Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | ==== release 2.4.11 ====v2.4.11 | Natanael Copa | 2013-05-20 | 1 | -1/+1 |
| | |||||
* | main/util-linux: security fix (CVE-2013-0157) | Natanael Copa | 2013-05-20 | 5 | -2/+281 |
| | | | | fixes #1827 | ||||
* | main/open-vm-tools-vserver: rebuild against kernel 3.4.46-r0 | Natanael Copa | 2013-05-20 | 1 | -1/+1 |
| | |||||
* | main/dahdi-linux-vserver: rebuild against kernel 3.4.46-r0 | Natanael Copa | 2013-05-20 | 1 | -1/+1 |
| | |||||
* | main/linux-vserver: upgrade to 3.4.46 | Natanael Copa | 2013-05-20 | 2 | -4/+4 |
| | |||||
* | main/xtables-addons-grsec: rebuild against kernel 3.4.46-r0 | Natanael Copa | 2013-05-20 | 1 | -1/+1 |
| | |||||
* | main/open-vm-tools-grsec: rebuild against kernel 3.4.46-r0 | Natanael Copa | 2013-05-20 | 1 | -1/+1 |
| | |||||
* | main/dahdi-linux-grsec: rebuild against kernel 3.4.46-r0 | Natanael Copa | 2013-05-20 | 1 | -1/+1 |
| | |||||
* | main/linux-grsec: upgrade to 3.4.46 | Natanael Copa | 2013-05-20 | 3 | -174/+99 |
| | |||||
* | main/xen: security fix (CVE-2013-2072) | Natanael Copa | 2013-05-20 | 2 | -1/+53 |
| | | | | | ref #1900 fixes #1903 | ||||
* | main/openswan: securiy fix remote buffer overflow in atodn() (CVE-2013-2053) | Natanael Copa | 2013-05-17 | 6 | -1/+849 |
| | | | | | | patches are from http://libreswan.org/security/CVE-2013-2053/ fixes #1897 | ||||
* | main/openswan: remove execute permisions from /etc/ipsec.conf | Natanael Copa | 2013-05-17 | 1 | -2/+7 |
| | | | | (cherry picked from commit fee7a639655080bccd7eb7e990e24a790919bd3c) | ||||
* | main/mysql: security upgrade to 5.5.31 (CVE-2013-1502...) | Natanael Copa | 2013-05-16 | 1 | -2/+2 |
| | | | | fixes #1887 | ||||
* | main/mesa: security upgrade to 8.0.5 (CVE-2012-5129) | Natanael Copa | 2013-05-16 | 3 | -12/+12 |
| | | | | fixes #1890 | ||||
* | main/openvpn: security fix (CVE-2013-2061) | Natanael Copa | 2013-05-16 | 2 | -2/+85 |
| | | | | fixes #1880 | ||||
* | main/open-vm-tools-vserver: rebuild against kernel 3.4.45-r0 | Natanael Copa | 2013-05-16 | 1 | -1/+1 |
| | |||||
* | main/dahdi-linux-vserver: rebuild against kernel 3.4.45-r0 | Natanael Copa | 2013-05-16 | 1 | -1/+1 |
| | |||||
* | main/linux-vserver: security upgrade to 3.4.45 (CVE-2013-2094) | Natanael Copa | 2013-05-16 | 2 | -3/+26169 |
| | | | | fixes #1872 | ||||
* | main/xtables-addons-grsec: rebuild against kernel 3.4.45-r0 | Natanael Copa | 2013-05-15 | 1 | -1/+1 |
| | |||||
* | main/open-vm-tools-grsec: rebuild against kernel 3.4.45-r0 | Natanael Copa | 2013-05-15 | 1 | -1/+1 |
| | |||||
* | main/dahdi-linux-grsec: rebuild against kernel 3.4.45-r0 | Natanael Copa | 2013-05-15 | 1 | -1/+1 |
| | |||||
* | main/linux-grsec: security upgrade to 3.4.45 | Natanael Copa | 2013-05-15 | 2 | -320/+304 |
| | | | | fixes #1861 | ||||
* | main/subversion: security upgrade to 1.7.9 ↵ | Natanael Copa | 2013-05-03 | 1 | -2/+2 |
| | | | | | | (CVE-2013-1845,CVE-2013-1846,CVE-2013-1847,CVE-2013-1849) fixes #1823 | ||||
* | main/subversion: upgrade to 1.7.7 | Natanael Copa | 2013-05-03 | 2 | -20/+24 |
| | | | | | | | | (cherry picked from commit 24794fd52d46a1d56ae3d95d324bd5570a5eaa85) Conflicts: main/subversion/APKBUILD | ||||
* | main/openjdk: security upgrade to icedtea 1.11.11 | Natanael Copa | 2013-05-01 | 2 | -5/+22 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | fixes #1803 icedtea6-1.11.11: RH952389: Temporary files created with insecure permissions icedtea6-1.11.10: S6657673, CVE-2013-1518: Issues with JAXP S7200507: Refactor Introspector internals S8000724, CVE-2013-2417: Improve networking serialization S8001031, CVE-2013-2419: Better font processing S8001040, CVE-2013-1537: Rework RMI model S8001322: Refactor deserialization S8001329, CVE-2013-1557: Augment RMI logging S8003335: Better handling of Finalizer thread S8003445: Adjust JAX-WS to focus on API