aboutsummaryrefslogtreecommitdiffstats
path: root/main
Commit message (Collapse)AuthorAgeFilesLines
...
* main/perl: use system zlib and bzip2Natanael Copa2017-10-111-2/+19
| | | | | | | | | | | The bundled zlib 1.2.8 is vulnerable to: - CVE-2016-9843 - CVE-2016-9841 - CVE-2016-9840 - CVE-2016-9842 Force building with system zlib, and while at it, also do that with bzip2
* main/ghostscript: security upgrade to 9.22. Fixes #7993Francesco Colista2017-10-111-8/+4
|
* main/perl: security upgrade to 5.24.3 (CVE-2017-12837,CVE-2017-12883)Natanael Copa2017-10-103-1610/+9
| | | | fixes #7898
* main/apk-tools: upgrade to 2.7.3Timo Teräs2017-10-062-39/+2
|
* main/curl: security upgrade to 7.56.0 (CVE-2017-1000254)Natanael Copa2017-10-042-40/+4
| | | | fixes #7962
* main/busybox: backport provides /bin/shNatanael Copa2017-10-041-1/+2
| | | | this makes it easier to mix edge repo with stable.
* main/python3: split out wininst*.exeNatanael Copa2017-10-021-2/+9
| | | | | | | | the wininst is only needed for creating binary distribution for windows and is rarely needed. The precompiled .exe files contains statically linked version of zlib 1.2.8 which is vulnerable. Remove them from main package and save a couple of MB.
* main/sqlite: security upgrade to 3.20.1 (CVE-2017-10989)Natanael Copa2017-10-021-2/+6
| | | | fixes #7950
* main/dnsmasq: backport patches for CVE-2017-14491..14496Jakub Jirutka2017-10-028-1/+554
|
* main/mkinitfs: fix Makefile to install btrfs.filesJakub Jirutka2017-09-222-3/+16
|
* main/mkinitfs: fix booting from Btrfs RAIDJakub Jirutka2017-09-222-2/+46
| | | | See http://bugs.alpinelinux.org/issues/6903
* main/openjpeg: security upgrade to 2.2.0 and fixesFrancesco Colista2017-09-217-24/+309
| | | | | | | | | | | - CVE-2017-14040 - CVE-2017-14041 - CVE-2017-14151 - CVE-2017-14152 - CVE-2017-14164 Fixes partially #7826. Not yet fixed CVE-2017-14039 since patch is not available for 2.2.0
* main/apache2: fix CVE-2017-9798 aka OptionsbleedDaniel Isaksen2017-09-212-1/+20
|
* main/asterisk: security upgrade to 14.6.2 (CVE-2017-14099)Timo Teräs2017-09-201-2/+2
| | | | AST-2017-008 (CVE-2017-14099): RTP/RTCP information leak
* Revert "main/homer-ui: moved from community"Kaarle Ritvanen2017-09-191-37/+0
| | | | This reverts commit 5447327088bd1d3d797d8760daf18c3de73f23c7.
* Revert "main/homer-api: moved from community"Kaarle Ritvanen2017-09-194-134/+0
| | | | This reverts commit c5090b0c13f6d6f1fe2a52185100dbc7c9c549b6.
* Revert "main/captagent: moved from community"Kaarle Ritvanen2017-09-194-91/+0
| | | | This reverts commit 18fe037b8374692940023e8d494909188f658434.
