Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2020-03-30 | system/bubblewrap: [sec] bump to 0.4.1 | Max Rees | 1 | -3/+5 | |
2020-03-30 | user/qt5-qtbase: patch CVE-2020-0569 and CVE-2020-0570 | Max Rees | 3 | -2/+93 | |
2020-03-30 | system/openssl: Bump to 1.1.1e, fix auxv on PowerPC platforms | A. Wilcox | 3 | -6/+23 | |
2020-03-28 | Merge branch 'bump/misc/2020.03.23' into 'master' | A. Wilcox | 21 | -126/+347 | |
Miscellaneous bumps for 2020.03.23 See merge request adelie/packages!417 | |||||
2020-03-28 | Merge branch 'fix/system/lvm2' into 'master' | A. Wilcox | 2 | -7/+27 | |
system/lvm2: fix crash on startup due to std fd nonsense See merge request adelie/packages!415 | |||||
2020-03-24 | user/youtube-dl: bump to 2020.03.24 | Max Rees | 1 | -2/+2 | |
2020-03-24 | user/qemu: [CVE] bump to 4.2.0 (#121) | Max Rees | 4 | -47/+160 | |
* SSH block device support is dropped until we ship libssh (upstream switched away from libssh2) * system-ppcemb target dropped upstream * Switched to user/libslirp (4.2.0) instead of vendored copy (4.1.0) which fixes several CVEs (included in these secfixes for this time only; future secfixes for libslirp should be in user/libslirp with a rebuild of qemu for the statically linked bits). | |||||
2020-03-24 | user/libslirp: new package | Max Rees | 2 | -0/+48 | |
2020-03-24 | user/spice-gtk: bump to 0.38 | Max Rees | 1 | -22/+18 | |
2020-03-24 | user/spice: bump to 0.14.3 | Max Rees | 1 | -2/+2 | |
2020-03-24 | user/spice-protocol: bump to 0.14.1 | Max Rees | 1 | -2/+2 | |
2020-03-24 | user/pixman: build static too for qemu | Max Rees | 1 | -2/+4 | |
2020-03-24 | user/libzip: bump to 1.6.1 | Max Rees | 1 | -3/+3 | |
2020-03-24 | user/sshfs: bump to 3.7.0 | Max Rees | 1 | -3/+13 | |
2020-03-24 | user/fuse3: bump to 3.9.1 | Max Rees | 1 | -3/+11 | |
2020-03-24 | user/checkbashisms: bump to 2.20.2 | Max Rees | 1 | -3/+3 | |
2020-03-24 | system/bubblewrap: bump to 0.4.0 | Max Rees | 2 | -33/+17 | |
2020-03-24 | system/gettext-tiny: fix msgfmt exit status when misused | Max Rees | 2 | -2/+40 | |
2020-03-23 | system/ruby: patch CVE-2020-8130 | Max Rees | 2 | -2/+24 | |
2020-03-23 | user/[KDE Plasma]: Bump to 5.18.3 | A. Wilcox | 39 | -77/+77 | |
2020-03-22 | system/lvm2: fix crash on startup due to std fd nonsense | Max Rees | 2 | -7/+27 | |
2020-03-22 | user/bcnm: New package | A. Wilcox | 1 | -0/+31 | |
2020-03-22 | user/mlt: Bump to 6.20.0 | A. Wilcox | 1 | -2/+2 | |
2020-03-22 | user/wavpack: Update checksums | A. Wilcox | 1 | -2/+1 | |
2020-03-22 | Merge branch 'lilo' into 'master' | A. Wilcox | 8 | -0/+755 | |
Add the LILO bootloader See merge request adelie/packages!412 | |||||
2020-03-22 | Merge branch 'cves.2020.03.16' into 'master' | A. Wilcox | 36 | -445/+1409 | |
CVE patches for 2020.03.16 See merge request adelie/packages!411 | |||||
2020-03-22 | Merge branch 'sr.2020.03.03' into 'master' | A. Wilcox | 12 | -20/+116 | |
Bumps for Maintainer: Max Rees for 2020.03.03 See merge request adelie/packages!410 | |||||
2020-03-22 | Merge branch 'firefox-esr' into 'master' | A. Wilcox | 1 | -2/+10 | |
