| Commit message (Expand) | Author | Files | Lines |
2024-03-29 | Fri Mar 29 02:25:21 UTC 2024...a/coreutils-9.5-x86_64-1.txz: Upgraded.
chmod -R now avoids a race where an attacker may replace a traversed file
with a symlink, causing chmod to operate on an unintended file.
[This bug was present in "the beginning".]
split --line-bytes with a mixture of very long and short lines no longer
overwrites the heap.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-0684
(* Security fix *)
20240329022521 | Patrick J Volkerding | 4 | -27/+58 |
2024-03-28 | Thu Mar 28 21:40:08 UTC 2024...a/btrfs-progs-6.8-x86_64-1.txz: Upgraded.
a/gpm-1.20.7-x86_64-10.txz: Rebuilt.
Clean up the compile fix patch omitting the Emacs Lisp file.
Clean up and apply the weak-wgetch patch.
Build using the option --without-curses.
Thanks to qunying.
a/util-linux-2.40-x86_64-1.txz: Upgraded.
This release fixes a vulnerability where the wall command did not filter
escape sequences from command line arguments, allowing unprivileged users
to put arbitrary text on other users terminals.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-28085
(* Security fix *)
d/rust-1.77.1-x86_64-1.txz: Upgraded.
l/fluidsynth-2.3.5-x86_64-1.txz: Upgraded.
l/protobuf-26.1-x86_64-1.txz: Upgraded.
l/python-build-1.2.1-x86_64-1.txz: Upgraded.
n/samba-4.20.0-x86_64-1.txz: Upgraded.
x/mesa-24.0.4-x86_64-1.txz: Upgraded.
xap/seamonkey-2.53.18.2-x86_64-1.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
https://www.seamonkey-project.org/releases/seamonkey2.53.18.2
(* Security fix *)
20240328214008 | Patrick J Volkerding | 14 | -172/+217 |
2024-03-27 | Wed Mar 27 19:16:09 UTC 2024...a/kernel-firmware-20240322_e068ccf-noarch-1.txz: Upgraded.
a/kernel-generic-6.6.23-x86_64-1.txz: Upgraded.
a/kernel-huge-6.6.23-x86_64-1.txz: Upgraded.
a/kernel-modules-6.6.23-x86_64-1.txz: Upgraded.
d/kernel-headers-6.6.23-x86-1.txz: Upgraded.
k/kernel-source-6.6.23-noarch-1.txz: Upgraded.
l/nodejs-20.12.0-x86_64-1.txz: Upgraded.
l/openexr-3.2.4-x86_64-1.txz: Upgraded.
l/zstd-1.5.6-x86_64-1.txz: Upgraded.
n/curl-8.7.1-x86_64-1.txz: Upgraded.
This release fixes the following security issues:
TLS certificate check bypass with mbedTLS.
HTTP/2 push headers memory-leak.
QUIC certificate check bypass with wolfSSL.
Usage of disabled protocol.
For more information, see:
https://curl.se/docs/CVE-2024-2466.html
https://curl.se/docs/CVE-2024-2398.html
https://curl.se/docs/CVE-2024-2379.html
https://curl.se/docs/CVE-2024-2004.html
https://www.cve.org/CVERecord?id=CVE-2024-2466
https://www.cve.org/CVERecord?id=CVE-2024-2398
https://www.cve.org/CVERecord?id=CVE-2024-2379
https://www.cve.org/CVERecord?id=CVE-2024-2004
(* Security fix *)
x/xorgproto-2024.1-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240327191609 | Patrick J Volkerding | 15 | -125/+191 |
2024-03-27 | Tue Mar 26 22:24:59 UTC 2024...l/gjs-1.80.2-x86_64-1.txz: Upgraded.
l/qt6-6.6.3_20240319_c2516323-x86_64-1.txz: Upgraded.
20240326222459 | Patrick J Volkerding | 25 | -64/+103 |
2024-03-25 | Mon Mar 25 18:58:10 UTC 2024...a/shadow-4.15.1-x86_64-1.txz: Upgraded.
The main point of this release is to fix a bug that caused spurious error
messages about unknown login.defs configuration options.
a/sysvinit-3.09-x86_64-1.txz: Upgraded.
l/python-trove-classifiers-2024.3.25-x86_64-1.txz: Upgraded.
x/libX11-1.8.8-x86_64-1.txz: Upgraded.
x/libXmu-1.2.0-x86_64-1.txz: Upgraded.
x/lndir-1.0.5-x86_64-1.txz: Upgraded.
x/xf86-video-savage-2.4.1-x86_64-1.txz: Upgraded.
x/xman-1.2.0-x86_64-1.txz: Upgraded.
x/xorg-docs-1.7.3-noarch-1.txz: Upgraded.
20240325185810 | Patrick J Volkerding | 6 | -88/+108 |
2024-03-24 | Sun Mar 24 18:21:46 UTC 2024...e/emacs-29.3-x86_64-1.txz: Upgraded.
Emacs 29.3 is an emergency bugfix release intended to fix several security
vulnerabilities described below:
Arbitrary Lisp code is no longer evaluated as part of turning on Org mode.
This is for security reasons, to avoid evaluating malicious Lisp code.
New buffer-local variable 'untrusted-content'. When this is non-nil, Lisp
programs should treat buffer contents with extra caution.
Gnus now treats inline MIME contents as untrusted. To get back previous
insecure behavior, 'untrusted-content' should be reset to nil in the buffer.
LaTeX preview is now by default disabled for email attachments. To get back
previous insecure behavior, set the variable 'org--latex-preview-when-risky'
to a non-nil value.
Org mode now considers contents of remote files to be untrusted.
Remote files are recognized by calling 'file-remote-p'.
(* Security fix *)
l/enchant-2.6.8-x86_64-1.txz: Upgraded.
l/gnu-efi-3.0.18-x86_64-1.txz: Upgraded.
l/libproxy-0.5.4-x86_64-2.txz: Rebuilt.
Rebuilt with -Dpacrunner-duktape=true. Thanks to gmgf.
l/libxkbcommon-1.7.0-x86_64-1.txz: Upgraded.
l/python-hatchling-1.22.4-x86_64-1.txz: Upgraded.
x/libpciaccess-0.18.1-x86_64-1.txz: Upgraded.
x/xdm-1.1.15-x86_64-1.txz: Upgraded.
x/xedit-1.2.4-x86_64-1.txz: Upgraded.
x/xload-1.2.0-x86_64-1.txz: Upgraded.
extra/emacs-regular-build/emacs-29.3-x86_64-1_regular.txz: Upgraded.
(* Security fix *)
20240324182146 | Patrick J Volkerding | 7 | -89/+155 |
2024-03-23 | Sat Mar 23 19:34:02 UTC 2024...ap/vim-9.1.0199-x86_64-1.txz: Upgraded.
Dropped python2 support. Thanks to Audrius Kažukauskas.
l/duktape-2.7.0-x86_64-1.txz: Added.
Needed by polkit.
l/gjs-1.80.1-x86_64-1.txz: Upgraded.
l/libdeflate-1.20-x86_64-1.txz: Upgraded.
l/mozjs102-102.15.1esr-x86_64-2.txz: Removed.
l/mozjs115-115.9.1esr-x86_64-1.txz: Upgraded.
l/polkit-123-x86_64-2.txz: Rebuilt.
Use duktape instead of mozjs102 as the JavaScript engine.
x/iceauth-1.0.10-x86_64-2.txz: Rebuilt.
It's never too early to build with --enable-year2038. Thanks to bigbadaboum.
xap/geeqie-2.4-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-115.9.1esr-x86_64-1.txz: Upgraded.
This update fixes a critical security issue:
An attacker was able to inject an event handler into a privileged object
that would allow arbitrary JavaScript execution in the parent process.
For more information, see:
https://www.mozilla.org/en-US/firefox/115.9.1esr/releasenotes/
https://www.mozilla.org/security/advisories/mfsa2024-16/
https://www.cve.org/CVERecord?id=CVE-2024-29944
(* Security fix *)
xap/vim-gvim-9.1.0199-x86_64-1.txz: Upgraded.
Dropped python2 support. Thanks to Audrius Kažukauskas.
20240323193402 | Patrick J Volkerding | 32 | -1367/+332 |
2024-03-23 | Fri Mar 22 22:57:06 UTC 2024...l/glibmm2-2.80.0-x86_64-1.txz: Upgraded.
20240322225706 | Patrick J Volkerding | 3 | -26/+40 |
2024-03-22 | Fri Mar 22 20:16:55 UTC 2024...a/volume_key-0.3.12-x86_64-7.txz: Rebuilt.
Build python3 bindings.
l/atkmm2-2.36.3-x86_64-1.txz: Added.
l/boost-1.84.0-x86_64-2.txz: Rebuilt.
Drop python2 support.
l/glibmm-2.66.7-x86_64-1.txz: Upgraded.
l/gst-plugins-bad-free-1.24.1-x86_64-1.txz: Upgraded.
l/gst-plugins-base-1.24.1-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.24.1-x86_64-1.txz: Upgraded.
l/gst-plugins-libav-1.24.1-x86_64-1.txz: Upgraded.
l/gstreamer-1.24.1-x86_64-1.txz: Upgraded.
l/gtkmm4-4.14.0-x86_64-1.txz: Upgraded.
l/unicode-ucd-15.1.0-noarch-1.txz: Added.
153MB installed... oh well. Needed by gucharmap.
xap/gucharmap-15.1.3-x86_64-1.txz: Upgraded.
xap/x3270-4.3ga7-x86_64-1.txz: Upgraded.
20240322201655 | Patrick J Volkerding | 25 | -210/+745 |
2024-03-21 | Thu Mar 21 22:36:42 UTC 2024...d/cmake-3.29.0-x86_64-1.txz: Upgraded.
l/gtkmm3-3.24.9-x86_64-1.txz: Upgraded.
l/pangomm2-2.52.0-x86_64-1.txz: Upgraded.
l/python-importlib_metadata-7.1.0-x86_64-1.txz: Upgraded.
20240321223642 | Patrick J Volkerding | 6 | -88/+137 |
2024-03-21 | Thu Mar 21 19:53:15 UTC 2024...d/mercurial-6.7.1-x86_64-1.txz: Upgraded.
d/rust-1.77.0-x86_64-1.txz: Upgraded.
l/cairomm1-1.18.0-x86_64-1.txz: Added.
Thanks to jloco.
l/glibmm2-2.78.1-x86_64-1.txz: Added.
Thanks to jloco.
l/gtkmm4-4.12.0-x86_64-1.txz: Added.
Thanks to jloco.
l/libclc-18.1.2-x86_64-1.txz: Upgraded.
l/pangomm-2.46.4-x86_64-1.txz: Upgraded.
l/pangomm2-2.50.2-x86_64-1.txz: Added.
Thanks to jloco.
n/openvpn-2.6.10-x86_64-1.txz: Upgraded.
x/libkkc-0.3.5-x86_64-5.txz: Rebuilt.
Use python for the build, not python2.
x/libkkc-data-0.2.7-x86_64-5.txz: Rebuilt.
