We are pleased to announce the release of Alpine Linux 3.18.4, a
maintenance release of the 3.18 series. This release includes various
bug fixes and security updates.
The full lists of changes can be found in the git log[1].
[1]: http://git.alpinelinux.org/aports/log/?h=v3.18.4
Git Shortlog
------------
Alex McGrath (1):
community/transmission: upgrade to 4.0.4
Andy Postnikov (9):
community/php82-pecl-couchbase: upgrade to 4.1.5
community/php81-pecl-couchbase: upgrade to 4.1.5
community/php81-pecl-mailparse: upgrade to 3.1.6
main/nodejs: security upgrade to 18.17.1
community/php82: upgrade to 8.2.9
community/php82: upgrade to 8.2.10
community/php81: upgrade to 8.1.23
community/php81-pecl-redis: upgrade to 6.0.0
community/php82-pecl-redis: upgrade to 6.0.0
Antoine Martin (9):
community/dotnet7-build: upgrade to 7.0.110
community/dotnet7-runtime: upgrade to 7.0.10
community/dotnet6-build: upgrade to 6.0.121
community/dotnet6-runtime: upgrade to 6.0.21
community/dotnet6-build: upgrade to 6.0.122
community/dotnet6-runtime: upgrade to 6.0.22
community/git-annex: upgrade to 10.20230828
community/dotnet7-build: security upgrade to 7.0.111
community/dotnet7-runtime: security upgrade to 7.0.11
Bart Ribbers (1):
community/koko: make it easier to update geodata
Celeste (27):
main/mosquitto: upgrade to 2.0.16
main/mosquitto: upgrade to 2.0.17
community/neo4j: upgrade to 4.4.25
community/java-netty-transport-native: upgrade to 4.1.97
community/vnstat: upgrade to 2.11
community/python3-tkinter: upgrade to 3.11.5
main/python3: security upgrade to 3.11.5
community/xrdp: security upgrade to 0.9.23
community/borgbackup: security upgrade to 1.2.6
community/open-vm-tools: security upgrade to 12.3.0
community/py3-django: security upgrade to 4.2.5
main/mariadb: upgrade to 10.11.5
main/redis: security upgrade to 7.0.13
community/neovim: upgrade to 0.9.2
community/py3-openssl: upgrade to 23.2.0
community/ruby-pkg-config: upgrade to 1.5.5
community/ruby-timecop: upgrade to 0.9.8
community/netatalk: security upgrade to 3.1.17
main/cups: security upgrade to 2.4.7
main/curl: security upgrade to 8.3.0
community/minio: upgrade to 0.20230920.224955
main/bind: security upgrade to 9.18.19
community/stunnel: upgrade to 5.71
community/neo4j: upgrade to 4.4.26
community/keepassxc: upgrade to 2.7.6
community/synapse: security upgrade to 1.93.0
community/xrdp: security upgrade to 0.9.23.1
Dhruvin Gandhi (1):
community/hledger-interest: upgrade to 1.6.6
Duncan Bellamy (3):
main/mariadb: add fmt10 patches
community/ceph16: upgrade to 16.2.14
community/py3-cryptography: security upgrade to 41.0.3 for CVE-2023-38325
Elly Fong-Jones (1):
community/chromium: roll 3.18-stable to 117.0.5938.62
Francesco Colista (7):
community/py3-sentry-sdk: upgrade to 1.24.0
community/perl-business-isbn-data: upgrade to 20230516.001
main/sofia-sip: bump pkgrel
community/lua-resty-lock: backport from edge
community/lua-resty-lock: added missing dep
community/lua-resty-lock: bump pkgrel due to added depend
community/lua-resty-lock: fix build due to luajit missing for ppc64 and riscv64
Henrik Riomar (3):
main/intel-ucode: security upgrade to 20230808
main/xen: security upgrade to 4.17.2
community/nats-server: upgrade to 2.9.22
Hugo Osvaldo Barrera (1):
community/linux-edge: set CONFIG_KEXEC=y
J0WI (5):
community/firefox-esr: security upgrade to 115.1.0
