aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* community/lua-cqueues-pushy: upgrade to 20180530 snapshotTimo Teräs2018-05-301-3/+3
|
* main/busybox: wget: verify certificate when openssl helper is usedJakub Jirutka2018-05-282-1/+74
|
* main/busybox: wget: print warning when internal TLS code is usedJakub Jirutka2018-05-282-0/+90
|
* main/libressl: add options -verify_{hostname,email,ip} to s_clientJakub Jirutka2018-05-283-2/+109
|
* main/libressl: upgrade to 2.6.4Natanael Copa2018-05-281-2/+2
|
* main/curl: fix crashes due to LibreSSL/OpenSSL engines conflictsJakub Jirutka2018-05-252-2/+47
|
* main/tiff: fix CVE-2018-8905prspkt2018-05-242-2/+57
|
* main/tiff: fix CVE-2018-7456prspkt2018-05-242-2/+176
|
* main/bind: security upgrade to 9.11.3Jakub Jirutka2018-05-241-2/+8
|
* main/bmd-tools: upgrade to 1.0.2Timo Teräs2018-05-241-2/+2
|
* community/tor: security upgrade to 0.3.1.10 (CVE-2018-0490)Natanael Copa2018-05-231-2/+4
| | | | fixes #8854
* community/quassel: security upgrade to 0.12.5 ↵Natanael Copa2018-05-231-9/+8
| | | | | | (CVE-2018-1000178,CVE-2018-1000179) fixes #8927
* community/firefox-esr: security upgrade to 52.8.0Natanael Copa2018-05-211-2/+2
| | | | | | | | | | | | | | fixes #8892 CVE-2018-5150: Memory safety bugs CVE-2018-5154: Use-after-free with SVG animations and clip paths CVE-2018-5155: Use-after-free with SVG animations and text paths CVE-2018-5157: Same-origin bypass of PDF Viewer to view protected PDF files CVE-2018-5158: Malicious PDF can inject JavaScript into PDF Viewer CVE-2018-5159: Integer overflow and out-of-bounds write in Skia CVE-2018-5168: Lightweight themes can be installed without user interaction CVE-2018-5178: Buffer overflow during UTF-8 to Unicode string conversion through legacy extension CVE-2018-5183: Backport critical security fixes in Skia
* main/xen: security fixes XSA 260-262Henrik Riomar2018-05-218-1/+1078
| | | | | | CVE-2018-8897 XSA-260 (depends x86-XPTI-reduce-.text.entry.patch) CVE-2018-10982 XSA-261 CVE-2018-10981 XSA-262
* main/sqlite: fix CVE-2018-8740Jakub Jirutka2018-05-202-1/+43
| | | | Ref #8786 (https://bugs.alpinelinux.org/issues/8786)
* main/curl: security upgrade to 7.60.0prspkt2018-05-201-3/+6
|
* community/lua-cqueues-pushy: upgrade to 20180221 snapshotTimo Teräs2018-05-171-3/+3
|
* community/stunnel: upgrade to 5.44 and enable SO_ORIGINAL_DSTNatanael Copa2018-05-151-3/+8
| | | | | Support for SO_ORIGINAL_DST will be silently disabled if linux-headers are missing at build time.
* main/darkhttpd: Add svg support to default mimetypesCarlo Landmeter2018-05-142-3/+33
|
* community/zoneminder: add missing dependencyKaarle Ritvanen2018-05-141-2/+2
|
* main/postgresql: security upgrade to 10.4Jakub Jirutka2018-05-141-10/+12
| | | | | Fixes CVE-2018-1115 See https://www.postgresql.org/about/news/1851/
* main/wget: security upgrade to 1.19.5Andy Postnikov2018-05-101-3/+5
|
* community/php7: security upgrade to 7.1.17Andy Postnikov2018-05-031-3/+7
| | | | CVE-2018-5712
* community/wireshark: security upgrade to 2.4.6Leonardo Arena2018-04-301-2/+13
| | | | | | | | CVE-2018-9256, CVE-2018-9257, CVE-2018-9258, CVE-2018-9260, CVE-2018-9261, CVE-2018-9262, CVE-2018-9263, CVE-2018-9264, CVE-2018-9267, CVE-2018-10194 Fixes #8822
* main/jq: security fix (CVE-2016-4074). Fixes #8808Leonardo Arena2018-04-302-3/+45
|
* main/xen: security fixesHenrik Riomar2018-04-303-1/+146
| | | | | CVE-2018-10472, XSA-258 CVE-2018-10471, XSA-259
* main/mkinitfs: virtio_net depends on virtio_pciCarlo Landmeter2018-04-292-2/+27
|
* main/mkinitfs: features add virtio_net to network modulesCarlo Landmeter2018-04-292-2/+25
|
* community/php5: security upgrade to 5.6.36Andy Postnikov2018-04-281-2/+6
| | | | CVE-2018-5712
* community/drupal7: security upgrade to 7.59Andy Postnikov2018-04-281-2/+4
| | | | CVE-2018-7602 https://www.drupal.org/SA-CORE-2018-004
* community/firefox-esr: upgrade to 52.7.3Leonardo Arena2018-04-241-2/+2
|
* community/nextcloud: upgrade to 12.0.6Jakub Jirutka2018-04-182-17/+2
| | | | Problem with iconv has been fixed in upstream: https://github.com/nextcloud/server/pull/8674.
