| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
| |
Security: d459c914-4100-11ed-9bc7-3065ec8fd3ec
(cherry picked from commit 877bb77cdaa2ac086e570e60d7f22fe51fbb81ae)
|
|
|
|
| |
(cherry picked from commit d62fd2d7200ae3bda310e9dd5d88cdbd71191518)
|
|
|
|
|
|
|
| |
Changes: https://github.com/nuspell/nuspell/releases/tag/v5.1.2
Reported by: GitHub (watch releases)
(cherry picked from commit 81b88a5ffaa33003ff5fe75468ae42a05936d556)
|
|
|
|
|
|
| |
Reported by: portscout!
(cherry picked from commit f1c4958f6074f8d1348c9711ba0fc4c55175642a)
|
|
|
|
|
|
|
| |
Release Notes (soon):
https://www.thunderbird.net/en-US/thunderbird/102.3.1/releasenotes/
(cherry picked from commit 8bdd8e11a5ef9adc20d39aeff5911b0bbd4ef97c)
|
|
|
|
|
|
|
| |
Release Notes (soon):
https://www.thunderbird.net/en-US/thunderbird/102.3.1/releasenotes/
(cherry picked from commit b478408ea8ee88290dbf846c2bcb28f0fe671838)
|
|
|
|
|
|
|
|
|
|
| |
MFH: 2022Q3
Security: cb902a77-3f43-11ed-9402-901b0e9408dc
Security: CVE-2022-39249
Security: CVE-2022-39250
Security: CVE-2022-39251
Security: CVE-2022-39236
(cherry picked from commit 131c9b2aa11a4d8ac93bd45b61ce3d5ff7f2812e)
|
|
|
|
| |
(cherry picked from commit a1c650fb951fa193bce474945be518f66cc14d0a)
|
|
|
|
|
|
|
|
|
|
|
|
| |
Approved by: maintainer (implicit, version bump, as per PR 258262)
MFH: 2022Q3
Security: cb902a77-3f43-11ed-9402-901b0e9408dc
Security: CVE-2022-39249
Security: CVE-2022-39250
Security: CVE-2022-39251
Security: CVE-2022-39236
(cherry picked from commit b96a95b32b51472e7bce773936637b6bf7618067)
|
|
|
|
|
|
| |
Approved by: maintainer (implicit, version bump, as per PR 258262)
(cherry picked from commit 72bf654d1894cfb712e5399eeedc009a6b98a6a3)
|
|
|
|
|
|
| |
PR: 265994
MFH: yes
(cherry picked from commit 36ab384abd0413b0e3b9ef0c8e7f994eb03d456c)
|
|
|
|
|
|
|
|
|
| |
If sphinx is installed while not requested, it gets picked up, tell
configure that it really is not here, and things blow up.
PR: 262773
MFH: yes
(cherry picked from commit 963e20c81248fad134a246950a470f2b41e6a74f)
|
|
|
|
|
| |
Security: 18529cb0-3e9c-11ed-9bc7-3065ec8fd3ec
(cherry picked from commit c080558054e014c94435ab11f399e518324abe31)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Release 2.4.9 Tue September 20 2022
Security fixes:
#629 #640 CVE-2022-40674 -- Heap use-after-free vulnerability in
function doContent. Expected impact is denial of service
or potentially arbitrary code execution.
Bug fixes:
#634 MinGW: Fix mis-compilation for -D__USE_MINGW_ANSI_STDIO=0
#614 docs: Fix documentation on effect of switch XML_DTD on
symbol visibility in doc/reference.html
Other changes:
#638 MinGW: Make fix-xmltest-log.sh drop more Wine bug output
#596 #625 Autotools: Sync CMake templates with CMake 3.22
#608 CMake: Migrate from use of CMAKE_*_POSTFIX to
dedicated variables EXPAT_*_POSTFIX to stop affecting
other projects
#597 #599 Windows|CMake: Add missing -DXML_STATIC to test runners
and fuzzers
#512 #621 Windows|CMake: Render .def file from a template to fix
linking with -DEXPAT_DTD=OFF and/or -DEXPAT_ATTR_INFO=ON
#611 #621 MinGW|CMake: Apply MSVC .def file when linking
#622 #624 MinGW|CMake: Sync library name with GNU Autotools,
i.e. produce libexpat-1.dll rather than libexpat.dll
by default. Filename libexpat.dll.a is unaffected.
