Alpine 3.18.4 released

We are pleased to announce the release of Alpine Linux 3.18.4, a maintenance release of the 3.18 series. This release includes various bug fixes and security updates.

The full lists of changes can be found in the git log.

Git Shortlog

Alex McGrath (1):
      community/transmission: upgrade to 4.0.4

Andy Postnikov (9):
      community/php82-pecl-couchbase: upgrade to 4.1.5
      community/php81-pecl-couchbase: upgrade to 4.1.5
      community/php81-pecl-mailparse: upgrade to 3.1.6
      main/nodejs: security upgrade to 18.17.1
      community/php82: upgrade to 8.2.9
      community/php82: upgrade to 8.2.10
      community/php81: upgrade to 8.1.23
      community/php81-pecl-redis: upgrade to 6.0.0
      community/php82-pecl-redis: upgrade to 6.0.0

Antoine Martin (9):
      community/dotnet7-build: upgrade to 7.0.110
      community/dotnet7-runtime: upgrade to 7.0.10
      community/dotnet6-build: upgrade to 6.0.121
      community/dotnet6-runtime: upgrade to 6.0.21
      community/dotnet6-build: upgrade to 6.0.122
      community/dotnet6-runtime: upgrade to 6.0.22
      community/git-annex: upgrade to 10.20230828
      community/dotnet7-build: security upgrade to 7.0.111
      community/dotnet7-runtime: security upgrade to 7.0.11

Bart Ribbers (1):
      community/koko: make it easier to update geodata

Celeste (27):
      main/mosquitto: upgrade to 2.0.16
      main/mosquitto: upgrade to 2.0.17
      community/neo4j: upgrade to 4.4.25
      community/java-netty-transport-native: upgrade to 4.1.97
      community/vnstat: upgrade to 2.11
      community/python3-tkinter: upgrade to 3.11.5
      main/python3: security upgrade to 3.11.5
      community/xrdp: security upgrade to 0.9.23
      community/borgbackup: security upgrade to 1.2.6
      community/open-vm-tools: security upgrade to 12.3.0
      community/py3-django: security upgrade to 4.2.5
      main/mariadb: upgrade to 10.11.5
      main/redis: security upgrade to 7.0.13
      community/neovim: upgrade to 0.9.2
      community/py3-openssl: upgrade to 23.2.0
      community/ruby-pkg-config: upgrade to 1.5.5
      community/ruby-timecop: upgrade to 0.9.8
      community/netatalk: security upgrade to 3.1.17
      main/cups: security upgrade to 2.4.7
      main/curl: security upgrade to 8.3.0
      community/minio: upgrade to 0.20230920.224955
      main/bind: security upgrade to 9.18.19
      community/stunnel: upgrade to 5.71
      community/neo4j: upgrade to 4.4.26
      community/keepassxc: upgrade to 2.7.6
      community/synapse: security upgrade to 1.93.0
      community/xrdp: security upgrade to

Dhruvin Gandhi (1):
      community/hledger-interest: upgrade to 1.6.6

Duncan Bellamy (3):
      main/mariadb: add fmt10 patches
      community/ceph16: upgrade to 16.2.14
      community/py3-cryptography: security upgrade to 41.0.3 for CVE-2023-38325

Elly Fong-Jones (1):
      community/chromium: roll 3.18-stable to 117.0.5938.62

Francesco Colista (7):
      community/py3-sentry-sdk: upgrade to 1.24.0
      community/perl-business-isbn-data: upgrade to 20230516.001
      main/sofia-sip: bump pkgrel
      community/lua-resty-lock: backport from edge
      community/lua-resty-lock: added missing dep
      community/lua-resty-lock: bump pkgrel due to added depend
      community/lua-resty-lock: fix build due to luajit missing for ppc64 and riscv64

Henrik Riomar (3):
      main/intel-ucode: security upgrade to 20230808
      main/xen: security upgrade to 4.17.2
      community/nats-server: upgrade to 2.9.22

Hugo Osvaldo Barrera (1):
      community/linux-edge: set CONFIG_KEXEC=y

J0WI (5):
      community/firefox-esr: security upgrade to 115.1.0
      community/thunderbird: security upgrade to 115.1.0
      community/ntpsec: security upgrade to 1.2.2a
      main/procps-ng: security upgrade to 4.0.4
      community/wolfssl: upgrade to 5.6.3

