aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* ==== release 3.3.2 ====v3.3.2Natanael Copa2016-03-181-1/+1
|
* main/openrc: use overlayfs instead of unionfs for modloopMark White2016-03-182-10/+11
| | | | | | fixes #5144 (cherry picked from commit 945bf9e18b6cc6525aeee325047d9e7a833fa879)
* main/openrc: mount efivars read-onlyNatanael Copa2016-03-182-1/+18
| | | | | | | unintentional writes to efivars may result in bricked hardware. mount it read-only to play safe. (cherry picked from commit 53694c791e7c7112a0d8e4b47bdca8fd03edea4e)
* main/openssh: security upgrade to 7.2_p2Natanael Copa2016-03-182-8/+8
| | | | http://www.openssh.com/txt/x11fwd.adv
* main/openssh: upgrade to 7.2_p1Valery Kartel2016-03-183-16/+16
| | | | (cherry picked from commit 62e040d84cf4924e032eef198681fccdb54bba4b)
* main/network-extras: pull in usb-modeswitchNatanael Copa2016-03-181-2/+2
| | | | | | | needed for some usb modems fixes #5277 (cherry picked from commit 2cd7a670e3ed36724d282fc405fd293868df336c)
* main/cacti: security upgrade to 0.8.8g (CVE-2015-8369,CVE-2015-8377)Natanael Copa2016-03-181-13/+5
| | | | fixes #4994
* main/ulogd: fix fortify found memcpy misuse causing crashTimo Teräs2016-03-182-2/+18
| | | | | | fixes #5261 (cherry picked from commit d7f68bf531b9d57dbf3aa5608f6acb3e8d58c273)
* main/ulogd: Added description to init.d script and removed net dependencyDaniele Coli2016-03-182-5/+7
| | | | | | | | | | Added description to init.d script in order to make it compliant with rc-system and avoid annoying warning messages on syslog. Deleted net dependency in order to avoid the error on startup "cannot start ulogd as networking would not start", since the required before firewall and firewall start before net. (cherry picked from commit 790b1d3a815f40b9cb932642ebeef0f5688582ce)
* main/usb-modeswitch: split out udev filesNatanael Copa2016-03-181-5/+14
| | | | | | | the usb_modeswitch_dispatcher is a tcl script but is only needed by udev. We split it out so we avoid the tcl dependency. ref #5277
* testing/zfs-grsec: rebuild against kernel 4.1.19-r0Natanael Copa2016-03-151-1/+1
|
* testing/virtualbox-additions-grsec: rebuild against kernel 4.1.19-r0Natanael Copa2016-03-151-1/+1
|
* testing/spl-grsec: rebuild against kernel 4.1.19-r0Natanael Copa2016-03-151-1/+1
|
* testing/ipt-netflow-grsec: rebuild against kernel 4.1.19-r0Natanael Copa2016-03-151-1/+1
|
* testing/flashcache-grsec: rebuild against kernel 4.1.19-r0Natanael Copa2016-03-151-1/+1
|
* main/xtables-addons-grsec: rebuild against kernel 4.1.19-r0Natanael Copa2016-03-151-1/+1
|
* main/open-vm-tools-grsec: rebuild against kernel 4.1.19-r0Natanael Copa2016-03-151-1/+1
|
* main/ipfw-grsec: rebuild against kernel 4.1.19-r0Natanael Copa2016-03-151-1/+1
|
* main/devicemaster-linux-grsec: rebuild against kernel 4.1.19-r0Natanael Copa2016-03-151-1/+1
|
* main/dahdi-linux: upgrade to 2.11.1Natanael Copa2016-03-151-4/+4
|
* main/dahdi-linux-grsec: rebuild against kernel 4.1.19-r0, upgrade dahdiTimo Teräs2016-03-151-5/+5
|
