsak: fix segfault with unsupported records in SRV responsesNatanael Copa2015-03-172-4/+28
| | | | | | | | | | | fix a segault that will happen when a DNS response contains an unsupported RR section. additional AAAA records in SRV response was enough to trigger it. This fix will sipsak simply stop parsing the DNS response when it hits unsupported RR sections. (cherry picked from commit 30ab0ecbb0385605cda2d6b3c5de7ff7c6797dd8)
* main/sipsak: enable SRV lookupsNatanael Copa2015-03-172-5/+39
| | | | (cherry picked from commit 7af0b1392ab4eb22be78b22fe7f5dd3876cbdc66)
* main/sudo: security upgrade to 1.8.12 (CVE-2014-9680)Natanael Copa2015-03-173-20/+19
| | | | | ref #3986 fixes #3990
* main/dbus: security upgrade to 1.8.16 (CVE-2015-0245)Natanael Copa2015-03-171-4/+4
| | | | fixes #3985
* main/acl: fix libacl.a symlink bugNatanael Copa2015-03-161-3/+3
| | | | | | Fix circular symlink /usr/lib/libacl.a -> /usr/lib/libacl.a (cherry picked from commit a423d083072c162c940fa827ce773df83dc17a72)
* main/socat: security upgrade to 1.7.3.0 (CVE-2015-1379)Natanael Copa2015-03-131-4/+4
| | | | fixes #3882
* main/xen: security fix for xsa118 (CVE-2015-1563)Natanael Copa2015-03-132-1/+120
| | | | fixes #3894
* main/clamav: security upgrade to 0.98.6 (CVE-2014-9328)Natanael Copa2015-03-121-4/+4
| | | | fixes #3899
* main/sysklogd: remove GNUism and use POSIX Extended Regular Expressions (EREs)Nathan Angelacos2015-03-122-8/+8
| | | | | | fixes #3940 (cherry picked from commit bea27cd485c3a9064c48c949edd32385333b9b80)
* main/linux-virt-grsec: enable PPP/PPPTP modulesLeonardo Arena2015-03-123-14/+39
|
* main/bind: enable filter AAAANatanael Copa2015-03-111-1/+2
| | | | | | fixes #3955 (cherry picked from commit 7ee317045943d8700870e25f7974283c0b5a12b8)
* main/rpcbind: upgrade to 0.2.3_rc2Carlo Landmeter2015-03-113-41/+239
| | | | | | | fixes #2972 fixes #3938 (cherry picked from commit f8b1a52e683440dcb7e4b3222f33669a79805802)
* main/roundcubemail: security upgrade to 1.0.5 (CVE-2015-1433)Natanael Copa2015-03-111-4/+4
| | | | fixes #3904
* main/vsftpd: security fix for CVE-2015-1419Natanael Copa2015-03-112-1/+102
| | | | fixes #3909
* main/fcgi: security fix for CVE-2012-6687Natanael Copa2015-03-112-5/+96
| | | | | ref #3971 fixes #3975
* main/putty: security upgrade to 0.64 (CVE-2015-2157)Natanael Copa2015-03-111-14/+5
| | | | fixes #3961
* main/openldap: security fix for CVE-2015-1545,CVE-2015-1546Natanael Copa2015-03-103-1/+69
| | | | | | ref #3965 ref #3966 fixes #3970
* main/alpine-mirrors: upgrade to 3.1.2Bartłomiej Piotrowski2015-03-062-9/+18
|
* main/squid: upgrade to 3.4.12Timo Teräs2015-03-011-4/+4
|
* main/ltb-project-ssp: variable scope bugfixFrancesco Colista2015-02-272-5/+5
| | | | | (cherry picked from commit c74d667dde080bf04cef65a13303c797543bf3e7) Signed-off-by: Leonardo Arena <rnalrd@alpinelinux.org>
* main/openldap: overlay MQTT retain published messageLeonardo Arena2015-02-262-5/+5
| | | | (cherry picked from commit caaa251a49013a0d9a2552a62bd0f47fcabfabbe)
* main/samba: security upgrade to 4.1.17 (CVE-2015-0240)Timo Teräs2015-02-241-5/+5
|
* main/pingu: upgrade to 1.5Natanael Copa2015-02-032-203/+6
| | | | (cherry picked from commit 46f864c5e1dfbd4f02c3b29491d57b3c38b5de43)
* main/fping: enable suid root for fping6Natanael Copa2015-02-021-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | It should be possible to make ping work as normal user with recent linux: https://lkml.org/lkml/2011/5/13/382 However, it appears that it requires relatively intrusive changes in the ping utility. Its not just opening the socket as SOCK_DGRAM and think everything is ok (like it appears to work on OSX) Busybox tried to add support for it: http://git.busybox.net/busybox/commit/networking/ping.c?id=72745632a13ccd12232127b31e1656f2f7ebcaff But later reverted it: http://git.busybox.net/busybox/commit/networking/ping.c?id=f0058b1b1fe9f7e69b415616096fb9347f599426 The patch for the normal ping utility is also relatively intrusive: http://openwall.info/wiki/_media/segoon/iputils-ss020927-pingsock.diff I could also not find anything that indicates that this works for ipv6 in kernel. There are no /proc/sys/net/ipv6/ping_group_range So it looks like we need to set suid root for now. ref #3000 (cherry picked from commit d37ee34b7691ca0e2d59f39ec2dbc9484105c087)
