diff options
| author |   Patrick J Volkerding <volkerdi@slackware.com> | 2022-10-31 23:31:36 +0000 |
|---|---|---|
| committer |   Eric Hameleers <alien@slackware.com> | 2022-11-01 07:00:17 +0100 |
| commit | f866235e9a78fbc4e112f5d1357692540eae60c0 (patch) | |
| tree | 2e19b062bcafa20fc25555bb57b3c397401d55b4 /source/kde/kde/patch | |
| parent | 58dca1653169fdce6ef81dbafb30b594f087fb9b (diff) | |
| download | current-f866235e9a78fbc4e112f5d1357692540eae60c0.tar.gz current-f866235e9a78fbc4e112f5d1357692540eae60c0.tar.xz | |
Mon Oct 31 23:31:36 UTC 202220221031233136
a/ntfs-3g-2022.10.3-x86_64-1.txz: Upgraded.
ap/mpg123-1.31.0-x86_64-1.txz: Upgraded.
ap/vim-9.0.0814-x86_64-1.txz: Upgraded.
A vulnerability was found in vim and classified as problematic. Affected by
this issue is the function qf_update_buffer of the file quickfix.c of the
component autocmd Handler. The manipulation leads to use after free. The
attack may be launched remotely. Upgrading to version 9.0.0805 is able to
address this issue.
Thanks to marav for the heads-up.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-3705
(* Security fix *)
d/ccache-4.7.2-x86_64-1.txz: Upgraded.
d/make-4.4-x86_64-1.txz: Upgraded.
d/patchelf-0.16.1-x86_64-1.txz: Upgraded.
d/strace-6.0-x86_64-1.txz: Upgraded.
kde/kwin-5.26.2.1-x86_64-2.txz: Rebuilt.
[PATCH] x11window: revert more from 3a28c02f.
Thanks to Heinz Wiesinger.
[PATCH] x11: Don't force QT_NO_GLIB=1.
[PATCH] x11: Don't force QT_QPA_PLATFORM=xcb.
Thanks to marav.
l/libedit-20221030_3.1-x86_64-1.txz: Upgraded.
l/python-importlib_metadata-5.0.0-x86_64-1.txz: Upgraded.
l/taglib-1.13-x86_64-1.txz: Upgraded.
l/utf8proc-2.8.0-x86_64-1.txz: Upgraded.
n/openvpn-2.5.8-x86_64-1.txz: Upgraded.
n/socat-1.7.4.4-x86_64-1.txz: Upgraded.
x/libXext-1.3.5-x86_64-1.txz: Upgraded.
x/libXinerama-1.1.5-x86_64-1.txz: Upgraded.
x/makedepend-1.0.7-x86_64-1.txz: Upgraded.
x/rgb-1.1.0-x86_64-1.txz: Upgraded.
x/sessreg-1.1.3-x86_64-1.txz: Upgraded.
x/x11perf-1.6.2-x86_64-1.txz: Upgraded.
x/xsetroot-1.1.3-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-106.0.3-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/firefox/106.0.3/releasenotes/
xap/mozilla-thunderbird-102.4.1-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/102.4.1/releasenotes/
xap/vim-gvim-9.0.0814-x86_64-1.txz: Upgraded.
extra/php80/php80-8.0.25-x86_64-1.txz: Upgraded.
This update fixes security issues:
GD: OOB read due to insufficient input validation in imageloadfont().
Hash: buffer overflow in hash_update() on long parameter.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-31630
https://www.cve.org/CVERecord?id=CVE-2022-37454
(* Security fix *)
extra/php81/php81-8.1.12-x86_64-1.txz: Upgraded.
This update fixes security issues:
GD: OOB read due to insufficient input validation in imageloadfont().
