| Commit message (Collapse) | Author | Age | Files | Lines | ||
|---|---|---|---|---|---|---|
| ... | ||||||
| * | main/ghostscript: fix CVE-2019-10216 | Rasmus Thomsen | 2019-08-13 | 2 | -2/+55 | |
| | | | | | Ref #10726 | |||||
| * | main/pango: security fix (CVE-2019-1010238) | Leonardo Arena | 2019-08-13 | 2 | -3/+45 | |
| | | | | | Fixes #10721 | |||||
| * | main/postgresql: security upgrade to 11.5 | Milan P. Stanić | 2019-08-13 | 1 | -2/+5 | |
| | | | | | | | | | | secfixes CVE-2019-10208, CVE-2019-10209 other upstream bugfixes and improvements Fixes #10722 Signed-off-by: Leonardo Arena <rnalrd@alpinelinux.org> | |||||
| * | community/openjdk8: add missing nss dependency to -jre-base | Jakub Jirutka | 2019-08-12 | 1 | -2/+2 | |
| | | | | | See #10126 and a0a5ffcea690a74b6f8c240d811be43542af60a6 | |||||
| * | main/patch: security fixes | Leonardo Arena | 2019-08-08 | 4 | -9/+301 | |
| | | | | | | | | | CVE-2019-13638, CVE-2018-1000156 Fixes #10695 Update license, remove unsupported configure option | |||||
| * | main/musl: fix secfixes comment | Natanael Copa | 2019-08-07 | 1 | -1/+1 | |
| | | ||||||
| * | main/musl: security fix in i386 math asm (CVE-2019-14697) | Natanael Copa | 2019-08-07 | 2 | -1/+238 | |
| | | | | | fixes #10709 | |||||
| * | main/mariadb: security upgrade to 10.3.17 | J0WI | 2019-08-06 | 2 | -6/+12 | |
| | | | | | | | | | CVE-2019-2805 CVE-2019-2740 CVE-2019-2739 CVE-2019-2737 CVE-2019-2758 | |||||
| * | main/mariadb: upgrade to 10.3.16 | J0WI | 2019-08-06 | 2 | -6/+6 | |
| | | ||||||
| * | main/py-django: security upgrade to 1.11.23 | Leo | 2019-08-06 | 1 | -2/+7 | |
| | | | | | ref #10706 | |||||
| * | main/subversion: security upgrade to 1.12.2 | Leo | 2019-08-06 | 1 | -3/+6 | |
| | | | | | ref #10705 | |||||
| * | main/ansible: security upgrade to 2.7.12 | Rasmus Thomsen | 2019-08-05 | 1 | -4/+20 | |
| | | | | | This fixes CVE-2019-101562, CVE-2019-38287, CVE-2018-16876, CVE 2018-16859, CVE-2018-16837 | |||||
| * | community/openjdk7: add missing patch | Leo | 2019-08-03 | 1 | -0/+24 | |
| | | ||||||
| * | community/pdns: add missing schema file | tcely | 2019-08-03 | 2 | -0/+33 | |
| | | ||||||
| * | community/pdns: security upgrade to 4.1.11 | Leo | 2019-08-03 | 2 | -4/+17 | |
| | | ||||||
| * | community/php7: security upgrade to 7.2.21 - CVE-2019-11041 - CVE-2019-11041 | Andy Postnikov | 2019-08-02 | 1 | -2/+5 | |
| | | ||||||
| * | community/zabbix: upgrade to 4.0.11 | Leonardo Arena | 2019-08-01 | 1 | -2/+2 | |
| | | ||||||
| * | community/openjdk7: security upgrade to 7.221.2.6.18 | J0WI | 2019-07-31 | 1 | -13/+17 | |
| | | ||||||
| * | main/kamailio: fix memleak in mohqueue module | Leonardo Arena | 2019-07-30 | 2 | -1/+19 | |
| | | ||||||
| * | main/redis: security upgrade to 4.0.14 | Leo | 2019-07-30 | 1 | -2/+7 | |
| | | | | | ref #10683 | |||||
| * | main/libebml: add secfixes comment for CVE-2019-13615 | Leo | 2019-07-29 | 1 | -0/+4 | |
| | | | | | ref #10697 | |||||
| * | main/libgcrypt: fix CVE-2019-12904 | Leo | 2019-07-28 | 2 | -5/+485 | |
| | | | | | | ref #10692 Closes GH-9727 | |||||
| * | main/sdl2: security upgrade to 2.0.10 | Leo | 2019-07-26 | 1 | -2/+15 | |
| | | | | | closes #10339 | |||||
| * | community/imagemagick6: security upgrade to 6.9.10.55 | J0WI | 2019-07-24 | 1 | -2/+28 | |
| | | ||||||
| * | community/imagemagick6: security upgrade to 6.9.10-53 | J0WI | 2019-07-24 | 1 | -4/+4 | |
| | | ||||||
| * | community/imagemagick6: upgrade to 6.9.10.47 | J0WI | 2019-07-24 | 1 | -7/+2 | |
| | | ||||||
| * | community/firefox-esr: security upgrade to 60.8.0 | J0WI | 2019-07-24 | 1 | -2/+13 | |
| | | ||||||
| * | community/firefox-esr: security upgrade to 60.7.2 (CVE-2019-11708) | J0WI | 2019-07-24 | 1 | -2/+4 | |
| | | | | | fixes #10601 | |||||
| * | community/firefox-esr: security upgrade to 60.7.1 (CVE-2019-11707) | Natanael Copa | 2019-07-24 | 1 | -2/+4 | |
| | | ||||||
| * | community/firefox-esr: upgrade to 60.7.0 | Sören Tempel | 2019-07-24 | 1 | -2/+19 | |
| | | | | | See https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/ | |||||
