aports issueshttps://gitlab.alpinelinux.org/alpine/aports/-/issues2019-07-16T11:19:32Zhttps://gitlab.alpinelinux.org/alpine/aports/-/issues/10669[3.7] squid: XSS via user_name or auth parameter in cachemgr.cgi (CVE-2019-13...2019-07-16T11:19:32ZAlicha CH[3.7] squid: XSS via user_name or auth parameter in cachemgr.cgi (CVE-2019-13345)The cachemgr.cgi web module of Squid through 4.7 has
XSS via the user\_name or auth parameter.
### References:
https://bugs.squid-cache.org/show\_bug.cgi?id=4957
https://github.com/squid-cache/squid/pull/429
*(from redmine: issue...The cachemgr.cgi web module of Squid through 4.7 has
XSS via the user\_name or auth parameter.
### References:
https://bugs.squid-cache.org/show\_bug.cgi?id=4957
https://github.com/squid-cache/squid/pull/429
*(from redmine: issue id 10669, created on 2019-07-09)*
* Relations:
* parent #10664
* Changesets:
* Revision 0a4f1520352ff66f50aebb2110bea65b3ee17f90 by Natanael Copa on 2019-07-11T17:08:10Z:
```
main/squid: fix CVE-2019-13345
fixes #10669
```3.7.4Natanael CopaNatanael Copahttps://gitlab.alpinelinux.org/alpine/aports/-/issues/10670targetcli not installable on edge2019-07-15T14:01:50ZMax Ehrlichtargetcli not installable on edgeTrying to install targetcli on the alpine:edge docker container gives:
fetch http://dl-cdn.alpinelinux.org/alpine/edge/main/x86_64/APKINDEX.tar.gz
fetch http://dl-cdn.alpinelinux.org/alpine/edge/community/x86_64/APKINDEX.tar.gz
...Trying to install targetcli on the alpine:edge docker container gives:
fetch http://dl-cdn.alpinelinux.org/alpine/edge/main/x86_64/APKINDEX.tar.gz
fetch http://dl-cdn.alpinelinux.org/alpine/edge/community/x86_64/APKINDEX.tar.gz
ERROR: unsatisfiable constraints:
py-configshell (missing):
required by: targetcli-2.1_p49-r0[py-configshell]
py-rtslib (missing):
required by: targetcli-2.1_p49-r0[py-rtslib]
py-simpleparse (missing):
required by: targetcli-2.1_p49-r0[py-simpleparse]
When I search this package in the alpine package database
(https://pkgs.alpinelinux.org/package/edge/community/x86/targetcli) I
don’t see the missing packages listed as dependencies. Is something out
of date?
*(from redmine: issue id 10670, created on 2019-07-09)*
* Changesets:
* Revision 285edcd1308d2895ae7cdcc927a39741d3d4f28b by Francesco Colista on 2019-07-10T09:03:35Z:
```
community/targetcli: bump pkgrel. Fixes #10670
```https://gitlab.alpinelinux.org/alpine/aports/-/issues/10671irqbalance: missing creation of directory (irqbalance) in /var/run/2019-07-23T10:35:39ZMY-Rirqbalance: missing creation of directory (irqbalance) in /var/run/After commit: main/irqbalance: upgrade to 1.6.0
Alpine log showing warning:
<code>
daemon.warn /usr/sbin/irqbalance: Daemon couldn’t be bound to the
file-based socket.
</code>
Probably related to this change:
https://github.com/I...After commit: main/irqbalance: upgrade to 1.6.0
Alpine log showing warning:
<code>
daemon.warn /usr/sbin/irqbalance: Daemon couldn’t be bound to the
file-based socket.
</code>
Probably related to this change:
https://github.com/Irqbalance/irqbalance/commit/19c25ddc5a13cf0b993cdb0edac0eee80143be34
With created dir “irqbalance” warning is gone and file based socket is
created:
<code>
srwxr-xr-x 1 root root 0 Jul 9 18:57
/var/run/irqbalance/irqbalance3785.sock
</code>
*(from redmine: issue id 10671, created on 2019-07-09)*Henrik RiomarHenrik Riomarhttps://gitlab.alpinelinux.org/alpine/aports/-/issues/10672Cannot install php7 libraries2019-07-23T11:06:05ZAario ShahbanyCannot install php7 librariesJust same as:
https://bugs.alpinelinux.org/issues/8780
When installing php7 libraries from Alpine 3.10 repositories, you get
errors like:
<code class="c">
PHP Warning: PHP Startup: Unable to load dynamic library '/usr/lib/p...Just same as:
https://bugs.alpinelinux.org/issues/8780
When installing php7 libraries from Alpine 3.10 repositories, you get
errors like:
<code class="c">
PHP Warning: PHP Startup: Unable to load dynamic library '/usr/lib/php7/modules/pdo_mysql.so' - Error relocating /usr/lib/php7/modules/pdo_mysql.so: mysqlnd_allocator: symbol not found in Unknown on line 0
</code>
As a result, php7.2 alpine docker images are now useless:
https://github.com/docker-library/php/blob/66234ccc01849f2ce1a6b18428d4a7215921d647/7.2/alpine3.10/fpm/Dockerfile
This is why I see it as high priority.
*(from redmine: issue id 10672, created on 2019-07-11, closed on 2019-07-11)*3.10.1https://gitlab.alpinelinux.org/alpine/aports/-/issues/10673swaybar crashes after you hover the mouse pointer over it2019-12-05T07:43:23ZMatthew Johnsonswaybar crashes after you hover the mouse pointer over itTo reproduce the issue:
`$ swaybar --bar_id=bar-0`
`2019-07-11 14:00:00 - [swaybar/tray/tray.c:42] Failed to connect to user bus: No such file or directory`
(At this moment the bar works fine)
After I hover the mouse over it, the...To reproduce the issue:
`$ swaybar --bar_id=bar-0`
`2019-07-11 14:00:00 - [swaybar/tray/tray.c:42] Failed to connect to user bus: No such file or directory`
(At this moment the bar works fine)
After I hover the mouse over it, the bar disappears and the following
appears on the shell:
`Segmentation fault`
*(from redmine: issue id 10673, created on 2019-07-11)*https://gitlab.alpinelinux.org/alpine/aports/-/issues/11443busybox-doc package is empty2020-05-05T17:02:56Zedwargixbusybox-doc package is emptyHello,
The man page in the busybox-doc package seems to be empty. This was also posted here: https://lists.alpinelinux.org/~alpine/devel/%3C875zdo3xeo.fsf%40florness.com%3E
```
$ apk info -L busybox-doc
busybox-doc-1.31.1-r14 contains...Hello,
The man page in the busybox-doc package seems to be empty. This was also posted here: https://lists.alpinelinux.org/~alpine/devel/%3C875zdo3xeo.fsf%40florness.com%3E
```
$ apk info -L busybox-doc
busybox-doc-1.31.1-r14 contains:
usr/share/man/man1/busybox.1.gz
$ zcat /usr/share/man/man1/busybox.1.gz
$
```