| Commit message (Expand) | Author | Age | Files | Lines |
* | Tue Jul 30 18:39:31 UTC 2024...a/btrfs-progs-6.10-x86_64-1.txz: Upgraded.
a/cryptsetup-2.7.4-x86_64-1.txz: Upgraded.
a/sysvinit-3.10-x86_64-1.txz: Upgraded.
d/git-2.46.0-x86_64-1.txz: Upgraded.
l/gst-plugins-bad-free-1.24.6-x86_64-1.txz: Upgraded.
l/gst-plugins-base-1.24.6-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.24.6-x86_64-1.txz: Upgraded.
l/gst-plugins-libav-1.24.6-x86_64-1.txz: Upgraded.
l/gstreamer-1.24.6-x86_64-1.txz: Upgraded.
l/python-sphinx-8.0.2-x86_64-1.txz: Upgraded.
l/tdb-1.4.11-x86_64-1.txz: Upgraded.
extra/tigervnc/tigervnc-1.14.0-x86_64-1.txz: Upgraded.
Thanks to marav for the build script help.
20240730183931 | Patrick J Volkerding | 2024-07-30 | 1 | -6/+4 |
* | Mon Jul 29 18:32:35 UTC 2024...a/sysklogd-2.6.1-x86_64-1.txz: Upgraded.
d/python-pip-24.2-x86_64-1.txz: Upgraded.
d/python-setuptools-72.1.0-x86_64-1.txz: Upgraded.
n/links-2.30-x86_64-1.txz: Upgraded.
x/libX11-1.8.10-x86_64-1.txz: Upgraded.
x/xinput_calibrator-0.8.0-x86_64-1.txz: Added.
20240729183235 | Patrick J Volkerding | 2024-07-29 | 2 | -9/+2 |
* | Sun Jul 28 12:39:59 UTC 2024...d/meson-1.5.1-x86_64-1.txz: Upgraded.
l/imagemagick-7.1.1_36-x86_64-1.txz: Upgraded.
l/python-alabaster-1.0.0-x86_64-1.txz: Upgraded.
n/wpa_supplicant-2.11-x86_64-2.txz: Rebuilt.
[PATCH] nl80211: add extra-ies only if allowed by driver.
This fixes using broadcom-wl based adapters.
Thanks to Stuart Winter.
x/OpenCC-1.1.8-x86_64-1.txz: Upgraded.
x/xfs-1.2.2-x86_64-1.txz: Upgraded.
20240728123959 | Patrick J Volkerding | 2024-07-28 | 1 | -1/+1 |
* | Thu Jul 25 20:22:54 UTC 2024...Enjoy your shiny new vmlinuz-6.9.11-generic!
Thanks again to LuckyCyborg for teaching me about the path of least resistance.
a/grub-2.12-x86_64-14.txz: Rebuilt.
Don't mention 09_slackware_linux in the /etc/default/grub comments.
a/kernel-generic-6.9.11-x86_64-1.txz: Upgraded.
a/kernel-huge-6.9.11-x86_64-1.txz: Upgraded.
a/kernel-modules-6.9.11-x86_64-1.txz: Upgraded.
a/mkinitrd-1.4.11-x86_64-35.txz: Rebuilt.
d/kernel-headers-6.9.11-x86-1.txz: Upgraded.
d/rust-1.80.0-x86_64-1.txz: Upgraded.
k/kernel-source-6.9.11-noarch-1.txz: Upgraded.
l/xapian-core-1.4.26-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240725202254 | Patrick J Volkerding | 2024-07-25 | 2 | -8/+8 |
* | Tue Jul 23 18:54:25 UTC 2024...Hey folks, we got a new glibc and are beginning the process of baking the new
default compile flags into the toolchain, the graphics stack, and whatever else
happens along. Enjoy! :-)
a/aaa_glibc-solibs-2.40-x86_64-1.txz: Upgraded.
a/libblockdev-3.1.1_1-x86_64-2.txz: Rebuilt.
Fix build against recent ext2fs.h. Thanks to shipujin.
a/xfsprogs-6.9.0-x86_64-1.txz: Upgraded.
ap/rpm-4.19.1.1-x86_64-3.txz: Rebuilt.
ap/slackpkg-15.0.10-noarch-4.txz: Rebuilt.
Prefer gpg1 again. Going with the modern gpg with more dependencies was
a mistake in this case. (now we know why gnupg-1 is still around :-)
Thanks to Petri Kaukasoina.
d/binutils-2.42-x86_64-3.txz: Rebuilt.
d/cargo-vendor-filterer-0.5.14-x86_64-2.txz: Rebuilt.
d/cbindgen-0.26.0-x86_64-2.txz: Rebuilt.
d/ccache-4.10.2-x86_64-1.txz: Upgraded.
d/cmake-3.30.1-x86_64-2.txz: Rebuilt.
d/gcc-14.1.0-x86_64-2.txz: Rebuilt.
d/gcc-g++-14.1.0-x86_64-2.txz: Rebuilt.
d/gcc-gdc-14.1.0-x86_64-2.txz: Rebuilt.
d/gcc-gfortran-14.1.0-x86_64-2.txz: Rebuilt.
d/gcc-gm2-14.1.0-x86_64-2.txz: Rebuilt.
d/gcc-gnat-14.1.0-x86_64-2.txz: Rebuilt.
d/gcc-go-14.1.0-x86_64-2.txz: Rebuilt.
d/gcc-objc-14.1.0-x86_64-2.txz: Rebuilt.
d/libgccjit-14.1.0-x86_64-2.txz: Rebuilt.
d/libtool-2.4.7-x86_64-8.txz: Rebuilt.
d/parallel-20240722-noarch-1.txz: Upgraded.
d/pkg-config-0.29.2-x86_64-5.txz: Rebuilt.
d/python-setuptools-71.1.0-x86_64-1.txz: Upgraded.
d/ruby-3.3.4-x86_64-2.txz: Rebuilt.
d/rust-bindgen-0.69.4-x86_64-2.txz: Rebuilt.
d/strace-6.10-x86_64-1.txz: Upgraded.
d/subversion-1.14.3-x86_64-3.txz: Rebuilt.
e/emacs-29.4-x86_64-2.txz: Rebuilt.
l/PyQt-builder-1.16.4-x86_64-2.txz: Rebuilt.
l/PyQt5-5.15.11-x86_64-1.txz: Upgraded.
l/PyQt5_sip-12.15.0-x86_64-2.txz: Rebuilt.
l/argon2-20190702-x86_64-6.txz: Rebuilt.
l/ffmpeg-6.1.1-x86_64-5.txz: Rebuilt.
l/glibc-2.40-x86_64-1.txz: Upgraded.
This update fixes security issues:
nscd: Stack-based buffer overflow in netgroup cache.
nscd: Null pointer crash after notfound response.
nscd: netgroup cache may terminate daemon on memory allocation failure.
nscd: netgroup cache assumes NSS callback uses in-buffer strings.
These vulnerabilities were only present in the nscd binary.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-33599
https://www.cve.org/CVERecord?id=CVE-2024-33600
https://www.cve.org/CVERecord?id=CVE-2024-33601
https://www.cve.org/CVERecord?id=CVE-2024-33602
(* Security fix *)
l/glibc-i18n-2.40-x86_64-1.txz: Upgraded.
l/glibc-profile-2.40-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.24.5-x86_64-2.txz: Rebuilt.
l/libcdio-paranoia-10.2+2.0.2-x86_64-1.txz: Upgraded.
l/libclc-18.1.8-x86_64-3.txz: Rebuilt.
l/libproxy-0.5.8-x86_64-1.txz: Upgraded.
l/lz4-1.10.0-x86_64-1.txz: Upgraded.
l/poppler-24.07.0-x86_64-2.txz: Rebuilt.
l/python-importlib_metadata-8.1.0-x86_64-1.txz: Upgraded.
l/python-sphinx-7.4.7-x86_64-1.txz: Upgraded.
l/qt5-5.15.14_20240716_ae0c8451-x86_64-1.txz: Upgraded.
l/qt5-webkit-5.212.0_alpha4-x86_64-13.txz: Rebuilt.
l/qt6-6.7.2_20240610_3f005f1e-x86_64-3.txz: Rebuilt.
l/sip-6.8.6-x86_64-2.txz: Rebuilt.
l/spirv-llvm-translator-18.1.2-x86_64-2.txz: Rebuilt.
l/v4l-utils-1.28.0-x86_64-1.txz: Upgraded.
n/bind-9.18.28-x86_64-1.txz: Upgraded.
This update fixes security issues:
Remove SIG(0) support from named as a countermeasure for CVE-2024-1975.
qctx-zversion was not being cleared when it should have been leading to
an assertion failure if it needed to be reused.
An excessively large number of rrtypes per owner can slow down database query
processing, so a limit has been placed on the number of rrtypes that can be
stored per owner (node) in a cache or zone database. This is configured with
the new "max-rrtypes-per-name" option, and defaults to 100.
Excessively large rdatasets can slow down database query processing, so a
limit has been placed on the number of records that can be stored per
rdataset in a cache or zone database. This is configured with the new
"max-records-per-type" option, and defaults to 100.
Malicious DNS client that sends many queries over TCP but never reads
responses can cause server to respond slowly or not respond at all for other
clients.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-1975
https://www.cve.org/CVERecord?id=CVE-2024-4076
https://www.cve.org/CVERecord?id=CVE-2024-1737
https://www.cve.org/CVERecord?id=CVE-2024-0760
(* Security fix *)
n/fetchmail-6.4.39-x86_64-1.txz: Upgraded.
n/obexftp-0.24.2-x86_64-13.txz: Rebuilt.
n/pinentry-1.3.1-x86_64-2.txz: Rebuilt.
n/wpa_supplicant-2.11-x86_64-1.txz: Upgraded.
x/fcitx5-qt-5.1.6-x86_64-3.txz: Rebuilt.
x/ibus-m17n-1.4.30-x86_64-1.txz: Upgraded.
x/libdrm-2.4.122-x86_64-2.txz: Rebuilt.
x/marisa-0.2.6-x86_64-10.txz: Rebuilt.
x/mesa-24.1.4-x86_64-2.txz: Rebuilt.
x/vulkan-sdk-1.3.275.0-x86_64-3.txz: Rebuilt.
xap/audacious-4.4-x86_64-2.txz: Rebuilt.
xap/audacious-plugins-4.4-x86_64-2.txz: Rebuilt.
xap/mozilla-thunderbird-128.0.1esr-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/128.0.1esr/releasenotes/
xap/xaos-4.3.2-x86_64-2.txz: Rebuilt.
extra/emacs-regular-build/emacs-29.4-x86_64-2_regular.txz: Rebuilt.
20240723185425 | Patrick J Volkerding | 2024-07-23 | 18 | -79/+90 |
* | Fri Jul 19 20:08:29 UTC 2024...a/aaa_libraries-15.1-x86_64-32.txz: Rebuilt.
Added: libgpg-error.so.0.37.0.
Upgraded: libcap.so.2.70, liblzma.so.5.6.2, libpcre2-8.so.0.13.0,
libglib-2.0.so.0.8000.4, libgmodule-2.0.so.0.8000.4,
libgobject-2.0.so.0.8000.4, libgthread-2.0.so.0.8000.4,
libstdc++.so.6.0.33, libunwind.so.8.1.0.
Removed: libboost_*.so.1.84.0
The addition of libgpg-error to this package should work around the issue
upgrading from 15.0 to -current using slackpkg. Thanks to Stuart Winter.
d/llvm-18.1.8-x86_64-2.txz: Rebuilt.
Add WebAssembly target. Thanks to Heinz Wiesinger.
