aports - Main aports tree

	Commit message (Collapse)	Author	Age	Files	Lines
*	main/sqlite: security fix (CVE-2020-11655)3.8-stable	Leonardo Arena	2020-05-07	2	-10/+36
\| \| \| \|	fixes #11508
*	main/openldap: fix CVE-2020-12243	Leo	2020-05-07	1	-2/+7
\| \| \| \|	See #11509
*	main/tzdata: upgrade to 2020a	J0WI	2020-05-02	1	-14/+7
\|
*	main/ntfs-3g: patch CVE-2019-9755	TBK	2020-04-25	2	-7/+75
\| \| \| \| \| \|	- Switch to https - Clarify license - Patch CVE-2019-9755
*	main/git: security upgrade to 2.18.4	Kevin Daudt	2020-04-21	1	-2/+4
\|
*	main/xen: fix various security issues	Leo	2020-04-19	6	-2/+364
\| \| \| \| \| \| \| \| \| \| \| \|	For #11400 Fixed CVEs: - CVE-2020-11739 - CVE-2020-11740 - CVE-2020-11741 - CVE-2020-11742 - CVE-2020-11743
*	main/mcpp: fix CVE-2019-14274	Sören Tempel	2020-04-17	2	-9/+61
\| \| \| \|	Patch taken from Debian.
*	main/git: security upgrade to 2.18.3	J0WI	2020-04-14	1	-16/+18
\|
*	main/ca-certificates: upgrade to 20191127	Rasmus Thomsen	2020-04-14	1	-2/+2
\| \| \| \|	New certificate distrusts have been added, so this should be backported
*	main/haproxy: fixes CVE-2020-11100	Leo	2020-04-14	2	-2/+61
\| \| \| \|	See #11389
*	main/gd: patch CVE-2018-14553 and CVE-2019-11038	J0WI	2020-04-09	3	-5/+80
\|
*	main/mariadb: security upgrade to 10.2.31	J0WI	2020-04-07	1	-2/+4
\|
*	main/gnutls: add CVE secfixes info	Leo	2020-04-03	1	-1/+1
\|
*	main/samba: fix CVE-2019-14902, CVE-2019-14907	Natanael Copa	2020-04-03	2	-1/+1668
\| \| \| \|	fixes #11155
*	main/samba: security fixes	Leonardo Arena	2020-04-03	2	-2/+546
\| \| \| \| \| \|	CVE-2019-10218, CVE-2019-14833, CVE-2019-14847 ref #10921
*	main/squid: various secfixes	Natanael Copa	2020-04-02	4	-1/+307
\| \| \| \| \| \|	CVE-2020-8449, CVE-2020-8450, CVE-2020-8517, CVE-2019-12528 fixes #11248
*	main/icu: fix CVE-2020-10531	Natanael Copa	2020-04-02	2	-3/+139
\| \| \| \|	fixes #11329
*	main/apache2: security upgrade to 2.4.43	J0WI	2020-04-01	1	-2/+5
\|
*	main/ruby: upgrade to 2.5.8	Robert Pritzkow	2020-04-01	1	-2/+5
\|
*	main/gnutls: fix GNUTLS-SA-2020-03-31	Leo	2020-03-31	2	-8/+42
\|
*	main/screen: fix CVE-2020-9366	Leo	2020-03-30	2	-3/+52
\|
*	main/squid: fix CVE-2019-18679	Leo	2020-03-27	2	-0/+103
\| \| \| \|	see #10946
*	main/unzip: actually fix CVE-2019-13232	Leo	2020-03-27	2	-4/+491
\| \| \| \|	use patch from Fedora
*	main/unzip: fix CVE-2019-13232	Leo	2020-03-26	1	-18/+18
\|
*	main/libmspack: fix CVE-2019-1010305	Leo	2020-03-26	2	-4/+47
\| \| \| \|	see #10814
*	main/bluez: fix CVE-2020-0556	Leo	2020-03-24	2	-3/+196
\| \| \| \|	see #11328
*	main/libarchive: fix CVE-2020-19221 and CVE-2020-9308	Leo	2020-03-11	1	-2/+6
\|
