From bc19f3bbd2593a1216aad20bbbff8996055565ed Mon Sep 17 00:00:00 2001 From: Patrick J Volkerding Date: Sun, 4 Feb 2024 19:37:40 +0000 Subject: Sun Feb 4 19:37:40 UTC 2024 patches/packages/libxml2-2.11.7-x86_64-1_slack15.0.txz: Upgraded. Fix the following security issue: xmlreader: Don't expand XIncludes when backtracking. For more information, see: https://www.cve.org/CVERecord?id=CVE-2024-25062 (* Security fix *) --- ChangeLog.rss | 20 ++++++++++-- ChangeLog.txt | 8 +++++ FILELIST.TXT | 38 +++++++++++----------- .../packages/libxml2-2.11.6-x86_64-1_slack15.0.txt | 11 ------- .../packages/libxml2-2.11.7-x86_64-1_slack15.0.txt | 11 +++++++ 5 files changed, 56 insertions(+), 32 deletions(-) delete mode 100644 patches/packages/libxml2-2.11.6-x86_64-1_slack15.0.txt create mode 100644 patches/packages/libxml2-2.11.7-x86_64-1_slack15.0.txt diff --git a/ChangeLog.rss b/ChangeLog.rss index ef90ea345..11c7b7a6f 100644 --- a/ChangeLog.rss +++ b/ChangeLog.rss @@ -11,9 +11,25 @@ Tracking Slackware development in git. en-us urn:uuid:c964f45e-6732-11e8-bbe5-107b4450212f - Sat, 3 Feb 2024 20:54:00 GMT - Sun, 4 Feb 2024 12:30:27 GMT + Sun, 4 Feb 2024 19:37:40 GMT + Mon, 5 Feb 2024 12:30:25 GMT maintain_current_git.sh v 1.17 + + Sun, 4 Feb 2024 19:37:40 GMT + Sun, 4 Feb 2024 19:37:40 GMT + https://git.slackware.nl/current/tag/?h=20240204193740 + 20240204193740 + + +patches/packages/libxml2-2.11.7-x86_64-1_slack15.0.txz: Upgraded. + Fix the following security issue: + xmlreader: Don't expand XIncludes when backtracking. + For more information, see: + https://www.cve.org/CVERecord?id=CVE-2024-25062 + (* Security fix *) + ]]> + + Sat, 3 Feb 2024 20:54:00 GMT Sat, 3 Feb 2024 20:54:00 GMT diff --git a/ChangeLog.txt b/ChangeLog.txt index 3663e5c91..506664297 100644 --- a/ChangeLog.txt +++ b/ChangeLog.txt @@ -1,3 +1,11 @@ +Sun Feb 4 19:37:40 UTC 2024 +patches/packages/libxml2-2.11.7-x86_64-1_slack15.0.txz: Upgraded. + Fix the following security issue: + xmlreader: Don't expand XIncludes when backtracking. + For more information, see: + https://www.cve.org/CVERecord?id=CVE-2024-25062 + (* Security fix *) ++--------------------------+ Sat Feb 3 20:54:00 UTC 2024 patches/packages/ca-certificates-20240203-noarch-1_slack15.0.txz: Upgraded. This update provides the latest CA certificates to check for the diff --git a/FILELIST.TXT b/FILELIST.TXT index 1406f1ef7..73a76b9f6 100644 --- a/FILELIST.TXT +++ b/FILELIST.TXT @@ -1,20 +1,20 @@ -Sat Feb 3 20:56:39 UTC 2024 +Sun Feb 4 19:40:17 UTC 2024 Here is the file list for this directory. If you are using a mirror site and find missing or extra files in the disk subdirectories, please have the archive administrator refresh the mirror. -drwxr-xr-x 12 root root 4096 2024-02-03 20:54 . +drwxr-xr-x 12 root root 4096 2024-02-04 19:37 . -rw-r--r-- 1 root root 5767 2022-02-02 22:44 ./ANNOUNCE.15.0 -rw-r--r-- 1 root root 16609 2022-03-30 19:03 ./CHANGES_AND_HINTS.TXT --rw-r--r-- 1 root root 1214446 2024-01-31 21:22 ./CHECKSUMS.md5 --rw-r--r-- 1 root root 163 2024-01-31 21:22 ./CHECKSUMS.md5.asc +-rw-r--r-- 1 root root 1214446 2024-02-03 20:57 ./CHECKSUMS.md5 +-rw-r--r-- 1 root root 163 2024-02-03 20:57 ./CHECKSUMS.md5.asc -rw-r--r-- 1 root root 17976 1994-06-10 02:28 ./COPYING -rw-r--r-- 1 root root 35147 2007-06-30 04:21 ./COPYING3 -rw-r--r-- 1 root root 19573 2016-06-23 20:08 ./COPYRIGHT.TXT -rw-r--r-- 1 root root 616 2006-10-02 04:37 ./CRYPTO_NOTICE.TXT --rw-r--r-- 1 root root 2087194 2024-02-03 20:54 ./ChangeLog.txt +-rw-r--r-- 1 root root 2087512 2024-02-04 