| Commit message (Expand) | Author | Age | Files | Lines |
* | Sun Mar 24 18:21:46 UTC 2024...e/emacs-29.3-x86_64-1.txz: Upgraded.
Emacs 29.3 is an emergency bugfix release intended to fix several security
vulnerabilities described below:
Arbitrary Lisp code is no longer evaluated as part of turning on Org mode.
This is for security reasons, to avoid evaluating malicious Lisp code.
New buffer-local variable 'untrusted-content'. When this is non-nil, Lisp
programs should treat buffer contents with extra caution.
Gnus now treats inline MIME contents as untrusted. To get back previous
insecure behavior, 'untrusted-content' should be reset to nil in the buffer.
LaTeX preview is now by default disabled for email attachments. To get back
previous insecure behavior, set the variable 'org--latex-preview-when-risky'
to a non-nil value.
Org mode now considers contents of remote files to be untrusted.
Remote files are recognized by calling 'file-remote-p'.
(* Security fix *)
l/enchant-2.6.8-x86_64-1.txz: Upgraded.
l/gnu-efi-3.0.18-x86_64-1.txz: Upgraded.
l/libproxy-0.5.4-x86_64-2.txz: Rebuilt.
Rebuilt with -Dpacrunner-duktape=true. Thanks to gmgf.
l/libxkbcommon-1.7.0-x86_64-1.txz: Upgraded.
l/python-hatchling-1.22.4-x86_64-1.txz: Upgraded.
x/libpciaccess-0.18.1-x86_64-1.txz: Upgraded.
x/xdm-1.1.15-x86_64-1.txz: Upgraded.
x/xedit-1.2.4-x86_64-1.txz: Upgraded.
x/xload-1.2.0-x86_64-1.txz: Upgraded.
extra/emacs-regular-build/emacs-29.3-x86_64-1_regular.txz: Upgraded.
(* Security fix *)
20240324182146 | Patrick J Volkerding | 2024-03-24 | 1 | -1/+1 |
* | Thu Feb 8 22:17:18 UTC 2024...a/kernel-firmware-20240208_fbef4d3-noarch-1.txz: Upgraded.
a/kernel-generic-6.6.16-x86_64-1.txz: Upgraded.
a/kernel-huge-6.6.16-x86_64-1.txz: Upgraded.
a/kernel-modules-6.6.16-x86_64-1.txz: Upgraded.
d/kernel-headers-6.6.16-x86-1.txz: Upgraded.
k/kernel-source-6.6.16-noarch-1.txz: Upgraded.
-VIDEO_ATOMISP m
-VIDEO_ATOMISP_GC0310 n
-VIDEO_ATOMISP_GC2235 n
-VIDEO_ATOMISP_ISP2401 n
-VIDEO_ATOMISP_LM3554 n
-VIDEO_ATOMISP_MSRLIST_HELPER n
-VIDEO_ATOMISP_MT9M114 n
-VIDEO_ATOMISP_OV2722 n
-VIDEO_ATOMISP_OV5693 n
INTEL_ATOMISP y -> n
+INTEL_ATOMISP2_PM m
l/enchant-2.6.7-x86_64-1.txz: Upgraded.
l/libsecret-0.21.3-x86_64-1.txz: Upgraded.
l/libuv-1.48.0-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/rust-1.76.0-x86_64-1.txz: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240208221718 | Patrick J Volkerding | 2024-02-09 | 1 | -1/+1 |
* | Wed Feb 7 20:07:29 UTC 2024...a/hwdata-0.379-noarch-1.txz: Upgraded.
ap/inxi-3.3.33_1-noarch-1.txz: Upgraded.
ap/rpm-4.19.1.1-x86_64-1.txz: Upgraded.
kde/kstars-3.6.9-x86_64-1.txz: Upgraded.
l/enchant-2.6.5-x86_64-1.txz: Upgraded.
Reverted to non-broken version.
l/expat-2.6.0-x86_64-1.txz: Upgraded.
This update fixes security issues:
Fix quadratic runtime issues with big tokens that can cause
denial of service.
Fix billion laughs attacks for users compiling *without* XML_DTD
defined (which is not common).
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2023-52425
https://www.cve.org/CVERecord?id=CVE-2023-52426
(* Security fix *)
l/orc-0.4.37-x86_64-1.txz: Upgraded.
l/pipewire-1.0.3-x86_64-2.txz: Rebuilt.
Use wireplumber-0.4.17, as the newer version's support for elogind seems to
be broken, and this prevents bluetooth from connecting properly.