community/thunderbird: security upgrade to 115.1.0
community/ntpsec: security upgrade to 1.2.2a
main/procps-ng: security upgrade to 4.0.4
community/wolfssl: upgrade to 5.6.3
Jake Buchholz Göktürk (1):
main/tiny-cloud: [3.18] upgrade to 3.0.2
Jakub Jirutka (15):
community/apk-deploy-tool: upgrade to 0.5.3
main/postgresql15: security upgrade to 15.4
main/postgresql14: security upgrade to 14.9
community/postgresql13: security upgrade to 13.12
community/postgresql12: security upgrade to 12.16
community/qemu-openrc: upgrade to 0.11.1
community/jetty-runner: use exec in jetty-runner script
community/jetty-runner: init: allow to override $command
community/jetty-runner: check server_{access,out}_log location
community/jetty-runner: upgrade to 9.4.51.20230217
community/jetty-runner: fix perms and backport rest of changes from edge
community/jetty-runner: add $start_wait to init script
main/one-context: upgrade to 0.8.0
main/linux-lts: enable EFI_ZBOOT on aarch64
community/alpine-make-vm-image: upgrade to 0.12.0
Jakub Panek (3):
community/rust: security upgrade to 1.71.1, take ownership
community/rust-analyzer: upgrade to 2023.08.28, takeover maintainership
community/rust-analyzer: upgrade to 2023.09.18
Jiri Kastner (1):
mariadb: re-enable partition plugin
Kaarle Ritvanen (1):
community/py3-django-oscar: align with upstream
Kevin Daudt (5):
community/docker-cli-buildx: backport host header patch to docker
community/tea: fix checksum filename
community/vault: security upgrade to 1.13.5
community/nfpm: upgrade to 2.32.0
community/qemu: upgrade to 8.0.5
Leonardo Arena (1):
community/nextcloud: upgrade to 26.0.5
Micha* Pola*ski (2):
community/py3-trove-classifiers: upgrade to 2023.9.19
main/openssl: upgrade to 3.1.3
Milan P. Stani* (12):
community/linux-edge: upgrade to 6.4.9
main/haproxy: bugfix upgrade to 2.6.15
community/linux-edge: upgrade to 6.4.10
community/qemu: upgrade to 8.0.4
community/linux-edge: upgrade to 6.4.12
community/linux-edge: upgrade to 6.5.0
main/postfix: bugfix upgrade to 3.8.2
community/linux-edge: upgrade to 6.5.1
community/linux-edge: upgrade to 6.5.2
community/mutt: bugfix upgrade to 2.2.12
community/linux-edge: upgrade to 6.5.3
community/linux-edge: upgrade to 6.5.5
Natanael Copa (104):
community/gitlab-runner: backport docker cli fix
main/samba: add secfixes info
main/samba: add secfixes comment
main/linux-lts: upgrade to 6.1.44
community/jool-modules-lts: rebuild against kernel 6.1.44-r0
community/rtl8821ce-lts: rebuild against kernel 6.1.44-r0
community/rtpengine-lts: rebuild against kernel 6.1.44-r0
community/virtio_vmmci-lts: rebuild against kernel 6.1.44-r0
community/vmm_clock-lts: rebuild against kernel 6.1.44-r0
main/xtables-addons-lts: rebuild against kernel 6.1.44-r0
main/zfs-lts: rebuild against kernel 6.1.44-r0
main/linux-lts: upgrade to 6.1.45
community/jool-modules-lts: rebuild against kernel 6.1.45-r0
community/rtl8821ce-lts: rebuild against kernel 6.1.45-r0
community/rtpengine-lts: rebuild against kernel 6.1.45-r0
community/virtio_vmmci-lts: rebuild against kernel 6.1.45-r0
community/vmm_clock-lts: rebuild against kernel 6.1.45-r0
main/xtables-addons-lts: rebuild against kernel 6.1.45-r0
main/zfs-lts: rebuild against kernel 6.1.45-r0
main/linux-lts: fix x86 PAE and HIGHMEM
main/linux-lts: upgrade to 6.1.46
community/jool-modules-lts: rebuild against kernel 6.1.46-r0
community/rtl8821ce-lts: rebuild against kernel 6.1.46-r0
