nordic-dev.net/nixpkgs
nordic-dev.net/nixpkgs
2
0
Fork 0
mirror of https://github.com/NixOS/nixpkgs.git synced 2024-12-14 17:53:37 +00:00
Code Issues Packages Projects Releases Wiki Activity
254,121 Commits 196 Branches 125 Tags 9 GiB
b0f1fea52f
Commit Graph

254121 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Red Davies
b0f1fea52f cassandra_2_1: 2.1.20 -> 2.1.22 
Reason: Fixes CVE-2020-13946 Apache Cassandra RMI Rebind Vulnerability

Description:
It is possible for a local attacker without access to the Apache Cassandra
process or configuration files to manipulate the RMI registry to perform a
man-in-the-middle attack and capture user names and passwords used to access
the JMX interface. The attacker can then use these credentials to access
the JMX interface and perform unauthorised operations.

Users should also be aware of CVE-2019-2684, a JRE vulnerability that enables
this issue to be exploited remotely.

2.1.x users should upgrade to 2.1.22
 2020-11-24 20:42:29 -05:00
Sandro
3b4fcbb5d1
Merge pull request #103523 from r-ryantm/auto-update/rssguard 
rssguard: 3.7.2 -> 3.8.0
 2020-11-24 02:59:45 +01:00
adisbladis
6847a5c12d
referencesByPopularity: Don't use buildPackages at call-site 
It's cleaner to reference buildPackages directly in
build-support/docker directly.
 2020-11-24 02:55:40 +01:00
adisbladis
bd4c7fdff4
Merge pull request #104729 from adisbladis/references-by-popularity-cross 
referencesByPopularity: Fix cross compilation
 2020-11-24 02:53:45 +01:00
Sandro
5917193cef
Merge pull request #103594 from r-ryantm/auto-update/yafaray-core 
yafaray-core: 3.5.0 -> 3.5.1
 2020-11-24 02:30:54 +01:00
Sandro
27441efe5c
Merge pull request #103511 from r-ryantm/auto-update/rabbitmq-server 
rabbitmq-server: 3.8.8 -> 3.8.9
 2020-11-24 02:21:42 +01:00
Sandro
6f29643d35
Merge pull request #97530 from reedrw/noisetorch-072 2020-11-24 02:16:57 +01:00
Sandro
3da89983fd
Merge pull request #103590 from r-ryantm/auto-update/workcraft 
workcraft: 3.3.0 -> 3.3.1
 2020-11-24 02:07:43 +01:00
adisbladis
c3e79669db
referencesByPopularity: Fix cross compilation 2020-11-24 02:05:11 +01:00
Sandro
d60ce0c8c8
Merge pull request #103686 from r-ryantm/auto-update/flrig 
flrig: 1.3.51 -> 1.3.52
 2020-11-24 02:01:35 +01:00
Sandro
5e3b8db59d
Merge pull request #103684 from r-ryantm/auto-update/geekbench 
geekbench: 5.2.5 -> 5.3.0
 2020-11-24 02:01:15 +01:00
Sandro
b3f5ff2005
Merge pull request #103703 from r-ryantm/auto-update/gmsh 
gmsh: 4.6.0 -> 4.7.0
 2020-11-24 01:57:36 +01:00
Sandro Jäckel
abfd29cace pythonPackages.asyncssh: Switch PyTestCheckHook, disable failing tests 2020-11-23 16:29:49 -08:00
Joshua Skrzypek
cde89e3ecf python3Packages.pyspark: Fix out of date postPatch 
Pyspark switched to pinning py4j==0.10.9 with v3.0.0 - see this commit:
https://github.com/apache/spark/\
   commit/fc4e56a54c15e20baf085e6061d3d83f5ce1185d

This meant that since the bump to pyspark v3.0.0 - in this commit:
https://github.com/NixOS/nixpkgs/\
   commit/5181547ae6624b462919a806c4d0888e6e4630f4 -
the patch was no longer matching on the 'py4j==0.10.7' string that was
working previously.

