mirrors/aports
1
0
Fork 0
mirror of https://gitlab.alpinelinux.org/alpine/aports.git synced 2026-01-07 09:41:39 +01:00
Code Issues Packages Projects Releases Wiki Activity
61,000 Commits 43 Branches 633 Tags
Commit Graph

102 Commits

Author SHA1 Message Date
tcely
c38ff6c4c1 main/bind: upgrade to 9.12.0 and modernize abuild 2018-03-02 17:17:26 +01:00
A. Wilcox
c0b2d6f20b main/bind: Split OpenRC scripts, disable check 2018-02-26 21:10:41 +00:00
tcely
b3fd1eb4e8 main/bind: Upgrade to 9.11.2-P1 2018-02-06 15:44:18 +00:00
Jared Szechy
443ccf28fc main/bind: enable json statistics 2017-12-15 13:52:22 +00:00
Natanael Copa
1855b69402 main/bind: rebuild against libressl-2.6 2017-11-09 19:58:31 +00:00
Natanael Copa
e2dc706809 main/bind: upgrade to 9.11.2 2017-10-31 12:03:37 +00:00
Natanael Copa
52c03af91a main/bind: bump pkgrel 
bump pkgrel to avoid mismatch with caches
 2017-08-08 15:11:06 +00:00
Francesco Colista
01deed0941 Revert "main/bind: fix for CVE-2017-3142 and CVE-2017-3143. Fixes #7496" 
This reverts commit 724d3ef9cc4c309dc09e750d37ca4cb86b32df85.
 2017-08-07 14:37:03 +00:00
Francesco Colista
724d3ef9cc main/bind: fix for CVE-2017-3142 and CVE-2017-3143. Fixes #7496 2017-08-07 14:35:48 +00:00
Natanael Copa
8d37b00520 main/bind: upgrade to 9.11.1_p2 2017-07-06 17:01:04 +02:00
Natanael Copa
e04430798a main/bind: security upgrade to 9.11.1_p1 (CVE-2017-3140) 
fixes #7437
 2017-06-16 12:36:46 +00:00
Natanael Copa
7fff4bd5d6 main/bind: upgrade to 9.11.1 2017-06-14 18:22:43 +00:00
Natanael Copa
afa27b1663 main/bind: rebuild against libressl 2.5 2017-04-18 20:45:30 +00:00
Sergey Lukin
d3fda9ff84 main/bind: security upgrade to 9.11.0_p5 - fixes #7141 
CVE-2017-3136: An error handling synthesized records could cause an assertion failure when using DNS64 with "break-dnssec yes;"
CVE-2017-3137: A response packet can cause a resolver to terminate when processing an answer containing a CNAME or DNAME
CVE-2017-3138: named exits with a REQUIRE assertion failure if it receives a null command string on its control channel
 2017-04-14 14:12:39 +00:00
Natanael Copa
b8632ab306 main/bind: security upgrade to 9.11.0_p3 (CVE-2017-3135) 
fixes #6828
 2017-02-09 11:22:32 +01:00
Natanael Copa
1328c94d12 main/bind: dont create homedir for bind user 
We dont want copy the content of /etc/skel to /etc/bind
ref #6725
 2017-01-24 16:51:35 +00:00
Przemyslaw Pawelczyk
d18cfd6f7c main/bind: Upgrade to 9.11.0-P2. 
https://www.isc.org/downloads/bind/bind-9-11-new-features/
https://deepthought.isc.org/article/AA-01446/0/BIND-9.11.0-P2-Release-Notes.html
https://kb.isc.org/article/AA-00913/74/BIND-9-Security-Vulnerability-Matrix.html

Release notes mention addressing issue described in:

CVE-2016-9778: An error handling certain queries using the
               nxdomain-redirect feature could cause a REQUIRE assertion
               failure in db.c

but it's not present in 9.10.x, so it's not a security upgrade.
 2017-01-17 13:47:04 +00:00
Sergei Lukin
859db39dd1 main/bind: security upgrade to 9.10.4_p5 - fixes #6675 
CVE-2016-9131: A malformed response to an ANY query can cause an assertion failure during recursion
CVE-2016-9147: An error handling a query response containing inconsistent DNSSEC information could cause an assertion failure
CVE-2016-9444: An unusually-formed DS record response could cause an assertion failure
 2017-01-13 08:59:28 +00:00
Natanael Copa
3fdf817269 main/bind: security upgrade to 9.10.4_p4 (CVE-2016-8864) 2016-11-02 05:48:56 +00:00
Natanael Copa
a5b591248a main/bind: rebuild against libressl 2016-10-10 12:04:04 +00:00
Natanael Copa
201cf7c3ba main/bind: security upgrade to 9.10.4_p3 (CVE-2016-2776) 
fixes #6223
 2016-09-28 09:22:42 +00:00
Natanael Copa
abed434a73 main/bind: security upgrade to 9.10.4_p2 (CVE-2016-2775) 
fixes #5951
 2016-07-25 13:47:52 +00:00
Francesco Colista
dd08b4220e main/bind: rebuild with libxml2. Fixes #5711 2016-06-27 14:54:12 +00:00
Natanael Copa
f5b6740ccd main/bind: upgrade to 9.10.4_p1 2016-05-27 15:56:29 +00:00
Natanael Copa
4e061d85be main/bind: upgrade to 9.10.4 2016-05-16 14:22:55 +00:00
Przemyslaw Pawelczyk
0f920d3abe main/[various]: bump pkgrel for pre-install fixes 2016-04-25 07:11:16 +00:00
Przemyslaw Pawelczyk
da4e96aace Reorder arguments passed to addgroup/adduser in scripts. 
Now all invocations have following order of arguments (if present):

