| Commit message (Expand) | Author | Files | Lines |
2023-02-03 | Thu Feb 2 22:52:48 UTC 2023...a/aaa_glibc-solibs-2.37-x86_64-1.txz: Upgraded.
kde/akonadi-22.12.2-x86_64-1.txz: Upgraded.
kde/akonadi-calendar-22.12.2-x86_64-1.txz: Upgraded.
kde/akonadi-calendar-tools-22.12.2-x86_64-1.txz: Upgraded.
kde/akonadi-contacts-22.12.2-x86_64-1.txz: Upgraded.
kde/akonadi-import-wizard-22.12.2-x86_64-1.txz: Upgraded.
kde/akonadi-mime-22.12.2-x86_64-1.txz: Upgraded.
kde/akonadi-notes-22.12.2-x86_64-1.txz: Upgraded.
kde/akonadi-search-22.12.2-x86_64-1.txz: Upgraded.
kde/akonadiconsole-22.12.2-x86_64-1.txz: Upgraded.
kde/akregator-22.12.2-x86_64-1.txz: Upgraded.
kde/analitza-22.12.2-x86_64-1.txz: Upgraded.
kde/ark-22.12.2-x86_64-1.txz: Upgraded.
kde/artikulate-22.12.2-x86_64-1.txz: Upgraded.
kde/audiocd-kio-22.12.2-x86_64-1.txz: Upgraded.
kde/baloo-widgets-22.12.2-x86_64-1.txz: Upgraded.
kde/blinken-22.12.2-x86_64-1.txz: Upgraded.
kde/bomber-22.12.2-x86_64-1.txz: Upgraded.
kde/bovo-22.12.2-x86_64-1.txz: Upgraded.
kde/calendarsupport-22.12.2-x86_64-1.txz: Upgraded.
kde/cantor-22.12.2-x86_64-1.txz: Upgraded.
kde/cervisia-22.12.2-x86_64-1.txz: Upgraded.
kde/dolphin-22.12.2-x86_64-1.txz: Upgraded.
kde/dolphin-plugins-22.12.2-x86_64-1.txz: Upgraded.
kde/dragon-22.12.2-x86_64-1.txz: Upgraded.
kde/elisa-22.12.2-x86_64-1.txz: Upgraded.
kde/eventviews-22.12.2-x86_64-1.txz: Upgraded.
kde/falkon-22.12.2-x86_64-1.txz: Upgraded.
kde/ffmpegthumbs-22.12.2-x86_64-1.txz: Upgraded.
kde/filelight-22.12.2-x86_64-1.txz: Upgraded.
kde/granatier-22.12.2-x86_64-1.txz: Upgraded.
kde/grantlee-editor-22.12.2-x86_64-1.txz: Upgraded.
kde/grantleetheme-22.12.2-x86_64-1.txz: Upgraded.
kde/gwenview-22.12.2-x86_64-1.txz: Upgraded.
kde/incidenceeditor-22.12.2-x86_64-1.txz: Upgraded.
kde/itinerary-22.12.2-x86_64-1.txz: Upgraded.
kde/juk-22.12.2-x86_64-1.txz: Upgraded.
kde/k3b-22.12.2-x86_64-1.txz: Upgraded.
kde/kaddressbook-22.12.2-x86_64-1.txz: Upgraded.
kde/kalarm-22.12.2-x86_64-1.txz: Upgraded.
kde/kalendar-22.12.2-x86_64-1.txz: Upgraded.
kde/kalgebra-22.12.2-x86_64-1.txz: Upgraded.
kde/kalzium-22.12.2-x86_64-1.txz: Upgraded.
kde/kamera-22.12.2-x86_64-1.txz: Upgraded.
kde/kamoso-22.12.2-x86_64-1.txz: Upgraded.
kde/kanagram-22.12.2-x86_64-1.txz: Upgraded.
kde/kapman-22.12.2-x86_64-1.txz: Upgraded.
kde/kapptemplate-22.12.2-x86_64-1.txz: Upgraded.
kde/kate-22.12.2-x86_64-1.txz: Upgraded.
kde/katomic-22.12.2-x86_64-1.txz: Upgraded.
kde/kbackup-22.12.2-x86_64-1.txz: Upgraded.
kde/kblackbox-22.12.2-x86_64-1.txz: Upgraded.
kde/kblocks-22.12.2-x86_64-1.txz: Upgraded.
kde/kbounce-22.12.2-x86_64-1.txz: Upgraded.
kde/kbreakout-22.12.2-x86_64-1.txz: Upgraded.
kde/kbruch-22.12.2-x86_64-1.txz: Upgraded.
kde/kcachegrind-22.12.2-x86_64-1.txz: Upgraded.
kde/kcalc-22.12.2-x86_64-1.txz: Upgraded.
kde/kcalutils-22.12.2-x86_64-1.txz: Upgraded.
kde/kcharselect-22.12.2-x86_64-1.txz: Upgraded.
kde/kcolorchooser-22.12.2-x86_64-1.txz: Upgraded.
kde/kcron-22.12.2-x86_64-1.txz: Upgraded.
kde/kde-dev-scripts-22.12.2-x86_64-1.txz: Upgraded.
kde/kde-dev-utils-22.12.2-x86_64-1.txz: Upgraded.
kde/kdebugsettings-22.12.2-x86_64-1.txz: Upgraded.
kde/kdeconnect-kde-22.12.2-x86_64-1.txz: Upgraded.
kde/kdeedu-data-22.12.2-x86_64-1.txz: Upgraded.
kde/kdegraphics-mobipocket-22.12.2-x86_64-1.txz: Upgraded.
kde/kdegraphics-thumbnailers-22.12.2-x86_64-1.txz: Upgraded.
kde/kdenetwork-filesharing-22.12.2-x86_64-1.txz: Upgraded.
kde/kdenlive-22.12.2-x86_64-1.txz: Upgraded.
kde/kdepim-addons-22.12.2-x86_64-1.txz: Upgraded.
kde/kdepim-runtime-22.12.2-x86_64-1.txz: Upgraded.
kde/kdesdk-kio-22.12.2-x86_64-1.txz: Upgraded.
kde/kdesdk-thumbnailers-22.12.2-x86_64-1.txz: Upgraded.
kde/kdev-php-22.12.2-x86_64-1.txz: Upgraded.
kde/kdev-python-22.12.2-x86_64-1.txz: Upgraded.
kde/kdevelop-22.12.2-x86_64-1.txz: Upgraded.
kde/kdf-22.12.2-x86_64-1.txz: Upgraded.
kde/kdialog-22.12.2-x86_64-1.txz: Upgraded.
kde/kdiamond-22.12.2-x86_64-1.txz: Upgraded.
kde/keditbookmarks-22.12.2-x86_64-1.txz: Upgraded.
kde/kfind-22.12.2-x86_64-1.txz: Upgraded.
kde/kfloppy-22.12.2-x86_64-1.txz: Upgraded.
kde/kfourinline-22.12.2-x86_64-1.txz: Upgraded.
kde/kgeography-22.12.2-x86_64-1.txz: Upgraded.
kde/kget-22.12.2-x86_64-1.txz: Upgraded.
kde/kgoldrunner-22.12.2-x86_64-1.txz: Upgraded.
kde/kgpg-22.12.2-x86_64-1.txz: Upgraded.
kde/khangman-22.12.2-x86_64-1.txz: Upgraded.
kde/khelpcenter-22.12.2-x86_64-1.txz: Upgraded.
kde/kidentitymanagement-22.12.2-x86_64-1.txz: Upgraded.
kde/kig-22.12.2-x86_64-1.txz: Upgraded.
kde/kigo-22.12.2-x86_64-1.txz: Upgraded.
kde/killbots-22.12.2-x86_64-1.txz: Upgraded.
kde/kimagemapeditor-22.12.2-x86_64-1.txz: Upgraded.
kde/kimap-22.12.2-x86_64-1.txz: Upgraded.
kde/kio-extras-22.12.2-x86_64-1.txz: Upgraded.
kde/kio-gdrive-22.12.2-x86_64-1.txz: Upgraded.
kde/kio-zeroconf-22.12.2-x86_64-1.txz: Upgraded.
kde/kipi-plugins-22.12.2-x86_64-1.txz: Upgraded.
kde/kirigami-gallery-22.12.2-x86_64-1.txz: Upgraded.
kde/kiriki-22.12.2-x86_64-1.txz: Upgraded.
kde/kiten-22.12.2-x86_64-1.txz: Upgraded.
kde/kitinerary-22.12.2-x86_64-1.txz: Upgraded.
kde/kjumpingcube-22.12.2-x86_64-1.txz: Upgraded.
kde/kldap-22.12.2-x86_64-1.txz: Upgraded.
kde/kleopatra-22.12.2-x86_64-1.txz: Upgraded.
kde/klickety-22.12.2-x86_64-1.txz: Upgraded.
kde/klines-22.12.2-x86_64-1.txz: Upgraded.
kde/kmag-22.12.2-x86_64-1.txz: Upgraded.
kde/kmahjongg-22.12.2-x86_64-1.txz: Upgraded.
kde/kmail-22.12.2-x86_64-1.txz: Upgraded.
kde/kmail-account-wizard-22.12.2-x86_64-1.txz: Upgraded.
kde/kmailtransport-22.12.2-x86_64-1.txz: Upgraded.
kde/kmbox-22.12.2-x86_64-1.txz: Upgraded.
kde/kmime-22.12.2-x86_64-1.txz: Upgraded.
kde/kmines-22.12.2-x86_64-1.txz: Upgraded.
kde/kmix-22.12.2-x86_64-1.txz: Upgraded.
kde/kmousetool-22.12.2-x86_64-1.txz: Upgraded.
kde/kmouth-22.12.2-x86_64-1.txz: Upgraded.
kde/kmplot-22.12.2-x86_64-1.txz: Upgraded.
kde/knavalbattle-22.12.2-x86_64-1.txz: Upgraded.
kde/knetwalk-22.12.2-x86_64-1.txz: Upgraded.
kde/knights-22.12.2-x86_64-1.txz: Upgraded.
kde/knotes-22.12.2-x86_64-1.txz: Upgraded.
kde/kolf-22.12.2-x86_64-1.txz: Upgraded.
kde/kollision-22.12.2-x86_64-1.txz: Upgraded.
kde/kolourpaint-22.12.2-x86_64-1.txz: Upgraded.
kde/kompare-22.12.2-x86_64-1.txz: Upgraded.
kde/konqueror-22.12.2-x86_64-1.txz: Upgraded.
kde/konquest-22.12.2-x86_64-1.txz: Upgraded.
kde/konsole-22.12.2-x86_64-1.txz: Upgraded.
kde/kontact-22.12.2-x86_64-1.txz: Upgraded.
kde/kontactinterface-22.12.2-x86_64-1.txz: Upgraded.
kde/kontrast-22.12.2-x86_64-1.txz: Upgraded.
kde/konversation-22.12.2-x86_64-1.txz: Upgraded.
kde/kopeninghours-22.12.2-x86_64-1.txz: Upgraded.
kde/kopete-22.12.2-x86_64-1.txz: Upgraded.
kde/korganizer-22.12.2-x86_64-1.txz: Upgraded.
kde/kosmindoormap-22.12.2-x86_64-1.txz: Upgraded.
kde/kpat-22.12.2-x86_64-1.txz: Upgraded.
kde/kpimtextedit-22.12.2-x86_64-1.txz: Upgraded.
kde/kpkpass-22.12.2-x86_64-1.txz: Upgraded.
kde/kpmcore-22.12.2-x86_64-1.txz: Upgraded.
kde/kpublictransport-22.12.2-x86_64-1.txz: Upgraded.
kde/kqtquickcharts-22.12.2-x86_64-1.txz: Upgraded.
kde/krdc-22.12.2-x86_64-1.txz: Upgraded.
kde/kreversi-22.12.2-x86_64-1.txz: Upgraded.
kde/krfb-22.12.2-x86_64-1.txz: Upgraded.
kde/kross-interpreters-22.12.2-x86_64-1.txz: Upgraded.
kde/kruler-22.12.2-x86_64-1.txz: Upgraded.
kde/ksanecore-22.12.2-x86_64-1.txz: Upgraded.
kde/kshisen-22.12.2-x86_64-1.txz: Upgraded.
kde/ksirk-22.12.2-x86_64-1.txz: Upgraded.
kde/ksmtp-22.12.2-x86_64-1.txz: Upgraded.
kde/ksnakeduel-22.12.2-x86_64-1.txz: Upgraded.
kde/kspaceduel-22.12.2-x86_64-1.txz: Upgraded.
kde/ksquares-22.12.2-x86_64-1.txz: Upgraded.
kde/ksudoku-22.12.2-x86_64-1.txz: Upgraded.
kde/ksystemlog-22.12.2-x86_64-1.txz: Upgraded.
kde/kteatime-22.12.2-x86_64-1.txz: Upgraded.
kde/ktimer-22.12.2-x86_64-1.txz: Upgraded.
kde/ktnef-22.12.2-x86_64-1.txz: Upgraded.
kde/ktorrent-22.12.2-x86_64-1.txz: Upgraded.
kde/ktouch-22.12.2-x86_64-1.txz: Upgraded.
kde/kturtle-22.12.2-x86_64-1.txz: Upgraded.
kde/kubrick-22.12.2-x86_64-1.txz: Upgraded.
kde/kwalletmanager-22.12.2-x86_64-1.txz: Upgraded.
kde/kwave-22.12.2-x86_64-1.txz: Upgraded.
kde/kwordquiz-22.12.2-x86_64-1.txz: Upgraded.
kde/libgravatar-22.12.2-x86_64-1.txz: Upgraded.
kde/libkcddb-22.12.2-x86_64-1.txz: Upgraded.
kde/libkcompactdisc-22.12.2-x86_64-1.txz: Upgraded.
kde/libkdcraw-22.12.2-x86_64-1.txz: Upgraded.
kde/libkdegames-22.12.2-x86_64-1.txz: Upgraded.
kde/libkdepim-22.12.2-x86_64-1.txz: Upgraded.
kde/libkeduvocdocument-22.12.2-x86_64-1.txz: Upgraded.
kde/libkexiv2-22.12.2-x86_64-1.txz: Upgraded.
kde/libkgapi-22.12.2-x86_64-1.txz: Upgraded.
kde/libkipi-22.12.2-x86_64-1.txz: Upgraded.
kde/libkleo-22.12.2-x86_64-1.txz: Upgraded.
kde/libkmahjongg-22.12.2-x86_64-1.txz: Upgraded.
kde/libkomparediff2-22.12.2-x86_64-1.txz: Upgraded.
kde/libksane-22.12.2-x86_64-1.txz: Upgraded.
kde/libksieve-22.12.2-x86_64-1.txz: Upgraded.
kde/libktorrent-22.12.2-x86_64-1.txz: Upgraded.
kde/lokalize-22.12.2-x86_64-1.txz: Upgraded.
kde/lskat-22.12.2-x86_64-1.txz: Upgraded.
kde/mailcommon-22.12.2-x86_64-1.txz: Upgraded.
kde/mailimporter-22.12.2-x86_64-1.txz: Upgraded.
kde/marble-22.12.2-x86_64-1.txz: Upgraded.
kde/markdownpart-22.12.2-x86_64-1.txz: Upgraded.
kde/mbox-importer-22.12.2-x86_64-1.txz: Upgraded.
kde/messagelib-22.12.2-x86_64-1.txz: Upgraded.
kde/minuet-22.12.2-x86_64-1.txz: Upgraded.
kde/okular-22.12.2-x86_64-1.txz: Upgraded.
kde/palapeli-22.12.2-x86_64-1.txz: Upgraded.
kde/parley-22.12.2-x86_64-1.txz: Upgraded.
kde/partitionmanager-22.12.2-x86_64-1.txz: Upgraded.
kde/picmi-22.12.2-x86_64-1.txz: Upgraded.
kde/pim-data-exporter-22.12.2-x86_64-1.txz: Upgraded.
kde/pim-sieve-editor-22.12.2-x86_64-1.txz: Upgraded.
kde/pimcommon-22.12.2-x86_64-1.txz: Upgraded.
kde/poxml-22.12.2-x86_64-1.txz: Upgraded.
kde/print-manager-22.12.2-x86_64-1.txz: Upgraded.
kde/rocs-22.12.2-x86_64-1.txz: Upgraded.
kde/skanlite-22.12.2-x86_64-1.txz: Upgraded.
kde/skanpage-22.12.2-x86_64-1.txz: Upgraded.
kde/spectacle-22.12.2-x86_64-1.txz: Upgraded.
kde/svgpart-22.12.2-x86_64-1.txz: Upgraded.
kde/sweeper-22.12.2-x86_64-1.txz: Upgraded.
kde/umbrello-22.12.2-x86_64-1.txz: Upgraded.
kde/yakuake-22.12.2-x86_64-1.txz: Upgraded.
kde/zanshin-22.12.2-x86_64-1.txz: Upgraded.
l/glibc-2.37-x86_64-1.txz: Upgraded.
l/glibc-i18n-2.37-x86_64-1.txz: Upgraded.
l/glibc-profile-2.37-x86_64-1.txz: Upgraded.
l/nodejs-19.6.0-x86_64-1.txz: Upgraded.
l/poppler-23.02.0-x86_64-1.txz: Upgraded.
l/xapian-core-1.4.22-x86_64-1.txz: Upgraded.
n/openssh-9.2p1-x86_64-1.txz: Upgraded.