Adjust compiler flags to what will likely be our new standard.
Qt6 requires newer opcodes than -march=i586, and enough things have begun
to include SSE2 instructions (without providing configure flags to opt-out)
that trying to retain compatibility with CPUs from the 1990s just isn't
going to work any more. My apologies if this causes your antique computer
to get illegal instruction errors, but the solution will have to be sourcing
an antique operating system for it.
On 64-bit we will make the compiler flags for -march and -mtune explicit.
l/libnl3-3.10.0-x86_64-1.txz: Upgraded.
l/orc-0.4.39-x86_64-1.txz: Upgraded.
x/egl-wayland-1.1.14-x86_64-1.txz: Upgraded.
20240719200829 | Patrick J Volkerding | 2024-07-19 | 2 | -7/+7 |
* | Thu Jul 18 20:01:18 UTC 2024...a/kernel-firmware-20240718_058deb9-noarch-1.txz: Upgraded.
a/kernel-generic-6.9.10-x86_64-1.txz: Upgraded.
a/kernel-huge-6.9.10-x86_64-1.txz: Upgraded.
a/kernel-modules-6.9.10-x86_64-1.txz: Upgraded.
d/cmake-3.30.1-x86_64-1.txz: Upgraded.
d/kernel-headers-6.9.10-x86-1.txz: Upgraded.
d/python-setuptools-71.0.3-x86_64-1.txz: Upgraded.
k/kernel-source-6.9.10-noarch-1.txz: Upgraded.
kde/labplot-2.11.1-x86_64-1.txz: Upgraded.
l/python-sphinx-7.4.6-x86_64-1.txz: Upgraded.
l/sof-firmware-2024.06-noarch-1.txz: Upgraded.
n/httpd-2.4.62-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
The first CVE is for Windows, but the second one is an additional fix for
the source code disclosure regression when using AddType.
Users are recommended to upgrade to version 2.4.62 which fixes this issue.
For more information, see:
https://downloads.apache.org/httpd/CHANGES_2.4.62
https://www.cve.org/CVERecord?id=CVE-2024-40898
https://www.cve.org/CVERecord?id=CVE-2024-40725
(* Security fix *)
n/openvpn-2.6.12-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240718200118 | Patrick J Volkerding | 2024-07-18 | 1 | -1/+1 |
* | Fri Jul 12 20:35:35 UTC 2024...d/automake-1.17-noarch-1.txz: Upgraded.
kde/labplot-2.11.0-x86_64-1.txz: Upgraded.
20240712203535 | Patrick J Volkerding | 2024-07-12 | 1 | -1/+1 |
* | Wed Jul 10 17:48:01 UTC 2024...a/grub-2.12-x86_64-11.txz: Rebuilt.
Build using --with-dejavufont=/usr/share/fonts/TTF/DejaVuSans.ttf so that
the starfield theme is included. Thanks to opty.
d/mercurial-6.8-x86_64-1.txz: Upgraded.
d/python-setuptools-70.3.0-x86_64-1.txz: Upgraded.
d/rinutils-0.10.3-x86_64-1.txz: Upgraded.
d/ruby-3.3.4-x86_64-1.txz: Upgraded.
l/glib2-2.80.4-x86_64-1.txz: Upgraded.
l/mozjs115-115.13.0esr-x86_64-1.txz: Upgraded.
l/nodejs-20.15.1-x86_64-1.txz: Upgraded.
l/qt6-6.7.2_20240610_3f005f1e-x86_64-2.txz: Rebuilt.
[PATCH] Client: Ensure that guessed popup parent has a shell surface.
Thanks to ctrlaltca.
Add another patch to fix race conditions building with ninja.
n/bluez-5.77-x86_64-1.txz: Upgraded.
n/getmail-6.19.03-x86_64-1.txz: Upgraded.
x/xdm-1.1.16-x86_64-2.txz: Rebuilt.
Patched to fix an issue drawing/erasing text in the login dialog.
Thanks to GazL.
x/xorg-server-xwayland-24.1.1-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-128.0esr-x86_64-1.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/128.0esr/releasenotes/
https://www.mozilla.org/security/advisories/mfsa2024-29/
https://www.cve.org/CVERecord?id=CVE-2024-6606
https://www.cve.org/CVERecord?id=CVE-2024-6607
https://www.cve.org/CVERecord?id=CVE-2024-6608
https://www.cve.org/CVERecord?id=CVE-2024-6609
https://www.cve.org/CVERecord?id=CVE-2024-6610
https://www.cve.org/CVERecord?id=CVE-2024-6600
https://www.cve.org/CVERecord?id=CVE-2024-6601
https://www.cve.org/CVERecord?id=CVE-2024-6602
https://www.cve.org/CVERecord?id=CVE-2024-6603
https://www.cve.org/CVERecord?id=CVE-2024-6611
https://www.cve.org/CVERecord?id=CVE-2024-6612
https://www.cve.org/CVERecord?id=CVE-2024-6613
https://www.cve.org/CVERecord?id=CVE-2024-6614
https://www.cve.org/CVERecord?id=CVE-2024-6604
https://www.cve.org/CVERecord?id=CVE-2024-6615
(* Security fix *)
20240710174801 | Patrick J Volkerding | 2024-07-10 | 1 | -0/+1 |
* | Mon Jul 8 18:00:35 UTC 2024...ap/vim-9.1.0544-x86_64-1.txz: Upgraded.
d/python-pip-24.1.2-x86_64-1.txz: Upgraded.
d/scons-4.8.0-x86_64-1.txz: Upgraded.
kde/stellarsolver-2.6-x86_64-1.txz: Upgraded.
l/exiv2-0.28.3-x86_64-1.txz: Upgraded.
n/c-ares-1.32.1-x86_64-1.txz: Upgraded.
n/netatalk-3.2.2-x86_64-1.txz: Upgraded.
xap/vim-gvim-9.1.0544-x86_64-1.txz: Upgraded.
xap/x3270-4.3ga9-x86_64-1.txz: Upgraded.
20240708180035 | Patrick J Volkerding | 2024-07-08 | 1 | -1/+1 |
* | Sun Jul 7 19:32:19 UTC 2024...d/gdb-15.1-x86_64-1.txz: Upgraded.
n/openssh-9.8p1-x86_64-3.txz: Rebuilt.
As upstream refactors this into smaller binaries, we could easily run into
another update that causes an sshd lockout if the listener process isn't
restarted. So, let's try to prevent that. After the package is upgraded,
we'll use "sshd -t" to make sure that we have a sane configuration, and if
so then we'll restart the listener process automatically.
If you don't like this idea, you may turn it off in /etc/default/sshd.
n/wpa_supplicant-2.10-x86_64-5.txz: Rebuilt.
Use more normal permissions for the documentation and examples.
Thanks to Didier Spaier.
20240707193219 | Patrick J Volkerding | 2024-07-07 | 1 | -3/+3 |
* | Wed Jul 3 18:48:48 UTC 2024...ap/sysstat-12.7.6-x86_64-1.txz: Upgraded.
d/cmake-3.30.0-x86_64-1.txz: Upgraded.
l/libass-0.17.3-x86_64-1.txz: Upgraded.
n/ca-certificates-20240703-noarch-1.txz: Upgraded.
This update provides the latest CA certificates to check for the
authenticity of SSL connections.
n/gnutls-3.8.6-x86_64-1.txz: Upgraded.
n/netatalk-3.2.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
Fixed security issues that could lead to a denial of service or the
execution of arbitrary code.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-38439
https://www.cve.org/CVERecord?id=CVE-2024-38440
https://www.cve.org/CVERecord?id=CVE-2024-38441
(* Security fix *)
n/p11-kit-0.25.4-x86_64-1.txz: Upgraded.
n/pinentry-1.3.1-x86_64-1.txz: Upgraded.
x/mesa-24.1.3-x86_64-1.txz: Upgraded.
20240703184848 | Patrick J Volkerding | 2024-07-03 | 1 | -1/+1 |
* | Mon Jul 1 20:12:46 UTC 2024...a/less-661-x86_64-1.txz: Upgraded.
d/ccache-4.10.1-x86_64-1.txz: Upgraded.
d/lua-5.4.7-x86_64-1.txz: Upgraded.
d/poke-4.2-x86_64-1.txz: Upgraded.
d/python-setuptools-70.2.0-x86_64-1.txz: Upgraded.
l/freecell-solver-6.12.0-x86_64-1.txz: Upgraded.
l/python-pillow-10.4.0-x86_64-1.txz: Upgraded.
l/spirv-llvm-translator-18.1.2-x86_64-1.txz: Upgraded.
n/httpd-2.4.60-x86_64-1.txz: Upgraded.
n/openssh-9.8p1-x86_64-1.txz: Upgraded.
This update fixes a security issue:
Fix race condition resulting in potential remote code execution.
For more information, see:
https://www.qualys.com/2024/07/01/cve-2024-6387/regresshion.txt
https://www.cve.org/CVERecord?id=CVE-2024-6387
(* Security fix *)
20240701201246 | Patrick J Volkerding | 2024-07-01 | 2 | -2/+2 |
* | Wed Jun 26 20:06:09 UTC 2024...a/grub-2.12-x86_64-8.txz: Rebuilt.
Sort the kernel menu entries newest first. Thanks to Daedra.
Add the GRUB_DISABLE_KERNEL_SYMLINKS variable to grub-mkconfig.in.
Thanks to LuckyCyborg.
Fix loading initrd.gz when /boot is on a separate partition.
Thanks to Brent Earl.
ap/lxc-6.0.0a-x86_64-1.txz: Upgraded.
Added packages to lxc-slackware.in that are needed to support gnupg2:
icu4c, libassuan, libgcrypt, libgpg-error, npth, sqlite.
Thanks to Ricardson Williams.
d/binutils-2.42-x86_64-2.txz: Rebuilt.
Rebuild with --sysconfdir=/etc to get rid of /usr/etc directory.
Thanks to mid-kid.
kde/kdeconnect-kde-23.08.5-x86_64-2.txz: Rebuilt.
Recompiled against pulseaudio-qt-1.5.0.
kde/pulseaudio-qt-1.5.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/protobuf-27.2-x86_64-1.txz: Upgraded.
l/python-importlib_metadata-8.0.0-x86_64-1.txz: Upgraded.
l/wireplumber-0.5.4-x86_64-1.txz: Upgraded.
x/libdrm-2.4.122-x86_64-1.txz: Upgraded.
extra/xv/xv-5.2.0-x86_64-1.txz: Upgraded.
20240626200609 | Patrick J Volkerding | 2024-06-26 | 1 | -2/+3 |
* | Fri Jun 21 18:54:11 UTC 2024...a/dialog-1.3_20240619-x86_64-1.txz: Upgraded.
a/kernel-firmware-20240620_77eb1a9-noarch-1.txz: Upgraded.
a/kernel-generic-6.9.6-x86_64-1.txz: Upgraded.
a/kernel-huge-6.9.6-x86_64-1.txz: Upgraded.
a/kernel-modules-6.9.6-x86_64-1.txz: Upgraded.
d/kernel-headers-6.9.6-x86-1.txz: Upgraded.
d/python-pip-24.1-x86_64-1.txz: Upgraded.
k/kernel-source-6.9.6-noarch-1.txz: Upgraded.
l/libclc-18.1.8-x86_64-2.txz: Rebuilt.
Install the correct slack-desc. Thanks to audriusk.
l/pycairo-1.26.1-x86_64-1.txz: Upgraded.
l/sip-6.8.4-x86_64-1.txz: Upgraded.
x/libwacom-2.12.2-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240621185411 | Patrick J Volkerding | 2024-06-21 | 2 | -7/+7 |
* | Fri Jun 21 00:44:39 UTC 2024...a/mcelog-200-x86_64-1.txz: Upgraded.
a/shadow-4.16.0-x86_64-1.txz: Upgraded.
d/llvm-18.1.8-x86_64-1.txz: Upgraded.
