Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | main/libjpeg-turbo: backport fix for CVE-2018-14498 | Leo | 2019-07-22 | 2 | -2/+116 |
| | |||||
* | main/polkit: backport fix for CVE-2019-6133 | Leo | 2019-07-22 | 2 | -1/+162 |
| | |||||
* | main/mercurial: fix CVE-2019-32902 | Leo | 2019-07-22 | 2 | -3/+68 |
| | | | | Fixes https://gitlab.alpinelinux.org/alpine/aports/issues/10376 | ||||
* | main/libcroco: fix a few CVEs | Leo | 2019-07-22 | 4 | -6/+149 |
| | | | | | | | | | - CVE-2017-7960 - CVE-2017-7961 - CVE-2017-8834 - CVE-2017-8871 Fixes https://gitlab.alpinelinux.org/alpine/aports/issues/10566 | ||||
* | main/python2: fix a few CVEs | Leo | 2019-07-22 | 4 | -2/+300 |
| | | | | | | - CVE-2018-14647 - CVE-2019-9636 - CVE-2019-9948 | ||||
* | main/gvfs: backport fixes for a few CVEs | Leo | 2019-07-22 | 5 | -3/+354 |
| | | | | | | | - CVE-2019-12795 - CVE-2019-12449 - CVE-2019-12447 - CVE-2019-12448 | ||||
* | main/py-django: security upgrade to 1.11.22 (CVE-2019-12781) | Natanael Copa | 2019-07-22 | 1 | -2/+4 |
| | | | | fixes #10676 | ||||
* | main/mosquitto: don't build the dockbook | Leonardo Arena | 2019-07-17 | 1 | -2/+2 |
| | | | | | | | | | | | | It needs xsltproc but fails to build xsltproc mosquitto.conf.5.xml warning: failed to load external entity /usr/share/xml/docbook/stylesheet/docbook-xsl/manpages/docbook.xsl compilation error: file manpage.xsl line 3 element import xsl:import : unable to load /usr/share/xml/docbook/stylesheet/docbook-xsl/manpages/docbook.xsl compilation error: file mosquitto.conf.5.xml line 4 element refentry xsltParseStylesheetProcess : document is not a stylesheet make[1]: *** [Makefile:51: mosquitto.conf.5] Error 5 | ||||
* | main/mosquitto: add fix for a few CVEs | Leo | 2019-07-17 | 4 | -2/+761 |
| | | | | | | | | | | - CVE-2018-12546 - CVE-2018-12550 - CVE-2018-12551 Fixes #10270 Signed-off-by: Leonardo Arena <rnalrd@alpinelinux.org> | ||||
* | main/libsndfile: backport fix for CVE-2018-19758 and CVE-2019-3832 | Leo | 2019-07-17 | 2 | -10/+23 |
| | | | | | | Fixes #10109 Signed-off-by: Leonardo Arena <rnalrd@alpinelinux.org> | ||||
* | main/coreutils: add secfixes comment for CVE-2017-18018 | Leo | 2019-07-17 | 1 | -0/+4 |
| | |||||
* | main/avahi: fix CVE-2017-6519 and CVE-2018-1000845 | Leo | 2019-07-17 | 2 | -4/+37 |
| | | | | | | Fixes #9242 Signed-off-by: Leonardo Arena <rnalrd@alpinelinux.org> | ||||
* | main/file: backport a few CVE fixes | Leo | 2019-07-17 | 3 | -3/+130 |
| | | | | | | - CVE-2019-8905 - CVE-2019-8906 - CVE-2019-8907 | ||||
* | main/squid: fix checksum | Natanael Copa | 2019-07-11 | 1 | -7/+0 |
| | |||||
* | main/squid: fix CVE-2019-13345 | Natanael Copa | 2019-07-11 | 2 | -1/+85 |
| | | | | fixes #10669 | ||||
* | main/heimdal: security fix for CVE-2019-12098 | Natanael Copa | 2019-07-11 | 2 | -2/+177 |
| | | | | fixes #10555 | ||||
* | main/tcpflow: backport fix for CVE-2018-18409 | Natanael Copa | 2019-07-08 | 3 | -19/+193 |
| | | | | | | and remove unused patch ref #10429 | ||||
* | main/tcpflow: upgrade to 1.5.0 | Natanael Copa | 2019-07-08 | 1 | -14/+13 |
| | |||||
* | main/bzip2: add patch for CVE-2019-12900 | ntaylor1781 | 2019-07-04 | 2 | -2/+17 |
| | | | | | | | Adding the upstream bzip2 security patch to fix the out of bounds security vulnerability in bzip2. fixes #10647 | ||||
* | main/irssi: security upgrade to 1.0.8 (CVE-2019-13045) | Natanael Copa | 2019-07-04 | 1 | -2/+4 |
| | | | | fixes #10658 | ||||
* | main/postgresql: security upgrade to 10.9 | Milan P. Stanić | 2019-07-04 | 1 | -2/+4 |
| | | | | | | CVE-2019-10164 other upstream bugfixes fixes #10641 | ||||
* | main/patchwork: security fix (CVE-2019-13122) | Francesco Colista | 2019-07-04 | 2 | -3/+27 |
| | |||||
* | main/libvirt: security upgrade to 5.5.0 | Francesco Colista | 2019-07-03 | 3 | -13/+36 |
| | | | | | | (CVE-2019-10161, CVE-2019-10166, CVE-2019-10167, CVE-2019-10168) Fixes #10620 | ||||
