Commit Graph

11357 Commits

Author SHA1 Message Date
Efraim Flashner
036fd4f27f gnu: dvdisaster: Update to 0.79.5.
* gnu/packages/cdrom.scm (dvdisaster): Update to 0.79.5.
2016-03-13 21:29:51 +02:00
Efraim Flashner
7df85799b1 gnu: abcde: Use 'modify-phases'.
* gnu/packages/cdrom.scm (adcde)[arguments]: Use 'modify-phases'.
2016-03-13 21:29:51 +02:00
Efraim Flashner
1bb4005fbd gnu: abcde: Update to 2.7.1.
* gnu/packages/cdrom.scm (abcde): Update to 2.7.1.
[home-page]: Use https.
2016-03-13 21:29:51 +02:00
Leo Famulari
03422bf834 gnu: libmbim: Use HTTPS URL.
* gnu/packages/freedesktop.scm (libmbim)[source]: Use HTTPS URL.
2016-03-13 14:28:38 -04:00
Efraim Flashner
7ff165da48 gnu: frescobaldi: Update to 2.18.2.
* gnu/packages/music.scm (frescobaldi): Update to 2.18.2.
2016-03-13 14:31:46 +02:00
Efraim Flashner
5c85c7265a gnu: libuninameslist: Update to 0.5.20150701.
* gnu/packages/fontutils.scm (libuninameslist): Update to 0.5.20150701.
2016-03-13 14:31:46 +02:00
Efraim Flashner
edca4cbeba gnu: jrnl: Update to 1.9.7.
* gnu/packages/jrnl.scm (jrnl): Update to 1.9.7.
[native-inputs]: Remove python-setuptools.
2016-03-13 14:31:46 +02:00
Alex Kost
29f9abb4ca gnu: font-ubuntu: Update to 0.83.
* gnu/packages/fonts.scm (font-ubuntu): Update to 0.83.
2016-03-13 13:16:40 +03:00
Alex Kost
e2a3d69003 gnu: manaplus: Update to 1.6.3.12.
* gnu/packages/games.scm (manaplus): Update to 1.6.3.12.
2016-03-13 13:16:23 +03:00
Alex Kost
acd62175e2 gnu: git-modes: Update to 1.2.1.
* gnu/packages/emacs.scm (git-modes): Update to 1.2.1.
2016-03-13 12:54:12 +03:00
Efraim Flashner
eb4f2cd7e3 gnu: glpk: Update to 4.59.
* gnu/packages/maths.scm (glpk): Update to 4.59.
2016-03-12 23:07:09 +02:00
Mark H Weaver
2c9f0b0770 Merge branch 'master' into security-updates 2016-03-12 15:07:41 -05:00
Efraim Flashner
9591e11a4c gnu: samba: Update to 4.3.6 [fixes CVE-2015-7560, CVE-2016-0771].
* gnu/packages/samba.scm (samba): Update to 4.3.6.
2016-03-12 21:53:03 +02:00
Leo Famulari
e1c644a044 gnu: accountsservice: Use HTTPS URL.
* gnu/packages/freedesktop.scm (accountsservice)[source]: Use HTTPS URL.
2016-03-12 12:20:18 -05:00
Andreas Enge
dfbe56c36d gnu: mupdf: Update to 1.8.
* gnu/packages/pdf.scm (mupdf): Update to 1.8.
2016-03-12 10:03:38 +01:00
Andreas Enge
8e755b1bcd gnu: mupdf: Simplify package.
* gnu/packages/pdf.scm (mupdf)[source]: Drop patch and part of snippet
  modifying permissions of files added by the patch.
  [arguments]: Use #:make-flags instead of modified build and install phases.
  Drop superfluous module inclusion. Use modify-phases syntax.
* gnu/packages/patches/mupdf-buildsystem-fix.patch: Remove patch.
* gnu-system.am (dist_patch_DATA): Unregister patch.
2016-03-12 09:56:27 +01:00
Danny Milosavljevic
0ede252b66 gnu: Add fluxbox.
* gnu/packages/wm.scm (fluxbox): New variable.

Co-authored-by: Eric Bavier <bavier@member.fsf.org>
2016-03-11 20:43:51 -06:00
Mark H Weaver
81a9653983 gnu: webkitgtk: Update to 2.10.8 [fixes CVE-2016-1726].
* gnu/packages/webkit.scm (webkitgtk): Update to 2.10.8.
2016-03-11 17:59:05 -05:00
Leo Famulari
bce6f7ce63 gnu: openexr: Disable broken test to fix build on i686.
* gnu/packages/graphics.scm (openexr)[arguments]: New field.
2016-03-11 15:08:32 -05:00
Christopher Allan Webber
b5f990a680 doc: Add footnote about pointing ~/.config/guix/latest at user's checkout
* doc/contributing.texi (Running Guix Before It Is Installed): New footnote.
2016-03-11 08:41:07 -08:00
Ludovic Courtès
66a30a3ea4 gnu: libevent: Update to 2.0.22 [fixes CVE-2015-6525].
* gnu/packages/libevent.scm (libevent): Update to 2.0.22.
2016-03-11 16:33:50 +01:00
Ludovic Courtès
6a25e59514 cve: Read entire CVE databases for the current year and the past year.
The "Modified" database that we were reading is much smaller, but it
only shows CVEs modified over the past week.