Jake Buchholz Göktürk (1):
      main/tiny-cloud: [3.18] upgrade to 3.0.2

Jakub Jirutka (15):
      community/apk-deploy-tool: upgrade to 0.5.3
      main/postgresql15: security upgrade to 15.4
      main/postgresql14: security upgrade to 14.9
      community/postgresql13: security upgrade to 13.12
      community/postgresql12: security upgrade to 12.16
      community/qemu-openrc: upgrade to 0.11.1
      community/jetty-runner: use exec in jetty-runner script
      community/jetty-runner: init: allow to override $command
      community/jetty-runner: check server_{access,out}_log location
      community/jetty-runner: upgrade to
      community/jetty-runner: fix perms and backport rest of changes from edge
      community/jetty-runner: add $start_wait to init script
      main/one-context: upgrade to 0.8.0
      main/linux-lts: enable EFI_ZBOOT on aarch64
      community/alpine-make-vm-image: upgrade to 0.12.0

Jakub Panek (3):
      community/rust: security upgrade to 1.71.1, take ownership
      community/rust-analyzer: upgrade to 2023.08.28, takeover maintainership
      community/rust-analyzer: upgrade to 2023.09.18

Jiri Kastner (1):
      mariadb: re-enable partition plugin

Kaarle Ritvanen (1):
      community/py3-django-oscar: align with upstream

Kevin Daudt (5):
      community/docker-cli-buildx: backport host header patch to docker
      community/tea: fix checksum filename
      community/vault: security upgrade to 1.13.5
      community/nfpm: upgrade to 2.32.0
      community/qemu: upgrade to 8.0.5

Leonardo Arena (1):
      community/nextcloud: upgrade to 26.0.5

Michał Polański (2):
      community/py3-trove-classifiers: upgrade to 2023.9.19
      main/openssl: upgrade to 3.1.3

Milan P. Stanić (12):
      community/linux-edge: upgrade to 6.4.9
      main/haproxy: bugfix upgrade to 2.6.15
      community/linux-edge: upgrade to 6.4.10
      community/qemu: upgrade to 8.0.4
      community/linux-edge: upgrade to 6.4.12
      community/linux-edge: upgrade to 6.5.0
      main/postfix: bugfix upgrade to 3.8.2
      community/linux-edge: upgrade to 6.5.1
      community/linux-edge: upgrade to 6.5.2
      community/mutt: bugfix upgrade to 2.2.12
      community/linux-edge: upgrade to 6.5.3
      community/linux-edge: upgrade to 6.5.5

