88b914e7e4
Merge pull request #126216 from NixOS/backport-125525-to-release-21.05
2021-10-17 05:00:32 +03:00
b31ab18db6
Merge pull request #140863 from mohe2015/security/wordpress/5.7.3
2021-10-11 17:50:43 +02:00
3f09236d1e
Merge pull request #140981 from NixOS/backport-140969-to-release-21.05
...
[Backport release-21.05] apacheHttpd: 2.4.50 -> 2.4.51
2021-10-10 17:13:05 -04:00
0c106b8ef3
Merge pull request #140748 from Ma27/bump-grafana-2105
...
[21.05] grafana: 7.5.10 -> 7.5.11, fix CVE-2021-39226
2021-10-09 13:33:45 +02:00
0dde2c5c55
Merge pull request #140991 from NixOS/backport-139916-to-release-21.05
...
[Backport release-21.05] matrix-synapse: 1.43.0 -> 1.44.0
2021-10-09 00:44:08 +02:00
73fbbdab68
calibre-web: 0.6.12 -> 0.6.13
...
calibre-web no longer starts without proper calibre DB path configured,
so the default testcase (completely unconfigured) is removed.
(cherry picked from commit 80f7656229efee8817880250b2ca097a69898330)
2021-10-08 11:14:44 -07:00
89a82934e3
calibre-web: 0.6.11 -> 0.6.12
...
(cherry picked from commit 62bdc5114a08040f2e03bac9f0c6a38f343ce29e)
2021-10-08 11:14:44 -07:00
ece2e27a1f
matrix-synapse: 1.43.0 -> 1.44.0
...
(cherry picked from commit 4813681933a1c6b16a8c0ea3f02ea306cb6bccba)
2021-10-08 15:33:12 +00:00
97c8870372
apacheHttpd: 2.4.50 -> 2.4.51
...
(cherry picked from commit 7381e553a56da34465b813ad75024cd0bd651682)
2021-10-08 14:07:53 +00:00
ac2dea2208
wordpress: 5.7.2 -> 5.7.3
2021-10-07 17:08:28 +02:00
75415b03c0
grafana: 7.5.10 -> 7.5.11, fix CVE-2021-39226
...
ChangeLog: https://github.com/grafana/grafana/releases/tag/v7.5.11
Follow-up on 21.05 for #140718
2021-10-06 13:15:56 +02:00
6bef9f9f85
Merge pull request #140631 from NixOS/backport-140606-to-release-21.05
...
[Backport release-21.05] apacheHttpd: 2.4.49 -> 2.4.50
2021-10-06 05:52:41 -04:00
3100e48e86
mautrix-telegram: fix eval
2021-10-05 20:07:02 +02:00
e484541615
mautrix-telegram: add `prometheus-client` for metrics
...
With this change I can do
metrics:
enabled: true
listen_port: 8080
and retrieve metrics from `localhost:8080` for the telegram bridge.
(cherry picked from commit 9f9e32238b200716a622bd743e6859495aa83db1)
2021-10-05 15:38:32 +00:00
7c8412bccc
apacheHttpd: 2.4.49 -> 2.4.50
...
(cherry picked from commit b17c155720092dd04a2be0d096f43dae8c80d46f)
2021-10-05 15:34:06 +00:00
4c4cc6f430
redis: 6.2.5 -> 6.2.6
...
https://github.com/redis/redis/releases/tag/6.2.6
(cherry picked from commit 6ea41eaabb48dd8401d0d30b85fb7004a615a320)
2021-10-04 14:52:52 +00:00
1c5946027c
discourse: Make sure the notification email setting applies
...
Discourse normally overrides the default notification email setting,
which makes the `notificationEmailAddress` setting ineffective. Add a
patch to remove this override.
Fixes #140114 .
(cherry picked from commit 917a0cfe47bad420a894fe8ca35d7dd95ebb5a7c)
2021-10-04 08:03:15 +00:00
966add9f99
Merge pull request #140084 from NixOS/backport-139931-to-release-21.05
...
[Backport release-21.05] exim: 4.94.2 -> 4.95
2021-10-03 01:07:55 +02:00
57b924eab1
nextcloud: 20.0.12 -> 20.0.13, 21.0.4 -> 21.0.5, 22.1.1 -> 22.2.0
...
(cherry picked from commit 49573709c5f842f0e3fbe4da3cd02f1c74aa9b1b)
2021-10-01 20:02:22 +02:00
328e22af39
exim: 4.94.2 -> 4.95
...
