Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2019-09-28 | Merge branch 'rust' into 'master' | A. Wilcox | 21 | -218/+619 | |
user/rust: Bump to 1.37.0 See merge request adelie/packages!270 | |||||
2019-09-28 | Merge branch 'lr.20190925' into 'master' | A. Wilcox | 1 | -2/+2 | |
user/i3wm: Bump to 4.17.1 See merge request adelie/packages!338 | |||||
2019-09-28 | Merge branch 'lr.20190919' into 'master' | A. Wilcox | 6 | -12/+12 | |
Lr.20190919 package bumps See merge request adelie/packages!337 | |||||
2019-09-28 | Merge branch 'cves.2019.08.29' into 'master' | A. Wilcox | 28 | -199/+837 | |
Misc. security updates See merge request adelie/packages!336 | |||||
2019-09-28 | Merge branch 'sr.2019.08.29' into 'master' | A. Wilcox | 4 | -47/+110 | |
Add experimental/patchelf, user/spice-gtk; merge user/dejagnu into system/ See merge request adelie/packages!329 | |||||
2019-09-28 | Merge branch 'poopler' into 'master' | A. Wilcox | 12 | -44/+197 | |
Bump poppler* and rebuild some of its dependencies See merge request adelie/packages!333 | |||||
2019-09-28 | experimental/patchelf: clarify license | Max Rees | 1 | -1/+1 | |
2019-09-28 | Merge branch 'sysv.cbindgen.20190913' into 'master' | A. Wilcox | 1 | -42/+38 | |
user/cbindgen: bump to 0.9.0 See merge request adelie/packages!332 | |||||
2019-09-28 | Merge branch 'update-grub' into 'master' | A. Wilcox | 6 | -2/+110 | |
user/grub: add radeon quirk (#49) and trigger See merge request adelie/packages!331 | |||||
2019-09-28 | Merge branch 'mqtt' into 'master' | A. Wilcox | 8 | -0/+259 | |
Add mosquitto and py3-paho-mqtt See merge request adelie/packages!328 | |||||
2019-09-25 | user/i3wm: Bump to 4.17.1 | Luis Ressel | 1 | -2/+2 | |
2019-09-24 | user/djvulibre: patch multiple CVEs (#185) | Max Rees | 5 | -6/+310 | |
2019-09-24 | user/mosquitto: [CVE] bump to 1.6.6 | Max Rees | 1 | -2/+4 | |
2019-09-23 | user/vlc: no, really, I mean it this time :TM: | Max Rees | 1 | -1/+6 | |
2019-09-23 | user/vlc: fix initd / confd install | Max Rees | 1 | -2/+2 | |
2019-09-19 | user/nsd: Bump to 4.2.2 | Luis Ressel | 1 | -2/+2 | |
2019-09-19 | user/unbound: Bump to 1.9.3 | Luis Ressel | 1 | -2/+2 | |
2019-09-19 | user/wireguard-*: Bump to 0.0.20190913 | Luis Ressel | 4 | -8/+8 | |
2019-09-17 | user/opencv: patch CVE-2019-16249 | Max Rees | 2 | -2/+65 | |
2019-09-17 | user/faad2: 2.8.8-r2 no longer exists | Max Rees | 1 | -5/+4 | |
2019-09-17 | user/wpa_supplicant: patch CVE-2019-16275 | Max Rees | 2 | -1/+78 | |
2019-09-17 | system/openssl: [CVE] bump to 1.0.2t (#198) | Max Rees | 1 | -7/+5 | |
2019-09-17 | system/expat: [CVE] patch CVE-2019-15903 (#192) | Max Rees | 2 | -3/+188 | |
2019-09-17 | user/links: [NO CVE] bump to 2.20.1 | Max Rees | 1 | -2/+2 | |
This update fixes a DNS leak when using tor. For more information, consult the changelog: http://links.twibright.com/download/ChangeLo | |||||
2019-09-17 | system/curl: enable libssh2 support | Max Rees | 1 | -0/+1 | |
2019-09-17 | system/curl: [CVE] bump to 7.66.0, fix network access violation | Max Rees | 2 | -35/+8 | |
2019-09-17 | system/libgcrypt: [CVE] bump to 1.8.5 (#119) | Max Rees | 1 | -8/+7 | |
2019-09-17 | user/vlc: [CVE] bump to 3.0.8 (#182) | Max Rees | 1 | -11/+20 | |
2019-09-17 | user/mpg123: bump to 1.25.12 | Max Rees | 1 | -2/+2 | |
This update fixes an out-of-bounds read and an invalid write. For more information, see http://www.mpg123.de/cgi-bin/news.cgi#2019-08-24 | |||||
2019-09-17 | user/pango: patch for CVE-2019-1010238 (#133) | Max Rees | 2 | -5/+43 | |
2019-09-17 | user/libvorbis: new patch for CVE-2018-10392 (#157) | Max Rees | 4 | -65/+62 | |
Also, use upstream patch for CVE-2017-14160 | |||||
