| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | Sat Feb 1 22:45:14 UTC 2020...a/inotify-tools-3.20.2.1-x86_64-1.txz: Upgraded.
a/kernel-generic-5.4.17-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.17-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.17-x86_64-1.txz: Upgraded.
d/kernel-headers-5.4.17-x86-1.txz: Upgraded.
k/kernel-source-5.4.17-noarch-1.txz: Upgraded.
l/sip-4.19.21-x86_64-1.txz: Upgraded.
x/xkeyboard-config-2.29-noarch-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20200201224514 |   Patrick J Volkerding | 2020-02-02 | 1 | -0/+1 |
| * | Fri Jan 31 20:46:25 UTC 2020...a/util-linux-2.35.1-x86_64-1.txz: Upgraded.
a/zerofree-1.1.1-x86_64-1.txz: Added.
Also queued up for the next installer build. Thanks to bifferos.
ap/sudo-1.8.31-x86_64-1.txz: Upgraded.
This update fixes a security issue:
In Sudo before 1.8.31, if pwfeedback is enabled in /etc/sudoers, users can
trigger a stack-based buffer overflow in the privileged sudo process.
(pwfeedback is a default setting in some Linux distributions; however, it
is not the default for upstream or in Slackware, and would exist only if
enabled by an administrator.) The attacker needs to deliver a long string
to the stdin of getln() in tgetpass.c.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18634
(* Security fix *)
n/NetworkManager-1.22.6-x86_64-1.txz: Upgraded.
n/openldap-client-2.4.49-x86_64-1.txz: Upgraded.
xfce/Thunar-1.8.11-x86_64-1.txz: Removed.
xfce/thunar-1.8.12-x86_64-1.txz: Added.
Changed package name from "Thunar" to "thunar" to follow upstream's naming.
20200131204625 | Patrick J Volkerding | 2020-02-01 | 1 | -0/+1 |
| * | Tue Jan 28 21:39:57 UTC 2020...ap/mariadb-10.4.12-x86_64-1.txz: Upgraded.
This fixes a potential denial-of-service vulnerability.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2574
(* Security fix *)
l/imagemagick-7.0.9_20-x86_64-1.txz: Upgraded.
n/dhcpcd-8.1.6-x86_64-1.txz: Upgraded.
n/samba-4.11.6-x86_64-1.txz: Upgraded.
x/mesa-19.3.3-x86_64-1.txz: Upgraded.
20200128213957 | Patrick J Volkerding | 2020-01-29 | 3 | -3/+3 |
| * | Mon Jan 27 00:48:51 UTC 2020...a/aaa_elflibs-15.0-x86_64-21.txz: Rebuilt.
Upgraded: libisl.so.22.0.1.
Added: libkeyutils.so.1.9.
a/kernel-generic-5.4.15-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.15-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.15-x86_64-1.txz: Upgraded.
a/pciutils-3.6.4-x86_64-1.txz: Upgraded.
a/shadow-4.8.1-x86_64-1.txz: Upgraded.
d/check-0.14.0-x86_64-1.txz: Upgraded.
d/kernel-headers-5.4.15-x86-1.txz: Upgraded.
d/make-4.2.1-x86_64-5.txz: Rebuilt.
Drop back to make-4.2.1 since make-4.3 is breaking a few builds. We'll
revisit it later after sources have caught up to it or regressions have
been patched upstream.
d/python-pip-20.0.2-x86_64-1.txz: Upgraded.
k/kernel-source-5.4.15-noarch-1.txz: Upgraded.
l/imagemagick-7.0.9_18-x86_64-1.txz: Upgraded.
l/python-packaging-20.1-x86_64-1.txz: Upgraded.
n/php-7.4.2-x86_64-3.txz: Rebuilt.
php.ini: Added extension=gd and extension=zip. Thanks to avian.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20200127004851 | Patrick J Volkerding | 2020-01-27 | 2 | -5/+7 |
| * | Fri Jan 24 00:51:23 UTC 2020...a/kernel-generic-5.4.14-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.14-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.14-x86_64-1.txz: Upgraded.
ap/sqlite-3.31.0-x86_64-1.txz: Upgraded.
d/kernel-headers-5.4.14-x86-1.txz: Upgraded.
k/kernel-source-5.4.14-noarch-1.txz: Upgraded.
n/libtirpc-1.2.5-x86_64-2.txz: Rebuilt.
Recompiled against krb5-1.17.1 (--enable-gssapi).
n/nfs-utils-2.4.2-x86_64-2.txz: Rebuilt.
Recompiled against krb5-1.17.1 (--enable-gss=yes --enable-svcgss=yes
--enable-nfsv4=yes). NFSv4 support in rc.nfsd still pending.
n/whois-5.5.5-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20200124005123 | Patrick J Volkerding | 2020-01-24 | 2 | -11/+23 |
| * | Wed Jan 22 22:53:32 UTC 2020...a/kernel-firmware-20200122_1eb2408-noarch-1.txz: Upgraded.
a/pciutils-3.6.3-x86_64-1.txz: Upgraded.
a/pkgtools-15.0-noarch-30.txz: Rebuilt.
removepkg: prevent upgradepkg noise when a directory turns into a symlink.
setup.vi-ex: don't make symlinks if the targets don't exist.
d/cmake-3.16.3-x86_64-1.txz: Upgraded.
d/distcc-3.3.3-x86_64-3.txz: Rebuilt.
Move symlink tree into /usr/lib/distcc/, and make a link in /usr/lib64/ if
needed. Seems like this is how everyone else sets it up. Thanks to hpfeil.
Recompiled against krb5-1.17.1 (--with-auth).
d/parallel-20200122-noarch-1.txz: Upgraded.
l/python-urllib3-1.25.8-x86_64-1.txz: Upgraded.
n/bind-9.14.10-x86_64-1.txz: Upgraded.
This is a bugfix release:
With some libmaxminddb versions, named could erroneously match an IP address
not belonging to any subnet defined in a given GeoIP2 database to one of the
existing entries in that database. [GL #1552]
Fix line spacing in `rndc secroots`. Thanks to Tony Finch. [GL #2478]
Recompiled against krb5-1.17.1 (--with-gssapi).
n/dhcp-4.4.2-x86_64-1.txz: Upgraded.
n/p11-kit-0.23.19-x86_64-1.txz: Upgraded.
n/php-7.4.2-x86_64-2.txz: Rebuilt.
Patched for c-client library API change. Thanks to ecd102.
Recompiled against krb5-1.17.1 (--with-kerberos).
20200122225332 | Patrick J Volkerding | 2020-01-23 | 6 | -8/+118 |
| * | Tue Jan 21 21:23:01 UTC 2020...a/aaa_elflibs-15.0-x86_64-19.txz: Rebuilt.
