| Commit message (Expand) | Author | Age | Files | Lines |
* | Mon Jul 29 18:32:35 UTC 2024...a/sysklogd-2.6.1-x86_64-1.txz: Upgraded.
d/python-pip-24.2-x86_64-1.txz: Upgraded.
d/python-setuptools-72.1.0-x86_64-1.txz: Upgraded.
n/links-2.30-x86_64-1.txz: Upgraded.
x/libX11-1.8.10-x86_64-1.txz: Upgraded.
x/xinput_calibrator-0.8.0-x86_64-1.txz: Added.
20240729183235 | Patrick J Volkerding | 2024-07-29 | 1 | -7/+5 |
* | Sun Jul 28 12:39:59 UTC 2024...d/meson-1.5.1-x86_64-1.txz: Upgraded.
l/imagemagick-7.1.1_36-x86_64-1.txz: Upgraded.
l/python-alabaster-1.0.0-x86_64-1.txz: Upgraded.
n/wpa_supplicant-2.11-x86_64-2.txz: Rebuilt.
[PATCH] nl80211: add extra-ies only if allowed by driver.
This fixes using broadcom-wl based adapters.
Thanks to Stuart Winter.
x/OpenCC-1.1.8-x86_64-1.txz: Upgraded.
x/xfs-1.2.2-x86_64-1.txz: Upgraded.
20240728123959 | Patrick J Volkerding | 2024-07-28 | 2 | -4/+77 |
* | Fri Jul 26 18:26:05 UTC 2024...a/cracklib-2.10.1-x86_64-1.txz: Upgraded.
a/kernel-firmware-20240726_8bdce1c-noarch-1.txz: Upgraded.
l/pangomm2-2.54.0-x86_64-1.txz: Upgraded.
n/NetworkManager-1.48.6-x86_64-1.txz: Upgraded.
n/nmap-7.95-x86_64-2.txz: Rebuilt.
Make sure zenmap.desktop has an icon in /usr/share/pixmaps.
Thanks to USUARIONUEVO.
n/rpcbind-1.2.7-x86_64-1.txz: Upgraded.
x/ibus-libpinyin-1.15.8-x86_64-1.txz: Upgraded.
x/ibus-m17n-1.4.31-x86_64-1.txz: Upgraded.
xap/blueman-2.4.3-x86_64-1.txz: Upgraded.
20240726182605 | Patrick J Volkerding | 2024-07-26 | 3 | -42/+20 |
* | Thu Jul 25 02:39:18 UTC 2024...Well folks, we have some more interesting stuff in /testing now.
Our good friend LuckyCyborg posted a while back about our trials with
GRUB2, and that we were banging our heads against a wall for no reason
trying to bend GRUB2 with our 09_slackware_linux grub.d script instead
of changing our kernel/initrd naming scheme to vmlinux-6.10.1-generic
and initrd-6.10.1-generic.img. And, as is often the case, our friend is
exactly correct. Once we stopped trying to swim against the current, GRUB2
started behaving as it should.
The updates in /testing change the kernel naming scheme thusly, and modify
the geninitrd script in the mkinitrd package to also use this naming
scheme. And, of course, 09_slackware_linux is removed from GRUB2, and the
10_linux script is only lightly modified.
Because lilo and elilo work with the symlinks to the kernel and initrd,
they shouldn't care anout this change.
We've probably got 6.9.11 coming tomorrow. Unless I hear that I should stop
the presses on this change, it's likely that those kernels will be updated
using the new naming scheme and the mkinitrd and grub updates will be moved
into the main tree from /testing.
We'll stick with 6.9 in the main tree for now because I'm still encountering
suspend failure with the 6.10 kernel here.
Enjoy! :-)
a/kernel-firmware-20240723_b37d247-noarch-1.txz: Upgraded.
ap/mpg123-1.32.6-x86_64-2.txz: Rebuilt.
l/libxml2-2.13.3-x86_64-1.txz: Upgraded.
This update fixes a security issue:
Fix XXE protection in downstream code.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-40896
(* Security fix *)
l/mozilla-nss-3.102.1-x86_64-1.txz: Upgraded.
l/nodejs-20.16.0-x86_64-1.txz: Upgraded.
l/python-importlib_metadata-8.2.0-x86_64-1.txz: Upgraded.
l/v4l-utils-1.28.1-x86_64-1.txz: Upgraded.
n/c-ares-1.32.3-x86_64-1.txz: Upgraded.
n/curl-8.9.0-x86_64-1.txz: Upgraded.
n/htdig-3.2.0b6-x86_64-10.txz: Rebuilt.
Patch XSS vulnerability. Thanks to jayjwa.
Get this out of cgi-bin. Thanks to LuckyCyborg.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2007-6110
(* Security fix *)
n/libtirpc-1.3.5-x86_64-1.txz: Upgraded.
extra/fltk/fltk-1.3.9-x86_64-2.txz: Rebuilt.
extra/tigervnc/tigervnc-1.13.1-x86_64-6.txz: Rebuilt.
Not sure why 1.14.0 isn't compiling, but we'll rebuild this for now.
testing/packages/grub-2.12-x86_64-12.txz: Upgraded.
Remove 09_slackware_linux.
10_linux: don't rename Slackware ;-)
This should configure the renamed kernel/initrd perfectly.
Perhaps 10_linux should no longer accept initrd.gz as a valid name?
For now it is accepted to avoid disrupting existing workflows.
testing/packages/kernel-generic-6.10.1-x86_64-1.txz: Upgraded.
testing/packages/kernel-headers-6.10.1-x86-1.txz: Upgraded.
testing/packages/kernel-huge-6.10.1-x86_64-1.txz: Upgraded.
testing/packages/kernel-modules-6.10.1-x86_64-1.txz: Upgraded.
testing/packages/kernel-source-6.10.1-noarch-1.txz: Upgraded.
testing/packages/mkinitrd-1.4.11-x86_64-35.txz: Upgraded.
geninitrd: create initrd with initrd-version-name.img filename.
Make compat symlinks by default.
Always add LVM (I've seen it mistakenly skipped... if we can get to the
bottom of that then we'll stop always adding it)
Add /etc/default/geninitrd for configuration.
20240725023918 | Patrick J Volkerding | 2024-07-25 | 5 | -50/+47 |
* | Tue Jul 23 18:54:25 UTC 2024...Hey folks, we got a new glibc and are beginning the process of baking the new
default compile flags into the toolchain, the graphics stack, and whatever else
happens along. Enjoy! :-)
a/aaa_glibc-solibs-2.40-x86_64-1.txz: Upgraded.
a/libblockdev-3.1.1_1-x86_64-2.txz: Rebuilt.
Fix build against recent ext2fs.h. Thanks to shipujin.
a/xfsprogs-6.9.0-x86_64-1.txz: Upgraded.
ap/rpm-4.19.1.1-x86_64-3.txz: Rebuilt.
ap/slackpkg-15.0.10-noarch-4.txz: Rebuilt.
