The Alpine Linux project is pleased to announce the immediate
availability of version 3.8.2 of its Alpine Linux operating system.
This is a bugfix release of the v3.8 stable branch, based on
linux-4.14.89 kernels and it contains bugfixes.
The full lists of changes can be found in the git
log[1] and bug tracker[2].
[1]: http://git.alpinelinux.org/cgit/aports/log/?h=v3.8.2
[2]: http://bugs.alpinelinux.org/versions/128
Git Shortlog
------------
Andy Postnikov (11):
community/php7: security upgrade to 7.2.10
main/apache2: security upgrade to 2.4.35 (CVE-2018-11763)
main/icecast: security upgrade to 2.4.4 (CVE-2018-18820)
main/nginx: security upgrade to 1.14.1
main/ghostscript: security upgrade to 9.26 (CVE-2018-19409)
main/lighttpd: upgrade to 1.4.52
community/php7: security upgrade to 7.2.13
community/php5: security upgrade to 5.6.38 (CVE-2018-17082)
community/php5: backport dependency fixes from edge
main/nginx: upgrade to 1.14.2
community/php5: security upgrade to 5.6.39
Carlo Landmeter (3):
main/dnsmasq: add BRIDGE_ADDR_EXTRA support to initd
main/mqtt-exec: initd use supervise-daemon
main/mqtt-exec: keep exec_user for backwards compatibility
Euan Harris (1):
main/libjpeg-turbo: Backport fix for CVE-2018-1152
Fabian Affolter (1):
main/py-requests: upgrade to 2.19.1
Henrik Riomar (3):
main/nfs-utils: drop build dep on libnfsidmap-dev
main/xen: upgrade to 4.10.2
main/open-vm-tools: fix reboot and halt
Ian Douglas Scott (1):
main/gcc: patch to remove call to glibc-specific function in Ada library
J0WI (4):
community/openjdk8: security upgrade to 3.9.0 (java 8u181b13)
main/openssl: security upgrade to 1.0.2q - CVE-2018-0734 - CVE-2018-5407
main/clamav: security upgrade to 0.100.2
main/ghostscript: security fixes (CVE-2018-17961, CVE-2018-18073, CVE-2018-18284)
Jake Buchholz (1):
main/linux-vanilla: enable NFS v4.1 & v4.2
Jakub Jirutka (7):
community/lua-http: fix wrong depend on lua5.[12]-compat5.3
main/ruby: security upgrade to 2.5.2
main/one-context: upgrade to 0.5.5
main/nodejs: security upgrade to 8.14.0
main/nginx: upgrade module http-fancyindex to v0.4.3
main/nginx: upgrade module http-lua to 0.10.13
main/nginx: upgrade module http-vod to 1.24
Jean-Louis Fuchs (1):
main/duplicity: missing pkgrel bump
Kaarle Ritvanen (10):
main/lua-ossl: support encrypted keys
main/lua-asn1: upgrade to 2.2.0
main/strongswan: increase guard time
main/tunnel: backport from edge
main/dmvpn: backport from edge
main/dmvpn: upgrade to 1.0.0
main/py-django-haystack: fix dependencies
main/mariadb-c-connector: fix socket path
main/awall: upgrade to 1.5.2
main/busybox: do not hang on DAD failure
Leonardo Arena (20):
main/libsndfile: security fix (CVE-2018-13139)
main/ulogd; fix patch and checksum
main/strongswan: security fix (CVE-2018-17540)
main/libexif: security fix (CVE-2017-7544)
main/hylafax: security fix (CVE-2018-17141)
community/nextcloud: upgrade to 13.0.7
community/ffmpeg: use built-in RTMP support
main/dnsmasq: fix typo
main/curl: security fixes
main/tiff: security fixes
main/pango: security fix (CVE-2018-15120)
main/lcms2: security fix (CVE-2018-16435)
main/ghostscript: security upgrade to 9.25 (CVE-2018-16802)
main/spice: security upgrade to 0.14.1 (CVE-2018-10873)
main/spice-protocol: upgrade to 0.12.14
community/zabbix: upgrade to 3.4.15
