aszlig
9e476fe740
synergy: Add patch to fix CVE-2020-15117
...
From the description of CVE-2020-15117:
> In Synergy before version 1.12.0, a Synergy server can be crashed by
> receiving a kMsgHelloBack packet with a client name length set to
> 0xffffffff (4294967295) if the servers memory is less than 4 GB. It
> was verified that this issue does not cause a crash through the
> exception handler if the available memory of the Server is more than
> 4GB.
While I personally would consider this a pretty low-priority issue since
Synergy usually is only used in local environment, it's nevertheless
better to patch known issues.
Since the fix is part of version 1.12, which doesn't have a stable
release yet, I'm including the fix as a patch cherry-picked from the
upstream commit.
I originally had the CVE number as a comment prior to the fetchpatch
call in question, but since @mweinelt mentioned that https://broken.sh/
uses the patch file name[1] to match whether the software in question
has been patched, I've removed my initial comment as it would be
redundant.
[1]: https://github.com/andir/nix-vulnerability-scanner/blob/fb63998885462/src/report/nix_patches.rs#L83-L95
Signed-off-by: aszlig <aszlig@nix.build>
Fixes: https://github.com/NixOS/nixpkgs/issues/94007
2020-08-04 16:35:18 +02:00
aszlig
3873e0d191
Unmaintain packages I don't use anymore
...
Just got a reminder via the vulnerability roundup[1] that I'm still
listed as maintainer for Synergy, even though I stopped using it years
ago.
I'll also take this as an opportunity to remove myself from other
packages which I stopped using and thus most certainly won't be able to
maintain. The latter is already hard enough these days for software
which I *do* use.
[1]: https://github.com/NixOS/nixpkgs/issues/94007
Signed-off-by: aszlig <aszlig@nix.build>
2020-07-28 02:08:36 +02:00
Maximilian Bosch
127d1fb3a7
Merge pull request #93965 from jojosch/mycli-1.22.1
...
mycli: 1.21.1 -> 1.22.1
2020-07-28 01:50:46 +02:00
worldofpeace
77b43a35c8
Merge pull request #93964 from xfix/snes9x-gtk-wrapGAppsHook
...
snes9x-gtk: Use wrapGAppsHook
2020-07-27 19:41:14 -04:00
Maximilian Bosch
861cf0a326
Merge pull request #93975 from r-ryantm/auto-update/bitwarden_rs
...
bitwarden_rs: 1.15.1 -> 1.16.1
2020-07-28 01:39:01 +02:00
Maximilian Bosch
ca7f4a5fb8
Merge pull request #94036 from zowoq/ytdl
...
youtube-dl: 2020.06.16.1 -> 2020.07.28
2020-07-28 01:08:34 +02:00
Maximilian Bosch
b1b06de987
Merge pull request #93774 from Ma27/riot-removal
...
riot-{web,desktop}: throw an error to use element-web
2020-07-28 00:54:58 +02:00
Maximilian Bosch
888eb29a54
riot-{web,desktop}: throw an error to use element-web
...
This approach has been discussed in #93774[1]. The application has been
completely rebranded and to avoid confusion, users should actively be
pointed to `element-*`.
[1] https://github.com/NixOS/nixpkgs/pull/93774#issuecomment-664077010
2020-07-28 00:38:12 +02:00
lewo
8599adeadd
Merge pull request #93845 from lucperkins/open-policy-agent-version
...
Add build version to open-policy-agent package
2020-07-28 00:32:11 +02:00
zowoq
1e2a59ef56
youtube-dl: 2020.06.16.1 -> 2020.07.28
...
https://github.com/ytdl-org/youtube-dl/releases/tag/2020.07.28
2020-07-28 08:23:30 +10:00
Ryan Mulligan
4f274fad77
Merge pull request #93926 from r-ryantm/auto-update/python3.7-starlette
...
python37Packages.starlette: 0.13.4 -> 0.13.6
2020-07-27 14:58:33 -07:00
Ryan Mulligan
88ce06adfb
Merge pull request #94009 from r-ryantm/auto-update/clight
...
clight: 4.0 -> 4.1
2020-07-27 14:56:50 -07:00
Michael Weiss
2c7646b1f3
inxi: 3.1.04-1 -> 3.1.05-1
2020-07-27 22:52:44 +02:00
Vladyslav M
b791663fdb
Merge pull request #93953 from r-ryantm/auto-update/urlwatch
2020-07-27 23:51:30 +03:00
Daniël de Kok
e13377f436
Merge pull request #93960 from danieldk/finalfrontier-0.9.4
...
finalfrontier: 0.9.3 -> 0.9.4
2020-07-27 22:32:13 +02:00
Daiderd Jordan
d42b366613
Merge pull request #93553 from risicle/ris-igraph-darwin
...
igraph: enable for darwin
2020-07-27 22:29:16 +02:00
Daiderd Jordan
5e4c9da4d9
Merge pull request #93490 from siriobalmelli-foss/fix/pc-ble-driver-py
...
python3Packages.pc-ble-driver-py: fix Darwin build
2020-07-27 22:22:04 +02:00
Daiderd Jordan
8ae686d1b2
Merge pull request #93585 from adrian-gierakowski/fix-dash-on-darwin
...
dash: fix compilation on darwin
2020-07-27 22:02:41 +02:00
Silvan Mosberger
f168077434
Merge pull request #93929 from lourkeur/minecraft-launcher
...
minecraft: 2.1.15852 -> 2.1.16102
2020-07-27 20:45:09 +02:00
Silvan Mosberger
daa3c93d1d
Merge pull request #94016 from ratsclub/master
...
ripcord: 0.4.25 -> 0.4.26
2020-07-27 20:36:11 +02:00
ratsclub
313de0c52c
ripcord: 0.4.25 -> 0.4.26
2020-07-27 16:09:18 +00:00
R. RyanTM
a94f86966b
clight: 4.0 -> 4.1
2020-07-27 15:04:30 +00:00
Maximilian Bosch
c83e13315c
wlr-randr: 2019-03-21 -> 0.1.0
...
https://github.com/emersion/wlr-randr/releases/tag/v0.1.0
2020-07-27 16:49:23 +02:00
Peter Hoeg
3ba617416c
Merge pull request #93625 from NixOS/f/qemu
...
qemu: drop invalid and redundant qemu.desktop
2020-07-27 21:36:09 +08:00
Peter Hoeg
f1c2f8817b
Merge pull request #93962 from NixOS/mprime
...
mprime: 29.4b7 -> 29.8b7
2020-07-27 21:32:05 +08:00
R. RyanTM
e464f252a9
bitwarden_rs: 1.15.1 -> 1.16.1
2020-07-27 13:20:58 +00:00
Tim Steinbach
c88d0fd7a8
linux_latest-libre: 17570 -> 17583
2020-07-27 08:54:52 -04:00
R. RyanTM
10008eb131
qmmp: 1.4.0 -> 1.4.1
2020-07-27 14:42:10 +02:00
Marek Mahut
b415ebae97
Merge pull request #93700 from 1000101/bitcoind
...
nixos/bitcoind: change to multi-instance + add tests
2020-07-27 12:55:29 +02:00
Johannes Schleifenbaum
32fc1d6b91
mycli: 1.21.1 -> 1.22.1
2020-07-27 12:28:48 +02:00
Konrad Borowski
bfac20752f
snes9x-gtk: use wrapGAppsHook
2020-07-27 11:59:54 +02:00
1000101
a5ba1315c2
release-notes/rl-2009: document bitcoind incompatibility
2020-07-27 11:27:50 +02:00
Peter Hoeg
b278ccce7b
mprime: 29.4b7 -> 29.8b7
2020-07-27 17:24:15 +08:00
Daniël de Kok
655d902909
finalfrontier: 0.9.3 -> 0.9.4
...
Changelog:
https://github.com/finalfusion/finalfrontier/releases/tag/0.9.4
2020-07-27 11:02:09 +02:00
1000101
95440f040e
nixos/bitcoind: minor refactoring
2020-07-27 10:40:06 +02:00
R. RyanTM
f31b177899
urlwatch: 2.18 -> 2.19
2020-07-27 06:30:45 +00:00
Jörg Thalheim
7bf0f7301a
Merge pull request #93949 from andersk/multipath-tools
2020-07-27 07:14:21 +01:00
Anders Kaseorg
a3a1e27135
multipath-tools: Fix build with multi-output lvm2
...
It was broken by commit d3a991d41028c5d2a5af2796c0bb542836457822
(#93024 ).
Signed-off-by: Anders Kaseorg <andersk@mit.edu>
2020-07-26 22:58:02 -07:00
José Romildo Malaquias
89cb711b80
Merge pull request #93851 from dawidsowa/atril
...
mate.atril: add support for more filetypes
2020-07-26 23:42:50 -03:00
Ryan Mulligan
e12aa01bdd
Merge pull request #93924 from r-ryantm/auto-update/hy
...
hy: 0.18.0 -> 0.19.0
2020-07-26 18:53:27 -07:00
Aaron Andersen
970b2b853d
Merge pull request #93599 from stigtsp/package/perl-crypt-openpgp-init
...
perlPackages.CryptOpenPGP: init at 1.12
2020-07-26 18:55:49 -04:00
Maximilian Bosch
0bf86fb483
Merge pull request #93761 from raboof/audacity-2.4.1-to-2.4.2
...
audacity: 2.4.1 -> 2.4.2
2020-07-27 00:37:52 +02:00
Marek Mahut
0eef66ab84
Merge pull request #93807 from r-ryantm/auto-update/metabase
...
metabase: 0.35.4 -> 0.36.0
2020-07-27 00:31:30 +02:00
Martin Weinelt
6bf0672235
Merge pull request #93915 from graham33/fix/python-rtmidi-deps
...
python-rtmidi: add alsaLib and libjack2 deps
2020-07-27 00:28:40 +02:00
Martin Weinelt
e9e3d1094d
Merge pull request #93939 from symphorien/ihatemoney-4.2-backport
...
python3Packages.ihatemoney: fix CVE-2020-15120
2020-07-27 00:11:42 +02:00
Maximilian Bosch
c66395c1fa
Merge pull request #93737 from r-ryantm/auto-update/i3lock-color
...
i3lock-color: 2.12.c.4 -> 2.12.c.5
2020-07-26 23:59:31 +02:00
Mario Rodas
5d846289bb
Merge pull request #93938 from r-ryantm/auto-update/python2.7-stripe
...
python27Packages.stripe: 2.48.0 -> 2.49.0
2020-07-26 16:37:56 -05:00
Mario Rodas
9fc4678a4a
Merge pull request #92691 from jlesquembre/kustomize-3.8.0
...
kustomize: 3.3.1 -> 3.8.0
2020-07-26 16:36:40 -05:00
Mario Rodas
8aa8da2bc1
Merge pull request #93889 from marsam/fix-pandas-darwin
...
python38Packages.pandas: fix build on darwin
2020-07-26 16:33:35 -05:00
R. RyanTM
ba163623ec
kapacitor: 1.5.5 -> 1.5.6
2020-07-26 22:49:16 +02:00