3.4.0

Alpine documentation - Bug #589: Documentation Checklist for Alpine 2.2.0

Alpine documentation - Bug #598: Document localization

Bug #3621: lxc-doc doesn't contain man pages but example conf files

Bug #4973: [raspberry-pi] mmc spi driver patch

Bug #4993: [3.4] cacti: Security issues (CVE-2015-8369, CVE-2015-8377)

Bug #5014: [3.4] OpenSSH: client bugs CVE-2016-0777 and CVE-2016-0778

Bug #5024: ownership of /var/lib/postgresql should be given to postgres user

Bug #5040: [3.4] samba: Several vulnerabilities (CVE-2015-3223, CVE-2015-5252, CVE-2015-5296, CVE-2015-5299, CVE-2015-5330, CVE-2015-8467)

Bug #5046: [3.4] mariadb: Multiple security vulnerabilities (various CVEs)

Bug #5095: [3.4] cgit: Multiple vulnerabilities(CVE-2016-1899, CVE-2016-1900, CVE-2016-1901)

Bug #5108: MariaDB is not ready to run after installing mariadb package

Bug #5109: [alpine-baselayout] /etc/profile.d/color_prompt is never loaded

Bug #5111: php7-mysqlnd package doesn't contain mysqli::poll function causing warnings

Bug #5125: [3.4] Krb5: Mutiple vulnerabilities (CVE-2015-8629, CVE-2015-8630, CVE-2015-8631)

Bug #5143: Asterisk x86 pjsip errors - failed to start

Bug #5159: [3.4] xen: Multiple security issues (xsa-154 - xsa-170)

Bug #5166: [3.4] nettle: Miscomputations of elliptic curve scalar multiplications (CVE-2015-8803, CVE-2015-8804, CVE-2015-8805)

Bug #5172: [3.4] libssh: bits/bytes confusion resulting in truncated Difffie-Hellman secret length (CVE-2016-0739)

Bug #5178: [3.4] libssh2: Wrong calculation of Diffie Helllman secret length (CVE-2016-0787)

Bug #5198: PHP7 SQLite extension gives an error

Bug #5201: [3.4] cacti: SQL injection in graps_new.php via cg_g parameter (CVE-2015-8604)

Bug #5213: [3.4] squid: Multiple Denial of Service issues (CVE-2016-2569, CVE-2016-2570, CVE-2016-2571, CVE-2016-2572)

Bug #5232: [3.4] jasper: Security issues (CVE-2016-1577, CVE-2016-2089, CVE-2016-2116)

Bug #5238: [3.4] drupal7: Multiple Vulnerabilities (no CVE)

Bug #5243: [3.4] bind: Multiple issues (CVE-2016-1285, CVE-2016-1286, CVE-2016-2088)

Bug #5250: [3.4] putty: old-style scp downloads may allow remote code execution (CVE-2016-2563)

Bug #5272: [3.4] samba: security issues (CVE-2015-7560, CVE-2016-0771)

Bug #5291: [3.4] dropbear: X11 forwarding input not validated properly (CVE-2016-3116)

Bug #5315: [3.4] py-django: Multiple security issues (CVE-2016-2512, CVE-2016-2513)

Bug #5328: [3.4] perl-PathTools: Taint propagation flaw in canonpath() (CVE-2015-8607)

Bug #5341: [3.4] quagga: stack-based buffer overflow vulnerability (CVE-2016-2342)

Bug #5348: [3.4] kamailio: SEAS Module Heap overflow (CVE-2016-2385)

Bug #5371: [3.4] cacti: SQL injection vulnerability in graph_view.php (CVE-2016-3659)

Bug #5383: PostgreSQL's build in XML data type does not work in Alpine

Bug #5411: ACF Cron panel issue due to wrong processname

Bug #5414: [3.4] imlib2: Security issues (CVE-2011-5326, CVE-2016-3993, CVE-2016-3994)

Bug #5440: [3.4] libxml2: out-of-bounds read in htmlParseNameComplex() (CVE-2016-2073)

Bug #5447: [3.4] libtasn1: infinite loop while parsing DER certificates (CVE-2016-4008)

Bug #5453: [3.4] krb5: null pointer dereference in kadmin (CVE-2016-3119)

Bug #5462: busybox-initscripts: fix post-install/upgrade to handle cron rename to crond

Bug #5472: [3.4] pcre: Several vulnerabilities (CVE-2016-1283, CVE-2016-3191)

Bug #5489: [3.4] xen: Security issues (CVE-2016-3157, CVE-2016-3158, CVE-2016-3159, CVE-2016-3960, CVE-2016-3961)

Bug #5495: [3.4] samba: Multiple security issues (CVE-2015-5370, CVE-2016-2110, CVE-2016-2111, CVE-2016-2112, CVE-2016-2113, CVE-2016-2114, CVE-2016-2115, CVE-2016-2118)

Bug #5513: [3.4] giflib: heap buffer overflow in gif2rgb (CVE-2016-3977)

Bug #5527: [3.4] subversion: Security issues (CVE-2016-2167, CVE-2016-2168)

Bug #5561: [3.4] libarchive: heap-based buffer overflow due to improper input validation (CVE-2016-1541)

Bug #5596: [3.4] expat: Out-of-bounds heap read on crafted input causing crash (CVE-2016-0718)

Bug #5603: postgres is not ldap linked on edge

Bug #5609: [3.4] gd: signedness vulnerability causing heap overflow (CVE-2016-3074)

Bug #5614: Docker alpine:edge php5-apcu and php5-memcache .ini files installed to wrong directory

Bug #5632: [3.4] jq: heap-buffer-overflow in tokenadd() function (CVE-2015-8863)

Bug #5638: [3.4] wpa_supplicant: security vulnerabilities (CVE-2016-4476, CVE-2016-4477)

Bug #5645: [3.4] hostapd: denial of service via crafted WPA/WPA2 passphrase parameter (CVE-2016-4476)

Bug #5715: [3.4] vlc: crash and potential code execution when processing QuickTime IMA files (CVE-2016-5108)

Bug #5746: [3.4] drupal7: Multiple Vulnerabilities (no CVE)

Bug #5775: [3.4] xen: Multiple issues (CVE-2014-3672, CVE-2016-3710 CVE-2016-3712, CVE-2016-4963, CVE-2016-4480, CVE-2016-4962)

Feature #633: ACF-dovecot user management

Feature #635: ACF serialize writes by 2 users

Feature #637: Update ACF hooks feature to include prefix

Feature #638: ACF seems to freeze when a command takes a long time to complete

Feature #641: Separate packages for each ACF skin

Feature #643: Upgrade for ACF cli application

Feature #670: ACF debug / log feature

Feature #671: Build apk package for spec-tools Wi-Spy USB Spectrum Analyzer

Feature #752: ACF - Ability to upload certs previously generated by the CA

Feature #753: acf-weblog features

Feature #787: setup-bootable command line for installing Alpine does not modify partition table

Alpine Setup Scripts - Feature #1008: setup-wifi: tool for setting up wifi nets

Feature #3055: busybox: add support for SOCK_DGRAM ping

Feature #4916: Package upgrade: cmake

Feature #4917: Package upgrade: samba

Feature #4977: Edge repository per minor version

Feature #4991: prefix openssl man pages

Feature #5106: Apache out of date

Feature #5382: Clean up /etc/ssl when ca-certificates removed

Feature #5402: Package request: which(1)

Feature #5602: freetds package version bump to 1.0

Feature #5619: Add hci_uart kernel module to linux-rpi2 for the RPi3 on board bcm43xx Bluetooth chipset

Project

General

Profile

Alpine Linux