19:37 ./ChangeLog.txt drwxr-xr-x 3 root root 4096 2013-03-20 22:17 ./EFI drwxr-xr-x 2 root root 4096 2022-02-02 08:21 ./EFI/BOOT -rw-r--r-- 1 root root 1187840 2021-06-15 19:16 ./EFI/BOOT/bootx64.efi @@ -25,7 +25,7 @@ drwxr-xr-x 2 root root 4096 2022-02-02 08:21 ./EFI/BOOT -rwxr-xr-x 1 root root 2504 2019-07-05 18:54 ./EFI/BOOT/make-grub.sh -rw-r--r-- 1 root root 10722 2013-09-21 19:02 ./EFI/BOOT/osdetect.cfg -rw-r--r-- 1 root root 1273 2013-08-12 21:08 ./EFI/BOOT/tools.cfg --rw-r--r-- 1 root root 1589767 2024-01-31 21:22 ./FILELIST.TXT +-rw-r--r-- 1 root root 1589767 2024-02-03 20:56 ./FILELIST.TXT -rw-r--r-- 1 root root 1572 2012-08-29 18:27 ./GPG-KEY -rw-r--r-- 1 root root 864745 2022-02-02 08:25 ./PACKAGES.TXT -rw-r--r-- 1 root root 8034 2022-02-02 03:36 ./README.TXT @@ -781,13 +781,13 @@ drwxr-xr-x 2 root root 4096 2022-12-17 19:52 ./pasture/source/samba -rw-r--r-- 1 root root 7921 2018-04-29 17:31 ./pasture/source/samba/smb.conf.default -rw-r--r-- 1 root root 7933 2018-01-14 20:41 ./pasture/source/samba/smb.conf.default.orig -rw-r--r-- 1 root root 536 2017-03-23 19:18 ./pasture/source/samba/smb.conf.diff.gz -drwxr-xr-x 4 root root 4096 2024-02-03 20:56 ./patches --rw-r--r-- 1 root root 101081 2024-02-03 20:56 ./patches/CHECKSUMS.md5 --rw-r--r-- 1 root root 163 2024-02-03 20:56 ./patches/CHECKSUMS.md5.asc --rw-r--r-- 1 root root 138293 2024-02-03 20:56 ./patches/FILE_LIST --rw-r--r-- 1 root root 15235484 2024-02-03 20:56 ./patches/MANIFEST.bz2 --rw-r--r-- 1 root root 73463 2024-02-03 20:56 ./patches/PACKAGES.TXT -drwxr-xr-x 5 root root 32768 2024-02-03 20:56 ./patches/packages +drwxr-xr-x 4 root root 4096 2024-02-04 19:40 ./patches +-rw-r--r-- 1 root root 101081 2024-02-04 19:40 ./patches/CHECKSUMS.md5 +-rw-r--r-- 1 root root 163 2024-02-04 19:40 ./patches/CHECKSUMS.md5.asc +-rw-r--r-- 1 root root 138293 2024-02-04 19:40 ./patches/FILE_LIST +-rw-r--r-- 1 root root 15251435 2024-02-04 19:40 ./patches/MANIFEST.bz2 +-rw-r--r-- 1 root root 73463 2024-02-04 19:40 ./patches/PACKAGES.TXT +drwxr-xr-x 5 root root 32768 2024-02-04 19:40 ./patches/packages -rw-r--r-- 1 root root 360 2023-09-26 19:28 ./patches/packages/Cython-0.29.36-x86_64-1_slack15.0.txt -rw-r--r-- 1 root root 2389564 2023-09-26 19:28 ./patches/packages/Cython-0.29.36-x86_64-1_slack15.0.txz -rw-r--r-- 1 root root 163 2023-09-26 19:28 ./patches/packages/Cython-0.29.36-x86_64-1_slack15.0.txz.asc @@ -932,9 +932,9 @@ drwxr-xr-x 5 root root 32768 2024-02-03 20:56 ./patches/packages -rw-r--r-- 1 root root 498 2023-09-14 17:26 ./patches/packages/libwebp-1.3.2-x86_64-1_slack15.0.txt -rw-r--r-- 1 root root 358924 2023-09-14 17:26 ./patches/packages/libwebp-1.3.2-x86_64-1_slack15.0.txz -rw-r--r-- 1 root root 163 2023-09-14 17:26 ./patches/packages/libwebp-1.3.2-x86_64-1_slack15.0.txz.asc --rw-r--r-- 1 root root 518 2023-12-14 19:49 ./patches/packages/libxml2-2.11.6-x86_64-1_slack15.0.txt --rw-r--r-- 1 root root 1170972 2023-12-14 19:49 ./patches/packages/libxml2-2.11.6-x86_64-1_slack15.0.txz --rw-r--r-- 1 root root 163 2023-12-14 19:49 ./patches/packages/libxml2-2.11.6-x86_64-1_slack15.0.txz.asc +-rw-r--r-- 1 root root 518 2024-02-04 19:35 ./patches/packages/libxml2-2.11.7-x86_64-1_slack15.0.txt +-rw-r--r-- 1 root root 1171268 2024-02-04 19:35 ./patches/packages/libxml2-2.11.7-x86_64-1_slack15.0.txz +-rw-r--r-- 1 root root 163 2024-02-04 19:35 ./patches/packages/libxml2-2.11.7-x86_64-1_slack15.0.txz.asc -rw-r--r-- 1 root root 219 2022-03-01 04:56 ./patches/packages/libxslt-1.1.35-x86_64-1_slack15.0.txt -rw-r--r-- 1 root