summaryrefslogtreecommitdiff
path: root/gnu/packages
AgeCommit message (Collapse)Author
2021-03-11Revert "gnu: mongodb: Update to 3.4.24 [security fixes]."Efraim Flashner
This reverts commit e5f89570c1d72c4b674fad6b6ad5591ead02d419. After this version mongodb switched to the Server Side Public License (https://www.mongodb.com/licensing/server-side-public-license) which is not a FOSS license.
2021-03-11gnu: glib: Fix CVE-2021-27218 and CVE-2021-27219.Mark H Weaver
* gnu/packages/patches/glib-CVE-2021-27218.patch, gnu/packages/patches/glib-CVE-2021-27219-01.patch, gnu/packages/patches/glib-CVE-2021-27219-02.patch, gnu/packages/patches/glib-CVE-2021-27219-03.patch, gnu/packages/patches/glib-CVE-2021-27219-04.patch, gnu/packages/patches/glib-CVE-2021-27219-05.patch, gnu/packages/patches/glib-CVE-2021-27219-06.patch, gnu/packages/patches/glib-CVE-2021-27219-07.patch, gnu/packages/patches/glib-CVE-2021-27219-08.patch, gnu/packages/patches/glib-CVE-2021-27219-09.patch, gnu/packages/patches/glib-CVE-2021-27219-10.patch, gnu/packages/patches/glib-CVE-2021-27219-11.patch, gnu/packages/patches/glib-CVE-2021-27219-12.patch, gnu/packages/patches/glib-CVE-2021-27219-13.patch, gnu/packages/patches/glib-CVE-2021-27219-14.patch, gnu/packages/patches/glib-CVE-2021-27219-15.patch, gnu/packages/patches/glib-CVE-2021-27219-16.patch, gnu/packages/patches/glib-CVE-2021-27219-17.patch, gnu/packages/patches/glib-CVE-2021-27219-18.patch: New files. * gnu/local.mk (dist_patch_DATA): Add them. * gnu/packages/glib.scm (glib)[replacement]: New field. (glib/fixed): New variable.
2021-03-11gnu: go: Update to 1.14.15 [security fixes].Léo Le Bouter
This update will cause more than 300 packages to be rebuilt but due to how Go works we can't graft to fix the issue since we actually need to rebuild dependents so they include a newer version of the Go standard library. Considering the CVEs that this fixes are in great part in the Go standard library we can only proceed and push directly to master. * gnu/packages/golang.scm (go): Update to 1.14.15. [arguments]: Remove more cgo-related failing tests.
2021-03-11gnu: emacs-password-store: 2.1.4-1.918992c [security fix].Pierre Langlois
Includes a fix to no longer store clear passwords in a temporary file, see commit 7aa17d099577730d2d65332896b74d5865b22abf for details. * gnu/packages/emacs-xyz.scm (emacs-password-store): Update to 2.1.4-1.918992c. [propagated-inputs]: Remove emacs-f, add emacs-auth-source-pass.
2021-03-11gnu: openssl: Update to 1.1.1j [security fixes].Léo Le Bouter
* gnu/packages/tls.scm (openssl/fixed): New variable. (openssl)[replacement]: Graft.
2021-03-11gnu: openvpn: Update to 2.5.1 [security fixes].Léo Le Bouter
Non-exhaustively, fixes CVE-2020-7224. * gnu/packages/vpn.scm (openvpn): Update to 2.5.1.
2021-03-11gnu: libx11: Update to 1.6.12 [fixes CVE-2020-14363].Léo Le Bouter
* gnu/packages/xorg.scm (libx11/fixed): New variable. (libx11)[replacement]: Graft.
2021-03-11gnu: docker-cli: Fix source hash.Léo Le Bouter
This is a follow-up to commit 83cda00bc62d665f05d37d07c78a1c4eab5297f0. * gnu/packages/docker.scm (docker-cli): Fix source hash caused by cascading %docker-version variable changes.
2021-03-11gnu: gnome-autoar: Update to 0.3.0 [fixes CVE-2020-36241].Léo Le Bouter
* gnu/packages/gnome.scm (gnome-autoar): Update to 0.3.0.
2021-03-11gnu: zstd-1.4.9: Fix i686-linux and arm/aarch64-linux builds.Léo Le Bouter
It's only a graft added for security so disabling tests on there seems acceptable. See: <https://lists.gnu.org/archive/html/guix-devel/2021-03/msg00130.html>. * gnu/packages/compression.scm (zstd-1.4.9)[arguments]: Substitute keyword arguments of 'zstd' to disable tests.
