| Commit message (Expand) | Author | Files | Lines |
2024-06-06 | Thu Jun 6 19:44:49 UTC 2024...kde/kstars-3.7.1-x86_64-1.txz: Upgraded.
l/mlt-7.24.0-x86_64-2.txz: Rebuilt.
Add build options -DMOD_QT6=ON and -DMOD_GLXANIMATE_QT6=ON.
Thanks to gmgf and sombragris.
l/protobuf-27.1-x86_64-1.txz: Upgraded.
n/ipset-7.22-x86_64-1.txz: Upgraded.
n/php-8.3.8-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues:
Bypass of CVE-2012-1823, Argument Injection in PHP-CGI.
Filter bypass in filter_var FILTER_VALIDATE_URL.
Bypass of CVE-2024-1874.
For more information, see:
https://www.php.net/ChangeLog-8.php#8.3.8
https://www.cve.org/CVERecord?id=CVE-2024-4577
https://www.cve.org/CVERecord?id=CVE-2024-5458
https://www.cve.org/CVERecord?id=CVE-2024-5585
(* Security fix *)
x/libinput-1.26.0-x86_64-1.txz: Upgraded.
x/libwacom-2.12.0-x86_64-1.txz: Upgraded.
x/mesa-24.1.1-x86_64-1.txz: Upgraded.
xap/pan-0.159-x86_64-1.txz: Upgraded.
20240606194449 | Patrick J Volkerding | 11 | -122/+172 |
2024-06-05 | Wed Jun 5 19:06:36 UTC 2024...a/kernel-firmware-20240604_22643bb-noarch-1.txz: Upgraded.
a/less-657-x86_64-1.txz: Upgraded.
a/openssl-solibs-3.3.1-x86_64-1.txz: Upgraded.
d/cmake-3.29.4-x86_64-1.txz: Upgraded.
l/poppler-24.06.0-x86_64-1.txz: Upgraded.
l/protobuf-27.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/python-zipp-3.19.2-x86_64-1.txz: Upgraded.
l/qt6-6.7.1_20240516_6977d02f-x86_64-2.txz: Rebuilt.
Recompiled against protobuf-27.0.
n/ca-certificates-20240604-noarch-1.txz: Upgraded.
This update provides the latest CA certificates to check for the
authenticity of SSL connections.
n/mosh-1.4.0-x86_64-2.txz: Rebuilt.
Recompiled against protobuf-27.0.
n/openssl-3.3.1-x86_64-1.txz: Upgraded.
This update fixes bugs and one low severity security issue:
Calling the OpenSSL API function SSL_free_buffers may cause memory to be
accessed that was previously freed in some situations. Our investigations
indicate that this function is rarely used by applications.
For more information, see:
https://www.openssl.org/news/secadv/20240528.txt
https://www.cve.org/CVERecord?id=CVE-2024-4741
(* Security fix *)
20240605190636 | Patrick J Volkerding | 10 | -86/+304 |
2024-06-03 | Mon Jun 3 19:49:25 UTC 2024...a/less-656-x86_64-1.txz: Upgraded.
d/luajit-2.1.1716656478-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
Thanks to Stuart Winter.
kde/digikam-8.3.0-x86_64-3.txz: Rebuilt.
Recompiled against opencv-4.10.0.
kde/plasma-workspace-5.27.11-x86_64-2.txz: Rebuilt.
Reverted to working version, even though this is never a fix. ;-)
l/Mako-1.3.5-x86_64-1.txz: Upgraded.
l/frei0r-plugins-2.3.2-x86_64-3.txz: Rebuilt.
Recompiled against opencv-4.10.0.
l/gst-plugins-bad-free-1.24.4-x86_64-2.txz: Rebuilt.
Recompiled against opencv-4.10.0.
l/opencv-4.10.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/python-certifi-2024.6.2-x86_64-1.txz: Upgraded.
l/vte-0.76.3-x86_64-1.txz: Upgraded.
l/wireplumber-0.5.3-x86_64-1.txz: Upgraded.
x/libdrm-2.4.121-x86_64-1.txz: Upgraded.
20240603194925 | Patrick J Volkerding | 16 | -108/+162 |
2024-06-01 | Sat Jun 1 19:52:37 UTC 2024...a/findutils-4.10.0-x86_64-1.txz: Upgraded.
a/logrotate-3.22.0-x86_64-1.txz: Upgraded.
Thanks to opty for getting our changes accepted upstream.
a/sysvinit-scripts-15.1-noarch-18.txz: Rebuilt.
rc.M: start dnsmasq before ntpd. Thanks to lostintime.
d/git-2.45.2-x86_64-1.txz: Upgraded.
d/poke-4.1-x86_64-1.txz: Upgraded.
kde/fcitx5-configtool-5.1.6-x86_64-1.txz: Upgraded.
kde/kwin-5.27.11-x86_64-2.txz: Rebuilt.
Recompiled against wayland-1.23.0 since it seems they broke the ABI.
Let me know if anything else needs help.
kde/libindi-2.0.8-x86_64-1.txz: Upgraded.
l/mujs-1.3.4-x86_64-1.txz: Added.
l/python-zipp-3.19.1-x86_64-1.txz: Upgraded.
n/ntp-4.2.8p18-x86_64-2.txz: Rebuilt.
rc.ntp: properly create the PID file on start.
Add /etc/default/ntp to configure ntpd startup options since some people are
needing to add -4 to avoid an error.
Thanks to rkelsen and teoberi.
x/fcitx5-5.1.10-x86_64-1.txz: Upgraded.
x/fcitx5-chinese-addons-5.1.6-x86_64-1.txz: Upgraded.
x/fcitx5-hangul-5.1.4-x86_64-1.txz: Upgraded.
x/fcitx5-kkc-5.1.4-x86_64-1.txz: Upgraded.
x/fcitx5-table-extra-5.1.6-x86_64-1.txz: Upgraded.
x/fcitx5-table-other-5.1.3-x86_64-1.txz: Upgraded.
x/libime-1.1.8-x86_64-1.txz: Upgraded.
x/xcb-imdkit-1.0.9-x86_64-1.txz: Upgraded.
xap/blueman-2.4.2-x86_64-1.txz: Upgraded.
xap/mpv-0.38.0-x86_64-3.txz: Rebuilt.
Recompiled against mujs-1.3.4.
20240601195237 | Patrick J Volkerding | 34 | -215/+401 |
2024-06-01 | Fri May 31 23:52:07 UTC 2024...d/luajit-2.0.1716656478-x86_64-1.txz: Added.
Thanks to Erik Falor.
n/proftpd-1.3.8b-x86_64-4.txz: Rebuilt.
Build with mod_wrap2 and mod_wrap2_file instead of mod_wrap, which has
problems with ipv6. Thanks to jayjwa.
xap/mpv-0.38.0-x86_64-2.txz: Rebuilt.
[PATCH 1/4] av_common: parent mp_get_lavf_demuxer contents to the list.
[PATCH 2/4] stream: implement get_protocols method for stream_lavf.
[PATCH 3/4] build: dynamically generate mpv.desktop file protocols.
[PATCH 4/4] stream_lavf: don't add ffmpeg bluray or dvd protocols.
Thanks to gmgf.
Build against luajit. Thanks to pm_a_cup_of_tea.
20240531235207 | Patrick J Volkerding | 13 | -59/+789 |
2024-05-31 | Fri May 31 18:49:48 UTC 2024...a/hwdata-0.383-noarch-1.txz: Upgraded.
a/pciutils-3.13.0-x86_64-1.txz: Upgraded.
d/ccache-4.10-x86_64-1.txz: Upgraded.
d/meson-1.4.1-x86_64-1.txz: Upgraded.
d/ruby-3.3.2-x86_64-1.txz: Upgraded.
kde/plasma-sdk-5.27.11.1-x86_64-1.txz: Upgraded.
kde/plasma-workspace-5.27.11.1-x86_64-1.txz: Upgraded.
kde/tokodon-23.08.5-x86_64-1.txz: Added.
l/libvpx-1.14.1-x86_64-1.txz: Upgraded.
l/python-requests-2.32.3-x86_64-1.txz: Upgraded.
n/NetworkManager-1.48.0-x86_64-1.txz: Upgraded.
n/getmail-6.19.00-x86_64-1.txz: Upgraded.
x/libevdev-1.13.2-x86_64-1.txz: Upgraded.
x/wayland-1.23.0-x86_64-1.txz: Upgraded.
xap/gnuplot-6.0.1-x86_64-1.txz: Upgraded.
xap/mpv-0.38.0-x86_64-1.txz: Added.
