From nobody Fri Mar 29 05:54:22 2024 Received: from mx1.tetrasec.net (mx1.tetrasec.net [66.245.177.37]) by nld3-dev1.alpinelinux.org (Postfix) with ESMTPS id 60E9B782C14 for <~alpine/announce@lists.alpinelinux.org>; Fri, 27 Aug 2021 12:52:56 +0000 (UTC) Received: from mx1.tetrasec.net (mail.local [127.0.0.1]) by mx1.tetrasec.net (Postfix) with ESMTP id B0470F6D1C for <~alpine/announce@lists.alpinelinux.org>; Fri, 27 Aug 2021 12:52:54 +0000 (UTC) Received: from ncopa-desktop (67.63.200.37.customer.cdi.no [37.200.63.67]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (4096 bits) server-digest SHA256) (No client certificate requested) (Authenticated sender: alpine@tanael.org) by mx1.tetrasec.net (Postfix) with ESMTPSA id 4CE35F6D1B for <~alpine/announce@lists.alpinelinux.org>; Fri, 27 Aug 2021 12:52:54 +0000 (UTC) Date: Fri, 27 Aug 2021 14:52:49 +0200 From: Natanael Copa To: ~alpine/announce@lists.alpinelinux.org Subject: Alpine 3.14.2 released Message-ID: <20210827145249.6ca365ce@ncopa-desktop> X-Mailer: Claws Mail 4.0.0 (GTK+ 3.24.28; x86_64-alpine-linux-musl) MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable The Alpine Linux project is pleased to announce the immediate availability of version 3.14.2 of its Alpine Linux operating system. This release includes fixes for openssl CVE-2021-3711 [1] and CVE-2021-3712 [2]. The full lists of changes can be found in the git log[3]. [1]: https://security.alpinelinux.org/vuln/CVE-2021-3711 [2]: https://security.alpinelinux.org/vuln/CVE-2021-3712 [3]: https://git.alpinelinux.org/aports/log/?h=3Dv3.14.2 Git Shortlog ------------ 6543 (1): community/gitea: upgrade to 1.14.6 Andy Postnikov (10): main/postgresql: security upgrade to 13.4 (CVE-2021-3677) community/composer: upgrade to 2.1.6 community/icinga2: security upgrade to 2.12.6 (CVE-2021-37698) main/pgpool: upgrade to 4.2.4 community/stunnel: upgrade to 5.60 community/php8: improve, build php only twice: apache2+cgi and the re= st community/php8: security upgrade to 8.0.10 main/nodejs: security upgrade to 14.17.5 community/php7: security upgrade to 7.4.23 community/php7: improve build Anjandev Momi (1): community/prosody: upgrade to 0.11.10 Ariadne Conill (4): main/gpsd: move back from community main/ruby: add CVE-2021-31799 to secfixes main/asterisk: add mitigation for CVE-2021-32558 main/libspf2: add mitigation for CVE-2021-20314 Bart Ribbers (8): community/plasma: upgrade to 5.22.4 community/plasma-workspace: rebuild against gpsd 3.23 community/marble: rebuild against gpsd 3.23 community/stellarium: rebuild against gpsd 3.23 and modernize community/kasts: add missing dep on qt5-qtbase-sqlite community/amazfish: upgrade to 2.0.2 community/sddm: improve init script community/plasma-phone-components: backport fix for screenshots Daniel N=E9ri (1): main/unbound: upgrade to 1.13.2 Duncan Bellamy (1): community/dovecot-fts-xapian: upgrade to 1.4.12 J0WI (11): community/apache-ant: security upgrade to 1.10.11 main/ruby: security upgrade to 2.7.4 community/firefox-esr: security upgrade to 78.12.0 community/openjdk7: upgrade to 2.6.25 community/openjdk7: security upgrade to 7.301.2.6.26 main/mariadb: security upgrade to 10.5.12 community/rust: upgrade to 1.52.1 community/rust: patch CVE-2021-29922 community/mozjs78: security upgrade to 78.13.0 community/tor: security upgrade to 0.4.5.10 main/openssl: security upgrade to 1.1.1l Kevin Daudt (18): community/uglifycss: remove node_modules/root