* main/linux-grsec: upgrade to 4.1.19Timo Teräs2016-03-151-4/+4
|
* main/samba: security upgrade to 4.2.9 (CVE-2015-7560, CVE-2016-0771). Fixes ↵Leonardo Arena2016-03-151-4/+4
| | | | | | #5273 (cherry picked from commit e44afa81c87bd2e939a9335a4a0f79e9d2e29a6b)
* main/linux-vanilla: enable posix mqueue for x86 and x86_64Marc Vertes2016-03-153-9/+11
| | | | | | | This is required to run docker. It is already enabled in grsec flavor and armhf. (cherry picked from commit 0c79deaae0f53d08729af9bc0d235efbdff86826)
* main/linux-vanilla: upgrade to 4.1.19Timo Teräs2016-03-151-4/+4
|
* main/linux-rpi: upgrade to 4.1.19, refresh rpi patchTimo Teräs2016-03-153-20/+18
| | | | | | includes some support for rpi3, ref #5197 (cherry picked from commit 95b531023cb701a838f3f4a58f6b10fe2d54a1ee)
* main/owncloud: upgrade to 8.2.3Leonardo Arena2016-03-141-36/+37
|
* main/putty: security upgrade to 0.67 (CVE-2016-2563). Fixes #5251Leonardo Arena2016-03-141-4/+4
| | | | (cherry picked from commit 7c18b536e1c1329ab8466eb402c956ebfff315ba)
* main/mkinitfs: upgrade to 3.0.4Natanael Copa2016-03-141-4/+4
| | | | | | (cherry picked from commit 8dcf8465f7a1718125caeeb46c247147fcfea2b8) fixes #5192
* main/acf-quagga: upgrade to 0.10.1Ted Trask2016-03-111-6/+6
| | | | (cherry picked from commit 2016bb19c32399d9089e9153ec242f109001f63d)
* main/drupal7: security upgrade to 7.43. Fixes #5239Leonardo Arena2016-03-111-4/+4
| | | | (cherry picked from commit 88647c550362ddfd9fef660d16d75c265df67c8d)
* main/jasper: security fixes (CVE-2016-1577, CVE-2016-2089, CVE-2016-2116). ↵Leonardo Arena2016-03-114-4/+127
| | | | | | Fixes #5233 (cherry picked from commit 244e4d797e740c7fedf8e3e9df9d9d85859b11b4)
* main/acf-provisioning: upgrade to 0.8.11Ted Trask2016-03-111-4/+4
|
* main/libotr: upgrade version to 4.1.1 due to CVE-2016-2851Johannes Matheis2016-03-111-5/+5
| | | | | | fixes #5256 (cherry picked from commit 719fd59bc6e33da1a3fb549e6c4fa24848c34e91)
* main/bind: security upgrade to 9.10.3_p4 ↵Natanael Copa2016-03-111-4/+4
| | | | | | (CVE-2016-1285,CVE-2016-1286,CVE-2016-2088) fixes #5244
* main/owncloud: upgrade to 8.1.6Leonardo Arena2016-03-091-10/+10
|
* main/wireshark: security upgrade to 2.0.2. Fixes #5226Leonardo Arena2016-03-081-4/+4
| | | | | | | | | | | | | | CVE-2015-2529: The iSeries file parser could crash CVE-2016-2521: DLL hijacking CVE-2016-2522: The ASN.1 BER dissector could crash CVE-2016-2523: The DNP3 dissector could go into an infinite loop CVE-2016-2524: The X.509AF dissector could crash CVE-2016-2525: The HTTP/2 dissector could crash CVE-2016-2526: The HiQnet dissector could crash CVE-2016-2527: The 3GPP TS 32.423 Trace file parser could crash CVE-2016-2528: The LBMC dissector could crash CVE-2016-2530, CVE-2016-2531: The RSL dissector could crash CVE-2016-2532: The LLRP dissector could crash