This release contains fixes for two security problems and a memory safety
problem. The memory safety problem is not believed to be exploitable, but
upstream reports most network-reachable memory faults as security bugs.
For more information, see:
https://www.openssh.com/releasenotes.html#9.2
(* Security fix *)
20230202225248 | Patrick J Volkerding | 8 | -3126/+1643 |
2023-02-02 | Wed Feb 1 22:27:31 UTC 2023...a/kernel-firmware-20230125_5c11a37-noarch-1.txz: Upgraded.
a/kernel-generic-6.1.9-x86_64-1.txz: Upgraded.
a/kernel-huge-6.1.9-x86_64-1.txz: Upgraded.
a/kernel-modules-6.1.9-x86_64-1.txz: Upgraded.
d/kernel-headers-6.1.9-x86-1.txz: Upgraded.
k/kernel-source-6.1.9-noarch-1.txz: Upgraded.
l/apr-1.7.2-x86_64-1.txz: Upgraded.
This update fixes security issues:
Integer Overflow or Wraparound vulnerability in apr_encode functions of
Apache Portable Runtime (APR) allows an attacker to write beyond bounds
of a buffer. (CVE-2022-24963)
Restore fix for out-of-bounds array dereference in apr_time_exp*() functions.
(This issue was addressed as CVE-2017-12613 in APR 1.6.3 and
later 1.6.x releases, but was missing in 1.7.0.) (CVE-2021-35940)
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-24963
https://www.cve.org/CVERecord?id=CVE-2021-35940
https://www.cve.org/CVERecord?id=CVE-2017-12613
(* Security fix *)
l/apr-util-1.6.3-x86_64-1.txz: Upgraded.
This update fixes a security issue:
Integer Overflow or Wraparound vulnerability in apr_base64 functions
of Apache Portable Runtime Utility (APR-util) allows an attacker to
write beyond bounds of a buffer. (CVE-2022-25147)
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-25147
(* Security fix *)
l/libhandy-1.8.1-x86_64-1.txz: Upgraded.
l/libjpeg-turbo-2.1.5-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-102.7.1-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/102.7.1/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2023-04/
https://www.cve.org/CVERecord?id=CVE-2023-0430
(* Security fix *)
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20230201222731 | Patrick J Volkerding | 22 | -272/+227 |
2023-02-01 | Wed Feb 1 05:29:53 UTC 2023...d/perl-5.36.0-x86_64-3.txz: Rebuilt.
Upgraded: IO-Socket-SSL-2.081, Moo-2.005005, Path-Tiny-0.144,
Sub-Quote-2.006008, Template-Toolkit-3.101, URI-5.17.
Added: JSON-4.10 (needed to build Samba with --bundled-libraries=heimdal).
kde/kstars-3.6.3-x86_64-1.txz: Upgraded.
l/gjs-1.74.1-x86_64-1.txz: Upgraded.
Compiled against mozjs102-102.7.0esr.
l/mozjs102-102.7.0esr-x86_64-1.txz: Added.
This is required by gjs-1.74.1 and polkit-122.
l/mozjs78-78.15.0esr-x86_64-1.txz: Removed.
l/polkit-122-x86_64-1.txz: Upgraded.
Compiled against mozjs102-102.7.0esr.
20230201052953 | Patrick J Volkerding | 41 | -868/+707 |
2023-01-30 | Mon Jan 30 21:38:07 UTC 2023...ap/sysstat-12.7.2-x86_64-1.txz: Upgraded.
kde/kimageformats-5.102.0-x86_64-2.txz: Rebuilt.
Recompiled against LibRaw-0.21.1.
kde/krita-5.1.5-x86_64-3.txz: Rebuilt.
Recompiled against LibRaw-0.21.1.
kde/kstars-3.6.2-x86_64-3.txz: Rebuilt.
Recompiled against LibRaw-0.21.1.
kde/libkdcraw-22.12.1-x86_64-2.txz: Rebuilt.
Recompiled against LibRaw-0.21.1.
l/LibRaw-0.21.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/dconf-editor-43.0-x86_64-1.txz: Upgraded.
l/gegl-0.4.40-x86_64-3.txz: Rebuilt.
Recompiled against LibRaw-0.21.1.
l/imagemagick-7.1.0_60-x86_64-1.txz: Upgraded.
Compiled against LibRaw-0.21.1.
l/libhandy-1.8.0-x86_64-1.txz: Added.
This is required by dconf-editor-43.0.
xap/geeqie-2.0.1-x86_64-2.txz: Rebuilt.
Recompiled against LibRaw-0.21.1.
xap/mozilla-firefox-109.0.1-x86_64-1.txz: Upgraded.
For more information, see:
https://www.mozilla.org/en-US/firefox/109.0.1/releasenotes/
20230130213807 | Patrick J Volkerding | 19 | -128/+319 |
2023-01-29 | Sun Jan 29 19:01:47 UTC 2023...l/imagemagick-7.1.0_59-x86_64-1.txz: Upgraded.
n/c-ares-1.19.0-x86_64-1.txz: Upgraded.
n/fetchmail-6.4.36-x86_64-1.txz: Upgraded.
x/beforelight-1.0.6-x86_64-1.txz: Upgraded.
20230129190147 | Patrick J Volkerding | 4 | -47/+67 |
2023-01-27 | Fri Jan 27 20:08:12 UTC 2023...n/samba-4.17.5-x86_64-1.txz: Upgraded.
BUG 15240: CVE-2022-38023 [SECURITY] Samba should refuse RC4 (aka md5)
based SChannel on NETLOGON (additional changes).
For more information, see:
https://www.samba.org/samba/security/CVE-2022-38023.html
https://www.cve.org/CVERecord?id=CVE-2022-38023
(* Security fix *)
x/mesa-22.3.4-x86_64-1.txz: Upgraded.
x/xf86-video-vmware-13.4.0-x86_64-1.txz: Upgraded.
20230127200812 | Patrick J Volkerding | 5 | -58/+74 |
2023-01-26 | Thu Jan 26 21:12:35 UTC 2023...a/btrfs-progs-6.1.3-x86_64-1.txz: Upgraded.
l/pipewire-0.3.65-x86_64-1.txz: Upgraded.
n/NetworkManager-1.40.12-x86_64-1.txz: Upgraded.
xap/xine-lib-1.2.13-x86_64-1.txz: Upgraded.
20230126211235 | Patrick J Volkerding | 6 | -391/+73 |
2023-01-26 | Thu Jan 26 00:34:41 UTC 2023...ap/cups-filters-1.28.17-x86_64-1.txz: Upgraded.
ap/vim-9.0.1241-x86_64-1.txz: Upgraded.
Fixed a security issue:
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1225.
Thanks to marav for the heads-up.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2023-0433
(* Security fix *)
d/guile-3.0.9-x86_64-1.txz: Upgraded.
d/poke-3.0-x86_64-1.txz: Upgraded.
l/nodejs-19.5.0-x86_64-1.txz: Upgraded.
n/bind-9.18.11-x86_64-1.txz: Upgraded.
This update fixes bugs and the following security issues:
An UPDATE message flood could cause :iscman:`named` to exhaust all
available memory. This flaw was addressed by adding a new
:any:`update-quota` option that controls the maximum number of
outstanding DNS UPDATE messages that :iscman:`named` can hold in a
queue at any given time (default: 100).
:iscman:`named` could crash with an assertion failure when an RRSIG
query was received and :any:`stale-answer-client-timeout` was set to a
non-zero value. This has been fixed.
:iscman:`named` running as a resolver with the
:any:`stale-answer-client-timeout` option set to any value greater
than ``0`` could crash with an assertion failure, when the
:any:`recursive-clients` soft quota was reached. This has been fixed.
For more information, see:
https://kb.isc.org/docs/cve-2022-3094
https://kb.isc.org/docs/cve-2022-3736
https://kb.isc.org/docs/cve-2022-3924
https://www.cve.org/CVERecord?id=CVE-2022-3094
https://www.cve.org/CVERecord?id=CVE-2022-3736
https://www.cve.org/CVERecord?id=CVE-2022-3924
(* Security fix *)
n/openvpn-2.6.0-x86_64-1.txz: Upgraded.
xap/vim-gvim-9.0.1241-x86_64-1.txz: Upgraded.
20230126003441 | Patrick J Volkerding | 6 | -76/+165 |
2023-01-24 | Tue Jan 24 20:32:45 UTC 2023...a/kernel-firmware-20230120_bb2d42d-noarch-1.txz: Upgraded.
a/kernel-generic-6.1.8-x86_64-1.txz: Upgraded.
a/kernel-huge-6.1.8-x86_64-1.txz: Upgraded.
a/kernel-modules-6.1.8-x86_64-1.txz: Upgraded.
ap/texinfo-7.0.2-x86_64-1.txz: Upgraded.
d/kernel-headers-6.1.8-x86-1.txz: Upgraded.
k/kernel-source-6.1.8-noarch-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20230124203245 | Patrick J Volkerding | 19 | -110/+143 |
2023-01-24 | Tue Jan 24 03:09:01 UTC 2023...l/gst-plugins-bad-free-1.22.0-x86_64-1.txz: Upgraded.
l/gst-plugins-base-1.22.0-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.22.0-x86_64-1.txz: Upgraded.
l/gst-plugins-libav-1.22.0-x86_64-1.txz: Upgraded.
l/gstreamer-1.22.0-x86_64-1.txz: Upgraded.
20230124030901 | Patrick J Volkerding | 6 | -54/+77 |
2023-01-23 | Mon Jan 23 21:25:42 UTC 2023...kde/krita-5.1.5-x86_64-2.txz: Rebuilt.
Recompiled against quazip-1.4.
Thanks to marav.
20230123212542 | Patrick J Volkerding | 4 | -26/+44 |
2023-01-23 | Mon Jan 23 20:34:38 UTC 2023...ap/ddrescue-1.27-x86_64-1.txz: Upgraded.
ap/lsof-4.98.0-x86_64-1.txz: Upgraded.
d/parallel-20230122-noarch-1.txz: Upgraded.
l/imagemagick-7.1.0_58-x86_64-1.txz: Upgraded.
l/neon-0.32.5-x86_64-1.txz: Upgraded.
l/quazip-1.4-x86_64-1.txz: Upgraded.
n/getmail-6.18.12-x86_64-1.txz: Upgraded.
n/postfix-3.7.4-x86_64-1.txz: Upgraded.
x/libwacom-2.6.0-x86_64-1.txz: Upgraded.
xfce/thunar-4.18.3-x86_64-1.txz: Upgraded.
xfce/xfdesktop-4.18.1-x86_64-1.txz: Upgraded.
20230123203438 | Patrick J Volkerding | 6 | -115/+120 |
2023-01-21 | Fri Jan 20 23:58:24 UTC 2023...ap/mc-4.8.29-x86_64-1.txz: Upgraded.
d/cmake-3.25.2-x86_64-1.txz: Upgraded.
l/editorconfig-core-c-0.12.6-x86_64-1.txz: Upgraded.
l/glib2-2.74.5-x86_64-1.txz: Upgraded.
l/gtk+3-3.24.36-x86_64-1.txz: Upgraded.
l/talloc-2.4.0-x86_64-1.txz: Upgraded.
l/tevent-0.14.0-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-102.7.0-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/102.7.0/releasenotes/
https://www.mozilla.org/en-US/security/known-vulnerabilities/thunderbird/#thunderbird102.7
(* Security fix *)
xap/seamonkey-2.53.15-x86_64-1.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
https://www.seamonkey-project.org/releases/seamonkey2.53.15
(* Security fix *)
20230120235824 | Patrick J Volkerding | 11 | -567/+133 |
2023-01-19 | Thu Jan 19 21:07:32 UTC 2023...a/pkgtools-15.1-noarch-4.txz: Rebuilt.
makepkg: also let xz decide how many threads to use on ARM platforms aarch64
and riscv64. Thanks to Stuart Winter.
installpkg: fix reversed test for if a --threads option was given. It appears
that it's been wrong for years but since xz didn't support threaded
decompression yet it wasn't noticed.
a/xz-5.4.1-x86_64-2.txz: Rebuilt.
Reduce default verbosity from V_WARNING to V_ERROR to avoid sending non-fatal
memory usage information to stderr.
kde/plasma-wayland-protocols-1.10.0-x86_64-1.txz: Upgraded.
l/exiv2-0.27.6-x86_64-1.txz: Upgraded.
l/tdb-1.4.8-x86_64-1.txz: Upgraded.
x/igt-gpu-tools-1.27.1-x86_64-1.txz: Upgraded.
x/libX11-1.8.3-x86_64-2.txz: Rebuilt.
[PATCH] Fix a9e845 and 797755 Allow X*IfEvent() to reenter libX11
Thanks to marav.
20230119210732 | Patrick J Volkerding | 15 | -89/+474 |
2023-01-19 | Thu Jan 19 00:40:12 UTC 2023...a/kernel-firmware-20230117_7e4f0ed-noarch-1.txz: Upgraded.
a/kernel-generic-6.1.7-x86_64-1.txz: Upgraded.
a/kernel-huge-6.1.7-x86_64-1.txz: Upgraded.
a/kernel-modules-6.1.7-x86_64-1.txz: Upgraded.
a/pkgtools-15.1-noarch-3.txz: Rebuilt.
installpkg: allow xz to use all the available CPU threads.
makepkg: by default, allow xz to determine how many threads to use. However,
on 32-bit platforms default to 2 threads since we were using this before. If
allowed to decide, xz seems to only want to use a single thread on 32-bit.
ap/nano-7.2-x86_64-1.txz: Upgraded.
ap/sudo-1.9.12p2-x86_64-1.txz: Upgraded.
This update fixes a flaw in sudo's -e option (aka sudoedit) that could allow
a malicious user with sudoedit privileges to edit arbitrary files.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2023-22809
(* Security fix *)
d/kernel-headers-6.1.7-x86-1.txz: Upgraded.
k/kernel-source-6.1.7-noarch-1.txz: Upgraded.
kde/plasma-wayland-protocols-1.10-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20230119004012 | Patrick J Volkerding | 26 | -166/+474 |
2023-01-18 | Wed Jan 18 06:11:54 UTC 2023...ap/diffutils-3.9-x86_64-1.txz: Upgraded.
ap/lsof-4.97.0-x86_64-1.txz: Upgraded.
ap/mpg123-1.31.2-x86_64-1.txz: Upgraded.
d/binutils-2.40-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
d/git-2.39.1-x86_64-1.txz: Upgraded.
d/oprofile-1.4.0-x86_64-11.txz: Rebuilt.
Recompiled against binutils-2.40.
n/httpd-2.4.55-x86_64-1.txz: Upgraded.
This update fixes bugs and the following security issues:
mod_proxy allows a backend to trigger HTTP response splitting.
mod_proxy_ajp possible request smuggling.
mod_dav out of bounds read, or write of zero byte.
For more information, see:
https://downloads.apache.org/httpd/CHANGES_2.4.55
https://www.cve.org/CVERecord?id=CVE-2022-37436
https://www.cve.org/CVERecord?id=CVE-2022-36760
https://www.cve.org/CVERecord?id=CVE-2006-20001
(* Security fix *)
x/ibus-libpinyin-1.15.0-x86_64-1.txz: Upgraded.
Compiled against libpinyin-2.8.1.
x/igt-gpu-tools-1.27-x86_64-1.txz: Upgraded.
x/libXpm-3.5.15-x86_64-1.txz: Upgraded.
This update fixes security issues:
Infinite loop on unclosed comments.