Prefer gpg1 again. Going with the modern gpg with more dependencies was
a mistake in this case. (now we know why gnupg-1 is still around :-)
Thanks to Petri Kaukasoina.
d/binutils-2.42-x86_64-3.txz: Rebuilt.
d/cargo-vendor-filterer-0.5.14-x86_64-2.txz: Rebuilt.
d/cbindgen-0.26.0-x86_64-2.txz: Rebuilt.
d/ccache-4.10.2-x86_64-1.txz: Upgraded.
d/cmake-3.30.1-x86_64-2.txz: Rebuilt.
d/gcc-14.1.0-x86_64-2.txz: Rebuilt.
d/gcc-g++-14.1.0-x86_64-2.txz: Rebuilt.
d/gcc-gdc-14.1.0-x86_64-2.txz: Rebuilt.
d/gcc-gfortran-14.1.0-x86_64-2.txz: Rebuilt.
d/gcc-gm2-14.1.0-x86_64-2.txz: Rebuilt.
d/gcc-gnat-14.1.0-x86_64-2.txz: Rebuilt.
d/gcc-go-14.1.0-x86_64-2.txz: Rebuilt.
d/gcc-objc-14.1.0-x86_64-2.txz: Rebuilt.
d/libgccjit-14.1.0-x86_64-2.txz: Rebuilt.
d/libtool-2.4.7-x86_64-8.txz: Rebuilt.
d/parallel-20240722-noarch-1.txz: Upgraded.
d/pkg-config-0.29.2-x86_64-5.txz: Rebuilt.
d/python-setuptools-71.1.0-x86_64-1.txz: Upgraded.
d/ruby-3.3.4-x86_64-2.txz: Rebuilt.
d/rust-bindgen-0.69.4-x86_64-2.txz: Rebuilt.
d/strace-6.10-x86_64-1.txz: Upgraded.
d/subversion-1.14.3-x86_64-3.txz: Rebuilt.
e/emacs-29.4-x86_64-2.txz: Rebuilt.
l/PyQt-builder-1.16.4-x86_64-2.txz: Rebuilt.
l/PyQt5-5.15.11-x86_64-1.txz: Upgraded.
l/PyQt5_sip-12.15.0-x86_64-2.txz: Rebuilt.
l/argon2-20190702-x86_64-6.txz: Rebuilt.
l/ffmpeg-6.1.1-x86_64-5.txz: Rebuilt.
l/glibc-2.40-x86_64-1.txz: Upgraded.
This update fixes security issues:
nscd: Stack-based buffer overflow in netgroup cache.
nscd: Null pointer crash after notfound response.
nscd: netgroup cache may terminate daemon on memory allocation failure.
nscd: netgroup cache assumes NSS callback uses in-buffer strings.
These vulnerabilities were only present in the nscd binary.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-33599
https://www.cve.org/CVERecord?id=CVE-2024-33600
https://www.cve.org/CVERecord?id=CVE-2024-33601
https://www.cve.org/CVERecord?id=CVE-2024-33602
(* Security fix *)
l/glibc-i18n-2.40-x86_64-1.txz: Upgraded.
l/glibc-profile-2.40-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.24.5-x86_64-2.txz: Rebuilt.
l/libcdio-paranoia-10.2+2.0.2-x86_64-1.txz: Upgraded.
l/libclc-18.1.8-x86_64-3.txz: Rebuilt.
l/libproxy-0.5.8-x86_64-1.txz: Upgraded.
l/lz4-1.10.0-x86_64-1.txz: Upgraded.
l/poppler-24.07.0-x86_64-2.txz: Rebuilt.
l/python-importlib_metadata-8.1.0-x86_64-1.txz: Upgraded.
l/python-sphinx-7.4.7-x86_64-1.txz: Upgraded.
l/qt5-5.15.14_20240716_ae0c8451-x86_64-1.txz: Upgraded.
l/qt5-webkit-5.212.0_alpha4-x86_64-13.txz: Rebuilt.
l/qt6-6.7.2_20240610_3f005f1e-x86_64-3.txz: Rebuilt.
l/sip-6.8.6-x86_64-2.txz: Rebuilt.
l/spirv-llvm-translator-18.1.2-x86_64-2.txz: Rebuilt.
l/v4l-utils-1.28.0-x86_64-1.txz: Upgraded.
n/bind-9.18.28-x86_64-1.txz: Upgraded.
This update fixes security issues:
Remove SIG(0) support from named as a countermeasure for CVE-2024-1975.
qctx-zversion was not being cleared when it should have been leading to
an assertion failure if it needed to be reused.
An excessively large number of rrtypes per owner can slow down database query
processing, so a limit has been placed on the number of rrtypes that can be
stored per owner (node) in a cache or zone database. This is configured with
the new "max-rrtypes-per-name" option, and defaults to 100.
Excessively large rdatasets can slow down database query processing, so a
limit has been placed on the number of records that can be stored per
rdataset in a cache or zone database. This is configured with the new
"max-records-per-type" option, and defaults to 100.
Malicious DNS client that sends many queries over TCP but never reads
responses can cause server to respond slowly or not respond at all for other
clients.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-1975
https://www.cve.org/CVERecord?id=CVE-2024-4076
https://www.cve.org/CVERecord?id=CVE-2024-1737
https://www.cve.org/CVERecord?id=CVE-2024-0760
(* Security fix *)
n/fetchmail-6.4.39-x86_64-1.txz: Upgraded.
n/obexftp-0.24.2-x86_64-13.txz: Rebuilt.
n/pinentry-1.3.1-x86_64-2.txz: Rebuilt.
n/wpa_supplicant-2.11-x86_64-1.txz: Upgraded.
x/fcitx5-qt-5.1.6-x86_64-3.txz: Rebuilt.
x/ibus-m17n-1.4.30-x86_64-1.txz: Upgraded.
x/libdrm-2.4.122-x86_64-2.txz: Rebuilt.
x/marisa-0.2.6-x86_64-10.txz: Rebuilt.
x/mesa-24.1.4-x86_64-2.txz: Rebuilt.
x/vulkan-sdk-1.3.275.0-x86_64-3.txz: Rebuilt.
xap/audacious-4.4-x86_64-2.txz: Rebuilt.
xap/audacious-plugins-4.4-x86_64-2.txz: Rebuilt.
xap/mozilla-thunderbird-128.0.1esr-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/128.0.1esr/releasenotes/
xap/xaos-4.3.2-x86_64-2.txz: Rebuilt.
extra/emacs-regular-build/emacs-29.4-x86_64-2_regular.txz: Rebuilt.
20240723185425 | Patrick J Volkerding | 2024-07-23 | 6 | -239/+25 |
* | Thu Jul 18 20:01:18 UTC 2024...a/kernel-firmware-20240718_058deb9-noarch-1.txz: Upgraded.
a/kernel-generic-6.9.10-x86_64-1.txz: Upgraded.
a/kernel-huge-6.9.10-x86_64-1.txz: Upgraded.
a/kernel-modules-6.9.10-x86_64-1.txz: Upgraded.
d/cmake-3.30.1-x86_64-1.txz: Upgraded.
d/kernel-headers-6.9.10-x86-1.txz: Upgraded.
d/python-setuptools-71.0.3-x86_64-1.txz: Upgraded.
k/kernel-source-6.9.10-noarch-1.txz: Upgraded.
kde/labplot-2.11.1-x86_64-1.txz: Upgraded.
l/python-sphinx-7.4.6-x86_64-1.txz: Upgraded.
l/sof-firmware-2024.06-noarch-1.txz: Upgraded.
n/httpd-2.4.62-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
The first CVE is for Windows, but the second one is an additional fix for
the source code disclosure regression when using AddType.
Users are recommended to upgrade to version 2.4.62 which fixes this issue.
For more information, see:
https://downloads.apache.org/httpd/CHANGES_2.4.62
https://www.cve.org/CVERecord?id=CVE-2024-40898
https://www.cve.org/CVERecord?id=CVE-2024-40725
(* Security fix *)
n/openvpn-2.6.12-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240718200118 | Patrick J Volkerding | 2024-07-18 | 1 | -2/+2 |
* | Wed Jul 17 19:29:24 UTC 2024...a/openssl11-solibs-1.1.1za-x86_64-1.txz: Upgraded.
ap/vim-9.1.0595-x86_64-1.txz: Upgraded.
l/python-sphinx-7.4.5-x86_64-1.txz: Upgraded.
n/iproute2-6.10.0-x86_64-1.txz: Upgraded.
n/nftables-1.1.0-x86_64-1.txz: Upgraded.
n/openssl11-1.1.1za-x86_64-1.txz: Upgraded.