| * | community/firefox-esr: upgrade to 60.6.2 | Sören Tempel | 2019-07-24 | 1 | -2/+2 | |
| | | | | | | | This re-enables web extensions. See: https://www.mozilla.org/en-US/firefox/60.6.2/releasenotes/ | |||||
| * | main/libtasn1: security upgrade to 4.14 | Leo | 2019-07-24 | 2 | -62/+8 | |
| | | | | | | | - CVE-2018-1000654 Fixes #10519 | |||||
| * | main/zeromq: security upgrade to 4.3.2 | Leo | 2019-07-23 | 1 | -7/+7 | |
| | | | | | fixes #10687 | |||||
| * | main/patch: fix CVE-2019-13636 | Leo | 2019-07-23 | 2 | -2/+115 | |
| | | | | | fixes #10688 | |||||
| * | main/libjpeg-turbo: backport fix for CVE-2018-14498 | Leo | 2019-07-22 | 2 | -2/+116 | |
| | | ||||||
| * | main/polkit: backport fix for CVE-2019-6133 | Leo | 2019-07-22 | 2 | -1/+162 | |
| | | ||||||
| * | main/libcroco: fix a few CVEs | Leo | 2019-07-22 | 4 | -3/+148 | |
| | | | | | | | | | | - CVE-2017-7960 - CVE-2017-7961 - CVE-2017-8834 - CVE-2017-8871 Fixes https://gitlab.alpinelinux.org/alpine/aports/issues/10564 | |||||
| * | main/py-django: security upgrade to 1.11.22 (CVE-2019-12781) | Natanael Copa | 2019-07-22 | 1 | -2/+4 | |
| | | | | | fixes #10676 | |||||
| * | community/gvfs: backport fixes for a few CVEs | Leo | 2019-07-22 | 5 | -3/+354 | |
| | | | | | | | | - CVE-2019-12795 - CVE-2019-12449 - CVE-2019-12447 - CVE-2019-12448 | |||||
| * | community/openexr: fix CVE-2018-18444 | Leo | 2019-07-21 | 2 | -3/+33 | |
| | | | | | Fixes https://gitlab.alpinelinux.org/alpine/aports/issues/10395 | |||||
| * | community/libraw: add missing CVEs to secfixes comment | Leo | 2019-07-21 | 1 | -0/+3 | |
| | | ||||||
| * | community/docker: upgrade to 18.09.8 | Jake Buchholz | 2019-07-20 | 1 | -10/+13 | |
| | | | | | | | | https://github.com/docker/docker-ce/releases/tag/v18.09.8 * Fix CVE-2019-13509 in DebugRequestMiddleware: unconditionally scrub data field. Also, compile docker engine with seccomp. | |||||
| * | main/alpine-git-mirror-syncd: security upgrade to 0.3.1 | Jakub Jirutka | 2019-07-17 | 1 | -3/+3 | |
| | | ||||||
| * | community/webkit2gtk: enable on x86 | Natanael Copa | 2019-07-17 | 1 | -1/+4 | |
| | | | | | | Enable x86 and work around out of meomory error by disable _FORTIFY_SOURCE. | |||||
| * | community/webkit2gtk: upgrade to 2.24.3 and enable on arm | Natanael Copa | 2019-07-17 | 2 | -46/+16 | |
| | | | | | | | | - build with MinSizeRel and -g1 to reduce memory usage during compile - simplify cmake opts. default seems to do the right thing nowdays - use nijna - remove patch that apparetnly is not needed anymore | |||||
| * | community/webkit2gtk: upgrade to 2.24.2 | Rasmus Thomsen | 2019-07-17 | 5 | -41/+70 | |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Disable armv7/armhf, due to using a 32-bit kernel these arches can't allocate enough memory during compilation for the massive compilation units webkit2gtk does. We'll have to wait for 2.26.x to allow compilation without unified sources to upgrade these arches. * Disable GTK_DOC, which fails to build * Disable system malloc on some arches. There were typos in the options anyway, so they haven't done anything anyway. System malloc is discouraged by upstream since bmalloc not only performs better it also has some security related advantages. fixes the following CVEs: * CVE-2019-6251 * CVE-2019-8506 * CVE-2019-8524 * CVE-2019-8535 * CVE-2019-8536 * CVE-2019-8544 * CVE-2019-8551 * CVE-2019-8558 * CVE-2019-8559 * CVE-2019-8563 * CVE-2019-11070 Co-authored-by: TBK <tbk@jjtc.eu> | |||||
| * | main/avahi: fix CVE-2017-6519 and CVE-2018-1000845 | Leo | 2019-07-17 | 2 | -3/+38 | |
| | | | | | Fixes #9241 | |||||
| * | community/zabbix: upgrade to 4.0.10 | Leonardo Arena | 2019-07-17 | 1 | -2/+2 | |
| | | ||||||
| * | community/drupal7: add secfixes comment for CVE-2019-11358 | Leo | 2019-07-16 | 1 | -0/+1 | |
| | | ||||||
| * | community/sox: backport fix for CVEs | Leo | 2019-07-16 | 4 | -2/+145 | |
| | | | | | | | - CVE-2019-8355 - CVE-2019-8356 - CVE-2019-8357 | |||||
 |
index : aports | |
| Main aports tree | gitolite |
| aboutsummaryrefslogtreecommitdiffstats |