aboutsummaryrefslogtreecommitdiffstats
path: root/main
Commit message (Collapse)AuthorAgeFilesLines
...
* main/qemu: various security fixesNatanael Copa2015-10-0612-1/+923
| | | | | | | | | | | CVE-2015-5165 CVE-2015-5225 CVE-2015-5278 CVE-2015-5279 CVE-2015-6815 fixes #4591 fixes #4661
* main/lxc: fix regression in CVE-2015-1335 patchEivind Uggedal2015-10-052-4/+70
|
* main/acf-weblog: upgrade to 0.10.4Ted Trask2015-10-041-4/+4
| | | | (cherry picked from commit c60b0b0e89591b11da303d4b94e28034af98f6fc)
* main/acf-core: upgrade to 0.18.10Ted Trask2015-10-041-4/+4
|
* main/screen: security fix for CVE-2015-6806Eivind Uggedal2015-09-302-5/+61
|
* main/libvdpau: security fix for CVE-2015-5198,CVE-2015-5199,CVE-2015-5200Eivind Uggedal2015-09-302-8/+273
|
* main/rpcbind: security fix for CVE-2015-7236Eivind Uggedal2015-09-302-5/+87
|
* main/lxc: security fix for CVE-2014-1334,CVE-2015-1331,CVE-2015-1335Eivind Uggedal2015-09-304-4/+775
|
* main/gnupg1: security upgrade to 1.4.19 (CVE-2014-3591,CVE-2015-0837)Eivind Uggedal2015-09-281-4/+4
|
* main/conntrack-tools: security upgrade to 1.4.3 (CVE-2015-6496)Natanael Copa2015-09-282-60/+5
| | | | | ref #4564 fixes #4567
* main/acf-alpine-baselayout: upgrade to 0.12.2Ted Trask2015-09-211-4/+4
| | | | (cherry picked from commit 8adbf6628e180e8e20fbe9a91bfcb2b9d86ebbe4)
* main/jasper: security fix for CVE-2015-5203Natanael Copa2015-09-212-4/+206
| | | | | ref #4557 fixes #4560
* main/jasper: security fixes (various)Natanael Copa2015-09-215-1/+429
| | | | | | | | | | CVE-2014-8137.patch CVE-2014-8138.patch CVE-2014-8157.patch CVE-2014-8158.patch ref #3814 fixes #3818
* main/gdk-pixbuf: security upgrade to 2.31.5 (CVE-2015-4491)Natanael Copa2015-09-211-4/+4
| | | | | ref #4527 fixes #4530
* main/acf-lib: upgrade to 0.7.4Ted Trask2015-09-191-4/+4
| | | | (cherry picked from commit 48b59c483295941aa43ef98c9fd24fed2aea17bb)
* main/roundcubemail: upgrade to 1.0.7Leonardo Arena2015-09-181-4/+4
|
* main/gnutls: security upgrade to 3.3.18 (CVE-2015-6251)Natanael Copa2015-09-171-4/+4
| | | | fixes #4572
* main/openldap: fix ber_get_next denial of service (CVE-2015-6908)Leonardo Arena2015-09-142-1/+31
| | | | | http://www.openldap.org/its/index.cgi/Software%20Bugs?id=8240 (cherry picked from commit 4041a223b7e7b9a7ab163406bc7f4b04a4a8fad3)
* main/bind: security upgrade to 9.10.2_p4 (CVE-2015-5722,CVE-2015-5986)Natanael Copa2015-09-091-4/+4
| | | | fixes #4609
* main/wireshark: security upgrade to 1.12.7 (various)Natanael Copa2015-09-091-4/+4
| | | | | | | | | | | | | | https://www.wireshark.org/security/wnpa-sec-2015-21.html https://www.wireshark.org/security/wnpa-sec-2015-22.html https://www.wireshark.org/security/wnpa-sec-2015-23.html https://www.wireshark.org/security/wnpa-sec-2015-24.html https://www.wireshark.org/security/wnpa-sec-2015-25.html https://www.wireshark.org/security/wnpa-sec-2015-26.html https://www.wireshark.org/security/wnpa-sec-2015-27.html https://www.wireshark.org/security/wnpa-sec-2015-28.html https://www.wireshark.org/security/wnpa-sec-2015-29.html fixes #4633
* main/abuild: fix fetching to a shared nfs direcotryNatanael Copa2015-09-092-4/+358
|
* main/php: security upgrade to 5.6.13Natanael Copa2015-09-091-4/+4
| | | | | | CVE-2015-6834, CVE-2015-6835, CVE-2015-6836, CVE-2015-6837, CVE-2015-6838 fixes #4625
* main/linux-vanilla: upgrade to 3.14.51Natanael Copa2015-09-093-14/+16
|
* main/linux-virt-grsec: upgrade to 3.14.51Natanael Copa2015-09-095-17/+19
|
* main/xtables-addons-grsec: rebuild against kernel 3.14.51-r0Natanael Copa2015-09-091-1/+1
|
* main/open-vm-tools-grsec: rebuild against kernel 3.14.51-r0Natanael Copa2015-09-091-1/+1
|
* main/ipfw-grsec: rebuild against kernel 3.14.51-r0Natanael Copa2015-09-091-1/+1
|
* main/dahdi-linux-grsec: rebuild against kernel 3.14.51-r0Natanael Copa2015-09-091-1/+1
|
* main/linux-grsec: upgrade to 3.14.51Natanael Copa2015-09-094-778/+7676
