aboutsummaryrefslogtreecommitdiffstats
path: root/main
Commit message (Collapse)AuthorAgeFilesLines
...
* main/vim: security upgrade to 8.0.0329 - fixes #6863Sergey Lukin2017-02-161-4/+7
| | | | CVE-2017-5953: Tree length values not validated properly when handling a spell file
* main/owncloud: upgrade to 9.1.4Leonardo Arena2017-02-131-13/+13
|
* main/bind: security upgrade to 9.10.4_p6 - fixes #6829Sergey Lukin2017-02-131-5/+7
| | | | CVE-2017-3135: Combination of DNS64 and RPZ Can Lead to Crash
* main/postfixadmin: security upgrade to 3.0.2 - fixes #6835Sergey Lukin2017-02-131-15/+15
| | | | | | CVE-2017-5930: allows to delete protected aliases https://svn.code.sf.net/p/postfixadmin/code/trunk/CHANGELOG.TXT
* main/postgresql: update to 9.6.2Jakub Jirutka2017-02-131-4/+4
|
* main/opensmtpd: fix libressl arc4random circularityCarlo Landmeter2017-02-102-5/+44
|
* main/nss: fix checksumTimo Teräs2017-02-091-0/+6
| | | | (cherry picked from commit b1397dbdb8c571b5368878b0624d30ef233c47b4)
* main/nss: add nss-softokn and nss-util pkgconfig filesTimo Teräs2017-02-093-12/+42
| | | | (cherry picked from commit 8e7189a1617d04d056d6936f4924d8ea7b647dc0)
* main/wireshark: security upgrade to 2.2.4 - fixes #6823Sergey Lukin2017-02-081-4/+8
| | | | | CVE-2017-5596: ASTERIX infinite loop CVE-2017-5597: DHCPv6 large loop
* main/git: Upgrade to 2.11.1pbregener2017-02-071-4/+4
| | | | (cherry picked from commit e4a237db89475f7747c8ad13feea37f51a10d7da)
* main/tcpdump: security upgrade to 4.9.0 - fixes #6812Sergey Lukin2017-02-071-5/+50
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | CVE-2016-7922 (arbitrary code execution) CVE-2016-7923 (arbitrary code execution) CVE-2016-7924 (arbitrary code execution) CVE-2016-7925 (arbitrary code execution) CVE-2016-7926 (arbitrary code execution) CVE-2016-7927 (arbitrary code execution) CVE-2016-7928 (arbitrary code execution) CVE-2016-7929 (arbitrary code execution) CVE-2016-7930 (arbitrary code execution) CVE-2016-7931 (arbitrary code execution) CVE-2016-7932 (arbitrary code execution) CVE-2016-7933 (arbitrary code execution) CVE-2016-7934 (arbitrary code execution) CVE-2016-7935 (arbitrary code execution) CVE-2016-7936 (arbitrary code execution) CVE-2016-7937 (arbitrary code execution) CVE-2016-7938 (arbitrary code execution) CVE-2016-7939 (arbitrary code execution) CVE-2016-7940 (arbitrary code execution) CVE-2016-7973 (arbitrary code execution) CVE-2016-7974 (arbitrary code execution) CVE-2016-7975 (arbitrary code execution) CVE-2016-7983 (arbitrary code execution) CVE-2016-7984 (arbitrary code execution) CVE-2016-7985 (arbitrary code execution) CVE-2016-7986 (arbitrary code execution) CVE-2016-7992 (arbitrary code execution) CVE-2016-7993 (arbitrary code execution) CVE-2016-8574 (arbitrary code execution) CVE-2016-8575 (arbitrary code execution) CVE-2017-5202 (arbitrary code execution) CVE-2017-5203 (arbitrary code execution) CVE-2017-5204 (arbitrary code execution) CVE-2017-5205 (arbitrary code execution) CVE-2017-5341 (arbitrary code execution) CVE-2017-5342 (arbitrary code execution) CVE-2017-5482 (arbitrary code execution) CVE-2017-5483 (arbitrary code execution) CVE-2017-5484 (arbitrary code execution) CVE-2017-5485 (arbitrary code execution) CVE-2017-5486 (arbitrary code execution)
