microsoft
/
CBL-Mariner
зеркало из https://github.com/microsoft/CBL-Mariner.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
4 310 коммитов 1 111 Ветки 483 Теги 1,1 GiB
Граф коммитов

479 Коммитов

Автор SHA1 Сообщение Дата
Archana Choudhary 0f3b1cdc32
Upgrade python-ldap 3.3.1 -> 3.4.0 to address CVE-2021-46823 (#6240) 
* Upgrade python-ldap to 3.4.0 CVE-2021-46823
* Refactor and add license verified log
* Update cgmanifest entry
 2023-09-20 23:35:45 +05:30
Archana Choudhary 3d629df286
Upgrade fapolicyd 1.0.2 -> 1.3.2 to address CVE-2022-1117 (#6178) 
* Upgrade fapolicyd 1.0.2 -> 1.3.2 to address CVE-2022-1117
* Update cgmanifest entry
* Add license verification tag
* Lint spec file
 2023-09-20 23:34:28 +05:30
Archana Choudhary 5f95e7468a
upgrade taglib 1.11.1 to 1.13.1 to address 2 CVEs (#6232) 
* Upgrade taglib to 1.13.1 CVE-2018-11439 CVE-2017-12678
* Update patches
* Verify license
 2023-09-20 18:48:38 +05:30
jslobodzian 80fea63150
Fix systemd/systemd-bootstrap confusion by adding explicit requires (#6236) 
* Fix systemd/systemd-bootstrap confusion by adding explicit requires on systemd or systemd-devbel

* systemd-bootchart: fix typo in release

Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>

* iio-sensor-proxy: drop BR pkgconfig(udev)

Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>

* verify license

Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>

* Update cgmanifest for proper samba location

* Update samba source location in spec file

---------

Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
Co-authored-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
 2023-09-20 09:10:52 -04:00
Archana Choudhary d76627b897
Add netcdf package to specs-extended (#6155) 
* Add package netcdf
* Add license info
* Update cgmanifest
* Update license map
* Refactor spec
 2023-09-20 18:24:53 +05:30
Andrew Phelps 3e7bdd4b8a
re2c: upgrade to version 2.0 to fix CVE-2018-21232 (#6231) 
* upgrade re2c to 2.0

* upgrade spec and cgmanifest

* linting
 2023-09-19 12:08:17 -07:00
CBL-Mariner-Bot cd6949a8d0
Patch booth to address CVE-2022-2553 (#6107) 2023-09-19 20:10:23 +05:30
Muhammad Falak R Wani 7ec9054c34
exiv2: upgrade version 0.27.5 -> 0.28.0 (#6226) 
* libgexiv2: 0.12.1 -> 0.14.2

Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
 2023-09-19 13:25:18 +05:30
Henry Li 420acdeb74
Resolve mutt CVE-2023-4874 (#6222) 
* fix mutt CVE

* add changelog

---------

Co-authored-by: lihl <lihl@microsoft.com>
 2023-09-18 10:13:14 -07:00
Archana Choudhary b0f5460c71
Add hdf package to specs-extended (#6154) 
* Add package hdf
* Add license info
* Update cgmanifest
* Cleanup changes
* Remove unneeded patch
* Update License map
 2023-09-18 18:43:16 +05:30
Archana Choudhary 6630da3cf5
Add gpsbabel package to specs-extended (#6151) 
* Adds package gpsbabel
* Adds license info
* Update cgmanifest
* Update patch tag
* Change setup to autosetup
* Update license map
---------

Co-authored-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
 2023-09-18 16:00:17 +05:30
Archana Choudhary 5ff69889b5
Adds libkml package to specs-extended (#6157) 
* Adds package libkml
* Adds license info
* Update cgmanifest
* Update license map
 2023-09-18 14:24:28 +05:30
Archana Choudhary 94e6e8e1a4
Upgrade wavpack: 5.4.0 -> 5.6.0 to address CVE-2021-44269 & CVE-2022-2476 (#6179) 
* Upgrade wavpack to 5.6.0 CVE-2021-44269 CVE-2022-2476
* Fix build issues
* Lint wavpack.spec file
* Update cgmanifest entry
* Switch to make_build
* Add license verified
 2023-09-18 12:50:10 +05:30
Archana Choudhary 428fe914c7
Upgrade imaptest 20210305 to 20210511 (#6215) 2023-09-14 21:27:04 +05:30
Archana Choudhary f2229b253d
Add freexl package to specs-extended (#6149) 
* Adds freexl to specs-extended
* Update cgmainfest entry
* Add license entry
* cleanup spec file
* Update license map
 2023-09-11 14:13:44 +05:30
Archana Choudhary f78a6f5eb2
Adds libgeotiff package to specs-extended (#6150) 
* Adds package libgeotiff
* Adds license info for libgeotiff
* Update cgmanifest entry
* Update license map

