| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | mesos: switch to https for maven•••Fixes: #78702
Closes: #79260
(cherry picked from commit 157f392f57ddcb3a0c8b7062dc01469c6b43fdce)
origin/nixpkgs-19.03-darwinorigin/nixos-19.03-smallorigin/nixos-19.03gitlab.intr/release-19.03gitlab.intr/nixpkgs-19.03-darwingitlab.intr/nixos-19.03-smallgitlab.intr/nixos-19.03 | Dmitry Kalinkin | 2020-02-10 | 1 | -1/+1 |
| * | file: fix download url for CVE-2019-18218•••(cherry picked from commit 5c39e8c8adba37e6f18d067d678e879062c6ea49)
cc #78479
| Dmitry Kalinkin | 2020-01-26 | 1 | -1/+5 |
| * | Merge branch 'staging-19.03' into release-19.03 | Vladimír Čunát | 2020-01-14 | 4 | -2/+34 |
| |\ |
|
| | * | pythonPackages.pyopenssl: fix build, fixes #76879•••(cherry picked from commit e279676f480c0bce3ea9baea90cf926f07071de1)
origin/staging-19.03gitlab.intr/staging-19.03 | Frederik Rietdijk | 2020-01-13 | 1 | -0/+22 |
| | * | openssl_1_0_2: 1.0.2t -> 1.0.2u (low-severity security)•••Fixes #77266: CVE-2019-1551
https://www.openssl.org/news/secadv/20191206.txt
(cherry picked from commit 961d0cf9f5f5e762eacb1ceda10d45cd35a81662)
| Vladimír Čunát | 2020-01-11 | 1 | -2/+2 |
| | * | fribidi: add patch for CVE-2019-18397 (#73718)•••(adjusted cherry-pick from 55b583d334005cc0e51226f7b73f33ee2aed3938) | Robert Scott | 2019-11-24 | 1 | -0/+5 |
| | * | aspell: add patch for CVE-2019-17544 (#74039)•••(cherry picked from commit b8920d3dba0e594ab6a8e37fb227af9462fa0590) | Robert Scott | 2019-11-24 | 1 | -0/+5 |
| * | | Merge branch 'revert-add-doc-to-ghc-wrapper' into release-19.03 | Matthew Bauer | 2020-01-11 | 1 | -12/+2 |
| |\ \ |
|
| | * | | Revert "add doc to ghc wrapper"•••This reverts commit 93aabab7605c21f5962df2dffa7fee9ac17ba848.
This reverts commit e9156086187b09970e5cdb5178450c73ae59ecd6.
Based on change in master at d1bd0fbfcc0ee6b0fcaf662cca5ee4ba8932f141
opened in https://github.com/NixOS/nixpkgs/pull/77442
| Matthew Bauer | 2020-01-11 | 1 | -12/+2 |
| * | | | disnix: 0.9 -> 0.9.1•••(cherry picked from commit 3f0fee752d6f5f5d0774cc7d9bcf8491562b453b)
| Sander van der Burg | 2020-01-08 | 1 | -3/+3 |
| * | | | Merge branch 'fix-doc-in-ghc-wrapper' into release-19.03 | Matthew Bauer | 2020-01-07 | 1 | -2/+12 |
| |\| | |
|
| | * | | haskell/with-packages-wrapper.nix: remove /bin symlink if it exists•••The wrapper need a writable directory to work, so remove the symlink
to a read-only one if it occurs.
| Matthew Bauer | 2020-01-06 | 1 | -0/+9 |
| | * | | haskell/with-packages-wrapper.nix: install "doc" outputs•••We were previously just installing the "out" output which broke when
we recently changed to generating multiple outputs.
Fixes #76837
| Matthew Bauer | 2020-01-02 | 1 | -2/+3 |
| * | | | ffmpeg_2_8: 2.8.14 -> 2.8.15•••(cherry picked from commit c13f1a508d6128d7cdea247d21015b5df8e44132)
| zowoq | 2020-01-04 | 1 | -2/+2 |
| * | | | ffmpeg: 3.4.6 -> 3.4.7 (security)•••Fixes #75964 and #68560 (many CVEs).