Use python for the build, not python2.
x/marisa-0.2.6-x86_64-8.txz: Rebuilt.
Drop python2 support and rebuild marisa module for python3.
x/wayland-protocols-1.34-noarch-1.txz: Upgraded.
20240321195315 | Patrick J Volkerding | 22 | -149/+806 |
2024-03-20 | Wed Mar 20 21:10:30 UTC 2024...a/libblockdev-2.28-x86_64-2.txz: Rebuilt.
Drop python2 support.
a/sysvinit-scripts-15.1-noarch-15.txz: Rebuilt.
rc.M: start rc.iceccd and rc.icecc-scheduler earlier.
a/util-linux-2.39.3-x86_64-2.txz: Rebuilt.
Drop python2 support.
a/volume_key-0.3.12-x86_64-6.txz: Rebuilt.
Drop python2 support.
ap/man-pages-6.7-noarch-1.txz: Upgraded.
d/cmake-3.28.4-x86_64-1.txz: Upgraded.
d/llvm-18.1.2-x86_64-1.txz: Upgraded.
d/python2-2.7.18-x86_64-7.txz: Rebuilt.
Bundle the final python2 versions of pip and setuptools.
Drop the /usr/bin/python symlink.
d/python3-3.9.19-x86_64-1.txz: Upgraded.
Point the /usr/bin/python symlink at python3.9.
PEP 394 says we can do this, and in a world of ambigious shebangs, this
is probably the best of the available options.
This update also fixes security issues:
bundled libexpat was updated to 2.6.0.
zipfile is now protected from the "quoted-overlap" zipbomb.
tempfile.TemporaryDirectory cleanup no longer dereferences symlinks when
working around file system permission errors.
For more information, see:
https://pythoninsider.blogspot.com/2024/03/python-31014-3919-and-3819-is-now.html
https://www.cve.org/CVERecord?id=CVE-2023-52425
https://www.cve.org/CVERecord?id=CVE-2024-0450
https://www.cve.org/CVERecord?id=CVE-2023-6597
(* Security fix *)
d/strace-6.8-x86_64-1.txz: Upgraded.
kde/kross-interpreters-23.08.5-x86_64-2.txz: Rebuilt.
Drop python2 support.
l/libxml2-2.12.6-x86_64-2.txz: Rebuilt.
Drop python2 support.
l/mozjs115-115.9.0esr-x86_64-2.txz: Rebuilt.
Fixed installed library name. Thanks to reddog83.
Fixed slack-desc. Thanks to r1w1s1.
l/phonon-4.12.0-x86_64-1.txz: Upgraded.
l/pilot-link-0.12.5-x86_64-17.txz: Rebuilt.
Drop python2 support.
l/python2-module-collection-2.7.18-x86_64-6.txz: Removed.
Good bye!
l/python2-pycairo-1.18.2-x86_64-1.txz: Added.
We'll need this (along with pygtk and pygobject) until we get gimp3.
Well, we could build gimp without python support, but I really don't think
that's the route we want to take.
n/bind-9.18.25-x86_64-1.txz: Upgraded.
n/crda-4.15-x86_64-1.txz: Removed.
The kernel is able to load from wireless-regdb directly. Obsolete.
n/getmail-6.18.14-x86_64-1.txz: Upgraded.
n/gpgme-1.23.2-x86_64-2.txz: Rebuilt.
Drop python2 support.
n/obexftp-0.24.2-x86_64-11.txz: Rebuilt.
Drop python2 support.
n/wireless-regdb-2024.01.23-x86_64-1.txz: Added.
Wireless regulatory database, previously bundled with crda.
x/ibus-1.5.29-x86_64-2.txz: Rebuilt.
Drop python2 support.
x/libkkc-0.3.5-x86_64-4.txz: Rebuilt.
Still forcing python2 with this one, but perhaps a python3 marisa module
could work around this.
x/libkkc-data-0.2.7-x86_64-4.txz: Rebuilt.
Still forcing python2 with this one, but perhaps a python3 marisa module
could work around this.
x/xcb-proto-1.16.0-x86_64-2.txz: Rebuilt.
Drop python2 support.
x/xpyb-1.3.1-x86_64-7.txz: Removed.
Nothing uses it, and it was never updated for python3. Removed as obsolete.
20240320211030 | Patrick J Volkerding | 56 | -1122/+1056 |
2024-03-20 | Wed Mar 20 00:08:59 UTC 2024...a/sysvinit-scripts-15.1-noarch-14.txz: Rebuilt.
rc.S: fix motd matching so that it works on a fresh install.
d/scons-4.7.0-x86_64-1.txz: Upgraded.
l/adwaita-icon-theme-46.0-noarch-1.txz: Upgraded.
l/at-spi2-core-2.52.0-x86_64-1.txz: Upgraded.
l/gcr4-4.2.1-x86_64-1.txz: Added.
l/gjs-1.80.0-x86_64-1.txz: Upgraded.
l/glib-networking-2.80.0-x86_64-1.txz: Upgraded.
l/glib2-2.80.0-x86_64-1.txz: Upgraded.
l/gobject-introspection-1.80.0-x86_64-1.txz: Upgraded.
l/gsettings-desktop-schemas-46.0-x86_64-1.txz: Upgraded.
l/gtk4-4.14.1-x86_64-1.txz: Upgraded.
l/gvfs-1.54.0-x86_64-1.txz: Upgraded.
l/librsvg-2.58.0-x86_64-1.txz: Upgraded.
l/mozjs115-115.9.0esr-x86_64-1.txz: Added.
Needed by gjs-1.80.0.
l/newt-0.52.24-x86_64-2.txz: Rebuilt.
Drop python2 support.
l/pygobject3-3.48.1-x86_64-1.txz: Upgraded.
l/python-glad2-2.0.6-x86_64-1.txz: Upgraded.
l/python-hatchling-1.22.3-x86_64-1.txz: Upgraded.
l/vte-0.76.0-x86_64-1.txz: Upgraded.
l/wireplumber-0.5.0-x86_64-1.txz: Upgraded.
n/gnutls-3.8.4-x86_64-1.txz: Upgraded.
This update fixes two medium severity security issues:
libgnutls: Fix side-channel in the deterministic ECDSA.
Reported by George Pantelakis (#1516).
libgnutls: Fixed a bug where certtool crashed when verifying a certificate
chain with more than 16 certificates. Reported by William Woodruff (#1525)
and yixiangzhike (#1527).
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-28834
https://www.cve.org/CVERecord?id=CVE-2024-28835
(* Security fix *)
xap/mozilla-firefox-115.9.0esr-x86_64-1.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/115.9.0/releasenotes/
https://www.mozilla.org/security/advisories/mfsa2024-13/
https://www.cve.org/CVERecord?id=CVE-2024-0743
https://www.cve.org/CVERecord?id=CVE-2024-2605
https://www.cve.org/CVERecord?id=CVE-2024-2607
https://www.cve.org/CVERecord?id=CVE-2024-2608
https://www.cve.org/CVERecord?id=CVE-2024-2616
https://www.cve.org/CVERecord?id=CVE-2023-5388
https://www.cve.org/CVERecord?id=CVE-2024-2610
https://www.cve.org/CVERecord?id=CVE-2024-2611
https://www.cve.org/CVERecord?id=CVE-2024-2612
https://www.cve.org/CVERecord?id=CVE-2024-2614
(* Security fix *)
xap/mozilla-thunderbird-115.9.0-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/115.9.0/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2024-14/
https://www.cve.org/CVERecord?id=CVE-2024-0743
https://www.cve.org/CVERecord?id=CVE-2024-2605
https://www.cve.org/CVERecord?id=CVE-2024-2607
https://www.cve.org/CVERecord?id=CVE-2024-2608
https://www.cve.org/CVERecord?id=CVE-2024-2616
https://www.cve.org/CVERecord?id=CVE-2023-5388
https://www.cve.org/CVERecord?id=CVE-2024-2610
https://www.cve.org/CVERecord?id=CVE-2024-2611
https://www.cve.org/CVERecord?id=CVE-2024-2612
https://www.cve.org/CVERecord?id=CVE-2024-2614
(* Security fix *)
20240320000859 | Patrick J Volkerding | 34 | -212/+1709 |
2024-03-18 | Mon Mar 18 21:44:21 UTC 2024...d/perl-5.38.2-x86_64-2.txz: Rebuilt.
Added IO-Tty-1.20, needed by mosh.
Upgraded: DBD-mysql-4.051, URI-5.27, XML-Parser-2.47, IO-Socket-SSL-2.085,
and Net-SSLeay-1.94.
kde/cantor-23.08.5-x86_64-3.txz: Rebuilt.
Recompiled against libqalculate-5.0.0.
kde/plasma-workspace-5.27.11-x86_64-2.txz: Rebuilt.
Recompiled against libqalculate-5.0.0.
kde/step-23.08.5-x86_64-2.txz: Rebuilt.
Recompiled against libqalculate-5.0.0.
l/abseil-cpp-20240116.1-x86_64-1.txz: Added.
Needed for protobuf and mosh.
l/libgnt-2.14.3-x86_64-2.txz: Rebuilt.
Build with -Dpython2=false. Thanks to USUARIONUEVO.
l/libqalculate-5.0.0-x86_64-2.txz: Rebuilt.
Shared library .so-version bump.
Thanks to gmgf.
l/protobuf-26.0-x86_64-1.txz: Added.
Needed for mosh.
n/mosh-1.4.0-x86_64-1.txz: Added.
Thanks to unInstance for cueing me in on this one.
n/pinentry-1.3.0-x86_64-1.txz: Upgraded.
x/vulkan-sdk-1.3.275.0-x86_64-2.txz: Rebuilt.
Build glslang with -DENABLE_OPT=Off. Thanks to F0nix.
20240318214421 | Patrick J Volkerding | 30 | -131/+791 |
2024-03-17 | Sun Mar 17 21:11:08 UTC 2024...La fheile Padraig sona dhaoibh!
Pionta Guinness, le do thoil. :-)
kde/digikam-8.3.0-x86_64-2.txz: Rebuilt.
Fixed internal version number.
l/harfbuzz-8.3.1-x86_64-1.txz: Upgraded.
l/libappindicator-12.10.0-x86_64-4.txz: Rebuilt.
Drop the python bindings.
l/mozilla-nss-3.99-x86_64-1.txz: Upgraded.
l/python-hatchling-1.22.2-x86_64-1.txz: Upgraded.
l/python-markdown-3.6-x86_64-1.txz: Upgraded.
l/python-zipp-3.18.1-x86_64-1.txz: Upgraded.
l/qt5-5.15.13_20240314_6694e805-x86_64-1.txz: Upgraded.
20240317211108 | Patrick J Volkerding | 9 | -75/+1003 |
2024-03-16 | Fri Mar 15 22:48:36 UTC 2024...a/kernel-firmware-20240312_3b128b6-noarch-1.txz: Upgraded.
a/kernel-generic-6.6.22-x86_64-1.txz: Upgraded.
a/kernel-huge-6.6.22-x86_64-1.txz: Upgraded.
a/kernel-modules-6.6.22-x86_64-1.txz: Upgraded.
d/kernel-headers-6.6.22-x86-1.txz: Upgraded.
k/kernel-source-6.6.22-noarch-1.txz: Upgraded.