Evidently we need one more media player. ;-)
Thanks to John Vogel Corning, Andreas Guldstrand, and Christoph Willing.
20240531184948 | Patrick J Volkerding | 20 | -144/+421 |
2024-05-30 | Thu May 30 18:38:13 UTC 2024...a/kernel-firmware-20240529_92d264e-noarch-1.txz: Upgraded.
a/kernel-generic-6.9.3-x86_64-1.txz: Upgraded.
a/kernel-huge-6.9.3-x86_64-1.txz: Upgraded.
a/kernel-modules-6.9.3-x86_64-1.txz: Upgraded.
a/xz-5.6.2-x86_64-1.txz: Upgraded.
d/kernel-headers-6.9.3-x86-1.txz: Upgraded.
k/kernel-source-6.9.3-noarch-1.txz: Upgraded.
ZRAM_WRITEBACK n -> y
+CRYPTO_SIG y
l/gst-plugins-bad-free-1.24.4-x86_64-1.txz: Upgraded.
l/gst-plugins-base-1.24.4-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.24.4-x86_64-1.txz: Upgraded.
l/gst-plugins-libav-1.24.4-x86_64-1.txz: Upgraded.
l/gstreamer-1.24.4-x86_64-1.txz: Upgraded.
l/nodejs-20.14.0-x86_64-1.txz: Upgraded.
xfce/xfce4-screenshooter-1.10.6-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240530183813 | Patrick J Volkerding | 19 | -179/+207 |
2024-05-28 | Tue May 28 18:08:19 UTC 2024...a/sysvinit-scripts-15.1-noarch-17.txz: Rebuilt.
rc.S: enable swapping on a ZRAM device, configurable in /etc/default/zram.
rc.S, rc.6: Don't use mount -n option.
l/adwaita-icon-theme-46.2-noarch-1.txz: Upgraded.
l/adwaita-icon-theme-legacy-20240517_7642b10-noarch-1.txz: Added.
Thanks to reddog83.
l/enchant-2.8.0-x86_64-1.txz: Upgraded.
l/ffmpeg-6.1.1-x86_64-3.txz: Rebuilt.
Patched to fix AV1 VA-API dropping frames. Thanks to fulalas.
l/python-zipp-3.19.0-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-126.0.1-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/firefox/126.0.1/releasenotes/
isolinux/initrd.img: Rebuilt.
Add /sbin/zramctl.
rc.S: Set up some swap on a ZRAM device.
SeTpartitions: Support installing to bcachefs filesystems.
SeTpartitions: quit offering reiserfs which will be gone in Linux 6.10.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Add /sbin/zramctl.
rc.S: Set up some swap on a ZRAM device.
SeTpartitions: Support installing to bcachefs filesystems.
SeTpartitions: quit offering reiserfs which will be gone in Linux 6.10.
20240528180819 | Patrick J Volkerding | 27 | -180/+1155 |
2024-05-26 | Sun May 26 18:29:25 UTC 2024...a/e2fsprogs-1.47.1-x86_64-2.txz: Rebuilt.
Define a proper --libexecdir. ;-) Thanks to lostintime.
ap/vim-9.1.0446-x86_64-1.txz: Upgraded.
l/imagemagick-7.1.1_33-x86_64-1.txz: Upgraded.
l/libsodium-1.0.20-x86_64-1.txz: Upgraded.
l/vte-0.76.2-x86_64-1.txz: Upgraded.
xap/vim-gvim-9.1.0446-x86_64-1.txz: Upgraded.
20240526182925 | Patrick J Volkerding | 6 | -55/+83 |
2024-05-26 | Sun May 26 00:07:39 UTC 2024...a/kernel-firmware-20240519_ec8627e-noarch-1.txz: Upgraded.
a/kernel-generic-6.9.2-x86_64-1.txz: Upgraded.
a/kernel-huge-6.9.2-x86_64-1.txz: Upgraded.
a/kernel-modules-6.9.2-x86_64-1.txz: Upgraded.
d/kernel-headers-6.9.2-x86-1.txz: Upgraded.
e/emacspeak-60.0-x86_64-2.txz: Rebuilt.
Fixed dangling symlink. Thanks to marav.
k/kernel-source-6.9.2-noarch-1.txz: Upgraded.
kde/calligra-3.2.1-x86_64-40.txz: Rebuilt.
Recompiled against gsl-2.8.
kde/krita-5.2.2-x86_64-10.txz: Rebuilt.
Recompiled against gsl-2.8.
kde/kstars-3.7.0-x86_64-2.txz: Rebuilt.
Recompiled against gsl-2.8.
kde/libindi-2.0.7-x86_64-2.txz: Rebuilt.
Recompiled against gsl-2.8.
kde/stellarsolver-2.5-x86_64-2.txz: Rebuilt.
Recompiled against gsl-2.8.
kde/step-23.08.5-x86_64-3.txz: Rebuilt.
Recompiled against gsl-2.8.
l/dav1d-1.4.2-x86_64-1.txz: Upgraded.
l/glib2-2.80.2-x86_64-2.txz: Rebuilt.
[PATCH 1/2] gmenuexporter: Fix a NULL pointer dereference on an error
handling path.
[PATCH 2/2] gactiongroupexporter: Fix memory problems on an error
handling path.
Thanks to Philip Withnall and Arleson.
l/gsl-2.8-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/librsvg-2.58.1-x86_64-1.txz: Upgraded.
l/pipewire-1.0.7-x86_64-1.txz: Upgraded.
n/ntp-4.2.8p18-x86_64-1.txz: Upgraded.
x/igt-gpu-tools-1.28-x86_64-3.txz: Rebuilt.
Recompiled against gsl-2.8.
xap/sane-1.3.1-x86_64-1.txz: Upgraded.
xap/xlockmore-5.78-x86_64-1.txz: Upgraded.
xap/xsnow-3.7.9-x86_64-2.txz: Rebuilt.
Recompiled against gsl-2.8.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240526000739 | Patrick J Volkerding | 31 | -203/+604 |
2024-05-24 | Fri May 24 19:58:32 UTC 2024...ap/sqlite-3.46.0-x86_64-1.txz: Upgraded.
l/gvfs-1.54.1-x86_64-1.txz: Upgraded.
l/python-requests-2.32.2-x86_64-1.txz: Upgraded.
n/c-ares-1.29.0-x86_64-1.txz: Upgraded.
n/dhcpcd-10.0.8-x86_64-1.txz: Upgraded.
n/wsdd2-1.8.7-x86_64-1.txz: Added.
Needed by Samba to enable share discovery.
Thanks to mistfire and Tim Dickson.
20240524195832 | Patrick J Volkerding | 12 | -70/+337 |
2024-05-23 | Thu May 23 18:47:30 UTC 2024...a/etc-15.1-x86_64-12.txz: Rebuilt.
Remove less related profile variables from /etc/profile.
a/exfatprogs-1.2.3-x86_64-1.txz: Upgraded.
a/less-655-x86_64-2.txz: Rebuilt.
Create /etc/profile.d/less.{csh,sh} for less related profile variables.
By default, don't display the informational messages on the top line
of the output (this can be configured in less.{csh,sh}.
Don't attempt special handling of .log files as it breaks viewing a file
such as foo.log.bz2.
d/parallel-20240522-noarch-1.txz: Upgraded.
l/python-trove-classifiers-2024.5.22-x86_64-1.txz: Upgraded.
x/mesa-24.1.0-x86_64-1.txz: Upgraded.
x/xterm-392-x86_64-1.txz: Upgraded.
xap/pavucontrol-6.0-x86_64-1.txz: Upgraded.
20240523184730 | Patrick J Volkerding | 12 | -95/+226 |
2024-05-22 | Wed May 22 18:57:13 UTC 2024...a/e2fsprogs-1.47.1-x86_64-1.txz: Upgraded.
a/iniparser-4.2.2-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
a/ndctl-79-x86_64-2.txz: Rebuilt.
