aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* main/busybox: Fixed segfault in microcomMarian Buschsieweke2017-08-032-1/+34
| | | | | | | | microcom does not check if required parameter "TTY" is present. Thus, bb_basename() is called with a NULL pointer, if microcom is started without any parameter. This in turn calls strlen() on this NULL pointer, resulting in a segfault. The supplied patch adds a check for the missing TTY parameter and prints usage when it is missing.
* community/gsoap: security upgrade to 2.8.50 (CVE-2017-9765)Natanael Copa2017-08-032-19/+14
| | | | fixes #7570
* main/ffmpeg: upgrade to 3.2.6Timo Teräs2017-07-281-3/+3
|
* community/neovim: fix secfixes commentNatanael Copa2017-07-201-1/+1
| | | | (cherry picked from commit 239f1545b8b037338cd8d0cf19a71e5197640d6c)
* main/openssh: fix secfixes commentNatanael Copa2017-07-201-1/+0
| | | | (cherry picked from commit d9b200e3dd0b2a723993f2e6d625bdd54e96a041)
* main/libidn: fix secfixes commentNatanael Copa2017-07-201-4/+4
| | | | (cherry picked from commit 8a25e031b07b773c4abdabe2f55faf44b187ea5a)
* main/lcms2: fix indentation of secfixes commentNatanael Copa2017-07-201-2/+2
| | | | (cherry picked from commit 514646bd5fbeb993692f17edac8c7e62dd6366a7)
* abuild: backport sanitycheck of secfixes commentNatanael Copa2017-07-202-2/+57
|
* main/bacula: move client init scripts into client subpkgLeonardo Arena2017-07-201-2/+6
| | | | (cherry picked from commit 2ec19441452ea5fc8cdc7432709ebc0d2f917b85)
* main/heimdal: security fix CVE-2017-11103Leonardo Arena2017-07-182-14/+40
| | | | Fixes #7539
* main/apache2: security upgrade to 2.4.27Kaarle Ritvanen2017-07-161-2/+4
|
* community/nodejs-current: security upgrade to 7.10.1Jakub Jirutka2017-07-151-2/+7
| | | | | Fixes CVE-2017-1000381 and Constant Hashtable Seeds See: https://nodejs.org/en/blog/vulnerability/july-2017-security-releases/
* main/nodejs: take maintainershipJakub Jirutka2017-07-141-1/+1
| | | | Eivind Uggedal is not active for a long time.
* main/nodejs: fix CVE-2017-1000381 and Constant Hashtable SeedsJakub Jirutka2017-07-144-3/+166
| | | | See: https://nodejs.org/en/blog/vulnerability/july-2017-security-releases/
* main/nginx: upgrade to 1.12.1 (security fix)Jakub Jirutka2017-07-141-3/+8
| | | | | Fixes: http://bugs.alpinelinux.org/issues/7518 See also: http://mailman.nginx.org/pipermail/nginx-announce/2017/000200.html
* community/go: upgrade to 1.8.3Natanael Copa2017-07-121-4/+4
|
* main/linux-firmware: update firmware for rpi3 wifiCarlo Landmeter2017-07-121-10/+19
| | | | | | fixes #5297 (cherry picked from commit 46edfde10d8e5baec6bfaef2fedc311108465d82)
* community/php5: security upgrade to 5.6.31Andy Postnikov2017-07-081-3/+11
| | | | Security release http://php.net/archive/2017.php#id2017-07-06-4
* main/irssi: security uprade to 1.0.4Łukasz Jendrysik2017-07-081-2/+5
| | | | | Fixes CVE-2017-10965 and CVE-2017-10966 More details: https://irssi.org/security/irssi_sa_2017_07.txt
* travis: fetch static apk-tools from GitHub instead of aportsJakub Jirutka2017-07-071-7/+8
|
* community/captagent: backport from edgeKaarle Ritvanen2017-07-064-0/+91
|
* community/homer-ui: backport from edgeKaarle Ritvanen2017-07-061-0/+37
|
* community/homer-api: backport from edgeKaarle Ritvanen2017-07-063-0/+113
|
* main/apache2: security upgrade to 2.4.26Kaarle Ritvanen2017-07-0616-106/+312
| | | | fixes #7464
* main/lxc: backport ppc64le supportNatanael Copa2017-07-062-2/+44
| | | | (cherry picked from commit 1a30a04c86dd7664de2630bb955103e40aac1111)
* main/lxc: upgrade to 2.0.8Natanael Copa2017-07-062-64/+3
