summaryrefslogtreecommitdiff
path: root/system
AgeCommit message (Collapse)AuthorFilesLines
2019-10-04system/lz4: bump to 1.9.2Dan Theisen1-2/+2
2019-10-04user/iproute2: bump to 5.3.0A. Wilcox1-3/+3
2019-10-04system/libcap-ng: bump to 0.7.10A. Wilcox1-5/+2
2019-10-03system/zstd: bump to 1.4.3A. Wilcox1-2/+2
2019-10-03system/xfsprogs: bump to 5.2.1A. Wilcox1-3/+3
2019-10-03system/tzdata: bump to 2019cA. Wilcox1-4/+4
2019-10-03system/ruby: [CVE] bump to 2.5.7A. Wilcox1-3/+10
2019-10-03system/strace: bump to 5.3A. Wilcox1-2/+2
2019-10-03system/nss: bump to 3.46.1A. Wilcox1-2/+2
2019-10-03system/binutils: fix upstream 25056 (ARM PIE bug)A. Wilcox2-1/+27
2019-10-03user/nspr: bump to 4.22A. Wilcox1-2/+2
2019-10-03system/mawk: bump to 20190203A. Wilcox1-5/+2
2019-10-02system/gdb: bump to 8.3.1A. Wilcox1-4/+5
2019-10-02system/expat: bump to 2.2.9A. Wilcox2-187/+4
2019-10-02system/e2fsprogs: bump to 1.45.4A. Wilcox2-217/+4
2019-10-02system/bc: bump to 2.1.3A. Wilcox1-2/+2
2019-10-02Merge branch 'bumps.perl.20190930' into 'master'A. Wilcox3-9/+9
Perl bumps for 30 Sep 2019 See merge request adelie/packages!343
2019-09-30system/skalibs: bump to 2.9.0.0 + related skaware bumpsLaurent Bercot7-52/+22
contains upgrades to: system/skalibs system/utmps system/execline system/s6 user/s6-dns user/s6-networking
2019-09-30system/binutils: patch CVE-2019-14444 (#174)Max Rees2-1/+33
2019-09-30system/python3: patch CVE-2019-16056 (#197)Max Rees2-2/+137
2019-09-30system/e2fsprogs: patch CVE-2019-5094 (#204)Max Rees2-2/+219
2019-09-30system/perl-test-simple: upgrade to 1.302168Kiyoshi Aman1-2/+2
2019-09-29system/perl-http-daemon: upgrade to 6.06Kiyoshi Aman1-5/+5
2019-09-29system/perl-error: upgrade to 0.17028Kiyoshi Aman1-2/+2
2019-09-29system/vim: upgrade to 8.1.2100Kiyoshi Aman1-2/+2
2019-09-28Prefer ssmtp over netqmail and postfix for cmd:sendmailLuis Ressel1-0/+1
This is required to automatically build fcron.
2019-09-28system/binutils: disable further tests that rely on the failing pmmx ones (#196)Max Rees2-2/+52
2019-09-28system/binutils: disable failing pmmx tests (#196)Max Rees3-3/+178
2019-09-28system/cmake: disable CTestTestUpload in check()Max Rees1-1/+2
2019-09-28system/libssh2: kneecap test that relies on tty group accessMax Rees2-2/+37
2019-09-28system/binutils: disable static 1d test for now (#170, #196)Max Rees2-0/+44
2019-09-28system/coreutils: skip bogus gnulib LOGNAME testMax Rees2-1/+13
It is not necessarily true that LOGNAME will match the owner of the tty to which stdin is connected (sudo, su, ...)
2019-09-28system/fakeroot: sharty fire burning on the dance floor (checkdepends=sharutils)Max Rees1-2/+2
2019-09-28system/coreutils: fix test failure with bind mountsMax Rees2-1/+14
df-symlink tests whether df output is consistent in regards to where devices are mounted. Specifically, it tries to ensure that if there is a 1:1 mapping of the device ("source") corresponding to the current directory "." ("target"), then `df --output=source,target .` should be the same as `df --output=source,target $(df --out=source . | tail -n1)`. However, this is not necessarily the case in the presence of bind mounts. For example: $ df --out=source . Filesystem /dev/sda4 $ df --out=source,target /dev/sda4 Filesystem Mounted on /dev/sda4 / $ df --out=source,target . Filesystem Mounted on /dev/sda4 /git This can be fixed by adding the --all flag to ensure that duplicate devices are printed, so that the 1:1-checking if statement actually checks it correctly.