root 375568 2022-03-01 04:56 ./patches/packages/libxslt-1.1.35-x86_64-1_slack15.0.txz -rw-r--r-- 1 root root 163 2022-03-01 04:56 ./patches/packages/libxslt-1.1.35-x86_64-1_slack15.0.txz.asc @@ -1142,7 +1142,7 @@ drwxr-xr-x 2 root root 4096 2023-11-21 21:09 ./patches/packages/old-linux -rw-r--r-- 1 root root 463 2023-04-05 18:16 ./patches/packages/zstd-1.5.5-x86_64-1_slack15.0.txt -rw-r--r-- 1 root root 459652 2023-04-05 18:16 ./patches/packages/zstd-1.5.5-x86_64-1_slack15.0.txz -rw-r--r-- 1 root root 163 2023-04-05 18:16 ./patches/packages/zstd-1.5.5-x86_64-1_slack15.0.txz.asc -drwxr-xr-x 102 root root 4096 2024-02-03 20:51 ./patches/source +drwxr-xr-x 102 root root 4096 2024-02-04 19:37 ./patches/source drwxr-xr-x 2 root root 4096 2023-09-26 19:22 ./patches/source/Cython -rw-r--r-- 1 root root 1623580 2023-07-04 19:24 ./patches/source/Cython/Cython-0.29.36.tar.lz -rwxr-xr-x 1 root root 3041 2023-09-26 19:23 ./patches/source/Cython/Cython.SlackBuild @@ -1542,8 +1542,8 @@ drwxr-xr-x 2 root root 4096 2023-09-14 17:24 ./patches/source/libwebp -rwxr-xr-x 1 root root 5226 2023-09-14 17:25 ./patches/source/libwebp/libwebp.SlackBuild -rw-r--r-- 1 root root 49 2022-01-21 19:13 ./patches/source/libwebp/libwebp.url -rw-r--r-- 1 root root 985 2018-02-27 06:12 ./patches/source/libwebp/slack-desc -drwxr-xr-x 2 root root 4096 2023-12-14 18:55 ./patches/source/libxml2 --rw-r--r-- 1 root root 2628652 2023-11-16 12:05 ./patches/source/libxml2/libxml2-2.11.6.tar.xz +drwxr-xr-x 2 root root 4096 2024-02-04 19:33 ./patches/source/libxml2 +-rw-r--r-- 1 root root 2628860 2024-02-04 14:19 ./patches/source/libxml2/libxml2-2.11.7.tar.xz -rw-r--r-- 1 root root 1254 2023-12-06 00:00 ./patches/source/libxml2/libxml2-2.12.0-python3-unicode-errors.patch -rwxr-xr-x 1 root root 5139 2023-12-14 19:45 ./patches/source/libxml2/libxml2.SlackBuild -rw-r--r-- 1 root root 114 2022-08-27 18:08 ./patches/source/libxml2/libxml2.url diff --git a/patches/packages/libxml2-2.11.6-x86_64-1_slack15.0.txt b/patches/packages/libxml2-2.11.6-x86_64-1_slack15.0.txt deleted file mode 100644 index 2bea28102..000000000 --- a/patches/packages/libxml2-2.11.6-x86_64-1_slack15.0.txt +++ /dev/null @@ -1,11 +0,0 @@ -libxml2: libxml2 (XML parser library) -libxml2: -libxml2: Libxml2 is the XML C parser library and toolkit. XML itself is a -libxml2: metalanguage to design markup languages - i.e. a text language where -libxml2: structures are added to the content using extra "markup" information -libxml2: enclosed between angle brackets. HTML is the most well-known markup -libxml2: language. Though the library is written in C, a variety of language -libxml2: bindings make it available in other environments. -libxml2: -libxml2: -libxml2: diff --git a/patches/packages/libxml2-2.11.7-x86_64-1_slack15.0.txt b/patches/packages/libxml2-2.11.7-x86_64-1_slack15.0.txt new file mode 100644 index 000000000..2bea28102 --- /dev/null +++ b/patches/packages/libxml2-2.11.7-x86_64-1_slack15.0.txt @@ -0,0 +1,11 @@ +libxml2: libxml2 (XML parser library) +libxml2: +libxml2: Libxml2 is the XML C parser library and toolkit. XML itself is a +libxml2: metalanguage to design markup languages - i.e. a text language where +libxml2: structures are added to the content using extra "markup" information +libxml2: enclosed between angle brackets. HTML is the most well-known markup +libxml2: language. Though the library is written in C, a variety of language +libxml2: bindings make it available in other environments. +libxml2: +libxml2: +libxml2: -- cgit v1.2.3-65-gdbad