summary refs log tree commit diff
AgeCommit message (Collapse)Author
2016-03-11gnu: vorbis-tools: Patch buffer overflow [fixes CVE-2015-6749].Ludovic Courtès
* gnu/packages/patches/vorbis-tools-CVE-2015-6749.patch: New file. * gnu-system.am (dist_patch_DATA): Add it. * gnu/packages/xiph.scm (vorbis-tools)[source]: Use it.
2016-03-11doc: Suggest `guix.scm' for upstream maintainers.Jan Nieuwenhuizen
* doc/guix.texi (Invoking guix package): Suggest `guix.scm'. Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2016-03-11cve: Make CPE patch level part of the version string.Ludovic Courtès
* guix/cve.scm (%cpe-package-rx): Adjust to account for :PATCH-LEVEL. (cpe->package-name): Likewise.
2016-03-11gnu: Add powwow.Nils Gillmann
* gnu/packages/games.scm (powwow): New variable.
2016-03-10gnu: Add bioawk.Roel Janssen
* gnu/packages/bioinformatics.scm (bioawk): New variable. Signed-off-by: Leo Famulari <leo@famulari.name>
2016-03-10gnu: linux-libre: Update to 4.4.5.Mark H Weaver
* gnu/packages/linux.scm (linux-libre): Update to 4.4.5.
2016-03-10gnu: Add nload.Raimon Grau
* gnu/packages/networking.scm (nload): New variable. Signed-off-by: Leo Famulari <leo@famulari.name>
2016-03-10gnu: dropbear: Update to 2016.72 [fixes CVE-2016-3116].Leo Famulari
* gnu/packages/ssh.scm (dropbear): Update to 2016.72.
2016-03-10gnu: openssh: Update to 7.2p2 [fixes CVE-2016-3115].Leo Famulari
* gnu/packages/ssh.scm (openssh): Update to 7.2p2.
2016-03-10gnu: catch: Update to 1.3.5.Efraim Flashner
* gnu/packages/check.scm (catch): Update to 1.3.5.
2016-03-10gnu: cppunit: Update to 1.13.2.Efraim Flashner
* gnu/packages/check.scm (cppunit): Update to 1.13.2. [source]: Change to libreoffice's hosted release tarballs. [home-page]: Change to freedesktop.
2016-03-10gnu: lcov: Update to 1.12.Efraim Flashner
* gnu/packages/code.scm (lcov): Update to 1.12.
2016-03-10gnu: the-silver-searcher: Update to 0.31.0.Efraim Flashner
* gnu/packages/code.scm (the-silver-searcher): Update to 0.31.0.
2016-03-10gnu: complexity: Update to 1.10.Efraim Flashner
* gnu/packages/code.scm (complexity): Update to 1.10.
2016-03-10gnu: libass: Update to 0.13.2.Efraim Flashner
* gnu/packages/video.scm (libass): Update to 0.13.2.
2016-03-10gnu: obs: Update to 0.13.2.Efraim Flashner
* gnu/packages/video.scm (obs): Update to 0.13.2.
2016-03-10gnu: icecat: Add several security fixes.Mark H Weaver
* gnu/packages/patches/icecat-CVE-2015-4477.patch, gnu/packages/patches/icecat-CVE-2015-7207.patch, gnu/packages/patches/icecat-CVE-2016-1952-pt01.patch, gnu/packages/patches/icecat-CVE-2016-1952-pt02.patch, gnu/packages/patches/icecat-CVE-2016-1952-pt03.patch, gnu/packages/patches/icecat-CVE-2016-1952-pt04.patch, gnu/packages/patches/icecat-CVE-2016-1952-pt05.patch, gnu/packages/patches/icecat-CVE-2016-1952-pt06.patch, gnu/packages/patches/icecat-CVE-2016-1954.patch, gnu/packages/patches/icecat-CVE-2016-1960.patch, gnu/packages/patches/icecat-CVE-2016-1961.patch, gnu/packages/patches/icecat-CVE-2016-1962.patch, gnu/packages/patches/icecat-CVE-2016-1964.patch, gnu/packages/patches/icecat-CVE-2016-1965.patch, gnu/packages/patches/icecat-CVE-2016-1966.patch, gnu/packages/patches/icecat-CVE-2016-1974.patch, gnu/packages/patches/icecat-bug-1248851.patch: New files. * gnu-system.am (dist_patch_DATA): Add them. * gnu/packages/gnuzilla.scm (icecat)[source]: Add patches.