* main/perl: security upgrade to 5.26.2Leonardo Arena2018-04-171-7/+10
| | | | | | CVE-2018-6797, CVE-2018-6798, CVE-2018-6913 Fixes #8802
* community/roundcubemail: security upgrade to 1.3.6 (CVE-2018-9846)Leonardo Arena2018-04-122-14/+28
|
* main/clamav: security upgrade 0.99.4Leonardo Arena2018-04-112-28/+9
| | | | | | CVE-2018-0202, CVE-2018-1000085 Fixes #8694
* main/mariadb: security upgrade to 10.1.32Leonardo Arena2018-04-111-3/+13
| | | | | | | CVE-2017-10268, CVE-2017-10378, CVE-2017-15365, CVE-2018-2562 CVE-2018-2612, CVE-2018-2622, CVE-2018-2640, CVE-2018-2665, CVE-2018-2668 Fixes #8688
* community/zabbix: upgrade to 3.4.8Leonardo Arena2018-04-111-2/+2
|
* community/php7: make zlib extension builtinAndy Postnikov2018-04-051-4/+9
| | | | | | PHP lacks some functionality when zlib extension built dynamic. Ref #8299 (https://bugs.alpinelinux.org/issues/8299)
* main/xen: upgrade to 4.9.2Henrik Riomar2018-04-0517-2457/+5
| | | | | | | | Update musl-support.patch and remove hunk that fixes tools/libxl/libxl_arm_acpi.c as this is in upstream commit: 6b1a2704e7 libxl/arm: Fix build on arm64 + acpi Drop patches included in new upstream version
* main/apk-tools: fix index refresh on time zeroTimo Teräs2018-04-052-2/+38
| | | | (cherry picked from commit 1dcf9e4a7be72e1b04fcfbdb24c4406e44bb1926)
* community/firefox-esr: security upgrade to 52.7.2Natanael Copa2018-04-021-2/+2
| | | | | | | | | | | | | | fixes #8702 CVE-2018-5125: Memory safety bugs fixed in Firefox 59 and Firefox ESR 52.7 CVE-2018-5127: Buffer overflow manipulating SVG animatedPathSegList CVE-2018-5129: Out-of-bounds write with malformed IPC messages CVE-2018-5130: Mismatched RTP payload type can trigger memory corruption CVE-2018-5131: Fetch API improperly returns cached copies of no-store/no-cache resources CVE-2018-5144: Integer overflow during Unicode conversion CVE-2018-5145: Memory safety bugs fixed in Firefox ESR 52.7
* main/tiff: fix CVE-2018-5784prspkt2018-04-023-3/+135
| | | | fixes #8707
* main/openssl: security upgrade to 1.0.2o and rebuild depending pkgsAndy Postnikov2018-04-014-5/+9
| | | | | | Fixes CVE-2017-3738, CVE-2018-0739, CVE-2018-0733 Rebuilds packages that link openssl statically.
* main/zsh: fix CVE-2018-1071, CVE-2018-1083prspkt2018-03-313-2/+85
|
* community/php7: security upgrade to 7.1.16Andy Postnikov2018-03-311-2/+2
|
* community/php5: security upgrade to 5.6.35Andy Postnikov2018-03-311-2/+2
|
* main/ruby: security upgrade to 2.4.4Natanael Copa2018-03-291-2/+9
| | | | | | | | | | | | | | | | | | | CVE-2017-17742: HTTP response splitting in WEBrick CVE-2018-6914: Unintentional file and directory creation with directory traversal in tempfile and tmpdir CVE-2018-8777: DoS by large request in WEBrick CVE-2018-8778: Buffer under-read in String#unpack CVE-2018-8779: Unintentional socket creation by poisoned NUL byte in UNIXServer and UNIXSocket CVE-2018-8780: Unintentional directory traversal by poisoned NUL byte in Dir fixes #8747
* community/go1.10: add backportNatanael Copa2018-03-293-0/+279
|
* community/drupal7: security upgrade to 7.58Andy Postnikov2018-03-281-2/+6
| | | | CVE-2018-7600
* community/icinga2: build fixNatanael Copa2018-03-271-1/+1
| | | | use mariadb-dev instead of mariadb-connector-c
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 14:03:49 +0000