Upgraded: libcap.so.2.31, libgmp.so.10.4.0, libgmpxx.so.4.6.0.
Added: libgssapi_krb5.so.2.2, libk5crypto.so.3.1, libkrb5.so.3.3,
libkrb5support.so.0.1.
a/util-linux-2.35-x86_64-1.txz: Upgraded.
d/python-pip-20.0.1-x86_64-1.txz: Upgraded.
l/Mako-1.1.1-x86_64-1.txz: Upgraded.
l/keyutils-1.6.1-x86_64-1.txz: Upgraded.
n/krb5-1.17-x86_64-1.txz: Added.
Nothing links to this yet, but we'll need it soon enough. :-)
n/php-7.4.2-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues:
Standard: OOB read in php_strip_tags_ex
Mbstring: global buffer-overflow in 'mbfl_filt_conv_big5_wchar'
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7059
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7060
(* Security fix *)
n/samba-4.11.5-x86_64-1.txz: Upgraded.
This update fixes the following security issues:
Replication of ACLs set to inherit down a subtree on AD Directory
not automatic.
Crash after failed character conversion at log level 3 or above.
Use after free during DNS zone scavenging in Samba AD DC.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14902
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14907
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19344
(* Security fix *)
xap/gparted-1.1.0-x86_64-1.txz: Upgraded.
20200121212301 | Patrick J Volkerding | 2020-01-21 | 27 | -5/+3022 |
| * | Mon Jan 20 22:37:58 UTC 2020...a/aaa_terminfo-6.1_20200118-x86_64-1.txz: Upgraded.
d/make-4.3-x86_64-1.txz: Upgraded.
d/python-setuptools-45.1.0-x86_64-1.txz: Upgraded.
l/ncurses-6.1_20200118-x86_64-1.txz: Upgraded.
n/alpine-2.22-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-68.4.2esr-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/firefox/68.4.2/releasenotes/
https://bugzilla.mozilla.org/show_bug.cgi?id=1602726
20200120223758 | Patrick J Volkerding | 2020-01-21 | 2 | -5/+5 |
| * | Thu Jan 16 20:06:13 UTC 2020...a/sed-4.8-x86_64-1.txz: Upgraded.
d/gdb-8.3.1-x86_64-3.txz: Rebuilt.
Patched to fix a warning that breaks Emacs GDB mode.
Thanks to Lockywolf and USUARIONUEVO.
d/guile-3.0.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
d/make-4.2.1-x86_64-5.txz: Rebuilt.
Recompiled against guile-3.0.0.
l/libcap-2.31-x86_64-1.txz: Upgraded.
l/python-six-1.14.0-x86_64-1.txz: Upgraded.
n/gnutls-3.6.11.1-x86_64-2.txz: Rebuilt.
Recompiled against guile-3.0.0.
n/lftp-4.9.1-x86_64-1.txz: Upgraded.
n/libmbim-1.22.0-x86_64-1.txz: Upgraded.
n/libqmi-1.24.4-x86_64-1.txz: Upgraded.
20200116200613 | Patrick J Volkerding | 2020-01-17 | 1 | -3/+3 |
| * | Wed Jan 15 00:15:49 UTC 2020...a/kernel-generic-5.4.12-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.12-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.12-x86_64-1.txz: Upgraded.
d/kernel-headers-5.4.12-x86-1.txz: Upgraded.
k/kernel-source-5.4.12-noarch-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20200115001549 | Patrick J Volkerding | 2020-01-15 | 3 | -0/+363 |
| * | Sat Jan 11 21:58:08 UTC 2020...a/aaa_elflibs-15.0-x86_64-18.txz: Rebuilt.
Added: libdb-4.8.so
Upgraded: libcap.so.2.30
Removed: libdb-4.2.so
a/mcelog-168-x86_64-1.txz: Upgraded.
ap/vim-8.2.0111-x86_64-1.txz: Upgraded.
d/subversion-1.13.0-x86_64-3.txz: Rebuilt.
Recompiled against db48-4.8.30.
l/apr-util-1.6.1-x86_64-8.txz: Rebuilt.
Recompiled against db48-4.8.30.
l/db42-4.2.52-x86_64-4.txz: Removed.
l/db44-4.4.20-x86_64-4.txz: Removed.
l/redland-1.0.17-x86_64-6.txz: Rebuilt.
Recompiled against db48-4.8.30.
l/serf-1.3.9-x86_64-4.txz: Rebuilt.
Recompiled against db48-4.8.30.
l/talloc-2.3.1-x86_64-3.txz: Rebuilt.
Fix documentation permissions. Thanks to Xsane.
n/httpd-2.4.41-x86_64-2.txz: Rebuilt.
Recompiled against db48-4.8.30.
n/ipset-7.5-x86_64-1.txz: Upgraded.
xap/vim-gvim-8.2.0111-x86_64-1.txz: Upgraded.
20200111215808 | Patrick J Volkerding | 2020-01-12 | 1 | -1/+1 |
| * | Wed Jan 8 22:14:06 UTC 2020...a/e2fsprogs-1.45.5-x86_64-1.txz: Upgraded.
d/meson-0.53.0-x86_64-1.txz: Upgraded.
l/mozilla-nss-3.49-x86_64-1.txz: Upgraded.
n/curl-7.68.0-x86_64-1.txz: Upgraded.
20200108221406 | Patrick J Volkerding | 2020-01-09 | 1 | -2/+36 |
| * | Mon Jan 6 23:43:17 UTC 2020...d/ccache-3.7.7-x86_64-1.txz: Upgraded.
l/libpsl-0.21.0-x86_64-2.txz: Rebuilt.
Patched for new gtk-doc. Thanks to Matteo Bernardini.
l/pyparsing-2.4.6-x86_64-1.txz: Upgraded.
l/python-packaging-20.0-x86_64-1.txz: Upgraded.
l/python-pygments-2.5.2-x86_64-1.txz: Added.
This is needed by gtk-doc.
n/iputils-20190709-x86_64-2.txz: Rebuilt.
Patched for new libcap. Thanks to Matteo Bernardini.
x/fonttosfnt-1.1.0-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-68.4.0esr-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/68.4.0/releasenotes/
https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
(* Security fix *)
20200106234317 | Patrick J Volkerding | 2020-01-07 | 2 | -1/+51 |
| * | Fri Jan 3 22:41:57 UTC 2020...a/grep-3.4-x86_64-1.txz: Upgraded.
ap/linuxdoc-tools-0.9.73-x86_64-4.txz: Rebuilt.
Upgraded some included components:
asciidoc-8.6.10-0.13.20180605git986f99d.fc32,
docbook-style-xsl-1.79.2-10.fc31, docbook-utils-0.6.14-48.fc31,
gnome-doc-utils-0.20.10-20.fc32, gtk-doc-1.32-2.fc32,
opensp-1.5.2-33.fc31, perl-XML-NamespaceSupport-1.12-9.fc31,
perl-XML-SAX-1.02-2.fc31, perl-XML-SAX-Base-1.09-9.fc31,
sgml-common-0.6.3-53.fc31, xmlto-0.0.28-12.fc31.