2016-03-10substitute: Optimize HTTP pipelining over TLS.Ludovic Courtès
* guix/scripts/substitute.scm (http-multiple-get): Write the requests to a bytevector output port before sending them.
2016-03-10substitute: Add HTTPS support.Ludovic Courtès
Fixes <http://bugs.gnu.org/22937>. Reported by Chris Marusich <cmmarusich@gmail.com>. * guix/scripts/substitute.scm (fetch): Add 'https' alongside 'http'. Use 'open-connection-for-uri' instead of 'open-socket-for-uri'. Call 'setvbuf' only when PORT matches 'file-port?'. (http-multiple-get): Likewise. Change 'base-url' parameter to 'base-uri'. (fetch-narinfos)[do-fetch]: Add 'https' case alongside 'http'. Pass URI instead of URL to 'http-multiple-get'. * doc/guix.texi (Requirements): Move GnuTLS one level higher and mention HTTPS substitutes. (Substitutes): Mention HTTPS and recommend it. Explain why servers are not authenticated. Add "On Trusting Binaries" subsection.
2016-03-10gnu: isc-dhcp: Update bundled bind to 9.9.8-P4 [fixes CVE-2016-1285, ↵Efraim Flashner
CVE-2016-1286]. * gnu/packages/admin.scm (isc-dhcp): Update bundled bind to 9.9.8-P4.
2016-03-10gnu: bind-utils: Update to 9.10.3-P4 [fixes CVE-2016-1285, CVE-2016-1286].Efraim Flashner
* gnu/packages/dns.scm (bind-utils): Update to 9.10.3-P4.
2016-03-10gnu: custom-gcc: Delete broken or conflicting executables.Ricardo Wurmus
* gnu/packages/gcc.scm (custom-gcc)[arguments]: Add phase to remove executables that are non-functional or conflict with the executables of "gcc".
2016-03-10gnu: nautilus: Don't propagate gtk+.宋文武
* gnu/packages/gnome.scm (nautilus): Move gtk+ from propagated-inputs to inputs.
2016-03-09substitute: Error out on unsupported URL schemes.Ludovic Courtès
Reported in <http://bugs.gnu.org/22937> by Chris Marusich <cmmarusich@gmail.com>. * guix/scripts/substitute.scm (fetch): Add 'else' case and call 'leave'.
2016-03-09ui: Do not call 'port-filename' on closed file ports.Ludovic Courtès
* guix/ui.scm (call-with-error-handling)[port-filename*]: New procedure. Use it in the 'nar-error?' case.
2016-03-09gnu: texlive: Make texlive-bin and texlive-texmf private.Andreas Enge
* gnu/packages/texlive.scm (texlive-bin, texlive-texmf): Define the variables as non-public; they should not be installed into a profile.
2016-03-09gnu: po4a: Use texlive-minimal instead of texlive-bin.Andreas Enge
* gnu/packages/gettext.scm (po4a)[inputs]: Replace texlive-bin by texlive-minimal.
2016-03-09gnu: statistics: Remove import of unused texlive module.Andreas Enge
* gnu/packages/statistics.scm: Do not import (gnu packages texlive).
2016-03-09gnu: gnuplot: Use texlive-minimal instead of texlive-bin.Andreas Enge
* gnu/packages/maths.scm (gnuplot)[inputs]: Replace texlive-bin by texlive-minimal.
2016-03-09gnu: simple-scan: Update to 3.19.91.Tobias Geerinckx-Rice
* gnu/packages/gnome.scm (simple-scan): Update to 3.19.91. [arguments]: Add 'clean' phase.
2016-03-09gnu: pidgin-otr: Update to 4.0.2.Mark H Weaver
* gnu/packages/messaging.scm (pidgin-otr): Update to 4.0.2.
2016-03-09gnu: libotr: Remove version 3.2.1.Andreas Enge
* gnu/packages/messaging.scm (libotr-3): Remove variable.
2016-03-09libotr: Update to 4.1.1 [fixes CVE-2016-2851].Leo Famulari
* gnu/packages/messaging.scm (libotr): Update to 4.1.1. [native-inputs]: New field.
2016-03-09gnu: complexity: Update to 1.9.Ludovic Courtès
* gnu/packages/code.scm (complexity): Update to 1.9.
