aboutsummaryrefslogtreecommitdiffstats
path: root/community
Commit message (Collapse)AuthorAgeFilesLines
...
* community/nextcloud-client: upgrade to 2.3.2Leonardo Arena2017-09-021-4/+4
|
* community/zziplib: security upgrade to 0.13.67André Klitzing2017-09-021-6/+14
| | | | ref #6966
* community/chicken: really apply fix for CVE-2017-6949Kaarle Ritvanen2017-09-021-1/+5
|
* community/firefox-esr: enable on aarch64Natanael Copa2017-08-301-1/+1
| | | | seems like one of the fixes for s390x resolved the build failure
* community/one-context: upgrade to 0.5.2Jakub Jirutka2017-08-291-4/+2
|
* main/py-packaging: move from community (needed for py-cryptography)Jakub Jirutka2017-08-291-49/+0
|
* community/salt: security upgrade to 2016.11.7 (CVE-2017-12791)Natanael Copa2017-08-261-22/+2
| | | | fixes #7752
* community/nextcloud: fix issue #6028Leonardo Arena2017-08-252-2/+26
| | | | | | Missing icons in Files app after 12.0.1 upgrade (cherry picked from commit d54f08bc7de4047eae688dc80764c6231e30526b)
* community/graphicsmagick: security fixes for various CVEs:Francesco Colista2017-08-247-3/+281
| | | | | | | | | | | | * CVE-2017-11642 * CVE-2017-11722 * CVE-2017-12935 * CVE-2017-12936 * CVE-2017-12937 * CVE-2017-13063 * CVE-2017-13064 Fixes #7747
* main/phpldapadmin: secfix for CVE-2017-11107Natanael Copa2017-08-222-16/+39
| | | | fixes #7511
* community/cacti: security upgrade to 1.1.19Natanael Copa2017-08-221-11/+3
| | | | fixes #7690
* community/virt-manager: fix gobject dependencyShiz2017-08-201-4/+5
|
* community/nextcloud: upgrade to 12.0.2Leonardo Arena2017-08-151-2/+2
|
* community/evince: security upgrade to 3.24.1 (CVE-2017-1000083)Natanael Copa2017-08-141-2/+2
| | | | fixes #7545
* community/webkit2gtk: security upgrade to 2.16.6Natanael Copa2017-08-141-2/+2
| | | | | | | | | | | | | | | | | CVE-2017-2538 CVE-2017-7039 CVE-2017-7018 CVE-2017-7030 CVE-2017-7037 CVE-2017-7034 CVE-2017-7055 CVE-2017-7056 CVE-2017-7064 CVE-2017-7061 CVE-2017-7048 CVE-2017-7046 fixes #7543
* community/firefox-esr: security upgrade to 52.3.0Natanael Copa2017-08-111-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | fixes #7674 CVE-2017-7753: Out-of-bounds read with cached style data and pseudo-elements CVE-2017-7779: Memory safety bugs CVE-2017-7784: Use-after-free with image observers CVE-2017-7785: Buffer overflow manipulating ARIA attributes in DOM CVE-2017-7786: Buffer overflow while painting non-displayable SVG CVE-2017-7787: Same-origin policy bypass with iframes through page reloads CVE-2017-7791: Spoofing following page navigation with data: protocol and modal alerts CVE-2017-7792: Buffer overflow viewing certificates with an extremely long OID CVE-2017-7798: XUL injection in the style editor in devtools CVE-2017-7800: Use-after-free in WebSockets during disconnection CVE-2017-7801: Use-after-free with marquee during window resizing CVE-2017-7802: Use-after-free resizing image elements CVE-2017-7803: CSP containing 'sandbox' improperly applied CVE-2017-7807: Domain hijacking through AppCache fallback CVE-2017-7809: Use-after-free while deleting attached editor DOM node
* community/nextcloud: upgrade to 12.0.1Leonardo Arena2017-08-091-2/+2
|
* main/wireshark: security fix to 2.2.8.Francesco Colista2017-08-081-7/+11
| | | | | | | CVE-2017-11406 CVE-2017-11407 CVE-2017-11408 Fixes #7559
