Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | main/curl: security upgrade - fixes #64373.1-stable | Sergey Lukin | 2016-12-26 | 11 | -4/+1042 |
| | | | | | CVE-2016-8615, CVE-2016-8616, CVE-2016-8617, CVE-2016-8618, CVE-2016-8619, CVE-2016-8620, CVE-2016-8621 CVE-2016-8622, CVE-2016-8623, CVE-2016-8624 | ||||
* | main/squid: security upgrade - fixes #5216 | Sergey Lukin | 2016-12-26 | 4 | -5/+359 |
| | | | | CVE-2016-2571, CVE-2016-2569, CVE-2016-2570 | ||||
* | main/zeromq: security upgrade - fixes #4295 | Sergey Lukin | 2016-12-15 | 2 | -9/+431 |
| | | | | CVE-2014-9721 | ||||
* | main/collectd: security upgrade to 5.4.3 - fixes #5992 | Sergey Lukin | 2016-12-15 | 1 | -5/+5 |
| | | | | CVE-2016-6254 | ||||
* | main/quagga: security upgrade - fixes #6385 | Sergey Lukin | 2016-12-15 | 2 | -5/+55 |
| | | | | CVE-2016-1245 | ||||
* | main/bash: security upgrade - fixes #6413 | Sergey Lukin | 2016-12-15 | 2 | -4/+27 |
| | | | | CVE-2016-7543 | ||||
* | main/libx11: upgrade checksums | Leonardo Arena | 2016-10-21 | 1 | -7/+4 |
| | |||||
* | main/libx11: security fixes (CVE-2016-7942, CVE-2016-7943) | Leonardo Arena | 2016-10-21 | 3 | -1/+190 |
| | | | | Fixes #6317 | ||||
* | main/libxfixes: securiti fix (CVE-2016-7944). Fixes #6311 | Leonardo Arena | 2016-10-20 | 2 | -5/+65 |
| | |||||
* | main/libxi: security fixes (CVE-2016-7945, CVE-2016-7946) | Leonardo Arena | 2016-10-20 | 2 | -10/+415 |
| | | | | | | Fixes #6305 (cherry picked from commit ffaa32a96062a37c4b3aff0dc2b6e37661dab85a) | ||||
* | main/libxrender: security fix (CVE-2016-7949, CVE-2016-7950) | Leonardo Arena | 2016-10-19 | 3 | -5/+143 |
| | | | | | | Fixes #6293 (cherry picked from commit 28cfd0e5313c4075e486c29630eb0a7684c551c5) | ||||
* | main/musl: fix missing int overflow checks in regex | Natanael Copa | 2016-10-19 | 2 | -1/+78 |
| | | | | | Conflicts: main/musl/APKBUILD | ||||
* | main/libxtst: security fix (CVE-2016-7951, CVE-2016-7952) | Leonardo Arena | 2016-10-19 | 2 | -4/+153 |
| | | | | | | Fixes #6287 (cherry picked from commit 844d03dc7da8ceadec964dc59dc4ba8c7d691ff4) | ||||
* | main/libxv: security fix (CVE-2016-5407). Fixes #6281 | Leonardo Arena | 2016-10-19 | 2 | -4/+163 |
| | | | | (cherry picked from commit 00c0d0b37ed78ec5eb99beb9d464eea9a59595fd) | ||||
* | main/libxvmc: security fix (CVE-2016-7953). Fixes #6275 | Leonardo Arena | 2016-10-19 | 2 | -5/+53 |
| | | | | (cherry picked from commit 64829de6223eea876af4dfff594135fb79b114ae) | ||||
* | main/gnutls: security fix (CVE-2016-7444). Fixes #6233 | Leonardo Arena | 2016-10-19 | 2 | -5/+40 |
| | |||||
* | main/bind: security upgrade to 9.10.4_p3 (CVE-2016-2776) | Leonardo Arena | 2016-10-19 | 1 | -4/+8 |
| | | | | Fixes #6227 | ||||
* | main/irssi: security upgrade to 0.8.20 (CVE-2016-7044, CVE-2016-7045) | Leonardo Arena | 2016-10-19 | 1 | -5/+10 |
| | | | | | | Fixes #6214 (cherry picked from commit b37c51d94a10eb6d1ef13bb1621230713c178057) | ||||
* | main/libarchive: security fix for CVE-2016-5418, CVE-2016-7166 | Natanael Copa | 2016-10-18 | 3 | -4/+660 |
| | | | | fixes #6247 | ||||