* main/libgcrypt: security upgrade to 1.7.9 (CVE-2017-0378)Natanael Copa2017-09-191-2/+6
| | | | fixes #7832
* main/homer-ui: moved from communityKaarle Ritvanen2017-09-191-0/+37
|
* main/homer-api: moved from communityKaarle Ritvanen2017-09-194-0/+134
|
* main/captagent: moved from communityKaarle Ritvanen2017-09-194-0/+91
|
* main/bluez: security fixes for CVE-2017-1000250. Fixes #7844Francesco Colista2017-09-182-2/+33
|
* main/tcpdump: upgrade to 4.9.2Andy Postnikov2017-09-151-2/+2
| | | | | Lots of security fixes http://www.tcpdump.org/tcpdump-changes.txt fixes #7839
* main/xen: upgrade to 4.8.2Natanael Copa2017-09-155-251/+60
| | | | fixes #7733
* main/ruby: fix secfixes entryJakub Jirutka2017-09-151-1/+1
|
* main/ruby: upgrade to 2.4.2 (security fixes)Jakub Jirutka2017-09-151-3/+15
|
* main/acf-lib: upgrade to 0.10.1Ted Trask2017-09-131-2/+2
| | | | (cherry picked from commit d04697c861eb21cdfe06baaee96d312586e03ee8)
* main/acf-core: upgrade to 0.21.1Ted Trask2017-09-131-2/+2
| | | | (cherry picked from commit f2933db7a757a6207ed2f57cbb0de7c1aff265db)
* main/libarchive: security fix for CVE-2017-14166. Fixes #7804Francesco Colista2017-09-112-3/+44
|
* main/oniguruma: security upgrade to 6.3.0Francesco Colista2017-09-111-7/+7
| | | | | | | | | | | fixes #7812 CVE-2017-9224 CVE-2017-9225 CVE-2017-9226 CVE-2017-9227 CVE-2017-9228 CVE-2017-9229
* main/file: security upgrade to 5.32. Fixes #7809Francesco Colista2017-09-111-2/+6
|
* main/asterisk: security upgrade to 14.6.1Timo Teräs2017-09-061-3/+3
| | | | | | | | fixes #7792 AST-2017-005: Media takeover in RTP stack AST-2017-006: Shell access command injection in app_minivm AST-2017-007: Remote Crash Vulerability in res_pjsip
* main/asterisk: fix init.d to enable core dumps when requestedTimo Teräs2017-09-062-2/+3
| | | | | | fixes #7583 (cherry picked from commit d920dcd3a738d5729e5ae69fbfa104f22ec87010)
* main/asterisk: upgrade to 14.6.0Timo Teräs2017-09-062-42/+42
| | | | (cherry picked from commit af7f75ee2464cc1900b6a6721780bef48fa7a150)
* main/asterisk: upgrade to 14.5.0Timo Teräs2017-09-062-89/+322
| | | | | | rebase iostream patch (cherry picked from commit d3b69542ac82d1e357a1459849fd3a79f354d1bf)
* main/libraw: security fixes from debianTimo Teräs2017-09-052-7/+96
| | | | | | | fixes #7741 CVE-2017-6886 CVE-2017-6887
* main/postgresql: upgrade to 9.6.5Jakub Jirutka2017-09-051-3/+3
|
* main/pcre: add secfix comment for CVE-2017-11164Natanael Copa2017-08-291-0/+2
| | | | | | | We have had the compile option --with-match-limit-recursion=8192 since the very first commit so we have never been affected by this CVE. fixes #7702
* main/py-cryptography: fix missing dependenciesJakub Jirutka2017-08-291-3/+3
|
* main/py-packaging: move from community (needed for py-cryptography)Jakub Jirutka2017-08-291-0/+49
|
* main/libmspack: fix for CVE-2017-6419, CVE-2017-11423. Fixes #7757Francesco Colista2017-08-283-5/+117
|
* main/openjpeg: fixed patch for CVE-2017-12982Francesco Colista2017-08-232-24/+14
|
* main/openjpeg: security fix for CVE-2017-12982. Fixes #7713Francesco Colista2017-08-232-5/+36
|
* main/kamailio: backport TLS mod patches for LibreSSL from OpenBSDSergey Safarov2017-08-233-1/+136
| | | | (cherry picked from commit 29b8e946b311e0f2712874bb73891477f8a74eaf)
* main/kamailio: Updated package version to 5.0.2. Added kazoo module.Sergey Safarov2017-08-236-268/+25
| | | | (cherry picked from commit ae11ee328c2d7ab250ccebff866c8c120c14775a)
* main/lxterminal: security fix for CVE-2016-10369Daniel Sabogal2017-08-222-3/+35
|
* main/newsbeuter: security fix for CVE-2017-12904Natanael Copa2017-08-222-2/+44
| | | | fixes #7727
* main/augeas: add secfix commentNatanael Copa2017-08-221-0/+4
|
* main/augeas: security upgrade to 1.8.1 (CVE-2017-7555)Natanael Copa2017-08-221-2/+2
| | | | fixes #7720
* main/mariadb: security upgrade to 10.1.26Natanael Copa2017-08-191-3/+13
| | | | | | | | | | | | | fixes #7705 CVE-2017-3636 CVE-2017-3641 CVE-2017-3653 CVE-2017-3308 CVE-2017-3309 CVE-2017-3453 CVE-2017-3456 CVE-2017-3464
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-06 17:17:52 +0000