| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | Sat Nov 20 07:12:58 UTC 2021...d/python3-3.9.9-x86_64-1.txz: Upgraded.
This is a bugfix release, fixing four bugs in Python 3.9.8 (including an
argparse regression in Python 3.9.8 which caused complex command-line tools
to fail recognizing sub-commands properly). It also makes a couple of
corrections to the documentation.
For more information, see:
https://docs.python.org/release/3.9.9/whatsnew/changelog.html
l/libjpeg-turbo-2.1.2-x86_64-1.txz: Upgraded.
l/python-setuptools_scm-6.3.2-x86_64-1.txz: Added.
This is needed when building some Python modules to correctly parse their
metadata, as recently discovered with importlib_metadata and zipp. While
we'll stick to the version of Markdown that we've got, it seems like a good
idea to get this in before the release to help prevent people from running
into similar "version 0.0.0" issues with other Python modules.
Thanks to USUARIONUEVO.
l/python-tomli-1.2.2-x86_64-1.txz: Added.
This is needed by setuptools_scm. Also, the SlackBuild contains a nice
example of using a setup.py shim to setuptools for a Python module that
only contains pyproject.toml and not setup.py.
Thanks to Heinz Wiesinger.
l/qtkeychain-0.13.2-x86_64-1.txz: Upgraded.
n/libmbim-1.26.2-x86_64-1.txz: Upgraded.
n/libnftnl-1.2.1-x86_64-1.txz: Upgraded.
n/nftables-1.0.1-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-91.3.2-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/91.3.2/releasenotes/
extra/php8/php8-8.0.13-x86_64-1.txz: Upgraded.
This update fixes bugs and a security issue:
XML: special character is breaking the path in xml function.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21707
(* Security fix *)
20211120071258 |   Patrick J Volkerding | 2021-11-20 | 1 | -2/+2 |
| * | Thu Oct 21 19:36:32 UTC 2021...a/lvm2-2.03.13-x86_64-1.txz: Upgraded.
Reverted to working version.
d/rust-1.56.0-x86_64-1.txz: Upgraded.
l/pipewire-0.3.39-x86_64-1.txz: Upgraded.
n/krb5-1.19.2-x86_64-2.txz: Rebuilt.
[PATCH] Fix KDC null deref on TGS inner body null server.
This fixes an issue where an authenticated attacker can cause a denial of
service in the KDC by sending a FAST TGS request with no server field.
Thanks to nobodino.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37750
(* Security fix *)
x/ibus-m17n-1.4.8-x86_64-1.txz: Upgraded.
x/libinput-1.19.2-x86_64-1.txz: Upgraded.
xap/freerdp-2.4.1-x86_64-1.txz: Upgraded.
This update fixes two security issues:
Improper client input validation for gateway connections allows to overwrite
memory.
Improper region checks in all clients allow out of bound write to memory.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-41159
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-41160
(* Security fix *)
xap/gftp-2.7.1b-x86_64-1.txz: Upgraded.
extra/php8/php8-8.0.12-x86_64-1.txz: Upgraded.
This update fixes bugs and a security issue:
FPM: PHP-FPM oob R/W in root process leading to privilege escalation.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21703
(* Security fix *)
20211021193632 | Patrick J Volkerding | 2021-10-22 | 1 | -2/+2 |
| * | Sat Sep 25 01:05:55 UTC 2021...a/coreutils-9.0-x86_64-1.txz: Upgraded.
Thanks to GazL for pointing out where I needed to be looking in the code to
stick with the traditional (for us, anyway) ls quoting style.
n/ca-certificates-20210924-noarch-1.txz: Upgraded.
Removed DST_Root_CA_X3.crt.
n/cifs-utils-6.14-x86_64-1.txz: Upgraded.
20210925010555 | Patrick J Volkerding | 2021-09-25 | 1 | -2/+2 |
| * | Wed Aug 25 20:32:43 UTC 2021...d/cmake-3.21.2-x86_64-1.txz: Upgraded.
d/gcc-11.2.0-x86_64-2.txz: Rebuilt.
d/gcc-brig-11.2.0-x86_64-2.txz: Rebuilt.
d/gcc-g++-11.2.0-x86_64-2.txz: Rebuilt.
d/gcc-gdc-11.2.0-x86_64-2.txz: Rebuilt.
d/gcc-gfortran-11.2.0-x86_64-2.txz: Rebuilt.
d/gcc-gnat-11.2.0-x86_64-2.txz: Rebuilt.
d/gcc-go-11.2.0-x86_64-2.txz: Rebuilt.
[PATCH] compiler: correct condition for calling memclrHasPointers
This fixes bootstrapping golang 1.17 with gcc-go.
