Commits · 9582332f5244fd47f63334263f3a60376719b415 · alpine / aports

30 Dec, 2016 9 commits

testing/w_scan: new aport · 9582332f
Francesco Colista authored Dec 30, 2016

9582332f
community/perl-mojolicious: upgrade to 7.13 · ba34785b
Francesco Colista authored Dec 30, 2016

ba34785b
main/nghttp2: upgrade to 1.18.0 · 76f4f1f1
Francesco Colista authored Dec 30, 2016

76f4f1f1
community/volatility: upgrade to 2.6 · b5401c10
Francesco Colista authored Dec 30, 2016

b5401c10
community/phpmyadmin: mistake fixed in secfixes info · 517afce6
Sergei Lukin authored Dec 30, 2016

517afce6

community/phpmyadmin: security upgrade to 4.6.5.2 - fixes · 311ef72f

Sergei Lukin authored Dec 29, 2016

CVE-2016-9847: Unsafe generation of blowfish secret
CVE-2016-9848: phpinfo information leak value of sensitive (HttpOnly) cookies
CVE-2016-9849: Username deny rules bypass (AllowRoot & Others) by using Null Byte
CVE-2016-9850: Username rule matching issues
CVE-2016-9851: With a crafted request parameter value it is possible to bypass the logout timeout.
CVE-2016-9852 CVE-2016-9853 CVE-2016-9854 CVE-2016-9855: Multiple full path disclosure vulnerabilities
CVE-2016-9856 CVE-2016-9857: Multiple XSS vulnerabilities
CVE-2016-9858 CVE-2016-9859 CVE-2016-9860: We consider these vulnerabilities to be of moderate severity.
CVE-2016-9861: Bypass white-list protection for URL redirection
CVE-2016-9862: BBCode injection vulnerability
CVE-2016-9863: DOS vulnerability in table partitioning
CVE-2016-9864: Multiple SQL injection vulnerabilities
CVE-2016-9865: Incorrect serialized string parsing
CVE-2016-9866: CSRF token not stripped from the URL

311ef72f

testing/virtualbox-guest-additions: Upgrade to 5.1.12 and update init script · 00185b50

Ben Allen authored Dec 29, 2016

- Upgrade to 5.1.12
- Init script on start loads vboxsf, which mounts any shared directories
- Init script on stop umounts any vboxsf filesystems and unloads vboxsf

00185b50

main/perl-net-dns: upgrade to 1.07 · 40c66ccd
Leonardo Arena authored Dec 30, 2016

40c66ccd
main/perl-db_file: upgrade to 1.840 · 2522dff9
Leonardo Arena authored Dec 30, 2016

2522dff9

29 Dec, 2016 17 commits
- main/libev: upgrade to 4.24 · 22ccea20
  Natanael Copa authored Dec 29, 2016
  
  22ccea20
- main/busybox: upgrade to 1.26.0 · 6cd2a097
  Natanael Copa authored Dec 29, 2016
  
  6cd2a097
- main/xorg-cf-files: added doc subpackage · 338b9d74
  Johannes Matheis authored Nov 04, 2016
  
  338b9d74
- testing/virtualbox-guest-modules-grsec: Upgrade to 5.1.12 · fac32cef
  Ben Allen authored Dec 29, 2016
  
  fac32cef
- testing/grub: disable Xen support on !x86_64 · 37b5733a
  Leonardo Arena authored Dec 29, 2016
  
  37b5733a
- testing/grub: Xen not supported on x86 · bf990241
  Leonardo Arena authored Dec 29, 2016
  
  bf990241
- main/perl-io-compress: upgrade to 2.070 · 272f880a
  Leonardo Arena authored Dec 29, 2016
  
