Commits · 3.13-stable · alpine / aports

08 Dec, 2021 2 commits

main/lz4: backport fix for CVE-2021-3520 · 798f3ef0
Natanael Copa authored Dec 08, 2021
```
ref: https://github.com/lz4/lz4/pull/972
```
798f3ef0

main/ncurses: add secfixes comment for CVE-2021-39537 · 5ecb2181

Natanael Copa authored Dec 08, 2021

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-39537

Fixed with upstream commit:
https://github.com/ThomasDickey/ncurses-snapshots/commit/63ca9e061f4644795d6f3f559557f3e1ed8c738b

5ecb2181

06 Dec, 2021 1 commit
- community/nss: patch CVE-2021-43527 · 82ee01ba
  J0WI authored Dec 02, 2021
  
  82ee01ba
02 Dec, 2021 2 commits
- main/libarchive: CVE-2021-36976 is unfixed · cb5d6360
  Natanael Copa authored Dec 02, 2021
```
After more research it turns out that there still are no fix for this.

ref https://github.com/libarchive/libarchive/issues/1554
```
  cb5d6360
- main/libarchive: upgrade to 3.5.2 (CVE-2021-36976) · b071dfeb
  Natanael Copa authored Dec 02, 2021
  
  b071dfeb
24 Nov, 2021 1 commit
- main/ruby: security upgrade to 2.7.5 · c1e5aa33
  Nulo Inc. authored Nov 24, 2021
  
  c1e5aa33
23 Nov, 2021 5 commits
- main/xen: add mitigations for XSA-388 and XSA-389 · f361bd60
  Ariadne Conill authored Nov 23, 2021
  
  f361bd60
- community/zbar: rebuild against imagemagick 7.0.11.14 · 81ff9a01
  Jakub Jirutka authored Nov 23, 2021
  
  81ff9a01
- community/php8-pecl-imagick: rebuild against imagemagick 7.0.11.14 · 6782f9bf
  Jakub Jirutka authored Nov 23, 2021
  
  6782f9bf
- community/php7-pecl-imagick: rebuild against imagemagick 7.0.11.14 · a0dcd106
  Jakub Jirutka authored Nov 23, 2021
  
  a0dcd106
- community/imagemagick: security upgrade to 7.0.11.14 · 038261e7
  J0WI authored Nov 23, 2021
  
  038261e7
21 Nov, 2021 4 commits
- main/py3-pillow: mitigate CVE-2021-23437 · 342d0719
  Kevin Daudt authored Nov 21, 2021
```
See: #13051
```
  342d0719
- community/py3-wgnlpy: upgrade to 0.1.5 · 23994036
  Thomas Liske authored Aug 03, 2021
  
  23994036
- main/xen: security fix for XSA-386/CVE-2021-28702 · 651f325e
  Daniel Néri authored Nov 21, 2021
  
  651f325e
- community/ceph: upgrade to 15.2.15 · c2ef07ac
  Duncan Bellamy authored Oct 20, 2021
  
  c2ef07ac
18 Nov, 2021 2 commits
- community/php8: security upgrade to 8.0.13 - CVE-2021-21707 · 058ca1c5
  Andy Postnikov authored Nov 05, 2021
  
  058ca1c5
- community/php7: security upgrade to 7.4.26 - CVE-2021-21707 · 1c28b61b
  Andy Postnikov authored Nov 05, 2021
  
  1c28b61b
13 Nov, 2021 2 commits
- main/postgresql: security upgrade to 13.5 · 42872a97
  Jakub Jirutka authored Nov 14, 2021
```
https://www.postgresql.org/docs/release/13.5/
```
  42872a97
- main/mariadb: security upgrade to 10.5.13 · edf36f6b
  J0WI authored Nov 10, 2021
  
  edf36f6b
12 Nov, 2021 10 commits
- ===== release 3.13.7 ===== · 47c7a5ad
  Natanael Copa authored Nov 12, 2021
  
