Commit Graph

138136 Commits

Author SHA1 Message Date
Pascal Wittmann
3d1976b083
pdf2djvu: 0.9.8 -> 0.9.9 2018-04-21 15:48:27 +02:00
Pascal Wittmann
6ccc17f26b
cyrus-sasl: use cve tag in patchname for vulnix auto-detection 2018-04-21 15:42:44 +02:00
Pascal Wittmann
931b8aded1
calibre: 3.21.0 -> 3.22.1 2018-04-21 15:32:43 +02:00
Pascal Wittmann
1ca71377f3
jasper: include cve name in patch for auto-detection in vulnix 2018-04-21 15:32:41 +02:00
Mateusz Kowalczyk
7638888868
Merge pull request #39207 from r-ryantm/auto-update/onig
oniguruma: 6.7.1 -> 6.8.2
2018-04-21 14:29:36 +01:00
Jörg Thalheim
862f5b0b34
Merge pull request #35541 from xeji/containers-extraflags
nixos/containers: add extraFlags option
2018-04-21 14:16:49 +01:00
Jörg Thalheim
9a3583de40
Merge pull request #39303 from moaxcp/jbake2
jbake: wrap script
2018-04-21 14:05:35 +01:00
Herwig Hochleitner
2b29e40153 chromium: 65.0.3325.181 -> 66.0.3359.117
Critical CVE-2018-6085: Use after free in Disk Cache. Reported by Ned Williamson on 2018-03-28
Critical CVE-2018-6086: Use after free in Disk Cache. Reported by Ned Williamson on 2018-03-30
High CVE-2018-6087: Use after free in WebAssembly. Reported by Anonymous on 2018-02-20
High CVE-2018-6088: Use after free in PDFium. Reported by Anonymous on 2018-03-15
High CVE-2018-6089: Same origin policy bypass in Service Worker. Reported by Rob Wu on 2018-02-04
High CVE-2018-6090: Heap buffer overflow in Skia. Reported by ZhanJia Song on 2018-03-12
High CVE-2018-6091: Incorrect handling of plug-ins by Service Worker. Reported by Jun Kokatsu (@shhnjk) on 2017-10-05
High CVE-2018-6092: Integer overflow in WebAssembly. Reported by Natalie Silvanovich of Google Project Zero on 2018-03-08
Medium CVE-2018-6093: Same origin bypass in Service Worker. Reported by Jun Kokatsu (@shhnjk) on 2017-11-01
Medium CVE-2018-6094: Exploit hardening regression in Oilpan. Reported by Chris Rohlf on 2016-08-01
Medium CVE-2018-6095: Lack of meaningful user interaction requirement before file upload. Reported by Abdulrahman Alqabandi (@qab) on 2016-08-11
Medium CVE-2018-6096: Fullscreen UI spoof. Reported by WenXu Wu of Tencent's Xuanwu Lab on 2017-10-19
Medium CVE-2018-6097: Fullscreen UI spoof. Reported by xisigr of Tencent's Xuanwu Lab on 2018-01-26
Medium CVE-2018-6098: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-01-03
Medium CVE-2018-6099: CORS bypass in ServiceWorker. Reported by Jun Kokatsu (@shhnjk) on 2018-02-03
Medium CVE-2018-6100: URL spoof in Omnibox. Reported by Lnyas Zhang on 2018-02-11
Medium CVE-2018-6101: Insufficient protection of remote debugging prototol in DevTools . Reported by Rob Wu on 2018-02-19
Medium CVE-2018-6102: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-02-20
Medium CVE-2018-6103: UI spoof in Permissions. Reported by Khalil Zhani on 2018-02-24
Medium CVE-2018-6104: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-03-08
Medium CVE-2018-6105: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-01-18
Medium CVE-2018-6106: Incorrect handling of promises in V8. Reported by lokihardt of Google Project Zero on 2018-01-25
Medium CVE-2018-6107: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-02-02
Medium CVE-2018-6108: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-02-27
