Commit Graph

2806 Commits

Author SHA1 Message Date
romildo
69bbc78eee aria2: 1.29.0 -> 1.31.0 2017-01-23 19:16:05 -02:00
Joachim F
cc3ecce324 Merge pull request #22042 from rnhmjoj/dnscrypt-proxy
dnscrypt-proxy: 1.9.1 -> 1.9.4
2017-01-23 15:53:24 +01:00
rnhmjoj
a7b7d0fc3e
dnscrypt-proxy: 1.9.1 -> 1.9.4 2017-01-23 13:15:33 +01:00
Franz Pletz
dabedc40a9
ngrep: fix build due to new libpcap, use debian patches 2017-01-22 14:09:50 +01:00
Franz Pletz
9156d932b6
tcpdump: 4.7.4 -> 4.8.1 2017-01-22 13:01:00 +01:00
Vladimír Čunát
6b6553c768
Merge branch 'staging'
It contains security updates.  I somehow forgot to push this yesterday.
2017-01-20 16:33:59 +01:00
Jörg Thalheim
3fdde25b4c Merge pull request #21962 from Mic92/gemdir
bundleEnv: Used gemdir for most applications now
2017-01-19 09:34:14 +01:00
Vladimír Čunát
40003aa2ed
Merge branch 'master' into staging 2017-01-18 15:54:04 +01:00
Jörg Thalheim
246fd4c950
maphosts: use gemdir 2017-01-18 00:52:48 +01:00
Periklis Tsirakidis
513ce19fd0 offlineimap: 7.0.9 -> 7.0.12 2017-01-17 23:04:37 +01:00
Tristan Helmich
c7ea194b41 fping: 3.13 -> 3.15 (#21949) 2017-01-17 11:55:09 +01:00
Tristan Helmich
c885570944 fping: enable IPv6 (provides fping6 binary) (#21950) 2017-01-17 11:54:03 +01:00
Nikolay Amiantov
70a6628848 Merge pull request #21882 from abbradar/dhcp6
DHCPv6 improvements
2017-01-15 19:53:33 +03:00
Nikolay Amiantov
cb418318a0 radvd: 2.13 -> 2.15 2017-01-15 19:38:53 +03:00
Bas van Dijk
f0338024b9 strongswan: enable charon-systemd (#21872)
See: https://wiki.strongswan.org/projects/strongswan/wiki/Charon-systemd
2017-01-14 20:41:51 +01:00
Frederik Rietdijk
66d3b9a02d wicd: use python2 2017-01-11 18:25:10 +01:00
Pascal Wittmann
1738be8cd2
axel: 2.11 -> 2.12 2017-01-09 21:32:30 +01:00
Jörg Thalheim
188fcc1eb5
ferm: 2.3 -> 2.3.1 2017-01-08 23:40:40 +01:00
Joachim Fasting
0f24e56728
dnscrypt-proxy: 1.9.0 -> 1.9.1 2017-01-07 08:02:53 +01:00
Vladimír Čunát
07bf828bd9
Merge branch 'staging'; security /cc #21642 2017-01-06 16:32:47 +01:00
Gabriel Ebner
b0ccbb395c Merge pull request #21658 from acowley/mu-no-mug
mu: allow gtk-free builds
2017-01-06 00:22:30 -05:00
Anthony Cowley
8ca70e358d mu: allow gtk-free builds
The gtk components are enabled by default when stdenv.isLinux is true.
2017-01-05 17:55:54 -05:00
Franz Pletz
e94bfe55c4
mitmproxy: 0.17.1 -> 1.0.2, move to all-packages.nix 2017-01-05 06:25:26 +01:00
Matthias Beyer
b5c7ce015f http-prompt: 0.2.0 -> 0.8.0 2017-01-04 16:29:33 +01:00
Daiderd Jordan
27660cfdc0
Merge branch 'master' into staging 2017-01-04 01:42:26 +01:00
Eelco Dolstra
82b0ae1223 Merge pull request #21612 from NeQuissimus/curl_7_52_1
curl: 7.51.0 -> 7.52.1
2017-01-03 16:11:35 +01:00
Tim Steinbach
125fa1520d
curl: 7.51.1 -> 7.52.1 2017-01-03 08:42:59 -05:00
Michael Raskin
277e7119be openvpn: 2.3.13 -> 2.4.0 2017-01-02 15:38:46 +01:00
Michael Raskin
6151982f58 Merge pull request #21581 from bendlas/update-i2p
i2p: 0.9.26 -> 0.9.28
2017-01-02 14:15:10 +00:00
Michael Raskin
c882915351 Merge pull request #21548 from FPtje/patch-2
Strongswan: enable rdrand and aes-ni only on X86
2017-01-02 14:07:16 +00:00
Herwig Hochleitner
86a6083498 i2p: 0.9.26 -> 0.9.28
update patch
2017-01-02 13:14:42 +01:00
Daiderd Jordan
5a67b130b9
Merge branch 'master' into staging 2017-01-02 00:54:17 +01:00
Jörg Thalheim
d5f8652e6d Merge pull request #17364 from fmu/ndjbdns-fix
ndjbdns: build from latest sources which adds Darwin compatibility
2017-01-01 08:34:28 +01:00
volth
06b372f24f miredo: init at 1.2.6 2016-12-31 21:03:27 +01:00
Falco Peijnenburg
9c61571f1a Strongswan: enable rdrand and aes-ni only on X86
Strongswan fails to compile on armv7l-linux with `--enable-aesni` and  `--enable-rdrand` enabled. Errors are thrown about impossible constraints in asm (`--enable-rdrand`) or about gcc getting unknown command line parameters about aes (`--enable-aesni`). The options only makes sense on X86_64 processors.