|
* main/openssh: security fixes from upstreamNatanael Copa2015-08-264-4/+158
| | | | | | | | | | | | | | | | | | | | | | | | | | | | fixes #4581 CVE-2015-6563: sshd(8): Portable OpenSSH only: Fixed a privilege separation weakness related to PAM support. Attackers who could successfully compromise the pre-authentication process for remote code execution and who had valid credentials on the host could impersonate other users. Reported by Moritz Jodeit. CVE-2015-6564: sshd(8): Portable OpenSSH only: Fixed a use-after-free bug related to PAM support that was reachable by attackers who could compromise the pre-authentication process for remote code execution. Also reported by Moritz Jodeit. CVE-2015-6565: sshd(8): OpenSSH 6.8 and 6.9 incorrectly set TTYs to be world- writable. Local attackers may be able to write arbitrary messages to logged-in users, including terminal escape sequences. Reported by Nikolay Edigaryev. (cherry picked from commit 26c30cf5be4151eee04678ad118d056de0601833) Conflicts: main/openssh/APKBUILD
* main/freeradius3: fix ssl version checkNatanael Copa2015-08-212-5/+5
| | | | only check 'staus' field of version. This is what upstream does.
* main/freeradius3: fix checksumNatanael Copa2015-08-211-0/+24
|
* main/freeradius3: bump pkg to fix ssl mismatchLeonardo Arena2015-08-211-25/+1
|
* main/acf-kamailio: upgrade to 0.9.3Ted Trask2015-08-171-4/+4
| | | | (cherry picked from commit 33696ff4c4f593b5c06bafac16d6206c4c591eea)
* main/zabbix: upgrade to 2.4.6Leonardo Arena2015-08-101-4/+4
| | | | (cherry picked from commit 8c36389bf5b112f6b37bfb75a5a7136bb83e8ba8)
* main/sqlite: fix source urlNatanael Copa2015-08-071-1/+1
|
* main/pcre: various security fixesNatanael Copa2015-08-074-6/+158
| | | | | | | | | | | | | | CVE-2015-3210 CVE-2015-3217 CVE-2015-5073 fixes #4290 fixes #4403 (cherry picked from commit 77345a923c72d9e8d0a4202d893239ba43b903a3) Conflicts: main/pcre/APKBUILD
* main/sqlite: security upgrade to 3.8.10.2Natanael Copa2015-08-071-5/+5
| | | | | | | | | CVE-2015-3414 use of uninitialized memory when parsing collation sequences in src/where.c CVE-2015-3415 invalid free() in src/vdbe.c CVE-2015-3416 stack buffer overflow in src/printf.c fixes #4304
* main/polkit: various security fixesNatanael Copa2015-08-064-1/+1203
| | | | | | | | | | | CVE-2015-3218 CVE-2015-3255 CVE-2015-4625 ref #4411 fixes #4414 (cherry picked from commit a215f1937c91916b1b5162e49e996708eb456e67)
* main/squashfs-tools: security fix for CVE-2015-4645/4646Natanael Copa2015-08-052-4/+37
| | | | | ref #4416 fixes #4419
* main/squashfs-tools: fix variable length array overflowNatanael Copa2015-08-052-4/+29
| | | | | | | | | we can not guarantee that block size specified in user data will not overflow the stack so we need to use malloc. this fixes segfault when doing unsquashfs (cherry picked from commit 2fafe3d1eb933216776b191c85565ec5289161da)
* main/qemu: security fix for CVE-2015-5154Natanael Copa2015-08-052-1/+180
| | | | fixes #4495
* main/qemu: security fix for CVE-2015-4037Natanael Copa2015-08-052-1/+55
| | | | | ref #4324 fixes #4327
* main/net-snmp: security fix for CVE-2015-5621Natanael Copa2015-08-052-1/+138
| | | | fixes #4501
* main/ghostscript: security fix for CVE-2015-3228Natanael Copa2015-08-042-5/+39
| | | | fixes #4471
* main/bind: security upgrade to 9.10.2_p3 (CVE-2015-4620,CVE-2015-5477)Natanael Copa2015-08-041-4/+4
| | | | fixes #4508
* main/py-django: security upgrade to 1.7.9 ↵Natanael Copa2015-07-311-4/+4
| | | | (CVE-2015-5143,CVE-2015-5144,CVE-2015-5145)
* main/cacti: security upgrade to 0.8.8f (CVE-2015-4634)Natanael Copa2015-07-311-4/+4
| | | | fixes #4481
* main/openssh: security fix for CVE-2015-5600Natanael Copa2015-07-302-3/+54
| | | | fixes #4476
* main/linux-virt-grsec: fix x86 configNatanael Copa2015-07-212-8/+10
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-05 04:06:23 +0000