Apply patches to fix CVEs that were fixed by the 1.1.1{x,y,za} releases that
were only available to subscribers to OpenSSL's premium extended support.
These patches were prepared by backporting commits from the OpenSSL-3.0 repo.
The reported version number has been updated so that vulnerability scanners
calm down. All of these issues were considered to be of low severity.
We probably won't keep 1.1.1 in -current for long anyway, but might as well
patch it first. :-)
Thanks to Ken Zalewski for the patches!
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2023-5678
https://www.cve.org/CVERecord?id=CVE-2024-0727
https://www.cve.org/CVERecord?id=CVE-2024-2511
https://www.cve.org/CVERecord?id=CVE-2024-4741
https://www.cve.org/CVERecord?id=CVE-2024-5535
(* Security fix *)
x/mesa-24.1.4-x86_64-1.txz: Upgraded.
xap/vim-gvim-9.1.0595-x86_64-1.txz: Upgraded.
20240717192924 | Patrick J Volkerding | 2024-07-17 | 6 | -14/+791 |
* | Tue Jul 16 22:48:42 UTC 2024...n/curl-8.8.0-x86_64-3.txz: Rebuilt.
Recompiled using --with-openssl-quic to enable HTTP3.
This is (unsurprisingly) considered experimental, but should be fine.
Thanks to marav.
20240716224842 | Patrick J Volkerding | 2024-07-17 | 1 | -1/+2 |
* | Tue Jul 16 18:30:34 UTC 2024...Thanks for the Slackiversary wishes!
a/bcachefs-tools-1.9.4-x86_64-1.txz: Upgraded.
a/sysklogd-2.6.0-x86_64-1.txz: Upgraded.
l/dbus-python-1.3.2-x86_64-3.txz: Rebuilt.
Build with meson, which fixes pulseaudio's qpaeq.
Thanks to gmgf and USUARIONUEVO.
l/nodejs-20.15.1-x86_64-2.txz: Rebuilt.
Recompiled using --shared-nghttp3.
l/python-sphinx-7.4.4-x86_64-1.txz: Upgraded.
n/c-ares-1.32.2-x86_64-1.txz: Upgraded.
n/curl-8.8.0-x86_64-2.txz: Rebuilt.
Recompiled using --with-nghttp2=/usr and --with-nghttp3=/usr.
n/libnftnl-1.2.7-x86_64-1.txz: Upgraded.
n/nghttp3-1.4.0-x86_64-1.txz: Added.
Thanks to pbslxw and Lockywolf.
n/ntp-4.2.8p18-x86_64-5.txz: Rebuilt.
This is a bugfix release to fix a regression in ntp-4.2.8p18:
If the IPv6 link-local interface was not ready for binding on the first
attempt, ntpd would segfault in update_interfaces().
Thanks to Jonathan Woithe for the bug report and fix.
20240716183034 | Patrick J Volkerding | 2024-07-16 | 6 | -3/+199 |
* | Sun Jul 14 18:22:30 UTC 2024...a/cracklib-2.10.0-x86_64-1.txz: Upgraded.
kde/digikam-8.4.0-x86_64-1.txz: Upgraded.
l/PyQt5_sip-12.15.0-x86_64-1.txz: Upgraded.
n/gnupg2-2.4.5-x86_64-2.txz: Rebuilt.
Make a /usr/bin/gpgv symlink to gpgv2. Thanks to GazL ;-)
n/netatalk-3.2.3-x86_64-1.txz: Upgraded.
20240714182230 | Patrick J Volkerding | 2024-07-14 | 3 | -2/+6 |
* | Wed Jul 10 21:02:41 UTC 2024...l/gtk+3-3.24.43-x86_64-1.txz: Upgraded.
n/netatalk-3.2.2-x86_64-2.txz: Rebuilt.
Build using -Dwith-pam-config-path=/etc/pam.d. Thanks to Petri Kaukasoina.
20240710210241 | Patrick J Volkerding | 2024-07-10 | 1 | -1/+2 |
* | Sun Jul 7 19:32:19 UTC 2024...d/gdb-15.1-x86_64-1.txz: Upgraded.
n/openssh-9.8p1-x86_64-3.txz: Rebuilt.
As upstream refactors this into smaller binaries, we could easily run into
another update that causes an sshd lockout if the listener process isn't
restarted. So, let's try to prevent that. After the package is upgraded,
we'll use "sshd -t" to make sure that we have a sane configuration, and if
so then we'll restart the listener process automatically.
If you don't like this idea, you may turn it off in /etc/default/sshd.
n/wpa_supplicant-2.10-x86_64-5.txz: Rebuilt.
Use more normal permissions for the documentation and examples.
Thanks to Didier Spaier.
20240707193219 | Patrick J Volkerding | 2024-07-07 | 4 | -6/+16 |
* | Fri Jul 5 20:15:51 UTC 2024...a/kernel-firmware-20240703_e94a2a3-noarch-1.txz: Upgraded.
a/kernel-generic-6.9.8-x86_64-1.txz: Upgraded.
a/kernel-huge-6.9.8-x86_64-1.txz: Upgraded.
a/kernel-modules-6.9.8-x86_64-1.txz: Upgraded.
d/kernel-headers-6.9.8-x86-1.txz: Upgraded.
d/luajit-2.1.1720049189-x86_64-1.txz: Upgraded.
k/kernel-source-6.9.8-noarch-1.txz: Upgraded.
l/libxslt-1.1.42-x86_64-1.txz: Upgraded.
n/NetworkManager-1.48.4-x86_64-1.txz: Upgraded.
n/c-ares-1.32.0-x86_64-1.txz: Upgraded.
n/p11-kit-0.25.5-x86_64-1.txz: Upgraded.
n/php-8.3.9-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.php.net/ChangeLog-8.php#8.3.9
n/wireless-regdb-2024.07.04-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240705201551 | Patrick J Volkerding | 2024-07-05 | 2 | -3/+3 |
* | Wed Jul 3 22:27:28 UTC 2024...n/openssh-9.8p1-x86_64-2.txz: Rebuilt.
rc.sshd: also shut down sshd-session processes with "stop" function.
This shuts down connections cleanly instead of them having to time out.
Thanks to Petri Kaukasoina.
20240703222728 | Patrick J Volkerding | 2024-07-04 | 2 | -3/+3 |
* | Wed Jul 3 21:19:57 UTC 2024...n/httpd-2.4.61-x86_64-1.txz: Upgraded.
This update contains the fix for the 2.4.60 regression, which has also
been assigned a CVE. We fixed this already, but we'll make it official.
For more information, see:
https://downloads.apache.org/httpd/CHANGES_2.4
https://www.cve.org/CVERecord?id=CVE-2024-39884
(* Security fix *)
20240703211957 | Patrick J Volkerding | 2024-07-03 | 3 | -308/+3 |
* | Wed Jul 3 18:48:48 UTC 2024...ap/sysstat-12.7.6-x86_64-1.txz: Upgraded.
d/cmake-3.30.0-x86_64-1.txz: Upgraded.
l/libass-0.17.3-x86_64-1.txz: Upgraded.
n/ca-certificates-20240703-noarch-1.txz: Upgraded.