  272f880a
- main/perl-compress-raw-zlib: upgrade to 2.070 · fc99c064
  Leonardo Arena authored Dec 29, 2016
  
  fc99c064
- main/perl-compress-raw-bzip2: upgrade to 2.070 · faa61054
  Leonardo Arena authored Dec 29, 2016
  
  faa61054
- main/iproute2: upgrade to 4.9.0 · 976bf026
  A. Klitzing authored Dec 28, 2016
```
Update musl-fixes.patch
```
  976bf026
- main/musl: upstream fixes, and add ipv6 features to getent · 89a718d8
  Timo Teräs authored Dec 29, 2016
```
fixes #6590
```
  89a718d8
- testing/grub: add grub-xenhost (pv-grub2) · 81aa969f
  Henrik Riomar authored Nov 06, 2016
```
Based on the Debian handling of grub-xen-host

grub2-accept-empty-module.patch from http://savannah.gnu.org/bugs/?49012
```
  81aa969f
- testing/boost-build: fix abuild · b7b7d64c
  Jakub Jirutka authored Dec 29, 2016
  
  b7b7d64c
- testing/libva-vdpau-driver: new aport · dd229453
  Sören Tempel authored Nov 12, 2016
  
  dd229453
- testing/boost-build: new aport · 4734a46f
  Valery Kartel authored Dec 01, 2016
```
http://boost.org/build
Boost.Build makes it easy to build C++ projects, everywhere
```
  4734a46f
- community/monkey: fixes ssl problem · dbcc4de9
  Scrumpy Jack authored Sep 13, 2016
```
Builds monkey with jemalloc to fix a seg fault issue when built
with built-in malloc.
```
  dbcc4de9
- main/openssh: track secfixes · 9c2376cc
  Sergei Lukin authored Dec 28, 2016
```
CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012
```
  9c2376cc
28 Dec, 2016 14 commits
- testing/exim: upgrade to 4.88 · 7930db83
  Valery Kartel authored Dec 29, 2016
```
And cosmetic fixes in init-script and APKBUILD.
```
  7930db83
- main/py-setuptools: upgrade to 32.3.0 · 681b7529
  A. Klitzing authored Dec 28, 2016
  
  681b7529
- main/quazip: upgrade to 0.7.2 · 1c437766
  A. Klitzing authored Dec 28, 2016
  
  1c437766
- main/xscreensaver: upgrade to 5.36 · ec38f97a
  A. Klitzing authored Dec 28, 2016
  
  ec38f97a
- main/py2-pip: upgrade tp 9.0.1 · 6a82ae26
  A. Klitzing authored Dec 28, 2016
  
  6a82ae26
- main/lighttpd: upgrade to 1.4.44 · 2cc0910f
  A. Klitzing authored Dec 28, 2016
  
  2cc0910f
- testing/postgis: upgrade to 2.3.1 · 7297e9d6
  A. Klitzing authored Dec 28, 2016
  
  7297e9d6
- main/libuv: upgrade to 1.10.1 · e0cdbb5e
  A. Klitzing authored Dec 28, 2016
  
  e0cdbb5e
- main/py-virtualenv: upgrade to 15.1.0 · 20813270
  A. Klitzing authored Dec 28, 2016
  
  20813270
- main/flake8: upgrade to 3.2.1 · 67c15024
  A. Klitzing authored Dec 28, 2016
  
  67c15024
- community/imapsync: fix depends for alpine 3.5 · 45da713f
  Stuart Cardall authored Dec 23, 2016
```
fixes depends: perl-test-tester ==> perl-test-simple
```
  45da713f
- community/acf-provisioning-polycom: upgrade to 5.5.1 · a15984cf
  Ted Trask authored Dec 28, 2016
  
  a15984cf
- main/nano: upgrade to 2.7.3 · 9eb78f12
  A. Klitzing authored Dec 28, 2016
```
Enable libmagic support
```
  9eb78f12
- main/jsoncpp: upgrade to 1.8.0 · 00c6835b
  A. Klitzing authored Dec 28, 2016
  
  00c6835b