Commit graph

100529 commits

Author SHA1 Message Date
Nikolay Amiantov
a841f6097c primusLib: fix receiving long library paths 2017-02-08 16:58:59 +03:00
Nikolay Amiantov
2fd2fcf54d linuxPackages.nvidia_x11: refactor, build more from source
* Use libglvnd;
* Compile nvidia-settings, nvidia-persistenced from source;
* Generalize builder.
2017-02-08 16:57:46 +03:00
Nikolay Amiantov
750e7ba0d9 libglvnd: init at 2016-12-22 2017-02-08 16:56:50 +03:00
Graham Christensen
afd59811a1
gstreamer-*: 1.10.2 -> 1.10.3 for multiple CVEs
gst-plugins-bad:
From the Arch Linux advisory:
 - CVE-2017-5843 (arbitrary code execution): A double-free issue has
 been found in gstreamer before 1.10.3, in
 gst_mxf_demux_update_essence_tracks.

- CVE-2017-5848 (denial of service): An out-of-bounds read has been
  found in gstreamer before 1.10.3, in gst_ps_demux_parse_psm.
More: https://lwn.net/Vulnerabilities/713772/

gst-plugins-base:
From the Arch Linux advisory:

- CVE-2017-5837 (denial of service): A floating point exception issue
  has been found in gstreamer before 1.10.3, in
  gst_riff_create_audio_caps.

- CVE-2017-5839 (denial of service): An endless recursion issue
  leading to stack overflow has been found in gstreamer before 1.10.3,
  in gst_riff_create_audio_caps.

- CVE-2017-5842 (arbitrary code execution): An off-by-one write has
  been found in gstreamer before 1.10.3, in
  html_context_handle_element.

- CVE-2017-5844 (denial of service): A floating point exception issue
  has been found in gstreamer before 1.10.3, in
  gst_riff_create_audio_caps.
More: https://lwn.net/Vulnerabilities/713773/

gst-plugins-good:
From the Arch Linux advisory:

- CVE-2016-10198 (denial of service): An invalid memory read flaw has
  been found in gstreamer before 1.10.3, in
  gst_aac_parse_sink_setcaps.

- CVE-2016-10199 (denial of service): An out of bounds read has been
  found in gstreamer before 1.10.3, in qtdemux_tag_add_str_full.

- CVE-2017-5840 (denial of service): An out-of-bounds read has been
  found in gstreamer before 1.10.3, in qtdemux_parse_samples.

- CVE-2017-5841 (denial of service): An out-of-bounds read has been
  found in gstreamer before 1.10.3, in gst_avi_demux_parse_ncdt.

- CVE-2017-5845 (denial of service): An out-of-bounds read has been
  found in gstreamer before 1.10.3, in gst_avi_demux_parse_ncdt.
More: https://lwn.net/Vulnerabilities/713774/

gst-plugins-ugly:
From the Arch Linux advisory:

- CVE-2017-5846 (denial of service): An out-of-bounds read has been
  found in gstreamer before 1.10.3, in
  gst_asf_demux_process_ext_stream_props.

- CVE-2017-5847 (denial of service): An out-of-bounds read has been
  found in gstreamer before 1.10.3, in
  gst_asf_demux_process_ext_content_desc.
More: https://lwn.net/Vulnerabilities/713775/

gstreamer:
From the Arch Linux advisory:

An out of bounds read has been found in gstreamer before 1.10.3, in
gst_date_time_new_from_iso8601_string.
More: https://lwn.net/Vulnerabilities/713776/
2017-02-08 08:30:23 -05:00
Antoine Eiche
9d30099b7f nixos/systemd: set r-x group permissions on /var/log/journal
This allows services such as systemd-journal-gateway to access the
systemd journal.

