1. 27 Apr, 2013 9 commits
  2. 26 Apr, 2013 23 commits
    • Natanael Copa's avatar
      main/abuild: fix for buildrepo · 4ec61fd4
      Natanael Copa authored
      4ec61fd4
    • Ariadne Conill's avatar
    • Natanael Copa's avatar
      15cf0c82
    • Natanael Copa's avatar
      29f1674c
    • Natanael Copa's avatar
    • Natanael Copa's avatar
      a0a5da61
    • Natanael Copa's avatar
    • Natanael Copa's avatar
    • Natanael Copa's avatar
    • Natanael Copa's avatar
      619db109
    • Natanael Copa's avatar
    • Natanael Copa's avatar
    • Nathan Angelacos's avatar
      main/kamailio: · 924229b7
      Nathan Angelacos authored
      - upgrade to 4.0.1
      - add kamailio.groups file to build packages similar to other distros
      - add additional packages to the Alpine set (e.g. ldap, snmpstats)
      924229b7
    • Natanael Copa's avatar
      main/openjdk: security upgrade to icedtea 1.11.11 · 871dd194
      Natanael Copa authored
      fixes #1801
      
      icedtea6-1.11.11:
          RH952389: Temporary files created with insecure permissions
      
      icedtea6-1.11.10:
          S6657673, CVE-2013-1518: Issues with JAXP
          S7200507: Refactor Introspector internals
          S8000724, CVE-2013-2417: Improve networking serialization
          S8001031, CVE-2013-2419: Better font processing
          S8001040, CVE-2013-1537: Rework RMI model
          S8001322: Refactor deserialization
          S8001329, CVE-2013-1557: Augment RMI logging
          S8003335: Better handling of Finalizer thread
          S8003445: Adjust JAX-WS to focus on API
          S8003543, CVE-2013-2415: Improve processing of MTOM attachments
          S8004261: Improve input validation
          S8004336, CVE-2013-2431: Better handling of method handle intrinsic frames
          S8004986, CVE-2013-2383: Better handling of glyph table
          S8004987, CVE-2013-2384: Improve font layout
          S8004994, CVE-2013-1569: Improve checking of glyph table
          S8005432: Update access to JAX-WS
          S8005943: (process) Improved Runtime.exec
          S8006309: More reliable control panel operation
          S8006435, CVE-2013-2424: Improvements in JMX
          S8006790: Improve checking for windows
          S8006795: Improve font warning messages
          S8007406: Improve accessibility of AccessBridge
          S8007617, CVE-2013-2420: Better validation of images
          S8007667, CVE-2013-2430: Better image reading
          S8007918, CVE-2013-2429: Better image writing
          S8009063, CVE-2013-2426: Improve reliability of ConcurrentHashMap
          S8009305, CVE-2013-0401: Improve AWT data transfer
          S8009699, CVE-2013-2421: Methodhandle lookup
          S8009814, CVE-2013-1488: Better driver management
          S8009857, CVE-2013-2422: Problem with plugin
      
      icedtea6-1.11.9:
          S8007014, CVE-2013-0809: Improve image handling
          S8007675, CVE-2013-1493: Improve color conversion
      
      icedtea6-1.11.8:
          S8006446, CVE-2013-1486: Restrict MBeanServer access
          S8006777, CVE-2013-0169: Improve TLS handling of invalid messages
          S8007688: Blacklist known bad certificate
      
      icedtea6-1.11.7:
          (bugfixes only)
      
