aboutsummaryrefslogtreecommitdiffstats
path: root/main
Commit message (Collapse)AuthorAgeFilesLines
...
* main/mercurial: security upgrade to 4.3.1Natanael Copa2017-08-181-2/+6
| | | | | | | fixes #7692 CVE-2017-1000115 CVE-2017-1000116
* main/pcre: security upgrade to 8.41Natanael Copa2017-08-182-63/+8
| | | | | | CVE-2017-7244 CVE-2017-7245 CVE-2017-7246
* main/supervisor: security upgrade to 3.2.4 (CVE-2017-11610). Fixes #7686Francesco Colista2017-08-171-5/+10
|
* main/goaccess: re-enable geoipNatanael Copa2017-08-151-2/+2
| | | | | | fixes #7587 (cherry picked from commit 79289613b08a2dc8e54e52e92844ad900cb97dc1)
* main/mkinitfs: fix crc32 module deps for ext4Natanael Copa2017-08-142-2/+37
| | | | | | fixes #7611 (cherry picked from commit 32dd6f16bf1645ffdf1f6019575fc130702fa047)
* main/c-ares: fix for CVE-2017-1000381. Fixes #7526Francesco Colista2017-08-142-5/+52
|
* main/subversion: security upgrade to 1.9.7. Fixes #7668Francesco Colista2017-08-141-4/+9
|
* main/libressl: upgrade to 2.5.5Ole-Martin Bratteng2017-08-141-2/+2
| | | | fixes #7683
* main/postgresql: security upgrade to 9.6.4 ↵Natanael Copa2017-08-141-2/+6
| | | | | | (CVE-2017-7546,CVE-2017-7547,CVE-2017-7548) fixes #7661
* main/libsoup: security upgrade to 2.58.2Francesco Colista2017-08-142-2/+63
| | | | | | CVE-2017-2885 Fixes #7677
* main/lame: fix secfixes commentNatanael Copa2017-08-141-1/+1
|
* main/curl: security upgrade to 7.55.0Natanael Copa2017-08-143-199/+44
| | | | | | | | CVE-2017-1000099 CVE-2017-1000100 CVE-2017-1000101 fixes #7654
* main/git: update to 2.13.5 (CVE-2017-1000117)Shiz2017-08-111-2/+6
|
* main/spamassassin: sa-update needs curl or gnu wget. Fixes #7610Francesco Colista2017-08-091-12/+2
|
* main/samba: fix for CVE-2017-11103. Fixes #7533Francesco Colista2017-08-092-3/+48
|
* main/memcached: fix for CVE-2017-9951. Fixes #7641Francesco Colista2017-08-092-3/+51
|
* main/libsndfile: fix for CVE-2017-12562. Fixes #7647Francesco Colista2017-08-092-2/+102
|
* main/libmtp: security fix to 1.1.13Francesco Colista2017-08-091-4/+10
| | | | | | CVE-2017-9831 CVE-2017-9832 Fixes #7551
* main/spice: fix for CVE-2017-7506Francesco Colista2017-08-082-3/+163
| | | | | | | | | | | There's no reference to bugs.alpinelinux.org for this alpine version (3.6). Still, it's vulnerable. Backported patches from gentoo: * https://gitweb.gentoo.org/repo/gentoo.git/tree/app-emulation/spice/files/spice-0.13.3-reds-Disconnect-when-receiving-overly-big-ClientMoni.patch * https://gitweb.gentoo.org/repo/gentoo.git/tree/app-emulation/spice/files/spice-0.13.3-reds-Avoid-integer-overflows-handling-monitor-config.patch * https://gitweb.gentoo.org/repo/gentoo.git/tree/app-emulation/spice/files/spice-0.13.3-reds-Avoid-buffer-overflows-handling-monitor-configu.patch
* main/mpg123: security upgrade to 1.25.4 (CVE-2017-9545,CVE-2017-11126)Natanael Copa2017-08-071-2/+7
| | | | fixes #7595
* main/ncurses: fix for CVE-2017-10684 and CVE-2017-10685. Fixes #7564Francesco Colista2017-08-072-5/+215
|
* main/bind: fix for CVE-2017-3142 and CVE-2017-3143. Fixes #7497Francesco Colista2017-08-071-2/+2
|
* main/bind: fix for CVE-2017-3142 and CVE-2017-3143. Fixes #7497Francesco Colista2017-08-072-2/+291
|
* main/jasper: security fix CVE-2017-1000050. Fixes #7573Francesco Colista2017-08-072-11/+24
|
* main/tiff: security upgrade to 4.0.8. Fixes #7482Francesco Colista2017-08-073-42/+138
|
* main/varnish: security fix CVE-2017-12425Francesco Colista2017-08-072-4/+121
|
* main/tcpdump: security update to 4.9.1. Fixes #7634Francesco Colista2017-08-071-6/+51
|
* main/lame: security fixes:Francesco Colista2017-08-074-5/+74
| | | | | | | | | | * CVE-2015-9099 * CVE-2015-9100 * CVE-2017-9410 * CVE-2017-9411 * CVE-2017-9412 * CVE-2017-11720 Fixes #7627
* main/libtasn1: fix CVE-2017-10790. Fixes #7602Francesco Colista2017-08-032-5/+64
|
* main/busybox: Fixed segfault in microcomMarian Buschsieweke2017-08-032-1/+34
| | | | | | | | microcom does not check if required parameter "TTY" is present. Thus, bb_basename() is called with a NULL pointer, if microcom is started without any parameter. This in turn calls strlen() on this NULL pointer, resulting in a segfault. The supplied patch adds a check for the missing TTY parameter and prints usage when it is missing.
