aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* main/nss: add nss-softokn and nss-util pkgconfig filesTimo Teräs2017-02-093-12/+42
| | | | (cherry picked from commit 8e7189a1617d04d056d6936f4924d8ea7b647dc0)
* community/openjdk8: security upgrade to 3.3.0 (java 8 u121)Timo Teräs2017-02-092-54/+68
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | enable sunec (ref #6809) S8138725: Add options for Javadoc generation S8140353: Improve signature checking S8151934, CVE-2017-3231: Resolve class resolution S8156804, CVE-2017-3241: Better constraint checking S8158406: Limited Parameter Processing S8158997: JNDI Protocols Switch S8159507: RuntimeVisibleAnnotation validation S8161218: Better bytecode loading S8161743, CVE-2017-3252: Provide proper login context S8162577: Standardize logging levels S8162973: Better component components S8164143, CVE-2017-3260: Improve components for menu items S8164147, CVE-2017-3261: Improve streaming socket output S8165071, CVE-2016-2183: Expand TLS support S8165344, CVE-2017-3272: Update concurrency support S8166988, CVE-2017-3253: Improve image processing performance S8167104, CVE-2017-3289: Additional class construction refinements S8167223, CVE-2016-5552: URL handling improvements S8168705, CVE-2016-5547: Better ObjectIdentifier validation S8168714, CVE-2016-5546: Tighten ECDSA validation S8168728, CVE-2016-5548: DSA signing improvments S8168724, CVE-2016-5549: ECDSA signing improvments (cherry picked from commit 51235b6d75fcf6e3cea97c71c2f89d79fb0f7d48)
* main/wireshark: security upgrade to 2.2.4 - fixes #6823Sergey Lukin2017-02-081-4/+8
| | | | | CVE-2017-5596: ASTERIX infinite loop CVE-2017-5597: DHCPv6 large loop
* main/git: Upgrade to 2.11.1pbregener2017-02-071-4/+4
| | | | (cherry picked from commit e4a237db89475f7747c8ad13feea37f51a10d7da)
* community/php7-apcu: upgrade to 5.1.8Andy Postnikov2017-02-071-4/+4
| | | | | | | | | | Bugfix release for PHP 7 - fix #207 Segmentation fault in apc_sma_api_free() - fix #221 memory leak - update to apc dashboard (Tyson Andre) https://pecl.php.net/package-changelog.php?package=APCu&release=5.1.8
* main/tcpdump: security upgrade to 4.9.0 - fixes #6812Sergey Lukin2017-02-071-5/+50
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | CVE-2016-7922 (arbitrary code execution) CVE-2016-7923 (arbitrary code execution) CVE-2016-7924 (arbitrary code execution) CVE-2016-7925 (arbitrary code execution) CVE-2016-7926 (arbitrary code execution) CVE-2016-7927 (arbitrary code execution) CVE-2016-7928 (arbitrary code execution) CVE-2016-7929 (arbitrary code execution) CVE-2016-7930 (arbitrary code execution) CVE-2016-7931 (arbitrary code execution) CVE-2016-7932 (arbitrary code execution) CVE-2016-7933 (arbitrary code execution) CVE-2016-7934 (arbitrary code execution) CVE-2016-7935 (arbitrary code execution) CVE-2016-7936 (arbitrary code execution) CVE-2016-7937 (arbitrary code execution) CVE-2016-7938 (arbitrary code execution) CVE-2016-7939 (arbitrary code execution) CVE-2016-7940 (arbitrary code execution) CVE-2016-7973 (arbitrary code execution) CVE-2016-7974 (arbitrary code execution) CVE-2016-7975 (arbitrary code execution) CVE-2016-7983 (arbitrary code execution) CVE-2016-7984 (arbitrary code execution) CVE-2016-7985 (arbitrary code execution) CVE-2016-7986 (arbitrary code execution) CVE-2016-7992 (arbitrary code execution) CVE-2016-7993 (arbitrary code execution) CVE-2016-8574 (arbitrary code execution) CVE-2016-8575 (arbitrary code execution) CVE-2017-5202 (arbitrary code execution) CVE-2017-5203 (arbitrary code execution) CVE-2017-5204 (arbitrary code execution) CVE-2017-5205 (arbitrary code execution) CVE-2017-5341 (arbitrary code execution) CVE-2017-5342 (arbitrary code execution) CVE-2017-5482 (arbitrary code execution) CVE-2017-5483 (arbitrary code execution) CVE-2017-5484 (arbitrary code execution) CVE-2017-5485 (arbitrary code execution) CVE-2017-5486 (arbitrary code execution)