Recompiled against iniparser-4.2.2.
d/python-setuptools-70.0.0-x86_64-1.txz: Upgraded.
kde/calligra-3.2.1-x86_64-39.txz: Rebuilt.
Recompiled against poppler-24.05.0.
kde/cantor-23.08.5-x86_64-6.txz: Rebuilt.
Recompiled against poppler-24.05.0.
kde/kfilemetadata-5.116.0-x86_64-2.txz: Rebuilt.
Recompiled against poppler-24.05.0.
kde/kile-2.9.93-x86_64-33.txz: Rebuilt.
Recompiled against poppler-24.05.0.
kde/kitinerary-23.08.5-x86_64-4.txz: Rebuilt.
Recompiled against poppler-24.05.0.
kde/krita-5.2.2-x86_64-9.txz: Rebuilt.
Recompiled against poppler-24.05.0.
kde/okular-23.08.5-x86_64-4.txz: Rebuilt.
Recompiled against poppler-24.05.0.
kde/qqc2-desktop-style-5.116.1-x86_64-1.txz: Upgraded.
l/hicolor-icon-theme-0.18-noarch-1.txz: Upgraded.
l/libcupsfilters-2.0.0-x86_64-2.txz: Rebuilt.
Recompiled against poppler-24.05.0.
l/lmdb-0.9.33-x86_64-1.txz: Upgraded.
l/poppler-24.05.0-x86_64-1.txz: Upgraded.
This seems to require C++20 now...
Shared library .so-version bump.
l/python-requests-2.32.1-x86_64-1.txz: Upgraded.
l/qt6-6.7.1_20240516_6977d02f-x86_64-1.txz: Upgraded.
n/curl-8.8.0-x86_64-1.txz: Upgraded.
n/openldap-2.6.8-x86_64-1.txz: Upgraded.
x/xorg-server-xwayland-24.1.0-x86_64-1.txz: Upgraded.
Thanks to marav for the patch.
20240522185713 | Patrick J Volkerding | 26 | -198/+337 |
2024-05-20 | Mon May 20 18:42:49 UTC 2024...a/less-655-x86_64-1.txz: Upgraded.
Switch to lesspipe.sh from https://github.com/wofr06. Thanks to zsd.
ap/ghostscript-10.03.1-x86_64-1.txz: Upgraded.
ap/man-pages-6.8-noarch-1.txz: Upgraded.
ap/mariadb-10.11.8-x86_64-1.txz: Upgraded.
This update fixes bugs and a security issue:
Difficult to exploit vulnerability allows unauthenticated attacker with
logon to the infrastructure where MariaDB Server executes to compromise the
server. This could result in unauthorized update, insert or delete access
to some of the data as well as unauthorized read access to a subset of the
data and unauthorized ability to cause a partial denial of service.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-21096
(* Security fix *)
d/doxygen-1.11.0-x86_64-1.txz: Upgraded.
d/llvm-18.1.6-x86_64-1.txz: Upgraded.
kde/attica-5.116.0-x86_64-1.txz: Upgraded.
kde/baloo-5.116.0-x86_64-1.txz: Upgraded.
kde/bluez-qt-5.116.0-x86_64-1.txz: Upgraded.
kde/breeze-icons-5.116.0-noarch-1.txz: Upgraded.
kde/extra-cmake-modules-5.116.0-x86_64-1.txz: Upgraded.
kde/frameworkintegration-5.116.0-x86_64-1.txz: Upgraded.
kde/kactivities-5.116.0-x86_64-1.txz: Upgraded.
kde/kactivities-stats-5.116.0-x86_64-1.txz: Upgraded.
kde/kapidox-5.116.0-x86_64-1.txz: Upgraded.
kde/karchive-5.116.0-x86_64-1.txz: Upgraded.
kde/kauth-5.116.0-x86_64-1.txz: Upgraded.
kde/kbookmarks-5.116.0-x86_64-1.txz: Upgraded.
kde/kcalendarcore-5.116.0-x86_64-1.txz: Upgraded.
kde/kcmutils-5.116.0-x86_64-1.txz: Upgraded.
kde/kcodecs-5.116.0-x86_64-1.txz: Upgraded.
kde/kcompletion-5.116.0-x86_64-1.txz: Upgraded.
kde/kconfig-5.116.0-x86_64-1.txz: Upgraded.
kde/kconfigwidgets-5.116.0-x86_64-1.txz: Upgraded.
kde/kcontacts-5.116.0-x86_64-1.txz: Upgraded.
kde/kcoreaddons-5.116.0-x86_64-1.txz: Upgraded.
kde/kcrash-5.116.0-x86_64-1.txz: Upgraded.
kde/kdav-5.116.0-x86_64-1.txz: Upgraded.
kde/kdbusaddons-5.116.0-x86_64-1.txz: Upgraded.
kde/kdeclarative-5.116.0-x86_64-1.txz: Upgraded.
kde/kded-5.116.0-x86_64-1.txz: Upgraded.
kde/kdelibs4support-5.116.0-x86_64-1.txz: Upgraded.
kde/kdesignerplugin-5.116.0-x86_64-1.txz: Upgraded.
kde/kdesu-5.116.0-x86_64-1.txz: Upgraded.
kde/kdewebkit-5.116.0-x86_64-1.txz: Upgraded.
kde/kdnssd-5.116.0-x86_64-1.txz: Upgraded.
kde/kdoctools-5.116.0-x86_64-1.txz: Upgraded.
kde/kemoticons-5.116.0-x86_64-1.txz: Upgraded.
kde/kfilemetadata-5.116.0-x86_64-1.txz: Upgraded.
kde/kglobalaccel-5.116.0-x86_64-1.txz: Upgraded.
kde/kguiaddons-5.116.0-x86_64-1.txz: Upgraded.
kde/kholidays-5.116.0-x86_64-1.txz: Upgraded.
kde/khtml-5.116.0-x86_64-1.txz: Upgraded.
kde/ki18n-5.116.0-x86_64-1.txz: Upgraded.
kde/kiconthemes-5.116.0-x86_64-1.txz: Upgraded.
kde/kidletime-5.116.0-x86_64-1.txz: Upgraded.
kde/kimageformats-5.116.0-x86_64-1.txz: Upgraded.
kde/kinit-5.116.0-x86_64-1.txz: Upgraded.
kde/kio-5.116.0-x86_64-1.txz: Upgraded.
kde/kirigami2-5.116.0-x86_64-1.txz: Upgraded.
kde/kitemmodels-5.116.0-x86_64-1.txz: Upgraded.
kde/kitemviews-5.116.0-x86_64-1.txz: Upgraded.
kde/kjobwidgets-5.116.0-x86_64-1.txz: Upgraded.
kde/kjs-5.116.0-x86_64-1.txz: Upgraded.
kde/kjsembed-5.116.0-x86_64-1.txz: Upgraded.
kde/kmediaplayer-5.116.0-x86_64-1.txz: Upgraded.
kde/knewstuff-5.116.0-x86_64-1.txz: Upgraded.
kde/knotifications-5.116.0-x86_64-1.txz: Upgraded.
kde/knotifyconfig-5.116.0-x86_64-1.txz: Upgraded.
kde/kpackage-5.116.0-x86_64-1.txz: Upgraded.
kde/kparts-5.116.0-x86_64-1.txz: Upgraded.
kde/kpeople-5.116.0-x86_64-1.txz: Upgraded.
kde/kplotting-5.116.0-x86_64-1.txz: Upgraded.
kde/kpty-5.116.0-x86_64-1.txz: Upgraded.
kde/kquickcharts-5.116.0-x86_64-1.txz: Upgraded.
kde/kross-5.116.0-x86_64-1.txz: Upgraded.
kde/krunner-5.116.0-x86_64-1.txz: Upgraded.
kde/kservice-5.116.0-x86_64-1.txz: Upgraded.
kde/ktexteditor-5.116.0-x86_64-1.txz: Upgraded.
kde/ktextwidgets-5.116.0-x86_64-1.txz: Upgraded.
kde/kunitconversion-5.116.0-x86_64-1.txz: Upgraded.
kde/kwallet-5.116.0-x86_64-1.txz: Upgraded.
kde/kwayland-5.116.0-x86_64-1.txz: Upgraded.
kde/kwidgetsaddons-5.116.0-x86_64-1.txz: Upgraded.
kde/kwindowsystem-5.116.0-x86_64-1.txz: Upgraded.
