Information | Source Packages | Binary Packages | Packagers

Eren Türkay

Packager: Eren Türkay (eren [at] pardus.org.tr)

Maintained packages:

aprx
aprx
ax25-apps
ax25-apps
ax25-apps
ax25-tools
ax25-tools
ax25-tools
claws-mail
cmemcache
domino-kde3
evince
evolution-data-server
farsight
fldigi
fldigi
fldigi
flup
freerdp
freerdp
gdm
gnuradio
gvim
hamlib
hamlib
hamlib
herrie
libax25
libax25
libcpptest
libfap
libfap
libmemcache
libsigc++1_2
libsigc++1_2
libsigc++1_2
libxspf
libzzub
linrad
ming
musescore
mutt
nagios-core
nagios-plugins
osm-gps-map
osm-gps-map
osm-gps-map
osm-gps-map
pytapioca
qtractor
racket
shapelib
shapelib
silc-client
silc-toolkit
slim
svxlink
svxlink
svxlink
tapioca-xmpp
tapiocad
tapiocaui
uriparser
wired
xastir
xastir
xlog
xlog
xlog
zphoto

Package updates:

osm-gps-map (1)
First release.
nss (34)
Use /etc/pki/ directory instead of /etc/ssl for nssdb
firefox (66)
Add google linux search plugin
firefox (66)
Add google linux search plugin
trml2pdf (3)
Remove *.pyc files from package.
glibc (44)
Fix integer overflow in formatting functions, strfmon() integer overflow (CVE-2008-1391) (#11610)
baselayout (172)
Add svxlink user. Add it into dialout, daemon, and audio groups. (pb#18672)
qt (72)
* Webkit: Add patch to fix multiple security flaws while handling FTP directory listing (CVE-2009-3384, #11545)
* Webkit: Add patch to fix MITM Cross-Origin Resource Sharing vulnerability (CVE-2009-2816, #11546)
gtkhtml3 (6)
Version bump.
gtkhtml3 (5)
Version bump. Bugfix release and translation update
gtkhtml3 (4)
Version bump. Bugfix release and translation update
gtkhtml3 (3)
Version bump
gtkhtml3 (2)
Version bump. Minor fixes, translations etc.
gtkhtml3 (1)
First release.
php (79)
- Version bump to fix multiple vulnerabilities. (#13890)
php (78)
- Add patch to fix unsafe unserialize() remote code execution (CVE-2010-2225, #13644)
- Enable OpenSSL support
- Add PDO support for mysql and pgsql
- Add autoconf-2.65 patch to fix configure error when using diversion
php (76)
* Version bump to fix 3 security vulnerabilities (#12363)
- Fixed safe_mode validation inside tempnam() when the directory path does not end with a /). (Martin Jansen)
- Fixed a possible open_basedir/safe_mode bypass in session extension identified by Grzegorz Stachowiak. (Ilia)
- Improved LCG entropy. (Rasmus, Samy Kamkar)
php (75)
Version bump to fix 2 security vulnerabilities. (#11742)

- Protection for $_SESSION from interrupt corruption and improved "session.save_path" check (CVE-2009-4143)
- Insufficient input string validation of htmlspecialchars() (CVE-2009-4142)
php (74)
Fix 3 important security vulnerabilities:

- It's possible to cause DOS with requests containing 160.000+ file uploads, limit max_uploads to 20. (#11580)
- Safe_mode bypass in tempnam() (CVE-2009-3557)
- Open_basedir bypass in posix_mkfifo() (CVE-2009-2558)
php (73)
Add patch to fix buffer overflow in _gdGetColors function, CVE-2009-3546
php (63)
Enable cgi/fastcgi support.
php (62)
Edit libxml2 dependency. PHP should depend on the latest one.
php (61)
Version bump and enable ctypes module. This release includes 5 security fixes: http://www.php.net/ChangeLog-5.php
php (27)
Add postgresql-lib dependency
amsn (18)
Version bump.
amsn (17)
Fix login error due to the change in MSN protocol.
amsn (16)
Add patch to use firefox for default browser and to set file-manager opener as xdg-open.
php (79)
- Version bump to fix multiple vulnerabilities. (#13890)
php (78)
- Add patch to fix unsafe unserialize() remote code execution (CVE-2010-2225, #13644)
- Enable OpenSSL support
- Add PDO support for mysql and pgsql
- Add autoconf-2.65 patch to fix configure error when using diversion
php (76)
* Version bump to fix 3 security vulnerabilities (#12363)
- Fixed safe_mode validation inside tempnam() when the directory path does not end with a /). (Martin Jansen)
- Fixed a possible open_basedir/safe_mode bypass in session extension identified by Grzegorz Stachowiak. (Ilia)
- Improved LCG entropy. (Rasmus, Samy Kamkar)
php (75)
Version bump to fix 2 security vulnerabilities. (#11742)

- Protection for $_SESSION from interrupt corruption and improved "session.save_path" check (CVE-2009-4143)
- Insufficient input string validation of htmlspecialchars() (CVE-2009-4142)
php (74)
Fix 3 important security vulnerabilities:

- It's possible to cause DOS with requests containing 160.000+ file uploads, limit max_uploads to 20. (#11580)
- Safe_mode bypass in tempnam() (CVE-2009-3557)
- Open_basedir bypass in posix_mkfifo() (CVE-2009-2558)
php (73)
Add patch to fix buffer overflow in _gdGetColors function, CVE-2009-3546
php (63)
Enable cgi/fastcgi support.
php (62)
Edit libxml2 dependency. PHP should depend on the latest one.
php (61)
Version bump and enable ctypes module. This release includes 5 security fixes: http://www.php.net/ChangeLog-5.php
php (27)
Add postgresql-lib dependency
compiz-manager (2)
Add little script for deleting all configuration files related with compiz-fusion.
emacs (18)
Fix *.flc file autoloading and executing. CVE-2008-2142.
libfprint (3)
Version bump
libax25 (2)
Split header files.
shapelib (2)
Split headers. Create shapelib-devel package
svxlink (2)
Update to 11.11.1
svxlink (1)
First release.
gnuradio (1)
First release.
xlog (1)
First release.
libfap (1)
First release.
hamlib (1)
First release.
ax25-tools (1)
First release.
ax25-apps (1)
First release.
linrad (1)
First release.
fldigi (1)
First release.
xastir (2)
Update to 2.0.0
aprx (1)
First release.
libsigc++1_2 (1)
Svxlink uses 1.2 version of sigc++.
osm-gps-map (1)
First release.
openssl (25)
* Add patch to completely disable renegotiation. (CVE-2009-3555, #11515). See: http://extendedsubset.com/?p=8
* NOTE: This fixes 90% of the cases. If renegotiation is needed, we can not do anything about it.
Now, TLS extension is being developed to solve the issue but it needs time. When extension is completed,
we will keep us updated as well..
* NOTE #2: With this commit, apache will also be fixed. There is no need to patch mod_ssl. The patch to mod_ssl is needed
with old version of openssl which does not reject renegotiating.
openssl (14)
Version bump to fix CVE-2008-{0891, 1672}. http://www.openssl.org/news/secadv_20080528.txt
nagios-plugins (1)
First release.
nagios-core (1)
First release.
slim (1)
First release.
domino-kde3 (1)
First release.
evolution-data-server (1)
First release.
gdm (3)
Version bump.
gdm (2)
Version bump.
gdm (1)
First release.
evince (4)
Version bump.
evince (3)
Version bump.
evince (2)
Version bump.
evince (1)
First release.
zphoto (1)
First release.
qtractor (1)
First release.
musescore (1)
First release.
wired (1)
First release.
herrie (1)
First release.
gvim (1)
First release
silc-client (1)
First release.
silc-toolkit (1)
First release.
tapiocad (1)
First release.
tapiocaui (2)
Update
tapiocaui (1)
First release.
pytapioca (1)
First release.
claws-mail (1)
First release.
tapioca-xmpp (1)
First release.
mutt (4)
Version bump to 1.5.20
racket (1)
First release.
flup (1)
First release.
farsight (1)
First release.
ming (1)
First release.
uriparser (1)
First release.
libzzub (1)
First release.
libxspf (1)
First release.
cmemcache (1)
First release.
libmemcache (1)
First release.
libcpptest (1)
First release.
freerdp (1)
First release.
freerdp (1)
First release.
libax25 (2)
Split header files.
shapelib (2)
Split headers. Create shapelib-devel package
svxlink (3)
Disable speex codec. It's problematic on AMD Geode LX for illegal instruction is get when using speex.
svxlink (2)
Update to 11.11.1
svxlink (1)
First release.
xlog (1)
First release.
libfap (1)
First release.
hamlib (1)
First release.
ax25-tools (1)
First release.
ax25-apps (1)
First release.
fldigi (1)
First release.
xastir (2)
Update to 2.0.0
aprx (1)
First release.
libsigc++1_2 (1)
Svxlink uses 1.2 version of sigc++.
osm-gps-map (1)
First release.
atk (10)
Version bump
atk (8)
Version bump
pango (34)
Fix memory corruption. (CVE-2010-0421, #12381)
pango (23)
Version bump.
pango (22)
Version bump.
pango (21)
Version bump.
pango (20)
Version bump, bugfix release.
pango (19)
Version bump, bugfix release.
pango (18)
Version bump, bugfix release.
pango (17)
Update to stable branch.
pango (11)
Stable update
gtk2 (35)
Version bump.
gtk2 (34)
Correctly fix wrong handling of printer hostname in printer dialog (https://bugzilla.redhat.com/show_bug.cgi?id=449379)
gtk2 (33)
Version bump.
gtk2 (32)
Add patch to fix wrong handling of printer hostname in printer dialog (https://bugzilla.redhat.com/show_bug.cgi?id=248245)
gtk2 (29)
Version bump, bugfix release of 2.12
gtk2 (27)
Version bump.
gtk2 (26)
Version bump.
gtk2 (25)
Version bump.
gtk2 (23)
Add patch for fixing crash when mousing over tooltips Gnome bug #460194
gtk2 (22)
Version bump to 2.12 branch.
gtk2 (21)
Depend on new glib2, it should be compiled with it.
gtk2 (20)
Add package handler for updating hicolor icon theme cache automatically.
gtk2 (18)
Version bump.
xchat (9)
Enable gtkspell support.
xchat (8)
Add patch to fix crash when transparent background is set.
xchat (2)
Version bump
kdebase (170)
- Add patch to fix kdm privilege escalation vulnerability. (CVE-2010-0436, #12677)
openssl (33)
- Update to 1.0.0a
- Change SSL dir to /etc/pki instead of /etc/ssl
- Put engines into /usr/lib/openssl/engines
- Update ca-bundle.crt
- Add make-dummy-cert script to create dummy scripts.
openssl (32)
- Fix double-free corruption in s3_clnt.c. (CVE-2010-2939, #13982)
openssl (28)
- Fix invalid asn1 module definition for cms (CVE-2010-0742)
openssl (27)
* Add patch to fix CVE-2010-0740, denial of service bug (#12513)
openssl (26)
* Add patch to fix CVE-2009-4355, denial of service bug via vectors that trigger incorrect calls to the CRYPTO_free_all_ex_data function (#12014)
openssl (25)
* Add patch to completely disable renegotiation. (CVE-2009-3555, #11515). See: http://extendedsubset.com/?p=8
* NOTE: This fixes 90% of the cases. If renegotiation is needed, we can not do anything about it.
Now, TLS extension is being developed to solve the issue but it needs time. When extension is completed,
we will keep us updated as well..
* NOTE #2: With this commit, apache will also be fixed. There is no need to patch mod_ssl. The patch to mod_ssl is needed
with old version of openssl which does not reject renegotiating.
openssl (14)
Version bump to fix CVE-2008-{0891, 1672}. http://www.openssl.org/news/secadv_20080528.txt
neon (4)
Version bump, bugfix release. Also needed by BMPx media player.
qt (72)
* Webkit: Add patch to fix multiple security flaws while handling FTP directory listing (CVE-2009-3384, #11545)
* Webkit: Add patch to fix MITM Cross-Origin Resource Sharing vulnerability (CVE-2009-2816, #11546)
poppler (24)
Add patch to fix CVE-2008-2950, uninitialized memory access.
poppler (13)
Create poppler-glib and poppler-qt packages
gnokii (7)
Version bump.
gnokii (6)
Version bump.
gnokii (4)
Version bump. Bugfix release.
gnokii (3)
Version bump.
gnokii (2)
Add xgnokii desktop icon file. Fix bug #5609
gnokii (1)
First release.
vsftpd (12)
Anon users can upload/download a file, can't create directory. Jail local users
mpg123 (8)
New stable release
libvorbis (8)
Fix CVE-2008-{1419, 1420, 1423}
speex (6)
Fix speex header buffer overflow (CVE-2008-1686).
imlib2 (9)
Add patch to fix CVE-2008-2426, http://secunia.com/advisories/30401/
bluez (24)
Version bump
bluez (20)
Version bump.
bluez (19)
Version bump, it's a bit stable now.
bluez (18)
Version bump
alsa-utils (29)
Add alsa-info.sh script which gathers information about ALSA and pastes it to pastebin.
fuse (21)
* Version bump to fix privilege escalation via symlink attack. (CVE-2009-3797, #12148)
hal (49)
Add memstick support patch.
vim (30)
Correctly detect failing diff. Symlink /bin/ex to /usr/bin/vim, gdb looks at /bin/ex.
curl (18)
Add patch to fix vulnerability that is caused by excessive callback length. (#12439)
ncompress (9)
Add patch to fix CVE-2010-0001, #13494
openssl (26)
* Add patch to fix CVE-2009-4355, denial of service bug via vectors that trigger incorrect calls to the CRYPTO_free_all_ex_data function (#12014)
openssl (25)
* Add patch to completely disable renegotiation. (CVE-2009-3555, #11515). See: http://extendedsubset.com/?p=8
* NOTE: This fixes 90% of the cases. If renegotiation is needed, we can not do anything about it.
Now, TLS extension is being developed to solve the issue but it needs time. When extension is completed,
we will keep us updated as well..
* NOTE #2: With this commit, apache will also be fixed. There is no need to patch mod_ssl. The patch to mod_ssl is needed
with old version of openssl which does not reject renegotiating.
openssl (14)
Version bump to fix CVE-2008-{0891, 1672}. http://www.openssl.org/news/secadv_20080528.txt
libxml2 (7)
Version bump to fix UTF-8 decoding problem, CVE-2007-6284
libxml2 (6)
Version bump
glibc (44)
Fix integer overflow in formatting functions, strfmon() integer overflow (CVE-2008-1391) (#11610)
libssh2 (3)
Version bump
perl (20)
Fix File::Path::Rmtree behaviour. Rmtree sets symlink target to 777.
openssh (21)
Fix CVE-2008-1483. See: http://secunia.com/advisories/29522/
libxslt (8)
Version bump, fixes CVE-2008-1767
libxslt (6)
Version bump
glib2 (26)
Version bump.
glib2 (25)
Version bump.
glib2 (24)
Fix race in class initialization.
glib2 (23)
Add glib2-gio-hide-inaccessible-mounts.patch. See: http://bugzilla.gnome.org/show_bug.cgi?id=526320
glib2 (22)
Version bump.
glib2 (21)
Version bump.
glib2 (20)
Version bump.
glib2 (18)
Version bump.
glib2 (17)
Version bump.
glib2 (15)
Bugfix release
glib2 (14)
Update to stable branch
tar (18)
Add patch to fix heap based buffer overflow in rpatelib. (CVE-2010-0624, #12435)
tar (16)
Version bump. Remove upstreamed upstreamed patches (gcc-4.3.patch, bug-6593.patch)
tar (13)
Add manpages for tar and rmt
python (35)
Fix buffer-overflow in PyString_FromStringAndSize() caused by signed integers. This also fixes security flaw in zlib module. See: http://bugs.python.org/issue2587
dbus-glib (4)
* Handle unknown object properties without asserting (freedesktop.org bug #16079)
* Handle GetAll() property names correctly (freedesktop.org bug #16114)
* Fix memory leak on dbus_g_return_error.
* Pick some fixes from upstream.
libpcre (13)
Add patch to fix CVE-2008-2371
libpng (15)
Fix CVE-2008-1382 with backported patch from 1.2.27beta0.
libtasn1 (1)
First release.
lynx (1)
First release.
shared-mime-info (6)
Version bump.
gtkhtml3 (6)
Version bump.
gtkhtml3 (5)
Version bump. Bugfix release and translation update
gtkhtml3 (4)
Version bump. Bugfix release and translation update
gtkhtml3 (3)
Version bump
gtkhtml3 (2)
Version bump. Minor fixes, translations etc.
gtkhtml3 (1)
First release.
QtCurve-Gtk2 (2)
Version bump
QtCurve-Gtk2 (1)
First release
gtkspell (1)
First release.
cairomm (4)
Stable update
libwnck (8)
Version bump.
libwnck (7)
Stable bump.
libwnck (6)
Stable bump.
atk (10)
Version bump
atk (8)
Version bump
gtkmm (8)
Version bump, bugfix release.
gtkmm (7)
Version bump, bugfix release.
gtkmm (6)
Version bump, bugfix release.
gtkmm (5)
Version bump.
gtkmm (4)
Version bump.
libglade (2)
Version bump, clean actions.py and add COMAR script for updating xml schemas after installation.
pango (34)
Fix memory corruption. (CVE-2010-0421, #12381)
pango (23)
Version bump.
pango (22)
Version bump.
pango (21)
Version bump.
pango (20)
Version bump, bugfix release.
pango (19)
Version bump, bugfix release.
pango (18)
Version bump, bugfix release.
pango (17)
Update to stable branch.
pango (11)
Stable update
gtk2 (35)
Version bump.
gtk2 (34)
Correctly fix wrong handling of printer hostname in printer dialog (https://bugzilla.redhat.com/show_bug.cgi?id=449379)
gtk2 (33)
Version bump.
gtk2 (32)
Add patch to fix wrong handling of printer hostname in printer dialog (https://bugzilla.redhat.com/show_bug.cgi?id=248245)
gtk2 (29)
Version bump, bugfix release of 2.12
gtk2 (27)
Version bump.
gtk2 (26)
Version bump.
gtk2 (25)
Version bump.
gtk2 (23)
Add patch for fixing crash when mousing over tooltips Gnome bug #460194
gtk2 (22)
Version bump to 2.12 branch.
gtk2 (21)
Depend on new glib2, it should be compiled with it.
gtk2 (20)
Add package handler for updating hicolor icon theme cache automatically.
gtk2 (18)
Version bump.
gconf (6)
Version bump.
gconf (5)
Version bump.
gconf (4)
Add PackageHandler class which has been splitted from libgnome package. It should stay here.
gconf (3)
Micro release
gconf (2)
Version bump
gconf (1)
First release.
gnome-mime-data (2)
Version bump.
gnome-mime-data (1)
First release.
orbit2 (7)
Version bump
orbit2 (6)
Version bump
orbit2 (5)
Version bump
orbit2 (4)
Disable evil static libs, change packager
gnome-vfs (7)
Add patches for setting firefox as default browser, ignoring /tmp as mountpoint and reducing warnings when can't connect to dbus.
gnome-vfs (6)
Version bump.
gnome-vfs (5)
Version bump.
gnome-vfs (4)
Version bump.
gnome-vfs (3)
Version bump.
gnome-vfs (2)
Version bump
gnome-vfs (1)
First release.
libbonobo (6)
Avoid sandbox violation, properly install the package.
libbonobo (5)
Version bump
libbonobo (4)
Version bump
libbonobo (3)
Version bump
libbonobo (2)
Version bump
libbonobo (1)
First release.
librsvg (10)
Version bump.
librsvg (7)
Version bump.
librsvg (6)
Version bump.
librsvg (5)
Stable update.
curl (23)
Use /etc/pki/tls/certs directory instead of /etc/ssl
curl (18)
Add patch to fix vulnerability that is caused by excessive callback length. (#12439)
ncompress (7)
Add patch to fix CVE-2010-0001, #13494
openssl (33)
- Update to 1.0.0a
- Change SSL dir to /etc/pki instead of /etc/ssl
- Put engines into /usr/lib/openssl/engines
- Update ca-bundle.crt
- Add make-dummy-cert script to create dummy scripts.
openssl (32)
- Fix double-free corruption in s3_clnt.c. (CVE-2010-2939, #13982)
openssl (28)
- Fix invalid asn1 module definition for cms (CVE-2010-0742)
openssl (27)
* Add patch to fix CVE-2010-0740, denial of service bug (#12513)
openssl (26)
* Add patch to fix CVE-2009-4355, denial of service bug via vectors that trigger incorrect calls to the CRYPTO_free_all_ex_data function (#12014)
openssl (25)
* Add patch to completely disable renegotiation. (CVE-2009-3555, #11515). See: http://extendedsubset.com/?p=8
* NOTE: This fixes 90% of the cases. If renegotiation is needed, we can not do anything about it.
Now, TLS extension is being developed to solve the issue but it needs time. When extension is completed,
we will keep us updated as well..
* NOTE #2: With this commit, apache will also be fixed. There is no need to patch mod_ssl. The patch to mod_ssl is needed
with old version of openssl which does not reject renegotiating.
openssl (14)
Version bump to fix CVE-2008-{0891, 1672}. http://www.openssl.org/news/secadv_20080528.txt
libxml2 (7)
Version bump to fix UTF-8 decoding problem, CVE-2007-6284
libxml2 (6)
Version bump
glibc (44)
Fix integer overflow in formatting functions, strfmon() integer overflow (CVE-2008-1391) (#11610)
gzip (11)
* Add patches to fix CVE-2009-2624 and CVE-2010-0001, #12084
libssh2 (3)
Version bump
perl (30)
- Update Safe.pm module to 2.27 which fixes CVE-2010-1974, #13080
perl (20)
Fix File::Path::Rmtree behaviour. Rmtree sets symlink target to 777.
openssh (21)
Fix CVE-2008-1483. See: http://secunia.com/advisories/29522/
cpio (9)
Add patch to fix buffer overflow in rpatelib. (CVE-2010-0624, #12435)
audit (8)
Version bump. This release fixes CVE-2008-1628
sqlite (21)
* Add SQLITE_SECURE_DELETE compile-time option.
Even if the data is deleted with sqlite query, the traces of the deleted data still remains in the file but cannot be seen with sqlite query. However, it can be seen by opening the file with a text editor. SQLITE_SECURE_DELETE overwrites written data with zeros. #12137