Build from git rather than individual tarballs (this simplifies things).
Build additional projects: bolt, flang, mlir.
l/gmime-3.2.15-x86_64-1.txz: Upgraded.
l/gst-plugins-bad-free-1.24.5-x86_64-1.txz: Upgraded.
l/gst-plugins-base-1.24.5-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.24.5-x86_64-1.txz: Upgraded.
l/gst-plugins-libav-1.24.5-x86_64-1.txz: Upgraded.
l/gstreamer-1.24.5-x86_64-1.txz: Upgraded.
l/libclc-18.1.8-x86_64-1.txz: Upgraded.
l/mujs-1.3.5-x86_64-1.txz: Upgraded.
l/nodejs-20.15.0-x86_64-1.txz: Upgraded.
l/python-importlib_metadata-7.2.0-x86_64-1.txz: Upgraded.
l/qt6-6.7.2_20240610_3f005f1e-x86_64-1.txz: Upgraded.
n/openvpn-2.6.11-x86_64-1.txz: Upgraded.
x/libva-2.22.0-x86_64-1.txz: Upgraded.
x/libva-utils-2.22.0-x86_64-1.txz: Upgraded.
20240621004439 | Patrick J Volkerding | 2024-06-21 | 5 | -171/+176 |
* | Tue Jun 18 18:26:37 UTC 2024...a/kernel-firmware-20240618_a34a7ad-noarch-1.txz: Upgraded.
Temporarily rename iwlwifi-ty-a0-gf-a0-89.ucode to iwlwifi-ty-a0-gf-a0-89.bak
due to issues with the mainline kernel on Raptor Lake. Thanks to denydias.
ap/man-pages-6.9.1-noarch-1.txz: Upgraded.
d/cmake-3.29.6-x86_64-1.txz: Upgraded.
l/SDL2-2.30.4-x86_64-1.txz: Upgraded.
l/editorconfig-core-c-0.12.9-x86_64-1.txz: Upgraded.
l/protobuf-27.1-x86_64-2.txz: Rebuilt.
Use the python bindings from PyPI as the ones included in the tarball are
incomplete without further processing. Thanks to alienBOB.
n/c-ares-1.31.0-x86_64-1.txz: Upgraded.
20240618182637 | Patrick J Volkerding | 2024-06-18 | 1 | -1/+1 |
* | Thu Jun 13 23:58:45 UTC 2024...d/rust-1.79.0-x86_64-1.txz: Upgraded.
kde/calligra-3.2.1-x86_64-41.txz: Rebuilt.
Recompiled against poppler-24.06.1.
kde/cantor-23.08.5-x86_64-7.txz: Rebuilt.
Recompiled against poppler-24.06.1.
kde/kfilemetadata-5.116.0-x86_64-3.txz: Rebuilt.
Recompiled against poppler-24.06.1.
kde/kile-2.9.93-x86_64-34.txz: Rebuilt.
Recompiled against poppler-24.06.1.
kde/kitinerary-23.08.5-x86_64-5.txz: Rebuilt.
Recompiled against poppler-24.06.1.
kde/krita-5.2.2-x86_64-11.txz: Rebuilt.
Recompiled against poppler-24.06.1.
kde/okular-23.08.5-x86_64-5.txz: Rebuilt.
Recompiled against poppler-24.06.1.
l/poppler-24.06.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
20240613235845 | Patrick J Volkerding | 2024-06-14 | 2 | -8/+7 |
* | Mon Jun 10 19:23:44 UTC 2024...ap/stow-2.4.0-x86_64-1.txz: Added.
Thanks to r1w1s1.
ap/texinfo-7.1-x86_64-2.txz: Rebuilt.
Recompiled against perl-5.40.0.
ap/vim-9.1.0473-x86_64-1.txz: Upgraded.
Compiled against perl-5.40.0.
d/ccache-4.10-x86_64-2.txz: Rebuilt.
Avoid downloading doctest.h at build time. Thanks to lucabon.
d/perl-5.40.0-x86_64-1.txz: Upgraded.
Upgraded: DBD-mysql-4.052, Path-Tiny-0.146, URI-5.28.
d/subversion-1.14.3-x86_64-2.txz: Rebuilt.
Recompiled against perl-5.40.0.
kde/plasma-workspace-5.27.11.1-x86_64-2.txz: Rebuilt.
[PATCH] Fix writing ICEAuthority file.
l/glib2-2.80.3-x86_64-1.txz: Upgraded.
l/imagemagick-7.1.1_33-x86_64-2.txz: Rebuilt.
Recompiled against perl-5.40.0.
l/pango-1.54.0-x86_64-1.txz: Upgraded.
l/python-packaging-24.1-x86_64-1.txz: Upgraded.
n/epic5-2.1.12-x86_64-9.txz: Rebuilt.
Recompiled against perl-5.40.0.
n/irssi-1.4.5-x86_64-3.txz: Rebuilt.
Recompiled against perl-5.40.0.
n/net-snmp-5.9.4-x86_64-5.txz: Rebuilt.
Recompiled against perl-5.40.0.
n/ntp-4.2.8p18-x86_64-3.txz: Rebuilt.
Recompiled against perl-5.40.0.
n/openldap-2.6.8-x86_64-2.txz: Rebuilt.
Recompiled against perl-5.40.0.
xap/hexchat-2.16.2-x86_64-3.txz: Rebuilt.
Recompiled against perl-5.40.0.
xap/pidgin-2.14.13-x86_64-2.txz: Rebuilt.
Recompiled against perl-5.40.0.
xap/rxvt-unicode-9.31-x86_64-3.txz: Rebuilt.
Recompiled against perl-5.40.0.
xap/vim-gvim-9.1.0473-x86_64-1.txz: Upgraded.
Compiled against perl-5.40.0.
xap/xscreensaver-6.09-x86_64-1.txz: Upgraded.
xfce/xfce4-power-manager-4.18.4-x86_64-1.txz: Upgraded.
xfce/xfce4-session-4.18.4-x86_64-1.txz: Upgraded.
20240610192344 | Patrick J Volkerding | 2024-06-10 | 5 | -9/+7122 |
* | Fri Jun 7 19:11:54 UTC 2024...a/btrfs-progs-6.9-x86_64-1.txz: Upgraded.
a/os-prober-1.82-x86_64-1.txz: Upgraded.
ap/qpdf-11.9.1-x86_64-1.txz: Upgraded.
d/cmake-3.29.5-x86_64-1.txz: Upgraded.
d/llvm-18.1.7-x86_64-1.txz: Upgraded.
l/frei0r-plugins-2.3.3-x86_64-1.txz: Upgraded.
l/fribidi-1.0.15-x86_64-1.txz: Upgraded.
l/libclc-18.1.7-x86_64-1.txz: Upgraded.
l/spirv-llvm-translator-18.1.1-x86_64-1.txz: Upgraded.
x/mesa-24.1.1-x86_64-2.txz: Rebuilt.
Changed gallium drivers list:
nouveau,r300,r600,svga,radeonsi,swrast,virgl,i915,iris,crocus,zink,d3d12
Changed meson options:
-Dgallium-extra-hud=true
-Dvulkan-drivers=amd,intel,intel_hasvk,swrast,virtio,nouveau
-Dlibunwind=disabled
-Dmicrosoft-clc=disabled
-Dvalgrind=enabled
-Dintel-clc=enabled
-Dintel-rt=enabled
Thanks to biker_rat for encouraging me to take another look at the available
options for mesa-24.
20240607191154 | Patrick J Volkerding | 2024-06-07 | 2 | -16/+16 |
* | Thu Jun 6 19:44:49 UTC 2024...kde/kstars-3.7.1-x86_64-1.txz: Upgraded.
l/mlt-7.24.0-x86_64-2.txz: Rebuilt.
Add build options -DMOD_QT6=ON and -DMOD_GLXANIMATE_QT6=ON.
Thanks to gmgf and sombragris.
l/protobuf-27.1-x86_64-1.txz: Upgraded.
n/ipset-7.22-x86_64-1.txz: Upgraded.
n/php-8.3.8-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues:
Bypass of CVE-2012-1823, Argument Injection in PHP-CGI.
Filter bypass in filter_var FILTER_VALIDATE_URL.
Bypass of CVE-2024-1874.
For more information, see:
https://www.php.net/ChangeLog-8.php#8.3.8
https://www.cve.org/CVERecord?id=CVE-2024-4577
https://www.cve.org/CVERecord?id=CVE-2024-5458
https://www.cve.org/CVERecord?id=CVE-2024-5585
(* Security fix *)
x/libinput-1.26.0-x86_64-1.txz: Upgraded.
x/libwacom-2.12.0-x86_64-1.txz: Upgraded.
x/mesa-24.1.1-x86_64-1.txz: Upgraded.
xap/pan-0.159-x86_64-1.txz: Upgraded.
20240606194449 | Patrick J Volkerding | 2024-06-06 | 1 | -0/+3 |
* | Wed Jun 5 19:06:36 UTC 2024...a/kernel-firmware-20240604_22643bb-noarch-1.txz: Upgraded.
a/less-657-x86_64-1.txz: Upgraded.
a/openssl-solibs-3.3.1-x86_64-1.txz: Upgraded.
d/cmake-3.29.4-x86_64-1.txz: Upgraded.
l/poppler-24.06.0-x86_64-1.txz: Upgraded.
l/protobuf-27.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/python-zipp-3.19.2-x86_64-1.txz: Upgraded.
l/qt6-6.7.1_20240516_6977d02f-x86_64-2.txz: Rebuilt.
Recompiled against protobuf-27.0.
n/ca-certificates-20240604-noarch-1.txz: Upgraded.
This update provides the latest CA certificates to check for the
authenticity of SSL connections.
n/mosh-1.4.0-x86_64-2.txz: Rebuilt.
Recompiled against protobuf-27.0.
n/openssl-3.3.1-x86_64-1.txz: Upgraded.
This update fixes bugs and one low severity security issue:
Calling the OpenSSL API function SSL_free_buffers may cause memory to be
accessed that was previously freed in some situations. Our investigations
indicate that this function is rarely used by applications.
For more information, see:
https://www.openssl.org/news/secadv/20240528.txt
https://www.cve.org/CVERecord?id=CVE-2024-4741
(* Security fix *)
20240605190636 | Patrick J Volkerding | 2024-06-05 | 2 | -2/+5 |
* | Mon Jun 3 19:49:25 UTC 2024...a/less-656-x86_64-1.txz: Upgraded.
d/luajit-2.1.1716656478-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
Thanks to Stuart Winter.
kde/digikam-8.3.0-x86_64-3.txz: Rebuilt.
Recompiled against opencv-4.10.0.
kde/plasma-workspace-5.27.11-x86_64-2.txz: Rebuilt.
Reverted to working version, even though this is never a fix. ;-)
l/Mako-1.3.5-x86_64-1.txz: Upgraded.
l/frei0r-plugins-2.3.2-x86_64-3.txz: Rebuilt.
Recompiled against opencv-4.10.0.
l/gst-plugins-bad-free-1.24.4-x86_64-2.txz: Rebuilt.
Recompiled against opencv-4.10.0.
l/opencv-4.10.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/python-certifi-2024.6.2-x86_64-1.txz: Upgraded.
l/vte-0.76.3-x86_64-1.txz: Upgraded.
l/wireplumber-0.5.3-x86_64-1.txz: Upgraded.
x/libdrm-2.4.121-x86_64-1.txz: Upgraded.
