aports - Main aports tree

	Commit message (Collapse)	Author	Age	Files	Lines
...
*	community/php7: add secfixes to abuild	Jakub Jirutka	2017-07-08	1	-0/+8
\|
*	community/php7: security upgrade to 7.0.21	Andy Postnikov	2017-07-08	1	-4/+4
\| \| \| \|	Security release http://php.net/archive/2017.php#id2017-07-06-1
*	travis: fetch static apk-tools from GitHub instead of aports	Jakub Jirutka	2017-07-07	1	-7/+8
\|
*	community/captagent: backport from edge	Kaarle Ritvanen	2017-07-06	4	-0/+91
\|
*	main/apache2: security upgrade to 2.4.26	Kaarle Ritvanen	2017-07-06	16	-105/+311
\| \| \| \|	fixes #7465
*	main/libgcrypt: security upgrade to 1.7.8 (CVE-2017-7526,CVE-2017-9526)	Natanael Copa	2017-07-05	1	-4/+4
\| \| \| \| \|	fixes #7477 fixes #7433
*	main/libsndfile: fix CVE-2017-8361, CVE-2017-8362, CVE-2017-8363, CVE-2017-8365	Natanael Copa	2017-07-05	3	-11/+130
\| \| \| \|	fixes #7442
*	main/apk-tools: security upgrade to 2.6.9	Timo Teräs	2017-06-23	1	-9/+3
\| \| \| \|	CVE-2017-9669, CVE-2017-9671
*	main/openvpn: security upgrade to 2.3.17	Timo Teräs	2017-06-23	1	-4/+4
\| \| \| \| \| \| \| \|	CVE-2017-7508 Remotely-triggerable ASSERT() on malformed IPv6 packet CVE-2017-7520 Pre-authentication remote crash/information disclosure CVE-2017-7521 Remote-triggerable memory leaks / potential double-free CVE-2017-7522 Post-authentication remote DoS with --x509-track + other fixes
*	main/zfs-vanilla: chase 4.4.59-r1 upgrade	William Pitcock	2017-06-22	1	-1/+1
\|
*	main/spl-vanilla: chase 4.4.59-r1 upgrade	William Pitcock	2017-06-22	1	-1/+1
\|
*	main/linux-vanilla: mitigate CVE-2017-1000364	William Pitcock	2017-06-22	4	-15/+584
\|
*	main/linux-rpi: mitigate CVE-2017-1000364	William Pitcock	2017-06-22	4	-23/+587
\|
*	main/musl: apply proactive mitigation against bugs like glibc CVE-2017-1000366	William Pitcock	2017-06-22	2	-1/+34
\|
*	main/expat: security fixes (CVE-2017-9233)	Francesco Colista	2017-06-22	2	-5/+37
\|
*	main/libxml2: fix for CVE-2017-5969	Natanael Copa	2017-06-16	2	-2/+69
\| \| \| \|	fixes #6853
*	community/libplist: security upgrade to 2.0.0	Natanael Copa	2017-06-16	1	-4/+2
\| \| \| \| \| \| \| \| \| \| \| \|	CVE-2017-5209 CVE-2017-5545 CVE-2017-5834 CVE-2017-5835 CVE-2017-5836 This seems to be an update that is ABI compatible, and only kodi uses is. fixes #6900