The failing patch went unnoticed previously because the version of py4j
pinned by pyspark>=3.0.0 was the same as the py4j provided by nixpkgs.

However, a recent PR (#101636) bumped the version of py4j to 0.10.9.1 in
this commit:
https://github.com/NixOS/nixpkgs/\
   commit/43a91282d66223c5cb978d53fbe1033f56dd7f2b
which caused the version pinned by pyspark to no longer match the
version provided by nixpkgs. FWIW, @jonringer flagged this issue on
another PR that tried to bump py4j: #100623.

My solution here was to upgrade the patch's target string to match the
version found in pyspark's current setup.py.
 2020-11-23 16:19:14 -08:00
Jonathan Ringer
cc5a3cb547 pipreqs: use python3 2020-11-23 16:18:40 -08:00
Sandro
11ab3049e9
Merge pull request #104711 from sikmir/josm 
josm: 17084 → 17329
 2020-11-24 01:17:38 +01:00
Sandro
9f4cd47a0d
Merge pull request #103827 from r-ryantm/auto-update/python3.7-gssapi 
python37Packages.gssapi: 1.6.9 -> 1.6.10
 2020-11-24 01:06:06 +01:00
Sandro
a47cd7370c
Merge pull request #103777 from r-ryantm/auto-update/gnomecast 
gnomecast: 1.4.1 -> 1.9.11
 2020-11-24 01:00:31 +01:00
Sandro
e2d8e85661
Merge pull request #104706 from rycee/bump/trash-cli 
trash-cli: 0.20.11.7 -> 0.20.11.23
 2020-11-24 00:56:00 +01:00
Sandro
c9a9197078
Merge pull request #102269 from pkern/terraria 
terraria-server: 1.4.0.5 -> 1.4.1.2
 2020-11-24 00:17:47 +01:00
Sandro
dde4f985c0
Merge pull request #103879 from r-ryantm/auto-update/jackett 
jackett: 0.16.2131 -> 0.16.2152
 2020-11-24 00:09:15 +01:00
Sandro
37f04ecad7
Merge pull request #103863 from r-ryantm/auto-update/doppler 
doppler: 3.16.1 -> 3.17.0
 2020-11-24 00:00:40 +01:00
Sandro
9d4d20316e
Merge pull request #103899 from r-ryantm/auto-update/photoflare 
photoflare: 1.6.5 -> 1.6.6
 2020-11-23 23:55:49 +01:00
Sandro
15dc396ae5
Merge pull request #103862 from r-ryantm/auto-update/dolt 
dolt: 0.21.4 -> 0.22.0
 2020-11-23 23:51:20 +01:00
Sandro
72d811d858
Merge pull request #103922 from r-ryantm/auto-update/shaarli 
shaarli: 0.11.1 -> 0.12.1
 2020-11-23 23:33:02 +01:00
Sandro
0505cde31b
Merge pull request #103915 from r-ryantm/auto-update/rpm-ostree 
rpm-ostree: 2020.7 -> 2020.8
 2020-11-23 23:24:22 +01:00
Sandro
eacf36e6d7
Merge pull request #103923 from r-ryantm/auto-update/sickgear 
sickgear: 0.22.15 -> 0.23.0
 2020-11-23 23:23:31 +01:00
Sandro
6861bc093f
Merge pull request #103924 from r-ryantm/auto-update/sigil 
sigil: 1.3.0 -> 1.4.0
 2020-11-23 23:22:58 +01:00
Sandro
56fc158242
Merge pull request #103967 from jojosch/dbeaver-7.2.5 
dbeaver: 7.2.4 -> 7.2.5
 2020-11-23 23:21:33 +01:00
Florian Klink
bbf3c9483b
Merge pull request #104520 from Izorkin/wsdd 
wsdd: init at 0.6.2
