summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAge
* Merge branch 'master' into security-updatesMark H Weaver2016-03-12
|\
| * gnu: samba: Update to 4.3.6 [fixes CVE-2015-7560, CVE-2016-0771].Efraim Flashner2016-03-12
| | | | | | | | * gnu/packages/samba.scm (samba): Update to 4.3.6.
| * gnu: accountsservice: Use HTTPS URL.Leo Famulari2016-03-12
| | | | | | | | * gnu/packages/freedesktop.scm (accountsservice)[source]: Use HTTPS URL.
| * gnu: mupdf: Update to 1.8.Andreas Enge2016-03-12
| | | | | | | | * gnu/packages/pdf.scm (mupdf): Update to 1.8.
| * gnu: mupdf: Simplify package.Andreas Enge2016-03-12
| | | | | | | | | | | | | | | | | | * gnu/packages/pdf.scm (mupdf)[source]: Drop patch and part of snippet modifying permissions of files added by the patch. [arguments]: Use #:make-flags instead of modified build and install phases. Drop superfluous module inclusion. Use modify-phases syntax. * gnu/packages/patches/mupdf-buildsystem-fix.patch: Remove patch. * gnu-system.am (dist_patch_DATA): Unregister patch.
| * gnu: Add fluxbox.Danny Milosavljevic2016-03-11
| | | | | | | | | | | | * gnu/packages/wm.scm (fluxbox): New variable. Co-authored-by: Eric Bavier <bavier@member.fsf.org>
| * gnu: webkitgtk: Update to 2.10.8 [fixes CVE-2016-1726].Mark H Weaver2016-03-11
| | | | | | | | * gnu/packages/webkit.scm (webkitgtk): Update to 2.10.8.
| * gnu: openexr: Disable broken test to fix build on i686.Leo Famulari2016-03-11
| | | | | | | | * gnu/packages/graphics.scm (openexr)[arguments]: New field.
| * doc: Add footnote about pointing ~/.config/guix/latest at user's checkoutChristopher Allan Webber2016-03-11
| | | | | | | | * doc/contributing.texi (Running Guix Before It Is Installed): New footnote.
| * gnu: libevent: Update to 2.0.22 [fixes CVE-2015-6525].Ludovic Courtès2016-03-11
| | | | | | | | * gnu/packages/libevent.scm (libevent): Update to 2.0.22.
| * cve: Read entire CVE databases for the current year and the past year.Ludovic Courtès2016-03-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | The "Modified" database that we were reading is much smaller, but it only shows CVEs modified over the past week. * guix/cve.scm (%now, %current-year, %past-year): New variables. (yearly-feed-uri): New procedure. (%cve-feed-uri, %ttl): Remove. (%current-year-ttl, %past-year-ttl): New variables. (call-with-cve-port): Add 'uri' and 'ttl' parameters and honor them. Add 'setvbuf' call. (current-vulnerabilities)[read-vulnerabilities]: New procedure. Read from both %LAST-YEAR and %CURRENT-YEAR.
| * gnu: vorbis-tools: Patch buffer overflow [fixes CVE-2015-6749].Ludovic Courtès2016-03-11
| | | | | | | | | | | | * gnu/packages/patches/vorbis-tools-CVE-2015-6749.patch: New file. * gnu-system.am (dist_patch_DATA): Add it. * gnu/packages/xiph.scm (vorbis-tools)[source]: Use it.
| * doc: Suggest `guix.scm' for upstream maintainers.Jan Nieuwenhuizen2016-03-11
| | | | | | | | | | | | * doc/guix.texi (Invoking guix package): Suggest `guix.scm'. Signed-off-by: Ludovic Courtès <ludo@gnu.org>
| * cve: Make CPE patch level part of the version string.Ludovic Courtès2016-03-11
| | | | | | | | | | * guix/cve.scm (%cpe-package-rx): Adjust to account for :PATCH-LEVEL. (cpe->package-name): Likewise.
| * gnu: Add powwow.Nils Gillmann2016-03-11
| | | | | | | | * gnu/packages/games.scm (powwow): New variable.
| * gnu: Add bioawk.Roel Janssen2016-03-10
| | | | | | | | | | | | * gnu/packages/bioinformatics.scm (bioawk): New variable. Signed-off-by: Leo Famulari <leo@famulari.name>
| * gnu: linux-libre: Update to 4.4.5.Mark H Weaver2016-03-10
| | | | | | | | * gnu/packages/linux.scm (linux-libre): Update to 4.4.5.
| * gnu: Add nload.Raimon Grau2016-03-10
| | | | | | | | | | | | * gnu/packages/networking.scm (nload): New variable. Signed-off-by: Leo Famulari <leo@famulari.name>
| * gnu: dropbear: Update to 2016.72 [fixes CVE-2016-3116].Leo Famulari2016-03-10
| | | | | | | | * gnu/packages/ssh.scm (dropbear): Update to 2016.72.