Runaway loop with width of 0 and enormous height.
Compression commands depend on $PATH.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-46285
https://www.cve.org/CVERecord?id=CVE-2022-44617
https://www.cve.org/CVERecord?id=CVE-2022-4883
(* Security fix *)
x/libinput-1.22.1-x86_64-1.txz: Upgraded.
x/libpinyin-2.8.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
xap/mozilla-firefox-109.0-x86_64-1.txz: Upgraded.
This update contains security fixes and improvements.
Thanks to marav for the build help.
For more information, see:
https://www.mozilla.org/en-US/firefox/109.0/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2023-01/
https://www.cve.org/CVERecord?id=CVE-2023-23597
https://www.cve.org/CVERecord?id=CVE-2023-23598
https://www.cve.org/CVERecord?id=CVE-2023-23599
https://www.cve.org/CVERecord?id=CVE-2023-23600
https://www.cve.org/CVERecord?id=CVE-2023-23601
https://www.cve.org/CVERecord?id=CVE-2023-23602
https://www.cve.org/CVERecord?id=CVE-2023-23603
https://www.cve.org/CVERecord?id=CVE-2023-23604
https://www.cve.org/CVERecord?id=CVE-2023-23605
https://www.cve.org/CVERecord?id=CVE-2023-23606
(* Security fix *)
20230118061154 | Patrick J Volkerding | 16 | -402/+280 |
2023-01-15 | Sun Jan 15 01:02:36 UTC 2023...a/kernel-generic-6.1.6-x86_64-1.txz: Upgraded.
a/kernel-huge-6.1.6-x86_64-1.txz: Upgraded.
a/kernel-modules-6.1.6-x86_64-1.txz: Upgraded.
d/kernel-headers-6.1.6-x86-1.txz: Upgraded.
k/kernel-source-6.1.6-noarch-1.txz: Upgraded.
kde/attica-5.102.0-x86_64-1.txz: Upgraded.
kde/baloo-5.102.0-x86_64-1.txz: Upgraded.
kde/bluez-qt-5.102.0-x86_64-1.txz: Upgraded.
kde/breeze-icons-5.102.0-noarch-1.txz: Upgraded.
kde/extra-cmake-modules-5.102.0-x86_64-1.txz: Upgraded.
kde/frameworkintegration-5.102.0-x86_64-1.txz: Upgraded.
kde/kactivities-5.102.0-x86_64-1.txz: Upgraded.
kde/kactivities-stats-5.102.0-x86_64-1.txz: Upgraded.
kde/kapidox-5.102.0-x86_64-1.txz: Upgraded.
kde/karchive-5.102.0-x86_64-1.txz: Upgraded.
kde/kauth-5.102.0-x86_64-1.txz: Upgraded.
kde/kbookmarks-5.102.0-x86_64-1.txz: Upgraded.
kde/kcalendarcore-5.102.0-x86_64-1.txz: Upgraded.
kde/kcmutils-5.102.0-x86_64-1.txz: Upgraded.
kde/kcodecs-5.102.0-x86_64-1.txz: Upgraded.
kde/kcompletion-5.102.0-x86_64-1.txz: Upgraded.
kde/kconfig-5.102.0-x86_64-1.txz: Upgraded.
kde/kconfigwidgets-5.102.0-x86_64-1.txz: Upgraded.
kde/kcontacts-5.102.0-x86_64-1.txz: Upgraded.
kde/kcoreaddons-5.102.0-x86_64-1.txz: Upgraded.
kde/kcrash-5.102.0-x86_64-1.txz: Upgraded.
kde/kdav-5.102.0-x86_64-1.txz: Upgraded.
kde/kdbusaddons-5.102.0-x86_64-1.txz: Upgraded.
kde/kdeclarative-5.102.0-x86_64-1.txz: Upgraded.
kde/kded-5.102.0-x86_64-1.txz: Upgraded.
kde/kdelibs4support-5.102.0-x86_64-1.txz: Upgraded.
kde/kdesignerplugin-5.102.0-x86_64-1.txz: Upgraded.
kde/kdesu-5.102.0-x86_64-1.txz: Upgraded.
kde/kdewebkit-5.102.0-x86_64-1.txz: Upgraded.
kde/kdnssd-5.102.0-x86_64-1.txz: Upgraded.
kde/kdoctools-5.102.0-x86_64-1.txz: Upgraded.
kde/kemoticons-5.102.0-x86_64-1.txz: Upgraded.
kde/kfilemetadata-5.102.0-x86_64-1.txz: Upgraded.
kde/kglobalaccel-5.102.0-x86_64-1.txz: Upgraded.
kde/kguiaddons-5.102.0-x86_64-1.txz: Upgraded.
kde/kholidays-5.102.0-x86_64-1.txz: Upgraded.
kde/khtml-5.102.0-x86_64-1.txz: Upgraded.
kde/ki18n-5.102.0-x86_64-1.txz: Upgraded.
kde/kiconthemes-5.102.0-x86_64-1.txz: Upgraded.
kde/kidletime-5.102.0-x86_64-1.txz: Upgraded.
kde/kimageformats-5.102.0-x86_64-1.txz: Upgraded.
kde/kinit-5.102.0-x86_64-1.txz: Upgraded.
kde/kio-5.102.0-x86_64-1.txz: Upgraded.
kde/kirigami2-5.102.0-x86_64-1.txz: Upgraded.
kde/kitemmodels-5.102.0-x86_64-1.txz: Upgraded.
kde/kitemviews-5.102.0-x86_64-1.txz: Upgraded.
kde/kjobwidgets-5.102.0-x86_64-1.txz: Upgraded.
kde/kjs-5.102.0-x86_64-1.txz: Upgraded.
kde/kjsembed-5.102.0-x86_64-1.txz: Upgraded.
kde/kmediaplayer-5.102.0-x86_64-1.txz: Upgraded.
kde/knewstuff-5.102.0-x86_64-1.txz: Upgraded.
kde/knotifications-5.102.0-x86_64-1.txz: Upgraded.
kde/knotifyconfig-5.102.0-x86_64-1.txz: Upgraded.
kde/kpackage-5.102.0-x86_64-1.txz: Upgraded.
kde/kparts-5.102.0-x86_64-1.txz: Upgraded.
kde/kpeople-5.102.0-x86_64-1.txz: Upgraded.
kde/kplotting-5.102.0-x86_64-1.txz: Upgraded.
kde/kpty-5.102.0-x86_64-1.txz: Upgraded.
kde/kquickcharts-5.102.0-x86_64-1.txz: Upgraded.
kde/kross-5.102.0-x86_64-1.txz: Upgraded.
kde/krunner-5.102.0-x86_64-1.txz: Upgraded.
kde/kservice-5.102.0-x86_64-1.txz: Upgraded.
kde/ktexteditor-5.102.0-x86_64-1.txz: Upgraded.
kde/ktextwidgets-5.102.0-x86_64-1.txz: Upgraded.
kde/kunitconversion-5.102.0-x86_64-1.txz: Upgraded.
kde/kwallet-5.102.0-x86_64-1.txz: Upgraded.
kde/kwayland-5.102.0-x86_64-1.txz: Upgraded.
kde/kwidgetsaddons-5.102.0-x86_64-1.txz: Upgraded.
kde/kwindowsystem-5.102.0-x86_64-1.txz: Upgraded.
kde/kxmlgui-5.102.0-x86_64-1.txz: Upgraded.
kde/kxmlrpcclient-5.102.0-x86_64-1.txz: Upgraded.
kde/modemmanager-qt-5.102.0-x86_64-1.txz: Upgraded.
kde/networkmanager-qt-5.102.0-x86_64-1.txz: Upgraded.
kde/oxygen-icons5-5.102.0-noarch-1.txz: Upgraded.
kde/plasma-framework-5.102.0-x86_64-1.txz: Upgraded.
kde/prison-5.102.0-x86_64-1.txz: Upgraded.
kde/purpose-5.102.0-x86_64-1.txz: Upgraded.
kde/qqc2-desktop-style-5.102.0-x86_64-1.txz: Upgraded.
kde/solid-5.102.0-x86_64-1.txz: Upgraded.
kde/sonnet-5.102.0-x86_64-1.txz: Upgraded.
kde/syndication-5.102.0-x86_64-1.txz: Upgraded.
kde/syntax-highlighting-5.102.0-x86_64-1.txz: Upgraded.
kde/threadweaver-5.102.0-x86_64-1.txz: Upgraded.
l/qt5-5.15.8_20230110_755033ba-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20230115010236 | Patrick J Volkerding | 20 | -756/+725 |
2023-01-13 | Fri Jan 13 20:29:55 UTC 2023...a/mcelog-191-x86_64-1.txz: Upgraded.
kde/kid3-3.9.3-x86_64-1.txz: Upgraded.
l/fuse3-3.13.0-x86_64-1.txz: Upgraded.
l/libpcap-1.10.3-x86_64-1.txz: Upgraded.
l/libwebp-1.3.0-x86_64-1.txz: Upgraded.
n/netatalk-3.1.14-x86_64-1.txz: Upgraded.
Netatalk through 3.1.13 has an afp_getappl heap-based buffer overflow
resulting in code execution via a crafted .appl file.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-45188
(* Security fix *)
n/tcpdump-4.99.3-x86_64-1.txz: Upgraded.
xfce/xfce4-screenshooter-1.10.3-x86_64-1.txz: Upgraded.
20230113202955 | Patrick J Volkerding | 6 | -70/+111 |
2023-01-12 | Thu Jan 12 21:42:02 UTC 2023...a/aaa_libraries-15.1-x86_64-17.txz: Rebuilt.
Upgraded: liblzma.so.5.4.1.
a/ed-1.19-x86_64-1.txz: Upgraded.
a/kernel-generic-6.1.5-x86_64-1.txz: Upgraded.
a/kernel-huge-6.1.5-x86_64-1.txz: Upgraded.
a/kernel-modules-6.1.5-x86_64-1.txz: Upgraded.
a/xz-5.4.1-x86_64-1.txz: Upgraded.
d/kernel-headers-6.1.5-x86-1.txz: Upgraded.
k/kernel-source-6.1.5-noarch-1.txz: Upgraded.
l/pipewire-0.3.64-x86_64-1.txz: Upgraded.
n/iptables-1.8.9-x86_64-1.txz: Upgraded.
x/mesa-22.3.3-x86_64-1.txz: Upgraded.
xap/xine-ui-0.99.14-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20230112214202 | Patrick J Volkerding | 18 | -137/+182 |
2023-01-11 | Wed Jan 11 19:31:20 UTC 2023...d/patchelf-0.17.2-x86_64-1.txz: Upgraded.
kde/kdevelop-pg-qt-2.2.2-x86_64-1.txz: Upgraded.
n/NetworkManager-1.40.10-x86_64-1.txz: Upgraded.
xfce/xfce4-panel-4.18.1-x86_64-1.txz: Upgraded.
testing/packages/rust-1.66.1-x86_64-1.txz: Upgraded.
20230111193120 | Patrick J Volkerding | 6 | -62/+84 |
2023-01-10 | Tue Jan 10 21:32:00 UTC 2023...a/kernel-firmware-20230110_a1ad1d5-noarch-1.txz: Upgraded.
n/ca-certificates-20221205-noarch-2.txz: Rebuilt.
Make sure that if we're installing this package on another partition (such as
when using installpkg with a --root parameter) that the updates are done on
that partition. Thanks to fulalas.
x/libva-utils-2.17.1-x86_64-1.txz: Upgraded.
xfce/libxfce4util-4.18.1-x86_64-1.txz: Upgraded.
xfce/thunar-4.18.2-x86_64-1.txz: Upgraded.
20230110213200 | Patrick J Volkerding | 5 | -50/+82 |
2023-01-09 | Mon Jan 9 20:10:55 UTC 2023...a/aaa_libraries-15.1-x86_64-16.txz: Rebuilt.
Upgraded: libncurses.so.6.4, libncursesw.so.6.4, libtinfo.so.6.4,
libform.so.6.4, libformw.so.6.4, libmenu.so.6.4, libmenuw.so.6.4,
libpanel.so.6.4, libglib-2.0.so.0.7400.4, libgmodule-2.0.so.0.7400.4,
libgobject-2.0.so.0.7400.4, libgthread-2.0.so.0.7400.4, libmpfr.so.6.2.0.
a/aaa_terminfo-6.4-x86_64-1.txz: Upgraded.
ap/man-db-2.11.2-x86_64-1.txz: Upgraded.
kde/kio-5.101.0-x86_64-2.txz: Rebuilt.
[PATCH] Restore old behavior for KFileFilterCombo::setFilter
Thanks to marav.
kde/okteta-0.26.10-x86_64-1.txz: Upgraded.
l/libspectre-0.2.12-x86_64-1.txz: Upgraded.
l/mpfr-4.2.0-x86_64-1.txz: Upgraded.
l/ncurses-6.4-x86_64-1.txz: Upgraded.
x/xterm-378-x86_64-1.txz: Upgraded.
xap/libnma-1.10.6-x86_64-1.txz: Upgraded.
20230109201055 | Patrick J Volkerding | 12 | -134/+415 |
2023-01-07 | Sat Jan 7 20:30:44 UTC 2023...We're going to go ahead and jump to the 6.1.4 kernel, in spite of the fact
that a kernel bisect identified the patch that was preventing 32-bit from
booting here on a Thinkpad X1E:
------
From 2e479b3b82c49bfb9422274c0a9c155a41caecb7 Mon Sep 17 00:00:00 2001
From: Michael Kelley <mikelley@microsoft.com>
Date: Wed, 16 Nov 2022 10:41:24 -0800
Subject: [PATCH] x86/ioremap: Fix page aligned size calculation in
__ioremap_caller()
commit 4dbd6a3e90e03130973688fd79e19425f720d999 upstream.
Current code re-calculates the size after aligning the starting and
ending physical addresses on a page boundary. But the re-calculation
also embeds the masking of high order bits that exceed the size of
the physical address space (via PHYSICAL_PAGE_MASK). If the masking
removes any high order bits, the size calculation results in a huge
value that is likely to immediately fail.
Fix this by re-calculating the page-aligned size first. Then mask any
high order bits using PHYSICAL_PAGE_MASK.
Fixes: ffa71f33a820 ("x86, ioremap: Fix incorrect physical address handling in
PAE mode")
------
The non-SMP non-PAE 32-bit kernel is fine even without the patch revert.
The PAE kernel also works fine with this patch reverted without any need
to revert ffa71f33a820 (the patch that this one is supposed to fix). The
machine's excessive (for 32-bit) amount of physical RAM (64GB) might also
be a factor here considering the PAE kernel works on all the other machines
around here without reverting this patch.
The patch is reverted only on 32-bit. Upstream report still pending.
Enjoy! :-)
a/kernel-generic-6.1.4-x86_64-1.txz: Upgraded.
a/kernel-huge-6.1.4-x86_64-1.txz: Upgraded.
a/kernel-modules-6.1.4-x86_64-1.txz: Upgraded.
a/tree-2.1.0-x86_64-1.txz: Upgraded.
d/kernel-headers-6.1.4-x86-1.txz: Upgraded.
k/kernel-source-6.1.4-noarch-1.txz: Upgraded.
l/gvfs-1.50.3-x86_64-1.txz: Upgraded.
l/hunspell-1.7.2-x86_64-1.txz: Upgraded.
l/libnice-0.1.21-x86_64-1.txz: Upgraded.
n/tin-2.6.2-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20230107203044 | Patrick J Volkerding | 44 | -64909/+305 |
2023-01-07 | Sat Jan 7 01:50:00 UTC 2023...a/btrfs-progs-6.1.2-x86_64-1.txz: Upgraded.
l/mozilla-nss-3.87-x86_64-1.txz: Upgraded.
Fixed memory corruption in NSS via DER-encoded DSA and RSA-PSS signatures.
For more information, see:
https://www.mozilla.org/en-US/security/advisories/mfsa2021-51/
https://www.cve.org/CVERecord?id=CVE-2021-43527
(* Security fix *)
l/nodejs-19.4.0-x86_64-1.txz: Upgraded.
n/php-7.4.33-x86_64-2.txz: Rebuilt.
This update fixes a security issue:
PDO::quote() may return unquoted string.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-31631
(* Security fix *)
extra/php80/php80-8.0.27-x86_64-1.txz: Upgraded.
This update fixes a security issue:
PDO::quote() may return unquoted string.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-31631
(* Security fix *)
extra/php81/php81-8.1.14-x86_64-1.txz: Upgraded.
