aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* community/imagemagick6: upgrade to 6.9.10.47J0WI2019-07-241-7/+2
|
* community/firefox-esr: security upgrade to 60.8.0J0WI2019-07-241-2/+13
|
* community/firefox-esr: security upgrade to 60.7.2 (CVE-2019-11708)J0WI2019-07-241-2/+4
| | | | fixes #10601
* community/firefox-esr: security upgrade to 60.7.1 (CVE-2019-11707)Natanael Copa2019-07-241-2/+4
|
* community/firefox-esr: upgrade to 60.7.0Sören Tempel2019-07-241-2/+19
| | | | See https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/
* community/firefox-esr: upgrade to 60.6.2Sören Tempel2019-07-241-2/+2
| | | | | | This re-enables web extensions. See: https://www.mozilla.org/en-US/firefox/60.6.2/releasenotes/
* main/libtasn1: security upgrade to 4.14Leo2019-07-242-62/+8
| | | | | | - CVE-2018-1000654 Fixes #10519
* main/zeromq: security upgrade to 4.3.2Leo2019-07-231-7/+7
| | | | fixes #10687
* main/patch: fix CVE-2019-13636Leo2019-07-232-2/+115
| | | | fixes #10688
* main/libjpeg-turbo: backport fix for CVE-2018-14498Leo2019-07-222-2/+116
|
* main/polkit: backport fix for CVE-2019-6133Leo2019-07-222-1/+162
|
* main/libcroco: fix a few CVEsLeo2019-07-224-3/+148
| | | | | | | | | - CVE-2017-7960 - CVE-2017-7961 - CVE-2017-8834 - CVE-2017-8871 Fixes https://gitlab.alpinelinux.org/alpine/aports/issues/10564
* main/py-django: security upgrade to 1.11.22 (CVE-2019-12781)Natanael Copa2019-07-221-2/+4
| | | | fixes #10676
* community/gvfs: backport fixes for a few CVEsLeo2019-07-225-3/+354
| | | | | | | - CVE-2019-12795 - CVE-2019-12449 - CVE-2019-12447 - CVE-2019-12448
* community/openexr: fix CVE-2018-18444Leo2019-07-212-3/+33
| | | | Fixes https://gitlab.alpinelinux.org/alpine/aports/issues/10395
* community/libraw: add missing CVEs to secfixes commentLeo2019-07-211-0/+3
|
* community/docker: upgrade to 18.09.8Jake Buchholz2019-07-201-10/+13
| | | | | | | https://github.com/docker/docker-ce/releases/tag/v18.09.8 * Fix CVE-2019-13509 in DebugRequestMiddleware: unconditionally scrub data field. Also, compile docker engine with seccomp.
* main/alpine-git-mirror-syncd: security upgrade to 0.3.1Jakub Jirutka2019-07-171-3/+3
|
* community/webkit2gtk: enable on x86Natanael Copa2019-07-171-1/+4
| | | | | Enable x86 and work around out of meomory error by disable _FORTIFY_SOURCE.
* community/webkit2gtk: upgrade to 2.24.3 and enable on armNatanael Copa2019-07-172-46/+16
| | | | | | | - build with MinSizeRel and -g1 to reduce memory usage during compile - simplify cmake opts. default seems to do the right thing nowdays - use nijna - remove patch that apparetnly is not needed anymore
* community/webkit2gtk: upgrade to 2.24.2Rasmus Thomsen2019-07-175-41/+70
| | | | | | | | | | | | | | | | | | | | | | | | | | | | * Disable armv7/armhf, due to using a 32-bit kernel these arches can't allocate enough memory during compilation for the massive compilation units webkit2gtk does. We'll have to wait for 2.26.x to allow compilation without unified sources to upgrade these arches. * Disable GTK_DOC, which fails to build * Disable system malloc on some arches. There were typos in the options anyway, so they haven't done anything anyway. System malloc is discouraged by upstream since bmalloc not only performs better it also has some security related advantages. fixes the following CVEs: * CVE-2019-6251 * CVE-2019-8506 * CVE-2019-8524 * CVE-2019-8535 * CVE-2019-8536 * CVE-2019-8544 * CVE-2019-8551 * CVE-2019-8558 * CVE-2019-8559 * CVE-2019-8563 * CVE-2019-11070 Co-authored-by: TBK <tbk@jjtc.eu>
