| Commit message (Collapse) | Author | Age | Files | Lines | ||
|---|---|---|---|---|---|---|
| ... | ||||||
| * | main/quagga: security upgrade - fixes #6384 | Sergey Lukin | 2016-12-13 | 2 | -1/+52 | |
| | | | | | CVE-2016-1245 | |||||
| * | main/xen: security upgrade - fixes #6351, #6498 | Sergey Lukin | 2016-12-13 | 11 | -1/+842 | |
| | | | | | | | | | | | | | | | CVE-2016-7777 CVE-2016-9377 CVE-2016-9378 CVE-2016-9379 CVE-2016-9380 CVE-2016-9381 CVE-2016-9382 CVE-2016-9383 CVE-2016-9384 CVE-2016-9385 CVE-2016-9386 | |||||
| * | main/memcached: security upgrade to 1.4.33 - fixes: #6448 | Sergey Lukin | 2016-12-13 | 3 | -106/+4 | |
| | | | | | (CVE-2016-8704, CVE-2016-8705, CVE-2016-8706) | |||||
| * | main/p7zip: security upgrade - fixes #6513 | Sergey Lukin | 2016-12-07 | 2 | -9/+29 | |
| | | | | | CVE-2016-9296 | |||||
| * | main/roundcubemail: upgrade to 1.1.7 | Leonardo Arena | 2016-11-30 | 1 | -4/+4 | |
| | | ||||||
| * | main/mariadb: security upgrade to 5.5.53 | Sergey Lukin | 2016-11-25 | 1 | -4/+4 | |
| | | | | | | | | | | | | | | | Fixes #6443 CVE-2016-5616 CVE-2016-5624 CVE-2016-5626 CVE-2016-3492 CVE-2016-5629 CVE-2016-8283 CVE-2016-6663 CVE-2016-7440 CVE-2016-5584 | |||||
| * | main/py-django: security upgrade to 1.8.16 (CVE-2016-9013, CVE-2016-9014) | Leonardo Arena | 2016-11-21 | 1 | -5/+11 | |
| | | | | | | | Fixes #6465 (cherry picked from commit 9f1555ac10091515ef044cdee1fb20db8552f3f8) | |||||
| * | main/mini_httpd: fix patch application in prepare | Ted Trask | 2016-11-10 | 1 | -2/+11 | |
| | | | | | (cherry picked from commit 9249267321fcebf5fadb8c6d8d30b0a8026f6890) | |||||
| * | main/mini_httpd: fix handling of cgi programs with binary output | Ted Trask | 2016-11-10 | 2 | -1/+56 | |
| | | | | | | | ref #6391 (cherry picked from commit 21ffa6d32408a34db0024b59c4eea64a6dfed0d1) | |||||
| * | main/owncloud: upgrade to 8.1.11 | Leonardo Arena | 2016-11-09 | 1 | -10/+10 | |
| | | ||||||
| * | main/acf-provisioning: upgrade to 0.8.14 | Ted Trask | 2016-11-08 | 1 | -4/+4 | |
| | | | | | (cherry picked from commit 66529a3388d221800ca60d9edc780d0c81fd2494) | |||||
| * | main/acf-dhcp: upgrade to 0.8.1 | Ted Trask | 2016-11-07 | 1 | -4/+4 | |
| | | | | | (cherry picked from commit 66d6f136308e6e4d4e98c428668166c5b2def936) | |||||
| * | main/musl: add pthread_set_attr_default_np | Leonardo Arena | 2016-11-01 | 2 | -1/+95 | |
| | | | | | | | Partial cherry-pick of 746dedd0692115e85edce087178d57893632fd16 (cherry picked from commit 512f81f87b692adc10687d87bfefb0e8ce8be5df) | |||||
| * | main/screen: needs ncurses-terminfo | Leonardo Arena | 2016-10-27 | 1 | -2/+2 | |
| | | ||||||
| * | main/kamailio: upgrade mohqueue patch | Leonardo Arena | 2016-10-25 | 2 | -408/+213 | |
| | | | | | https://github.com/kamailio/kamailio/commit/a051bd98652dd92a93175b7cab1e239bab851160 | |||||
| * | main/freeswitch: fix mod_conference thread handling | Timo Teräs | 2016-10-25 | 2 | -4/+20 | |
| | | | | | partial backport of FS-7775 | |||||
| * | main/libx11: security fixes (CVE-2016-7942, CVE-2016-7943) | Leonardo Arena | 2016-10-20 | 3 | -4/+190 | |
| | | | | | Fixes #6316 | |||||
| * | main/libxfixes: securiti fix (CVE-2016-7944). Fixes #6310 | Leonardo Arena | 2016-10-20 | 2 | -5/+65 | |
| | | ||||||
| * | main/libxi: security fixes (CVE-2016-7945, CVE-2016-7946) | Leonardo Arena | 2016-10-20 | 2 | -10/+415 | |