* guix/cve.scm (%now, %current-year, %past-year): New variables.
(yearly-feed-uri): New procedure.
(%cve-feed-uri, %ttl): Remove.
(%current-year-ttl, %past-year-ttl): New variables.
(call-with-cve-port): Add 'uri' and 'ttl' parameters and honor them.
Add 'setvbuf' call.
(current-vulnerabilities)[read-vulnerabilities]: New procedure.
Read from both %LAST-YEAR and %CURRENT-YEAR.
2016-03-11 16:33:50 +01:00
Ludovic Courtès
ef0f0d5f97 gnu: vorbis-tools: Patch buffer overflow [fixes CVE-2015-6749].
* gnu/packages/patches/vorbis-tools-CVE-2015-6749.patch: New file.
* gnu-system.am (dist_patch_DATA): Add it.
* gnu/packages/xiph.scm (vorbis-tools)[source]: Use it.
2016-03-11 16:33:50 +01:00
Jan Nieuwenhuizen
baacf042fd doc: Suggest `guix.scm' for upstream maintainers.
* doc/guix.texi (Invoking guix package): Suggest `guix.scm'.

Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2016-03-11 16:33:50 +01:00
Ludovic Courtès
cf557afa2e cve: Make CPE patch level part of the version string.
* guix/cve.scm (%cpe-package-rx): Adjust to account for :PATCH-LEVEL.
(cpe->package-name): Likewise.
2016-03-11 16:33:50 +01:00
Nils Gillmann
d381962f35 gnu: Add powwow.
* gnu/packages/games.scm (powwow): New variable.
2016-03-11 08:37:11 +08:00
Roel Janssen
a0a71439fa gnu: Add bioawk.
* gnu/packages/bioinformatics.scm (bioawk): New variable.

Signed-off-by: Leo Famulari <leo@famulari.name>
2016-03-10 18:37:25 -05:00
Mark H Weaver
7bf4bd0991 gnu: linux-libre: Update to 4.4.5.
* gnu/packages/linux.scm (linux-libre): Update to 4.4.5.
2016-03-10 18:17:31 -05:00
Raimon Grau
9514662322 gnu: Add nload.
* gnu/packages/networking.scm (nload): New variable.

Signed-off-by: Leo Famulari <leo@famulari.name>
2016-03-10 16:48:16 -05:00
Leo Famulari
ff22f01d67 gnu: dropbear: Update to 2016.72 [fixes CVE-2016-3116].
* gnu/packages/ssh.scm (dropbear): Update to 2016.72.
2016-03-10 15:34:05 -05:00
Leo Famulari
efa3752964 gnu: openssh: Update to 7.2p2 [fixes CVE-2016-3115].
* gnu/packages/ssh.scm (openssh): Update to 7.2p2.
2016-03-10 15:34:05 -05:00
Efraim Flashner
a232ce429e gnu: catch: Update to 1.3.5.
* gnu/packages/check.scm (catch): Update to 1.3.5.
2016-03-10 21:41:24 +02:00
Efraim Flashner
34a6f4dcf9 gnu: cppunit: Update to 1.13.2.
* gnu/packages/check.scm (cppunit): Update to 1.13.2.
[source]: Change to libreoffice's hosted release tarballs.
[home-page]: Change to freedesktop.
2016-03-10 21:25:31 +02:00
Efraim Flashner
591f1d3e4c gnu: lcov: Update to 1.12.
* gnu/packages/code.scm (lcov): Update to 1.12.
2016-03-10 20:20:26 +02:00
Efraim Flashner
1d116171a0 gnu: the-silver-searcher: Update to 0.31.0.
* gnu/packages/code.scm (the-silver-searcher): Update to 0.31.0.
2016-03-10 20:17:50 +02:00
Efraim Flashner
1e42d8b8ba gnu: complexity: Update to 1.10.
* gnu/packages/code.scm (complexity): Update to 1.10.
2016-03-10 20:15:15 +02:00
Efraim Flashner
9720651942 gnu: libass: Update to 0.13.2.
* gnu/packages/video.scm (libass): Update to 0.13.2.
2016-03-10 18:23:40 +02:00
Efraim Flashner
83820c0f10 gnu: obs: Update to 0.13.2.
* gnu/packages/video.scm (obs): Update to 0.13.2.
2016-03-10 18:23:40 +02:00
Mark H Weaver
c3499ad6b8 gnu: icecat: Add several security fixes.
* gnu/packages/patches/icecat-CVE-2015-4477.patch,
gnu/packages/patches/icecat-CVE-2015-7207.patch,
gnu/packages/patches/icecat-CVE-2016-1952-pt01.patch,
gnu/packages/patches/icecat-CVE-2016-1952-pt02.patch,
gnu/packages/patches/icecat-CVE-2016-1952-pt03.patch,
gnu/packages/patches/icecat-CVE-2016-1952-pt04.patch,
gnu/packages/patches/icecat-CVE-2016-1952-pt05.patch,
gnu/packages/patches/icecat-CVE-2016-1952-pt06.patch,
gnu/packages/patches/icecat-CVE-2016-1954.patch,
gnu/packages/patches/icecat-CVE-2016-1960.patch,
gnu/packages/patches/icecat-CVE-2016-1961.patch,
gnu/packages/patches/icecat-CVE-2016-1962.patch,
gnu/packages/patches/icecat-CVE-2016-1964.patch,
gnu/packages/patches/icecat-CVE-2016-1965.patch,
gnu/packages/patches/icecat-CVE-2016-1966.patch,
gnu/packages/patches/icecat-CVE-2016-1974.patch,
gnu/packages/patches/icecat-bug-1248851.patch: New files.
* gnu-system.am (dist_patch_DATA): Add them.
* gnu/packages/gnuzilla.scm (icecat)[source]: Add patches.
2016-03-10 10:52:41 -05:00
Ludovic Courtès
ec278439f3 substitute: Optimize HTTP pipelining over TLS.
* guix/scripts/substitute.scm (http-multiple-get): Write the requests
to a bytevector output port before sending them.
2016-03-10 13:55:30 +01:00
Ludovic Courtès
9b7bd1b160 substitute: Add HTTPS support.
Fixes <http://bugs.gnu.org/22937>.
Reported by Chris Marusich <cmmarusich@gmail.com>.