kde/kxmlgui-5.116.0-x86_64-1.txz: Upgraded.
kde/kxmlrpcclient-5.116.0-x86_64-1.txz: Upgraded.
kde/modemmanager-qt-5.116.0-x86_64-1.txz: Upgraded.
kde/networkmanager-qt-5.116.0-x86_64-1.txz: Upgraded.
kde/oxygen-icons-5.116.0-noarch-1.txz: Upgraded.
kde/plasma-framework-5.116.0-x86_64-1.txz: Upgraded.
kde/prison-5.116.0-x86_64-1.txz: Upgraded.
kde/purpose-5.116.0-x86_64-1.txz: Upgraded.
kde/qqc2-desktop-style-5.116.0-x86_64-1.txz: Upgraded.
kde/solid-5.116.0-x86_64-1.txz: Upgraded.
kde/sonnet-5.116.0-x86_64-1.txz: Upgraded.
kde/syndication-5.116.0-x86_64-1.txz: Upgraded.
kde/syntax-highlighting-5.116.0-x86_64-1.txz: Upgraded.
kde/threadweaver-5.116.0-x86_64-1.txz: Upgraded.
l/gi-docgen-2024.1-x86_64-1.txz: Upgraded.
l/libass-0.17.2-x86_64-1.txz: Upgraded.
l/libcap-2.70-x86_64-1.txz: Upgraded.
l/libedit-20240517_3.1-x86_64-1.txz: Upgraded.
l/qt5-5.15.13_20240519_56514bcd-x86_64-1.txz: Upgraded.
n/iw-6.9-x86_64-1.txz: Upgraded.
n/nghttp2-1.62.1-x86_64-1.txz: Upgraded.
20240520184249 | Patrick J Volkerding | 23 | -677/+891 |
2024-05-17 | Fri May 17 18:49:15 UTC 2024...a/iniparser-4.2.1-x86_64-1.txz: Upgraded.
a/kernel-generic-6.9.1-x86_64-1.txz: Upgraded.
a/kernel-huge-6.9.1-x86_64-1.txz: Upgraded.
a/kernel-modules-6.9.1-x86_64-1.txz: Upgraded.
a/lvm2-2.03.24-x86_64-1.txz: Upgraded.
a/mcelog-199-x86_64-1.txz: Upgraded.
a/xfsprogs-6.8.0-x86_64-1.txz: Upgraded.
d/kernel-headers-6.9.1-x86-1.txz: Upgraded.
e/emacspeak-60.0-x86_64-1.txz: Upgraded.
k/kernel-source-6.9.1-noarch-1.txz: Upgraded.
l/python-trove-classifiers-2024.5.17-x86_64-1.txz: Upgraded.
l/python-zipp-3.18.2-x86_64-1.txz: Upgraded.
n/bluez-5.76-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240517184915 | Patrick J Volkerding | 21 | -195/+192 |
2024-05-16 | Thu May 16 02:31:40 UTC 2024...a/bcachefs-tools-1.7.0-x86_64-1.txz: Added.
a/kernel-generic-6.9.0-x86_64-2.txz: Upgraded.
a/kernel-huge-6.9.0-x86_64-2.txz: Upgraded.
a/kernel-modules-6.9.0-x86_64-2.txz: Upgraded.
d/git-2.45.1-x86_64-1.txz: Upgraded.
This update fixes security issues:
Recursive clones on case-insensitive filesystems that support symbolic
links are susceptible to case confusion that can be exploited to
execute just-cloned code during the clone operation.
Repositories can be configured to execute arbitrary code during local
clones. To address this, the ownership checks introduced in v2.30.3
are now extended to cover cloning local repositories.
Local clones may end up hardlinking files into the target repository's
object database when source and target repository reside on the same
disk. If the source repository is owned by a different user, then
those hardlinked files may be rewritten at any point in time by the
untrusted user.
When cloning a local source repository that contains symlinks via the
filesystem, Git may create hardlinks to arbitrary user-readable files
on the same filesystem as the target repository in the objects/
directory.
It is supposed to be safe to clone untrusted repositories, even those
unpacked from zip archives or tarballs originating from untrusted
sources, but Git can be tricked to run arbitrary code as part of the
clone.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-32002
https://www.cve.org/CVERecord?id=CVE-2024-32004
https://www.cve.org/CVERecord?id=CVE-2024-32020
https://www.cve.org/CVERecord?id=CVE-2024-32021
https://www.cve.org/CVERecord?id=CVE-2024-32465
(* Security fix *)
d/kernel-headers-6.9.0-x86-2.txz: Upgraded.
d/strace-6.9-x86_64-1.txz: Upgraded.
k/kernel-source-6.9.0-noarch-2.txz: Upgraded.
BCACHEFS_FS m -> y
CRYPTO_CHACHA20 m -> y
CRYPTO_LIB_CHACHA_GENERIC m -> y
CRYPTO_LIB_POLY1305_GENERIC m -> y
CRYPTO_POLY1305 m -> y
MITIGATION_GDS_FORCE y -> n
kde/wcslib-8.3-x86_64-1.txz: Upgraded.
l/gdk-pixbuf2-2.42.12-x86_64-1.txz: Upgraded.
ani: Reject files with multiple INA or IART chunks.
ani: Reject files with multiple anih chunks.
ani: validate chunk size.
Thanks to 0xvhp, pedrib, and Benjamin Gilbert.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-48622
(* Security fix *)
l/gtk+3-3.24.42-x86_64-1.txz: Upgraded.
n/bind-9.18.27-x86_64-1.txz: Upgraded.
This is a bugfix release.
n/popa3d-1.0.3-x86_64-8.txz: Rebuilt.
This is a bugfix release:
Build with AUTH_PAM, not AUTH_SHADOW.
Thanks to jayjwa.
x/xorg-server-xwayland-23.2.7-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240516023140 | Patrick J Volkerding | 25 | -1018/+543 |
2024-05-14 | Tue May 14 19:07:51 UTC 2024...a/kernel-firmware-20240510_b9d2bf2-noarch-1.txz: Upgraded.
a/kernel-generic-6.9.0-x86_64-1.txz: Upgraded.
a/kernel-huge-6.9.0-x86_64-1.txz: Upgraded.
a/kernel-modules-6.9.0-x86_64-1.txz: Upgraded.
d/gcc-14.1.0-x86_64-1.txz: Upgraded.
d/gcc-g++-14.1.0-x86_64-1.txz: Upgraded.
d/gcc-gdc-14.1.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
d/gcc-gfortran-14.1.0-x86_64-1.txz: Upgraded.
d/gcc-gm2-14.1.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
d/gcc-gnat-14.1.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
d/gcc-go-14.1.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
d/gcc-objc-14.1.0-x86_64-1.txz: Upgraded.
d/kernel-headers-6.9.0-x86-1.txz: Upgraded.
d/libgccjit-14.1.0-x86_64-1.txz: Upgraded.
d/libtool-2.4.7-x86_64-7.txz: Rebuilt.
Recompiled to update embedded GCC version number.
k/kernel-source-6.9.0-noarch-1.txz: Upgraded.
l/harfbuzz-8.5.0-x86_64-1.txz: Upgraded.
l/mozjs115-115.11.0esr-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-126.0-x86_64-1.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/126.0/releasenotes/
https://www.mozilla.org/security/advisories/mfsa2024-21/
https://www.cve.org/CVERecord?id=CVE-2024-4764
https://www.cve.org/CVERecord?id=CVE-2024-4367
https://www.cve.org/CVERecord?id=CVE-2024-4765
https://www.cve.org/CVERecord?id=CVE-2024-4766
https://www.cve.org/CVERecord?id=CVE-2024-4767
https://www.cve.org/CVERecord?id=CVE-2024-4768
https://www.cve.org/CVERecord?id=CVE-2024-4769
https://www.cve.org/CVERecord?id=CVE-2024-4770
https://www.cve.org/CVERecord?id=CVE-2024-4771
https://www.cve.org/CVERecord?id=CVE-2024-4772
https://www.cve.org/CVERecord?id=CVE-2024-4773
https://www.cve.org/CVERecord?id=CVE-2024-4774
https://www.cve.org/CVERecord?id=CVE-2024-4775
https://www.cve.org/CVERecord?id=CVE-2024-4776
https://www.cve.org/CVERecord?id=CVE-2024-4777
https://www.cve.org/CVERecord?id=CVE-2024-4778
(* Security fix *)
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240514190751 | Patrick J Volkerding | 18 | -685/+1572 |
2024-05-13 | Mon May 13 18:22:20 UTC 2024...l/libxml2-2.12.7-x86_64-1.txz: Upgraded.