https://git.ffmpeg.org/gitweb/ffmpeg.git/blob/289a79d545e83a:/Changelog
(cherry picked from commit 37e1da287483eac4a62597c73f31708389bfad19)
| Vladimír Čunát | 2019-12-29 | 1 | -2/+2 |
| * | | | Merge pull request #73580 from risicle/ris-dpdk-17.11.9-r19.03•••[r19.03] dpdk: 17.11.2 -> 17.11.9, addressing CVE-2019-14818 | Niklas Hambüchen | 2019-12-18 | 1 | -2/+2 |
| |\ \ \ |
|
| | * | | | dpdk: 17.11.2 -> 17.11.9 (security)•••addressing CVE-2019-14818
| Robert Scott | 2019-11-17 | 1 | -2/+2 |
| * | | | | Merge pull request #75470 from edef1c/git-2.19.3•••git: 2.19.2 -> 2.19.3 | Graham Christensen | 2019-12-10 | 1 | -2/+2 |
| |\ \ \ \ |
|
| | * | | | | git: 2.19.2 -> 2.19.3•••CVE-2019-1348, CVE-2019-1349, CVE-2019-1350, CVE-2019-1351,
CVE-2019-1352, CVE-2019-1353, CVE-2019-1354, CVE-2019-1387
Link: https://lore.kernel.org/git/xmqqr21cqcn9.fsf@gitster-ct.c.googlers.com/
| edef | 2019-12-11 | 1 | -2/+2 |
| |/ / / / |
|
| * | | | | Merge pull request #74877 from d-goldin/djvulibre_sec_patches_1903•••[19.03] djvulibre: patching multiple CVEs | Christian Kauhaus | 2019-12-04 | 7 | -0/+344 |
| |\ \ \ \ |
|
| | * | | | | [19.03] djvulibre: patching multiple CVEs•••Addresses:
https://github.com/NixOS/nixpkgs/issues/73624
https://github.com/NixOS/nixpkgs/issues/70086
(cherry picked from commit be7e51a083f3cc5560b3683d915248c32b317acc)
| Dima | 2019-12-03 | 7 | -0/+344 |
| |/ / / / |
|
| * | | | | libvncserver: 0.9.11 -> 0.9.12•••(#74514)
Vuln roundup #73664 -- r19.03 channel
Version bump from 0.9.11 to 0.9.12 fixes:
* CVE-2018-6307
* CVE-2018-15126
* CVE-2018-15127
* CVE-2018-20019
* CVE-2018-20020
* CVE-2018-20021
* CVE-2018-20022
* CVE-2018-20023
* CVE-2018-20024
* CVE-2018-20748
* CVE-2018-20749
Plus add two upstream patches to fix:
* CVE-2018-20750
* CVE-2019-15681
(cherry picked from commit 3fb4e09812bb17d0d33087dc7c3255eccec2e5fb)
| Renaud | 2019-11-29 | 1 | -19/+21 |
| * | | | | mosquitto: 1.5.8 -> 1.5.9 (security)•••addressing CVE-2019-11779
| Robert Scott | 2019-11-26 | 1 | -2/+2 |
| * | | | | tightvnc: add patches for four CVEs•••Security fixes for:
* CVE-2019-8287
* CVE-2019-15678
* CVE-2019-15679
* CVE-2019-15680
mostly adapted from patches fixing similar issues in the actively
maintained libvnc
(#73970)
(cherry picked from commit 2482f8b8dca0f57466d20f9dcf2ff3d5cd16adbf)
| Robert Scott | 2019-11-24 | 5 | -0/+74 |
| * | | | | tnef: 1.4.17 -> 1.4.18 (security)•••Backport of #73882
addresses CVE-2019-18849
(cherry picked from commit b9d458d91c1d39b8b5954c84afc862b044cf84d5)
| Robert Scott | 2019-11-24 | 1 | -3/+3 |
| * | | | | Merge pull request #73947 from risicle/ris-slurm-CVE-2019-12838-r19.03•••[r19.03] slurm: add patch addressing CVE-2019-12838 | markuskowa | 2019-11-23 | 1 | -1/+16 |
| |\ \ \ \ |
|
| | * | | | | slurm: add patch addressing CVE-2019-12838•••including a prerequisite patch to allow the actual fix to apply cleanly
| Robert Scott | 2019-11-23 | 1 | -1/+16 |
| |/ / / / |
|
| * | | | | libextractor: add patch for CVE-2019-15531•••(#73792)
(cherry picked from commit 593def2396e2a88dbf9a26dcc892772b39c773a7) | Robert Scott | 2019-11-22 | 1 | -1/+10 |
| * | | | | Merge pull request #73370 from risicle/ris-samba-CVEs-r19.03•••[19.03] samba: add patches for CVE-2019-3880, CVE-2019-10218, CVE-2019-14833 & CVE-2019-14847 | Christian Kauhaus | 2019-11-19 | 1 | -0/+44 |
| |\ \ \ \ |
|
| | * | | | | samba: add patches for CVE-2019-3880, CVE-2019-10218, CVE-2019-14833 & CVE-20...•••using patches from the 4.8 & 4.9 branches, but luckily these all apply and
work against 4.7
| Robert Scott | 2019-11-15 | 1 | -0/+44 |
| * | | | | | ledger-udev-rules: update to 2019-05-30•••Fixes #71201
(cherry picked from commit ff066a107bbaf17808462d7d986ff43234c66535)
| Matthew Bauer | 2019-11-18 | 1 | -3/+3 |
| | |/ / /
|/| | | |
|
| * | | | | electrum-dash: mark as vulnerable•••CVE-2018-1000022 in electrum
(cherry picked from commit a50507a6cce1bf49a667de23fb7d3355eedb8f3d)
| c0bw3b | 2019-11-16 | 1 | -0/+1 |
| * | | | | Merge #72958: libexif: fix CVE-2018-20030•••(cherry picked from commit 908f6240d89293dbcdc41758ac0b6f2c1a7107e8)
Fixes #57153.