| | | | | | | | Fixes #6304 (cherry picked from commit ffaa32a96062a37c4b3aff0dc2b6e37661dab85a) | |||||
| * | main/libxrender: security fix (CVE-2016-7949, CVE-2016-7950) | Leonardo Arena | 2016-10-19 | 3 | -5/+143 | |
| | | | | | | | Fixes #6292 (cherry picked from commit 28cfd0e5313c4075e486c29630eb0a7684c551c5) | |||||
| * | main/musl: fix missing int overflow checks in regex | Natanael Copa | 2016-10-19 | 2 | -1/+78 | |
| | | ||||||
| * | main/libxtst: security fix (CVE-2016-7951, CVE-2016-7952) | Leonardo Arena | 2016-10-19 | 2 | -4/+153 | |
| | | | | | | | Fixes #6285 (cherry picked from commit 844d03dc7da8ceadec964dc59dc4ba8c7d691ff4) | |||||
| * | main/libxv: security fix (CVE-2016-5407). Fixes #6280 | Leonardo Arena | 2016-10-19 | 2 | -4/+163 | |
| | | | | | (cherry picked from commit b2820a7bb79081788581c1c527281642d6341fc2) | |||||
| * | main/libxvmc: security fix (CVE-2016-7953). Fixes #6274 | Leonardo Arena | 2016-10-19 | 2 | -5/+53 | |
| | | | | | (cherry picked from commit 64829de6223eea876af4dfff594135fb79b114ae) | |||||
| * | main/openjpeg: security upgrade to 2.1.2 (CVE-2016-7445). Fixes #6264 | Leonardo Arena | 2016-10-19 | 3 | -103/+10 | |
| | | | | | (cherry picked from commit 75fc21729969f5ee39b47bd07b3c76b9c4d08d6d) | |||||
| * | main/gnutls: security fix (CVE-2016-7444). Fixes #6232 | Leonardo Arena | 2016-10-19 | 2 | -5/+40 | |
| | | ||||||
| * | main/bind: security upgrade to 9.10.4_p3 (CVE-2016-2776) | Leonardo Arena | 2016-10-19 | 1 | -4/+8 | |
| | | | | | Fixes #6226 | |||||
| * | main/irssi: security upgrade to 0.8.20 (CVE-2016-7044, CVE-2016-7045) | Leonardo Arena | 2016-10-19 | 1 | -5/+10 | |
| | | | | | Fixes #6213 | |||||
| * | main/phpmyadmin: security upgrade to 4.4.15.8. Fixes #6198 | Leonardo Arena | 2016-10-18 | 1 | -4/+34 | |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | - CVE-2016-6606 - CVE-2016-6607 - CVE-2016-6608 - CVE-2016-6609 - CVE-2016-6610 - CVE-2016-6611 - CVE-2016-6612 - CVE-2016-6613 - CVE-2016-6614 - CVE-2016-6615 - CVE-2016-6616 - CVE-2016-6617 - CVE-2016-6618 - CVE-2016-6619 - CVE-2016-6620 - CVE-2016-6622 - CVE-2016-6623 - CVE-2016-6624 - CVE-2016-6625 - CVE-2016-6626 - CVE-2016-6627 - CVE-2016-6628 - CVE-2016-6629 - CVE-2016-6630 - CVE-2016-6631 - CVE-2016-6632 - CVE-2016-6633 | |||||
| * | main/libarchive: security upgrade to 3.2.1 (CVE-2016-5418,CVE-2016-7166) | Natanael Copa | 2016-10-18 | 8 | -451/+8 | |
| | | | | | fixes #6246 | |||||
| * | main/php: security upgrade to 5.6.27. Fixes #6192 | Leonardo Arena | 2016-10-18 | 1 | -4/+14 | |
| | | | | | | | | | | | | CVE-2016-7411: A memory corruption error may occur during deserialized object destruction CVE-2016-7412: A heap overflow may occur in the processing of BIT fields in mysqlnd CVE-2016-7413: A use-after-free memory error may occur in wddx_deserialize() CVE-2016-7414: An out-of-bounds memory error may occur in phar_parse_zipfile() CVE-2016-7416: A memory corruption error may occur in processing locale data CVE-2016-7417: A memory corruption error may occur when unserializing SplArray CVE-2016-7418: An out-of-bounds memory read error may occur in php_wddx_push_element() (cherry picked from commit c498273a9b9628de4f8a7115271dddfd87ea7807) | |||||
| * | main/c-ares: security upgrade to 1.12.0 (CVE-2016-5180) | Natanael Copa | 2016-10-18 | 1 | -6/+9 | |
