aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* main/lcms2: security fix (CVE-2018-16435)Leonardo Arena2018-11-062-4/+178
| | | | Fixes #9444
* main/pango: security fix (CVE-2018-15120)Leonardo Arena2018-11-062-3/+46
| | | | Fixes #9449
* main/tiff: security fixesLeonardo Arena2018-11-063-2/+154
| | | | | | (CVE-2018-10779, CVE-2018-17100, CVE-2018-17101) Fixes #9584
* main/curl: security fixesLeonardo Arena2018-11-064-2/+95
| | | | | | (CVE-2018-16839, CVE-2018-16840, CVE-2018-16842) Fixes #9612
* main/icecast: security upgrade to 2.4.4 (CVE-2018-18820)Andy Postnikov2018-11-061-3/+8
|
* main/db: add secfixes comment for unaffected CVEsNatanael Copa2018-11-011-0/+9
| | | | Add comment on issues that does not affect us.
* main/rp-pppoe: update pkgdescNatanael Copa2018-11-011-2/+2
| | | | | | The backslash in pkgdesc confuses lua-aports since: https://git.alpinelinux.org/cgit/lua-aports/commit/?id=93e1f0f41e35a7ae7a8907dd7f6b9e508dca219f https://git.alpinelinux.org/cgit/lua-aports/commit/?id=c11f855f1eb8bac1f22bb4eb36a9e10fe35ecab5
* main/xorg-server: security fix (CVE-2018-14665)Natanael Copa2018-10-292-1/+55
| | | | fixes #9598
* community/wireshark: security upgrade to 2.4.10Natanael Copa2018-10-291-2/+7
| | | | | | CVE-2018-12086, CVE-2018-18227 fixes #9603
* main/apache2: security upgrade to 2.4.35 (CVE-2018-11763)Andy Postnikov2018-10-281-2/+4
| | | | fixes #9578
* main/one-context: upgrade to 0.5.5Jakub Jirutka2018-10-281-3/+3
|
* main/dnsmasq: fix typoLeonardo Arena2018-10-262-3/+3
|
* main/git: security upgrade to 2.18.1 (CVE-2018-17456)Natanael Copa2018-10-241-4/+6
| | | | fixes #9541
* main/libxml2: backport security fixesNatanael Copa2018-10-244-8/+157
| | | | | | | | - CVE-2018-9251 - CVE-2018-14404 - CVE-2018-14567 fixes #9565
* main/tzdata: upgrade to 2018fNatanael Copa2018-10-231-3/+3
|
* community/openjdk8: security upgrade to 3.9.0 (java 8u181b13)J0WI2018-10-231-14/+22
| | | | | | fixes #9314 (cherry picked from commit ded1603ed10749cd90f410f5eba30e91d1c93c6e)
* main/libexif: fix secfixes commentNatanael Copa2018-10-181-1/+1
|
* main/hylafax: fix secfixes commentNatanael Copa2018-10-181-1/+1
|
* main/libssh: security upgrade 0.7.6 - CVE-2018-10933Marvin Steadfast2018-10-181-4/+8
|
* main/ruby: security upgrade to 2.5.2Jakub Jirutka2018-10-182-42/+15
|
* community/ffmpeg: use built-in RTMP supportLeonardo Arena2018-10-151-2/+2
| | | | Fixes #9554
* community/gst-plugins-bad: enable opus supportraschi.alex@gmail.com2018-10-151-0/+1
| | | | | | | | | | * fixes #9262 The issue was not webkit2gtk itself but rather gst-plugins-bad which was built without opus support, youtube uses this codec for 1080p videos. To test run luakit with enable_mediasource = true and try to watch a 1080p video on youtube.
* community/nextcloud: upgrade to 13.0.7Leonardo Arena2018-10-121-2/+2
|
* main/hylafax: security fix (CVE-2018-17141)Leonardo Arena2018-10-092-2/+142
| | | | Fixes #9457
* main/libexif: security fix (CVE-2017-7544)Leonardo Arena2018-10-082-3/+30
| | | | Fixes #9522
* main/strongswan: security fix (CVE-2018-17540)Leonardo Arena2018-10-082-1/+43
| | | | Fixes #9516
* main/libx11: security upgrade to 1.6.6Natanael Copa2018-10-081-4/+11
| | | | | | | | CVE-2018-14598 CVE-2018-14599 CVE-2018-14600 fixes #9534
* community/lua-http: fix wrong depend on lua5.[12]-compat5.3Jakub Jirutka2018-10-071-2/+2
| | | | Fixes #9491 (https://bugs.alpinelinux.org/issues/9491)
* main/duplicity: missing pkgrel bumpJean-Louis Fuchs2018-10-041-1/+1
|
* main/gd: backport security fix for CVE-2018-1000222Natanael Copa2018-10-022-2/+81
| | | | fixes #9499
* main/nss: backport fix for CVE-2018-12384Natanael Copa2018-10-022-2/+88
| | | | fixes #9478
* main/strongswan: bump pkgrelNatanael Copa2018-10-021-2/+2
| | | | | we added fix for CVE-2018-16151, CVE-2018-16152 but forgot to bump pkgrel.
