aports issueshttps://gitlab.alpinelinux.org/alpine/aports/-/issues2019-07-23T14:31:04Zhttps://gitlab.alpinelinux.org/alpine/aports/-/issues/1371[v2.3] Multiple vulnerabilities in xen < 4.1.3 may allow remote denial of ser...2019-07-23T14:31:04ZLeonardo Arena[v2.3] Multiple vulnerabilities in xen < 4.1.3 may allow remote denial of servicehttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3432
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3433
Solution:
\- Upgrade 2.3/2.4 to 4.1.3
or
\- Patches:
http://release.debian.org/proposed-updates/stable\_diffs/x...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3432
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3433
Solution:
\- Upgrade 2.3/2.4 to 4.1.3
or
\- Patches:
http://release.debian.org/proposed-updates/stable\_diffs/xen\_4.0.1-5.3.debdiff
*(from redmine: issue id 1371, created on 2012-09-09, closed on 2012-10-02)*
* Changesets:
* Revision f487d6b5efad92b95dcddc6af76a13b2429449d2 by Natanael Copa on 2012-10-01T13:46:12Z:
```
main/xen: security upgrade to 4.1.3 (CVE-2012-3432,CVE-2012-3433)
fixes #1371
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1366[v2.3] Multiple vulnerabilities in wireshark < [1.4.15|1.6.10] allow remote d...2019-07-23T14:31:08ZLeonardo Arena[v2.3] Multiple vulnerabilities in wireshark < [1.4.15|1.6.10] allow remote denial of servicehttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4285
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4288
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4289
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4285
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4288
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4289
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4296
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4291
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4292
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4293
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4290
http://www.wireshark.org/security/wnpa-sec-2012-13.html
http://www.wireshark.org/security/wnpa-sec-2012-14.html
http://www.wireshark.org/security/wnpa-sec-2012-15.html
http://www.wireshark.org/security/wnpa-sec-2012-17.html
http://www.wireshark.org/security/wnpa-sec-2012-18.html
http://www.wireshark.org/security/wnpa-sec-2012-20.html
http://www.wireshark.org/security/wnpa-sec-2012-21.html
http://www.wireshark.org/security/wnpa-sec-2012-22.html
http://www.wireshark.org/security/wnpa-sec-2012-23.html
Solution:
\- Upgrade to 1.4.15 for 2.1/2.2
\- Upgrade to 1.6.10 for 2.3/2.4
*(from redmine: issue id 1366, created on 2012-09-09, closed on 2012-10-02)*
* Changesets:
* Revision d5652dbb689f6ac0e80dbed8a9b9c52c22377b9c by Natanael Copa on 2012-09-28T13:09:27Z:
```
main/wireshark: security upgrade to 1.6.10 (CVE-2012-4285,CVE-2012-4288,CVE-2012-4289,CVE-2012-4296,CVE-2012-4291,CVE-2012-4292,CVE-2012-4293,CVE-2012-4290)
fixes #1366
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1363[v2.3] Vulnerability in phpMyAdmin < 3.4.11.1 may allow XSS2019-07-23T14:31:11ZLeonardo Arena[v2.3] Vulnerability in phpMyAdmin < 3.4.11.1 may allow XSShttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4345
Solution:
\- Upgrade to 3.4.11.1 for edge/2.4/2.3/2.2
*(from redmine: issue id 1363, created on 2012-09-09, closed on 2012-09-27)*
* Changesets:
* Revision 150e91246c0613...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4345
Solution:
\- Upgrade to 3.4.11.1 for edge/2.4/2.3/2.2
*(from redmine: issue id 1363, created on 2012-09-09, closed on 2012-09-27)*
* Changesets:
* Revision 150e91246c0613c04e483429bf8209636988394c by Natanael Copa on 2012-09-18T14:59:44Z:
```
main/phpmyadmin: security upgrade to 3.4.11.1 (CVE-2012-4345)
fixes #1363
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1358[v2.3] Vulnerability in bash < 4.2.033 may allow local bypass of restricted a...2019-07-23T14:31:15ZLeonardo Arena[v2.3] Vulnerability in bash < 4.2.033 may allow local bypass of restricted accesshttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3410
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=681278