S8003543, CVE-2013-2415: Improve processing of MTOM attachments S8004261: Improve input validation S8004336, CVE-2013-2431: Better handling of method handle intrinsic frames S8004986, CVE-2013-2383: Better handling of glyph table S8004987, CVE-2013-2384: Improve font layout S8004994, CVE-2013-1569: Improve checking of glyph table S8005432: Update access to JAX-WS S8005943: (process) Improved Runtime.exec S8006309: More reliable control panel operation S8006435, CVE-2013-2424: Improvements in JMX S8006790: Improve checking for windows S8006795: Improve font warning messages S8007406: Improve accessibility of AccessBridge S8007617, CVE-2013-2420: Better validation of images S8007667, CVE-2013-2430: Better image reading S8007918, CVE-2013-2429: Better image writing S8009063, CVE-2013-2426: Improve reliability of ConcurrentHashMap S8009305, CVE-2013-0401: Improve AWT data transfer S8009699, CVE-2013-2421: Methodhandle lookup S8009814, CVE-2013-1488: Better driver management S8009857, CVE-2013-2422: Problem with plugin icedtea6-1.11.9: S8007014, CVE-2013-0809: Improve image handling S8007675, CVE-2013-1493: Improve color conversion icedtea6-1.11.8: S8006446, CVE-2013-1486: Restrict MBeanServer access S8006777, CVE-2013-0169: Improve TLS handling of invalid messages S8007688: Blacklist known bad certificate icedtea6-1.11.7: (bugfixes only) icedtea6-1.11.6: S6563318, CVE-2013-0424: RMI data sanitization S6664509, CVE-2013-0425: Add logging context S6664528, CVE-2013-0426: Find log level matching its name or value given at construction time S6776941: CVE-2013-0427: Improve thread pool shutdown S7141694, CVE-2013-0429: Improving CORBA internals S7173145: Improve in-memory representation of splashscreens S7186945: Unpack200 improvement S7186946: Refine unpacker resource usage S7186948: Improve Swing data validation S7186952, CVE-2013-0432: Improve clipboard access S7186954: Improve connection performance S7186957: Improve Pack200 data validation S7192392, CVE-2013-0443: Better validation of client keys S7192393, CVE-2013-0440: Better Checking of order of TLS Messages S7192977, CVE-2013-0442: Issue in toolkit thread S7197546, CVE-2013-0428: (proxy) Reflect about creating reflective proxies S7200491: Tighten up JTable layout code S7200500: Launcher better input validation S7201064: Better dialogue checking S7201066, CVE-2013-0441: Change modifiers on unused fields S7201068, CVE-2013-0435: Better handling of UI elements S7201070: Serialization to conform to protocol S7201071, CVE-2013-0433: InetSocketAddress serialization issue S8000210: Improve JarFile code quality S8000537, CVE-2013-0450: Contextualize RequiredModelMBean class S8000540, CVE-2013-1475: Improve IIOP type reuse management S8000631, CVE-2013-1476: Restrict access to class constructor S8001235, CVE-2013-0434: Improve JAXP HTTP handling S8001242: Improve RMI HTTP conformance S8001307: Modify ACC_SUPER behavior S8001972, CVE-2013-1478: Improve image processing S8002325, CVE-2013-1480: Improve management of images icedtea6-1.11.5: S6631398, CVE-2012-3216: FilePermission improved path checking S7093490: adjust package access in rmiregistry S7143535, CVE-2012-5068: ScriptEngine corrected permissions S7167656, CVE-2012-5077: Multiple Seeders are being created S7169884, CVE-2012-5073: LogManager checks do not work correctly for sub-types S7169888, CVE-2012-5075: Narrowing resource definitions in JMX RMI connector S7172522, CVE-2012-5072: Improve DomainCombiner checking S7186286, CVE-2012-5081: TLS implementation to better adhere to RFC S7189103, CVE-2012-5069: Executors needs to maintain state S7189490: More improvements to DomainCombiner checking S7189567, CVE-2012-5085: java net obselete protocol S7192975, CVE-2012-5071: Conditional usage check is wrong S7195194, CVE-2012-5084: Better data validation for Swing S7195917, CVE-2012-5086: XMLDecoder parsing at close-time should be improved S7195919, CVE-2012-5979: (sl) ServiceLoader can throw CCE without needing to create instance S7198296, CVE-2012-5089: Refactor classloader usage S7158800: Improve storage of symbol tables S7158801: Improve VM CompileOnly option S7158804: Improve config file parsing S7176337: Additional changes needed for 7158801 fix S7198606, CVE-2012-4416: Improve VM optimization Conflicts: main/openjdk6/APKBUILD | ||||