Fix buffer overread with "xmllint --htmlout".
xmllint: Fix --pedantic option.
save: Handle invalid parent pointers in xhtmlNodeDumpOutput.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-34459
(* Security fix *)
l/python-lxml-5.2.2-x86_64-1.txz: Upgraded.
n/iproute2-6.9.0-x86_64-1.txz: Upgraded.
n/nghttp2-1.62.0-x86_64-1.txz: Upgraded.
x/xterm-391-x86_64-1.txz: Upgraded.
20240513182220 | Patrick J Volkerding | 5 | -53/+87 |
2024-05-12 | Sun May 12 19:10:12 UTC 2024...a/less-654-x86_64-1.txz: Upgraded.
d/ninja-1.12.1-x86_64-1.txz: Upgraded.
n/whois-5.5.23-x86_64-1.txz: Upgraded.
Updated the .sc, .********* (.xn--yfro4i67o, Singapore)
and .********************************* (.xn--clchc0ea0b2g2a9gcd, Singapore)
TLD servers.
extra/bittornado/bittornado-0.3.18-noarch-3.txz: Removed.
Obsolete and based on python2.
20240512191012 | Patrick J Volkerding | 167 | -586/+6620 |
2024-05-09 | Thu May 9 19:26:51 UTC 2024...l/libjpeg-turbo-3.0.3-x86_64-1.txz: Upgraded.
l/nodejs-20.13.1-x86_64-1.txz: Upgraded.
l/pipewire-1.0.6-x86_64-1.txz: Upgraded.
n/php-8.3.7-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.php.net/ChangeLog-8.php#8.3.7
n/wireless-regdb-2024.05.08-x86_64-1.txz: Upgraded.
extra/bash-completion/bash-completion-2.14.0-noarch-1.txz: Upgraded.
20240509192651 | Patrick J Volkerding | 7 | -68/+99 |
2024-05-08 | Wed May 8 21:05:29 UTC 2024...d/cmake-3.29.3-x86_64-1.txz: Upgraded.
l/adwaita-icon-theme-46.0-noarch-2.txz: Rebuilt.
Restore icons that went missing after adwaita-icon-theme-41.0.
l/glib2-2.80.2-x86_64-1.txz: Upgraded.
l/libgnt-2.14.4_dev-x86_64-1.txz: Upgraded.
l/mozilla-nss-3.100-x86_64-1.txz: Upgraded.
n/samba-4.20.1-x86_64-1.txz: Upgraded.
x/mesa-24.0.7-x86_64-1.txz: Upgraded.
20240508210529 | Patrick J Volkerding | 16 | -97/+180 |
2024-05-07 | Tue May 7 20:06:35 UTC 2024...d/mercurial-6.7.3-x86_64-1.txz: Upgraded.
l/imagemagick-7.1.1_32-x86_64-2.txz: Rebuilt.
Add INSTALL_BASE= to --with-perl-options= to fix perl modules installation
not honoring $LIBDIRSUFFIX since 7.1.1-30. Thanks to HQuest.
l/libqalculate-5.1.1-x86_64-1.txz: Upgraded.
l/nodejs-20.13.0-x86_64-1.txz: Upgraded.
l/python-typing_extensions-4.11.0-x86_64-1.txz: Removed.
No longer needed with the upgrade to python-setuptools_scm-8.1.0.
Thanks to audriusk for the reminder.
x/anthy-unicode-1.0.0.20240502-x86_64-1.txz: Upgraded.
20240507200635 | Patrick J Volkerding | 11 | -191/+115 |
2024-05-06 | Mon May 6 17:41:36 UTC 2024...a/util-linux-2.40.1-x86_64-1.txz: Upgraded.
l/imagemagick-7.1.1_32-x86_64-1.txz: Upgraded.
l/libqalculate-5.1.0-x86_64-1.txz: Upgraded.
l/python-Jinja2-3.1.4-x86_64-1.txz: Upgraded.
l/python-setuptools_scm-8.1.0-x86_64-1.txz: Upgraded.
20240506174136 | Patrick J Volkerding | 9 | -61/+83 |
2024-05-05 | Sun May 5 18:35:56 UTC 2024...l/python-babel-2.15.0-x86_64-1.txz: Upgraded.
y/nethack-3.6.7-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
20240505183556 | Patrick J Volkerding | 6 | -35/+53 |
2024-05-04 | Sat May 4 17:37:11 UTC 2024...a/elvis-2.2_0-x86_64-9.txz: Rebuilt.
Recompiled against ncurses-6.5.
a/gettext-0.22.5-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
a/procps-ng-4.0.4-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
ap/bc-1.07.1-x86_64-6.txz: Rebuilt.
Recompiled against ncurses-6.5.
ap/bpe-2.01.00-x86_64-7.txz: Rebuilt.
Recompiled against ncurses-6.5.
ap/gutenprint-5.3.4-x86_64-4.txz: Rebuilt.
Recompiled against ncurses-6.5.
ap/ispell-3.4.06-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
ap/joe-4.6-x86_64-5.txz: Rebuilt.
Recompiled against ncurses-6.5.
ap/nvme-cli-2.9.1-x86_64-1.txz: Upgraded.
ap/powertop-2.15-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
ap/sc-7.16-x86_64-11.txz: Rebuilt.
Recompiled against ncurses-6.5.
ap/screen-4.9.1-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
ap/xfsdump-3.1.12-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
d/clisp-2.50_20230718_669249717-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
d/cmake-3.29.2-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
d/cscope-15.9-x86_64-4.txz: Rebuilt.
Recompiled against ncurses-6.5.
d/gettext-tools-0.22.5-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
d/guile-3.0.9-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
d/lua-5.4.6-x86_64-6.txz: Rebuilt.
Recompiled against ncurses-6.5.
d/poke-4.0-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
kde/kalgebra-23.08.5-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
l/enchant-2.7.3-x86_64-1.txz: Upgraded.
l/gdbm-1.23-x86_64-3.txz: Rebuilt.
Recompiled against ncurses-6.5.
l/lame-3.100-x86_64-5.txz: Rebuilt.
Recompiled against ncurses-6.5.
l/libcdio-2.1.0-x86_64-4.txz: Rebuilt.
Recompiled against ncurses-6.5.
l/libedit-20230828_3.1-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
l/libnjb-2.2.7-x86_64-5.txz: Rebuilt.
Recompiled against ncurses-6.5.
l/libnvme-1.9-x86_64-1.txz: Upgraded.
l/libqalculate-5.0.0-x86_64-3.txz: Rebuilt.
Recompiled against ncurses-6.5.
l/python-pygments-2.18.0-x86_64-1.txz: Upgraded.
l/qtkeychain-0.14.3-x86_64-1.txz: Upgraded.
l/readline-8.2.010-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/elm-2.5.8-x86_64-8.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/epic5-2.1.12-x86_64-8.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/iftop-1.0pre4-x86_64-5.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/metamail-2.7-x86_64-11.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/mtr-0.95-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/net-snmp-5.9.4-x86_64-4.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/netkit-ftp-0.17-x86_64-8.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/netkit-ntalk-0.17-x86_64-8.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/netwatch-1.3.1_2-x86_64-6.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/nn-6.7.3-x86_64-9.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/php-8.3.6-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/samba-4.20.0-x86_64-3.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/telnet-0.17-x86_64-7.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/wpa_supplicant-2.10-x86_64-4.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/ytalk-3.3.0-x86_64-7.txz: Rebuilt.
Recompiled against ncurses-6.5.
xap/MPlayer-20240403-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
xap/ddd-3.4.0-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
xap/gnuchess-6.2.9-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
xap/xine-ui-0.99.14-x86_64-3.txz: Rebuilt.
Recompiled against ncurses-6.5.
y/bsd-games-2.17-x86_64-5.txz: Rebuilt.
Recompiled against ncurses-6.5.