Thanks to Stuart Winter.
n/dhcpcd-8.1.5-x86_64-1.txz: Upgraded.
n/sshfs-3.7.0-x86_64-1.txz: Upgraded.
x/libinput-1.15.0-x86_64-1.txz: Upgraded.
xap/MPlayer-20200103-x86_64-1.txz: Upgraded.
extra/pure-alsa-system/MPlayer-20200103-x86_64-1_alsa.txz: Upgraded.
20200103224157 | Patrick J Volkerding | 2020-01-04 | 4 | -30/+3 |
| * | Wed Jan 1 20:33:50 UTC 2020...Happy 2020 to the Slackware community! :-)
a/aaa_terminfo-6.1_20191228-x86_64-1.txz: Upgraded.
a/smartmontools-7.1-x86_64-1.txz: Upgraded.
ap/sudo-1.8.30-x86_64-1.txz: Upgraded.
d/python-setuptools-43.0.0-x86_64-1.txz: Upgraded.
l/boost-1.72.0-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
Patched to fix missing boost/serialization/split_member.hpp include.
This fixes the lightspark build at SBo. Thanks to orbea.
l/ffmpeg-4.2.2-x86_64-1.txz: Upgraded.
l/ncurses-6.1_20191228-x86_64-1.txz: Upgraded.
l/netpbm-10.89.00-x86_64-1.txz: Upgraded.
n/epic5-2.1.1-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.8.1.
Thanks to Willy Sudiarto Raharjo for pointing this one out.
n/whois-5.5.4-x86_64-1.txz: Upgraded.
x/vulkan-sdk-1.1.130.0-x86_64-1.txz: Upgraded.
extra/pure-alsa-system/ffmpeg-4.2.2-x86_64-1_alsa.txz: Upgraded.
20200101203350 | Patrick J Volkerding | 2020-01-02 | 1 | -1/+1 |
| * | Tue Dec 31 05:17:04 UTC 2019...a/kmod-26-x86_64-3.txz: Rebuilt.
This doesn't build with --enable-python and python3-3.8.1, so we'll
disable it for now. The python additions don't appear to be widely
packaged anyway.
a/util-linux-2.34-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
ap/hplip-3.19.12-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
ap/ksh93-20191228_5abcbd06-x86_64-1.txz: Upgraded.
ap/linuxdoc-tools-0.9.73-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.8.1.
ap/lxc-2.0.11_fad08f383-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.8.1.
ap/rpm-4.15.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
d/Cython-0.29.14-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
d/clisp-2.50_20191103_c26de7873-x86_64-1.txz: Upgraded.
d/distcc-3.3.3-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
d/gdb-8.3.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
d/llvm-9.0.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
d/meson-0.52.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
d/python-pip-19.3.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
d/python-setuptools-42.0.2-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
d/python3-3.8.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
kde/pykde4-4.14.3-x86_64-10.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/Mako-1.1.0-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/PyQt-4.12.3-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/QScintilla-2.11.4-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/alsa-lib-1.2.1.2-x86_64-2.txz: Rebuilt.
Recompiled without --enable-mixer-pymods.
l/dbus-python-1.2.14-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/gexiv2-0.12.0-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/gobject-introspection-1.62.0-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/libcaca-0.99.beta19-x86_64-5.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/libcap-ng-0.7.10-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/libproxy-0.4.15-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/libwebp-1.0.3-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/libwmf-0.2.8.4-x86_64-9.txz: Rebuilt.
Correct the path for the GDK_PIXBUF_DIR.
Thanks to B. Watson and Robby Workman.
l/libxml2-2.9.10-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/newt-0.52.21-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/pycairo-1.18.2-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/pycups-1.9.74-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/pycurl-7.43.0.3-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/pygobject-2.28.7-x86_64-5.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/pygobject3-3.34.0-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/pyparsing-2.4.5-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/python-appdirs-1.4.3-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/python-certifi-2019.11.28-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/python-chardet-3.0.4-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/python-docutils-0.15.2-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/python-idna-2.8-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/python-notify2-0.3.1-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/python-packaging-19.2-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/python-pillow-6.2.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/python-ply-3.11-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/python-requests-2.22.0-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/python-sane-2.8.3-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/python-six-1.13.0-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/python-urllib3-1.25.7-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/sip-4.19.20-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/system-config-printer-1.5.12-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/talloc-2.3.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/tdb-1.4.3-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/tevent-0.10.2-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/urwid-1.0.3-x86_64-5.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/zstd-1.4.4-x86_64-2.txz: Rebuilt.
Fix libdir in libzstd.pc. Thanks to orbea.
n/gpgme-1.13.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
n/obexftp-0.24.2-x86_64-5.txz: Rebuilt.
Recompiled against python3-3.8.1.
n/pssh-2.3.1-x86_64-5.txz: Rebuilt.
Recompiled against python3-3.8.1.
n/s-nail-14.9.16-x86_64-1.txz: Upgraded.
n/samba-4.11.4-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
x/pyxdg-0.26-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
x/xcb-proto-1.13-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.8.1.
xap/blueman-2.1.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
xap/hexchat-2.14.3-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
extra/pure-alsa-system/alsa-lib-1.2.1.2-x86_64-2_alsa.txz: Rebuilt.
Recompiled without --enable-mixer-pymods.
isolinux/initrd.img: Rebuilt.
SeTEFI: Patched to remove extra whitespace from lsblk output.
Thanks to Didier Spaier.
usb-and-pxe-installers/usbboot.img: Rebuilt.
SeTEFI: Patched to remove extra whitespace from lsblk output.
Thanks to Didier Spaier.
20191231051704 | Patrick J Volkerding | 2019-12-31 | 6 | -7/+7 |
| * | Wed Dec 25 19:00:02 UTC 2019...d/ruby-2.7.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
d/subversion-1.13.0-x86_64-2.txz: Rebuilt.
Recompiled against ruby-2.7.0.
kde/korundum-4.14.3-x86_64-8.txz: Rebuilt.
Recompiled against ruby-2.7.0.
kde/qtruby-4.14.3-x86_64-11.txz: Rebuilt.
Recompiled against ruby-2.7.0.
n/epic5-2.1.1-x86_64-3.txz: Rebuilt.
Ruby support won't build, so we'll skip it for now.
x/libva-2.6.0-x86_64-1.txz: Upgraded.
x/libva-utils-2.6.0-x86_64-1.txz: Upgraded.
