aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* main/awstats: security fix (CVE-2017-1000501)Leonardo Arena2018-01-053-6/+149
| | | | Fixes #8372
* main/asterisk: add libtool to makedependsTimo Teräs2018-01-041-2/+2
| | | | | | This is a requirement to get res_odbc built. (cherry picked from commit bd3bc89b4abf4ea8817417f4d5594c8ebaf62749)
* main/heimdal: security fix (CVE-2017-17439)Leonardo Arena2017-12-292-2/+51
| | | | Fixes #8292
* community/bzr: security fix (CVE-2017-14176)Leonardo Arena2017-12-292-10/+177
| | | | Fixes #8298
* main/rsync: security fixesLeonardo Arena2017-12-295-2/+149
| | | | | | CVE-2017-16548, CVE-2017-17433, CVE-2017-17434 Fixes #8318
* main/asterisk: security upgrade to 15.1.5Timo Teräs2017-12-291-2/+2
| | | | | | fixes #8353 AST-2017-014 Crash in PJSIP resource when missing a contact header
* main/asterisk: upgrade to 15.1.4Timo Teräs2017-12-291-2/+2
| | | | | | ref #8353 AST-2017-012 Remote Crash Vulnerability in RTCP Stack
* main/asterisk: upgrade to 15.1.3Timo Teräs2017-12-291-2/+2
| | | | | | ref #8353 AST-2017-013 DOS Vulnerability in Asterisk chan_skinny
* main/lua-asn1: add missing dependencyKaarle Ritvanen2017-12-281-2/+2
|
* community/zabbix: upgrade to 3.4.5Leonardo Arena2017-12-281-2/+2
|
* main/libraw: security upgrade to 0.18.6 (CVE-2017-16910)Leonardo Arena2017-12-281-2/+4
| | | | Fixes #8339
* community/gimp: security fixesLeonardo Arena2017-12-287-3/+373
| | | | | | | | CVE-2017-17784, CVE-2017-17785, CVE-2017-17786, CVE-2017-17787, CVE-2017-17789 Fixes #8351 CVE-2017-17788 applies only to >= v2.9.6
* community/webkit2gtk: security upgrade to 2.18.4Natanael Copa2017-12-261-2/+8
| | | | | | | | | | CVE-2017-7156 CVE-2017-7157 CVE-2017-13856 CVE-2017-13866 CVE-2017-13870 fixes #8334
* main/xen: security fixes for (XSA-248, XSA-249, XSA-250, XSA-251)Daniel Sabogal2017-12-185-1/+308
|
* community/wireshark: security upgrade to 2.4.3 (CVE-2017-17083, ↵Francesco Colista2017-12-171-3/+7
| | | | CVE-2017-17084, CVE-2017-17085). Fixes #8269
* main/ruby: security upgrade to 2.4.3Jakub Jirutka2017-12-151-3/+5
| | | | See: https://www.ruby-lang.org/en/news/2017/12/14/ruby-2-4-3-released/
* main/openssh: security fixes for CVE-2017-15906. Fixes #8281Francesco Colista2017-12-152-3/+38
|
* community/pdns-recursor: security upgrade to 4.0.7 ↵Francesco Colista2017-12-151-3/+10
| | | | (CVE-2017-15090-15092-15093-15094). Fixes #8254
* community/pdns: security upgrade to 4.0.5 (CVE-2017-15091). Fixes #8251Francesco Colista2017-12-151-3/+7
|
* main/openssl: security upgrade to 1.0.2nColin Williams2017-12-151-2/+5
| | | | | | | | | fixes #8274 CVE-2017-3737 CVE-2017-3738 (cherry picked from commit d2d350f8a099c9ed303f00888e05626662e5c7f6)
* community/exim: security upgrade to 4.89.1 (CVE-2017-16944). Fixes #8288Francesco Colista2017-12-151-9/+7
|
* main/python2: set thread stack size to 1 MiBNatanael Copa2017-12-141-2/+22
| | | | | We need increase stack size so we dont segfautl before we hit the recursion limit.