20240504173711 | Patrick J Volkerding | 53 | -342/+555 |
2024-05-03 | Fri May 3 17:37:59 UTC 2024...a/hwdata-0.382-noarch-1.txz: Upgraded.
a/ndctl-79-x86_64-1.txz: Upgraded.
l/gtk4-4.14.4-x86_64-1.txz: Upgraded.
xap/gimp-2.10.38-x86_64-1.txz: Upgraded.
20240503173759 | Patrick J Volkerding | 6 | -82/+67 |
2024-05-03 | Thu May 2 23:49:58 UTC 2024...a/btrfs-progs-6.8.1-x86_64-1.txz: Upgraded.
a/kernel-firmware-20240502_28f75f1-noarch-1.txz: Upgraded.
a/kernel-generic-6.6.30-x86_64-1.txz: Upgraded.
a/kernel-huge-6.6.30-x86_64-1.txz: Upgraded.
a/kernel-modules-6.6.30-x86_64-1.txz: Upgraded.
ap/mariadb-10.11.7-x86_64-2.txz: Rebuilt.
Try to preserve the timestamp on rc.mysqld.new.
d/kernel-headers-6.6.30-x86-1.txz: Upgraded.
d/llvm-18.1.5-x86_64-1.txz: Upgraded.
d/rust-1.78.0-x86_64-1.txz: Upgraded.
k/kernel-source-6.6.30-noarch-1.txz: Upgraded.
l/SDL2-2.30.3-x86_64-1.txz: Upgraded.
n/mobile-broadband-provider-info-20240502-noarch-1.txz: Upgraded.
x/ibus-1.5.30-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240502234958 | Patrick J Volkerding | 22 | -221/+275 |
2024-05-01 | Wed May 1 18:48:17 UTC 2024...ap/nano-8.0-x86_64-1.txz: Upgraded.
ap/vim-9.1.0386-x86_64-1.txz: Upgraded.
l/liburing-2.6-x86_64-1.txz: Upgraded.
xap/vim-gvim-9.1.0386-x86_64-1.txz: Upgraded.
20240501184817 | Patrick J Volkerding | 3 | -44/+64 |
2024-04-30 | Tue Apr 30 18:54:11 UTC 2024...a/elogind-255.5-x86_64-1.txz: Upgraded.
d/git-2.45.0-x86_64-1.txz: Upgraded.
l/gst-plugins-bad-free-1.24.3-x86_64-1.txz: Upgraded.
l/gst-plugins-base-1.24.3-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.24.3-x86_64-1.txz: Upgraded.
l/gst-plugins-libav-1.24.3-x86_64-1.txz: Upgraded.
l/gstreamer-1.24.3-x86_64-1.txz: Upgraded.
20240430185411 | Patrick J Volkerding | 9 | -254/+102 |
2024-04-30 | Mon Apr 29 21:32:37 UTC 2024...a/aaa_libraries-15.1-x86_64-31.txz: Rebuilt.
Added: libncurses++w.so.6.5, libtic.so.6.5.
Upgraded: libformw.so.6.5, libmenuw.so.6.5, libncursesw.so.6.5,
libpanelw.so.6.5, libtinfo.so.6.5.
Removed (with compat symlinks made): libform.so.6.4, libmenu.so.6.4,
libncurses.so.6.4, libpanel.so.6.4.
a/aaa_terminfo-6.5-x86_64-1.txz: Upgraded.
l/ncurses-6.5-x86_64-1.txz: Upgraded.
This seemed like a good opportunity to go over my notes and try to make this
SlackBuild at least defensible, if not correct. :-) The non-wide libraries
have all been purged and replaced with compatibility symlinks pointing to the
wide versions. Anything trying to use -lncurses (etc) will be redirected to
-lncursesw (etc) at compile time. Looks like nearly 50 packages are linked to
the non-wide libraries, but everything works this way.
Thanks to GazL who provided most of the suggestions used.
l/python-pyproject-hooks-1.1.0-x86_64-1.txz: Upgraded.
n/lynx-2.9.1-x86_64-1.txz: Upgraded.
x/xconsole-1.1.0-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-125.0.3-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/firefox/125.0.3/releasenotes/
20240429213237 | Patrick J Volkerding | 11 | -160/+203 |
2024-04-28 | Sun Apr 28 19:20:42 UTC 2024...a/iniparser-4.2-x86_64-1.txz: Upgraded.
ap/hplip-3.23.12-x86_64-5.txz: Rebuilt.
Replace a single unicode space character in models.dat with an ASCII space
to prevent python3 from tripping over it in some cases. This seems to follow
the extreme programming motto of "do the simplest thing that could possibly
work", so we'll see if it does.
Thanks to pdags.
ap/jove-4.17.5.3-x86_64-1.txz: Upgraded.
l/enchant-2.7.2-x86_64-1.txz: Upgraded.
l/jasper-4.2.4-x86_64-1.txz: Upgraded.
l/libgtop-2.41.3-x86_64-1.txz: Upgraded.
l/mlt-7.24.0-x86_64-1.txz: Upgraded.
20240428192042 | Patrick J Volkerding | 14 | -275/+178 |
2024-04-27 | Sat Apr 27 19:02:25 UTC 2024...a/kernel-generic-6.6.29-x86_64-1.txz: Upgraded.
a/kernel-huge-6.6.29-x86_64-1.txz: Upgraded.
a/kernel-modules-6.6.29-x86_64-1.txz: Upgraded.
ap/cups-2.4.8-x86_64-1.txz: Upgraded.
d/kernel-headers-6.6.29-x86-1.txz: Upgraded.
d/valgrind-3.23.0-x86_64-1.txz: Upgraded.
k/kernel-source-6.6.29-noarch-1.txz: Upgraded.
l/enchant-2.7.1-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240427190225 | Patrick J Volkerding | 16 | -108/+142 |
2024-04-26 | Fri Apr 26 20:12:32 UTC 2024...a/kernel-firmware-20240426_fc21f47-noarch-1.txz: Upgraded.
ap/cups-2.4.7-x86_64-3.txz: Rebuilt.
Rebuild using --with-rundir=/run/cups.
ap/cups-browsed-2.0.0-x86_64-1.txz: Added.
This is the CUPS/IPP print queue browser daemon, previously part of the
cups-filters package.
ap/cups-filters-2.0.0-x86_64-1.txz: Upgraded.
l/libarchive-3.7.4-x86_64-1.txz: Upgraded.
l/libcupsfilters-2.0.0-x86_64-1.txz: Added.
This is required by cups-filters-2.0.0.
l/libppd-2.0.0-x86_64-1.txz: Added.
This is required by cups-filters-2.0.0.
l/libproxy-0.5.6-x86_64-1.txz: Upgraded.
x/wayland-protocols-1.36-noarch-1.txz: Upgraded.
xap/mozilla-firefox-125.0.2-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-125.0-x86_64-1.txz: Upgraded.
extra/rust-for-mozilla/rust-1.70.0-x86_64-4.txz: Removed.
20240426201232 | Patrick J Volkerding | 36 | -779/+726 |
2024-04-25 | Thu Apr 25 17:58:17 UTC 2024...l/PyQt-builder-1.16.2-x86_64-1.txz: Upgraded.
l/fribidi-1.0.14-x86_64-1.txz: Upgraded.
l/libarchive-3.7.3-x86_64-2.txz: Rebuilt.
Patched an out-of-bound error in the rar e8 filter that could allow for
the execution of arbitrary code.
Thanks to gmgf for the heads-up.
For more information, see:
https://github.com/advisories/GHSA-2jc9-36w4-pmqw
https://www.cve.org/CVERecord?id=CVE-2024-26256
(* Security fix *)
n/bluez-5.75-x86_64-3.txz: Rebuilt.
[PATCH] shared/uhid: Fix crash if bt_uhid_destroy free replay structure.
Thanks to sombragris.
n/libgpg-error-1.49-x86_64-1.txz: Upgraded.
20240425175817 | Patrick J Volkerding | 9 | -55/+172 |
2024-04-24 | Wed Apr 24 20:08:55 UTC 2024...ap/dmidecode-3.6-x86_64-1.txz: Upgraded.
kde/fcitx5-configtool-5.1.5-x86_64-1.txz: Upgraded.
l/aom-3.9.0-x86_64-1.txz: Upgraded.
x/mesa-24.0.6-x86_64-1.txz: Upgraded.
