aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* community/openjdk7: fix typo in secfixes info3.6-stableRichard Mortier2019-11-131-1/+1
| | | | Signed-off-by: Richard Mortier <mort@cantab.net>
* main/mariadb: security upgrade to 10.1.40J0WI2019-06-121-3/+6
|
* main/hostapd: security fix (CVE-2019-9496)Leonardo Arena2019-06-052-1/+62
| | | | Fixes #10336
* main/ca-certificates: upgrade to 20161130+nmu1+deb9u1J0WI2019-05-271-13/+6
|
* main/postgresql: security upgrade to 9.6.13Jakub Jirutka2019-05-121-2/+5
|
* main/ruby: fix build on s390xNatanael Copa2019-05-071-0/+3
|
* main/ruby: upgrade to 2.4.6Natanael Copa2019-05-061-2/+9
| | | | | | | | | | | - CVE-2019-8320 - CVE-2019-8321 - CVE-2019-8322 - CVE-2019-8323 - CVE-2019-8324 - CVE-2019-8325 fixes #10290
* main/lua5.3: security fix for CVE-2019-6706Natanael Copa2019-05-061-2/+8
| | | | | | fixes #10256 (cherry picked from commit ebd55722b9637f4559c94b13e5e061ffef9fb4a3)
* main/lua5.3: fix linenoise patchNatanael Copa2019-05-063-9/+33
| | | | | | fixes #9644 (cherry picked from commit cde8024d0da937f5f7b0b9b329c1f27c14b00308)
* main/lua5.3: upgrade to 5.3.5Natanael Copa2019-05-061-11/+3
|
* main/libpng: upgrade to 1.6.37Leo2019-05-062-17/+17
| | | | | | | | | | - Add secfixes CVE-2019-7317 CVE-2018-14048 CVE-2018-14550 - Remove pkg-config detected depends_dev fixes #10365
* community/openjdk8: security upgrade to 8.212.04J0WI2019-05-041-11/+15
|
* main/bind: make sure all patches are appliedNatanael Copa2019-05-034-323/+35
| | | | This fixes builds on non-x86
* main/bind: security upgrade to 9.11.6_p1 (CVE-2018-5743,CVE-2019-6467)Natanael Copa2019-05-032-6/+174
| | | | | | | | | | | | | | | | | This release introduced 3 new tools with python dependency (dnssec-checkdns, dnssec-coverage and dnssec-keymgr). Move those tools to a subpackage, bind-dnssec-tools, to avoid unexpectedly pull in python as dependency for stable upgraders. There are other tools in bind-tools that belongs to bind-dnssec-tools, but we dont move those in a stable branch to avoid breaking things for current users. Include patch to fix build on non-x86: https://gitlab.isc.org/isc-projects/bind9/commit/d72f436b7d7c697b262968c48c2d7643069ab17f https://lists.isc.org/pipermail/bind-users/2019-April/101673.html fixes #10371
* main/py3-ply: new aporttcely2019-05-031-0/+39
| | | | | | | https://www.dabeaz.com/ply/ Python Lex & Yacc needed by bind
* main/tzdata: upgrade to 2019aAndy Postnikov2019-04-301-5/+5
| | | | fixes #10202
* main/tzdata: upgrade tzcode to 2018gSören Tempel2019-04-301-3/+3
|
* main/tzdata: upgrade to 2018gNatanael Copa2019-04-301-9/+10
|
* main/tzdata: add patch to fix implicit declaration compiler warningsSören Tempel2019-04-303-8/+39
| | | | | Not strictly needed but since this is code written by us, fixing it seems to be a good idea.
* main/tzdata: upgrade to 2018dNatanael Copa2019-04-301-4/+4
|
* main/freeradius: security fixes (CVE-2019-11234, CVE-2019-11235)Leonardo Arena2019-04-252-3/+100
| | | | Fixes #10328
* main/samba: security fixesStefan Reiff2019-04-255-1/+219
| | | | CVE-2018-14629, CVE-2018-16841 and CVE-2018-16851
* main/python3: security upgrade to 3.6.8Natanael Copa2019-04-222-5/+161
| | | | | | | | - CVE-2018-14647 - CVE-2018-20406 - CVE-2019-9636 fixes #10300
* main/clamav: security upgrade to 0.100.3Leonardo Arena2019-04-171-2/+6
| | | | | | CVE-2019-1787, CVE-2019-1788, CVE-2019-1789 Fixes #10266
* main/samba: security fix (CVE-2019-3880)Stefan Reiff2019-04-172-1/+156
| | | | | | Fixes #10250 Signed-off-by: Leonardo Arena <rnalrd@alpinelinux.org>
* main/libxslt: security fix for CVE-2019-11068Natanael Copa2019-04-172-5/+130
| | | | fixes #10281
* main/bind: security upgrade to 9.11.5_p4tcely2019-04-121-3/+8
| | | | | | | | | | | | | | | | | | https://ftp.isc.org/isc/bind9/9.11.5-P4/RELEASE-NOTES-bind-9.11.5-P4.html - CVE-2019-6465 - CVE-2018-5745 - CVE-2018-5744 - CVE-2018-5740 - CVE-2018-5738 Fixes #10169 With the release of BIND 9.11.0, ISC changed to the open source license for BIND from the ISC license to the Mozilla Public License (MPL 2.0). BIND 9.11 (Extended Support Version) will be supported until at least December, 2021.
