Commit Graph

223376 Commits

Author SHA1 Message Date
Doron Behar
f04b40ae4b qstopmotion: format inputs and arguments 2020-04-25 20:33:40 +03:00
Edmund Wu
3e051b04cb
thermald: 1.9.1 -> 2.1 2020-04-25 13:28:48 -04:00
chkno
3f472552c4
gnucash: 3.9 -> 3.10 (#85978) 2020-04-25 12:54:07 -04:00
Jörg Thalheim
083ea0abbe
Merge pull request #85220 from Mic92/home-assistant 2020-04-25 17:45:38 +01:00
Michael Weiss
74ac6ffad0
libva: 2.6.1 -> 2.7.1
Fixes #85850.
2020-04-25 18:28:32 +02:00
worldofpeace
4c40b43a7c p11-kit: add trust paths
Fixes  #82422
2020-04-25 12:27:34 -04:00
Peter Simons
21a354b6dd haskell-cabal-install-parsers: re-factor overrides to fix build with ghc-8.10.1 2020-04-25 18:22:55 +02:00
Peter Simons
7b7764287c haskell-cabal-plan: apply patch to fix the build with ghc-8.10.1 2020-04-25 18:16:57 +02:00
Florian Klink
2ececf1ed9 nixos/nscd: be more specific in the nscd.enable description on what breaks 2020-04-25 18:11:10 +02:00
Peter Simons
6a6d0174ed haskell-pandoc: jailbreak out of haddock-library 1.8.x constraint 2020-04-25 18:06:43 +02:00
Peter Simons
125ada17b0 haskell-dhall: use the latest version when building with ghc-8.10.x 2020-04-25 18:06:42 +02:00
Peter Simons
b24d2a90dd configuration-ghc-8.10.x.nix: cosmetic 2020-04-25 18:06:42 +02:00
Peter Simons
f2aa6b44d4 haskell-system-fileio: jailbreak out of dependency on chell 0.4.x 2020-04-25 18:06:42 +02:00
Peter Simons
c970de4586 haskell-dhall: disable the test suite
Dhall 1.31.x still attempts to access the network during its
test suite run, i.e. it attempts to connect to github.com.
2020-04-25 18:06:42 +02:00
worldofpeace
9d0b4c05ed
Merge pull request #85837 from romildo/upd.xfce4-whiskermenu-plugin
xfce.xfce4-whiskermenu-plugin: 2.4.3 -> 2.4.4
2020-04-25 11:58:25 -04:00
worldofpeace
882d124b60
Merge pull request #85940 from ceedubs/unison-M1j
unison-ucm: 1.0.M1h-alpha -> 1.0.M1j-alpha
2020-04-25 11:53:15 -04:00
worldofpeace
bef95ff573
Merge pull request #85948 from mkg20001/pkg/tartube
tartube: init at 2.0.016
2020-04-25 11:52:29 -04:00
Maximilian Bosch
f5f85d16d1
epson-escpr2: 1.1.1 -> 1.1.11 2020-04-25 17:49:11 +02:00
worldofpeace
82853324a9
Merge pull request #85967 from worldofpeace/mutter334-update
gnome3.mutter334: 3.34.4 -> 3.34.5, backports
2020-04-25 11:46:23 -04:00
worldofpeace
8f25c2f4ef
Merge pull request #85999 from mweinelt/hostapd/cve-2019-16275
hostapd: apply patch for CVE-2019-16275
2020-04-25 11:43:54 -04:00
Robert Scott
1985c6b9d5 afl: fix afl-clang-fast++ by making it a copy of afl-clang-fast, not a symlink
a symlink gets skipped by wrapProgram and this ends up confusing the nix
cc wrapper's cpp mode detection
2020-04-25 10:04:06 -05:00
adisbladis
1ca6909514
Merge pull request #74378 from ttuegel/lxc-container
docker-container: Remove /etc symlink
2020-04-25 16:25:15 +02:00
Jacek Galowicz
002b553b14
Merge pull request #85781 from blitz/spike-test
Add spike integration test to nixosTests
2020-04-25 15:50:38 +02:00
Cody Allen
982c6fc68f
unison-ucm: 1.0.M1h-alpha -> 1.0.M1j-alpha
Replaces #84235
2020-04-25 06:33:06 -07:00
Jan Tojnar
4239bf17ec
gnome3.updateScript: optimize unfrozen updates
When the updates are not frozen, there is no need to try to extract versions from attributes.
2020-04-25 15:32:20 +02:00
Jan Tojnar
f544c293ec
gnome3.updateScript: fix tarball eval on nonexisting attrpaths
As reported in 974f11cb29 (commitcomment-38735081),
the tarball will fail to evaluate when updateScript is given a non-existing attrPath because getAttrFromPath
uses abort, which terminates the evaluation.
2020-04-25 15:26:09 +02:00
Renato Garcia
22133c6bf3
snakemake: 5.13.0 -> 5.15.0 (#85913) 2020-04-25 09:19:54 -04:00
Jan Tojnar
03c0ab3857
goocanvasmm2: fix update script attrPath 2020-04-25 15:18:44 +02:00
Jan Tojnar
2dee6ad280
Merge pull request #85985 from Emantor/fix/pipewire 2020-04-25 15:14:03 +02:00
sternenseemann
0c4386bf0a
ocamlPackages.dns(-client): 4.4.1 -> 4.5.0
jackline: 2020-03-22 -> 2020-04-24

