Commits · 2.6-stable · alpine / aports

14 Sep, 2015 1 commit
- main/openldap: fix ber_get_next denial of service (CVE-2015-6908) · 0c87e4a7
  Leonardo Arena authored Sep 14, 2015
```
http://www.openldap.org/its/index.cgi/Software%20Bugs?id=8240
(cherry picked from commit 4041a223)
```
  0c87e4a7
30 Jul, 2015 1 commit
- main/owncloud: upgrade to 5.0.19 · b12e6474
  Leonardo Arena authored Jul 30, 2015
  
  b12e6474
15 Jun, 2015 1 commit
- main/qemu: security fix for CVE-2015-3456 · b63d4726
  Natanael Copa authored May 14, 2015
```
ref #4181
fixes #4185
```
  b63d4726
11 Jun, 2015 2 commits
- main/libtasn1: security fix for CVE-2015-3622 · 0f78b47a
  Natanael Copa authored Jun 11, 2015
```
fixes #4232
```
  0f78b47a
- main/libtasn1: security fix for CVE-2015-2806 · 90425002
  Natanael Copa authored May 13, 2015
```
fixes #4159
```
  90425002
02 Jun, 2015 2 commits
- main/mini_httpd: update checksums · 2bcfd49f
  Leonardo Arena authored Jun 02, 2015
  
  2bcfd49f
- main/mini_httpd: upgrade to 1.21 · dbab38b7
  Leonardo Arena authored Jun 02, 2015
```
Fixes #4262

(cherry picked from commit bdc65e14)
```
  dbab38b7
29 May, 2015 1 commit
- main/clamav: security upgrade to 0.98.7 (CVE-2015-2170,CVE-2015-2221) · 8c0ab61e
  Natanael Copa authored May 28, 2015
```
fixes #4237
```
  8c0ab61e
21 May, 2015 1 commit
- main/icecast: security fix for CVE-2015-3026 · 39554ea0
  Natanael Copa authored May 21, 2015
```
fixes #4191
```
  39554ea0
19 May, 2015 2 commits
- main/ppp: security fix for CVE-2015-3310 · ecf1daf4
  Natanael Copa authored May 19, 2015
```
fixes #4196
```
  ecf1daf4
- main/wpa_supplicant: security fix for CVE-2015-1863 · 91b54682
  Natanael Copa authored May 19, 2015
```
fixes #4209
```
  91b54682
05 May, 2015 6 commits

main/gnupg: security upgrade to 2.0.27 (CVE-2015-1606,CVE-2015-1607) · 17a96534
Natanael Copa authored May 05, 2015
```
fixes #4093
```
17a96534
main/cabextract: security upgrade to 1.6 (CVE-2015-2060) · d27ae253
Natanael Copa authored May 05, 2015
```
fixes #4099
```
d27ae253
main/libarchive: fix directory traversal in bsdcpio (CVE-2015-2304) · d2a5b9cf
Natanael Copa authored May 05, 2015
```
ref #4104
fixes #4105

(cherry picked from commit 8fcb0a17)
```
d2a5b9cf

main/php: security upgrade to 5.4.40 · 1d64f1cc

Natanael Copa authored May 05, 2015

Fixed with 5.4.40:
- CVE-2014-9709
- CVE-2015-1352
- CVE-2015-2301
- CVE-2015-2301
- CVE-2015-2783
- CVE-2015-3329
- CVE-2015-3330

Fixed with 5.4.39:
- CVE-2015-2305
- CVE-2015-2331
- CVE-2015-2348
- CVE-2015-2787

Fixed with 5.4.38:
- CVE-2014-9705
- CVE-2015-0235 (migitation)
- CVE-2015-0273

Fixed with 5.4.37:
- CVE-2015-0231
- CVE-2014-9427
- CVE-2015-0232
- CVE-2014-9652

Fixed with 5.4.36:
- CVE-2014-8142

Fixed with 5.4.35:
 CVE-2014-3710

Fixed with 5.4.34:
- CVE-2014-3669
- CVE-2014-3670
- CVE-2014-3668

Fixed with 5.4.33:
- no CVE

fixes #3710
fixes #4111

1d64f1cc

main/less: security upgrade to 475 (CVE-2014-9488) · 1e95b722
Natanael Copa authored May 05, 2015
```
fixes #4116
```
1e95b722
main/libxfont: security upgrade to 1.4.9 · c5f1ff54
Natanael Copa authored May 05, 2015
```
CVE-2015-1802
CVE-2015-1803
CVE-2015-1804

fixes #4122
```
c5f1ff54

20 Mar, 2015 1 commit

main/openssl: security upgrade to 1.0.1m · 87d2e400

Timo Teräs authored Mar 19, 2015

CVE-2015-0286, CVE-2015-0287, CVE-2015-0289, CVE-2015-0293,
CVE-2015-0209, CVE-2015-0288

all patches refreshed

(cherry picked from commit 277a9577)