This update fixes bugs and a security issue:
PDO::quote() may return unquoted string.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-31631
(* Security fix *)
20230107015000 | Patrick J Volkerding | 10 | -101/+193 |
2023-01-06 | Fri Jan 6 00:54:38 UTC 2023...kde/akonadi-22.12.1-x86_64-1.txz: Upgraded.
kde/akonadi-calendar-22.12.1-x86_64-1.txz: Upgraded.
kde/akonadi-calendar-tools-22.12.1-x86_64-1.txz: Upgraded.
kde/akonadi-contacts-22.12.1-x86_64-1.txz: Upgraded.
kde/akonadi-import-wizard-22.12.1-x86_64-1.txz: Upgraded.
kde/akonadi-mime-22.12.1-x86_64-1.txz: Upgraded.
kde/akonadi-notes-22.12.1-x86_64-1.txz: Upgraded.
kde/akonadi-search-22.12.1-x86_64-1.txz: Upgraded.
kde/akonadiconsole-22.12.1-x86_64-1.txz: Upgraded.
kde/akregator-22.12.1-x86_64-1.txz: Upgraded.
kde/analitza-22.12.1-x86_64-1.txz: Upgraded.
kde/ark-22.12.1-x86_64-1.txz: Upgraded.
kde/artikulate-22.12.1-x86_64-1.txz: Upgraded.
kde/audiocd-kio-22.12.1-x86_64-1.txz: Upgraded.
kde/baloo-widgets-22.12.1-x86_64-1.txz: Upgraded.
kde/blinken-22.12.1-x86_64-1.txz: Upgraded.
kde/bomber-22.12.1-x86_64-1.txz: Upgraded.
kde/bovo-22.12.1-x86_64-1.txz: Upgraded.
kde/calendarsupport-22.12.1-x86_64-1.txz: Upgraded.
kde/cantor-22.12.1-x86_64-1.txz: Upgraded.
kde/cervisia-22.12.1-x86_64-1.txz: Upgraded.
kde/dolphin-22.12.1-x86_64-1.txz: Upgraded.
kde/dolphin-plugins-22.12.1-x86_64-1.txz: Upgraded.
kde/dragon-22.12.1-x86_64-1.txz: Upgraded.
kde/elisa-22.12.1-x86_64-1.txz: Upgraded.
kde/eventviews-22.12.1-x86_64-1.txz: Upgraded.
kde/falkon-22.12.1-x86_64-1.txz: Upgraded.
kde/ffmpegthumbs-22.12.1-x86_64-1.txz: Upgraded.
kde/filelight-22.12.1-x86_64-1.txz: Upgraded.
kde/granatier-22.12.1-x86_64-1.txz: Upgraded.
kde/grantlee-editor-22.12.1-x86_64-1.txz: Upgraded.
kde/grantleetheme-22.12.1-x86_64-1.txz: Upgraded.
kde/gwenview-22.12.1-x86_64-1.txz: Upgraded.
kde/incidenceeditor-22.12.1-x86_64-1.txz: Upgraded.
kde/itinerary-22.12.1-x86_64-1.txz: Upgraded.
kde/juk-22.12.1-x86_64-1.txz: Upgraded.
kde/k3b-22.12.1-x86_64-1.txz: Upgraded.
kde/kaddressbook-22.12.1-x86_64-1.txz: Upgraded.
kde/kalarm-22.12.1-x86_64-1.txz: Upgraded.
kde/kalendar-22.12.1-x86_64-1.txz: Upgraded.
kde/kalgebra-22.12.1-x86_64-1.txz: Upgraded.
kde/kalzium-22.12.1-x86_64-1.txz: Upgraded.
kde/kamera-22.12.1-x86_64-1.txz: Upgraded.
kde/kamoso-22.12.1-x86_64-1.txz: Upgraded.
kde/kanagram-22.12.1-x86_64-1.txz: Upgraded.
kde/kapman-22.12.1-x86_64-1.txz: Upgraded.
kde/kapptemplate-22.12.1-x86_64-1.txz: Upgraded.
kde/kate-22.12.1-x86_64-1.txz: Upgraded.
kde/katomic-22.12.1-x86_64-1.txz: Upgraded.
kde/kbackup-22.12.1-x86_64-1.txz: Upgraded.
kde/kblackbox-22.12.1-x86_64-1.txz: Upgraded.
kde/kblocks-22.12.1-x86_64-1.txz: Upgraded.
kde/kbounce-22.12.1-x86_64-1.txz: Upgraded.
kde/kbreakout-22.12.1-x86_64-1.txz: Upgraded.
kde/kbruch-22.12.1-x86_64-1.txz: Upgraded.
kde/kcachegrind-22.12.1-x86_64-1.txz: Upgraded.
kde/kcalc-22.12.1-x86_64-1.txz: Upgraded.
kde/kcalutils-22.12.1-x86_64-1.txz: Upgraded.
kde/kcharselect-22.12.1-x86_64-1.txz: Upgraded.
kde/kcolorchooser-22.12.1-x86_64-1.txz: Upgraded.
kde/kcron-22.12.1-x86_64-1.txz: Upgraded.
kde/kde-dev-scripts-22.12.1-x86_64-1.txz: Upgraded.
kde/kde-dev-utils-22.12.1-x86_64-1.txz: Upgraded.
kde/kdebugsettings-22.12.1-x86_64-1.txz: Upgraded.
kde/kdeconnect-kde-22.12.1-x86_64-1.txz: Upgraded.
kde/kdeedu-data-22.12.1-x86_64-1.txz: Upgraded.
kde/kdegraphics-mobipocket-22.12.1-x86_64-1.txz: Upgraded.
kde/kdegraphics-thumbnailers-22.12.1-x86_64-1.txz: Upgraded.
kde/kdenetwork-filesharing-22.12.1-x86_64-1.txz: Upgraded.
kde/kdenlive-22.12.1-x86_64-1.txz: Upgraded.
kde/kdepim-addons-22.12.1-x86_64-1.txz: Upgraded.
kde/kdepim-runtime-22.12.1-x86_64-1.txz: Upgraded.
kde/kdesdk-kio-22.12.1-x86_64-1.txz: Upgraded.
kde/kdesdk-thumbnailers-22.12.1-x86_64-1.txz: Upgraded.
kde/kdev-php-22.12.1-x86_64-1.txz: Upgraded.
kde/kdev-python-22.12.1-x86_64-1.txz: Upgraded.
kde/kdevelop-22.12.1-x86_64-1.txz: Upgraded.
kde/kdf-22.12.1-x86_64-1.txz: Upgraded.
kde/kdialog-22.12.1-x86_64-1.txz: Upgraded.
kde/kdiamond-22.12.1-x86_64-1.txz: Upgraded.
kde/keditbookmarks-22.12.1-x86_64-1.txz: Upgraded.
kde/kfind-22.12.1-x86_64-1.txz: Upgraded.
kde/kfloppy-22.12.1-x86_64-1.txz: Upgraded.
kde/kfourinline-22.12.1-x86_64-1.txz: Upgraded.
kde/kgeography-22.12.1-x86_64-1.txz: Upgraded.
kde/kget-22.12.1-x86_64-1.txz: Upgraded.
kde/kgoldrunner-22.12.1-x86_64-1.txz: Upgraded.
kde/kgpg-22.12.1-x86_64-1.txz: Upgraded.
kde/khangman-22.12.1-x86_64-1.txz: Upgraded.
kde/khelpcenter-22.12.1-x86_64-1.txz: Upgraded.
kde/kidentitymanagement-22.12.1-x86_64-1.txz: Upgraded.
kde/kig-22.12.1-x86_64-1.txz: Upgraded.
kde/kigo-22.12.1-x86_64-1.txz: Upgraded.
kde/killbots-22.12.1-x86_64-1.txz: Upgraded.
kde/kimagemapeditor-22.12.1-x86_64-1.txz: Upgraded.
kde/kimap-22.12.1-x86_64-1.txz: Upgraded.
kde/kio-extras-22.12.1-x86_64-1.txz: Upgraded.
kde/kio-gdrive-22.12.1-x86_64-1.txz: Upgraded.
kde/kio-zeroconf-22.12.1-x86_64-1.txz: Upgraded.
kde/kipi-plugins-22.12.1-x86_64-1.txz: Upgraded.
kde/kirigami-gallery-22.12.1-x86_64-1.txz: Upgraded.
kde/kiriki-22.12.1-x86_64-1.txz: Upgraded.
kde/kiten-22.12.1-x86_64-1.txz: Upgraded.
kde/kitinerary-22.12.1-x86_64-1.txz: Upgraded.
kde/kjumpingcube-22.12.1-x86_64-1.txz: Upgraded.
kde/kldap-22.12.1-x86_64-1.txz: Upgraded.
kde/kleopatra-22.12.1-x86_64-1.txz: Upgraded.
kde/klickety-22.12.1-x86_64-1.txz: Upgraded.
kde/klines-22.12.1-x86_64-1.txz: Upgraded.
kde/kmag-22.12.1-x86_64-1.txz: Upgraded.
kde/kmahjongg-22.12.1-x86_64-1.txz: Upgraded.
kde/kmail-22.12.1-x86_64-1.txz: Upgraded.
kde/kmail-account-wizard-22.12.1-x86_64-1.txz: Upgraded.
kde/kmailtransport-22.12.1-x86_64-1.txz: Upgraded.
kde/kmbox-22.12.1-x86_64-1.txz: Upgraded.
kde/kmime-22.12.1-x86_64-1.txz: Upgraded.
kde/kmines-22.12.1-x86_64-1.txz: Upgraded.
kde/kmix-22.12.1-x86_64-1.txz: Upgraded.
kde/kmousetool-22.12.1-x86_64-1.txz: Upgraded.
kde/kmouth-22.12.1-x86_64-1.txz: Upgraded.
kde/kmplot-22.12.1-x86_64-1.txz: Upgraded.
kde/knavalbattle-22.12.1-x86_64-1.txz: Upgraded.
kde/knetwalk-22.12.1-x86_64-1.txz: Upgraded.
kde/knights-22.12.1-x86_64-1.txz: Upgraded.
kde/knotes-22.12.1-x86_64-1.txz: Upgraded.
kde/kolf-22.12.1-x86_64-1.txz: Upgraded.
kde/kollision-22.12.1-x86_64-1.txz: Upgraded.
kde/kolourpaint-22.12.1-x86_64-1.txz: Upgraded.
kde/kompare-22.12.1-x86_64-1.txz: Upgraded.
kde/konqueror-22.12.1-x86_64-1.txz: Upgraded.
kde/konquest-22.12.1-x86_64-1.txz: Upgraded.
kde/konsole-22.12.1-x86_64-1.txz: Upgraded.
kde/kontact-22.12.1-x86_64-1.txz: Upgraded.
kde/kontactinterface-22.12.1-x86_64-1.txz: Upgraded.
kde/kontrast-22.12.1-x86_64-1.txz: Upgraded.
kde/konversation-22.12.1-x86_64-1.txz: Upgraded.
kde/kopeninghours-22.12.1-x86_64-1.txz: Upgraded.
kde/kopete-22.12.1-x86_64-1.txz: Upgraded.
kde/korganizer-22.12.1-x86_64-1.txz: Upgraded.
kde/kosmindoormap-22.12.1-x86_64-1.txz: Upgraded.
kde/kpat-22.12.1-x86_64-1.txz: Upgraded.
kde/kpimtextedit-22.12.1-x86_64-1.txz: Upgraded.
kde/kpkpass-22.12.1-x86_64-1.txz: Upgraded.
kde/kpmcore-22.12.1-x86_64-1.txz: Upgraded.
kde/kpublictransport-22.12.1-x86_64-1.txz: Upgraded.
kde/kqtquickcharts-22.12.1-x86_64-1.txz: Upgraded.
kde/krdc-22.12.1-x86_64-1.txz: Upgraded.
kde/kreversi-22.12.1-x86_64-1.txz: Upgraded.
kde/krfb-22.12.1-x86_64-1.txz: Upgraded.
kde/krita-5.1.5-x86_64-1.txz: Upgraded.
kde/kross-interpreters-22.12.1-x86_64-1.txz: Upgraded.
kde/kruler-22.12.1-x86_64-1.txz: Upgraded.
kde/ksanecore-22.12.1-x86_64-1.txz: Upgraded.
kde/kshisen-22.12.1-x86_64-1.txz: Upgraded.
kde/ksirk-22.12.1-x86_64-1.txz: Upgraded.
kde/ksmtp-22.12.1-x86_64-1.txz: Upgraded.
kde/ksnakeduel-22.12.1-x86_64-1.txz: Upgraded.
kde/kspaceduel-22.12.1-x86_64-1.txz: Upgraded.
kde/ksquares-22.12.1-x86_64-1.txz: Upgraded.
kde/ksudoku-22.12.1-x86_64-1.txz: Upgraded.
kde/ksystemlog-22.12.1-x86_64-1.txz: Upgraded.
kde/kteatime-22.12.1-x86_64-1.txz: Upgraded.
kde/ktimer-22.12.1-x86_64-1.txz: Upgraded.
kde/ktnef-22.12.1-x86_64-1.txz: Upgraded.
kde/ktorrent-22.12.1-x86_64-1.txz: Upgraded.
kde/ktouch-22.12.1-x86_64-1.txz: Upgraded.
kde/kturtle-22.12.1-x86_64-1.txz: Upgraded.
kde/kubrick-22.12.1-x86_64-1.txz: Upgraded.
kde/kwalletmanager-22.12.1-x86_64-1.txz: Upgraded.
kde/kwave-22.12.1-x86_64-1.txz: Upgraded.
kde/kwordquiz-22.12.1-x86_64-1.txz: Upgraded.
kde/libgravatar-22.12.1-x86_64-1.txz: Upgraded.
kde/libkcddb-22.12.1-x86_64-1.txz: Upgraded.
kde/libkcompactdisc-22.12.1-x86_64-1.txz: Upgraded.
kde/libkdcraw-22.12.1-x86_64-1.txz: Upgraded.
kde/libkdegames-22.12.1-x86_64-1.txz: Upgraded.
kde/libkdepim-22.12.1-x86_64-1.txz: Upgraded.
kde/libkeduvocdocument-22.12.1-x86_64-1.txz: Upgraded.
kde/libkexiv2-22.12.1-x86_64-1.txz: Upgraded.
kde/libkgapi-22.12.1-x86_64-1.txz: Upgraded.
kde/libkipi-22.12.1-x86_64-1.txz: Upgraded.
kde/libkleo-22.12.1-x86_64-1.txz: Upgraded.
kde/libkmahjongg-22.12.1-x86_64-1.txz: Upgraded.
kde/libkomparediff2-22.12.1-x86_64-1.txz: Upgraded.
kde/libksane-22.12.1-x86_64-1.txz: Upgraded.
kde/libksieve-22.12.1-x86_64-1.txz: Upgraded.
kde/libktorrent-22.12.1-x86_64-1.txz: Upgraded.
kde/lokalize-22.12.1-x86_64-1.txz: Upgraded.
kde/lskat-22.12.1-x86_64-1.txz: Upgraded.
kde/mailcommon-22.12.1-x86_64-1.txz: Upgraded.
kde/mailimporter-22.12.1-x86_64-1.txz: Upgraded.
kde/marble-22.12.1-x86_64-1.txz: Upgraded.
kde/markdownpart-22.12.1-x86_64-1.txz: Upgraded.
kde/mbox-importer-22.12.1-x86_64-1.txz: Upgraded.
kde/messagelib-22.12.1-x86_64-1.txz: Upgraded.
kde/minuet-22.12.1-x86_64-1.txz: Upgraded.
kde/okular-22.12.1-x86_64-1.txz: Upgraded.
kde/palapeli-22.12.1-x86_64-1.txz: Upgraded.
kde/parley-22.12.1-x86_64-1.txz: Upgraded.
kde/partitionmanager-22.12.1-x86_64-1.txz: Upgraded.
kde/picmi-22.12.1-x86_64-1.txz: Upgraded.
kde/pim-data-exporter-22.12.1-x86_64-1.txz: Upgraded.
kde/pim-sieve-editor-22.12.1-x86_64-1.txz: Upgraded.
kde/pimcommon-22.12.1-x86_64-1.txz: Upgraded.
kde/poxml-22.12.1-x86_64-1.txz: Upgraded.
kde/print-manager-22.12.1-x86_64-1.txz: Upgraded.
kde/rocs-22.12.1-x86_64-1.txz: Upgraded.
kde/skanlite-22.12.1-x86_64-1.txz: Upgraded.
kde/skanpage-22.12.1-x86_64-1.txz: Upgraded.
kde/spectacle-22.12.1-x86_64-1.txz: Upgraded.
kde/svgpart-22.12.1-x86_64-1.txz: Upgraded.
kde/sweeper-22.12.1-x86_64-1.txz: Upgraded.
kde/umbrello-22.12.1-x86_64-1.txz: Upgraded.
kde/yakuake-22.12.1-x86_64-1.txz: Upgraded.
kde/zanshin-22.12.1-x86_64-1.txz: Upgraded.
l/libqalculate-4.5.1-x86_64-1.txz: Upgraded.
n/traceroute-2.1.1-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-108.0.2-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/firefox/108.0.2/releasenotes/
xfce/libxfce4ui-4.18.1-x86_64-1.txz: Upgraded.
xfce/xfce4-screenshooter-1.10.2-x86_64-1.txz: Upgraded.
