Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Release 18.03 #49437

Closed
wants to merge 2,314 commits into from
Closed

Release 18.03 #49437

wants to merge 2,314 commits into from

Conversation

Malith97
Copy link

Motivation for this change
Things done
  • Tested using sandboxing (nix.useSandbox on NixOS, or option sandbox in nix.conf on non-NixOS)
  • Built on platform(s)
    • NixOS
    • macOS
    • other Linux distributions
  • Tested via one or more NixOS test(s) if existing and applicable for the change (look inside nixos/tests)
  • Tested compilation of all pkgs that depend on this change using nix-shell -p nox --run "nox-review wip"
  • Tested execution of all binary files (usually in ./result/bin/)
  • Determined the impact on package closure size (by running nix path-info -S before and after)
  • Fits CONTRIBUTING.md.

andir and others added 30 commits August 16, 2018 10:43
@andir
Merge pull request #45094 from andir/18.03/libmspack
6589dae 
[18.03] libmspack: 0.6alpha -> 0.7.1alpha
@andir
qemu: 2.11.1 -> 2.11.2
e2a633c 
This is a bugfix release that also allows (more) Spectre migitations.
In particular for CVE-2018-3639 (Spectre v4).
CVE-2018-7550 is also addressed,
@andir
postgresql100: 10.4 -> 10.5
520b2cd 
Fixes CVE-2018-10915 & CVE-2018-10925

Release notes: https://www.postgresql.org/docs/current/static/release-10-5.html

(cherry picked from commit 1c4fc1d)
@andir
postgresql96: 9.6.9 -> 9.6.10
6afac1b 
Fixes CVE-2018-10915 & CVE-2018-10925

Release notes: https://www.postgresql.org/docs/current/static/release-9-6-10.html

(cherry picked from commit 94c3589)
@andir
postgresql95: 9.5.13 -> 9.5.14
050f59c 
Fixes CVE-2018-10915 & CVE-2018-10925

Release notes: https://www.postgresql.org/docs/current/static/release-9-5-14.html

(cherry picked from commit 98d8db4)
@andir
postgresql94: 9.4.18 -> 9.4.19
e2eda22 
Fixes CVE-2018-10915 & CVE-2018-10925

Release notes: https://www.postgresql.org/docs/current/static/release-9-4-19.html

(cherry picked from commit 2abb00e)
@andir
postgresql93: 9.3.23 -> 9.3.24
cddb625 
Fixes CVE-2018-10915 & CVE-2018-10925

Release notes: https://www.postgresql.org/docs/current/static/release-9-3-24.html

(cherry picked from commit 5de601e)
@bjornfor
lighttpd: 1.4.49 -> 1.4.50
7d829c1 
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/lighttpd/versions.

(cherry picked from commit 6e1d3cb)

Fix trivial conflict from commit 57bccb3
("treewide: http -> https sources (#42676)") on master branch.
@vcunat
tor: doCheck = false; for the moment
72a96e6
@vcunat
Merge branch 'staging-18.03' into release-18.03
cd0cd94 
A few security fixes.
@andir
Merge pull request #45136 from andir/18.03/qemu
b3432db 
[18.03] qemu: 2.11.1 -> 2.11.2
@vcunat
knot-dns: 2.6.8 -> 2.6.9 (maintenance)
513c521 
https://lists.nic.cz/pipermail/knot-dns-users/2018-August/001442.html
Nixpkgs master will be getting 2.7.1 instead.
@andir
gnome3.gdm: fix CVE-2018-14424
082265f 
This backports the changes done in the 2.28 branch of gdm to address the
issue.
@andir
Merge pull request #45208 from andir/18.03/gdm
4af590e 
[18.03] gnome3.gdm: fix CVE-2018-14424
@vcunat
Merge #45147 into staging-18.03: postgresql security
549d76c
@andir @vcunat
mariadb: 10.2.13 -> 10.2.17
8a804f7 
Bump to latest stable version of the 10.2.x branch. Besides many bug fixes the
following security related issues have been fixed:
 - CVE-2018-3060
 - CVE-2018-3064
 - CVE-2018-3063
 - CVE-2018-3058
 - CVE-2018-3066
 (probably more from before 10.2.16)

Release notes: https://mariadb.com/kb/en/library/mariadb-10217-release-notes/

(cherry picked from commit 6c3d99c7645f7c7f8331c1c7ff7453bfaeb21cc2)
@vcunat
Merge #40007: mariadb: Fix mariadb_config include path
67f6e17 
(cherry picked from commit 89bed5b)
@vcunat
tor: re-enable all test (except a broken one)
5d28c48
@kalbasit @Mic92
flash: 30.0.0.134 -> 30.0.0.154
6699933
@vcunat
Merge branch 'staging-18.03' into release-18.03
a4e068f 
mariadb and postgresql security updates.
@dtzWill @vcunat
libgit2: 0.26.0 -> 0.26.6 (security, fixes)
cfef8f5 
Don't know that there's a reason to keep the patch level
fixed at 0, optimistically bumping to latest (6).

(cherry picked from commit 8c78eee)
@etu @xeji
php71: 7.1.20 -> 7.1.21 (#45297)
bdd98ff 
Changelog: https://secure.php.net/ChangeLog-7.php#7.1.21
@dezgeg
nixos/qemu-vm: Always add a virtio RNG device to the quest
7fc7886 
mke2fs has this annoying property that it uses getrandom() to get random
numbers (for whatever purposes) which blocks until the kernel's secure
RNG has sufficient entropy, which it usually doesn't in the early boot
(except if your CPU supports RDRAND) where we may need to create the
root disk.

So let's give the VM a virtio RNG to avoid the boot getting stuck at
mke2fs.

(cherry picked from commit dda74d9)
@kalbasit @NeQuissimus
linux: 4.4.148 -> 4.4.149
bb4e3dc 
(cherry picked from commit 928bc3f)
@kalbasit @NeQuissimus
linux: 4.9.120 -> 4.9.121
c629f4c 
(cherry picked from commit 80448a4)
@kalbasit @NeQuissimus
linux: 4.14.63 -> 4.14.64
01a10ec 
(cherry picked from commit bad288c)
@kalbasit @NeQuissimus
linux: 4.17.15 -> 4.17.16
6ce5555 
(cherry picked from commit 2366de6)
@eadwu @NeQuissimus
linux: 4.14.64 -> 4.14.65
9918d59 
(cherry picked from commit 2c76bd1)
@eadwu @NeQuissimus
linux: 4.17.16 -> 4.17.17
1001739 
(cherry picked from commit c954c98)
@eadwu @NeQuissimus
linux: 4.4.149 -> 4.4.150
cc5c656 
(cherry picked from commit bd9a400)
@dywedir dywedir closed this Oct 30, 2018
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
2.status: invalid
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet