Skip to content
This repository was archived by the owner on Apr 12, 2021. It is now read-only.
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: NixOS/nixpkgs-channels
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: 08e503bac6de
Choose a base ref
...
head repository: NixOS/nixpkgs-channels
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: 4ad6f1404a8c
Choose a head ref
  • 20 commits
  • 19 files changed
  • 15 contributors

Commits on Oct 26, 2019

  1. libpcap: 1.9.0 -> 1.9.1 (security!) 

    http://www.tcpdump.org/libpcap-changes.txt

> Five CVE-2019-15161, CVE-2019-15162, CVE-2019-15163, CVE-2019-15164, CVE-2019-15165
> Fixes for CVE-2018-16301,

Drop the included patch as well.

(cherry picked from commit 4db088d)
    @dtzWill @risicle
    dtzWill authored and risicle committed Oct 26, 2019
    Copy the full SHA
    ae7bd2b View commit details

  2. tcpdump: 4.9.2 -> 4.9.3 (security!) 

    So many CVE's, see:

http://www.tcpdump.org/tcpdump-changes.txt
(cherry picked from commit dd42253)
    @dtzWill @risicle
    dtzWill authored and risicle committed Oct 26, 2019
    Copy the full SHA
    6e02204 View commit details

Commits on Nov 11, 2019

  1. libxslt: add patch for CVE-2019-18197

    @risicle
    risicle committed Nov 11, 2019
    Copy the full SHA
    87acfb3 View commit details

Commits on Nov 13, 2019

  1. Merge pull request #73245 from risicle/ris-libxslt-CVE-2019-18197-r19.09 

    [r19.09] libxslt: add patch for CVE-2019-18197
    @flokli
    flokli authored Nov 13, 2019
    Copy the full SHA
    bf802b9 View commit details

Commits on Nov 14, 2019

  1. Merge branch 'release-19.09' into staging-19.09

    @vcunat
    vcunat committed Nov 14, 2019
    Copy the full SHA
    d5e9573 View commit details

Commits on Nov 15, 2019

  1. Merge pull request #72028 from risicle/ris-tcpdump-4.9.3-r19.09 

    [19.09] libpcap: 1.9.0 -> 1.9.1, tcpdump: 4.9.2 -> 4.9.3 for many security fixes
    Christian Kauhaus authored Nov 15, 2019
    Copy the full SHA
    e1cc8ff View commit details

Commits on Nov 19, 2019

  1. ilmbase-2.3.0: CVE-2018-18443, openexr: CVE-2018-18444 

    (cherry picked from commit 448d8e04c0bb0d0ced6c8f3ff2603f27e9d827db)
(cherry picked from commit f58ba3c14a042c608f40cd48c76c74b40e4088ac)
    Christian Kauhaus committed Nov 19, 2019
    Copy the full SHA
    725a454 View commit details

Commits on Nov 20, 2019

  1. nixos/manual: reword installation section 

    Sounded a bit unprofessional and pessimistic. Was actually called out on
twitter.

(cherry picked from commit 8446257)
    @globin @lheckemann
    globin authored and lheckemann committed Nov 20, 2019
    Copy the full SHA
    c738f98 View commit details

  2. chromium: 78.0.3904.97 -> 78.0.3904.108 

    CVE-2019-13723 CVE-2019-13724

https://chromereleases.googleblog.com/2019/11/stable-channel-update-for-desktop_18.html

(cherry picked from commit 0c8fc2e)
    @ivan @bendlas
    ivan authored and bendlas committed Nov 20, 2019
    Copy the full SHA
    388810a View commit details

  3. Merge #45957: nixos manual: releases workflow improvements 

    Let's merge NOW; I'm not doing the same mistake again.

(cherry picked from commit e32d557)
    @vcunat
    vcunat committed Nov 20, 2019
    Copy the full SHA
    cc8e523 View commit details

  4. hedgewars: 1.0.0-beta2 -> 1.0.0 

    (cherry picked from commit 4de1877)

Fixes #73829.
    @rardiol @fpletz
    rardiol authored and fpletz committed Nov 20, 2019
    Copy the full SHA
    9ed3234 View commit details

Commits on Nov 21, 2019

  1. darwin.CF: workaround intermittent CFRuntime.c failures 

    Based on testing this issue seems to only occur with clang_7, so
we should be able to revert this when the default llvm versions are
updated.

Fixes #66811

(cherry picked from commit 41ca861)
    @LnL7 @FRidh
    LnL7 authored and FRidh committed Nov 21, 2019
    Copy the full SHA
    6783219 View commit details

  2. Merge release-19.09 into staging-19.09

    @FRidh
    FRidh committed Nov 21, 2019
    Copy the full SHA
    d58f553 View commit details

  3. nixos/qt5: use correct qtstyleplugins attribute 

    (cherry picked from commit 61cd421)
    @worldofpeace
    IDF31 authored and worldofpeace committed Nov 21, 2019
    Copy the full SHA
    bef194f View commit details

  4. nixpart0: is not broken

    @domenkozar
    domenkozar committed Nov 21, 2019
    Copy the full SHA
    1be338c View commit details

  5. libmad: fix three CVE from 2017 

    * add patch for CVE-2017-8372 and CVE-2017-8373
* add patch for CVE-2017-8374
* add patch for x86_64 platforms
* fetch existing patches from remote sources

Backport of #73234
(cherry picked from commit 92edb06)
    @c0bw3b
    c0bw3b committed Nov 21, 2019
    Copy the full SHA
    b51f069 View commit details

  6. mpg321: fix CVE-2018-7263 

    Close #57154
Close #70105

Backport of #73234
(cherry picked from commit 1289606)
    @c0bw3b
    c0bw3b committed Nov 21, 2019
    Copy the full SHA
    c5c326e View commit details

Commits on Nov 22, 2019

  1. Merge staging-19.09 into release-19.09

    @FRidh
    FRidh committed Nov 22, 2019
    Copy the full SHA
    8b5aa55 View commit details

  2. xpdf: 4.00 -> 4.02 

    (cherry picked from commit fb8eaec)
    @sikmir @worldofpeace
    sikmir authored and worldofpeace committed Nov 22, 2019
    Copy the full SHA
    3dd7ed3 View commit details

  3. codimd: fix build 

    This package broke during the update of `nodejs-10_x` to `v10.17.0`[1]
since `node-gyp` got updated from `3.8.0` to `5.0.3` during the NPM
update to `6.10.2`[2] which is bundled in the `nodejs` release tarball.

This `node-gyp`-version is used by the build script for `codimd` to
build several dependencies such as `node-sqlite3`. Older `node-gyp`
versions expected source headers for the compilation in `~/.node-gyp`,
with `node-gyp@5.0.3`, headers are declared by using the `--nodedir`
option.

[1] 7785f49
[2] nodejs/node@e2291cf

(cherry picked from commit ba307dd)
    @Ma27
    Ma27 committed Nov 22, 2019
    Copy the full SHA
    4ad6f14 View commit details
Loading