From da8b5496699ee4eda9ea73c6eb62234ba2f00884 Mon Sep 17 00:00:00 2001 From: Patrick J Volkerding Date: Sat, 15 Oct 2022 20:28:34 +0000 Subject: Sat Oct 15 20:28:34 UTC 2022 patches/packages/zlib-1.2.13-x86_64-1_slack15.0.txz: Upgraded. Fixed a bug when getting a gzip header extra field with inflateGetHeader(). For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37434 (* Security fix *) --- ChangeLog.rss | 19 +++++++- ChangeLog.txt | 7 +++ FILELIST.TXT | 47 ++++++++++---------- .../packages/zlib-1.2.12-x86_64-2_slack15.0.txt | 11 ----- .../packages/zlib-1.2.13-x86_64-1_slack15.0.txt | 11 +++++ .../ec3df00224d4b396e2ac6586ab5d25f673caa4c2.patch | 51 ---------------------- patches/source/zlib/zlib.SlackBuild | 4 +- 7 files changed, 59 insertions(+), 91 deletions(-) delete mode 100644 patches/packages/zlib-1.2.12-x86_64-2_slack15.0.txt create mode 100644 patches/packages/zlib-1.2.13-x86_64-1_slack15.0.txt delete mode 100644 patches/source/zlib/ec3df00224d4b396e2ac6586ab5d25f673caa4c2.patch diff --git a/ChangeLog.rss b/ChangeLog.rss index 94a30ff01..721babc30 100644 --- a/ChangeLog.rss +++ b/ChangeLog.rss @@ -11,9 +11,24 @@ Tracking Slackware development in git. en-us urn:uuid:c964f45e-6732-11e8-bbe5-107b4450212f - Fri, 14 Oct 2022 01:39:37 GMT - Fri, 14 Oct 2022 11:30:28 GMT + Sat, 15 Oct 2022 20:28:34 GMT + Sun, 16 Oct 2022 11:30:42 GMT maintain_current_git.sh v 1.17 + + Sat, 15 Oct 2022 20:28:34 GMT + Sat, 15 Oct 2022 20:28:34 GMT + https://git.slackware.nl/current/tag/?h=20221015202834 + 20221015202834 + + +patches/packages/zlib-1.2.13-x86_64-1_slack15.0.txz: Upgraded. + Fixed a bug when getting a gzip header extra field with inflateGetHeader(). + For more information, see: + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37434 + (* Security fix *) + ]]> + + Fri, 14 Oct 2022 01:39:37 GMT Fri, 14 Oct 2022 01:39:37 GMT diff --git a/ChangeLog.txt b/ChangeLog.txt index b08a304e2..c9b8ce2ad 100644 --- a/ChangeLog.txt +++ b/ChangeLog.txt @@ -1,3 +1,10 @@ +Sat Oct 15 20:28:34 UTC 2022 +patches/packages/zlib-1.2.13-x86_64-1_slack15.0.txz: Upgraded. + Fixed a bug when getting a gzip header extra field with inflateGetHeader(). + For more information, see: + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37434 + (* Security fix *) ++--------------------------+ Fri Oct 14 01:39:37 UTC 2022 patches/packages/mozilla-thunderbird-102.3.3-x86_64-1_slack15.0.txz: Upgraded. This is a bugfix release. diff --git a/FILELIST.TXT b/FILELIST.TXT index 521c28c04..e576fb029 100644 --- a/FILELIST.TXT +++ b/FILELIST.TXT @@ -1,20 +1,20 @@ -Fri Oct 14 01:45:25 UTC 2022 +Sat Oct 15 20:34:23 UTC 2022 Here is the file list for this directory. If you are using a mirror site and find missing or extra files in the disk subdirectories, please have the archive administrator refresh the mirror. -drwxr-xr-x 12 root root 4096 2022-10-14 01:39 . +drwxr-xr-x 12 root root 4096 