This update provides the latest CA certificates to check for the
authenticity of SSL connections.
n/gnutls-3.8.6-x86_64-1.txz: Upgraded.
n/netatalk-3.2.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
Fixed security issues that could lead to a denial of service or the
execution of arbitrary code.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-38439
https://www.cve.org/CVERecord?id=CVE-2024-38440
https://www.cve.org/CVERecord?id=CVE-2024-38441
(* Security fix *)
n/p11-kit-0.25.4-x86_64-1.txz: Upgraded.
n/pinentry-1.3.1-x86_64-1.txz: Upgraded.
x/mesa-24.1.3-x86_64-1.txz: Upgraded.
20240703184848 | Patrick J Volkerding | 2024-07-03 | 6 | -137/+49 |
* | Tue Jul 2 19:31:00 UTC 2024...ap/ksh93-1.0.9-x86_64-1.txz: Upgraded.
kde/calligra-3.2.1-x86_64-42.txz: Rebuilt.
Recompiled against poppler-24.07.0.
kde/cantor-23.08.5-x86_64-8.txz: Rebuilt.
Recompiled against poppler-24.07.0.
kde/kfilemetadata-5.116.0-x86_64-4.txz: Rebuilt.
Recompiled against poppler-24.07.0.
kde/kile-2.9.93-x86_64-35.txz: Rebuilt.
Recompiled against poppler-24.07.0.
kde/kitinerary-23.08.5-x86_64-6.txz: Rebuilt.
Recompiled against poppler-24.07.0.
kde/krita-5.2.3-x86_64-2.txz: Rebuilt.
Recompiled against poppler-24.07.0.
kde/okular-23.08.5-x86_64-6.txz: Rebuilt.
Recompiled against poppler-24.07.0.
l/ffmpeg-6.1.1-x86_64-4.txz: Rebuilt.
Recompiled against libplacebo-7.349.0.
l/gdbm-1.24-x86_64-1.txz: Upgraded.
l/libplacebo-7.349.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/poppler-24.07.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/python-trove-classifiers-2024.7.2-x86_64-1.txz: Upgraded.
n/getmail-6.19.02-x86_64-1.txz: Upgraded.
n/httpd-2.4.60-x86_64-2.txz: Rebuilt.
This update is to fix a regression and to note security issues that were not
listed in the CHANGES file included with the source code.
Fixed a regression where a config file using AddType rather than AddHandler
could cause raw PHP files to be downloaded rather than processed.
Thanks to Nobby6.
For more information, see:
https://downloads.apache.org/httpd/CHANGES_2.4.60
https://www.cve.org/CVERecord?id=CVE-2024-39573
https://www.cve.org/CVERecord?id=CVE-2024-38477
https://www.cve.org/CVERecord?id=CVE-2024-38476
https://www.cve.org/CVERecord?id=CVE-2024-38475
https://www.cve.org/CVERecord?id=CVE-2024-38474
https://www.cve.org/CVERecord?id=CVE-2024-38473
https://www.cve.org/CVERecord?id=CVE-2024-38472
https://www.cve.org/CVERecord?id=CVE-2024-36387
(* Security fix *)
xap/mpv-0.38.0-x86_64-4.txz: Rebuilt.
Recompiled against libplacebo-7.349.0.
20240702193100 | Patrick J Volkerding | 2024-07-02 | 2 | -1/+306 |
* | Mon Jul 1 20:12:46 UTC 2024...a/less-661-x86_64-1.txz: Upgraded.
d/ccache-4.10.1-x86_64-1.txz: Upgraded.
d/lua-5.4.7-x86_64-1.txz: Upgraded.
d/poke-4.2-x86_64-1.txz: Upgraded.
d/python-setuptools-70.2.0-x86_64-1.txz: Upgraded.
l/freecell-solver-6.12.0-x86_64-1.txz: Upgraded.
l/python-pillow-10.4.0-x86_64-1.txz: Upgraded.
l/spirv-llvm-translator-18.1.2-x86_64-1.txz: Upgraded.
n/httpd-2.4.60-x86_64-1.txz: Upgraded.
n/openssh-9.8p1-x86_64-1.txz: Upgraded.
This update fixes a security issue:
Fix race condition resulting in potential remote code execution.
For more information, see:
https://www.qualys.com/2024/07/01/cve-2024-6387/regresshion.txt
https://www.cve.org/CVERecord?id=CVE-2024-6387
(* Security fix *)
20240701201246 | Patrick J Volkerding | 2024-07-01 | 3 | -45/+45 |
* | Fri Jun 28 19:10:09 UTC 2024...a/sysvinit-scripts-15.1-noarch-20.txz: Rebuilt.
rc.M: fix typo when starting local LDAP name service daemon.
Thanks to tcanich.
ap/lxc-6.0.1-x86_64-2.txz: Rebuilt.
Update the ca-certificates as part of lxc-create.
l/gvfs-1.54.2-x86_64-1.txz: Upgraded.
l/wireplumber-0.5.5-x86_64-1.txz: Upgraded.
n/s-nail-14.9.25-x86_64-1.txz: Upgraded.
x/ibus-table-1.17.6-x86_64-1.txz: Upgraded.
20240628191009 | Patrick J Volkerding | 2024-06-28 | 2 | -3/+3 |
* | Mon Jun 24 21:17:14 UTC 2024...a/grub-2.12-x86_64-6.txz: Rebuilt.
Added update-grub script. Thanks to LuckyCyborg.
Also add grub-update symlink.
Disable the submenus. Thanks to LuckyCyborg.
Also find initrd-${tag}-${version}.gz and initrd-${tag}.gz. Thanks to gwhl.
Support kernel symlinks/files named vmlinu[xz]-generic, vmlinu[xz]-custom,
and vmlinu[xz]-huge. Thanks to Petri Kaukasoina.
Enabled os-prober again. It works here, and (at least with lilo) we've always
been friendly to dual-booting. It's easy to disable if you don't like it.
Sorry to LuckyCyborg. ;-)
d/parallel-20240622-noarch-1.txz: Upgraded.
kde/qca-2.3.9-x86_64-1.txz: Upgraded.
l/imagemagick-7.1.1_34-x86_64-1.txz: Upgraded.
n/NetworkManager-1.48.2-x86_64-1.txz: Upgraded.
n/ntp-4.2.8p18-x86_64-4.txz: Rebuilt.
In ntp.conf, don't use direct logging to /var/log/ntp. Instead use the syslog
facility to avoid having to restart ntpd when the logs are rotated.
We'll still rotate /var/log/ntp if we see it, though.
Thanks to Petri Kaukasoina.
xap/NetworkManager-openvpn-1.12.0-x86_64-1.txz: Upgraded.
20240624211714 | Patrick J Volkerding | 2024-06-24 | 2 | -3/+5 |
* | Sun Jun 16 21:32:49 UTC 2024...a/iniparser-4.2.4-x86_64-1.txz: Upgraded.
a/kernel-generic-6.9.5-x86_64-1.txz: Upgraded.
a/kernel-huge-6.9.5-x86_64-1.txz: Upgraded.
a/kernel-modules-6.9.5-x86_64-1.txz: Upgraded.
d/kernel-headers-6.9.5-x86-1.txz: Upgraded.
k/kernel-source-6.9.5-noarch-1.txz: Upgraded.
n/epic5-2.1.13-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240616213249 | Patrick J Volkerding | 2024-06-17 | 1 | -1/+1 |
* | Sat Jun 15 20:51:59 UTC 2024...a/kernel-firmware-20240614_d95dff8-noarch-1.txz: Upgraded.
a/sysvinit-scripts-15.1-noarch-19.txz: Rebuilt.
rc.S: add special case for mounting root bcachefs partition(s).
Thanks to 0XBF.
ap/man-pages-6.9-noarch-1.txz: Upgraded.
l/libxslt-1.1.40-x86_64-2.txz: Rebuilt.