*	main/ghostscript: fix secfix comment	Natanael Copa	2017-06-16	1	-1/+1
\|
*	community/pcmanfm: fix secfixes comment	Natanael Copa	2017-06-16	1	-1/+1
\|
*	main/qemu: add the missing patches	Leonardo Arena	2017-06-16	11	-1/+436
\|
*	main/xen: remove extraneous file	Leonardo Arena	2017-06-16	1	-456/+0
\|
*	main/qemu: security upgrade to 2.8.1.1. Fixes #6922	Leonardo Arena	2017-06-16	1	-9/+71
\| \| \| \| \| \| \| \| \| \| \|	CVE-2016-9101, CVE-2016-9102, CVE-2016-9103, CVE-2016-9104, CVE-2016-9105, CVE-2016-9106, CVE-2016-10155, CVE-2017-5525, CVE-2017-5552, CVE-2017-5578, CVE-2017-5579, CVE-2017-5667, CVE-2017-5856, CVE-2017-5857, CVE-2017-5898, CVE-2017-5931, CVE-2017-2615, CVE-2017-2620, CVE-2017-6505 This CVEs are already fixed in previous releases: CVE-2016-7909, CVE-2016-7994, CVE-2016-7995, CVE-2016-8576, CVE-2016-8577, CVE-2016-8578, CVE-2016-8668, CVE-2016-8909, CVE-2016-8910
*	main/gdk-pixbuf: security fixes (CVE-2017-6311, CVE-2017-6312, CVE-2017-6314)	Leonardo Arena	2017-06-16	4	-4/+86
\| \| \| \| \| \|	Partially fixes #6955 CVE-2017-6313: fix N/A, https://bugzilla.gnome.org/show_bug.cgi?id=779016
*	community/firefox-esr: security upgrade to 45.9.0. Fixes #7006	Leonardo Arena	2017-06-16	1	-4/+4
\| \| \| \| \| \| \| \| \| \|	CVE-2017-5398, CVE-2017-5400, CVE-2017-5401, CVE-2017-5402, CVE-2017-5404, CVE-2017-5405, CVE-2017-5407, CVE-2017-5408, CVE-2017-5409, CVE-2017-5410, CVE-2017-5429, CVE-2017-5432, CVE-2017-5433, CVE-2017-5434, CVE-2017-5435, CVE-2017-5436, CVE-2017-5437, CVE-2017-5438, CVE-2017-5439, CVE-2017-5440, CVE-2017-5441, CVE-2017-5442, CVE-2017-5443, CVE-2017-5444, CVE-2017-5445, CVE-2017-5446, CVE-2017-5447, CVE-2017-5448, CVE-2017-5459, CVE-2017-5460, CVE-2017-5461, CVE-2017-5462, CVE-2017-5464, CVE-2017-5465, CVE-2017-5469
*	community/libreoffice: security update to 5.2.7.2 (CVE-2017-7870, ↵	Leonardo Arena	2017-06-16	1	-11/+16
\| \| \| \| \| \|	CVE-2016-10327) Fixes #7293
*	main/xen: security fixes #7289	Leonardo Arena	2017-06-15	4	-1/+364
\| \| \| \|	CVE-2017-8903, CVE-2017-8904, CVE-2017-8905
*	main/strongswan: add secinfo	Leonardo Arena	2017-06-15	1	-0/+6
\|
*	main/irssi: add more secinfo	Leonardo Arena	2017-06-15	1	-0/+6
\|
*	main/irssi: security fixes (CVE-2017-9468)	Leonardo Arena	2017-06-15	2	-6/+79
\| \| \| \|	Fixes #7396. Not affected by CVE-2017-9469.