* | main/php: security upgrade to 5.6.27. Fixes #6193 | Leonardo Arena | 2016-10-18 | 1 | -4/+14 |
| | | | | | | | | | | | CVE-2016-7411: A memory corruption error may occur during deserialized object destruction CVE-2016-7412: A heap overflow may occur in the processing of BIT fields in mysqlnd CVE-2016-7413: A use-after-free memory error may occur in wddx_deserialize() CVE-2016-7414: An out-of-bounds memory error may occur in phar_parse_zipfile() CVE-2016-7416: A memory corruption error may occur in processing locale data CVE-2016-7417: A memory corruption error may occur when unserializing SplArray CVE-2016-7418: An out-of-bounds memory read error may occur in php_wddx_push_element() (cherry picked from commit c498273a9b9628de4f8a7115271dddfd87ea7807) | ||||
* | main/c-ares: security upgrade to 1.12.0 (CVE-2016-5180) | Natanael Copa | 2016-10-18 | 1 | -6/+9 |
| | | | | fixes #6260 | ||||
* | main/curl: security fix for CVE-2016-7167 | Natanael Copa | 2016-10-18 | 2 | -5/+64 |
| | | | | fixes #6186 | ||||
* | main/krb5: security upgrade to 1.13.6 (CVE-2016-3120). Fixes #6161 | Leonardo Arena | 2016-10-14 | 11 | -2352/+10 |
| | | | | (cherry picked from commit 291bdb084aa8137594ea6e32a91d1006ae0152a0) | ||||
* | main/xen: security fixes. Fixes #6155 | Leonardo Arena | 2016-10-14 | 5 | -5/+270 |
| | | | | | | CVE-2016-7092, XSA-185: x86: Disallow L3 recursive pagetable for 32-bit PV guests CVE-2016-7094, XSA-187: x86 HVM: Overflow of sh_ctxt->seg_reg[] CVE-2016-7154, XSA-188: use after free in FIFO event channel code | ||||
* | main/flex: security fix (CVE-2016-6354). Fixes #6091 | Leonardo Arena | 2016-10-14 | 2 | -5/+61 |
| | | | | (cherry picked from commit fdfea2e5175624e5e5de51a3a34b1de9666fd3e7) | ||||
* | main/curl: security fix (CVE-2016-7141). Fixes #6137 | Leonardo Arena | 2016-10-14 | 2 | -5/+53 |
| | | | | (cherry picked from commit 5d819a073fb59aa30d6f4614784fef677bb39a49) | ||||
* | main/libbsd: security fix (CVE-2016-2090). Fixes #6096 | Leonardo Arena | 2016-09-23 | 2 | -4/+52 |
| | | | | (cherry picked from commit 5a6e2e3bcdc5dabbe395f3177a90544dd2ee04a3) | ||||
* | main/openssl: upgrade to 1.0.1u | Natanael Copa | 2016-09-22 | 1 | -36/+12 |
| | | | | fixes #6210 | ||||
* | main/openssl: security fixes | Natanael Copa | 2016-09-19 | 6 | -4/+761 |
| | | | | | | | | | | | fixes #6119 fixes #6180 - CVE-2016-2179 - CVE-2016-2180 - CVE-2016-2181 - CVE-2016-6302 - CVE-2016-6303 | ||||
* | main/gd: security fixes. Fixes #6078 | Leonardo Arena | 2016-09-14 | 10 | -5/+495 |
| | | | | | | | | | | | CVE-2015-8874 CVE-2016-5116 CVE-2016-5766 CVE-2016-6128 CVE-2016-6161 CVE-2016-6214 (cherry picked from commit b977ac9875306ca4c7da72609ffc99410c1cb123) | ||||
* | main/libgcrypt: trac sec fix | Leonardo Arena | 2016-09-14 | 1 | -0/+3 |
| | |||||
* | main/libgcrypt: security upgrade to 1.6.6 (CVE-2016-6313). Fixes #6067 | Leonardo Arena | 2016-09-14 | 1 | -4/+4 |
| | | | | (cherry picked from commit 0fd89f564d04e956a00fcd0ccff6d3047030184e) | ||||
* | main/wireshark: trac more sec fixes | Leonardo Arena | 2016-09-13 | 1 | -0/+2 |