[PATCH] runtest: Print output causing failure.
[PATCH] tests: Fix tests for libxml2 fix.
Thanks to USUARIONUEVO.
n/ca-certificates-20240615-noarch-1.txz: Upgraded.
This update provides the latest CA certificates to check for the
authenticity of SSL connections.
20240615205159 | Patrick J Volkerding | 2024-06-15 | 1 | -1/+2 |
* | Mon Jun 10 19:23:44 UTC 2024...ap/stow-2.4.0-x86_64-1.txz: Added.
Thanks to r1w1s1.
ap/texinfo-7.1-x86_64-2.txz: Rebuilt.
Recompiled against perl-5.40.0.
ap/vim-9.1.0473-x86_64-1.txz: Upgraded.
Compiled against perl-5.40.0.
d/ccache-4.10-x86_64-2.txz: Rebuilt.
Avoid downloading doctest.h at build time. Thanks to lucabon.
d/perl-5.40.0-x86_64-1.txz: Upgraded.
Upgraded: DBD-mysql-4.052, Path-Tiny-0.146, URI-5.28.
d/subversion-1.14.3-x86_64-2.txz: Rebuilt.
Recompiled against perl-5.40.0.
kde/plasma-workspace-5.27.11.1-x86_64-2.txz: Rebuilt.
[PATCH] Fix writing ICEAuthority file.
l/glib2-2.80.3-x86_64-1.txz: Upgraded.
l/imagemagick-7.1.1_33-x86_64-2.txz: Rebuilt.
Recompiled against perl-5.40.0.
l/pango-1.54.0-x86_64-1.txz: Upgraded.
l/python-packaging-24.1-x86_64-1.txz: Upgraded.
n/epic5-2.1.12-x86_64-9.txz: Rebuilt.
Recompiled against perl-5.40.0.
n/irssi-1.4.5-x86_64-3.txz: Rebuilt.
Recompiled against perl-5.40.0.
n/net-snmp-5.9.4-x86_64-5.txz: Rebuilt.
Recompiled against perl-5.40.0.
n/ntp-4.2.8p18-x86_64-3.txz: Rebuilt.
Recompiled against perl-5.40.0.
n/openldap-2.6.8-x86_64-2.txz: Rebuilt.
Recompiled against perl-5.40.0.
xap/hexchat-2.16.2-x86_64-3.txz: Rebuilt.
Recompiled against perl-5.40.0.
xap/pidgin-2.14.13-x86_64-2.txz: Rebuilt.
Recompiled against perl-5.40.0.
xap/rxvt-unicode-9.31-x86_64-3.txz: Rebuilt.
Recompiled against perl-5.40.0.
xap/vim-gvim-9.1.0473-x86_64-1.txz: Upgraded.
Compiled against perl-5.40.0.
xap/xscreensaver-6.09-x86_64-1.txz: Upgraded.
xfce/xfce4-power-manager-4.18.4-x86_64-1.txz: Upgraded.
xfce/xfce4-session-4.18.4-x86_64-1.txz: Upgraded.
20240610192344 | Patrick J Volkerding | 2024-06-10 | 6 | -6/+6 |
* | Thu Jun 6 19:44:49 UTC 2024...kde/kstars-3.7.1-x86_64-1.txz: Upgraded.
l/mlt-7.24.0-x86_64-2.txz: Rebuilt.
Add build options -DMOD_QT6=ON and -DMOD_GLXANIMATE_QT6=ON.
Thanks to gmgf and sombragris.
l/protobuf-27.1-x86_64-1.txz: Upgraded.
n/ipset-7.22-x86_64-1.txz: Upgraded.
n/php-8.3.8-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues:
Bypass of CVE-2012-1823, Argument Injection in PHP-CGI.
Filter bypass in filter_var FILTER_VALIDATE_URL.
Bypass of CVE-2024-1874.
For more information, see:
https://www.php.net/ChangeLog-8.php#8.3.8
https://www.cve.org/CVERecord?id=CVE-2024-4577
https://www.cve.org/CVERecord?id=CVE-2024-5458
https://www.cve.org/CVERecord?id=CVE-2024-5585
(* Security fix *)
x/libinput-1.26.0-x86_64-1.txz: Upgraded.
x/libwacom-2.12.0-x86_64-1.txz: Upgraded.
x/mesa-24.1.1-x86_64-1.txz: Upgraded.
xap/pan-0.159-x86_64-1.txz: Upgraded.
20240606194449 | Patrick J Volkerding | 2024-06-06 | 1 | -2/+2 |
* | Wed Jun 5 19:06:36 UTC 2024...a/kernel-firmware-20240604_22643bb-noarch-1.txz: Upgraded.
a/less-657-x86_64-1.txz: Upgraded.
a/openssl-solibs-3.3.1-x86_64-1.txz: Upgraded.
d/cmake-3.29.4-x86_64-1.txz: Upgraded.
l/poppler-24.06.0-x86_64-1.txz: Upgraded.
l/protobuf-27.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/python-zipp-3.19.2-x86_64-1.txz: Upgraded.
l/qt6-6.7.1_20240516_6977d02f-x86_64-2.txz: Rebuilt.
Recompiled against protobuf-27.0.
n/ca-certificates-20240604-noarch-1.txz: Upgraded.
This update provides the latest CA certificates to check for the
authenticity of SSL connections.
n/mosh-1.4.0-x86_64-2.txz: Rebuilt.
Recompiled against protobuf-27.0.
n/openssl-3.3.1-x86_64-1.txz: Upgraded.
This update fixes bugs and one low severity security issue:
Calling the OpenSSL API function SSL_free_buffers may cause memory to be
accessed that was previously freed in some situations. Our investigations
indicate that this function is rarely used by applications.
For more information, see:
https://www.openssl.org/news/secadv/20240528.txt
https://www.cve.org/CVERecord?id=CVE-2024-4741
(* Security fix *)
20240605190636 | Patrick J Volkerding | 2024-06-05 | 2 | -1/+124 |
* | Sat Jun 1 19:52:37 UTC 2024...a/findutils-4.10.0-x86_64-1.txz: Upgraded.
a/logrotate-3.22.0-x86_64-1.txz: Upgraded.
Thanks to opty for getting our changes accepted upstream.
a/sysvinit-scripts-15.1-noarch-18.txz: Rebuilt.
rc.M: start dnsmasq before ntpd. Thanks to lostintime.
d/git-2.45.2-x86_64-1.txz: Upgraded.
d/poke-4.1-x86_64-1.txz: Upgraded.
kde/fcitx5-configtool-5.1.6-x86_64-1.txz: Upgraded.
kde/kwin-5.27.11-x86_64-2.txz: Rebuilt.
Recompiled against wayland-1.23.0 since it seems they broke the ABI.
Let me know if anything else needs help.
kde/libindi-2.0.8-x86_64-1.txz: Upgraded.
l/mujs-1.3.4-x86_64-1.txz: Added.
l/python-zipp-3.19.1-x86_64-1.txz: Upgraded.
n/ntp-4.2.8p18-x86_64-2.txz: Rebuilt.
rc.ntp: properly create the PID file on start.
Add /etc/default/ntp to configure ntpd startup options since some people are
needing to add -4 to avoid an error.