20240603194925 | Patrick J Volkerding | 2024-06-03 | 1 | -1/+1 |
* | Sat Jun 1 19:52:37 UTC 2024...a/findutils-4.10.0-x86_64-1.txz: Upgraded.
a/logrotate-3.22.0-x86_64-1.txz: Upgraded.
Thanks to opty for getting our changes accepted upstream.
a/sysvinit-scripts-15.1-noarch-18.txz: Rebuilt.
rc.M: start dnsmasq before ntpd. Thanks to lostintime.
d/git-2.45.2-x86_64-1.txz: Upgraded.
d/poke-4.1-x86_64-1.txz: Upgraded.
kde/fcitx5-configtool-5.1.6-x86_64-1.txz: Upgraded.
kde/kwin-5.27.11-x86_64-2.txz: Rebuilt.
Recompiled against wayland-1.23.0 since it seems they broke the ABI.
Let me know if anything else needs help.
kde/libindi-2.0.8-x86_64-1.txz: Upgraded.
l/mujs-1.3.4-x86_64-1.txz: Added.
l/python-zipp-3.19.1-x86_64-1.txz: Upgraded.
n/ntp-4.2.8p18-x86_64-2.txz: Rebuilt.
rc.ntp: properly create the PID file on start.
Add /etc/default/ntp to configure ntpd startup options since some people are
needing to add -4 to avoid an error.
Thanks to rkelsen and teoberi.
x/fcitx5-5.1.10-x86_64-1.txz: Upgraded.
x/fcitx5-chinese-addons-5.1.6-x86_64-1.txz: Upgraded.
x/fcitx5-hangul-5.1.4-x86_64-1.txz: Upgraded.
x/fcitx5-kkc-5.1.4-x86_64-1.txz: Upgraded.
x/fcitx5-table-extra-5.1.6-x86_64-1.txz: Upgraded.
x/fcitx5-table-other-5.1.3-x86_64-1.txz: Upgraded.
x/libime-1.1.8-x86_64-1.txz: Upgraded.
x/xcb-imdkit-1.0.9-x86_64-1.txz: Upgraded.
xap/blueman-2.4.2-x86_64-1.txz: Upgraded.
xap/mpv-0.38.0-x86_64-3.txz: Rebuilt.
Recompiled against mujs-1.3.4.
20240601195237 | Patrick J Volkerding | 2024-06-01 | 1 | -1/+1 |
* | Fri May 31 23:52:07 UTC 2024...d/luajit-2.0.1716656478-x86_64-1.txz: Added.
Thanks to Erik Falor.
n/proftpd-1.3.8b-x86_64-4.txz: Rebuilt.
Build with mod_wrap2 and mod_wrap2_file instead of mod_wrap, which has
problems with ipv6. Thanks to jayjwa.
xap/mpv-0.38.0-x86_64-2.txz: Rebuilt.
[PATCH 1/4] av_common: parent mp_get_lavf_demuxer contents to the list.
[PATCH 2/4] stream: implement get_protocols method for stream_lavf.
[PATCH 3/4] build: dynamically generate mpv.desktop file protocols.
[PATCH 4/4] stream_lavf: don't add ffmpeg bluray or dvd protocols.
Thanks to gmgf.
Build against luajit. Thanks to pm_a_cup_of_tea.
20240531235207 | Patrick J Volkerding | 2024-06-01 | 3 | -0/+218 |
* | Fri May 31 18:49:48 UTC 2024...a/hwdata-0.383-noarch-1.txz: Upgraded.
a/pciutils-3.13.0-x86_64-1.txz: Upgraded.
d/ccache-4.10-x86_64-1.txz: Upgraded.
d/meson-1.4.1-x86_64-1.txz: Upgraded.
d/ruby-3.3.2-x86_64-1.txz: Upgraded.
kde/plasma-sdk-5.27.11.1-x86_64-1.txz: Upgraded.
kde/plasma-workspace-5.27.11.1-x86_64-1.txz: Upgraded.
kde/tokodon-23.08.5-x86_64-1.txz: Added.
l/libvpx-1.14.1-x86_64-1.txz: Upgraded.
l/python-requests-2.32.3-x86_64-1.txz: Upgraded.
n/NetworkManager-1.48.0-x86_64-1.txz: Upgraded.
n/getmail-6.19.00-x86_64-1.txz: Upgraded.
x/libevdev-1.13.2-x86_64-1.txz: Upgraded.
x/wayland-1.23.0-x86_64-1.txz: Upgraded.
xap/gnuplot-6.0.1-x86_64-1.txz: Upgraded.
xap/mpv-0.38.0-x86_64-1.txz: Added.
Evidently we need one more media player. ;-)
Thanks to John Vogel Corning, Andreas Guldstrand, and Christoph Willing.
20240531184948 | Patrick J Volkerding | 2024-05-31 | 2 | -1/+4 |
* | Mon May 20 18:42:49 UTC 2024...a/less-655-x86_64-1.txz: Upgraded.
Switch to lesspipe.sh from https://github.com/wofr06. Thanks to zsd.
ap/ghostscript-10.03.1-x86_64-1.txz: Upgraded.
ap/man-pages-6.8-noarch-1.txz: Upgraded.
ap/mariadb-10.11.8-x86_64-1.txz: Upgraded.
This update fixes bugs and a security issue:
Difficult to exploit vulnerability allows unauthenticated attacker with
logon to the infrastructure where MariaDB Server executes to compromise the
server. This could result in unauthorized update, insert or delete access
to some of the data as well as unauthorized read access to a subset of the
data and unauthorized ability to cause a partial denial of service.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-21096
(* Security fix *)
d/doxygen-1.11.0-x86_64-1.txz: Upgraded.
d/llvm-18.1.6-x86_64-1.txz: Upgraded.
kde/attica-5.116.0-x86_64-1.txz: Upgraded.
kde/baloo-5.116.0-x86_64-1.txz: Upgraded.
kde/bluez-qt-5.116.0-x86_64-1.txz: Upgraded.
kde/breeze-icons-5.116.0-noarch-1.txz: Upgraded.
kde/extra-cmake-modules-5.116.0-x86_64-1.txz: Upgraded.
kde/frameworkintegration-5.116.0-x86_64-1.txz: Upgraded.
kde/kactivities-5.116.0-x86_64-1.txz: Upgraded.
kde/kactivities-stats-5.116.0-x86_64-1.txz: Upgraded.
kde/kapidox-5.116.0-x86_64-1.txz: Upgraded.
kde/karchive-5.116.0-x86_64-1.txz: Upgraded.
kde/kauth-5.116.0-x86_64-1.txz: Upgraded.
kde/kbookmarks-5.116.0-x86_64-1.txz: Upgraded.
kde/kcalendarcore-5.116.0-x86_64-1.txz: Upgraded.
kde/kcmutils-5.116.0-x86_64-1.txz: Upgraded.
kde/kcodecs-5.116.0-x86_64-1.txz: Upgraded.
kde/kcompletion-5.116.0-x86_64-1.txz: Upgraded.
kde/kconfig-5.116.0-x86_64-1.txz: Upgraded.
kde/kconfigwidgets-5.116.0-x86_64-1.txz: Upgraded.
kde/kcontacts-5.116.0-x86_64-1.txz: Upgraded.
kde/kcoreaddons-5.116.0-x86_64-1.txz: Upgraded.
kde/kcrash-5.116.0-x86_64-1.txz: Upgraded.
kde/kdav-5.116.0-x86_64-1.txz: Upgraded.
kde/kdbusaddons-5.116.0-x86_64-1.txz: Upgraded.
kde/kdeclarative-5.116.0-x86_64-1.txz: Upgraded.
kde/kded-5.116.0-x86_64-1.txz: Upgraded.
kde/kdelibs4support-5.116.0-x86_64-1.txz: Upgraded.
kde/kdesignerplugin-5.116.0-x86_64-1.txz: Upgraded.
kde/kdesu-5.116.0-x86_64-1.txz: Upgraded.
kde/kdewebkit-5.116.0-x86_64-1.txz: Upgraded.
kde/kdnssd-5.116.0-x86_64-1.txz: Upgraded.
kde/kdoctools-5.116.0-x86_64-1.txz: Upgraded.
kde/kemoticons-5.116.0-x86_64-1.txz: Upgraded.
kde/kfilemetadata-5.116.0-x86_64-1.txz: Upgraded.
kde/kglobalaccel-5.116.0-x86_64-1.txz: Upgraded.
kde/kguiaddons-5.116.0-x86_64-1.txz: Upgraded.
kde/kholidays-5.116.0-x86_64-1.txz: Upgraded.
kde/khtml-5.116.0-x86_64-1.txz: Upgraded.
kde/ki18n-5.116.0-x86_64-1.txz: Upgraded.
kde/kiconthemes-5.116.0-x86_64-1.txz: Upgraded.
kde/kidletime-5.116.0-x86_64-1.txz: Upgraded.
kde/kimageformats-5.116.0-x86_64-1.txz: Upgraded.
kde/kinit-5.116.0-x86_64-1.txz: Upgraded.
kde/kio-5.116.0-x86_64-1.txz: Upgraded.
kde/kirigami2-5.116.0-x86_64-1.txz: Upgraded.
kde/kitemmodels-5.116.0-x86_64-1.txz: Upgraded.
kde/kitemviews-5.116.0-x86_64-1.txz: Upgraded.
kde/kjobwidgets-5.116.0-x86_64-1.txz: Upgraded.
kde/kjs-5.116.0-x86_64-1.txz: Upgraded.
kde/kjsembed-5.116.0-x86_64-1.txz: Upgraded.
kde/kmediaplayer-5.116.0-x86_64-1.txz: Upgraded.
kde/knewstuff-5.116.0-x86_64-1.txz: Upgraded.
kde/knotifications-5.116.0-x86_64-1.txz: Upgraded.
kde/knotifyconfig-5.116.0-x86_64-1.txz: Upgraded.
kde/kpackage-5.116.0-x86_64-1.txz: Upgraded.
kde/kparts-5.116.0-x86_64-1.txz: Upgraded.
kde/kpeople-5.116.0-x86_64-1.txz: Upgraded.
kde/kplotting-5.116.0-x86_64-1.txz: Upgraded.
kde/kpty-5.116.0-x86_64-1.txz: Upgraded.
kde/kquickcharts-5.116.0-x86_64-1.txz: Upgraded.
kde/kross-5.116.0-x86_64-1.txz: Upgraded.
kde/krunner-5.116.0-x86_64-1.txz: Upgraded.
kde/kservice-5.116.0-x86_64-1.txz: Upgraded.
kde/ktexteditor-5.116.0-x86_64-1.txz: Upgraded.
kde/ktextwidgets-5.116.0-x86_64-1.txz: Upgraded.
kde/kunitconversion-5.116.0-x86_64-1.txz: Upgraded.
kde/kwallet-5.116.0-x86_64-1.txz: Upgraded.
kde/kwayland-5.116.0-x86_64-1.txz: Upgraded.
kde/kwidgetsaddons-5.116.0-x86_64-1.txz: Upgraded.
kde/kwindowsystem-5.116.0-x86_64-1.txz: Upgraded.
kde/kxmlgui-5.116.0-x86_64-1.txz: Upgraded.
kde/kxmlrpcclient-5.116.0-x86_64-1.txz: Upgraded.
kde/modemmanager-qt-5.116.0-x86_64-1.txz: Upgraded.
kde/networkmanager-qt-5.116.0-x86_64-1.txz: Upgraded.
kde/oxygen-icons-5.116.0-noarch-1.txz: Upgraded.
kde/plasma-framework-5.116.0-x86_64-1.txz: Upgraded.
kde/prison-5.116.0-x86_64-1.txz: Upgraded.
kde/purpose-5.116.0-x86_64-1.txz: Upgraded.
kde/qqc2-desktop-style-5.116.0-x86_64-1.txz: Upgraded.
kde/solid-5.116.0-x86_64-1.txz: Upgraded.
kde/sonnet-5.116.0-x86_64-1.txz: Upgraded.
kde/syndication-5.116.0-x86_64-1.txz: Upgraded.
kde/syntax-highlighting-5.116.0-x86_64-1.txz: Upgraded.
kde/threadweaver-5.116.0-x86_64-1.txz: Upgraded.
l/gi-docgen-2024.1-x86_64-1.txz: Upgraded.
l/libass-0.17.2-x86_64-1.txz: Upgraded.
l/libcap-2.70-x86_64-1.txz: Upgraded.
l/libedit-20240517_3.1-x86_64-1.txz: Upgraded.
l/qt5-5.15.13_20240519_56514bcd-x86_64-1.txz: Upgraded.
n/iw-6.9-x86_64-1.txz: Upgraded.
n/nghttp2-1.62.1-x86_64-1.txz: Upgraded.
