Comparing changes

... into release-19.03

..into release-19.03

Semi-automatic update generated by https://github.com/ryantm/nixpkgs-update tools. This update was made based on information from https://repology.org/metapackage/grpc/versions (cherry picked from commit 64bf8ff)

(cherry picked from commit 38b0717)

(cherry picked from commit 93d61e5)

(cherry picked from commit 05f7301)

Semi-automatic update generated by https://github.com/ryantm/nixpkgs-update tools. This update was made based on information from https://repology.org/metapackage/python3.7-django/versions (cherry picked from commit 9b98d40)

CVE-2019-11477 CVE-2019-11478 CVE-2019-11479 (cherry picked from commit 4810809)

CVE-2019-11477 CVE-2019-11478 CVE-2019-11479 (cherry picked from commit 9ccdf3c)

CVE-2019-11477 CVE-2019-11478 CVE-2019-11479 (cherry picked from commit 84de6ae)

CVE-2019-11477 CVE-2019-11478 CVE-2019-11479 (cherry picked from commit d5bf0ae)

CVE-2019-11477 CVE-2019-11478 CVE-2019-11479 (cherry picked from commit 73e0f13)

Before this it didn't find the correct files. Unfortunately, the interactive parts of sage are hard to test automatically. (cherry picked from commit f2f26ac624fc9872c938f5a708ceae94cbebfb75)

(cherry picked from commit adfcb01)

(cherry picked from commit ad6dad6)

CVE-2019-11707 (cherry picked from commit 994a67d)

CVE-2019-11707 (cherry picked from commit 95da818)

CVE-2019-11707 (cherry picked from commit dad5e84)

CVE-2019-11707 (cherry picked from commit 087c619)

CVE-2019-11707 (cherry picked from commit 0ca0284)

(cherry picked from commit d48e8f6)

[19.03] chromium: 75.0.3770.80 -> 75.0.3770.90 (backport)

CVE-2019-12447: daemon/gvfsbackendadmin.c mishandles file ownership because setfsuid is not used. CVE-2019-12448: daemon/gvfsbackendadmin.c has race conditions because the admin backend doesn't implement query_info_on_read/write. CVE-2019-12449: daemon/gvfsbackendadmin.c mishandles a file's user and group ownership during move (and copy with G_FILE_COPY_ALL_METADATA) operations from admin:// to file:// URIs, because root privileges are unavailable. Upstream MR: https://gitlab.gnome.org/GNOME/gvfs/merge_requests/48 Closes #63067

Vulnerability Description: daemon/gvfsdaemon.c in gvfsd from GNOME gvfs before 1.38.3, 1.40.x before 1.40.2, and 1.41.x before 1.41.3 opened a private D-Bus server socket without configuring an authorization rule. A local attacker could connect to this server socket and issue D-Bus method calls. Note that the server socket only accepts a single connection, so the attacker would have to discover the server and connect to the socket before its owner does. Closes #63301

[19.03] gvfs: security fixes

(cherry picked from commit 2458209)

See https://www.djangoproject.com/weblog/2019/jun/03/security-releases/ (cherry picked from commit 1a3e334)

See https://docs.djangoproject.com/en/2.2/releases/2.1.8/ for release information (cherry picked from commit 952d983) Signed-off-by: Lancelot SIX <lsix@lancelotsix.com>

See https://www.djangoproject.com/weblog/2019/jun/03/security-releases/ (cherry picked from commit 13859d3) Signed-off-by: Lancelot SIX <lsix@lancelotsix.com>

NixOS/nixpkgs#62736 (comment) (cherry picked from commit 2d78d92)

(cherry picked from commit 9955657)

There has been a new major version, so it seems good to upgrade. I had to drop two plugins: - `asciidoctor-latex` seems dead, and hasn't had any commits since 2015. - `asciidoctor-bespoke` also hasn't been updated for over a year, and doesn't seem to be compatible with the new version. (cherry picked from commit 3d1e0da)

sage: fix threejs r105 [19.03]

On Darwin we can benefit from FSEvents API (that fswatch supports) in order to have better monitoring of file system changes. (cherry picked from commit a0bbe1a)

(backport) asciidoctor: 1.5.7.1 -> 2.0.10

(backport) fswatch: Enable FSEvents API on Darwin

CVE-2019-6471

bind: 9.12.4-P1 -> 9.12.4-P2 (CVE-2019-6471)

CVE-2019-11708 (cherry picked from commit 5f69dc4)

CVE-2019-11708 (cherry picked from commit 2e8da9d)

CVE-2019-11708 (cherry picked from commit 658d00e)

CVE-2019-11708 (cherry picked from commit 0364a89)

Commits on Jun 14, 2019

chromium: 75.0.3770.80 -> 75.0.3770.90

ivan committed Jun 14, 2019

View commit details

Copy full SHA for 640c50b

Browse repository at this point

640c50b

-Original file line number
+Diff line change
@@ -1,18 +1,18 @@
     # This file is autogenerated from update.sh in the same directory.
     {
       beta = {
-        sha256 = "1mk6gb3iif8i6zq41wjn3lhqqlqp1syzpav1nj0170l7v348p0ns";
-        sha256bin64 = "02zq7gy51nclfh8806yqv4713cpb4yamy0h7x1zgcd2rxvqm4v53";
-        version = "75.0.3770.80";
+        sha256 = "0pq7q7plbmfg2f6m74wl2l19k15ik2mvw56bfzk4c9cdns8w6b8a";
+        sha256bin64 = "09zf3kldvi8zh7arvl94vjmbvgsghwa51b5j0ic8ncdn880dlq0j";
+        version = "76.0.3809.25";
       };
       dev = {
-        sha256 = "0h0dbmk8l45c61g8iiylfnw45rqyqwc40brphwksi6gsvwn2yw8h";
-        sha256bin64 = "0vrwsllnrcgdvsflncqhwyfbjiqcj0n3mxyyyalr8arvkpz5r5ai";
-        version = "76.0.3806.1";
+        sha256 = "19v1i4ks5rpwdcwmfj8qqni4afyhnddb5hbbisabnjif3b8xrvjw";
+        sha256bin64 = "0vsbxvqidrvw797h0and67pdb4maijsiv6jkpj3kqaxakiwnadxj";
+        version = "76.0.3809.21";
       };
       stable = {
-        sha256 = "1mk6gb3iif8i6zq41wjn3lhqqlqp1syzpav1nj0170l7v348p0ns";
-        sha256bin64 = "03agz2bl22cmwgdcni8lbzjrwpikg5caimh8ynmhnpy7q9r3zy2w";
-        version = "75.0.3770.80";
+        sha256 = "0f9qjhxvk8sajj7qa061crfmln65q7sniylrgp0qijwyw6xrmddi";
+        sha256bin64 = "1xvqfrq119iwgvd2d4z2v2ladi2kl52kji55yxdmyi377dpk5rfa";
+        version = "75.0.3770.90";
       };
     }

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Comparing changes

Open a pull request

Commits on Jun 14, 2019

Commits on Jun 16, 2019

Commits on Jun 17, 2019

Commits on Jun 18, 2019

Commits on Jun 19, 2019

Commits on Jun 20, 2019

There are no files selected for viewing