Commits · 3.11-stable · alpine / aports

18 Jun, 2021 1 commit
- main/open-iscsi: fix path of iscsi-name in init script · 2cbed5bc
  Leonardo Arena authored Jun 18, 2021
```
ref #12768
```
  2cbed5bc
16 Jun, 2021 2 commits
- community/openjdk7: fix secfixes comment · 4fdd2e67
  J0WI authored Jun 16, 2021
  
  4fdd2e67
- main/mariadb: security upgrade to 10.4.19 · 761f896d
  J0WI authored May 08, 2021
  
  761f896d
15 Jun, 2021 4 commits
- main/xen: add fix for XSA-377 · 4805e2f0
  Henrik Riomar authored Jun 09, 2021
```
This is CVE-2021-28690
```
  4805e2f0
- main/xen: add fix for XSA-375 · d9a72688
  Henrik Riomar authored Jun 09, 2021
```
This is CVE-2021-0089
```
  d9a72688
- main/xen: add fix for XSA-373 · 221fb962
  Henrik Riomar authored Jun 09, 2021
```
This is CVE-2021-28692
```
  221fb962
- main/xen: add fix for XSA-372 · 1e89abec
  Henrik Riomar authored Jun 09, 2021
```
This is CVE-2021-28693
```
  1e89abec
14 Jun, 2021 2 commits
- community/graphicsmagick: fix duplicated CVEs (#12754) · 39655ecc
  J0WI authored Jun 14, 2021
```
(cherry picked from commit a1d28041)
```
  39655ecc
- main/nginx: fix transition /var/tmp/nginx -> /var/lib/nginx/tmp · 859f09c4
  Natanael Copa authored Jun 02, 2021
```
fixes #11204
```
  859f09c4
11 Jun, 2021 1 commit
- main/apache2: add missing secfixes data for 2.4.48 · 8709cf83
  Ariadne Conill authored Jun 11, 2021
  
  8709cf83
10 Jun, 2021 1 commit
- main/apache2: security upgrade to 2.4.48 · 9ad6d082
  J0WI authored Jun 03, 2021
  
  9ad6d082
09 Jun, 2021 3 commits
- main/gdk-pixbuf: add mitigation for CVE-2020-29385, add missing secfixes data for CVE-2021-20240 · dd281d50
  Ariadne Conill authored Jun 09, 2021
  
  dd281d50
- main/botan: add mitigation for CVE-2021-24115 · f7d64f9e
  Ariadne Conill authored Jun 09, 2021
  
  f7d64f9e
- community/intel-ucode: security upgrade to 20210608 · 6061a647
  Henrik Riomar authored Jun 09, 2021
  
  6061a647
08 Jun, 2021 1 commit
- main/openrc: add mitigation for CVE-2018-21269 · ec66e7c6
  Ariadne Conill authored Jun 08, 2021
  
  ec66e7c6
07 Jun, 2021 1 commit
- main/xen: fix secfixes data for XSA-264 · 5c8621ff
  Ariadne Conill authored Jun 07, 2021
  
  5c8621ff
04 Jun, 2021 1 commit
- main/libxml2: add mitigations for CVE-2021-3517, CVE-2021-3518 and CVE-2021-3537 · 890023a7
  Ariadne Conill authored Jun 04, 2021
  
  890023a7
03 Jun, 2021 2 commits
- main/ansible: security upgrade to 2.9.18 (CVE-2021-20191) · 0a50440a
  Ariadne Conill authored Jun 03, 2021
  
  0a50440a
- main/spice: add mitigation for CVE-2021-20101 · b8823f3f
  Ariadne Conill authored Jun 02, 2021
  
  b8823f3f
01 Jun, 2021 9 commits
- main/graphviz: add mitigation for CVE-2020-18032 · e6ce8b0c
  Ariadne Conill authored May 31, 2021
  
  e6ce8b0c
- main/jansson: reject CVE-2020-36325 · dadd3452
  Ariadne Conill authored May 31, 2021
  
  dadd3452
- main/cifs-utils: drop obsolete patch · a7c3d3a4
  Ariadne Conill authored May 31, 2021
  
  a7c3d3a4
- main/cifs-utils: security upgrade to 6.13 (CVE-2021-20208) · 94e25640
  Ariadne Conill authored May 31, 2021
  