Dependency mtime is no longer needed
2020-04-25 14:51:05 +02:00
sternenseemann
b5f9eb06b5
ocamlPackages.mirage-time(-unix): init at 2.0.1 2020-04-25 14:50:57 +02:00
Martin Weinelt
3e9f3a3ebd
hostapd: apply patch for CVE-2019-16275
AP mode PMF disconnection protection bypass

Published: September 11, 2019
Identifiers:
- CVE-2019-16275
Latest version available from: https://w1.fi/security/2019-7/

Vulnerability

hostapd (and wpa_supplicant when controlling AP mode) did not perform
sufficient source address validation for some received Management frames
and this could result in ending up sending a frame that caused
associated stations to incorrectly believe they were disconnected from
the network even if management frame protection (also known as PMF) was
negotiated for the association. This could be considered to be a denial
of service vulnerability since PMF is supposed to protect from this type
of issues. It should be noted that if PMF is not enabled, there would be
no protocol level protection against this type of denial service
attacks.

An attacker in radio range of the access point could inject a specially
constructed unauthenticated IEEE 802.11 frame to the access point to
cause associated stations to be disconnected and require a reconnection
to the network.

Vulnerable versions/configurations

All hostapd and wpa_supplicants versions with PMF support
(CONFIG_IEEE80211W=y) and a runtime configuration enabled AP mode with
PMF being enabled (optional or required). In addition, this would be
applicable only when using user space based MLME/SME in AP mode, i.e.,
when hostapd (or wpa_supplicant when controlling AP mode) would process
authentication and association management frames. This condition would
be applicable mainly with drivers that use mac80211.

Possible mitigation steps

- Merge the following commit to wpa_supplicant/hostapd and rebuild:

  AP: Silently ignore management frame from unexpected source address

  This patch is available from https://w1.fi/security/2019-7/

- Update to wpa_supplicant/hostapd v2.10 or newer, once available
2020-04-25 14:35:20 +02:00
markuskowa
bc675971da
Merge pull request #85279 from r-ryantm/auto-update/pwsafe
pwsafe: 1.09.0 -> 3.52.0
2020-04-25 14:26:11 +02:00
Jörg Thalheim
21ec1f5ead
wireguard: 1.0.20200401 -> 1.0.20200413 2020-04-25 11:16:10 +01:00
Jörg Thalheim
77dc7ef908
wireguard-tools: reference tests 2020-04-25 11:16:10 +01:00
Maximilian Bosch
61c95a2eec
iwd: 1.6 -> 1.7 2020-04-25 12:13:01 +02:00
Maximilian Bosch
74fcd4f2d6
ell: 0.30 -> 0.31 2020-04-25 12:12:54 +02:00
Maximilian Bosch
a194de9a9d
diffoscope: 138 -> 142 2020-04-25 12:07:38 +02:00
Maximilian Bosch
aefb4d3dc9
dmenu-wayland: 2020-02-28 -> 2020-04-03 2020-04-25 12:07:38 +02:00
Doron Behar
1bfde2e0ce qstopmotion: use more suitable guvcview build 2020-04-25 12:52:15 +03:00
Doron Behar
6aaab573e2 guvcview: enable to build with both qt5 and gtk3 2020-04-25 12:52:15 +03:00
Doron Behar
ac0f42dee8 guvcview: format arguments 2020-04-25 12:52:15 +03:00
Doron Behar
6bac53e691 guvcview: move some packages to nativeBuildInputs 2020-04-25 12:52:14 +03:00
Doron Behar
d89ed04ea4 guvcview: fix gsettings filechooser errors 2020-04-25 12:52:14 +03:00
Piotr Bogdan
3acee22791
tartube: init at 2.0.016 2020-04-25 11:40:57 +02:00
Mario Rodas
ccfdcf16f4
bat: 0.14.0 -> 0.15.0
Changelog: https://github.com/sharkdp/bat/releases/tag/v0.15.0
2020-04-25 04:20:00 -05:00
Mario Rodas
69bb53604e
cloud-nuke: 0.1.7 -> 0.1.18 2020-04-25 04:20:00 -05:00
Mario Rodas
b9c221ccd8
awsweeper: 0.6.0 -> 0.7.0 2020-04-25 04:20:00 -05:00
Bruno Bigras
6478e659da httplz: 1.8.0 -> 1.9.2 2020-04-25 04:10:37 -04:00
Vincent Laporte
05db4f4fb9
ocamlPackages.async_shell: remove at 109.28.03
This is a legacy version for OCaml 4.02
2020-04-25 09:51:56 +02:00