nixpkgs

mirror of https://github.com/NixOS/nixpkgs.git synced 2024-11-24 14:41:17 +00:00

History

Graham Christensen 428927ffa6 openjpeg2: patch for multiple CVEs - Floating Point Exception (aka FPE or divide by zero) in opj_pi_next_cprl function in openjp2/pi.c:523 in OpenJPEG 2.1.2. (CVE-2016-9112) - There is a NULL Pointer Access in function imagetopnm of convert.c:1943(jp2) of OpenJPEG 2.1.2. image->comps[compno].data is not assigned a value after initialization(NULL). Impact is Denial of Service. (CVE-2016-9114) - NULL Pointer Access in function imagetopnm of convert.c:2226(jp2) in OpenJPEG 2.1.2. Impact is Denial of Service. Someone must open a crafted j2k file. (CVE-2016-9116) - Heap Buffer Overflow (WRITE of size 4) in function pnmtoimage of convert.c:1719 in OpenJPEG 2.1.2. (CVE-2016-9118)		2017-01-07 06:51:31 -05:00
..
applications	Merge pull request #21694 from dtzWill/fix/skype-pax	2017-01-07 08:05:02 +01:00
build-support	Revert "releaseTools.debBuild: split checkinstall into separate phase"	2016-12-31 02:13:04 +04:00
data
desktops	kde-gtk-config: follow symlinks for cursors	2017-01-06 06:18:26 +03:00
development	openjpeg2: patch for multiple CVEs	2017-01-07 06:51:31 -05:00
games	sgtpuzzles: 20160429.b31155b -> 20161228.7cae89f	2017-01-02 20:18:49 +01:00
misc	Merge branch 'staging'; security /cc #21642	2017-01-06 16:32:47 +01:00
os-specific	grsecurity: 4.8.15-201612301949 -> 4.8.16-201701062021	2017-01-07 08:01:41 +01:00
servers	Merge pull request #21685 from mayflower/fix/bind-outputs	2017-01-07 11:37:17 +01:00
shells	bash: switch the default 4.3 -> 4.4	2017-01-05 01:07:36 +01:00
stdenv	coreutils: Build with libattr to support xattrs	2017-01-05 00:55:35 +02:00
test
tools	dnscrypt-proxy: 1.9.0 -> 1.9.1	2017-01-07 08:02:53 +01:00
top-level	Merge pull request #21650 from dbalan/ldns-1.7.0	2017-01-06 14:46:18 -06:00