Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | main/php5: security upgrade to 5.6.403.5-stable | Andy Postnikov | 2019-02-08 | 1 | -2/+9 |
| | |||||
* | community/pdns-recursor: security upgrade to 4.0.9 - CVE-2018-10851 - ↵ | J0WI | 2019-01-21 | 1 | -10/+8 |
| | | | | CVE-2018-14644 - CVE-2018-14626 | ||||
* | community/pdns: security upgrade to 4.0.6 - CVE-2018-10851 - CVE-2018-14626 | J0WI | 2019-01-21 | 1 | -10/+7 |
| | |||||
* | community/openjdk8: security upgrade to 3.10.0 (java 8u191b12) | Matteo Gazzetta | 2019-01-10 | 1 | -11/+21 |
| | |||||
* | main/libsndfile: security fixes (CVE-2017-17456, CVE-2017-17457, ↵ | alpine-mips-patches | 2018-12-31 | 2 | -2/+97 |
| | | | | | | | | CVE-2018-19661, CVE-2018-19662) This is upstream commit 8ddc442d539ca775d80cdbc7af17a718634a743f Partially fixes #9236 | ||||
* | community/php7: security upgrade to 7.0.33 | Andy Postnikov | 2018-12-07 | 1 | -4/+6 |
| | |||||
* | main/ghostscript: security upgrade to 9.26 | Andy Postnikov | 2018-12-07 | 2 | -1002/+11 |
| | | | | | | | | | - CVE-2018-19409 - CVE-2018-19475 - CVE-2018-19476 - CVE-2018-19477 fixes #9693 | ||||
* | main/ghostscript: security fixes (CVE-2018-17961, CVE-2018-18073, ↵ | J0WI | 2018-12-07 | 3 | -63/+1002 |
| | | | | CVE-2018-18284) | ||||
* | main/libao: security fix for CVE-2017-11548 | Natanael Copa | 2018-12-04 | 2 | -5/+187 |
| | | | | fixes #9212 | ||||
* | main/openssl: security upgrade to 1.0.2q - CVE-2018-0734 - CVE-2018-5407 | J0WI | 2018-11-22 | 1 | -4/+7 |
| | |||||
* | main/openssl1.0: upgrade to 1.0.2p | Natanael Copa | 2018-11-22 | 3 | -103/+4 |
| | |||||
* | community/openjdk8: security upgrade to 3.9.0 (java 8u181b13) | J0WI | 2018-11-12 | 1 | -14/+22 |
| | | | | fixes #9314 | ||||
* | main/spice: security fix (CVE-2018-10873) | Leonardo Arena | 2018-11-07 | 2 | -5/+86 |
| | | | | Fixes #9313 | ||||
* | main/dropbear: security fix (CVE-2018-15599) | Leonardo Arena | 2018-11-07 | 2 | -2/+238 |
| | | | | Fixes #9351 | ||||
* | main/ghostscript: security upgrade to 9.25 (CVE-2018-16802) | Leonardo Arena | 2018-11-07 | 1 | -4/+6 |
| | | | | Fixes #9437 | ||||
* | main/tiff: security fixes | Leonardo Arena | 2018-11-06 | 3 | -2/+154 |
| | | | | | | (CVE-2018-10779, CVE-2018-17100, CVE-2018-17101) Fixes #9587 | ||||
* | main/curl: security fixes | Leonardo Arena | 2018-11-06 | 4 | -2/+95 |
| | | | | | | (CVE-2018-16839, CVE-2018-16840, CVE-2018-16842) Fixes #9615 | ||||
* | main/openjpeg: upgrade to 2.3.0, modernize APKBUILD | Francesco Colista | 2018-11-06 | 1 | -24/+7 |
| | | | | this fixes also CVE-2017-14039 | ||||
* | main/icecast: security upgrade to 2.4.4 (CVE-2018-18820) | Andy Postnikov | 2018-11-06 | 1 | -5/+10 |
| | |||||
* | main/apache2: security upgrade to 2.4.35 (CVE-2018-11763) | Andy Postnikov | 2018-10-28 | 1 | -2/+4 |
| | | | | fixes #9581 | ||||
* | main/libexif: fix secfixes comment | Natanael Copa | 2018-10-24 | 1 | -1/+1 |
| | |||||
* | main/hylafax: fix secfixes comment | Natanael Copa | 2018-10-24 | 1 | -1/+1 |
| | |||||
* | main/git: security fix (CVE-2018-17456) | Natanael Copa | 2018-10-24 | 2 | -4/+371 |
| | | | | | | Patch from Debian. fixes #9544 | ||||
* | main/libssh: security upgrade 0.7.6 (CVE-2018-10933) | Marvin Steadfast | 2018-10-24 | 2 | -10/+59 |
| | | | | fixes #9572 | ||||
* | main/libxml2: backport security fixes | Natanael Copa | 2018-10-24 | 4 | -10/+157 |
| | | | | | | | | - CVE-2018-9251 - CVE-2018-14404 - CVE-2018-14567 fixes #9568 | ||||
* | main/libxml2: upgrade to 2.9.8 | Natanael Copa | 2018-10-24 | 1 | -7/+3 |
| | |||||
* | main/ruby: security upgrade to 2.3.8 | Jakub Jirutka | 2018-10-18 | 1 | -5/+8 |
| | |||||