2021-03-11gnu: geary: Fix CVE-2020-24661.Léo Le Bouter
* gnu/packages/patches/geary-CVE-2020-24661.patch: New patch. * gnu/local.mk (dist_patch_DATA): Register it. * gnu/packages/gnome.scm (geary): Apply it.
2021-03-11gnu: gthumb: Update to 3.10.2 [security fixes].Léo Le Bouter
Non-exhaustively, fixes CVE-2019-20326. * gnu/packages/gnome.scm (gthumb): Update to 3.10.2.
2021-03-11gnu: libcroco: Fix CVE-2020-12825.Léo Le Bouter
* gnu/packages/patches/libcroco-CVE-2020-12825.patch: New patch. * gnu/local.mk (dist_patch_DATA): Register it. * gnu/packages/gnome.scm (libcroco/fixed): New variable. Apply patch. (libcroco)[replacement]: Graft.
2021-03-11gnu: evolution: Fix CVE-2020-11879.Léo Le Bouter
* gnu/packages/patches/evolution-CVE-2020-11879.patch: New patch. * gnu/local.mk (dist_patch_DATA): Register it. * gnu/packages/gnome.scm (evolution): Apply it.
2021-03-11gnu: evolution-data-server: Fix CVE-2020-14928 and CVE-2020-16117.Léo Le Bouter
* gnu/packages/patches/evolution-data-server-CVE-2020-14928.patch, gnu/packages/patches/evolution-data-server-CVE-2020-16117.patch: New patches. * gnu/local.mk (dist_patch_DATA): Register them. * gnu/packages/gnome.scm (evolution-data-server): Apply them.
2021-03-11gnu: qca: Update to 2.3.2.Tobias Geerinckx-Rice
* gnu/packages/kde.scm (qca): Update to 2.3.2.
2021-03-11gnu: sooperlooper: Update to 1.7.6.Tobias Geerinckx-Rice
* gnu/packages/music.scm (sooperlooper): Update to 1.7.6.
2021-03-11gnu: bindfs: Update to 1.15.1.Tobias Geerinckx-Rice
* gnu/packages/file-systems.scm (bindfs): Update to 1.15.1.
2021-03-11gnu: weechat: Update to 3.1.Tobias Geerinckx-Rice
* gnu/packages/irc.scm (weechat): Update to 3.1.
2021-03-11gnu: os-prober: Update to 1.78.Tobias Geerinckx-Rice
* gnu/packages/bootloaders.scm (os-prober): Update to 1.78.
2021-03-11gnu: mutt: Update to 2.0.6.Tobias Geerinckx-Rice
* gnu/packages/mail.scm (mutt): Update to 2.0.6.
2021-03-10gnu: librecad: Update to 2.2.0-rc2 [fixes CVE-2018-19105].Léo Le Bouter
* gnu/packages/engineering.scm (librecad): Update to 2.2.0-rc2.
2021-03-10gnu: monolith: Update to 2.4.1.Nicolas Goaziou
* gnu/packages/web.scm (monolith): Update to 2.4.1.
2021-03-10gnu: Add rust-cssparser-0.28.Nicolas Goaziou
* gnu/packages/crates-io.scm (rust-cssparser-0.28): New variable. (rust-cssparser-0.27): Inherit from above.
2021-03-10gnu: Add rust-reqwest-0.11.Nicolas Goaziou
* gnu/packages/crates-io.scm (rust-reqwest-0.11): New variable. (rust-reqwest-0.10): Inherit from above.
2021-03-10gnu: Add rust-tokio-util-0.4.Nicolas Goaziou
* gnu/packages/crates-io.scm (rust-tokio-util-0.4): New variable.
2021-03-10gnu: rust-async-compression-0.3: Update to 0.3.7.Nicolas Goaziou
* gnu/packages/crates-io.scm (rust-async-compression-0.3): Update to 0.3.7. [arguments]: Skip tests.
2021-03-10gnu: Add rust-zstd-0.6.Nicolas Goaziou
* gnu/packages/crates-io.scm (rust-zstd-0.6): New variable. (rust-zstd-0.5): Inherit from above.
2021-03-10gnu: Add rust-zstd-safe-3.Nicolas Goaziou
* gnu/packages/crates-io.scm (rust-zstd-safe-3): New variable. (rust-zstd-safe-2): Inherit from above.
2021-03-10gnu: rust-zstd-sys-1: Update to 1.4.20+zstd.1.4.9.Nicolas Goaziou
* gnu/packages/crates-io.scm (rust-zstd-sys-1): Update to 1.4.20+zstd.1.4.9.