* main/wavpack: security upgrade to 5.1.0 - fixes #6818Sergey Lukin2017-02-071-13/+17
| | | | | | | CVE-2016-10169: global buffer overread in read_code / read_words.c CVE-2016-10170: Heap out of bounds read in WriteCaffHeader / caff.c CVE-2016-10171: heap out of bounds read in unreorder_channels / wvunpack.c CVE-2016-10172: Heap out of bounds read in read_new_config_info / open_utils.c
* main/libevent: security fixes #6799Sergey Lukin2017-02-074-9/+290
| | | | | | CVE-2016-10195: dns remote stack overread vulnerability CVE-2016-10196: (stack) buffer overflow in evutil_parse_sockaddr_port() CVE-2016-10197: out-of-bounds read in search_make_new()
* community/salt: security upgrade to 2016.11.2 - fixes #6803Sergey Lukin2017-02-061-4/+11
| | | | | CVE-2017-5192: local_batch client external authentication not respected CVE-2017-5200: Salt-api allows arbitrary command execution on a salt-master via Salt's ssh_client
* community/chromium: security upgrade to 56.0.2924.76Jakub Jirutka2017-02-022-7/+70
| | | | fixes #6787
* main/apk-tools: fix error message short readNatanael Copa2017-02-022-4/+45
| | | | | | also triggers rebuild which might fix apk.static (ref #6795) (cherry picked from commit 5ef7a332f8186986761c3280b8b2c2bf1c02f230)
* main/xen: fix secdb commentNatanael Copa2017-02-011-4/+4
| | | | replace tabs with space
* main/libarchive: security fixes #6791Sergei Lukin2017-02-012-5/+40
| | | | CVE-2017-5601: Out of bounds read in lha_read_file_header_1() function
* main/ansible: security upgrade to 2.2.1.0 - fixes #6783Sergei Lukin2017-02-011-4/+9
| | | | CVE-2016-9587: host to controller command execution vulnerability
* main/lcms2: security fixes #6778Sergei Lukin2017-02-012-9/+39
| | | | CVE-2016-10165: Out-of-bounds read in Type_MLU_Read()
* main/bzip2: fix secfixes commentNatanael Copa2017-02-011-1/+2
|
* main/ulogd: bump pkgrel to build ulogd_output_PCAP.soBartłomiej Piotrowski2017-02-011-1/+1
| | | | | | For some reason 3.5 builders failed to build ulogd_output_PCAP.so properly, while it is present in both 3.4 and edge. Simple rebuild fixes that.
* main/lighttpd: upgrade to 1.4.45Łukasz Jendrysik2017-01-311-4/+4
| | | | (cherry picked from commit 5f63fb537b4d2008af0fea3d3035ab03d22748ab)
* main/lighttpd: upgrade to 1.4.44André Klitzing2017-01-311-4/+4
| | | | (cherry picked from commit 2cc0910fda6fa2a5050af4239eef196d797e68a2)
* community/firefox-esr: security upgrade to 45.7.0 - fixes #6747Sergei Lukin2017-01-271-9/+22
| | | | | | | | | | | | CVE-2017-5373: Memory safety bugs fixed in Firefox 51 and Firefox ESR 45.7 CVE-2017-5375: Excessive JIT code allocation allows bypass of ASLR and DEP CVE-2017-5376: Use-after-free in XSL CVE-2017-5378: Pointer and frame data leakage of Javascript objects CVE-2017-5380: Potential use-after-free during DOM manipulations CVE-2017-5383: Location bar spoofing with unicode characters CVE-2017-5386: WebExtensions can use data: protocol to affect other extensions CVE-2017-5390: Insecure communication methods in Developer Tools JSON viewer CVE-2017-5396: Use-after-free with Media Decoder
* scripts/mkimg: raspberry pi bootloader 2017-01-25Timo Teräs2017-01-271-1/+1
| | | | (cherry picked from commit 5164608aabae7bd063a7a58573e2e297c8a66584)
* community/borgbackup: security upgrade to 1.0.9 (CVE-2016-10099,CVE-2016-10100)Natanael Copa2017-01-271-4/+4
| | | | fixes #6762
* scripts/mkimage: fix generation of checksumsNatanael Copa2017-01-272-2/+2
| | | | | | we need remove the leading path to file (cherry picked from commit 26766bf9d25397508131386f6db9d727b684a473)
