Commits · 3.11-stable · alpine / aports

23 Nov, 2021 3 commits
- main/xen: add missing XSA patches · af7d80ff
  Ariadne Conill authored Nov 23, 2021
  
  af7d80ff
- main/xen: add mitigations for XSA-388 and XSA-389, acknowledge XSA-387 · 269b0946
  Ariadne Conill authored Nov 23, 2021
  
  269b0946
- main/xen: security fix for XSA-386/CVE-2021-28702 · 55db10b4
  Daniel Néri authored Nov 21, 2021
  
  55db10b4
21 Nov, 2021 2 commits
- main/py-pillow: fix patch · 0ad6c9c3
  Kevin Daudt authored Nov 21, 2021
  
  0ad6c9c3
- main/py3-pillow: mitigate CVE-2021-23437 · b91cd266
  Kevin Daudt authored Nov 21, 2021
```
See: #13051
```
  b91cd266
17 Nov, 2021 1 commit

main/busybox: fix duplicate secfixes comment · cdea0ce4

Natanael Copa authored Nov 17, 2021

busybox 1.31 was never affected by CVE-2021-42375. We already added it
to '0:' in cd1f8de0

fixes #13192

cdea0ce4

13 Nov, 2021 2 commits
- main/postgresql: security upgrade to 12.9 · 5440db6d
  Jakub Jirutka authored Nov 14, 2021
```
https://www.postgresql.org/docs/release/12.9/
```
  5440db6d
- main/mariadb: security upgrade to 10.4.22 · f476cd7d
  J0WI authored Nov 10, 2021 and Leo committed Nov 13, 2021
  
  f476cd7d
12 Nov, 2021 2 commits

===== release 3.11.13 ===== · ecd94e54
Natanael Copa authored Nov 12, 2021

ecd94e54

main/busybox: backport security fixes · cd1f8de0

Natanael Copa authored Nov 11, 2021

- CVE-2021-42374
- CVE-2021-42378
- CVE-2021-42379
- CVE-2021-42380
- CVE-2021-42381
- CVE-2021-42382
- CVE-2021-42383
- CVE-2021-42384
- CVE-2021-42385
- CVE-2021-42386

awk patch is basically a diff from 1.31.0 -> 1.34.0.

busybox 1.31 was never affected by CVE-2021-42375
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/

cd1f8de0

22 Oct, 2021 1 commit
- main/tzdata: upgrade to 2021e · 282241da
  J0WI authored Oct 22, 2021
  
  282241da
16 Oct, 2021 1 commit
- main/tzdata: upgrade to 2021d · 76291da1
  Milan P. Stanić authored Oct 16, 2021
  
  76291da1
08 Oct, 2021 2 commits
- main/apache2: change source to dlcdn.apache.org · 28b787a7
  Kevin Daudt authored Oct 07, 2021 and Kaarle Ritvanen committed Oct 08, 2021
```
source for v2.4.51 is only available there.
```
  28b787a7
- main/apache2: security upgrade to 2.4.51 · 8f268a0e
  J0WI authored Oct 07, 2021
  
  8f268a0e
05 Oct, 2021 4 commits
- main/openssh: fix pkgrel · dd211ec7
  Ariadne Conill authored Oct 05, 2021
  
  dd211ec7
- main/openssh: add mitigation for CVE-2021-41617 · cea57736
  Ariadne Conill authored Oct 05, 2021
  
  cea57736
- main/squid: security upgrade to 4.17 (CVE-2021-28116) · 51e32072
  Ariadne Conill authored Oct 05, 2021
  
  51e32072
- main/apache2: security upgrade to 2.4.50 · e47248f8
  J0WI authored Oct 05, 2021
  
  e47248f8
04 Oct, 2021 1 commit
- main/redis: security upgrade to 5.0.14 · 2e2aa259
  J0WI authored Oct 04, 2021
  
  2e2aa259
02 Oct, 2021 1 commit
- main/tzdata: upgrade to 2021c · 8be601fe
  Milan P. Stanić authored Oct 02, 2021
  