Thanks to Heinz Wiesinger.
d/gcc-objc-11.2.0-x86_64-2.txz: Rebuilt.
kde/latte-dock-0.10.1-x86_64-1.txz: Upgraded.
n/mutt-2.1.2-x86_64-1.txz: Upgraded.
n/php-7.4.23-x86_64-1.txz: Upgraded.
x/ibus-table-1.14.1-x86_64-1.txz: Upgraded.
x/libglvnd-1.3.4-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-91.0.3-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/91.0.3/releasenotes/
extra/php8/php8-8.0.10-x86_64-1.txz: Upgraded.
20210825203243 | Patrick J Volkerding | 2021-08-26 | 1 | -2/+2 |
| * | Fri Jul 30 18:19:26 UTC 2021...d/rust-1.54.0-x86_64-1.txz: Upgraded.
n/fetchmail-6.4.20-x86_64-1.txz: Upgraded.
n/php-7.4.22-x86_64-1.txz: Upgraded.
x/mesa-21.1.6-x86_64-1.txz: Upgraded.
x/xf86-video-amdgpu-21.0.0-x86_64-1.txz: Upgraded.
x/xorg-server-1.20.13-x86_64-1.txz: Upgraded.
x/xorg-server-xephyr-1.20.13-x86_64-1.txz: Upgraded.
x/xorg-server-xnest-1.20.13-x86_64-1.txz: Upgraded.
x/xorg-server-xvfb-1.20.13-x86_64-1.txz: Upgraded.
extra/php8/php8-8.0.9-x86_64-1.txz: Upgraded.
20210730181926 | Patrick J Volkerding | 2021-07-31 | 1 | -2/+2 |
| * | Wed Jun 30 03:45:31 UTC 2021...a/kernel-firmware-20210629_d79c267-noarch-1.txz: Upgraded.
ap/cups-2.3.3op2-x86_64-1.txz: Upgraded.
kde/lokalize-21.04.2-x86_64-2.txz: Rebuilt.
Recompiled against hunspell-1.7.0.
kde/sonnet-5.83.0-x86_64-2.txz: Rebuilt.
Recompiled against hunspell-1.7.0.
l/enchant-2.3.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/gtkspell-2.0.16-x86_64-7.txz: Rebuilt.
Recompiled against enchant-2.3.0.
l/hunspell-1.7.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/python-urllib3-1.26.6-x86_64-2.txz: Rebuilt.
Don't build python2 version.
l/python2-module-collection-2.7.18-x86_64-4.txz: Rebuilt.
Upgraded to urllib3-1.25.11 for compatibility with requests.
Thanks to USUARIONUEVO.
l/qt5-5.15.2-x86_64-10.txz: Rebuilt.
Recompiled against hunspell-1.7.0.
n/php-7.4.21-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues:
Core: SSRF bypass in FILTER_VALIDATE_URL.
PDO_Firebird: Stack buffer overflow in firebird_info_cb.
PDO_Firebird: SIGSEGV in firebird_handle_doer.
PDO_Firebird: SIGSEGV in firebird_stmt_execute.
PDO_Firebird: Crash while parsing blob data in firebird_fetch_blob.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21705
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21704
(* Security fix *)
xap/pan-0.146-x86_64-5.txz: Rebuilt.
Recompiled against enchant-2.3.0.
extra/php8/php8-8.0.8-x86_64-1.txz: Upgraded.
20210630034531 | Patrick J Volkerding | 2021-06-30 | 1 | -2/+2 |
| * | Mon Jun 7 18:53:49 UTC 2021...Hey folks! Sorry about the delay in getting this batch out but I had other
distractions going on here last week that prevented getting this one wrapped
up. Anyway, probably the highlight of this update set is that we've decided
to abandon the 5.10 LTS kernel in favor of following the latest one. We've
never really had a policy that required LTS in a stable release although that
is how it has been done for years, but based on comments from the Slackware
community it seems like 5.10 LTS isn't getting a lot of love and lacks
hardware support that people need now. Conversely, the reports on 5.12 have
been almost entirely positive, so we're going to provide what we think is the
best available kernel. It's unlikely that we'll see another LTS prior to
release, so the plan for maintenance is to keep following the latest kernels
as needed for security purposes. If that means we have to jump to a new branch
while supporting the stable release, we'll start the kernel out in testing
first until we've had some feedback that it's safe to move it to the patches
directory. Sooner or later we will end up on an LTS kernel again, and at that
point we'll just roll with that one. Feel free to comment (or complain) about
this plan on LQ... I'll be curious to see what people think. Anyway, enjoy!
a/hwdata-0.348-noarch-1.txz: Upgraded.
a/kernel-generic-5.12.9-x86_64-1.txz: Upgraded.
a/kernel-huge-5.12.9-x86_64-1.txz: Upgraded.
a/kernel-modules-5.12.9-x86_64-1.txz: Upgraded.
ap/ispell-3.4.04-x86_64-1.txz: Upgraded.
ap/mpg123-1.28.0-x86_64-1.txz: Upgraded.
ap/slackpkg-15.0.5-noarch-1.txz: Upgraded.
