diff options
author | Patrick J Volkerding <volkerdi@slackware.com> | 2023-05-17 20:59:51 +0000 |
---|---|---|
committer | Eric Hameleers <alien@slackware.com> | 2023-05-17 23:46:29 +0200 |
commit | 39de96c1694c51da0724ef99b869c8203895dfc9 (patch) | |
tree | 1eb38de3f839156689757ff93e54f3d5bee4a764 /source/a | |
parent | 01f5ed824c8d716ac8544770c384f3c153fa83d9 (diff) | |
download | current-39de96c1694c51da0724ef99b869c8203895dfc9.tar.gz current-39de96c1694c51da0724ef99b869c8203895dfc9.tar.xz |
Wed May 17 20:59:51 UTC 202320230517205951
a/etc-15.1-x86_64-3.txz: Rebuilt.
/etc/group: Added kvm (GID 36).
a/eudev-3.2.12-x86_64-2.txz: Rebuilt.
In 50-udev-default.rules, comment out the lines for SGX.
a/kernel-firmware-20230517_601c181-noarch-1.txz: Upgraded.
a/kernel-generic-6.1.29-x86_64-1.txz: Upgraded.
a/kernel-huge-6.1.29-x86_64-1.txz: Upgraded.
a/kernel-modules-6.1.29-x86_64-1.txz: Upgraded.
d/kernel-headers-6.1.29-x86-1.txz: Upgraded.
d/llvm-16.0.4-x86_64-1.txz: Upgraded.
k/kernel-source-6.1.29-noarch-1.txz: Upgraded.
kde/kde-cli-tools-5.27.5.1-x86_64-1.txz: Upgraded.
l/fribidi-1.0.13-x86_64-1.txz: Upgraded.
l/pipewire-0.3.71-x86_64-1.txz: Upgraded.
n/bind-9.18.15-x86_64-1.txz: Upgraded.
This is a bugfix release.
n/curl-8.1.0-x86_64-1.txz: Upgraded.
This update fixes security issues:
more POST-after-PUT confusion.
IDN wildcard match.
siglongjmp race condition.
UAF in SSH sha256 fingerprint check.
For more information, see:
https://curl.se/docs/CVE-2023-28322.html
https://curl.se/docs/CVE-2023-28321.html
https://curl.se/docs/CVE-2023-28320.html
https://curl.se/docs/CVE-2023-28319.html
https://www.cve.org/CVERecord?id=CVE-2023-28322
https://www.cve.org/CVERecord?id=CVE-2023-28321
https://www.cve.org/CVERecord?id=CVE-2023-28320
https://www.cve.org/CVERecord?id=CVE-2023-28319
(* Security fix *)
x/libwacom-2.7.0-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Diffstat (limited to 'source/a')
-rwxr-xr-x | source/a/etc/etc.SlackBuild | 2 | ||||
-rw-r--r-- | source/a/etc/group.new | 1 | ||||
-rwxr-xr-x | source/a/eudev/eudev.SlackBuild | 5 | ||||
-rw-r--r-- | source/a/eudev/eudev.no.renderD.diff (renamed from source/a/eudev/eudev.no.renderD.no.kvm.diff) | 0 | ||||
-rw-r--r-- | source/a/eudev/eudev.no.sgx.diff | 14 |
5 files changed, 19 insertions, 3 deletions
diff --git a/source/a/etc/etc.SlackBuild b/source/a/etc/etc.SlackBuild index 6da923753..7adc214e9 100755 --- a/source/a/etc/etc.SlackBuild +++ b/source/a/etc/etc.SlackBuild @@ -24,7 +24,7 @@ cd $(dirname $0) ; CWD=$(pwd) PKGNAM=etc VERSION=15.1 -BUILD=${BUILD:-2} +BUILD=${BUILD:-3} # Automatically determine the architecture we're building on: if [ -z "$ARCH" ]; then diff --git a/source/a/etc/group.new b/source/a/etc/group.new index 47f4988d1..d33f0fcc7 100644 --- a/source/a/etc/group.new +++ b/source/a/etc/group.new @@ -26,6 +26,7 @@ tape:x:26: mysql:x:27: rpc:x:32: sshd:x:33:sshd +kvm:x:36: cgred:x:41: gdm:x:42: shadow:x:43: diff --git a/source/a/eudev/eudev.SlackBuild b/source/a/eudev/eudev.SlackBuild index 89f1a708e..11976687b 100755 --- a/source/a/eudev/eudev.SlackBuild +++ b/source/a/eudev/eudev.SlackBuild @@ -24,7 +24,7 @@ cd $(dirname $0) ; CWD=$(pwd) PKGNAM=eudev VERSION=${VERSION:-$(echo eudev-*.tar.* | cut -d - -f 2 | rev | cut -f 3- -d . | rev)} -BUILD=${BUILD:-1} +BUILD=${BUILD:-2} NUMJOBS=${NUMJOBS:-" -j$(expr $(nproc) + 1) "} @@ -77,7 +77,8 @@ zcat $CWD/60-cdrom_id.rules.diff.gz | patch -p1 --verbose || exit 1 zcat $CWD/eudev.ignore_bind_unbind_events.diff.gz | patch -p1 --verbose || exit 1 # Don't require groups that we don't need: -zcat $CWD/eudev.no.renderD.no.kvm.diff.gz | patch -p1 --verbose || exit 1 +zcat $CWD/eudev.no.renderD.diff.gz | patch -p1 --verbose || exit 1 +zcat $CWD/eudev.no.sgx.diff.gz | patch -p1 --verbose || exit 1 if [ ! -r configure ]; then if [ -x ./autogen.sh ]; then diff --git a/source/a/eudev/eudev.no.renderD.no.kvm.diff b/source/a/eudev/eudev.no.renderD.diff index 1a95c504f..1a95c504f 100644 --- a/source/a/eudev/eudev.no.renderD.no.kvm.diff +++ b/source/a/eudev/eudev.no.renderD.diff diff --git a/source/a/eudev/eudev.no.sgx.diff b/source/a/eudev/eudev.no.sgx.diff new file mode 100644 index 000000000..79ed1925a --- /dev/null +++ b/source/a/eudev/eudev.no.sgx.diff @@ -0,0 +1,14 @@ +--- ./rules/50-udev-default.rules.orig 2023-05-16 10:08:56.000000000 -0500 ++++ ./rules/50-udev-default.rules 2023-05-17 12:45:42.392847645 -0500 +@@ -39,8 +39,9 @@ + SUBSYSTEM=="drm", KERNEL=="renderD*", GROUP="video", MODE="0666" + SUBSYSTEM=="kfd", GROUP="video", MODE="0666" + +-SUBSYSTEM=="misc", KERNEL=="sgx_enclave", GROUP="sgx", MODE="0660" +-SUBSYSTEM=="misc", KERNEL=="sgx_vepc", GROUP="sgx", MODE="0660" ++# This is obsolete. No sense starting to support it now. ++#SUBSYSTEM=="misc", KERNEL=="sgx_enclave", GROUP="sgx", MODE="0660" ++#SUBSYSTEM=="misc", KERNEL=="sgx_vepc", GROUP="sgx", MODE="0660" + + # When using static_node= with non-default permissions, also update + # tmpfiles.d/static-nodes-permissions.conf.in to keep permissions synchronized. |