Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | community/openjdk7: fix typo in secfixes info3.6-stable | Richard Mortier | 2019-11-13 | 1 | -1/+1 |
| | | | | Signed-off-by: Richard Mortier <mort@cantab.net> | ||||
* | main/mariadb: security upgrade to 10.1.40 | J0WI | 2019-06-12 | 1 | -3/+6 |
| | |||||
* | main/hostapd: security fix (CVE-2019-9496) | Leonardo Arena | 2019-06-05 | 2 | -1/+62 |
| | | | | Fixes #10336 | ||||
* | main/ca-certificates: upgrade to 20161130+nmu1+deb9u1 | J0WI | 2019-05-27 | 1 | -13/+6 |
| | |||||
* | main/postgresql: security upgrade to 9.6.13 | Jakub Jirutka | 2019-05-12 | 1 | -2/+5 |
| | |||||
* | main/ruby: fix build on s390x | Natanael Copa | 2019-05-07 | 1 | -0/+3 |
| | |||||
* | main/ruby: upgrade to 2.4.6 | Natanael Copa | 2019-05-06 | 1 | -2/+9 |
| | | | | | | | | | | | - CVE-2019-8320 - CVE-2019-8321 - CVE-2019-8322 - CVE-2019-8323 - CVE-2019-8324 - CVE-2019-8325 fixes #10290 | ||||
* | main/lua5.3: security fix for CVE-2019-6706 | Natanael Copa | 2019-05-06 | 1 | -2/+8 |
| | | | | | | fixes #10256 (cherry picked from commit ebd55722b9637f4559c94b13e5e061ffef9fb4a3) | ||||
* | main/lua5.3: fix linenoise patch | Natanael Copa | 2019-05-06 | 3 | -9/+33 |
| | | | | | | fixes #9644 (cherry picked from commit cde8024d0da937f5f7b0b9b329c1f27c14b00308) | ||||
* | main/lua5.3: upgrade to 5.3.5 | Natanael Copa | 2019-05-06 | 1 | -11/+3 |
| | |||||
* | main/libpng: upgrade to 1.6.37 | Leo | 2019-05-06 | 2 | -17/+17 |
| | | | | | | | | | | - Add secfixes CVE-2019-7317 CVE-2018-14048 CVE-2018-14550 - Remove pkg-config detected depends_dev fixes #10365 | ||||
* | community/openjdk8: security upgrade to 8.212.04 | J0WI | 2019-05-04 | 1 | -11/+15 |
| | |||||
* | main/bind: make sure all patches are applied | Natanael Copa | 2019-05-03 | 4 | -323/+35 |
| | | | | This fixes builds on non-x86 | ||||
* | main/bind: security upgrade to 9.11.6_p1 (CVE-2018-5743,CVE-2019-6467) | Natanael Copa | 2019-05-03 | 2 | -6/+174 |
| | | | | | | | | | | | | | | | | | This release introduced 3 new tools with python dependency (dnssec-checkdns, dnssec-coverage and dnssec-keymgr). Move those tools to a subpackage, bind-dnssec-tools, to avoid unexpectedly pull in python as dependency for stable upgraders. There are other tools in bind-tools that belongs to bind-dnssec-tools, but we dont move those in a stable branch to avoid breaking things for current users. Include patch to fix build on non-x86: https://gitlab.isc.org/isc-projects/bind9/commit/d72f436b7d7c697b262968c48c2d7643069ab17f https://lists.isc.org/pipermail/bind-users/2019-April/101673.html fixes #10371 | ||||
* | main/py3-ply: new aport | tcely | 2019-05-03 | 1 | -0/+39 |
| | | | | | | | https://www.dabeaz.com/ply/ Python Lex & Yacc needed by bind | ||||
* | main/tzdata: upgrade to 2019a | Andy Postnikov | 2019-04-30 | 1 | -5/+5 |
| | | | | fixes #10202 | ||||
* | main/tzdata: upgrade tzcode to 2018g | Sören Tempel | 2019-04-30 | 1 | -3/+3 |
| | |||||
* | main/tzdata: upgrade to 2018g | Natanael Copa | 2019-04-30 | 1 | -9/+10 |
| | |||||
* | main/tzdata: add patch to fix implicit declaration compiler warnings | Sören Tempel | 2019-04-30 | 3 | -8/+39 |
| | | | | | Not strictly needed but since this is code written by us, fixing it seems to be a good idea. | ||||
* | main/tzdata: upgrade to 2018d | Natanael Copa | 2019-04-30 | 1 | -4/+4 |
| | |||||
* | main/freeradius: security fixes (CVE-2019-11234, CVE-2019-11235) | Leonardo Arena | 2019-04-25 | 2 | -3/+100 |
| | | | | Fixes #10328 | ||||
* | main/samba: security fixes | Stefan Reiff | 2019-04-25 | 5 | -1/+219 |
| | | | | CVE-2018-14629, CVE-2018-16841 and CVE-2018-16851 | ||||
* | main/python3: security upgrade to 3.6.8 | Natanael Copa | 2019-04-22 | 2 | -5/+161 |
| | | | | | | | | - CVE-2018-14647 - CVE-2018-20406 - CVE-2019-9636 fixes #10300 | ||||
* | main/clamav: security upgrade to 0.100.3 | Leonardo Arena | 2019-04-17 | 1 | -2/+6 |
| | | | | | | CVE-2019-1787, CVE-2019-1788, CVE-2019-1789 Fixes #10266 | ||||
* | main/samba: security fix (CVE-2019-3880) | Stefan Reiff | 2019-04-17 | 2 | -1/+156 |