* guix/scripts/substitute.scm (fetch): Add 'https' alongside 'http'.
Use 'open-connection-for-uri' instead of 'open-socket-for-uri'.  Call
'setvbuf' only when PORT matches 'file-port?'.
(http-multiple-get): Likewise.  Change 'base-url' parameter to
'base-uri'.
(fetch-narinfos)[do-fetch]: Add 'https' case alongside 'http'.  Pass URI
instead of URL to 'http-multiple-get'.
* doc/guix.texi (Requirements): Move GnuTLS one level higher and mention
HTTPS substitutes.
(Substitutes): Mention HTTPS and recommend it.  Explain why servers
are not authenticated.  Add "On Trusting Binaries" subsection.
2016-03-10 13:55:30 +01:00
Efraim Flashner
2f9862ffd0 gnu: isc-dhcp: Update bundled bind to 9.9.8-P4 [fixes CVE-2016-1285, CVE-2016-1286].
* gnu/packages/admin.scm (isc-dhcp): Update bundled bind to 9.9.8-P4.
2016-03-10 09:49:04 +02:00
Efraim Flashner
0d88031c2f gnu: bind-utils: Update to 9.10.3-P4 [fixes CVE-2016-1285, CVE-2016-1286].
* gnu/packages/dns.scm (bind-utils): Update to 9.10.3-P4.
2016-03-10 09:29:55 +02:00
Ricardo Wurmus
82f145ef7a gnu: custom-gcc: Delete broken or conflicting executables.
* gnu/packages/gcc.scm (custom-gcc)[arguments]: Add phase to remove
executables that are non-functional or conflict with the executables of
"gcc".
2016-03-10 07:12:27 +01:00
宋文武
ce6027bf43 gnu: nautilus: Don't propagate gtk+.
* gnu/packages/gnome.scm (nautilus): Move gtk+ from propagated-inputs to inputs.
2016-03-10 08:27:53 +08:00
Ludovic Courtès
204d34ff96 substitute: Error out on unsupported URL schemes.
Reported in <http://bugs.gnu.org/22937>
by Chris Marusich <cmmarusich@gmail.com>.

* guix/scripts/substitute.scm (fetch): Add 'else' case and call 'leave'.
2016-03-09 23:47:49 +01:00
Ludovic Courtès
bec7f35214 ui: Do not call 'port-filename' on closed file ports.
* guix/ui.scm (call-with-error-handling)[port-filename*]: New
procedure.
Use it in the 'nar-error?' case.
2016-03-09 23:47:49 +01:00
Andreas Enge
8bcdc23fd0 gnu: texlive: Make texlive-bin and texlive-texmf private.
* gnu/packages/texlive.scm (texlive-bin, texlive-texmf): Define the variables
  as non-public; they should not be installed into a profile.
2016-03-09 22:36:45 +01:00
Andreas Enge
fde6060347 gnu: po4a: Use texlive-minimal instead of texlive-bin.
* gnu/packages/gettext.scm (po4a)[inputs]: Replace texlive-bin by
  texlive-minimal.
2016-03-09 22:36:45 +01:00
Andreas Enge
aad375c9bc gnu: statistics: Remove import of unused texlive module.
* gnu/packages/statistics.scm: Do not import (gnu packages texlive).
2016-03-09 22:36:45 +01:00