Co-authored-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
---------
Co-authored-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
 2023-09-08 17:20:46 +05:30
Muhammad Falak R Wani 5f271f17db
Upgrade flac 1.3.4 -> 1.4.3 to address CVE-2020-22219 (#6164) 
* flac: drop BR on nasm
* flac: drop "Obsoletes" tag

Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
 2023-09-08 13:05:39 +05:30
Muhammad Falak R Wani 6848f4dcde
Upgrade opencryptoki 3.13.0 -> 3.17.0 to address CVE-2021-3798 (#6163) 
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
 2023-09-08 12:48:09 +05:30
Muhammad Falak R Wani 6d27a1cd56
Upgrade libmicrohttpd 0.9.71 -> 0.9.76 to address CVE-2023-27371 (#6161) 
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
 2023-09-08 12:46:14 +05:30
Muhammad Falak R Wani b34b9b2bb3
Upgrade wireshark 3.4.16 -> 4.0.8 to address 27 CVEs (#6187) 
Address 27 CVEs:
CVE-2021-22207 CVE-2021-22222 CVE-2021-22235 CVE-2021-39920 CVE-2021-3992
CVE-2021-39922 CVE-2021-39923 CVE-2021-39924 CVE-2021-39925 CVE-2021-39926
CVE-2021-39928 CVE-2021-39929 CVE-2021-4181 CVE-2021-4182 CVE-2021-4184
CVE-2021-4185 CVE-2021-4186 CVE-2021-4190 CVE-2022-0581 CVE-2022-0582
CVE-2022-0583 CVE-2022-0585 CVE-2022-0586 CVE-2022-3190 CVE-2022-4344
CVE-2023-0667 CVE-2023-2906

Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
 2023-09-08 09:42:58 +05:30
bfjelds 5b32faea4c
patch libtommath for CVE-2023-36328 (#6193) 
* patch libtommatch for CVE-2023-36328

* increment version; add changelog entry

* Update SPECS-EXTENDED/libtommath/libtommath.spec

Co-authored-by: Muhammad Falak R Wani <falakreyaz@gmail.com>

---------

Co-authored-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
 2023-09-07 20:55:15 -07:00
Muhammad Falak R Wani 1fdf7c770a
Upgrade tang 7 -> 14 to address CVE-2023-1672 (#6167) 
* tang: add tang.sysusers
* tang: lint spec

Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
 2023-09-07 18:14:14 +05:30
Archana Choudhary ef99666b41
Upgrade usbguard to 1.1.0 CVE-2019-25058 (#6170) 2023-09-07 15:36:44 +05:30
Archana Choudhary 97916bdc78
Upgrade advancecomp to 2.5 CVE-2023-2961 (#6177) 
Co-authored-by: CBL-Mariner Servicing Account <cblmargh@microsoft.com>
 2023-09-07 15:33:09 +05:30
bfjelds 1769d0f5b2
User/bfjelds/buildah CVE 2022 2990 (#6174) 
* add patch for CVE-2022-2990

* add changelog and fix date

* fix version

* try fixing patch
 2023-09-06 07:48:27 -07:00
Archana Choudhary f7b197890f
Upgrade mod_auth_openidc 2.4.2.1 -> 2.4.14.2 to address CVE-2021-20718, CVE-2021-39191, CVE-2022-23527, CVE-2023-28625 (#6159) 
* mod_auth_openidc: 2.4.2.1 -> 2.4.14.2 [4](CVE-2021-20718, CVE-2021-39191, CVE-2022-23527, CVE-2023-28625)
* Add license verification
* Lint spec file
* Drop rhel conditional
 2023-09-05 13:56:22 +05:30
Muhammad Falak R Wani 40d44e4c9c
Upgrade stunnel 5.56 -> 5.70 to address CVE-2021-20230 (#6145) 
- Lint spec
- Refresh patches to apply cleanly

Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
 2023-09-05 11:22:33 +05:30
Archana Choudhary 410c929452
Upgrade dovecot to 2.3.20 to address CVEs (#6104) 
* Upgrade dovecot to 2.3.20
* Add license verified in changelog
* Refactor spec
 2023-09-05 11:10:30 +05:30
Muhammad Falak R Wani 2c710a1ee9
Upgrade xterm 372 -> 380 to address CVE-2022-45063 & CVE-2023-40359 (#6146) 
- xterm: refresh patches
- xterm: lint spec
- xterm: prefer https instead of http
- xterm: switch to %make_build

Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
 2023-09-05 08:47:29 +05:30
Muhammad Falak R Wani 6d9a611aed
Upgrade screen 4.9.0 -> 4.9.1 to address CVE-2023-24626 (#6147) 
- screen: refresh patches
- screen: lint spec

Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
 2023-09-05 08:43:46 +05:30
Muhammad Falak R Wani bd5afe0c94
Upgrade fetchmail 6.4.8 -> 6.4.22 to address CVE-2021-39272 & CVE-2021-36386 (#6158) 
- fetchmail: drop asc file
- fetchmail: verify license
- fetchmail: lint spec
- fetchmail: swith to %autosetup, %make_build & %make_install
- fetchmail: prefer https instead of http

Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
 2023-09-05 08:42:05 +05:30
Pawel Winogrodzki 8a2cc1076e
Mitigated build failures in SPECS-EXTENDED during tests. (#6142) 2023-09-02 01:55:16 -07:00
Pawel Winogrodzki cb3e7ce876
Disabled missing ptest dependencies for 7 extended specs. (#6129) 2023-09-01 12:02:36 -07:00
Archana Choudhary 7288c7d438
Add package shapelib to SPECS-EXTENDED (#6064) 
* Adds package shapelib
* Adds license info
* Update cgmanifest
* Cleanup changes
 2023-09-01 00:48:38 +05:30
CBL-Mariner-Bot b7edc21247
[AUTOPATCHER-EXTENDED] Patched mod_auth_mellon to address CVE-2021-3639 (#6103) 
* Patch mod_auth_mellon to address CVE-2021-3639
* Lint spec file
* Modify prep to use autosetup
---------
Co-authored-by: Archana Choudhary <archana1@microsoft.com>
 2023-09-01 00:37:34 +05:30
Archana Choudhary 6acc7fa856
Add package qt5-qtserialport to SPECS-EXTENDED (#6065) 
* Adds package qt5-qtserialport
* Adds license info-qtserialport
* Update cgmanifest-qtserialport
* Switch to autosetup and make_install
 2023-09-01 00:17:12 +05:30
Archana Choudhary a6bb77e691
Add package uriparser to SPECS-EXTENDED (#6067) 
* Adds package uriparser
* Adds license info
* Update cgmanifest
 2023-08-31 23:26:34 +05:30
Archana Choudhary a8275430dc
Add package blosc to SPECS-EXTENDED (#6066) 
* Adds package blosc
* Adds license info
* Update cgmanifest
* Remove comments
 2023-08-31 23:09:33 +05:30
Archana Choudhary a7349bfc89
Add package liblerc to SPECS-EXTENDED (#6063) 
* Adds package liblerc
* Adds license info
* Update cgmanifest
* Adds test execution command
* remove patch related to win32
* Lint spec file
 2023-08-31 21:57:15 +05:30
Archana Choudhary 56b5f6cb27
Add libgta package to SPECS-EXTENDED (#6062) 
* Adds package libgta
* Adds license info
* Update cgmanifest
* Move global vars to top
 2023-08-31 18:27:15 +05:30
Archana Choudhary 271a0a4f43
Add ogdi package to SPECS-EXTENDED (#6061) 
* Adds package ogdi
* Adds license info
* Update cgmanifest
* Update Source1 URL
 2023-08-30 18:00:52 +05:30
Archana Choudhary 0558adfb10
Add cfitsio package to SPECS-EXTENDED (#6060) 
* Adds package cfitsio
* Add license info
* Update cgmanifest
* Update spec
 2023-08-29 13:14:19 +05:30
Archana Choudhary 761535f806
Adds package CharLS to SPECS-EXTENDED (#6022) 
* Adds package CharLS

* Adds license info

* Update cgmanifest

* Update source URL
 2023-08-25 15:50:54 +05:30
Muhammad Falak R Wani e2ad74a2ca
Upgrade golang to 1.19.12 to address CVE-2023-29409 (#5946) 
* golang: introduce patch to permit requests with invalid host headers

Reference: https://go-review.googlesource.com/c/go/+/518855
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
 2023-08-16 10:15:25 +05:30
suresh-thelkar 74e299b0b8
Add package proj version 9.2.1 (#5974) 
* proj: Add cgmanifest entry
* proj: update license map entry
* proj: Verifying the license
* Proj: Addressing review comments
* proj: Including all files under {_datadir}/%{name}
 2023-08-14 12:04:22 +05:30
Saranya Reddipalli 6a1f17bb19
Promote opencsd to SPECS (#5871) 2023-08-01 14:52:39 +05:30
Saranya Reddipalli d88acb348e
Promote rlwrap to SPECS (#5872) 2023-08-01 14:52:11 +05:30
CBL-Mariner-Bot 4eb6097024
[AUTOPATCHER-EXTENDED] Upgrade liblouis to 3.26.0 to fix CVE-2023-26767, CVE-2023-26768, CVE-2023-26769 (#5840) 
Co-authored-by: Olivia Crain <oliviacrain@microsoft.com>
 2023-07-19 11:39:28 -05:00
Saranya Reddy eb56c36487
Add new package opencsd v1.4.0 (#5826) 
Co-authored-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
Co-authored-by: Olivia Crain <olivia@olivia.dev>
Signed-off-by: saranyareddy <saranyareddipalle@yahoo.in>
 2023-07-17 16:19:35 +05:30
Andrew Phelps 6d35fdd2fc
glibc: restore glibc-debuginfo package (#5795) 
* update glibc so binaries are not stripped

* restore glibc-debuginfo
 2023-07-14 16:20:19 -07:00