    addgroup -S -g ... GROUP
    adduser -S -u ... -D -H -h ... -s ... -G ... -g ... USER
 2016-04-25 06:56:47 +00:00
Przemyslaw Pawelczyk
a60b9f07de Improve consistency of scripts using adduser/addgroup. 
Following rules have been applied:
- script starts with shebang !#/bin/sh followed by blank line,
- script ends with exit 0 prepended by blank line,
- only stderr of adduser, addgroup or passwd is redirected to /dev/null,
- getent passwd/group instances has been removed,
- manual checking of file and group existence has been removed,
- `|| true` instances has been removed.

Comments and line wrapping have been preserved.
 2016-04-25 06:55:43 +00:00
Przemyslaw Pawelczyk
a593d306c9 Add -g option (GECOS/comment) to adduser in scripts. 
This way we can avoid ugly default:

    Linux user,,,
 2016-04-25 06:54:18 +00:00
Przemyslaw Pawelczyk
ccc056dbf9 Add lacking -S option (system) to adduser/addgroup in scripts. 
Groups and users created by packages shouldn't use high ids by default
(unless explicitly requested), to distinguish them from groups and users
created by administrators for humans.

Following 41 files lacked -S next to addgroup:
- community/sword/sword.pre-install
- main/amavisd-new/amavisd-new.pre-install
- main/chrony/chrony.pre-install
- main/cvechecker/cvechecker.pre-install
- main/dnsmasq/dnsmasq.pre-install
- main/freeradius/freeradius.pre-install
- main/gdnsd/gdnsd.pre-install
- main/haproxy/haproxy.pre-install
- main/haproxy/haproxy.pre-upgrade
- main/kamailio/kamailio.pre-install
- main/logcheck/logcheck.pre-install
- main/mlmmj/mlmmj.pre-install
- main/nrpe/nrpe.pre-install
- main/open-vm-tools/open-vm-tools.pre-install
- main/postgrey/postgrey.pre-install
- main/privoxy/privoxy.pre-install
- main/redis/redis.pre-install
- main/samba/winbind.pre-install
- main/sircbot/sircbot.pre-install
- main/smokeping/smokeping.pre-install
- main/squark/squark.post-install
- main/squid/squid.pre-install
- main/squid/squid.pre-upgrade
- main/subversion/subversion.pre-install
- main/trac/trac.pre-install
- main/vsftpd/vsftpd.pre-install
- main/zabbix/zabbix-agent.pre-install
- testing/3proxy/3proxy.pre-install
- testing/cluster-glue/cluster-glue.pre-install
- testing/elasticsearch/elasticsearch.pre-install
- testing/emby/emby.pre-install
- testing/gdnsd/gdnsd.pre-install
- testing/icinga2/icinga2.pre-install
- testing/lusca/lusca.pre-install
- testing/lusca/lusca.pre-upgrade
- testing/mongodb/mongodb.pre-install
- testing/openxcap/openxcap.pre-install
- testing/prosody/prosody.pre-install
- testing/rancid/rancid.pre-install
- testing/rutorrent/rutorrent.pre-install
- testing/zabbix/zabbix-agent.pre-install