20240520184249 | Patrick J Volkerding | 2024-05-20 | 2 | -15/+16 |
* | Thu May 16 02:31:40 UTC 2024...a/bcachefs-tools-1.7.0-x86_64-1.txz: Added.
a/kernel-generic-6.9.0-x86_64-2.txz: Upgraded.
a/kernel-huge-6.9.0-x86_64-2.txz: Upgraded.
a/kernel-modules-6.9.0-x86_64-2.txz: Upgraded.
d/git-2.45.1-x86_64-1.txz: Upgraded.
This update fixes security issues:
Recursive clones on case-insensitive filesystems that support symbolic
links are susceptible to case confusion that can be exploited to
execute just-cloned code during the clone operation.
Repositories can be configured to execute arbitrary code during local
clones. To address this, the ownership checks introduced in v2.30.3
are now extended to cover cloning local repositories.
Local clones may end up hardlinking files into the target repository's
object database when source and target repository reside on the same
disk. If the source repository is owned by a different user, then
those hardlinked files may be rewritten at any point in time by the
untrusted user.
When cloning a local source repository that contains symlinks via the
filesystem, Git may create hardlinks to arbitrary user-readable files
on the same filesystem as the target repository in the objects/
directory.
It is supposed to be safe to clone untrusted repositories, even those
unpacked from zip archives or tarballs originating from untrusted
sources, but Git can be tricked to run arbitrary code as part of the
clone.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-32002
https://www.cve.org/CVERecord?id=CVE-2024-32004
https://www.cve.org/CVERecord?id=CVE-2024-32020
https://www.cve.org/CVERecord?id=CVE-2024-32021
https://www.cve.org/CVERecord?id=CVE-2024-32465
(* Security fix *)
d/kernel-headers-6.9.0-x86-2.txz: Upgraded.
d/strace-6.9-x86_64-1.txz: Upgraded.
k/kernel-source-6.9.0-noarch-2.txz: Upgraded.
BCACHEFS_FS m -> y
CRYPTO_CHACHA20 m -> y
CRYPTO_LIB_CHACHA_GENERIC m -> y
CRYPTO_LIB_POLY1305_GENERIC m -> y
CRYPTO_POLY1305 m -> y
MITIGATION_GDS_FORCE y -> n
kde/wcslib-8.3-x86_64-1.txz: Upgraded.
l/gdk-pixbuf2-2.42.12-x86_64-1.txz: Upgraded.
ani: Reject files with multiple INA or IART chunks.
ani: Reject files with multiple anih chunks.
ani: validate chunk size.
Thanks to 0xvhp, pedrib, and Benjamin Gilbert.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-48622
(* Security fix *)
l/gtk+3-3.24.42-x86_64-1.txz: Upgraded.
n/bind-9.18.27-x86_64-1.txz: Upgraded.
This is a bugfix release.
n/popa3d-1.0.3-x86_64-8.txz: Rebuilt.
This is a bugfix release:
Build with AUTH_PAM, not AUTH_SHADOW.
Thanks to jayjwa.
x/xorg-server-xwayland-23.2.7-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240516023140 | Patrick J Volkerding | 2024-05-16 | 1 | -1/+1 |
* | Tue May 14 19:07:51 UTC 2024...a/kernel-firmware-20240510_b9d2bf2-noarch-1.txz: Upgraded.
a/kernel-generic-6.9.0-x86_64-1.txz: Upgraded.
a/kernel-huge-6.9.0-x86_64-1.txz: Upgraded.
a/kernel-modules-6.9.0-x86_64-1.txz: Upgraded.
d/gcc-14.1.0-x86_64-1.txz: Upgraded.
d/gcc-g++-14.1.0-x86_64-1.txz: Upgraded.
d/gcc-gdc-14.1.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
d/gcc-gfortran-14.1.0-x86_64-1.txz: Upgraded.
d/gcc-gm2-14.1.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
d/gcc-gnat-14.1.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
d/gcc-go-14.1.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
d/gcc-objc-14.1.0-x86_64-1.txz: Upgraded.
d/kernel-headers-6.9.0-x86-1.txz: Upgraded.
d/libgccjit-14.1.0-x86_64-1.txz: Upgraded.
d/libtool-2.4.7-x86_64-7.txz: Rebuilt.
Recompiled to update embedded GCC version number.
k/kernel-source-6.9.0-noarch-1.txz: Upgraded.
l/harfbuzz-8.5.0-x86_64-1.txz: Upgraded.
l/mozjs115-115.11.0esr-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-126.0-x86_64-1.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/126.0/releasenotes/
https://www.mozilla.org/security/advisories/mfsa2024-21/
https://www.cve.org/CVERecord?id=CVE-2024-4764
https://www.cve.org/CVERecord?id=CVE-2024-4367
https://www.cve.org/CVERecord?id=CVE-2024-4765
https://www.cve.org/CVERecord?id=CVE-2024-4766
https://www.cve.org/CVERecord?id=CVE-2024-4767
https://www.cve.org/CVERecord?id=CVE-2024-4768
https://www.cve.org/CVERecord?id=CVE-2024-4769
https://www.cve.org/CVERecord?id=CVE-2024-4770
https://www.cve.org/CVERecord?id=CVE-2024-4771
https://www.cve.org/CVERecord?id=CVE-2024-4772
https://www.cve.org/CVERecord?id=CVE-2024-4773
https://www.cve.org/CVERecord?id=CVE-2024-4774
https://www.cve.org/CVERecord?id=CVE-2024-4775
https://www.cve.org/CVERecord?id=CVE-2024-4776
https://www.cve.org/CVERecord?id=CVE-2024-4777
https://www.cve.org/CVERecord?id=CVE-2024-4778
(* Security fix *)
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240514190751 | Patrick J Volkerding | 2024-05-14 | 1 | -1/+1 |
* | Sun May 12 19:10:12 UTC 2024...a/less-654-x86_64-1.txz: Upgraded.
d/ninja-1.12.1-x86_64-1.txz: Upgraded.
n/whois-5.5.23-x86_64-1.txz: Upgraded.
Updated the .sc, .********* (.xn--yfro4i67o, Singapore)
and .********************************* (.xn--clchc0ea0b2g2a9gcd, Singapore)
TLD servers.
extra/bittornado/bittornado-0.3.18-noarch-3.txz: Removed.
Obsolete and based on python2.
20240512191012 | Patrick J Volkerding | 2024-05-12 | 5 | -0/+16 |
* | Wed May 8 21:05:29 UTC 2024...d/cmake-3.29.3-x86_64-1.txz: Upgraded.
l/adwaita-icon-theme-46.0-noarch-2.txz: Rebuilt.
Restore icons that went missing after adwaita-icon-theme-41.0.
l/glib2-2.80.2-x86_64-1.txz: Upgraded.
l/libgnt-2.14.4_dev-x86_64-1.txz: Upgraded.
l/mozilla-nss-3.100-x86_64-1.txz: Upgraded.
n/samba-4.20.1-x86_64-1.txz: Upgraded.
x/mesa-24.0.7-x86_64-1.txz: Upgraded.
20240508210529 | Patrick J Volkerding | 2024-05-08 | 2 | -2/+2 |
* | Sat May 4 17:37:11 UTC 2024...a/elvis-2.2_0-x86_64-9.txz: Rebuilt.
Recompiled against ncurses-6.5.
a/gettext-0.22.5-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
a/procps-ng-4.0.4-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
ap/bc-1.07.1-x86_64-6.txz: Rebuilt.
Recompiled against ncurses-6.5.
ap/bpe-2.01.00-x86_64-7.txz: Rebuilt.
Recompiled against ncurses-6.5.
ap/gutenprint-5.3.4-x86_64-4.txz: Rebuilt.
Recompiled against ncurses-6.5.
ap/ispell-3.4.06-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
ap/joe-4.6-x86_64-5.txz: Rebuilt.
Recompiled against ncurses-6.5.
ap/nvme-cli-2.9.1-x86_64-1.txz: Upgraded.
ap/powertop-2.15-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
ap/sc-7.16-x86_64-11.txz: Rebuilt.
Recompiled against ncurses-6.5.
ap/screen-4.9.1-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
ap/xfsdump-3.1.12-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
d/clisp-2.50_20230718_669249717-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
d/cmake-3.29.2-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
d/cscope-15.9-x86_64-4.txz: Rebuilt.
Recompiled against ncurses-6.5.
d/gettext-tools-0.22.5-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
d/guile-3.0.9-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
d/lua-5.4.6-x86_64-6.txz: Rebuilt.
Recompiled against ncurses-6.5.
d/poke-4.0-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
kde/kalgebra-23.08.5-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
l/enchant-2.7.3-x86_64-1.txz: Upgraded.
l/gdbm-1.23-x86_64-3.txz: Rebuilt.
Recompiled against ncurses-6.5.
l/lame-3.100-x86_64-5.txz: Rebuilt.
Recompiled against ncurses-6.5.
l/libcdio-2.1.0-x86_64-4.txz: Rebuilt.
Recompiled against ncurses-6.5.
l/libedit-20230828_3.1-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
l/libnjb-2.2.7-x86_64-5.txz: Rebuilt.
Recompiled against ncurses-6.5.
l/libnvme-1.9-x86_64-1.txz: Upgraded.
l/libqalculate-5.0.0-x86_64-3.txz: Rebuilt.
Recompiled against ncurses-6.5.
l/python-pygments-2.18.0-x86_64-1.txz: Upgraded.
l/qtkeychain-0.14.3-x86_64-1.txz: Upgraded.
l/readline-8.2.010-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/elm-2.5.8-x86_64-8.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/epic5-2.1.12-x86_64-8.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/iftop-1.0pre4-x86_64-5.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/metamail-2.7-x86_64-11.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/mtr-0.95-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/net-snmp-5.9.4-x86_64-4.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/netkit-ftp-0.17-x86_64-8.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/netkit-ntalk-0.17-x86_64-8.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/netwatch-1.3.1_2-x86_64-6.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/nn-6.7.3-x86_64-9.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/php-8.3.6-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/samba-4.20.0-x86_64-3.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/telnet-0.17-x86_64-7.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/wpa_supplicant-2.10-x86_64-4.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/ytalk-3.3.0-x86_64-7.txz: Rebuilt.
Recompiled against ncurses-6.5.
xap/MPlayer-20240403-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
xap/ddd-3.4.0-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
xap/gnuchess-6.2.9-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
xap/xine-ui-0.99.14-x86_64-3.txz: Rebuilt.