20191225190002 | Patrick J Volkerding | 2019-12-26 | 1 | -2/+7 |
| * | Sun Dec 22 19:14:09 UTC 2019...d/parallel-20191222-noarch-1.txz: Upgraded.
l/eigen3-3.2.10-x86_64-3.txz: Rebuilt.
Fixed header path in eigen3.pc. Thanks to gouttegd.
l/gobject-introspection-1.62.0-x86_64-3.txz: Rebuilt.
Recompiled against libffi-3.3.
l/imagemagick-7.0.9_10-x86_64-1.txz: Upgraded.
n/libmbim-1.20.4-x86_64-1.txz: Upgraded.
n/libtirpc-1.2.5-x86_64-1.txz: Upgraded.
xfce/tumbler-0.2.8-x86_64-1.txz: Upgraded.
20191222191409 | Patrick J Volkerding | 2019-12-23 | 1 | -5/+5 |
| * | Sat Dec 21 21:02:24 UTC 2019...a/kernel-generic-5.4.6-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.6-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.6-x86_64-1.txz: Upgraded.
a/procps-ng-3.3.16-x86_64-2.txz: Rebuilt.
Patched to hardcode the pgrep command string buffer size to 4096 as was done
in the previous release. This avoids an allocation error when the stack size
is unlimited. Thanks to Jeroslaw Siebert.
a/xfsprogs-5.4.0-x86_64-1.txz: Upgraded.
d/kernel-headers-5.4.6-x86-1.txz: Upgraded.
k/kernel-source-5.4.6-noarch-1.txz: Upgraded.
l/QScintilla-2.11.4-x86_64-1.txz: Upgraded.
n/dhcpcd-8.1.4-x86_64-1.txz: Upgraded.
n/lftp-4.9.0-x86_64-1.txz: Upgraded.
xap/hexchat-2.14.3-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20191221210224 | Patrick J Volkerding | 2019-12-22 | 3 | -2/+2 |
| * | Sat Dec 21 01:04:26 UTC 2019...a/aaa_elflibs-15.0-x86_64-17.txz: Rebuilt.
Upgraded: libcap.so.2.28, libelf-0.178.so, libglib-2.0.so.0.6200.4,
libgmodule-2.0.so.0.6200.4, libgobject-2.0.so.0.6200.4,
libgthread-2.0.so.0.6200.4, libidn2.so.0.3.7, libpcre2-8.so.0.9.0,
libtdb.so.1.4.3.
Added: libffi.so.6.0.4, libffi.so.7.1.0.
a/file-5.38-x86_64-2.txz: Rebuilt.
Patched to fix ELF shared libraries misidentified as "statically linked."
a/kernel-firmware-20191220_6871bff-noarch-1.txz: Upgraded.
a/openssl10-solibs-1.0.2u-x86_64-1.txz: Upgraded.
(* Security fix *)
d/guile-2.2.6-x86_64-2.txz: Rebuilt.
Recompiled against libffi-3.3.
d/llvm-9.0.1-x86_64-1.txz: Upgraded.
Compiled against libffi-3.3.
d/python-2.7.17-x86_64-2.txz: Rebuilt.
Recompiled against libffi-3.3.
d/python3-3.7.6-x86_64-1.txz: Upgraded.
Compiled against libffi-3.3.
d/ruby-2.6.5-x86_64-2.txz: Rebuilt.
Recompiled against libffi-3.3.
l/glib2-2.62.4-x86_64-2.txz: Rebuilt.
Recompiled against libffi-3.3.
l/libffi-3.3-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/libvpx-1.8.2-x86_64-1.txz: Upgraded.
l/pygobject-2.28.7-x86_64-4.txz: Rebuilt.
Recompiled against libffi-3.3.
l/pygobject3-3.34.0-x86_64-2.txz: Rebuilt.
Recompiled against libffi-3.3.
l/sip-4.19.20-x86_64-1.txz: Upgraded.
n/cifs-utils-6.10-x86_64-1.txz: Upgraded.
n/dhcpcd-8.1.3-x86_64-1.txz: Upgraded.
n/openssl10-1.0.2u-x86_64-1.txz: Upgraded.
This update fixes a low severity security issue:
Fixed an an overflow bug in the x86_64 Montgomery squaring procedure used in
exponentiation with 512-bit moduli.
For more information, see:
https://www.openssl.org/news/secadv/20191206.txt
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1551
(* Security fix *)
n/p11-kit-0.23.18.1-x86_64-2.txz: Rebuilt.
Recompiled against libffi-3.3.
extra/tigervnc/tigervnc-1.10.1-x86_64-1.txz: Upgraded.
From tigervnc.org: "This is a security release to fix a number of issues
that were found by Kaspersky Lab. These issues affect both the client and
server and could theoretically allow a malicious peer to take control
over the software on the other side. No working exploit is known at this
time, and the issues require the peer to first be authenticated. We still
urge users to upgrade when possible."
(* Security fix *)
20191221010426 | Patrick J Volkerding | 2019-12-21 | 3 | -2/+2 |
| * | Thu Dec 19 23:02:54 UTC 2019...d/cmake-3.16.2-x86_64-1.txz: Upgraded.
d/rust-1.40.0-x86_64-1.txz: Upgraded.
Package debloating patches are no longer needed.
No build regressions noted with Firefox, Seamonkey, or Thunderbird.
l/glib2-2.62.4-x86_64-1.txz: Upgraded.
l/imagemagick-7.0.9_9-x86_64-1.txz: Upgraded.
l/wavpack-5.2.0-x86_64-1.txz: Upgraded.
Fixed denial-of-service and other potential security issues.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19840
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19841
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10536
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10537
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10538
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10539
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10540
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7254
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7253
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6767
(* Security fix *)
n/bind-9.14.9-x86_64-1.txz: Upgraded.
This is a bugfix release:
Fixed a bug that caused named to leak memory on reconfiguration when
any GeoIP2 database was in use. [GL #1445]
Fixed several possible race conditions discovered by Thread Sanitizer.
n/mutt-1.13.2-x86_64-1.txz: Upgraded.
n/php-7.4.1-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues:
Bcmath: Buffer underflow in bc_shift_addsub.
Core: link() silently truncates after a null byte on Windows.
Core: DirectoryIterator class silently truncates after a null byte.
Core: mail() may release string with refcount==1 twice.
EXIF: Use-after-free in exif parsing under memory sanitizer.
EXIF: Heap-buffer-overflow READ in exif.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11046
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11044
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11045
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11049
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11050
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11047
(* Security fix *)
x/intel-vaapi-driver-2.4.0-x86_64-1.txz: Upgraded.
x/vulkan-sdk-1.1.126.0-x86_64-2.txz: Rebuilt.
Install SPIRV headers in two places to fix building shaderc.
Thanks to orbea.
xfce/exo-0.12.11-x86_64-1.txz: Upgraded.