Closes #22288
2017-02-08 16:06:14 +03:00
Peter Simons
d2465227d5 Merge pull request #22506 from rycee/bump/bash-completion
bash-completion: 2.4 -> 2.5
2017-02-08 12:36:08 +01:00
Peter Simons
01fef3f7db taskwarrior: improve meta.description (taskwarrior has nothing to do with GTD) 2017-02-08 11:45:50 +01:00
Peter Simons
187e5d3d74 taskwarrior: patch bug in bash-completion file
The patch was submitted upstream, too.
2017-02-08 11:45:50 +01:00
Pascal Wittmann
3bd6c44b5f Merge pull request #22541 from vrthra/libsixel-1.7.3
libsixel: 1.6.1 -> 1.7.3
2017-02-08 10:21:46 +01:00
Pascal Wittmann
39f2bf0976 Merge pull request #22468 from taktoa/souper
souper: init at 2017-01-05
2017-02-08 09:20:43 +01:00
Domen Kožar
01ca916411
haskell: distribute servant-{elm,docs,auth,auth-server} and logging-effect 2017-02-08 06:11:04 +01:00
Benjamin Staffin
9dc2cb2e84 Merge pull request #22476 from benley/redshift-kde
redshift-plasma-applet: init at 1.0.17
2017-02-07 20:21:56 -05:00
Rahul Gopinath
bac5a018a0 libsixel: 1.6.1 -> 1.7.3 2017-02-07 17:11:13 -08:00
Graham Christensen
0f948f5cdd Merge pull request #22538 from taku0/thunderbird-bin-45.7.1
thunderbird, thunderbird-bin: 45.7.0 -> 45.7.1
2017-02-07 19:49:07 -05:00
taku0
764b1d19f9 thunderbird-bin: 45.7.0 -> 45.7.1 2017-02-08 09:35:07 +09:00
Joachim Fasting
bd46a375df
grsecurity: 4.9.8-201702060653 -> 201702071801 2017-02-08 01:31:18 +01:00
Franz Pletz
1328b9faf0 Merge pull request #22522 from volhovM/update/scudcloud-1.40
scudcloud: 1.38 -> 1.40
2017-02-08 01:06:00 +01:00
Joachim F
98a6cc0d1c Merge pull request #22530 from romildo/upd.jwm
jwm: 1575 -> 1580
2017-02-07 22:39:56 +01:00
Franz Pletz
626540e32e Merge pull request #22524 from wizeman/u/chrony-impr
nixos.chrony: add extraFlags config option
2017-02-07 21:50:58 +01:00
Vincent Laporte
eaba666273 luaPackages.luafilesystem: fix build on darwin 2017-02-07 20:12:38 +00:00
Vincent Laporte
3a526deaee libgdiplus: fix install on darwin 2017-02-07 19:58:44 +00:00
Vladimír Čunát
ce9d30e734
Merge #22241: amdgpu-pro: 16.50 -> 16.60 2017-02-07 20:49:58 +01:00
Eelco Dolstra
11621b9ec0
samba: Fix URL
Fixes #22527.
2017-02-07 20:23:56 +01:00
Eelco Dolstra
5a84059c61
gnome-vfs: Drop unused Samba dependency
It does not appear in the runtime closure so let's ditch it.
2017-02-07 20:23:42 +01:00
Dan Peebles
97bf0637d5 pants: init at 1.2.1
This will need more patching to work properly (especially for python
builds), but I've been able to convince it to build some simple java and
scala projects in its current form so I figured I'd spread it.
2017-02-07 14:07:28 -05:00
romildo
14ca10f8c5 jwm: 1575 -> 1580 2017-02-07 16:35:58 -02:00
Peter Simons
bfd7fe8ba5 nixos: fix taskserver module to evaluate properly when keys are managed manually 2017-02-07 18:35:41 +01:00
Ricardo M. Correia
9293f86bf2 nixos.chrony: remove generatecommandkey option
It's deprecated and no longer used.
2017-02-07 18:01:58 +01:00
Ricardo M. Correia
e3fce56047 nixos.chrony: add extraFlags config option 2017-02-07 18:01:57 +01:00
Mikhail Volkhov
c48c2fc147
scudcloud: 1.38 -> 1.40 2017-02-07 19:46:35 +03:00
Jörg Thalheim
3aff6c07ab Merge pull request #22518 from wizeman/u/fix-chrony-conf
nixos.chrony: pass config file directly to daemon
2017-02-07 17:17:17 +01:00
Bjørn Forsman
8dd90abc17 autorevision: use sed word delimiters for better precision
Fixes wrongly replaced 'cat' in help text:

$ autorevision -h
usage: autorevision {-t output-type | -s symbol} [-o cache-file [-f] ] [-e name] [-U] [-V]
	Options include:
	-t output-type		= specify output type
	-s symbol		= specify symbol output
	-o cache-file		= specify cache file lo/nix/store/1rzzq2wdn5vfgbp5y9613jpdkf8i9ag6-coreutils-8.26/bin/cation
...