20240424200855 | Patrick J Volkerding | 6 | -52/+72 |
2024-04-24 | Tue Apr 23 22:24:03 UTC 2024...d/ruby-3.3.1-x86_64-1.txz: Upgraded.
This update fixes security issues:
Arbitrary memory address read vulnerability with Regex search.
RCE vulnerability with .rdoc_options in RDoc.
Buffer overread vulnerability in StringIO.
For more information, see:
https://www.ruby-lang.org/en/news/2024/04/23/arbitrary-memory-address-read-regexp-cve-2024-27282/
https://www.ruby-lang.org/en/news/2024/03/21/rce-rdoc-cve-2024-27281/
https://www.ruby-lang.org/en/news/2024/03/21/buffer-overread-cve-2024-27280/
https://www.cve.org/CVERecord?id=CVE-2024-27282
https://www.cve.org/CVERecord?id=CVE-2024-27281
https://www.cve.org/CVERecord?id=CVE-2024-27280
(* Security fix *)
l/python-docutils-0.21.2-x86_64-1.txz: Upgraded.
x/rendercheck-1.6-x86_64-1.txz: Upgraded.
x/xcb-imdkit-1.0.8-x86_64-1.txz: Upgraded.
20240423222403 | Patrick J Volkerding | 11 | -57/+149 |
2024-04-23 | Tue Apr 23 19:48:05 UTC 2024...a/ed-1.20.2-x86_64-1.txz: Upgraded.
d/parallel-20240422-noarch-1.txz: Upgraded.
kde/krusader-2.8.1-x86_64-1.txz: Upgraded.
kde/ktextaddons-1.5.4-x86_64-1.txz: Upgraded.
l/libgusb-0.4.9-x86_64-1.txz: Upgraded.
n/nmap-7.95-x86_64-1.txz: Upgraded.
x/fcitx5-5.1.9-x86_64-1.txz: Upgraded.
x/fcitx5-anthy-5.1.4-x86_64-1.txz: Upgraded.
x/fcitx5-chinese-addons-5.1.5-x86_64-1.txz: Upgraded.
x/fcitx5-gtk-5.1.3-x86_64-1.txz: Upgraded.
x/fcitx5-hangul-5.1.3-x86_64-1.txz: Upgraded.
x/fcitx5-kkc-5.1.3-x86_64-1.txz: Upgraded.
x/fcitx5-m17n-5.1.1-x86_64-1.txz: Upgraded.
x/fcitx5-qt-5.1.6-x86_64-1.txz: Upgraded.
x/fcitx5-sayura-5.1.2-x86_64-1.txz: Upgraded.
x/fcitx5-table-extra-5.1.5-x86_64-1.txz: Upgraded.
x/fcitx5-table-other-5.1.2-x86_64-1.txz: Upgraded.
x/fcitx5-unikey-5.1.4-x86_64-1.txz: Upgraded.
x/libime-1.1.7-x86_64-1.txz: Upgraded.
extra/emacs-regular-build/emacs-29.3-x86_64-2_regular.txz: Rebuilt.
This is a bugfix release.
Only build the X11/GTK+3 version. Use "emacs -nw" if you want to start it
in a terminal emulator in text mode, or rebuild if you really need to get
rid of the X11 dependency for some reason.
Build using --with-pdumper=auto. It seems that --with-dumping=unexec produces
a buggy Emacs here in the modern era, with symptoms such as "child signal FD:
Invalid argument". It's possible this had something to do with the reported
memory leaks as well.
Thanks to 3Tom for the bug report.
20240423194805 | Patrick J Volkerding | 37 | -341/+292 |
2024-04-22 | Mon Apr 22 19:36:38 UTC 2024...a/elogind-255.4_r2-x86_64-2.txz: Rebuilt.
OK, this is looking good enough to return to the main tree now.
Thanks to hamkg, ctrlaltca, and rizitis for helping to debug the sleep issues
with upstream, and to Sven Eden for the upstream fixes. I've changed the
default sleep mode from s2idle to deep as s2idle still locks up most of the
systems I've tried it on. Eventually we'll probably have to swallow this pill
though (more notes on that in the SlackBuild).
It didn't seem like recompiling polkit again was necessary, but correct me if
I'm wrong about that.
l/imagemagick-7.1.1_31-x86_64-1.txz: Upgraded.
l/python-hatchling-1.24.2-x86_64-1.txz: Upgraded.
l/vte-0.76.1-x86_64-1.txz: Upgraded.
l/wireplumber-0.5.2-x86_64-1.txz: Upgraded.
xap/freerdp-2.11.7-x86_64-1.txz: Upgraded.
This release eliminates a bunch of issues detected during oss-fuzz runs.
(* Security fix *)
20240422193638 | Patrick J Volkerding | 17 | -613/+340 |
2024-04-21 | Sun Apr 21 21:41:34 UTC 2024...a/etc-15.1-x86_64-11.txz: Rebuilt.
Populate missing /etc/gshadow entries. Thanks to opty.
l/PyQt-builder-1.16.1-x86_64-1.txz: Upgraded.
l/python-pluggy-1.5.0-x86_64-1.txz: Upgraded.
20240421214134 | Patrick J Volkerding | 6 | -42/+70 |
2024-04-20 | Sat Apr 20 00:10:39 UTC 2024...l/gdk-pixbuf2-2.42.11-x86_64-2.txz: Rebuilt.
Recompiled with -Dtests=false -Dothers=enabled to fix gkrellm.
Thanks to J_W for the bug report.
20240420001039 | Patrick J Volkerding | 4 | -26/+46 |
2024-04-19 | Fri Apr 19 19:36:17 UTC 2024...a/elogind-252.23-x86_64-3.txz: Rebuilt.
All right, it's time to stop the bleeding (edge). This has been verified as
the last working version of elogind, so we'll revert for now while moving the
newer sources into /testing. We didn't actually *need* the 255 branch for
libgudev (I was mistakenly under that impression), so this will be fine for
now. We'll keep an eye on upstream and move forward when things settle down.
d/vala-0.56.17-x86_64-1.txz: Upgraded.
l/gdk-pixbuf2-2.42.11-x86_64-1.txz: Upgraded.
l/gtk4-4.14.3-x86_64-1.txz: Upgraded.
l/polkit-124-x86_64-2.txz: Rebuilt.
Recompiled against elogind-252.23.
l/python-sphinx-7.3.7-x86_64-1.txz: Upgraded.
n/NetworkManager-1.46.0-x86_64-2.txz: Rebuilt.
Build with meson instead of autotools, since setting session_tracking to
elogind is ignored with autotools, and is set to consolekit instead.
While this didn't seem to make a difference in practice, better to get this
right now and rule it out as part of the issue.
Thanks to marav and LuckyCyborg for the options hints.
x/xdg-desktop-portal-1.18.4-x86_64-1.txz: Upgraded.
xap/freerdp-2.11.6-x86_64-1.txz: Upgraded.
This release is a security release and addresses multiple issues:
[Low] OutOfBound Read in zgfx_decompress_segment.
[Moderate] Integer overflow & OutOfBound Write in
clear_decompress_residual_data.
[Low] integer underflow in nsc_rle_decode.
[Low] OutOfBound Read in planar_skip_plane_rle.
[Low] OutOfBound Read in ncrush_decompress.
[Low] OutOfBound Read in interleaved_decompress.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-32041
https://www.cve.org/CVERecord?id=CVE-2024-32039
https://www.cve.org/CVERecord?id=CVE-2024-32040
https://www.cve.org/CVERecord?id=CVE-2024-32458
https://www.cve.org/CVERecord?id=CVE-2024-32459
https://www.cve.org/CVERecord?id=CVE-2024-32460
(* Security fix *)
20240419193617 | Patrick J Volkerding | 20 | -156/+763 |
2024-04-19 | Fri Apr 19 05:38:28 UTC 2024...xap/mozilla-thunderbird-115.10.1-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/115.10.1/releasenotes/
20240419053828 | Patrick J Volkerding | 3 | -26/+46 |
2024-04-18 | Thu Apr 18 19:17:30 UTC 2024...a/aaa_glibc-solibs-2.39-x86_64-2.txz: Rebuilt.
ap/vim-9.1.0346-x86_64-1.txz: Upgraded.
d/llvm-18.1.4-x86_64-1.txz: Upgraded.
d/nasm-2.16.03-x86_64-1.txz: Upgraded.
l/glibc-2.39-x86_64-2.txz: Rebuilt.
