Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2020-03-28 | Merge branch 'bump/misc/2020.03.23' into 'master' | A. Wilcox | 6 | -37/+81 | |
Miscellaneous bumps for 2020.03.23 See merge request adelie/packages!417 | |||||
2020-03-24 | system/bubblewrap: bump to 0.4.0 | Max Rees | 2 | -33/+17 | |
2020-03-24 | system/gettext-tiny: fix msgfmt exit status when misused | Max Rees | 2 | -2/+40 | |
2020-03-23 | system/ruby: patch CVE-2020-8130 | Max Rees | 2 | -2/+24 | |
2020-03-22 | system/lvm2: fix crash on startup due to std fd nonsense | Max Rees | 2 | -7/+27 | |
2020-03-22 | Merge branch 'cves.2020.03.16' into 'master' | A. Wilcox | 10 | -380/+361 | |
CVE patches for 2020.03.16 See merge request adelie/packages!411 | |||||
2020-03-22 | Merge branch 'skaware.2020.03.02' into 'master' | A. Wilcox | 7 | -15/+16 | |
skaware bumps for 2020.03.02 See merge request adelie/packages!406 | |||||
2020-03-21 | system/unzip: change upstream to Debian (#123) | Max Rees | 4 | -161/+24 | |
Debian's patches close several CVEs, including a few of which I wasn't even aware. They also include the patches we were already carrying: These were plucked directly from Debian so the names are the same: 10-unzip-handle-pkware-verify.patch 20-unzip-uidgid-fix.patch Our unzip-6.0-heap-overflow-infloop.patch is covered by Debian's: 14-cve-2015-7696.patch 15-cve-2015-7697.patch 16-fix-integer-underflow-csiz-decrypted.patch | |||||
2020-03-21 | system/nvi: [CVE] switch upstream to Debian (#140) | Max Rees | 1 | -3/+14 | |
2020-03-19 | system/python3: bump to 3.6.10 and patch CVE-2019-18348 (#232) | Max Rees | 4 | -217/+156 | |
2020-03-19 | system/sqlite: [CVE] bump to 3.31.1 (#200) | Max Rees | 1 | -3/+20 | |
Also add options=!check since the test suite wasn't being run anyway - it requires tcl (which is a circular dependency :/) and is in the "src" distribution, not the "autoconf" one. | |||||
2020-03-19 | system/pcre2: patch CVE-2019-20454 (#242) | Max Rees | 2 | -3/+60 | |
2020-03-19 | system/icu: patch CVE-2020-10531 | Max Rees | 3 | -157/+125 | |
Also remove obsolete CVE-2017-7867-7868.patch - this was merged since at least 59.1 and was left over from when icu was originally pulled into the system/ tree in 2018. https://github.com/unicode-org/icu/commit/35a07bf89d64809b2e9af3cc90b53e3261677c53 | |||||
2020-03-09 | system/zsh: [CVE] bump to 5.8 | Max Rees | 1 | -4/+5 | |
2020-03-09 | system/libxml2: patch CVE-2019-20388 and CVE-2020-7595 (#234) | Max Rees | 3 | -2/+74 | |
2020-03-09 | system/rsync: use system zlib to close some zlib CVEs | Max Rees | 1 | -3/+11 | |
2020-03-02 | system/s6-linux-init: bump to 1.0.4.0 | Max Rees | 1 | -2/+2 | |
2020-03-02 | system/utmps: bump to 0.0.3.2 | Max Rees | 1 | -2/+2 | |
2020-03-02 | system/s6-rc: bump to 0.5.1.2 | Max Rees | 1 | -2/+2 | |
2020-03-02 | system/s6: bump to 2.9.1.0 | Max Rees | 1 | -2/+2 | |
2020-03-02 | system/mdevd: bump to 0.1.1.2 | Max Rees | 1 | -2/+2 | |
2020-03-02 | system/execline: bump to 2.6.0.0 | Max Rees | 1 | -3/+4 | |
2020-03-02 | system/skalibs: bump to 2.9.2.0 | Max Rees | 1 | -2/+2 | |
2020-02-27 | system/lvm2: Fix build | A. Wilcox | 1 | -2/+2 | |
2020-02-27 | system/easy-kernel: CONFIG_INPUT_UINPUT=y | A. Wilcox | 8 | -19/+86 | |
2020-02-27 | system/abuild: Fix apk invocation for tracedeps | A. Wilcox | 2 | -1/+32 | |
2020-02-26 | Fix dead/broken URLs for some packages | A. Wilcox | 3 | -5/+4 | |
2020-02-26 | system/xfsprogs: Bump to 5.4.0 | A. Wilcox | 1 | -2/+2 | |
2020-02-26 | system/util-linux: Bump to 2.35.1 | A. Wilcox | 1 | -3/+3 | |
2020-02-26 | system/strace: Bump to 5.5 | A. Wilcox | 1 | -2/+2 | |
2020-02-26 | system/rhash: Bump to 1.3.9 | A. Wilcox | 1 | -2/+3 | |
2020-02-26 | system/procps: Bump to 3.3.16 | A. Wilcox | 2 | -35/+5 | |
2020-02-26 | system/pcre: Bump to 8.44 | A. Wilcox | 1 | -4/+4 | |
2020-02-25 | system/nss: Bump to 3.50 | A. Wilcox | 1 | -2/+2 | |
2020-02-25 | system/nspr: Bump to 4.25 | A. Wilcox | 2 | -17/+2 | |
2020-02-25 | system/mawk: Bump to 1.3.4-20200120 | A. Wilcox | 1 | -6/+8 | |
2020-02-25 | system/man-pages: Bump to 5.05 | A. Wilcox | 1 | -2/+2 | |
2020-02-25 | system/man-db: Bump to 2.9.0 | A. Wilcox | 2 | -16/+12 | |
2020-02-25 | system/libxslt: Bump to 1.1.34 | A. Wilcox | 4 | -230/+5 | |
2020-02-25 | system/libpipeline: Bump to 1.5.2 | A. Wilcox | 1 | -2/+4 | |
2020-02-25 | system/libgpg-error: Bump to 1.37 | A. Wilcox | 1 | -2/+2 | |
2020-02-25 | system/libarchive: [CVE] Bump to 3.4.2 | A. Wilcox | 1 | -2/+4 | |
2020-02-25 | system/git: Bump to 2.25.1 | A. Wilcox | 1 | -2/+2 | |
2020-02-25 | system/cmake: Bump to 3.16.4 | A. Wilcox | 1 | -2/+2 | |
2020-02-25 | system/bc: Bump to 2.5.3 | A. Wilcox | 1 | -2/+2 | |
2020-02-25 | Merge branch 'bump.djt.20200211' into 'master' | A. Wilcox | 4 | -92/+6 | |
djt's regular bumps (february 2020) See merge request adelie/packages!399 | |||||
2020-02-22 | system/musl: Bump to 1.2.0 release | A. Wilcox | 1 | -3/+3 | |
2020-02-22 | system/abuild: Fix path of $APK | A. Wilcox | 2 | -1/+28 | |
2020-02-18 | system/lvm2: bump to 2.03.08 | Dan Theisen | 3 | -90/+4 | |
2020-02-17 | system/perl-yaml-syck: Fix quoting of CFLAGS | A. Wilcox | 1 | -1/+1 | |