Thanks to Robby Workman.
xfce/xfce4-systemload-plugin-1.3.2-x86_64-1.txz: Upgraded.
Thanks to Robby Workman.
xfce/xfce4-taskmanager-1.5.5-x86_64-1.txz: Upgraded.
Thanks to Robby Workman.
20230106005438 | Patrick J Volkerding | 17 | -4868/+1689 |
2023-01-05 | Thu Jan 5 03:09:24 UTC 2023...a/btrfs-progs-6.1.1-x86_64-1.txz: Upgraded.
a/hwdata-0.366-noarch-1.txz: Upgraded.
a/kernel-firmware-20230104_4ee2014-noarch-1.txz: Upgraded.
ap/vim-9.0.1146-x86_64-1.txz: Upgraded.
Fixed security issues:
Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.1143.
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1144.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2023-0049
https://www.cve.org/CVERecord?id=CVE-2023-0051
(* Security fix *)
d/mercurial-6.3.2-x86_64-1.txz: Upgraded.
l/fluidsynth-2.3.1-x86_64-1.txz: Upgraded.
l/libxkbcommon-1.5.0-x86_64-1.txz: Upgraded.
n/fetchmail-6.4.35-x86_64-1.txz: Upgraded.
xap/vim-gvim-9.0.1146-x86_64-1.txz: Upgraded.
testing/packages/linux-6.1.x/kernel-generic-6.1.3-x86_64-1.txz: Upgraded.
testing/packages/linux-6.1.x/kernel-headers-6.1.3-x86-1.txz: Upgraded.
testing/packages/linux-6.1.x/kernel-huge-6.1.3-x86_64-1.txz: Upgraded.
testing/packages/linux-6.1.x/kernel-modules-6.1.3-x86_64-1.txz: Upgraded.
testing/packages/linux-6.1.x/kernel-source-6.1.3-noarch-1.txz: Upgraded.
20230105030924 | Patrick J Volkerding | 13 | -116/+274 |
2023-01-04 | Wed Jan 4 02:18:08 UTC 2023...ap/lsof-4.96.5-x86_64-1.txz: Upgraded.
ap/sqlite-3.40.1-x86_64-1.txz: Upgraded.
kde/bluedevil-5.26.5-x86_64-1.txz: Upgraded.
kde/breeze-5.26.5-x86_64-1.txz: Upgraded.
kde/breeze-grub-5.26.5-x86_64-1.txz: Upgraded.
kde/breeze-gtk-5.26.5-x86_64-1.txz: Upgraded.
kde/digikam-7.9.0-x86_64-2.txz: Rebuilt.
Recompiled against opencv-4.7.0.
kde/drkonqi-5.26.5-x86_64-1.txz: Upgraded.
kde/kactivitymanagerd-5.26.5-x86_64-1.txz: Upgraded.
kde/kde-cli-tools-5.26.5-x86_64-1.txz: Upgraded.
kde/kde-gtk-config-5.26.5-x86_64-1.txz: Upgraded.
kde/kdecoration-5.26.5-x86_64-1.txz: Upgraded.
kde/kdeplasma-addons-5.26.5-x86_64-1.txz: Upgraded.
kde/kgamma5-5.26.5-x86_64-1.txz: Upgraded.
kde/khotkeys-5.26.5-x86_64-1.txz: Upgraded.
kde/kinfocenter-5.26.5-x86_64-1.txz: Upgraded.
kde/kmenuedit-5.26.5-x86_64-1.txz: Upgraded.
kde/kpipewire-5.26.5-x86_64-1.txz: Upgraded.
kde/kscreen-5.26.5-x86_64-1.txz: Upgraded.
kde/kscreenlocker-5.26.5-x86_64-1.txz: Upgraded.
kde/ksshaskpass-5.26.5-x86_64-1.txz: Upgraded.
kde/ksystemstats-5.26.5-x86_64-1.txz: Upgraded.
kde/kwallet-pam-5.26.5-x86_64-1.txz: Upgraded.
kde/kwayland-integration-5.26.5-x86_64-1.txz: Upgraded.
kde/kwin-5.26.5-x86_64-1.txz: Upgraded.
kde/kwrited-5.26.5-x86_64-1.txz: Upgraded.
kde/layer-shell-qt-5.26.5-x86_64-1.txz: Upgraded.
kde/libkscreen-5.26.5-x86_64-1.txz: Upgraded.
kde/libksysguard-5.26.5-x86_64-1.txz: Upgraded.
kde/milou-5.26.5-x86_64-1.txz: Upgraded.
kde/oxygen-5.26.5-x86_64-1.txz: Upgraded.
kde/oxygen-sounds-5.26.5-x86_64-1.txz: Upgraded.
kde/plasma-browser-integration-5.26.5-x86_64-1.txz: Upgraded.
kde/plasma-desktop-5.26.5-x86_64-1.txz: Upgraded.
kde/plasma-disks-5.26.5-x86_64-1.txz: Upgraded.
kde/plasma-firewall-5.26.5-x86_64-1.txz: Upgraded.
kde/plasma-integration-5.26.5-x86_64-1.txz: Upgraded.
kde/plasma-nm-5.26.5-x86_64-1.txz: Upgraded.
kde/plasma-pa-5.26.5-x86_64-1.txz: Upgraded.
kde/plasma-sdk-5.26.5-x86_64-1.txz: Upgraded.
kde/plasma-systemmonitor-5.26.5-x86_64-1.txz: Upgraded.
kde/plasma-vault-5.26.5-x86_64-1.txz: Upgraded.
kde/plasma-workspace-5.26.5-x86_64-1.txz: Upgraded.
kde/plasma-workspace-wallpapers-5.26.5-x86_64-1.txz: Upgraded.
kde/polkit-kde-agent-1-5.26.5-x86_64-1.txz: Upgraded.
kde/powerdevil-5.26.5-x86_64-1.txz: Upgraded.
kde/qqc2-breeze-style-5.26.5-x86_64-1.txz: Upgraded.
kde/sddm-kcm-5.26.5-x86_64-1.txz: Upgraded.
kde/systemsettings-5.26.5-x86_64-1.txz: Upgraded.
kde/xdg-desktop-portal-kde-5.26.5-x86_64-1.txz: Upgraded.
l/SDL2-2.26.2-x86_64-1.txz: Upgraded.
l/gst-plugins-bad-free-1.20.5-x86_64-2.txz: Rebuilt.
Recompiled against opencv-4.7.0.
l/imagemagick-7.1.0_57-x86_64-1.txz: Upgraded.
l/libpcap-1.10.2-x86_64-1.txz: Upgraded.
l/libpsl-0.21.2-x86_64-1.txz: Upgraded.
l/librevenge-0.0.5-x86_64-1.txz: Upgraded.
l/libsndfile-1.2.0-x86_64-1.txz: Upgraded.
l/libtiff-4.4.0-x86_64-2.txz: Rebuilt.
Patched various security bugs.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-2056
https://www.cve.org/CVERecord?id=CVE-2022-2057
https://www.cve.org/CVERecord?id=CVE-2022-2058
https://www.cve.org/CVERecord?id=CVE-2022-3970
https://www.cve.org/CVERecord?id=CVE-2022-34526
(* Security fix *)
l/netpbm-11.01.00-x86_64-1.txz: Upgraded.
l/opencv-4.7.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/poppler-23.01.0-x86_64-1.txz: Upgraded.
n/getmail-6.18.11-x86_64-1.txz: Upgraded.
n/tcpdump-4.99.2-x86_64-1.txz: Upgraded.
n/whois-5.5.15-x86_64-1.txz: Upgraded.
Updated the .bd, .nz and .tv TLD servers.
Added the .llyw.cymru, .gov.scot and .gov.wales SLD servers.
Updated the .ac.uk and .gov.uk SLD servers.
Recursion has been enabled for whois.nic.tv.
Updated the list of new gTLDs with four generic TLDs assigned in October 2013
which were missing due to a bug.
Removed 4 new gTLDs which are no longer active.
Added the Georgian translation, contributed by Temuri Doghonadze.
Updated the Finnish translation, contributed by Lauri Nurmi.
xap/pidgin-2.14.12-x86_64-1.txz: Upgraded.
xap/rxvt-unicode-9.26-x86_64-4.txz: Rebuilt.
When the "background" extension was loaded, an attacker able to control the
data written to the terminal would be able to execute arbitrary code as the
terminal's user. Thanks to David Leadbeater and Ben Collver.
For more information, see:
https://www.openwall.com/lists/oss-security/2022/12/05/1
https://www.cve.org/CVERecord?id=CVE-2022-4170
(* Security fix *)
20230104021808 | Patrick J Volkerding | 19 | -945/+2302 |
2023-01-01 | Sun Jan 1 03:25:48 UTC 2023...Happy New Year! :-)
a/dialog-1.3_20221229-x86_64-1.txz: Upgraded.
a/file-5.44-x86_64-1.txz: Upgraded.
n/ipset-7.17-x86_64-1.txz: Upgraded.
x/libva-2.17.0-x86_64-1.txz: Upgraded.
x/libva-utils-2.17.0-x86_64-1.txz: Upgraded.
x/mesa-22.3.2-x86_64-1.txz: Upgraded.
testing/packages/linux-6.1.x/kernel-generic-6.1.2-x86_64-1.txz: Upgraded.
testing/packages/linux-6.1.x/kernel-headers-6.1.2-x86-1.txz: Upgraded.
testing/packages/linux-6.1.x/kernel-huge-6.1.2-x86_64-1.txz: Upgraded.
testing/packages/linux-6.1.x/kernel-modules-6.1.2-x86_64-1.txz: Upgraded.
testing/packages/linux-6.1.x/kernel-source-6.1.2-noarch-1.txz: Upgraded.
20230101032548 | Patrick J Volkerding | 9 | -91/+127 |
2022-12-26 | Sun Dec 25 23:21:25 UTC 2022...Hey folks, Merry Christmas and Hanukkah Sameach! Figured it was about time to
get some kind of kernel activity going again, but it most definitely belongs
in /testing for now. I've been trying to shape this up for weeks, but there
are still issues, and maybe someone out there can help. The biggest problem
is that the 32-bit kernels crash on boot. Initially there's some sort of
Intel ME failure (this is on a Thinkpad X1E). If those modules are
blacklisted, then the kernel will go on to crash loading the snd_hda_intel
module. The other issue is that I've got a 4K panel in this machine, and
have always appended the kernel option video=1920x1080@60 to put the console
in HD instead, and then loaded a Terminus console font to make the text even
larger. With these kernels, that option is completely ignored. I've tried some
other syntax I've seen online to no avail. And when the Terminus font is
loaded the text gets *even smaller* for some reason.
So be careful of these kernels (especially the 32-bit ones), but I welcome
any hints about what's going on here or if there are config changes that
might get this working properly. Is anyone out there running a 6.x kernel on
bare metal 32-bit x86?
Cheers!
ap/vim-9.0.1091-x86_64-1.txz: Upgraded.
d/meson-1.0.0-x86_64-1.txz: Upgraded.
d/ruby-3.2.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
d/subversion-1.14.2-x86_64-3.txz: Rebuilt.
Recompiled against ruby-3.2.0.
l/glib2-2.74.4-x86_64-1.txz: Upgraded.
l/netpbm-11.00.03-x86_64-1.txz: Upgraded.
l/rubygem-asciidoctor-2.0.18-x86_64-1.txz: Upgraded.
Compiled against ruby-3.2.0.
n/epic5-2.1.12-x86_64-2.txz: Rebuilt.
Recompiled against ruby-3.2.0.
x/marisa-0.2.6-x86_64-6.txz: Rebuilt.
Recompiled against ruby-3.2.0.
xap/vim-gvim-9.0.1091-x86_64-1.txz: Upgraded.
testing/packages/linux-6.1.x/kernel-generic-6.1.1-x86_64-1.txz: Added.
testing/packages/linux-6.1.x/kernel-headers-6.1.1-x86-1.txz: Added.
testing/packages/linux-6.1.x/kernel-huge-6.1.1-x86_64-1.txz: Added.
testing/packages/linux-6.1.x/kernel-modules-6.1.1-x86_64-1.txz: Added.
testing/packages/linux-6.1.x/kernel-source-6.1.1-noarch-1.txz: Added.
20221225232125 | Patrick J Volkerding | 32 | -87/+65974 |
2022-12-23 | Fri Dec 23 20:27:02 UTC 2022...a/btrfs-progs-6.1-x86_64-1.txz: Upgraded.
a/kernel-firmware-20221216_52261d0-noarch-1.txz: Upgraded.
ap/man-pages-6.02-noarch-1.txz: Upgraded.
l/gtk4-4.8.3-x86_64-1.txz: Upgraded.
xfce/xfce4-screenshooter-1.10.1-x86_64-1.txz: Upgraded.
xfce/xfce4-settings-4.18.1-x86_64-1.txz: Upgraded.
20221223202702 | Patrick J Volkerding | 3 | -57/+81 |
2022-12-23 | Fri Dec 23 02:37:47 UTC 2022...a/tcsh-6.24.07-x86_64-1.txz: Upgraded.
d/nasm-2.16.01-x86_64-1.txz: Upgraded.
n/dovecot-2.3.20-x86_64-1.txz: Upgraded.
n/nftables-1.0.6-x86_64-1.txz: Upgraded.
xfce/thunar-4.18.1-x86_64-1.txz: Upgraded.
20221223023747 | Patrick J Volkerding | 4 | -57/+80 |
2022-12-22 | Thu Dec 22 03:40:55 UTC 2022...a/sysvinit-scripts-15.1-noarch-3.txz: Rebuilt.
rc.6: support an optional rc.firewall_shutdown script. Most firewall scripts
don't need a formal shutdown, but in some cases it can be useful. If your
rc.firewall script supports a stop parameter, the shutdown script should just
contain "/etc/rc.d/rc.firewall stop", or rc.firewall_shutdown could also be
a symlink to the rc.firewall script in that case. But how the script works
is (like the rc.firewall script support) completely up to the admin.
Thanks to metaed for the suggestion.
Please note that contrary to the request, I placed this *after* the network
is shut down to avoid removing firewall protection while the interfaces are
still active. Whether it'll work in this place for metaed's (or anyone
else's) needs, I'm not sure. It's a start. Feel free to weigh in on the LQ
thread if you have any ideas for improvement, but the goal here is to keep
this support as simple and flexible as possible.
d/nasm-2.16-x86_64-1.txz: Upgraded.
d/parallel-20221222-noarch-1.txz: Upgraded.
n/bind-9.18.10-x86_64-1.txz: Upgraded.
n/curl-7.87.0-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-102.6.1-x86_64-1.txz: Upgraded.
This release contains a security fix and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/102.6.1/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2022-54/
https://www.cve.org/CVERecord?id=CVE-2022-46874
(* Security fix *)
xfce/xfce4-screenshooter-1.10.0-x86_64-1.txz: Upgraded.
20221222034055 | Patrick J Volkerding | 7 | -75/+154 |
2022-12-20 | Tue Dec 20 20:40:18 UTC 2022...d/p2c-2.02-x86_64-1.txz: Upgraded.
kde/dolphin-22.12.0-x86_64-2.txz: Rebuilt.