* main/wireshark: security upgrade to 2.0.1. Fixes #5222Leonardo Arena2016-03-081-4/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | CVE-2015-8711: The NBAP dissector could crash CVE-2015-8718: The NLM dissector could crash CVE-2015-8720: ASN.1 BER-based dissectors could crash CVE-2015-8721: Dissectors which use zlib decompression could crash CVE-2015-8722: The SCTP dissector could crash CVE-2015-8723: The 802.11 dissector could crash CVE-2015-8725: The DIAMETER dissector could crash CVE-2015-8726: The VeriWave file parser could crash CVE-2015-8727: The RSVP dissector could crash CVE-2015-8728: The ANSI A and GSM A dissectors could crash CVE-2015-8729: The Ascend file parser could crash CVE-2015-8730: The NBAP dissector could crash CVE-2015-8731: The RSL dissector could crash CVE-2015-8732: The ZigBee ZCL dissector could crash CVE-2015-8733: The Sniffer file parser could crash CVE-2015-8734: The NWP dissector could crash CVE-2015-8735: The Bluetooth Attribute dissector could crash CVE-2015-8736: The MP2T file parser could crash CVE-2015-8737: The MP2T file parser could crash CVE-2015-8738: The S7COMM dissector could crash CVE-2015-8739: The IPMI dissector could crash CVE-2015-8740: The TDS dissector could crash CVE-2015-8741: The PPI dissector could crash CVE-2015-8742:The MS-WSP dissector could crash
* main/squid: fix crash after certain failures. Fixes #5229Leonardo Arena2016-03-082-1/+690
| | | | (cherry picked from commit 8cab9305a33feaccfef5ebbba0c44572d6888305)
* community/openjdk8: fix jre-base packagingTimo Teräs2016-03-071-2/+4
| | | | | | | move plugins out that depend on xorg stuff, and add java-cacerts dependency. fixes #5132. (cherry picked from commit 151f353fdabf94ccb3adc90cdffc184873076198)
* community/openjdk8: fix permissions of *.jarNatanael Copa2016-03-071-5/+5
| | | | | | gnu find seems to not support the '-perm +006' anymore. use '-perm /006' (cherry picked from commit 235ddf2b8ff0aeb8fb3b3fb2c0bf061d05e7924d)
* community/openjdk8: upgrade to 8u72b15Timo Teräs2016-03-071-27/+27
| | | | | | | Fixes CVE-2016-0483, CVE-2016-0494, CVE-2015-8126, CVE-2016-0475, CVE-2016-0402, CVE-2016-0466, CVE-2016-0448, CVE-2015-7575. (cherry picked from commit 148e3b183359c3c5e79671de108907a2d0a0f4e3)
* main/squid: security upgrade to 3.5.15. Fixes #5214Leonardo Arena2016-03-041-4/+4
| | | | (CVE-2016-2569, CVE-2016-2570, CVE-2016-2571, CVE-2016-2572)
* main/cacti: security fix (CVE-2015-8604). Fixes #5202Leonardo Arena2016-03-042-4/+36
| | | | (cherry picked from commit 81eb7e3b062d62dff1b82864cdd42732b50f4a9c)
* main/linux-rpi: upgrade to 4.1.18, and ship -rpi2-devTimo Teräs2016-03-021-21/+18
| | | | | | fixes #5164 (cherry picked from commit bd65e126faa05089bd18b7f19c5d63392d709118)
* main/linux-rpi: upgrade to 4.1.17Timo Teräs2016-03-022-53/+692
| | | | (cherry picked from commit e58b060fb95244ba28880441a379ae69cc2b92c4)
* main/linux-vanilla: upgrade to 4.1.18Natanael Copa2016-03-021-5/+5
|
* testing/zfs-grsec: rebuild against kernel 4.1.18-r0Natanael Copa2016-03-021-1/+1
|
* testing/virtualbox-additions-grsec: rebuild against kernel 4.1.18-r0Natanael Copa2016-03-021-1/+1
|
* testing/spl-grsec: rebuild against kernel 4.1.18-r0Natanael Copa2016-03-021-1/+1
|
generated by cgit v1.2.3 (git 2.25.1) at 2024-04-24 21:05:23 +0000