* scripts/mkimage-yaml: fix branchNatanael Copa2017-01-271-5/+11
| | | | | | | | we need get the branch from tag instead of git branch, because we generate releasecandidates and the first stable release from git master and only do the git branch after the release is done. (cherry picked from commit 752bd10135e430259e3fe9bf11e69822210b3fcb)
* scripts/mkimage: fix typo in latest-releases fileNatanael Copa2017-01-271-1/+1
| | | | (cherry picked from commit bdfc1ded4c7586a435b374df8d01d96a3d390b43)
* main/linux-rpi: declare our kernels with ddtk tag for dtbo supportTimo Teräs2017-01-272-5/+5
| | | | (cherry picked from commit 7da0f80150904aec3298e62e0dffdb917153c94d)
* main/openssl: upgrade to 1.0.2kNatanael Copa2017-01-271-5/+5
| | | | (cherry picked from commit 49effa784421467508e5906d4e037c39d311929f)
* ==== release 3.5.1 ====v3.5.1Natanael Copa2017-01-261-1/+1
|
* main/musl: upstream fixes, and add ipv6 features to getentTimo Teräs2017-01-2612-6/+615
| | | | | | fixes #6590 (cherry picked from commit 89a718d88ec7466e721f3bbe9ede5ffe58061d78)
* main/libxpm: security upgrade to 3.5.12 (CVE-2016-10164)Natanael Copa2017-01-261-5/+5
| | | | fixes #6751
* main/zfs-grsec: rebuild against kernel 4.4.45-r0Natanael Copa2017-01-261-2/+2
|
* main/xtables-addons-grsec: rebuild against kernel 4.4.45-r0Natanael Copa2017-01-261-2/+2
|
* main/spl-grsec: rebuild against kernel 4.4.45-r0Natanael Copa2017-01-261-2/+2
|
* main/open-vm-tools-grsec: rebuild against kernel 4.4.45-r0Natanael Copa2017-01-261-2/+2
|
* main/ipfw-grsec: rebuild against kernel 4.4.45-r0Natanael Copa2017-01-261-2/+2
|
* main/drbd9-grsec: rebuild against kernel 4.4.45-r0Natanael Copa2017-01-261-2/+2
|
* main/devicemaster-linux-grsec: rebuild against kernel 4.4.45-r0Natanael Copa2017-01-261-2/+2
|
* main/dahdi-linux-grsec: rebuild against kernel 4.4.45-r0Natanael Copa2017-01-261-2/+2
|
* main/linux-rpi: upgrade to 4.4.45Natanael Copa2017-01-261-4/+4
|
* main/zfs-vanilla: rebuild against kernel 4.4.45-r0Natanael Copa2017-01-261-1/+1
|
* main/spl-vanilla: rebuild against kernel 4.4.45-r0Natanael Copa2017-01-261-1/+1
|
* main/linux-vanilla: upgrade to 4.4.45Natanael Copa2017-01-261-4/+4
|
* main/linux-grsec: upgrade to 4.4.45Natanael Copa2017-01-261-8/+8
|
* main/tiff: security fixes #6734Sergei Lukin2017-01-262-8/+86
| | | | CVE-2017-5225: Heap-buffer overflow in tools/tiffcp via crafted BitsPerSample value
* main/libgit2: security upgrade to 0.24.6 - fixes #6740Sergei Lukin2017-01-262-6/+29
| | | | | | CVE-2016-10128: smart_pkt: verify packet length exceeds PKT_LEN_SIZE CVE-2016-10129: smart_pkt: treat empty packet lines as error CVE-2016-10130: http: check certificate validity before clobbering the error variable
* main/asterisk: fix pjsip module loadingTimo Teräs2017-01-262-17/+126
| | | | | | | ref #6644 (cherry picked from commit c7e134d319bd095176cdcc8f232bc101c4d33253) (cherry picked from commit 702ee464938cd48e962c8963b10967d743c0bcad)
* main/asterisk: cherry-pick upstream follow-up fixes for ASTERISK-24517Timo Teräs2017-01-262-4/+230
| | | | (cherry picked from commit 74cb67a0f5c64a0b2d56a97e61edd436b3cf97dc)
* main/lua-socket: fix udp socket on first sendtoNatanael Copa2017-01-252-4/+57
| | | | | | | | fixes #6603 sent upstream: https://github.com/diegonehab/luasocket/pull/206 (cherry picked from commit 72ccba0e9bd2e371b6356a045431674d471ed5a2)
* main/mkinitfs: fix decrypt of apkovlNatanael Copa2017-01-252-4/+35
| | | | fixes #6689
* main/bind: dont create homedir for bind userNatanael Copa2017-01-252-2/+2
| | | | | | | We dont want copy the content of /etc/skel to /etc/bind fixes #6725 (cherry picked from commit 1328c94d12a24632191f20e762f6ebad5059750b)
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-08 02:49:35 +0000