aboutsummaryrefslogtreecommitdiffstats
path: root/main
Commit message (Collapse)AuthorAgeFilesLines
...
* main/curl: fix crashes due to LibreSSL/OpenSSL engines conflictsJakub Jirutka2018-05-252-2/+47
|
* main/bind: security upgrade to 9.11.3Jakub Jirutka2018-05-241-2/+8
|
* main/tiff: fix CVE-2018-8905prspkt2018-05-242-2/+57
|
* main/tiff: fix CVE-2018-7456prspkt2018-05-242-2/+176
|
* main/sqlite: fix CVE-2018-8740Jakub Jirutka2018-05-212-1/+40
|
* main/curl: security upgrade to 7.60.0prspkt2018-05-201-3/+6
|
* main/postgresql: fix license and maintainerJakub Jirutka2018-05-141-2/+2
|
* main/postgresql: security upgrade to 9.6.9Jakub Jirutka2018-05-141-9/+11
| | | | | Fixes CVE-2018-1115 See https://www.postgresql.org/about/news/1851/
* main/wget: security upgrade to 1.19.5Andy Postnikov2018-05-101-4/+5
|
* main/jq: security fix (CVE-2016-4074). Fixes #8809Leonardo Arena2018-04-302-7/+45
|
* main/clamav: security upgrade 0.99.4Leonardo Arena2018-04-112-40/+8
| | | | | | CVE-2018-0202, CVE-2018-1000085 Fixes #8695
* main/mariadb: security upgrade to 10.1.32Leonardo Arena2018-04-111-2/+12
| | | | | | | CVE-2017-10268, CVE-2017-10378, CVE-2017-15365, CVE-2018-2562 CVE-2018-2612, CVE-2018-2622, CVE-2018-2640, CVE-2018-2665, CVE-2018-2668 Fixes #8689
* main/tiff: fix CVE-2018-5784prspkt2018-04-023-3/+135
| | | | fixes #8702
* main/openssl: security upgrade to 1.0.2o and rebuild depending pkgsAndy Postnikov2018-04-012-3/+7
| | | | | | Fixes CVE-2017-3738, CVE-2018-0739, CVE-2018-0733 Rebuilds packages that link openssl statically.
* main/zsh: fix CVE-2018-1071, CVE-2018-1083Jakub Jirutka2018-03-313-6/+85
|
* main/ruby: security upgrade to 2.4.4Natanael Copa2018-03-291-2/+9
| | | | | | | | | | | | | | | | | | | CVE-2017-17742: HTTP response splitting in WEBrick CVE-2018-6914: Unintentional file and directory creation with directory traversal in tempfile and tmpdir CVE-2018-8777: DoS by large request in WEBrick CVE-2018-8778: Buffer under-read in String#unpack CVE-2018-8779: Unintentional socket creation by poisoned NUL byte in UNIXServer and UNIXSocket CVE-2018-8780: Unintentional directory traversal by poisoned NUL byte in Dir fixes #8748
* main/uwsgi: security upgrade to 2.0.17 (CVE-2018-6758,CVE-2018-7490)Natanael Copa2018-03-271-3/+10
| | | | fixes #8735
* main/apache2: security upgrade to 2.4.33Kaarle Ritvanen2018-03-273-257/+11
| | | | fixes #8730
* main/kamailio: add secinfoLeonardo Arena2018-03-231-1/+3
| | | | Fixes #8719
* main/rsync: security upgrade to 3.1.3 (CVE-2018-5764)Natanael Copa2018-03-205-144/+6
| | | | fixes #8677
* main/kamailio: lcr - fixed checking if there is more uris available for next_gwLeonardo Arena2018-03-202-1/+29
|
* main/kamailio: tmx - allocate space to store ending 0 for branch valueLeonardo Arena2018-03-202-1/+26
|
* main/curl: upgrade to 7.59.0prspkt2018-03-191-3/+7
| | | | fixes #8645
* main/xen: upgrade to 4.8.3Henrik Riomar2018-03-1940-4349/+4
| | | | | | | https://www.xenproject.org/downloads/xen-archives/xen-project-48-series/xen-483.html Also remove some patches that has been dropped from APKBUILD (earlier) but still included as files.
