aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* community/lua-hiredisNathan Angelacos2017-10-304-37/+31
| | | | | | APKBUILD: hiredis.so now loads correctly 0003-: spell compatibility correctly 0004-: add backward compatibility define for luaL_checkint for Lua 5.3+
* main/apk-tools: upgrade to 2.7.4Timo Teräs2017-10-271-2/+2
|
* main/binutils: security fix (CVE-2017-9038)Leonardo Arena2017-10-252-3/+40
| | | | partially fixes #7315
* community/libzip: security fixes (CVE-2017-14107, CVE-2017-12858)Leonardo Arena2017-10-253-4/+78
| | | | fixes #7814
* community/php7: add secinfoLeonardo Arena2017-10-251-0/+8
|
* main/xen: security fixesLeonardo Arena2017-10-255-2/+383
| | | | | | (CVE-2017-14316, CVE-2017-14317, CVE-2017-14318, CVE-2017-14319) fixes #7820
* main/gdk-pixbuf: security upgrade to 2.36.7 (CVE-2017-2862)Leonardo Arena2017-10-251-3/+5
| | | | Fixes #7866
* main/newsbeuter: security fix (CVE-2017-14500)Leonardo Arena2017-10-242-3/+47
| | | | fixes #7877
* community/go: security upgrade to 1.8.4 (CVE-2017-15041,CVE-2017-15042)Natanael Copa2017-10-241-3/+3
| | | | fixes #8043
* main/curl: security upgrade to 7.56.1 (CVE-2017-1000257)Natanael Copa2017-10-241-2/+4
| | | | fixes #8039
* main/samba: security upgrade to 4.6.8Leonardo Arena2017-10-242-49/+9
| | | | | | (CVE-2017-12150, CVE-2017-12151, CVE-2017-12163) fixes #7892
* main/musl: fix CVE-2017-15650Natanael Copa2017-10-232-1/+37
| | | | fixes #8031
* main/strongswan: security fix (CVE-2017-11185)Leonardo Arena2017-10-232-1/+55
| | | | fixes #7903
* main/weechat: security fix (CVE-2017-14727)Leonardo Arena2017-10-232-2/+158
| | | | fixes #7929
* community/one-context: upgrade to 0.5.3Jakub Jirutka2017-10-231-7/+2
|
* community/wireshark: security upgrade to 2.2.10Leonardo Arena2017-10-231-6/+10
| | | | | | | (CVE-2017-15191, CVE-2017-15192, CVE-2017-15193) (CVE-2017-13765, CVE-2017-13766, CVE-2017-13767) fixes #8014 #7911
* main/nginx: upgrade to 1.12.2 (bug fixes)Jakub Jirutka2017-10-231-2/+2
|
* main/mutt: Upgrade to 1.8.3.Przemyslaw Pawelczyk2017-10-201-3/+3
| | | | | | | | | "Mutt 1.8.3 was released on May 30, 2017. This is a bug-fix release, fixing a memory leak, a couple IMAP issues, and a few other small issues." -- mutt.org BTW license name in APKBUILD has been fixed to be conformant to SPDX, that we agreed to use back in June 2017 on #alpine-devel.
* Revert "main/xen,community/rng-tools: remove unicode whitespace from APKBUILDs"William Pitcock2017-10-192-3/+3
| | | | This reverts commit 94eec0c787af9a21f974d849af5a50a9e4969369.
* main/xen,community/rng-tools: remove unicode whitespace from APKBUILDsAndy Chu2017-10-192-3/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fix bugs in 2 packages by removing Unicode whitespace. I found these problems by parsing all APKBUILD scripts with my shell (http://www.oilshell.org/). The problem only occurs if 'make' fails. Here is an excerpt: $ od -c unicode-space.sh 0000000 m a k e | | 302 240 r e t u r n 0000020 1 \n 0000022 \302 \204 is a utf-8 whitespace. No shells accept this -- it's parsed as part of the 'return' word, which makes it an invalid command. $ busybox ash unicode-space.sh make: *** No targets specified and no makefile found. Stop. unicode-space.sh: line 1:  return: not found $ bash unicode-space.sh make: *** No targets specified and no makefile found. Stop. unicode-space.sh: line 1:  return: command not found $ dash unicode-space.sh make: *** No targets specified and no makefile found. Stop. unicode-space.sh: 1: unicode-space.sh:  return: not found Remove '|| return 1' from lines that contained unicode whitespace. abuild now runs with 'set -e'.
* Revert "main/gcr: update project url and modernize"William Pitcock2017-10-191-8/+22
| | | | This reverts commit 7d3171a9ade7e7eba5469d25a350a2cc270bda68.