+MITIGATION_RFDS y
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240315224836 | Patrick J Volkerding | 14 | -90/+126 |
2024-03-15 | Fri Mar 15 18:55:58 UTC 2024...d/mercurial-6.7-x86_64-1.txz: Upgraded.
kde/digikam-8.3.0-x86_64-1.txz: Upgraded.
l/libxml2-2.12.6-x86_64-1.txz: Upgraded.
n/php-8.3.4-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.php.net/ChangeLog-8.php#8.3.4
n/proftpd-1.3.8b-x86_64-3.txz: Rebuilt.
Added mod_ldap. Thanks to Thom1b.
20240315185558 | Patrick J Volkerding | 15 | -81/+139 |
2024-03-14 | Thu Mar 14 20:01:17 UTC 2024...a/cryptsetup-2.7.1-x86_64-1.txz: Upgraded.
a/elogind-252.23-x86_64-2.txz: Rebuilt.
Install /etc/pam.d/elogind-user as .new. Thanks to Markus Wiesner.
a/kmod-32-x86_64-1.txz: Upgraded.
a/tcsh-6.24.11-x86_64-1.txz: Upgraded.
ap/a2ps-4.15.6-x86_64-1.txz: Upgraded.
d/vala-0.56.16-x86_64-1.txz: Upgraded.
l/avahi-20240306_709e60f-x86_64-1.txz: Upgraded.
Don't reload dbus from the installer.
x/mesa-24.0.3-x86_64-1.txz: Upgraded.
xap/xlockmore-5.76-x86_64-1.txz: Upgraded.
xfce/xfce4-screensaver-4.18.3-x86_64-2.txz: Rebuilt.
Install /etc/pam.d/xfce4-screensaver as .new. Thanks to Markus Wiesner.
20240314200117 | Patrick J Volkerding | 21 | -564/+185 |
2024-03-13 | Wed Mar 13 19:46:48 UTC 2024...a/etc-15.1-x86_64-9.txz: Rebuilt.
Added proftpd user (97) and proftpd group (97).
Added nm-openvpn user (320) and nm-openvpn group (320).
Added openvpn user (443) and openvpn group (443).
Added overflowuid user (65534) and overflowgid group (65534).
Thanks to opty for encouraging us to think about nobody.
d/meson-1.4.0-x86_64-1.txz: Upgraded.
d/python-setuptools-69.2.0-x86_64-1.txz: Upgraded.
l/expat-2.6.2-x86_64-1.txz: Upgraded.
Prevent billion laughs attacks with isolated use of external parsers.
For more information, see:
https://github.com/libexpat/libexpat/commit/1d50b80cf31de87750103656f6eb693746854aa8
https://www.cve.org/CVERecord?id=CVE-2024-28757
(* Security fix *)
l/pipewire-1.0.4-x86_64-1.txz: Upgraded.
l/python-zipp-3.18.0-x86_64-1.txz: Upgraded.
n/openvpn-2.6.9-x86_64-2.txz: Rebuilt.
Run as openvpn:openvpn. Thanks to rkelsen.
n/proftpd-1.3.8b-x86_64-2.txz: Rebuilt.
Run as proftpd:proftpd.
x/libva-2.21.0-x86_64-1.txz: Upgraded.
x/libva-utils-2.21.0-x86_64-1.txz: Upgraded.
xap/NetworkManager-openvpn-1.10.2-x86_64-2.txz: Rebuilt.
Run as nm-openvpn:nm-openvpn. Thanks to Markus Wiesner.
20240313194648 | Patrick J Volkerding | 18 | -130/+184 |
2024-03-12 | Tue Mar 12 19:49:57 UTC 2024...a/elogind-252.23-x86_64-1.txz: Upgraded.
ap/sqlite-3.45.2-x86_64-1.txz: Upgraded.
l/jasper-4.2.2-x86_64-1.txz: Upgraded.
l/libpaper-2.2.5-x86_64-1.txz: Upgraded.
l/netpbm-11.05.03-x86_64-1.txz: Upgraded.
l/python-wheel-0.43.0-x86_64-1.txz: Upgraded.
n/iproute2-6.8.0-x86_64-1.txz: Upgraded.
xap/sane-1.3.0-x86_64-1.txz: Upgraded.
20240312194957 | Patrick J Volkerding | 11 | -221/+311 |
2024-03-11 | Mon Mar 11 18:29:55 UTC 2024...a/dialog-1.3_20240307-x86_64-1.txz: Upgraded.
l/libpaper-2.2.3-x86_64-1.txz: Upgraded.
l/libqalculate-5.0.0-x86_64-1.txz: Upgraded.
l/pyparsing-3.1.2-x86_64-1.txz: Upgraded.
l/python-packaging-24.0-x86_64-1.txz: Upgraded.
n/openssh-9.7p1-x86_64-1.txz: Upgraded.
Future deprecation notice
OpenSSH plans to remove support for the DSA signature algorithm in
early 2025 and compile-time disable it later this year.
n/wget-1.24.5-x86_64-1.txz: Upgraded.
x/iceauth-1.0.10-x86_64-1.txz: Upgraded.
x/libXaw-1.0.16-x86_64-1.txz: Upgraded.
xap/xaos-4.3.2-x86_64-1.txz: Upgraded.
20240311182955 | Patrick J Volkerding | 9 | -109/+172 |
2024-03-09 | Sat Mar 9 21:56:02 UTC 2024...a/aaa_libraries-15.1-x86_64-28.txz: Rebuilt.
Upgraded: libelf-0.191.so, liblzma.so.5.6.1, libexpat.so.1.9.1.
a/shadow-4.15.0-x86_64-1.txz: Upgraded.
a/xz-5.6.1-x86_64-1.txz: Upgraded.
d/llvm-18.1.1-x86_64-1.txz: Upgraded.
l/libclc-18.1.1-x86_64-1.txz: Upgraded.
l/xapian-core-1.4.25-x86_64-1.txz: Upgraded.
n/mutt-2.2.13-x86_64-1.txz: Upgraded.
20240309215602 | Patrick J Volkerding | 11 | -150/+162 |
2024-03-08 | Fri Mar 8 19:20:11 UTC 2024...n/bluez-5.73-x86_64-1.txz: Upgraded.
xap/geeqie-2.3-x86_64-1.txz: Upgraded.
xfce/libxfce4ui-4.18.6-x86_64-1.txz: Upgraded.
xfce/xfce4-weather-plugin-0.11.2-x86_64-1.txz: Upgraded.
20240308192011 | Patrick J Volkerding | 7 | -114/+80 |
2024-03-07 | Thu Mar 7 20:40:08 UTC 2024...ap/ghostscript-10.03.0-x86_64-1.txz: Upgraded.
This update addresses a security issue:
A vulnerability was identified in the way Ghostscript/GhostPDL called
tesseract for the OCR devices, which could allow arbitrary code execution.
Thanks to J_W for the heads-up.
(* Security fix *)
ap/lxc-4.0.12-x86_64-3.txz: Rebuilt.
lxc-slackware.in: include gnupg2 (not gnupg) for slackpkg.
ap/slackpkg-15.0.10-noarch-3.txz: Rebuilt.
core-functions.sh: use gpg2, not gpg.
d/Cython-3.0.9-x86_64-1.txz: Upgraded.
d/git-2.44.0-x86_64-2.txz: Rebuilt.
Include git-subtree. Thanks to gwhl.
d/llvm-18.1.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
kde/kdevelop-23.08.5-x86_64-2.txz: Rebuilt.
Recompiled against llvm-18.1.0.
l/openexr-3.2.3-x86_64-1.txz: Upgraded.
l/python-importlib_metadata-7.0.2-x86_64-1.txz: Upgraded.
l/python-trove-classifiers-2024.3.3-x86_64-1.txz: Upgraded.
l/qt5-5.15.12_20240228_6609503f-x86_64-1.txz: Upgraded.
Compiled against llvm-18.1.0.
l/qt6-6.6.2_20240210_15b7e743-x86_64-3.txz: Rebuilt.
Recompiled against llvm-18.1.0.
l/spirv-llvm-translator-18.1.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
n/gnupg2-2.4.5-x86_64-1.txz: Upgraded.
n/libassuan-2.5.7-x86_64-1.txz: Upgraded.
n/postfix-3.9.0-x86_64-1.txz: Upgraded.
x/mesa-24.0.2-x86_64-2.txz: Rebuilt.
Recompiled against llvm-18.1.0 and spirv-llvm-translator-18.1.0.
isolinux/initrd.img: Rebuilt.
Fixed kernel version. Thanks to chrisVV.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Fixed kernel version. Thanks to chrisVV.
20240307204008 | Patrick J Volkerding | 23 | -474/+320 |
2024-03-06 | Wed Mar 6 21:30:27 UTC 2024...a/etc-15.1-x86_64-8.txz: Rebuilt.
Added UID 54 and GID 54 for nslcd. Thanks to Thom1b.
a/hwdata-0.380-noarch-1.txz: Upgraded.
a/kernel-firmware-20240305_d13f88b-noarch-1.txz: Upgraded.
a/kernel-generic-6.6.21-x86_64-1.txz: Upgraded.
a/kernel-huge-6.6.21-x86_64-1.txz: Upgraded.
a/kernel-modules-6.6.21-x86_64-1.txz: Upgraded.
d/kernel-headers-6.6.21-x86-1.txz: Upgraded.
k/kernel-source-6.6.21-noarch-1.txz: Upgraded.
kde/bluedevil-5.27.11-x86_64-1.txz: Upgraded.
kde/breeze-5.27.11-x86_64-1.txz: Upgraded.
kde/breeze-grub-5.27.11-x86_64-1.txz: Upgraded.
kde/breeze-gtk-5.27.11-x86_64-1.txz: Upgraded.
kde/drkonqi-5.27.11-x86_64-1.txz: Upgraded.
kde/kactivitymanagerd-5.27.11-x86_64-1.txz: Upgraded.
kde/kde-cli-tools-5.27.11-x86_64-1.txz: Upgraded.
kde/kde-gtk-config-5.27.11-x86_64-1.txz: Upgraded.
kde/kdecoration-5.27.11-x86_64-1.txz: Upgraded.
kde/kdeplasma-addons-5.27.11-x86_64-1.txz: Upgraded.
kde/kgamma5-5.27.11-x86_64-1.txz: Upgraded.
kde/khotkeys-5.27.11-x86_64-1.txz: Upgraded.
kde/kinfocenter-5.27.11-x86_64-1.txz: Upgraded.
kde/kmenuedit-5.27.11-x86_64-1.txz: Upgraded.
kde/kpipewire-5.27.11-x86_64-1.txz: Upgraded.
kde/kscreen-5.27.11-x86_64-1.txz: Upgraded.
kde/kscreenlocker-5.27.11-x86_64-1.txz: Upgraded.
kde/ksshaskpass-5.27.11-x86_64-1.txz: Upgraded.
kde/ksystemstats-5.27.11-x86_64-1.txz: Upgraded.
