diff options
| author |   Patrick J Volkerding <volkerdi@slackware.com> | 2024-03-24 18:21:46 +0000 |
|---|---|---|
| committer |   Eric Hameleers <alien@slackware.com> | 2024-03-24 20:02:29 +0100 |
| commit | 4e0c3bd469a4a438952438b13e170396a2bb299c (patch) | |
| tree | bf3979d64e598f438930539107347b70fce5c25a /ChangeLog.txt | |
| parent | 1e89414bae261894eb2b0621fc35d08d66039848 (diff) | |
| download | current-4e0c3bd469a4a438952438b13e170396a2bb299c.tar.gz current-4e0c3bd469a4a438952438b13e170396a2bb299c.tar.xz | |
Sun Mar 24 18:21:46 UTC 202420240324182146
e/emacs-29.3-x86_64-1.txz: Upgraded.
Emacs 29.3 is an emergency bugfix release intended to fix several security
vulnerabilities described below:
Arbitrary Lisp code is no longer evaluated as part of turning on Org mode.
This is for security reasons, to avoid evaluating malicious Lisp code.
New buffer-local variable 'untrusted-content'. When this is non-nil, Lisp
programs should treat buffer contents with extra caution.
Gnus now treats inline MIME contents as untrusted. To get back previous
insecure behavior, 'untrusted-content' should be reset to nil in the buffer.
LaTeX preview is now by default disabled for email attachments. To get back
previous insecure behavior, set the variable 'org--latex-preview-when-risky'
to a non-nil value.
Org mode now considers contents of remote files to be untrusted.
Remote files are recognized by calling 'file-remote-p'.
(* Security fix *)
l/enchant-2.6.8-x86_64-1.txz: Upgraded.
l/gnu-efi-3.0.18-x86_64-1.txz: Upgraded.
l/libproxy-0.5.4-x86_64-2.txz: Rebuilt.
Rebuilt with -Dpacrunner-duktape=true. Thanks to gmgf.
l/libxkbcommon-1.7.0-x86_64-1.txz: Upgraded.
l/python-hatchling-1.22.4-x86_64-1.txz: Upgraded.
x/libpciaccess-0.18.1-x86_64-1.txz: Upgraded.
x/xdm-1.1.15-x86_64-1.txz: Upgraded.
x/xedit-1.2.4-x86_64-1.txz: Upgraded.
x/xload-1.2.0-x86_64-1.txz: Upgraded.
extra/emacs-regular-build/emacs-29.3-x86_64-1_regular.txz: Upgraded.
(* Security fix *)
Diffstat (limited to 'ChangeLog.txt')
| -rw-r--r-- | ChangeLog.txt | 29 |
1 files changed, 29 insertions, 0 deletions
diff --git a/ChangeLog.txt b/ChangeLog.txt index 13bfac771..6f41d2016 100644 --- a/ChangeLog.txt +++ b/ChangeLog.txt @@ -1,3 +1,32 @@ +Sun Mar 24 18:21:46 UTC 2024 +e/emacs-29.3-x86_64-1.txz: Upgraded. + Emacs 29.3 is an emergency bugfix release intended to fix several security + vulnerabilities described below: + Arbitrary Lisp code is no longer evaluated as part of turning on Org mode. + This is for security reasons, to avoid evaluating malicious Lisp code. + New buffer-local variable 'untrusted-content'. When this is non-nil, Lisp + programs should treat buffer contents with extra caution. + Gnus now treats inline MIME contents as untrusted. To get back previous + insecure behavior, 'untrusted-content' should be reset to nil in the buffer. + LaTeX preview is now by default disabled for email attachments. To get back + previous insecure behavior, set the variable 'org--latex-preview-when-risky' + to a non-nil value. + Org mode now considers contents of remote files to be untrusted. + Remote files are recognized by calling 'file-remote-p'. + (* Security fix *) +l/enchant-2.6.8-x86_64-1.txz: Upgraded. +l/gnu-efi-3.0.18-x86_64-1.txz: Upgraded. +l/libproxy-0.5.4-x86_64-2.txz: Rebuilt. + Rebuilt with -Dpacrunner-duktape=true. Thanks to gmgf. +l/libxkbcommon-1.7.0-x86_64-1.txz: Upgraded. +l/python-hatchling-1.22.4-x86_64-1.txz: Upgraded. +x/libpciaccess-0.18.1-x86_64-1.txz: Upgraded. +x/xdm-1.1.15-x86_64-1.txz: Upgraded. +x/xedit-1.2.4-x86_64-1.txz: Upgraded. +x/xload-1.2.0-x86_64-1.txz: Upgraded. +extra/emacs-regular-build/emacs-29.3-x86_64-1_regular.txz: Upgraded. + (* Security fix *) ++--------------------------+ Sat Mar 23 19:34:02 UTC 2024 ap/vim-9.1.0199-x86_64-1.txz: Upgraded. Dropped python2 support. Thanks to Audrius Kažukauskas. |