20191219230254 | Patrick J Volkerding | 2019-12-20 | 3 | -4/+4 |
| * | Mon Dec 16 23:13:10 UTC 2019...a/usb_modeswitch-2.5.2-x86_64-2.txz: Rebuilt.
Seems there's a regression in usb_modeswitch-2.6.0, so let's revert to
usb_modeswitch-2.5.2 but keep the latest usb-modeswitch-data-20191128.
Thanks to Lockywolf.
l/fuse3-3.9.0-x86_64-2.txz: Rebuilt.
Install fuse.conf as fuse.conf.new. This won't prevent an existing config
file from being overwritten with this upgrade, but it will prevent that
from happening again moving forward. Thanks to chrisVV.
20191216231310 | Patrick J Volkerding | 2019-12-17 | 1 | -2/+2 |
| * | Tue Dec 10 18:52:42 UTC 2019...l/dconf-0.34.0-x86_64-2.txz: Rebuilt.
Rebuilt using the sed replacements suggested by LFS. This fixes a
subsequent build of dconf-editor.
l/glib-networking-2.62.2-x86_64-1.txz: Upgraded.
n/samba-4.11.3-x86_64-1.txz: Upgraded.
This update fixes the following security issues:
Samba AD DC zone-named record Denial of Service in DNS management server.
DelegationNotAllowed was not enforced in protocol transition on Samba AD DC.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14861
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14870
(* Security fix *)
x/vulkan-sdk-1.1.126.0-x86_64-1.txz: Upgraded.
20191210185242 | Patrick J Volkerding | 2019-12-11 | 1 | -2/+2 |
| * | Thu Dec 5 19:04:24 UTC 2019...a/tcsh-6.22.02-x86_64-1.txz: Upgraded.
ap/vim-8.1.2391-x86_64-1.txz: Upgraded.
l/fuse3-3.8.0-x86_64-2.txz: Rebuilt.
rc.fuse3: Don't source /lib/lsb/init-functions unless it exists.
NOTE: FUSE seems to work fine without starting rc.fuse3, which it why it
isn't actually called from anywhere during system startup.
n/iw-5.4-x86_64-1.txz: Upgraded.
n/php-7.4.0-x86_64-2.txz: Rebuilt.
Rebuilt using --enable-gd=shared and --with-zip=shared.
Thanks to Matteo Bernardini.
xap/gv-3.7.4-x86_64-3.txz: Rebuilt.
Patched to fix save/print features when used with the latest ghostscript.
Added --enable-international build option.
Fixed broken whitespace in the bounding-box patch.
Thanks to Xsane.
xap/vim-gvim-8.1.2391-x86_64-1.txz: Upgraded.
20191205190424 | Patrick J Volkerding | 2019-12-06 | 1 | -4/+3 |
| * | Tue Dec 3 19:07:24 UTC 2019...n/ebtables-2.0.11-x86_64-1.txz: Upgraded.
n/iptables-1.8.4-x86_64-1.txz: Upgraded.
n/libnftnl-1.1.5-x86_64-1.txz: Upgraded.
n/nftables-0.9.3-x86_64-1.txz: Upgraded.
n/whois-5.5.3-x86_64-1.txz: Upgraded.
20191203190724 | Patrick J Volkerding | 2019-12-04 | 10 | -24/+98 |
| * | Sun Dec 1 19:45:45 UTC 2019...ap/tmux-3.0a-x86_64-1.txz: Upgraded.
l/alsa-lib-1.2.1.2-x86_64-1.txz: Upgraded.
l/imagemagick-7.0.9_7-x86_64-1.txz: Upgraded.
l/oniguruma-6.9.4-x86_64-1.txz: Added.
This is a regular expressions library needed by PHP.
n/mutt-1.13.0-x86_64-1.txz: Upgraded.
n/php-7.4.0-x86_64-1.txz: Upgraded.
extra/pure-alsa-system/alsa-lib-1.2.1.2-x86_64-1_alsa.txz: Upgraded.
20191201194545 | Patrick J Volkerding | 2019-12-02 | 3 | -38/+21 |
| * | Sat Nov 30 21:17:21 UTC 2019...a/kernel-generic-5.4.1-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.1-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.1-x86_64-1.txz: Upgraded.
a/tcsh-6.22.00-x86_64-1.txz: Upgraded.
a/usb_modeswitch-2.6.0-x86_64-1.txz: Upgraded.
ap/cups-filters-1.25.13-x86_64-1.txz: Upgraded.
ap/diffstat-1.63-x86_64-1.txz: Upgraded.
ap/nano-4.6-x86_64-1.txz: Upgraded.
d/kernel-headers-5.4.1-x86-1.txz: Upgraded.
d/meson-0.52.1-x86_64-1.txz: Upgraded.
d/strace-5.4-x86_64-1.txz: Upgraded.
k/kernel-source-5.4.1-noarch-1.txz: Upgraded.
l/elfutils-0.178-x86_64-1.txz: Upgraded.
l/python-certifi-2019.11.28-x86_64-1.txz: Upgraded.
n/ca-certificates-20191130-noarch-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20191130211721 | Patrick J Volkerding | 2019-12-01 | 1 | -0/+200 |
| * | Mon Nov 25 19:17:07 UTC 2019...e/emacs-26.3-x86_64-3.txz: Rebuilt.
Compiled adding --with-modules option. Thanks to cycojesus.
l/keyutils-1.6-x86_64-2.txz: Rebuilt.
Move pkgconfig directory to /usr/lib${LIBDIRSUFFIX}.
Don't package the static library.
Thanks to Stanson.
l/librsvg-2.46.4-x86_64-1.txz: Upgraded.
l/xapian-core-1.4.14-x86_64-1.txz: Upgraded.
n/NetworkManager-1.20.8-x86_64-1.txz: Upgraded.
n/postfix-3.4.8-x86_64-1.txz: Upgraded.
20191125191707 | Patrick J Volkerding | 2019-11-26 | 2 | -6/+6 |
| * | Thu Nov 21 22:19:23 UTC 2019...a/efibootmgr-20191011_e8ce9fe-x86_64-1.txz: Upgraded.
a/efivar-20191015_ca85d51-x86_64-1.txz: Upgraded.
l/libtasn1-4.15.0-x86_64-1.txz: Upgraded.
n/php-7.3.12-x86_64-1.txz: Upgraded.
20191121221923 | Patrick J Volkerding | 2019-11-22 | 1 | -2/+2 |
| * | Thu Nov 21 02:24:52 UTC 2019...n/bind-9.14.8-x86_64-1.txz: Upgraded.
This update fixes a security issue:
Set a limit on the number of concurrently served pipelined TCP queries.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6477
(* Security fix *)
x/mesa-19.2.5-x86_64-1.txz: Upgraded.