The rdrand plugin is designed for Ivy Bridge processors:

> High quality / high performance random source using the Intel rdrand instruction found on Ivy Bridge processors

The aes-ni plugin also only exists on X86 processors (which have the AES instruction set)

Tested with a local override. The change triggers a (successful) rebuild on my X86_64 system. On armv7-linux this change fixes build errors.

See: 
https://wiki.strongswan.org/issues/337
2016-12-31 14:26:17 +01:00
Dhananjay Balan
cab497ee6d unbound 1.5.6 > 1.6.0 2016-12-30 18:13:10 +01:00
Joachim Fasting
64f45520b9
dnscrypt-proxy: 1.7.0 -> 1.9.0
Release notes at:
https://github.com/jedisct1/dnscrypt-proxy/releases/tag/1.9.0

Packaging tweaks:
- No longer split man page, kind of pointless ...
- No longer install libtool files, they are now optional
2016-12-30 05:33:58 +01:00
Vladimír Čunát
0163f0c427
openssh: update the gssapi patch
Only building was tested.
2016-12-29 17:04:58 -05:00
Graham Christensen
11e8ed5ff4
Revert "Revert "openssh: security 7.3p1 -> 7.4p1""
This reverts commit 661b5a9875.
2016-12-29 17:04:39 -05:00
Sophie Taylor
0e0fb196ca openntpd: v6+ requires libressl for constraints 2016-12-28 13:35:42 +10:00
zimbatm
12532879b0 zerotierone: 1.1.12 -> 1.1.14 2016-12-27 17:47:41 +00:00
Mitch Tishmack
b398665a4e wakelan: refactor allow builds on non linux 2016-12-26 15:04:45 -06:00
Vladimír Čunát
661b5a9875
Revert "openssh: security 7.3p1 -> 7.4p1"
This reverts commit 277080fea0.

