summaryrefslogtreecommitdiff
path: root/system
AgeCommit message (Collapse)AuthorFilesLines
2020-06-12Merge branch 'debian-nvi' into 'master'A. Wilcox1-3/+14
[RFC] system/nvi: [CVE] switch upstream to Debian (#140) See merge request adelie/packages!414
2020-06-12Merge branch 'debian-unzip' into 'master'A. Wilcox4-161/+24
[RFC] system/unzip: change upstream to Debian (#123) See merge request adelie/packages!413
2020-06-04system/adelie-base: depend on kbd instead of console-setupMax Rees1-3/+3
2020-06-04system/console-setup: strip down to user/ckbcompMax Rees2-81/+0
2020-06-04system/*: move consolefont & keymaps services from openrc to kbdMax Rees7-80/+224
2020-06-04Merge branch 'skaware.20200521' into 'master'A. Wilcox2-4/+4
Skaware.20200521 See merge request adelie/packages!452
2020-05-28system/openrc: conditionalise post-install on sysinit runlevelA. Wilcox2-2/+2
The default runlevel is manipulated by s6-linux-init, which means our post-install script no longer runs on systems using s6 for init. This change uses the sysinit runlevel, which is not manipulated.
2020-05-21system/execline: bump to 2.6.0.2Laurent Bercot1-2/+2
2020-05-21system/skalibs: bump to 2.9.2.1Laurent Bercot1-2/+2
2020-05-05Merge branch 'sec/2020.04.20' into 'master'A. Wilcox2-4/+8
Security updates for 2020.04.20 See merge request adelie/packages!441
2020-05-05Merge branch 'fix/nss' into 'master'A. Wilcox1-1/+12
system/nss: fix baseline ppc* support See merge request adelie/packages!439
2020-04-21system/openssl: [CVE] bump to 1.1.1g (#268)Max Rees1-2/+4
https://www.openssl.org/news/secadv/20200421.txt
2020-04-20system/git: [CVE] bump to 2.25.4Max Rees1-2/+4
2020-04-18system/nss: fix baseline ppc* supportMax Rees1-1/+12
2020-04-18system/git: Remove subtree-doc subpackageA. Wilcox1-11/+0
It requires docbook45 support in asciidoctor, which was removed in the 2.x branch.
2020-04-18Merge branch 'new/easy-9pfs' into 'master'A. Wilcox8-15/+29
system/easy-kernel: enable 9P support (#250) See merge request adelie/packages!436
2020-04-18Merge branch 'bumps.aerdan.20200408' into 'master'A. Wilcox1-2/+2
Bumps for packages maintained by Kiyoshi Aman for 8 April 2020 See merge request adelie/packages!429
2020-04-17system/easy-kernel: enable 9P support (#250)Max Rees8-15/+29
2020-04-15system/git: [CVE] bump to 2.25.3 (#259)Max Rees1-16/+18
2020-04-08system/vim: upgrade to 8.2.0529Kiyoshi Aman1-2/+2
2020-04-05Update Ruby to 2.7.1A. Wilcox6-48/+22
* Coroutines are using libucontext; added to ruby depends_dev. * Asciidoctor updated to 2.x branch since we have newer Ruby now. * uWSGI may not work properly with Rack; currently untested.
2020-04-05system/openssl: Update to 1.1.1fA. Wilcox1-2/+2
2020-04-05system/nss: Update to 3.51A. Wilcox1-2/+2
2020-04-05system/man-db: Update to 2.9.1A. Wilcox1-2/+2
2020-04-05system/make: Update to 4.3A. Wilcox2-12/+7
2020-04-05system/kmod: Update to 27, enable signature supportA. Wilcox1-5/+5
2020-04-05system/help2man: Update to 1.47.13A. Wilcox1-2/+2
2020-04-05system/e2fsprogs: Update to 1.45.6A. Wilcox1-2/+2
2020-04-05system/coreutils: Update to 8.32A. Wilcox6-66/+183
2020-04-05system/console-setup: Update to 1.195A. Wilcox1-2/+3
2020-04-05system/check: Update to 0.14.0A. Wilcox1-2/+2
2020-04-05system/bison: Update to 3.5.3A. Wilcox1-4/+4
2020-04-05system/musl-locales: move from user/, updateA. Wilcox1-0/+32
2020-04-05system/bc: Update to 2.6.0A. Wilcox1-2/+2
2020-04-05system/libucontext: Update to 0.10A. Wilcox4-1201/+123
2020-03-30system/bubblewrap: [sec] bump to 0.4.1Max Rees1-3/+5
2020-03-30system/openssl: Bump to 1.1.1e, fix auxv on PowerPC platformsA. Wilcox3-6/+23
2020-03-28Merge branch 'bump/misc/2020.03.23' into 'master'A. Wilcox6-37/+81
Miscellaneous bumps for 2020.03.23 See merge request adelie/packages!417
2020-03-24system/bubblewrap: bump to 0.4.0Max Rees2-33/+17
2020-03-24system/gettext-tiny: fix msgfmt exit status when misusedMax Rees2-2/+40
2020-03-23system/ruby: patch CVE-2020-8130Max Rees2-2/+24
2020-03-22system/lvm2: fix crash on startup due to std fd nonsenseMax Rees2-7/+27
2020-03-22Merge branch 'cves.2020.03.16' into 'master'A. Wilcox10-380/+361
CVE patches for 2020.03.16 See merge request adelie/packages!411
2020-03-22Merge branch 'skaware.2020.03.02' into 'master'A. Wilcox7-15/+16
skaware bumps for 2020.03.02 See merge request adelie/packages!406
2020-03-21system/unzip: change upstream to Debian (#123)Max Rees4-161/+24
Debian's patches close several CVEs, including a few of which I wasn't even aware. They also include the patches we were already carrying: These were plucked directly from Debian so the names are the same: 10-unzip-handle-pkware-verify.patch 20-unzip-uidgid-fix.patch Our unzip-6.0-heap-overflow-infloop.patch is covered by Debian's: 14-cve-2015-7696.patch 15-cve-2015-7697.patch 16-fix-integer-underflow-csiz-decrypted.patch
2020-03-21system/nvi: [CVE] switch upstream to Debian (#140)Max Rees1-3/+14
2020-03-19system/python3: bump to 3.6.10 and patch CVE-2019-18348 (#232)Max Rees4-217/+156
2020-03-19system/sqlite: [CVE] bump to 3.31.1 (#200)Max Rees1-3/+20
Also add options=!check since the test suite wasn't being run anyway - it requires tcl (which is a circular dependency :/) and is in the "src" distribution, not the "autoconf" one.
2020-03-19system/pcre2: patch CVE-2019-20454 (#242)Max Rees2-3/+60
2020-03-19system/icu: patch CVE-2020-10531Max Rees3-157/+125
Also remove obsolete CVE-2017-7867-7868.patch - this was merged since at least 59.1 and was left over from when icu was originally pulled into the system/ tree in 2018. https://github.com/unicode-org/icu/commit/35a07bf89d64809b2e9af3cc90b53e3261677c53