* community/gsoap: upgrade to 2.8.51Natanael Copa2017-08-041-2/+2
| | | | | | | The 2.8.50 release got silently updated upstream, so to avoid checksum error we use the 2.8.51 https://sourceforge.net/p/gsoap2/bugs/1150/
* community/graphicsmagick: fix CVE-2017-11403. Fixes #7549Francesco Colista2017-08-042-5/+23
|
* community/knot: added yaml info in the APKBUILDFrancesco Colista2017-08-041-0/+5
|
* community/knot: security upgrade to 2.4.5Francesco Colista2017-08-041-2/+2
|
* community/gsoap: security upgrade to 2.8.50 (CVE-2017-9765)Natanael Copa2017-08-032-19/+14
| | | | fixes #7570
* community/neovim: fix secfixes commentNatanael Copa2017-07-201-1/+1
| | | | (cherry picked from commit 239f1545b8b037338cd8d0cf19a71e5197640d6c)
* community/nodejs-current: security upgrade to 7.10.1Jakub Jirutka2017-07-151-2/+7
| | | | | Fixes CVE-2017-1000381 and Constant Hashtable Seeds See: https://nodejs.org/en/blog/vulnerability/july-2017-security-releases/
* community/go: upgrade to 1.8.3Natanael Copa2017-07-121-4/+4
|
* community/php5: security upgrade to 5.6.31Andy Postnikov2017-07-081-3/+11
| | | | Security release http://php.net/archive/2017.php#id2017-07-06-4
* community/captagent: backport from edgeKaarle Ritvanen2017-07-064-0/+91
|
* community/homer-ui: backport from edgeKaarle Ritvanen2017-07-061-0/+37
|
* community/homer-api: backport from edgeKaarle Ritvanen2017-07-063-0/+113
|
* community/exim: security fix for CVE-2017-1000369Natanael Copa2017-07-042-1/+54
| | | | fixes #7461
* community/drupal7: security upgrade to 7.56 (CVE-2017-6922)Natanael Copa2017-07-041-4/+2
| | | | fixes #7470
* community/py-opencl: update to 2017.1.1 / add python3 subpkgStuart Cardall2017-06-161-12/+35
|
* community/syncthing13: enable build on ppc64leRoberto Oliveira2017-06-161-1/+2
| | | | | | | | enabling syncthing13 package on ppc64le as go is available. Also had to remove a tar.gz before using ln command, otherwise it was failing the build in ppc64le. (cherry picked from commit 557c09644508064269207d77489446d268be81c9)
* community/icingaweb2: enable build on ppc64leRoberto Oliveira2017-06-161-1/+1
| | | | | | icingaweb2 now builds on ppc64le as icinga2 package is available (cherry picked from commit 0e4483164329141a22cc1e8bf56c9a2cfa2a81e8)
* community/bluefish: update config guessRoberto Oliveira2017-06-161-0/+6
| | | | | | Run configure guess before build to fix build on ppc64le. (cherry picked from commit 775af0126177665a7e5d34030ccd439082caeb9f)
* community/bluefish: upgrade to 2.2.10 and modernizetmpfile2017-06-161-22/+7
| | | | (cherry picked from commit 26d5dcca6f80796af2d340fb88bd601be3302460)
* community/icinga2: enable build on ppc64leRoberto Oliveira2017-06-161-1/+1
| | | | | | Enabling icinga2 build on ppc64le as now it has all needed dependencies (cherry picked from commit b13cacb6596d084eef16402b3aac1b41873e4bd3)
* community/xpra: enable build on ppc64leRoberto Oliveira2017-06-161-1/+1
| | | | | | | xpra was disabled because py-opencl was not building in ppc64le, but now we have the py-opencl, so enabling it. (cherry picked from commit b581832d54bbd1596885d3a65987f71a3ee0016f)
* community/py-opencl: enable build on ppc64leRoberto Oliveira2017-06-161-1/+1
