Commits · 5de48aa6054001fbbb268a8b9dfde035c7478b6a · Johannes Müller / aports

24 Feb, 2016 3 commits

main/linux-grsec: security fix (CVE-2015-8550, xsa-155). Fixes #5160 · 5de48aa6
Leonardo Arena authored Feb 24, 2016
```
(cherry picked from commit ed9dc565)
```
5de48aa6
main/qemu: security fix (CVE-2015-8550, xsa-155). Fixes #5160 · 7e224e4a
Leonardo Arena authored Feb 24, 2016
```
(cherry picked from commit 561bee69)
```
7e224e4a

main/xen: security fix multiple vulnerabilties. Fixes #5160 · 88cebe5b

Leonardo Arena authored Feb 24, 2016

(CVE-2016-2270, XSA-154)
(CVE-2015-8550, XSA-155)
(CVE-2015-8339, CVE-2015-8340, XSA-159)
(CVE-2015-8341, XSA-160)
(CVE-2015-8555, XSA-165)
(CVE-2016-1570, XSA-167)
(CVE-2016-1571, XSA 168)
(CVE-2015-8615, XSA-169)
(CVE-2016-2271, XSA-170)

(cherry picked from commit ccba2d08)

88cebe5b

23 Feb, 2016 4 commits
- main/nodejs: security upgrade to 4.3.0 (CVE-2016-2086, CVE-2016-2216). Fixes #5154 · a1df2893
  Leonardo Arena authored Feb 23, 2016
  
  a1df2893
- main/libreoffice: security upgrade to 5.0.5.2 (CVE-2016-0794, CVE-2016-0795). Fixes #5148 · ff69ce74
  Leonardo Arena authored Feb 23, 2016
  
  ff69ce74
- main/krb5: bump. Rebuild with compile_et depending on awk" · 6bacfeee
  Leonardo Arena authored Feb 23, 2016
  
  6bacfeee
- main/e2fsprogs: bump. In -r2 compile_et is depending on gawk · 7a535a92
  Leonardo Arena authored Feb 23, 2016
  
  7a535a92
22 Feb, 2016 1 commit
- main/krb5: security fixes (CVE-2015-8629, CVE-2015-8630, CVE-2015-8631). Fixes #5126 · 0293a79d
  Leonardo Arena authored Feb 22, 2016
```
(cherry picked from commit eab4343d)
```
  0293a79d
18 Feb, 2016 1 commit
- main/libgcrypt: security upgrade to 1.6.5. Fixes #5134 · 4f4f6d42
  Leonardo Arena authored Feb 18, 2016
  
  4f4f6d42
17 Feb, 2016 3 commits
- Revert "main/mesa: upgrade to 11.1.2" · 8836ea5f
  Natanael Copa authored Feb 17, 2016
```
This reverts commit 8563196c.
```
  8836ea5f
- main/imagemagick: upgrade to 6.9.3.4 · 21f3f63e
  Natanael Copa authored Feb 17, 2016
  
  21f3f63e
- main/mesa: upgrade to 11.1.2 · 8563196c
  Natanael Copa authored Feb 17, 2016
  
  8563196c
16 Feb, 2016 1 commit
- main/postgresql: security upgrade to 9.4.6 (CVE-2016-0766, CVE-2016-0773) · 65b5dd4a
  Leonardo Arena authored Feb 16, 2016
  
  65b5dd4a
15 Feb, 2016 2 commits

main/asterisk: security upgrade to 13.7.2 · d7dd40eb

Timo Teräs authored Feb 15, 2016

AST-2016-001 TLS defaults to mitigate BEAST
AST-2016-002 Fix fd leak with non-default timert1
AST-2016-003 Remote crash in UDPTL

This also removes the security patch mechanism, upstream seems
to change the format of these patches on every security release
so just grab the tarball.

(cherry picked from commit 63aa35aa)

d7dd40eb

main/asterisk: upgrade to 13.7.0 · c60c7cd5
Timo Teräs authored Jan 19, 2016
```
(cherry picked from commit 8ec5e596)
```
c60c7cd5

12 Feb, 2016 1 commit
- community/letsencrypt: fixes #5084 and #5001 · 48b03681
  Francesco Colista authored Feb 12, 2016
  
  48b03681
11 Feb, 2016 2 commits
- main/postgresql-bdr: increase wait interval · a22d4a08
  Kaarle Ritvanen authored Feb 05, 2016
  
  a22d4a08
- main/cgit: security fix CVE-2016-1899, CVE-2016-1900, CVE-2016-1901. Fixes #5096 · c8d5b301
  Leonardo Arena authored Feb 11, 2016
  
  c8d5b301
10 Feb, 2016 2 commits
- main/php-memcache: fix relocation error. Fixes #5064 · 2be17766
  Leonardo Arena authored Feb 09, 2016
```
(cherry picked from commit 0aa4af1a)
```
  2be17766
- main/mariadb: rebase installdb patch. Fixes #5101 · bb64ed8d
  Leonardo Arena authored Feb 10, 2016
```
(cherry picked from commit f5c514ff)
```
  bb64ed8d
09 Feb, 2016 4 commits
- main/alpine-conf: upgrade to 3.3.2 · 542892ac
  Ted Trask authored Feb 09, 2016
```
(cherry picked from commit 2f61c1d9)
```
  542892ac
- main/phpmyadmin: security upgrade to 4.5.4.1 (CVE-2015-8669). Fixes #5066 · 6d8a809c
  Leonardo Arena authored Feb 09, 2016
  