* main/wavpack: security upgrade to 5.1.0 - fixes #6818Sergey Lukin2017-02-071-13/+17
| | | | | | | CVE-2016-10169: global buffer overread in read_code / read_words.c CVE-2016-10170: Heap out of bounds read in WriteCaffHeader / caff.c CVE-2016-10171: heap out of bounds read in unreorder_channels / wvunpack.c CVE-2016-10172: Heap out of bounds read in read_new_config_info / open_utils.c
* main/libevent: security fixes #6799Sergey Lukin2017-02-074-9/+290
| | | | | | CVE-2016-10195: dns remote stack overread vulnerability CVE-2016-10196: (stack) buffer overflow in evutil_parse_sockaddr_port() CVE-2016-10197: out-of-bounds read in search_make_new()
* main/apk-tools: fix error message short readNatanael Copa2017-02-022-4/+45
| | | | | | also triggers rebuild which might fix apk.static (ref #6795) (cherry picked from commit 5ef7a332f8186986761c3280b8b2c2bf1c02f230)
* main/xen: fix secdb commentNatanael Copa2017-02-011-4/+4
| | | | replace tabs with space
* main/libarchive: security fixes #6791Sergei Lukin2017-02-012-5/+40
| | | | CVE-2017-5601: Out of bounds read in lha_read_file_header_1() function
* main/ansible: security upgrade to 2.2.1.0 - fixes #6783Sergei Lukin2017-02-011-4/+9
| | | | CVE-2016-9587: host to controller command execution vulnerability
* main/lcms2: security fixes #6778Sergei Lukin2017-02-012-9/+39
| | | | CVE-2016-10165: Out-of-bounds read in Type_MLU_Read()
* main/bzip2: fix secfixes commentNatanael Copa2017-02-011-1/+2
|
* main/ulogd: bump pkgrel to build ulogd_output_PCAP.soBartłomiej Piotrowski2017-02-011-1/+1
| | | | | | For some reason 3.5 builders failed to build ulogd_output_PCAP.so properly, while it is present in both 3.4 and edge. Simple rebuild fixes that.
* main/lighttpd: upgrade to 1.4.45Łukasz Jendrysik2017-01-311-4/+4
| | | | (cherry picked from commit 5f63fb537b4d2008af0fea3d3035ab03d22748ab)
* main/lighttpd: upgrade to 1.4.44André Klitzing2017-01-311-4/+4
| | | | (cherry picked from commit 2cc0910fda6fa2a5050af4239eef196d797e68a2)
* main/linux-rpi: declare our kernels with ddtk tag for dtbo supportTimo Teräs2017-01-272-5/+5
| | | | (cherry picked from commit 7da0f80150904aec3298e62e0dffdb917153c94d)
* main/openssl: upgrade to 1.0.2kNatanael Copa2017-01-271-5/+5
| | | | (cherry picked from commit 49effa784421467508e5906d4e037c39d311929f)
* ==== release 3.5.1 ====v3.5.1Natanael Copa2017-01-261-1/+1
|
* main/musl: upstream fixes, and add ipv6 features to getentTimo Teräs2017-01-2612-6/+615
| | | | | | fixes #6590 (cherry picked from commit 89a718d88ec7466e721f3bbe9ede5ffe58061d78)
* main/libxpm: security upgrade to 3.5.12 (CVE-2016-10164)Natanael Copa2017-01-261-5/+5
| | | | fixes #6751
* main/zfs-grsec: rebuild against kernel 4.4.45-r0Natanael Copa2017-01-261-2/+2
|
* main/xtables-addons-grsec: rebuild against kernel 4.4.45-r0Natanael Copa2017-01-261-2/+2
|
* main/spl-grsec: rebuild against kernel 4.4.45-r0Natanael Copa2017-01-261-2/+2
|
