aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* community/php5: add missing secfixesAndy Postnikov2018-08-171-0/+3
|
* main/gnupg1: security upgrade to 1.4.23 (CVE-2017-7526)tcely2018-08-162-47/+6
| | | | (cherry picked from commit 6895452f9306041d563023e9fae6b77ac6c27dae)
* main/gnupg1: fix CVE-2018-12020Sören Tempel2018-08-162-3/+51
|
* main/redis: upgrade to 4.0.11Andy Postnikov2018-08-101-2/+2
|
* main/postgresql: security upgrade to 10.5Andy Postnikov2018-08-101-2/+5
| | | | CVE-2018-10915 CVE-2018-10925
* main/mupdf: upgrade to 1.13.0prspkt2018-08-082-22/+19
| | | | | | | | add secfixes comments fixes #8581 (cherry picked from commit 831d2ee24986330048dfa488c8bb5017656e8efd)
* main/mupdf: upgrade to 1.12.0Daniel Sabogal2018-08-084-75/+29
| | | | (cherry picked from commit a05cd51302237e06412d14a512a51fd1092860bb)
* main/libvncserver: fix CVE-2018-7225prspkt2018-08-082-6/+70
| | | | fixes #8558
* main/p7zip: security fixes (CVE-2018-5996, CVE-2018-10115)Natanael Copa2018-08-083-5/+545
| | | | fixes #8533
* main/p7zip: security fix for CVE-2017-17969, modernizeDaniel Sabogal2018-08-082-13/+34
|
* main/lxc: fix CVE-2018-6556Jakub Jirutka2018-08-062-2/+129
|
* main/py-django: security upgrade to 1.11.15 (CVE-2018-14574)Natanael Copa2018-08-061-2/+4
| | | | fixes #9176
* main/cgit: fix secfixes commentNatanael Copa2018-08-041-1/+1
|
* main/cgit: fix CVE-2018-14912Natanael Copa2018-08-042-2/+70
|
* main/kamailio: add secfixes commentNatanael Copa2018-08-021-0/+4
|
* main/tiff: various security fixesNatanael Copa2018-08-025-2/+283
| | | | | | | | | | - CVE-2017-9935 - CVE-2017-11613 - CVE-2017-17095 - CVE-2018-10963 fixes #8241 fixes #9164
* main/fuse: security upgrade to 2.9.8 (CVE-2018-10906)Natanael Copa2018-07-301-9/+7
| | | | fixes #9153
* main/fuse: Move /etc/udev/rules.d to /libMax Rees2018-07-301-2/+2
| | | | See: https://github.com/alpinelinux/aports/pull/3759#issuecomment-376883202
* main/kamailio: upgrade to 5.0.7Leonardo Arena2018-07-301-2/+2
|
* community/prosody: security upgrade to 0.10.2 (CVE-2018-10847)Natanael Copa2018-07-301-3/+7
| | | | fixes #9038
* main/libvorbis: security fix for CVE-2018-10392Natanael Copa2018-07-302-3/+33
| | | | fixes #9141
* main/libvorbis: upgrade to 1.3.6, enable testsprspkt2018-07-303-35/+19
| | | | fixes #8671
* main/mercurial: security upgrade to 4.5.2 (CVE-2018-1000132)Natanael Copa2018-07-301-2/+6
| | | | fixes #8826
* community/roundcubemail: fix missing JS libsJakub Jirutka2018-07-281-3/+3
|
* main/mutt: security upgrade to 1.10.1Natanael Copa2018-07-241-4/+19
| | | | | | | | CVE-2018-14349, CVE-2018-14350, CVE-2018-14351, CVE-2018-14352, CVE-2018-14353, CVE-2018-14354, CVE-2018-14355, CVE-2018-14356, CVE-2018-14357, CVE-2018-14358, CVE-2018-14359, CVE-2018-14362 fixes #9130
* community/php5: security upgrade to 5.6.37Andy Postnikov2018-07-241-2/+2
| | | | requested by andypost
* community/nextcloud: upgrade to 12.0.10Leonardo Arena2018-07-241-2/+2
|
* main/mqtt-exec: backport password auth supportNatanael Copa2018-07-183-78/+92
| | | | and remove unused patch
* main/znc: security upgrade to 1.7.1 (CVE-2018-14055,CVE-2018-14056)Natanael Copa2018-07-181-5/+10
| | | | fixes #9102
* main/openssl: fix CVE-2018-0732 and CVE-2018-0737Timo Teräs2018-07-183-2/+76
| | | | | fixes #8814 fixes #9009
* main/asterisk: security upgrade to 15.5.0Timo Teräs2018-07-181-2/+2
| | | | | | | AST-2018-007: Infinite loop when reading iostreams AST-2018-008: PJSIP endpoint presence disclosure when using ACL (cherry picked from commit 40fd8ce8d8419d7627964e69c29ea7c30b65a953) (cherry picked from commit 4c6b45d7a5f74edf465b9f41c36dbd96182c8592)
* main/curl: upgrade to 7.61.0, add secfixes commentprspkt2018-07-131-5/+7