kde/kwallet-pam-5.27.11-x86_64-1.txz: Upgraded.
kde/kwayland-integration-5.27.11-x86_64-1.txz: Upgraded.
kde/kwin-5.27.11-x86_64-1.txz: Upgraded.
kde/kwrited-5.27.11-x86_64-1.txz: Upgraded.
kde/layer-shell-qt-5.27.11-x86_64-1.txz: Upgraded.
kde/libkscreen-5.27.11-x86_64-1.txz: Upgraded.
kde/libksysguard-5.27.11-x86_64-1.txz: Upgraded.
kde/milou-5.27.11-x86_64-1.txz: Upgraded.
kde/oxygen-5.27.11-x86_64-1.txz: Upgraded.
kde/oxygen-sounds-5.27.11-x86_64-1.txz: Upgraded.
kde/plasma-browser-integration-5.27.11-x86_64-1.txz: Upgraded.
kde/plasma-desktop-5.27.11-x86_64-1.txz: Upgraded.
kde/plasma-disks-5.27.11-x86_64-1.txz: Upgraded.
kde/plasma-firewall-5.27.11-x86_64-1.txz: Upgraded.
kde/plasma-integration-5.27.11-x86_64-1.txz: Upgraded.
kde/plasma-nm-5.27.11-x86_64-1.txz: Upgraded.
kde/plasma-pa-5.27.11-x86_64-1.txz: Upgraded.
kde/plasma-sdk-5.27.11-x86_64-1.txz: Upgraded.
kde/plasma-systemmonitor-5.27.11-x86_64-1.txz: Upgraded.
kde/plasma-vault-5.27.11-x86_64-1.txz: Upgraded.
kde/plasma-workspace-5.27.11-x86_64-1.txz: Upgraded.
kde/plasma-workspace-wallpapers-5.27.11-noarch-1.txz: Upgraded.
kde/polkit-kde-agent-1-5.27.11-x86_64-1.txz: Upgraded.
kde/powerdevil-5.27.11-x86_64-1.txz: Upgraded.
kde/qqc2-breeze-style-5.27.11-x86_64-1.txz: Upgraded.
kde/sddm-kcm-5.27.11-x86_64-1.txz: Upgraded.
kde/systemsettings-5.27.11-x86_64-1.txz: Upgraded.
kde/xdg-desktop-portal-kde-5.27.11-x86_64-1.txz: Upgraded.
l/SDL2-2.30.1-x86_64-1.txz: Upgraded.
l/libplacebo-6.338.2-x86_64-2.txz: Rebuilt.
Recompiled against vulkan-sdk-1.3.275.0.
l/pango-1.52.1-x86_64-1.txz: Upgraded.
n/gnupg-1.4.23-x86_64-6.txz: Rebuilt.
Renamed binaries and manpages to end in 1, and renamed internally to gnupg1.
Thanks to Lockywolf.
n/gnupg2-2.4.4-x86_64-2.txz: Rebuilt.
Make a gpg -> gpg2 symlink if it doesn't exist. Thanks to Lockywolf.
n/nss-pam-ldapd-0.9.12-x86_64-3.txz: Rebuilt.
rc.nss-pam-ldapd: chown /run/nslcd to the new nslcd user/group.
Thanks to Thom1b.
x/vulkan-sdk-1.3.275.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240306213027 | Patrick J Volkerding | 33 | -485/+752 |
2024-03-05 | Tue Mar 5 21:16:50 UTC 2024...l/gst-plugins-bad-free-1.24.0-x86_64-1.txz: Upgraded.
l/gst-plugins-base-1.24.0-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.24.0-x86_64-1.txz: Upgraded.
l/gst-plugins-libav-1.24.0-x86_64-1.txz: Upgraded.
l/gstreamer-1.24.0-x86_64-1.txz: Upgraded.
l/libnice-0.1.22-x86_64-1.txz: Upgraded.
l/opus-1.5.1-x86_64-1.txz: Upgraded.
l/pycairo-1.26.0-x86_64-2.txz: Rebuilt.
Build with meson so that the pkgconfig file is included. Thanks to jloco.
l/sof-firmware-2023.12.1-noarch-1.txz: Upgraded.
n/postfix-3.8.6-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.postfix.org/announcements/postfix-3.8.6.html
xap/mozilla-thunderbird-115.8.1-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/115.8.1/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2024-11/
https://www.cve.org/CVERecord?id=CVE-2024-1936
(* Security fix *)
xap/x3270-4.3ga6-x86_64-1.txz: Upgraded.
xfce/xfce4-screensaver-4.18.3-x86_64-1.txz: Upgraded.
20240305211650 | Patrick J Volkerding | 9 | -124/+212 |
2024-03-04 | Mon Mar 4 20:41:42 UTC 2024...d/vala-0.56.15-x86_64-1.txz: Upgraded.
e/emacspeak-59.0-x86_64-1.txz: Upgraded.
kde/calligra-3.2.1-x86_64-37.txz: Rebuilt.
Recompiled against poppler-24.03.0.
kde/cantor-23.08.5-x86_64-2.txz: Rebuilt.
Recompiled against poppler-24.03.0.
kde/kfilemetadata-5.115.0-x86_64-2.txz: Rebuilt.
Recompiled against poppler-24.03.0.
kde/kile-2.9.93-x86_64-31.txz: Rebuilt.
Recompiled against poppler-24.03.0.
kde/kitinerary-23.08.5-x86_64-2.txz: Rebuilt.
Recompiled against poppler-24.03.0.
kde/krita-5.2.2-x86_64-5.txz: Rebuilt.
Recompiled against poppler-24.03.0.
kde/okular-23.08.5-x86_64-2.txz: Rebuilt.
Recompiled against poppler-24.03.0.
l/poppler-24.03.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
Enabled building libpoppler-qt6.
x/xev-1.2.6-x86_64-1.txz: Upgraded.
x/xf86-input-wacom-1.2.1-x86_64-1.txz: Upgraded.
x/xfontsel-1.1.1-x86_64-1.txz: Upgraded.
x/xmessage-1.0.7-x86_64-1.txz: Upgraded.
x/xmh-1.0.5-x86_64-1.txz: Upgraded.
x/xpr-1.2.0-x86_64-1.txz: Upgraded.
x/xrefresh-1.1.0-x86_64-1.txz: Upgraded.
x/xsm-1.0.6-x86_64-1.txz: Upgraded.
20240304204142 | Patrick J Volkerding | 24 | -159/+249 |
2024-03-03 | Sun Mar 3 20:50:24 UTC 2024...d/gdb-14.2-x86_64-1.txz: Upgraded.
l/python-PyYAML-6.0.1-x86_64-2.txz: Rebuilt.
Fixed build with Cython >= 3. Thanks to Stuart Winter.
l/qt6-6.6.2_20240210_15b7e743-x86_64-2.txz: Rebuilt.
Fixed the sdpscanner6 symlink by moving INSTALL_LIBEXECDIR to the expected
location.
x/editres-1.0.9-x86_64-1.txz: Upgraded.
x/encodings-1.1.0-noarch-1.txz: Upgraded.
x/gccmakedep-1.0.4-noarch-1.txz: Upgraded.
x/libXaw3d-1.6.6-x86_64-1.txz: Upgraded.
x/libXcursor-1.2.2-x86_64-1.txz: Upgraded.
x/libXdmcp-1.1.5-x86_64-1.txz: Upgraded.
x/libfontenc-1.1.8-x86_64-1.txz: Upgraded.
x/libxcb-1.16.1-x86_64-1.txz: Upgraded.
x/listres-1.0.6-x86_64-1.txz: Upgraded.
x/mkfontscale-1.2.3-x86_64-1.txz: Upgraded.
x/xauth-1.1.3-x86_64-1.txz: Upgraded.
x/xlsfonts-1.0.8-x86_64-1.txz: Upgraded.
20240303205024 | Patrick J Volkerding | 9 | -110/+213 |
2024-03-02 | Sat Mar 2 20:40:46 UTC 2024...a/kernel-generic-6.6.20-x86_64-1.txz: Upgraded.
a/kernel-huge-6.6.20-x86_64-1.txz: Upgraded.
a/kernel-modules-6.6.20-x86_64-1.txz: Upgraded.
a/lzip-1.24.1-x86_64-1.txz: Upgraded.
a/shadow-4.14.6-x86_64-1.txz: Upgraded.
d/kernel-headers-6.6.20-x86-1.txz: Upgraded.
k/kernel-source-6.6.20-noarch-1.txz: Upgraded.
l/elfutils-0.191-x86_64-1.txz: Upgraded.
l/libunibreak-6.1-x86_64-1.txz: Upgraded.
l/python-build-1.1.1-x86_64-1.txz: Upgraded.
l/python-psutil-5.9.8-x86_64-1.txz: Upgraded.
l/python-setuptools_scm-8.0.4-x86_64-1.txz: Upgraded.
l/python-trove-classifiers-2024.2.23-x86_64-1.txz: Upgraded.
l/sip-6.8.3-x86_64-1.txz: Upgraded.
x/pyxdg-0.28-x86_64-1.txz: Upgraded.
xfce/xfce4-taskmanager-1.5.7-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240302204046 | Patrick J Volkerding | 20 | -165/+219 |
2024-03-02 | Fri Mar 1 22:13:28 UTC 2024...a/kernel-firmware-20240229_5cd471e-noarch-1.txz: Upgraded.
a/kernel-generic-6.6.19-x86_64-1.txz: Upgraded.
a/kernel-huge-6.6.19-x86_64-1.txz: Upgraded.
a/kernel-modules-6.6.19-x86_64-1.txz: Upgraded.
d/Cython-3.0.8-x86_64-1.txz: Upgraded.
d/kernel-headers-6.6.19-x86-1.txz: Upgraded.
d/python-pip-24.0-x86_64-1.txz: Upgraded.
d/python-setuptools-69.1.1-x86_64-1.txz: Upgraded.
k/kernel-source-6.6.19-noarch-1.txz: Upgraded.
kde/fcitx5-configtool-5.1.4-x86_64-1.txz: Upgraded.
For now, continuing to build this against qt5.
l/M2Crypto-0.41.0-x86_64-1.txz: Upgraded.
l/Mako-1.3.2-x86_64-1.txz: Upgraded.
l/dbus-python-1.3.2-x86_64-1.txz: Upgraded.
l/expat-2.6.1-x86_64-1.txz: Upgraded.
