81ada2f4b4
Upgrade pmix to 4.1.3 to address CVE-2023-41915 ( #6256 )
...
* pmix: Bump package version to 4.1.3 to address CVE-2023-41915
Reference: https://github.com/openpmix/openpmix/releases/tag/v4.1.3
* pmix: update cgmanifest entry
2023-09-21 14:00:04 +05:30
0f3b1cdc32
Upgrade python-ldap 3.3.1 -> 3.4.0 to address CVE-2021-46823 ( #6240 )
...
* Upgrade python-ldap to 3.4.0 CVE-2021-46823
* Refactor and add license verified log
* Update cgmanifest entry
2023-09-20 23:35:45 +05:30
3d629df286
Upgrade fapolicyd 1.0.2 -> 1.3.2 to address CVE-2022-1117 ( #6178 )
...
* Upgrade fapolicyd 1.0.2 -> 1.3.2 to address CVE-2022-1117
* Update cgmanifest entry
* Add license verification tag
* Lint spec file
2023-09-20 23:34:28 +05:30
8cc44ffe1e
Prepare September 2023 Update 2 ( #6241 )
2023-09-20 10:06:10 -04:00
5f95e7468a
upgrade taglib 1.11.1 to 1.13.1 to address 2 CVEs ( #6232 )
...
* Upgrade taglib to 1.13.1 CVE-2018-11439 CVE-2017-12678
* Update patches
* Verify license
2023-09-20 18:48:38 +05:30
80fea63150
Fix systemd/systemd-bootstrap confusion by adding explicit requires ( #6236 )
...
* Fix systemd/systemd-bootstrap confusion by adding explicit requires on systemd or systemd-devbel
* systemd-bootchart: fix typo in release
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
* iio-sensor-proxy: drop BR pkgconfig(udev)
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
* verify license
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
* Update cgmanifest for proper samba location
* Update samba source location in spec file
---------
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
Co-authored-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2023-09-20 09:10:52 -04:00
d76627b897
Add netcdf package to specs-extended ( #6155 )
...
* Add package netcdf
* Add license info
* Update cgmanifest
* Update license map
* Refactor spec
2023-09-20 18:24:53 +05:30
3e7bdd4b8a
re2c: upgrade to version 2.0 to fix CVE-2018-21232 ( #6231 )
...
* upgrade re2c to 2.0
* upgrade spec and cgmanifest
* linting
2023-09-19 12:08:17 -07:00
7ec9054c34
exiv2: upgrade version 0.27.5 -> 0.28.0 ( #6226 )
...
* libgexiv2: 0.12.1 -> 0.14.2
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2023-09-19 13:25:18 +05:30
b0f5460c71
Add hdf package to specs-extended ( #6154 )
...
* Add package hdf
* Add license info
* Update cgmanifest
* Cleanup changes
* Remove unneeded patch
* Update License map
2023-09-18 18:43:16 +05:30
6630da3cf5
Add gpsbabel package to specs-extended ( #6151 )
...
* Adds package gpsbabel
* Adds license info
* Update cgmanifest
* Update patch tag
* Change setup to autosetup
* Update license map
---------
Co-authored-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2023-09-18 16:00:17 +05:30
5ff69889b5
Adds libkml package to specs-extended ( #6157 )
...
* Adds package libkml
* Adds license info
* Update cgmanifest
* Update license map
2023-09-18 14:24:28 +05:30
94e6e8e1a4
Upgrade wavpack: 5.4.0 -> 5.6.0 to address CVE-2021-44269 & CVE-2022-2476 ( #6179 )
...
* Upgrade wavpack to 5.6.0 CVE-2021-44269 CVE-2022-2476
* Fix build issues
* Lint wavpack.spec file
* Update cgmanifest entry
* Switch to make_build
* Add license verified
2023-09-18 12:50:10 +05:30
428fe914c7
Upgrade imaptest 20210305 to 20210511 ( #6215 )
2023-09-14 21:27:04 +05:30
2f1656ca99
upgrade vim to resolve CVEs ( #6210 )
...
Co-authored-by: lihl <lihl@microsoft.com>
2023-09-13 10:20:13 -07:00
ba1ffa4070
Upgrade redis to 6.2.13 fix CVE-2022-24834 ( #6203 )
2023-09-13 16:10:05 +05:30
e94787c454
[AUTOPATCHER-kernel] Kernel upgrade to version 5.15.131.1 - branch main ( #6196 )
...
* Kernel upgrade to 5.15.131.1 version
* Update configs
* Update mariner-required-configs
---------
Co-authored-by: Rachel Menge <rachelmenge@microsoft.com>
2023-09-11 10:47:11 -07:00
f2229b253d
Add freexl package to specs-extended ( #6149 )
...
* Adds freexl to specs-extended
* Update cgmainfest entry
* Add license entry
* cleanup spec file
* Update license map
2023-09-11 14:13:44 +05:30
e1230ee0b5
Bump the bind version to 9.16.37 to fix CVE-2022-3924, CVE-2022-3094, CVE-2022-3736 ( #6195 )
...