Thanks to rkelsen and teoberi.
x/fcitx5-5.1.10-x86_64-1.txz: Upgraded.
x/fcitx5-chinese-addons-5.1.6-x86_64-1.txz: Upgraded.
x/fcitx5-hangul-5.1.4-x86_64-1.txz: Upgraded.
x/fcitx5-kkc-5.1.4-x86_64-1.txz: Upgraded.
x/fcitx5-table-extra-5.1.6-x86_64-1.txz: Upgraded.
x/fcitx5-table-other-5.1.3-x86_64-1.txz: Upgraded.
x/libime-1.1.8-x86_64-1.txz: Upgraded.
x/xcb-imdkit-1.0.9-x86_64-1.txz: Upgraded.
xap/blueman-2.4.2-x86_64-1.txz: Upgraded.
xap/mpv-0.38.0-x86_64-3.txz: Rebuilt.
Recompiled against mujs-1.3.4.
20240601195237 | Patrick J Volkerding | 2024-06-01 | 4 | -9/+31 |
* | Fri May 31 23:52:07 UTC 2024...d/luajit-2.0.1716656478-x86_64-1.txz: Added.
Thanks to Erik Falor.
n/proftpd-1.3.8b-x86_64-4.txz: Rebuilt.
Build with mod_wrap2 and mod_wrap2_file instead of mod_wrap, which has
problems with ipv6. Thanks to jayjwa.
xap/mpv-0.38.0-x86_64-2.txz: Rebuilt.
[PATCH 1/4] av_common: parent mp_get_lavf_demuxer contents to the list.
[PATCH 2/4] stream: implement get_protocols method for stream_lavf.
[PATCH 3/4] build: dynamically generate mpv.desktop file protocols.
[PATCH 4/4] stream_lavf: don't add ffmpeg bluray or dvd protocols.
Thanks to gmgf.
Build against luajit. Thanks to pm_a_cup_of_tea.
20240531235207 | Patrick J Volkerding | 2024-06-01 | 2 | -3/+2 |
* | Fri May 31 18:49:48 UTC 2024...a/hwdata-0.383-noarch-1.txz: Upgraded.
a/pciutils-3.13.0-x86_64-1.txz: Upgraded.
d/ccache-4.10-x86_64-1.txz: Upgraded.
d/meson-1.4.1-x86_64-1.txz: Upgraded.
d/ruby-3.3.2-x86_64-1.txz: Upgraded.
kde/plasma-sdk-5.27.11.1-x86_64-1.txz: Upgraded.
kde/plasma-workspace-5.27.11.1-x86_64-1.txz: Upgraded.
kde/tokodon-23.08.5-x86_64-1.txz: Added.
l/libvpx-1.14.1-x86_64-1.txz: Upgraded.
l/python-requests-2.32.3-x86_64-1.txz: Upgraded.
n/NetworkManager-1.48.0-x86_64-1.txz: Upgraded.
n/getmail-6.19.00-x86_64-1.txz: Upgraded.
x/libevdev-1.13.2-x86_64-1.txz: Upgraded.
x/wayland-1.23.0-x86_64-1.txz: Upgraded.
xap/gnuplot-6.0.1-x86_64-1.txz: Upgraded.
xap/mpv-0.38.0-x86_64-1.txz: Added.
Evidently we need one more media player. ;-)
Thanks to John Vogel Corning, Andreas Guldstrand, and Christoph Willing.
20240531184948 | Patrick J Volkerding | 2024-05-31 | 2 | -2/+2 |
* | Sun May 26 00:07:39 UTC 2024...a/kernel-firmware-20240519_ec8627e-noarch-1.txz: Upgraded.
a/kernel-generic-6.9.2-x86_64-1.txz: Upgraded.
a/kernel-huge-6.9.2-x86_64-1.txz: Upgraded.
a/kernel-modules-6.9.2-x86_64-1.txz: Upgraded.
d/kernel-headers-6.9.2-x86-1.txz: Upgraded.
e/emacspeak-60.0-x86_64-2.txz: Rebuilt.
Fixed dangling symlink. Thanks to marav.
k/kernel-source-6.9.2-noarch-1.txz: Upgraded.
kde/calligra-3.2.1-x86_64-40.txz: Rebuilt.
Recompiled against gsl-2.8.
kde/krita-5.2.2-x86_64-10.txz: Rebuilt.
Recompiled against gsl-2.8.
kde/kstars-3.7.0-x86_64-2.txz: Rebuilt.
Recompiled against gsl-2.8.
kde/libindi-2.0.7-x86_64-2.txz: Rebuilt.
Recompiled against gsl-2.8.
kde/stellarsolver-2.5-x86_64-2.txz: Rebuilt.
Recompiled against gsl-2.8.
kde/step-23.08.5-x86_64-3.txz: Rebuilt.
Recompiled against gsl-2.8.
l/dav1d-1.4.2-x86_64-1.txz: Upgraded.
l/glib2-2.80.2-x86_64-2.txz: Rebuilt.
[PATCH 1/2] gmenuexporter: Fix a NULL pointer dereference on an error
handling path.
[PATCH 2/2] gactiongroupexporter: Fix memory problems on an error
handling path.
Thanks to Philip Withnall and Arleson.
l/gsl-2.8-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/librsvg-2.58.1-x86_64-1.txz: Upgraded.
l/pipewire-1.0.7-x86_64-1.txz: Upgraded.
n/ntp-4.2.8p18-x86_64-1.txz: Upgraded.
x/igt-gpu-tools-1.28-x86_64-3.txz: Rebuilt.
Recompiled against gsl-2.8.
xap/sane-1.3.1-x86_64-1.txz: Upgraded.
xap/xlockmore-5.78-x86_64-1.txz: Upgraded.
xap/xsnow-3.7.9-x86_64-2.txz: Rebuilt.
Recompiled against gsl-2.8.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240526000739 | Patrick J Volkerding | 2024-05-26 | 1 | -1/+1 |
* | Fri May 24 19:58:32 UTC 2024...ap/sqlite-3.46.0-x86_64-1.txz: Upgraded.
l/gvfs-1.54.1-x86_64-1.txz: Upgraded.
l/python-requests-2.32.2-x86_64-1.txz: Upgraded.
n/c-ares-1.29.0-x86_64-1.txz: Upgraded.
n/dhcpcd-10.0.8-x86_64-1.txz: Upgraded.
n/wsdd2-1.8.7-x86_64-1.txz: Added.
Needed by Samba to enable share discovery.
Thanks to mistfire and Tim Dickson.
20240524195832 | Patrick J Volkerding | 2024-05-24 | 6 | -0/+225 |
* | Mon May 20 18:42:49 UTC 2024...a/less-655-x86_64-1.txz: Upgraded.
Switch to lesspipe.sh from https://github.com/wofr06. Thanks to zsd.
ap/ghostscript-10.03.1-x86_64-1.txz: Upgraded.
ap/man-pages-6.8-noarch-1.txz: Upgraded.
ap/mariadb-10.11.8-x86_64-1.txz: Upgraded.