I had tested the server on my physical machine before pushing,
but the openssh test got broken so something is clearly wrong.
http://hydra.nixos.org/build/45500080
2016-12-25 22:15:56 +01:00
Vladimír Čunát
277080fea0
openssh: security 7.3p1 -> 7.4p1
The two removed patches were for issues that should've been fixed.
Minor vulnerabilities addressed: CVE-2016-{10009,10010,10011,10012}.
https://www.openssh.com/txt/release-7.4
2016-12-25 18:42:55 +01:00
zimbatm
c38b4da994 strongswan: 5.5.0 -> 5.5.1 2016-12-24 15:57:56 +00:00
Joachim Fasting
a34eae0ecb
stun: gzip -9 -> gzip -9n
Note that it does not seem to make a difference to `nix-build --check`.
2016-12-20 15:32:14 +01:00
Joachim Fasting
8246a845b4
zerotierone: gzip -9 -> gzip -9n
Note that it does not seem to make a difference to `nix-build --check`.
2016-12-20 15:32:07 +01:00
Gabriel Ebner
182c735527 mu: 0.9.16 -> 0.9.18 2016-12-15 14:45:46 -05:00
Franz Pletz
dc0c7104ea
chrony: 2.4 -> 2.4.1 2016-12-15 15:35:22 +01:00
Tomas Hlavaty
d65ef03677 stunnel: 5.37 -> 5.38 2016-12-13 22:34:25 +01:00
schneefux
b6a4876258
httpie: 0.9.6 -> 0.9.8 2016-12-11 13:17:49 +01:00
Michael Raskin
64402bb9e0 getmail: 4.51.0 -> 4.52.0 2016-12-08 16:15:18 +01:00
Joachim Fasting
148ee2cba9
privoxy: homepage now reachable via https 2016-12-06 15:48:39 +01:00
Joachim Fasting
1a427cf625
privoxy: enable pie 2016-12-06 15:48:28 +01:00
Chris Martin
02ecd0f0f7 pssh: init at 2.3.1 2016-12-06 00:46:48 -05:00
Tristan Helmich
90292a8093 nzbget: 17.0-r1686 -> 17.1 2016-12-05 21:11:22 +01:00
Joachim Fasting
407537a4bc
privoxy: 3.0.24 -> 3.0.26
With some minor cosmetics
2016-12-05 13:20:51 +01:00
Franz Pletz
e3d54be387
dhcpcd: 6.11.3 -> 6.11.5 2016-12-04 01:40:26 +01:00
Eric Sagnes
813e5284cf urlwatch: 2.2 -> 2.5 2016-12-02 13:14:22 +09:00
Tuomas Tynkkynen
8a4d6516ee Merge remote-tracking branch 'upstream/staging' into master 2016-11-30 00:34:23 +02:00
Alexander Tsamutali
c9b8a6585d Add tools/networking/polysh 2016-11-29 17:32:21 +03:00
Franz Pletz
e394c305a8 Merge pull request #20620 from rnhmjoj/fakeroute
fakeroute: init at 0.3
2016-11-28 03:01:15 +01:00
Tuomas Tynkkynen
2d679dbe74 ntp: Don't use seccomp on non-x86
It only has the allowed system call numbers defined for i386 and x86_64
so it fails to build otherwise.
2016-11-26 20:38:17 +02:00
Franz Pletz
9007303001
curl: add upstream patch to fix HTTP2 performance issues
See #20639. Patch has to be in nixpkgs because fetchurl depends on curl.
2016-11-26 14:48:05 +01:00
Vladimír Čunát
925b335607
Merge branch 'master' into staging 2016-11-26 11:27:09 +01:00
roxma
78f81c5bac proxychains: fix build, add -ldl to LDFLAGS
Closes #20355
2016-11-25 12:17:11 +01:00
Frederik Rietdijk
3ebca4f4cf vde2: use python2 2016-11-24 22:28:03 +01:00
Frederik Rietdijk
c355a73e2c s3cmd: use python2 2016-11-24 22:28:02 +01:00
Jascha Geerds
79ea04c6c7 Merge pull request #20646 from romildo/upd.aria2
aria2: 1.28.0 -> 1.29.0
2016-11-23 23:48:22 +01:00
Nikolay Amiantov
e5167e8763 update-resolv-conf: 2016-04-24 -> 2016-09-30 2016-11-24 01:17:58 +03:00
Nikolay Amiantov
77a61cabe9 logmein-hamachi: 2.1.0.165 -> 2.1.0.174 2016-11-24 01:17:58 +03:00
Nikolay Amiantov
be95ceaff2 treewide: quote URLs in my packages 2016-11-24 01:17:52 +03:00
rnhmjoj
d753527bd4
fakeroute: init at 0.3 2016-11-23 15:22:55 +01:00
romildo
6f5a704205 aria2: 1.28.0 -> 1.29.0 2016-11-23 07:49:19 -02:00
Sophie Taylor
91d2071e7a openntpd: 5.7p4 -> 6.0p1 (#20602) 2016-11-22 03:45:09 +01:00
Franz Pletz
cc925a0162
stunnel: 5.36 -> 5.37 2016-11-22 03:16:47 +01:00
Franz Pletz
009e37d277
ntp: fix ntp-wait script, depends on perl 2016-11-21 23:25:21 +01:00
Franz Pletz
67fd21a170
ntp: use seccomp on linux 2016-11-21 23:11:05 +01:00
Franz Pletz
db66a95e5b
ntp: 4.2.8p8 -> 4.2.8p9
Includes fixes for 10 CVEs and contains other fixes.