Bump the bind version to 9.16.37 to fix CVE-2022-3924, CVE-2022-3094, CVE-2022-3736 (#6195 )
---------
Co-authored-by: Betty Lakes <bettylakes@microsoft.com>
2023-09-08 09:48:02 -07:00
f78a6f5eb2
Adds libgeotiff package to specs-extended ( #6150 )
...
* Adds package libgeotiff
* Adds license info for libgeotiff
* Update cgmanifest entry
* Update license map
Co-authored-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
---------
Co-authored-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2023-09-08 17:20:46 +05:30
5f271f17db
Upgrade flac 1.3.4 -> 1.4.3 to address CVE-2020-22219 ( #6164 )
...
* flac: drop BR on nasm
* flac: drop "Obsoletes" tag
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2023-09-08 13:05:39 +05:30
6848f4dcde
Upgrade opencryptoki 3.13.0 -> 3.17.0 to address CVE-2021-3798 ( #6163 )
...
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2023-09-08 12:48:09 +05:30
6d27a1cd56
Upgrade libmicrohttpd 0.9.71 -> 0.9.76 to address CVE-2023-27371 ( #6161 )
...
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2023-09-08 12:46:14 +05:30
b34b9b2bb3
Upgrade wireshark 3.4.16 -> 4.0.8 to address 27 CVEs ( #6187 )
...
Address 27 CVEs:
CVE-2021-22207 CVE-2021-22222 CVE-2021-22235 CVE-2021-39920 CVE-2021-3992
CVE-2021-39922 CVE-2021-39923 CVE-2021-39924 CVE-2021-39925 CVE-2021-39926
CVE-2021-39928 CVE-2021-39929 CVE-2021-4181 CVE-2021-4182 CVE-2021-4184
CVE-2021-4185 CVE-2021-4186 CVE-2021-4190 CVE-2022-0581 CVE-2022-0582
CVE-2022-0583 CVE-2022-0585 CVE-2022-0586 CVE-2022-3190 CVE-2022-4344
CVE-2023-0667 CVE-2023-2906
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2023-09-08 09:42:58 +05:30
29ef7cdbe9
patch tcl for CVE-2023-36328 ( #6194 )
...
* patch tcl for CVE-2023-36328
* increment version; add changelog entry
* use https; use autosetup
2023-09-07 21:07:39 -07:00
5ac625b618
Address nodejs CVEs 32002 32006 32559 ( #6186 )
...
* bump to 16.20.2 and 18.17.1 to address CVE-2023-32002 CVE-2023-32006 CVE-2023-32559
* update signatures
* update patch for 18.17.1
* update cgmanifest.json
* Update SPECS/nodejs/nodejs18.spec
Co-authored-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
---------
Co-authored-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2023-09-07 20:53:55 -07:00
fef9f5eb0a
bump frr to 8.5.3 for CVE-2023-41358 CVE-2023-41359 CVE-2023-41360 ( #6189 )
...
* bump frr to 8.5.3 for CVE-2023-41358 CVE-2023-41359 CVE-2023-41360
* update signature
* remove patch for CVE-2023-3149, it is included in 8.5.3
2023-09-07 20:39:03 -07:00
09059a4737
fix vim CVEs: CVE-2023-4734 CVE-2023-4735 CVE-2023-4736 ( #6191 )
2023-09-07 20:38:11 -07:00
1fdf7c770a
Upgrade tang 7 -> 14 to address CVE-2023-1672 ( #6167 )
...
* tang: add tang.sysusers
* tang: lint spec
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2023-09-07 18:14:14 +05:30
ef99666b41
Upgrade usbguard to 1.1.0 CVE-2019-25058 ( #6170 )
2023-09-07 15:36:44 +05:30
97916bdc78
Upgrade advancecomp to 2.5 CVE-2023-2961 ( #6177 )
...
Co-authored-by: CBL-Mariner Servicing Account <cblmargh@microsoft.com>
2023-09-07 15:33:09 +05:30
a3dc2834a0
Upgrade opensc to 0.23.0 to fix CVE-2021-34193 ( #6134 )
2023-09-05 10:59:55 -07:00
f7b197890f
Upgrade mod_auth_openidc 2.4.2.1 -> 2.4.14.2 to address CVE-2021-20718, CVE-2021-39191, CVE-2022-23527, CVE-2023-28625 ( #6159 )
...
* mod_auth_openidc: 2.4.2.1 -> 2.4.14.2 [4](CVE-2021-20718, CVE-2021-39191, CVE-2022-23527, CVE-2023-28625)
* Add license verification
* Lint spec file
* Drop rhel conditional
2023-09-05 13:56:22 +05:30
40d44e4c9c
Upgrade stunnel 5.56 -> 5.70 to address CVE-2021-20230 ( #6145 )
...
