aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* main/haproxy: Fix default haproxy.cfg not working since upgrade to 1.6.Przemyslaw Pawelczyk2016-06-292-4/+5
| | | | | | | | | | | | You could read following messages when starting haproxy: 'frontend' cannot handle unexpected argument '*:5000'. please use the 'bind' keyword for listening addresses. * haproxy.cfg: Use bind for listening addresses. * APKBUILD: Update checksums. (cherry picked from commit 9ec1afd13ac60aad9acc109c18788db8ff00035e)
* main/{haproxy,squid}: Replace .pre-upgrade with link to .pre-install.Przemyslaw Pawelczyk2016-06-292-21/+2
| | | | | | | .pre-upgrade content was the same as .pre-install, so no change in .apk, thus no pkgrel bump. (cherry picked from commit 3cc3dde12d39c8bb39cd17c01b04c117691ffa59)
* main/apache2: Bump pkgrel.Przemyslaw Pawelczyk2016-06-291-1/+1
| | | | (cherry picked from commit a643ff53e5b74b2453095c24d547cb3c02b59dd1)
* main/apache2: Reorder install entries in APKBUILD.Przemyslaw Pawelczyk2016-06-291-1/+1
| | | | | | Just for consistency with what's in other packages's APKBUILDs. (cherry picked from commit 7fd6410222bc2a5589f1ac7ad46a6ee697e109ef)
* main/apache2: Unify .pre-upgrade with .pre-install.Przemyslaw Pawelczyk2016-06-291-6/+1
| | | | | | | | | | | | | | apache2.pre-upgrade now links to apache2.pre-install. It's not something we want to do for all packages in master (edge). apache2 already had .pre-upgrade script (ensuring www-data group existence and making apache user a member of it), which is what existing .pre-install script also does, so this kind of unification is fine here. In most other cases linking .pre-upgrade to .pre-install should happen only in 3.4-stable branch. (cherry picked from commit acfb821e3de3f26d07643213662fdedee918e457)
* main/python: security upgrade to 2.7.12Natanael Copa2016-06-291-5/+5
| | | | | | | | CVE-2016-0772: smtplib StartTLS stripping attack. CVE-2016-5636: Heap overflow in zipimporter module . CVE-2016-5699: HTTP header injection in urrlib2/urllib/httplib/http.client. fixes #5800
* ==== release 3.4.1 ====v3.4.1Natanael Copa2016-06-281-1/+1
|
* main/linux-rpi: upgrade to 4.4.14Natanael Copa2016-06-281-4/+4
| | | | (cherry picked from commit a98a9d2c96162f9e5bb73a71cb3fc6de5b46aaa7)
* main/py-pygments: security fix for CVE-2015-8557Natanael Copa2016-06-282-5/+43
| | | | fixes #5816
* main/py-django: upgrade to 1.8.12Kaarle Ritvanen2016-06-281-4/+4
|
* main/haproxy: security upgrade to 1.6.6 (CVE-2016-5360)Natanael Copa2016-06-271-4/+4
| | | | fixes #5812
* main/busybox-initscripts: fix tun/tap, change their group to netdevJakub Jirutka2016-06-272-6/+6
| | | | | | | | | | | tun/tap devices are created inside /dev/net by default, so tun[0-9]* and tap[0-9]* doesn't match them. When you run qemu as an unprivileged user, that user must have write permission on the tun device. The group netdev seems to be appropriate for this and it's already included in the baselayout's groups. (cherry picked from commit bd4d9f0257b0c3a6aefe5b6e8d6c3eb986924594)
* main/xtables-addons-grsec: rebuild against kernel 4.4.14-r0Natanael Copa2016-06-271-1/+1
|
* main/open-vm-tools-grsec: rebuild against kernel 4.4.14-r0Natanael Copa2016-06-271-1/+1
|
* main/ipfw-grsec: rebuild against kernel 4.4.14-r0Natanael Copa2016-06-271-1/+1
|
* main/drbd9-grsec: rebuild against kernel 4.4.14-r0Natanael Copa2016-06-271-1/+1
|
* main/devicemaster-linux-grsec: rebuild against kernel 4.4.14-r0Natanael Copa2016-06-271-1/+1
|
* main/dahdi-linux-grsec: rebuild against kernel 4.4.14-r0Natanael Copa2016-06-271-1/+1
|
* main/linux-grsec: upgrade to 4.4.14Natanael Copa2016-06-271-7/+7
|
* main/libnet: fixed correct detection of link-layer methodFrancesco Colista2016-06-271-2/+3
| | | | | | fixes #5805 (cherry picked from commit cd81e7c06c1c1196c2b87bdf52a64b2eb39e1bed)
* community/go: fix paxmark for armNatanael Copa2016-06-271-2/+2
| | | | | | we also need to disable RANDEXEC (cherry picked from commit d9a924f2e457e76b4a6a3eba2a03e8dc8203340a)
* community/go: paxmark go on armNatanael Copa2016-06-271-2/+9
| | | | | | | this works around problem when building docker https://github.com/golang/go/issues/16081 (cherry picked from commit e7dca0ffe31a8a865554e8818e66b6ab8617434a)
* main/qemu: fix chown/chmod for qemu-bridge-helper and gid of qemu groupJakub Jirutka2016-06-272-4/+4
| | | | gid 35 is already reserved for group "games"