2022-10-15 20:28 . -rw-r--r-- 1 root root 5767 2022-02-02 22:44 ./ANNOUNCE.15.0 -rw-r--r-- 1 root root 16609 2022-03-30 19:03 ./CHANGES_AND_HINTS.TXT --rw-r--r-- 1 root root 1155289 2022-10-08 19:27 ./CHECKSUMS.md5 --rw-r--r-- 1 root root 163 2022-10-08 19:27 ./CHECKSUMS.md5.asc +-rw-r--r-- 1 root root 1155289 2022-10-14 01:45 ./CHECKSUMS.md5 +-rw-r--r-- 1 root root 163 2022-10-14 01:45 ./CHECKSUMS.md5.asc -rw-r--r-- 1 root root 17976 1994-06-10 02:28 ./COPYING -rw-r--r-- 1 root root 35147 2007-06-30 04:21 ./COPYING3 -rw-r--r-- 1 root root 19573 2016-06-23 20:08 ./COPYRIGHT.TXT -rw-r--r-- 1 root root 616 2006-10-02 04:37 ./CRYPTO_NOTICE.TXT --rw-r--r-- 1 root root 1939518 2022-10-14 01:39 ./ChangeLog.txt +-rw-r--r-- 1 root root 1939834 2022-10-15 20:28 ./ChangeLog.txt drwxr-xr-x 3 root root 4096 2013-03-20 22:17 ./EFI drwxr-xr-x 2 root root 4096 2022-02-02 08:21 ./EFI/BOOT -rw-r--r-- 1 root root 1187840 2021-06-15 19:16 ./EFI/BOOT/bootx64.efi @@ -25,7 +25,7 @@ drwxr-xr-x 2 root root 4096 2022-02-02 08:21 ./EFI/BOOT -rwxr-xr-x 1 root root 2504 2019-07-05 18:54 ./EFI/BOOT/make-grub.sh -rw-r--r-- 1 root root 10722 2013-09-21 19:02 ./EFI/BOOT/osdetect.cfg -rw-r--r-- 1 root root 1273 2013-08-12 21:08 ./EFI/BOOT/tools.cfg --rw-r--r-- 1 root root 1508047 2022-10-08 19:27 ./FILELIST.TXT +-rw-r--r-- 1 root root 1508047 2022-10-14 01:45 ./FILELIST.TXT -rw-r--r-- 1 root root 1572 2012-08-29 18:27 ./GPG-KEY -rw-r--r-- 1 root root 864745 2022-02-02 08:25 ./PACKAGES.TXT -rw-r--r-- 1 root root 8034 2022-02-02 03:36 ./README.TXT @@ -738,13 +738,13 @@ drwxr-xr-x 2 root root 4096 2008-05-07 05:21 ./pasture/source/php/pear -rwxr-xr-x 1 root root 9448 2018-05-16 22:38 ./pasture/source/php/php.SlackBuild -rw-r--r-- 1 root root 775 2017-07-07 19:25 ./pasture/source/php/php.ini-development.diff.gz -rw-r--r-- 1 root root 830 2005-12-09 05:18 ./pasture/source/php/slack-desc -drwxr-xr-x 4 root root 4096 2022-10-14 01:45 ./patches --rw-r--r-- 1 root root 50884 2022-10-14 01:45 ./patches/CHECKSUMS.md5 --rw-r--r-- 1 root root 163 2022-10-14 01:45 ./patches/CHECKSUMS.md5.asc --rw-r--r-- 1 root root 67957 2022-10-14 01:45 ./patches/FILE_LIST --rw-r--r-- 1 root root 11630422 2022-10-14 01:45 ./patches/MANIFEST.bz2 --rw-r--r-- 1 root root 37791 2022-10-14 01:45 ./patches/PACKAGES.TXT -drwxr-xr-x 3 root root 16384 2022-10-14 01:45 ./patches/packages +drwxr-xr-x 4 root root 4096 2022-10-15 20:34 ./patches +-rw-r--r-- 1 root root 50789 2022-10-15 20:34 ./patches/CHECKSUMS.md5 +-rw-r--r-- 1 root root 163 2022-10-15 20:34 ./patches/CHECKSUMS.md5.asc +-rw-r--r-- 1 root root 67845 2022-10-15 20:34 ./patches/FILE_LIST +-rw-r--r-- 1 root root 11634161 2022-10-15 20:34 ./patches/MANIFEST.bz2 +-rw-r--r-- 1 root root 37791 2022-10-15 20:34 ./patches/PACKAGES.TXT +drwxr-xr-x 3 root root 16384 2022-10-15 20:34 ./patches/packages -rw-r--r-- 1 root root 327 2022-02-15 05:07 ./patches/packages/aaa_base-15.0-x86_64-4_slack15.0.txt -rw-r--r-- 1 root root 10716 2022-02-15 05:07 ./patches/packages/aaa_base-15.0-x86_64-4_slack15.0.txz -rw-r--r-- 1 root root 163 2022-02-15 05:07 ./patches/packages/aaa_base-15.0-x86_64-4_slack15.0.txz.asc @@ -920,10 +920,10 @@ drwxr-xr-x 2 root root 4096 2022-08-26 04:06 ./patches/packages/linux-5.15 -rw-r--r-- 1 root root 489 2022-04-14 21:04 ./patches/packages/xz-5.2.5-x86_64-4_slack15.0.txt -rw-r--r-- 1 root root 322660 2022-04-14 21:04 ./patches/packages/xz-5.2.5-x86_64-4_slack15.0.txz -rw-r--r-- 1 root root 163 2022-04-14 21:04 ./patches/packages/xz-5.2.5-x86_64-4_slack15.0.txz.asc --rw-r--r-- 1 root root 388 2022-08-09 17:48 ./patches/packages/zlib-1.2.12-x86_64-2_slack15.0.txt --rw-r--r-- 1 root root 105196 2022-08-09 17:48 ./patches/packages/zlib-1.2.12-x86_64-2_slack15.0.txz --rw-r--r-- 1 root root 163 2022-08-09 17:48 ./patches/packages/zlib-1.2.12-x86_64-2_slack15.0.txz.asc -drwxr-xr-x 52 root root 4096 2022-10-13 20:14 ./patches/source +-rw-r--r-- 1 root root 388 2022-10-15 04:05 ./patches/packages/zlib-1.2.13-x86_64-1_slack15.0.txt +-rw-r--r-- 1 root root 105356 2022-10-15 04:05 ./patches/packages/zlib-1.2.13-x86_64-1_slack15.0.txz +-rw-r--r-- 1 root root 163 2022-10-15 04:05 ./patches/packages/zlib-1.2.13-x86_64-1_slack15.0.txz.asc +drwxr-xr-x 52 root root 4096 2022-10-15 19:00 ./patches/source drwxr-xr-x 2 root root 4096 2022-01-16 05:07 ./patches/source/aaa_base -rw-r--r-- 1 root root 11041 2022-02-15 04:49 ./patches/source/aaa_base/_aaa_base.tar.gz -rwxr-xr-x 1 root root 3894 2022-02-15 05:07 ./patches/source/aaa_base/aaa_base.SlackBuild @@ -1459,12 +1459,11 @@ drwxr-xr-x 2 root root 4096 2022-04-14 20:33 ./patches/source/xz -rwxr-xr-x 1 root root 5257 2022-04-14 20:38 ./patches/source/xz/xz.SlackBuild -rw-r--r-- 1 root root 3488 2022-04-07 16:59 ./patches/source/xz/xzgrep-ZDI-CAN-16587.patch -rw-r--r-- 1 root root 566 2022-04-07 16:59 ./patches/source/xz/xzgrep-ZDI-CAN-16587.patch.sig -drwxr-xr-x 2 root root 4096 2022-08-09 17:45 ./patches/source/zlib --rw-r--r-- 1 root root 1660 2022-08-09 16:54 ./patches/source/zlib/ec3df00224d4b396e2ac6586ab5d25f673caa4c2.patch +drwxr-xr-x 2 root root 4096 2022-10-15 04:03 ./patches/source/zlib -rw-r--r-- 1 root root 840 2018-02-27 06:12 ./patches/source/zlib/slack-desc --rw-r--r-- 1 root root 1288864 2022-03-27 23:39 ./patches/source/zlib/zlib-1.2.12.tar.xz --rw-r--r-- 1 root root 235 2022-03-27 23:39 ./patches/source/zlib/zlib-1.2.12.tar.xz.asc --rwxr-xr-x 1 root root 4148 2022-08-09 17:46 ./patches/source/zlib/zlib.SlackBuild +-rw-r--r-- 1 root root 1296496 2022-10-13 05:06 ./patches/source/zlib/zlib-1.2.13.tar.xz +-rw-r--r-- 1 root root 235 2022-10-13 05:06 ./patches/source/zlib/zlib-1.2.13.tar.xz.asc +-rwxr-xr-x 1 root root 4059 2022-10-15 04:04 ./patches/source/zlib/zlib.SlackBuild drwxr-xr-x 17 root root 4096 2022-02-02 08:25 ./slackware64 -rw-r--r-- 1 