*	main/ppp: secfix for radius and EAP	Milan P. Stanić	2020-03-10	4	-15/+149
\| \| \| \| \| \| \| \|	backported security fixes from upstream: radius: Prevent buffer overflow in rc_mksid() pppd: Fix bounds check in EAP code pppd: Ignore received EAP messages when not doing EAP add 'secfixes'
*	main/py-django: security upgrade to 1.11.29	Leo	2020-03-10	1	-2/+4
\| \| \| \|	see #11288
*	main/librsvg: security upgrade to 2.40.21	Rasmus Thomsen	2020-02-26	1	-3/+7
\|
*	main/cvs: security upgrade to 1.12.12	TBK	2020-02-25	16	-53/+708
\| \| \| \| \| \| \| \| \|	Most distros uses 1.12.13 (https://repology.org/project/cvs/versions) but according to Gentoo it is usable, so following Gentoo (https://bugs.gentoo.org/124733) 1.12.12 is the way forward. CVEs: * CVE-2010-3846 - https://bugzilla.redhat.com/show_bug.cgi?id=642146 * CVE-2012-0804 - https://security-tracker.debian.org/tracker/CVE-2012-0804 * CVE-2017-12836 - https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=871810#10
*	main/nfdump: fix secfixes	Leo	2020-02-19	1	-1/+1
\|
*	main/postgresql: security upgrade to 10.12	J0WI	2020-02-14	1	-2/+4
\|
*	main/openjpeg: secfixes (CVE-2020-6851,CVE-2020-8112)	Natanael Copa	2020-02-05	3	-2/+81
\| \| \| \|	fixes #11189
*	main/sudo: fix CVE-2019-18634	Jakub Jirutka	2020-02-05	2	-2/+104
\|
*	main/sudo: fix secfixes comment	Natanael Copa	2020-02-05	1	-2/+0
\|
*	main/sudo: fix CVE-2019-14287	Natanael Copa	2020-02-05	2	-2/+204
\|
*	main/py-django: security upgrade to 1.11.28	Kaarle Ritvanen	2020-02-04	1	-2/+4
\|
*	===== release 3.8.5 =====v3.8.5	Natanael Copa	2020-01-23	1	-1/+1
\|
*	main/libseccomp: upgrade to 2.4.2 (CVE-2019-9893)	J0WI	2020-01-23	2	-11/+58
\| \| \| \|	fixes #10867
*	main/haproxy: security upgrade to 1.8.23 (CVE-2019-19330)	Natanael Copa	2020-01-23	2	-15/+37
\| \| \| \|	fixes #11003
*	main/libjpeg-turbo: backport fix for CVE-2019-2201	Natanael Copa	2020-01-23	2	-2/+472
\| \| \| \|	fixes #10948
*	main/zfs-vanilla: rebuild against kernel 4.14.167-r0	Natanael Copa	2020-01-23	1	-1/+1
\|
*	main/xtables-addons-vanilla: rebuild against kernel 4.14.167-r0	Natanael Copa	2020-01-23	1	-1/+1
\|
*	main/spl-vanilla: rebuild against kernel 4.14.167-r0	Natanael Copa	2020-01-23	1	-2/+2
\|
*	main/drbd9-vanilla: rebuild against kernel 4.14.167-r0	Natanael Copa	2020-01-23	1	-1/+1
\|
*	main/devicemaster-linux-vanilla: rebuild against kernel 4.14.167-r0	Natanael Copa	2020-01-23	1	-1/+1
\|
*	main/dahdi-linux-vanilla: rebuild against kernel 4.14.167-r0	Natanael Copa	2020-01-23	1	-1/+1
\|
*	main/linux-vanilla: upgrade to 4.14.167	Natanael Copa	2020-01-23	2	-5/+8
\|
*	main/zfs-vanilla: rebuild against kernel 4.14.166-r0	Natanael Copa	2020-01-22	1	-1/+1
\|