Commit Graph

157152 Commits

Author SHA1 Message Date
Andreas Rammhold
2898972377 kiwix: mark as insecure
There is at least one recorded issue against our kiwix version. Upstream
does no longer support this version of the project. They have moved to a
different repository & software architecture.
2018-10-26 12:17:58 +02:00
Andreas Rammhold
385e5ac847 sddm: 0.17.0 -> 0.18.0
Bumps to the latest stable version while fixing CVE-2018-14345 [1].

Changelog [2]:
 - Support theme supplied avatars
 - Compile against Qt 5.11
 - Fix platform detection for HighDPI
 - On close, switch VT to a running session if applicable
 - Better ConsoleKit support
 - Fix authentication when non-default hidden option ReuseSession=true is used (CVE-2018-14345)
 - Hide sessions with NoDisplay=true
 - Honor PAM's ambient supplemental groups
 - Cleanup socket destruction
 - Don't quit on SIGHUP
 - Updated translations

[1] https://nvd.nist.gov/vuln/detail/CVE-2018-14345
[2] https://github.com/sddm/sddm/releases/tag/v0.18.0
2018-10-26 12:17:58 +02:00
Andreas Rammhold
1103b3fbe6 batik: mark as insecure
The package hasn't been updated in a long time. There have been several
issues with the package. There is no dependant  package in the
repository so marking it as insecure until someone maintains it sounds
reasonable.
2018-10-26 12:17:58 +02:00
Andreas Rammhold
6ad3088b12 libgxps: fix CVE-2018-10733 2018-10-26 12:17:58 +02:00
Andreas Rammhold
5f75f72497 yara: 3.7.1 -> 3.8.1
This fixes issues CVE-2018-12034 & CVE-2018-12035. They are OOB read &
write issues of the internal VM. Details can be retrieved at [1] & [2].

[1] https://github.com/VirusTotal/yara/issues/891
[2] https://bnbdr.github.io/posts/swisscheese/
2018-10-26 12:17:58 +02:00
Andreas Rammhold
c994f40de8 taglib: fix CVE-2018-11439 2018-10-26 12:17:58 +02:00
Andreas Rammhold
9843fdc532 ligcgroup: fix CVE-2018-14348
When using cgrulesengd it would create a logfile at /var/log/cgred with
the permission wide open (0666).
2018-10-26 12:17:58 +02:00
Bas van Dijk
945c6b9981
Merge pull request #48699 from ElvishJerricco/overridable-buildFromSdist
haskell.lib.buildFromSdist: Allow overrideCabal
2018-10-26 11:17:24 +01:00
Robin Gloster
02afda3fd8 gitlab: 11.3.4 -> 11.4.0 2018-10-26 11:32:28 +02:00
Robin Gloster
eb7f8e71ad gitlab-workhorse: 6.1.1 -> 7.0.0 2018-10-26 11:32:28 +02:00
Robin Gloster
1a984ccc4e gitaly: 0.125.0 -> 0.125.1 2018-10-26 11:32:28 +02:00
Jörg Thalheim
e438125d97
Merge pull request #49130 from veprbl/pr/pyarrow_darwin_hydra_fix
pythonPackages.pyarrow: fix running tests on hydra
2018-10-26 09:18:36 +01:00
Jörg Thalheim
8afb3b68b7
Merge pull request #49119 from markuskowa/licenses-24
Add licenses
2018-10-26 09:15:39 +01:00
Jörg Thalheim
a8df9ff9d9
Merge pull request #49126 from das-g/stdenv-docs
minor fixes in Nixpkgs stdenv docs
2018-10-26 09:12:45 +01:00
Michael Weiss
6021a94062 signal-desktop: 1.17.0 -> 1.17.1 2018-10-26 09:50:38 +02:00
Dmitry Kalinkin
e76082a941
pyarrow: disable jvm test 2018-10-25 23:14:27 -04:00
Dmitry Kalinkin
6ae3cb4d36
pythonPackages.pyarrow: fix running tests on hydra
This replaces standard checkPhase using setup.py that uses pytest-runner
with an explicit call to pytest. One reason to do that is because
setup.py triggers another rebuild when asked to do "test". Another
reason is that there seems to be a conflict between possible imports for
pyarrow: `pwd`/pyarrow vs $out/pyarrow. By some unknown reason this
triggers an import error on hydra and ofborg, but not on my machine. The
solution here is to remove `pwd`/pyarrow, keep the tests and use direct
call to pytest (setup.py needs `pwd`/pyarrow). The added benefit is that
we are now testing what is installed in $out.
2018-10-25 23:12:16 -04:00
zimbatm
2337c7522a
openssh: 7.7p1 -> 7.9p1 (#48784)
added openssh_gssapi to make it easier to test the patched version

the HPN edition isn't available on top of 7.9p1 yet

fix-host-key-algorithms-plus.patch didn't apply anymore, assuming it's
fixed.

