Commits · 3.8-stable · alpine / aports

12 Apr, 2021 1 commit
- main/apk-tools: upgrade to 2.10.6 · f94de196
  Timo Teräs authored Apr 12, 2021
  
  f94de196
16 Feb, 2021 1 commit
- community/openjdk8: security upgrade to 3.17.1 (8.275.01) · ccbd6a8a
  Timo Teräs authored Feb 15, 2021
  
  ccbd6a8a
20 Oct, 2020 11 commits

main/sqlite: fix secfixes comment for CVE-2019-19244 · 097f0358

Natanael Copa authored Oct 20, 2020

fixes commit ac7d137d (main/sqlite: security fixes (CVE-2019-19242,
CVE-2019-19244)), which apparently had a typo.

097f0358

main/sqlite: fix secfixes comment · 9001046c

Natanael Copa authored Oct 20, 2020

fix commit 0aa5cea8 (main/sqlite: fix CVE-2019-16168) which did not
fix CVE-2018-20346  but CVE-2019-16168.

also remove duplicate CVE-2019-19242

ref #11914

9001046c

main/samba: remove duplicate CVE in secfixes comment · 1ffd0c4c

Natanael Copa authored Oct 20, 2020

CVE-2018-14629 was fixed in 4.8.11 according
https://www.samba.org/samba/history/samba-4.8.11.html

ref #11914

1ffd0c4c

community/exim: remove duplicate CVE in secfixes comment · 04e42b67

Natanael Copa authored Oct 20, 2020

CVE-2018-6789 was fixed in 4.90.1.

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6789
alpine/aports#8505

ref #11914

04e42b67

community/wireshark: remove duplicate CVEs in secfixes comment · 7feb5ee1
Natanael Copa authored Oct 20, 2020
```
ref #11914
```
7feb5ee1
main/sdl: remove duplicate CVE in secfixes comment · 14810256
Natanael Copa authored Oct 20, 2020
```
ref #11914
```
14810256
main/lame: remove duplicates in secfixes comment · cd6dbbc5
Natanael Copa authored Oct 20, 2020
```
CVE-2017-9410, CVE-2017-9411, CVE-2017-9412, CVE-2015-9099 were all
fixed in 3.99.5-r6.

ref #11914
```
cd6dbbc5
community/firefox: remove duplicate CVE in secfixes comment · 268f75ea
Natanael Copa authored Oct 20, 2020
```
ref #11914
```
268f75ea

main/ghostscript: clean up duplicate secfixes comment · 5a4b02d3

Natanael Copa authored Oct 20, 2020

remove duplicate entry in secfixes comment and unused patch for
CVE-2019-6116.

The compressed .tgz patch that was added in 9.26-r1 was never applied.
The issue was fixed in 9.26-r2.

ref #11914

5a4b02d3

community/php5: update secfixes comment for CVE-2018-5712 · f86eadb4

Natanael Copa authored Oct 20, 2020

The fix for CVE-2018-5712 in 5.6.33 was incomplete and got finally fixed
in 5.6.36 together with a new CVE id (CVE-2018-10547).

Update secfixes comment and remove duplicate entry for CVE-2018-5712.

ref #11914
upstream ref: https://bugs.php.net/bug.php?id=76129

f86eadb4

main/openssl: clean up duplicate CVE entry in secfixes comment · 90ac76e9
Natanael Copa authored Oct 20, 2020
```
CVE-2017-3738 was fixed in commit 69941fbb (main/openssl: security
upgrade to 1.0.2n)
```
90ac76e9

13 Aug, 2020 1 commit
- main/busybox: add secfixes comment for CVE-2018-1000500 · 8434e749
  Natanael Copa authored Aug 13, 2020
```
ref #11820
```
  8434e749
09 Jun, 2020 1 commit
- main/gnutls: security upgrade to 3.6.14 (CVE-2020-13777) · 001e8c22
  Natanael Copa authored Jun 09, 2020
```
ref #11627
```
  001e8c22
03 Jun, 2020 2 commits

main/ca-certificates: remove expired certificate · f91a48ba
Natanael Copa authored Jun 03, 2020
```
ref #11607

(cherry picked from commit f430aef7)
```
f91a48ba

main/ca-certificates: fix bundle with certs without newline · fac577a2

Natanael Copa authored Feb 06, 2020

backport fix that adds newline to each cert in the bundle. The reason is
that trailing newline is no requirement so self generated certs may not
have it.