Solution:
\- Upgrade to patch 33 for 2.2/2.3/2.4/edge
\- According to debian bug report it seems that patch 33 could...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3410
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=681278
Solution:
\- Upgrade to patch 33 for 2.2/2.3/2.4/edge
\- According to debian bug report it seems that patch 33 could apply
also to bash 4.1
*(from redmine: issue id 1358, created on 2012-09-09, closed on 2012-09-27)*
* Changesets:
* Revision df2311be6eef1eece27a29f172e8c4fb6a96296e by Natanael Copa on 2012-09-18T14:46:02Z:
```
main/bash: security upgrade to 4.2.037 (CVE-2012-3410)
fixes #1358
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1355[v2.3] Multiple vulnerabilities in icedtea-web < [1.1.6|1.2.1] may allow remo...2019-07-23T14:31:17ZLeonardo Arena[v2.3] Multiple vulnerabilities in icedtea-web < [1.1.6|1.2.1] may allow remote code executionhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3422
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3423
http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2012-July/019580.html
Solution:
\- Upgrade to 1.1.6 for 2...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3422
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3423
http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2012-July/019580.html
Solution:
\- Upgrade to 1.1.6 for 2.3
\- Upgrade to 1.2.1 for 2.4/edge
*(from redmine: issue id 1355, created on 2012-09-09, closed on 2012-09-27)*
* Changesets:
* Revision 768be6256566d0b7d9fea69ec9a3633988908ba8 by Natanael Copa on 2012-09-20T11:50:10Z:
```
main/icedtea-web: security upgrade to 1.1.6 (CVE-2012-3422,CVE-2012-3423)
fixes #1355
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1333[v2.3] Vulnerability in pgsql < 9.1.5 may allow information disclosure2019-07-23T14:31:32ZLeonardo Arena[v2.3] Vulnerability in pgsql < 9.1.5 may allow information disclosurehttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3489
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3488
https://access.redhat.com/security/cve/CVE-2012-3489
http://www.postgresql.org/docs/9.1/static/release-9-1-5.ht...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3489
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3488
https://access.redhat.com/security/cve/CVE-2012-3489
http://www.postgresql.org/docs/9.1/static/release-9-1-5.html
*(from redmine: issue id 1333, created on 2012-08-20, closed on 2012-08-23)*
* Changesets:
* Revision 1c5310eff360085f33d17aad26ce9569a42419e7 by Natanael Copa on 2012-08-20T14:10:30Z:
```
main/postgresql: security upgrade to 9.1.5 (CVE-2012-2655,CVE-2012-2143,CVE-2012-3488,CVE-2012-3489)
fixes #1333
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1327[v2.3] Vulnerability in tiff <= 4.0.2 may allow remote code execution2019-07-23T14:31:37ZLeonardo Arena[v2.3] Vulnerability in tiff <= 4.0.2 may allow remote code executionhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3401
\- All versions:
Patch: https://bugzilla.redhat.com/attachment.cgi?id=596457
*(from redmine: issue id 1327, created on 2012-08-14, closed on 2012-08-17)*
* Relations:
* ...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3401
\- All versions:
Patch: https://bugzilla.redhat.com/attachment.cgi?id=596457
*(from redmine: issue id 1327, created on 2012-08-14, closed on 2012-08-17)*
* Relations:
* duplicates #1419
* Changesets:
* Revision 87bc3681564395629e60dfff9915d4db4f5e88de by Natanael Copa on 2012-08-15T13:53:22Z:
```
main/tiff: security fix (CVE-2012-3401)
fixes #1327
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1322[v2.3] Vulnerability in busybox udhcpc < 1.20.0 may allow remote code execution2019-07-23T14:31:42ZLeonardo Arena[v2.3] Vulnerability in busybox udhcpc < 1.20.0 may allow remote code executionhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2716
https://bugs.busybox.net/show\_bug.cgi?id=3979
\- 2.1/2.2/2.3/2.4
Patch: https://bugs.busybox.net/attachment.cgi?id=3860
*(from redmine: issue id 1322, created on 2012-08...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2716
