Skip to content
This repository was archived by the owner on Apr 12, 2021. It is now read-only.
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: NixOS/nixpkgs-channels
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: bca2ee28db44
Choose a base ref
...
head repository: NixOS/nixpkgs-channels
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: 967e40787c5c
Choose a head ref
  • 11 commits
  • 8 files changed
  • 10 contributors

Commits on Apr 24, 2018

  1. libjpeg: 1.5.2 -> 1.5.3 

    Update is supposed to fix CVE-2017-15232.
    Christian Kauhaus committed Apr 24, 2018
    Copy the full SHA
    9c0c12f View commit details

  2. Merge pull request #39406 from ckauhaus/38996-libjpeg-turbo-cve 

    libjpeg: 1.5.2 -> 1.5.3
    @adisbladis
    adisbladis authored Apr 24, 2018
    Copy the full SHA
    159b63a View commit details

Commits on Apr 25, 2018

  1. Fix root volume resizing on EC2 KVM instances (M5, C5, etc) (#39488) 

    (cherry picked from commit 3a47c7e)
    @ngortheone @Mic92
    ngortheone authored and Mic92 committed Apr 25, 2018
    Copy the full SHA
    7aee0da View commit details

Commits on Apr 28, 2018

  1. quassel: 0.12.4 fix RCE & DOS 

    It was found that Quassel could be remotely crashed and had an
unauthenticated RCE vulnerability. The public annoucement can be found
on the oss-sec archive [1]. The added patches are supposed fix both issues.

[1] http://seclists.org/oss-sec/2018/q2/77

(cherry picked from commit 8ae91ea)
    @andir
    andir committed Apr 28, 2018
    Copy the full SHA
    f05e8d5 View commit details

  2. Merge pull request #39644 from andir/17.09/quassel-rce-dos 

    [17.09] quassel: 0.12.4 fix RCE & DOS
    @andir
    andir authored Apr 28, 2018
    Copy the full SHA
    a3a6dd7 View commit details

Commits on Apr 29, 2018

  1. slurm: Fix CVE-2018-7033

    @veprbl
    veprbl committed Apr 29, 2018
    Copy the full SHA
    1daa405 View commit details

Commits on Apr 30, 2018

  1. Merge pull request #39667 from veprbl/pr/release-17.09/CVE-2018-7033 

    [release-17.09] slurm: Fix CVE-2018-7033
    @xeji
    xeji authored Apr 30, 2018
    Copy the full SHA
    68fe8c9 View commit details

Commits on May 6, 2018

  1. utillinux: patch CVE-2018-7738 (upstream) 

    On nixpkgs master/staging we have 2.32 - that includes this patch.
https://nvd.nist.gov/vuln/detail/CVE-2018-7738 claims 2.32-rc1 fixes
this and upstream master hasn't changed umount completion except for
this patch, so it has to be it. /cc #38994.

(cherry picked from commit 7979cb5)
    @vcunat
    vcunat committed May 6, 2018
    Copy the full SHA
    b26a820 View commit details

Commits on May 7, 2018

  1. wget: 1.19.2 -> 1.19.4 

    (cherry picked from commit b4c12ee)
    @dezgeg @fpletz
    dezgeg authored and fpletz committed May 7, 2018
    Copy the full SHA
    d9176e0 View commit details

  2. wget: 1.19.4 -> 1.19.5 for CVE-2018-0494 

    (cherry picked from commit 2b499af)
    @fpletz
    fpletz committed May 7, 2018
    Copy the full SHA
    b77c5b6 View commit details

Commits on May 11, 2018

  1. tor-browser-bundle-bin: 7.5.3 -> 7.5.4 

    (cherry picked from commit b15da3e)
    @joachifm
    joachifm committed May 11, 2018
    Copy the full SHA
    967e407 View commit details
Loading