Hash: buffer overflow in hash_update() on long parameter.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-31630
https://www.cve.org/CVERecord?id=CVE-2022-37454
(* Security fix *)
Diffstat (limited to 'source/kde/kde/patch')
4 files changed, 99 insertions, 0 deletions
diff --git a/source/kde/kde/patch/kwin.patch b/source/kde/kde/patch/kwin.patch new file mode 100644 index 000000000..c98d53e37 --- /dev/null +++ b/source/kde/kde/patch/kwin.patch @@ -0,0 +1,3 @@ +cat $CWD/patch/kwin/2339f7bfb7872e05fbdbd931850a74a3441b3292.patch | patch -p1 --verbose || { touch ${SLACK_KDE_BUILD_DIR}/${PKGNAME}.failed ; continue ; } +cat $CWD/patch/kwin/4c5830ba149ec4462587a95f78624dfc981d281c.patch | patch -p1 --verbose || { touch ${SLACK_KDE_BUILD_DIR}/${PKGNAME}.failed ; continue ; } +cat $CWD/patch/kwin/a9acef8573ca44ce9649a6ced42e19ef6d4ee3fd.patch | patch -p1 --verbose || { touch ${SLACK_KDE_BUILD_DIR}/${PKGNAME}.failed ; continue ; } diff --git a/source/kde/kde/patch/kwin/2339f7bfb7872e05fbdbd931850a74a3441b3292.patch b/source/kde/kde/patch/kwin/2339f7bfb7872e05fbdbd931850a74a3441b3292.patch new file mode 100644 index 000000000..8a4de9426 --- /dev/null +++ b/source/kde/kde/patch/kwin/2339f7bfb7872e05fbdbd931850a74a3441b3292.patch @@ -0,0 +1,35 @@ +From 2339f7bfb7872e05fbdbd931850a74a3441b3292 Mon Sep 17 00:00:00 2001 +From: Xaver Hugl <xaver.hugl@gmail.com> +Date: Wed, 26 Oct 2022 21:43:41 +0200 +Subject: [PATCH] x11window: revert more from 3a28c02f + +BUG: 461032 + + +(cherry picked from commit 2997fb24bb8171145ce1107df85eb3a3a4c0cf74) +--- + src/x11window.cpp | 7 +++---- + 1 file changed, 3 insertions(+), 4 deletions(-) + +diff --git a/src/x11window.cpp b/src/x11window.cpp +index c02d33b338..b7a180d317 100644 +--- a/src/x11window.cpp ++++ b/src/x11window.cpp +@@ -4519,11 +4519,10 @@ void X11Window::changeMaximize(bool horizontal, bool vertical, bool adjust) + } + } + r.moveTopLeft(rules()->checkPosition(r.topLeft())); +- // The above code tries to center align the window followed by setting top and bottom +- // it's possible that we're in between two pixels +- r.setX(Xcb::nativeFloor(r.x())); +- r.setY(Xcb::nativeFloor(r.y())); + } ++ // The above code tries to center align the window followed by setting top and bottom ++ // it's possible that we're in between two pixels ++ r = Xcb::nativeFloor(r); + + moveResize(r); + if (options->electricBorderMaximize() && r.top() == clientArea.top()) { +-- +GitLab + diff --git a/source/kde/kde/patch/kwin/4c5830ba149ec4462587a95f78624dfc981d281c.patch b/source/kde/kde/patch/kwin/4c5830ba149ec4462587a95f78624dfc981d281c.patch new file mode 100644 index 000000000..9de1f3db1 --- /dev/null +++ b/source/kde/kde/patch/kwin/4c5830ba149ec4462587a95f78624dfc981d281c.patch @@ -0,0 +1,34 @@ +From 4c5830ba149ec4462587a95f78624dfc981d281c Mon Sep 17 00:00:00 2001 +From: =?UTF-8?q?=C5=81ukasz=20Patron?= <priv.luk@gmail.com> +Date: Tue, 25 Oct 2022 15:49:27 +0200 +Subject: [PATCH] x11: Don't force QT_NO_GLIB=1 + +This breaks certain apps, e.g. KDE System Settings when launched from +overview effect. + +BUG: 460980 + + +(cherry picked from commit c2b4f03f9671c0ad9fc1929426df5f79db414aa7) +--- + src/main_x11.cpp | 4 ---- + 1 file changed, 4 deletions(-) + +diff --git a/src/main_x11.cpp b/src/main_x11.cpp +index 21cfab94b3..c175d8729e 100644 +--- a/src/main_x11.cpp ++++ b/src/main_x11.cpp +@@ -337,10 +337,6 @@ int main(int argc, char *argv[]) + + signal(SIGPIPE, SIG_IGN); + +- // Disable the glib event loop integration, since it seems to be responsible +- // for several bug reports about high CPU usage (bug #239963) +- setenv("QT_NO_GLIB", "1", true); +- + // enforce xcb plugin, unfortunately command line switch has precedence + setenv("QT_QPA_PLATFORM", "xcb", true); + +-- +GitLab + diff --git a/source/kde/kde/patch/kwin/a9acef8573ca44ce9649a6ced42e19ef6d4ee3fd.patch b/source/kde/kde/patch/kwin/a9acef8573ca44ce9649a6ced42e19ef6d4ee3fd.patch new file mode 100644 index 000000000..0fbb74fed --- /dev/null +++ b/source/kde/kde/patch/kwin/a9acef8573ca44ce9649a6ced42e19ef6d4ee3fd.patch @@ -0,0 +1,27 @@ +From a9acef8573ca44ce9649a6ced42e19ef6d4ee3fd Mon Sep 17 00:00:00 2001 +From: =?UTF-8?q?=C5=81ukasz=20Patron?= <priv.luk@gmail.com> +Date: Thu, 27 Oct 2022 00:42:24 +0200 +Subject: [PATCH] x11: Don't force QT_QPA_PLATFORM=xcb + +This is basically a cherry pick of 77ec43d5e (Don't force +QT_QPA_PLATFORM=wayland), except for X11. +--- + src/main_x11.cpp | 2 ++ + 1 file changed, 2 insertions(+) + +diff --git a/src/main_x11.cpp b/src/main_x11.cpp +index bb722bf5d8..66e0341f1c 100644 +--- a/src/main_x11.cpp ++++ b/src/main_x11.cpp +@@ -362,6 +362,8 @@ int main(int argc, char *argv[]) + + KWin::ApplicationX11 a(argc, argv); + a.setupTranslator(); ++ // reset QT_QPA_PLATFORM so we don't propagate it to our children (e.g. apps launched from the overview effect) ++ qunsetenv("QT_QPA_PLATFORM"); + + KSignalHandler::self()->watchSignal(SIGTERM); + KSignalHandler::self()->watchSignal(SIGINT); +-- +GitLab + |