See http://support.ntp.org/bin/view/Main/SecurityNotice#November_2016_ntp_4_2_8p9_NTP_Se.
2016-11-21 22:49:02 +01:00
Pascal Wittmann
1416ed7b08
vtun: 3.0.3 -> 3.0.4 2016-11-20 16:36:52 +01:00
Rok Garbas
c2e5c30bb7 offlineimap: 7.0.6 -> 7.0.9 2016-11-20 15:47:10 +01:00
Pascal Wittmann
4cdfa0b96a
axel: 2.7 -> 2.11 2016-11-19 10:51:56 +01:00
Thomas Tuegel
520064e4b5
networkmanager: multiple outputs 2016-11-15 07:15:04 -06:00
Tobias Geerinckx-Rice
e1220105e3
netsniff-ng: 0.6.1 -> 0.6.2 2016-11-09 02:24:45 +01:00
Benno Fünfstück
0e78ed82bf dirb: init at 2.22 2016-11-07 00:52:13 +01:00
Edward Tjörnhammar
721c3d48e1
i2pd: 2.9.0 -> 2.10.0 2016-11-06 08:13:03 +01:00
Sophie Taylor
c5cac5051a cjdns v17.3 -> v18 2016-11-04 11:52:28 +01:00
=
f14888b2fe reaverwps-t6x: init at 1.5.2 2016-11-03 23:45:14 +02:00
=
5245e4f1c2 pixiewps: init at 1.2.2 2016-11-03 23:45:14 +02:00
Tim Steinbach
04b22dd935 Merge pull request #19982 from sternenseemann/netcat
Make netcat-openbsd the default netcat
2016-11-02 19:44:29 -04:00
Eelco Dolstra
1e1609da6a curl: 7.50.3 -> 7.51.0
Fixes 11 CVEs:

https://curl.haxx.se/changes.html#7_51_0
2016-11-02 10:38:17 +01:00
sternenseemann
bbe9159725 netcat-openbsd: install man page 2016-10-30 15:06:16 +01:00
sternenseemann
e2372502d3 netcat: make netcat-openbsd the default netcat (#19411)
The motivation for this change is the following: As gnu-netcat,
e. g. does not support ipv6, it is not suitable as default netcat.

This commit also fixes all obvious build issues caused by this change.
2016-10-30 15:06:04 +01:00
Joachim Fasting
a79695e3e2
dnscrypt-wrapper: 0.2.1 -> 0.2.2
Upstream changed distribution terms to what they call "0-clause BSD" aka
ISC.
2016-10-29 03:04:03 +02:00
Sean Bartell
64b1fe26a7 nc6: remove
The download sources are gone and the program is obsolete now that
the popular versions of netcat support IPv6. See:
http://www.deepspace6.net/projects/netcat6.html
2016-10-28 10:54:33 -05:00
Frederik Rietdijk
7077a270bf Merge remote-tracking branch 'upstream/master' into HEAD 2016-10-26 13:06:43 +02:00
Graham Christensen
a95a5e48a9 Merge pull request #19824 from NeQuissimus/httpstat_1_2_1
httpstat: 1.2.0 -> 1.2.1
2016-10-24 19:16:20 -04:00
Franz Pletz
ffca975de7
kea: init at 1.1.0 2016-10-24 20:02:23 +02:00
Tim Steinbach
ca74b4e8c7
httpstat: 1.2.0 -> 1.2.1 2016-10-24 10:13:40 -04:00
Tim Steinbach
8f457026ad Merge pull request #19808 from vbgl/lftp-4.7.3
lftp: 4.7.1 -> 4.7.3
2016-10-23 20:55:52 -04:00
Kai Harries
2756711652
network-manager: give path to pppd executable
This fixes an issue I have faced when trying to connect to the internet
via wwan gsm modem.

(cherry picked from commit 0775adc599f4706e3ff020e700b5f8f69578b6b1)

Closes https://github.com/NixOS/nixpkgs/pull/19812
2016-10-23 20:41:58 +02:00
Vincent Laporte
27750ac53a lftp: 4.7.1 -> 4.7.3 2016-10-23 18:03:55 +02:00
Joachim Fasting
0c0801e9c4
unbound: 1.5.9 -> 1.5.10
Fixes a fair number of bugs, see https://www.unbound.net/download.html.