- Lint spec
- Refresh patches to apply cleanly
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2023-09-05 11:22:33 +05:30
410c929452
Upgrade dovecot to 2.3.20 to address CVEs ( #6104 )
...
* Upgrade dovecot to 2.3.20
* Add license verified in changelog
* Refactor spec
2023-09-05 11:10:30 +05:30
956b309076
Upgrade blobfuse2 2.0.5 -> 2.1.0 ( #6144 )
...
This (v2.1.0) release of blobfuse2 introduces support for ARM64
Co-authored-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2023-09-05 08:57:06 +05:30
2c710a1ee9
Upgrade xterm 372 -> 380 to address CVE-2022-45063 & CVE-2023-40359 ( #6146 )
...
- xterm: refresh patches
- xterm: lint spec
- xterm: prefer https instead of http
- xterm: switch to %make_build
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2023-09-05 08:47:29 +05:30
6d9a611aed
Upgrade screen 4.9.0 -> 4.9.1 to address CVE-2023-24626 ( #6147 )
...
- screen: refresh patches
- screen: lint spec
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2023-09-05 08:43:46 +05:30
bd5afe0c94
Upgrade fetchmail 6.4.8 -> 6.4.22 to address CVE-2021-39272 & CVE-2021-36386 ( #6158 )
...
- fetchmail: drop asc file
- fetchmail: verify license
- fetchmail: lint spec
- fetchmail: swith to %autosetup, %make_build & %make_install
- fetchmail: prefer https instead of http
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
2023-09-05 08:42:05 +05:30
cb3e7ce876
Disabled missing ptest dependencies for 7 extended specs. ( #6129 )
2023-09-01 12:02:36 -07:00
7288c7d438
Add package shapelib to SPECS-EXTENDED ( #6064 )
...
* Adds package shapelib
* Adds license info
* Update cgmanifest
* Cleanup changes
2023-09-01 00:48:38 +05:30
6acc7fa856
Add package qt5-qtserialport to SPECS-EXTENDED ( #6065 )
...
* Adds package qt5-qtserialport
* Adds license info-qtserialport
* Update cgmanifest-qtserialport
* Switch to autosetup and make_install
2023-09-01 00:17:12 +05:30
a6bb77e691
Add package uriparser to SPECS-EXTENDED ( #6067 )
...
* Adds package uriparser
* Adds license info
* Update cgmanifest
2023-08-31 23:26:34 +05:30
a8275430dc
Add package blosc to SPECS-EXTENDED ( #6066 )
...
* Adds package blosc
* Adds license info
* Update cgmanifest
* Remove comments
2023-08-31 23:09:33 +05:30
a7349bfc89
Add package liblerc to SPECS-EXTENDED ( #6063 )
...
* Adds package liblerc
* Adds license info
* Update cgmanifest
* Adds test execution command
* remove patch related to win32
* Lint spec file
2023-08-31 21:57:15 +05:30
56b5f6cb27
Add libgta package to SPECS-EXTENDED ( #6062 )
...
* Adds package libgta
* Adds license info
* Update cgmanifest
* Move global vars to top
2023-08-31 18:27:15 +05:30
41e5023e43
Upgrade nvidia-container-toolkit, nvidia-container-runtime and libnvidia-container ( #5898 )
...
* upgrade nvidia packages
* update signature of source tar
* save changes
* add patch to build nvidia-container-toolkit v1.13.3 with golang 1.19
* upgrade nvidia-container-toolkit and libnvidia to 1.13.5
* Update SPECS/libnvidia-container/libnvidia-container.spec
Co-authored-by: Henry Beberman <henry.beberman@microsoft.com>
* Update SPECS/nvidia-container-toolkit/nvidia-container-toolkit.spec
Co-authored-by: Henry Beberman <henry.beberman@microsoft.com>
* resolve coments
* remove patch and update vendor source tar
* Enforce golang to be equal to or greater than v1.20.7
---------
Co-authored-by: Henry Li <lihl@microsoft.com>
Co-authored-by: Henry Beberman <henry.beberman@microsoft.com>
2023-08-30 14:21:32 -07:00
271a0a4f43
Add ogdi package to SPECS-EXTENDED ( #6061 )
...
* Adds package ogdi
* Adds license info
* Update cgmanifest
* Update Source1 URL
2023-08-30 18:00:52 +05:30
0558adfb10
Add cfitsio package to SPECS-EXTENDED ( #6060 )
...
* Adds package cfitsio
* Add license info
* Update cgmanifest
* Update spec
2023-08-29 13:14:19 +05:30
761535f806
Adds package CharLS to SPECS-EXTENDED ( #6022 )
...
* Adds package CharLS
* Adds license info
* Update cgmanifest
* Update source URL
2023-08-25 15:50:54 +05:30
Sumynwa
Archana Choudhary
CBL-Mariner-Bot
jslobodzian
Andrew Phelps
Muhammad Falak R Wani
Henry Li
Betty
bfjelds
Henry Beberman
ashruti-msft
Pawel Winogrodzki