* main/samba: security upgrade to 4.6.14Jakub Jirutka2018-03-151-2/+5
|
* main/ruby-bundler: upgrade to 1.15.4Jakub Jirutka2018-03-141-2/+2
|
* main/py-django: security upgrade to 1.11.11Leonardo Arena2018-03-121-3/+7
| | | | | | CVE-2018-7536, CVE-2018-7537 Fixes #8638
* main/xen: security fixesLeonardo Arena2018-03-125-1/+396
| | | | | | CVE-2018-7540, CVE-2018-7541, CVE-2018-7542 Fixes #8615
* main/mosquitto: security upgrade to 1.4.15Daniel Sabogal2018-03-041-2/+6
|
* main/postgresql: upgrade to 9.6.8Jakub Jirutka2018-03-021-2/+4
|
* main/patch: security fix (CVE-2016-10713)Leonardo Arena2018-02-282-1/+18
| | | | Partially fixes #8564
* main/patch: security fix (CVE-2018-6951)Leonardo Arena2018-02-282-5/+40
| | | | | | | Partially fixes #8564 Patch for CVE-2018-6952 not yet available: https://savannah.gnu.org/bugs/index.php?53133
* main/squid: security upgrade to 3.5.27Leonardo Arena2018-02-282-20/+13
| | | | | | CVE-2018-1000024, CVE-2018-1000027 Fixes #8552
* main/libtasn1: security fix (CVE-2018-6003)Leonardo Arena2018-02-282-2/+70
| | | | Fixes #8528
* main/xen: security fixesLeonardo Arena2018-02-275-1/+306
| | | | | | | | | CVE-2017-17566, XSA-248 CVE-2017-17563, XSA-249 CVE-2017-17564, XSA-250 CVE-2017-17565, XSA-251 Fixes #8521
* main/libvorbis: security fixes (CVE-2017-14632, CVE-2017-14633)dai9ah2018-02-273-2/+31
| | | | Fixes #8516
* main/curl: re-enable ssh supportNatanael Copa2018-02-271-1/+2
| | | | | | This was unintentionally disabled with the 7.58 upgrade. fixes #8575
* main/nodejs: add secfix comment for CVE-2016-5129 and CVE-2016-5180Natanael Copa2018-02-231-1/+5
| | | | | | | | CVE-2016-5129 was fixed with: https://github.com/nodejs/node/commit/e71129ebbc115f86f518ff71f3b35b5d88923d81#diff-a416e90888b99aad5d014b86a1ad585d CVE-2016-5180 was fixed with: https://github.com/nodejs/node/commit/23a851dfe61ceb5859779df12c5dfb8da3a7a0c0#diff-e37d7b61b3e6004aa59373f7cb76e40b
* main/sqlite: security fix for CVE-2017-15286Natanael Copa2018-02-222-1/+22
| | | | fixes #8545
* main/python2: security upgrade to 2.7.14 (CVE-2017-1000158)Natanael Copa2018-02-221-9/+9
| | | | fixes #8541
* main/xen: XSA-254 XPTIHenrik Riomar2018-02-215-1/+1382
| | | | | | Add Xen page-table isolation (XPTI) for XEN 4.8.2 More info: http://xenbits.xen.org/xsa/xsa254/README.pti
* main/libraw: security upgrade to 0.18.6 (CVE-2017-16910)Natanael Copa2018-02-203-184/+3
| | | | fixes #8340
* main/quagga: upgrade to 1.2.4Timo Teräs2018-02-201-2/+2
| | | | (cherry picked from commit cacf8c7b23a8bca8e1ae7bf9b8f4ee3c29fdd06d)
* main/libxcursor: security upgrade to 1.1.15 (CVE-2017-16612)Natanael Copa2018-02-201-5/+7
| | | | fixes #8228
* main/irssi: security upgrade to 1.0.6Leonardo Arena2018-02-191-2/+17
| | | | | | | CVE-2018-5205, CVE-2018-5206, CVE-2018-5207, CVE-2018-5208, CVE-2018-7050, CVE-2018-7051, CVE-2018-7052, CVE-2018-7053, CVE-2018-7054 Fixes #8502
* main/quagga: security upgrade to 1.2.3Timo Teräs2018-02-161-2/+2
| | | | (cherry picked from commit 0ebf73b2c2c90ac66f1619b6104435d7ea730a3a)
* main/postgresql: security upgrade to 9.6.7Jakub Jirutka2018-02-092-3/+21
| | | | | | | | | | | This upgrade contains one incompatible change in contrib/cube (packaged in -contrib subpackage). Explanation from https://www.postgresql.org/docs/10/static/release-9-6-7.html: > This is an incompatible change, but since the point of the operator > was to be used in KNN searches, it seems rather useless as-is. After > installing this update, any expression indexes or materialized views > using this operator will need to be reindexed/refreshed.
* main/tiff: security fix CVE-2017-18013Leonardo Arena2018-02-082-2/+40
| | | | Fixes #8462
* main/bind: security upgrade to 9.11.2-P1 (CVE-2017-3145)Leonardo Arena2018-02-081-3/+5
| | | | Fixes #8418
* main/curl: security upgrade to 7.58.0Leonardo Arena2018-02-081-4/+5
| | | | | | CVE-2018-1000005, CVE-2018-1000007 Fixes #8440
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-06 11:12:35 +0000