community/rtpengine-lts: rebuild against kernel 6.1.46-r0
community/virtio_vmmci-lts: rebuild against kernel 6.1.46-r0
community/vmm_clock-lts: rebuild against kernel 6.1.46-r0
main/xtables-addons-lts: rebuild against kernel 6.1.46-r0
main/zfs-lts: rebuild against kernel 6.1.46-r0
main/linux-lts: use default log buffer size
main/linux-lts: upgrade to 6.1.47
community/jool-modules-lts: rebuild against kernel 6.1.47-r0
community/rtl8821ce-lts: rebuild against kernel 6.1.47-r0
community/rtpengine-lts: rebuild against kernel 6.1.47-r0
community/virtio_vmmci-lts: rebuild against kernel 6.1.47-r0
community/vmm_clock-lts: rebuild against kernel 6.1.47-r0
main/xtables-addons-lts: rebuild against kernel 6.1.47-r0
main/zfs-lts: rebuild against kernel 6.1.47-r0
main/sofia-sip: backport of support for forking calls. See mr #50659
main/linux-lts: upgrade to 6.1.49
community/jool-modules-lts: rebuild against kernel 6.1.49-r0
community/rtl8821ce-lts: rebuild against kernel 6.1.49-r0
community/rtpengine-lts: rebuild against kernel 6.1.49-r0
community/virtio_vmmci-lts: rebuild against kernel 6.1.49-r0
community/vmm_clock-lts: rebuild against kernel 6.1.49-r0
main/xtables-addons-lts: rebuild against kernel 6.1.49-r0
main/zfs-lts: rebuild against kernel 6.1.49-r0
community/thunderbird: upgrade to 115.1.1
main/sofia-sip: actually add the patch
main/linux-lts: upgrade to 6.1.50
community/jool-modules-lts: rebuild against kernel 6.1.50-r0
community/rtl8821ce-lts: rebuild against kernel 6.1.50-r0
community/rtpengine-lts: rebuild against kernel 6.1.50-r0
community/virtio_vmmci-lts: rebuild against kernel 6.1.50-r0
community/vmm_clock-lts: rebuild against kernel 6.1.50-r0
main/xtables-addons-lts: rebuild against kernel 6.1.50-r0
main/zfs-lts: rebuild against kernel 6.1.50-r0
main/linux-lts: upgrade to 6.1.51
community/jool-modules-lts: rebuild against kernel 6.1.51-r0
community/rtl8821ce-lts: rebuild against kernel 6.1.51-r0
community/rtpengine-lts: rebuild against kernel 6.1.51-r0
community/virtio_vmmci-lts: rebuild against kernel 6.1.51-r0
community/vmm_clock-lts: rebuild against kernel 6.1.51-r0
main/xtables-addons-lts: rebuild against kernel 6.1.51-r0
main/zfs-lts: rebuild against kernel 6.1.51-r0
main/linux-lts: upgrade to 6.1.52
community/jool-modules-lts: rebuild against kernel 6.1.52-r0
community/rtl8821ce-lts: rebuild against kernel 6.1.52-r0
community/rtpengine-lts: rebuild against kernel 6.1.52-r0
community/virtio_vmmci-lts: rebuild against kernel 6.1.52-r0
community/vmm_clock-lts: rebuild against kernel 6.1.52-r0
main/xtables-addons-lts: rebuild against kernel 6.1.52-r0
main/zfs-lts: rebuild against kernel 6.1.52-r0
Revert "main/linux-lts: enable EFI_ZBOOT on aarch64"
main/linux-lts: upgrade to 6.1.53
community/jool-modules-lts: rebuild against kernel 6.1.53-r0
community/rtl8821ce-lts: rebuild against kernel 6.1.53-r0
community/rtpengine-lts: rebuild against kernel 6.1.53-r0
community/virtio_vmmci-lts: rebuild against kernel 6.1.53-r0
community/vmm_clock-lts: rebuild against kernel 6.1.53-r0
main/xtables-addons-lts: rebuild against kernel 6.1.53-r0
main/zfs-lts: rebuild against kernel 6.1.53-r0
main/libwebp: upgrade to 1.3.2
community/lua-resty-session: upgrade to 3.10
community/lua-bitop: fix with lua 5.2+ and run tests
main/linux-lts: upgrade to 6.1.54
community/jool-modules-lts: rebuild against kernel 6.1.54-r0