  47c7a5ad
- main/zfs-lts: rebuild against kernel 5.10.78-r0 · 9ff27a2f
  Natanael Copa authored Nov 12, 2021
  
  9ff27a2f
- main/xtables-addons-lts: rebuild against kernel 5.10.78-r0 · df629efe
  Natanael Copa authored Nov 12, 2021
  
  df629efe
- main/dahdi-linux-lts: rebuild against kernel 5.10.78-r0 · 0fc2219a
  Natanael Copa authored Nov 12, 2021
  
  0fc2219a
- community/rtpengine-lts: rebuild against kernel 5.10.78-r0 · 4db7ce3a
  Natanael Copa authored Nov 12, 2021
  
  4db7ce3a
- community/rtl8821ce-lts: rebuild against kernel 5.10.78-r0 · c748cd7a
  Natanael Copa authored Nov 12, 2021
  
  c748cd7a
- community/jool-modules-lts: rebuild against kernel 5.10.78-r0 · e504aedf
  Natanael Copa authored Nov 12, 2021
  
  e504aedf
- main/linux-lts: upgrade to 5.10.78 · 0da46081
  Natanael Copa authored Nov 12, 2021
  
  0da46081
- main/busybox: backport security fixes · c434d5ff
  Natanael Copa authored Nov 11, 2021
```
- CVE-2021-42374
- CVE-2021-42375
- CVE-2021-42378
- CVE-2021-42379
- CVE-2021-42380
- CVE-2021-42381
- CVE-2021-42382
- CVE-2021-42383
- CVE-2021-42384
- CVE-2021-42385
- CVE-2021-42386
```
  c434d5ff
- community/nextcloud: upgrade to 20.0.14 · 099f04a3
  Leonardo Arena authored Nov 12, 2021
  
  099f04a3
08 Nov, 2021 1 commit
- community/firefox-esr: security upgrade to 78.15.0 · 4c41ecf6
  J0WI authored Oct 05, 2021
  
  4c41ecf6
30 Oct, 2021 1 commit
- main/squid: patch CVE-2021-41611 · c3411e25
  Dmitriy Kovalkov authored Oct 31, 2021
  
  c3411e25
27 Oct, 2021 1 commit
- community/ffmpeg: security upgrade to 4.3.3 · 9a271708
  J0WI authored Oct 27, 2021
  
  9a271708
26 Oct, 2021 5 commits
- main/perl-datetime-timezone: upgrade to 2.51 · 25a5f7c1
  J0WI authored Oct 22, 2021
  
  25a5f7c1
- main/perl-datetime-timezone: upgrade to 2.49 · 561d869d
  Leo authored Oct 03, 2021
  
  561d869d
- main/perl-datetime-timezone: upgrade to 2.48 · d830806e
  Leo authored Sep 25, 2021
  
  d830806e
- community/php8: security upgrade to 8.0.12 - CVE-2021-21703 · 56df40e7
  Andy Postnikov authored Oct 26, 2021
  
  56df40e7
- community/php7: security upgrade to 7.4.25 - CVE-2021-21703 · dfa0766b
  Andy Postnikov authored Oct 26, 2021
  
  dfa0766b
22 Oct, 2021 1 commit
- main/tzdata: upgrade to 2021e · ac10fd6c
  J0WI authored Oct 22, 2021
  
  ac10fd6c
21 Oct, 2021 1 commit
- main/strongswan: patch CVE-2021-41990 and CVE-2021-41991 · df0c620d
  J0WI authored Oct 20, 2021
  
  df0c620d
18 Oct, 2021 1 commit

main/alpine-keys: add new 4096-bits builder keys · b5633022

Kevin Daudt authored Oct 18, 2021

The keys currently in use are 2048-bits. To future-proof ourselves, add
new 4096-bits rsa keys. These are currently in use by the v3.15 stable
builders.

b5633022