| * gnu: openssh: Update to 7.2p2 [fixes CVE-2016-3115].Leo Famulari2016-03-10
| | | | | | | | * gnu/packages/ssh.scm (openssh): Update to 7.2p2.
| * gnu: catch: Update to 1.3.5.Efraim Flashner2016-03-10
| | | | | | | | * gnu/packages/check.scm (catch): Update to 1.3.5.
| * gnu: cppunit: Update to 1.13.2.Efraim Flashner2016-03-10
| | | | | | | | | | | | * gnu/packages/check.scm (cppunit): Update to 1.13.2. [source]: Change to libreoffice's hosted release tarballs. [home-page]: Change to freedesktop.
| * gnu: lcov: Update to 1.12.Efraim Flashner2016-03-10
| | | | | | | | * gnu/packages/code.scm (lcov): Update to 1.12.
| * gnu: the-silver-searcher: Update to 0.31.0.Efraim Flashner2016-03-10
| | | | | | | | * gnu/packages/code.scm (the-silver-searcher): Update to 0.31.0.
| * gnu: complexity: Update to 1.10.Efraim Flashner2016-03-10
| | | | | | | | * gnu/packages/code.scm (complexity): Update to 1.10.
| * gnu: libass: Update to 0.13.2.Efraim Flashner2016-03-10
| | | | | | | | * gnu/packages/video.scm (libass): Update to 0.13.2.
| * gnu: obs: Update to 0.13.2.Efraim Flashner2016-03-10
| | | | | | | | * gnu/packages/video.scm (obs): Update to 0.13.2.
| * gnu: icecat: Add several security fixes.Mark H Weaver2016-03-10
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * gnu/packages/patches/icecat-CVE-2015-4477.patch, gnu/packages/patches/icecat-CVE-2015-7207.patch, gnu/packages/patches/icecat-CVE-2016-1952-pt01.patch, gnu/packages/patches/icecat-CVE-2016-1952-pt02.patch, gnu/packages/patches/icecat-CVE-2016-1952-pt03.patch, gnu/packages/patches/icecat-CVE-2016-1952-pt04.patch, gnu/packages/patches/icecat-CVE-2016-1952-pt05.patch, gnu/packages/patches/icecat-CVE-2016-1952-pt06.patch, gnu/packages/patches/icecat-CVE-2016-1954.patch, gnu/packages/patches/icecat-CVE-2016-1960.patch, gnu/packages/patches/icecat-CVE-2016-1961.patch, gnu/packages/patches/icecat-CVE-2016-1962.patch, gnu/packages/patches/icecat-CVE-2016-1964.patch, gnu/packages/patches/icecat-CVE-2016-1965.patch, gnu/packages/patches/icecat-CVE-2016-1966.patch, gnu/packages/patches/icecat-CVE-2016-1974.patch, gnu/packages/patches/icecat-bug-1248851.patch: New files. * gnu-system.am (dist_patch_DATA): Add them. * gnu/packages/gnuzilla.scm (icecat)[source]: Add patches.
| * substitute: Optimize HTTP pipelining over TLS.Ludovic Courtès2016-03-10
| | | | | | | | | | * guix/scripts/substitute.scm (http-multiple-get): Write the requests to a bytevector output port before sending them.
| * substitute: Add HTTPS support.Ludovic Courtès2016-03-10
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fixes <http://bugs.gnu.org/22937>. Reported by Chris Marusich <cmmarusich@gmail.com>. * guix/scripts/substitute.scm (fetch): Add 'https' alongside 'http'. Use 'open-connection-for-uri' instead of 'open-socket-for-uri'. Call 'setvbuf' only when PORT matches 'file-port?'. (http-multiple-get): Likewise. Change 'base-url' parameter to 'base-uri'. (fetch-narinfos)[do-fetch]: Add 'https' case alongside 'http'. Pass URI instead of URL to 'http-multiple-get'. * doc/guix.texi (Requirements): Move GnuTLS one level higher and mention HTTPS substitutes. (Substitutes): Mention HTTPS and recommend it. Explain why servers are not authenticated. Add "On Trusting Binaries" subsection.
| * gnu: isc-dhcp: Update bundled bind to 9.9.8-P4 [fixes CVE-2016-1285, ↵Efraim Flashner2016-03-10
| | | | | | | | | | | | CVE-2016-1286]. * gnu/packages/admin.scm (isc-dhcp): Update bundled bind to 9.9.8-P4.
| * gnu: bind-utils: Update to 9.10.3-P4 [fixes CVE-2016-1285, CVE-2016-1286].Efraim Flashner2016-03-10
| | | | | | | | * gnu/packages/dns.scm (bind-utils): Update to 9.10.3-P4.