| | | | | | | The version 2017.1.1 of py-opencl compiles in ppc64le. I am enabling it. (cherry picked from commit 5c7835921d759b8da2f051c4e3e6c6c540cfdfdc)
* community/go: default buildmode=pie on s390xTuan M. Hoang2017-06-162-3/+3
| | | | (cherry picked from commit b5f0896153bb6ab8a9da807641feb62b83a7f422)
* community/go: fix external linker for ppc64leRoberto Oliveira2017-06-162-3/+3
| | | | | | | | | The external linker for ppc64le was pointing to /lib64/ld-musl-ppc64le.so.1 but the valid path for alpine ppc64le is /lib/ld-musl-powerpc64le.so.1. This issue was found by Lynn Boger from IBM go compiler team. (cherry picked from commit 80d3e2de0e7ec8f262ab4e39553062a81758f703)
* community/openjdk8: Bug #7404 TLS negotiation error in OpenJDK 8 u131Shatil Rafiullah2017-06-162-2/+51
| | | | | | | | | | | | | | | | | | | | | Fixes an OpenJDK 8 regression discovered in docker-library/openjdk#115 on Alpine Linux 3.5 (u121) and 3.6 (u131) that causes TLS negotiation errors for some clients. Root cause appears to be OpenJDK announcing support for NIST curves the underlying NSS library does doesn't. This patch limits OpenJDK's announcement to elliptic curves 23 (secp256r1), 24 (secp384r1), and 25 (secp521r1). Related issues: * https://github.com/docker-library/openjdk/issues/115 * https://bugs.alpinelinux.org/issues/7404 * https://access.redhat.com/discussions/2339811 * https://bugzilla.redhat.com/show_bug.cgi?id=1022017 * https://bugzilla.redhat.com/show_bug.cgi?id=1348525 ref #7404
* community/virtualbox-guest-modules-hardened: rebuild against kernel 4.9.32-r0Natanael Copa2017-06-161-1/+1
|
* community/firefox-esr: security upgrade to 52.2.0Natanael Copa2017-06-151-2/+2
| | | | fixes #7425
* community/chicken: security fixes #7403 (CVE-2017-9334)Leonardo Arena2017-06-153-4/+180
|
* community/lua-toml: fix decode arrays and include testcaseCarlo Landmeter2017-06-142-5/+55
| | | | https://github.com/jonstoler/lua-toml/pull/13
* community/webkit2gtk: upgrade to 2.16.3Natanael Copa2017-06-141-5/+13
| | | | | | | | | | | | | | | | | | | | | | | and enable on ppc64le and aarch64 CVE-2016-9642, CVE-2016-9643, CVE-2017-2364, CVE-2017-2367, CVE-2017-2376, CVE-2017-2377, CVE-2017-2386, CVE-2017-2392, CVE-2017-2394, CVE-2017-2395, CVE-2017-2396, CVE-2017-2405, CVE-2017-2415, CVE-2017-2419, CVE-2017-2433, CVE-2017-2442, CVE-2017-2445, CVE-2017-2446, CVE-2017-2447, CVE-2017-2454, CVE-2017-2455, CVE-2017-2457, CVE-2017-2459, CVE-2017-2460, CVE-2017-2464, CVE-2017-2465, CVE-2017-2466, CVE-2017-2468, CVE-2017-2469, CVE-2017-2470, CVE-2017-2471, CVE-2017-2475, CVE-2017-2476, CVE-2017-2481 CVE-2017-2496, CVE-2017-2504, CVE-2017-2505, CVE-2017-2506, CVE-2017-2508, CVE-2017-2510, CVE-2017-2514, CVE-2017-2515, CVE-2017-2521, CVE-2017-2525, CVE-2017-2526, CVE-2017-2528, CVE-2017-2530, CVE-2017-2531, CVE-2017-2536, CVE-2017-2539, CVE-2017-2544, CVE-2017-2547, CVE-2017-2549, CVE-2017-6980, CVE-2017-6984. fixes #7422
* community/wireshark: security upgrade to 2.2.7Leonardo Arena2017-06-131-19/+43
| | | | | | | | CVE-2017-9343, CVE-2017-9344, CVE-2017-9345, CVE-2017-9346, CVE-2017-9347, CVE-2017-9348, CVE-2017-9349, CVE-2017-9350, CVE-2017-9351, CVE-2017-9352, CVE-2017-9353, CVE-2017-9354 Fixes #7376
* community/tor: security upgrade to 0.3.0.8 (CVE-2017-0376)Leonardo Arena2017-06-121-2/+2
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-05 04:00:02 +0000