| | | | | | | Fixes #10250 Signed-off-by: Leonardo Arena <rnalrd@alpinelinux.org> | ||||
* | main/libxslt: security fix for CVE-2019-11068 | Natanael Copa | 2019-04-17 | 2 | -5/+130 |
| | | | | fixes #10281 | ||||
* | main/bind: security upgrade to 9.11.5_p4 | tcely | 2019-04-12 | 1 | -3/+8 |
| | | | | | | | | | | | | | | | | | | https://ftp.isc.org/isc/bind9/9.11.5-P4/RELEASE-NOTES-bind-9.11.5-P4.html - CVE-2019-6465 - CVE-2018-5745 - CVE-2018-5744 - CVE-2018-5740 - CVE-2018-5738 Fixes #10169 With the release of BIND 9.11.0, ISC changed to the open source license for BIND from the ISC license to the Mozilla Public License (MPL 2.0). BIND 9.11 (Extended Support Version) will be supported until at least December, 2021. | ||||
* | community/openjdk7: security upgrade to 7.211.2.6.17 | J0WI | 2019-04-11 | 2 | -14/+41 |
| | |||||
* | main/gd: disable tests for more arches | Leonardo Arena | 2019-04-08 | 1 | -2/+2 |
| | | | | | FAIL: gdimagecopyresampled/bug00201 FAIL: gdimagegrayscale/basic | ||||
* | main/gd: modernize and add security patches | J0WI | 2019-04-08 | 5 | -46/+310 |
| | | | | | | CVE-2018-5711, CVE-2019-6977, CVE-2019-6978 Fixes #10087 | ||||
* | main/putty: on arm* and aarch64 needs linux-headers | Leonardo Arena | 2019-04-08 | 1 | -1/+2 |
| | |||||
* | main/putty: security upgrade to 0.71 | Leonardo Arena | 2019-04-08 | 2 | -4/+27 |
| | | | | | | | | CVE-2019-9894, CVE-2019-9895, CVE-2019-9897, CVE-2019-9898 Fixes #10197 Update license, disable check | ||||
* | main/wget: security upgrade to 1.20.3 (CVE-2019-5953) | Leonardo Arena | 2019-04-08 | 1 | -2/+2 |
| | | | | Fixes #10214 | ||||
* | main/ghostscript: security fixes (CVE-2019-3835, CVE-2019-3838, CVE-2019-6116) | J0WI | 2019-04-04 | 4 | -1/+1452 |
| | |||||
* | community/mumble: security fixes (CVE-2018-20743) | J0WI | 2019-04-04 | 3 | -4/+234 |
| | |||||
* | main/apache2: security upgrade to 2.4.39 | J0WI | 2019-04-03 | 1 | -3/+10 |
| | | | | fixes #10190 | ||||
* | travis: fix issue with FS priviliges after recent update | Jakub Jirutka | 2019-04-03 | 3 | -6/+5 |
| | |||||
* | main/postgresql: upgrade to 9.6.12 | Leonardo Arena | 2019-04-03 | 1 | -2/+2 |
| | |||||
* | main/dovecot: security upgrade to 2.2.36.3 | J0WI | 2019-04-01 | 1 | -3/+5 |
| | |||||
* | main/libssh2: upgrade to 1.8.2 | Natanael Copa | 2019-03-27 | 1 | -7/+2 |
| | | | | | | | fixes a regression introduced by the security update 1.8.1. upstream issue: https://github.com/libssh2/libssh2/issues/336 downstream issue: https://github.com/gliderlabs/docker-alpine/issues/507 | ||||
* | main/libssh2: security upgrade to 1.8.1 | Francesco Colista | 2019-03-19 | 1 | -3/+15 |
| | | | | | | | | | | | | | | - CVE-2019-3855 - CVE-2019-3856 - CVE-2019-3857 - CVE-2019-3858 - CVE-2019-3859 - CVE-2019-3860 - CVE-2019-3861 - CVE-2019-3862 - CVE-2019-3863 Fixes #10132 | ||||
* | community/pdns: security upgrade to 4.0.7 | prspkt | 2019-03-19 | 1 | -2/+4 |
| | | | | - CVE-2019-3871 | ||||
* | main/openssl: security upgrade to 1.0.2r | J0WI | 2019-03-15 | 1 | -2/+4 |
| | |||||
* | community/openjdk8: security upgrade to 3.11.0 (java 8u201b08) | J0WI | 2019-03-15 | 2 | -17/+21 |
| | |||||
* | main/openjpeg: security fixes | Francesco Colista | 2019-03-14 | 2 | -2/+85 |
| | | | | | | - CVE-2018-5785 this commit fixes #10097 | ||||
* | ==== release 3.6.5 ====v3.6.5 | Natanael Copa | 2019-03-06 | 1 | -1/+1 |
| | |||||
* | scripts/genrootfs.sh: exclude dev/* | Natanael Copa | 2019-03-06 | 1 | -3/+1 |
| | | | | | | | exclude /dev/* from minirootfs. https://github.com/gliderlabs/docker-alpine/issues/356 (cherry picked from commit 2f07f9eb884af94f47b94c1fdde5e2ecdd177a19) | ||||
* | main/musl: backport fix to use UTC instead of GMT as default | Natanael Copa | 2019-03-06 | 2 | -1/+140 |
| | |||||
* | ==== release 3.6.4 ====v3.6.4 | Natanael Copa | 2019-03-05 | 1 | -1/+1 |
| | |||||
* | scripts/mkimage.sh: allow --repository multiple times | Natanael Copa | 2019-03-05 | 1 | -3/+9 |
| | | | | | we dont need --extra-repository anymore but keep it for backwards compatibility |