* | main/clamav: security upgrade to 0.97.8 (fixes #1769) | Natanael Copa | 2013-04-25 | 1 | -3/+3 |
| | |||||
* | main/clamav: don't ship and package with old database | Natanael Copa | 2013-04-25 | 1 | -7/+6 |
| | | | | | | | | | We still keep the clamav-db package for compatility reasons. (cherry picked from commit a2f933d8f1bbd6bdaee36d264783194222928670) Conflicts: main/clamav/APKBUILD | ||||
* | main/roundcubemail: security upgrade to 0.7.4 | Natanael Copa | 2013-04-25 | 1 | -2/+2 |
| | | | | fixes #1740 | ||||
* | main/xorg-server: security fix (CVE-2013-1940) | Natanael Copa | 2013-04-25 | 2 | -2/+39 |
| | | | | fixes #1795 | ||||
* | main/tinc: security upgrade to 1.0.21 (CVE-2013-1428) | Natanael Copa | 2013-04-25 | 1 | -2/+2 |
| | | | | fixes #1817 | ||||
* | main/acf-weblog: upgrade to 0.6.4 | Ted Trask | 2013-04-25 | 1 | -2/+6 |
| | |||||
* | main/libarchive: security fix (CVE-2013-0211) | Natanael Copa | 2013-04-24 | 2 | -3/+46 |
| | | | | fixes #1808 | ||||
* | main/poppler: security fix (CVE-2013-1788,CVE-2013-1790) | Natanael Copa | 2013-04-17 | 3 | -3/+115 |
| | | | | fixes #1784 | ||||
* | main/curl: security fix (CVE-2013-1944) | Natanael Copa | 2013-04-12 | 2 | -3/+62 |
| | | | | fixes #1779 | ||||
* | main/automake: security upgrade to 1.11.6 (CVE-2012-3386) | Natanael Copa | 2013-04-12 | 1 | -2/+2 |
| | | | | fixes #1762 | ||||
* | main/ruby-activerecord: security upgrade to 2.3.18 (CVE-2013-1854) | Natanael Copa | 2013-04-12 | 1 | -2/+2 |
| | | | | fixes #1749 | ||||
* | main/ruby-rails: security upgrade to 2.3.18 (CVE-2013-1855,CVE-2013-1857) | Natanael Copa | 2013-04-12 | 1 | -1/+1 |
| | | | | fixes #1745 | ||||
* | main/smokeping: yet another XSS fix | Natanael Copa | 2013-04-12 | 2 | -3/+33 |
| | | | | http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=659899#155 | ||||
* | main/smokeping: security upgrade to 2.6.9 (CVE-2012-0790) | Natanael Copa | 2013-04-12 | 5 | -78/+5 |
| | | | | fixes #1711 | ||||
* | main/freetype: security upgrade to 2.4.11 (CVE-2012-5668,CVE-2012-5669) | Natanael Copa | 2013-04-12 | 1 | -2/+2 |
| | | | | fixes #1705 | ||||
* | main/nagios: security fix (CVE-2012-6096) | Natanael Copa | 2013-04-12 | 2 | -3/+55 |
| | | | | fixes #1701 | ||||
* | main/ruby-activerecord: security upgrade to 2.3.17 (CVE-2013-0276) | Natanael Copa | 2013-04-12 | 1 | -2/+2 |
| | | | | fixes #1687 | ||||
* | main/samba: security upgrade to 3.6.13 (CVE-2013-0213,CVE-2013-0214) | Natanael Copa | 2013-04-12 | 1 | -2/+2 |
| | | | | fixes #1682 | ||||
* | main/nrpe: security upgrade to 2.14 (CVE-2013-1362) | Natanael Copa | 2013-04-12 | 1 | -2/+2 |
| | | | | fixes #1674 | ||||
* | main/apache2: security upgrade to 2.2.24 (CVE-2012-3499,CVE-2012-4558) | Natanael Copa | 2013-04-11 | 1 | -2/+2 |
| | | | | fixes #1669 | ||||
* | main/dhcp: security upgrade to 4.2.5_p1 (CVE-2013-2266) | Natanael Copa | 2013-04-11 | 1 | -2/+5 |
| | | | | fixes #1729 | ||||
* | main/php: security upgrade to 5.3.23 (CVE-2013-1635,CVE-2013-1643) | Natanael Copa | 2013-04-11 | 1 | -3/+3 |
| | | | | fixes #1665 | ||||
* | main/libxml2: fix (CVE-2013-0338) | Leonardo Arena | 2013-04-11 | 2 | -2/+155 |
| | | | | fixes #1660 | ||||
* | main/bind: security upgrade to 9.9.2_p2 (CVE-2013-2266) | Natanael Copa | 2013-04-11 | 1 | -2/+18 |
| | | | | fixes #1735 | ||||
* | main/libxslt: security upgrade to 1.1.28 (CVE-2012-6139) | Natanael Copa | 2013-04-11 | 2 | -137/+4 |
| | | | | fixes #1757 |