* main/open-vm-tools-grsec: rebuild against kernel 4.4.45-r0Natanael Copa2017-01-261-2/+2
|
* main/ipfw-grsec: rebuild against kernel 4.4.45-r0Natanael Copa2017-01-261-2/+2
|
* main/drbd9-grsec: rebuild against kernel 4.4.45-r0Natanael Copa2017-01-261-2/+2
|
* main/devicemaster-linux-grsec: rebuild against kernel 4.4.45-r0Natanael Copa2017-01-261-2/+2
|
* main/dahdi-linux-grsec: rebuild against kernel 4.4.45-r0Natanael Copa2017-01-261-2/+2
|
* main/linux-rpi: upgrade to 4.4.45Natanael Copa2017-01-261-4/+4
|
* main/zfs-vanilla: rebuild against kernel 4.4.45-r0Natanael Copa2017-01-261-1/+1
|
* main/spl-vanilla: rebuild against kernel 4.4.45-r0Natanael Copa2017-01-261-1/+1
|
* main/linux-vanilla: upgrade to 4.4.45Natanael Copa2017-01-261-4/+4
|
* main/linux-grsec: upgrade to 4.4.45Natanael Copa2017-01-261-8/+8
|
* main/tiff: security fixes #6734Sergei Lukin2017-01-262-8/+86
| | | | CVE-2017-5225: Heap-buffer overflow in tools/tiffcp via crafted BitsPerSample value
* main/libgit2: security upgrade to 0.24.6 - fixes #6740Sergei Lukin2017-01-262-6/+29
| | | | | | CVE-2016-10128: smart_pkt: verify packet length exceeds PKT_LEN_SIZE CVE-2016-10129: smart_pkt: treat empty packet lines as error CVE-2016-10130: http: check certificate validity before clobbering the error variable
* main/asterisk: fix pjsip module loadingTimo Teräs2017-01-262-17/+126
| | | | | | | ref #6644 (cherry picked from commit c7e134d319bd095176cdcc8f232bc101c4d33253) (cherry picked from commit 702ee464938cd48e962c8963b10967d743c0bcad)
* main/asterisk: cherry-pick upstream follow-up fixes for ASTERISK-24517Timo Teräs2017-01-262-4/+230
| | | | (cherry picked from commit 74cb67a0f5c64a0b2d56a97e61edd436b3cf97dc)
* main/lua-socket: fix udp socket on first sendtoNatanael Copa2017-01-252-4/+57
| | | | | | | | fixes #6603 sent upstream: https://github.com/diegonehab/luasocket/pull/206 (cherry picked from commit 72ccba0e9bd2e371b6356a045431674d471ed5a2)
* main/mkinitfs: fix decrypt of apkovlNatanael Copa2017-01-252-4/+35
| | | | fixes #6689
* main/bind: dont create homedir for bind userNatanael Copa2017-01-252-2/+2
| | | | | | | We dont want copy the content of /etc/skel to /etc/bind fixes #6725 (cherry picked from commit 1328c94d12a24632191f20e762f6ebad5059750b)
* main/openrc: fix hwdrivers to load fbcon on /dev/fb0Natanael Copa2017-01-252-6/+6
| | | | | | | | | | | Instead of checking for fb module we check for /dev/fb0 since we now compile fb directly into the kernel instead of module. We also allow blacklisting it by using `modprobe -b` ref #6723 (cherry picked from commit ab0a08bd0106ce966db6049ca05a0ef7133c7ae0)
* main/eudev: load fbcon when graphics subsystem is loadedTimo Teräs2017-01-252-1/+15
| | | | | | | | | | If this does not work, you probably have not setup udev-trigger init.d service to run. Use 'setup-udev' script to fix this. ref #6490 ref #6723 (cherry picked from commit a7d791240b62a09a49b910469aad1ef54e69aa2a)
* main/eudev: upgrade to 3.2.1Sören Tempel2017-01-251-5/+5
| | | | (cherry picked from commit f9d59b0848ca947d3e4d45130dcc25e308d27e91)
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-10 05:17:35 +0000