[PATCH] Revert "portalize drag urls"
Thanks to marav.
l/gst-plugins-bad-free-1.20.5-x86_64-1.txz: Upgraded.
l/gst-plugins-base-1.20.5-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.20.5-x86_64-1.txz: Upgraded.
l/gst-plugins-libav-1.20.5-x86_64-1.txz: Upgraded.
l/gstreamer-1.20.5-x86_64-1.txz: Upgraded.
l/libqalculate-4.5.0-x86_64-1.txz: Upgraded.
l/libvncserver-0.9.14-x86_64-1.txz: Upgraded.
l/sdl-1.2.15-x86_64-14.txz: Rebuilt.
This update fixes a heap overflow problem in video/SDL_pixels.c in SDL.
By crafting a malicious .BMP file, an attacker can cause the application
using this library to crash, denial of service, or code execution.
Thanks to marav for the heads-up.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2021-33657
(* Security fix *)
n/gnupg2-2.2.41-x86_64-1.txz: Upgraded.
n/libksba-1.6.3-x86_64-1.txz: Upgraded.
Fix another integer overflow in the CRL's signature parser.
(* Security fix *)
x/libSM-1.2.4-x86_64-1.txz: Upgraded.
x/xcb-util-0.4.1-x86_64-1.txz: Upgraded.
x/xdriinfo-1.0.7-x86_64-1.txz: Upgraded.
20221220204018 | Patrick J Volkerding | 18 | -136/+335 |
2022-12-19 | Mon Dec 19 21:18:22 UTC 2022...a/logrotate-3.21.0-x86_64-1.txz: Upgraded.
kde/gwenview-22.12.0-x86_64-2.txz: Rebuilt.
Recompiled against cfitsio-4.2.0.
kde/kstars-3.6.2-x86_64-2.txz: Rebuilt.
Recompiled against cfitsio-4.2.0.
l/cfitsio-4.2.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/gsettings-desktop-schemas-43.0-x86_64-1.txz: Upgraded.
l/gtk4-4.8.2-x86_64-1.txz: Upgraded.
x/xorg-server-21.1.6-x86_64-1.txz: Upgraded.
This release fixes an invalid event type mask in XTestSwapFakeInput which
was inadvertently changed from octal 0177 to hexadecimal 0x177 in the fix
for CVE-2022-46340.
x/xorg-server-xephyr-21.1.6-x86_64-1.txz: Upgraded.
x/xorg-server-xnest-21.1.6-x86_64-1.txz: Upgraded.
x/xorg-server-xvfb-21.1.6-x86_64-1.txz: Upgraded.
x/xorg-server-xwayland-22.1.7-x86_64-1.txz: Upgraded.
This release fixes an invalid event type mask in XTestSwapFakeInput which
was inadvertently changed from octal 0177 to hexadecimal 0x177 in the fix
for CVE-2022-46340.
testing/packages/rust-1.66.0-x86_64-1.txz: Added.
20221219211822 | Patrick J Volkerding | 13 | -255/+577 |
2022-12-18 | Sun Dec 18 20:58:52 UTC 2022...l/imagemagick-7.1.0_55-x86_64-2.txz: Rebuilt.
Rebuilt to fix dng.so module that was mistakenly compiled against the new
LibRaw that we don't yet include.
20221218205852 | Patrick J Volkerding | 6 | -48/+94 |
2022-12-18 | Sun Dec 18 02:54:27 UTC 2022...a/aaa_libraries-15.1-x86_64-15.txz: Rebuilt.
Upgraded: liblzma.so.5.4.0, libmpc.so.3.3.1.
Thanks to LuckyCyborg for the heads-up.
20221218025427 | Patrick J Volkerding | 4 | -25/+43 |
2022-12-17 | Sat Dec 17 21:14:11 UTC 2022...a/xz-5.4.0-x86_64-1.txz: Upgraded.
l/harfbuzz-6.0.0-x86_64-1.txz: Upgraded.
l/libmpc-1.3.1-x86_64-1.txz: Upgraded.
n/NetworkManager-1.40.8-x86_64-1.txz: Upgraded.
n/samba-4.17.4-x86_64-1.txz: Upgraded.
This update fixes security issues:
This is the Samba CVE for the Windows Kerberos RC4-HMAC Elevation of
Privilege Vulnerability disclosed by Microsoft on Nov 8 2022.
A Samba Active Directory DC will issue weak rc4-hmac session keys for
use between modern clients and servers despite all modern Kerberos
implementations supporting the aes256-cts-hmac-sha1-96 cipher.
On Samba Active Directory DCs and members
'kerberos encryption types = legacy'
would force rc4-hmac as a client even if the server supports
aes128-cts-hmac-sha1-96 and/or aes256-cts-hmac-sha1-96.
This is the Samba CVE for the Windows Kerberos Elevation of Privilege
Vulnerability disclosed by Microsoft on Nov 8 2022.
A service account with the special constrained delegation permission
could forge a more powerful ticket than the one it was presented with.
The "RC4" protection of the NetLogon Secure channel uses the same
algorithms as rc4-hmac cryptography in Kerberos, and so must also be
assumed to be weak.
Note that there are several important behavior changes included in this
release, which may cause compatibility problems interacting with system
still expecting the former behavior.
Please read the advisories of CVE-2022-37966, CVE-2022-37967 and
CVE-2022-38023 carefully!
For more information, see:
https://www.samba.org/samba/security/CVE-2022-37966.html
https://www.samba.org/samba/security/CVE-2022-37967.html
https://www.samba.org/samba/security/CVE-2022-38023.html
https://www.cve.org/CVERecord?id=CVE-2022-37966
https://www.cve.org/CVERecord?id=CVE-2022-37967
https://www.cve.org/CVERecord?id=CVE-2022-38023
(* Security fix *)
xfce/exo-4.18.0-x86_64-1.txz: Upgraded.
xfce/garcon-4.18.0-x86_64-1.txz: Upgraded.
xfce/libxfce4ui-4.18.0-x86_64-1.txz: Upgraded.
xfce/libxfce4util-4.18.0-x86_64-1.txz: Upgraded.
xfce/thunar-4.18.0-x86_64-1.txz: Upgraded.
xfce/thunar-volman-4.18.0-x86_64-1.txz: Upgraded.
xfce/tumbler-4.18.0-x86_64-1.txz: Upgraded.
xfce/xfce4-appfinder-4.18.0-x86_64-1.txz: Upgraded.
xfce/xfce4-dev-tools-4.18.0-x86_64-1.txz: Upgraded.
xfce/xfce4-notifyd-0.6.5-x86_64-1.txz: Upgraded.
xfce/xfce4-panel-4.18.0-x86_64-1.txz: Upgraded.
xfce/xfce4-power-manager-4.18.0-x86_64-1.txz: Upgraded.
xfce/xfce4-session-4.18.0-x86_64-1.txz: Upgraded.
xfce/xfce4-settings-4.18.0-x86_64-1.txz: Upgraded.
xfce/xfce4-weather-plugin-0.11.0-x86_64-1.txz: Upgraded.
xfce/xfconf-4.18.0-x86_64-1.txz: Upgraded.
xfce/xfdesktop-4.18.0-x86_64-1.txz: Upgraded.
xfce/xfwm4-4.18.0-x86_64-1.txz: Upgraded.
20221217211411 | Patrick J Volkerding | 32 | -193/+323 |
2022-12-17 | Sat Dec 17 02:40:06 UTC 2022...a/aaa_libraries-15.1-x86_64-14.txz: Rebuilt.
Upgraded: liblzma.so.5.2.9, libpcre2-8.so.0.11.2, libglib-2.0.so.0.7400.3,
libgmodule-2.0.so.0.7400.3, libpng16.so.16.39.0.
Removed: libFLAC++.so.6.3.0, libFLAC.so.8.3.0, libicudata.so.71.1,
libicui18n.so.71.1, libicuio.so.71.1, libicutest.so.71.1, libicutu.so.71.1,
libicuuc.so.71.1, libjasper.so.6.0.0.
Added: libboost_atomic.so.1.80.0, libboost_chrono.so.1.80.0,
libboost_container.so.1.80.0, libboost_context.so.1.80.0,
libboost_contract.so.1.80.0, libboost_coroutine.so.1.80.0,
libboost_date_time.so.1.80.0, libboost_fiber.so.1.80.0,
libboost_filesystem.so.1.80.0, libboost_graph.so.1.80.0,
libboost_iostreams.so.1.80.0, libboost_json.so.1.80.0,
libboost_locale.so.1.80.0, libboost_log.so.1.80.0,
libboost_log_setup.so.1.80.0, libboost_math_c99.so.1.80.0,
libboost_math_c99f.so.1.80.0, libboost_math_c99l.so.1.80.0,
libboost_math_tr1.so.1.80.0, libboost_math_tr1f.so.1.80.0,
libboost_math_tr1l.so.1.80.0, libboost_nowide.so.1.80.0,
libboost_prg_exec_monitor.so.1.80.0, libboost_program_options.so.1.80.0,
libboost_python27.so.1.80.0, libboost_python39.so.1.80.0,
libboost_random.so.1.80.0, libboost_regex.so.1.80.0,
libboost_serialization.so.1.80.0, libboost_stacktrace_addr2line.so.1.80.0,
libboost_stacktrace_basic.so.1.80.0, libboost_stacktrace_noop.so.1.80.0,
libboost_system.so.1.80.0, libboost_thread.so.1.80.0,
libboost_timer.so.1.80.0, libboost_type_erasure.so.1.80.0,
libboost_unit_test_framework.so.1.80.0, libboost_wave.so.1.80.0,
libboost_wserialization.so.1.80.0.
ap/pamixer-1.5-x86_64-5.txz: Rebuilt.
Recompiled against boost-1.81.0.
kde/kig-22.12.0-x86_64-2.txz: Rebuilt.
Recompiled against boost-1.81.0.
kde/kopeninghours-22.12.0-x86_64-2.txz: Rebuilt.
Recompiled against boost-1.81.0.
kde/krita-5.1.4-x86_64-2.txz: Rebuilt.
Recompiled against boost-1.81.0.
l/boost-1.81.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/cryfs-0.10.3-x86_64-7.txz: Rebuilt.
Recompiled against boost-1.81.0.
x/fcitx5-chinese-addons-5.0.16-x86_64-2.txz: Rebuilt.
Recompiled against boost-1.81.0.
x/libime-1.0.16-x86_64-2.txz: Rebuilt.
Recompiled against boost-1.81.0.
xap/mozilla-firefox-108.0.1-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/firefox/108.0.1/releasenotes/
xfce/elementary-xfce-0.17-x86_64-1.txz: Upgraded.
20221217024006 | Patrick J Volkerding | 16 | -113/+245 |
2022-12-16 | Fri Dec 16 04:46:51 UTC 2022...d/help2man-1.49.3-x86_64-1.txz: Upgraded.
l/pipewire-0.3.63-x86_64-1.txz: Upgraded.
x/libX11-1.8.3-x86_64-1.txz: Upgraded.
x/mesa-22.3.1-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-108.0-x86_64-1.txz: Upgraded.
This update contains security fixes and improvements.
Thanks to marav for the build help.
For more information, see:
https://www.mozilla.org/en-US/firefox/108.0/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2022-51/
https://www.cve.org/CVERecord?id=CVE-2022-46871
https://www.cve.org/CVERecord?id=CVE-2022-46872
https://www.cve.org/CVERecord?id=CVE-2022-46873
https://www.cve.org/CVERecord?id=CVE-2022-46874
https://www.cve.org/CVERecord?id=CVE-2022-46875
https://www.cve.org/CVERecord?id=CVE-2022-46877
https://www.cve.org/CVERecord?id=CVE-2022-46878
https://www.cve.org/CVERecord?id=CVE-2022-46879
(* Security fix *)
20221216044651 | Patrick J Volkerding | 22 | -1560/+3766 |
2022-12-14 | Wed Dec 14 21:19:34 UTC 2022...a/bash-5.2.015-x86_64-1.txz: Upgraded.
a/tcsh-6.24.06-x86_64-1.txz: Upgraded.
ap/inxi-3.3.24_1-noarch-1.txz: Upgraded.
ap/nano-7.1-x86_64-1.txz: Upgraded.
d/git-2.39.0-x86_64-1.txz: Upgraded.
d/rust-1.65.0-x86_64-1.txz: Upgraded.
d/strace-6.1-x86_64-1.txz: Upgraded.
kde/krita-5.1.4-x86_64-1.txz: Upgraded.
l/imagemagick-7.1.0_54-x86_64-1.txz: Upgraded.
l/nodejs-19.3.0-x86_64-1.txz: Upgraded.
l/pcre2-10.42-x86_64-1.txz: Upgraded.
n/iproute2-6.1.0-x86_64-1.txz: Upgraded.
x/makedepend-1.0.8-x86_64-1.txz: Upgraded.
x/xhost-1.0.9-x86_64-1.txz: Upgraded.
x/xorg-server-21.1.5-x86_64-1.txz: Upgraded.
This release fixes 6 recently reported security vulnerabilities in
various extensions.
For more information, see:
https://lists.x.org/archives/xorg-announce/2022-December/003302.html
https://www.cve.org/CVERecord?id=CVE-2022-46340
https://www.cve.org/CVERecord?id=CVE-2022-46341
https://www.cve.org/CVERecord?id=CVE-2022-46342
https://www.cve.org/CVERecord?id=CVE-2022-46343
https://www.cve.org/CVERecord?id=CVE-2022-46344
https://www.cve.org/CVERecord?id=CVE-2022-4283
(* Security fix *)
x/xorg-server-xephyr-21.1.5-x86_64-1.txz: Upgraded.
x/xorg-server-xnest-21.1.5-x86_64-1.txz: Upgraded.
x/xorg-server-xvfb-21.1.5-x86_64-1.txz: Upgraded.
x/xorg-server-xwayland-22.1.6-x86_64-1.txz: Upgraded.
This release fixes 6 recently reported security vulnerabilities in
various extensions.
For more information, see:
https://lists.x.org/archives/xorg-announce/2022-December/003302.html
https://www.cve.org/CVERecord?id=CVE-2022-46340
https://www.cve.org/CVERecord?id=CVE-2022-46341
https://www.cve.org/CVERecord?id=CVE-2022-46342
https://www.cve.org/CVERecord?id=CVE-2022-46343
https://www.cve.org/CVERecord?id=CVE-2022-46344
https://www.cve.org/CVERecord?id=CVE-2022-4283
(* Security fix *)
xap/mozilla-thunderbird-102.6.0-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/security/advisories/mfsa2022-53/
https://www.cve.org/CVERecord?id=CVE-2022-46880
https://www.cve.org/CVERecord?id=CVE-2022-46872
https://www.cve.org/CVERecord?id=CVE-2022-46881
https://www.cve.org/CVERecord?id=CVE-2022-46874
https://www.cve.org/CVERecord?id=CVE-2022-46875
https://www.cve.org/CVERecord?id=CVE-2022-46882
https://www.cve.org/CVERecord?id=CVE-2022-46878
(* Security fix *)
xap/xscreensaver-6.06-x86_64-1.txz: Upgraded.
testing/packages/mozilla-firefox-108.0-x86_64-1.txz: Upgraded.
Starting this out in /testing for now, since I've been trying for 2 days to
get it to compile on 32-bit with no luck. It ends up failing with a bunch of
errors like this:
ld.lld: error: undefined hidden symbol: tabs_4d51_TabsStore_sync
Any help getting this to build on 32-bit would be greatly appreciated.