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=566326
glib2 (26)
Version bump.
glib2 (25)
Version bump.
glib2 (24)
Fix race in class initialization.
glib2 (23)
Add glib2-gio-hide-inaccessible-mounts.patch. See: http://bugzilla.gnome.org/show_bug.cgi?id=526320
glib2 (22)
Version bump.
glib2 (21)
Version bump.
glib2 (20)
Version bump.
glib2 (18)
Version bump.
glib2 (17)
Version bump.
glib2 (15)
Bugfix release
glib2 (14)
Update to stable branch
tar (18)
Add patch to fix heap based buffer overflow in rpatelib. (CVE-2010-0624, #12435)
tar (16)
Version bump. Remove upstreamed upstreamed patches (gcc-4.3.patch, bug-6593.patch)
tar (13)
Add manpages for tar and rmt
python (58)
- Fix audioop: incorrect integer overflow checks (CVE-2010-{1634,2089}), #13265
- Fix untrusted python modules search path (CVE-2008-5983), #13336
python (35)
Fix buffer-overflow in PyString_FromStringAndSize() caused by signed integers. This also fixes security flaw in zlib module. See: http://bugs.python.org/issue2587
dbus-glib (16)
Version bump to fix validating error on property access. (CVE-2010-1172, #13958)
dbus-glib (4)
* Handle unknown object properties without asserting (freedesktop.org bug #16079)
* Handle GetAll() property names correctly (freedesktop.org bug #16114)
* Fix memory leak on dbus_g_return_error.
* Pick some fixes from upstream.
libpcre (13)
Add patch to fix CVE-2008-2371
libpng (21)
- Version bump to fix CVE-2010-0205, #12384
- Update aPNG patch according to 1.2.43
libpng (15)
Fix CVE-2008-1382 with backported patch from 1.2.27beta0.
intltool (8)
Version bump
intltool (7)
Version bump
intltool (6)
Version bump to fix a lot of bugs
nasm (6)
Version bump to fix ppscan off-by-one vulnerability.
nasm (5)
Stable update
lmms (6)
Version Bump.
lmms (4)
Remove duplicate of desktop file and add Turkish patch for it.
lmms (3)
Version bump to stable.
lmms (2)
Add missing dependencies, disable static libs and make correct installation by adding automake line before compiling process. Makefile.in in tarball was created with automake-1.4 which is bad, see; http://gcc.gnu.org/ml/gcc-bugs/2001-02/msg00543.html
kdebase (170)
- Add patch to fix kdm privilege escalation vulnerability. (CVE-2010-0436, #12677)
kdelibs (90)
Fix XMLHttpRequest vulnerability in KHTML (oCERT-2009-015, #11461)
gtkmm (8)
Version bump, bugfix release.
gtkmm (7)
Version bump, bugfix release.
gtkmm (6)
Version bump, bugfix release.
gtkmm (5)
Version bump.
gtkmm (4)
Version bump.
ruby (23)
Add patch to fix WEBrick XSS vulnerability (CVE-2010-0541, #13577)
ruby (22)
Version bump to fix Webrick control characters vulnerability. (CVE-2009-4492, #12138)
ruby (19)
Fix short name constans bug that breaks metasploit. LP bug #282302
libwww (6)
Add patch to fix CVE-2009-{2625,3560} expat issue. Libwww uses expat internally. #11023
vim (30)
Correctly detect failing diff. Symlink /bin/ex to /usr/bin/vim, gdb looks at /bin/ex.
pidgin (40)
* Version bump to fix denial of service via X-Status message (CVE-2010-2528, #13948)
pidgin (39)
* Version bump to fix msn emotion remote crash (CVE-2010-1634, #12942)
* Lots of bug fixes. See http://developer.pidgin.im/wiki/ChangeLog for more detail.
pidgin (38)
* Version bump to fix multiple vulnerabilities (CVE-2010-{0277,0420,0423}, #12323)
pidgin (37)
* Version bump
* Set default browser to "xdg-open" so that URLs can be opened with system-wide selected browser automatically.
pidgin (36)
* Version bump, it includes various bug fixes
* Add patch to fix local file disclosure vulnerability in slp. (CVE-2010-0013, #11942)
* Add farsight2 build dependency. It is needed in build-time, too
pidgin (20)
Version bump to fix CVE-2008-2927
vlc (18)
Fix WAV Processing Integer Overflow, CVE-2008-2430.
vlc (17)
Version bump to fix GnuTLS, Libxml2 vulnerabilities. CVE-2008-1948, CVE-2008-1949, CVE-2008-1950, CVE-2007-6284
vlc (15)
Re fix buffer overflow in speex decoder, CVE-2008-1686. New version of VLC didn't include this patch.
vlc (12)
Fix CVE-2008-1489
vlc (11)
Add patch to fix array indexing vulnerability while streaming RTSP, https://trac.videolan.org/vlc/ticket/1531
vlc (10)
Add patch to fix subtitle buffer overflow, https://trac.videolan.org/vlc/ticket/1526
libfprint (3)
Version bump
konversation (15)
Add media support for MPD.
konversation (10)
Fix (C) line in the ctcp-version patch
konversation (9)
Add pardus release into ctcp version request
emesene (1)
First release.
gthumb (10)
Version bump.
gthumb (9)
Version bump.
gthumb (8)
Version bump.
gthumb (7)
Version bump. Bugfix release.
gthumb (6)
Version bump.
gthumb (5)
Version bump.
gthumb (4)
Version bump.
gthumb (3)
Version bump.
gthumb (2)
Version bump.
gthumb (1)
First release.
tilda (2)
Version bum.
tilda (1)
First release.
sonata (3)
Re-add ElementTree patch to fix getting album cover from Amazon.
gmailfs (5)
Depend on libgmail (0.1.8)
gmailfs (4)
Depend on new libgmail (0.1.6.2). Gmailfs can't mount filesystem with previous release of libgmail.
simgear (7)
Add patch to fix CVE-2009-2625, expat issue. Simgear uses expat internally.
postgresql (26)
- Update to fix multiple vulnerabilities. (CVE-2010-{1169,1170,1447,1975}, #13129)
wireshark (36)
Version bump to fix a number of security vulnerabilities. (#13474)
- The SMB dissector could dereference a NULL pointer.
- The ASN.1 BER dissector could overrun the stack.
- The SMB PIPE dissector could dereference a NULL pointer on some platforms
- The SigComp Universal Decompressor Virtual Machine could go into an infinite loop
- The SigComp Universal Decompressor Virtual Machine could overrun a buffer
wireshark (35)
Version bump to fix DOCSIS dissector crash. (CVE-2010-1455, #12879)
wireshark (33)
- Version bump to fix buffer overflows in LWRES dissector (#12168)
wireshark (32)
Version bump to fix 2 security vulnerabilies. (#11827)