fixes #8379

(cherry picked from commit 0b87f832)

fac577a2

22 May, 2020 3 commits
- main/perl-mozilla-ca: upgrade to 20200520 · 73a848a2
  J0WI authored May 22, 2020
  
  73a848a2
- main/perl-mozilla-ca: modernize and upgrade to 20180117 · 7009fc11
  J0WI authored Oct 20, 2018
  
  7009fc11
- main/dovecot: security upgrade to 2.3.10.1 · 63c2cc27
  Leonardo Arena authored May 22, 2020
```
CVE-2020-10957, CVE-2020-10958, CVE-2020-10967,
CVE-2020-7046, CVE-2020-7957

Upgrade pigeonhole plugin to 0.5.10

fixes #11557
```
  63c2cc27
19 May, 2020 1 commit
- main/libexif: security upgrade to 0.6.22 · 5dea23e0
  Leo authored May 19, 2020 and Natanael Copa committed May 19, 2020
```
fixes #11539
```
  5dea23e0
13 May, 2020 1 commit
- main/mariadb: security upgrade to 10.2.32 · e508207d
  J0WI authored May 13, 2020
```
CVE-2020-2752
CVE-2020-2812
CVE-2020-2814
CVE-2020-2760
```
  e508207d
12 May, 2020 1 commit
- main/libvirt: security fix for CVE-2020-12430 · af2087cf
  Francesco Colista authored May 12, 2020
  
  af2087cf
07 May, 2020 2 commits
- main/sqlite: security fix (CVE-2020-11655) · a946d074
  Leonardo Arena authored May 07, 2020
```
fixes #11508
```
  a946d074
- main/openldap: fix CVE-2020-12243 · e22f8098
  Leo authored May 07, 2020
```
See #11509
```
  e22f8098
02 May, 2020 1 commit
- main/tzdata: upgrade to 2020a · 048a098a
  J0WI authored Apr 24, 2020
  
  048a098a
25 Apr, 2020 1 commit
- main/ntfs-3g: patch CVE-2019-9755 · c9296b6e
  TBK authored Apr 24, 2020
```
- Switch to https
- Clarify license
- Patch CVE-2019-9755
```
  c9296b6e
21 Apr, 2020 1 commit
- main/git: security upgrade to 2.18.4 · f32b8f8d
  Kevin Daudt authored Apr 21, 2020
  
  f32b8f8d
19 Apr, 2020 3 commits
- community/tor: fix source URI · 047aecce
  Ariadne Conill authored Apr 19, 2020
  
  047aecce
- main/xen: fix various security issues · fa008233
  Leo authored Apr 19, 2020
```
For #11400

Fixed CVEs:

- CVE-2020-11739
- CVE-2020-11740
- CVE-2020-11741
- CVE-2020-11742
- CVE-2020-11743
```
  fa008233
- community/tor: re-enable and rebuild to avoid bogus IDS warning · f06ffe83
  Ariadne Conill authored Apr 19, 2020
  
  f06ffe83
18 Apr, 2020 1 commit
- community/tor: disable package pending security review · fe476459
  Ariadne Conill authored Apr 18, 2020
  
  fe476459
17 Apr, 2020 1 commit
- main/mcpp: fix CVE-2019-14274 · 9b7a9599
  Sören Tempel authored Apr 17, 2020
```
Patch taken from Debian.
```
  9b7a9599
14 Apr, 2020 3 commits
- main/git: security upgrade to 2.18.3 · 0a78823b
  J0WI authored Apr 14, 2020 and Kevin Daudt committed Apr 14, 2020
  
  0a78823b
- main/ca-certificates: upgrade to 20191127 · 6bb12228
  Rasmus Thomsen authored Apr 13, 2020 and Leo committed Apr 14, 2020
```
New certificate distrusts have been added, so this should be backported
```
  6bb12228
- main/haproxy: fixes CVE-2020-11100 · 7ce71a26
  Leo authored Apr 14, 2020
```
See #11389
```
  7ce71a26
09 Apr, 2020 1 commit
- main/gd: patch CVE-2018-14553 and CVE-2019-11038 · bf12d0cc
  J0WI authored Apr 08, 2020 and Leo committed Apr 09, 2020
  
  bf12d0cc
07 Apr, 2020 1 commit
- main/mariadb: security upgrade to 10.2.31 · 65c783bb
  J0WI authored Apr 07, 2020
  
  65c783bb
03 Apr, 2020 2 commits
- main/gnutls: add CVE secfixes info · 867f20fe
  Leo authored Apr 03, 2020
  
  867f20fe
- main/samba: fix CVE-2019-14902, CVE-2019-14907 · 515e98e6
  Natanael Copa authored Apr 03, 2020
```
fixes #11155
```
  515e98e6