This is a bugfix release.
l/glib-networking-2.78.1-x86_64-1.txz: Upgraded.
l/pycairo-1.26.0-x86_64-1.txz: Upgraded.
l/pycurl-7.45.3-x86_64-1.txz: Upgraded.
l/pygobject3-3.46.0-x86_64-1.txz: Upgraded.
l/pyparsing-3.1.1-x86_64-1.txz: Upgraded.
l/python-Jinja2-3.1.3-x86_64-1.txz: Upgraded.
l/python-MarkupSafe-2.1.5-x86_64-1.txz: Upgraded.
l/python-PyYAML-6.0.1-x86_64-1.txz: Upgraded.
l/python-alabaster-0.7.16-x86_64-1.txz: Upgraded.
l/python-babel-2.14.0-x86_64-1.txz: Upgraded.
l/python-build-1.0.3-x86_64-1.txz: Upgraded.
l/python-certifi-2024.2.2-x86_64-1.txz: Upgraded.
l/python-cffi-1.16.0-x86_64-1.txz: Upgraded.
l/python-chardet-5.2.0-x86_64-1.txz: Upgraded.
l/python-charset-normalizer-3.3.2-x86_64-1.txz: Upgraded.
l/python-distro-1.9.0-x86_64-1.txz: Upgraded.
l/python-dnspython-2.6.1-x86_64-1.txz: Upgraded.
l/python-doxypypy-0.8.8.7-x86_64-1.txz: Upgraded.
l/python-doxyqml-0.5.3-x86_64-1.txz: Upgraded.
l/python-future-1.0.0-x86_64-1.txz: Upgraded.
l/python-glad2-2.0.5-x86_64-1.txz: Upgraded.
l/python-idna-3.6-x86_64-1.txz: Upgraded.
l/python-imagesize-1.4.1-x86_64-1.txz: Upgraded.
l/python-importlib_metadata-7.0.1-x86_64-1.txz: Upgraded.
l/python-lxml-5.1.0-x86_64-1.txz: Upgraded.
l/python-markdown-3.5.2-x86_64-1.txz: Upgraded.
l/python-packaging-23.2-x86_64-1.txz: Upgraded.
l/python-pbr-6.0.0-x86_64-1.txz: Upgraded.
l/python-pillow-10.2.0-x86_64-1.txz: Upgraded.
l/python-pysol_cards-0.16.0-x86_64-1.txz: Upgraded.
l/python-pytz-2024.1-x86_64-1.txz: Upgraded.
l/python-random2-1.0.2-x86_64-1.txz: Upgraded.
l/python-setuptools_scm-7.1.0-x86_64-1.txz: Upgraded.
l/python-tomli-2.0.1-x86_64-1.txz: Upgraded.
l/python-typing_extensions-4.10.0-x86_64-1.txz: Added.
This is a temporary addition, needed by python-setuptools_scm until we get
a newer version of both that and Python.
l/python-wheel-0.42.0-x86_64-1.txz: Upgraded.
l/python-zipp-3.17.0-x86_64-1.txz: Upgraded.
l/wavpack-5.7.0-x86_64-1.txz: Upgraded.
n/nghttp2-1.60.0-x86_64-1.txz: Upgraded.
tcl/tcl-8.6.14-x86_64-1.txz: Upgraded.
tcl/tk-8.6.14-x86_64-1.txz: Upgraded.
x/fcitx5-5.1.8-x86_64-1.txz: Upgraded.
x/fcitx5-chinese-addons-5.1.4-x86_64-1.txz: Upgraded.
For now, continuing to build this against qt5.
x/fcitx5-gtk-5.1.2-x86_64-1.txz: Upgraded.
x/fcitx5-hangul-5.1.2-x86_64-1.txz: Upgraded.
x/fcitx5-kkc-5.1.2-x86_64-1.txz: Upgraded.
For now, continuing to build this against qt5.
x/fcitx5-qt-5.1.5-x86_64-1.txz: Upgraded.
This is compiled against both qt5 and qt6.
x/fcitx5-table-extra-5.1.4-x86_64-1.txz: Upgraded.
x/fcitx5-table-other-5.1.1-x86_64-1.txz: Upgraded.
x/fcitx5-unikey-5.1.3-x86_64-1.txz: Upgraded.
For now, continuing to build this against qt5.
x/libime-1.1.6-x86_64-1.txz: Upgraded.
x/xcb-imdkit-1.0.7-x86_64-1.txz: Upgraded.
xfce/xfce4-clipman-plugin-1.6.6-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240301221328 | Patrick J Volkerding | 70 | -646/+938 |
2024-02-29 | Thu Feb 29 19:11:19 UTC 2024...d/pahole-1.26-x86_64-1.txz: Upgraded.
l/Imath-3.1.11-x86_64-1.txz: Upgraded.
l/openjpeg-2.5.2-x86_64-1.txz: Upgraded.
x/ibus-anthy-1.5.16-x86_64-1.txz: Upgraded.
x/mesa-24.0.2-x86_64-1.txz: Upgraded.
x/pixman-0.43.4-x86_64-1.txz: Upgraded.
xfce/xfce4-panel-4.18.6-x86_64-1.txz: Upgraded.
xfce/xfce4-terminal-1.1.3-x86_64-1.txz: Upgraded.
20240229191119 | Patrick J Volkerding | 8 | -138/+101 |
2024-02-28 | Wed Feb 28 20:43:38 UTC 2024...a/aaa_libraries-15.1-x86_64-27.txz: Rebuilt.
Upgraded: liblzma.so.5.6.0, libcares.so.2.12.0, libpng16.so.16.43.0,
libunistring.so.5.1.0.
20240228204338 | Patrick J Volkerding | 5 | -32/+48 |
2024-02-28 | Wed Feb 28 18:36:48 UTC 2024...d/parallel-20240222-noarch-1.txz: Upgraded.
kde/krita-5.2.2-x86_64-4.txz: Rebuilt.
Recompiled against libunibreak-6.0.
l/accountsservice-23.13.9-x86_64-1.txz: Upgraded.
Thanks to reddog83.
l/libass-0.17.1-x86_64-2.txz: Rebuilt.
Recompiled against libunibreak-6.0.
l/libunibreak-6.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/orc-0.4.38-x86_64-1.txz: Upgraded.
l/python-requests-2.31.0-x86_64-1.txz: Upgraded.
l/python-urllib3-2.2.1-x86_64-1.txz: Upgraded.
l/qt6-6.6.2_20240210_15b7e743-x86_64-1.txz: Added.
n/wpa_supplicant-2.10-x86_64-3.txz: Rebuilt.
Patched the implementation of PEAP in wpa_supplicant to prevent an
authentication bypass. For a successful attack, wpa_supplicant must be
configured to not verify the network's TLS certificate during Phase 1
authentication, and an eap_peap_decrypt vulnerability can then be abused
to skip Phase 2 authentication. The attack vector is sending an EAP-TLV
Success packet instead of starting Phase 2. This allows an adversary to
impersonate Enterprise Wi-Fi networks.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2023-52160
(* Security fix *)
xap/gparted-1.6.0-x86_64-1.txz: Upgraded.
20240228183648 | Patrick J Volkerding | 28 | -2882/+3751 |
2024-02-26 | Mon Feb 26 20:09:43 UTC 2024...a/mdadm-4.3-x86_64-1.txz: Upgraded.
a/pciutils-3.11.1-x86_64-1.txz: Upgraded.
d/swig-4.2.1-x86_64-1.txz: Upgraded.
l/LibRaw-0.21.2-x86_64-2.txz: Rebuilt.
Include the example programs (which are actually useful). Thanks to giomat.
l/imagemagick-7.1.1_29-x86_64-1.txz: Upgraded.
l/openjpeg-2.5.1-x86_64-1.txz: Upgraded.
Fixed a heap-based buffer overflow in openjpeg in color.c:379:42 in
sycc420_to_rgb when decompressing a crafted .j2k file. An attacker could use
this to execute arbitrary code with the permissions of the application
compiled against openjpeg.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2021-3575
(* Security fix *)
l/pango-1.52.0-x86_64-1.txz: Upgraded.
x/sddm-0.21.0-x86_64-1.txz: Upgraded.
xap/x3270-4.3ga5-x86_64-1.txz: Upgraded.
20240226200943 | Patrick J Volkerding | 7 | -82/+128 |
2024-02-25 | Sun Feb 25 19:16:52 UTC 2024...a/etc-15.1-x86_64-7.txz: Rebuilt.
Don't leave {group,gshadow,passwd,shadow}.new laying around.
We'd left these as a reference in case new default entries were added so that
the admin could take a look at them and merge the new entries into the
existing files. But we've been merging them over automatically for quite some
time. The files contain no unique information and are sort of a footbullet.
ap/qpdf-11.9.0-x86_64-1.txz: Upgraded.
ap/vim-9.1.0136-x86_64-1.txz: Upgraded.
n/whois-5.5.21-x86_64-1.txz: Upgraded.
Updated the .cv and .sd TLD servers.
Removed 4 new gTLDs which are no longer active.
xap/vim-gvim-9.1.0136-x86_64-1.txz: Upgraded.
xfce/xfce4-terminal-1.1.2-x86_64-2.txz: Rebuilt.
[PATCH] screen: Fix wrong assert.
Thanks to J_W.
[PATCH] prefs-dialog: Fix wrong assert.
Thanks to mario.
20240225191652 | Patrick J Volkerding | 8 | -57/+176 |
2024-02-24 | Sat Feb 24 19:50:05 UTC 2024...a/pkgtools-15.1-noarch-10.txz: Rebuilt.
setup.services: typo/syntax error fix. Thanks to gramaxo and pghvlaans.
a/xz-5.6.0-x86_64-1.txz: Upgraded.
ap/man-pages-6.06-noarch-2.txz: Rebuilt.
Restored the previously included posix pages, and added the posix "sh" page
since it's more correct than getting the ksh page for "sh".
Thanks to pghvlaans.
d/git-2.44.0-x86_64-1.txz: Upgraded.
kde/kdnssd-5.115.0-x86_64-2.txz: Rebuilt.
Recompiled to add Zeroconf support. (This one fooled me because it doesn't
actually link to any avahi libraries.)
Thanks to audriusk.
kde/kid3-3.9.5-x86_64-1.txz: Upgraded.
l/libpng-1.6.43-x86_64-1.txz: Upgraded.
l/libunistring-1.2-x86_64-1.txz: Upgraded.
n/libksba-1.6.6-x86_64-1.txz: Upgraded.
n/npth-1.7-x86_64-1.txz: Upgraded.
t/texlive-2023.230322-x86_64-7.txz: Rebuilt.
Use the bundled zlib to make the bundled lua happy. Thanks to sombragris.
20240224195005 | Patrick J Volkerding | 11 | -105/+156 |
2024-02-23 | Fri Feb 23 20:37:29 UTC 2024...a/dcron-4.5-x86_64-17.txz: Rebuilt.
run-parts.8: document skiping *.orig files. Thanks to metaed.
a/etc-15.1-x86_64-6.txz: Rebuilt.
Add support for nss-mdns to /etc/nsswitch.conf.
a/kernel-firmware-20240220_97b693d-noarch-1.txz: Upgraded.
a/kernel-generic-6.6.18-x86_64-1.txz: Upgraded.
a/kernel-huge-6.6.18-x86_64-1.txz: Upgraded.
a/kernel-modules-6.6.18-x86_64-1.txz: Upgraded.
ap/cups-filters-1.28.17-x86_64-5.txz: Rebuilt.
Don't specify --with-browseremoteprotocols=cups in order to get the default
values of cups and dnssd, which should enable discovering shared printers on
the network. We'll refrain from sharing your printer -- you'll need to change
that setting yourself. ;-)
Thanks to TurboBlaze.
ap/hplip-3.23.12-x86_64-2.txz: Rebuilt.