* community/openjdk7: security upgrade to 7.211.2.6.17J0WI2019-04-112-14/+41
|
* main/gd: disable tests for more archesLeonardo Arena2019-04-081-2/+2
| | | | | FAIL: gdimagecopyresampled/bug00201 FAIL: gdimagegrayscale/basic
* main/gd: modernize and add security patchesJ0WI2019-04-085-46/+310
| | | | | | CVE-2018-5711, CVE-2019-6977, CVE-2019-6978 Fixes #10087
* main/putty: on arm* and aarch64 needs linux-headersLeonardo Arena2019-04-081-1/+2
|
* main/putty: security upgrade to 0.71Leonardo Arena2019-04-082-4/+27
| | | | | | | | CVE-2019-9894, CVE-2019-9895, CVE-2019-9897, CVE-2019-9898 Fixes #10197 Update license, disable check
* main/wget: security upgrade to 1.20.3 (CVE-2019-5953)Leonardo Arena2019-04-081-2/+2
| | | | Fixes #10214
* main/ghostscript: security fixes (CVE-2019-3835, CVE-2019-3838, CVE-2019-6116)J0WI2019-04-044-1/+1452
|
* community/mumble: security fixes (CVE-2018-20743)J0WI2019-04-043-4/+234
|
* main/apache2: security upgrade to 2.4.39J0WI2019-04-031-3/+10
| | | | fixes #10190
* travis: fix issue with FS priviliges after recent updateJakub Jirutka2019-04-033-6/+5
|
* main/postgresql: upgrade to 9.6.12Leonardo Arena2019-04-031-2/+2
|
* main/dovecot: security upgrade to 2.2.36.3J0WI2019-04-011-3/+5
|
* main/libssh2: upgrade to 1.8.2Natanael Copa2019-03-271-7/+2
| | | | | | | fixes a regression introduced by the security update 1.8.1. upstream issue: https://github.com/libssh2/libssh2/issues/336 downstream issue: https://github.com/gliderlabs/docker-alpine/issues/507
* main/libssh2: security upgrade to 1.8.1Francesco Colista2019-03-191-3/+15
| | | | | | | | | | | | | | - CVE-2019-3855 - CVE-2019-3856 - CVE-2019-3857 - CVE-2019-3858 - CVE-2019-3859 - CVE-2019-3860 - CVE-2019-3861 - CVE-2019-3862 - CVE-2019-3863 Fixes #10132
* community/pdns: security upgrade to 4.0.7prspkt2019-03-191-2/+4
| | | | - CVE-2019-3871
* main/openssl: security upgrade to 1.0.2rJ0WI2019-03-151-2/+4
|
* community/openjdk8: security upgrade to 3.11.0 (java 8u201b08)J0WI2019-03-152-17/+21
|
* main/openjpeg: security fixesFrancesco Colista2019-03-142-2/+85
| | | | | | - CVE-2018-5785 this commit fixes #10097
* ==== release 3.6.5 ====v3.6.5Natanael Copa2019-03-061-1/+1
|
* scripts/genrootfs.sh: exclude dev/*Natanael Copa2019-03-061-3/+1
| | | | | | | exclude /dev/* from minirootfs. https://github.com/gliderlabs/docker-alpine/issues/356 (cherry picked from commit 2f07f9eb884af94f47b94c1fdde5e2ecdd177a19)
* main/musl: backport fix to use UTC instead of GMT as defaultNatanael Copa2019-03-062-1/+140
|
* ==== release 3.6.4 ====v3.6.4Natanael Copa2019-03-051-1/+1
|
* scripts/mkimage.sh: allow --repository multiple timesNatanael Copa2019-03-051-3/+9
| | | | | we dont need --extra-repository anymore but keep it for backwards compatibility
generated by cgit v1.2.3 (git 2.25.1) at 2024-04-26 08:20:02 +0000