2021-03-10gnu: Add rust-bindgen-0.57.Nicolas Goaziou
* gnu/packages/crates-io.scm (rust-bindgen-0.57): New variable. (rust-bindgen-0.55): Inherit from above.
2021-03-10gnu: Add rust-hyper-0.14.Nicolas Goaziou
* gnu/packages/crates-io.scm (rust-hyper-0.14): New variable. (rust-hyper-0.13): Inherit from above.
2021-03-10gnu: Add rust-http-body-0.4.Nicolas Goaziou
* gnu/packages/crates-io.scm (rust-http-body-0.4): New variable. (rust-http-body-0.3): Inherit from above.
2021-03-10gnu: Add rust-h2-0.3.Nicolas Goaziou
* gnu/packages/crates-io.scm (rust-h2-0.3): New variable. (rust-h2-0.2): Inherit from above.
2021-03-10gnu: Add rust-tokio-util-0.6.Nicolas Goaziou
* gnu/packages/crates-io.scm (rust-tokio-util-0.6): New variable. (rust-tokio-util-0.3): Inherit from above.
2021-03-10gnu: Add rust-httpdate-0.3.Nicolas Goaziou
* gnu/packages/crates-io.scm (rust-httpdate-0.3): New variable.
2021-03-10gnu: Add rust-hyper-rustls-0.22.Nicolas Goaziou
* gnu/packages/crates-io.scm (rust-hyper-rustls-0.22): New variable. (rust-hyper-rustls-0.21): Inherit from above.
2021-03-10gnu: Add rust-ct-logs-0.8.Nicolas Goaziou
* gnu/packages/crates-io.scm (rust-ct-logs-0.8): New variable. (rust-ct-logs-0.7): Inherit from above.
2021-03-10gnu: Add rust-rustls-native-certs-0.5.Nicolas Goaziou
* gnu/packages/crates-io.scm (rust-rustls-native-certs-0.5): New variable. (rust-rustls-native-certs-0.4): Inherit from above.
2021-03-10gnu: Add rust-webpki-roots-0.21.Nicolas Goaziou
* gnu/packages/crates-io.scm (rust-webpki-roots-0.21): New variable. (rust-webpki-roots-0.20): Inherit from above.
2021-03-10gnu: Add rust-hyper-tls-0.5.Nicolas Goaziou
* gnu/packages/crates-io.scm (rust-hyper-tls-0.5): New variable. (rust-hyper-tls-0.4): Inherit from above.
2021-03-10gnu: Add rust-tokio-native-tls-0.3.Nicolas Goaziou
* gnu/packages/crates-io.scm (rust-tokio-native-tls-0.3): New variable. (rust-tokio-native-tls-0.1): Inherit from above.
2021-03-10gnu: Add rust-tokio-socks-0.5.Nicolas Goaziou
* gnu/packages/crates-io.scm (rust-tokio-socks-0.5): New variable. (rust-tokio-socks-0.3): Inherit from above.
2021-03-10gnu: rust-native-tls-0.2: Update to 0.2.7.Nicolas Goaziou
* gnu/packages/crates-io.scm (rust-native-tls-0.2): Update to 0.2.7.
2021-03-10gnu: Add rust-test-cert-gen-0.1.Nicolas Goaziou
* gnu/packages/crates-io.scm (rust-test-cert-gen-0.1): New variable.
2021-03-10gnu: Add rust-trust-dns-resolver-0.20.Nicolas Goaziou
* gnu/packages/crates-io.scm (rust-trust-dns-resolver-0.20): New variable. (rust-trust-dns-resolver-0.19): Inherit from above.
2021-03-10gnu: Add rust-resolv-conf-0.7.Nicolas Goaziou
* gnu/packages/crates-io.scm (rust-resolv-conf-0.7): New variable. (rust-resolv-conf-0.6): Inherit from above.
2021-03-10gnu: Add rust-tokio-openssl-0.6.Nicolas Goaziou
* gnu/packages/crates-io.scm (rust-tokio-openssl-0.6): New variable. (rust-tokio-openssl-0.4): Inherit from above.
2021-03-10gnu: Add rust-trust-dns-https-0.20.Nicolas Goaziou
* gnu/packages/crates-io.scm (rust-trust-dns-https-0.20): New variable. (rust-trust-dns-https-0.19): Inherit from above.
2021-03-10gnu: Add rust-trust-dns-rustls-0.20.Nicolas Goaziou
* gnu/packages/crates-io.scm (rust-trust-dns-rustls-0.20): New variable. (rust-trust-dns-rustls-0.19): Inherit from above.
generated by cgit v1.2.3 (git 2.45.2) at 2024-07-16 09:41:28 +0000