community/rtl8821ce-lts: rebuild against kernel 6.1.54-r0
community/rtpengine-lts: rebuild against kernel 6.1.54-r0
community/virtio_vmmci-lts: rebuild against kernel 6.1.54-r0
community/vmm_clock-lts: rebuild against kernel 6.1.54-r0
main/xtables-addons-lts: rebuild against kernel 6.1.54-r0
main/zfs-lts: rebuild against kernel 6.1.54-r0
main/linux-lts: upgrade to 6.1.55
community/jool-modules-lts: rebuild against kernel 6.1.55-r0
community/rtl8821ce-lts: rebuild against kernel 6.1.55-r0
community/rtpengine-lts: rebuild against kernel 6.1.55-r0
community/virtio_vmmci-lts: rebuild against kernel 6.1.55-r0
community/vmm_clock-lts: rebuild against kernel 6.1.55-r0
main/xtables-addons-lts: rebuild against kernel 6.1.55-r0
main/zfs-lts: rebuild against kernel 6.1.55-r0
main/linux-rpi: upgrade to 6.1.55
community/jool-modules-rpi: rebuild against kernel 6.1.55-r0
main/zfs-rpi: rebuild against kernel 6.1.55-r0
===== release 3.18.4 =====
Oleg Titov (1):
community/k3s: security upgrade to 1.27.5.1
Pablo Correa Gómez (1):
community/gnome-console: upgrade to 44.4
Peter van Dijk (1):
community/dnsdist: upgrade to 1.8.1
Sertonix (1):
community/keepassxc: fix opening doc from gui
Simon Frankenberger (1):
community/openjdk17: upgrade to 17.0.8
Simon Rupf (1):
community/clamav: upgrade to 1.1.2
Siva Mahadevan (1):
community/linux-edge: add initial support for pinebook pro
Steven Guikal (1):
community/py3-flask: security upgrade to 2.2.5 (CVE-2023-30861)
Sören Tempel (3):
community/go: upgrade to 1.20.8
community/*: rebuild with Go 1.20.8
main/busybox: update secfixes (CVE-2022-48174)
Zach DeCook (1):
community/verovio: upgrade to 3.15.0 and fix py3-verovio subpackage
bin456789 (1):
main/linux-lts: enable Google Virtual NIC (gVNIC) driver
jahway603 (1):
community/nextcloud: upgrade to 26.0.7
jane400 (1):
main/libwebp: patch CVE-2023-4863
lauren n. liberda (2):
community/yt-dlp: mark CVE as resolved
community/libvpx: hotfix for CVE-2023-5217
macmpi (4):
community/raspberrypi-utils: upgrade to 0.20230809
main/raspberrypi-bootloader: upgrade to 1.20230811
community/raspberrypi-utils: upgrade to 0.20230919
main/raspberrypi-bootloader: upgrade to 1.20230921
omni (16):
community/qt5-qtwebengine: chromium security upgrade
community/tor: upgrade to 0.4.8.4
community/tor: disable a test also for x86_64
community/tor: upgrade to 0.4.8.5
community/qt5-qtwebengine: chromium security upgrade
community/arti: upgrade to 1.1.8
community/qt5-qtwebengine: chromium security upgrade
main/libarchive: security upgrade to 3.7.2
community/qt5-qtimageformats: patch CVE-2023-4863
community/qt6-qtimageformats: patch CVE-2023-4863
community/qt5-qtwebengine: chromium security upgrade
community/tor: upgrade to 0.4.8.6
main/xen: add mitigations for XSA-437 & XSA-438
main/linux-lts: fix pkgrel
community/tor: upgrade to 0.4.8.7
main/xen: add mitigations for XSA-439
ptrcnull (5):
community/telegraf: fix embedding version
community/firefox: upgrade to 116.0.3
community/tea: rebuild against go 1.20.7
community/firefox: fix sqlite3 on ppc with clang
community/kitty: disable check on ppc64le
streaksu (6):
community/limine: upgrade to 4.20230811.0
community/limine: take over maintainership
community/limine: upgrade to 4.20230830.0
community/limine: upgrade to 4.20230911.0
community/limine: upgrade to 4.20230917.0
community/limine: upgrade to 4.20230924.0