root root 337498 2022-02-02 08:25 ./slackware64/CHECKSUMS.md5 -rw-r--r-- 1 root root 163 2022-02-02 08:25 ./slackware64/CHECKSUMS.md5.asc @@ -2726,7 +2725,7 @@ drwxr-xr-x 2 root root 69632 2022-02-01 08:29 ./slackware64/kde -rw-r--r-- 1 root root 71816 2022-01-08 22:40 ./slackware64/kde/kdewebkit-5.90.0-x86_64-1.txz -rw-r--r-- 1 root root 163 2022-01-08 22:40 ./slackware64/kde/kdewebkit-5.90.0-x86_64-1.txz.asc -rw-r--r-- 1 root root 315 2022-01-06 22:03 ./slackware64/kde/kdf-21.12.1-x86_64-1.txt --rw-r--r-- 1 root root 603020 2022-01-06 22:03 ./slackware64/kde/kdf-21.12.1-x86_64-1.txz +-rw-r--r-- 1 root root 603020 2022-01-06 22:03 ./slackware64/kde/kdf-21.12.1-x86_64-1.txz -rw-r--r-- 1 root root 163 2022-01-06 22:03 ./slackware64/kde/kdf-21.12.1-x86_64-1.txz.asc -rw-r--r-- 1 root root 272 2021-09-30 20:13 ./slackware64/kde/kdiagram-2.8.0-x86_64-4.txt -rw-r--r-- 1 root root 564724 2021-09-30 20:13 ./slackware64/kde/kdiagram-2.8.0-x86_64-4.txz @@ -5474,7 +5473,7 @@ drwxr-xr-x 2 root root 65536 2022-02-01 04:47 ./slackware64/x -rw-r--r-- 1 root root 27472 2021-02-13 13:08 ./slackware64/x/libXxf86vm-1.1.4-x86_64-5.txz -rw-r--r-- 1 root root 163 2021-02-13 13:08 ./slackware64/x/libXxf86vm-1.1.4-x86_64-5.txz.asc -rw-r--r-- 1 root root 320 2021-02-13 13:08 ./slackware64/x/libdmx-1.1.4-x86_64-3.txt --rw-r--r-- 1 root root 45212 2021-02-13 13:08 ./slackware64/x/libdmx-1.1.4-x86_64-3.txz +-rw-r--r-- 1 root root 45212 2021-02-13 13:08 ./slackware64/x/libdmx-1.1.4-x86_64-3.txz -rw-r--r-- 1 root root 163 2021-02-13 13:08 ./slackware64/x/libdmx-1.1.4-x86_64-3.txz.asc -rw-r--r-- 1 root root 259 2022-01-03 19:53 ./slackware64/x/libdrm-2.4.109-x86_64-1.txt -rw-r--r-- 1 root root 258996 2022-01-03 19:53 ./slackware64/x/libdrm-2.4.109-x86_64-1.txz diff --git a/patches/packages/zlib-1.2.12-x86_64-2_slack15.0.txt b/patches/packages/zlib-1.2.12-x86_64-2_slack15.0.txt deleted file mode 100644 index 6285e29dc..000000000 --- a/patches/packages/zlib-1.2.12-x86_64-2_slack15.0.txt +++ /dev/null @@ -1,11 +0,0 @@ -zlib: zlib (compression library) -zlib: -zlib: zlib is a general purpose thread safe data compression library. The -zlib: data format used by the zlib library is described by RFCs 1950 to -zlib: 1952 in the files ftp://ds.internic.net/rfc/rfc1950.txt (zlib format) -zlib: rfc1951.txt (deflate format) and rfc1952.txt (gzip format). -zlib: -zlib: Homepage: http://www.zlib.net -zlib: -zlib: -zlib: diff --git a/patches/packages/zlib-1.2.13-x86_64-1_slack15.0.txt b/patches/packages/zlib-1.2.13-x86_64-1_slack15.0.txt new file mode 100644 index 000000000..6285e29dc --- /dev/null +++ b/patches/packages/zlib-1.2.13-x86_64-1_slack15.0.txt @@ -0,0 +1,11 @@ +zlib: zlib (compression library) +zlib: +zlib: zlib is a general purpose thread safe data compression library. The +zlib: data format used by the zlib library is described by RFCs 1950 to +zlib: 1952 in the files