*	main/mosquitto: security upgrade to 1.4.12 (CVE-2017-7650)	Leonardo Arena	2017-06-15	1	-5/+9
\| \| \| \|	Fixes #7368
*	main/openldap: sec fix for CVE-2017-9287	Natanael Copa	2017-06-15	2	-18/+36
\| \| \| \|	fixes #7363
*	main/dropbear: security upgrade to 2017.75 (CVE-2017-9078, CVE-2017-9079)	Leonardo Arena	2017-06-13	1	-7/+12
\| \| \| \|	Fixes #7299
*	main/gnutls: security fixes #7418 (CVE-2017-7507)	Leonardo Arena	2017-06-13	4	-5/+239
\|
*	main/openvpn: security upgrade to 2.3.15 (CVE-2017-7478, CVE-2017-7479). ↵	Leonardo Arena	2017-06-13	1	-4/+10
\| \| \| \|	Fixes #7413
*	community/wireshark: security upgrade to 2.2.7	Leonardo Arena	2017-06-13	1	-4/+17
\| \| \| \| \| \| \| \|	CVE-2017-9343, CVE-2017-9344, CVE-2017-9345, CVE-2017-9346, CVE-2017-9347, CVE-2017-9348, CVE-2017-9349, CVE-2017-9350, CVE-2017-9351, CVE-2017-9352, CVE-2017-9353, CVE-2017-9354 Fixes #7378
*	main/postgresql: security upgrade to 9.6.3 (CVE-2017-7484, CVE-2017-7485, ↵	Leonardo Arena	2017-06-13	1	-4/+10
\| \| \| \| \| \|	CVE-2017-7486) Fixes #7383
*	main/acf-provisioning: upgrade to 0.10.1	Ted Trask	2017-06-07	1	-2/+2
\| \| \| \|	(cherry picked from commit 5c1ff074fcbe7050105c2e3de7362f13220dd33b)
*	main/zlib: add secfix comment	Natanael Copa	2017-06-01	1	-0/+8
\|
*	main/zlib: security upgrade to 1.2.11	Natanael Copa	2017-06-01	1	-5/+5
\| \| \| \| \| \| \| \| \|	CVE-2016-9840 CVE-2016-9841 CVE-2016-9842 CVE-2016-9843 fixes #7357
*	main/strongswan: security upgrade to 5.5.3 (CVE-2017-9022,CVE-2017-9023)	Natanael Copa	2017-05-31	4	-73/+54
\| \| \| \|	fixes #7348
*	main/nextcloud: upgrade to 11.0.3	Leonardo Arena	2017-05-31	1	-4/+4
\| \| \| \|	fixes #7339
*	main/ghostscript: security upgrade (CVE-2017-5951, CVE-2017-7207, ↵	Francesco Colista	2017-05-30	4	-12/+149
\| \| \| \|	CVE-2017-8291).Fixes #7310
*	main/libtasn1: security fix for CVE-2017-6891. Fixes #7329	Francesco Colista	2017-05-25	2	-6/+53
\|
*	main/samba: upgrade to 4.5.10. Fixes #7321	Francesco Colista	2017-05-25	1	-19/+3
\|
*	main/nextcloud: upgrade to 10.0.5	Leonardo Arena	2017-05-24	1	-4/+4
\|
*	community/pcmanfm: fixed #7308	Francesco Colista	2017-05-23	2	-5/+46
\| \| \| \|	CVE-2017-8934: insecurely uses /tmp for a socket file
*	main/libsndfile: security upgrade to 1.0.28 - fixes #7150	Natanael Copa	2017-05-19	1	-4/+9
\| \| \| \| \| \|	CVE-2017-7585: Stack-based buffer overflow in flac_buffer_copy() CVE-2017-7741: invalid memory WRITE CVE-2017-7742: invalid memory READ
*	main/tiff: fix secfix comment. can not have tabs	Natanael Copa	2017-05-19	1	-8/+8
\|
*	community/shadow: CVE-2017-2616 regression fix	Henrik Riomar	2017-05-19	2	-2/+33
\| \| \| \| \|	https://lists.debian.org/debian-security-announce/2017/msg00114.html (cherry picked from commit f6afcbbc796f404b70cfea1fdef72fa5e7ed0896)
*	main/qt5-qtbase: rebuild against icu-57.1	Leonardo Arena	2017-05-18	1	-1/+1
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	ERROR: unsatisfiable constraints: icu-libs-56.1-r0: conflicts: icu-libs-57.1-r3 satisfies: harfbuzz-icu-1.0.6-r1[so:libicudata.so.56] harfbuzz-icu-1.0.6-r1[so:libicuuc.so.56] firefox-38.3.0-r1[so:libicui18n.so.56] firefox-38.3.0-r1[so:libicuuc.so.56] webkit2gtk-2.10.4-r0[so:libicui18n.so.56] webkit2gtk-2.10.4-r0[so:libicuuc.so.56] icu-libs-57.1-r3: conflicts: icu-libs-56.1-r0 satisfies: qt5-qtbase-5.6.1_p1-r0[so:libicui18n.so.57] qt5-qtbase-5.6.1_p1-r0[so:libicuuc.so.57]