diff options
author | Patrick J Volkerding <volkerdi@slackware.com> | 2018-06-13 21:55:19 +0000 |
---|---|---|
committer | Eric Hameleers <alien@slackware.com> | 2018-06-14 08:58:07 +0200 |
commit | 11b00957be9f8661c4248d52bb20cdacdd442615 (patch) | |
tree | a72da2814f739ae52f52afbf34df4df751131901 /ChangeLog.rss | |
parent | d8095c1e90c817c5c1bd4cbb892be7218946279b (diff) | |
download | current-11b00957be9f8661c4248d52bb20cdacdd442615.tar.gz current-11b00957be9f8661c4248d52bb20cdacdd442615.tar.xz |
Wed Jun 13 21:55:19 UTC 201820180613215519
a/etc-15.0-x86_64-5.txz: Rebuilt.
Don't hardcode passwd/shadow/group additions in doinst.sh - get them from
the .new files.
a/sysvinit-scripts-2.1-noarch-11.txz: Rebuilt.
rc.S: don't start rc.haveged in this script - move it to rc.M.
rc.M: start rc.haveged after seeding /dev/urandom in rc.S, and after
starting syslogd, klogd, and udev in rc.M.
rc.M: start rc.rndg (we don't ship it or rng-tools) after udev.
H. Peter Anvin says that it's fine to run both haveged and rndg,
and I trust his opinion on that.
Thanks to GazL.
ap/at-3.1.20-x86_64-4.txz: Rebuilt.
Fixed wrong variable in rc.atd. Thanks to upnort.
n/libgcrypt-1.8.3-x86_64-1.txz: Upgraded.
Use blinding for ECDSA signing to mitigate a novel side-channel attack.
For more information, see:
https://www.nccgroup.trust/us/our-research/technical-advisory-return-of-the-hidden-number-problem/
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0495
(* Security fix *)
Diffstat (limited to 'ChangeLog.rss')
-rw-r--r-- | ChangeLog.rss | 33 |
1 files changed, 31 insertions, 2 deletions
diff --git a/ChangeLog.rss b/ChangeLog.rss index 21718c50b..be08b5e24 100644 --- a/ChangeLog.rss +++ b/ChangeLog.rss @@ -11,10 +11,39 @@ <description>Tracking Slackware development in git.</description> <language>en-us</language> <id xmlns="http://www.w3.org/2005/Atom">urn:uuid:c964f45e-6732-11e8-bbe5-107b4450212f</id> - <pubDate>Wed, 13 Jun 2018 05:43:00 GMT</pubDate> - <lastBuildDate>Wed, 13 Jun 2018 07:44:16 GMT</lastBuildDate> + <pubDate>Wed, 13 Jun 2018 21:55:19 GMT</pubDate> + <lastBuildDate>Thu, 14 Jun 2018 06:58:05 GMT</lastBuildDate> <generator>maintain_current_git.sh v 1.8</generator> <item> + <title>Wed, 13 Jun 2018 21:55:19 GMT</title> + <pubDate>Wed, 13 Jun 2018 21:55:19 GMT</pubDate> + <link>https://git.slackware.nl/current/tag/?h=20180613215519</link> + <guid isPermaLink="false">20180613215519</guid> + <description> + <![CDATA[<pre> +a/etc-15.0-x86_64-5.txz: Rebuilt. + Don't hardcode passwd/shadow/group additions in doinst.sh - get them from + the .new files. +a/sysvinit-scripts-2.1-noarch-11.txz: Rebuilt. + rc.S: don't start rc.haveged in this script - move it to rc.M. + rc.M: start rc.haveged after seeding /dev/urandom in rc.S, and after + starting syslogd, klogd, and udev in rc.M. + rc.M: start rc.rndg (we don't ship it or rng-tools) after udev. + H. Peter Anvin says that it's fine to run both haveged and rndg, + and I trust his opinion on that. + Thanks to GazL. +ap/at-3.1.20-x86_64-4.txz: Rebuilt. + Fixed wrong variable in rc.atd. Thanks to upnort. +n/libgcrypt-1.8.3-x86_64-1.txz: Upgraded. + Use blinding for ECDSA signing to mitigate a novel side-channel attack. + For more information, see: + https://www.nccgroup.trust/us/our-research/technical-advisory-return-of-the-hidden-number-problem/ + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0495 + (* Security fix *) + </pre>]]> + </description> + </item> + <item> <title>Wed, 13 Jun 2018 05:43:00 GMT</title> <pubDate>Wed, 13 Jun 2018 05:43:00 GMT</pubDate> <link>https://git.slackware.nl/current/tag/?h=20180613054300</link> |