This update fixes a security issue:
The iconv() function in the GNU C Library versions 2.39 and older may
overflow the output buffer passed to it by up to 4 bytes when converting
strings to the ISO-2022-CN-EXT character set, which may be used to crash
an application or overwrite a neighbouring variable.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-2961
(* Security fix *)
l/glibc-i18n-2.39-x86_64-2.txz: Rebuilt.
l/glibc-profile-2.39-x86_64-2.txz: Rebuilt.
l/pycups-2.0.4-x86_64-1.txz: Upgraded.
l/python-hatchling-1.24.1-x86_64-1.txz: Upgraded.
l/python-sphinx-7.3.6-x86_64-1.txz: Upgraded.
n/bind-9.18.26-x86_64-1.txz: Upgraded.
This is a bugfix release.
xap/vim-gvim-9.1.0346-x86_64-1.txz: Upgraded.
20240418191730 | Patrick J Volkerding | 10 | -166/+405 |
2024-04-17 | Wed Apr 17 20:35:48 UTC 2024...a/kernel-firmware-20240417_e678699-noarch-1.txz: Upgraded.
a/kernel-generic-6.6.28-x86_64-1.txz: Upgraded.
a/kernel-huge-6.6.28-x86_64-1.txz: Upgraded.
a/kernel-modules-6.6.28-x86_64-1.txz: Upgraded.
a/xfsprogs-6.7.0-x86_64-1.txz: Upgraded.
d/kernel-headers-6.6.28-x86-1.txz: Upgraded.
k/kernel-source-6.6.28-noarch-1.txz: Upgraded.
l/pycups-2.0.3-x86_64-1.txz: Upgraded.
l/python-sphinx-7.3.5-x86_64-1.txz: Upgraded.
n/bluez-5.75-x86_64-2.txz: Rebuilt.
Prune duplicate config files. Thanks to audriusk.
x/libXmu-1.2.1-x86_64-1.txz: Upgraded.
x/util-macros-1.20.1-noarch-1.txz: Upgraded.
x/wayland-protocols-1.35-noarch-1.txz: Upgraded.
xap/mozilla-thunderbird-115.10.0-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/115.10.0/releasenotes/
https://www.mozilla.org/en-US/security/known-vulnerabilities/thunderbird/#thunderbird115.10
(* Security fix *)
xfce/xfce4-notifyd-0.9.4-x86_64-2.txz: Rebuilt.
Do not install DBus service files, as these cause xfce4-notifyd to start in
plasma sessions. Thanks to ctrlaltca.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240417203548 | Patrick J Volkerding | 22 | -184/+267 |
2024-04-17 | Tue Apr 16 21:57:56 UTC 2024...a/aaa_libraries-15.1-x86_64-30.txz: Rebuilt.
Upgraded: libcares.so.2.13.1.
Added (temporarily): libboost_*.so.1.84.0.
ap/pamixer-1.6-x86_64-2.txz: Rebuilt.
Recompiled against boost-1.85.0.
kde/kig-23.08.5-x86_64-4.txz: Rebuilt.
Recompiled against boost-1.85.0.
kde/kopeninghours-23.08.5-x86_64-4.txz: Rebuilt.
Recompiled against boost-1.85.0.
kde/krita-5.2.2-x86_64-8.txz: Rebuilt.
Recompiled against boost-1.85.0.
l/boost-1.85.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/cryfs-0.10.3-x86_64-11.txz: Rebuilt.
Recompiled against boost-1.85.0.
x/fcitx5-chinese-addons-5.1.4-x86_64-2.txz: Rebuilt.
Recompiled against boost-1.85.0.
x/libime-1.1.6-x86_64-2.txz: Rebuilt.
Recompiled against boost-1.85.0.
20240416215756 | Patrick J Volkerding | 13 | -79/+170 |
2024-04-16 | Tue Apr 16 18:50:13 UTC 2024...a/elogind-255.4_r2-x86_64-1.txz: Upgraded.
Prefer SuspendMode=deep. Thanks to LuckyCyborg.
Make 10-elogind.conf .new (but it will still be forced in this time).
Fix reading login.conf. Thanks to af7567.
This branch is feeling a bit alpha to me, but we'll stick with it for now.
ap/groff-1.23.0-x86_64-2.txz: Rebuilt.
[PATCH] Revert upstream change of mapping special characters for UTF-8.
Thanks to Stuart Winter.
l/mozjs115-115.10.0esr-x86_64-1.txz: Upgraded.
l/python-hatchling-1.24.0-x86_64-1.txz: Upgraded.
n/bluez-5.75-x86_64-1.txz: Upgraded.
x/libxcb-1.17.0-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-115.10.0esr-x86_64-1.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/115.10.0/releasenotes/
https://www.mozilla.org/security/advisories/mfsa2024-19/
https://www.cve.org/CVERecord?id=CVE-2024-3852
https://www.cve.org/CVERecord?id=CVE-2024-3854
https://www.cve.org/CVERecord?id=CVE-2024-3857
https://www.cve.org/CVERecord?id=CVE-2024-2609
https://www.cve.org/CVERecord?id=CVE-2024-3859
https://www.cve.org/CVERecord?id=CVE-2024-3861
https://www.cve.org/CVERecord?id=CVE-2024-3863
https://www.cve.org/CVERecord?id=CVE-2024-3302
https://www.cve.org/CVERecord?id=CVE-2024-3864
(* Security fix *)
20240416185013 | Patrick J Volkerding | 9 | -67/+229 |
2024-04-16 | Mon Apr 15 22:28:37 UTC 2024...ap/linuxdoc-tools-0.9.83-x86_64-1.txz: Upgraded.
Upgraded to linuxdoc-tools-0.9.83, gtk-doc-1.34.0, and asciidoc-10.2.0.
See the ChangeLog in source/ap/linuxdoc-tools for more details.
Thanks to Stuart Winter.
ap/sqlite-3.45.3-x86_64-1.txz: Upgraded.
l/Mako-1.3.3-x86_64-1.txz: Upgraded.
l/pipewire-1.0.5-x86_64-1.txz: Upgraded.
l/python-hatchling-1.23.0-x86_64-1.txz: Upgraded.
x/libwacom-2.11.0-x86_64-1.txz: Upgraded.
x/xcb-proto-1.17.0-x86_64-1.txz: Upgraded.
x/xf86-input-wacom-1.2.2-x86_64-1.txz: Upgraded.
xap/pan-0.158-x86_64-1.txz: Upgraded.
Let's process the git pull with NOCONFIGURE=1 ./autogen.sh for FTIO. :-)
20240415222837 | Patrick J Volkerding | 16 | -223/+302 |
2024-04-14 | Sun Apr 14 18:35:32 UTC 2024...a/less-653-x86_64-2.txz: Rebuilt.
This update patches a security issue:
less through 653 allows OS command execution via a newline character in the
name of a file, because quoting is mishandled in filename.c. Exploitation
typically requires use with attacker-controlled file names, such as the files
extracted from an untrusted archive. Exploitation also requires the LESSOPEN
environment variable, but this is set by default in many common cases.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-32487
(* Security fix *)
ap/inxi-3.3.34_1-noarch-1.txz: Upgraded.
d/python-setuptools-69.5.1-x86_64-1.txz: Upgraded.
n/bluez-5.74-x86_64-1.txz: Upgraded.
xfce/xfce4-notifyd-0.9.4-x86_64-1.txz: Upgraded.
Almost everyone has jumped to this version, so we'll get with the program.
20240414183532 | Patrick J Volkerding | 8 | -63/+182 |
2024-04-13 | Sat Apr 13 19:45:25 UTC 2024...l/imagemagick-7.1.1_29-x86_64-1.txz: Upgraded.
Revert to the previous ImageMagick because the latest one is destroying SVG
files if "identify" or "display" is used on them.
Thanks to pc2005.
20240413194525 | Patrick J Volkerding | 18 | -191/+198 |
2024-04-13 | Sat Apr 13 00:59:20 UTC 2024...l/python-docutils-0.21.1-x86_64-2.txz: Rebuilt.
Fix ridiculous broken symlink. Thanks to marav.
20240413005920 | Patrick J Volkerding | 4 | -27/+45 |