| * gnu: custom-gcc: Delete broken or conflicting executables.Ricardo Wurmus2016-03-10
| | | | | | | | | | | | * gnu/packages/gcc.scm (custom-gcc)[arguments]: Add phase to remove executables that are non-functional or conflict with the executables of "gcc".
| * gnu: nautilus: Don't propagate gtk+.宋文武2016-03-10
| | | | | | | | * gnu/packages/gnome.scm (nautilus): Move gtk+ from propagated-inputs to inputs.
| * substitute: Error out on unsupported URL schemes.Ludovic Courtès2016-03-09
| | | | | | | | | | | | | | Reported in <http://bugs.gnu.org/22937> by Chris Marusich <cmmarusich@gmail.com>. * guix/scripts/substitute.scm (fetch): Add 'else' case and call 'leave'.
| * ui: Do not call 'port-filename' on closed file ports.Ludovic Courtès2016-03-09
| | | | | | | | | | | | * guix/ui.scm (call-with-error-handling)[port-filename*]: New procedure. Use it in the 'nar-error?' case.
| * gnu: texlive: Make texlive-bin and texlive-texmf private.Andreas Enge2016-03-09
| | | | | | | | | | * gnu/packages/texlive.scm (texlive-bin, texlive-texmf): Define the variables as non-public; they should not be installed into a profile.
| * gnu: po4a: Use texlive-minimal instead of texlive-bin.Andreas Enge2016-03-09
| | | | | | | | | | * gnu/packages/gettext.scm (po4a)[inputs]: Replace texlive-bin by texlive-minimal.
| * gnu: statistics: Remove import of unused texlive module.Andreas Enge2016-03-09
| | | | | | | | * gnu/packages/statistics.scm: Do not import (gnu packages texlive).
| * gnu: gnuplot: Use texlive-minimal instead of texlive-bin.Andreas Enge2016-03-09
| | | | | | | | | | * gnu/packages/maths.scm (gnuplot)[inputs]: Replace texlive-bin by texlive-minimal.
| * gnu: simple-scan: Update to 3.19.91.Tobias Geerinckx-Rice2016-03-09
| | | | | | | | | | * gnu/packages/gnome.scm (simple-scan): Update to 3.19.91. [arguments]: Add 'clean' phase.
| * gnu: pidgin-otr: Update to 4.0.2.Mark H Weaver2016-03-09
| | | | | | | | * gnu/packages/messaging.scm (pidgin-otr): Update to 4.0.2.
| * gnu: libotr: Remove version 3.2.1.Andreas Enge2016-03-09
| | | | | | | | * gnu/packages/messaging.scm (libotr-3): Remove variable.
| * libotr: Update to 4.1.1 [fixes CVE-2016-2851].Leo Famulari2016-03-09
| | | | | | | | | | * gnu/packages/messaging.scm (libotr): Update to 4.1.1. [native-inputs]: New field.
* | gnu: dbus: Incorporate "dbus-helper-search-path.patch".Ludovic Courtès2016-03-09
| | | | | | | | | | | | | | | | * gnu/packages/glib.scm (dbus)[source]: Apply "dbus-helper-search-path.patch". (dbus/activation): Remove. * gnu/services/dbus.scm (<dbus-configuration>)[dbus]: Default to DBUS. (dbus-service): Likewise.
* | gnu: eudev: Add dependency on blkid.Ludovic Courtès2016-03-09
| | | | | | | | | | | | | | | | * gnu/packages/linux.scm (eudev)[inputs]: Add UTIL-LINUX. (eudev-with-blkid): Remove. * gnu/services/base.scm (udev-service): Use EUDEV instead of EUDEV-WITH-BLKID. * gnu/system.scm (%base-packages): Likewise.
* | gnu: graphite2: Update to 1.3.6.Ludovic Courtès2016-03-09
| | | | | | | | | | | | * gnu/packages/fontutils.scm (graphite2)[replacement]: Remove. [version, source]: Update to 1.3.6. (graphite2-1.3.6): Remove.
* | gnu: openssl: Update to 1.0.2g.Ludovic Courtès2016-03-09
| | | | | | | | | | | | | | | | * gnu/packages/tls.scm (openssl)[replacement]: Remove. [version, source]: Bump to 1.0.2g. Use "openssl-c-rehash-in.patch" instead of "openssl-c-rehash.patch". (openssl-1.0.2g): Remove. * gnu-system.am (dist_patch_DATA): Remove "openssl-c-rehash.patch".
* | gnu: perl: Incorporate patch for CVE-2016-2381.Ludovic Courtès2016-03-09
|/ | | | | | * gnu/packages/perl.scm (perl)[source]: Add "perl-CVE-2016-2381.patch". [replacement]: Remove. (perl-fixed): Remove.
* gnu: complexity: Update to 1.9.Ludovic Courtès2016-03-09
| | | | * gnu/packages/code.scm (complexity): Update to 1.9.
generated by cgit v1.2.3 (git 2.25.4) at 2024-10-06 17:27:38 +0000