Skip to content
This repository has been archived by the owner on Apr 12, 2021. It is now read-only.
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: NixOS/nixpkgs-channels
base: c1ef96ebdbd1
Choose a base ref
...
head repository: NixOS/nixpkgs-channels
compare: cd0cd946f37c
Choose a head ref
  • 12 commits
  • 5 files changed
  • 4 contributors

Commits on Aug 10, 2018

  1. Merge branch 'release-18.03' into staging-18.03

    @vcunat
    vcunat committed Aug 10, 2018
    Configuration menu
    Copy the full SHA
    2906af5 View commit details
    Browse the repository at this point in the history

  2. libtiff: update url to patch file (#44815) 

    (cherry picked from commit 527d3d5)
Additionally fixes CVE-2018-8905 and CVE-2018-10963.
    @Izorkin @vcunat
    Izorkin authored and vcunat committed Aug 10, 2018
    Configuration menu
    Copy the full SHA
    03eebd7 View commit details
    Browse the repository at this point in the history

Commits on Aug 15, 2018

  1. openssl_1_0_2: 1.0.2o -> 1.0.2p 

    this addresses:
 - Client DoS due to large DH parameter (CVE-2018-0732)
 - Cache timing vulnerability in RSA Key Generation (CVE-2018-0737)

Changelog: https://www.openssl.org/news/cl102.txt
(cherry picked from commit 98a7b92)
    @andir
    andir committed Aug 15, 2018
    Configuration menu
    Copy the full SHA
    0353772 View commit details
    Browse the repository at this point in the history

  2. openssl_1_1_0: 1.1.0h -> 1.1.0i 

    this addresses:
 - Client DoS due to large DH parameter (CVE-2018-0732)
 - Cache timing vulnerability in RSA Key Generation (CVE-2018-0737)

Changelog: https://www.openssl.org/news/changelog.html#x1
(cherry picked from commit 0a40875)
    @andir
    andir committed Aug 15, 2018
    Configuration menu
    Copy the full SHA
    70328c5 View commit details
    Browse the repository at this point in the history

  3. Merge branch 'release-18.03' into staging-18.03

    @vcunat
    vcunat committed Aug 15, 2018
    Configuration menu
    Copy the full SHA
    3235e34 View commit details
    Browse the repository at this point in the history

  4. Merge #45082 into staging-18.03: openssl 1.0.2p & 1.1.0i

    @vcunat
    vcunat committed Aug 15, 2018
    Configuration menu
    Copy the full SHA
    1f1ca06 View commit details
    Browse the repository at this point in the history

  5. libxml2: fix CVE-2018-14567 & CVE-2018-14404 & CVE-2018-9251 

    backport of 06e7a48
    @andir
    andir committed Aug 15, 2018
    Configuration menu
    Copy the full SHA
    bf3a543 View commit details
    Browse the repository at this point in the history

Commits on Aug 16, 2018

  1. libmspack: 0.6alpha -> 0.7.1alpha 

    This adresses the following issues:

- CVE-2018-14697
- CVE-2018-14680
- CVE-2018-14681
- CVE-2018-14682

(cherry picked from commit 9e8308d)
    @andir
    andir committed Aug 16, 2018
    Configuration menu
    Copy the full SHA
    204377c View commit details
    Browse the repository at this point in the history

  2. Merge pull request #45094 from andir/18.03/libmspack 

    [18.03] libmspack: 0.6alpha -> 0.7.1alpha
    @andir
    andir committed Aug 16, 2018
    Configuration menu
    Copy the full SHA
    6589dae View commit details
    Browse the repository at this point in the history

Commits on Aug 17, 2018

  1. lighttpd: 1.4.49 -> 1.4.50 

    Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/lighttpd/versions.

(cherry picked from commit 6e1d3cb)

Fix trivial conflict from commit 57bccb3
("treewide: http -> https sources (#42676)") on master branch.
    @bjornfor
    R. RyanTM authored and bjornfor committed Aug 17, 2018
    Configuration menu
    Copy the full SHA
    7d829c1 View commit details
    Browse the repository at this point in the history

  2. tor: doCheck = false; for the moment

    @vcunat
    vcunat committed Aug 17, 2018
    Configuration menu
    Copy the full SHA
    72a96e6 View commit details
    Browse the repository at this point in the history

  3. Merge branch 'staging-18.03' into release-18.03 

    A few security fixes.
    @vcunat
    vcunat committed Aug 17, 2018
    Configuration menu
    Copy the full SHA
    cd0cd94 View commit details
    Browse the repository at this point in the history