| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
| |
Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org>
|
| |
|
|
|
| |
Closes: https://bugs.gentoo.org/935398
Signed-off-by: Maciej Barć <xgqt@gentoo.org>
|
| |
|
|
|
|
|
| |
Ancient codebase, lto-type-mismatch in testsuite in packetProcesisng.c
where patching it then needs Ruby.
Signed-off-by: Sam James <sam@gentoo.org>
|
| |
|
|
|
|
|
|
|
| |
Release Announcement:
- https://www.ntp.org/support/securitynotice/4_2_8p18-release-announcement/
Signed-off-by: Aliaksei Urbanski <aliaksei.urbanski@gmail.com>
Closes: https://github.com/gentoo/gentoo/pull/37365
Signed-off-by: Sam James <sam@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Sam James <sam@gentoo.org>
|
| |
|
|
|
|
|
| |
Straight-to-stable, minor bugfix release to yesterday's version
that is also stable.
Signed-off-by: Ionen Wolkens <ionen@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Patrick McLean <chutzpah@gentoo.org>
|
| |
|
|
|
| |
Bug: https://bugs.gentoo.org/935271
Signed-off-by: Patrick McLean <chutzpah@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Sam James <sam@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Sam James <sam@gentoo.org>
|
| |
|
|
|
|
| |
CVE-2024-10123
Signed-off-by: Ionen Wolkens <ionen@gentoo.org>
|
| |
|
|
|
|
|
|
| |
Typically still wait a week or so assuming youtube fetching is not
broken, but there's also a minor CVE this time around.. so let's
avoid extra hassle and do it in one go.
Signed-off-by: Ionen Wolkens <ionen@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Jakov Smolić <jsmolic@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Mike Gilbert <floppym@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Sam James <sam@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Bernard Cafarelli <voyageur@gentoo.org>
|
| |
|
|
|
|
|
| |
Also add USE=widgets dep on dev-qt/qtdeclarative
Closes: https://bugs.gentoo.org/934683
Signed-off-by: Bernard Cafarelli <voyageur@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Bernard Cafarelli <voyageur@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Ben Kohler <bkohler@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Ben Kohler <bkohler@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Sam James <sam@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Sam James <sam@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Sam James <sam@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Sam James <sam@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Sam James <sam@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Sam James <sam@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Sam James <sam@gentoo.org>
|
| |
|
|
|
| |
Bug: https://bugs.gentoo.org/935271
Signed-off-by: Sam James <sam@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Arthur Zamarin <arthurzam@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Sam James <sam@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Sam James <sam@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Arthur Zamarin <arthurzam@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Arthur Zamarin <arthurzam@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Arthur Zamarin <arthurzam@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Arthur Zamarin <arthurzam@gentoo.org>
|
| |
|
|
|
|
| |
ago pointed out that it's confusing.
Signed-off-by: Sam James <sam@gentoo.org>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
openssh-9.8_p1 again breaks cross-version compatibility, meaning that
a running sshd with 9.7_p1 will no longer be able to accept connections
after upgrading to 9.8_p1.
We tried doing a news item on this in the past (bug #709748) and it ended
up being insufficient and poorly coordinated (as you really need it again
when stabling).
Nobody is going to thank us for leaving their sshd broken, so pick
the lesser evil and attempt to restart sshd on major version upgrades.
This is especially important as people may be racing to upgrade to 9.8_p1
for the CVE-2024-6387 fix (although we have backported a fix to older versions).
I also note there's precedent here with e.g. the systemd rebuild where
it's done to avoid immediate breakage of user sessions.
Thanks to kerframil who proposed a snippet for this some time ago whose
work I've lifted here.
Bug: https://bugs.gentoo.org/709748
Bug: https://bugs.gentoo.org/935271
Signed-off-by: Sam James <sam@gentoo.org>
|
| |
|
|
|
|
|
|
| |
This applies upstream's backport suggestions from https://marc.info/?l=oss-security&m=171982317624594&w=2
for both CVE-2024-6387 and a "minor logic error in ObscureKeystrokeTiming".
Bug: https://bugs.gentoo.org/935271
Signed-off-by: Sam James <sam@gentoo.org>
|
| |
|
|
|
|
|
|
|
| |
This fixes CVE-2024-6387 but I'm going to backport a fix to 9.7 shortly
as 9.8_p1 isn't a good stable candidate given it's only just been released
and has many other changes.
Bug: https://bugs.gentoo.org/935271
Signed-off-by: Sam James <sam@gentoo.org>
|
| |
|
|
|
|
| |
Signed-off-by: Martin Dummer <martin.dummer@gmx.net>
Closes: https://github.com/gentoo/gentoo/pull/37380
Signed-off-by: Matt Jolly <kangie@gentoo.org>
|
| |
|
|
|
|
|
| |
drop version 15.48.4 due to security vulnerability CVE-2024-0819
Signed-off-by: Martin Dummer <martin.dummer@gmx.net>
Signed-off-by: Matt Jolly <kangie@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Michał Górny <mgorny@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Sam James <sam@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Sam James <sam@gentoo.org>
|
| |
|
|
|
|
| |
Signed-off-by: Michael Mair-Keimberger <mmk@levelnine.at>
Closes: https://github.com/gentoo/gentoo/pull/37346
Signed-off-by: Conrad Kostecki <conikost@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Viorel Munteanu <ceamac@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org>
|
| |
|
|
| |
Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org>
|
Andreas Sturmlechner
Maciej Barć
Sam James
Aliaksei Urbanski
Ionen Wolkens
Patrick McLean
Jakov Smolić
Mike Gilbert
Bernard Cafarelli
Ben Kohler
Arthur Zamarin
Martin Dummer
Michał Górny
Michael Mair-Keimberger
Viorel Munteanu
GitWeb