summaryrefslogtreecommitdiff
path: root/conf/checksums.ini
AgeCommit message (Collapse)AuthorFiles
2010-03-17wv: Upgrade to 1.2.4 to address multiple flawsHolger Hans Peter Freyther1
Addressed CVE-2006-4513.
2010-03-17bogofilter: Upgrade to 0.96.6Holger Hans Peter Freyther1
* 0.96.6 is the latest release of the ancient 0.96 release * It is addressing CVE-2005-4592
2010-03-17lighttpd: Upgrade to 1.4.26Holger Hans Peter Freyther1
This should address CVE-2010-0295.
2010-03-17maradns: Upgrade to version 1.4.03Holger Hans Peter Freyther1
* Patch the Makefiles so LDFLAGS is passed to the linker
2010-03-17nsd: Bump to 3.2.4Holger Hans Peter Freyther1
This addresses CVE-2009-1755 which is in any nsd below 3.2.2.
2010-03-17socat: Upgrade to version 1.7.1.2Holger Hans Peter Freyther1
Upgrade socat to the latest available version
2010-03-16cscope: Upgrade to 15.7a to address multiple flawsHolger Hans Peter Freyther1
2010-03-16proftpd: Upgrade to the latest version.Holger Hans Peter Freyther1
2010-03-16gnupg-1.4.10: Upgrade to the latest gnupg releaseHolger Hans Peter Freyther1
* Drop all prior patches... debian has none applied so it should work on mips and such as well.
2010-03-16streamripper: Upgrade to 1.64.6 to address multiple buffer overflowsHolger Hans Peter Freyther1
Address CVE-2008-4829 which was fixed in 1.64.0
2010-03-15gzip: Upgrade to 1.3.13 to address multiple issuesHolger Hans Peter Freyther1
CVE-2006-4334, CVE-2006-4335, CVE-2006-4336, CVE-2006-4337, CVE-2006-4338
2010-03-15lsh: Upgrade to the latest version to address two CVEsHolger Hans Peter Freyther1
CVE-2003-0826, CVE-2005-0814
2010-03-11vala: 0.7.10.3 -> 0.7.10.4Michael 'Mickey' Lauer1
2010-03-09opensll: Upgrade to version 0.9.8mHolger Hans Peter Freyther1
* Upgrade both openssl and openssl-native to 0.9.8m * Upgrade the Makefile and Config changes * Switch to checksums inside the recipe
2010-03-08git: Upgrade from 1.6.0.4 to 1.7.0.2Holger Hans Peter Freyther1
The git-daemon+(x)inetd has a known denial of service problem. Upgrade to a newer git version just in case. Remove two bogus autoconf patches that can be done by passing in autoconf varaibles. Switch to local checksums instead of checksums.ini
2010-03-08samba: Upgrade stable releases from 3.2.8 to latest 3.2.x releaseHolger Hans Peter Freyther1
This is addressing: CVE-2009-1886, CVE-2009-1888, CVE-2009-2813 CVE-2009-2948 and CVE-2009-2906.
2010-03-08netatalk: Upgrade from 2.0.3 to 2.0.5Holger Hans Peter Freyther1
Addresses CVE-2008-5718. netatalk-2.0.3-db43.patch: Done differently. netatalk-2.0.3-xfs.patch: Drop as the config switch was not used netatalk-2.0.3-setXid.patch: Was not used.
2010-03-07m4: use autotools_stage, checksum in SRC_URI, switch to .inc, add 1.4.14Chris Larson1
Signed-off-by: Chris Larson <chris_larson@mentor.com>
2010-03-05sudo: Upgrade from 1.7.2p1.bb to 1.7.2p4Holger Hans Peter Freyther1
This addresses CVE-2010-0426 http://www.vuxml.org/freebsd/018a84d0-2548-11df-b4a3-00e0815b8da8.html
2010-03-05gpdf: Remove all gpdf recipes from the repositoryHolger Hans Peter Freyther1
* gpdf contains an embedded copy of xpdf which has had several security issues in the past. * gpdf is not maintained for some years and the xpdf copy is not updated. * Remove the gpdf checksums and PREFERRED_VERSIONS * Remove it from tasks and such.
2010-03-05php-5.2.11: Upgrade to 5.2.12 to fix various issuesHolger Hans Peter Freyther1
Fix CVE-2009-3557, CVE-2009-3558, CVE-2009-4017, CVE-2009-4142 and CVE-2009-4143.
2010-03-04expat-2.0.0: Upgrade expat library to fix various known security bugsHolger Hans Peter Freyther1
* Fixes CVE-2009-3720
2010-03-04fetchmail: Upgrade to 6.3.14 to fix known security issuesHolger Hans Peter Freyther1
* 6.3.8 needs two more security patches but the original sourcecode is not available anymore. * Move the sums into the recipe * The python FILEPATH seems to be broken... I'm not fixing this right now but it would require some RDEPENDS fixes
2010-03-04linux 2.6.32: update to latest stable 2.6.32.9 patchsetPetr Štetiar1
Signed-off-by: Petr Štetiar <ynezz@true.cz> Acked-by: Marcin Juszkiewicz <marcin@juszkiewicz.com.pl>
2010-03-02gd: Upgrade from 2.0.33 to 2.0.36RC1Holger Hans Peter Freyther1
* Move the checksums into the recipe * Pick 2.0.35+2.0.36rc1 as the name to remain easily upgradable * This should resolve: http://portaudit.FreeBSD.org/6e099997-25d8-11dc-878b-000c29c5647f.html http://portaudit.FreeBSD.org/4e8344a3-ca52-11de-8ee8-00215c6a37bb.html
2010-03-02wireshark: Upgrade from 1.0.5 to 1.2.6Holger Hans Peter Freyther1
Update the ieee80215.patch. The original commit message is so weak it is not saying why the wpan_nofcs variant is to be used. I'm respecting the original patch author here but it would be better to have nice commit messages. My feeling tells me that we should drop this patch as there is no indication why this patch is a good idea.
2010-03-02vorbis-tools: Upgrade to 1.2.0Holger Hans Peter Freyther1
2010-02-28pngcrush: Bump recipe to version 1.7.9Holger Hans Peter Freyther1
* Rename both the target and native recipe to 1.7.9 * Switch to new style checksums
2010-02-28libspf2: Upgrade libspf2 to 1.2.9Holger Hans Peter Freyther1
* Fix licensing. According to the website it is LGPL or two clause BSD * Fix packaging with the libspf2-bin * Move the checksum into the bb file
2010-02-27checksums.ini: removed entry for tgt 1.0.0Frans Meulenbroeks1
removed entry for tgt 1.0.0 as the corresponding recipe is gone Signed-off-by: Frans Meulenbroeks <fransmeulenbroeks@gmail.com>
2010-02-25mythtv: removed old versionsFrans Meulenbroeks1
removed old and very old versions after verifying that no one has pinned one of these versions also removed the checksums for the removed files (including a few for versions that were renamed before) Signed-off-by: Frans Meulenbroeks <fransmeulenbroeks@gmail.com>
2010-02-23checksums.ini : new NM components checksumsGraeme Gregory1
2010-02-18checksums: fix git merge damage, sorry about thatKoen Kooi1
2010-02-18xfce4-power-manager: Remove broken xfce4-power-manager_4.6.1.bb and add ↵David-John Willis1
latest 0.8.4.2 to xfce-extras. * xfce4-power-manager_4.6.1.bb was a dummy package that never worked (a left over from my Xfce 4.6.1 work). 0.8.4.2 is the correct version to use with Xfce 4.6.* >.
2010-02-17qt4: add 4.6.2Koen Kooi1
* fix 4.6.1 references in 4.6.0 files as well * make qt-config.patch work with QT_NO_CAST_{TO,FROM},ASCII strict checking
2010-02-17system-tools-backends: Add 2.8.3 and checksum and remove DEFAULT_PREFERENCE ↵David-John Willis1
= "-1" from 2.8.1 as I can find no good reason for it to be set. * Update Angstrom distro patch for 2.8.3 and make it only apply if Angstrom distro is set.
2010-02-17checksums: add some old-style checksumsKoen Kooi1
2010-02-15ibrdtn: Add release 0.1.1Stefan Schmidt1
IBR-DTN is a implementation of the bundle protocol RFC5050. The included build fix will only be needed for this release upcoming one will already have it.
2010-02-14busybox: remove orphaned patch checksumsBernhard Reutner-Fischer1
These http download patches are not in use anymore. Just keep checksums for 1.7.2 (those are mentioned in the .bb) Signed-off-by: Bernhard Reutner-Fischer <rep.dot.nop@gmail.com>
2010-02-14busybox: use .tar.bz2Bernhard Reutner-Fischer1
Switch to new-style checksums and remove all checksums for tarballs from checksums.ini Signed-off-by: Bernhard Reutner-Fischer <rep.dot.nop@gmail.com>
2010-02-14tzdata_2010b: Add newest tzdataStefan Schmidt1
The checksum changes does not only include the new file checksum, but also sorts it as older entries have been added unsorted.
2010-02-14attr: add 2.4.44Koen Kooi1
acl: add 2.2.49 udev: add 151
2010-02-13vala: 0.7.10.2 -> 0.7.10.3Michael 'Mickey' Lauer1
2010-02-12linux-ea3250: New recipeRuud Althuizen1
This is a kernel recipe for the LPC32XX (LPC3250) based Embedded Artists development board. It uses public patches provided by NXP and Embedded Artists. The other two patches provide drivers for the PWM capabilities and fix one NXP patch. It can be generalized for use with the PHYTEC LPC3250 development board. Signed-off-by: Frans Meulenbroeks <fransmeulenbroeks@gmail.com>
2010-02-12perl 5.8.8: add missing checksumsKoen Kooi1
2010-02-12wt3: build outside the source treeFrans Meulenbroeks1
this builds wt3 outside the source tree. not doing so is not the recommended solution and actually breaks in 3.1.0 fixed it to use a build dir while at it also inlined the checksums and removed them from checksums.ini Signed-off-by: Frans Meulenbroeks <fransmeulenbroeks@gmail.com>
2010-02-11wwwoffle: Updated to version 2.9f.Stanislav Brabec1
2010-02-11smartmontools: Updated to version 5.39.1.Stanislav Brabec1
2010-02-10gpsd: update to version 2.39Henning Heinold1
2010-02-10checksums.ini: another set of checksumsMarcin Juszkiewicz1
Signed-off-by: Marcin Juszkiewicz <marcin@juszkiewicz.com.pl>