Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | ==== release 3.0.5 ====v3.0.5 | Natanael Copa | 2014-10-08 | 1 | -1/+1 |
| | |||||
* | main/openssh: curve25519pad patch added | Johannes Matheis | 2014-10-08 | 2 | -4/+177 |
| | | | | | | | | | | | | | | | | | https://lists.mindrot.org/pipermail/openssh-unix-dev/2014-April/032494.html: > bad bignum encoding for curve25519-sha256@libssh.org >[...] > So I screwed up when writing the support for the curve25519 KEX method > that doesn't depend on OpenSSL's BIGNUM type - a bug in my code left > leading zero bytes where they should have been skipped. The impact of > this is that OpenSSH 6.5 and 6.6 will fail during key exchange with a > peer that implements curve25519-sha256@libssh.org properly about 0.2% > of the time (one in every 512ish connections). (cherry picked from commit 5bc265ef454ba0f8d82e8298c3246999fb11a9c8) Conflicts: main/openssh/APKBUILD | ||||
* | main/linux-vanilla: fix description | Natanael Copa | 2014-10-08 | 1 | -2/+2 |
| | | | | (cherry picked from commit c19262f8c5fba86b4a576effe616d72aa3bfe86f) | ||||
* | main/linux-vanilla: upgrade to 3.14.20 | Natanael Copa | 2014-10-08 | 1 | -4/+4 |
| | | | | (cherry picked from commit 4a0cf9bbf7e8ba2d29a213583ad6a157be41616a) | ||||
* | main/linux-vanilla: upgrade to 3.14.19 | Natanael Copa | 2014-10-08 | 1 | -5/+5 |
| | | | | (cherry picked from commit 4c930edc7669ac008cc077cd00afb4a380641581) | ||||
* | main/linux-vanilla: sync with grsec | Natanael Copa | 2014-10-08 | 4 | -20/+65 |
| | | | | | | | | | - remove usbkbd and usbmouse - enable NFC we disable randomize_base on x86 as it seems to break module loading (cherry picked from commit 54a8932887a08e171e0f9f1d5733992fb1ac5a0b) | ||||
* | main/linux-vanilla: fix armhf config | Natanael Copa | 2014-10-08 | 2 | -5/+10 |
| | | | | (cherry picked from commit 1ab4dbf6662a2f68962800b33a5d13d165b0fdda) | ||||
* | main/linux-vanilla: upgrade to 3.14.18 | Natanael Copa | 2014-10-08 | 3 | -14/+20 |
| | | | | (cherry picked from commit 03fbac2fb3856cefedbb6c5b4c69b5d0d54ec8f5) | ||||
* | main/linux-virt-grsec: upgrade to 3.14.20 | Leonardo Arena | 2014-10-08 | 2 | -809/+1961 |
| | |||||
* | main/targetcli: upgrade to 2.1_p37 | Natanael Copa | 2014-10-08 | 1 | -11/+23 |
| | | | | | | and fix build fixes #3399 | ||||
* | main/py-rtslib: upgrade to 2.1_p50 | Natanael Copa | 2014-10-08 | 1 | -5/+5 |
| | | | | | | ref #3399 (cherry picked from commit 72a716fba2ea67a59b323af580cbcdeff1902231) | ||||
* | main/xtables-addons-grsec: rebuild against kernel 3.14.20-r1 | Natanael Copa | 2014-10-08 | 1 | -2/+2 |
| | |||||
* | main/ipfw-grsec: rebuild against kernel 3.14.20-r1 | Natanael Copa | 2014-10-08 | 1 | -2/+2 |
| | |||||
* | main/flashcache-grsec: rebuild against kernel 3.14.20-r1 | Natanael Copa | 2014-10-08 | 1 | -2/+2 |
| | |||||
* | main/dahdi-linux-grsec: rebuild against kernel 3.14.20-r1 | Natanael Copa | 2014-10-08 | 1 | -2/+2 |
| | |||||
* | main/linux-grsec: fix booting of xen dom0 | Natanael Copa | 2014-10-08 | 2 | -1/+25 |
| | |||||
* | main/linux-grsec: upgrade to 3.14.20 | Natanael Copa | 2014-10-08 | 2 | -742/+353 |
| | |||||
* | main/python: upgrade to 2.7.8 | Eivind Uggedal | 2014-10-08 | 1 | -4/+4 |
| | | | | | ref #3399 (cherry picked from commit 9620c81917d454c855b17f5e711ae08e57b4ae4f) | ||||
* | main/python: upgrade to 2.7.7 | Eivind Uggedal | 2014-10-08 | 4 | -40/+16 |
| | | | | (cherry picked from commit 156bf140225c0ab6d004a3ad739cec193c6ab766) | ||||
* | main/aaudit: minor server side fix | Timo Teräs | 2014-10-06 | 2 | -5/+5 |
| | | | | (cherry picked from commit ded74a6c8d3e2f0d055c00899e308bce660226d0) | ||||
* | main/xtables-addons-grsec: rebuild against kernel 3.14.19-r3 | Natanael Copa | 2014-10-03 | 1 | -1/+1 |
| | |||||
* | main/ipfw-grsec: rebuild against kernel 3.14.19-r3 | Natanael Copa | 2014-10-03 | 1 | -1/+1 |
| | |||||
* | main/flashcache-grsec: rebuild against kernel 3.14.19-r3 | Natanael Copa | 2014-10-03 | 1 | -1/+1 |
| | |||||