Recompiled against ncurses-6.5.
y/bsd-games-2.17-x86_64-5.txz: Rebuilt.
Recompiled against ncurses-6.5.
20240504173711 | Patrick J Volkerding | 2024-05-04 | 6 | -6/+6 |
* | Thu May 2 23:49:58 UTC 2024...a/btrfs-progs-6.8.1-x86_64-1.txz: Upgraded.
a/kernel-firmware-20240502_28f75f1-noarch-1.txz: Upgraded.
a/kernel-generic-6.6.30-x86_64-1.txz: Upgraded.
a/kernel-huge-6.6.30-x86_64-1.txz: Upgraded.
a/kernel-modules-6.6.30-x86_64-1.txz: Upgraded.
ap/mariadb-10.11.7-x86_64-2.txz: Rebuilt.
Try to preserve the timestamp on rc.mysqld.new.
d/kernel-headers-6.6.30-x86-1.txz: Upgraded.
d/llvm-18.1.5-x86_64-1.txz: Upgraded.
d/rust-1.78.0-x86_64-1.txz: Upgraded.
k/kernel-source-6.6.30-noarch-1.txz: Upgraded.
l/SDL2-2.30.3-x86_64-1.txz: Upgraded.
n/mobile-broadband-provider-info-20240502-noarch-1.txz: Upgraded.
x/ibus-1.5.30-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240502234958 | Patrick J Volkerding | 2024-05-03 | 3 | -22/+22 |
* | Tue Apr 30 18:54:11 UTC 2024...a/elogind-255.5-x86_64-1.txz: Upgraded.
d/git-2.45.0-x86_64-1.txz: Upgraded.
l/gst-plugins-bad-free-1.24.3-x86_64-1.txz: Upgraded.
l/gst-plugins-base-1.24.3-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.24.3-x86_64-1.txz: Upgraded.
l/gst-plugins-libav-1.24.3-x86_64-1.txz: Upgraded.
l/gstreamer-1.24.3-x86_64-1.txz: Upgraded.
20240430185411 | Patrick J Volkerding | 2024-04-30 | 1 | -1/+1 |
* | Thu Apr 18 19:17:30 UTC 2024...a/aaa_glibc-solibs-2.39-x86_64-2.txz: Rebuilt.
ap/vim-9.1.0346-x86_64-1.txz: Upgraded.
d/llvm-18.1.4-x86_64-1.txz: Upgraded.
d/nasm-2.16.03-x86_64-1.txz: Upgraded.
l/glibc-2.39-x86_64-2.txz: Rebuilt.
This update fixes a security issue:
The iconv() function in the GNU C Library versions 2.39 and older may
overflow the output buffer passed to it by up to 4 bytes when converting
strings to the ISO-2022-CN-EXT character set, which may be used to crash
an application or overwrite a neighbouring variable.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-2961
(* Security fix *)
l/glibc-i18n-2.39-x86_64-2.txz: Rebuilt.
l/glibc-profile-2.39-x86_64-2.txz: Rebuilt.
l/pycups-2.0.4-x86_64-1.txz: Upgraded.
l/python-hatchling-1.24.1-x86_64-1.txz: Upgraded.
l/python-sphinx-7.3.6-x86_64-1.txz: Upgraded.
n/bind-9.18.26-x86_64-1.txz: Upgraded.
This is a bugfix release.
xap/vim-gvim-9.1.0346-x86_64-1.txz: Upgraded.
20240418191730 | Patrick J Volkerding | 2024-04-18 | 1 | -15/+15 |
* | Sat Apr 13 19:45:25 UTC 2024...l/imagemagick-7.1.1_29-x86_64-1.txz: Upgraded.
Revert to the previous ImageMagick because the latest one is destroying SVG
files if "identify" or "display" is used on them.
Thanks to pc2005.
20240413194525 | Patrick J Volkerding | 2024-04-13 | 2 | -56/+1 |
* | Fri Apr 12 19:08:59 UTC 2024...a/less-653-x86_64-1.txz: Upgraded.
d/ninja-1.12.0-x86_64-1.txz: Upgraded.
d/valgrind-3.22.0-x86_64-1.txz: Added.
Thanks to Kyle Guinn, Peter Wang, and Willy Sudiarto Raharjo.
l/netpbm-11.06.01-x86_64-1.txz: Upgraded.
n/php-8.3.6-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues.
For more information, see:
https://www.php.net/ChangeLog-8.php#8.3.6
(* Security fix *)
20240412190859 | Patrick J Volkerding | 2024-04-12 | 4 | -0/+183 |
* | Thu Apr 11 21:36:28 UTC 2024...d/cmake-3.29.2-x86_64-1.txz: Upgraded.
l/polkit-124-x86_64-1.txz: Upgraded.
Thanks to marav for the patches.
20240411213628 | Patrick J Volkerding | 2024-04-12 | 1 | -1/+1 |
* | Wed Apr 10 19:09:14 UTC 2024...a/cryptsetup-2.7.2-x86_64-1.txz: Upgraded.
a/kernel-firmware-20240410_53438f8-noarch-1.txz: Upgraded.
a/kernel-generic-6.6.26-x86_64-1.txz: Upgraded.
a/kernel-huge-6.6.26-x86_64-1.txz: Upgraded.
a/kernel-modules-6.6.26-x86_64-1.txz: Upgraded.
a/openssl-solibs-3.3.0-x86_64-1.txz: Upgraded.
a/pam-1.6.1-x86_64-1.txz: Upgraded.
d/kernel-headers-6.6.26-x86-1.txz: Upgraded.
d/rust-1.77.2-x86_64-1.txz: Upgraded.
[PATCH] compiler: Use wasm-ld for wasm targets.
Thanks to Heinz Wiesinger.
k/kernel-source-6.6.26-noarch-1.txz: Upgraded.
+SPECTRE_BHI_AUTO n
+SPECTRE_BHI_OFF n
+SPECTRE_BHI_ON y
l/gst-plugins-bad-free-1.24.2-x86_64-1.txz: Upgraded.
l/gst-plugins-base-1.24.2-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.24.2-x86_64-1.txz: Upgraded.
l/gst-plugins-libav-1.24.2-x86_64-1.txz: Upgraded.
l/gstreamer-1.24.2-x86_64-1.txz: Upgraded.
l/libcap-ng-0.8.5-x86_64-1.txz: Upgraded.
l/nodejs-20.12.2-x86_64-1.txz: Upgraded.
l/python-trove-classifiers-2024.4.10-x86_64-1.txz: Upgraded.
n/gnutls-3.8.5-x86_64-2.txz: Rebuilt.
[PATCH] Fix RSAES-PKCS1-v1_5 system-wide configuration.
Thanks to bortolotto.
n/openssl-3.3.0-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240410190914 | Patrick J Volkerding | 2024-04-10 | 2 | -2/+2 |
* | Fri Apr 5 20:11:23 UTC 2024...a/etc-15.1-x86_64-10.txz: Rebuilt.
Added nut user (218) and nut group (218).
a/genpower-1.0.5-x86_64-5.txz: Removed.
a/nut-2.8.2-x86_64-1.txz: Added.
This is a package to support uninterruptible power supplies, and replaces
the obsolete genpower package.
Thanks to V'yacheslav Stetskevych for the original SBo script.
a/sysvinit-scripts-15.1-noarch-16.txz: Rebuilt.
rc.M: start the NUT init scripts rc.nut-drvctl, rc.nut-upsd, and
rc.nut-upsmon. Remove the genpower block.
rc.6: support stopping the UPS inverter on the way down if we see
/etc/killpower. Remove the genpower block.
a/tcsh-6.24.12-x86_64-1.txz: Upgraded.
ap/man-db-2.12.1-x86_64-1.txz: Upgraded.
ap/mpg123-1.32.6-x86_64-1.txz: Upgraded.
ap/vim-9.1.0265-x86_64-1.txz: Upgraded.
d/cargo-vendor-filterer-0.5.14-x86_64-1.txz: Upgraded.
d/nasm-2.16.02-x86_64-1.txz: Upgraded.
l/libproxy-0.5.5-x86_64-1.txz: Upgraded.
l/python-hatchling-1.22.5-x86_64-1.txz: Upgraded.
l/python-typing_extensions-4.11.0-x86_64-1.txz: Upgraded.
x/xdm-1.1.16-x86_64-1.txz: Upgraded.
xap/vim-gvim-9.1.0265-x86_64-1.txz: Upgraded.
extra/bash-completion/bash-completion-2.13.0-noarch-1.txz: Upgraded.
extra/tigervnc/tigervnc-1.13.1-x86_64-5.txz: Rebuilt.
Recompiled against xorg-server-21.1.12 to fix security issues:
Heap buffer overread/data leakage in ProcXIGetSelectedEvents.
Heap buffer overread/data leakage in ProcXIPassiveGrabDevice.
Heap buffer overread/data leakage in ProcAppleDRICreatePixmap.
Use-after-free in ProcRenderAddGlyphs.
For more information, see:
https://lists.x.org/archives/xorg-announce/2024-April/003497.html
https://www.cve.org/CVERecord?id=CVE-2024-31080
https://www.cve.org/CVERecord?id=CVE-2024-31081
https://www.cve.org/CVERecord?id=CVE-2024-31082
https://www.cve.org/CVERecord?id=CVE-2024-31083
(* Security fix *)
20240405201123 | Patrick J Volkerding | 2024-04-05 | 2 | -2/+2 |
* | Thu Apr 4 20:49:23 UTC 2024...a/hwdata-0.381-noarch-1.txz: Upgraded.
a/kernel-generic-6.6.25-x86_64-1.txz: Upgraded.
a/kernel-huge-6.6.25-x86_64-1.txz: Upgraded.
a/kernel-modules-6.6.25-x86_64-1.txz: Upgraded.
d/cmake-3.29.1-x86_64-1.txz: Upgraded.
d/kernel-headers-6.6.25-x86-1.txz: Upgraded.
d/llvm-18.1.3-x86_64-1.txz: Upgraded.
k/kernel-source-6.6.25-noarch-1.txz: Upgraded.
kde/kstars-3.7.0-x86_64-1.txz: Upgraded.
l/enchant-2.6.9-x86_64-1.txz: Upgraded.
l/libclc-18.1.3-x86_64-1.txz: Upgraded.
l/sof-firmware-2024.03-noarch-1.txz: Upgraded.
n/gnutls-3.8.5-x86_64-1.txz: Upgraded.
n/httpd-2.4.59-x86_64-1.txz: Upgraded.
This update fixes security issues:
HTTP/2 DoS by memory exhaustion on endless continuation frames.
HTTP Response Splitting in multiple modules.
HTTP response splitting.
For more information, see:
https://downloads.apache.org/httpd/CHANGES_2.4.59
https://www.cve.org/CVERecord?id=CVE-2024-27316
https://www.cve.org/CVERecord?id=CVE-2024-24795
https://www.cve.org/CVERecord?id=CVE-2023-38709
(* Security fix *)
n/nghttp2-1.61.0-x86_64-1.txz: Upgraded.
This update fixes security issues:
nghttp2 library keeps reading the unbounded number of HTTP/2 CONTINUATION
frames even after a stream is reset to keep HPACK context in sync. This
causes excessive CPU usage to decode HPACK stream. nghttp2 v1.61.0 mitigates
this vulnerability by limiting the number of CONTINUATION frames it can
accept after a HEADERS frame.
