Alpine Linux 3.9.4 released

The Alpine Linux project is pleased to announce the immediate availability of version 3.9.4 of its Alpine Linux operating system.

The full lists of changes can be found in the git log and bug tracker.

Git Shortlog

Andy Postnikov (1):
      community/php7: security upgrade to 7.2.18 (CVE-2019-11036)

Carlo Landmeter (1):
      scripts: add back rpi kernel to armhf

DDoSolitary (1):
      main/linux-vanilla: Enable CONFIG_UEVENT_HELPER for s390x.

Franck Nijhof (1):
      community/lua-resty-http: upgrade to 0.13

Henrik Riomar (8):
      main/wpa_supplicant: fix slow start
      community/pdns-recursor: after entropy
      main/bind: fix slow start
      main/haveged: add missing provide
      main/haveged: more samples in check()
      main/unbound: after entropy
      main/openssh: after entropy
      main/bind: bump pkgrel

J0WI (12):
      community/openjdk7: security upgrade to 7.211.2.6.17
      main/gnutls: upgrade to 3.6.5
      main/gnutls: upgrade to 3.6.6
      main/gnutls: security upgrade to 3.6.7
      main/tzdata: upgrade to 2019a
      main/imagemagick: security upgrade to 7.0.8.38
      main/ldb: upgrade to 1.3.8
      main/samba: security upgrade to 4.8.11
      community/openjdk8: security upgrade to 8.212.04
      community/imagemagick6: security upgrade to 6.9.10-44
      main/imagemagick: security upgrade to 7.0.8-44
      main/dovecot: security upgrade to 2.3.6 (CVE-2019-11494, CVE-2019-11499)

Jakub Jirutka (3):
      main/nginx: upgrade lua-nginx-module to 0.10.15
      main/mariadb: reformat init script
      main/mariadb: fix init script not recognizing started instance

Leo (1):
      main/libpng: upgrade to 1.6.37

Leonardo Arena (11):
      community/nextcloud: upgrade to 15.0.7
      community/webkit2gtk: security upgrade to 2.22.7
      community/php7: security upgrade to 7.2.17
      main/imagemagick: use the upstream source, not a mirror
      main/samba: attempt to fix build on armv7
      main/wpa_supplicant: security fixes
      community/freerdp: security upgrade to 2.0.0_rc4
      main/clamav: security upgrade to 0.100.3
      community/zabbix: upgrade to 4.0.7
      main/freeradius: security fixes (CVE-2019-11234, CVE-2019-11235)
      community/wireshark: security upgrade to 2.6.8

Marcel Haazen (1):
      main/mariadb: replace rpm parameter with datadir parameter

Matt Merhar (1):
      main/haveged: rework init dependencies

Matthias Neugebauer (1):
      main/linux-vanilla: Enable CONFIG_CEPH_LIB_USE_DNS_RESOLVER

Mike Sullivan (1):
      main/linux-vanilla: add commonly used scsi modules for ppc64le

Natanael Copa (37):
      main/libxslt: upgrade to 1.1.33
      main/libxslt: security fix for CVE-2019-11068
      main/bind: security upgrade to 9.12.4_p1 (CVE-2018-5743,CVE-2019-6467)
      main/bind: fix build on non-x86
      community/shadow: fix conflict with util-linux-doc and coreutils-doc
      main/linux-vanilla: upgrade to 4.19.36
      main/linux-vanilla: enable Realtek RTL8822BE driver
      main/linux-vanilla: upgrade to 4.19.40
      community/virtualbox-guest-modules-vanilla: rebuild against kernel 4.19.40-r0
      main/dahdi-linux-vanilla: rebuild against kernel 4.19.40-r0
      main/devicemaster-linux-vanilla: rebuild against kernel 4.19.40-r0
      main/drbd9-vanilla: rebuild against kernel 4.19.40-r0
      main/xtables-addons-vanilla: rebuild against kernel 4.19.40-r0
      main/spl-vanilla: rebuild against kernel 4.19.40-r0
      main/zfs-vanilla: rebuild against kernel 4.19.40-r0
      main/linux-rpi: upgrade to 4.19.40
      community/znc: security fix for CVE-2019-9917
      main/mercurial: security upgrade to 4.9.1 (CVE-2019-3902)
      main/file: security upgrade to 5.36
      main/strongswan: enable aesni on x86_64
      main/lua5.3: security fix for CVE-2019-6706
      main/ruby: security upgrade to 2.5.5
      main/ruby: fix secfixes comment
      main/python2: sec upgrade to 2.7.16 (CVE-2018-14647)
      main/python2: security fixes (CVE-2019-9636, CVE-2019-9948)
      main/nginx: disable lua-nginx-module on s390x
      main/linux-vanilla: upgrade to 4.19.41
      community/virtualbox-guest-modules-vanilla: rebuild against kernel 4.19.41-r0
      main/dahdi-linux-vanilla: rebuild against kernel 4.19.41-r0
      main/devicemaster-linux-vanilla: rebuild against kernel 4.19.41-r0
      main/drbd9-vanilla: rebuild against kernel 4.19.41-r0
      main/spl-vanilla: rebuild against kernel 4.19.41-r0
      main/xtables-addons-vanilla: rebuild against kernel 4.19.41-r0
      main/zfs-vanilla: rebuild against kernel 4.19.41-r0
      main/linux-rpi: upgrade to 4.19.41
      main/raspberrypi-bootloader: upgrade to 1.20190401
      ==== release 3.9.4 ====

Richard Mortier (1):
      main/alpine-conf: fix invocation of `openssl` when listing ciphers

Thomas Liske (1):
      main/linux-vanilla: enable ipset set type hash:ip,mac

Timo Teräs (9):
      main/linux-firmware: upgrade to 20190322, update rpi firmwares
      main/alpine-conf: include associated firmware files to modloop
      scripts/mkimg.arm.sh: remove manual (now redundant) clm_blob spec
      community/perl-test-nginx: backport from edge
      community/lua-resty-string: backport from edge
      community/lua-resty-hmac: backport from edge
      community/lua-resty-session: backport from edge
      community/lua-resty-jwt: backport from edge
      community/lua-resty-openidc: backport from edge

Tuan Hoang (1):
      main/linux-vanilla: remove KERNEL_NOBP on s390x

alpine-mips-patches (1):
      main/libsndfile: update CVE-2018-19758 fix from upstream

prspkt (1):
      community/flatpak: security upgrade to 1.0.8

tcely (5):
      main/bind: security upgrade to 9.12.3-P4
      Revert "main/bind: security upgrade to 9.12.3-P4"
      main/bind: security upgrade to 9.12.3_p4
      main/bind: bump pkgrel for reverted commit
      main/py3-ply: new aport