https://bugs.busybox.net/show\_bug.cgi?id=3979
\- 2.1/2.2/2.3/2.4
Patch: https://bugs.busybox.net/attachment.cgi?id=3860
*(from redmine: issue id 1322, created on 2012-08-14, closed on 2012-08-17)*
* Changesets:
* Revision 536d842626052ad957a4f1cdd516e5e314bff21c by Natanael Copa on 2012-08-15T10:58:08Z:
```
main/busybox: security fix for udhcpcd (CVE-2011-2716)
fixes #1322
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1319[v2.3] Vulnerability in openldap < 2.4.30 may allow remote denial of service2019-07-23T14:31:46ZLeonardo Arena[v2.3] Vulnerability in openldap < 2.4.30 may allow remote denial of servicehttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1164
\- 2.1/2.2/2.3
Upgrade to 2.4.30 or greater
*(from redmine: issue id 1319, created on 2012-08-14, closed on 2012-08-17)*
* Changesets:
* Revision 2216b84b681a71649cf6ac5...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1164
\- 2.1/2.2/2.3
Upgrade to 2.4.30 or greater
*(from redmine: issue id 1319, created on 2012-08-14, closed on 2012-08-17)*
* Changesets:
* Revision 2216b84b681a71649cf6ac5ff6bde6ba8117541d by Natanael Copa on 2012-08-15T09:22:04Z:
```
main/openldap: security fix (CVE-2012-1164)
fixes #1319
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1317[v2.3] Vulnerability in libotr < 3.2.1 may allow remote code execution2019-07-23T14:31:47ZLeonardo Arena[v2.3] Vulnerability in libotr < 3.2.1 may allow remote code executionhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3461
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=684121
\- All version:
Upgrade to 3.2.1
*(from redmine: issue id 1317, created on 2012-08-14, closed on 2012-08-17)*
* C...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3461
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=684121
\- All version:
Upgrade to 3.2.1
*(from redmine: issue id 1317, created on 2012-08-14, closed on 2012-08-17)*
* Changesets:
* Revision 331fb0e84ff2f8fc1fe5fbdf3493c3c41a28dbbd by Natanael Copa on 2012-08-15T07:49:55Z:
```
main/libotr: security upgrade to 3.2.1 (CVE-2012-3461)
fixes #1317
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1310[v2.3] Multiple vulnerabilities in expat < 2.1.0 may allow remote denial of s...2019-07-23T14:31:52ZLeonardo Arena[v2.3] Multiple vulnerabilities in expat < 2.1.0 may allow remote denial of servicehttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0876
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1148
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=663579
Solution:
\- 2.3
Patch:
http://launchpadlibrarian.net...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0876
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1148
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=663579
Solution:
\- 2.3
Patch:
http://launchpadlibrarian.net/96838022/expat\_2.0.1-7.2\_2.0.1-7.2ubuntu1.diff.gz
\- 2.2
Patch:
http://launchpadlibrarian.net/96838022/expat\_2.0.1-7.2\_2.0.1-7.2ubuntu1.diff.gz
\- 2.1
Patch:
http://launchpadlibrarian.net/96838022/expat\_2.0.1-7.2\_2.0.1-7.2ubuntu1.diff.gz
*(from redmine: issue id 1310, created on 2012-08-07, closed on 2012-08-17)*
* Changesets:
* Revision e225209377749c969b4b412b62736f706b32c830 by Natanael Copa on 2012-08-15T07:48:01Z:
```
main/expat: security upgrade to 2.1.0 (CVE-2012-1147,CVE-2012-1148,CVE-2012-0876)
fixes #1310
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1307[v2.3] Multiple vulnerabilities in wireshark < 1.6.9|1.4.14 may allow remote ...2019-07-23T14:31:55ZLeonardo Arena[v2.3] Multiple vulnerabilities in wireshark < 1.6.9|1.4.14 may allow remote denial of servicehttp://www.wireshark.org/security/wnpa-sec-2012-12.html
http://www.wireshark.org/security/wnpa-sec-2012-11.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4049
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4048...http://www.wireshark.org/security/wnpa-sec-2012-12.html
http://www.wireshark.org/security/wnpa-sec-2012-11.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4049
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4048
\- 2.4
Upgrade to 1.6.9
\- 2.3
Upgrade to 1.6.9