Low CVE-2018-6109: Incorrect handling of files by FileAPI. Reported by Dominik Weber (@DoWeb_) on 2017-04-10
Low CVE-2018-6110: Incorrect handling of plaintext files via file:// . Reported by Wenxiang Qian (aka blastxiang) on 2017-10-24
Low CVE-2018-6111: Heap-use-after-free in DevTools. Reported by Khalil Zhani on 2017-11-02
Low CVE-2018-6112: Incorrect URL handling in DevTools. Reported by Rob Wu on 2017-12-29
Low CVE-2018-6113: URL spoof in Navigation. Reported by Khalil Zhani on 2018-01-25
Low CVE-2018-6114: CSP bypass. Reported by Lnyas Zhang on 2018-02-13
Low CVE-2018-6115: SmartScreen bypass in downloads. Reported by James Feher on 2018-03-07
Low CVE-2018-6116: Incorrect low memory handling in WebAssembly. Reported by Jin from Chengdu Security Response Center of Qihoo 360 Technology Co. Ltd. on 2018-03-15
Low CVE-2018-6117: Confusing autofill settings. Reported by Spencer Dailey on 2018-03-15
Low CVE-2018-6084: Incorrect use of Distributed Objects in Google Software Updater on MacOS. Reported by Ian Beer of Google Project Zero on 2018-03-15
2018-04-21 14:57:45 +02:00
Herwig Hochleitner
dcf7e63f37 i2p: 0.9.33 -> 0.9.34 2018-04-21 14:57:44 +02:00
Herwig Hochleitner
996238e532 webkitgtk: 2.20.0 -> 2.20.1 2018-04-21 14:57:44 +02:00
Herwig Hochleitner
23aaf1cf97 dwarf-fortress: 0.44.05 -> 0.44.09 2018-04-21 14:57:44 +02:00
John Mercier
4115237312 jbake: wrap script
Upstream script now uses JAVA_HOME. This change wraps the script so JAVA_HOME is set.
2018-04-21 08:50:13 -04:00
Jörg Thalheim
1330f66d3b
Merge pull request #39202 from r-ryantm/auto-update/pgroonga
pgroonga: 2.0.4 -> 2.0.5
2018-04-21 13:48:58 +01:00
Markus Hauck
294f823146 gphoto2: 2.5.15 -> 2.5.17 2018-04-21 14:41:43 +02:00
Markus Hauck
3ce3708d19 libgphoto2: 2.5.16 -> 2.5.17 2018-04-21 14:35:44 +02:00
Jörg Thalheim
a3e197a222
Merge pull request #39300 from erikarvstedt/openvpn-no-timestamps
openvpn: remove redundant timestamps from log output
2018-04-21 13:18:48 +01:00
Erik Arvstedt
683eeab299 openvpn: remove redundant timestamps from log output
The systemd journal is already logging and showing timestamps
2018-04-21 14:17:22 +02:00
Jörg Thalheim
f3fd4fc754
Merge pull request #39205 from r-ryantm/auto-update/peek
peek: 1.3.0 -> 1.3.1
2018-04-21 13:14:52 +01:00
Jörg Thalheim
680b16ee86 peek: add ffmpeg to PATH 2018-04-21 13:14:07 +01:00
Jörg Thalheim
8bcecefb9e
Merge pull request #39219 from r-ryantm/auto-update/libpqxx
libpqxx: 6.1.1 -> 6.2.2
2018-04-21 13:01:33 +01:00
Jörg Thalheim
211e42d8ae
Merge pull request #39209 from r-ryantm/auto-update/pam_u2f
pam_u2f: 1.0.4 -> 1.0.5
2018-04-21 12:53:28 +01:00
Jörg Thalheim
9d0e081e76
Merge pull request #39212 from xeji/qemu-ga
qemu: add separate output "ga" for qemu-ga guest agent
2018-04-21 12:50:52 +01:00
Jörg Thalheim
f925ec0d4a
Merge pull request #39298 from rvolosatovs/update/mopidy-iris
mopidy-iris: 3.16.3 -> 3.17.1
2018-04-21 12:48:46 +01:00
Jörg Thalheim
015f2ad4cf
Merge pull request #39210 from r-ryantm/auto-update/opendht
opendht: 1.6.1 -> 1.7.0
2018-04-21 12:48:04 +01:00
Jörg Thalheim
93c2a6cfd1
Merge pull request #39252 from r-ryantm/auto-update/cups-filters
cups-filters: 1.20.2 -> 1.20.3
2018-04-21 12:44:30 +01:00
Jörg Thalheim
749bb406b2
