Skip to content
This repository has been archived by the owner on Apr 12, 2021. It is now read-only.
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: NixOS/nixpkgs-channels
base: 147bd882fc66
Choose a base ref
...
head repository: NixOS/nixpkgs-channels
compare: d53420e3302f
Choose a head ref
  • 16 commits
  • 8 files changed
  • 9 contributors

Commits on Aug 29, 2019

  1. dovecot: 2.3.5.2 -> 2.3.6 

    fixes CVE-2019-11494 and CVE-2019-11499
https://dovecot.org/pipermail/dovecot-news/2019-April/000408.html

(cherry picked from commit 427dfad)
    @tokudan
    Robert Schütz authored and tokudan committed Aug 29, 2019
    Copy the full SHA
    118370d View commit details
    Browse the repository at this point in the history

  2. dovecot: 2.3.6 -> 2.3.7 

    Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/dovecot/versions

(cherry picked from commit 5eb5740)
    @r-ryantm @tokudan
    r-ryantm authored and tokudan committed Aug 29, 2019
    Copy the full SHA
    85a60c4 View commit details
    Browse the repository at this point in the history

  3. dovecot: 2.3.7 > 2.3.7.1 

    (cherry picked from commit e217309)
    @Izorkin @tokudan
    Izorkin authored and tokudan committed Aug 29, 2019
    Copy the full SHA
    be0fe08 View commit details
    Browse the repository at this point in the history

  4. dovecot: 2.3.7.1 -> 2.3.7.2 (CVE-2019-11500) 

    (cherry picked from commit d7582c9)
    @tokudan
    tokudan committed Aug 29, 2019
    Copy the full SHA
    bfdac93 View commit details
    Browse the repository at this point in the history

  5. dovecot: remove cve patches, as the latest released version includes … 

    …them all
    @tokudan
    tokudan committed Aug 29, 2019
    Copy the full SHA
    c246d3e View commit details
    Browse the repository at this point in the history

  6. kea: 1.5.0 -> 1.5.0-P1 (security) 

    Fixes:

* CVE-2019-6472 affects the Kea DHCPv6 server, which can exit
  with an assertion failure if the DHCPv6 server process receives
  a request containing DUID value which is too large.
  (https://kb.isc.org/docs/cve-2019-6474)

* CVE-2019-6473 affects the Kea DHCPv4 server, which can exit with
  an assertion failure if it receives a packed containing a malformed
  option.  (https://kb.isc.org/docs/cve-2019-6473)

* CVE-2019-6474 can cause a condition where the server cannot be
  restarted without manual operator intervention to correct a problem
  that can be deliberately introduced into the stored leases.
  CVE-2019-6474 can only affect servers which are using memfile
  for lease storage.  (https://kb.isc.org/docs/cve-2019-6474)

Annoucement: https://www.openwall.com/lists/oss-security/2019/08/29/1
(cherry picked from commit e6e3270)
    @andir
    andir committed Aug 29, 2019
    Copy the full SHA
    09a5674 View commit details
    Browse the repository at this point in the history

  7. dovecot_pigeonhole: 0.5.5 -> 0.5.6 

    https://dovecot.org/pipermail/dovecot-news/2019-April/000411.html
(cherry picked from commit c38b485)
    @tokudan
    Robert Schütz authored and tokudan committed Aug 29, 2019
    Copy the full SHA
    ea3989f View commit details
    Browse the repository at this point in the history

  8. dovecot_pigeonhole: 0.5.6 > 0.5.7.1 

    (cherry picked from commit 4f38967)
    @Izorkin @tokudan
    Izorkin authored and tokudan committed Aug 29, 2019
    Copy the full SHA
    5e20bbe View commit details
    Browse the repository at this point in the history

  9. dovecot-pigeonhole: 0.5.7.1 -> 0.5.7.2 (CVE-2019-11500) 

    This is a followup on #67623

(cherry picked from commit 46ff96c)
    @andir @tokudan
    andir authored and tokudan committed Aug 29, 2019
    Copy the full SHA
    c4d1c9c View commit details
    Browse the repository at this point in the history

  10. pigeonhole: remove cve patches, as the latest released version includ… 

    …es them all
    @tokudan
    tokudan committed Aug 29, 2019
    Copy the full SHA
    ef97ff2 View commit details
    Browse the repository at this point in the history

  11. Merge pull request #67698 from tokudan/1903/dovecot-major 

    [19.03] dovecot: 2.3.5.7 -> 2.3.7.2, pigeonhole: 0.5.5 -> 0.5.7.2
    @WilliButz
    WilliButz committed Aug 29, 2019
    Copy the full SHA
    95e7d97 View commit details
    Browse the repository at this point in the history

  12. grafana: 6.3.3 -> 6.3.4, update url for static source 

    (cherry picked from commit c323b0e)
    @WilliButz
    WilliButz committed Aug 29, 2019
    Copy the full SHA
    9fe8931 View commit details
    Browse the repository at this point in the history

  13. linux: 4.14.140 -> 4.14.141

    @NeQuissimus
    NeQuissimus committed Aug 29, 2019
    Copy the full SHA
    24a7d98 View commit details
    Browse the repository at this point in the history

  14. linux: 4.19.68 -> 4.19.69

    @NeQuissimus
    NeQuissimus committed Aug 29, 2019
    Copy the full SHA
    e5f84eb View commit details
    Browse the repository at this point in the history

  15. linux: 5.2.10 -> 5.2.11

    @NeQuissimus
    NeQuissimus committed Aug 29, 2019
    Copy the full SHA
    bd6ba87 View commit details
    Browse the repository at this point in the history

Commits on Aug 30, 2019

  1. Merge pull request #67674 from andir/19.03/kea 

    [19.03] kea: 1.5.0 -> 1.5.0-P1 (security)
    @mmahut
    mmahut committed Aug 30, 2019
    Copy the full SHA
    d53420e View commit details
    Browse the repository at this point in the history