For more information, see:
https://github.com/nghttp2/nghttp2/security/advisories/GHSA-x6x3-gv8h-m57q
https://www.kb.cert.org/vuls/id/421644
https://www.cve.org/CVERecord?id=CVE-2024-28182
(* Security fix *)
x/xdg-desktop-portal-1.18.3-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240404204923 | Patrick J Volkerding | 2024-04-04 | 3 | -17/+17 |
* | Wed Apr 3 19:58:56 UTC 2024...a/kernel-generic-6.6.24-x86_64-1.txz: Upgraded.
a/kernel-huge-6.6.24-x86_64-1.txz: Upgraded.
a/kernel-modules-6.6.24-x86_64-1.txz: Upgraded.
d/kernel-headers-6.6.24-x86-1.txz: Upgraded.
d/python3-3.11.9-x86_64-1.txz: Upgraded.
k/kernel-source-6.6.24-noarch-1.txz: Upgraded.
-AMD_MEM_ENCRYPT_ACTIVE_BY_DEFAULT n
-GCC11_NO_ARRAY_BOUNDS y
NUMA_BALANCING n -> y
+GCC10_NO_ARRAY_BOUNDS y
+NUMA_BALANCING_DEFAULT_ENABLED y
kde/libindi-2.0.7-x86_64-1.txz: Upgraded.
l/SDL2-2.30.2-x86_64-1.txz: Upgraded.
l/aom-3.8.2-x86_64-1.txz: Added.
Needed to add AV1 encode/decode support to ffmpeg.
Thanks to Andrew Strong.
l/dav1d-1.4.1-x86_64-1.txz: Added.
Needed to add AV1 decode support to ffmpeg.
l/ffmpeg-6.1.1-x86_64-2.txz: Rebuilt.
Patched to build with nv-codec-headers-12.2.72.0. Thanks to J_W.
Compiled against aom-3.8.2 and dav1d-1.4.1 for AV1 support.
Thanks to glennmcc.
l/gtk4-4.14.2-x86_64-1.txz: Upgraded.
n/whois-5.5.22-x86_64-1.txz: Upgraded.
Fixed a segmentation fault with --no-recursion.
Updated the .bm and .vi TLD servers.
Removed 4 new gTLDs which are no longer active.
xap/MPlayer-20240403-x86_64-1.txz: Upgraded.
Compiled using --enable-libaom-lavc and --enable-libdav1d-lavc.
Thanks to glennmcc.
xap/pan-0.157-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240403195856 | Patrick J Volkerding | 2024-04-03 | 2 | -0/+26 |
* | Mon Apr 1 19:02:42 UTC 2024...d/nv-codec-headers-12.2.72.0-x86_64-1.txz: Upgraded.
d/parallel-20240322-noarch-1.txz: Upgraded.
kde/calligra-3.2.1-x86_64-38.txz: Rebuilt.
Recompiled against poppler-24.04.0.
kde/cantor-23.08.5-x86_64-5.txz: Rebuilt.
Recompiled against poppler-24.04.0.
kde/kfilemetadata-5.115.0-x86_64-3.txz: Rebuilt.
Recompiled against poppler-24.04.0.
kde/kile-2.9.93-x86_64-32.txz: Rebuilt.
Recompiled against poppler-24.04.0.
kde/kitinerary-23.08.5-x86_64-3.txz: Rebuilt.
Recompiled against poppler-24.04.0.
kde/krita-5.2.2-x86_64-7.txz: Rebuilt.
Recompiled against poppler-24.04.0.
kde/okular-23.08.5-x86_64-3.txz: Rebuilt.
Recompiled against poppler-24.04.0.
l/gobject-introspection-1.80.1-x86_64-1.txz: Upgraded.
l/netpbm-11.06.00-x86_64-1.txz: Upgraded.
l/poppler-24.04.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/python-pillow-10.3.0-x86_64-1.txz: Upgraded.
xap/x3270-4.3ga8-x86_64-1.txz: Upgraded.
20240401190242 | Patrick J Volkerding | 2024-04-02 | 1 | -1/+1 |
* | Sun Mar 31 22:44:32 UTC 2024...d/python-pip-24.0-x86_64-3.txz: Rebuilt.
Get rid of unneeded Windows garbage in the package.
d/python2-2.7.18-x86_64-8.txz: Rebuilt.
Get rid of unneeded Windows garbage in the package.
l/PyQt-builder-1.15.4-x86_64-3.txz: Rebuilt.
Get rid of unneeded Windows garbage in the package.
l/python-installer-0.7.0-x86_64-3.txz: Rebuilt.
Get rid of unneeded Windows garbage in the package.
20240331224432 | Patrick J Volkerding | 2024-04-01 | 2 | -2/+10 |
* | Sun Mar 31 18:28:19 UTC 2024...ap/hplip-3.23.12-x86_64-4.txz: Rebuilt.
Add a few patches from Arch, including one to fix a Unicode error with the
sixext.py script that causes hp-setup to crash after detecting a printer.
Thanks to truepatriot76.
d/Cython-3.0.10-x86_64-1.txz: Upgraded.
d/cargo-vendor-filterer-0.5.13-x86_64-1.txz: Upgraded.
d/poke-4.0-x86_64-1.txz: Upgraded.
l/editorconfig-core-c-0.12.7-x86_64-1.txz: Upgraded.
l/jasper-4.2.3-x86_64-1.txz: Upgraded.
l/libical-3.0.18-x86_64-1.txz: Upgraded.
l/pango-1.52.2-x86_64-1.txz: Upgraded.
l/python-lxml-5.2.0-x86_64-1.txz: Upgraded.
l/wireplumber-0.5.1-x86_64-1.txz: Upgraded.
n/c-ares-1.28.1-x86_64-1.txz: Upgraded.
xap/blueman-2.4-x86_64-1.txz: Upgraded.
20240331182819 | Patrick J Volkerding | 2024-03-31 | 5 | -21/+68 |
* | Sat Mar 30 18:08:12 UTC 2024...a/xz-5.6.1-x86_64-3.txz: Rebuilt.
[PATCH] CMake: Fix sabotaged Landlock sandbox check.
We don't build with CMake (yet), but it doesn't hurt to apply this.
d/mercurial-6.7.2-x86_64-1.txz: Upgraded.
l/boost-1.84.0-x86_64-3.txz: Rebuilt.
Recompiled against python-3.11.8. Thanks to rinza.
l/python-pycparser-2.22-x86_64-1.txz: Upgraded.
l/python-pytz-2024.1-x86_64-2.txz: Removed.
No longer needed with python-3.11. Thanks to audriusk.
l/python-tomli-2.0.1-x86_64-2.txz: Removed.
No longer needed with python-3.11. Thanks to TommyC7 and audriusk.
n/c-ares-1.28.0-x86_64-1.txz: Upgraded.
xap/xsnow-3.7.9-x86_64-1.txz: Upgraded.
extra/brltty/brltty-6.6-x86_64-4.txz: Rebuilt.
Don't install anything under /usr/local. Thanks to reddog83.
20240330180812 | Patrick J Volkerding | 2024-03-30 | 1 | -1/+1 |
* | Fri Mar 29 20:39:11 UTC 2024...Everything in this batch besides aaa_libraries, xz, mcelog, and harfbuzz is a
rebuild or upgrade to build against python-3.11.8. Looking at the python
readiness page, it seems like a lot of stuff we use is not certified for
python-3.12 yet (although to be fair, about half as much isn't certified for
python-3.11 either). But 3.11 seems to be the safer choice even though the
final bugfix update is scheduled for Monday. And, if we do decide to move
ahead to 3.12 later on, it'll be a lot easier than this update was.
Enjoy! :-)
a/aaa_libraries-15.1-x86_64-29.txz: Rebuilt.
Upgraded: libzstd.so.1.5.6, libexpat.so.1.9.2, libglib-2.0.so.0.8000.0,
libgmodule-2.0.so.0.8000.0, libgobject-2.0.so.0.8000.0,
libgthread-2.0.so.0.8000.0.
Removed: libboost_*.so.1.83.0.
a/libblockdev-2.28-x86_64-3.txz: Rebuilt.
a/libbytesize-2.8-x86_64-2.txz: Rebuilt.
a/libpwquality-1.4.5-x86_64-2.txz: Rebuilt.
a/mcelog-198-x86_64-1.txz: Upgraded.
a/util-linux-2.40-x86_64-2.txz: Rebuilt.
a/volume_key-0.3.12-x86_64-8.txz: Rebuilt.
a/xz-5.6.1-x86_64-2.txz: Rebuilt.
Seems like a good idea to build this from a git pull rather than the signed
release tarballs. :-)
The liblzma in the previous packages were not found to be vulnerable by the
detection script, but I'd rather not carry the bad m4 files in our sources.
Here's a test script for anyone wanting to try it:
if hexdump -ve '1/1 "%.2x"' /lib*/liblzma.so.5 | grep -q f30f1efa554889f54c89ce5389fb81e7000000804883ec28488954241848894c2410 ; then
echo probably vulnerable
else
echo probably not vulnerable
fi
ap/hplip-3.23.12-x86_64-3.txz: Rebuilt.
ap/linuxdoc-tools-0.9.82-x86_64-5.txz: Rebuilt.
ap/rpm-4.19.1.1-x86_64-2.txz: Rebuilt.
ap/undervolt-20210815_e39aea1-x86_64-3.txz: Rebuilt.
ap/vim-9.1.0225-x86_64-1.txz: Upgraded.
d/Cython-3.0.9-x86_64-2.txz: Rebuilt.
d/distcc-3.4-x86_64-5.txz: Rebuilt.
d/gdb-14.2-x86_64-2.txz: Rebuilt.
d/gyp-20210831_d6c5dd51-x86_64-3.txz: Rebuilt.
d/llvm-18.1.2-x86_64-2.txz: Rebuilt.
d/mercurial-6.7.1-x86_64-2.txz: Rebuilt.
d/meson-1.4.0-x86_64-2.txz: Rebuilt.
d/python-pip-24.0-x86_64-2.txz: Rebuilt.
d/python-setuptools-69.2.0-x86_64-2.txz: Rebuilt.
d/python3-3.11.8-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
d/scons-4.7.0-x86_64-2.txz: Rebuilt.
kde/cantor-23.08.5-x86_64-4.txz: Rebuilt.
kde/kapidox-5.115.0-x86_64-2.txz: Rebuilt.
kde/kdev-python-23.08.5-x86_64-2.txz: Rebuilt.
kde/kig-23.08.5-x86_64-2.txz: Rebuilt.
kde/kmymoney-5.1.3-x86_64-4.txz: Rebuilt.
kde/kopeninghours-23.08.5-x86_64-2.txz: Rebuilt.
kde/krita-5.2.2-x86_64-6.txz: Rebuilt.
l/M2Crypto-0.41.0-x86_64-2.txz: Rebuilt.
l/Mako-1.3.2-x86_64-2.txz: Rebuilt.
l/PyQt-builder-1.15.4-x86_64-2.txz: Rebuilt.
l/PyQt5-5.15.10-x86_64-2.txz: Rebuilt.
l/PyQt5_sip-12.13.0-x86_64-2.txz: Rebuilt.
l/QScintilla-2.14.1-x86_64-3.txz: Rebuilt.
l/avahi-20240306_709e60f-x86_64-2.txz: Rebuilt.
l/brotli-1.1.0-x86_64-2.txz: Rebuilt.
l/dbus-python-1.3.2-x86_64-2.txz: Rebuilt.
l/gexiv2-0.14.2-x86_64-3.txz: Rebuilt.
l/gi-docgen-2023.3-x86_64-2.txz: Rebuilt.
l/glade-3.40.0-x86_64-2.txz: Rebuilt.
l/gobject-introspection-1.80.0-x86_64-2.txz: Rebuilt.