- SMB2 dissector crash (CVE-2009-4377)
- Buffer overflow in SNA file parser (CVE-2009-4376)
xchat (9)
Enable gtkspell support.
xchat (8)
Add patch to fix crash when transparent background is set.
xchat (2)
Version bump
xapian-core (3)
Version bump.
abiword (1)
First release.
python (58)
- Fix audioop: incorrect integer overflow checks (CVE-2010-{1634,2089}), #13265
- Fix untrusted python modules search path (CVE-2008-5983), #13336
python (35)
Fix buffer-overflow in PyString_FromStringAndSize() caused by signed integers. This also fixes security flaw in zlib module. See: http://bugs.python.org/issue2587
yelp (1)
First release.
libsoup (5)
Version bump.
libsoup (4)
Version bump.
libsoup (3)
Version bump.
libsoup (2)
Version bump, minor fixes
libsoup (1)
First release.
xapian-core (3)
Version bump.
anjuta (7)
Version bump.
anjuta (6)
Version bump.
anjuta (5)
Version bump.
anjuta (4)
Version bump.
anjuta (3)
Version bump.
anjuta (2)
Version bump.
anjuta (1)
First release.
module-kvm (38)
Fix CVE-2008-2004 in Qemu.
kvm (38)
Fix CVE-2008-2004 in Qemu.
qt-webkit (72)
* Webkit: Add patch to fix multiple security flaws while handling FTP directory listing (CVE-2009-3384, #11545)
* Webkit: Add patch to fix MITM Cross-Origin Resource Sharing vulnerability (CVE-2009-2816, #11546)
blender (10)
Fix CVE-2008-1103, insecure temporary file creation.
blender (9)
Fix CVE-2008-1102. http://secunia.com/advisories/29818/
qt (72)
* Webkit: Add patch to fix multiple security flaws while handling FTP directory listing (CVE-2009-3384, #11545)
* Webkit: Add patch to fix MITM Cross-Origin Resource Sharing vulnerability (CVE-2009-2816, #11546)
kmetronome (1)
First release.
kmetronome (1)
First release.
osm-gps-map (1)
First release.
libax25 (2)
Split header files.
shapelib (2)
Split headers. Create shapelib-devel package
svxlink (1)
First release.
xlog (1)
First release.
hamlib (1)
First release.
ax25-tools (1)
First release.
ax25-apps (1)
First release.
fldigi (1)
First release.
xastir (2)
Update to 2.0.0
libsigc++1_2 (1)
Svxlink uses 1.2 version of sigc++.
gksu (3)
Depend on latest libgksu and add ubuntu patches.
gksu (2)
Add patch for escaping ' and \ in sudo mode.
gksu (1)
First release.
thunar-thumbnailers (1)
First release.
thunar-volman (2)
Version bump.
thunar-volman (1)
First release.
orage (5)
Version bump.
orage (4)
Version bump to stable
xfce4-clipman-plugin (1)
First release.
xfce4-systemload-plugin (1)
First release.
ristretto (3)
Version bump.
ristretto (2)
Version bump.
stellarium (7)
Add missing sdl-mixer dependency and fix wrapper script.
stellarium (6)
Add wrapper script to avoid initialization problems with tr_TR locale.
enchant (1)
First release.
aspell (4)
Version bump and add patch to prevent aspell crash when met a 0-byte file.
tellico (5)
Version bump
tellico (4)
Version bump
tellico (3)
Update
tellico (2)
Update
tellico (1)
First release.
evince (4)
Remove docbook-xml4_1_2 from runtime dependencies. It's only needed when building the package.
evince (3)
Version bump.
evince (2)
Version bump.
evince (1)
First release.
ghostscript (30)
- Add patch to fix memory corruption vulnerability. (CVE-2010-1628, #13137)
poppler (24)
Add patch to fix CVE-2008-2950, uninitialized memory access.
poppler (13)
Create poppler-glib and poppler-qt packages
docbook-sgml4_5 (1)
First release.
docbook-sgml4_2 (1)
First release.
docbook-sgml4_4 (1)
First release.
docbook-xsl (1)
First release.
xmlto (1)
First release.
openjade (2)
Fix actions.py and add sgml catalog
dvipng (4)
Version bump to fix multiple array index errors in set.c (CVE-2010-0829, #13392)
lyx (15)
Fully remove *.pyc and *.pyo, fix #6465
texlive-core (5)
Fix buffer overflow flaw by processing virtual font files. (CVE-2010-0824, #13395)
texlive-core (4)
Fix integer overflows in dospecial.c (CVE-2010-{0739,1440}, #12781)
streamripper (4)
Stable update to fix http://secunia.com/advisories/26406/
mpd (3)
Remove unnecessary code from service.py. We should not delete mpd.db upon starting service.
mpd (2)
Version bump.
mpd (1)
First release.
sdl-sound (6)
Fix buffer overflow in speex decoder as introduced in CVE-2008-1686.
taglib (9)
Version bump to 1.6.1

