aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* main/openjpeg: security fix for CVE-2017-12982. Fixes #7713Francesco Colista2017-08-232-5/+36
|
* main/kamailio: backport TLS mod patches for LibreSSL from OpenBSDSergey Safarov2017-08-233-1/+136
| | | | (cherry picked from commit 29b8e946b311e0f2712874bb73891477f8a74eaf)
* main/kamailio: Updated package version to 5.0.2. Added kazoo module.Sergey Safarov2017-08-236-268/+25
| | | | (cherry picked from commit ae11ee328c2d7ab250ccebff866c8c120c14775a)
* main/lxterminal: security fix for CVE-2016-10369Daniel Sabogal2017-08-222-3/+35
|
* main/phpldapadmin: secfix for CVE-2017-11107Natanael Copa2017-08-222-16/+39
| | | | fixes #7511
* community/cacti: security upgrade to 1.1.19Natanael Copa2017-08-221-11/+3
| | | | fixes #7690
* main/newsbeuter: security fix for CVE-2017-12904Natanael Copa2017-08-222-2/+44
| | | | fixes #7727
* main/augeas: add secfix commentNatanael Copa2017-08-221-0/+4
|
* main/augeas: security upgrade to 1.8.1 (CVE-2017-7555)Natanael Copa2017-08-221-2/+2
| | | | fixes #7720
* community/virt-manager: fix gobject dependencyShiz2017-08-201-4/+5
|
* main/mariadb: security upgrade to 10.1.26Natanael Copa2017-08-191-3/+13
| | | | | | | | | | | | | fixes #7705 CVE-2017-3636 CVE-2017-3641 CVE-2017-3653 CVE-2017-3308 CVE-2017-3309 CVE-2017-3453 CVE-2017-3456 CVE-2017-3464
* main/mercurial: security upgrade to 4.3.1Natanael Copa2017-08-181-2/+6
| | | | | | | fixes #7692 CVE-2017-1000115 CVE-2017-1000116
* main/pcre: security upgrade to 8.41Natanael Copa2017-08-182-63/+8
| | | | | | CVE-2017-7244 CVE-2017-7245 CVE-2017-7246
* main/supervisor: security upgrade to 3.2.4 (CVE-2017-11610). Fixes #7686Francesco Colista2017-08-171-5/+10
|
* main/goaccess: re-enable geoipNatanael Copa2017-08-151-2/+2
| | | | | | fixes #7587 (cherry picked from commit 79289613b08a2dc8e54e52e92844ad900cb97dc1)
* community/nextcloud: upgrade to 12.0.2Leonardo Arena2017-08-151-2/+2
|
* community/evince: security upgrade to 3.24.1 (CVE-2017-1000083)Natanael Copa2017-08-141-2/+2
| | | | fixes #7545
* main/mkinitfs: fix crc32 module deps for ext4Natanael Copa2017-08-142-2/+37
| | | | | | fixes #7611 (cherry picked from commit 32dd6f16bf1645ffdf1f6019575fc130702fa047)
* main/c-ares: fix for CVE-2017-1000381. Fixes #7526Francesco Colista2017-08-142-5/+52
|
* community/webkit2gtk: security upgrade to 2.16.6Natanael Copa2017-08-141-2/+2
| | | | | | | | | | | | | | | | | CVE-2017-2538 CVE-2017-7039 CVE-2017-7018 CVE-2017-7030 CVE-2017-7037 CVE-2017-7034 CVE-2017-7055 CVE-2017-7056 CVE-2017-7064 CVE-2017-7061 CVE-2017-7048 CVE-2017-7046 fixes #7543
* main/subversion: security upgrade to 1.9.7. Fixes #7668Francesco Colista2017-08-141-4/+9
|
* main/libressl: upgrade to 2.5.5Ole-Martin Bratteng2017-08-141-2/+2
| | | | fixes #7683
* main/postgresql: security upgrade to 9.6.4 ↵Natanael Copa2017-08-141-2/+6
| | | | | | (CVE-2017-7546,CVE-2017-7547,CVE-2017-7548) fixes #7661
* main/libsoup: security upgrade to 2.58.2Francesco Colista2017-08-142-2/+63
| | | | | | CVE-2017-2885 Fixes #7677
* main/lame: fix secfixes commentNatanael Copa2017-08-141-1/+1
|
* main/curl: security upgrade to 7.55.0Natanael Copa2017-08-143-199/+44
| | | | | | | | CVE-2017-1000099 CVE-2017-1000100 CVE-2017-1000101 fixes #7654