release notes: https://www.openssh.com/txt/release-7.9
2018-10-26 01:17:55 +02:00
Raphael Borun Das Gupta
aa77e3aa4f nixpkgs docs: add missing spaces between words 2018-10-26 00:35:21 +02:00
Raphael Borun Das Gupta
bea0b3021c nixpkgs docs: remove spurious ">" 2018-10-26 00:29:27 +02:00
Markus Kowalewski
1f46779eda
ptlib: add licenses 2018-10-25 23:10:21 +02:00
Markus Kowalewski
5383753beb
prison: add license 2018-10-25 23:10:21 +02:00
Markus Kowalewski
f1fe677ab2
popt: add license 2018-10-25 23:10:20 +02:00
Markus Kowalewski
6ff2c83d9f
polkit-qt-1: add license 2018-10-25 23:10:20 +02:00
Markus Kowalewski
91eea7482d
podofo: add licenses 2018-10-25 23:10:20 +02:00
Markus Kowalewski
78b12734ee
phonon-backend-vlc: add license 2018-10-25 23:10:20 +02:00
Markus Kowalewski
0badfc2b6e
phonon-backend-gstreamer: add license 2018-10-25 23:10:20 +02:00
Markus Kowalewski
d00487cad5
pangoxsl: add meta data 2018-10-25 23:10:20 +02:00
Markus Kowalewski
598ed197db
openssl-chacha: add license 2018-10-25 23:10:00 +02:00
Markus Kowalewski
165f090e10
openpam: add license 2018-10-25 22:56:23 +02:00
Markus Kowalewski
2d4b7f26e1
opendbx: add meta data 2018-10-25 22:56:23 +02:00
Markus Kowalewski
4afe65f253
opencsg: add license 2018-10-25 22:56:23 +02:00
Markus Kowalewski
8ff5a85c45
opencascade: add license 2018-10-25 22:56:22 +02:00
Markus Kowalewski
d9e6d6ac33
opal: add licenes 2018-10-25 22:56:22 +02:00
Markus Kowalewski
8e7f191c27
ode: add licenes 2018-10-25 22:56:22 +02:00
Markus Kowalewski
b21b369c6d
ntrack: add license 2018-10-25 22:56:22 +02:00
Markus Kowalewski
395931cefe
nspr: add license 2018-10-25 22:56:22 +02:00
Markus Kowalewski
e999d40cef
notify-sharp: add license 2018-10-25 22:56:22 +02:00
Markus Kowalewski
46a495ac75
netcdf: add url to license 2018-10-25 22:56:22 +02:00
Markus Kowalewski
19d1cafb9e
neon: add license 2018-10-25 22:56:22 +02:00
Profpatsch
2cc4200de0 cdb: init at 0.75
We check in the docs from a mirror repository, because the upstream
release doesn’t provide them.
2018-10-25 21:49:37 +02:00
Jan Tojnar
968dca8556
Merge pull request #49114 from qolii/eternal-terminal__5_1_6__5_1_7
eternal-terminal: 5.1.6 -> 5.1.7.
2018-10-25 21:33:42 +02:00
Richard Lupton
b28552d58f signify: init at 24 (#48927) 2018-10-25 19:08:49 +00:00
Orivej Desh
62ce2bb42a eccodes: build with openjpeg
It did not look for openjpeg-2.3 and was built without openjpeg support.
2018-10-25 17:59:13 +00:00
Orivej Desh
d09961c22b openjpeg_2: rename from openjpeg_2_1 at 2.3.0 2018-10-25 17:46:48 +00:00
Vladyslav M
f22413f874
Merge pull request #49098 from loskutov/master
aircrack-ng: 1.2 -> 1.4
2018-10-25 20:14:56 +03:00
Michael Weiss
163adc5039
Merge pull request #48916 from colemickens/sway-module
programs.sway-beta: module init (temporary until sway-beta becomes sway-1.0)
2018-10-25 19:12:38 +02:00
qolii
2da9bb8b4d eternal-terminal: 5.1.6 -> 5.1.7. 2018-10-25 10:10:22 -07:00
Ingo Blechschmidt
2595be06af tikzit: init at 2.0 (#48479)
* tikzit: init at 2.0

* tikzit: Parallel building and qualification
2018-10-25 19:04:14 +02:00
Jörg Thalheim
1780ecb041
Merge pull request #49016 from r-ryantm/auto-update/python3.6-fusepy
python36Packages.fusepy: 2.0.4 -> 3.0.1
2018-10-25 17:56:04 +01:00