* main/ffmpeg: upgrade to 3.2.6Timo Teräs2017-07-281-3/+3
|
* main/openssh: fix secfixes commentNatanael Copa2017-07-201-1/+0
| | | | (cherry picked from commit d9b200e3dd0b2a723993f2e6d625bdd54e96a041)
* main/libidn: fix secfixes commentNatanael Copa2017-07-201-4/+4
| | | | (cherry picked from commit 8a25e031b07b773c4abdabe2f55faf44b187ea5a)
* main/lcms2: fix indentation of secfixes commentNatanael Copa2017-07-201-2/+2
| | | | (cherry picked from commit 514646bd5fbeb993692f17edac8c7e62dd6366a7)
* abuild: backport sanitycheck of secfixes commentNatanael Copa2017-07-202-2/+57
|
* main/bacula: move client init scripts into client subpkgLeonardo Arena2017-07-201-2/+6
| | | | (cherry picked from commit 2ec19441452ea5fc8cdc7432709ebc0d2f917b85)
* main/heimdal: security fix CVE-2017-11103Leonardo Arena2017-07-182-14/+40
| | | | Fixes #7539
* main/apache2: security upgrade to 2.4.27Kaarle Ritvanen2017-07-161-2/+4
|
* main/nodejs: take maintainershipJakub Jirutka2017-07-141-1/+1
| | | | Eivind Uggedal is not active for a long time.
* main/nodejs: fix CVE-2017-1000381 and Constant Hashtable SeedsJakub Jirutka2017-07-144-3/+166
| | | | See: https://nodejs.org/en/blog/vulnerability/july-2017-security-releases/
* main/nginx: upgrade to 1.12.1 (security fix)Jakub Jirutka2017-07-141-3/+8
| | | | | Fixes: http://bugs.alpinelinux.org/issues/7518 See also: http://mailman.nginx.org/pipermail/nginx-announce/2017/000200.html
* main/linux-firmware: update firmware for rpi3 wifiCarlo Landmeter2017-07-121-10/+19
| | | | | | fixes #5297 (cherry picked from commit 46edfde10d8e5baec6bfaef2fedc311108465d82)
* main/irssi: security uprade to 1.0.4Łukasz Jendrysik2017-07-081-2/+5
| | | | | Fixes CVE-2017-10965 and CVE-2017-10966 More details: https://irssi.org/security/irssi_sa_2017_07.txt
* main/apache2: security upgrade to 2.4.26Kaarle Ritvanen2017-07-0616-106/+312
| | | | fixes #7464
* main/lxc: backport ppc64le supportNatanael Copa2017-07-062-2/+44
| | | | (cherry picked from commit 1a30a04c86dd7664de2630bb955103e40aac1111)
* main/lxc: upgrade to 2.0.8Natanael Copa2017-07-062-64/+3
| | | | (cherry picked from commit fe85964591759923e783be970405d145be201e91)
* main/musl: cherry-pick upstream fixesTimo Teräs2017-07-059-1/+548
| | | | including regression fix for promoting RTLD_LOCAL to RTLD_GLOBAL
* main/musl: cherry-pick upstream fixesTimo Teräs2017-07-059-1/+312
| | | | fixes #7390
* main/musl: cherry-pick upstream fixes, add strftime gnu extensionsTimo Teräs2017-07-0511-1/+550
| | | | ref #5907
* main/libgcrypt: security upgrade to 1.7.8 (CVE-2017-7526)Natanael Copa2017-07-051-2/+2
| | | | fixes #7476
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-07 11:48:00 +0000