| | | | | | fixes #6259 | |||||
| * | main/openssl: security upgrade to 1.0.2j (CVE-2016-7052) | Natanael Copa | 2016-10-18 | 1 | -4/+6 | |
| | | | | | fixes #6243 | |||||
| * | main/curl: security fix for CVE-2016-7167 | Natanael Copa | 2016-10-18 | 2 | -5/+64 | |
| | | | | | fixes #6185 | |||||
| * | main/mariadb: security upgrade to 5.5.51. Fixes #6172 | Leonardo Arena | 2016-10-17 | 1 | -4/+18 | |
| | | | | | | | | | | | | | | | CVE-2016-0647 CVE-2016-0648 CVE-2016-0666 CVE-2016-0643 CVE-2016-5444 CVE-2016-3452 CVE-2016-3477 CVE-2016-3521 CVE-2016-3615 CVE-2016-5440 CVE-2016-6662 | |||||
| * | main/krb5: security upgrade to 1.13.6 (CVE-2016-3120). Fixes #6160 | Leonardo Arena | 2016-10-14 | 11 | -2352/+10 | |
| | | ||||||
| * | main/xen: security fixes. Fixes #6154 | Leonardo Arena | 2016-10-14 | 6 | -6/+365 | |
| | | | | | | | | | | CVE-2016-7092, XSA-185: x86: Disallow L3 recursive pagetable for 32-bit PV guests¶ CVE-2016-7093, XSA-186: x86: Mishandling of instruction pointer truncation during emulation¶ CVE-2016-7094, XSA-187: x86 HVM: Overflow of sh_ctxt->seg_reg[]¶ CVE-2016-7154, XSA-188: use after free in FIFO event channel code (cherry picked from commit 4e7e31ba548ffec94da90438b7f64a61026becd8) | |||||
| * | main/flex: security fix (CVE-2016-6354). Fixes #6090 | Leonardo Arena | 2016-10-14 | 2 | -5/+61 | |
| | | ||||||
| * | main/curl: security fix (CVE-2016-7141). Fixes #6136 | Leonardo Arena | 2016-10-14 | 2 | -5/+53 | |
| | | | | | (cherry picked from commit 5d819a073fb59aa30d6f4614784fef677bb39a49) | |||||
| * | main/roundcubemail: upgrade to 1.1.6 | Leonardo Arena | 2016-10-12 | 1 | -4/+4 | |
| | | ||||||
| * | main/py-django: security upgrade to 1.8.15 | Kaarle Ritvanen | 2016-09-28 | 1 | -4/+4 | |
| | | ||||||
| * | main/libbsd: security fix (CVE-2016-2090). Fixes #6095 | Leonardo Arena | 2016-09-23 | 2 | -4/+52 | |
| | | ||||||
| * | main/openssl: security upgrade to 1.0.2i | Natanael Copa | 2016-09-22 | 10 | -1376/+12 | |
| | | | | | | | | | fixes #6209 - CVE-2016-2183 - CVE-2016-6304 - CVE-2016-6306 | |||||
| * | main/owncloud: upgrade to 8.1.10 | Leonardo Arena | 2016-09-22 | 1 | -10/+10 | |
| | | ||||||
| * | main/openssl: fix patch for CVE-2016-2181 | Natanael Copa | 2016-09-19 | 2 | -5/+34 | |
| | | | | | | Add a missing patch. ref #6179 | |||||
| * | main/openssl: backport various secfixes | Natanael Copa | 2016-09-19 | 7 | -4/+930 | |
| | | | | | | | | | | | fixes #6179 - CVE-2016-2179 - CVE-2016-2181 - CVE-2016-2182 - CVE-2016-6302 - CVE-2016-6303 | |||||
| * | main/gd: security fixes. Fixes #6077 | Leonardo Arena | 2016-09-14 | 10 | -5/+495 | |
| | | | | | | | | | | | | CVE-2015-8874 CVE-2016-5116 CVE-2016-5766 CVE-2016-6128 CVE-2016-6161 CVE-2016-6214 (cherry picked from commit b977ac9875306ca4c7da72609ffc99410c1cb123) | |||||
| * | main/libgcrypt: trac sec fix | Leonardo Arena | 2016-09-14 | 1 | -0/+3 | |
| | | ||||||
| * | main/libgcrypt: security upgrade to 1.6.6 (CVE-2016-6313). Fixes #6066 | Leonardo Arena | 2016-09-14 | 1 | -4/+4 | |
| | | | | | (cherry picked from commit 0fd89f564d04e956a00fcd0ccff6d3047030184e) | |||||
| * | main/wireshark: trac more sec fixes | Leonardo Arena | 2016-09-13 | 1 | -0/+2 | |
| | | ||||||
 |
index : aports | |
| Main aports tree | gitolite |
| aboutsummaryrefslogtreecommitdiffstats |