1. 11 Nov, 2011 10 commits
    • Natanael Copa's avatar
      ==== snapshot 111111 ==== · 3465946f
      Natanael Copa authored
    • Timo Teräs's avatar
      main/libc0.9.32: improve the stack unwinding fix · 6f8933ee
      Timo Teräs authored
      should now work with all syscalls
    • Natanael Copa's avatar
      main/ldns: build drill and example tools · 55d08e35
      Natanael Copa authored
    • Natanael Copa's avatar
    • Natanael Copa's avatar
      main/midori: upgrade to 0.4.2 · 8d8a87cb
      Natanael Copa authored
    • Natanael Copa's avatar
      main/nmap: upgrade to 5.51.5 · ca56b0a6
      Natanael Copa authored
    • Natanael Copa's avatar
      main/tcl: upgrade to 8.5.11 · cda0b3e1
      Natanael Copa authored
    • Natanael Copa's avatar
      main/git: upgrade to · f2381061
      Natanael Copa authored
    • Timo Teräs's avatar
      main/net-snmp: add some snmpd MIB implementation fixes · ac22212e
      Timo Teräs authored
        * IP-MIB::ipNetToPhysicalPhysAddress is fixed to display
          data properly even after first time
        * swinst patch prevents a crash during snmpwalk in
          default install
    • Timo Teräs's avatar
      main/openjdk6: security upgrade icedtea6 to 1.10.4 · 0389c081
      Timo Teräs authored
      ref #802
      icedtea6 1.10.4 includes patches for the following security issues:
       CVE-2011-3547: InputStream skip() information leak
       CVE-2011-3548: mutable static AWTKeyStroke.ctor
       CVE-2011-3551: Java2D TransformHelper integer overflow
       CVE-2011-3552: excessive default UDP socket limit under SecurityManager
       CVE-2011-3553: JAX-WS stack-traces information leak
       CVE-2011-3544: missing SecurityManager checks in scripting engine
       CVE-2011-3521: IIOP deserialization code execution
       CVE-2011-3554: insufficient pack200 JAR files uncompress error checks
       CVE-2011-3389: HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST)
       CVE-2011-3558: HotSpot crashes with sigsegv from PorterStemmer
       CVE-2011-3556: RMI DGC server remote code execution
       CVE-2011-3557: RMI registry privileged code execution
       CVE-2011-3560: missing checkSetFactory calls in HttpsURLConnection
       CVE-2011-3558: HotSpot crashes with sigsegv from PorterStemmer
      icedtea6 1.10.2 security patches (since upgrading from icedtea6 1.10.1):
       CVE-2011-0872: (so) non-blocking sockets with TCP urgent disabled get still selected for read ops (win)
       CVE-2011-0865: Vulnerability in deserialization
       CVE-2011-0815: Heap overflow vulnerability in FileDialog.show()
       CVE-2011-0822, CVE-2011-0862: Integer overflows in 2D code
       CVE-2011-0867: NetworkInterface.toString can reveal bindings
       CVE-2011-0869: Vulnerability in SAAJ
       CVE-2011-0870: Vulnerability in SAAJ
       CVE-2011-0868: Crash in Java 2D transforming an image with scale close to zero
       CVE-2011-0871: ImageIcon creates Component with null acc
       CVE-2011-0864: JSR rewriting can overflow memory address size variables
  2. 10 Nov, 2011 10 commits
  3. 09 Nov, 2011 3 commits
  4. 08 Nov, 2011 3 commits
  5. 07 Nov, 2011 4 commits
  6. 06 Nov, 2011 5 commits
  7. 04 Nov, 2011 5 commits