20191121022452 | Patrick J Volkerding | 2019-11-21 | 1 | -1/+1 |
| * | Sun Nov 17 22:07:53 UTC 2019...ap/qpdf-9.1.0-x86_64-1.txz: Upgraded.
d/check-0.13.0-x86_64-1.txz: Added.
This is needed to build PulseAudio using Meson.
l/alsa-lib-1.2.1-x86_64-2.txz: Rebuilt.
Merge alsa-topology-conf-1.2.1 and alsa-ucm-conf-1.2.1 into the package.
l/pulseaudio-13.0-x86_64-2.txz: Rebuilt.
Rebuilt with meson. This causes esound support to be dropped, but it's
likely that nobody will care.
l/pyparsing-2.4.5-x86_64-1.txz: Upgraded.
extra/pure-alsa-system/alsa-lib-1.2.1-x86_64-2_alsa.txz: Rebuilt.
Merge alsa-topology-conf-1.2.1 and alsa-ucm-conf-1.2.1 into the package.
20191117220753 | Patrick J Volkerding | 2019-11-18 | 1 | -0/+1 |
| * | Thu Nov 14 01:44:09 UTC 2019...a/aaa_elflibs-15.0-x86_64-16.txz: Rebuilt.
Upgraded: libisl.so.22.0.0.
a/mcelog-166-x86_64-1.txz: Upgraded.
ap/cups-filters-1.25.12-x86_64-1.txz: Upgraded.
d/gcc-9.2.0-x86_64-4.txz: Rebuilt.
d/gcc-brig-9.2.0-x86_64-4.txz: Rebuilt.
d/gcc-g++-9.2.0-x86_64-4.txz: Rebuilt.
d/gcc-gdc-9.2.0-x86_64-4.txz: Rebuilt.
Restored the static libraries since dynamic linking doesn't work without a
command-line option.
d/gcc-gfortran-9.2.0-x86_64-4.txz: Rebuilt.
d/gcc-gnat-9.2.0-x86_64-4.txz: Rebuilt.
d/gcc-go-9.2.0-x86_64-4.txz: Rebuilt.
d/gcc-objc-9.2.0-x86_64-4.txz: Rebuilt.
l/imagemagick-7.0.9_3-x86_64-1.txz: Upgraded.
n/dhcpcd-8.1.2-x86_64-1.txz: Upgraded.
20191114014409 | Patrick J Volkerding | 2019-11-14 | 2 | -1/+1 |
| * | Thu Nov 7 21:35:45 UTC 2019...l/system-config-printer-1.5.12-x86_64-1.txz: Upgraded.
n/sshfs-3.6.0-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-68.2.2-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/68.2.2/releasenotes/
20191107213545 | Patrick J Volkerding | 2019-11-08 | 1 | -3/+3 |
| * | Wed Nov 6 21:14:40 UTC 2019...a/cpio-2.13-x86_64-1.txz: Upgraded.
a/kernel-generic-4.19.82-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.82-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.82-x86_64-1.txz: Upgraded.
ap/hplip-3.19.11-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.82-x86-1.txz: Upgraded.
d/mercurial-5.2-x86_64-1.txz: Upgraded.
k/kernel-source-4.19.82-noarch-1.txz: Upgraded.
l/python-six-1.13.0-x86_64-1.txz: Upgraded.
l/shared-mime-info-1.15-x86_64-1.txz: Upgraded.
l/zstd-1.4.4-x86_64-1.txz: Upgraded.
n/ModemManager-1.12.0-x86_64-1.txz: Upgraded.
n/NetworkManager-1.20.6-x86_64-1.txz: Upgraded.
n/curl-7.67.0-x86_64-1.txz: Upgraded.
n/libmbim-1.20.2-x86_64-1.txz: Upgraded.
x/mesa-19.2.3-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20191106211440 | Patrick J Volkerding | 2019-11-07 | 1 | -46/+2 |
| * | Fri Nov 1 19:35:34 UTC 2019...l/gcr-3.34.0-x86_64-1.txz: Upgraded.
l/gnome-keyring-3.34.0-x86_64-1.txz: Upgraded.
n/crda-4.14-x86_64-1.txz: Upgraded.
Upgraded to crda-4.14 and wireless-regdb-2019.06.03.
xap/blueman-2.1.1-x86_64-1.txz: Upgraded.
extra/source/flashplayer-plugin/flashplayer-plugin.SlackBuild: Upgraded.
Fixed URL to retrieve latest version number.
20191101193534 | Patrick J Volkerding | 2019-11-02 | 2 | -4/+5 |
| * | Thu Oct 31 21:31:50 UTC 2019...a/kernel-firmware-20191030_9e194c7-noarch-1.txz: Upgraded.
d/cmake-3.15.5-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_71-x86_64-1.txz: Upgraded.
l/libxml2-2.9.10-x86_64-1.txz: Upgraded.
l/libxslt-1.1.34-x86_64-1.txz: Upgraded.
n/bluez-5.52-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-68.2.1-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/68.2.1/releasenotes/
Added option: --disable-updater
20191031213150 | Patrick J Volkerding | 2019-11-01 | 2 | -3/+9 |
| * | Tue Oct 29 20:09:01 UTC 2019...a/aaa_elflibs-15.0-x86_64-14.txz: Rebuilt.
Upgraded: libglib-2.0.so.0.6200.2, libgmodule-2.0.so.0.6200.2,
libgobject-2.0.so.0.6200.2, libgthread-2.0.so.0.6200.2.
Added: libgomp.so.1.0.0.
a/kernel-firmware-20191029_4065643-noarch-1.txz: Upgraded.
a/kernel-generic-4.19.81-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.81-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.81-x86_64-1.txz: Upgraded.
ap/sudo-1.8.29-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.81-x86-1.txz: Upgraded.
d/python-setuptools-41.6.0-x86_64-1.txz: Upgraded.
k/kernel-source-4.19.81-noarch-1.txz: Upgraded.
l/harfbuzz-2.6.3-x86_64-1.txz: Upgraded.
n/samba-4.11.2-x86_64-1.txz: Upgraded.
This update fixes bugs and these security issues:
Client code can return filenames containing path separators.
Samba AD DC check password script does not receive the full password.
User with "get changes" permission can crash AD DC LDAP server via dirsync.
For more information, see:
https://www.samba.org/samba/security/CVE-2019-10218.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10218
https://www.samba.org/samba/security/CVE-2019-14833.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14833
https://www.samba.org/samba/security/CVE-2019-14847.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14847
(* Security fix *)
x/libglvnd-1.2.0-x86_64-4.txz: Rebuilt.
Applied upstream patches to fix EGL/eglplatform.h.
x/xorg-server-1.20.5-x86_64-3.txz: Rebuilt.