(cherry picked from commit cc9e7f0b047cbf2d9928edc387754c0bccfc525c)
2021-09-30 21:24:51 +00:00
ce206ce87f
grocy: 3.1.1 -> 3.1.2
...
ChangeLog: https://github.com/grocy/grocy/releases/tag/v3.1.2
(cherry picked from commit d8ff7944ede3210c2172b87517803e25b8ed4736)
2021-09-30 12:35:26 +00:00
13c798e8e7
routinator: 0.10.0 -> 0.10.1
...
(cherry picked from commit 01af935180289b3c3dde5add60b88392bcafeb4b)
2021-09-29 20:12:06 +01:00
abed7897c8
routinator: 0.9.0 -> 0.10.0
...
(cherry picked from commit adfe94641884918670fa21bf33d101c67614cc2e)
2021-09-29 20:11:17 +01:00
d777260d58
routinator: 0.8.3 -> 0.9.0
...
(cherry picked from commit ffae5e3650d160c39d84b790bf46d26a2a264a7b)
2021-09-29 20:10:47 +01:00
4b7b04754a
Merge pull request #139323 from NixOS/backport-139180-to-release-21.05
...
[Backport release-21.05] discourse: enable restoring backups bigger than RAM
2021-09-29 05:33:49 -07:00
bc787aef50
Merge pull request #139705 from NixOS/backport-139444-to-release-21.05
...
[Backport release-21.05] wiki-js: 2.5.214 -> 2.5.219
2021-09-28 14:18:23 +02:00
1cd12e483a
wiki-js: 2.5.214 -> 2.5.219
...
ChangeLog: https://github.com/Requarks/wiki/releases/tag/2.5.219
(cherry picked from commit e12d71e71b85bfd297ddf5f639511ff892e8fcae)
2021-09-28 07:38:14 +00:00
ce6b39b6be
Merge pull request #139238 from Ma27/backport-hedgedoc
...
[21.05] hedgedoc: 1.8.2 -> 1.9.0, fixes CVE-2021-39175
2021-09-28 09:33:57 +02:00
ec588badc4
discourse: Enable jhead, which is no longer marked vulnerable
...
(cherry picked from commit ed8c4e01d985d115f8821106318afc65fc7eaf5f)
2021-09-27 13:37:42 +00:00
e93c033a3b
discourse.plugins.discourse-yearly-review: Update
...
(cherry picked from commit e4ed6b5929d56328e79ad8792568790f6c077251)
2021-09-27 13:37:41 +00:00
df8becc53f
discourse.plugins.discourse-spoiler-alert: Update
...
(cherry picked from commit 957eaf8237a44f6849716739d35057b7ceaba84c)
2021-09-27 13:37:40 +00:00
61fab89e08
discourse.plugins.discourse-solved: Update
...
(cherry picked from commit fd084acb95f3e80a80405924e44002e2e4f6dd0e)
2021-09-27 13:37:40 +00:00
cb35abb6c1
discourse.plugins.discourse-math: Update
...
(cherry picked from commit b1aa7efd36d1e8c9df8f97602038b98533f84cf9)
2021-09-27 13:37:39 +00:00
9c26876e2b
discourse.plugins.discourse-github: Update
...
(cherry picked from commit 97034cfa1c3b455f1114fea8d302925014dd4bd8)
2021-09-27 13:37:38 +00:00
125bceeb25
discourse.plugins.discourse-checklist: Update
...
(cherry picked from commit d583001723e9ad4588c5b54c9f27c111758fe105)
2021-09-27 13:37:38 +00:00
394d86a424
discourse.plugins.discourse-canned-replies: Update
...
(cherry picked from commit 1e62b64b9036a3e9332b60c838f658ee35fa0a5a)
2021-09-27 13:37:37 +00:00
1d1a2bbf2b
discourse.plugins.discourse-calendar: Update
...
(cherry picked from commit d62ea8705b22c8163fcbc6dcb7c70a42e7e745fe)
2021-09-27 13:37:36 +00:00
cb502f9b10
discourse: 2.7.7 -> 2.7.8
...
(cherry picked from commit 73e8eb91c122699e5ede88980f7c7ef727b29896)
2021-09-27 13:37:35 +00:00
8e1306519d
Merge pull request #139490 from NixOS/backport-137563-to-release-21.05
...
[Backport release-21.05] jitsi-meet: 1.0.5056 -> 1.0.5307
2021-09-27 03:19:19 +03:00
c02b9cd15e
Merge pull request #139487 from NixOS/backport-137559-to-release-21.05
...