#632 MinGW|CMake: Set missing variable CMAKE_RC_COMPILER in
toolchain file "cmake/mingw-toolchain.cmake" to avoid
error "windres: Command not found" on e.g. Ubuntu 20.04
#597 #627 CMake: Unify inconsistent use of set() and option() in
context of public build time options to take need for
set(.. FORCE) in projects using Expat by means of
add_subdirectory(..) off Expat's users' shoulders
#626 #641 Stop exporting API symbols when building a static library
#644 Resolve use of deprecated "fgrep" by "grep -F"
#620 CMake: Make documentation on variables a bit more consistent
#636 CMake: Drop leading whitespace from a #cmakedefine line in
file expat_config.h.cmake
#594 xmlwf: Fix harmless variable mix-up in function nsattcmp
#592 #593 #610 Address Cppcheck warnings
#643 Address Clang 15 compiler warnings
#642 #644 Version info bumped from 9:8:8 to 9:9:8;
see https://verbump.de/ for what these numbers do
Infrastructure:
#597 #598 CI: Windows: Start covering MSVC 2022
#619 CI: macOS: Migrate off deprecated macOS 10.15
#632 CI: Linux: Make migration off deprecated Ubuntu 18.04 work
#643 CI: Upgrade Clang from 14 to 15
#637 apply-clang-format.sh: Add support for BSD find
#633 coverage.sh: Exclude MinGW headers
#635 coverage.sh: Fix name collision for -funsigned-char
Special thanks to:
David Faure
Felix Wilhelm
Frank Bergmann
Rhodri James
Rosen Penev
Thijs Schreijer
Vincent Torri
and
Google Project Zero
Exp-run by: antoine
PR: 266524
(cherry picked from commit 9901fd092a8c8e43f24217ebea61a6f53ad245fb)
|
|
|
|
|
|
|
| |
Changes: https://github.com/nwg-piotr/nwg-drawer/releases/tag/v0.3.1
Reported by: GitHub (watch releases)
(cherry picked from commit 9fc8829e941363a8166a8189b3513cb711111fc0)
|
|
|
|
|
|
|
|
|
|
|
| |
and set dnsmasq-devel port to IGNORE.
Changelog:
https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob_plain;f=CHANGELOG;hb=v2.87
https://www.mail-archive.com/dnsmasq-discuss@lists.thekelleys.org.uk/msg16445.html
MFH: 2022Q3
(cherry picked from commit 7bf80ce8165de85b5c550ea7aba984c6093a9496)
|
|
|
|
|
|
|
| |
Changes: https://github.com/bk138/gromit-mpx/releases/tag/1.4.3
Reported by: GitHub (watch releases)
(cherry picked from commit f095bf66bad7c0c75e76410d8854384ed0239074)
|
|
|
|
|
|
|
|
|
| |
Details:
- Bugfix release, see
https://github.com/traefik/traefik/releases/tag/v2.8.7
MFH: 2022Q3
(cherry picked from commit 30582b12430aa47716d1ae246340563c8cb41a5a)
|
|
|
|
|
|
|
|
|
|
|
| |
Reintroduce PORTEPOCH. Remove bogus "Created by" line.
Reported by: jbeich@
Fixes: 79f9679c7e795de9a15451910526cea3ea50c21f
(cherry picked from commit 2d66a2f6428f6f33d6dc6c220cc25cebd0717589)
PR: 266576
|
|
|
|
|
|
|
|
|
|
|
| |
This updates to a version with fixes for various KABI changes in FreeBSD 13+.