l/harfbuzz-8.4.0-x86_64-1.txz: Upgraded.
l/lensfun-0.3.4-x86_64-2.txz: Rebuilt.
l/libcaca-0.99.beta20-x86_64-2.txz: Rebuilt.
l/libcap-ng-0.8.4-x86_64-2.txz: Rebuilt.
l/libieee1284-0.2.11-x86_64-8.txz: Rebuilt.
l/libimobiledevice-20231007_04c0233-x86_64-2.txz: Rebuilt.
l/libnvme-1.8-x86_64-2.txz: Rebuilt.
l/libplist-2.4.0-x86_64-2.txz: Rebuilt.
l/libwebp-1.3.2-x86_64-3.txz: Rebuilt.
l/libxml2-2.12.6-x86_64-3.txz: Rebuilt.
l/libxslt-1.1.39-x86_64-2.txz: Rebuilt.
l/newt-0.52.24-x86_64-3.txz: Rebuilt.
l/protobuf-26.1-x86_64-2.txz: Rebuilt.
l/pycairo-1.26.0-x86_64-3.txz: Rebuilt.
l/pycups-2.0.1-x86_64-7.txz: Rebuilt.
l/pycurl-7.45.3-x86_64-2.txz: Rebuilt.
l/pygobject3-3.48.1-x86_64-2.txz: Rebuilt.
l/pyparsing-3.1.2-x86_64-2.txz: Rebuilt.
l/python-Jinja2-3.1.3-x86_64-2.txz: Rebuilt.
l/python-MarkupSafe-2.1.5-x86_64-2.txz: Rebuilt.
l/python-PyYAML-6.0.1-x86_64-3.txz: Rebuilt.
l/python-alabaster-0.7.16-x86_64-2.txz: Rebuilt.
l/python-appdirs-1.4.4-x86_64-7.txz: Rebuilt.
l/python-babel-2.14.0-x86_64-2.txz: Rebuilt.
l/python-build-1.2.1-x86_64-2.txz: Rebuilt.
l/python-calver-2022.6.26-x86_64-2.txz: Rebuilt.
l/python-certifi-2024.2.2-x86_64-2.txz: Rebuilt.
l/python-cffi-1.16.0-x86_64-2.txz: Rebuilt.
l/python-chardet-5.2.0-x86_64-2.txz: Rebuilt.
l/python-charset-normalizer-3.3.2-x86_64-2.txz: Rebuilt.
l/python-distro-1.9.0-x86_64-2.txz: Rebuilt.
l/python-dnspython-2.6.1-x86_64-2.txz: Rebuilt.
l/python-docutils-0.20.1-x86_64-2.txz: Rebuilt.
l/python-doxypypy-0.8.8.7-x86_64-2.txz: Rebuilt.
l/python-doxyqml-0.5.3-x86_64-2.txz: Rebuilt.
l/python-editables-0.5-x86_64-2.txz: Rebuilt.
l/python-flit-core-3.9.0-x86_64-2.txz: Rebuilt.
l/python-future-1.0.0-x86_64-2.txz: Rebuilt.
l/python-glad2-2.0.6-x86_64-2.txz: Rebuilt.
l/python-hatchling-1.22.4-x86_64-2.txz: Rebuilt.
l/python-html5lib-1.1-x86_64-2.txz: Rebuilt.
l/python-idna-3.6-x86_64-2.txz: Rebuilt.
l/python-imagesize-1.4.1-x86_64-2.txz: Rebuilt.
l/python-importlib_metadata-7.1.0-x86_64-2.txz: Rebuilt.
l/python-installer-0.7.0-x86_64-2.txz: Rebuilt.
l/python-lxml-5.1.1-x86_64-1.txz: Upgraded.
l/python-markdown-3.6-x86_64-2.txz: Rebuilt.
l/python-notify2-0.3.1-x86_64-11.txz: Rebuilt.
l/python-packaging-24.0-x86_64-2.txz: Rebuilt.
l/python-pathspec-0.12.1-x86_64-2.txz: Rebuilt.
l/python-pbr-6.0.0-x86_64-2.txz: Rebuilt.
l/python-pillow-10.2.0-x86_64-2.txz: Rebuilt.
l/python-pluggy-1.4.0-x86_64-2.txz: Rebuilt.
l/python-ply-3.11-x86_64-9.txz: Rebuilt.
l/python-psutil-5.9.8-x86_64-2.txz: Rebuilt.
l/python-pycparser-2.21-x86_64-2.txz: Rebuilt.
l/python-pygments-2.17.2-x86_64-2.txz: Rebuilt.
l/python-pyproject-hooks-1.0.0-x86_64-2.txz: Rebuilt.
l/python-pysol_cards-0.16.0-x86_64-2.txz: Rebuilt.
l/python-pytz-2024.1-x86_64-2.txz: Rebuilt.
l/python-random2-1.0.2-x86_64-2.txz: Rebuilt.
l/python-requests-2.31.0-x86_64-2.txz: Rebuilt.
l/python-sane-2.9.1-x86_64-6.txz: Rebuilt.
l/python-setuptools_scm-8.0.4-x86_64-2.txz: Rebuilt.
l/python-six-1.16.0-x86_64-4.txz: Rebuilt.
l/python-smartypants-2.0.1-x86_64-2.txz: Rebuilt.
l/python-snowballstemmer-2.2.0-x86_64-2.txz: Rebuilt.
l/python-sphinx-7.2.6-x86_64-2.txz: Rebuilt.
l/python-sphinx_rtd_theme-2.0.0-x86_64-2.txz: Rebuilt.
l/python-tomli-2.0.1-x86_64-2.txz: Rebuilt.
l/python-tomli-w-1.0.0-x86_64-2.txz: Rebuilt.
l/python-trove-classifiers-2024.3.25-x86_64-2.txz: Rebuilt.
l/python-typing_extensions-4.10.0-x86_64-2.txz: Rebuilt.
l/python-typogrify-2.0.7-x86_64-2.txz: Rebuilt.
l/python-urllib3-2.2.1-x86_64-2.txz: Rebuilt.
l/python-webencodings-0.5.1-x86_64-2.txz: Rebuilt.
l/python-wheel-0.43.0-x86_64-2.txz: Rebuilt.
l/python-zipp-3.18.1-x86_64-2.txz: Rebuilt.
l/sip-6.8.3-x86_64-2.txz: Rebuilt.
l/speech-dispatcher-0.11.5-x86_64-2.txz: Rebuilt.
l/system-config-printer-1.5.18-x86_64-2.txz: Rebuilt.
l/talloc-2.4.2-x86_64-2.txz: Rebuilt.
l/tdb-1.4.10-x86_64-2.txz: Rebuilt.
l/tevent-0.16.1-x86_64-2.txz: Rebuilt.
n/epic5-2.1.12-x86_64-7.txz: Rebuilt.
n/fetchmail-6.4.38-x86_64-2.txz: Rebuilt.
n/getmail-6.18.14-x86_64-2.txz: Rebuilt.
n/gpgme-1.23.2-x86_64-3.txz: Rebuilt.
n/net-snmp-5.9.4-x86_64-2.txz: Rebuilt.
n/nftables-1.0.9-x86_64-2.txz: Rebuilt.
n/nmap-7.94-x86_64-2.txz: Rebuilt.
n/nss-pam-ldapd-0.9.12-x86_64-4.txz: Rebuilt.
n/obexftp-0.24.2-x86_64-12.txz: Rebuilt.
n/pssh-2.3.5-x86_64-2.txz: Rebuilt.
n/samba-4.20.0-x86_64-2.txz: Rebuilt.
x/ibus-1.5.29-x86_64-3.txz: Rebuilt.
x/ibus-anthy-1.5.16-x86_64-2.txz: Rebuilt.
x/ibus-hangul-1.5.5-x86_64-2.txz: Rebuilt.
x/ibus-libpinyin-1.15.7-x86_64-2.txz: Rebuilt.
x/ibus-table-1.17.4-x86_64-2.txz: Rebuilt.
x/marisa-0.2.6-x86_64-9.txz: Rebuilt.
x/pyxdg-0.28-x86_64-2.txz: Rebuilt.
x/xcb-proto-1.16.0-x86_64-3.txz: Rebuilt.
xap/blueman-2.3.5-x86_64-2.txz: Rebuilt.
xap/hexchat-2.16.2-x86_64-2.txz: Rebuilt.
xap/vim-gvim-9.1.0225-x86_64-1.txz: Upgraded.
extra/brltty/brltty-6.6-x86_64-3.txz: Rebuilt.
20240329203911 | Patrick J Volkerding | 2024-03-29 | 17 | -202/+29 |
* | Thu Mar 28 21:40:08 UTC 2024...a/btrfs-progs-6.8-x86_64-1.txz: Upgraded.
a/gpm-1.20.7-x86_64-10.txz: Rebuilt.
Clean up the compile fix patch omitting the Emacs Lisp file.
Clean up and apply the weak-wgetch patch.
Build using the option --without-curses.
Thanks to qunying.
a/util-linux-2.40-x86_64-1.txz: Upgraded.
This release fixes a vulnerability where the wall command did not filter
escape sequences from command line arguments, allowing unprivileged users
to put arbitrary text on other users terminals.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-28085
(* Security fix *)
d/rust-1.77.1-x86_64-1.txz: Upgraded.
l/fluidsynth-2.3.5-x86_64-1.txz: Upgraded.
l/protobuf-26.1-x86_64-1.txz: Upgraded.
l/python-build-1.2.1-x86_64-1.txz: Upgraded.
n/samba-4.20.0-x86_64-1.txz: Upgraded.
x/mesa-24.0.4-x86_64-1.txz: Upgraded.
xap/seamonkey-2.53.18.2-x86_64-1.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
https://www.seamonkey-project.org/releases/seamonkey2.53.18.2
(* Security fix *)
20240328214008 | Patrick J Volkerding | 2024-03-28 | 3 | -3/+3 |
* | Thu Mar 21 22:36:42 UTC 2024...d/cmake-3.29.0-x86_64-1.txz: Upgraded.
l/gtkmm3-3.24.9-x86_64-1.txz: Upgraded.
l/pangomm2-2.52.0-x86_64-1.txz: Upgraded.
l/python-importlib_metadata-7.1.0-x86_64-1.txz: Upgraded.
20240321223642 | Patrick J Volkerding | 2024-03-21 | 3 | -41/+70 |
* | Thu Mar 21 19:53:15 UTC 2024...d/mercurial-6.7.1-x86_64-1.txz: Upgraded.
d/rust-1.77.0-x86_64-1.txz: Upgraded.
l/cairomm1-1.18.0-x86_64-1.txz: Added.
Thanks to jloco.
l/glibmm2-2.78.1-x86_64-1.txz: Added.
Thanks to jloco.
l/gtkmm4-4.12.0-x86_64-1.txz: Added.
Thanks to jloco.
l/libclc-18.1.2-x86_64-1.txz: Upgraded.
l/pangomm-2.46.4-x86_64-1.txz: Upgraded.
l/pangomm2-2.50.2-x86_64-1.txz: Added.
Thanks to jloco.
n/openvpn-2.6.10-x86_64-1.txz: Upgraded.
x/libkkc-0.3.5-x86_64-5.txz: Rebuilt.
Use python for the build, not python2.
x/libkkc-data-0.2.7-x86_64-5.txz: Rebuilt.
Use python for the build, not python2.
x/marisa-0.2.6-x86_64-8.txz: Rebuilt.
Drop python2 support and rebuild marisa module for python3.
x/wayland-protocols-1.34-noarch-1.txz: Upgraded.
20240321195315 | Patrick J Volkerding | 2024-03-21 | 2 | -7/+7 |