|
* community/firefox-esr: security upgrade to 52.8.1 (CVE-2018-6126)Natanael Copa2018-07-111-2/+4
| | | | fixes #9036
* main/acf-alpine-baselayout: upgrade to 0.13.2Ted Trask2018-06-261-5/+4
| | | | (cherry picked from commit 26a78bb0bddafc8ca808b00f83f4d304f8c5c7bf)
* main/xen: XSA-263 & 267Henrik Riomar2018-06-2225-1/+4078
| | | | | - CVE-2018-3639 XSA-263 (depends on 5 patches from stable-4.9) - CVE-2018-3665 XSA-267 (depends on 3 patches from stable-4.9)
* main/one-context: upgrade to 0.5.4Jakub Jirutka2018-06-221-2/+2
|
* main/vlan: fix support for both ipv4 and ipv6 address on vlansNatanael Copa2018-06-212-12/+9
| | | | fixes #9018
* Revert "main/vlan: check if subinterface already exists"Kaarle Ritvanen2018-06-213-19/+15
| | | | | | This reverts commit 6073409488faf0051dc1f188042f444bbd4c4743. Reason: bashism (trap ERR)
* main/vlan: check if subinterface already existsAnthony Ruhier2018-06-213-15/+19
| | | | | | | | | The vlan preup script tried to create the subinterface even if it already exists. It does not work on dualstack (ipv4 + ipv6) configurations, and on subinterfaces with multiple addresses setup. Now the vlan and mvlan scripts check if the interface does not already exist, and only if it does not, try to create it.
* main/vlan: do not fail if iface existsKaarle Ritvanen2018-06-212-4/+6
|
* main/libgcrypt: security upgrade to 1.8.3Natanael Copa2018-06-192-3/+55
| | | | fixes #9004
* main/redis: security upgrade to 4.0.10 (CVE-2018-11218,CVE-2018-11219)Natanael Copa2018-06-191-2/+7
| | | | fixes #9021
* community/openjdk7: upgrade to 7.181.2.6.14J0WI2018-06-153-94/+94
|
* [various]: unify names of licenses according to SPDXJakub Jirutka2018-06-151-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This commit updates $license variable in all APKBUILDs to comply with short names specified by SPDX version 3.0 [1] where possible. It was done using find-and-replace method on substrings inside $license variables. Only license names were updated, not "expressions" specifying relation between the licenses (e.g. "X and Y", "X or Y", "X and (Y or Z)") or exceptions (e.g. "X with exceptions"). Many licenses have a version or multiple variants, e.g. MPL-2.0, BSD-2-Clause, BSD-3-Clause. However, $license in many aports do not contain license version or variant. Since there's no way how to infer this information just from abuild, it were left without the variant suffix or version, i.e. non SPDX compliant. GNU licenses (AGPL, GFDL, GPL, LGPL) are especially complicated. They exist in two variants: -only (formerly e.g. GPL-2.0) and -or-later (formerly e.g. GPL-2.0+). We did not systematically noted distinguish between these variants, so GPL-2.0, GPL2, GPLv2 etc. may mean GPL-2.0-only or GPL-2.0-or-later. Thus GNU licenses without "+" (e.g. GPL2+) were left without the variant suffix, i.e. non SPDX compliant. Note: This commit just fixes format of the license names, no verification has been done if the specified license information is actually correct! [1]: https://spdx.org/licenses/
* main/libressl: upgrade to 2.6.5, add secfixes commentJ0WI2018-06-151-5/+8
|
* community/openjdk8: upgrade to 3.8.0 (java 8u171b11)J0WI2018-06-132-19/+19
|
* community/openjdk8: upgrade to 3.7.0 (java 8u161b12)Timo Teräs2018-06-133-30/+17
| | | | | fixes #3678 ref https://github.com/alpinelinux/aports/pull/3678
* main/gnupg: security fix (CVE-2018-12020)Leonardo Arena2018-06-132-3/+53
| | | | Fixes #8994
* main/freetype: security fix (CVE-2018-6942)Leonardo Arena2018-06-132-1/+43
| | | | Fixes #8988
* main/perl: security fix (CVE-2018-12015)Leonardo Arena2018-06-132-2/+47
| | | | Fixes #8983
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-09 11:21:24 +0000