#define EGL_NO_X11 to fix glamor build against libglvnd-1.2.0.
x/xorg-server-xephyr-1.20.5-x86_64-3.txz: Rebuilt.
x/xorg-server-xnest-1.20.5-x86_64-3.txz: Rebuilt.
x/xorg-server-xvfb-1.20.5-x86_64-3.txz: Rebuilt.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20191029200901 | Patrick J Volkerding | 2019-10-30 | 1 | -2/+2 |
| * | Tue Oct 22 18:48:37 UTC 2019...a/btrfs-progs-5.3-x86_64-1.txz: Upgraded.
a/kernel-firmware-20191022_2b016af-noarch-1.txz: Upgraded.
d/parallel-20191022-noarch-1.txz: Upgraded.
l/glib2-2.62.2-x86_64-1.txz: Upgraded.
l/python-pillow-6.2.1-x86_64-1.txz: Upgraded.
n/php-7.3.11-x86_64-1.txz: Upgraded.
This update fixes bugs and a security issue:
FPM: env_path_info underflow in fpm_main.c can lead to RCE.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11043
(* Security fix *)
x/xkeyboard-config-2.28-noarch-1.txz: Upgraded.
xap/mozilla-firefox-68.2.0esr-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/68.2.0/releasenotes/
https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15903
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11757
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11758
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11759
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11760
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11761
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11762
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11763
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11764
(* Security fix *)
20191022184837 | Patrick J Volkerding | 2019-10-23 | 2 | -3/+3 |
| * | Sun Oct 20 19:39:21 UTC 2019...d/python-2.7.17-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues:
Update vendorized expat library version to 2.2.8.
Disallow URL paths with embedded whitespace or control characters into the
underlying http client request. Such potentially malicious header injection
URLs now cause an httplib.InvalidURL exception to be raised.
Avoid file reading by disallowing ``local-file://`` and ``local_file://``
URL schemes in :func:`urllib.urlopen`, :meth:`urllib.URLopener.open` and
:meth:`urllib.URLopener.retrieve`.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15903
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9740
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9948
(* Security fix *)
n/proftpd-1.3.6b-x86_64-1.txz: Upgraded.
20191020193921 | Patrick J Volkerding | 2019-10-21 | 1 | -2/+2 |
| * | Fri Oct 18 21:00:50 UTC 2019...a/getty-ps-2.1.0b-x86_64-4.txz: Removed.
a/lha-114i-x86_64-2.txz: Removed.
Removed due to vague licensing terms.
a/lhasa-0.3.1-x86_64-1.txz: Added.
This is an extraction-only LHA utility with an OSI approved license.
a/shadow-4.7-x86_64-2.txz: Rebuilt.
Added /etc/environment.new to fix "sudo -i" noise.
ap/lm_sensors-3.6.0-x86_64-1.txz: Upgraded.
ap/vim-8.1.2174-x86_64-1.txz: Upgraded.
l/netpbm-10.88.00-x86_64-1.txz: Upgraded.
n/ca-certificates-20191018-noarch-1.txz: Upgraded.
n/samba-4.11.1-x86_64-1.txz: Upgraded.
xap/vim-gvim-8.1.2174-x86_64-1.txz: Upgraded.
xap/xfractint-20.04p13-x86_64-2.txz: Removed.
xap/xv-3.10a-x86_64-9.txz: Removed.
extra/getty-ps/getty-ps-2.1.0b-x86_64-4.txz: Rebuilt.
Moved here from the A series due to commercial use restrictions.
extra/xfractint/xfractint-20.04p14-x86_64-1.txz: Upgraded.
Moved here from the XAP series due to commercial use restrictions.
extra/xv/xv-3.10a-x86_64-9.txz: Rebuilt.
Moved here from the XAP series due to non-commercial use shareware license.
20191018210050 | Patrick J Volkerding | 2019-10-19 | 2 | -15/+315 |
| * | Fri Oct 18 00:58:04 UTC 2019...a/kernel-generic-4.19.80-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.80-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.80-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.80-x86-1.txz: Upgraded.
k/kernel-source-4.19.80-noarch-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20191018005804 | Patrick J Volkerding | 2019-10-18 | 1 | -1/+1 |
| * | Wed Oct 16 19:14:09 UTC 2019...ap/sudo-1.8.28p1-x86_64-1.txz: Upgraded.
This is a bugfix release:
A fix in sudo-1.8.28 caused "sudo -v" to prompt for a password when
"verifypw" is set to "all" (the default) and all of the user's sudoers
entries are marked with NOPASSWD.
l/xapian-core-1.4.13-x86_64-1.txz: Upgraded.
n/dhcpcd-8.1.1-x86_64-1.txz: Upgraded.
x/xf86-input-wacom-0.38.0-x86_64-1.txz: Upgraded.
20191016191409 | Patrick J Volkerding | 2019-10-17 | 2 | -1/+1 |
| * | Tue Oct 15 20:58:56 UTC 2019...ap/ghostscript-9.50-x86_64-1.txz: Upgraded.
d/icecream-1.3-x86_64-2.txz: Rebuilt.
Have the profile scripts just check for -x /etc/rc.d/rc.iceccd, since pgrep
with --ns $$ isn't working for non-root users. Thanks to Leopold E. Midha.
d/python-pip-19.3-x86_64-1.txz: Upgraded.
n/bluez-5.51-x86_64-2.txz: Rebuilt.
Fixed path to obexd in org.bluez.obex.service.
Thanks to Jean-Philippe Guillemin.
x/xf86-video-ati-19.1.0-x86_64-1.txz: Upgraded.
20191015205856 | Patrick J Volkerding | 2019-10-16 | 2 | -3/+3 |
| * | Sun Oct 13 19:01:25 UTC 2019...a/pkgtools-15.0-noarch-26.txz: Rebuilt.
upgradepkg: add spaces to --dry-run package list. Thanks to Markus Wiesner.
l/aspell-0.60.8-x86_64-1.txz: Upgraded.
n/network-scripts-15.0-noarch-9.txz: Rebuilt.
rc.inet1: Fix typos and spacing.
rc.inet2: Start rc.firewall first. This had been later in the script due to
the now unsupported idea of having /usr on NFS. Thanks to abga.
rc.inet2: If present and executable, start the Kerberos init scripts.
rc.inet2: Remove obsolete rpc.pcnfsd/rpc.bwnfsd section from the end.
n/proftpd-1.3.6a-x86_64-1.txz: Upgraded.
xap/pan-0.146-x86_64-1.txz: Upgraded.