folder community/uglify-js: remove node_modules/root folder main/c-ares: security upgrade to 1.17.2 (CVE-2021-3672) community/bupstash: rebuild to mitigate CVE-2021-29922 community/corrosion: rebuild to mitigate CVE-2021-29922 community/git-metafile: rebuild to mitigate CVE-2021-29922 community/librsvg: rebuild to mitigate CVE-2021-29922 community/mozjs78: rebuild to mitigate CVE-2021-29922 community/newsflash: rebuild to mitigate CVE-2021-29922 community/squeekboard: rebuild to mitigate CVE-2021-29922 community/suricata: rebuild to mitigate CVE-2021-29922 community/tokei: rebuild to mitigate CVE-2021-29922 community/alacritty: rebuild to mitigate CVE-2021-29922 community/salt: upgrade to 3003.2 main/bind: security upgrade to 9.16.20 (CVE-2021-25218) main/bind: patch map format community/chezmoi: upgrade to 2.0.16 community/libssh: security upgrade to 0.9.6 (CVE-2021-3634) Leo (4): community/fetchmail: security upgrade to 6.4.20 community/gpsd: upgrade to 3.23 main/grep: upgrade to 3.7 community/wireshark: upgrade to 3.4.8 Leonardo Arena (3): community/nextcloud: upgrade to 21.0.4 community/nextcloud20: upgrade to 20.0.12 community/zabbix: upgrade to 5.4.3 and fix proc.num support in Agent 2 Micha* Pola*ski (2): community/hcloud: upgrade to 1.26.1 community/fuse-overlayfs: upgrade to 1.7.1 Milan P. Stani* (2): main/haproxy: security upgrade to 2.4.3 main/haproxy: don't override CFLAGS in make Natanael Copa (33): community/go: upgrade to 1.16.7 (CVE-2021-36221) main/linux-lts: upgrade to 5.10.59 community/jool-modules-lts: rebuild against kernel 5.10.59-r0 community/rtl8821ce-lts: rebuild against kernel 5.10.59-r0 community/rtpengine-lts: rebuild against kernel 5.10.59-r0 main/dahdi-linux-lts: rebuild against kernel 5.10.59-r0 main/xtables-addons-lts: rebuild against kernel 5.10.59-r0 main/zfs-lts: rebuild against kernel 5.10.59-r0 main/busybox-initscripts: create /dev/virtio-ports symlinks main/busybox-initscripts: fix mdev.conf to work with mdev -s main/linux-rpi: upgrade to 5.10.60 community/jool-modules-rpi: rebuild against kernel 5.10.60-r0 main/zfs-rpi: rebuild against kernel 5.10.60-r0 main/linux-lts: upgrade to 5.10.60 community/jool-modules-lts: rebuild against kernel 5.10.60-r0 community/rtl8821ce-lts: rebuild against kernel 5.10.60-r0 community/rtpengine-lts: rebuild against kernel 5.10.60-r0 main/dahdi-linux-lts: rebuild against kernel 5.10.60-r0 main/xtables-addons-lts: rebuild against kernel 5.10.60-r0 main/zfs-lts: rebuild against kernel 5.10.60-r0 main/linux-rpi: upgrade to 5.10.61 community/jool-modules-rpi: rebuild against kernel 5.10.61-r0 main/zfs-rpi: rebuild against kernel 5.10.61-r0 main/linux-lts: upgrade to 5.10.61 community/jool-modules-lts: rebuild against kernel 5.10.61-r0 community/rtl8821ce-lts: rebuild against kernel 5.10.61-r0 community/rtpengine-lts: rebuild against kernel 5.10.61-r0 main/dahdi-linux-lts: rebuild against kernel 5.10.61-r0 main/xtables-addons-lts: rebuild against kernel 5.10.61-r0 main/zfs-lts: rebuild against kernel 5.10.61-r0 scripts/mkimg.base.sh: include gnu wget main/raspberrypi-bootloader: upgrade to 1.20210805 =3D=3D=3D=3D=3D release 3.14.2 =3D=3D=3D=3D=3D Oliver Smith (1): community/pmbootstrap: upgrade to 1.36.0 Thomas Liske (3): community/py3-pyroute2: fix empty ipset content community/frr: fix reload script and add checkpath to initd community/ifstate: upgrade to 1.5.5 wener (1): community/tinc-pre: upgrade to 1.1pre18