* | main/dahdi-linux-grsec: rebuild against kernel 3.14.19-r3 | Natanael Copa | 2014-10-03 | 1 | -1/+1 |
| | |||||
* | main/linux-grsec: build ehci-hcd into kernel | Natanael Copa | 2014-10-03 | 3 | -18/+18 |
| | | | | fixes #2965 | ||||
* | main/ruby-rails: upgrade to 4.0.10 | Natanael Copa | 2014-10-03 | 1 | -4/+4 |
| | | | | fixes #3333 | ||||
* | main/ruby-railties: upgrade to 4.0.10 | Natanael Copa | 2014-10-03 | 1 | -4/+4 |
| | |||||
* | main/ruby-activerecord: upgrade to 4.0.10 | Natanael Copa | 2014-10-03 | 1 | -4/+4 |
| | |||||
* | main/ruby-actionmailer: upgrade to 4.0.10 | Natanael Copa | 2014-10-03 | 1 | -4/+4 |
| | |||||
* | main/ruby-actionpack: upgrade to 4.0.10 | Natanael Copa | 2014-10-03 | 1 | -4/+4 |
| | |||||
* | main/ruby-activemodel: upgrade to 4.0.10 | Natanael Copa | 2014-10-03 | 1 | -4/+4 |
| | |||||
* | main/ruby-activesupport: upgrade to 4.0.10 | Natanael Copa | 2014-10-03 | 1 | -4/+4 |
| | |||||
* | main/qemu: security upgrade to 2.1.2 (CVE-2014-3615) | Natanael Copa | 2014-10-03 | 6 | -248/+5 |
| | | | | fixes #3382 | ||||
* | main/xen: upgrade to 4.3.3 and fix CVE-2014-7188 | Natanael Copa | 2014-10-02 | 2 | -5/+45 |
| | | | | | | | | | | | | | | The following critical vulnerabilities have been fixed: - CVE-2014-2599 / XSA-89 HVMOP_set_mem_access is not preemptible - CVE-2014-3124 / XSA-92 HVMOP_set_mem_type allows invalid P2M entries to be created - CVE-2014-3967,CVE-2014-3968 / XSA-96 Vulnerabilities in HVM MSI injection - CVE-2014-4021 / XSA-100 Hypervisor heap contents leaked to guests Also add patch for xsa108: - CVE-2014-7188: Improper MSR range used for x2APIC emulation. fixes #3414 | ||||
* | main/aports-build: upload latest-releases.yaml if it exists | Natanael Copa | 2014-10-02 | 2 | -6/+10 |
| | | | | (cherry picked from commit febbe6d4357f777b79b2fa0d80aaca3e77d34dec) | ||||
* | main/bash: update to 4.3.28, fix CVE-2014-7186 and CVE-2014-7187 | xming | 2014-10-02 | 1 | -4/+7 |
| | | | | fixes #3411 | ||||
* | main/xtables-addons-grsec: rebuild against kernel 3.14.19-r2 | Natanael Copa | 2014-10-02 | 1 | -2/+2 |
| | |||||
* | main/ipfw-grsec: rebuild against kernel 3.14.19-r2 | Natanael Copa | 2014-10-02 | 1 | -2/+2 |
| | |||||
* | main/flashcache-grsec: rebuild against kernel 3.14.19-r2 | Natanael Copa | 2014-10-02 | 1 | -2/+2 |
| | |||||
* | main/dahdi-linux-grsec: rebuild against kernel 3.14.19-r2 | Natanael Copa | 2014-10-02 | 1 | -2/+2 |
| | |||||
* | main/linux-grsec: upgrade to grsecurity-3.0-3.14.19-201409282024 | Natanael Copa | 2014-10-02 | 2 | -8/+124103 |
| | |||||
* | main/linux-grsec: enable QLogic Infiniband & ISER Target kernel modules | Natanael Copa | 2014-10-02 | 2 | -5/+6 |
| | | | | fixes #3398 | ||||
* | main/linux-grsec: enable NFC for x86 and x86_64 | Natanael Copa | 2014-10-02 | 3 | -13/+57 |
| | | | | fixes #3366 | ||||
* | main/linux-grsec: disable USB_KBD and USB_MOUSE | Natanael Copa | 2014-10-02 | 4 | -16/+16 |
| | | | | | | they cause problems in some situations and hid-generic is to prefer fixes #3374 | ||||
* | main/linux-grsec: disable randomize base on x86 | Natanael Copa | 2014-10-02 | 2 | -5/+4 |
| | | | | it causes problems with module loading | ||||
* | main/linux-grsec: upgrade to 3.14.18 | Natanael Copa | 2014-10-02 | 4 | -447/+777 |
| | |||||
* | main/acf-core: upgrade to 0.18.3 | Ted Trask | 2014-10-01 | 1 | -4/+4 |
| | | | | (cherry picked from commit c8682108055ce964f198b3acf7094491ed4e8e4e) | ||||
* | main/acf-freeradius3: upgrade to 0.1.1 | Ted Trask | 2014-10-01 | 1 | -4/+4 |
| | | | | (cherry picked from commit 66a15344acfb219e7ee55edf8d0213e7237f4117) | ||||
* | main/squid: security upgrade to 3.4.8 | Natanael Copa | 2014-09-30 | 1 | -5/+5 |
| | | | | | | | | | | CVE-2014-3609 CVE-2014-6270 CVE-2014-7141 CVE-2014-7142 fixes #3391 fixes #3386 | ||||
* | main/rt4: run testdeps to verify deps are ok | Natanael Copa | 2014-09-30 | 1 | -1/+1 |
| | | | | | | we dont bump pkgrel because the built package should be unmodified (cherry picked from commit 20d4ce42697fe9498f3e7b38058f159245dcde5f) |