Also use https for meta.homepage.
2016-10-22 20:47:11 +02:00
Frederik Rietdijk
e56832d730 Merge remote-tracking branch 'upstream/master' into HEAD 2016-10-22 17:23:24 +02:00
Tim Steinbach
2bc237ebe2
statsd: 0.7.2 -> 0.8.0 2016-10-20 17:35:03 -04:00
Graham Christensen
4d10b58cc1 Merge pull request #19730 from aneeshusa/fix-openssh-CVE-2016-8858
openssh: Patch CVE-2016-8858
2016-10-20 17:12:43 -04:00
Vladimír Čunát
4d5b893002 Merge #19081: gnome-3.22
Also master commits are brought in.
2016-10-20 23:04:10 +02:00
Aneesh Agrawal
7374105a96 openssh: Patch CVE-2016-8858
Also add myself as a maintainer.
2016-10-20 14:55:14 -04:00
Aycan iRiCAN
fe41a8560b ssldump: init at 09b3 2016-10-19 14:15:42 +00:00
Joachim F
7b4a9cd5f3 Merge pull request #19657 from romildo/upd.cmst
cmst: 2016.04.03 -> 2016.10.03
2016-10-19 05:24:26 +02:00
Frederik Rietdijk
727fcd3d2b httpstat: fix it 2016-10-18 23:14:36 +02:00
Frederik Rietdijk
0389aa9f7d getmail: use python2 2016-10-18 23:14:35 +02:00
romildo
bcca1cf326 aria2: 1.27.1 -> 1.28.0 2016-10-18 17:47:39 -02:00
romildo
5a049dfc15 cmst: 2016.04.03 -> 2016.10.03 2016-10-18 15:31:51 -02:00
Jinjing Wang
29191da7a0 shadowsocks-libev: 2.5.0 -> 2.5.5 2016-10-16 22:41:50 +08:00
schneefux
92487043ae
httpie: 0.9.3 -> 0.9.6 2016-10-16 15:44:29 +02:00
Alexander Ried
4094d63dea NetworkManager-strongswan: init at 1.4.0 2016-10-15 20:32:16 +02:00
Eelco Dolstra
811b876fab Revert "openssl, curl, git: Respect $NIX_SSL_CERT_FILE"
This reverts commit 942dbf89c6. Sorry,
this was supposed to go to staging instead of master...
2016-10-14 16:01:54 +02:00
Vladimír Čunát
061758490f Merge branch 'master' into staging
... to get the openssl mass rebuild: 942dbf89c.
2016-10-14 13:16:11 +02:00
Eelco Dolstra
942dbf89c6 openssl, curl, git: Respect $NIX_SSL_CERT_FILE
$NIX_SSL_CERT_FILE overrides $SSL_CERT_FILE, which in turn overrides
the default CA path (/etc/ssl/certs/ca-certificates.crt). This allows
Nix to set a CA path without interfering with other packages (such as
Homebrew).

See https://github.com/NixOS/nix/issues/921.
2016-10-14 12:06:10 +02:00
Vladimír Čunát
6eeea6effd Python: more evaluation fixups. 2016-10-14 00:03:12 +02:00
Franz Pletz
c766c7f095
fastd: fix meta.platforms typo 2016-10-14 00:02:30 +02:00
Tuomas Tynkkynen
c66124e9b7 sshpass: 1.05 -> 1.06 2016-10-14 00:58:07 +03:00
Franz Pletz
29bd3898a6
fastd: init at 18 2016-10-13 21:42:17 +02:00
Frederik Rietdijk
f3c6236eb4 Merge pull request #19442 from peterhoeg/lc
linkchecker: make it work with newer requests2
2016-10-12 10:21:29 +02:00
Vladimír Čunát
6898810ba6 Merge #19297: openssh: apply patch to fix vulnerability
NEWKEYS null pointer dereference.
2016-10-11 20:08:30 +02:00
Alexander Ried
bbb2f64588 tinc: 1.0.28 -> 1.0.29 (#19444) 2016-10-11 12:57:00 +02:00
Peter Hoeg
b120ef422c linkchecker: make it work with newer requests2
linkchecker has an odd version check for requests2 that fails on
versions > 2.9.x.