This update fixes bugs and a security issue:
Difficult to exploit vulnerability allows unauthenticated attacker with
logon to the infrastructure where MariaDB Server executes to compromise the
server. This could result in unauthorized update, insert or delete access
to some of the data as well as unauthorized read access to a subset of the
data and unauthorized ability to cause a partial denial of service.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-21096
(* Security fix *)
d/doxygen-1.11.0-x86_64-1.txz: Upgraded.
d/llvm-18.1.6-x86_64-1.txz: Upgraded.
kde/attica-5.116.0-x86_64-1.txz: Upgraded.
kde/baloo-5.116.0-x86_64-1.txz: Upgraded.
kde/bluez-qt-5.116.0-x86_64-1.txz: Upgraded.
kde/breeze-icons-5.116.0-noarch-1.txz: Upgraded.
kde/extra-cmake-modules-5.116.0-x86_64-1.txz: Upgraded.
kde/frameworkintegration-5.116.0-x86_64-1.txz: Upgraded.
kde/kactivities-5.116.0-x86_64-1.txz: Upgraded.
kde/kactivities-stats-5.116.0-x86_64-1.txz: Upgraded.
kde/kapidox-5.116.0-x86_64-1.txz: Upgraded.
kde/karchive-5.116.0-x86_64-1.txz: Upgraded.
kde/kauth-5.116.0-x86_64-1.txz: Upgraded.
kde/kbookmarks-5.116.0-x86_64-1.txz: Upgraded.
kde/kcalendarcore-5.116.0-x86_64-1.txz: Upgraded.
kde/kcmutils-5.116.0-x86_64-1.txz: Upgraded.
kde/kcodecs-5.116.0-x86_64-1.txz: Upgraded.
kde/kcompletion-5.116.0-x86_64-1.txz: Upgraded.
kde/kconfig-5.116.0-x86_64-1.txz: Upgraded.
kde/kconfigwidgets-5.116.0-x86_64-1.txz: Upgraded.
kde/kcontacts-5.116.0-x86_64-1.txz: Upgraded.
kde/kcoreaddons-5.116.0-x86_64-1.txz: Upgraded.
kde/kcrash-5.116.0-x86_64-1.txz: Upgraded.
kde/kdav-5.116.0-x86_64-1.txz: Upgraded.
kde/kdbusaddons-5.116.0-x86_64-1.txz: Upgraded.
kde/kdeclarative-5.116.0-x86_64-1.txz: Upgraded.
kde/kded-5.116.0-x86_64-1.txz: Upgraded.
kde/kdelibs4support-5.116.0-x86_64-1.txz: Upgraded.
kde/kdesignerplugin-5.116.0-x86_64-1.txz: Upgraded.
kde/kdesu-5.116.0-x86_64-1.txz: Upgraded.
kde/kdewebkit-5.116.0-x86_64-1.txz: Upgraded.
kde/kdnssd-5.116.0-x86_64-1.txz: Upgraded.
kde/kdoctools-5.116.0-x86_64-1.txz: Upgraded.
kde/kemoticons-5.116.0-x86_64-1.txz: Upgraded.
kde/kfilemetadata-5.116.0-x86_64-1.txz: Upgraded.
kde/kglobalaccel-5.116.0-x86_64-1.txz: Upgraded.
kde/kguiaddons-5.116.0-x86_64-1.txz: Upgraded.
kde/kholidays-5.116.0-x86_64-1.txz: Upgraded.
kde/khtml-5.116.0-x86_64-1.txz: Upgraded.
kde/ki18n-5.116.0-x86_64-1.txz: Upgraded.
kde/kiconthemes-5.116.0-x86_64-1.txz: Upgraded.
kde/kidletime-5.116.0-x86_64-1.txz: Upgraded.
kde/kimageformats-5.116.0-x86_64-1.txz: Upgraded.
kde/kinit-5.116.0-x86_64-1.txz: Upgraded.
kde/kio-5.116.0-x86_64-1.txz: Upgraded.
kde/kirigami2-5.116.0-x86_64-1.txz: Upgraded.
kde/kitemmodels-5.116.0-x86_64-1.txz: Upgraded.
kde/kitemviews-5.116.0-x86_64-1.txz: Upgraded.
kde/kjobwidgets-5.116.0-x86_64-1.txz: Upgraded.
kde/kjs-5.116.0-x86_64-1.txz: Upgraded.
kde/kjsembed-5.116.0-x86_64-1.txz: Upgraded.
kde/kmediaplayer-5.116.0-x86_64-1.txz: Upgraded.
kde/knewstuff-5.116.0-x86_64-1.txz: Upgraded.
kde/knotifications-5.116.0-x86_64-1.txz: Upgraded.
kde/knotifyconfig-5.116.0-x86_64-1.txz: Upgraded.
kde/kpackage-5.116.0-x86_64-1.txz: Upgraded.
kde/kparts-5.116.0-x86_64-1.txz: Upgraded.
kde/kpeople-5.116.0-x86_64-1.txz: Upgraded.
kde/kplotting-5.116.0-x86_64-1.txz: Upgraded.
kde/kpty-5.116.0-x86_64-1.txz: Upgraded.
kde/kquickcharts-5.116.0-x86_64-1.txz: Upgraded.
kde/kross-5.116.0-x86_64-1.txz: Upgraded.
kde/krunner-5.116.0-x86_64-1.txz: Upgraded.
kde/kservice-5.116.0-x86_64-1.txz: Upgraded.
kde/ktexteditor-5.116.0-x86_64-1.txz: Upgraded.
kde/ktextwidgets-5.116.0-x86_64-1.txz: Upgraded.
kde/kunitconversion-5.116.0-x86_64-1.txz: Upgraded.
kde/kwallet-5.116.0-x86_64-1.txz: Upgraded.
kde/kwayland-5.116.0-x86_64-1.txz: Upgraded.
kde/kwidgetsaddons-5.116.0-x86_64-1.txz: Upgraded.
kde/kwindowsystem-5.116.0-x86_64-1.txz: Upgraded.
kde/kxmlgui-5.116.0-x86_64-1.txz: Upgraded.
kde/kxmlrpcclient-5.116.0-x86_64-1.txz: Upgraded.
kde/modemmanager-qt-5.116.0-x86_64-1.txz: Upgraded.
kde/networkmanager-qt-5.116.0-x86_64-1.txz: Upgraded.
kde/oxygen-icons-5.116.0-noarch-1.txz: Upgraded.
kde/plasma-framework-5.116.0-x86_64-1.txz: Upgraded.
kde/prison-5.116.0-x86_64-1.txz: Upgraded.
kde/purpose-5.116.0-x86_64-1.txz: Upgraded.
kde/qqc2-desktop-style-5.116.0-x86_64-1.txz: Upgraded.
kde/solid-5.116.0-x86_64-1.txz: Upgraded.
kde/sonnet-5.116.0-x86_64-1.txz: Upgraded.
kde/syndication-5.116.0-x86_64-1.txz: Upgraded.
kde/syntax-highlighting-5.116.0-x86_64-1.txz: Upgraded.
kde/threadweaver-5.116.0-x86_64-1.txz: Upgraded.
l/gi-docgen-2024.1-x86_64-1.txz: Upgraded.
l/libass-0.17.2-x86_64-1.txz: Upgraded.
l/libcap-2.70-x86_64-1.txz: Upgraded.
l/libedit-20240517_3.1-x86_64-1.txz: Upgraded.
l/qt5-5.15.13_20240519_56514bcd-x86_64-1.txz: Upgraded.
n/iw-6.9-x86_64-1.txz: Upgraded.
n/nghttp2-1.62.1-x86_64-1.txz: Upgraded.
20240520184249 | Patrick J Volkerding | 2024-05-20 | 4 | -1/+23 |
* | Fri May 17 18:49:15 UTC 2024...a/iniparser-4.2.1-x86_64-1.txz: Upgraded.
a/kernel-generic-6.9.1-x86_64-1.txz: Upgraded.
a/kernel-huge-6.9.1-x86_64-1.txz: Upgraded.
a/kernel-modules-6.9.1-x86_64-1.txz: Upgraded.
a/lvm2-2.03.24-x86_64-1.txz: Upgraded.
a/mcelog-199-x86_64-1.txz: Upgraded.
a/xfsprogs-6.8.0-x86_64-1.txz: Upgraded.
d/kernel-headers-6.9.1-x86-1.txz: Upgraded.
e/emacspeak-60.0-x86_64-1.txz: Upgraded.
k/kernel-source-6.9.1-noarch-1.txz: Upgraded.
l/python-trove-classifiers-2024.5.17-x86_64-1.txz: Upgraded.
l/python-zipp-3.18.2-x86_64-1.txz: Upgraded.
n/bluez-5.76-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240517184915 | Patrick J Volkerding | 2024-05-17 | 2 | -48/+1 |
* | Thu May 16 02:31:40 UTC 2024...a/bcachefs-tools-1.7.0-x86_64-1.txz: Added.
a/kernel-generic-6.9.0-x86_64-2.txz: Upgraded.
a/kernel-huge-6.9.0-x86_64-2.txz: Upgraded.
a/kernel-modules-6.9.0-x86_64-2.txz: Upgraded.
d/git-2.45.1-x86_64-1.txz: Upgraded.