  8be601fe
01 Oct, 2021 1 commit
- main/vim: update secfixes · 58ccf8aa
  Kevin Daudt authored Oct 01, 2021
  
  58ccf8aa
26 Sep, 2021 2 commits
- main/tzdata: upgrade to 2021b · 7b66336f
  Milan P. Stanić authored Sep 26, 2021
  
  7b66336f
- main/gnupg: change the default keyserver to keyserver.ubuntu.com · ae4caf35
  Jakub Jirutka authored Sep 26, 2021
```
hkps.pool.sks-keyservers.net is dead. This patch backports the change of
the default keyserver from newer versions of gnupg to keyserver.ubuntu.com.
```
  ae4caf35
22 Sep, 2021 1 commit
- main/curl: upgrade to 7.79.1 · 4a3eb020
  Kevin Daudt authored Sep 22, 2021
```
fixes several bugs introduced in 7.79.0
```
  4a3eb020
17 Sep, 2021 1 commit
- main/apache2: security upgrade to 2.4.49 · 49b29cee
  Andy Postnikov authored Sep 17, 2021
```
- CVE-2021-40438
- CVE-2021-39275
- CVE-2021-36160
- CVE-2021-34798
- CVE-2021-33193
```
  49b29cee
16 Sep, 2021 1 commit
- main/geoip: remove cron · f5ea1df9
  Leo authored Aug 25, 2021
```
See: #12950
```
  f5ea1df9
15 Sep, 2021 4 commits
- main/curl: really appease the configure script · 79e5b580
  Ariadne Conill authored Sep 15, 2021
  
  79e5b580
- main/curl: appease the configure script · d23e401b
  Ariadne Conill authored Sep 15, 2021
  
  d23e401b
- main/curl: security upgrade to 7.79.0 (5 CVEs) · 65335ba8
  Ariadne Conill authored Sep 15, 2021
  
  65335ba8
- main/libgcrypt: mitigate CVE-2021-40528 · 778e25cc
  Kevin Daudt authored Sep 14, 2021
  
  778e25cc
14 Sep, 2021 1 commit
- main/vim: security upgrade to 8.2.3437 (CVE-2021-3770) · b5744506
  Ariadne Conill authored Sep 14, 2021
  
  b5744506
10 Sep, 2021 1 commit
- main/xen: upgrade to 4.13.4 · a44a279e
  Daniel Néri authored Sep 11, 2021
  
  a44a279e
08 Sep, 2021 3 commits
- main/xen: add mitigation for XSA-384 · ae7c0694
  Ariadne Conill authored Sep 08, 2021
  
  ae7c0694
- main/gd: security fixes · a4d17fce
  J0WI authored Sep 08, 2021
```
- CVE-2017-6363
- CVE-2021-38115
- CVE-2021-40145
```
  a4d17fce
- main/xen: add mitigations for XSA-378 through XSA-383 · d04eadc3
  Ariadne Conill authored Sep 07, 2021
  
  d04eadc3
07 Sep, 2021 2 commits
- main/haproxy: upgrade to 2.0.25 · 0cb39112
  Milan P. Stanić authored Sep 07, 2021
  
  0cb39112
- main/squashfs-tools: security upgrade to 4.5 (CVE-2021-40153) · 5e622727
  Ariadne Conill authored Sep 07, 2021
  
  5e622727
31 Aug, 2021 3 commits
- main/nodejs: security upgrade to 12.22.6 (CVE-2021-37701, CVE-2021-37712,... · ede026da
  Ariadne Conill authored Aug 31, 2021
```
main/nodejs: security upgrade to 12.22.6 (CVE-2021-37701, CVE-2021-37712, CVE-2021-37713, CVE-2021-39134, CVE-2021-39135)
```
  ede026da
- ===== release 3.11.12 ===== · 2caa9ce9
  Natanael Copa authored Aug 31, 2021
  
  2caa9ce9
- main/zfs-lts: rebuild against kernel 5.4.143-r0 · f2729ece
  Natanael Copa authored Aug 31, 2021
  
  f2729ece