2019-09-17 | user/dejagnu: merge into system/dejagnu | Max Rees | 2 | -47/+7 | |
2019-09-17 | user/spice-gtk: new package | Max Rees | 1 | -0/+69 | |
2019-09-17 | experimental/patchelf: new package | Max Rees | 1 | -0/+34 | |
At least one test fails on x86_64. GitHub indicates that there are probably other test failures on other arches. https://github.com/NixOS/patchelf/issues?utf8=%E2%9C%93&q=is%3Aissue+is%3Aopen+set-rpath-library.sh | |||||
2019-09-17 | user/irssi: [CVE] bump to 1.2.2 | Max Rees | 1 | -5/+4 | |
2019-09-17 | user/faad2: [CVE] bump to 2.9.0 | Max Rees | 3 | -46/+37 | |
2019-09-13 | user/tumbler: rebuild for poppler | Max Rees | 1 | -1/+1 | |
2019-09-13 | user/tellico: rebuild for poppler | Max Rees | 1 | -1/+1 | |
2019-09-13 | user/calligra: rebuild for poppler | Max Rees | 1 | -1/+1 | |
2019-09-13 | user/qpdfview: rebuild for poppler | Max Rees | 1 | -1/+1 | |
2019-09-13 | user/evince: [CVE] patch CVE-2019-11459 (#148) | Max Rees | 2 | -6/+81 | |
2019-09-13 | user/atril: [CVE] patch CVE-2019-11459 (#148) | Max Rees | 3 | -27/+99 | |
Also, add secfixes comment and use upstream patch for CVE-2019-1010006 (#178) | |||||
2019-09-13 | user/cups-filters: bump to 1.25.5 | Max Rees | 1 | -2/+2 | |
2019-09-13 | user/cbindgen: bump to 0.9.0 | Molly Miller | 1 | -42/+38 | |
2019-09-13 | user/poppler-qt5: [CVE] bump to 0.80.0 (#128) | Max Rees | 1 | -3/+6 | |
2019-09-13 | user/poppler: [CVE] bump to 0.80.0 (#128) | Max Rees | 1 | -2/+5 | |
2019-09-10 | user/perl-devel-nytprof: new package | A. Wilcox | 1 | -0/+31 | |
2019-09-09 | user/grub: fix some mistakes in update-grub | Max Rees | 2 | -3/+5 | |
* If $ADELIE_MANUAL_CONFIG is empty or unset, the comparison will fail since it isn't a valid integer. use = instead of -eq * Make a backup of grub.cfg only if it exists | |||||
2019-09-09 | system/ruby: libedit compatibility patch [read:] | A. Wilcox | 2 | -2/+26 | |
Ruby pretends editline (libedit) is readline. This is normally fine. However, editline's readline emulation does not account for changes to rl_instream or rl_outstream. If a Ruby application using the Readline extension changes .input or .output, this will cause a use-after-free: ==32694== Invalid read of size 4 ==32694== at 0x4070A38: fwrite (fwrite.c:32) ==32694== by 0x406F707: fputs (fputs.c:7) ==32694== by 0x660EAC7: el_wgets (in /usr/lib/libedit.so.0.0.60) ==32694== by 0x6607BDB: el_gets (in /usr/lib/libedit.so.0.0.60) ==32694== by 0x6620EDB: readline (in /usr/lib/libedit.so.0.0.60) ==32694== by 0x65DE3D3: readline_get (readline.c:346) ==32694== by 0x4DFA49B: rb_protect (eval.c:996) ==32694== by 0x65DE4FF: readline_readline (readline.c:507) ==32694== by 0x4F7AD4B: call_cfunc_m1 (vm_insnhelper.c:1723) ==32694== Address 0x67503dc is 140 bytes inside a block of size 1,264 free'd ==32694== at 0x490AFC0: free (in /usr/lib/valgrind/vgpreload_memcheck-ppc64be-linux.so) ==32694== by 0x406D44F: fclose (fclose.c:35) ==32694== by 0x65DE013: clear_rl_outstream (readline.c:365) ==32694== by 0x65DE0DF: readline_s_set_output (readline.c:599) ==32694== Block was alloc'd at ==32694== at 0x49092C0: malloc (in /usr/lib/valgrind/vgpreload_memcheck-ppc64be-linux.so) ==32694== by 0x406BEC7: fdopen (__fdopen.c:21) ==32694== by 0x65DE103: readline_s_set_output (readline.c:603) Since rl_instream and rl_outstream are read on each rl_initialize, and editline's rl_initialize is smart enough to not leak memory if it is called multiple times during program execution, we use this as a way to force re-reading of rl_instream and rl_outstream. I hate this patch; I really do. Better fixes are highly welcome. | |||||
2019-09-09 | user/grub: add quirks system and radeon quirk (#49) | Max Rees | 3 | -2/+42 | |