Following 60 files lacked -S next to adduser:
- community/caddy/caddy.pre-install
- community/domoticz/domoticz.pre-install
- community/minetest/minetest-server.pre-install
- community/oscam/oscam.pre-install
- community/seafile/seafile-server.pre-install
- community/syncthing/syncthing.pre-install
- main/apache2/apache2.pre-install
- main/aports-build/aports-build.pre-install
- main/atheme-iris/atheme-iris.pre-install
- main/bind/bind.pre-install
- main/clamav/clamav-db.pre-install
- main/clamsmtp/clamsmtp.pre-install
- main/clamsmtp/clamsmtp.pre-upgrade
- main/coova-chilli/coova-chilli.pre-install
- main/cvechecker/cvechecker.pre-install
- main/dhcp/dhcp.pre-install
- main/distcc/distcc.pre-install
- main/djbdns/dnscache.pre-install
- main/djbdns/tinydns.pre-install
- main/dovecot/dovecot.pre-install
- main/ez-ipupdate/ez-ipupdate.pre-install
- main/fetchmail/fetchmail.pre-install
- main/freeswitch/freeswitch.pre-install
- main/gitolite/gitolite.pre-install
- main/gnats/gnats.pre-install
- main/gross/gross.pre-install
- main/icecast/icecast.pre-install
- main/kamailio/kamailio.pre-install
- main/lighttpd/lighttpd.pre-install
- main/mariadb/mariadb.pre-install
- main/memcached/memcached.pre-install
- main/ngircd/ngircd.pre-install
- main/nrpe/nrpe.pre-install
- main/openntpd/openntpd.pre-install
- main/postgrey/postgrey.pre-install
- main/snort/snort.pre-install
- main/squid/squid.pre-install
- main/squid/squid.pre-upgrade
- main/subversion/subversion.pre-install
- main/trac/trac.pre-install
- main/transmission/transmission-daemon.pre-install
- main/ympd/ympd.pre-install
- main/znc/znc.pre-install
- testing/at/at.pre-install
- testing/buildbot-slave/buildbot-slave.pre-install
- testing/buildbot/buildbot.pre-install
- testing/clapf/clapf.pre-install
- testing/cluster-glue/cluster-glue.pre-install
- testing/dbmail/dbmail.pre-install
- testing/dspam/dspam.pre-install
- testing/ejabberd/ejabberd.pre-install
- testing/emby/emby.pre-install
- testing/mongodb/mongodb.pre-install
- testing/opensips/opensips.pre-install
- testing/pdns/pdns.pre-install
- testing/prosody/prosody.pre-install
- testing/qpage/qpage.pre-install
- testing/rrdbot/rrdbot.pre-install
- testing/wt/wt.pre-install
- unmaintained/ejabberd-git/ejabberd-git.pre-install
 2016-04-25 06:53:54 +00:00
Natanael Copa
c99a79bf99 main/bind: security upgrade to 9.10.3_p4 (CVE-2016-1285,CVE-2016-1286,CVE-2016-2088) 
fixes #5243
 2016-03-10 16:27:54 +00:00
Kaarle Ritvanen
13d11a508c main/bind: remove /var/log/named 
not used by default configuration
 2016-02-04 20:33:15 +02:00
Natanael Copa
dff85e5b60 main/bind: security upgrade to 9.10.3_p3 (CVE-2015-8704,CVE-2015-8705) 2016-01-20 16:33:25 +00:00
Natanael Copa
56b8e7f4f6 main/bind: security upgrade to 9.10.3_p2 (CVE-2015-8461,CVE-2015-8000) 
fixes #4956
 2015-12-16 12:54:24 +00:00
Sören Tempel
934cc31529 main/bind: move dnssec to -tools subpackage 2015-11-16 12:54:42 +00:00
Natanael Copa
b0f104df0d main/bind: upgrade to 9.10.3 2015-09-17 07:59:48 +02:00
Bartłomiej Piotrowski
b4a13e7314 Do not delete *.la files manually 
Since abuild v2.22.0, these are removed automatically unless 'libtool'
option has been specified.
 2015-09-10 13:59:03 +02:00
Natanael Copa
248c2164f0 main/bind: upgrade to 9.10.2_p4 2015-09-07 10:44:46 +02:00
Natanael Copa
c5b5874d38 main/bind: user libcap for capabilities 2015-08-13 13:59:07 +02:00
Natanael Copa
92d16bbedf main/bind: upgrade to 9.10.2_p3 2015-07-29 14:41:17 +00:00
Natanael Copa
6bbb06c125 main/bind: security upgrade to 9.10.2_p2 (CVE-2015-4620) 2015-07-08 14:32:29 +00:00
Natanael Copa
6aaecf49df main/bind: enable caps 
Neeed for -u option with multithread:

named: -u with Linux threads not supported: no capabilities support or
capabilities disabled at build time

ref #4281
 2015-06-23 06:49:39 +00:00
Natanael Copa
872585a819 main/bind: upgrade to 9.10.2_p1 2015-06-12 10:47:37 +00:00
Natanael Copa
6bf81f56e8 main/*: replace all sbin/runscript with sbin/openrc-run 2015-04-28 14:34:51 +00:00
Natanael Copa
99e9f3274a main/bind: upgrade to 9.10.2 2015-03-11 15:23:08 +00:00
Natanael Copa
83f598bac3 main/bind: enable threads 2015-03-11 15:23:08 +00:00
Natanael Copa
7ee3170459 main/bind: enable filter AAAA 
ref #3955
 2015-03-11 15:22:49 +00:00
Carlo Landmeter
525eb60df7 main/bind: upgrade to 9.10.1_p2 2015-02-23 10:00:28 +00:00
Natanael Copa
027bd75cb9 main/bind: upgrade to 9.10.1_p1 2014-12-09 14:04:46 +00:00
Natanael Copa
12fedd16ba main/bind: rebuild against krb5-1.13 2014-11-10 14:56:58 +00:00