* | main/hylafax: security fix (CVE-2018-17141) | Leonardo Arena | 2018-10-09 | 2 | -10/+144 |
| | | | | Fixes #9460 | ||||
* | main/libexif: security fix (CVE-2017-7544) | Leonardo Arena | 2018-10-08 | 2 | -3/+31 |
| | | | | Fixes #9525 | ||||
* | main/strongswan: security fixes | Leonardo Arena | 2018-10-08 | 2 | -1/+67 |
| | | | | | | CVE-2018-16151, CVE-2018-16152, CVE-2018-17540 Fixes #9519 | ||||
* | main/libx11: security upgrade to 1.6.6 | Natanael Copa | 2018-10-08 | 1 | -5/+12 |
| | | | | | | | | CVE-2018-14598 CVE-2018-14599 CVE-2018-14600 fixes #9537 | ||||
* | main/gd: backport security fix for CVE-2018-1000222 | Natanael Copa | 2018-10-02 | 2 | -2/+79 |
| | | | | fixes #9502 | ||||
* | main/strongswan: backport security fix (CVE-2018-16151, CVE-2018-16152) | Natanael Copa | 2018-10-02 | 2 | -0/+328 |
| | | | | fixes #9487 | ||||
* | main/php5: security upgrade to 5.6.38 | Andy Postnikov | 2018-10-01 | 1 | -2/+2 |
| | |||||
* | main/python3: fix secfixes comment | Natanael Copa | 2018-09-25 | 1 | -1/+1 |
| | |||||
* | main/libjpeg-turbo: backport security fix (CVE-2018-11813) | Natanael Copa | 2018-09-25 | 2 | -3/+80 |
| | | | | fixes #9431 | ||||
* | main/libjpeg-turbo: Backport fix for CVE-2018-1152 | Euan Harris | 2018-09-25 | 2 | -4/+60 |
| | | | | | | | | | Cherry-pick commit f1322ac from the 1.5.x branch ref #9431 Signed-off-by: Euan Harris <euan.harris@docker.com> (cherry picked from commit 8d429487fdfea72fe6b0e45659274a62fa8c89bd) | ||||
* | main/libjpeg-turbo: security upgrade to 1.5.3 (CVE-2017-15232) | Natanael Copa | 2018-09-25 | 1 | -4/+2 |
| | | | | ref #9431 | ||||
* | main/asterisk: security upgrade to 14.7.8 | Timo Teräs | 2018-09-24 | 2 | -2/+59 |
| | | | | | | | | | | | | AST-2018-002: Crash when given an invalid SDP media format description AST-2018-003: Crash with an invalid SDP fmtp attribute AST-2018-004 (CVE-2018-7284): Crash when receiving SUBSCRIBE request AST-2018-005 (CVE-2018-7286): Crash when large numbers of TCP connections are closed suddenly AST-2018-007: Infinite loop when reading iostreams AST-2018-008: PJSIP endpoint presence disclosure when using ACL AST-2018-009 (CVE-2018-17281): Remote crash in HTTP websocket upgrade (cherry picked from commit d82e7ed819cfce6cd12f368281037cd6dd29bbe5) | ||||
* | main/ipset: fix reloading of existing ipsets | Thomas Liske | 2018-09-21 | 2 | -7/+8 |
| | |||||
* | main/openssh: backport security fix (CVE-2018-15473) | Natanael Copa | 2018-09-20 | 2 | -4/+122 |
| | | | | fixes #9321 | ||||
* | main/ghostscript: security upgrade to 9.24 | Andy Postnikov | 2018-09-20 | 1 | -13/+12 |
| | | | | | | | | | CVE-2018-15908, CVE-2018-15909, CVE-2018-15910, CVE-2018-15911 CVE-2018-10194 fixes #9386 (cherry picked from commit c13758613f3110e14c2e9eda818406f235d996c1) | ||||
* | main/dnsmasq: backport security fix (CVE-2017-15107) | Natanael Copa | 2018-09-20 | 2 | -2/+214 |
| | | | | fixes #9380 | ||||
* | main/libsndfile: security fix (CVE-2018-13139) | Leonardo Arena | 2018-09-19 | 2 | -10/+45 |
| | | | | Partially fixes #9236 | ||||
* | main/curl: security upgrade to 7.61.1 (CVE-2018-14618) | Natanael Copa | 2018-09-19 | 1 | -2/+4 |
| | | | | fixes #9397 | ||||
* | ==== release 3.5.3 ====v3.5.3 | Natanael Copa | 2018-09-11 | 1 | -1/+1 |
| | |||||
* | main/apk-tools: security upgrade to 2.6.10 | Timo Teräs | 2018-09-10 | 1 | -5/+3 |
| | |||||
* | main/bind: security upgrade to 9.10.8_p1 (CVE-2018-5740) | Natanael Copa | 2018-09-10 | 1 | -4/+6 |
| | | | | fixes #9361 | ||||
* | main/python2-tkinter: upgrade to 2.7.15 | Leonardo Arena | 2018-08-22 | 1 | -4/+4 |
| | |||||
* | main/libmspack: security upgrade to 0.7.1alpha | Natanael Copa | 2018-08-22 | 3 | -113/+12 |
| | | | | fixes #9229 |