Skip to content
This repository was archived by the owner on Apr 12, 2021. It is now read-only.
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: NixOS/nixpkgs-channels
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: e758436f9868
Choose a base ref
...
head repository: NixOS/nixpkgs-channels
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: 9d55c1430af7
Choose a head ref
  • 20 commits
  • 20 files changed
  • 7 contributors

Commits on Oct 2, 2019

  1. wpa_supplicant: apply patch for CVE-2019-16275 

    (cherry picked from commit 5596874)
    @delroth
    delroth committed Oct 2, 2019

    Verified

    This commit was signed with the committer’s verified signature.
    infinisil Silvan Mosberger
    GPG key ID: 9424360B4B85C9E7
    Verified
    Learn about vigilant mode
    Copy the full SHA
    3f35f89 View commit details

  2. gnupatch: rename patch files to match their CVE ids. 

    This should be a behavior no-op, but it helps vulnix figure out that we
are up to date regarding security patches.

(cherry picked from commit 2242bb86d1edbdd8083c840d1160349286372fac)
    @delroth
    delroth committed Oct 2, 2019
    Copy the full SHA
    41f6a49 View commit details

  3. libtiff: patch for CVE-2019-6128, CVE-2019-14973 

    CVE-2019-14973.patch is a manually backported of the upstream patch to
work around some minor merge conflicts.

(cherry picked from commit a2e1da7367bf2397cb0cd82a1ab6503a9c1fa5aa)
    @delroth
    delroth committed Oct 2, 2019
    Copy the full SHA
    b7eac27 View commit details

  4. gst-plugins-base,gst_all_1.gst-plugins-base: apply patch for CVE-2019… 

    …-9928

Refactor the patchPhase management for the package along the way to
something more standard.

(Cherry pick from 97e4a11b003a5a88397d9a1fc4ee8ce8f006a396 with an extra
version of the package to patch in 19.03.)
    @delroth
    delroth committed Oct 2, 2019
    Copy the full SHA
    061663a View commit details

  5. glibc: patch CVE-2018-11236, CVE-2018-11237 

    Patches have been imported into nixpkgs and manually edited to avoid
merge conflicts on ChangeLog / NEWS files.

(cherry picked from commit 17be09a)
    @delroth
    delroth committed Oct 2, 2019
    Copy the full SHA
    2aae1c9 View commit details

Commits on Oct 12, 2019

  1. Merge branch 'release-19.03' into staging-19.03

    @vcunat
    vcunat committed Oct 12, 2019
    Copy the full SHA
    1a62ef4 View commit details

  2. curl: apply upstream security patch 

    Partially fixes #70084.  Cherry-picked from 19.09's 22b5bbf.
    @vcunat
    vcunat committed Oct 12, 2019
    Copy the full SHA
    8350d25 View commit details

Commits on Oct 13, 2019

  1. poppler_0_61: add patch for CVE-2019-9959 

    custom adapted patch to accommodate the openjpeg1/openjpeg2 split that
0.61 still has

(cherry picked from commit e6889d4)
    @risicle @vcunat
    risicle authored and vcunat committed Oct 13, 2019
    Copy the full SHA
    7240f2f View commit details

  2. Merge #70278: libtiff: patch for CVE-2019-6128, CVE-2019-14973 

    ...into staging-19.03
    @vcunat
    vcunat committed Oct 13, 2019
    Copy the full SHA
    57bd5f1 View commit details

  3. Merge #70273: gnupatch: rename patch files to match their CVE ids 

    ...into staging-19.03
    @vcunat
    vcunat committed Oct 13, 2019
    Copy the full SHA
    7585be8 View commit details

  4. Merge #70285: *gst-plugins-base: patch CVE-2019-9928 

    ...into staging-19.03
    @vcunat
    vcunat committed Oct 13, 2019
    Copy the full SHA
    139e21b View commit details

  5. poppler: add patch for CVE-2019-9959 (PR #71046) 

    (cherry picked from commit 3fa2864)
    @risicle @vcunat
    risicle authored and vcunat committed Oct 13, 2019
    Copy the full SHA
    3475116 View commit details

  6. Merge branch 'release-19.03' into staging-19.03

    @vcunat
    vcunat committed Oct 13, 2019
    Copy the full SHA
    72d36be View commit details

Commits on Oct 14, 2019

  1. Merge branch 'staging-19.03' into release-19.03 (security) 

    Only x86_64-linux has managed to finish rebuilding so far
https://hydra.nixos.org/eval/1548583
but I think that's a sufficient trade-off, given that regressions
should be very unlikely.
    @vcunat
    vcunat committed Oct 14, 2019
    Copy the full SHA
    02dbdcd View commit details

  2. wpa_supplicant: apply patch for CVE-2019-16275 [19.03] (#70268) 

    wpa_supplicant: apply patch for CVE-2019-16275 [19.03]
    @flokli
    flokli authored Oct 14, 2019
    Copy the full SHA
    25d5777 View commit details

  3. sudo: 1.8.27 -> 1.8.28 (CVE-2019-14287) 

    (cherry picked from commit 9dbc302)
    @delroth
    delroth committed Oct 14, 2019
    Copy the full SHA
    90425a7 View commit details

  4. Merge pull request #71146 from delroth/sudo-cve-19.03 

    sudo: 1.8.27 -> 1.8.28 (CVE-2019-14287) [19.03]
    @matthewbauer
    matthewbauer authored Oct 14, 2019
    Copy the full SHA
    5b6ad64 View commit details

Commits on Oct 15, 2019

  1. haskellSrc2nix 

    Since [1], cabal2nix has been able to parse full platform triples. We
need this for when the system doesn't say enough info (e.g. android).

[1]: NixOS/cabal2nix@0bb88f0#diff-d9172aeec4039eef8cfcc8a2ab6c0677R143

(cherry picked from commit 66a9f39)
    @Ericson2314
    Ericson2314 committed Oct 15, 2019
    Copy the full SHA
    81ef8bc View commit details

  2. flashplayer: add maintainer 

    (cherry picked from commit 09ef6dc)
    @taku0 @c0bw3b
    taku0 authored and c0bw3b committed Oct 15, 2019
    Copy the full SHA
    314e050 View commit details

  3. flashplayer: 32.0.0.255 -> 32.0.0.270 

    (cherry picked from commit 8948290)
    @taku0 @c0bw3b
    taku0 authored and c0bw3b committed Oct 15, 2019
    Copy the full SHA
    9d55c14 View commit details
Loading