Thanks to mistfire and rizitis.
x/libwacom-2.10.0-x86_64-1.txz: Upgraded.
xap/hexchat-2.16.2-x86_64-1.txz: Upgraded.
extra/xv/xv-5.0.0-x86_64-1.txz: Upgraded.
20240207200729 | Patrick J Volkerding | 2024-02-07 | 1 | -1/+1 |
* | Mon Feb 5 19:54:29 UTC 2024...a/xfsprogs-6.6.0-x86_64-1.txz: Upgraded.
l/enchant-2.6.6-x86_64-1.txz: Upgraded.
l/libgsf-1.14.52-x86_64-1.txz: Upgraded.
l/sbc-2.0-x86_64-1.txz: Upgraded.
n/stunnel-5.72-x86_64-1.txz: Upgraded.
x/libXext-1.3.6-x86_64-1.txz: Upgraded.
x/libXvMC-1.0.14-x86_64-1.txz: Upgraded.
x/libxkbfile-1.1.3-x86_64-1.txz: Upgraded.
x/makedepend-1.0.9-x86_64-1.txz: Upgraded.
x/xkeyboard-config-2.41-noarch-1.txz: Upgraded.
xfce/mousepad-0.6.2-x86_64-1.txz: Upgraded.
xfce/xfce4-screenshooter-1.10.5-x86_64-1.txz: Upgraded.
xfce/xfce4-terminal-1.1.2-x86_64-1.txz: Upgraded.
20240205195429 | Patrick J Volkerding | 2024-02-05 | 1 | -1/+1 |
* | Tue Jan 9 20:49:08 UTC 2024...a/mcelog-197-x86_64-1.txz: Upgraded.
ap/qpdf-11.8.0-x86_64-1.txz: Upgraded.
kde/qca-2.3.8-x86_64-1.txz: Upgraded.
l/enchant-2.6.5-x86_64-1.txz: Upgraded.
n/iproute2-6.7.0-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-115.6.1-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.thunderbird.net/en-US/thunderbird/115.6.1/releasenotes/
20240109204908 | Patrick J Volkerding | 2024-01-09 | 1 | -1/+1 |
* | Wed Dec 13 22:01:34 UTC 2023...a/kernel-firmware-20231212_c52dc25-noarch-1.txz: Upgraded.
a/kernel-generic-6.6.7-x86_64-1.txz: Upgraded.
a/kernel-huge-6.6.7-x86_64-1.txz: Upgraded.
a/kernel-modules-6.6.7-x86_64-1.txz: Upgraded.
d/kernel-headers-6.6.7-x86-1.txz: Upgraded.
k/kernel-source-6.6.7-noarch-1.txz: Upgraded.
kde/okteta-0.26.14-x86_64-1.txz: Upgraded.
l/enchant-2.6.4-x86_64-1.txz: Upgraded.
l/libxml2-2.12.3-x86_64-1.txz: Upgraded.
l/v4l-utils-1.26.1-x86_64-1.txz: Upgraded.
x/xorg-server-21.1.10-x86_64-1.txz: Upgraded.
This update fixes two security issues:
Out-of-bounds memory write in XKB button actions.
Out-of-bounds memory read in RRChangeOutputProperty and
RRChangeProviderProperty.
For more information, see:
https://lists.x.org/archives/xorg/2023-December/061517.html
https://www.cve.org/CVERecord?id=CVE-2023-6377
https://www.cve.org/CVERecord?id=CVE-2023-6478
(* Security fix *)
x/xorg-server-xephyr-21.1.10-x86_64-1.txz: Upgraded.
x/xorg-server-xnest-21.1.10-x86_64-1.txz: Upgraded.
x/xorg-server-xvfb-21.1.10-x86_64-1.txz: Upgraded.
x/xorg-server-xwayland-23.2.3-x86_64-1.txz: Upgraded.
This update fixes two security issues:
Out-of-bounds memory write in XKB button actions.
Out-of-bounds memory read in RRChangeOutputProperty and
RRChangeProviderProperty.
For more information, see:
https://lists.x.org/archives/xorg/2023-December/061517.html
https://www.cve.org/CVERecord?id=CVE-2023-6377
https://www.cve.org/CVERecord?id=CVE-2023-6478
(* Security fix *)
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20231213220134 | Patrick J Volkerding | 2023-12-13 | 1 | -1/+1 |
* | Sun Dec 3 20:53:14 UTC 2023...a/kernel-firmware-20231130_f63dd70-noarch-1.txz: Upgraded.
a/kernel-generic-6.1.65-x86_64-1.txz: Upgraded.
a/kernel-huge-6.1.65-x86_64-1.txz: Upgraded.
a/kernel-modules-6.1.65-x86_64-1.txz: Upgraded.
d/gdb-14.1-x86_64-1.txz: Upgraded.
d/kernel-headers-6.1.65-x86-1.txz: Upgraded.
k/kernel-source-6.1.65-noarch-1.txz: Upgraded.
l/enchant-2.6.3-x86_64-1.txz: Upgraded.
l/v4l-utils-1.26.0-x86_64-3.txz: Rebuilt.