* Better detection of the audio codec of .oga files in FileRef.
* Fixed saving of Vorbis comments to Ogg FLAC files. TagLib tried to
include the Vorbis framing bit, which is only correct for Ogg Vorbis.
* Public symbols now have explicitly set visibility to "default" on GCC.
* Added missing exports for static ID3v1 functions.
* Fixed a typo in taglib_c.pc
* Fixed a failing test on ppc64.
* Support for binary 'covr' atom in MP4 files. TagLib 1.6 treated them
as text atoms, which corrupted them in some cases.
* Fixed ID3v1-style genre to string conversion in MP4 files.
gd (7)
Add patch to fix buffer overflow in _gdGetColors function, CVE-2009-3546
DevIL (10)
Add patch to fix dicom buffer overflow (CVE-2009-3994)
libmpd (2)
Version bump.
libmpd (1)
First release.
exiv2 (9)
Fix floating point exception while converting nikon lens information for pretty printing. http://secunia.com/advisories/30519/
vorbis-tools (6)
Fix buffer overflow in speex decoder as introduced in CVE-2008-1686.
libmodplug (1)
First release.
libvorbis (8)
Fix CVE-2008-{1419, 1420, 1423}
mpg123 (8)
New stable release
musescore (1)
First release.
sonata (3)
Re-add ElementTree patch to fix getting album cover from Amazon.
speex (6)
Fix speex header buffer overflow (CVE-2008-1686).
xine-lib (45)
Version bump. Includes bug-fixes and fix for CVE-2008-1686.
xine-lib (43)
Fix array indexing vulnerability while parsing RTSP streams. http://secunia.com/secunia_research/2008-10/advisory/
xine-lib (26)
Enable modplug support. Fix #4945
gst-plugins-good (8)
Fix buffer overflow in speex decoder as introduced in CVE-2008-1686.
vlc (18)
Fix WAV Processing Integer Overflow, CVE-2008-2430.
vlc (17)
Version bump to fix GnuTLS, Libxml2 vulnerabilities. CVE-2008-1948, CVE-2008-1949, CVE-2008-1950, CVE-2007-6284
vlc (15)
Re fix buffer overflow in speex decoder, CVE-2008-1686. New version of VLC didn't include this patch.
vlc (12)
Fix CVE-2008-1489
vlc (11)
Add patch to fix array indexing vulnerability while streaming RTSP, https://trac.videolan.org/vlc/ticket/1531
vlc (10)
Add patch to fix subtitle buffer overflow, https://trac.videolan.org/vlc/ticket/1526
imagemagick (20)
Version bump.
gimp (46)
Add patch to fix integer overflow in PSD plugin, psd-load.c. (CVE-2009-3909, #11572)
gimp (45)
* Add patch to fix integer overflow in bmp-read.c. (CVE-2009-1570, #11539)
* Do not build help-browser which requires webkit
gimp (31)
Version bump
imlib2 (9)
Add patch to fix CVE-2008-2426, http://secunia.com/advisories/30401/
blender (10)
Fix CVE-2008-1103, insecure temporary file creation.
blender (9)
Fix CVE-2008-1102. http://secunia.com/advisories/29818/
lilypond (5)
Correctly remove *.pyc files from package.
dvdauthor (4)
Version bump
dvdauthor (3)
Add missing dependency
dvdauthor (2)
Dependency and path fix
dvdauthor (1)
First Release
xorg-video-geode (4)
Bump to new stable release
stellarium (7)
Add missing sdl-mixer dependency and fix wrapper script.
stellarium (6)
Add wrapper script to avoid initialization problems with tr_TR locale.
plotutils (3)
Correctly disable static libraries, don't install libxmi library
bluez (24)
Version bump
bluez (20)
Version bump.
bluez (19)
Version bump, it's a bit stable now.
bluez (18)
Version bump
libfprint (3)
Version bump
alsa-utils (29)
Add alsa-info.sh script which gathers information about ALSA and pastes it to pastebin.
fuse (22)
* Version bump to fix privilege escalation via symlink attack. (CVE-2009-3797, #12148)
gparted (9)
Fix device reload crash.
gnokii (7)
Version bump.
gnokii (6)
Version bump.
gnokii (4)
Version bump. Bugfix release.
gnokii (3)
Version bump.
gnokii (2)
Add xgnokii desktop icon file. Fix bug #5609
gnokii (1)
First release.
libopensync-plugin-syncml (2)
Disable HTTP support to avoid libsoup API breakage.
qemu (17)
* Fix buffer overflow in usb-linux.c (CVE-2010-0297, #12221)
* Fix VNC multiple use-after-frees and buffer overflows (CVE-2009-3616, #12222)
qemu (11)
Fix CVE-2008-2004.
hal (49)
Add memstick support patch.
libgnomeprintui (3)
Version bump. Fixes crash in gedit.
libgnomeprintui (2)
Version bump
libgnomeprintui (1)
First release.
libgnomeprint (4)
Version bump.
libgnomeprint (3)
Version bump.
libgnomeprint (2)
Version bump.
libgnomeprint (1)
First release.
libgnomecups (1)
First release.
gedit (8)
Version bump.
gedit (7)
Version bump.
gedit (6)
Version bump.
gedit (5)
Version bump.
gedit (4)
Fix KDE menu duplicate. Bug #5608
gedit (3)
Version bump.
gedit (2)
Version bump
gedit (1)
First release.
emacs (18)
Fix *.flc file autoloading and executing. CVE-2008-2142.
vim (30)
Correctly detect failing diff. Symlink /bin/ex to /usr/bin/vim, gdb looks at /bin/ex.
curl (23)
Use /etc/pki/tls/certs directory instead of /etc/ssl
curl (18)
Add patch to fix vulnerability that is caused by excessive callback length. (#12439)
ncompress (7)
Add patch to fix CVE-2010-0001, #13494
openssl (33)
- Update to 1.0.0a
- Change SSL dir to /etc/pki instead of /etc/ssl
- Put engines into /usr/lib/openssl/engines
- Update ca-bundle.crt
- Add make-dummy-cert script to create dummy scripts.
openssl (32)
- Fix double-free corruption in s3_clnt.c. (CVE-2010-2939, #13982)
openssl (28)
- Fix invalid asn1 module definition for cms (CVE-2010-0742)
openssl (27)
* Add patch to fix CVE-2010-0740, denial of service bug (#12513)
openssl (26)
* Add patch to fix CVE-2009-4355, denial of service bug via vectors that trigger incorrect calls to the CRYPTO_free_all_ex_data function (#12014)
openssl (25)
* Add patch to completely disable renegotiation. (CVE-2009-3555, #11515). See: http://extendedsubset.com/?p=8
* NOTE: This fixes 90% of the cases. If renegotiation is needed, we can not do anything about it.
Now, TLS extension is being developed to solve the issue but it needs time. When extension is completed,
we will keep us updated as well..
* NOTE #2: With this commit, apache will also be fixed. There is no need to patch mod_ssl. The patch to mod_ssl is needed
with old version of openssl which does not reject renegotiating.
openssl (14)
Version bump to fix CVE-2008-{0891, 1672}. http://www.openssl.org/news/secadv_20080528.txt
libxml2 (7)
Version bump to fix UTF-8 decoding problem, CVE-2007-6284
libxml2 (6)
Version bump
glibc (44)
Fix integer overflow in formatting functions, strfmon() integer overflow (CVE-2008-1391) (#11610)
gzip (11)
* Add patches to fix CVE-2009-2624 and CVE-2010-0001, #12084
libssh2 (3)
Version bump
perl (30)
- Update Safe.pm module to 2.27 which fixes CVE-2010-1974, #13080
perl (20)
Fix File::Path::Rmtree behaviour. Rmtree sets symlink target to 777.
cpio (9)
Add patch to fix buffer overflow in rpatelib. (CVE-2010-0624, #12435)
baselayout (172)
Add svxlink user. Add it into dialout, daemon, and audio groups. (pb#18672)
audit (8)
Version bump. This release fixes CVE-2008-1628
sqlite (21)
* Add SQLITE_SECURE_DELETE compile-time option.
Even if the data is deleted with sqlite query, the traces of the deleted data still remains in the file but cannot be seen with sqlite query. However, it can be seen by opening the file with a text editor. SQLITE_SECURE_DELETE overwrites written data with zeros. #12137