2016-03-09upstream: Fix 'signature-urls' coalescing.Ludovic Courtès
Previously, the resulting 'signature-urls' would contain N times the same URL. * guix/upstream.scm (coalesce-sources): Fix TWO in 'signature-urls'. * tests/upstream.scm: New file. * Makefile.am (SCM_TESTS): Add it.
2016-03-09doc: Add note on store immutability.Ludovic Courtès
* doc/guix.texi (The Store): Mention "store items" and the database location. Add note on the store's immutability.
2016-03-09gnu: Add liblangtag.Efraim Flashner
* gnu/packages/libreoffice.scm (liblangtag): New variable. Co-authored-by: Andreas Enge <andreas@enge.fr>
2016-03-09gnu: libreoffice: Enable parallel build.Andreas Enge
* gnu/packages/libreoffice.scm (libreoffice)[arguments]: Enable parallel build.
2016-03-08system: Explicitly set umask to 022 in /etc/profile.Ludovic Courtès
Fixes <http://bugs.gnu.org/22650>. Reported by myglc2 <myglc2@gmail.com>. * gnu/system.scm (operating-system-etc-service)[profile]: Invoke 'umask'.
2016-03-08guix build: Add '--quiet'.Ludovic Courtès
Fixes <http://bugs.gnu.org/19772>. Reported by Andrei Osipov <andrspv@gmail.com>. * guix/scripts/build.scm (show-help, %options): Add --quiet. (guix-build): Parameterize 'current-build-output-port' accordingly. * doc/guix.texi (Invoking guix build): Use it in example. (Additional Build Options): Document it.
2016-03-08packages: Gracefully report packages not found.Ludovic Courtès
Fixes a thinko introduced in 1b846da8c372bee78851439fd9e72b2499115e5a that would lead to a backtrace when looking for an unknown package. * gnu/packages.scm (%find-package): Correct logic when checking for FALLBACK?.
2016-03-08packages: Support the deprecated "NAME-VERSION" syntax.Ludovic Courtès
Fixes a typo introduced in 1b846da8c372bee78851439fd9e72b2499115e5a that would lead to a backtrace when using the deprecated syntax. * gnu/packages.scm (%find-package): Turn the first argument to 'call-with-values' into a thunk. Use #:select instead of '@' to select the right 'package-name->name+version' procedure.
2016-03-08packages: Clarify NAME-VERSION deprecation message.Ludovic Courtès
* gnu/packages.scm (%find-package): Clarify message; remove trailing period.
2016-03-08guix system: Write the GC root on the target file system.Ludovic Courtès
Fixes <http://bugs.gnu.org/22802>. Reported by Jookia <166291@gmail.com>. * guix/scripts/system.scm (install-grub*): Prepend TARGET to GC-ROOT.
2016-03-08emacs: Gracefully handle wrong package names passed to 'guix-edit'.Ludovic Courtès
Fixes <http://bugs.gnu.org/22933>. * emacs/guix-main.scm (package-location-string): Rewrite to handle the case where 'packages-by-name' returns the empty list. Co-authored-by: Mathieu Lirzin <mthl@gnu.org>
2016-03-08gnu: jasper: Add fixes for CVE-2016-1577, CVE-2016-2089, CVE-2016-2116.Efraim Flashner
* gnu/packages/patches/jasper-CVE-2016-1557.patch, gnu/packages/patches/jasper-CVE-2016-2089.patch, gnu/packages/patches/jasper-CVE-2016-2116.patch: New files. * gnu-system.am (dist_patch_DATA): Add them. * gnu/packages/image.scm (jasper)[source]: Add patches.
2016-03-07gnu: libreoffice: Update to 5.0.5.2 [fixes CVE-2016-{0794, 0795}].Leo Famulari
* gnu/packages/libreoffice.scm (libreoffice): Update to 5.0.5.2.
2016-03-07gnu: linux-libre: Update to 4.1.19.Mark H Weaver
* gnu/packages/linux.scm (linux-libre): Update to 4.1.19.
2016-03-07gnu: linux-libre: Update to 4.4.4.Mark H Weaver
* gnu/packages/linux.scm (linux-libre): Update to 4.4.4.
2016-03-08packages: Cache the result of 'input-grafts'.Ludovic Courtès
This reduces the wall-clock time of guix environment gnutls --pure -E true by ~35%. * guix/packages.scm (%graft-cache): New variable. (input-graft): Use 'cached' to cache to %GRAFT-CACHE.