Commit Graph

205126 Commits

Author SHA1 Message Date
Florian Klink 5bf07d665f gitlab: 12.5.3 -> 12.5.4
https://about.gitlab.com/blog/2019/12/10/critical-security-release-gitlab-12-5-4-released/

Insufficient parameter sanitization for Maven package registry could lead to privilege escalation and remote code execution vulnerabilities under certain conditions. The issue is now mitigated in the latest release and is assigned CVE-2019-19628.

When transferring a public project to a private group, private code would be disclosed via the Group Search API provided by Elasticsearch integration. The issue is now mitigated in the latest release and is assigned CVE-2019-19629.

The Git dependency has been upgraded to 2.22.2 in order to apply security fixes detailed here.

CVE-2019-19604 was identified by the GitLab Security Research team. For more information on that issue, please visit the GitLab Security Research Advisory

closes #75506.
2019-12-11 15:16:36 +01:00
Markus Wamser 7e93638ca7 samba: 4.10.10 -> 4.10.11 (#75456)
Security fix: CVE-2019-14861, CVE-2019-14870

This update is only a security fix. See
https://www.samba.org/samba/history/samba-4.10.11.html
2019-12-11 11:12:49 +01:00
Renaud a8df1b1230
mbedtls_1_3: clarify deprecation message 2019-12-11 10:55:40 +01:00
Vincent Laporte 2cf477f28d ocamlPackages.merlin: 3.3.2 → 3.3.3 2019-12-11 09:58:21 +01:00
Domen Kožar 17d1925608
Merge pull request #75484 from raboof/74944-timestamps-leak-into-minimal-image
installer/cd-dvd/iso-image: avoid leaking build timestamps
2019-12-11 09:42:06 +01:00
Mario Rodas e11288b919 zeek: 3.0.0 -> 3.0.1
Changelog: https://github.com/zeek/zeek/releases/tag/v3.0.1
2019-12-11 00:17:03 -08:00
Arnout Engelen 88ee3b021d installer/cd-dvd/iso-image: avoid leaking build timestamps
When 'grafting' '/nix/store/<hash>-loopback.cfg' from disk onto
'/boot/grub/loopback.cfg' on the iso, the parent 'grub' directory does not
exist yet. In this case it is automatically created and inherits its
attributes, including timestamp, from /nix/store.

This is correct/expected/intentional behavior of xorriso, but has the
undesired result of leaking the timestamps of /nix/store into the iso. For
this reason we put the loopback.cfg in a
'/nix/store/<hash>-loopback.cfg/grub/loopback.cfg' instead, so it will inherit
the attributes from the correctly-timestamped
'/nix/store/<hash>-loopback.cfg/grub' directory.

For the same reason we move '/EFI/boot/efi-background.png' down in the list
so it is grafted after its parent '/EFI/boot' directory is created with
the correct timestamp.

fixes #74944
2019-12-11 09:07:40 +01:00
Ryan Mulligan 9c159ecf58
Merge pull request #75255 from r-ryantm/auto-update/kubeseal
kubeseal: 0.9.5 -> 0.9.6
2019-12-10 21:57:20 -08:00
worldofpeace 897a232d15
Merge pull request #75477 from andersk/testresources
pythonPackages.testresources: Move pbr to propagatedBuildInputs
2019-12-11 00:49:33 -05:00
Anders Kaseorg 1e09e64a73 pythonPackages.testresources: Move pbr to propagatedBuildInputs
Since testresources declares `Requires-Dist: pbr (>=1.8)` and imports
`pbr.version`, any user of testresources also needs to have pbr.

Signed-off-by: Anders Kaseorg <andersk@mit.edu>
2019-12-10 21:43:38 -08:00
Dmitry Kalinkin 9e58ecd4ad
Merge pull request #75335 from veprbl/pr/texlive-bin-dvisvgm_fix
texlive.bin.dvisvgm: fix
2019-12-11 00:21:41 -05:00
worldofpeace d157c97b43
Merge pull request #75434 from kampka/zsh-history
zsh-history: 2019-10-07 -> 2019-12-10
2019-12-10 23:59:38 -05:00
worldofpeace 58cf77fbee
Merge pull request #75043 from worldofpeace/webkitgtk-parallel
webkitgtk: cleanups
2019-12-10 23:52:50 -05:00
worldofpeace c2ba06d09f webkitgtk: add gnome3 maintainers 2019-12-10 23:38:55 -05:00
worldofpeace ed3ffa197d webkitgtk: use python3 2019-12-10 23:36:57 -05:00
worldofpeace 5a5f9dfa74 webkitgtk: nixpkgs-fmt 2019-12-10 23:36:57 -05:00
worldofpeace 4315026324
Merge pull request #75468 from wamserma/remove-hexen
hexen: remove abandoned software
2019-12-10 23:34:18 -05:00
worldofpeace e96c903524
Merge pull request #74966 from Fuzen-py/sweet
sweet: init at 1.10.5
2019-12-10 23:32:46 -05:00
worldofpeace e159f1d457
Merge pull request #74295 from worldofpeace/remove-pygtk-users
Remove lots of pygtk using software
2019-12-10 23:27:28 -05:00
worldofpeace 419dacd3d4 pmenu: remove
Got the ok from romildo to remove this as jgmenu [0]
is more complete, and has a module based off pmenu.