      icedtea6-1.11.6:
          S6563318, CVE-2013-0424: RMI data sanitization
          S6664509, CVE-2013-0425: Add logging context
          S6664528, CVE-2013-0426: Find log level matching its name or value given at construction time
          S6776941: CVE-2013-0427: Improve thread pool shutdown
          S7141694, CVE-2013-0429: Improving CORBA internals
          S7173145: Improve in-memory representation of splashscreens
          S7186945: Unpack200 improvement
          S7186946: Refine unpacker resource usage
          S7186948: Improve Swing data validation
          S7186952, CVE-2013-0432: Improve clipboard access
          S7186954: Improve connection performance
          S7186957: Improve Pack200 data validation
          S7192392, CVE-2013-0443: Better validation of client keys
          S7192393, CVE-2013-0440: Better Checking of order of TLS Messages
          S7192977, CVE-2013-0442: Issue in toolkit thread
          S7197546, CVE-2013-0428: (proxy) Reflect about creating reflective proxies
          S7200491: Tighten up JTable layout code
          S7200500: Launcher better input validation
          S7201064: Better dialogue checking
          S7201066, CVE-2013-0441: Change modifiers on unused fields
          S7201068, CVE-2013-0435: Better handling of UI elements
          S7201070: Serialization to conform to protocol
          S7201071, CVE-2013-0433: InetSocketAddress serialization issue
          S8000210: Improve JarFile code quality
          S8000537, CVE-2013-0450: Contextualize RequiredModelMBean class
          S8000540, CVE-2013-1475: Improve IIOP type reuse management
          S8000631, CVE-2013-1476: Restrict access to class constructor
          S8001235, CVE-2013-0434: Improve JAXP HTTP handling
          S8001242: Improve RMI HTTP conformance
          S8001307: Modify ACC_SUPER behavior
          S8001972, CVE-2013-1478: Improve image processing
          S8002325, CVE-2013-1480: Improve management of images
      
      icedtea6-1.11.5:
          S6631398, CVE-2012-3216: FilePermission improved path checking
          S7093490: adjust package access in rmiregistry
          S7143535, CVE-2012-5068: ScriptEngine corrected permissions
          S7167656, CVE-2012-5077: Multiple Seeders are being created
          S7169884, CVE-2012-5073: LogManager checks do not work correctly for sub-types
          S7169888, CVE-2012-5075: Narrowing resource definitions in JMX RMI connector
          S7172522, CVE-2012-5072: Improve DomainCombiner checking
          S7186286, CVE-2012-5081: TLS implementation to better adhere to RFC
          S7189103, CVE-2012-5069: Executors needs to maintain state
          S7189490: More improvements to DomainCombiner checking
          S7189567, CVE-2012-5085: java net obselete protocol
          S7192975, CVE-2012-5071: Conditional usage check is wrong
          S7195194, CVE-2012-5084: Better data validation for Swing
          S7195917, CVE-2012-5086: XMLDecoder parsing at close-time should be improved
          S7195919, CVE-2012-5979: (sl) ServiceLoader can throw CCE without needing to create instance
          S7198296, CVE-2012-5089: Refactor classloader usage
          S7158800: Improve storage of symbol tables
          S7158801: Improve VM CompileOnly option
          S7158804: Improve config file parsing
          S7176337: Additional changes needed for 7158801 fix
          S7198606, CVE-2012-4416: Improve VM optimization
      871dd194
    • Natanael Copa's avatar
      main/gcc: do not include the pkgrel in gcc -v · e428e6c5
      Natanael Copa authored
      It breaks building the gcc plugins for our linux-grsec kernel, the 3rd party mods
      
      By excluding the pkgrel from gcc -v we avoid needing to rebuild kernel every
      time we rebuild gcc.
      e428e6c5
    • Natanael Copa's avatar
      main/mp3splt-gtk: upgrade to 0.8.2 · 3483d380
      Natanael Copa authored
      3483d380
    • Natanael Copa's avatar
    • Natanael Copa's avatar
      main/libunwind: removed · 73d56a67
      Natanael Copa authored
      we use the unwind with libgcc
      73d56a67
    • Natanael Copa's avatar
      main/libsoup: upgrade to 2.42.2 · b054f24f
      Natanael Copa authored
      b054f24f
    • Ariadne Conill's avatar
      9755b35f
    • Ariadne Conill's avatar
      cab8ebec
    • Ariadne Conill's avatar
      3d47f91d
    • Ariadne Conill's avatar
      55fe20fc
  3. 25 Apr, 2013 8 commits