user/firefox-esr: [CVE] bump to 68.6.0 See merge request adelie/packages!409 | |||||
2020-03-22 | Merge branch 'skaware.2020.03.02' into 'master' | A. Wilcox | 11 | -23/+24 | |
skaware bumps for 2020.03.02 See merge request adelie/packages!406 | |||||
2020-03-22 | Merge branch 'nextcloud-client' into 'master' | A. Wilcox | 4 | -126/+310 | |
user/nextcloud-client: bump to 2.6.3, disable update check See merge request adelie/packages!405 | |||||
2020-03-22 | Merge branch 'powerdns-reqs' into 'master' | A. Wilcox | 6 | -0/+174 | |
New packages: user/libgeoip, user/libmaxminddb, user/lua-yaml, user/yaml-cpp See merge request adelie/packages!403 | |||||
2020-03-22 | user/node: Bump to 10.19.0 | A. Wilcox | 1 | -2/+2 | |
2020-03-21 | user/wavpack: drop upstreamed patch, update secfixes for 5.2.0 (#129) | Max Rees | 2 | -35/+21 | |
The patch for CVE-2018-19840 was already upstreamed in 5.2.0, but patch(1) helpfully still applied it which results in (harmlessly) checking the same condition twice. https://github.com/dbry/WavPack/commit/070ef6f138956d9ea9612e69586152339dbefe51 | |||||
2020-03-21 | user/sox: patch multiple CVEs (#166) | Max Rees | 15 | -16/+621 | |
2020-03-19 | user/okular: patch CVE-2020-9359 | Max Rees | 2 | -2/+35 | |
2020-03-19 | user/py3-pillow: [CVE] bump to 6.2.2 | Max Rees | 1 | -2/+10 | |
2020-03-19 | user/py3-twisted: update secfixes for 19.10.0 itself | Max Rees | 1 | -0/+3 | |
2020-03-19 | user/py3-twisted: bump to 19.10.0, patch CVE-2020-10108 and CVE-2020-10109 | Max Rees | 2 | -4/+275 | |
2020-03-19 | user/libvncserver: patch CVE-2019-15681 and CVE-2019-15690 | Max Rees | 3 | -3/+70 | |
2020-03-19 | user/thunderbird: [CVE] bump to 68.6.0 | Max Rees | 1 | -3/+13 | |
2020-03-19 | system/python3: bump to 3.6.10 and patch CVE-2019-18348 (#232) | Max Rees | 4 | -217/+156 | |
2020-03-19 | system/sqlite: [CVE] bump to 3.31.1 (#200) | Max Rees | 1 | -3/+20 | |
Also add options=!check since the test suite wasn't being run anyway - it requires tcl (which is a circular dependency :/) and is in the "src" distribution, not the "autoconf" one. | |||||
2020-03-19 | system/pcre2: patch CVE-2019-20454 (#242) | Max Rees | 2 | -3/+60 | |
2020-03-19 | system/icu: patch CVE-2020-10531 | Max Rees | 3 | -157/+125 | |
Also remove obsolete CVE-2017-7867-7868.patch - this was merged since at least 59.1 and was left over from when icu was originally pulled into the system/ tree in 2018. https://github.com/unicode-org/icu/commit/35a07bf89d64809b2e9af3cc90b53e3261677c53 | |||||
2020-03-19 | user/lilo: new package | Max Rees | 7 | -0/+726 | |
2020-03-19 | user/dev86: new package | Max Rees | 1 | -0/+29 | |
2020-03-17 | user/alsa-utils: bump to 1.2.2 | Max Rees | 1 | -2/+2 | |
2020-03-17 | user/alsa-plugins: bump to 1.2.2 | Max Rees | 1 | -2/+2 | |
2020-03-17 | user/alsa-lib: bump to 1.2.2 | Max Rees | 2 | -3/+29 | |
2020-03-17 | user/grub: Enable UUID for root by default | A. Wilcox | 2 | -2/+3 | |
Users that need the old behaviour can comment out the line in /e/d/g. This fixes a bug where installation from USB media causes sdX to change. |