| Vladimír Čunát | 2019-11-16 | 1 | -7/+18 |
| * | | | | Merge #73253: gdal: patch CVE-2019-17545 | Vladimír Čunát | 2019-11-16 | 1 | -0/+9 |
| |\ \ \ \ |
|
| | * | | | | gdal: add patch for CVE-2019-17545 | Robert Scott | 2019-11-11 | 1 | -0/+9 |
| * | | | | | Merge #72808: ghostscript: security patches | Vladimír Čunát | 2019-11-16 | 2 | -0/+60 |
| |\ \ \ \ \ |
|
| | * | | | | | ghostscript: add patches for CVE-2019-10216, CVE-2019-14811, CVE-2019-14812, ...•••as with master, not all of the CVE-2019-14817 patch applies cleanly, but
the parts that do should provide some protection
(cherry picked from commit bd3f644a9067e3c70e296cca8a4cdbb8b6bbc2f5)
| Robert Scott | 2019-11-04 | 2 | -0/+50 |
| | * | | | | | ghostscript: add patches for CVE-2019-3839•••(cherry picked from commit f55969bbb365f63d4608876a4dc3522712d4c737)
| Robert Scott | 2019-11-04 | 1 | -0/+10 |
| * | | | | | | flashplayer: 32.0.0.270 -> 32.0.0.293•••(cherry picked from commit 8c997725a288f140703b3fbb836e70acf58557e3)
| Herwig Hochleitner | 2019-11-16 | 3 | -10/+10 |
| | |_|/ / /
|/| | | | |
|
| * | | | | | opencv4: add patches for CVE-2019-14491, CVE-2019-14492, CVE-2019-14493 & CVE...••• (#73073) | Robert Scott | 2019-11-13 | 1 | -1/+19 |
| * | | | | | Merge branch 'staging-19.03' into release-19.03 | Vladimír Čunát | 2019-11-12 | 2 | -1/+14 |
| |\ \ \ \ \
| |_|/ / /
|/| | | /
| | |_|/
| |/| | |
|
| | * | | | libtiff: Patch CVE-2019-7663 (PR #72092)•••(cherry picked from commit 5270c3a03ee5657551f16b31da057dda81c8b0f9)
/cc #57158.
| Daniel Schaefer | 2019-11-09 | 1 | -0/+5 |
| | * | | | Merge pull request #72798 from risicle/ris-file-CVE-2019-18218-r19.03•••[r19.03] file: add patch for CVE-2019-18218 | Florian Klink | 2019-11-04 | 1 | -1/+9 |
| | |\ \ \
| | |/ /
| |/| | |
|
| | | * | | file: add patch for CVE-2019-18218•••upstream patch https://github.com/file/file/commit/46a8443f76cec4b41ec736eca396984c74664f84.patch
doesn't apply directly, debian have a version which has been adapted for
5.37.
(cherry picked from commit 99273fc55533db11748750f5337f0791e8233cee)
| Robert Scott | 2019-11-04 | 1 | -1/+9 |
| | |/ / |
|
| * | | | bundler: 1.17.2 -> 1.17.3•••Extracted from https://github.com/NixOS/nixpkgs/pull/70216.
(cherry picked from commit 96a1dbac972c4f67aea7ee548f4e5531003f8ab0)
| talyz | 2019-11-11 | 1 | -2/+2 |
| * | | | facetimehd-firmware: 1.43_4 -> 1.43_5•••(cherry picked from commit c115659884612bce7d98ca57948e1258cb4370b6)
cc #72804
| Jaka Hudoklin | 2019-11-10 | 1 | -5/+5 |
| * | | | jhead: add patches for CVE-2019-1010301, CVE-2019-1010302•••(#73115)
(cherry picked from commit 7dacaa056c4a1054759ae813eb9f91b0633601de) | Robert Scott | 2019-11-10 | 1 | -1/+14 |
| * | | | keepalived: patch CVE-2018-19115 (PR #72278)•••(cherry picked from commit 03d6145cb020aa4c782c78580d2d049b42ea5a28)
| Robert Scott | 2019-11-09 | 1 | -1/+9 |
| * | | | Merge pull request #73078 from risicle/ris-varnish-CVE-2019-15892-r19.03•••[r19.03] varnish6: add patch for CVE-2019-15892 | Silvan Mosberger | 2019-11-08 | 1 | -2/+9 |
| |\ \ \ |
|
| | * | | | varnish6: add patch for CVE-2019-15892 | Robert Scott | 2019-11-08 | 1 | -2/+9 |
| |/ / / |
|