  6d8a809c
- main/privoxy: security upgrade to 3.0.24 (CVE-2016-1982,CVE-2016-1983). Fixes #5060 · 51e24c0c
  Leonardo Arena authored Feb 09, 2016
  
  51e24c0c
- main/mariadb: security upgrade to 10.1.11. Fixes #5047 (Multiple CVEs) · f33b0f2c
  Łukasz Jendrysik authored Feb 04, 2016
```
CVE-2016-0546
CVE-2016-0505
CVE-2016-0596
CVE-2016-0597
CVE-2016-0616
CVE-2016-0598
CVE-2016-0600
CVE-2016-0606
CVE-2016-0608
CVE-2016-0609
CVE-2016-2047: MDEV-9212
Signed-off-by: Leonardo Arena <rnalrd@alpinelinux.org>
(cherry picked from commit 3d14ab30)
```
  f33b0f2c
08 Feb, 2016 2 commits
- main/curl: security upgrade to 7.47.0 (CVE-2016-0755) · 13c92a8e
  Natanael Copa authored Feb 08, 2016
```
fixes #5069
```
  13c92a8e
- main/nginx: security upgrade to 1.8.1 · 372b38ff
  Natanael Copa authored Jan 27, 2016
```
CVE-2016-0742
CVE-2016-0746
CVE-2016-0747

fixes #5052
```
  372b38ff
05 Feb, 2016 1 commit
- main/zabbix: drop uclibc patches. Enabled pidfile by default so initd works out-of-the-box. · 0a019967
  Leonardo Arena authored Feb 05, 2016
```
(cherry picked from commit 3e39d1c0)
```
  0a019967
03 Feb, 2016 2 commits
- main/alpine-conf: upgrade to 3.3.1 · cecc0ab9
  Ted Trask authored Feb 03, 2016
```
(cherry picked from commit 0972c055)
```
  cecc0ab9
- main/chrony: security upgrade to 2.2.1 (CVE-2016-1567) · 53a3e26e
  Sören Tempel authored Jan 30, 2016
```
(cherry picked from commit d5c5821e)
```
  53a3e26e
28 Jan, 2016 3 commits
- main/openssl: security upgrade to 1.0.2f · e9b054ae
  Timo Teräs authored Jan 28, 2016
```
Fixes CVE-2016-0701, CVE-2015-3197
```
  e9b054ae
- main/postfix: fix postfix user creation · 34518163
  Leonardo Arena authored Jan 28, 2016
```
(cherry picked from commit 618047df)
```
  34518163
- main/acf-jquery: upgrade to 0.4.2 · 9e604064
  Ted Trask authored Jan 28, 2016
```
(cherry picked from commit 00d6891c)
```
  9e604064
27 Jan, 2016 6 commits
- main/samba: security upgrade to 4.2.7 (CVE-2015-3223, CVE-2015-5252,... · 2c8df8d5
  Leonardo Arena authored Jan 27, 2016
```
main/samba: security upgrade to 4.2.7 (CVE-2015-3223, CVE-2015-5252, CVE-2015-5296, CVE-2015-5299, CVE-2015-5330, CVE-2015-8467). Fixes #5041

(cherry picked from commit 47affed1)
```
  2c8df8d5
- main/ldb: remove unused patch · 2f7dabe8
  Leonardo Arena authored Jan 27, 2016
```
(cherry picked from commit 0efa7810)
```
  2f7dabe8
- main/ldb: security upgrade to 1.1.24 (CVE-2015-3223). Ref #5041 · c6dee5b9
  Leonardo Arena authored Jan 27, 2016
```
(cherry picked from commit 9c474c6a)
```
  c6dee5b9
- main/tevent: upgrade to 0.9.26 · 0ddeb32c
  Leonardo Arena authored Jan 27, 2016
```
(cherry picked from commit e8a4ba13)
```
  0ddeb32c
- main/imagemagick: build with fontconfig support · cff008d2
  Natanael Copa authored Jan 27, 2016
```
fixes #4703

(cherry picked from commit f68e8788)
```
  cff008d2
- main/cacti: security fix CVE-2015-8369. #4993 · e74891dd
  Leonardo Arena authored Jan 27, 2016
```
(cherry picked from commit f2790deb)
```
  e74891dd
26 Jan, 2016 1 commit

main/openvpn: fix down script not restoring original resolv.conf · 34c1dfa8

Chris Kankiewicz authored Jan 20, 2016

This patch fixes an error where, in the provided OpenVPN down script, the
cp command would fail due to the resolv.conf file already existing.

Instead of using cp we cat the file contents over the exising resolv.conf
file to avoid the error and preserve any symlinks that may exist.

fixes #5027

(cherry picked from commit bfdc08d4)

34c1dfa8

24 Jan, 2016 1 commit
- main/postgresql-bdr: increase wait interval after startup · 9b9b6d39
  Kaarle Ritvanen authored Jan 24, 2016
```
mitigate race condition which occurs when a client connects too early
after 'pg_ctl start' has finished
```
  9b9b6d39