diff options
Diffstat (limited to 'ChangeLog.txt')
| -rw-r--r-- | ChangeLog.txt | 58 |
1 files changed, 58 insertions, 0 deletions
diff --git a/ChangeLog.txt b/ChangeLog.txt index 71c769df5..633cc9c9b 100644 --- a/ChangeLog.txt +++ b/ChangeLog.txt @@ -1,3 +1,61 @@ +Thu Feb 18 20:47:35 UTC 2021 +xap/mozilla-firefox-78.7.1esr-x86_64-1.txz: Upgraded. + It looks like rebuilding Firefox with Rust 1.50.0 causes it to crash on + HTML5 streams, so let's drop back to this build. 78.8.0 is coming soon + and hopefully it'll fix this. ++--------------------------+ +Thu Feb 18 19:29:30 UTC 2021 +a/kernel-generic-5.10.17-x86_64-1.txz: Upgraded. +a/kernel-huge-5.10.17-x86_64-1.txz: Upgraded. +a/kernel-modules-5.10.17-x86_64-1.txz: Upgraded. +a/lrzip-0.640-x86_64-1.txz: Upgraded. +a/pkgtools-15.0-noarch-37.txz: Rebuilt. + installpkg: in --terse mode, fix formatting for the uncommon situation + where numfmt produces a 5 character output e.g. 1000K. + Thanks to Karl Magnus Kolstø. +ap/mariadb-10.5.9-x86_64-1.txz: Upgraded. +d/kernel-headers-5.10.17-x86-1.txz: Upgraded. +d/llvm-11.1.0-x86_64-1.txz: Upgraded. + Shared library .so-version bump. +d/rust-1.50.0-x86_64-1.txz: Upgraded. +d/strace-5.11-x86_64-1.txz: Upgraded. +k/kernel-source-5.10.17-noarch-1.txz: Upgraded. +kde/kdevelop-5.6.2-x86_64-3.txz: Rebuilt. + Recompiled against llvm-11.1.0. +l/libedit-20210216_3.1-x86_64-1.txz: Upgraded. +l/libiodbc-3.52.14-x86_64-1.txz: Upgraded. +l/pipewire-0.3.22-x86_64-1.txz: Upgraded. +l/qt5-5.15.2-x86_64-5.txz: Rebuilt. + Recompiled against llvm-11.1.0. +l/vte-0.62.3-x86_64-1.txz: Upgraded. +n/bind-9.16.12-x86_64-1.txz: Upgraded. + This update fixes a security issue: + When tkey-gssapi-keytab or tkey-gssapi-credential was configured, a + specially crafted GSS-TSIG query could cause a buffer overflow in the + ISC implementation of SPNEGO (a protocol enabling negotiation of the + security mechanism to use for GSSAPI authentication). This flaw could + be exploited to crash named. Theoretically, it also enabled remote code + execution, but achieving the latter is very difficult in real-world + conditions. + For more information, see: + https://kb.isc.org/docs/cve-2020-8625 + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8625 + (* Security fix *) +n/libgcrypt-1.9.2-x86_64-1.txz: Upgraded. +n/nettle-3.7.1-x86_64-1.txz: Upgraded. +n/s-nail-14.9.21-x86_64-3.txz: Rebuilt. + The dotlock utility doesn't work with glibc-2.33 (another case where changes + to sandboxed functions are needed), but we really don't need it anyway so + just rebuild without it. Thanks to Paulo2. +x/mesa-20.3.4-x86_64-3.txz: Rebuilt. + Recompiled against llvm-11.1.0. +xap/mozilla-firefox-78.7.1esr-x86_64-2.txz: Rebuilt. +xap/mozilla-thunderbird-78.7.1-x86_64-2.txz: Rebuilt. +xap/seamonkey-2.53.6-x86_64-2.txz: Rebuilt. +isolinux/initrd.img: Rebuilt. +kernels/*: Upgraded. +usb-and-pxe-installers/usbboot.img: Rebuilt. ++--------------------------+ Tue Feb 16 20:57:36 UTC 2021 a/aaa_libraries-15.0-x86_64-3.txz: Rebuilt. Moved libzstd to /lib{,64}. Thanks to slackwhere and TommyC7. |