* main/grep: security fix for CVE-2015-1345Natanael Copa2015-02-022-6/+143
| | | | | | | | | | ref #3864 fixes #3866 (cherry picked from commit 35e60941855d77260fac5b98ec03ef6c6f6e639a) Conflicts: main/grep/APKBUILD
* main/patch: security fix for CVE-2015-119Natanael Copa2015-02-022-3/+192
| | | | | | | ref #3854 fixes #3858 (cherry picked from commit 5ac69ea49d71a514ca0d499827d11c4b5bb05d93)
* main/libpng: security upgrade to 1.6.16 (CVE-2014-9495,CVE-2015-0973)Natanael Copa2015-02-021-7/+7
| | | | fixes #3852
* main/fping: fix fping6Natanael Copa2015-02-023-5/+59
| | | | | | we add workarounds for a couple of issues in musl libc (cherry picked from commit 2abdc2eb07801022e8314da1b96378364a1d83f9)
* main/lsyncd: additional fixes to lpostcmdTimo Teräs2015-01-306-37/+141
| | | | (cherry picked from commit b5baa711a9758d453cb33a6e23de7163e5b40c66)
* ==== release 3.1.2 ====v3.1.2Natanael Copa2015-01-301-1/+1
|
* main/strongswan: security upgrade to 5.2.2 (CVE-2014-9221)Timo Teräs2015-01-301-5/+5
| | | | (cherry picked from commit 0984fc1390552b232fa7d3b4c8b03a73707c5a05)
* main/krb5: security fixes for CVE-2014-5353, CVE-2014-5354Natanael Copa2015-01-303-1/+185
| | | | | | | ref #3799 fixes #3803 (cherry picked from commit 6c0f5b1515a834e3b68f2e199ccce1148f6c8054)
* main/antiword: security fix for CVE-2014-8123Natanael Copa2015-01-302-5/+47
| | | | | | | ref #3784 fixes #3788 (cherry picked from commit b53e06d83f6743f8a5b6a7bac9893af4033d27be)
* main/privoxy: security upgrade to 3.0.23 (CVE-2015-1030, CVE-2015-1031)Natanael Copa2015-01-301-4/+4
| | | | | | fixes #3839 (cherry picked from commit b49992f595070138cedb536b7320199788836015)
* main/jasper: security fix for CVE-2014-9029Natanael Copa2015-01-302-2/+47
| | | | | | | ref #3779 fixes #3818 (cherry picked from commit a3c611fae92fca14cdae49707d4c798def7df413)
* main/file: security upgrade to 5.22 (CVE-2014-8116,CVE-2014-8117)Natanael Copa2015-01-301-4/+4
| | | | | ref #3804 fixes #3808
* main/sox: security fix for CVE-2014-8145Timo Teräs2015-01-303-1/+65
| | | | | | | | | fixes #3826 (cherry picked from commit 6285fa299ce16c6502150c257935bfdbc3aaf5d9) Conflicts: main/sox/APKBUILD
* main/qemu: security fix for CVE-2014-8106Natanael Copa2015-01-292-2/+111
| | | | | | fixes #3778 (cherry picked from commit 637ed149e5b0f0c9b01d9dfcd233c981233ee4dd)
* main/yaml: security fix for CVE-2014-9130Natanael Copa2015-01-292-5/+38
| | | | | | | ref #3771 fixes #3773 (cherry picked from commit c26ee7ddc49f3aa15cd9e0ac6c85259d5c3f186e)
* main/asterisk: security upgrade to 13.1.1Timo Teräs2015-01-291-1/+4
| | | | | | | | | | AST-2015-001: File descriptor leak when incompatible codecs are offered (chan_pjsip) AST-2015-002: Mitigation for libcURL HTTP request injection vulnerability (cherry picked from commit e3128a9a5f09d6142974693a94c3274cd54cd1d1) Conflicts: main/asterisk/APKBUILD
* main/asterisk: upgrade to 13.1.0Timo Teräs2015-01-291-10/+4
| | | | (cherry picked from commit a2463ed03b4578110ae177274c31ac948333e649)
* main/openjdk7: security upgrade to icedtea 2.5.4Timo Teräs2015-01-281-30/+32
| | | | | | | | | | | | | | | | | | | | | | | | S8046656: Update protocol support S8047125, CVE-2015-0395: (ref) More phantom object references S8047130: Fewer escapes from escape analysis S8048035, CVE-2015-0400: Ensure proper proxy protocols S8049253: Better GC validation S8050807, CVE-2015-0383: Better performing performance data handling S8054367, CVE-2015-0412: More references for endpoints S8055304, CVE-2015-0407: More boxing for DirectoryComboBoxModel S8055309, CVE-2015-0408: RMI needs better transportation considerations S8055479: TLAB stability S8055489, CVE-2014-6585: Better substitution formats S8056264, CVE-2014-6587: Multicast support improvements S8056276, CVE-2014-6591: Fontmanager feature improvements S8057555, CVE-2014-6593: Less cryptic cipher suite management S8058982, CVE-2014-6601: Better verification of an exceptional invokespecial S8059485, CVE-2015-0410: Resolve parsing ambiguity S8061210, CVE-2014-3566: Issues in TLS Along with numerous backports and bug fixes. (cherry picked from commit 926c90d464a607b5d7566361f0b6b104371733bc)
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-07 01:50:26 +0000