Add "--" option to "command cd" in bash completion file. (akinomyoga)
shell-completions/slackpkg.bash: add "show-changelog".
Import bash-completion file from upstream project.
Added the new-config actions for specific files. (Piter PUNK)
Harden slackpkg with respect to obtaining GPG key. (CRTS)
d/clisp-2.50_20191103_c26de7873-x86_64-5.txz: Rebuilt.
Upgraded to libffcall-2.3.
d/git-2.32.0-x86_64-1.txz: Upgraded.
d/kernel-headers-5.12.9-x86-1.txz: Upgraded.
d/poke-1.3-x86_64-1.txz: Upgraded.
d/vala-0.52.4-x86_64-1.txz: Upgraded.
k/kernel-source-5.12.9-noarch-1.txz: Upgraded.
kde/calligra-3.2.1-x86_64-9.txz: Rebuilt.
Recompiled against poppler-21.06.1.
kde/cantor-21.04.1-x86_64-2.txz: Rebuilt.
Recompiled against poppler-21.06.1.
kde/digikam-7.2.0-x86_64-3.txz: Rebuilt.
Recompiled against imagemagick-7.0.11_14.
kde/kfilemetadata-5.82.0-x86_64-2.txz: Rebuilt.
Recompiled against poppler-21.06.1.
kde/kile-2.9.93-x86_64-9.txz: Rebuilt.
Recompiled against poppler-21.06.1.
kde/kitinerary-21.04.1-x86_64-2.txz: Rebuilt.
Recompiled against poppler-21.06.1.
kde/krita-4.4.3-x86_64-5.txz: Rebuilt.
Recompiled against poppler-21.06.1.
kde/okular-21.04.1-x86_64-2.txz: Rebuilt.
Recompiled against poppler-21.06.1.
l/alsa-lib-1.2.5-x86_64-2.txz: Rebuilt.
Account for unexpected packing of the conf file tarballs. We'll see if this
is enough to make things work well again.
l/at-spi2-core-2.40.2-x86_64-1.txz: Upgraded.
l/dvdauthor-0.7.2-x86_64-5.txz: Rebuilt.
Recompiled against imagemagick-7.0.11_14.
l/libogg-1.3.5-x86_64-1.txz: Upgraded.
l/librsvg-2.50.7-x86_64-1.txz: Upgraded.
l/pipewire-0.3.29-x86_64-1.txz: Upgraded.
l/polkit-0.119-x86_64-1.txz: Upgraded.
This update includes a mitigation for local privilege escalation using
polkit_system_bus_name_get_creds_sync().
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3560
(* Security fix *)
l/poppler-21.06.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/pycairo-1.20.1-x86_64-1.txz: Upgraded.
l/qca-2.3.3-x86_64-1.txz: Upgraded.
l/vte-0.64.2-x86_64-1.txz: Upgraded.
n/epic5-2.1.5-x86_64-1.txz: Upgraded.
n/httpd-2.4.48-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
mod_http2: Fix a potential NULL pointer dereference.
Unexpected <Location> section matching with 'MergeSlashes OFF'.
mod_auth_digest: possible stack overflow by one nul byte while validating
the Digest nonce.
mod_session: Fix possible crash due to NULL pointer dereference, which
could be used to cause a Denial of Service with a malicious backend
server and SessionHeader.
mod_session: Fix possible crash due to NULL pointer dereference, which
could be used to cause a Denial of Service.
mod_proxy_http: Fix possible crash due to NULL pointer dereference, which
could be used to cause a Denial of Service.
mod_proxy_wstunnel, mod_proxy_http: Handle Upgradable protocols end-to-end
negotiation.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-31618
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30641
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35452
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26691
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26690
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13950
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17567
(* Security fix *)
n/libmbim-1.24.8-x86_64-1.txz: Upgraded.
n/libqmi-1.28.6-x86_64-1.txz: Upgraded.
n/nettle-3.7.3-x86_64-1.txz: Upgraded.
n/openldap-2.4.59-x86_64-1.txz: Upgraded.
n/p11-kit-0.24.0-x86_64-1.txz: Upgraded.
n/php-7.4.20-x86_64-1.txz: Upgraded.
n/vsftpd-3.0.4-x86_64-1.txz: Upgraded.
n/whois-5.5.10-x86_64-1.txz: Upgraded.
x/libX11-1.7.2-x86_64-1.txz: Upgraded.
