Branch: refs/heads/master
Home: https://github.com/NixOS/nixpkgs
Commit: a9611a52f3f01f0366cb7c08fab45c09a64e19b7
https://github.com/NixOS/nixpkgs/commit/a9611a52f3f01f0366cb7c08fab45c09a64e19b7
Author: Graham Christensen <[email protected]>
Date: 2016-11-30 (Wed, 30 Nov 2016)
Changed paths:
M pkgs/applications/networking/instant-messengers/mcabber/default.nix
Log Message:
-----------
mcabber: 1.0.3 -> 1.0.4 for 'roster push attack'
Commit: 0707962235faaf499c47c0d24e1fec53399c4f7b
https://github.com/NixOS/nixpkgs/commit/0707962235faaf499c47c0d24e1fec53399c4f7b
Author: Graham Christensen <[email protected]>
Date: 2016-11-30 (Wed, 30 Nov 2016)
Changed paths:
M pkgs/development/interpreters/mujs/default.nix
Log Message:
-----------
mujs: 2016-09-21 -> 2016-11-30 for multiple CVEs
- CVE-2016-7504
- CVE-2016-7505
- CVE-2016-7506
- CVE-2016-9017
- CVE-2016-9108
- CVE-2016-9109
- CVE-2016-9294
See more information: https://lwn.net/Vulnerabilities/707361/
Commit: 7d09138caec41f53fa34dce47c56436283dd9a40
https://github.com/NixOS/nixpkgs/commit/7d09138caec41f53fa34dce47c56436283dd9a40
Author: Graham Christensen <[email protected]>
Date: 2016-11-30 (Wed, 30 Nov 2016)
Changed paths:
M pkgs/development/perl-modules/DBD-mysql/default.nix
Log Message:
-----------
perlPackages.DBDmysql: 4.033 -> 4.039
Commit: 0cff959e790c5ee6612cbba44d709aa3e71f6c16
https://github.com/NixOS/nixpkgs/commit/0cff959e790c5ee6612cbba44d709aa3e71f6c16
Author: Graham Christensen <[email protected]>
Date: 2016-11-30 (Wed, 30 Nov 2016)
Changed paths:
M pkgs/development/perl-modules/maatkit/default.nix
Log Message:
-----------
maatkit: update URL
Commit: eba91fa2bdc130da4ca35a2f60b9d30d90d284f9
https://github.com/NixOS/nixpkgs/commit/eba91fa2bdc130da4ca35a2f60b9d30d90d284f9
Author: Graham Christensen <[email protected]>
Date: 2016-11-30 (Wed, 30 Nov 2016)
Changed paths:
M pkgs/servers/http/tomcat/default.nix
Log Message:
-----------
tomcat6: 6.0.45 -> 6.0.48
For CVE-2016-8735, a remote code execution vulnerability.
Commit: 3d0310daf383efb0357e483a082cafcf43d45ae1
https://github.com/NixOS/nixpkgs/commit/3d0310daf383efb0357e483a082cafcf43d45ae1
Author: Graham Christensen <[email protected]>
Date: 2016-11-30 (Wed, 30 Nov 2016)
Changed paths:
M pkgs/servers/http/tomcat/default.nix
Log Message:
-----------
tomcat7: 7.0.72 -> 7.0.73
For CVE-2016-8735, a remote code execution vulnerability.
Commit: 80a475042c4be3bb564a4a2d609a9f66ae906574
https://github.com/NixOS/nixpkgs/commit/80a475042c4be3bb564a4a2d609a9f66ae906574
Author: Graham Christensen <[email protected]>
Date: 2016-11-30 (Wed, 30 Nov 2016)
Changed paths:
M pkgs/servers/http/tomcat/default.nix
Log Message:
-----------
tomcat8: 8.0.37 -> 8.0.39
For CVE-2016-8735, a remote code execution vulnerability.
Commit: 42f1ae1911421e5fa886432aae38a52a6b343490
https://github.com/NixOS/nixpkgs/commit/42f1ae1911421e5fa886432aae38a52a6b343490
Author: Graham Christensen <[email protected]>
Date: 2016-11-30 (Wed, 30 Nov 2016)
Changed paths:
M pkgs/servers/http/tomcat/default.nix
Log Message:
-----------
tomcat85: 8.5.5 -> 8.5.8
For CVE-2016-8735, a remote code execution vulnerability.
Commit: 5f789809736002bd973f9e98685366249222de58
https://github.com/NixOS/nixpkgs/commit/5f789809736002bd973f9e98685366249222de58
Author: Graham Christensen <[email protected]>
Date: 2016-11-30 (Wed, 30 Nov 2016)
Changed paths:
M pkgs/servers/http/tomcat/default.nix
Log Message:
-----------
tomcatUnstable: 9.0.0.M10 -> 9.0.0.M13
For CVE-2016-8735, a remote code execution vulnerability.