* main/avahi: fix CVE-2017-6519 and CVE-2018-1000845Leo2019-07-172-3/+38
| | | | Fixes #9241
* community/zabbix: upgrade to 4.0.10Leonardo Arena2019-07-171-2/+2
|
* community/drupal7: add secfixes comment for CVE-2019-11358Leo2019-07-161-0/+1
|
* community/sox: backport fix for CVEsLeo2019-07-164-2/+145
| | | | | | - CVE-2019-8355 - CVE-2019-8356 - CVE-2019-8357
* community/nextcloud: upgrade to 15.0.10Leonardo Arena2019-07-151-2/+2
|
* main/py-six: upgrade to 1.12.0, added testsDmitry Romanenko2019-07-151-3/+8
| | | | | | | Needed by py3-fakeredis, see #10548 and https://github.com/benjaminp/six/blob/master/CHANGES Signed-off-by: Leonardo Arena <rnalrd@alpinelinux.org>
* main/py3-fakeredis: backported from 3.10Leonardo Arena2019-07-151-0/+28
| | | | Fixes #10548
* main/py3-lupa: backported from 3.10Leonardo Arena2019-07-151-0/+24
| | | | Needed by py3-fakeredis
* main/py-sortedcontainers: backported from 3.10Leonardo Arena2019-07-151-0/+0
| | | | Needed by py3-fakeredis
* main/squid: upgrade to 4.8 (CVE-2019-13345)Natanael Copa2019-07-111-3/+5
| | | | fixes #10667
* main/heimdal: security fix for CVE-2019-12098Natanael Copa2019-07-112-3/+178
| | | | fixes #10553
* main/tcpflow: fix secfixes commentNatanael Copa2019-07-081-1/+1
|
* main/tcpflow: backport fix for CVE-2018-18409Natanael Copa2019-07-083-20/+194
| | | | | | and remove unused patch ref #10427
* community/runc: fix secfixes comment.Natanael Copa2019-07-041-1/+1
| | | | | | The CVE-2019-5736 was fixed with commit 787ef3518b96 (community/runc: upgrade for CVE-2019-5736), which was our version 1.0.0_rc6-r1. The secfixes comment should reflect that.
* main/bzip2: add patch for CVE-2019-12900ntaylor17812019-07-042-2/+17
| | | | | | | Adding the upstream bzip2 security patch to fix the out of bounds security vulnerability in bzip2. fixes #10645
* main/irssi: security upgrade to 1.1.3 (CVE-2019-13045)Natanael Copa2019-07-041-2/+4
| | | | fixes #10656
* community/patchwork: security fix for CVE-2019-13122Francesco Colista2019-07-042-4/+100
|
* main/libvirt: security upgradeFrancesco Colista2019-07-033-47/+24
| | | | | | (CVE-2019-10161, CVE-2019-10166, CVE-2019-10167, CVE-2019-10168) Fixes #10618
* community/docker: security upgrade to 18.09.7 (CVE-2018-15664)Natanael Copa2019-07-021-6/+10
|
* community/containerd: update to 1.2.7Jake Buchholz2019-07-021-3/+7
| | | | Release notes at https://github.com/containerd/containerd/releases/tag/v1.2.7
* community/runc: update to 1.0.0-rc8Jake Buchholz2019-07-021-19/+14
| | | | Release notes at https://github.com/opencontainers/runc/releases/tag/v1.0.0-rc8
* main/postgresql: security upgrade to 11.4Milan P. Stanić2019-07-011-2/+4
| | | | | CVE-2019-10164 other upstream bugfixes
* main/expat: security upgrade to 2.2.7 (CVE-2018-20843)Natanael Copa2019-06-301-3/+5
| | | | fixes #10631
* main/py-django: security upgrade to 1.11.21 (CVE-2019-12308)Natanael Copa2019-06-251-2/+4
| | | | fixes #10559
* community/pdns: security upgrade to 4.1.10prspkt2019-06-251-2/+5
| | | | | - CVE-2019-10163 - CVE-2019-10162
* main/bind: security upgrade to 9.12.4_p2 (CVE-2019-6471)Ventz Petkov2019-06-201-3/+5
| | | | Closes GH-8921
* main/argon2: provide pc: fileLeo2019-06-192-3/+21
| | | | | | fixes #10572 (cherry picked from commit f567a84abd86ddcc795647cee19a8edf9268bd4e)
* main/linux-rpi: upgrade to 4.19.52Natanael Copa2019-06-181-3/+3
|
* testing/wireguard-virt: rebuild against kernel 4.19.52-r0Natanael Copa2019-06-181-1/+1
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-04 11:41:33 +0000