Natanael Copa (104):
      community/gitlab-runner: backport docker cli fix
      main/samba: add secfixes info
      main/samba: add secfixes comment
      main/linux-lts: upgrade to 6.1.44
      community/jool-modules-lts: rebuild against kernel 6.1.44-r0
      community/rtl8821ce-lts: rebuild against kernel 6.1.44-r0
      community/rtpengine-lts: rebuild against kernel 6.1.44-r0
      community/virtio_vmmci-lts: rebuild against kernel 6.1.44-r0
      community/vmm_clock-lts: rebuild against kernel 6.1.44-r0
      main/xtables-addons-lts: rebuild against kernel 6.1.44-r0
      main/zfs-lts: rebuild against kernel 6.1.44-r0
      main/linux-lts: upgrade to 6.1.45
      community/jool-modules-lts: rebuild against kernel 6.1.45-r0
      community/rtl8821ce-lts: rebuild against kernel 6.1.45-r0
      community/rtpengine-lts: rebuild against kernel 6.1.45-r0
      community/virtio_vmmci-lts: rebuild against kernel 6.1.45-r0
      community/vmm_clock-lts: rebuild against kernel 6.1.45-r0
      main/xtables-addons-lts: rebuild against kernel 6.1.45-r0
      main/zfs-lts: rebuild against kernel 6.1.45-r0
      main/linux-lts: fix x86 PAE and HIGHMEM
      main/linux-lts: upgrade to 6.1.46
      community/jool-modules-lts: rebuild against kernel 6.1.46-r0
      community/rtl8821ce-lts: rebuild against kernel 6.1.46-r0
      community/rtpengine-lts: rebuild against kernel 6.1.46-r0
      community/virtio_vmmci-lts: rebuild against kernel 6.1.46-r0
      community/vmm_clock-lts: rebuild against kernel 6.1.46-r0
      main/xtables-addons-lts: rebuild against kernel 6.1.46-r0
      main/zfs-lts: rebuild against kernel 6.1.46-r0
      main/linux-lts: use default log buffer size
      main/linux-lts: upgrade to 6.1.47
      community/jool-modules-lts: rebuild against kernel 6.1.47-r0
      community/rtl8821ce-lts: rebuild against kernel 6.1.47-r0
      community/rtpengine-lts: rebuild against kernel 6.1.47-r0
      community/virtio_vmmci-lts: rebuild against kernel 6.1.47-r0
      community/vmm_clock-lts: rebuild against kernel 6.1.47-r0
      main/xtables-addons-lts: rebuild against kernel 6.1.47-r0
      main/zfs-lts: rebuild against kernel 6.1.47-r0
      main/sofia-sip: backport of support for forking calls. See mr #50659
      main/linux-lts: upgrade to 6.1.49
      community/jool-modules-lts: rebuild against kernel 6.1.49-r0
      community/rtl8821ce-lts: rebuild against kernel 6.1.49-r0
      community/rtpengine-lts: rebuild against kernel 6.1.49-r0
      community/virtio_vmmci-lts: rebuild against kernel 6.1.49-r0
      community/vmm_clock-lts: rebuild against kernel 6.1.49-r0
      main/xtables-addons-lts: rebuild against kernel 6.1.49-r0
      main/zfs-lts: rebuild against kernel 6.1.49-r0
      community/thunderbird: upgrade to 115.1.1
      main/sofia-sip: actually add the patch
      main/linux-lts: upgrade to 6.1.50
      community/jool-modules-lts: rebuild against kernel 6.1.50-r0
      community/rtl8821ce-lts: rebuild against kernel 6.1.50-r0
      community/rtpengine-lts: rebuild against kernel 6.1.50-r0
      community/virtio_vmmci-lts: rebuild against kernel 6.1.50-r0
      community/vmm_clock-lts: rebuild against kernel 6.1.50-r0
      main/xtables-addons-lts: rebuild against kernel 6.1.50-r0
      main/zfs-lts: rebuild against kernel 6.1.50-r0
      main/linux-lts: upgrade to 6.1.51
      community/jool-modules-lts: rebuild against kernel 6.1.51-r0
      community/rtl8821ce-lts: rebuild against kernel 6.1.51-r0
      community/rtpengine-lts: rebuild against kernel 6.1.51-r0
      community/virtio_vmmci-lts: rebuild against kernel 6.1.51-r0
      community/vmm_clock-lts: rebuild against kernel 6.1.51-r0
      main/xtables-addons-lts: rebuild against kernel 6.1.51-r0
      main/zfs-lts: rebuild against kernel 6.1.51-r0
      main/linux-lts: upgrade to 6.1.52
      community/jool-modules-lts: rebuild against kernel 6.1.52-r0
      community/rtl8821ce-lts: rebuild against kernel 6.1.52-r0
      community/rtpengine-lts: rebuild against kernel 6.1.52-r0
      community/virtio_vmmci-lts: rebuild against kernel 6.1.52-r0
      community/vmm_clock-lts: rebuild against kernel 6.1.52-r0
      main/xtables-addons-lts: rebuild against kernel 6.1.52-r0
      main/zfs-lts: rebuild against kernel 6.1.52-r0
      Revert "main/linux-lts: enable EFI_ZBOOT on aarch64"
      main/linux-lts: upgrade to 6.1.53
      community/jool-modules-lts: rebuild against kernel 6.1.53-r0
      community/rtl8821ce-lts: rebuild against kernel 6.1.53-r0
      community/rtpengine-lts: rebuild against kernel 6.1.53-r0
      community/virtio_vmmci-lts: rebuild against kernel 6.1.53-r0
      community/vmm_clock-lts: rebuild against kernel 6.1.53-r0
      main/xtables-addons-lts: rebuild against kernel 6.1.53-r0
      main/zfs-lts: rebuild against kernel 6.1.53-r0
      main/libwebp: upgrade to 1.3.2
      community/lua-resty-session: upgrade to 3.10
      community/lua-bitop: fix with lua 5.2+ and run tests
      main/linux-lts: upgrade to 6.1.54
      community/jool-modules-lts: rebuild against kernel 6.1.54-r0
      community/rtl8821ce-lts: rebuild against kernel 6.1.54-r0
      community/rtpengine-lts: rebuild against kernel 6.1.54-r0
      community/virtio_vmmci-lts: rebuild against kernel 6.1.54-r0
      community/vmm_clock-lts: rebuild against kernel 6.1.54-r0
      main/xtables-addons-lts: rebuild against kernel 6.1.54-r0
      main/zfs-lts: rebuild against kernel 6.1.54-r0
      main/linux-lts: upgrade to 6.1.55
      community/jool-modules-lts: rebuild against kernel 6.1.55-r0
      community/rtl8821ce-lts: rebuild against kernel 6.1.55-r0
      community/rtpengine-lts: rebuild against kernel 6.1.55-r0
      community/virtio_vmmci-lts: rebuild against kernel 6.1.55-r0
      community/vmm_clock-lts: rebuild against kernel 6.1.55-r0
      main/xtables-addons-lts: rebuild against kernel 6.1.55-r0
      main/zfs-lts: rebuild against kernel 6.1.55-r0
      main/linux-rpi: upgrade to 6.1.55
      community/jool-modules-rpi: rebuild against kernel 6.1.55-r0
      main/zfs-rpi: rebuild against kernel 6.1.55-r0
      ===== release 3.18.4 =====