 2020-11-23 23:18:23 +01:00
Nikolay Korotkiy
f54fa91b9a
josm: 17084 → 17329 2020-11-24 01:17:39 +03:00
Sandro
5ba79b8cf4
Merge pull request #103296 from r-ryantm/auto-update/python3.7-genanki 
python37Packages.genanki: 0.8.1 -> 0.9.0
 2020-11-23 23:16:18 +01:00
Sandro
8b65b642b1
Merge pull request #103227 from Mazurel/master 2020-11-23 23:09:50 +01:00
06kellyjac
f7876c6bbf bat: 0.16.0 -> 0.17.0 2020-11-24 08:03:59 +10:00
Sandro
9d3ab08ce6
Merge pull request #103921 from r-ryantm/auto-update/seaweedfs 
seaweedfs: 2.09 -> 2.10
 2020-11-23 22:59:21 +01:00
Sandro
edcd5cc798
Merge pull request #103253 from StephenWithPH/add-las-tools 2020-11-23 22:56:56 +01:00
Ryan Mulligan
213cf1aaea
Merge pull request #104562 from r-ryantm/auto-update/obsidian 
obsidian: 0.9.11 -> 0.9.15
 2020-11-23 13:38:26 -08:00
Sandro
0f96ab0a5f
Merge pull request #103937 from buffet/fix-kak-prelude-path 
kak-prelude: Fix installation path
 2020-11-23 22:28:37 +01:00
Timo Kaufmann
e4af85f1d8
Merge pull request #104476 from refnil/pynac 
pynac: use python3 instead of python2
 2020-11-23 22:26:38 +01:00
Sandro
4b481d9b9f
Merge pull request #102516 from NieDzejkob/sumtypes 
pythonPackages.sumtypes: init at 0.1a5
 2020-11-23 22:26:14 +01:00
Sandro
8451b563e8
Merge pull request #98624 from NieDzejkob/rgbds-maint 
rgbds: add NieDzejkob as maintainer
 2020-11-23 22:03:35 +01:00
Robert Helgesson
aeadb4c3f5
trash-cli: 0.20.11.7 -> 0.20.11.23 2020-11-23 22:03:13 +01:00
Sandro
d06276eb8d
Merge pull request #104698 from veprbl/pr/yed_mark_broken 
yed: mark as broken if jre.gtk3 is not available
 2020-11-23 21:49:42 +01:00
Maximilian Bosch
22acd9d236
element-desktop: 1.7.13 -> 1.7.14 
https://github.com/vector-im/element-desktop/releases/tag/v1.7.14
 2020-11-23 21:48:54 +01:00
Maximilian Bosch
b741501c31
element-web: 1.7.13 -> 1.7.14 
https://github.com/vector-im/element-web/releases/tag/v1.7.14
 2020-11-23 21:48:54 +01:00
Sandro
0ea1c7d282
Merge pull request #104033 from r-ryantm/auto-update/clipgrab 
clipgrab: 3.8.15 -> 3.9.2
 2020-11-23 21:42:52 +01:00
Sandro
9792e460ac
Merge pull request #104044 from beardhatcode/master 
languagetool: 5.0 -> 5.1
 2020-11-23 21:37:28 +01:00
Ryan Mulligan
a9122bb605
Merge pull request #104643 from r-ryantm/auto-update/eternal-terminal 
eternal-terminal: 6.0.11 -> 6.0.13
 2020-11-23 11:58:19 -08:00
Martin Weinelt
9ac42658f9 dash: add patch to prevent code execution when noexec is set 
Dashs noexec flag `-n` did not work as documented, which could result in
code being inadvertently executed.
 2020-11-23 11:57:29 -08:00
Ryan Mulligan
97597f09c0
Merge pull request #104547 from r-ryantm/auto-update/indilib 
indilib: 1.8.6 -> 1.8.7
 2020-11-23 11:56:33 -08:00