I've tried most of ponce's bag of tricks already. :-)
20221214211934 | Patrick J Volkerding | 35 | -610/+2117 |
2022-12-10 | Sat Dec 10 19:28:02 UTC 2022...kde/attica-5.101.0-x86_64-1.txz: Upgraded.
kde/baloo-5.101.0-x86_64-1.txz: Upgraded.
kde/bluez-qt-5.101.0-x86_64-1.txz: Upgraded.
kde/breeze-icons-5.101.0-noarch-1.txz: Upgraded.
kde/extra-cmake-modules-5.101.0-x86_64-1.txz: Upgraded.
kde/frameworkintegration-5.101.0-x86_64-1.txz: Upgraded.
kde/kactivities-5.101.0-x86_64-1.txz: Upgraded.
kde/kactivities-stats-5.101.0-x86_64-1.txz: Upgraded.
kde/kapidox-5.101.0-x86_64-1.txz: Upgraded.
kde/karchive-5.101.0-x86_64-1.txz: Upgraded.
kde/kauth-5.101.0-x86_64-1.txz: Upgraded.
kde/kbookmarks-5.101.0-x86_64-1.txz: Upgraded.
kde/kcalendarcore-5.101.0-x86_64-1.txz: Upgraded.
kde/kcmutils-5.101.0-x86_64-1.txz: Upgraded.
kde/kcodecs-5.101.0-x86_64-1.txz: Upgraded.
kde/kcompletion-5.101.0-x86_64-1.txz: Upgraded.
kde/kconfig-5.101.0-x86_64-1.txz: Upgraded.
kde/kconfigwidgets-5.101.0-x86_64-1.txz: Upgraded.
kde/kcontacts-5.101.0-x86_64-1.txz: Upgraded.
kde/kcoreaddons-5.101.0-x86_64-1.txz: Upgraded.
kde/kcrash-5.101.0-x86_64-1.txz: Upgraded.
kde/kdav-5.101.0-x86_64-1.txz: Upgraded.
kde/kdbusaddons-5.101.0-x86_64-1.txz: Upgraded.
kde/kdeclarative-5.101.0-x86_64-1.txz: Upgraded.
kde/kded-5.101.0-x86_64-1.txz: Upgraded.
kde/kdelibs4support-5.101.0-x86_64-1.txz: Upgraded.
kde/kdesignerplugin-5.101.0-x86_64-1.txz: Upgraded.
kde/kdesu-5.101.0-x86_64-1.txz: Upgraded.
kde/kdewebkit-5.101.0-x86_64-1.txz: Upgraded.
kde/kdnssd-5.101.0-x86_64-1.txz: Upgraded.
kde/kdoctools-5.101.0-x86_64-1.txz: Upgraded.
kde/kemoticons-5.101.0-x86_64-1.txz: Upgraded.
kde/kfilemetadata-5.101.0-x86_64-1.txz: Upgraded.
kde/kglobalaccel-5.101.0-x86_64-1.txz: Upgraded.
kde/kguiaddons-5.101.0-x86_64-1.txz: Upgraded.
kde/kholidays-5.101.0-x86_64-1.txz: Upgraded.
kde/khtml-5.101.0-x86_64-1.txz: Upgraded.
kde/ki18n-5.101.0-x86_64-1.txz: Upgraded.
kde/kiconthemes-5.101.0-x86_64-1.txz: Upgraded.
kde/kidletime-5.101.0-x86_64-1.txz: Upgraded.
kde/kimageformats-5.101.0-x86_64-1.txz: Upgraded.
kde/kinit-5.101.0-x86_64-1.txz: Upgraded.
kde/kio-5.101.0-x86_64-1.txz: Upgraded.
kde/kirigami2-5.101.0-x86_64-1.txz: Upgraded.
kde/kitemmodels-5.101.0-x86_64-1.txz: Upgraded.
kde/kitemviews-5.101.0-x86_64-1.txz: Upgraded.
kde/kjobwidgets-5.101.0-x86_64-1.txz: Upgraded.
kde/kjs-5.101.0-x86_64-1.txz: Upgraded.
kde/kjsembed-5.101.0-x86_64-1.txz: Upgraded.
kde/kmediaplayer-5.101.0-x86_64-1.txz: Upgraded.
kde/knewstuff-5.101.0-x86_64-1.txz: Upgraded.
kde/knotifications-5.101.0-x86_64-1.txz: Upgraded.
kde/knotifyconfig-5.101.0-x86_64-1.txz: Upgraded.
kde/kpackage-5.101.0-x86_64-1.txz: Upgraded.
kde/kparts-5.101.0-x86_64-1.txz: Upgraded.
kde/kpeople-5.101.0-x86_64-1.txz: Upgraded.
kde/kplotting-5.101.0-x86_64-1.txz: Upgraded.
kde/kpty-5.101.0-x86_64-1.txz: Upgraded.
kde/kquickcharts-5.101.0-x86_64-1.txz: Upgraded.
kde/kross-5.101.0-x86_64-1.txz: Upgraded.
kde/krunner-5.101.0-x86_64-1.txz: Upgraded.
kde/kservice-5.101.0-x86_64-1.txz: Upgraded.
kde/ktexteditor-5.101.0-x86_64-1.txz: Upgraded.
kde/ktextwidgets-5.101.0-x86_64-1.txz: Upgraded.
kde/kunitconversion-5.101.0-x86_64-1.txz: Upgraded.
kde/kwallet-5.101.0-x86_64-1.txz: Upgraded.
kde/kwayland-5.101.0-x86_64-1.txz: Upgraded.
kde/kwidgetsaddons-5.101.0-x86_64-1.txz: Upgraded.
kde/kwindowsystem-5.101.0-x86_64-1.txz: Upgraded.
kde/kxmlgui-5.101.0-x86_64-1.txz: Upgraded.
kde/kxmlrpcclient-5.101.0-x86_64-1.txz: Upgraded.
kde/modemmanager-qt-5.101.0-x86_64-1.txz: Upgraded.
kde/networkmanager-qt-5.101.0-x86_64-1.txz: Upgraded.
kde/oxygen-icons5-5.101.0-noarch-1.txz: Upgraded.
kde/plasma-framework-5.101.0-x86_64-1.txz: Upgraded.
kde/prison-5.101.0-x86_64-1.txz: Upgraded.
kde/purpose-5.101.0-x86_64-1.txz: Upgraded.
kde/qqc2-desktop-style-5.101.0-x86_64-1.txz: Upgraded.
kde/solid-5.101.0-x86_64-1.txz: Upgraded.
kde/sonnet-5.101.0-x86_64-1.txz: Upgraded.
kde/syndication-5.101.0-x86_64-1.txz: Upgraded.
kde/syntax-highlighting-5.101.0-x86_64-1.txz: Upgraded.
kde/threadweaver-5.101.0-x86_64-1.txz: Upgraded.
x/xf86-video-vesa-2.6.0-x86_64-1.txz: Upgraded.
20221210192802 | Patrick J Volkerding | 6 | -452/+638 |
2022-12-09 | Fri Dec 9 19:43:46 UTC 2022...a/usbutils-015-x86_64-1.txz: Upgraded.
l/adwaita-icon-theme-43-noarch-1.txz: Upgraded.
l/gtk+3-3.24.35-x86_64-1.txz: Upgraded.
l/libarchive-3.6.2-x86_64-1.txz: Upgraded.
This is a bugfix and security release.
Relevant bugfixes:
rar5 reader: fix possible garbled output with bsdtar -O (#1745)
mtree reader: support reading mtree files with tabs (#1783)
Security fixes:
various small fixes for issues found by CodeQL
(* Security fix *)
l/mozilla-nss-3.86-x86_64-1.txz: Upgraded.
l/pipewire-0.3.62-x86_64-1.txz: Upgraded.
x/OpenCC-1.1.6-x86_64-1.txz: Upgraded.
20221209194346 | Patrick J Volkerding | 7 | -67/+129 |
2022-12-09 | Thu Dec 8 22:48:34 UTC 2022...ap/vim-9.0.1034-x86_64-1.txz: Upgraded.
This update fixes various security issues such as a heap-based buffer
overflow and use after free.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-4141
https://www.cve.org/CVERecord?id=CVE-2022-3591
https://www.cve.org/CVERecord?id=CVE-2022-3520
https://www.cve.org/CVERecord?id=CVE-2022-3491
https://www.cve.org/CVERecord?id=CVE-2022-4292
https://www.cve.org/CVERecord?id=CVE-2022-4293
(* Security fix *)
e/emacs-28.2-x86_64-2.txz: Rebuilt.
GNU Emacs through 28.2 allows attackers to execute commands via shell
metacharacters in the name of a source-code file, because lib-src/etags.c
uses the system C library function in its implementation of the ctags
program. For example, a victim may use the "ctags *" command (suggested in
the ctags documentation) in a situation where the current working directory
has contents that depend on untrusted input.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-45939
(* Security fix *)
kde/akonadi-22.12.0-x86_64-1.txz: Upgraded.
kde/akonadi-calendar-22.12.0-x86_64-1.txz: Upgraded.
kde/akonadi-calendar-tools-22.12.0-x86_64-1.txz: Upgraded.
kde/akonadi-contacts-22.12.0-x86_64-1.txz: Upgraded.
kde/akonadi-import-wizard-22.12.0-x86_64-1.txz: Upgraded.
kde/akonadi-mime-22.12.0-x86_64-1.txz: Upgraded.
kde/akonadi-notes-22.12.0-x86_64-1.txz: Upgraded.
kde/akonadi-search-22.12.0-x86_64-1.txz: Upgraded.
kde/akonadiconsole-22.12.0-x86_64-1.txz: Upgraded.
kde/akregator-22.12.0-x86_64-1.txz: Upgraded.
kde/analitza-22.12.0-x86_64-1.txz: Upgraded.
kde/ark-22.12.0-x86_64-1.txz: Upgraded.
kde/artikulate-22.12.0-x86_64-1.txz: Upgraded.
kde/audiocd-kio-22.12.0-x86_64-1.txz: Upgraded.
kde/baloo-widgets-22.12.0-x86_64-1.txz: Upgraded.
kde/blinken-22.12.0-x86_64-1.txz: Upgraded.
kde/bomber-22.12.0-x86_64-1.txz: Upgraded.
kde/bovo-22.12.0-x86_64-1.txz: Upgraded.
kde/calendarsupport-22.12.0-x86_64-1.txz: Upgraded.
kde/cantor-22.12.0-x86_64-1.txz: Upgraded.
kde/cervisia-22.12.0-x86_64-1.txz: Upgraded.
kde/dolphin-22.12.0-x86_64-1.txz: Upgraded.
kde/dolphin-plugins-22.12.0-x86_64-1.txz: Upgraded.
kde/dragon-22.12.0-x86_64-1.txz: Upgraded.
kde/elisa-22.12.0-x86_64-1.txz: Upgraded.
kde/eventviews-22.12.0-x86_64-1.txz: Upgraded.
kde/falkon-22.12.0-x86_64-1.txz: Upgraded.
kde/ffmpegthumbs-22.12.0-x86_64-1.txz: Upgraded.
kde/filelight-22.12.0-x86_64-1.txz: Upgraded.
kde/granatier-22.12.0-x86_64-1.txz: Upgraded.
kde/grantlee-editor-22.12.0-x86_64-1.txz: Upgraded.
kde/grantleetheme-22.12.0-x86_64-1.txz: Upgraded.
kde/gwenview-22.12.0-x86_64-1.txz: Upgraded.
kde/incidenceeditor-22.12.0-x86_64-1.txz: Upgraded.
kde/itinerary-22.12.0-x86_64-1.txz: Upgraded.
kde/juk-22.12.0-x86_64-1.txz: Upgraded.
kde/k3b-22.12.0-x86_64-1.txz: Upgraded.
kde/kaddressbook-22.12.0-x86_64-1.txz: Upgraded.
kde/kalarm-22.12.0-x86_64-1.txz: Upgraded.
kde/kalendar-22.12.0-x86_64-1.txz: Upgraded.
kde/kalgebra-22.12.0-x86_64-1.txz: Upgraded.
kde/kalzium-22.12.0-x86_64-1.txz: Upgraded.
kde/kamera-22.12.0-x86_64-1.txz: Upgraded.
kde/kamoso-22.12.0-x86_64-1.txz: Upgraded.
kde/kanagram-22.12.0-x86_64-1.txz: Upgraded.
kde/kapman-22.12.0-x86_64-1.txz: Upgraded.
kde/kapptemplate-22.12.0-x86_64-1.txz: Upgraded.
kde/kate-22.12.0-x86_64-1.txz: Upgraded.
kde/katomic-22.12.0-x86_64-1.txz: Upgraded.
kde/kbackup-22.12.0-x86_64-1.txz: Upgraded.
kde/kblackbox-22.12.0-x86_64-1.txz: Upgraded.
kde/kblocks-22.12.0-x86_64-1.txz: Upgraded.
kde/kbounce-22.12.0-x86_64-1.txz: Upgraded.
kde/kbreakout-22.12.0-x86_64-1.txz: Upgraded.
kde/kbruch-22.12.0-x86_64-1.txz: Upgraded.
kde/kcachegrind-22.12.0-x86_64-1.txz: Upgraded.
kde/kcalc-22.12.0-x86_64-1.txz: Upgraded.
kde/kcalutils-22.12.0-x86_64-1.txz: Upgraded.
kde/kcharselect-22.12.0-x86_64-1.txz: Upgraded.
kde/kcolorchooser-22.12.0-x86_64-1.txz: Upgraded.
kde/kcron-22.12.0-x86_64-1.txz: Upgraded.
kde/kde-dev-scripts-22.12.0-x86_64-1.txz: Upgraded.
kde/kde-dev-utils-22.12.0-x86_64-1.txz: Upgraded.
kde/kdebugsettings-22.12.0-x86_64-1.txz: Upgraded.
kde/kdeconnect-kde-22.12.0-x86_64-1.txz: Upgraded.
kde/kdeedu-data-22.12.0-x86_64-1.txz: Upgraded.
kde/kdegraphics-mobipocket-22.12.0-x86_64-1.txz: Upgraded.
kde/kdegraphics-thumbnailers-22.12.0-x86_64-1.txz: Upgraded.
kde/kdenetwork-filesharing-22.12.0-x86_64-1.txz: Upgraded.
kde/kdenlive-22.12.0-x86_64-1.txz: Upgraded.
kde/kdepim-addons-22.12.0-x86_64-1.txz: Upgraded.
kde/kdepim-runtime-22.12.0-x86_64-1.txz: Upgraded.
kde/kdesdk-kio-22.12.0-x86_64-1.txz: Upgraded.
kde/kdesdk-thumbnailers-22.12.0-x86_64-1.txz: Upgraded.
kde/kdev-php-22.12.0-x86_64-1.txz: Upgraded.
kde/kdev-python-22.12.0-x86_64-1.txz: Upgraded.
kde/kdevelop-22.12.0-x86_64-1.txz: Upgraded.
kde/kdf-22.12.0-x86_64-1.txz: Upgraded.
kde/kdialog-22.12.0-x86_64-1.txz: Upgraded.
kde/kdiamond-22.12.0-x86_64-1.txz: Upgraded.
kde/keditbookmarks-22.12.0-x86_64-1.txz: Upgraded.
kde/kfind-22.12.0-x86_64-1.txz: Upgraded.
kde/kfloppy-22.12.0-x86_64-1.txz: Upgraded.
kde/kfourinline-22.12.0-x86_64-1.txz: Upgraded.
kde/kgeography-22.12.0-x86_64-1.txz: Upgraded.
kde/kget-22.12.0-x86_64-1.txz: Upgraded.
kde/kgoldrunner-22.12.0-x86_64-1.txz: Upgraded.
kde/kgpg-22.12.0-x86_64-1.txz: Upgraded.
kde/khangman-22.12.0-x86_64-1.txz: Upgraded.
kde/khelpcenter-22.12.0-x86_64-1.txz: Upgraded.
kde/kidentitymanagement-22.12.0-x86_64-1.txz: Upgraded.
kde/kig-22.12.0-x86_64-1.txz: Upgraded.
kde/kigo-22.12.0-x86_64-1.txz: Upgraded.
kde/killbots-22.12.0-x86_64-1.txz: Upgraded.
kde/kimagemapeditor-22.12.0-x86_64-1.txz: Upgraded.
kde/kimap-22.12.0-x86_64-1.txz: Upgraded.
kde/kio-extras-22.12.0-x86_64-1.txz: Upgraded.
kde/kio-gdrive-22.12.0-x86_64-1.txz: Upgraded.
kde/kio-zeroconf-22.12.0-x86_64-1.txz: Upgraded.
kde/kipi-plugins-22.12.0-x86_64-1.txz: Upgraded.
kde/kirigami-gallery-22.12.0-x86_64-1.txz: Upgraded.
kde/kiriki-22.12.0-x86_64-1.txz: Upgraded.
kde/kiten-22.12.0-x86_64-1.txz: Upgraded.
kde/kitinerary-22.12.0-x86_64-1.txz: Upgraded.
kde/kjumpingcube-22.12.0-x86_64-1.txz: Upgraded.
kde/kldap-22.12.0-x86_64-1.txz: Upgraded.
kde/kleopatra-22.12.0-x86_64-1.txz: Upgraded.
kde/klickety-22.12.0-x86_64-1.txz: Upgraded.
kde/klines-22.12.0-x86_64-1.txz: Upgraded.
kde/kmag-22.12.0-x86_64-1.txz: Upgraded.
kde/kmahjongg-22.12.0-x86_64-1.txz: Upgraded.
kde/kmail-22.12.0-x86_64-1.txz: Upgraded.
kde/kmail-account-wizard-22.12.0-x86_64-1.txz: Upgraded.