The new --disable-imageProcessor-build option doesn't do squat, so we'll hit
it with the good old patch again.
Thanks to Petri Kaukasoina and Stuart Winter.
d/kernel-headers-6.6.18-x86-1.txz: Upgraded.
k/kernel-source-6.6.18-noarch-1.txz: Upgraded.
l/gvfs-1.52.2-x86_64-2.txz: Rebuilt.
Added -Ddnssd=true option and recompiled against avahi.
l/libsecret-0.21.4-x86_64-1.txz: Upgraded.
n/c-ares-1.27.0-x86_64-1.txz: Upgraded.
n/libgpg-error-1.48-x86_64-1.txz: Upgraded.
n/nss-mdns-0.15.1-x86_64-1.txz: Added.
Needed for .local lookups. Thanks to Lockywolf.
xap/pidgin-2.14.13-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240223203729 | Patrick J Volkerding | 33 | -224/+463 |
2024-02-23 | Fri Feb 23 02:27:35 UTC 2024...a/aaa_libraries-15.1-x86_64-26.txz: Rebuilt.
Upgraded: libacl.so.1.1.2302, libattr.so.1.1.2502, liblzma.so.5.4.6,
libpcre2-8.so.0.12.0, libz.so.1.3.1, libcares.so.2.11.0,
libexpat.so.1.9.0, libffi.so.8.1.4, libglib-2.0.so.0.7800.4,
libgmodule-2.0.so.0.7800.4, libgobject-2.0.so.0.7800.4,
libgthread-2.0.so.0.7800.4, libidn.so.12.6.5, libidn2.so.0.4.0,
libpng16.so.16.41.0, libpsl.so.5.3.5, libtdb.so.1.4.10, libusb-1.0.so.0.4.0.
a/etc-15.1-x86_64-5.txz: Rebuilt.
Added UID 214 and GID 214 for avahi.
a/gettext-0.22.5-x86_64-1.txz: Upgraded.
a/pkgtools-15.1-noarch-9.txz: Rebuilt.
setup.services: support rc.avahidaemon and rc.avahidnsconfd.
a/sysvinit-scripts-15.1-noarch-13.txz: Rebuilt.
rc.M: start (if executable) rc.avahidaemon and rc.avahidnsconfd.
ap/cups-2.4.7-x86_64-2.txz: Rebuilt.
Recompiled against avahi.
ap/cups-filters-1.28.17-x86_64-4.txz: Rebuilt.
Recompiled against avahi.
ap/hplip-3.23.12-x86_64-1.txz: Upgraded.
Compiled against avahi.
ap/xmltoman-0.6-x86_64-1.txz: Added.
This is needed to generate manpages for avahi.
d/distcc-3.4-x86_64-4.txz: Rebuilt.
Recompiled against avahi.
d/gettext-tools-0.22.5-x86_64-1.txz: Upgraded.
l/avahi-20240220_dffd549-x86_64-1.txz: Added.
It was either this, or drop (or fork) hplip. We'll enjoy it in the long run.
Thanks to David Somero for the original build script, and to Robby Workman
for years of maintenance.
Signed-off-by: volkerdi
Acked-by: alienBOB
l/libdaemon-0.14-x86_64-1.txz: Added.
This is needed by avahi.
l/pipewire-1.0.3-x86_64-5.txz: Rebuilt.
Recompiled against avahi.
l/pulseaudio-17.0-x86_64-3.txz: Rebuilt.
Recompiled against avahi.
n/NetworkManager-1.46.0-x86_64-1.txz: Upgraded.
n/netatalk-3.1.18-x86_64-2.txz: Rebuilt.
Recompiled against avahi.
n/samba-4.19.5-x86_64-2.txz: Rebuilt.
Recompiled against avahi.
xap/pidgin-2.14.12-x86_64-3.txz: Rebuilt.
Recompiled against avahi.
xap/sane-1.2.1-x86_64-3.txz: Rebuilt.
Recompiled against avahi.
extra/bash-completion/bash-completion-2.12.0-noarch-1.txz: Upgraded.
20240223022735 | Patrick J Volkerding | 50 | -523/+1111 |
2024-02-21 | Wed Feb 21 20:00:08 UTC 2024...a/dcron-4.5-x86_64-16.txz: Rebuilt.
run-parts: skip *.orig files. Thanks to metaed.
l/libplist-2.4.0-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-115.8.0-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/115.8.0/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2024-07/
https://www.cve.org/CVERecord?id=CVE-2024-1546
https://www.cve.org/CVERecord?id=CVE-2024-1547
https://www.cve.org/CVERecord?id=CVE-2024-1548
https://www.cve.org/CVERecord?id=CVE-2024-1549
https://www.cve.org/CVERecord?id=CVE-2024-1550
https://www.cve.org/CVERecord?id=CVE-2024-1551
https://www.cve.org/CVERecord?id=CVE-2024-1552
https://www.cve.org/CVERecord?id=CVE-2024-1553
(* Security fix *)
20240221200008 | Patrick J Volkerding | 8 | -46/+95 |
2024-02-20 | Tue Feb 20 21:08:27 UTC 2024...xap/rxvt-unicode-9.31-x86_64-2.txz: Rebuilt.
Patched to fix input buffer garbage when starting tmux. Thanks to Youjie.
20240220210827 | Patrick J Volkerding | 5 | -27/+78 |
2024-02-20 | Tue Feb 20 18:41:59 UTC 2024...a/gptfdisk-1.0.10-x86_64-1.txz: Upgraded.
l/cxxopts-3.2.1-x86_64-1.txz: Upgraded.
l/jasper-4.2.1-x86_64-1.txz: Upgraded.
x/xterm-390-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-115.8.0esr-x86_64-1.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/115.8.0/releasenotes/
https://www.mozilla.org/security/advisories/mfsa2024-06/
https://www.cve.org/CVERecord?id=CVE-2024-1546
https://www.cve.org/CVERecord?id=CVE-2024-1547
https://www.cve.org/CVERecord?id=CVE-2024-1548
https://www.cve.org/CVERecord?id=CVE-2024-1549
https://www.cve.org/CVERecord?id=CVE-2024-1550
https://www.cve.org/CVERecord?id=CVE-2024-1551
https://www.cve.org/CVERecord?id=CVE-2024-1552
https://www.cve.org/CVERecord?id=CVE-2024-1553
(* Security fix *)
20240220184159 | Patrick J Volkerding | 9 | -164/+106 |
2024-02-19 | Mon Feb 19 20:29:16 UTC 2024...l/giflib-5.2.2-x86_64-1.txz: Upgraded.
l/libwnck3-43.0-x86_64-2.txz: Rebuilt.
Fixed crash bug. Thanks to fulalas.
n/samba-4.19.5-x86_64-1.txz: Upgraded.
20240219202916 | Patrick J Volkerding | 8 | -55/+104 |
2024-02-18 | Sun Feb 18 21:03:57 UTC 2024...a/ndctl-78-x86_64-1.txz: Upgraded.
ap/mpg123-1.32.5-x86_64-1.txz: Upgraded.
l/libffi-3.4.6-x86_64-1.txz: Upgraded.
x/mesa-24.0.1-x86_64-2.txz: Rebuilt.
Added av1dec,av1enc,and vp9dec to the list of codecs to support.
Thanks to fulalas and ZhaoLin1547.
20240218210357 | Patrick J Volkerding | 5 | -47/+72 |
2024-02-17 | Sat Feb 17 21:09:51 UTC 2024...l/nodejs-20.11.1-x86_64-1.txz: Upgraded.
This update fixes security issues:
Code injection and privilege escalation through Linux capabilities - (High).
http: Reading unprocessed HTTP request with unbounded chunk extension allows
DoS attacks - (High).
Path traversal by monkey-patching Buffer internals - (High).
setuid() does not drop all privileges due to io_uring - (High).
Node.js is vulnerable to the Marvin Attack (timing variant of the
Bleichenbacher attack against PKCS#1 v1.5 padding) - (Medium).
Multiple permission model bypasses due to improper path traversal sequence
sanitization - (Medium).
Improper handling of wildcards in --allow-fs-read and --allow-fs-write -
(Medium).
Denial of Service by resource exhaustion in fetch() brotli decoding -
(Medium).
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21892
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22019
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21896
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22017
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46809
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21891
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21890
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22025
(* Security fix *)
l/pcre2-10.43-x86_64-1.txz: Upgraded.
20240217210951 | Patrick J Volkerding | 4 | -32/+96 |
2024-02-16 | Fri Feb 16 20:18:59 UTC 2024...a/kernel-generic-6.6.17-x86_64-1.txz: Upgraded.
a/kernel-huge-6.6.17-x86_64-1.txz: Upgraded.
a/kernel-modules-6.6.17-x86_64-1.txz: Upgraded.
ap/soma-3.3.7-noarch-3.txz: Rebuilt.
Strip trailing whitespace from soma.desktop. Thanks to DryFalls.
d/kernel-headers-6.6.17-x86-1.txz: Upgraded.
k/kernel-source-6.6.17-noarch-1.txz: Upgraded.
l/mozilla-nss-3.98-x86_64-1.txz: Upgraded.
n/ca-certificates-20240216-noarch-1.txz: Upgraded.
This update provides the latest CA certificates to check for the
authenticity of SSL connections.
x/ibus-m17n-1.4.28-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240216201859 | Patrick J Volkerding | 21 | -183/+185 |
2024-02-16 | Fri Feb 16 02:19:13 UTC 2024...a/etc-15.1-x86_64-4.txz: Rebuilt.