* community/firefox-esr: security upgrade to 52.3.0Natanael Copa2017-08-111-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | fixes #7674 CVE-2017-7753: Out-of-bounds read with cached style data and pseudo-elements CVE-2017-7779: Memory safety bugs CVE-2017-7784: Use-after-free with image observers CVE-2017-7785: Buffer overflow manipulating ARIA attributes in DOM CVE-2017-7786: Buffer overflow while painting non-displayable SVG CVE-2017-7787: Same-origin policy bypass with iframes through page reloads CVE-2017-7791: Spoofing following page navigation with data: protocol and modal alerts CVE-2017-7792: Buffer overflow viewing certificates with an extremely long OID CVE-2017-7798: XUL injection in the style editor in devtools CVE-2017-7800: Use-after-free in WebSockets during disconnection CVE-2017-7801: Use-after-free with marquee during window resizing CVE-2017-7802: Use-after-free resizing image elements CVE-2017-7803: CSP containing 'sandbox' improperly applied CVE-2017-7807: Domain hijacking through AppCache fallback CVE-2017-7809: Use-after-free while deleting attached editor DOM node
* main/git: update to 2.13.5 (CVE-2017-1000117)Shiz2017-08-111-2/+6
|
* main/spamassassin: sa-update needs curl or gnu wget. Fixes #7610Francesco Colista2017-08-091-12/+2
|
* main/samba: fix for CVE-2017-11103. Fixes #7533Francesco Colista2017-08-092-3/+48
|
* main/memcached: fix for CVE-2017-9951. Fixes #7641Francesco Colista2017-08-092-3/+51
|
* main/libsndfile: fix for CVE-2017-12562. Fixes #7647Francesco Colista2017-08-092-2/+102
|
* main/libmtp: security fix to 1.1.13Francesco Colista2017-08-091-4/+10
| | | | | | CVE-2017-9831 CVE-2017-9832 Fixes #7551
* community/nextcloud: upgrade to 12.0.1Leonardo Arena2017-08-091-2/+2
|
* main/wireshark: security fix to 2.2.8.Francesco Colista2017-08-081-7/+11
| | | | | | | CVE-2017-11406 CVE-2017-11407 CVE-2017-11408 Fixes #7559
* main/spice: fix for CVE-2017-7506Francesco Colista2017-08-082-3/+163
| | | | | | | | | | | There's no reference to bugs.alpinelinux.org for this alpine version (3.6). Still, it's vulnerable. Backported patches from gentoo: * https://gitweb.gentoo.org/repo/gentoo.git/tree/app-emulation/spice/files/spice-0.13.3-reds-Disconnect-when-receiving-overly-big-ClientMoni.patch * https://gitweb.gentoo.org/repo/gentoo.git/tree/app-emulation/spice/files/spice-0.13.3-reds-Avoid-integer-overflows-handling-monitor-config.patch * https://gitweb.gentoo.org/repo/gentoo.git/tree/app-emulation/spice/files/spice-0.13.3-reds-Avoid-buffer-overflows-handling-monitor-configu.patch
* main/mpg123: security upgrade to 1.25.4 (CVE-2017-9545,CVE-2017-11126)Natanael Copa2017-08-071-2/+7
| | | | fixes #7595
* main/ncurses: fix for CVE-2017-10684 and CVE-2017-10685. Fixes #7564Francesco Colista2017-08-072-5/+215
|
* main/bind: fix for CVE-2017-3142 and CVE-2017-3143. Fixes #7497Francesco Colista2017-08-071-2/+2
|
* main/bind: fix for CVE-2017-3142 and CVE-2017-3143. Fixes #7497Francesco Colista2017-08-072-2/+291
|
* main/jasper: security fix CVE-2017-1000050. Fixes #7573Francesco Colista2017-08-072-11/+24
|
* main/tiff: security upgrade to 4.0.8. Fixes #7482Francesco Colista2017-08-073-42/+138
|
* main/varnish: security fix CVE-2017-12425Francesco Colista2017-08-072-4/+121
|
* main/tcpdump: security update to 4.9.1. Fixes #7634Francesco Colista2017-08-071-6/+51
|
* main/lame: security fixes:Francesco Colista2017-08-074-5/+74
| | | | | | | | | | * CVE-2015-9099 * CVE-2015-9100 * CVE-2017-9410 * CVE-2017-9411 * CVE-2017-9412 * CVE-2017-11720 Fixes #7627
* community/gsoap: upgrade to 2.8.51Natanael Copa2017-08-041-2/+2
| | | | | | | The 2.8.50 release got silently updated upstream, so to avoid checksum error we use the 2.8.51 https://sourceforge.net/p/gsoap2/bugs/1150/
* community/graphicsmagick: fix CVE-2017-11403. Fixes #7549Francesco Colista2017-08-042-5/+23
|
* community/knot: added yaml info in the APKBUILDFrancesco Colista2017-08-041-0/+5
|
* community/knot: security upgrade to 2.4.5Francesco Colista2017-08-041-2/+2
|
* main/libtasn1: fix CVE-2017-10790. Fixes #7602Francesco Colista2017-08-032-5/+64
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 17:36:25 +0000