Commit graph

90290 commits

Author SHA1 Message Date
maxice8
98c0e514b9
vc: update to 1.4.0. 2018-10-03 03:45:02 -03:00
maxice8
3d49181bb5
qpdf: update to 8.2.1. 2018-10-03 03:45:02 -03:00
maxice8
215d20d197
libHX: update to 3.23. 2018-10-03 02:53:12 -03:00
maxice8
da6811827b nbd: update to 3.18. 2018-10-03 02:48:53 -03:00
maxice8
0ab2ecd44e
dar: update to 2.5.17. 2018-10-03 02:47:41 -03:00
maxice8
f495a49cbe
exiftool: update to 11.12. 2018-10-03 02:47:40 -03:00
maxice8
253f1024d4
highlight: update to 3.45. 2018-10-03 02:47:40 -03:00
maxice8
c3b12be2a1
gsoap: update to 2.8.70. 2018-10-03 02:47:40 -03:00
maxice8
ca244498d5 lxterminal: update to 0.3.2. 2018-10-03 02:47:04 -03:00
maxice8
517fb28bb8 neovim-remote: update to 2.1.0. 2018-10-03 02:46:57 -03:00
maxice8
a6255ca08d gtkspell3: update to 3.0.10. 2018-10-03 02:46:49 -03:00
cr6git
bacf9e2b4f
biblioteq: update to 2018.10.01. 2018-10-02 23:43:20 +02:00
Johannes
c2150146db synfigstudio: rebuild for openexr-2.3.0
[ci skip]
2018-10-02 23:28:11 +02:00
Johannes
c295642b72 synfig: rebuild for openexr-2.3.0 2018-10-02 23:28:11 +02:00
Johannes
51dfe555fa blender: rebuild for openexr-2.3.0 2018-10-02 23:28:11 +02:00
Johannes
d06e4d9ece calligra: rebuild for openexr-2.3.0 2018-10-02 23:28:11 +02:00
Johannes
9cdfaf5501 darktable: rebuild for openexr-2.3.0 2018-10-02 23:28:11 +02:00
Johannes
1eadd015aa gmic: rebuild for openexr-2.3.0 2018-10-02 23:28:11 +02:00
Johannes
fbb28de859 hugin: rebuild for openexr-2.3.0 2018-10-02 23:28:11 +02:00
Johannes
7fb2ffa2d9 kimageformats: rebuild for openexr-2.3.0 2018-10-02 23:28:11 +02:00
Johannes
bcbbef64d5 kio-extras: rebuild for openexr-2.3.0 2018-10-02 23:28:11 +02:00
Johannes
3ba66d6599 krita: rebuild for openexr-2.3.0 2018-10-02 23:28:11 +02:00
Johannes
f39a42d1d8 luxmark: rebuild for openexr-2.3.0 2018-10-02 23:28:11 +02:00
Johannes
0c2fd14fdb osg: rebuild for openexr-2.3.0 2018-10-02 23:28:11 +02:00
Johannes
16a048bd7d opencv: rebuild for openexr-2.3.0 2018-10-02 23:28:11 +02:00
Johannes
6c55e4b622 gimp: rebuild for openexr-2.3.0 2018-10-02 23:28:11 +02:00
Johannes
6ea8a23d59 vigra: rebuild for openexr-2.3.0 2018-10-02 23:28:11 +02:00
Johannes
d8a879b673 luxrays: rebuild for openexr-2.3.0 2018-10-02 23:28:11 +02:00
Johannes
eca7e81eb8 openimageio: rebuild for openexr-2.3.0 2018-10-02 23:28:11 +02:00
Johannes
2a5cd3b725 openexr: update to 2.3.0. 2018-10-02 23:28:11 +02:00
Johannes
095c69d21f ilmbase: update to 2.3.0. 2018-10-02 23:28:11 +02:00
maxice8
43d048bdb4 vorbis-tools: import CVE fixes
fixes:
    - CVE-2014-9638
    - CVE-2014-9639
    - CVE-2014-9640
    - CVE-2015-6749
2018-10-02 18:18:42 -03:00
maxice8
3e18fc9774 jasper: fix CVE-2018-9055 2018-10-02 18:18:35 -03:00
maxice8
1b83b520e3 ldns: fix CVE-2017-100231 CVE-2017-100232 2018-10-02 18:18:29 -03:00
maxice8
8534a735a9 libusbmuxd: fix CVE-2016-5104 2018-10-02 18:18:23 -03:00
maxice8
ae98224001
procmail: mark as nocross 2018-10-02 16:58:15 -03:00
maxice8
a0f160973d libvorbis: fix CVE-2018-10392 2018-10-02 16:06:49 -03:00
maxice8
2271575216 bcal: drop libquadmath-devel, add bc 2018-10-02 16:06:43 -03:00
maxice8
1681cd0182 procmail: fix CVE-2014-3618 CVE-2017-16844 2018-10-02 16:06:35 -03:00
maxice8
62cb04acc2 libpgf: fix CVE-2015-6673 2018-10-02 16:06:25 -03:00
maxice8
af3969db07 libimobiledevice: fix CVE-2016-5104 2018-10-02 16:06:17 -03:00
Rasmus Thomsen
f1faa09244 jq: add upstream patch to fix CVE-2016-4074 2018-10-02 13:34:05 -03:00
Rasmus Thomsen
833bdd032e flac: add upstream patch to fix CVE-2018-6888
- cleanup template
2018-10-02 13:34:00 -03:00
Rasmus Thomsen
8a2c6e2c43 exempi: add upstream patch fixing CVE-2018-12648 2018-10-02 13:33:55 -03:00
maxice8
a9cded343d
bcal: update to 2.0. 2018-10-02 13:17:40 -03:00
maxice8
54a55e5737 squid: disable processing of ESI responses
fixes:
    CVE-2018-1000027
    CVE-2018-1172
    CVE-2018-1000024
2018-10-02 17:10:30 +02:00
maxice8
db41b7577d lrzip: apply applicable security patches from upstream
Upstream has a few more CVEs but didn't make a new release yet.

In the meantime we patch what we can

Fixes:
    - CVE-2017-8842
    - CVE-2017-8844
    - CVE-2017-8845
    - CVE-2018-5650

The CVEs left remaining to be fixed by upstream are

( Removed CVE- prefix as to not confuse tools that grep for those
values)

CVE: 2017-8843 SEVERITY: 4.3
CVE: 2017-8846 SEVERITY: 4.3
CVE: 2017-8847 SEVERITY: 4.3
CVE: 2017-9928 SEVERITY: 4.3
CVE: 2017-9929 SEVERITY: 4.3
CVE: 2018-11496 SEVERITY: 4.3
CVE: 2018-5747 SEVERITY: 4.3
2018-10-02 12:05:21 -03:00
maxice8
aeb0a3e1d3 libsass: apply security fixes from upstream
fixes:
    - CVE-2018-11693
    - CVE-2018-11696
    - CVE-2018-11697
    - CVE-2018-11698

Remain unfixed upstream:

( CVE prefix removed to not confuse tools that grep for those values )

CVE: 2018-11499 SEVERITY: 7.5
CVE: 2018-11694 SEVERITY: 6.8
2018-10-02 12:05:13 -03:00
maxice8
c9cd8c875e taglib: fix CVE-2017-12678 CVE-2018-11439 2018-10-02 12:05:04 -03:00
maxice8
6783314672 liblouis: fix CVE-2018-12085 2018-10-02 12:04:56 -03:00