Age | Commit message (Collapse) | Author | Files | Lines |
|
(cherry picked from commit 9e68e6520ce36c526ad1a901214aace62e15d446)
|
|
(cherry picked from commit c7145973608e786a2be803aa581d01c1afd5cfc4)
|
|
Changes: https://github.com/NixOS/nix/compare/2.3.17...2.3.18
(cherry picked from commit cbb8cd19a0c004beb7b6ade537a533b32b30d87c)
|
|
[Backport release-23.11] opensc: 0.25.0 -> 0.25.1
|
|
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
(cherry picked from commit 8f5c4cf5eb969a7f048503a21ca6ffdd1b8c7c3d)
|
|
* mcaselector: add wrapGAppsHook
(cherry picked from commit 7dfacd893582e4eff8fe00461a25b2c5996d7e71)
* mcaselector: don't wrap executable twice
(cherry picked from commit 4bcdfaccf4c1bbd0a0fdb6f89ce80e596ea3e22b)
* mcaselector: correctly escape bash variable
(cherry picked from commit 0cf87e49b4a2b0af644b9e958c746383d4b041a3)
---------
Co-authored-by: LeixB <abone9999@gmail.com>
Co-authored-by: Aleksana <alexander.huang.y@gmail.com>
|
|
> Changes from 2.2.1 to 2.3.0:
>
> - Add --cache option to speed up file comparisons.
> - Use nanosecond precision for file times, if available.
> - Fix compilation issue on OpenBSD.
> - Other changes like fixing typos, wording, etc.
Changelog: https://github.com/adrianlopezroche/fdupes/releases/tag/v2.3.0
(cherry picked from commit 3044597bf9eda5f79759b79695e7111e7ca37cd9)
|
|
Ideally we would upgrade but in this specific instance the fixed
versions (and the patch for the issue) have been relicensed under
the Business Source License which is unfree.
Tagging the packages with `knownVulnerabilities` seems to be our least
worse solution. If someone care enough I'm guessing the unfree versions
could be backported under a different names in 23.11.
|
|
...into release-23.11
|
|
https://download.libreswan.org/CHANGES
fixes CVE-2024-2357, CVE-2024-3652
(cherry picked from commit eee733a88de54288798d59e05c198edc77120924)
|
|
[Backport release 23.11]: dl-librescore: 0.34.47 -> 0.35.7
|
|
(cherry picked from commit 777e5f1deb649674ac94df0f907c0fa81188dd9d)
|
|
(cherry picked from commit 078a46ab20526ea8d36183e2cb76e7b5be0000f1)
|
|
(cherry picked from commit 88b93829d9549c6fc83a8db777985f13456c1191)
|
|
Fixes GHSA-95pr-fxf5-86gv and GHSA-88jx-383q-w4qc.
Changes:
https://github.com/sigstore/cosign/releases/tag/v2.2.4
(cherry picked from commit 2e87a8cbd1b3c709adeb0fdc7c9ed225de2a9d88)
|
|
(cherry picked from commit 618629f81fc1f650908c880847558e787adbb785)
|
|
(cherry picked from commit 64a1e3d7296509733cb331aa3633db89ada3090b)
|
|
(cherry picked from commit 64b487bb36fea1ddbfadb63edb7e425803eece74)
|
|
[Backport release-23.11] netbird: 0.26.0 -> 0.27.2
|
|
[23.11] pgadmin4: backport fix for CVE-2024-3116
|
|
(cherry picked from commit 0257f6a003af61c0a8f4677dc6971b889515fd36)
|
|
(cherry picked from commit 6e7791eec9ce0c7c02881b4b1cf6eed927efd4ee)
|
|
(cherry picked from commit 6e39d3bdbcb4eb17b68b68602e7f6c2760277a1a)
|
|
(cherry picked from commit 2e4791c8560049cc552f9fbdf05195c117687f93)
|
|
(cherry picked from commit 885d57f6d2d4028d4a41f194d9757bf5c48f8906)
|
|
(cherry picked from commit 32f9f4626ca38383545e58d4ff58e2ba709e11bc)
|
|
Diff: https://github.com/netbirdio/netbird/compare/v0.26.0...v0.26.1
Changelog: https://github.com/netbirdio/netbird/releases/tag/v0.26.1
(cherry picked from commit 072090b624e9000dbb4e662243fbcd639dde34f7)
|
|
[Backport release-23.11] envfs: 1.0.3 -> 1.0.6
|
|
Diff: https://github.com/Mic92/envfs/compare/1.0.3...1.0.6
(cherry picked from commit 3a8e8369a67cb68e0e267413c36d997e9e3f670c)
|
|
|
|
|
|
(cherry picked from commit 73f6bc2c4e0b3dbcd82017a4394926121c67a8ee)
|
|
(cherry picked from commit 3b9901da0ed48468db1887237f0e6e267119bf3c)
|
|
https://github.com/advisories/GHSA-27jx-ffw8-xrqv
Patch has been adjusted a bit to be used as the `upgrade_check` route
does not exist on 7.7.
https://github.com/pgadmin-org/pgadmin4/commit/fbbbfe22dd468bcfef1e1f833ec32289a6e56a8b
|
|
https://github.com/mozilla-mobile/mozilla-vpn-client/releases/tag/v2.21.0
https://github.com/mozilla-mobile/mozilla-vpn-client/compare/releases/2.20.0...releases/2.21.0
(cherry picked from commit 915fb28ec3e54c077ebac29df7887790cdb61e5e)
|
|
Fixes CVE-2024-0914.
Changes:
https://github.com/opencryptoki/opencryptoki/blob/v3.23.0/ChangeLog
(cherry picked from commit 100af695bf0ae85a2af3c394fe5230c0c1a293c9)
|
|
Signed-off-by: Matthias Beyer <mail@beyermatthias.de>
(cherry picked from commit 904f4b46cd9fda63ff8d67542f5bf08d2657b72f)
Signed-off-by: Matthias Beyer <mail@beyermatthias.de>
|
|
(cherry picked from commit eb275518007bfb6de6c6ddef3fc57aae706ab5cb)
Signed-off-by: Matthias Beyer <mail@beyermatthias.de>
|
|
(cherry picked from commit 8a9191adafa6ffd14febd3fd983e8b703e34ad97)
Signed-off-by: Matthias Beyer <mail@beyermatthias.de>
|
|
|
|
This fixes the app not launching in a wayland environment.
❯ mozillavpn
Aborted (core dumped)
~/.local/share/mozillavpn.log showed:
Warning: Could not find the Qt platform plugin "wayland" in ""
Error: This application failed to start because no Qt platform plugin could be initialized.
Reinstalling the application may fix this problem.
Available platform plugins are: linuxfb, minimal, eglfs, minimalegl, vkkhrdisplay, xcb, vnc, offscreen.
(cherry picked from commit 22143317c12b6a8ea90d1f873b8c423dd40ed2cd)
|
|
...into staging-23.11
|
|
https://www.openwall.com/lists/oss-security/2024/01/18/2
|
|
https://curl.se/docs/CVE-2024-2398.html
https://curl.se/docs/CVE-2024-2004.html
|
|
|
|
|
|
|
|
jdupes: update src url
|
|
|
|
This allows mailutils to be configured through
`environment.etc."mailutils.conf"`.
I could not figure out how to use `/etc/mail.rc` to set:
```
address {
email-domain "foo.lol";
}
```
(cherry picked from commit 1b0e9a9afea0ffbe539e53c76891735d52cef0d9)
|