* | main/expat: security upgrade to 2.2.7 (CVE-2018-20843) | Natanael Copa | 2019-06-30 | 1 | -3/+5 |
| | | | | fixes #10633 | ||||
* | main/py-django: security upgrade to 1.11.21 (CVE-2019-12308) | Natanael Copa | 2019-06-25 | 1 | -2/+4 |
| | | | | fixes #10561 | ||||
* | main/bind: upgrade to 9.11.8 (CVE-2019-6471) | Kevin Daudt | 2019-06-23 | 2 | -137/+5 |
| | | | | | Replace-atomic-operations.patch was an upstream patch that is now included in the release. | ||||
* | main/vim: backport fix for CVE-2019-12735 | Natanael Copa | 2019-06-22 | 2 | -2/+66 |
| | | | | fixes #10562 | ||||
* | main/zfs-vanilla: rebuild against kernel 4.9.182-r0 | Natanael Copa | 2019-06-18 | 1 | -1/+1 |
| | |||||
* | main/spl-vanilla: rebuild against kernel 4.9.182-r0 | Natanael Copa | 2019-06-18 | 1 | -1/+1 |
| | |||||
* | main/linux-vanilla: upgrade to 4.9.182 | Natanael Copa | 2019-06-18 | 7 | -22/+24 |
| | |||||
* | main/dbus: upgrade to 1.10.28 (CVE-2019-12749) | Natanael Copa | 2019-06-17 | 1 | -2/+6 |
| | | | | fixes #10571 | ||||
* | main/glib: security fix for CVE-2019-12450 | Natanael Copa | 2019-06-17 | 2 | -2/+61 |
| | | | | fixes #10578 | ||||
* | main/mariadb: security upgrade to 10.1.40 | J0WI | 2019-06-12 | 1 | -4/+7 |
| | |||||
* | main/vim: security fix for CVE-2019-12735 | Kevin Daudt | 2019-06-05 | 2 | -2/+64 |
| | | | | | | | Arbitrary code execution has been found in vim modelines. Upstream patch has been applied: https://github.com/vim/vim/commit/53575521406739cf20bbe4e384d88e7dca11f040.patch | ||||
* | main/monit: upgrade to 5.25.2, security fixes | Leonardo Arena | 2019-06-05 | 3 | -3/+90 |
| | | | | | | CVE-2019-11454, CVE-2019-11455 Fixes #10494 | ||||
* | main/perl-email-address: security upgrade to 1.912 (CVE-2018-12558) | Leonardo Arena | 2019-06-05 | 1 | -5/+6 |
| | | | | Fixes #10435 | ||||
* | main/hostapd: security fix (CVE-2019-9496) | Leonardo Arena | 2019-06-05 | 2 | -1/+62 |
| | | | | Fixes #10335 | ||||
* | main/hostapd: security fix (CVE-2019-11555) | Leonardo Arena | 2019-06-05 | 3 | -2/+97 |
| | | | | Fixes #10412 | ||||
* | main/wpa_supplicant: security fix (CVE-2019-11555) | Leonardo Arena | 2019-06-05 | 3 | -1/+97 |
| | | | | Fixes #10417 | ||||
* | main/heimdal: security fix (CVE-2018-16860) | Leonardo Arena | 2019-06-04 | 2 | -3/+154 |
| | | | | | | Fixes #10514 Clarify license | ||||
* | main/py-cryptography: upgrade to 2.1.4 | Leonardo Arena | 2019-06-03 | 1 | -3/+3 |
| | | | | Required by certbot-0.19 | ||||
* | main/ca-certificates: upgrade to 20190108 | Natanael Copa | 2019-05-27 | 2 | -34/+3 |
| | | | | fixes #9935 | ||||
* | main/ca-certificates: upgrade to 20180924 | Natanael Copa | 2019-05-27 | 2 | -3/+34 |
| | |||||
* | main/xen: XSA-297 | Henrik Riomar | 2019-05-17 | 9 | -1/+1216 |
| | | | | | | | | | CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2019-11091 Signed-off-by: Leonardo Arena <rnalrd@alpinelinux.org> | ||||
* | main/postgresql: security upgrade to 10.8 | Jakub Jirutka | 2019-05-12 | 1 | -2/+5 |
| | |||||
* | main/ruby: upgrade to 2.4.6 | Natanael Copa | 2019-05-06 | 1 | -2/+9 |
| | | | | | | | | | | | - CVE-2019-8320 - CVE-2019-8321 - CVE-2019-8322 - CVE-2019-8323 - CVE-2019-8324 - CVE-2019-8325 fixes #10289 | ||||
* | main/lua5.3: fix linenoise patch | Natanael Copa | 2019-05-06 | 2 | -9/+9 |
| | | | | | | fixes #9644 (cherry picked from commit cde8024d0da937f5f7b0b9b329c1f27c14b00308) | ||||
* | main/lua5.3: upgrade to 5.3.5 and sec fix CVE-2019-6706 | Natanael Copa | 2019-05-06 | 2 | -12/+34 |
| | | | | fixes #10255 | ||||
* | main/libpng: upgrade to 1.6.37 | Leo | 2019-05-06 | 1 | -10/+14 |
| | | | | | | | | | | - Add secfixes CVE-2019-7317 CVE-2018-14048 CVE-2018-14550 - Remove pkg-config detected depends_dev fixes #10364 | ||||
* | main/bind: make sure all patches are applied | Natanael Copa | 2019-05-03 | 3 | -36/+34 |
| | | | | This fixes builds on non-x86 |