Merge pull request #39213 from r-ryantm/auto-update/mediainfo
mediainfo: 18.03 -> 18.03.1
2018-04-21 12:41:49 +01:00
Jörg Thalheim
d8e34fc8ea
Merge pull request #39218 from r-ryantm/auto-update/mcelog
mcelog: 156 -> 157
2018-04-21 12:41:28 +01:00
Jörg Thalheim
8104f6fb4a
Merge pull request #39278 from r-ryantm/auto-update/mod_wsgi
mod_wsgi: 4.6.3 -> 4.6.4
2018-04-21 12:40:04 +01:00
Roman Volosatovs
c6ce9c3c26
mopidy-iris: 3.16.3 -> 3.17.1 2018-04-21 13:40:01 +02:00
Jörg Thalheim
7a5c36804c
Merge pull request #39221 from r-ryantm/auto-update/ircd-hybrid
ircdHybrid: 8.2.22 -> 8.2.24
2018-04-21 12:39:03 +01:00
makefu
848a5aded6 gem-config: include do_sqlite3 2018-04-21 12:36:06 +01:00
Jörg Thalheim
dae520dec9
Merge pull request #39215 from r-ryantm/auto-update/multimon-ng
multimon-ng: 1.1.4 -> 1.1.5
2018-04-21 12:30:35 +01:00
Jörg Thalheim
487489e9cd
Merge pull request #39222 from r-ryantm/auto-update/jbake
jbake: 2.6.0 -> 2.6.1
2018-04-21 12:20:25 +01:00
Jörg Thalheim
4c157959b9
Merge pull request #39239 from r-ryantm/auto-update/gqrx
gqrx: 2.11.2 -> 2.11.4
2018-04-21 12:19:54 +01:00
Jörg Thalheim
d2e1562962
Merge pull request #39234 from r-ryantm/auto-update/grails
grails: 3.3.3 -> 3.3.5
2018-04-21 12:17:10 +01:00
Jörg Thalheim
c0eaaaef33
Merge pull request #39236 from ckauhaus/vulnix-update-1.6
vulnix: 1.4.0 -> 1.6.1
2018-04-21 12:08:25 +01:00
Jörg Thalheim
67a6741305
Merge pull request #39249 from r-ryantm/auto-update/freeradius
freeradius: 3.0.16 -> 3.0.17
2018-04-21 12:05:30 +01:00
Jörg Thalheim
4d1ead8dc8
Merge pull request #39240 from r-ryantm/auto-update/flacon
flacon: 4.0.0 -> 4.1.0
2018-04-21 12:04:06 +01:00
Jörg Thalheim
eb13f077af
Merge pull request #39243 from r-ryantm/auto-update/folly
folly: 2018.03.26.00 -> 2018.04.16.00
2018-04-21 12:00:24 +01:00
Jörg Thalheim
802c18c632
Merge pull request #39238 from r-ryantm/auto-update/gpaste
gnome3.gpaste: 3.28.1 -> 3.28.2
2018-04-21 11:57:45 +01:00
Jörg Thalheim
80522f3573
Merge pull request #39253 from r-ryantm/auto-update/closure-compiler
closurecompiler: 20180319 -> 20180402
2018-04-21 11:53:49 +01:00
Jörg Thalheim
e5e8a85555 xfstests: 2017-07-16 -> 2018-04-11 2018-04-21 11:53:08 +01:00
Jörg Thalheim
04ec325166
Merge pull request #39242 from r-ryantm/auto-update/fio
fio: 3.5 -> 3.6
2018-04-21 11:50:43 +01:00
Jörg Thalheim
3d957f0414
Merge pull request #39256 from r-ryantm/auto-update/cli-visualizer
cli-visualizer: 1.6 -> 1.7
2018-04-21 11:42:34 +01:00
Jörg Thalheim
0a7d27f8a0
Merge pull request #39268 from r-ryantm/auto-update/aws-sdk-cpp
aws-sdk-cpp: 1.4.24 -> 1.4.33
2018-04-21 11:41:05 +01:00
Jörg Thalheim
bf6998bdfa
Merge pull request #39297 from xeji/tests/gnome3-gdm
nixos/tests/gnome3-gdm: fix broken test
2018-04-21 11:40:52 +01:00
Jörg Thalheim
f27b83fd7e
Merge pull request #39244 from r-ryantm/auto-update/focuswriter
focuswriter: 1.6.11 -> 1.6.12
2018-04-21 11:40:38 +01:00
Jörg Thalheim
7c7bd9bb2c
Merge pull request #39247 from r-ryantm/auto-update/facter
facter: 3.11.0 -> 3.11.1
2018-04-21 11:29:29 +01:00
Lassulus
6db2057f00 nixos/restic: init (#38948) 2018-04-21 11:12:43 +01:00
Jörg Thalheim
8ef9f40cc3
Merge pull request #39259 from r-ryantm/auto-update/easyloggingpp
easyloggingpp: 9.96.2 -> 9.96.4
2018-04-21 11:11:39 +01:00