Commit: 9c71508c95482139f3fb1fef2cc5f3cb20600ad5
https://github.com/NixOS/nixpkgs/commit/9c71508c95482139f3fb1fef2cc5f3cb20600ad5
Author: Graham Christensen <[email protected]>
Date: 2016-11-30 (Wed, 30 Nov 2016)
Changed paths:
A pkgs/tools/compression/bzip2/CVE-2016-3189.patch
M pkgs/tools/compression/bzip2/default.nix
Log Message:
-----------
bzip2: patch for CVE-2016-3189
Commit: 892a9b1f0faf9553234784f5569a883c6f4f34ce
https://github.com/NixOS/nixpkgs/commit/892a9b1f0faf9553234784f5569a883c6f4f34ce
Author: Graham Christensen <[email protected]>
Date: 2016-11-30 (Wed, 30 Nov 2016)
Changed paths:
M pkgs/development/libraries/icu/54.1.nix
M pkgs/development/libraries/icu/default.nix
Log Message:
-----------
icu: patch for multiple CVEs
- CVE-2014-6585
- CVE-2015-4760
- CVE-2016-0494
- CVE-2016-6293
- CVE-2016-7415
Commit: 6393ca650eb9ef5f045905600c4256a0d0bf20b7
https://github.com/NixOS/nixpkgs/commit/6393ca650eb9ef5f045905600c4256a0d0bf20b7
Author: Graham Christensen <[email protected]>
Date: 2016-11-30 (Wed, 30 Nov 2016)
Changed paths:
R pkgs/tools/compression/bzip2/CVE-2016-3189.patch
M pkgs/tools/compression/bzip2/default.nix
Log Message:
-----------
Revert "bzip2: patch for CVE-2016-3189"
This reverts commit 9c71508c95482139f3fb1fef2cc5f3cb20600ad5.
Commit: c97fda0bcf925426a6d57d300deca4da2feedaa2
https://github.com/NixOS/nixpkgs/commit/c97fda0bcf925426a6d57d300deca4da2feedaa2
Author: Graham Christensen <[email protected]>
Date: 2016-11-30 (Wed, 30 Nov 2016)
Changed paths:
M pkgs/development/libraries/icu/54.1.nix
M pkgs/development/libraries/icu/default.nix
Log Message:
-----------
Revert "icu: patch for multiple CVEs"
This reverts commit 892a9b1f0faf9553234784f5569a883c6f4f34ce.
Commit: 7e40e89273df9ed15dc563401cd7c1343bcd0188
https://github.com/NixOS/nixpkgs/commit/7e40e89273df9ed15dc563401cd7c1343bcd0188
Author: Graham Christensen <[email protected]>
Date: 2016-11-30 (Wed, 30 Nov 2016)
Changed paths:
M pkgs/servers/rpcbind/default.nix
Log Message:
-----------
rpcbind: patch for CVE-2015-7236
Commit: 16995fc57bbf0147b4b43d467f03dfeb4cb877a7
https://github.com/NixOS/nixpkgs/commit/16995fc57bbf0147b4b43d467f03dfeb4cb877a7
Author: Graham Christensen <[email protected]>
Date: 2016-11-30 (Wed, 30 Nov 2016)
Changed paths:
M pkgs/development/libraries/boehm-gc/default.nix
Log Message:
-----------
boehmgc: 7.2f -> 7.2g
Commit: 96393560d0072696ca4720d859ef6f7abf3b94ae
https://github.com/NixOS/nixpkgs/commit/96393560d0072696ca4720d859ef6f7abf3b94ae
Author: Graham Christensen <[email protected]>
Date: 2016-11-30 (Wed, 30 Nov 2016)
Changed paths:
M pkgs/applications/networking/instant-messengers/mcabber/default.nix
M pkgs/development/interpreters/mujs/default.nix
M pkgs/development/libraries/boehm-gc/default.nix
M pkgs/development/perl-modules/DBD-mysql/default.nix
M pkgs/development/perl-modules/maatkit/default.nix
M pkgs/servers/http/tomcat/default.nix
M pkgs/servers/rpcbind/default.nix
Log Message:
-----------
Merge pull request #20816 from grahamc/vulnerability-rollup-10
Vulnerability rollup 11 (WIP)
Compare: https://github.com/NixOS/nixpkgs/compare/855b799ec9bc...96393560d007_______________________________________________
nix-commits mailing list
[email protected]
http://lists.science.uu.nl/mailman/listinfo/nix-commits