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=566326
glib2 (26)
Version bump.
glib2 (25)
Version bump.
glib2 (24)
Fix race in class initialization.
glib2 (23)
Add glib2-gio-hide-inaccessible-mounts.patch. See: http://bugzilla.gnome.org/show_bug.cgi?id=526320
glib2 (22)
Version bump.
glib2 (21)
Version bump.
glib2 (20)
Version bump.
glib2 (18)
Version bump.
glib2 (17)
Version bump.
glib2 (15)
Bugfix release
glib2 (14)
Update to stable branch
tar (18)
Add patch to fix heap based buffer overflow in rpatelib. (CVE-2010-0624, #12435)
tar (16)
Version bump. Remove upstreamed upstreamed patches (gcc-4.3.patch, bug-6593.patch)
tar (13)
Add manpages for tar and rmt
python (58)
- Fix audioop: incorrect integer overflow checks (CVE-2010-{1634,2089}), #13265
- Fix untrusted python modules search path (CVE-2008-5983), #13336
python (35)
Fix buffer-overflow in PyString_FromStringAndSize() caused by signed integers. This also fixes security flaw in zlib module. See: http://bugs.python.org/issue2587
dbus-glib (16)
Version bump to fix validating error on property access. (CVE-2010-1172, #13958)
dbus-glib (4)
* Handle unknown object properties without asserting (freedesktop.org bug #16079)
* Handle GetAll() property names correctly (freedesktop.org bug #16114)
* Fix memory leak on dbus_g_return_error.
* Pick some fixes from upstream.
libpcre (13)
Add patch to fix CVE-2008-2371
libpng (21)
- Version bump to fix CVE-2010-0205, #12384
- Update aPNG patch according to 1.2.43
libpng (15)
Fix CVE-2008-1382 with backported patch from 1.2.27beta0.
intltool (8)
Version bump
intltool (7)
Version bump
intltool (6)
Version bump to fix a lot of bugs
nasm (6)
Version bump to fix ppscan off-by-one vulnerability.
nasm (5)
Stable update
simgear (7)
Add patch to fix CVE-2009-2625, expat issue. Simgear uses expat internally.
torcs (6)
Add patch to fix CVE-2009-2625, expat issue. Torcs uses expat internally. #11022
aria2 (28)
* New stable release
* Updated Polish, Catalan, French, Italian, Russian and Japanese
translations. Thanks to all translators.
* Fixed the bug that DHTAbstractNodeLookupTask never finishes if
error occurred in DHTMessageDispatcherImpl::sendMessage().
* Fixed the bug that in Windows environment new blank line is
inserted when console readout is updated.
* Fixed the bug that when downloading more than one torrent with
multiple ports in --listen-port, listening port is not reported
properly to tracker for 2nd or later torrents.
* Fixed typos in documentation.
* Fixed the bug that Netrc::parse() cannot recognize comment line.
* Fixed Metalink piping no longer works.
* Fixed "--ftp-passwd" option ignored when user name embedded in URI.
aria2 (7)
Stable update
youtube-dl (11)
Version bump
librsync (2)
Add patch for properly handling files larger than 4 GB.
libnl (2)
Version bump.
neon (17)
Use /etc/pki/tls/certs directory instead of /etc/ssl
neon (4)
Version bump, bugfix release. Also needed by BMPx media player.
libwww (6)
Add patch to fix CVE-2009-{2625,3560} expat issue. Libwww uses expat internally. #11023
flashplugin (25)
Update to 10.0.45.2 to fix multiple vulnerabilities (CVE-2010-018{6,7}) #12309
farsight2 (8)
Stable bump
opera (13)
Version bump to 9.51, security fix release.
opera (12)
Update to gcc4 pre-compiled one. Pardus 2008 has gcc 4.3.
opera (11)
Version bump.
opera (10)
Version bump.
firefox (66)
Add google linux search plugin
net-snmp (6)
Add patch to fix CVE-2008-{0960, 2292}
wireshark (36)
Version bump to fix a number of security vulnerabilities. (#13474)
- The SMB dissector could dereference a NULL pointer.
- The ASN.1 BER dissector could overrun the stack.
- The SMB PIPE dissector could dereference a NULL pointer on some platforms
- The SigComp Universal Decompressor Virtual Machine could go into an infinite loop
- The SigComp Universal Decompressor Virtual Machine could overrun a buffer
wireshark (35)
Version bump to fix DOCSIS dissector crash. (CVE-2010-1455, #12879)
wireshark (33)
- Version bump to fix buffer overflows in LWRES dissector (#12168)
wireshark (32)
Version bump to fix 2 security vulnerabilies. (#11827)