2019-09-28system/pcre*: use official URL and downloadMax Rees2-5/+4
2019-09-28system/easy-kernel: $srcdir/.. != $startdirMax Rees1-1/+1
2019-09-28system/zstd: +checkdepends=fileMax Rees1-0/+1
2019-09-28system/ssmtp: HTTP only sourceMax Rees1-1/+2
2019-09-28system/fcron: depends=vimMax Rees1-2/+2
2019-09-28system/python3: fix test suite network accessMax Rees1-1/+7
2019-09-28Merge branch 'cves.2019.08.29' into 'master'A. Wilcox6-53/+209
Misc. security updates See merge request adelie/packages!336
2019-09-17system/openssl: [CVE] bump to 1.0.2t (#198)Max Rees1-7/+5
2019-09-17system/expat: [CVE] patch CVE-2019-15903 (#192)Max Rees2-3/+188
2019-09-17system/curl: enable libssh2 supportMax Rees1-0/+1
2019-09-17system/curl: [CVE] bump to 7.66.0, fix network access violationMax Rees2-35/+8
2019-09-17system/libgcrypt: [CVE] bump to 1.8.5 (#119)Max Rees1-8/+7
2019-09-17user/dejagnu: merge into system/dejagnuMax Rees1-10/+7
2019-09-09system/ruby: libedit compatibility patch [read:]A. Wilcox2-2/+26
Ruby pretends editline (libedit) is readline. This is normally fine. However, editline's readline emulation does not account for changes to rl_instream or rl_outstream. If a Ruby application using the Readline extension changes .input or .output, this will cause a use-after-free: ==32694== Invalid read of size 4 ==32694== at 0x4070A38: fwrite (fwrite.c:32) ==32694== by 0x406F707: fputs (fputs.c:7) ==32694== by 0x660EAC7: el_wgets (in /usr/lib/libedit.so.0.0.60) ==32694== by 0x6607BDB: el_gets (in /usr/lib/libedit.so.0.0.60) ==32694== by 0x6620EDB: readline (in /usr/lib/libedit.so.0.0.60) ==32694== by 0x65DE3D3: readline_get (readline.c:346) ==32694== by 0x4DFA49B: rb_protect (eval.c:996) ==32694== by 0x65DE4FF: readline_readline (readline.c:507) ==32694== by 0x4F7AD4B: call_cfunc_m1 (vm_insnhelper.c:1723) ==32694== Address 0x67503dc is 140 bytes inside a block of size 1,264 free'd ==32694== at 0x490AFC0: free (in /usr/lib/valgrind/vgpreload_memcheck-ppc64be-linux.so) ==32694== by 0x406D44F: fclose (fclose.c:35) ==32694== by 0x65DE013: clear_rl_outstream (readline.c:365) ==32694== by 0x65DE0DF: readline_s_set_output (readline.c:599) ==32694== Block was alloc'd at ==32694== at 0x49092C0: malloc (in /usr/lib/valgrind/vgpreload_memcheck-ppc64be-linux.so) ==32694== by 0x406BEC7: fdopen (__fdopen.c:21) ==32694== by 0x65DE103: readline_s_set_output (readline.c:603) Since rl_instream and rl_outstream are read on each rl_initialize, and editline's rl_initialize is smart enough to not leak memory if it is called multiple times during program execution, we use this as a way to force re-reading of rl_instream and rl_outstream. I hate this patch; I really do. Better fixes are highly welcome.
2019-08-23Merge branch 'kbd-fixes' into 'master'A. Wilcox1-3/+8
system/kbd: fix some regressions in newer releases See merge request adelie/packages!327
2019-08-23system/iproute2: move ip(8) to ip(1)A. Wilcox1-1/+6