| | | | (cherry picked from commit fe85964591759923e783be970405d145be201e91)
* main/musl: cherry-pick upstream fixesTimo Teräs2017-07-059-1/+548
| | | | including regression fix for promoting RTLD_LOCAL to RTLD_GLOBAL
* main/musl: cherry-pick upstream fixesTimo Teräs2017-07-059-1/+312
| | | | fixes #7390
* main/musl: cherry-pick upstream fixes, add strftime gnu extensionsTimo Teräs2017-07-0511-1/+550
| | | | ref #5907
* main/libgcrypt: security upgrade to 1.7.8 (CVE-2017-7526)Natanael Copa2017-07-051-2/+2
| | | | fixes #7476
* main/libsndfile: fix CVE-2017-8361, CVE-2017-8362, CVE-2017-8363, CVE-2017-8365Natanael Copa2017-07-053-9/+127
| | | | fixes #7441
* community/exim: security fix for CVE-2017-1000369Natanael Copa2017-07-042-1/+54
| | | | fixes #7461
* community/drupal7: security upgrade to 7.56 (CVE-2017-6922)Natanael Copa2017-07-041-4/+2
| | | | fixes #7470
* main/xen: fix tmux optionWilliam Johansson2017-07-012-3/+3
| | | | | | | | Tmux has renamed the set-remain-on-exit option to simply remain-on-exit since tmux 2.4. The functionality is needed to make sure console logs are kept if a domain dies. (cherry picked from commit bcd5c26f74d34fa70d0c069be434a465efa7ab53)
* main/awall: upgrade to 1.4.5Kaarle Ritvanen2017-06-291-2/+2
|
* main/apk-tools: security upgrade to 2.7.2Timo Teräs2017-06-231-3/+3
| | | | | | CVE-2017-9669, CVE-2017-9671 (cherry picked from commit b849b481a0446d7ef2458232a8819ce0b301e629)
* main/openvpn: security upgrade to 2.4.3Pieter Lange2017-06-231-2/+2
| | | | | | | | | | CVE-2017-7508 Remotely-triggerable ASSERT() on malformed IPv6 packet CVE-2017-7520 Pre-authentication remote crash/information disclosure CVE-2017-7521 Remote-triggerable memory leaks / potential double-free CVE-2017-7522 Post-authentication remote DoS with --x509-track + other fixes (cherry picked from commit 46815f8223c46804257eda6cd2811f6f6b38c7cc)
* main/musl: apply proactive mitigation against bugs like glibc CVE-2017-1000366William Pitcock2017-06-222-1/+32
|
* main/zfs-vanilla: chase 4.9.33 upgradeWilliam Pitcock2017-06-221-1/+1
|
* main/spl-vanilla: chase 4.9.33 upgradeWilliam Pitcock2017-06-221-1/+1
|
* main/linux-vanilla: upgrade to 4.9.33, include patches for CVE-2017-1000364 ↵William Pitcock2017-06-223-2/+919
| | | | mitigation.
* main/linux-rpi: upgrade to 4.9.33, include patches for CVE-2017-1000364 ↵William Pitcock2017-06-223-2/+918
| | | | mitigation.
* main/expat: security fixes (CVE-2017-9233)Francesco Colista2017-06-222-5/+37
|
* ==== release 3.6.2 ====v3.6.2Natanael Copa2017-06-161-1/+1
|
* main/mkinitfs: upgrade to 3.1.0Natanael Copa2017-06-161-2/+2
| | | | fixes #7037
* community/py-opencl: update to 2017.1.1 / add python3 subpkgStuart Cardall2017-06-161-12/+35
|
* main/libxml2: fix for CVE-2017-5969Natanael Copa2017-06-162-2/+69
| | | | fixes #6852
* main/bind: security upgrade to 9.11.1_p1 (CVE-2017-3140)Natanael Copa2017-06-161-3/+3
| | | | fixes #7438
* community/syncthing13: enable build on ppc64leRoberto Oliveira2017-06-161-1/+2
| | | | | | | | enabling syncthing13 package on ppc64le as go is available. Also had to remove a tar.gz before using ln command, otherwise it was failing the build in ppc64le. (cherry picked from commit 557c09644508064269207d77489446d268be81c9)
* community/icingaweb2: enable build on ppc64leRoberto Oliveira2017-06-161-1/+1
| | | | | | icingaweb2 now builds on ppc64le as icinga2 package is available (cherry picked from commit 0e4483164329141a22cc1e8bf56c9a2cfa2a81e8)
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 20:01:46 +0000