Make sure ARIB-STD-B24.so is properly linked. Thanks to GazL.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/kernel-generic-6.6.4-x86_64-1.txz: Upgraded.
testing/packages/kernel-headers-6.6.4-x86-1.txz: Upgraded.
testing/packages/kernel-huge-6.6.4-x86_64-1.txz: Upgraded.
testing/packages/kernel-modules-6.6.4-x86_64-1.txz: Upgraded.
testing/packages/kernel-source-6.6.4-noarch-1.txz: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20231203205314 | Patrick J Volkerding | 2023-12-03 | 1 | -1/+1 |
* | Sat Oct 28 22:03:51 UTC 2023...d/rust-1.70.0-x86_64-3.txz: Rebuilt.
Fixed the installation of rls and added rust-analyzer (the successor to rls)
and rust-demangler. Thanks to Heinz Wiesinger.
l/enchant-2.6.2-x86_64-1.txz: Upgraded.
l/gexiv2-0.14.2-x86_64-2.txz: Rebuilt.
Recompiled against exiv2-0.28.0.
l/libsigc++3-3.6.0-x86_64-1.txz: Upgraded.
l/vid.stab-1.1.1-x86_64-1.txz: Upgraded.
x/ibus-m17n-1.4.23-x86_64-1.txz: Upgraded.
testing/packages/rust-1.73.0-x86_64-2.txz: Rebuilt.
Fixed the installation of rls and added rust-analyzer (the successor to rls)
and rust-demangler. Thanks to Heinz Wiesinger.
20231028220351 | Patrick J Volkerding | 2023-10-29 | 1 | -0/+1 |
* | Thu Oct 29 21:55:56 UTC 2020...a/aaa_elflibs-15.0-x86_64-26.txz: Rebuilt.
Upgraded: liblber-2.4.so.2.11.3, libldap-2.4.so.2.11.3, libmpc.so.3.2.1.
Added temporarily to allow for third-party packages to be recompiled:
libHalf.so.12.0.0, libIex-2_2.so.12.0.0, libIexMath-2_2.so.12.0.0,
libIlmImf-2_2.so.22.0.0, libIlmImfUtil-2_2.so.22.0.0,
libIlmThread-2_2.so.12.0.0, libImath-2_2.so.12.0.0,
libpoppler-qt4.so.4.11.0, libpoppler.so.79.0.0.
a/kernel-generic-5.4.73-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.73-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.73-x86_64-1.txz: Upgraded.
d/kernel-headers-5.4.73-x86-1.txz: Upgraded.
k/kernel-source-5.4.73-noarch-1.txz: Upgraded.
l/LibRaw-0.20.2-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/exiv2-0.27.3-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/gegl-0.4.26-x86_64-2.txz: Rebuilt.
Recompiled against openexr-2.5.3.
l/gexiv2-0.12.1-x86_64-1.txz: Upgraded.
Compiled against exiv2-0.27.3.
l/graphene-1.10.2-x86_64-1.txz: Added.
l/gst-plugins-base-1.18.1-x86_64-2.txz: Rebuilt.
Recompiled against system libgraphene.
l/ilmbase-2.2.0-x86_64-2.txz: Removed.
These libraries are now part of openexr.
l/imagemagick-7.0.10_34-x86_64-2.txz: Rebuilt.
Recompiled against LibRaw-0.20.2 and openexr-2.5.3.
l/openexr-2.5.3-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/poppler-20.10.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
Qt4 support dropped.
n/samba-4.13.1-x86_64-1.txz: Upgraded.
This update fixes security issues:
Missing handle permissions check in SMB1/2/3 ChangeNotify.
Denial-of-service vulnerabilities.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14318
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14323
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14383
(* Security fix *)
xap/geeqie-1.5.1-x86_64-2.txz: Rebuilt.
Recompiled against exiv2-0.27.3.
xap/gimp-2.10.22-x86_64-2.txz: Rebuilt.
Recompiled against openexr-2.5.3.
xap/xlockmore-5.66-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20201029215556 | Patrick J Volkerding | 2020-10-30 | 1 | -0/+1 |