Added UID 303 and GID 303 for colord.
ap/nvme-cli-2.8-x86_64-1.txz: Upgraded.
kde/akonadi-23.08.5-x86_64-1.txz: Upgraded.
kde/akonadi-calendar-23.08.5-x86_64-1.txz: Upgraded.
kde/akonadi-calendar-tools-23.08.5-x86_64-1.txz: Upgraded.
kde/akonadi-contacts-23.08.5-x86_64-1.txz: Upgraded.
kde/akonadi-import-wizard-23.08.5-x86_64-1.txz: Upgraded.
kde/akonadi-mime-23.08.5-x86_64-1.txz: Upgraded.
kde/akonadi-notes-23.08.5-x86_64-1.txz: Upgraded.
kde/akonadi-search-23.08.5-x86_64-1.txz: Upgraded.
kde/akonadiconsole-23.08.5-x86_64-1.txz: Upgraded.
kde/akregator-23.08.5-x86_64-1.txz: Upgraded.
kde/alligator-23.08.5-x86_64-1.txz: Upgraded.
kde/analitza-23.08.5-x86_64-1.txz: Upgraded.
kde/ark-23.08.5-x86_64-1.txz: Upgraded.
kde/artikulate-23.08.5-x86_64-1.txz: Upgraded.
kde/audiocd-kio-23.08.5-x86_64-1.txz: Upgraded.
kde/baloo-widgets-23.08.5-x86_64-1.txz: Upgraded.
kde/blinken-23.08.5-x86_64-1.txz: Upgraded.
kde/bomber-23.08.5-x86_64-1.txz: Upgraded.
kde/bovo-23.08.5-x86_64-1.txz: Upgraded.
kde/calendarsupport-23.08.5-x86_64-1.txz: Upgraded.
kde/cantor-23.08.5-x86_64-1.txz: Upgraded.
kde/cervisia-23.08.5-x86_64-1.txz: Upgraded.
kde/colord-kde-23.08.5-x86_64-1.txz: Added.
kde/dolphin-23.08.5-x86_64-1.txz: Upgraded.
kde/dolphin-plugins-23.08.5-x86_64-1.txz: Upgraded.
kde/dragon-23.08.5-x86_64-1.txz: Upgraded.
kde/elisa-23.08.5-x86_64-1.txz: Upgraded.
kde/eventviews-23.08.5-x86_64-1.txz: Upgraded.
kde/falkon-23.08.5-x86_64-1.txz: Upgraded.
kde/ffmpegthumbs-23.08.5-x86_64-1.txz: Upgraded.
kde/filelight-23.08.5-x86_64-1.txz: Upgraded.
kde/ghostwriter-23.08.5-x86_64-1.txz: Upgraded.
kde/granatier-23.08.5-x86_64-1.txz: Upgraded.
kde/grantlee-editor-23.08.5-x86_64-1.txz: Upgraded.
kde/grantleetheme-23.08.5-x86_64-1.txz: Upgraded.
kde/gwenview-23.08.5-x86_64-1.txz: Upgraded.
kde/incidenceeditor-23.08.5-x86_64-1.txz: Upgraded.
kde/itinerary-23.08.5-x86_64-1.txz: Upgraded.
kde/juk-23.08.5-x86_64-1.txz: Upgraded.
kde/k3b-23.08.5-x86_64-1.txz: Upgraded.
kde/kaddressbook-23.08.5-x86_64-1.txz: Upgraded.
kde/kalarm-23.08.5-x86_64-1.txz: Upgraded.
kde/kalgebra-23.08.5-x86_64-1.txz: Upgraded.
kde/kalzium-23.08.5-x86_64-1.txz: Upgraded.
kde/kamera-23.08.5-x86_64-1.txz: Upgraded.
kde/kamoso-23.08.5-x86_64-1.txz: Upgraded.
kde/kanagram-23.08.5-x86_64-1.txz: Upgraded.
kde/kapman-23.08.5-x86_64-1.txz: Upgraded.
kde/kapptemplate-23.08.5-x86_64-1.txz: Upgraded.
kde/kate-23.08.5-x86_64-1.txz: Upgraded.
kde/katomic-23.08.5-x86_64-1.txz: Upgraded.
kde/kbackup-23.08.5-x86_64-1.txz: Upgraded.
kde/kblackbox-23.08.5-x86_64-1.txz: Upgraded.
kde/kblocks-23.08.5-x86_64-1.txz: Upgraded.
kde/kbounce-23.08.5-x86_64-1.txz: Upgraded.
kde/kbreakout-23.08.5-x86_64-1.txz: Upgraded.
kde/kbruch-23.08.5-x86_64-1.txz: Upgraded.
kde/kcachegrind-23.08.5-x86_64-1.txz: Upgraded.
kde/kcalc-23.08.5-x86_64-1.txz: Upgraded.
kde/kcalutils-23.08.5-x86_64-1.txz: Upgraded.
kde/kcharselect-23.08.5-x86_64-1.txz: Upgraded.
kde/kcolorchooser-23.08.5-x86_64-1.txz: Upgraded.
kde/kcron-23.08.5-x86_64-1.txz: Upgraded.
kde/kde-dev-scripts-23.08.5-x86_64-1.txz: Upgraded.
kde/kde-dev-utils-23.08.5-x86_64-1.txz: Upgraded.
kde/kde-inotify-survey-23.08.5-x86_64-1.txz: Upgraded.
kde/kdebugsettings-23.08.5-x86_64-1.txz: Upgraded.
kde/kdeconnect-kde-23.08.5-x86_64-1.txz: Upgraded.
kde/kdeedu-data-23.08.5-x86_64-1.txz: Upgraded.
kde/kdegraphics-mobipocket-23.08.5-x86_64-1.txz: Upgraded.
kde/kdegraphics-thumbnailers-23.08.5-x86_64-1.txz: Upgraded.
kde/kdenetwork-filesharing-23.08.5-x86_64-1.txz: Upgraded.
kde/kdenlive-23.08.5-x86_64-1.txz: Upgraded.
kde/kdepim-addons-23.08.5-x86_64-1.txz: Upgraded.
kde/kdepim-runtime-23.08.5-x86_64-1.txz: Upgraded.
kde/kdesdk-kio-23.08.5-x86_64-1.txz: Upgraded.
kde/kdesdk-thumbnailers-23.08.5-x86_64-1.txz: Upgraded.
kde/kdev-php-23.08.5-x86_64-1.txz: Upgraded.
kde/kdev-python-23.08.5-x86_64-1.txz: Upgraded.
kde/kdevelop-23.08.5-x86_64-1.txz: Upgraded.
kde/kdf-23.08.5-x86_64-1.txz: Upgraded.
kde/kdialog-23.08.5-x86_64-1.txz: Upgraded.
kde/kdiamond-23.08.5-x86_64-1.txz: Upgraded.
kde/keditbookmarks-23.08.5-x86_64-1.txz: Upgraded.
kde/keysmith-23.08.5-x86_64-1.txz: Upgraded.
kde/kfind-23.08.5-x86_64-1.txz: Upgraded.
kde/kfourinline-23.08.5-x86_64-1.txz: Upgraded.
kde/kgeography-23.08.5-x86_64-1.txz: Upgraded.
kde/kget-23.08.5-x86_64-1.txz: Upgraded.
kde/kgoldrunner-23.08.5-x86_64-1.txz: Upgraded.
kde/kgpg-23.08.5-x86_64-1.txz: Upgraded.
kde/khangman-23.08.5-x86_64-1.txz: Upgraded.
kde/khelpcenter-23.08.5-x86_64-1.txz: Upgraded.
kde/kidentitymanagement-23.08.5-x86_64-1.txz: Upgraded.
kde/kig-23.08.5-x86_64-1.txz: Upgraded.
kde/kigo-23.08.5-x86_64-1.txz: Upgraded.
kde/killbots-23.08.5-x86_64-1.txz: Upgraded.
kde/kimagemapeditor-23.08.5-x86_64-1.txz: Upgraded.
kde/kimap-23.08.5-x86_64-1.txz: Upgraded.
kde/kio-admin-23.08.5-x86_64-1.txz: Upgraded.
kde/kio-extras-23.08.5-x86_64-1.txz: Upgraded.
kde/kio-gdrive-23.08.5-x86_64-1.txz: Upgraded.
kde/kio-zeroconf-23.08.5-x86_64-1.txz: Upgraded.
kde/kipi-plugins-23.08.5-x86_64-1.txz: Upgraded.
kde/kirigami-gallery-23.08.5-x86_64-1.txz: Upgraded.
kde/kiriki-23.08.5-x86_64-1.txz: Upgraded.
kde/kiten-23.08.5-x86_64-1.txz: Upgraded.
kde/kitinerary-23.08.5-x86_64-1.txz: Upgraded.
kde/kjumpingcube-23.08.5-x86_64-1.txz: Upgraded.
kde/kldap-23.08.5-x86_64-1.txz: Upgraded.
kde/kleopatra-23.08.5-x86_64-1.txz: Upgraded.
kde/klickety-23.08.5-x86_64-1.txz: Upgraded.
kde/klines-23.08.5-x86_64-1.txz: Upgraded.
kde/kmag-23.08.5-x86_64-1.txz: Upgraded.
kde/kmahjongg-23.08.5-x86_64-1.txz: Upgraded.
kde/kmail-23.08.5-x86_64-1.txz: Upgraded.
kde/kmail-account-wizard-23.08.5-x86_64-1.txz: Upgraded.
kde/kmailtransport-23.08.5-x86_64-1.txz: Upgraded.
kde/kmbox-23.08.5-x86_64-1.txz: Upgraded.
kde/kmime-23.08.5-x86_64-1.txz: Upgraded.
kde/kmines-23.08.5-x86_64-1.txz: Upgraded.
kde/kmix-23.08.5-x86_64-1.txz: Upgraded.
kde/kmousetool-23.08.5-x86_64-1.txz: Upgraded.
kde/kmouth-23.08.5-x86_64-1.txz: Upgraded.
kde/kmplot-23.08.5-x86_64-1.txz: Upgraded.
kde/knavalbattle-23.08.5-x86_64-1.txz: Upgraded.
kde/knetwalk-23.08.5-x86_64-1.txz: Upgraded.
kde/knights-23.08.5-x86_64-1.txz: Upgraded.
kde/knotes-23.08.5-x86_64-1.txz: Upgraded.
kde/kolf-23.08.5-x86_64-1.txz: Upgraded.
kde/kollision-23.08.5-x86_64-1.txz: Upgraded.
kde/kolourpaint-23.08.5-x86_64-1.txz: Upgraded.
kde/kompare-23.08.5-x86_64-1.txz: Upgraded.
kde/konqueror-23.08.5-x86_64-1.txz: Upgraded.
kde/konquest-23.08.5-x86_64-1.txz: Upgraded.
kde/konsole-23.08.5-x86_64-1.txz: Upgraded.
kde/kontact-23.08.5-x86_64-1.txz: Upgraded.
kde/kontactinterface-23.08.5-x86_64-1.txz: Upgraded.
kde/kontrast-23.08.5-x86_64-1.txz: Upgraded.
kde/konversation-23.08.5-x86_64-1.txz: Upgraded.
kde/kopeninghours-23.08.5-x86_64-1.txz: Upgraded.
kde/kopete-23.08.5-x86_64-1.txz: Upgraded.
kde/korganizer-23.08.5-x86_64-1.txz: Upgraded.
kde/kosmindoormap-23.08.5-x86_64-1.txz: Upgraded.
kde/kpat-23.08.5-x86_64-1.txz: Upgraded.
kde/kpimtextedit-23.08.5-x86_64-1.txz: Upgraded.
kde/kpkpass-23.08.5-x86_64-1.txz: Upgraded.
kde/kpmcore-23.08.5-x86_64-1.txz: Upgraded.
kde/kpublictransport-23.08.5-x86_64-1.txz: Upgraded.
kde/kqtquickcharts-23.08.5-x86_64-1.txz: Upgraded.
kde/krdc-23.08.5-x86_64-1.txz: Upgraded.
kde/kreversi-23.08.5-x86_64-1.txz: Upgraded.
kde/krfb-23.08.5-x86_64-1.txz: Upgraded.
kde/kross-interpreters-23.08.5-x86_64-1.txz: Upgraded.
kde/kruler-23.08.5-x86_64-1.txz: Upgraded.
kde/ksanecore-23.08.5-x86_64-1.txz: Upgraded.
kde/kshisen-23.08.5-x86_64-1.txz: Upgraded.
kde/ksirk-23.08.5-x86_64-1.txz: Upgraded.
kde/ksmtp-23.08.5-x86_64-1.txz: Upgraded.