[Backport release-21.05] jicofo: 1.0-756 -> 1.0-798
2021-09-27 03:18:58 +03:00
5b2ff56444
jitsi-meet: 1.0.5056 -> 1.0.5307
...
(cherry picked from commit f7e646df7f6db413aef1dd1cea9495719b893b63)
2021-09-25 23:14:13 +00:00
36a3756d71
hedgedoc: fix build by re-running `yarn2nix`
...
Failing Hydra build: https://hydra.nixos.org/build/154209534
(cherry picked from commit 0a2615fe2f52c5743fd3a6cb3bd40558bdf31ee5)
2021-09-26 01:12:44 +02:00
6d6a713644
jitsi-videobridge: 2.1-508-gb24f756c -> 2.1-551-g2ad6eb0b
...
(cherry picked from commit 065abed6de2bef418437a99be9f9232993b8339f)
2021-09-25 22:52:59 +00:00
583694193f
jicofo: 1.0-756 -> 1.0-798
...
(cherry picked from commit e35934cc4ff79ce98e3a223feda156795b9485eb)
2021-09-25 22:52:31 +00:00
d3bee2a63a
discourse: enable restoring backups bigger than RAM
...
When restoring a backup, discourse decompresses the backup archive in
the /share/discourse/tmp dir. Before this change, it is linked to /run
which is typically backed by memory, so the backup will fail to
restore if you do not have enough memory on your system to contain the
backup. This has already happened to me on two small forums.
This moves tmp to the StateDirectory /var/lib/discourse/tmp which is
typically backed by disk.
(cherry picked from commit f933c68374b9c6195dc74d26c95fc9bf240fead8)
2021-09-24 12:35:53 +00:00
4eb0a2b3cb
hedgedoc: 1.8.2 -> 1.9.0, fixes CVE-2021-39175
...
ChangeLog: https://github.com/hedgedoc/hedgedoc/releases/tag/1.9.0
As documented in the Nix expression, I unfortunately had to patch
`yarn.lock` manually (the `yarn.nix` result isn't affected by this). By
adding a `git+https`-prefix to
`midi "https://github.com/paulrosen/MIDI.js.git#abcjs "` in the lock-file
I ensured that `yarn` actually uses the `MIDI.js` from the offline-cache
from `yarn2nix` rather than trying to download a tarball from GitHub.
Also, this release contains a fix for CVE-2021-39175 which doesn't seem
to be backported to 1.8. To quote NVD[1]:
> In versions prior to 1.9.0, an unauthenticated attacker can inject
> arbitrary JavaScript into the speaker-notes of the slide-mode feature
> by embedding an iframe hosting the malicious code into the slides or by
> embedding the HedgeDoc instance into another page.
Even though it "only" has a medium rating by NVD (6.1), this seems
rather problematic to me (also, GitHub rates this as "High"), so it's
actually a candidate for a backport.
[1] https://nvd.nist.gov/vuln/detail/CVE-2021-39175
(cherry picked from commit 0a10c17c8d01e5f9fefa3d6dbb7802a3cbce7e23)
2021-09-23 23:33:29 +02:00
12f3f58f48
Merge pull request #138796 from NixOS/backport-138762-to-release-21.05
...
[Backport release-21.05] nginx: fix URLs by taking from a specific commit
2021-09-21 23:47:31 +03:00
8d6407e5a4
matrix-synapse: 1.42.0 -> 1.43.0
...
(cherry picked from commit a8fbb745723062d99b64f34292f86e0ef4361921)
2021-09-21 19:46:20 +00:00
5c7c36a483
matrix-synapse: enable parallel tests
...
(cherry picked from commit 7574cf28fefffa5b76dba22eb76e03dafd22aaca)
2021-09-21 14:11:37 +02:00
a53682d9f3
nginx: fix URLs by taking from a specific commit
...
I'm not sure this is the best way to get these patches, but it's better than `master` (at commit `e9617f553284b170a8b520d051ac1fc1b83cff30` on `nginx` these patches moved into a `nginx` subdirectory, breaking the build unless the patches are cached).
(cherry picked from commit c5d876511301cdcb8a3d4de8c09a681fa128e172)
2021-09-21 11:18:24 +00:00
Artturi
Martin Weinelt
Aaron Andersen
Maximilian Bosch
Pavel Borzenkov
Bruno BELANYI
Sumner Evans
Moritz Hedtke
Mario Rodas
talyz
Lassulus
Lara
ajs124
0x4A6F
Ryan Mulligan
R. RyanTM
pennae
James Kay