[0]: https://github.com/johanmalm/jgmenu
2019-12-10 22:42:06 -05:00
worldofpeace c158ad48c5 nixos/oblogout: drop module 2019-12-10 22:41:25 -05:00
worldofpeace 5f4b980674 bleachbit: use gtk3
bleachbit is aiming to support python3 around January of 2020 [0].

[0]: https://github.com/bleachbit/bleachbit/issues/163
2019-12-10 22:41:25 -05:00
worldofpeace 249a489631 libindicate: remove 2019-12-10 22:41:24 -05:00
worldofpeace 48fdd1a255 matplotlib: remove optional gtk2 2019-12-10 22:40:45 -05:00
worldofpeace 7cae93c29c bootchart: remove 2019-12-10 22:40:44 -05:00
worldofpeace 5027d9f9e2 oblogout: remove
The repo is archived.
https://github.com/nikdoof/oblogout
2019-12-10 22:40:18 -05:00
worldofpeace c00538ae3a recordmydesktop: remove
The qt version is using qt4 pyqt and the gtk version gtk2 pygtk.
Not seeing any activity at all at https://sourceforge.net/p/recordmydesktop/bugs/
2019-12-10 22:39:37 -05:00
worldofpeace 69d5fd868d diffuse: remove 2019-12-10 22:39:04 -05:00
worldofpeace 0ea42c7af6 tryton: 4.8.5 -> 5.4.0
Uses python3, no more pygtk.
2019-12-10 22:38:21 -05:00
worldofpeace 7b206210f2 python3Packages.goocalendar: don't use pygtk
This doesn't even need this.
2019-12-10 22:38:21 -05:00
worldofpeace 865b203471 winswitch: remove 2019-12-10 22:38:19 -05:00
worldofpeace f4119fffdd libsexy: remove
People have only been using this for the spell-entry widget, i.e even
hexchat just has the code vendored and are maintaining it themselves.

There is a continuation that could be packaged if anyone needs it
* https://github.com/TingPing/libsexy3
but currently no package within nixpkgs has a use for this.
2019-12-10 22:37:44 -05:00
worldofpeace f21759a7b9 hexchat: don't use libsexy in nixpkgs
It's a part of hexchat
* 57478b6575/src/fe-gtk/sexy-spell-entry.h
2019-12-10 22:37:15 -05:00
worldofpeace d7159adcba keymon: remove 2019-12-10 22:37:14 -05:00
Fuzen 4c8ffa4e8f
sweet: init at 1.10.5 2019-12-10 22:35:05 -05:00
worldofpeace 517872a227 hamster-time-tracker: remove
This package actually uses the old abandoned code base.
However the code base has been revieved by new maintainers
* https://github.com/projecthamster/
if there is a request for it could be re-added to nixpkgs.
2019-12-10 22:35:03 -05:00
worldofpeace 30b5b7944c batti: remove
This one was already marked as broken.
2019-12-10 22:34:30 -05:00
worldofpeace af7a1dad84 gnome15: remove 2019-12-10 22:33:52 -05:00
worldofpeace b99ca2f33f mirage: remove 2019-12-10 22:33:11 -05:00
worldofpeace 28d4283121 mcomix: remove 2019-12-10 22:33:11 -05:00
worldofpeace cd6c028a1b cinepaint: remove 2019-12-10 22:33:09 -05:00
Vladyslav M 8a5cfec1c2 oil: 0.7.pre6 -> 0.7.pre9 2019-12-10 19:28:47 -08:00
Mateusz Piotrowski b7c217328e Fix a typo 2019-12-10 19:26:27 -08:00
R. RyanTM 8ecb7203f9 python38Packages.icalendar: 4.0.3 -> 4.0.4 2019-12-10 18:48:42 -08:00
Jonathan Ringer 8f8d977f2a azure-cli: freeze azure-mgmt-recoveryservicesbackup 2019-12-10 18:28:21 -08:00
R. RyanTM 49ee549934 python38Packages.azure-mgmt-recoveryservicesbackup: 0.4.0 -> 0.5.0 2019-12-10 18:28:21 -08:00
R. RyanTM b03e1fe77b python38Packages.cassandra-driver: 3.19.0 -> 3.20.2 2019-12-10 18:27:51 -08:00
R. RyanTM a91bf2a6b4 python38Packages.limnoria: 2019.09.08 -> 2019.11.09 2019-12-10 18:20:12 -08:00
R. RyanTM a564393bdf python38Packages.simpleeval: 0.9.8 -> 0.9.10 2019-12-10 18:17:55 -08:00
R. RyanTM 942c6abb7d python38Packages.pikepdf: 1.6.5 -> 1.8.0 2019-12-10 18:17:15 -08:00