  94e25640
- main/git: reject CVE-2021-29468 (cygwin specific) · f190d37d
  Ariadne Conill authored May 31, 2021
  
  f190d37d
- main/openvpn: reject CVE-2020-7224 and CVE-2020-27569 · 8b5fd6ea
  Ariadne Conill authored May 31, 2021
  
  8b5fd6ea
- main/cyrus-sasl: reject CVE-2020-8032 · 5542450d
  Ariadne Conill authored May 31, 2021
  
  5542450d
- main/rxvt-unicode: add mitigation for CVE-2021-33477 · e0dcc37f
  Ariadne Conill authored May 31, 2021
  
  e0dcc37f
- main/rxvt: add mitigation for CVE-2021-33477 · 7485e398
  Ariadne Conill authored May 31, 2021
  
  7485e398
27 May, 2021 1 commit

main/curl: add secfix for CVE-2021-22897 · e10583f0

Chris Novakovic authored May 27, 2021

Alpine's curl package isn't vulnerable to CVE-2021-22897 - add it to the
secfixes list to reduce false positives from security scanners.

e10583f0

26 May, 2021 4 commits
- main/curl: remediate CVE-2021-22898 · 63757845
  Chris Novakovic authored May 27, 2021
```
Cherry-pick the fix for CVE-2021-22898 from upstream:
https://github.com/curl/curl/commit/39ce47f219b09c380b81f89fe54ac586c8db6bde
```
  63757845
- main/nginx: patch CVE-2021-23017 · d2ee0439
  J0WI authored May 26, 2021
```
See http://mailman.nginx.org/pipermail/nginx-announce/2021/000300.html
```
  d2ee0439
- main/perl-convert-asn1: upgrade to 0.29 · 8487c650
  Timothy Legge authored May 24, 2021
  
  8487c650
- main/perl-convert-asn1: modernize · f74db18a
  Timothy Legge authored May 24, 2021
  
  f74db18a
19 May, 2021 1 commit
- main/libx11: fix CVE-2021-31535 · d7d34747
  Leo authored May 19, 2021
  
  d7d34747
14 May, 2021 1 commit
- main/squid: security upgrade to 4.15 · 21152dff
  J0WI authored May 14, 2021
  
  21152dff
13 May, 2021 1 commit
- main/postgresql: security upgrade to 12.7 · 7f56cfcc
  J0WI authored May 13, 2021
  
  7f56cfcc
12 May, 2021 2 commits
- ci: don't copy packages and keys · aa55c5a6
  Kevin Daudt authored Feb 23, 2021
```
This is now handled by the build script itself so that it's able to skip
this step in case the size is larger than the limit.
```
  aa55c5a6
- main/mariadb: security upgrade to 10.4.18 (CVE-2021-27928) · d42ea21f
  Kevin Daudt authored May 12, 2021
```
See: #12668
```
  d42ea21f
06 May, 2021 2 commits

main/python3: disable test_curses · 127ddb5c

Natanael Copa authored May 06, 2021

it fails on all builders with the error:

======================================================================
ERROR: setUpClass (test.test_curses.TestCurses)
----------------------------------------------------------------------
Traceback (most recent call last):
  File
"/home/buildozer/aports/main/python3/src/Python-3.8.10/Lib/test/test_curses.py",
line 66, in setUpClass
    curses.setupterm(fd=stdout_fd)
_curses.error: setupterm: could not find terminal

127ddb5c

main/python3: upgrade to 3.8.10 · b4b354c8

Chris Novakovic authored May 06, 2021

Also bump community/python3-tkinter to 3.8.10.

* Remove ece5dfd403dac211f8d3c72701fe7ba7b7aa5b5f.patch,
  CVE-2020-14422.patch and test_nntplib.patch, since they have been
  merged upstream.
* Remove obsolete configure options --disable-rpath and --enable-threads.
* Skip test_asyncio due to hanging on all architectures (this test is
  constantly being patched upstream to fix this problem).

b4b354c8