kde/kmailtransport-22.12.0-x86_64-1.txz: Upgraded.
kde/kmbox-22.12.0-x86_64-1.txz: Upgraded.
kde/kmime-22.12.0-x86_64-1.txz: Upgraded.
kde/kmines-22.12.0-x86_64-1.txz: Upgraded.
kde/kmix-22.12.0-x86_64-1.txz: Upgraded.
kde/kmousetool-22.12.0-x86_64-1.txz: Upgraded.
kde/kmouth-22.12.0-x86_64-1.txz: Upgraded.
kde/kmplot-22.12.0-x86_64-1.txz: Upgraded.
kde/knavalbattle-22.12.0-x86_64-1.txz: Upgraded.
kde/knetwalk-22.12.0-x86_64-1.txz: Upgraded.
kde/knights-22.12.0-x86_64-1.txz: Upgraded.
kde/knotes-22.12.0-x86_64-1.txz: Upgraded.
kde/kolf-22.12.0-x86_64-1.txz: Upgraded.
kde/kollision-22.12.0-x86_64-1.txz: Upgraded.
kde/kolourpaint-22.12.0-x86_64-1.txz: Upgraded.
kde/kompare-22.12.0-x86_64-1.txz: Upgraded.
kde/konqueror-22.12.0-x86_64-1.txz: Upgraded.
kde/konquest-22.12.0-x86_64-1.txz: Upgraded.
kde/konsole-22.12.0-x86_64-1.txz: Upgraded.
kde/kontact-22.12.0-x86_64-1.txz: Upgraded.
kde/kontactinterface-22.12.0-x86_64-1.txz: Upgraded.
kde/kontrast-22.12.0-x86_64-1.txz: Upgraded.
kde/konversation-22.12.0-x86_64-1.txz: Upgraded.
kde/kopeninghours-22.12.0-x86_64-1.txz: Upgraded.
kde/kopete-22.12.0-x86_64-1.txz: Upgraded.
kde/korganizer-22.12.0-x86_64-1.txz: Upgraded.
kde/kosmindoormap-22.12.0-x86_64-1.txz: Upgraded.
kde/kpat-22.12.0-x86_64-1.txz: Upgraded.
kde/kpimtextedit-22.12.0-x86_64-1.txz: Upgraded.
kde/kpkpass-22.12.0-x86_64-1.txz: Upgraded.
kde/kpmcore-22.12.0-x86_64-1.txz: Upgraded.
kde/kpublictransport-22.12.0-x86_64-1.txz: Upgraded.
kde/kqtquickcharts-22.12.0-x86_64-1.txz: Upgraded.
kde/krdc-22.12.0-x86_64-1.txz: Upgraded.
kde/kreversi-22.12.0-x86_64-1.txz: Upgraded.
kde/krfb-22.12.0-x86_64-1.txz: Upgraded.
kde/kross-interpreters-22.12.0-x86_64-1.txz: Upgraded.
kde/kruler-22.12.0-x86_64-1.txz: Upgraded.
kde/ksanecore-22.12.0-x86_64-1.txz: Upgraded.
kde/kshisen-22.12.0-x86_64-1.txz: Upgraded.
kde/ksirk-22.12.0-x86_64-1.txz: Upgraded.
kde/ksmtp-22.12.0-x86_64-1.txz: Upgraded.
kde/ksnakeduel-22.12.0-x86_64-1.txz: Upgraded.
kde/kspaceduel-22.12.0-x86_64-1.txz: Upgraded.
kde/ksquares-22.12.0-x86_64-1.txz: Upgraded.
kde/ksudoku-22.12.0-x86_64-1.txz: Upgraded.
kde/ksystemlog-22.12.0-x86_64-1.txz: Upgraded.
kde/kteatime-22.12.0-x86_64-1.txz: Upgraded.
kde/ktimer-22.12.0-x86_64-1.txz: Upgraded.
kde/ktnef-22.12.0-x86_64-1.txz: Upgraded.
kde/ktorrent-22.12.0-x86_64-1.txz: Upgraded.
kde/ktouch-22.12.0-x86_64-1.txz: Upgraded.
kde/kturtle-22.12.0-x86_64-1.txz: Upgraded.
kde/kubrick-22.12.0-x86_64-1.txz: Upgraded.
kde/kwalletmanager-22.12.0-x86_64-1.txz: Upgraded.
kde/kwave-22.12.0-x86_64-1.txz: Upgraded.
kde/kwordquiz-22.12.0-x86_64-1.txz: Upgraded.
kde/libgravatar-22.12.0-x86_64-1.txz: Upgraded.
kde/libkcddb-22.12.0-x86_64-1.txz: Upgraded.
kde/libkcompactdisc-22.12.0-x86_64-1.txz: Upgraded.
kde/libkdcraw-22.12.0-x86_64-1.txz: Upgraded.
kde/libkdegames-22.12.0-x86_64-1.txz: Upgraded.
kde/libkdepim-22.12.0-x86_64-1.txz: Upgraded.
kde/libkeduvocdocument-22.12.0-x86_64-1.txz: Upgraded.
kde/libkexiv2-22.12.0-x86_64-1.txz: Upgraded.
kde/libkgapi-22.12.0-x86_64-1.txz: Upgraded.
kde/libkipi-22.12.0-x86_64-1.txz: Upgraded.
kde/libkleo-22.12.0-x86_64-1.txz: Upgraded.
kde/libkmahjongg-22.12.0-x86_64-1.txz: Upgraded.
kde/libkomparediff2-22.12.0-x86_64-1.txz: Upgraded.
kde/libksane-22.12.0-x86_64-1.txz: Upgraded.
kde/libksieve-22.12.0-x86_64-1.txz: Upgraded.
kde/libktorrent-22.12.0-x86_64-1.txz: Upgraded.
kde/lokalize-22.12.0-x86_64-1.txz: Upgraded.
kde/lskat-22.12.0-x86_64-1.txz: Upgraded.
kde/mailcommon-22.12.0-x86_64-1.txz: Upgraded.
kde/mailimporter-22.12.0-x86_64-1.txz: Upgraded.
kde/marble-22.12.0-x86_64-1.txz: Upgraded.
kde/markdownpart-22.12.0-x86_64-1.txz: Upgraded.
kde/mbox-importer-22.12.0-x86_64-1.txz: Upgraded.
kde/messagelib-22.12.0-x86_64-1.txz: Upgraded.
kde/minuet-22.12.0-x86_64-1.txz: Upgraded.
kde/okular-22.12.0-x86_64-1.txz: Upgraded.
kde/palapeli-22.12.0-x86_64-1.txz: Upgraded.
kde/parley-22.12.0-x86_64-1.txz: Upgraded.
kde/partitionmanager-22.12.0-x86_64-1.txz: Upgraded.
kde/picmi-22.12.0-x86_64-1.txz: Upgraded.
kde/pim-data-exporter-22.12.0-x86_64-1.txz: Upgraded.
kde/pim-sieve-editor-22.12.0-x86_64-1.txz: Upgraded.
kde/pimcommon-22.12.0-x86_64-1.txz: Upgraded.
kde/poxml-22.12.0-x86_64-1.txz: Upgraded.
kde/print-manager-22.12.0-x86_64-1.txz: Upgraded.
kde/rocs-22.12.0-x86_64-1.txz: Upgraded.
kde/skanlite-22.12.0-x86_64-1.txz: Upgraded.
kde/skanpage-22.12.0-x86_64-1.txz: Upgraded.
kde/spectacle-22.12.0-x86_64-1.txz: Upgraded.
kde/svgpart-22.12.0-x86_64-1.txz: Upgraded.
kde/sweeper-22.12.0-x86_64-1.txz: Upgraded.
kde/umbrello-22.12.0-x86_64-1.txz: Upgraded.
kde/yakuake-22.12.0-x86_64-1.txz: Upgraded.
kde/zanshin-22.12.0-x86_64-1.txz: Upgraded.
x/ibus-m17n-1.4.18-x86_64-1.txz: Upgraded.
x/libICE-1.1.1-x86_64-1.txz: Upgraded.
x/libXau-1.0.11-x86_64-1.txz: Upgraded.
x/libfontenc-1.1.7-x86_64-1.txz: Upgraded.
x/libxkbfile-1.1.2-x86_64-1.txz: Upgraded.
x/libxshmfence-1.3.2-x86_64-1.txz: Upgraded.
x/xkbcomp-1.4.6-x86_64-1.txz: Upgraded.
xap/vim-gvim-9.0.1034-x86_64-1.txz: Upgraded.
20221208224834 | Patrick J Volkerding | 17 | -1229/+10999 |
2022-12-07 | Wed Dec 7 18:48:07 UTC 2022...d/cargo-vendor-filterer-0.5.7-x86_64-1.txz: Added.
Thanks to Heinz Wiesinger.
d/cbindgen-0.24.3-x86_64-1.txz: Added.
d/python3-3.9.16-x86_64-1.txz: Upgraded.
This update fixes security issues:
gh-98739: Updated bundled libexpat to 2.5.0 to fix CVE-2022-43680
(heap use-after-free).
gh-98433: The IDNA codec decoder used on DNS hostnames by socket or asyncio
related name resolution functions no longer involves a quadratic algorithm
to fix CVE-2022-45061. This prevents a potential CPU denial of service if an
out-of-spec excessive length hostname involving bidirectional characters were
decoded. Some protocols such as urllib http 3xx redirects potentially allow
for an attacker to supply such a name.
gh-100001: python -m http.server no longer allows terminal control characters
sent within a garbage request to be printed to the stderr server log.
gh-87604: Avoid publishing list of active per-interpreter audit hooks via the
gc module.
gh-97514: On Linux the multiprocessing module returns to using filesystem
backed unix domain sockets for communication with the forkserver process
instead of the Linux abstract socket namespace. Only code that chooses to use
the "forkserver" start method is affected. This prevents Linux CVE-2022-42919
(potential privilege escalation) as abstract sockets have no permissions and
could allow any user on the system in the same network namespace (often the
whole system) to inject code into the multiprocessing forkserver process.
Filesystem based socket permissions restrict this to the forkserver process
user as was the default in Python 3.8 and earlier.
gh-98517: Port XKCP's fix for the buffer overflows in SHA-3 to fix
CVE-2022-37454.
gh-68966: The deprecated mailcap module now refuses to inject unsafe text
(filenames, MIME types, parameters) into shell commands to address
CVE-2015-20107. Instead of using such text, it will warn and act as if a
match was not found (or for test commands, as if the test failed).
For more information, see:
https://pythoninsider.blogspot.com/2022/12/python-3111-3109-3916-3816-3716-and.html
https://www.cve.org/CVERecord?id=CVE-2022-43680
https://www.cve.org/CVERecord?id=CVE-2022-45061
https://www.cve.org/CVERecord?id=CVE-2022-42919
https://www.cve.org/CVERecord?id=CVE-2022-37454
https://www.cve.org/CVERecord?id=CVE-2015-20107
(* Security fix *)
d/rust-bindgen-0.63.0-x86_64-1.txz: Added.
Thanks to Heinz Wiesinger.
l/pcre2-10.41-x86_64-1.txz: Upgraded.
n/proftpd-1.3.8-x86_64-1.txz: Upgraded.
x/mesa-22.3.0-x86_64-1.txz: Upgraded.
Compiled with Rusticl support. Thanks to Heinz Wiesinger.
x/xdm-1.1.14-x86_64-1.txz: Upgraded.
20221207184807 | Patrick J Volkerding | 36 | -506/+724 |
2022-12-06 | Mon Dec 5 21:00:46 UTC 2022...a/glibc-zoneinfo-2022g-noarch-1.txz: Upgraded.
This package provides the latest timezone updates.
ap/texinfo-7.0.1-x86_64-2.txz: Rebuilt.
Rebuilt without the --disable-perl-xs option to fix a2ps failing to build
from source. The option was added during the 15.0 development cycle to fix
glibc failing to build from source, but that issue has been resolved.
Thanks to nobodino and marav.
n/ca-certificates-20221205-noarch-1.txz: Upgraded.
This update provides the latest CA certificates to check for the
authenticity of SSL connections.
n/dnsmasq-2.88-x86_64-1.txz: Upgraded.
20221205210046 | Patrick J Volkerding | 5 | -736/+108 |
2022-12-05 | Mon Dec 5 02:40:12 UTC 2022...x/OpenCC-1.1.5-x86_64-1.txz: Upgraded.
x/libXScrnSaver-1.2.4-x86_64-1.txz: Upgraded.
x/libXcomposite-0.4.6-x86_64-1.txz: Upgraded.
x/libXdamage-1.1.6-x86_64-1.txz: Upgraded.
x/libXres-1.2.2-x86_64-1.txz: Upgraded.
x/libXv-1.0.12-x86_64-1.txz: Upgraded.
x/libXxf86dga-1.1.6-x86_64-1.txz: Upgraded.
x/lndir-1.0.4-x86_64-1.txz: Upgraded.
20221205024012 | Patrick J Volkerding | 23 | -164/+268 |
2022-12-04 | Sat Dec 3 21:07:32 UTC 2022...a/tcsh-6.24.04-x86_64-1.txz: Upgraded.
ap/texinfo-7.0.1-x86_64-1.txz: Upgraded.
l/vte-0.70.2-x86_64-1.txz: Upgraded.
x/transset-1.0.3-x86_64-1.txz: Upgraded.
x/xcursorgen-1.0.8-x86_64-1.txz: Upgraded.
20221203210732 | Patrick J Volkerding | 5 | -53/+75 |
2022-12-03 | Fri Dec 2 20:58:24 UTC 2022...a/hwdata-0.365-noarch-1.txz: Upgraded.
a/xz-5.2.9-x86_64-1.txz: Upgraded.
kde/latte-dock-0.10.9-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-102.5.1-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/102.5.1/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2022-50/
https://www.cve.org/CVERecord?id=CVE-2022-45414
(* Security fix *)
20221202205824 | Patrick J Volkerding | 3 | -45/+77 |
2022-12-02 | Fri Dec 2 06:58:38 UTC 2022...a/gptfdisk-1.0.9-x86_64-2.txz: Rebuilt.
Applied upstream patches to fix a crash and partition corruption caused by
the popt upgrade:
[PATCH] Updated guid.cc to deal with minor change in libuuid
[PATCH] Fix failure & crash of sgdisk when compiled with latest popt
[PATCH] Fix NULL dereference when duplicating string argument
Thanks to jloco.
d/cmake-3.25.1-x86_64-1.txz: Upgraded.
kde/calligra-3.2.1-x86_64-24.txz: Rebuilt.
Recompiled against poppler-22.12.0.
kde/cantor-22.08.3-x86_64-2.txz: Rebuilt.
Recompiled against poppler-22.12.0.
kde/kfilemetadata-5.100.0-x86_64-2.txz: Rebuilt.
Recompiled against poppler-22.12.0.
kde/kile-2.9.93-x86_64-22.txz: Rebuilt.
Recompiled against poppler-22.12.0.
kde/kitinerary-22.08.3-x86_64-2.txz: Rebuilt.
Recompiled against poppler-22.12.0.
kde/krita-5.1.3-x86_64-2.txz: Rebuilt.
Recompiled against poppler-22.12.0.
kde/okular-22.08.3-x86_64-2.txz: Rebuilt.
Recompiled against poppler-22.12.0.
l/glib2-2.74.3-x86_64-1.txz: Upgraded.
l/poppler-22.12.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
n/NetworkManager-1.40.6-x86_64-1.txz: Upgraded.
xap/NetworkManager-openvpn-1.10.2-x86_64-1.txz: Upgraded.
xap/libnma-1.10.4-x86_64-1.txz: Upgraded.
xap/network-manager-applet-1.30.0-x86_64-1.txz: Upgraded.
20221202065838 | Patrick J Volkerding | 19 | -128/+289 |
2022-12-01 | Wed Nov 30 21:39:29 UTC 2022...kde/kstars-3.6.2-x86_64-1.txz: Upgraded.
l/libbluray-1.3.4-x86_64-1.txz: Upgraded.
l/newt-0.52.23-x86_64-1.txz: Upgraded.
l/nodejs-19.2.0-x86_64-1.txz: Upgraded.
x/wayland-protocols-1.31-noarch-1.txz: Upgraded.
extra/php80/php80-8.0.26-x86_64-1.txz: Upgraded.
extra/php81/php81-8.1.13-x86_64-1.txz: Upgraded.
20221130213929 | Patrick J Volkerding | 6 | -77/+103 |