PR: 263058
Reported by: darius@dons.net.au (maintainer)
(cherry picked from commit 79f9679c7e795de9a15451910526cea3ea50c21f)
PR: 266576
|
|
|
|
| |
(cherry picked from commit 15dbfe858d2a52ddf6371ce51448baf45eb4f23f)
|
|
|
|
|
|
|
| |
Release Notes (soon):
https://www.mozilla.org/en-US/firefox/105.0.1/releasenotes/
(cherry picked from commit 100cd618793149cf01f20da637c4a00e5c425734)
|
|
|
|
|
| |
PR: 266492
(cherry picked from commit 9da64f491373d7c2ed1c74a03d0033b05ee34674)
|
|
|
|
|
|
|
| |
ChangeLog: https://github.com/redis/redis/releases/tag/7.0.5
MFH: 2022Q3
Security: f1f637d1-39eb-11ed-ab44-080027f5fec9
(cherry picked from commit 08f2c3c809797702412060b1cbce7b1b475c3790)
|
|
|
|
|
|
|
| |
Changes: https://downloads.isc.org/isc/bind9/9.18.7/doc/arm/html/notes.html#notes-for-bind-9-18-7
MFH: yes
Security: CVE-2022-2795 CVE-2022-2881 CVE-2022-2906 CVE-2022-3080 CVE-2022-38177 CVE-2022-38178
(cherry picked from commit 15c63d09366ccf91e52b4a1ac18ac41b9afeec37)
|
|
|
|
|
|
|
| |
Changes: https://downloads.isc.org/isc/bind9/9.16.33/doc/arm/html/notes.html#notes-for-bind-9-16-33
MFH: yes
Security: CVE-2022-2795 CVE-2022-2881 CVE-2022-2906 CVE-2022-3080 CVE-2022-38177 CVE-2022-38178
(cherry picked from commit d6e108c34a97d1dddb1d1af1309b5f9cce0d6d00)
|
|
|
|
|
|
|
|
|
|
| |
- CVE-2022-35957 - Auth proxy privilege escalation
ChangeLog: https://grafana.com/blog/2022/09/20/grafana-security-releases-new-versions-with-moderate-severity-security-fixes-for-cve-2022-35957-and-cve-2022-36062/
PR: 266530
MFH: 2022Q3
Security: 95e6e6ca-3986-11ed-8e0c-6c3be5272acd
(cherry picked from commit bc946e35d0f203eda145e604bbb27f04f849d4b7)
|
|
|
|
|
|
|
| |
Changes: https://github.com/grafana/grafana/releases/tag/v9.1.4
PR: 266379
(cherry picked from commit ea29a10a2f1c3ef62309376f0000606ed4db6134)
|
|
|
|
|
|
|
| |
Changes: https://github.com/kornelski/dssim/compare/3.2.0...3.2.3
Reported by: GitHub (watch releases)
(cherry picked from commit 3219cfc704b0373d2fdc86e18502b6f0ceb8866f)
|
|
|
|
|
|
|
|
|
| |
Details:
- Bugfixes, see
https://github.com/traefik/traefik/releases/tag/v2.8.5
MFH: 2022Q3
(cherry picked from commit d8ab0c5c50253d40b0efab435d51ff2fd7f2c7b8)
|
|
|
|
|
|
| |
Release notes: https://www.zabbix.com/rn/rn5.0.27
(cherry picked from commit 00a00352bc977301878626b52fa341bd55ce262d)
|
|
|
|
| |
(cherry picked from commit e4abbd5c5b82f796ae3349abd91e6533f6bafc1b)
|
|
|
|
|
|
|
|
| |
Details:
- Bugfix release, no breaking changes
MFH: 2022Q3
(cherry picked from commit f5c3f75fde4395144f7760068117eb5c3f235d36)
|
|
|
|
|
|
|
|
|
|
|
|
| |
A cmake macro, which should have configured $OCCT_INSTALL_BIN_LETTER was
not applied correctly. Thus some cmake files where badly configured, and
some consumers could not use them.
