nixpkgs

Go to file

Graham Christensen 69e8bac9cd

virtualbox: 5.1.6 -> 5.1.8 for many CVEs:

From LWN:
From the NVD entries:

CVE-2016-5501: Unspecified vulnerability in the Oracle VM VirtualBox
component before 5.0.28 and 5.1.x before 5.1.8 in Oracle
Virtualization allows local users to affect confidentiality,
integrity, and availability via vectors related to Core, a different
vulnerability than CVE-2016-5538.

CVE-2016-5538: Unspecified vulnerability in the Oracle VM VirtualBox
component before 5.0.28 and 5.1.x before 5.1.8 in Oracle
Virtualization allows local users to affect confidentiality,
integrity, and availability via vectors related to Core, a different
vulnerability than CVE-2016-5501.

CVE-2016-5605: Unspecified vulnerability in the Oracle VM VirtualBox
component before 5.1.4 in Oracle Virtualization allows remote
attackers to affect confidentiality and integrity via vectors related
to VRDE.

CVE-2016-5608: Unspecified vulnerability in the Oracle VM VirtualBox
component before 5.0.28 and 5.1.x before 5.1.8 in Oracle
Virtualization allows local users to affect availability via vectors
related to Core, a different vulnerability than CVE-2016-5613.

CVE-2016-5610: Unspecified vulnerability in the Oracle VM VirtualBox
component before 5.0.28 and 5.1.x before 5.1.8 in Oracle
Virtualization allows local users to affect confidentiality,
integrity, and availability via vectors related to Core.

CVE-2016-5611: Unspecified vulnerability in the Oracle VM VirtualBox
component before 5.0.28 and 5.1.x before 5.1.8 in Oracle
Virtualization allows local users to affect confidentiality via
vectors related to Core.

CVE-2016-5613: Unspecified vulnerability in the Oracle VM VirtualBox
component before 5.0.28 and 5.1.x before 5.1.8 in Oracle
Virtualization allows local users to affect availability via vectors
related to Core, a different vulnerability than CVE-2016-5608.

2016-10-26 22:18:00 -04:00

.github

Merge pull request #18972 from ericsagnes/doc/reviewing-contributions

2016-10-01 15:09:12 +01:00

doc

Merge remote-tracking branch 'upstream/master' into HEAD

2016-10-22 17:23:24 +02:00

lib

unigine-valley: init at 1.0-1

2016-10-24 19:35:06 -04:00

maintainers

vanity.sh: tolerate the fact that github login adder is too long

2016-09-26 19:24:22 +02:00

nixos

Merge remote-tracking branch 'upstream/master' into HEAD

2016-10-26 13:06:43 +02:00

pkgs

virtualbox: 5.1.6 -> 5.1.8 for many CVEs:

2016-10-26 22:18:00 -04:00

.editorconfig

add .editorconfig

2016-10-02 22:10:43 +02:00

.gitignore

kde5: consolidate packages into desktops/kde-5

2016-03-01 10:36:00 -06:00

.mention-bot

mention-bot: notify me when darwin stdenv stuff changes

2016-09-12 01:01:14 -04:00

.travis.yml

Revert "travis: only fetch top commit"

2016-09-07 17:14:38 +02:00

.version

unstable is now 17.03

2016-09-02 08:47:21 +02:00

COPYING

COPYING: Update year range to 2016 (close #12621 )

2016-01-26 10:10:45 +01:00

default.nix

Separate fix-point from config importing hacks and other impurities

2016-07-14 14:33:23 -07:00

README.md

README: Update to 16.09

2016-10-04 17:45:24 +02:00

README.md

Nixpkgs is a collection of packages for the Nix package manager. It is periodically built and tested by the hydra build daemon as so-called channels. To get channel information via git, add nixpkgs-channels as a remote:

% git remote add channels git://github.com/NixOS/nixpkgs-channels.git

For stability and maximum binary package support, it is recommended to maintain custom changes on top of one of the channels, e.g. nixos-16.09 for the latest release and nixos-unstable for the latest successful build of master:

% git remote update channels
% git rebase channels/nixos-16.09

For pull-requests, please rebase onto nixpkgs master.

NixOS linux distribution source code is located inside nixos/ folder.

Communication:

Languages

Nix 96.3%

Shell 1.8%

Python 0.7%

Perl 0.4%

C 0.3%

Other 0.1%