* main/strongswan: backport security fix (CVE-2018-16151, CVE-2018-16152)Natanael Copa2018-10-022-0/+327
| | | | fixes #9484
* main/xen: upgrade to 4.10.2Henrik Riomar2018-10-012-8555/+3
| | | | | | | Remove XSA-270 and XSA-274 from secfix list as they are not in XEN but in the Linux kernel. Remove XSA-271 for the list due to that tha bug is in XAPI and not in XEN.
* community/libreoffice: fix tread stack size issueNatanael Copa2018-10-012-2/+43
| | | | fixes #9488
* main/gcc: patch to remove call to glibc-specific function in Ada libraryIan Douglas Scott2018-09-282-2/+36
| | | | | Musl does not provide a pthread_rwlockattr_setkind_np() function. Fixes #9389
* community/webkit2gtk: security upgrade to 2.20.4Natanael Copa2018-09-271-2/+17
| | | | | | | | | CVE-2018-4246, CVE-2018-4261, CVE-2018-4262, CVE-2018-4263, CVE-2018-4264, CVE-2018-4265, CVE-2018-4266, CVE-2018-4267, CVE-2018-4270, CVE-2018-4272, CVE-2018-4273, CVE-2018-4278, CVE-2018-4284, CVE-2018-12911 fixes #9453
* main/py-requests: upgrade to 2.19.1Fabian Affolter2018-09-271-2/+2
| | | | | | | fixes #9053 fixes #9238 (cherry picked from commit c2ede3db1fe3906163c2a37177c97d28e3b52490)
* main/libnfsidmap: remove due to merge with nfs-utilsNatanael Copa2018-09-262-58/+0
| | | | (cherry picked from commit cd24d5a65b7192c31509c46f38545631fce0afa3)
* main/nfs-utils: drop build dep on libnfsidmap-devHenrik Riomar2018-09-261-4/+31
| | | | | | libnfsidmap-dev has been integrated into nfs-utils since 2.2.1 Fixes: #8487
* main/openssl1.0: upgrade to 1.0.2pNatanael Copa2018-09-253-75/+4
|
* main/libjpeg-turbo: backport security fix (CVE-2018-11813)Natanael Copa2018-09-252-3/+80
| | | | fixes #9428
* main/libjpeg-turbo: Backport fix for CVE-2018-1152Euan Harris2018-09-252-3/+58
| | | | | | | Cherry-pick commit f1322ac from the 1.5.x branch Signed-off-by: Euan Harris <euan.harris@docker.com> (cherry picked from commit 8d429487fdfea72fe6b0e45659274a62fa8c89bd)
* main/asterisk: security upgrade to 15.6.1Timo Teräs2018-09-241-2/+2
| | | | | | AST-2018-009 (CVE-2018-17281): Remote crash in HTTP websocket upgrade (cherry picked from commit d5cca069111b327438185e1bf7507b292a3b931d)
* community/keepalived: upgrade to 2.0.5Roberto Oliveira2018-09-241-2/+2
| | | | | | fixes #9454 (cherry picked from commit bbfbabf7daf1cc35de2ee9c72699d8c9bf4c9025)
* main/ulogd; fix patch and checksumLeonardo Arena2018-09-212-4/+14
|
* main/ipset: fix reloading of existing ipsetsThomas Liske2018-09-212-3/+8
|
* main/libsndfile: security fix (CVE-2018-13139)Leonardo Arena2018-09-192-10/+45
| | | | Partially fixes #9233
* main/postfix: Adding missing m4 build dependencyMarkus Heimbach2018-09-191-2/+2
| | | | | | | | | | | | | | Starting with postfix 3.3 the script src/postconf/extract_cfg.sh needs m4 to successfully build. This leads to the following log output [1] during the package build [2]: extract_cfg.sh: line 89: m4: not found [1]: http://build.alpinelinux.org/buildlogs/build-edge-x86_64/main/postfix/postfix-3.3.1-r0.log [2]: https://pkgs.alpinelinux.org/package/edge/main/x86_64/postfix fixes #9422 (cherry picked from commit aab1d5daf00c8bf56fe99ca09f0a7ea0e5216a31)
* community/php7: security upgrade to 7.2.10Andy Postnikov2018-09-141-3/+3
| | | | (cherry picked from commit 3f15c0b2f2a621e64b025064bd7a67c0e2886d4c)
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-06 02:34:16 +0000