20191013190125 | Patrick J Volkerding | 2019-10-13 | 4 | -45/+55 |
| * | Tue Oct 8 19:11:03 UTC 2019...a/kernel-firmware-20191008_aa95e90-noarch-1.txz: Upgraded.
ap/cups-filters-1.25.7-x86_64-1.txz: Upgraded.
l/at-spi2-atk-2.34.1-x86_64-1.txz: Upgraded.
l/dconf-editor-3.34.2-x86_64-1.txz: Upgraded.
l/gdk-pixbuf2-2.40.0-x86_64-1.txz: Upgraded.
l/librsvg-2.46.1-x86_64-1.txz: Upgraded.
l/vte-0.58.1-x86_64-1.txz: Upgraded.
n/dovecot-2.3.8-x86_64-1.txz: Upgraded.
xap/xpdf-4.02-x86_64-2.txz: Rebuilt.
Applied crash fix patch from Poprocks.
20191008191103 | Patrick J Volkerding | 2019-10-09 | 1 | -1/+1 |
| * | Mon Oct 7 23:31:57 UTC 2019...a/kernel-generic-4.19.78-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.78-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.78-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.78-x86-1.txz: Upgraded.
d/meson-0.52.0-x86_64-1.txz: Upgraded.
d/python-setuptools-41.4.0-x86_64-1.txz: Upgraded.
k/kernel-source-4.19.78-noarch-1.txz: Upgraded.
l/gvfs-1.42.1-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_68-x86_64-1.txz: Upgraded.
n/autofs-5.1.6-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20191007233157 | Patrick J Volkerding | 2019-10-08 | 1 | -7/+2 |
| * | Mon Oct 7 04:41:29 UTC 2019...a/aaa_elflibs-15.0-x86_64-12.txz: Rebuilt.
Upgraded: libexpat.so.1.6.11, libglib-2.0.so.0.6200.1,
libgmodule-2.0.so.0.6200.1, libgobject-2.0.so.0.6200.1,
libgthread-2.0.so.0.6200.1.
Added temporarily until third party packages have been recompiled:
libicudata.so.64.2, libicui18n.so.64.2, libicuio.so.64.2,
libicutest.so.64.2, libicutu.so.64.2, libicuuc.so.64.2.
a/xfsprogs-5.2.1-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-65.1.
ap/sqlite-3.30.0-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-65.1.
kde/calligra-2.9.11-x86_64-32.txz: Rebuilt.
Recompiled against icu4c-65.1.
l/boost-1.71.0-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-65.1.
l/harfbuzz-2.6.2-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-65.1.
l/icu4c-65.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/libical-3.0.6-x86_64-3.txz: Rebuilt.
Recompiled against icu4c-65.1.
l/libvisio-0.1.7-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-65.1.
l/qt-4.8.7-x86_64-14.txz: Rebuilt.
Recompiled against icu4c-65.1.
l/raptor2-2.0.15-x86_64-8.txz: Rebuilt.
Recompiled against icu4c-65.1.
n/dovecot-2.3.7.2-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-65.1.
n/php-7.3.10-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-65.1.
n/postfix-3.4.7-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-65.1.
n/samba-4.11.0-x86_64-1.txz: Upgraded.
n/tin-2.4.3-x86_64-3.txz: Rebuilt.
Recompiled against icu4c-65.1.
t/texlive-2019.190626-x86_64-3.txz: Rebuilt.
Recompiled against icu4c-65.1.
20191007044129 | Patrick J Volkerding | 2019-10-07 | 5 | -6/+6 |
| * | Wed Oct 2 06:46:20 UTC 2019...a/kernel-generic-4.19.76-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.76-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.76-x86_64-1.txz: Upgraded.
ap/sysstat-12.1.7-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.76-x86-1.txz: Upgraded.
d/ruby-2.6.5-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues:
A code injection vulnerability of Shell#[] and Shell#test.
HTTP response splitting in WEBrick (Additional fix).
A NUL injection vulnerability of File.fnmatch and File.fnmatch?.
Regular Expression Denial of Service vulnerability of WEBrick's Digest
access authentication.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-16255
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-16254
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15845
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-16201
(* Security fix *)
k/kernel-source-4.19.76-noarch-1.txz: Upgraded.
l/harfbuzz-2.6.2-x86_64-1.txz: Upgraded.
l/libpcap-1.9.1-x86_64-1.txz: Upgraded.
n/p11-kit-0.23.18.1-x86_64-1.txz: Upgraded.
n/tcpdump-4.9.3-x86_64-1.txz: Upgraded.
Fix buffer overflow/overread vulnerabilities and command line
argument/local issues.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16808
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14468
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14469
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14470
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14466
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14461
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14462
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14465
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14881
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14464
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14463
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14467
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10103
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10105
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14880
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16451
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14882
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16227
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16229
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16301
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16230
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16452
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16300
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16228
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15166
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15167
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14879
(* Security fix *)
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20191002064620 | Patrick J Volkerding | 2019-10-02 | 2 | -5/+4 |
| * | Mon Sep 30 21:08:32 UTC 2019...d/llvm-9.0.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
Thanks to orbea for getting this working and cleaning up the build script.
d/vala-0.46.2-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_67-x86_64-1.txz: Upgraded.
Fixed --disable-opencl configure option. Thanks to Markus Wiesner for the
bug report and to upstream for the quick fix.
n/NetworkManager-1.20.4-x86_64-1.txz: Upgraded.
n/gnutls-3.6.10-x86_64-1.txz: Upgraded.
x/freeglut-3.2.1-x86_64-1.txz: Upgraded.
x/libglvnd-1.1.1-x86_64-2.txz: Upgraded.
Reverted to this version since I'm seeing some errors linking with Mesa
libraries with the newer one. Thanks to nobodino for the bug report.
x/mesa-19.2.0-x86_64-2.txz: Rebuilt.
Recompiled against llvm-9.0.0 and libglvnd-1.1.1.
x/xf86-video-vmware-13.3.0-x86_64-3.txz: Rebuilt.
Recompiled against llvm-9.0.0.
20190930210832 | Patrick J Volkerding | 2019-10-01 | 122 | -309/+309 |
| * | Sat Sep 28 19:23:35 UTC 2019...a/f2fs-tools-1.13.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
ap/rpm-4.15.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
d/rust-1.38.0-x86_64-1.txz: Upgraded.
It seems that rust-1.38.0 builds fewer shared objects causing the package
size to bloat to almost double. I held this back overnight to compile some
modified builds to see if the old build behavior could be restored but
didn't have any luck, so I'll put this out as-is for now. Any help debloating
this package would be appreciated. Note that it also had to be bootstrapped
from the official binaries using LOCAL_BOOTSTRAP=NO. That's not all that
unusual for Rust, but perhaps that's another problem...
l/fribidi-1.0.7-x86_64-1.txz: Upgraded.
l/fuse3-3.7.0-x86_64-1.txz: Upgraded.
n/fetchmail-6.4.1-x86_64-1.txz: Upgraded.
20190928192335 | Patrick J Volkerding | 2019-09-29 | 2 | -3/+2 |
Patrick J Volkerding