diff options
author | Patrick J Volkerding <volkerdi@slackware.com> | 2020-01-31 20:46:25 +0000 |
---|---|---|
committer | Eric Hameleers <alien@slackware.com> | 2020-02-01 08:59:50 +0100 |
commit | 4e955dc4b6fff43956d47c0286bb698e03f14b11 (patch) | |
tree | 8821f786c06617480dce97b28c23ee78836010c2 /source/a/zerofree/slack-desc | |
parent | 0012caf61824ffcca7bbe5cd19b79612d6445307 (diff) | |
download | current-4e955dc4b6fff43956d47c0286bb698e03f14b11.tar.gz current-4e955dc4b6fff43956d47c0286bb698e03f14b11.tar.xz |
Fri Jan 31 20:46:25 UTC 202020200131204625
a/util-linux-2.35.1-x86_64-1.txz: Upgraded.
a/zerofree-1.1.1-x86_64-1.txz: Added.
Also queued up for the next installer build. Thanks to bifferos.
ap/sudo-1.8.31-x86_64-1.txz: Upgraded.
This update fixes a security issue:
In Sudo before 1.8.31, if pwfeedback is enabled in /etc/sudoers, users can
trigger a stack-based buffer overflow in the privileged sudo process.
(pwfeedback is a default setting in some Linux distributions; however, it
is not the default for upstream or in Slackware, and would exist only if
enabled by an administrator.) The attacker needs to deliver a long string
to the stdin of getln() in tgetpass.c.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18634
(* Security fix *)
n/NetworkManager-1.22.6-x86_64-1.txz: Upgraded.
n/openldap-client-2.4.49-x86_64-1.txz: Upgraded.
xfce/Thunar-1.8.11-x86_64-1.txz: Removed.
xfce/thunar-1.8.12-x86_64-1.txz: Added.
Changed package name from "Thunar" to "thunar" to follow upstream's naming.
Diffstat (limited to 'source/a/zerofree/slack-desc')
-rw-r--r-- | source/a/zerofree/slack-desc | 19 |
1 files changed, 19 insertions, 0 deletions
diff --git a/source/a/zerofree/slack-desc b/source/a/zerofree/slack-desc new file mode 100644 index 000000000..261ae363f --- /dev/null +++ b/source/a/zerofree/slack-desc @@ -0,0 +1,19 @@ +# HOW TO EDIT THIS FILE: +# The "handy ruler" below makes it easier to edit a package description. Line +# up the first '|' above the ':' following the base package name, and the '|' +# on the right side marks the last column you can put a character in. You must +# make exactly 11 lines for the formatting to be correct. It's also +# customary to leave one space after the ':'. + + |-----handy-ruler------------------------------------------------------| +zerofree: zerofree (zero free blocks from ext* filesystems) +zerofree: +zerofree: Zerofree finds the unallocated, non-zeroed blocks in an ext2, ext3, +zerofree: or ext4 filesystem and fills them with zeroes. This is useful if the +zerofree: device on which this file-system resides is a disk image. In this +zerofree: case, depending on the type of disk image, a secondary utility may be +zerofree: able to reduce the size of the disk image after zerofree has been run. +zerofree: +zerofree: Homepage: https://frippery.org/uml/ +zerofree: +zerofree: |