* main/gcr: update project url and modernizeRoberto Oliveira2017-10-191-22/+8
|
* main/automake: upgrade to 1.15.1André Klitzing2017-10-191-8/+6
|
* main/awall: upgrade to 1.4.8Kaarle Ritvanen2017-10-181-2/+2
|
* main/acf-dnsmasq: upgrade to 0.7.1Ted Trask2017-10-171-5/+3
| | | | (cherry picked from commit dad897776e7acc96e0965ded745980e2e19fd120)
* community/zabbix: upgrade to 3.2.9Leonardo Arena2017-10-171-2/+2
|
* main/hostapd: security fixesLeonardo Arena2017-10-178-17/+993
| | | | | | | | | | | | | | | - CVE-2017-13077 - CVE-2017-13078 - CVE-2017-13079 - CVE-2017-13080 - CVE-2017-13081 - CVE-2017-13082 - CVE-2017-13084 (not applicable) - CVE-2017-13086 - CVE-2017-13087 - CVE-2017-13088 https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt
* main/wpa_supplicant: security upgradeSören Tempel2017-10-169-15/+1038
| | | | | | | | | | | | | | CVE-2017-13077 CVE-2017-13078 CVE-2017-13079 CVE-2017-13080 CVE-2017-13081 CVE-2017-13082 CVE-2017-13086 CVE-2017-13087 CVE-2017-13088 See also: https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt
* main/ncurses: security upgrade to 6.0_p20170930Natanael Copa2017-10-111-13/+18
| | | | | | | | | | | | | | - CVE-2017-11112 - CVE-2017-11113 - CVE-2017-13728 - CVE-2017-13729 - CVE-2017-13730 - CVE-2017-13731 - CVE-2017-13732 - CVE-2017-13733 - CVE-2017-13734 fixes #7967
* main/perl: use system zlib and bzip2Natanael Copa2017-10-111-2/+19
| | | | | | | | | | | The bundled zlib 1.2.8 is vulnerable to: - CVE-2016-9843 - CVE-2016-9841 - CVE-2016-9840 - CVE-2016-9842 Force building with system zlib, and while at it, also do that with bzip2
* main/ghostscript: security upgrade to 9.22. Fixes #7993Francesco Colista2017-10-111-8/+4
|
* community/tor: security fix (CVE-2017-0380). Fixes #7989Francesco Colista2017-10-102-3/+58
|
* community/miniupnpc: security fixes CVE-2017-8798. Fixes #7990Francesco Colista2017-10-102-7/+55
|
* main/perl: security upgrade to 5.24.3 (CVE-2017-12837,CVE-2017-12883)Natanael Copa2017-10-103-1610/+9
| | | | fixes #7898
* main/apk-tools: upgrade to 2.7.3Timo Teräs2017-10-062-39/+2
|
* main/curl: security upgrade to 7.56.0 (CVE-2017-1000254)Natanael Copa2017-10-042-40/+4
| | | | fixes #7962
* main/busybox: backport provides /bin/shNatanael Copa2017-10-041-1/+2
| | | | this makes it easier to mix edge repo with stable.
* main/python3: split out wininst*.exeNatanael Copa2017-10-021-2/+9
| | | | | | | | the wininst is only needed for creating binary distribution for windows and is rarely needed. The precompiled .exe files contains statically linked version of zlib 1.2.8 which is vulnerable. Remove them from main package and save a couple of MB.
* main/php7: disable checks to unblock the builderNatanael Copa2017-10-021-0/+1
|
* main/sqlite: security upgrade to 3.20.1 (CVE-2017-10989)Natanael Copa2017-10-021-2/+6
| | | | fixes #7950
* main/dnsmasq: backport patches for CVE-2017-14491..14496Jakub Jirutka2017-10-028-1/+554
|
* main/php7: disable tests that fails to unblock the builderNatanael Copa2017-10-022-1/+24
|
* community/nextcloud: upgrade to 10.0.3Leonardo Arena2017-09-281-3/+3
|
* community/zabbix: upgrade to 3.2.8Leonardo Arena2017-09-282-16/+4
|
* community/emacs: security upgrade to 25.3. Fixes #7864Francesco Colista2017-09-251-2/+2
|
* main/mkinitfs: fix Makefile to install btrfs.filesJakub Jirutka2017-09-222-3/+16
|
* main/mkinitfs: fix booting from Btrfs RAIDJakub Jirutka2017-09-222-2/+46
| | | | See http://bugs.alpinelinux.org/issues/6903
* main/openjpeg: security upgrade to 2.2.0 and fixesFrancesco Colista2017-09-217-24/+309
| | | | | | | | | | | - CVE-2017-14040 - CVE-2017-14041 - CVE-2017-14151 - CVE-2017-14152 - CVE-2017-14164 Fixes partially #7826. Not yet fixed CVE-2017-14039 since patch is not available for 2.2.0
* main/apache2: fix CVE-2017-9798 aka OptionsbleedDaniel Isaksen2017-09-212-1/+20
|
* main/asterisk: security upgrade to 14.6.2 (CVE-2017-14099)Timo Teräs2017-09-201-2/+2
| | | | AST-2017-008 (CVE-2017-14099): RTP/RTCP information leak
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 09:38:46 +0000