- SMB2 dissector crash (CVE-2009-4377)
- Buffer overflow in SNA file parser (CVE-2009-4376)
aircrack-ng (9)
Version bump.
aircrack-ng (8)
Version bump.
aircrack-ng (7)
Version bump.
aircrack-ng (6)
Version bump. Bugfix release.
aircrack-ng (5)
Version bump.
aircrack-ng (2)
Version bump
aircrack-ng (1)
First release.
transmission (17)
- Version bump
- Fix directory traversal vulnerability that causes data loss with malicious torrent files. (CVE-2010-0012, #11935)
- Remove incorrect replaces tag in transmission-gtk package
amule (6)
Enable cli, web interfaces. New packages are; amulecmd, amuleweb
amule (5)
Add wxGTK2_8 dependency. With wxGTK2.6, it consumes too much CPU. Hopefully fix #5696
spamassassin (21)
- Fix FH_DATE_PAST_20XX so dates in 2010 aren't considered "grossly in the future
- Fix actions.py to install config and data files correctly.
bogofilter (16)
- Add patch to fix memory corruption in base64 decoding code (#13690)
msmtp (1)
First release.
konversation (15)
Add media support for MPD.
konversation (10)
Fix (C) line in the ctcp-version patch
konversation (9)
Add pardus release into ctcp version request
irssi (5)
Fix windowing problem with the wrapper script
irssi (3)
Version bump, dependency fix and patches.
pidgin (40)
* Version bump to fix denial of service via X-Status message (CVE-2010-2528, #13948)
pidgin (39)
* Version bump to fix msn emotion remote crash (CVE-2010-1634, #12942)
* Lots of bug fixes. See http://developer.pidgin.im/wiki/ChangeLog for more detail.
pidgin (38)
* Version bump to fix multiple vulnerabilities (CVE-2010-{0277,0420,0423}, #12323)
pidgin (37)
* Version bump
* Set default browser to "xdg-open" so that URLs can be opened with system-wide selected browser automatically.
pidgin (36)
* Version bump, it includes various bug fixes
* Add patch to fix local file disclosure vulnerability in slp. (CVE-2010-0013, #11942)
* Add farsight2 build dependency. It is needed in build-time, too
pidgin (20)
Version bump to fix CVE-2008-2927
gajim (4)
Version bump.
gajim (3)
Version bump.
gajim (2)
Fix issue with gnome-keyring DeniedError. It appears only, when there is no keyring available.
gajim (1)
First release.
psi (3)
Add patch for determining Pardus release. It is used as client name.
emesene (1)
First release.
amsn (18)
Version bump.
amsn (17)
Fix login error due to the change in MSN protocol.
amsn (16)
Add patch to use firefox for default browser and to set file-manager opener as xdg-open.
kvirc (13)
Add patch to fix remote ctcp command execution. (CVE-2010-2785, #13901)
loudmouth (4)
Version bump.
loudmouth (3)
Version bump.
loudmouth (2)
Version bump.
loudmouth (1)
First release.
xchat (9)
Enable gtkspell support.
xchat (8)
Add patch to fix crash when transparent background is set.
xchat (2)
Version bump
ntp (13)
Add patch to fix mode7 package denial of service (CVE-2009-2563)
openssh (21)
Fix CVE-2008-1483. See: http://secunia.com/advisories/29522/
apache (36)
- Version bump to fix multiple issues. (CVE-2010-{0408,0425,0434}, #12387)
apache (25)
Fix memory leak in SSL connections with zlib compression (CVE-2008-1678). https://issues.apache.org/bugzilla/show_bug.cgi?id=44975
nginx (1)
First release.
bind (25)
Version bump to fix bogus NXDOMAIN response caused by NSEC/NSEC3 validation code. CVE-2010-0097, #12105
bind (16)
Take in CVE-2008-0122.patch
dhcp (22)
Version bump to fix denial of service via zero-length client id. (CVE-2010-2156, #13516)
postgresql (26)
- Update to fix multiple vulnerabilities. (CVE-2010-{1169,1170,1447,1975}, #13129)
mysql (48)
- Update to new release to fix multiple vulnerabilities (CVE-2010-{1621,1626}), #12991)
- Add patch for CVE-2008-7247
- Enable SSL support using OpenSSL
mysql (45)
Version bump to fix multiple vulnerabilities (CVE-2009-{7242, 4019, 4028, 4030}, #11696)
mysql (34)
Fix table privilege check bypass, CVE-2008-2079. See: http://secunia.com/advisories/30134/
memcached (9)
Version bump to fix denial of service via long line. (CVE-2010-1152, #12672)
memcached (2)
Version bump.
vsftpd (12)
Anon users can upload/download a file, can't create directory. Jail local users
samba (33)
Add patch to fix CVE-2008-1105
kshutdown (8)
Translate missing strings, fix #6268.
kaptan (21)
Don't include *.pyc files in package.
service-manager (18)
Add patch to enable double clicking on services.
icon-naming-utils (4)
Change summary and download URL.
icon-naming-utils (3)
Version bump
icon-naming-utils (2)
Version bump
icon-naming-utils (1)
First release.
shared-mime-info (6)
Version bump.
desktop-file-utils (4)
Version bump
desktop-file-utils (3)
Disable evil static libs and change packager
notification-daemon (4)
Add gtk2 and remove libnotify dependency
xfce4-taskmanager (2)
Version bump.
xfce4-taskmanager (1)
First release.
Terminal (10)
Remove background image, it looks ugly.
Terminal (9)
Version bump.
Terminal (8)
Fully fix for CVE-2007-3770. Even ENV. veriables can't be reached with URL.
Terminal (7)
Fix CVE-2007-3770
Terminal (6)
Fix desktop menu duplicate with KDE (#5626)
Terminal (5)
Add Turkish translation.
Terminal (4)
Version bump to stable
Thunar (9)
Remove system.base dependencies and add required gamin dependency.
Thunar (8)
Version bump.
Thunar (7)
Disable built-in gnome-thumbnailer support. Thunar shouldn't depend any specific gnome lib
Thunar (6)
Fix desktop menu duplicate with KDE (#5626, #5627)
Thunar (5)
Add Turkish translation.
Thunar (4)
Version bump to stable
xfwm4 (6)
Version bump.
xfwm4 (5)
Version bump.
xfwm4 (4)
Version bump to stable
xfce4-session (7)
Version bump.
xfce4-session (6)
Add menu icon for autostarted application.
xfce4-session (5)
Version bump.
xfce4-session (4)
Version bump to stable
xfdesktop (7)
Make window font size 8.
xfdesktop (6)
Version bump.
xfdesktop (5)
Version bump.
xfdesktop (4)
Version bump to stable
xfce4-appfinder (5)
Version bump.
xfce4-appfinder (4)
Version bump to stable
xfce-utils (6)
Version bump.
xfce-utils (5)
Version bump.
xfce-utils (4)
Version bump to stable
xfce4-mixer (6)
Version bump.
xfce4-mixer (5)
Version bump.
xfce4-mixer (4)
Version bump to stable
xfce4-panel (6)
Version bump.
xfce4-panel (5)
Version bump.
xfce4-panel (4)
Version bump to stable
exo (5)
Version bump.
exo (4)
Version bump to stable
libxfce4util (6)
Version bump.
libxfce4util (5)
Version bump.
libxfce4util (4)
Version bump to stable
libxfcegui4 (6)
Version bump.
libxfcegui4 (5)
Version bump.
libxfcegui4 (4)
Version bump to stable
xfce4-dev-tools (4)
Version bump.
xfce4-dev-tools (3)
Version bump to stable
gtk-style-xfce (7)
Version bump.
gtk-style-xfce (6)
Rename package (gtk-xfce-engine -> gtk2-engines-xfce)
gtk-style-xfce (5)
Version bump.
gtk-style-xfce (4)
Version bump to stable
xfwm4-themes (6)
Version bump.
xfwm4-themes (5)
Version bump.
xfwm4-themes (4)
Version bump to stable
icon-theme-xfce4 (6)
Version bump.
icon-theme-xfce4 (5)
Version bump.
icon-theme-xfce4 (4)
Version bump to stable
qt (72)
* Webkit: Add patch to fix multiple security flaws while handling FTP directory listing (CVE-2009-3384, #11545)
* Webkit: Add patch to fix MITM Cross-Origin Resource Sharing vulnerability (CVE-2009-2816, #11546)
newt (2)
Version bump.
gtkhtml3 (6)
Version bump.
gtkhtml3 (5)
Version bump. Bugfix release and translation update
gtkhtml3 (4)
Version bump. Bugfix release and translation update
gtkhtml3 (3)
Version bump
gtkhtml3 (2)
Version bump. Minor fixes, translations etc.
gtkhtml3 (1)
First release.
QtCurve-Gtk2 (2)
Version bump
QtCurve-Gtk2 (1)
First release
gtkspell (1)
First release.
cairomm (4)
Stable update
libwnck (8)
Version bump.
libwnck (7)
Stable bump.
libwnck (6)
Stable bump.
atk (10)
Version bump
atk (8)
Version bump
gtkmm (8)
Version bump, bugfix release.
gtkmm (7)
Version bump, bugfix release.
gtkmm (6)
Version bump, bugfix release.
gtkmm (5)
Version bump.
gtkmm (4)
Version bump.
libglade (2)
Version bump, clean actions.py and add COMAR script for updating xml schemas after installation.
gtksourceview (6)
Version bump.
gtksourceview (5)
Version bump.
gtksourceview (4)
Version bump.
gtksourceview (3)
Version bump.
pango (34)
Fix memory corruption. (CVE-2010-0421, #12381)
pango (23)
Version bump.
pango (22)
Version bump.
pango (21)
Version bump.
pango (20)
Version bump, bugfix release.
pango (19)
Version bump, bugfix release.
pango (18)
Version bump, bugfix release.
pango (17)
Update to stable branch.
pango (11)
Stable update
glade (8)
Version bump.
glade (7)
Version bump.
glade (6)
Version bump.
glade (4)
Version bump.
glade (2)
Version bump.
libgtkhtml2 (1)
First release.
gtk2 (35)
Version bump.
gtk2 (34)
Correctly fix wrong handling of printer hostname in printer dialog (https://bugzilla.redhat.com/show_bug.cgi?id=449379)
gtk2 (33)
Version bump.
gtk2 (32)
Add patch to fix wrong handling of printer hostname in printer dialog (https://bugzilla.redhat.com/show_bug.cgi?id=248245)
gtk2 (29)
Version bump, bugfix release of 2.12
gtk2 (27)
Version bump.
gtk2 (26)
Version bump.
gtk2 (25)
Version bump.
gtk2 (23)
Add patch for fixing crash when mousing over tooltips Gnome bug #460194
gtk2 (22)
Version bump to 2.12 branch.
gtk2 (21)
Depend on new glib2, it should be compiled with it.
gtk2 (20)
Add package handler for updating hicolor icon theme cache automatically.
gtk2 (18)
Version bump.
gtk-engines (12)
Version bump.
gtk-engines (11)
Version bump.
gtk-engines (10)
Stable update
gtk-engines (7)
Stable update
gdl (2)
Version bump.
gdl (1)
First release.
gnome-doc-utils (7)
Remove docbook-xml4_4 from runtime dependencies. It's only needed when building the package.
gnome-doc-utils (6)
Version bump.
gnome-doc-utils (5)
Version bump.
gnome-doc-utils (4)
Version bump
gnome-doc-utils (3)
Version bump
gnome-doc-utils (2)
Version bump
gnome-doc-utils (1)
First release
libgnomecanvasmm (1)
First release.
gconf (6)
Version bump.
gconf (5)
Version bump.
gconf (4)
Add PackageHandler class which has been splitted from libgnome package. It should stay here.
gconf (3)
Micro release
gconf (2)
Version bump
gconf (1)
First release.
gnome-mime-data (2)
Version bump.
gnome-mime-data (1)
First release.
orbit2 (7)
Version bump
orbit2 (6)
Version bump
orbit2 (5)
Version bump
orbit2 (4)
Disable evil static libs, change packager
gnome-vfs (7)
Add patches for setting firefox as default browser, ignoring /tmp as mountpoint and reducing warnings when can't connect to dbus.
gnome-vfs (6)
Version bump.
gnome-vfs (5)
Version bump.
gnome-vfs (4)
Version bump.
gnome-vfs (3)
Version bump.
gnome-vfs (2)
Version bump
gnome-vfs (1)
First release.
gnome-common (3)
Version bump.
gnome-keyring (10)
Version bump.
gnome-keyring (9)
Version bump.
gnome-keyring (8)
Version bump.
gnome-keyring (7)
Version bump.
gnome-keyring (6)
Version bump.
gnome-keyring (5)
Version bump.
gnome-keyring (4)
Version bump.
gnome-keyring (3)
Version bump.
gnome-keyring (2)
Version bump
gnome-keyring (1)
First release.
gconfmm (3)
Increased the version to match Gnome release.
gconfmm (2)
Increased the version to match Gnome release.
glibmm (13)
Version bump. Bugfix release.
glibmm (12)
Version bump. Bugfix release.
glibmm (11)
Version bump. Bugfix release.
glibmm (10)
Version bump.
glibmm (9)
Version bump.
glibmm (8)
Version bump, bugfix release.
glibmm (7)
Version bump, bugfix release.
glibmm (6)
Version bump to stable.
glibmm (5)
Version bump.
libgnome (7)
Version bump
libgnome (6)
Version bump
libgnome (5)
Version bump
libgnome (4)
Split package handlers (gconf, scrollkeeper), libgnome should not support all pakhandlers itself. Package handlers should be supported by related packages.
libgnome (3)
Add PackageHandler for installing/uninstalling Gconf schemas, updating ScrollKeeper database and IconCache.
libgnome (2)
Version bump
libgnome (1)
First release.
libgnomecanvas (2)
Version bump.
libgnomecanvas (1)
First release.
libbonobo (6)
Avoid sandbox violation, properly install the package.
libbonobo (5)
Version bump
libbonobo (4)
Version bump
libbonobo (3)
Version bump
libbonobo (2)
Version bump
libbonobo (1)
First release.
librsvg (10)
Version bump.
librsvg (7)
Version bump.
librsvg (6)
Version bump.
librsvg (5)
Stable update.
libbonoboui (4)
Version bump
libbonoboui (3)
Version bump
libbonoboui (2)
Version bump
libbonoboui (1)
First release.
libgnomeui (6)
Version bump
libgnomeui (5)
Version bump
libgnomeui (4)
Version bump
libgnomeui (3)
Minor fix
libgnomeui (2)
Version bump
libgnomeui (1)
First release.
icon-theme-gnome (3)
Version bump.
icon-theme-gnome (2)
Version bump.
icon-theme-gnome (1)
First release.
icon-theme-tango (3)
Version Bump.
icon-theme-hicolor (1)
First release.
gramps (4)
Remove *.pyc and *.pyo files from package. Fix bug #7248
figlet (1)
First release.
clamav (36)
Add patches to fix CVE-2010-{0098,1311}, bug #12637
clamav (27)
Version bump to fix various bugs and CVE-2008-3215 which was fixed incompletely.
Disable dazuko support as dazuko can't be used with newer kernels.
clamav (25)
Fix invalid memory access in petite.
clamav (24)
Stable update to fix CVE-2008-(0314,1100,1833,1835,1836,1837 and 1387)
zsh (14)
Version bump
sudo (26)
- Version bump to fix privilege escalation. (CVE-2010-1163, #12829)
sudo (25)
Add patch to fix privilege escalation bug in sudoedit. (CVE-2010-0426, #12352)
dstat (6)
Version bump to fix CVE-2009-3894, #11909
phpmyadmin (24)
Version bump to fix several XSS vulnerabilities. (CVE-2010-3056, #14089)
phpmyadmin (21)
Version bump to fix CVE-2009-{3696,3697}
phpmyadmin (13)
Version bump.
phpmyadmin (12)
Version bump to fix XSS on admin page.
phpmyadmin (10)
Version bump
phpmyadmin (8)
Stable update to fix serious security vulnerabilities.
systemtap (9)
* Version bump to fix remote code execution via stap-server (CVE-2009-4273, #12074)
libtasn1 (1)
First release.
gnutls (26)
Gnutls-devel should depend on libtasn1-devel. Fix pb#18679
nss (34)
Use /etc/pki/ directory instead of /etc/ssl for nssdb
libsoup (5)
Version bump.
libsoup (4)
Version bump.
libsoup (3)
Version bump.
libsoup (2)
Version bump, minor fixes
libsoup (1)
First release.
libgksu (3)
Version bump.
libgksu (2)
Add patch for escaping command strings with g_markup_escape_text.
libgksu (1)
First release.
xapian-core (3)
Version bump.
json-glib (1)
First release.
libconfuse (1)
First release.
gamin (3)
Fix missing struct ucred in glibc headers. Add filesystem-leak.patch and poll-less.patch from Fedora.
libnotify (4)
Add missing notification-daemon dependency
libnice (7)
Stable bump
libxklavier (3)
Version bump.
libmcs (6)
Version bump
libxslt (8)
Version bump, fixes CVE-2008-1767
libxslt (6)
Version bump
libgtop (3)
Version bump.
libgtop (2)
First release.
libgtop (1)
First release.
ETL (2)
Version bump.
php (79)
- Version bump to fix multiple vulnerabilities. (#13890)
php (78)
- Add patch to fix unsafe unserialize() remote code execution (CVE-2010-2225, #13644)
- Enable OpenSSL support
- Add PDO support for mysql and pgsql
- Add autoconf-2.65 patch to fix configure error when using diversion
php (76)
* Version bump to fix 3 security vulnerabilities (#12363)
- Fixed safe_mode validation inside tempnam() when the directory path does not end with a /). (Martin Jansen)
- Fixed a possible open_basedir/safe_mode bypass in session extension identified by Grzegorz Stachowiak. (Ilia)
- Improved LCG entropy. (Rasmus, Samy Kamkar)
php (75)
Version bump to fix 2 security vulnerabilities. (#11742)