| | | | | (cherry picked from commit fa1dda0548ea000a63dace45b2a940b9ed67e3b7) | ||||
* | main/wireshark: security upgrade to 1.12.13. Fixes #6054 | Leonardo Arena | 2016-09-12 | 1 | -4/+14 |
| | | | | | | CVE-2016-6505, CVE-2016-6506, CVE-2016-6508, CVE-2016-6509, CVE-2016-6510, CVE-2016-6511 (cherry picked from commit f69acd7283a989adcfb4cccf1ce1648af851f990) | ||||
* | main/php5: Upgrade to 5.6.25 | Andy Postnikov | 2016-08-23 | 1 | -4/+4 |
| | |||||
* | main/postgresql: security upgrade to 9.3.14 (CVE-2016-5423,CVE-2016-5424) | Natanael Copa | 2016-08-17 | 1 | -4/+4 |
| | | | | fixes 6048 | ||||
* | main/openssh: security fix for CVE-2016-6515 | Natanael Copa | 2016-08-17 | 2 | -4/+56 |
| | | | | fixes #6043 | ||||
* | main/fontconfig: security fix (CVE-2016-5384). Fixes #6027 | Leonardo Arena | 2016-08-15 | 2 | -5/+175 |
| | | | | | (cherry picked from commit 99e120348e7b8d8f1146915eb4df9a17691514fe) (cherry picked from commit bd9fbe8f86be75380348650dd9d7094e45b9af4e) | ||||
* | main/xen: security upgrade to 4.4.4. Fixes #6020 | Leonardo Arena | 2016-08-12 | 24 | -1844/+147 |
| | | | | (CVE-2016-5242, CVE-2016-5403) | ||||
* | main/curl: security fixes (CVE-2016-5419, CVE-2016-5420, CVE-2016-5421) | Leonardo Arena | 2016-08-12 | 4 | -4/+174 |
| | | | | | | Fixes #6007 (cherry picked from commit 773b3cce8cf0ef9f65aa00ac6985aaba3f582b2c) | ||||
* | main/libarchive: security fixes. Fixes #5974 | Leonardo Arena | 2016-08-08 | 5 | -4/+203 |
| | | | | | | | | | CVE-2016-4302 CVE-2016-4809 CVE-2016-5844 CVE-2016-6250 (cherry picked from commit 9d0f5e1e02079c44a9c58169c8b78c743edaf7b8) | ||||
* | main/libidn: security upgrade to 1.33. Fixes #5969 | Leonardo Arena | 2016-08-05 | 1 | -1/+13 |
| | | | | | | (CVE-2016-6263, CVE-2015-8948, CVE-2016-6262, CVE-2016-6261) (cherry picked from commit 87698baa9ec19d0554e5233954b6f266efe8b5cd) | ||||
* | main/cacti: security fix (CVE-2016-3172). Fixes #5943 | Leonardo Arena | 2016-08-05 | 2 | -4/+24 |
| | | | | (cherry picked from commit a32d5ff12f834f60c89513108384ddd3526d086b) | ||||
* | main/openssh: security fix (CVE-2016-6210). Fixes #5929 | Leonardo Arena | 2016-08-05 | 3 | -5/+236 |
| | | | | | (cherry picked from commit 1a6c29da7c4a7e3d05009f4ea2b940878b57ac81) (cherry picked from commit cf8a8f7b76eebaebfdb148506df212cd8e61a37b) | ||||
* | main/libvirt: security fix (CVE-2016-5008). Fixes #5878 | Leonardo Arena | 2016-08-02 | 2 | -4/+80 |
| | | | | (cherry picked from commit fe21e87ffd9382eed66543f8c2d0f740878849d7) | ||||
* | main/squid: security fixes (CVE-2016-4554, CVE-2016-4555, CVE-2016-4556). ↵ | Leonardo Arena | 2016-07-29 | 3 | -1/+229 |
| | | | | Fixes #5891 | ||||
* | main/php5: Upgrade to 5.6.24 | Andy Postnikov | 2016-07-27 | 1 | -4/+4 |
| | | | | fixes #5958 | ||||
* | main/bind: security upgrade to 9.10.4_p2 (CVE-2016-2775) | Natanael Copa | 2016-07-25 | 1 | -4/+4 |
| | | | | fixes #5955 | ||||
* | main/apache2: security fix for CVE-2016-5387 | Natanael Copa | 2016-07-25 | 2 | -4/+25 |
| | | | | fixes #5939 | ||||
* | main/gimp: security upgrade to 2.8.18 (CVE-2016-4994) | Natanael Copa | 2016-07-20 | 1 | -5/+5 |
| | | | | fixes #5862 |