ftp://ds.internic.net/rfc/rfc1950.txt (zlib format) +zlib: rfc1951.txt (deflate format) and rfc1952.txt (gzip format). +zlib: +zlib: Homepage: http://www.zlib.net +zlib: +zlib: +zlib: diff --git a/patches/source/zlib/ec3df00224d4b396e2ac6586ab5d25f673caa4c2.patch b/patches/source/zlib/ec3df00224d4b396e2ac6586ab5d25f673caa4c2.patch deleted file mode 100644 index 85a6a7e3a..000000000 --- a/patches/source/zlib/ec3df00224d4b396e2ac6586ab5d25f673caa4c2.patch +++ /dev/null @@ -1,51 +0,0 @@ -From ec3df00224d4b396e2ac6586ab5d25f673caa4c2 Mon Sep 17 00:00:00 2001 -From: Mark Adler -Date: Wed, 30 Mar 2022 11:14:53 -0700 -Subject: [PATCH] Correct incorrect inputs provided to the CRC functions. - -The previous releases of zlib were not sensitive to incorrect CRC -inputs with bits set above the low 32. This commit restores that -behavior, so that applications with such bugs will continue to -operate as before. ---- - crc32.c | 8 ++++---- - 1 file changed, 4 insertions(+), 4 deletions(-) - -diff --git a/crc32.c b/crc32.c -index a1bdce5c2..451887bc7 100644 ---- a/crc32.c -+++ b/crc32.c -@@ -630,7 +630,7 @@ unsigned long ZEXPORT crc32_z(crc, buf, len) - #endif /* DYNAMIC_CRC_TABLE */ - - /* Pre-condition the CRC */ -- crc ^= 0xffffffff; -+ crc = (~crc) & 0xffffffff; - - /* Compute the CRC up to a word boundary. */ - while (len && ((z_size_t)buf & 7) != 0) { -@@ -749,7 +749,7 @@ unsigned long ZEXPORT crc32_z(crc, buf, len) - #endif /* DYNAMIC_CRC_TABLE */ - - /* Pre-condition the CRC */ -- crc ^= 0xffffffff; -+ crc = (~crc) & 0xffffffff; - - #ifdef W - -@@ -1077,7 +1077,7 @@ uLong ZEXPORT crc32_combine64(crc1, crc2, len2) - #ifdef DYNAMIC_CRC_TABLE - once(&made, make_crc_table); - #endif /* DYNAMIC_CRC_TABLE */ -- return multmodp(x2nmodp(len2, 3), crc1) ^ crc2; -+ return multmodp(x2nmodp(len2, 3), crc1) ^ (crc2 & 0xffffffff); - } - - /* ========================================================================= */ -@@ -1112,5 +1112,5 @@ uLong crc32_combine_op(crc1, crc2, op) - uLong crc2; - uLong op; - { -- return multmodp(op, crc1) ^ crc2; -+ return multmodp(op, crc1) ^ (crc2 & 0xffffffff); - } diff --git a/patches/source/zlib/zlib.SlackBuild b/patches/source/zlib/zlib.SlackBuild index d4e3ae556..46ba6cc6e 100755 --- a/patches/source/zlib/zlib.SlackBuild +++ b/patches/source/zlib/zlib.SlackBuild @@ -24,7 +24,7 @@ cd $(dirname $0) ; CWD=$(pwd) PKGNAM=zlib VERSION=${VERSION:-$(echo $PKGNAM-*.tar.xz | rev | cut -f 3- -d . | cut -f 1 -d - | rev)} -BUILD=${BUILD:-2_slack15.0} +BUILD=${BUILD:-1_slack15.0} # Automatically determine the architecture we're building on: if [ -z "$ARCH" ]; then @@ -76,8 +76,6 @@ find . \ \( -perm 666 -o -perm 664 -o -perm 600 -o -perm 444 -o -perm 440 -o -perm 400 \) \ -exec chmod 644 {} \+ -cat $CWD/ec3df00224d4b396e2ac6586ab5d25f673caa4c2.patch | patch -p1 --verbose || exit 1 - CFLAGS="$SLKCFLAGS" \ ./configure \ --prefix=/usr \ -- cgit v1.2.3-65-gdbad