This is a bug fix release, correcting a regression introduced by and
improving the checks from the fix for CVE-2021-31535.
x/libinput-1.18.0-x86_64-1.txz: Upgraded.
x/mesa-21.1.2-x86_64-1.txz: Upgraded.
xap/blueman-2.2.1-x86_64-1.txz: Upgraded.
xap/gnuplot-5.4.2-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-78.11.0-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/78.11.0/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2021-26/
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29964
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29967
(* Security fix *)
xap/pidgin-2.14.5-x86_64-1.txz: Upgraded.
xap/xine-lib-1.2.11-x86_64-6.txz: Rebuilt.
Recompiled against poppler-21.06.1.
extra/bash-completion/bash-completion-2.11-noarch-2.txz: Rebuilt.
Removed the slackpkg completion file.
extra/php8/php8-8.0.7-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20210607185349 | Patrick J Volkerding | 2021-06-07 | 1 | -2/+2 |
| * | Wed May 5 19:56:53 UTC 2021...a/bash-5.1.008-x86_64-1.txz: Upgraded.
d/python-setuptools-56.1.0-x86_64-1.txz: Upgraded.
l/libgnt-2.14.1-x86_64-1.txz: Added.
Thanks to Robby Workman.
l/mozjs78-78.10.1esr-x86_64-1.txz: Upgraded.
l/python-six-1.16.0-x86_64-1.txz: Upgraded.
l/readline-8.1.001-x86_64-1.txz: Upgraded.
n/mutt-2.0.7-x86_64-1.txz: Upgraded.
n/php-7.4.19-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-88.0.1-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/88.0.1/releasenotes/
https://www.mozilla.org/security/advisories/mfsa2021-20/
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29953
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29952
(* Security fix *)
xap/mozilla-thunderbird-78.10.1-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/78.10.1/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2021-19/
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29951
(* Security fix *)
xap/pidgin-2.14.4-x86_64-2.txz: Rebuilt.
Recompiled against libgnt-2.14.1 to restore the finch cli app.
Thanks to Robby Workman.
xfce/xfce4-clipman-plugin-1.6.2-x86_64-1.txz: Upgraded.
extra/php8/php8-8.0.6-x86_64-1.txz: Upgraded.
20210505195653 | Patrick J Volkerding | 2021-05-06 | 1 | -2/+2 |
| * | Thu Apr 29 18:49:00 UTC 2021...a/less-581.2-x86_64-1.txz: Upgraded.
ap/nano-5.7-x86_64-1.txz: Upgraded.
d/cmake-3.20.2-x86_64-1.txz: Upgraded.
n/httpd-2.4.47-x86_64-1.txz: Upgraded.
n/samba-4.14.4-x86_64-1.txz: Upgraded.
This is a security release in order to address the following defect:
Negative idmap cache entries can cause incorrect group entries in the
Samba file server process token.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20254
https://www.samba.org/samba/security/CVE-2021-20254.html
(* Security fix *)
extra/php8/php8-8.0.5-x86_64-1.txz: Upgraded.
20210429184900 | Patrick J Volkerding | 2021-04-30 | 1 | -2/+2 |
| * | Wed Mar 3 20:26:20 UTC 2021...a/elogind-246.10-x86_64-1.txz: Upgraded.
a/kernel-firmware-20210303_5ecd13f-noarch-1.txz: Upgraded.
ap/nano-5.6.1-x86_64-1.txz: Upgraded.
d/help2man-1.48.2-x86_64-1.txz: Upgraded.
n/libqmi-1.28.2-x86_64-1.txz: Upgraded.
n/openssh-8.5p1-x86_64-1.txz: Upgraded.
n/php-7.4.16-x86_64-1.txz: Upgraded.
extra/php8/php8-8.0.3-x86_64-1.txz: Upgraded.
20210303202620 | Patrick J Volkerding | 2021-03-04 | 1 | -2/+2 |
| * | Fri Feb 19 20:53:50 UTC 2021...d/autoconf-archive-2021.02.19-noarch-1.txz: Upgraded.
d/python3-3.9.2-x86_64-1.txz: Upgraded.
kde/libksysguard-5.21.0-x86_64-2.txz: Rebuilt.
Patched to fix crash without systemd. Thanks to LuckyCyborg.
l/imagemagick-7.0.11_0-x86_64-1.txz: Upgraded.
extra/php8/php8-8.0.2-x86_64-1.txz: Added.
20210219205350 | Patrick J Volkerding | 2021-02-20 | 1 | -0/+2 |
Patrick J Volkerding