87d2e400

18 Mar, 2015 3 commits
- main/patch: security upgrade to 2.7.5 · 70e18c8e
  Natanael Copa authored Mar 18, 2015
```
fixes #3889

CVE-2014-9637
CVE-2015-1395
CVE-2015-1396
```
  70e18c8e
- main/cups: security fix for CVE-2014-9679 · 3f653643
  Natanael Copa authored Mar 18, 2015
```
fixes #3992
```
  3f653643
- main/xorg-server: fix CVE-2015-0255 and upgrade to 1.14.7 · 9858cf87
  Natanael Copa authored Mar 18, 2015
```
fixes #3998
```
  9858cf87
17 Mar, 2015 2 commits
- main/sudo: security upgrade to 1.8.12 (CVE-2014-9680) · 6a6fde0b
  Bartłomiej Piotrowski authored Oct 02, 2013 and Natanael Copa committed Mar 17, 2015
```
fixes #3987
```
  6a6fde0b
- main/dbus: security upgrade to 1.6.30 (CVE-2015-0245) · f867310d
  Natanael Copa authored Mar 17, 2015
```
fixes #3982
```
  f867310d
13 Mar, 2015 3 commits
- main/socat: security upgrade to 1.7.3.0 (CVE-2015-1379) · 9b6b7084
  Natanael Copa authored Mar 13, 2015
```
fixes #3879
```
  9b6b7084
- main/clamav: security upgrade to 0.98.6 (CVE-2014-9328) · c30f1e92
  Natanael Copa authored Mar 13, 2015
```
fixes #3896
```
  c30f1e92
- main/zabbix: security upgrade to 2.0.14 · add8ee76
  Leonardo Arena authored Mar 13, 2015
```
https://support.zabbix.com/browse/ZBX-8582
```
  add8ee76
11 Mar, 2015 5 commits
- main/roundcubemail: security upgrade to 1.0.5 (CVE-2015-1433) · af23125b
  Natanael Copa authored Mar 11, 2015
```
fixes #3901
```
  af23125b
- main/vsftpd: security fix for CVE-2015-1419 · 6e8169c4
  Natanael Copa authored Mar 11, 2015
```
fixes #3906
```
  6e8169c4
- main/fcgi: security fix for CVE-2012-6687 · 90b4fe01
  Natanael Copa authored Mar 11, 2015
```
ref #3971
fixes #3972
```
  90b4fe01
- main/e2fsprogs: security fix for CVE-2015-0247 · 74d4340a
  Natanael Copa authored Mar 11, 2015
```
fixes #3943
```
  74d4340a
- main/putty: security upgrade to 0.64 (CVE-2015-2157) · 184fa95a
  Natanael Copa authored Mar 11, 2015
```
fixes #3958
```
  184fa95a
10 Mar, 2015 1 commit
- main/openldap: security fix for CVE-2015-1545,CVE-2015-1546 · c35d8ac2
  Natanael Copa authored Mar 10, 2015
```
ref #3965
ref #3966
fixes #3967
```
  c35d8ac2
24 Feb, 2015 1 commit
- main/samba: security upgrade to 4.0.25 (CVE-2015-0240) · 9801f0b7
  Timo Teräs authored Feb 24, 2015
  
  9801f0b7
02 Feb, 2015 4 commits
- main/privoxy: security upgrade to 3.0.23 (CVE-2015-1030, CVE-2015-1031) · 5c3814ef
  Natanael Copa authored Jan 27, 2015
```
fixes #3836

(cherry picked from commit b49992f5)

Conflicts:
	main/privoxy/APKBUILD
```
  5c3814ef
- main/patch: security fix for CVE-2015-119 · f6d4fc93
  Natanael Copa authored Feb 02, 2015
```
ref #3854
fixes #3855

(cherry picked from commit 5ac69ea4)
```
  f6d4fc93
- main/file: security upgrade to 5.22 (CVE-2014-8116,CVE-2014-8117,CVE-2014-9620,CVE-2014-9621) · 1ba7dddd
  Natanael Copa authored Feb 02, 2015
```
fixes #3805
fixes #3860
```
  1ba7dddd
- main/libpng: security upgrade to 1.5.21 (CVE-2014-9495,CVE-2015-0973) · 7a7c3dc1
  Natanael Copa authored Feb 02, 2015
```
fixes #3849
```
  7a7c3dc1
12 Jan, 2015 1 commit
- main/dbus: security upgrade to 1.6.28 (CVE-2014-7824) · 1ff989c2
  Natanael Copa authored Jan 12, 2015
```
fixes #3653
```
  1ff989c2
09 Jan, 2015 1 commit

main/openssl: security upgrade to 1.0.1k · 79754059

Timo Teräs authored Jan 09, 2015 and

Natanael Copa committed Jan 09, 2015

fixes #3687

CVE-2014-3571 DTLS segmentation fault in dtls1_get_record
CVE-2015-0206 DTLS memory leak in dtls1_buffer_record
CVE-2014-3569 no-ssl3 configuration sets method to NULL
CVE-2014-3572 ECDHE silently downgrades to ECDH [Client]
CVE-2015-0204 RSA silently downgrades to EXPORT_RSA [Client]
CVE-2015-0205 DH client certificates accepted without verification [Server]
CVE-2014-8275 Certificate fingerprints can be modified
CVE-2014-3570 Bignum squaring may produce incorrect results
(cherry picked from commit 26dd3845)

Conflicts:
	main/openssl/APKBUILD

79754059

22 Dec, 2014 1 commit
- main/git: security upgrade to 1.8.5.6 (CVE-2014-9390) · 1253f80d
  Natanael Copa authored Aug 27, 2013
  
  1253f80d