\- 2.2
Upgrade to 1.4.14
\- 2.1
Upgrade to 1.4.14
*(from redmine: issue id 1307, created on 2012-08-07, closed on 2012-08-17)*
* Changesets:
* Revision 9b83cb5e48bf7aab1ac42f4e0ff7d74f7702c980 by Natanael Copa on 2012-08-15T07:11:16Z:
```
main/wireshark: security upgrade to 1.6.9 (CVE-2012-4048,CVE-2012-4049)
fixes #1307
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1304[v2.3] Multiple vulnerabilities in libxml <= 2.8.0 may allow remote code exec...2019-07-23T14:31:57ZLeonardo Arena[v2.3] Multiple vulnerabilities in libxml <= 2.8.0 may allow remote code executionhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2807
Solution:
\- edge
Upgrade to 2.8.0
\- 2.4
Patch:
http://anonscm.debian.org/gitweb/?p=debian-xml-sgml/libxml2.git;a=commitdiff\_plain;h=08672e167a5298c19d31028e95bc9f20fdc...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2807
Solution:
\- edge
Upgrade to 2.8.0
\- 2.4
Patch:
http://anonscm.debian.org/gitweb/?p=debian-xml-sgml/libxml2.git;a=commitdiff\_plain;h=08672e167a5298c19d31028e95bc9f20fdcc229f
\- 2.3
Patch:
http://anonscm.debian.org/gitweb/?p=debian-xml-sgml/libxml2.git;a=commitdiff\_plain;h=08672e167a5298c19d31028e95bc9f20fdcc229f
*(from redmine: issue id 1304, created on 2012-08-07, closed on 2012-08-17)*
* Changesets:
* Revision 5b341437644b44d31026940cd57f68c400973b38 by Natanael Copa on 2012-08-16T09:26:53Z:
```
main/libxml2: apply various fixes from upstream (CVE-2012-2807)
fixes #1304
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1290[v2.3] Vulnerability in bind < [9.9.1-P2|9.8.3-P2|9.7.6-P2] may allow remote ...2019-07-23T14:32:07ZLeonardo Arena[v2.3] Vulnerability in bind < [9.9.1-P2|9.8.3-P2|9.7.6-P2] may allow remote denial of servicehttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3817
v2.4/edge
- Upgrade to 9.9.1-P2
v2.3/2.2
- Upgrade to 9.8.3-P2
v2.1
- Upgrade to 9.7.6-P2
*(from redmine: issue id 1290, created on 2012-07-31, closed on 2012-08-07)*...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3817
v2.4/edge
- Upgrade to 9.9.1-P2
v2.3/2.2
- Upgrade to 9.8.3-P2
v2.1
- Upgrade to 9.7.6-P2
*(from redmine: issue id 1290, created on 2012-07-31, closed on 2012-08-07)*
* Changesets:
* Revision 44fbea169a41e33b62f25c61a6e57ae0092f817b by Natanael Copa on 2012-08-02T08:09:27Z:
```
main/bind: security upgrade to 9.8.3_p2 (CVE-2012-3817)
fixes #1290
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1283[v2.3] Vulnerability in libpng < [1.5.12|1.4.12] may allow local privilege es...2019-07-23T14:32:14ZLeonardo Arena[v2.3] Vulnerability in libpng < [1.5.12|1.4.12] may allow local privilege escalationhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3386
http://www.libpng.org/pub/png/libpng.html
v2.4/v2.3
- Upgrade to 1.5.12
v2.2/2.1
- Upgrade to 1.4.12
*(from redmine: issue id 1283, created on 2012-07-27, closed on 20...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3386
http://www.libpng.org/pub/png/libpng.html
v2.4/v2.3
- Upgrade to 1.5.12
v2.2/2.1
- Upgrade to 1.4.12
*(from redmine: issue id 1283, created on 2012-07-27, closed on 2012-08-07)*
* Changesets:
* Revision 36626ff098c282198742778c4747996297515a7e by Natanael Copa on 2012-08-02T14:15:14Z:
```
main/libpng: security upgrade to 1.5.12 (CVE-2012-3386)
fixes #1283
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1278[v2.3] Multiple vulnerabilities in dhcp < 4.2.4-P1 may allow remote denial of...2019-07-23T14:32:17ZLeonardo Arena[v2.3] Multiple vulnerabilities in dhcp < 4.2.4-P1 may allow remote denial of servicehttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3571
https://kb.isc.org/article/AA-00712
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3954
https://kb.isc.org/article/AA-00737
\- Upgrade to 4.2.4-P1
*(from redmin...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3571
https://kb.isc.org/article/AA-00712
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3954
https://kb.isc.org/article/AA-00737
\- Upgrade to 4.2.4-P1
*(from redmine: issue id 1278, created on 2012-07-27, closed on 2012-08-07)*
* Changesets:
* Revision 57e10f486eafd6fb8702fb7fc6786b5f6a585c10 by Natanael Copa on 2012-08-02T10:00:40Z:
```
main/dhcp: security upgrade to 4.2.4_p1 (CVE-2012-3571,CVE-2012-3954)
fixes #1278
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1270[v2.3] Multiple vulnerabilities in php < 5.3.15 may allow remote code execution2019-07-23T14:32:24ZLeonardo Arena[v2.3] Multiple vulnerabilities in php < 5.3.15 may allow remote code executionhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3365
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2688
\- Upgrade to 5.3.15
*(from redmine: issue id 1270, created on 2012-07-23, closed on 2012-08-02)*
* Changesets:...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3365
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2688
\- Upgrade to 5.3.15
*(from redmine: issue id 1270, created on 2012-07-23, closed on 2012-08-02)*
* Changesets:
* Revision d0fc255e5c7fd2c969eb7dd64e76bed93e761745 by Natanael Copa on 2012-07-25T09:58:13Z:
```
main/php: security upgrade to 5.3.15 (CVE-2012-2688,CVE-2012-3365)
fixes #1270
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1265[v2.3] Vulnerability in nsd < 3.2.12 may allow remote denial of service2019-07-23T14:32:28ZLeonardo Arena[v2.3] Vulnerability in nsd < 3.2.12 may allow remote denial of servicehttp://www.securityfocus.com/bid/54606/discuss
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2978
\- Upgrade to 3.2.12
*(from redmine: issue id 1265, created on 2012-07-20, closed on 2012-08-02)*
* Changesets:
* Revision...http://www.securityfocus.com/bid/54606/discuss
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2978
\- Upgrade to 3.2.12
*(from redmine: issue id 1265, created on 2012-07-20, closed on 2012-08-02)*
* Changesets:
* Revision 48af883e428d98c04bd9ebaada16da40421a5c8f on 2012-07-21T08:51:52Z:
```
Security upgrade to 3.2.12 (CVE-2012-2978). Fixes #1265
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1260[v2.3] Multiple Vulnerabilities in libexif < 0.6.21 may allow remote code exe...2019-07-23T14:32:33ZLeonardo Arena[v2.3] Multiple Vulnerabilities in libexif < 0.6.21 may allow remote code executionhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2812
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2813
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2814
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2812
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2813
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2814
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2836
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2837
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2840
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2841
\- Upgrade to 0.6.21
*(from redmine: issue id 1260, created on 2012-07-19, closed on 2012-08-02)*
* Changesets:
* Revision fb7aa384de369b06d05879489fcbe279543079c5 by Natanael Copa on 2012-07-25T09:34:45Z:
```
main/libexif: security upgrade to 0.6.21 (CVE-2012-2812,CVE-2012-2813,CVE-2012-2814,CVE-2012-2836,CVE-2012-2837,CVE-2012-2840,CVE-2012-2841)
fixes #1260
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1255[v2.3] Vulnerability in asterisk < 1.8.13.1 may allow remote denial of service2019-07-23T14:32:37ZLeonardo Arena[v2.3] Vulnerability in asterisk < 1.8.13.1 may allow remote denial of servicehttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3863
http://downloads.asterisk.org/pub/security/AST-2012-010.html
\- Upgrade to 1.8.13.1
*(from redmine: issue id 1255, created on 2012-07-19, closed on 2012-08-02)*
* Changese...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3863
http://downloads.asterisk.org/pub/security/AST-2012-010.html
\- Upgrade to 1.8.13.1
*(from redmine: issue id 1255, created on 2012-07-19, closed on 2012-08-02)*
* Changesets:
* Revision 5f23dd2de673240a2657b40fbb161d33896bb71b by Natanael Copa on 2012-07-23T14:46:04Z:
```
main/asterisk: security upgrade to 1.8.13.1 (CVE-2012-3863)
Fixes #1255
Also remove the patch requested in #227
This bug has been fixed in upstream with a better patch in all
asterisk branches.
See: https://issues.asterisk.org/view.php?id=15627
```Alpine 2.3.7