* main/apk-tools: apply install_if fixKaarle Ritvanen2017-12-142-2/+188
|
* community/homer-api: apply LDAP security fixKaarle Ritvanen2017-12-142-4/+34
|
* main/procmail: import procmail-3.23pre patch from DebianNathan Rennie-Waldock2017-12-132-8/+261
| | | | | | Fixes #8259 (cherry picked from commit b7237382f0459b1c33c578412fac2cc0bb2c1cbb)
* community/nextcloud: fix update on PGSQL10Leonardo Arena2017-12-122-1/+23
| | | | | | GH#5930 (cherry picked from commit 52c914aa8a597c5803e349c250ee9461f32f42cd)
* main/busybox: backport fix for add-shellNatanael Copa2017-12-122-1/+36
| | | | fixes #8209
* main/bacula: various improvements and small bug fixesLeonardo Arena2017-12-114-33/+37
| | | | | | | | | | | | - use /run dir - fix conf file permissions - Inits: points bacula-sd to right conf file use openrc to set daemon user soft depends on firewall added cosmetic fixes (cherry picked from commit bd02f881f2cd3d8b1ef786ba3e7482deafb58793)
* community/graphicsmagick: security upgrade to 1.3.27.Francesco Colista2017-12-111-29/+13
| | | | | - Fixes #8095 - Fixes #7943 (last CVE was not fixed since the patch did not apply)
* community/nodejs-current: upgrade to 9.2.1Jakub Jirutka2017-12-091-2/+8
| | | | | | | See: https://nodejs.org/en/blog/vulnerability/december-2017-security-releases/ CVE-2017-3738 does not affect our package, because we don't use bundled OpenSSL library. I'm not sure about CVE-2017-15896.
* main/nodejs: security upgrade to 8.9.3Jakub Jirutka2017-12-091-2/+5
| | | | | | | See: https://nodejs.org/en/blog/vulnerability/december-2017-security-releases/ CVE-2017-3738 does not affect our package, because we don't use bundled OpenSSL library. I'm not sure about CVE-2017-15896.
* community/borgbackup: upgrade to 1.1.3Jakub Jirutka2017-12-081-2/+2
|
* community/imagemagick6: upgrade to 6.9.9.26Jakub Jirutka2017-12-081-2/+2
|
* main/bacula: install binaries with mode 755Leonardo Arena2017-12-081-2/+3
| | | | (cherry picked from commit da7000604a1ef7e2ef866b031131bcae767f0b2e)
* main/bash: fix overflow in jobsNatanael Copa2017-12-072-1/+16
| | | | | | | fixes #8236 ref: https://github.com/tianon/docker-bash/issues/4 ref: https://github.com/gliderlabs/docker-alpine/issues/363
* main/redis: upgrade to 4.0.6TBK2017-12-071-2/+2
|
* main/nodejs: upgrade to 8.9.2Tim Brust2017-12-071-2/+2
|
* community/tor: security upgrade to 0.3.1.9Natanael Copa2017-12-071-3/+3
| | | | | | | | | | CVE-2017-8819 TROVE-2017-009: Replay-cache ineffective for v2 onion services CVE-2017-8820 TROVE-2017-010: Remote DoS attack against directory authorities CVE-2017-8821 TROVE-2017-011: An attacker can make Tor ask for a password CVE-2017-8822 TROVE-2017-012: Relays can pick themselves in a circuit path CVE-2017-8823 TROVE-2017-013: Use-after-free in onion service v2 fixes #8247
* community/nextcloud: upgrade to 12.0.4Leonardo Arena2017-12-054-434/+3
| | | | (cherry picked from commit a3ab3a5186575f9ccb06789a864452359e0e5b22)
* community/ruby-nokogiri: rebuild against libxml 2.9.7Jakub Jirutka2017-12-041-1/+1
| | | | | | To get rid of this warning message after loading: WARNING: Nokogiri was built against LibXML version 2.9.6, but has dynamically loaded 2.9.7
* main/openssh: fix man pagesNatanael Copa2017-12-041-2/+2
| | | | fixes #8006
* main/pcre: add secfixes comment for CVE-2017-16231Natanael Copa2017-12-041-0/+1
| | | | | | | | We are not affected by CVE-2017-16231 due to our build with --with-match-limit-recursion=8192. We had this option since first commit, version 7.8, and were never affected. fixes #8139
* community/php7-memcached: upgrade to 3.0.4Andy Postnikov2017-12-031-3/+3
|
* main/redis: upgrade to 4.0.5 and claim maintainershipTBK2017-12-031-4/+4
|
* main/rrdtool: rebuild against perl 5.26.1Jakub Jirutka2017-12-031-1/+1
| | | | Fixes https://bugs.alpinelinux.org/issues/8232
* community/imagemagick6: upgrade to 6.9.9.25Jakub Jirutka2017-12-031-2/+2
|
* gitignore: fix to not ignore directories named "core"Jakub Jirutka2017-12-011-0/+1
| | | | (cherry picked from commit 3efb9cf76910560afe09af0b5e80c903ead466d1)
* community/virtualbox-guest-additions: upgrade to 5.1.30Natanael Copa2017-12-011-2/+2
| | | | (cherry picked from commit 62b8ba5f8fe6d62d56b2d078b4f12f72830ee4af)
* ======== release 3.7.0 ========v3.7.0Natanael Copa2017-11-301-1/+1
|
* main/alpine-conf: upgrade to 3.7.0Natanael Copa2017-11-301-2/+2
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-11 10:55:46 +0000