Skip to content
This repository has been archived by the owner on Apr 12, 2021. It is now read-only.
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: NixOS/nixpkgs-channels
base: 19fc6daa5371
Choose a base ref
...
head repository: NixOS/nixpkgs-channels
compare: 0e614d029230
Choose a head ref
  • 8 commits
  • 7 files changed
  • 5 contributors

Commits on Nov 1, 2018

  1. icecast: 2.4.3 -> 2.4.4 

    Fixes CVE-2018-18820.

(cherry picked from commit 24d6c0d)
    @fpletz
    fpletz committed Nov 1, 2018
    Copy the full SHA
    faaf1c2 View commit details
    Browse the repository at this point in the history

  2. tomcat_connectors: 1.2.41-dev-1613051 -> 1.2.46 

    Fixes CVE-2018-11759, CVE-2018-1323, CVE-2016-6808.

(cherry picked from commit 9fe0e57)
    @fpletz
    fpletz committed Nov 1, 2018
    Copy the full SHA
    e87ace4 View commit details
    Browse the repository at this point in the history

Commits on Nov 2, 2018

  1. teeworlds: 0.6.4 -> 0.6.5 

    This release adds support for building with cmake!
So switch to that eagerly instead of fighting with bam.

(if nothing else cmake is the devil we know...)

Also:

* fixup 'DATA_DIR' so programs can find resources
  (without need for wrappers)
* install readme+license as previously done ("docs")
* don't install tools since not built or installed by default
  * esp since doesn't appear to have non-adhoc method for installation
  * other distros don't seem to include

(cherry picked from commit 18258ba)

Fixes CVE-2018-18541.
    @dtzWill @fpletz
    dtzWill authored and fpletz committed Nov 2, 2018
    Copy the full SHA
    ffe50cd View commit details
    Browse the repository at this point in the history

  2. wireshark: 2.4.9 -> 2.4.10 

    Security release: https://www.wireshark.org/docs/relnotes/wireshark-2.4.10.html
    @fpletz
    fpletz committed Nov 2, 2018
    Copy the full SHA
    5ce0b90 View commit details
    Browse the repository at this point in the history

  3. strongswan: patch CVE-2018-16151 & CVE-2018-16152 

    (cherry picked from commit f71cc5f)
    @fpletz
    fpletz committed Nov 2, 2018
    Copy the full SHA
    47d6c44 View commit details
    Browse the repository at this point in the history

  4. ntp: add license 

    (cherry picked from commit 6aba5e2)
    @markuskowa @fpletz
    markuskowa authored and fpletz committed Nov 2, 2018
    Copy the full SHA
    da9b960 View commit details
    Browse the repository at this point in the history

  5. ntp: 4.2.8p11 -> 4.2.8p12 (#45180) 

    Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/ntp/versions.

(cherry picked from commit 2524ad6)
    @r-ryantm @fpletz
    r-ryantm authored and fpletz committed Nov 2, 2018
    Copy the full SHA
    036164b View commit details
    Browse the repository at this point in the history

  6. libssh: 0.7.5 -> 0.7.6 

    Fixes CVE-2018-10933:

libssh versions 0.6 and above have an authentication bypass
vulnerability in the server code. By presenting the server an
SSH2_MSG_USERAUTH_SUCCESS message in place of the
SSH2_MSG_USERAUTH_REQUEST message which the server would expect to
initiate authentication, the attacker could successfully authentciate
without any credentials.

Source:
https://www.libssh.org/2018/10/16/libssh-0-8-4-and-0-7-6-security-and-bugfix-release/
(cherry picked from commit eca4628)
    @lheckemann @fpletz
    lheckemann authored and fpletz committed Nov 2, 2018
    Copy the full SHA
    0e614d0 View commit details
    Browse the repository at this point in the history