community/postgresql-bdr-extension0.9: downgrade to 0.9.0 to maintain compatibility with earlier Alpine versions
community/nextcloud: upgrade 13.0.8
community/nextcloud: upgrade to 14.0.4
community/nextcloud: additional apps are required to run upon installation of main package
Markus Heimbach (1):
main/postfix: Adding missing m4 build dependency
Marvin Steadfast (1):
main/libssh: security upgrade 0.7.6 - CVE-2018-10933
Natanael Copa (113):
main/libjpeg-turbo: backport security fix (CVE-2018-11813)
main/openssl1.0: upgrade to 1.0.2p
main/libnfsidmap: remove due to merge with nfs-utils
community/webkit2gtk: security upgrade to 2.20.4
community/libreoffice: fix tread stack size issue
main/strongswan: backport security fix (CVE-2018-16151, CVE-2018-16152)
main/strongswan: bump pkgrel
main/nss: backport fix for CVE-2018-12384
main/gd: backport security fix for CVE-2018-1000222
main/libx11: security upgrade to 1.6.6
main/hylafax: fix secfixes comment
main/libexif: fix secfixes comment
main/tzdata: upgrade to 2018f
main/libxml2: backport security fixes
main/git: security upgrade to 2.18.1 (CVE-2018-17456)
community/wireshark: security upgrade to 2.4.10
main/xorg-server: security fix (CVE-2018-14665)
main/rp-pppoe: update pkgdesc
main/db: add secfixes comment for unaffected CVEs
community/go: upgrade to 1.10.5
main/linux-vanilla: upgrade to 4.14.73
main/linux-vanilla: upgrade to 4.14.78
main/linux-vanilla: enable drivers for Huawei Taishan 2280
main/linux-vanilla: upgrade to 4.14.81
main/linux-vanilla: upgrade to 4.14.82
main/linux-rpi: upgrade to 4.14.82
community/virtualbox-guest-modules-vanilla: rebuild against kernel 4.14.82-r0
main/dahdi-linux-vanilla: rebuild against kernel 4.14.82-r0
main/devicemaster-linux-vanilla: rebuild against kernel 4.14.82-r0
main/drbd9-vanilla: rebuild against kernel 4.14.82-r0
main/spl-vanilla: rebuild against kernel 4.14.82-r0
main/xtables-addons-vanilla: rebuild against kernel 4.14.82-r0
main/zfs-vanilla: rebuild against kernel 4.14.82-r0
testing/aws-ena-driver-vanilla: rebuild against kernel 4.14.82-r0
testing/ipt-netflow-vanilla: rebuild against kernel 4.14.82-r0
testing/wireguard-vanilla: rebuild against kernel 4.14.82-r0
main/imagemagick: disable openmp
main/pango: fix secfixes comment
main/openjpeg: security fixes (CVE-2017-17480,CVE-2018-18088)
main/libmspack: security upgrade to 0.8_alpha
community/salt: security upgrade to 2018.3.3 (CVE-2018-15750,CVE-2018-15751)
community/salt: add secfixes comment
main/cabextract: security upgrade to 1.9 (CVE-2018-18584)
main/cabextract: fix secfixes comment
main/linux-vanilla: upgrade to 4.14.84
community/virtualbox-guest-modules-vanilla: rebuild against kernel 4.14.84-r0
main/dahdi-linux-vanilla: rebuild against kernel 4.14.84-r0
main/devicemaster-linux-vanilla: rebuild against kernel 4.14.84-r0
main/drbd9-vanilla: rebuild against kernel 4.14.84-r0
main/spl-vanilla: rebuild against kernel 4.14.84-r0
main/xtables-addons-vanilla: rebuild against kernel 4.14.84-r0
main/zfs-vanilla: rebuild against kernel 4.14.84-r0
testing/aws-ena-driver-vanilla: rebuild against kernel 4.14.84-r0
testing/ipt-netflow-vanilla: rebuild against kernel 4.14.84-r0
testing/wireguard-vanilla: rebuild against kernel 4.14.84-r0
main/linux-rpi: upgrade to 4.14.84
main/git: security fix (CVE-2018-19486)