- Protection for $_SESSION from interrupt corruption and improved "session.save_path" check (CVE-2009-4143)
- Insufficient input string validation of htmlspecialchars() (CVE-2009-4142)
php (74)
Fix 3 important security vulnerabilities:

- It's possible to cause DOS with requests containing 160.000+ file uploads, limit max_uploads to 20. (#11580)
- Safe_mode bypass in tempnam() (CVE-2009-3557)
- Open_basedir bypass in posix_mkfifo() (CVE-2009-2558)
php (73)
Add patch to fix buffer overflow in _gdGetColors function, CVE-2009-3546
php (63)
Enable cgi/fastcgi support.
php (62)
Edit libxml2 dependency. PHP should depend on the latest one.
php (61)
Version bump and enable ctypes module. This release includes 5 security fixes: http://www.php.net/ChangeLog-5.php
php (27)
Add postgresql-lib dependency
Smarty (4)
Version bump.
mono (31)
- Version bump to fix possible XSS vulnerability caused by incorrect default property of EnableViewStateMac (CVE-2010-1459), #13263
ruby (23)
Add patch to fix WEBrick XSS vulnerability (CVE-2010-0541, #13577)
ruby (22)
Version bump to fix Webrick control characters vulnerability. (CVE-2009-4492, #12138)
ruby (19)
Fix short name constans bug that breaks metasploit. LP bug #282302
perl-Crypt-SSLeay (1)
First release.
perl-Config-Tiny (1)
First release.
perl-libwww (13)
Version bump to fix unexpected download filename vulnerability (CVE-2010-2253, 13441)
perl-XML-Simple (1)
First release.
perl-ExtUtils-Depends (1)
First release.
perl-ExtUtils-PkgConfig (1)
First release.
sun-java (24)
* Make binaries in jdk/bin executable
sun-java (22)
* Fix directory permission issue. The permission of /opt/sun-jre was 0777 due to the error in postInstall script. See #12209 for further information
python-orbit (3)
Version bump and remove *.pyo files in python dir.
python-orbit (2)
Version bump.
python-gtksourceview (3)
Version bump to new stable release.
python-gtksourceview (2)
Version bump.
python-gtksourceview (1)
First release.
python-PyXML (4)
* Add patch to fix expat denial of service vulnerability (CVE-2009-2625), #11477
* Remove python dependency as it's in system.base
gnome-python-extras (2)
Remove compiled python files.
gnome-python-extras (1)
First release.
python-xmpppy (1)
First release.
Django (19)
Fix denial of service vulnerability caused by regular expression module.
Django (13)
Properly add Csrf protection middleware into default project settings.py. Csrf middleware should come before SessionMiddleware.
Django (12)
Escape request.path before use as form's submission action in admin login page. http://www.djangoproject.com/weblog/2008/may/14/security/
Django (11)
Enable csrf protecting middleware by default, when user creates a project, csrf middleware will be automatically added.
Django (10)
Fix possible ddos attack caused by i18n caching system.
Django (9)
A patch for making django be aware of LOGIN_URL and LOGIN_REDIRECT_URL in settings.py
python-4Suite (4)
Add patch to fix CVE-2009-{2625,3560} expat issue. 4suite uses expat internally. #11019
python-pydns (1)
First release.
python-numpy (8)
Version bump
python-pygobject (7)
Version bump, bugfix release.
python-pygobject (6)
Version bump, bugfix release.
python-pygobject (5)
Version bump to stable.
python-gtk (5)
Version bump to stable
gnome-python (7)
Version bump and remove compiled python files..
gnome-python (6)
Version bump.
gnome-python (5)
Version bump.
mysql-python (6)
Fix format mismatch that can cause problems with 64-bit big-endian systems.
subversion (52)
Remove empty /usr/lib/perl5/5.10.1/i686-linux-thread-multi directory that conflicts with other perl modules
autogen (2)
Version bump.
autogen (1)
First release.
gthumb (10)
Version bump.
gthumb (9)
Version bump.
gthumb (8)
Version bump.
gthumb (7)
Version bump. Bugfix release.
gthumb (6)
Version bump.
gthumb (5)
Version bump.
gthumb (4)
Version bump.
gthumb (3)
Version bump.
gthumb (2)
Version bump.
gthumb (1)
First release.
geos (11)
Version bump.
proj (8)
Version bump.
synfig (2)
Version bump
tilda (2)
Version bum.
tilda (1)
First release.
libconfuse (1)
First release.
etl (2)
Version bump.
amsn (18)
Version bump.
amsn (17)
Fix login error due to the change in MSN protocol.
amsn (16)
Add patch to use firefox for default browser and to set file-manager opener as xdg-open.