(Also replace all occurences per line, in case that should occur.)
2017-02-07 17:12:25 +01:00
Bjørn Forsman
4853900dd3 autorevision: 1.14 -> 1.20 2017-02-07 17:04:30 +01:00
Bjørn Forsman
4628724469 autorevision: specify full paths to 'sed' and 'tee' 2017-02-07 17:04:23 +01:00
Svein Ove Aas
e362a3d5c9 nginx: Format the config file 2017-02-07 16:19:11 +01:00
Benno Fünfstück
b33124a143 haskell-download: don't test (requires networking) 2017-02-07 15:13:30 +01:00
Benno Fünfstück
57507f08e8 haskell-modules: split off nix-specific overrides and common ones
This allows the nix-specific overrides to be reused for other purposes,
with different haskell package sets, etc.
2017-02-07 15:13:23 +01:00
Peter Simons
5a0368b87c hackage-packages.nix: automatic Haskell package set update
This update was generated by hackage2nix v2.0.4-10-g05c4803 from Hackage revision
5720a6c584.
2017-02-07 15:13:15 +01:00
Peter Simons
d0492177e3 hackage2nix: update list of broken packages 2017-02-07 15:12:13 +01:00
Peter Simons
868eb826e1 LTS Haskell 7.19 2017-02-07 15:12:13 +01:00
Graham Christensen
34157f7a04 Merge pull request #22509 from joachifm/jbig2dec
jbig2dec: update & security patch
2017-02-07 08:28:52 -05:00
Ricardo M. Correia
af4e6f155e nixos.chrony: pass config file directly to daemon
This fixes an issue where `nixops deploy` wouldn't restart the chrony
service when the chrony configuration changed, because it wouldn't
detect that `/etc/chrony.conf` was a dependency of the chrony service.
2017-02-07 13:48:58 +01:00
Kier Davis
83865b2c6c intel-ocl: init at r4.0-59481 2017-02-07 15:20:30 +03:00
Guillaume Maudoux
f7b7d8e7b5 dafny: fix meta attribute 2017-02-07 11:35:10 +01:00
aszlig
25b61cc897
pyocr: Use skip instead of expectedFailure
Since the update of imagemagick in
5e753c1a65 there are certain test cases
which now unexpectly succeed and in turn cause the whole build to fail.

So in order to prevent this from happening let's skip those tests
properly instead of running them and expect them to fail.

Tested by building pythonPackages.pyocr on x86_64-linux.

Signed-off-by: aszlig <aszlig@redmoonstudios.org>
2017-02-07 10:55:40 +01:00
aszlig
cf94e18627
linux-testing: 4.10-rc4 -> 4.10-rc7
Tested via building the linux_testing attribute only, not in production.

Verified unpacked tarball with GnuPG:

gpg: Signature made Mon 06 Feb 2017 12:21:50 AM CET
gpg:                using RSA key 79BE3E4300411886
gpg: Good signature from "Linus Torvalds <torvalds@linux-foundation.org>" [unknown]
Primary key fingerprint: ABAF 11C6 5A29 70B1 30AB  E3C4 79BE 3E43 0041 1886

Signed-off-by: aszlig <aszlig@redmoonstudios.org>
2017-02-07 10:23:50 +01:00
Pascal Wittmann
d099c1b96d Merge pull request #22507 from layus/dafny-update
Add dafny; fixup Boogie
2017-02-07 10:21:35 +01:00
Pascal Wittmann
04a128540d Merge pull request #22285 from nand0p/electricsheep
electricsheep: 2.6.8 -> 2.7b33
2017-02-07 10:20:20 +01:00
Guillaume Maudoux
aeaf893e57 dafny: init at v1.9.8 2017-02-07 10:13:42 +01:00
Frederik Rietdijk
c73045ef10 pythonPackages.sphinx: 1.5.1 -> 1.5.2 2017-02-07 09:12:30 +01:00