community/roundcubemail: security upgrade to 1.3.8 (CVE-2018-19206)
main/bind: security upgrade to 9.12.3 (CVE-2018-5741)
main/lua5.3: upgrade to 5.3.5
main/lua5.3: fix linenoise patch
main/libao: security fix for CVE-2017-11548
main/perl: security upgrade to 5.26.3
main/linux-vanilla: upgrade to 4.14.85
community/virtualbox-guest-modules-vanilla: rebuild against kernel 4.14.85-r0
main/dahdi-linux-vanilla: rebuild against kernel 4.14.85-r0
main/devicemaster-linux-vanilla: rebuild against kernel 4.14.85-r0
main/drbd9-vanilla: rebuild against kernel 4.14.85-r0
main/spl-vanilla: rebuild against kernel 4.14.85-r0
main/xtables-addons-vanilla: rebuild against kernel 4.14.85-r0
main/zfs-vanilla: rebuild against kernel 4.14.85-r0
testing/aws-ena-driver-vanilla: rebuild against kernel 4.14.85-r0
testing/ipt-netflow-vanilla: rebuild against kernel 4.14.85-r0
testing/wireguard-vanilla: rebuild against kernel 4.14.85-r0
main/linux-rpi: upgrade to 4.14.85
community/jenkins: upgrade to 2.121.3
main/ghostscript: update secfixes comment
main/tiff: security upgrade to 4.0.10
main/openrc: fix hostname script
commit/php7: fix merge error
main/linux-vanilla: upgrade to 4.14.88
community/virtualbox-guest-modules-vanilla: rebuild against kernel 4.14.88-r0
main/dahdi-linux-vanilla: rebuild against kernel 4.14.88-r0
main/devicemaster-linux-vanilla: rebuild against kernel 4.14.88-r0
main/drbd9-vanilla: rebuild against kernel 4.14.88-r0
main/spl-vanilla: rebuild against kernel 4.14.88-r0
main/xtables-addons-vanilla: rebuild against kernel 4.14.88-r0
main/zfs-vanilla: rebuild against kernel 4.14.88-r0
testing/aws-ena-driver-vanilla: rebuild against kernel 4.14.88-r0
testing/ipt-netflow-vanilla: rebuild against kernel 4.14.88-r0
testing/wireguard-vanilla: rebuild against kernel 4.14.88-r0
main/linux-rpi: upgrade to 4.14.88
community/go: upgrade to 1.10.7
main/linux-vanilla: upgrade to 4.14.89
community/virtualbox-guest-modules-vanilla: rebuild against kernel 4.14.89-r0
main/dahdi-linux-vanilla: rebuild against kernel 4.14.89-r0
main/devicemaster-linux-vanilla: rebuild against kernel 4.14.89-r0
main/drbd9-vanilla: rebuild against kernel 4.14.89-r0
main/spl-vanilla: rebuild against kernel 4.14.89-r0
main/xtables-addons-vanilla: rebuild against kernel 4.14.89-r0
main/zfs-vanilla: rebuild against kernel 4.14.89-r0
testing/aws-ena-driver-vanilla: rebuild against kernel 4.14.89-r0
testing/ipt-netflow-vanilla: rebuild against kernel 4.14.89-r0
testing/wireguard-vanilla: rebuild against kernel 4.14.89-r0
main/linux-rpi: upgrade to 4.14.89
main/varnish: upgrade to 6.0.2
community/pdns-recursor: security upgrade to 4.1.8
main/py-packaging: move from community due to py-sphinx
main/samba: security upgrade to 4.8.8
main/py-sphinx: add all runtime deps to makedepends
community/cfengine: fix needed symlinks
main/imagemagick: upgrade to 7.0.7.39
==== release 3.8.2 ====
Roberto Oliveira (2):
community/keepalived: upgrade to 2.0.5
main/py-typing: move from community
Thomas Liske (1):
main/ipset: fix reloading of existing ipsets
Timo Teräs (1):
main/asterisk: security upgrade to 15.6.1
raschi.alex@gmail.com (1):
community/gst-plugins-bad: enable opus support
---
Unsubscribe: alpine-announce+unsubscribe@lists.alpinelinux.org
Help: alpine-announce+help@lists.alpinelinux.org
---