Security fixes from 2016-12-09 12:25 UTC

16 views
Skip to first unread message

Graham Christensen

unread,
Dec 9, 2016, 7:41:55 AM12/9/16
to nix-securi...@googlegroups.com

The following issues have been resolved in NixOS in unstable and
release-16.09. They remain potentially vulnerable on older major
releases.

These patches will be released to the unstable and
release-16.09 channels when Hydra finishes building the "tested" job
for each channel:

- https://hydra.nixos.org/job/nixos/release-16.09/tested
- https://hydra.nixos.org/job/nixos/trunk-combined/tested

Please consider helping with the next security roundup by commenting on
https://github.com/NixOS/nixpkgs/issues/20972.

master 16.09 Message Notes
--- --- --- ---
d71dbd7 b6a0b0c chromium: 54.0.2840.100 -> 55.0.2883.75 n/a
9578299 303f4fa grsecurity: 4.8.11-201611271225 -> 4.8.12-20161... n/a
5fd4ffe c509f7b grsecurity: 4.8.12-201612031658 -> 201612062306 n/a
e42f6a1 4fe7aeb gstreamer: 1.10.1 -> 1.10.2 for multiple CVEs n/a
16eb67a b60ae78 hdf5: 1.8.16 -> 1.8.18 n/a
76ef70a fc1ab5f imagemagick: 6.9.6-2 -> 6.9.6-7 for CVE-2016-95... n/a
9575eea 3573b6c jenkins: 2.13 -> 2.33 n/a
4918730 b46bac4 libdwarf: security 20161021 -> 20161124 n/a
06c5943 39c31ca nettle: 3.2 -> 3.3 n/a
e0b8501 f3d11a0 openafs: 1.6.17 -> 1.6.20 for CVE-2016-9772 n/a
0683c1a 292d193 p7zip: patch for CVE-2016-9296 n/a
0a90a53 38b1bd9 Fix hash for p7zip patch (seems fetchurl hash w... (1)
86da983 bd083be teeworlds: 0.6.3 -> 0.6.4 for CVE-2016-9400 n/a
86da983 db8a897 xen: Patch for CVE-2016-9385, CVE-2016-9377, an... n/a
a2d6e8a c43a79e xen: Fix patch hashes (2)

Thank you,
Graham Christensen

1 & 2: I used the wrong tool to calculate patch hashes (nix-prefetch-url)
signature.asc
Reply all
Reply to author
Forward
0 new messages