PR: 266280
Reported by: yuri
MFH: 2022Q3
(cherry picked from commit 31735a5b1aae9a7967e8cc5f12ffab7779acc53c)
|
|
|
|
|
|
|
|
| |
* regressions in the latest MariaDB 10.6.9 which can impact a large number
of users by causing crashes and / or data loss.
MFH: 2022Q3
(cherry picked from commit 6d32e56e2e6e38c4aa8fc200b03a278c18b66c68)
|
|
|
|
|
|
| |
Security: 36d10af7-248d-11ed-856e-d4c9ef517024
MFH: 2022Q3
(cherry picked from commit 0f0fa32742f633c3c648c0c43280078f8bf5cb9d)
|
|
|
|
|
|
|
|
| |
PR: 266286
Reported by: wen@
Exp-run: antoine@
(cherry picked from commit 420da5d7b03b43119a8132dc005838b10b1667c8)
|
|
|
|
|
|
| |
Update COMMENT
(cherry picked from commit dc81dd167f7a69987f0e2c0f769251627c4dbaf4)
|
|
|
|
| |
Cheery-pick from commit b7f05445c00f2625aa19b4154ebcbce5ed2daa52
|
|
|
|
| |
(cherry picked from commit ffbdd973c174ff063014ba392353895aa991d08c)
|
|
|
|
|
|
|
|
| |
upstream fix for alignment issues in embedded protobuf was not complete
Reported by: fallout
(cherry picked from commit ac39d32256828d37b4dd99a2458298aa90010db2)
|
|
|
|
|
|
|
| |
Release Notes (soon):
https://www.thunderbird.net/en-US/thunderbird/102.3.0/releasenotes/
(cherry picked from commit 986814bad85c557a8ec514780d6c6acc384f3035)
|
|
|
|
|
|
|
| |
Release Notes (soon):
https://www.mozilla.org/en-US/firefox/105.0/releasenotes/
(cherry picked from commit 8b8eb5fe5aa70a2618705cebdf06ca7351f1ffb0)
|
|
|
|
|
| |
Security: b59847e0-346d-11ed-8fe9-3065ec8fd3ec
(cherry picked from commit 8b165c2273443c51b20b74672722555a668616dd)
|
|
|
|
|
| |
Changes: https://gitlab.freedesktop.org/xorg/xserver/-/compare/f778b56a7...a77d95af6
(cherry picked from commit 5d0a30301fe495c5a3d817365ddf1c23b5855395)
|
|
|
|
|
|
| |
Release notes: https://www.zabbix.com/rn/rn6.0.8
(cherry picked from commit e3551240b31a1939028e8b0c9670b889b102b8f0)
|
|
|
|
|
|
| |
Approved by: portmgr (unbreak)
(cherry picked from commit 561d1faa6155aea59e9acd196f9171e5dcdd5e64)
|
|
|
|
| |
(cherry picked from commit 095e5fb5167603c2770bbcb77d2fc89352c07a3c)
|
|
|
|
|
|
|
|
| |
Changes: https://groups.google.com/a/mozilla.org/g/dev-tech-crypto/c/uceBXfAG1pM
Changes: https://hg.mozilla.org/projects/nss/shortlog/NSS_3_82_RTM
Reported by: Repology
(cherry picked from commit c1b9f6374d1d5b583aa4c5865fbab533b76e46a0)
|
|
|
|
|
|
|
|
|
| |
Fix build on 13-STABLE.
Sponsored by: Beckhoff Automation GmbH & Co. KG
MFH: 2022Q3
(cherry picked from commit 7e8044bf1f9999f77ac2e1fc2e688df9250dc9ae)
|