We patch out the check as we are providing a recent requests2. This
patch should be dropped when linkchecker >v9.3 is released.

We now also run the tests although I had to remove one failing test.
Yes, that's covering up the issue but we're still better off than
before.
2016-10-11 11:02:52 +08:00
Alexander Ried
9f0dffa84e networkmanagerapplet: 1.2.2 -> 1.4.2
Needs ModemManager for configuration of WWAN and jansson for
team configuration editing.
2016-10-10 09:42:59 +02:00
Alexander Ried
2117769601 modemmanager: 1.4.6 -> 1.6.2
Now supports systemd resume
2016-10-10 09:42:59 +02:00
Alexander Ried
1fa0a69fc2 networkmanager_openvpn: 1.2.2 -> 1.2.6 2016-10-10 09:42:59 +02:00
Alexander Ried
6bdf707641 networkmanager_vpnc: 1.2.2 -> 1.2.4 2016-10-10 09:42:59 +02:00
Alexander Ried
6f8a8fd9d4 networkmanager_pptp: 1.2.2 -> 1.2.4 2016-10-10 09:42:59 +02:00
Alexander Ried
f9aa64a6c4 networkmanager_openconnect: no update 2016-10-10 09:42:59 +02:00
Alexander Ried
8f631f575c networkmanager: 1.2.2 -> 1.4.2 2016-10-10 09:42:59 +02:00
Jörg Thalheim
5275d07fea Merge pull request #19357 from NeQuissimus/httpstat
httpstat: init at 1.2.0
2016-10-09 11:28:31 +02:00
Tim Steinbach
26f75f7d31
httpstat: init at 1.2.0 2016-10-08 18:48:04 -04:00
Franz Pletz
fa405aa264 bind: split out dnsutils & host binaries (#18903)
These tools are commonly used but don't require the other bind binaries.
Bind's libs are used, so they've also been split into an extra output.

The old version of host isn't maintained anymore and was removed From Debian
back in 2009: https://packages.qa.debian.org/h/host.html
2016-10-08 16:01:15 +02:00
Bjørn Forsman
3f7d2f72e7 gmvault: 1.8.1-beta -> 1.9.1
Adds support for OAuth2 (among other things).
2016-10-06 23:52:33 +02:00
Hendrik Schaeidt
d6d12ebc55
openvpn: disable libpam support on OSX to enable build 2016-10-06 20:24:02 +02:00
Graham Christensen
83a8cb1dc2
openssh: apply patch to fix https://bugzilla.redhat.com/show_bug.cgi?id=1380296 2016-10-06 08:54:10 -04:00
Tuomas Tynkkynen
5bf5de58ea treewide: Fix 'lib.optional' misuses
These add a singleton list of a package to buildInputs.
2016-10-01 23:38:06 +03:00
Jaka Hudoklin
98a8146428 Merge pull request #19016 from offlinehacker/pkgs/flannel/update/0.6.2
flannel: update, add nixos module, add tests
2016-10-01 17:22:34 +02:00
Jaka Hudoklin
eb1377ba30 flannel: 0.5.5 -> 0.6.2 2016-10-01 17:04:25 +02:00
Benno Fünfstück
1bae891e66 burpsuite: init at 1.7.06 2016-10-01 14:27:04 +02:00
Rob Vermaas
cfd62a1045 dd-agent: D'oh, removing duplicate requests dep.
(cherry picked from commit acf91fd6efb39f712f1f1a394633c78382005340)
2016-09-30 13:24:19 +00:00
Rob Vermaas
a98dccf1e4 Fix dd-agent
(cherry picked from commit a6493ce4bdc47cbe3bc4ea74323f11f610e18c04)
2016-09-30 13:15:23 +00:00
Joachim Fasting
10be782f25
connman: meta cleanup 2016-09-28 20:01:37 +02:00
makefu
16547d49da
wol: init at 0.7.1
wol, unlike wakelan, supports wake-on-lan passwords
2016-09-28 12:33:46 +02:00
Franz Pletz
d5adf2cc0b
dhcp: 4.3.3 -> 4.3.4
Uses shipped version of libbind now.

Fix CVE-2016-2774 & CVE-2015-8605.

cc #18856
2016-09-28 10:50:29 +02:00