kde/ksnakeduel-23.08.5-x86_64-1.txz: Upgraded.
kde/kspaceduel-23.08.5-x86_64-1.txz: Upgraded.
kde/ksquares-23.08.5-x86_64-1.txz: Upgraded.
kde/ksudoku-23.08.5-x86_64-1.txz: Upgraded.
kde/ksystemlog-23.08.5-x86_64-1.txz: Upgraded.
kde/kteatime-23.08.5-x86_64-1.txz: Upgraded.
kde/ktimer-23.08.5-x86_64-1.txz: Upgraded.
kde/ktnef-23.08.5-x86_64-1.txz: Upgraded.
kde/ktorrent-23.08.5-x86_64-1.txz: Upgraded.
kde/ktouch-23.08.5-x86_64-1.txz: Upgraded.
kde/kturtle-23.08.5-x86_64-1.txz: Upgraded.
kde/kubrick-23.08.5-x86_64-1.txz: Upgraded.
kde/kwalletmanager-23.08.5-x86_64-1.txz: Upgraded.
kde/kwave-23.08.5-x86_64-1.txz: Upgraded.
kde/kwordquiz-23.08.5-x86_64-1.txz: Upgraded.
kde/libgravatar-23.08.5-x86_64-1.txz: Upgraded.
kde/libkcddb-23.08.5-x86_64-1.txz: Upgraded.
kde/libkcompactdisc-23.08.5-x86_64-1.txz: Upgraded.
kde/libkdcraw-23.08.5-x86_64-1.txz: Upgraded.
kde/libkdegames-23.08.5-x86_64-1.txz: Upgraded.
kde/libkdepim-23.08.5-x86_64-1.txz: Upgraded.
kde/libkeduvocdocument-23.08.5-x86_64-1.txz: Upgraded.
kde/libkexiv2-23.08.5-x86_64-1.txz: Upgraded.
kde/libkgapi-23.08.5-x86_64-1.txz: Upgraded.
kde/libkipi-23.08.5-x86_64-1.txz: Upgraded.
kde/libkleo-23.08.5-x86_64-1.txz: Upgraded.
kde/libkmahjongg-23.08.5-x86_64-1.txz: Upgraded.
kde/libkomparediff2-23.08.5-x86_64-1.txz: Upgraded.
kde/libksane-23.08.5-x86_64-1.txz: Upgraded.
kde/libksieve-23.08.5-x86_64-1.txz: Upgraded.
kde/libktorrent-23.08.5-x86_64-1.txz: Upgraded.
kde/lokalize-23.08.5-x86_64-1.txz: Upgraded.
kde/lskat-23.08.5-x86_64-1.txz: Upgraded.
kde/mailcommon-23.08.5-x86_64-1.txz: Upgraded.
kde/mailimporter-23.08.5-x86_64-1.txz: Upgraded.
kde/marble-23.08.5-x86_64-1.txz: Upgraded.
kde/markdownpart-23.08.5-x86_64-1.txz: Upgraded.
kde/mbox-importer-23.08.5-x86_64-1.txz: Upgraded.
kde/merkuro-23.08.5-x86_64-1.txz: Upgraded.
kde/messagelib-23.08.5-x86_64-1.txz: Upgraded.
kde/minuet-23.08.5-x86_64-1.txz: Upgraded.
kde/okular-23.08.5-x86_64-1.txz: Upgraded.
kde/palapeli-23.08.5-x86_64-1.txz: Upgraded.
kde/parley-23.08.5-x86_64-1.txz: Upgraded.
kde/partitionmanager-23.08.5-x86_64-1.txz: Upgraded.
kde/picmi-23.08.5-x86_64-1.txz: Upgraded.
kde/pim-data-exporter-23.08.5-x86_64-1.txz: Upgraded.
kde/pim-sieve-editor-23.08.5-x86_64-1.txz: Upgraded.
kde/pimcommon-23.08.5-x86_64-1.txz: Upgraded.
kde/poxml-23.08.5-x86_64-1.txz: Upgraded.
kde/print-manager-23.08.5-x86_64-1.txz: Upgraded.
kde/rocs-23.08.5-x86_64-1.txz: Upgraded.
kde/skanlite-23.08.5-x86_64-1.txz: Upgraded.
kde/skanpage-23.08.5-x86_64-1.txz: Upgraded.
kde/spectacle-23.08.5-x86_64-1.txz: Upgraded.
kde/step-23.08.5-x86_64-1.txz: Upgraded.
kde/svgpart-23.08.5-x86_64-1.txz: Upgraded.
kde/sweeper-23.08.5-x86_64-1.txz: Upgraded.
kde/umbrello-23.08.5-x86_64-1.txz: Upgraded.
kde/yakuake-23.08.5-x86_64-1.txz: Upgraded.
kde/zanshin-23.08.5-x86_64-1.txz: Upgraded.
l/colord-1.4.7-x86_64-1.txz: Added.
Thanks to Willy Sudiarto Raharjo.
l/cxxopts-3.2.0-x86_64-1.txz: Upgraded.
l/libffi-3.4.5-x86_64-1.txz: Upgraded.
l/libgusb-0.4.8-x86_64-1.txz: Added.
This is needed by colord.
Thanks to Willy Sudiarto Raharjo.
l/taglib-extras-1.0.1-x86_64-4.txz: Removed.
This package is obsolete.
n/php-8.3.3-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.php.net/ChangeLog-8.php#8.3.3
x/mesa-24.0.1-x86_64-1.txz: Upgraded.
xfce/xfce4-settings-4.18.4-x86_64-2.txz: Rebuilt.
Recompiled using --enable-colord.
20240216021913 | Patrick J Volkerding | 40 | -1366/+2046 |
2024-02-15 | Wed Feb 14 22:46:52 UTC 2024...a/btrfs-progs-6.7.1-x86_64-1.txz: Upgraded.
a/ed-1.20.1-x86_64-1.txz: Upgraded.
a/shadow-4.14.5-x86_64-1.txz: Upgraded.
d/git-2.43.2-x86_64-1.txz: Upgraded.
d/meson-1.3.2-x86_64-1.txz: Upgraded.
d/tree-sitter-0.20.9-x86_64-1.txz: Upgraded.
e/emacs-29.2-x86_64-2.txz: Rebuilt.
Compiled with support for pdumper and native compilation.
The emacs-no-x11 binary has been dropped from the package because when
pdumper is used the support files need to be matched to a specific binary.
If you need a non-X console version of Emacs (or just want to reduce the
footprint) a traditional build is available in /extra.
Thanks to drgibbon who requested this long ago. :-)
Thanks to Didier Spaier for the sample build script.
l/libnvme-1.8-x86_64-1.txz: Upgraded.
xap/xlockmore-5.75-x86_64-1.txz: Upgraded.
extra/emacs-regular-build/emacs-29.2-x86_64-2_regular.txz: Added.
A "regular" build of Emacs like was previously in the main tree, with a
version supporting X11/GTK+3, and a non-X console version.
20240214224652 | Patrick J Volkerding | 11 | -186/+351 |
2024-02-14 | Wed Feb 14 04:31:08 UTC 2024...l/exiv2-0.28.2-x86_64-1.txz: Upgraded.
Fixes two low-severity security issues introduced in 0.28.x:
Out-of-bounds read in QuickTimeVideo::NikonTagsDecoder.
Denial of service due to unbounded recursion in
QuickTimeVideo::multipleEntriesDecoder.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-24826
https://www.cve.org/CVERecord?id=CVE-2024-25112
(* Security fix *)
l/gnome-keyring-46.1-x86_64-1.txz: Upgraded.
n/dnsmasq-2.90-x86_64-1.txz: Upgraded.
Add limits on the resources used to do DNSSEC validation.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2023-50387
https://www.cve.org/CVERecord?id=CVE-2023-50868
(* Security fix *)
x/igt-gpu-tools-1.28-x86_64-2.txz: Rebuilt.
Recompiled against /procps-ng-4.0.4.
20240214043108 | Patrick J Volkerding | 5 | -45/+93 |
2024-02-13 | Tue Feb 13 19:19:24 UTC 2024...ap/tmux-3.4-x86_64-1.txz: Upgraded.
d/lua-5.4.6-x86_64-5.txz: Rebuilt.
Search paths under /usr/local in addition to /usr.
Thanks to Arch for the patch.
l/gst-plugins-bad-free-1.22.10-x86_64-1.txz: Upgraded.
l/gst-plugins-base-1.22.10-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.22.10-x86_64-1.txz: Upgraded.
l/gst-plugins-libav-1.22.10-x86_64-1.txz: Upgraded.
l/gstreamer-1.22.10-x86_64-1.txz: Upgraded.
l/wireplumber-0.4.17-x86_64-3.txz: Rebuilt.
Build against system lua.
n/bind-9.18.24-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues:
Specific DNS answers could cause a denial-of-service condition due to DNS
validation taking a long time.
Restore DNS64 state when handling a serve-stale timeout.
Specific queries could trigger an assertion check with nxdomain-redirect
enabled.
Speed up parsing of DNS messages with many different names.
For more information, see:
https://kb.isc.org/docs/cve-2023-50387
https://www.cve.org/CVERecord?id=CVE-2023-50387
https://kb.isc.org/docs/cve-2023-5679
https://www.cve.org/CVERecord?id=CVE-2023-5679
https://kb.isc.org/docs/cve-2023-5517
https://www.cve.org/CVERecord?id=CVE-2023-5517
https://kb.isc.org/docs/cve-2023-4408
https://www.cve.org/CVERecord?id=CVE-2023-4408
(* Security fix *)
n/ipset-7.21-x86_64-1.txz: Upgraded.
20240213191924 | Patrick J Volkerding | 13 | -920/+205 |
2024-02-12 | Mon Feb 12 20:58:46 UTC 2024...a/procps-ng-4.0.4-x86_64-1.txz: Upgraded.
a/shadow-4.14.4-x86_64-1.txz: Upgraded.
ap/man-pages-6.06-noarch-1.txz: Upgraded.
ap/vim-9.1.0098-x86_64-1.txz: Upgraded.
d/libgccjit-13.2.0-x86_64-1.txz: Added.
If we can ship GCC's D and Modula-2 support, then we can ship this.
We'll probably find a use for it. ;-)
Thanks to Didier Spaier for hints on the build script.
d/mercurial-6.6.3-x86_64-1.txz: Upgraded.
d/rust-1.76.0-x86_64-1.txz: Upgraded.
l/gegl-0.4.48-x86_64-1.txz: Upgraded.
l/openexr-3.2.2-x86_64-1.txz: Upgraded.
l/pango-1.51.2-x86_64-1.txz: Upgraded.
l/python-calver-2022.6.26-x86_64-1.txz: Added.
Needed for python-trove-classifiers. Thanks to lucabon.
n/openvpn-2.6.9-x86_64-1.txz: Upgraded.
xap/vim-gvim-9.1.0098-x86_64-1.txz: Upgraded.
extra/rust-for-mozilla/rust-1.70.0-x86_64-4.txz: Added.
Let's move this here since it's lagging behind the latest Rust.
20240212205846 | Patrick J Volkerding | 28 | -225/+684 |