Security fixes
apache2-2.2.20-alt1
build Aleksey Avdeev,
2011-08-31
- 2.2.20
- Security fixes (CVE-2011-3192)
- Update patchset itk for apache2.2-mpm-itk-2.2.17-01
Thunar-1.3.0-alt6 build Mikhail Efremov, 2011-08-31
- Fix format strings of display names (CVE-2011-1588).
- Updated Russian translation.
- Rename russian-translation.patch -> russian-documentation.patch.
- Fix thunar-settings icon.
adobe-flash-player-10-alt12 build Sergey V Turchin, 2011-08-11
- new version 10.3.183.5(x86), 11.0.1.98(x86-64)
- security fixes:
CVE-2011-2130, CVE-2011-2134, CVE-2011-2135, CVE-2011-2136,
CVE-2011-2137, CVE-2011-2138, CVE-2011-2139, CVE-2011-2140,
CVE-2011-2414, CVE-2011-2415, CVE-2011-2416, CVE-2011-2417,
CVE-2011-2425
gimp-2.6.11-alt5 build Valery Inozemtsev, 2011-08-10
- fixed CVE-2011-1782
libsoup-2.34.3-alt1 build Dmitry V. Levin, 2011-08-02
- Updated to 2.34.3 (fixes CVE-2011-2524).
samba-3.5.10-alt2 build Vitaly Kuznetsov, 2011-08-01
- CVE-2011-2724
cifs-utils-5.0-alt2 build Vitaly Kuznetsov, 2011-08-01
- CVE-2011-2724
- move cifs.upcall to /sbin
- build with libpcap and libwbclient
samba-3.5.10-alt1 build Vitaly Kuznetsov, 2011-07-28
- 3.5.10 (CVE-2011-2522, CVE-2011-2694)
subversion-1.6.17-alt1 build Dmitry V. Levin, 2011-07-20
- Updated to 1.6.17 (fixes CVE-2011-1752, CVE-2011-1783 and CVE-2011-1921
in mod_dav_svn).
- Packaged some subpackages as noarch.
vlc-1.1.11-alt1 build Sergey Bolshakov, 2011-07-14
- 1.1.11 release.
- CVE-2011-2587 and CVE-2011-2588 fixed
libpng-1.2.46-alt1 build Dmitry V. Levin, 2011-07-13
- Updated to 1.2.46 (fixes: CVE-2011-2690, CVE-2011-2691, CVE-2011-2692).
krb5-1.6.3-alt13 build Ivan A. Melnikov, 2011-07-06
- check if ftp daemon fails to set effective group id
(MITKRB5-SA-2011-005, CVE-2011-1526).
nfs-1.2.4-alt0.11 build Sergey Bolshakov, 2011-06-29
- 1.2.4-rc9 released
- CVE-2011-2500 fixed
pidgin-2.9.0-alt1 build Alexey Shabalin, 2011-06-28
- 2.9.0 (fixed CVE-2011-2485: remote denial of service from corrupt buddy icons)
- enable evolution plugin
pidgin-mini-2.9.0-alt1 build Slava Semushin, 2011-06-27
- Updated to 2.9.0
+ CVE-2011-2485: remote denial of service from corrupt buddy icons
curl-7.21.7-alt1 build Gleb F-Malinovskiy, 2011-06-27
- new version (CVE-2011-2192)
libgdk-pixbuf-2.23.4-alt2 build Yuri N. Sedunov, 2011-06-25
- fixed CVE-2011-2485 (ALT #25816)
tor-0.2.1.30-alt1 build Dmitry V. Levin, 2011-06-24
- Blindly updated 0.2.1.30 (fixes numerous bugs including CVE-2011-0427).
- Updated build dependencies.
tigervnc-1.0.90-alt5 build Valery Inozemtsev, 2011-06-21
- updated xorg-server-source to 1.10.2
- enabled ipv6
- fixed CVE-2011-1775
glibc-2.11.3-alt5 build Dmitry V. Levin, 2011-06-21
- Updated to glibc-2.11.3-61-g78856c5 with some broken commits reverted.
- Updated crypt_blowfish to 1.1 (fixes CVE-2011-2483).
xen-4.1.1-alt1 build Vitaly Kuznetsov, 2011-06-15
- 4.1.1 including CVE-2011-1898 fix
bind9.8-9.8.0-alt0.2 build Victor Forsiuk, 2011-06-12
- 9.8.0-P2 (security fixes for CVE-2011-1907 and CVE-2011-1910).
fetchmail-6.3.20-alt1 build Michael Shigorin, 2011-06-07
- 6.3.20
+ fixes CVE-2011-1947: STARTTLS denial of service vulnerability
(thanks ldv@ for heads-up)
quagga-0.99.18-alt1 build Sergey Y. Afonin, 2011-06-03
- new version (CVE-2010-1674, CVE-2010-1675)
ejabberd-2.1.7-alt1 build Vladimir V. Kamarzin, 2011-06-03
- 2.1.7, fixes CVE-2011-1753 (The vulnerability is caused due to an
error within the parsing of certain XML input, which can be exploited
to e.g. cause a high CPU and memory consumption via heavily nested XML
entities), please update immediately.
- Add PostgreSQL support (pma).
design & coding: Vladimir Lettiev aka crux © 2004-2005,
Andrew Avramenko aka liks © 2007-2008
current maintainer: Michael Shigorin
current maintainer: Michael Shigorin