Oleg Titov (1):
      community/k3s: security upgrade to

Pablo Correa Gómez (1):
      community/gnome-console: upgrade to 44.4

Peter van Dijk (1):
      community/dnsdist: upgrade to 1.8.1

Sertonix (1):
      community/keepassxc: fix opening doc from gui

Simon Frankenberger (1):
      community/openjdk17: upgrade to 17.0.8

Simon Rupf (1):
      community/clamav: upgrade to 1.1.2

Siva Mahadevan (1):
      community/linux-edge: add initial support for pinebook pro

Steven Guikal (1):
      community/py3-flask: security upgrade to 2.2.5 (CVE-2023-30861)

Sören Tempel (3):
      community/go: upgrade to 1.20.8
      community/*: rebuild with Go 1.20.8
      main/busybox: update secfixes (CVE-2022-48174)

Zach DeCook (1):
      community/verovio: upgrade to 3.15.0 and fix py3-verovio subpackage

bin456789 (1):
      main/linux-lts: enable Google Virtual NIC (gVNIC) driver

jahway603 (1):
      community/nextcloud: upgrade to 26.0.7

jane400 (1):
      main/libwebp: patch CVE-2023-4863

lauren n. liberda (2):
      community/yt-dlp: mark CVE as resolved
      community/libvpx: hotfix for CVE-2023-5217

macmpi (4):
      community/raspberrypi-utils: upgrade to 0.20230809
      main/raspberrypi-bootloader: upgrade to 1.20230811
      community/raspberrypi-utils: upgrade to 0.20230919
      main/raspberrypi-bootloader: upgrade to 1.20230921

omni (16):
      community/qt5-qtwebengine: chromium security upgrade
      community/tor: upgrade to
      community/tor: disable a test also for x86_64
      community/tor: upgrade to
      community/qt5-qtwebengine: chromium security upgrade
      community/arti: upgrade to 1.1.8
      community/qt5-qtwebengine: chromium security upgrade
      main/libarchive: security upgrade to 3.7.2
      community/qt5-qtimageformats: patch CVE-2023-4863
      community/qt6-qtimageformats: patch CVE-2023-4863
      community/qt5-qtwebengine: chromium security upgrade
      community/tor: upgrade to
      main/xen: add mitigations for XSA-437 & XSA-438
      main/linux-lts: fix pkgrel
      community/tor: upgrade to
      main/xen: add mitigations for XSA-439

ptrcnull (5):
      community/telegraf: fix embedding version
      community/firefox: upgrade to 116.0.3
      community/tea: rebuild against go 1.20.7
      community/firefox: fix sqlite3 on ppc with clang
      community/kitty: disable check on ppc64le

streaksu (6):
      community/limine: upgrade to 4.20230811.0
      community/limine: take over maintainership
      community/limine: upgrade to 4.20230830.0
      community/limine: upgrade to 4.20230911.0
      community/limine: upgrade to 4.20230917.0
      community/limine: upgrade to 4.20230924.0