* main/linux-vanilla: upgrade to 4.4.14Natanael Copa2016-06-271-4/+4
| | | | (cherry picked from commit b064ccd99391513e413f6807c6566a8c4af17562)
* main/php5: upgrade to 5.6.23Natanael Copa2016-06-241-5/+5
|
* main/linux-rpi: upgrade to 4.4.13, new rpi patches, fix dtb installTimo Teräs2016-06-241-18/+15
| | | | | | fixes #5729 (cherry picked from commit f8a26e23fbb1e2aba3b77c6a449812e002b20f3f)
* main/linux-rpi: Adds the dwc2 kernel module for USB Gadget supportScrumpyJack2016-06-242-5/+15
| | | | | | Partly implements #5629, USB2 and Gadget (guest) mode only. (cherry picked from commit 21c7909dd30ea71b0f605a7a08e62f00652f2269)
* main/linux-rpi: update configTimo Teräs2016-06-243-14/+18
| | | | (cherry picked from commit c30e6525162db8c3728eab6ec328a5426e840e9d)
* main/linux-rpi: upgrade to 4.4.12Timo Teräs2016-06-242-1547/+13
| | | | (cherry picked from commit bd87780d5cca8b28eb53f39a3c12abc29fc5148a)
* main/linux-vanilla: upgrade to 4.4.13Natanael Copa2016-06-241-5/+5
|
* main/xtables-addons-grsec: rebuild against kernel 4.4.13-r0Natanael Copa2016-06-241-1/+1
|
* main/open-vm-tools-grsec: rebuild against kernel 4.4.13-r0Natanael Copa2016-06-241-1/+1
|
* main/ipfw-grsec: rebuild against kernel 4.4.13-r0Natanael Copa2016-06-241-1/+1
|
* main/drbd9-grsec: rebuild against kernel 4.4.13-r0Natanael Copa2016-06-241-1/+1
|
* main/devicemaster-linux-grsec: rebuild against kernel 4.4.13-r0Natanael Copa2016-06-241-1/+1
|
* main/linux-vanilla: disable sysctl syscallNatanael Copa2016-06-244-13/+13
| | | | | | its obsolete (cherry picked from commit c3ea8c18839b3a25e5ee6e8ec9ca3cb2c7475753)
* main/dahdi-linux-grsec: rebuild against kernel 4.4.13-r0Natanael Copa2016-06-241-1/+1
|
* main/linux-grsec: upgrade to 4.4.13Natanael Copa2016-06-241-9/+9
|
* main/linux-grsec: remove support for sysctl syscallNatanael Copa2016-06-246-21/+21
| | | | | | The syscall is obsolete and unmaintained upstream. (cherry picked from commit 3dd682540091a579188076db96c77c4758a4f352)
* main/bkeymap: add colemak keyboardNatanael Copa2016-06-241-5/+10
| | | | | | fixes #3951 (cherry picked from commit 49ffc7a9a06911b8b05a9b011195e42072bd279d)
* main/jansson: security fix for CVE-2016-4425Natanael Copa2016-06-242-6/+148
| | | | | | fixes #5791 (cherry picked from commit 36ab20a1ac9047916d193fc1aae1cf8be6b0ee23)
* community/firefox-esr: upgrade to 45.2.0Natanael Copa2016-06-241-4/+4
| | | | fixes #5738
* main/mkinitfs: fix ttyMFD/ttyUSB serial consoles and use 115200 speedNatanael Copa2016-06-242-4/+36
| | | | | | fixes #5759 (cherry picked from commit 1b0a3e1c91915514f56293cb07768be638846185)
* main/xen: security upgrade to 4.6.3. Fixes #5775Leonardo Arena2016-06-2410-1012/+5
| | | | | | | | | | | | | | | | | CVE-2016-4962, XSA-175: Unsanitised guest input in libxl device handling code http://xenbits.xen.org/xsa/advisory-175.html CVE-2016-4480, XSA-176: x86 software guest page walk PS bit handling flaw http://xenbits.xen.org/xsa/advisory-176.html CVE-2016-4963, XSA-178: Unsanitised driver domain input in libxl device handling http://xenbits.xen.org/xsa/advisory-178.html CVE-2016-3710 CVE-2016-3712, XSA-179: QEMU: Banked access to VGA memory (VBE) uses inconsistent bounds checks http://xenbits.xen.org/xsa/advisory-179.html CVE-2014-3672, XSA-180: Unrestricted qemu logging http://xenbits.xen.org/xsa/advisory-180.html
* community/drupal7: security upgrade to 7.44. Fixes #5746Leonardo Arena2016-06-231-5/+5
| | | | (cherry picked from commit 9d0fa15cc4f29630f9813d9a438941a4f019774c)
* main/vlc: security upgrade to 2.2.4 (CVE-2016-5108). Fixes #5715Leonardo Arena2016-06-231-4/+4
|
* main/qemu-openrc: upgrade to 0.4.1Jakub Jirutka2016-06-231-4/+4
| | | | | | fixes #5772 (cherry picked from commit 34a184ba931dbb3ae96e346f438955810f0eb765)
* main/busybox: fix df size reportsNatanael Copa2016-06-232-1/+76
| | | | | | upstream bug: https://bugs.busybox.net/show_bug.cgi?id=9046 (cherry picked from commit ec5a425f1186566350587d75cafec32802f64f7d)
* main/expat: rebuild for CVE-2016-0718Natanael Copa2016-06-221-1/+1
| | | | we applied the patch in commit 898dee74 but pkgrel was not bumped.
* main/openssl: security fix for CVE-2016-2177, CVE-2016-2178Natanael Copa2016-06-223-4/+395
| | | | (cherry picked from commit 510da6cf43e86bf53a64a018de95bd1e1621aee1)
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-11 01:53:24 +0000