This update fixes security issues:
Recursive clones on case-insensitive filesystems that support symbolic
links are susceptible to case confusion that can be exploited to
execute just-cloned code during the clone operation.
Repositories can be configured to execute arbitrary code during local
clones. To address this, the ownership checks introduced in v2.30.3
are now extended to cover cloning local repositories.
Local clones may end up hardlinking files into the target repository's
object database when source and target repository reside on the same
disk. If the source repository is owned by a different user, then
those hardlinked files may be rewritten at any point in time by the
untrusted user.
When cloning a local source repository that contains symlinks via the
filesystem, Git may create hardlinks to arbitrary user-readable files
on the same filesystem as the target repository in the objects/
directory.
It is supposed to be safe to clone untrusted repositories, even those
unpacked from zip archives or tarballs originating from untrusted
sources, but Git can be tricked to run arbitrary code as part of the
clone.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-32002
https://www.cve.org/CVERecord?id=CVE-2024-32004
https://www.cve.org/CVERecord?id=CVE-2024-32020
https://www.cve.org/CVERecord?id=CVE-2024-32021
https://www.cve.org/CVERecord?id=CVE-2024-32465
(* Security fix *)
d/kernel-headers-6.9.0-x86-2.txz: Upgraded.
d/strace-6.9-x86_64-1.txz: Upgraded.
k/kernel-source-6.9.0-noarch-2.txz: Upgraded.
BCACHEFS_FS m -> y
CRYPTO_CHACHA20 m -> y
CRYPTO_LIB_CHACHA_GENERIC m -> y
CRYPTO_LIB_POLY1305_GENERIC m -> y
CRYPTO_POLY1305 m -> y
MITIGATION_GDS_FORCE y -> n
kde/wcslib-8.3-x86_64-1.txz: Upgraded.
l/gdk-pixbuf2-2.42.12-x86_64-1.txz: Upgraded.
ani: Reject files with multiple INA or IART chunks.
ani: Reject files with multiple anih chunks.
ani: validate chunk size.
Thanks to 0xvhp, pedrib, and Benjamin Gilbert.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-48622
(* Security fix *)
l/gtk+3-3.24.42-x86_64-1.txz: Upgraded.
n/bind-9.18.27-x86_64-1.txz: Upgraded.
This is a bugfix release.
n/popa3d-1.0.3-x86_64-8.txz: Rebuilt.
This is a bugfix release:
Build with AUTH_PAM, not AUTH_SHADOW.
Thanks to jayjwa.
x/xorg-server-xwayland-23.2.7-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240516023140 | Patrick J Volkerding | 2024-05-16 | 3 | -73/+33 |
* | Mon May 13 18:22:20 UTC 2024...l/libxml2-2.12.7-x86_64-1.txz: Upgraded.
Fix buffer overread with "xmllint --htmlout".
xmllint: Fix --pedantic option.
save: Handle invalid parent pointers in xhtmlNodeDumpOutput.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-34459
(* Security fix *)
l/python-lxml-5.2.2-x86_64-1.txz: Upgraded.
n/iproute2-6.9.0-x86_64-1.txz: Upgraded.
n/nghttp2-1.62.0-x86_64-1.txz: Upgraded.
x/xterm-391-x86_64-1.txz: Upgraded.
20240513182220 | Patrick J Volkerding | 2024-05-13 | 1 | -1/+1 |
* | Sun May 12 19:10:12 UTC 2024...a/less-654-x86_64-1.txz: Upgraded.
d/ninja-1.12.1-x86_64-1.txz: Upgraded.
n/whois-5.5.23-x86_64-1.txz: Upgraded.
Updated the .sc, .********* (.xn--yfro4i67o, Singapore)
and .********************************* (.xn--clchc0ea0b2g2a9gcd, Singapore)
TLD servers.
extra/bittornado/bittornado-0.3.18-noarch-3.txz: Removed.
Obsolete and based on python2.
20240512191012 | Patrick J Volkerding | 2024-05-12 | 42 | -13/+330 |
* | Thu May 9 19:26:51 UTC 2024...l/libjpeg-turbo-3.0.3-x86_64-1.txz: Upgraded.
l/nodejs-20.13.1-x86_64-1.txz: Upgraded.
l/pipewire-1.0.6-x86_64-1.txz: Upgraded.
n/php-8.3.7-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.php.net/ChangeLog-8.php#8.3.7
n/wireless-regdb-2024.05.08-x86_64-1.txz: Upgraded.
extra/bash-completion/bash-completion-2.14.0-noarch-1.txz: Upgraded.
20240509192651 | Patrick J Volkerding | 2024-05-09 | 2 | -3/+3 |
* | Wed May 8 21:05:29 UTC 2024...d/cmake-3.29.3-x86_64-1.txz: Upgraded.
l/adwaita-icon-theme-46.0-noarch-2.txz: Rebuilt.
Restore icons that went missing after adwaita-icon-theme-41.0.
l/glib2-2.80.2-x86_64-1.txz: Upgraded.
l/libgnt-2.14.4_dev-x86_64-1.txz: Upgraded.
l/mozilla-nss-3.100-x86_64-1.txz: Upgraded.
n/samba-4.20.1-x86_64-1.txz: Upgraded.
x/mesa-24.0.7-x86_64-1.txz: Upgraded.
20240508210529 | Patrick J Volkerding | 2024-05-08 | 2 | -3/+3 |
* | Sat May 4 17:37:11 UTC 2024...a/elvis-2.2_0-x86_64-9.txz: Rebuilt.
Recompiled against ncurses-6.5.
a/gettext-0.22.5-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
a/procps-ng-4.0.4-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
ap/bc-1.07.1-x86_64-6.txz: Rebuilt.
Recompiled against ncurses-6.5.
ap/bpe-2.01.00-x86_64-7.txz: Rebuilt.
Recompiled against ncurses-6.5.
ap/gutenprint-5.3.4-x86_64-4.txz: Rebuilt.
Recompiled against ncurses-6.5.
ap/ispell-3.4.06-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
ap/joe-4.6-x86_64-5.txz: Rebuilt.
Recompiled against ncurses-6.5.
ap/nvme-cli-2.9.1-x86_64-1.txz: Upgraded.
ap/powertop-2.15-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
ap/sc-7.16-x86_64-11.txz: Rebuilt.
Recompiled against ncurses-6.5.
ap/screen-4.9.1-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
ap/xfsdump-3.1.12-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
d/clisp-2.50_20230718_669249717-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
d/cmake-3.29.2-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
d/cscope-15.9-x86_64-4.txz: Rebuilt.
Recompiled against ncurses-6.5.
d/gettext-tools-0.22.5-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
d/guile-3.0.9-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
d/lua-5.4.6-x86_64-6.txz: Rebuilt.
Recompiled against ncurses-6.5.
d/poke-4.0-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
kde/kalgebra-23.08.5-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
l/enchant-2.7.3-x86_64-1.txz: Upgraded.
l/gdbm-1.23-x86_64-3.txz: Rebuilt.
Recompiled against ncurses-6.5.
l/lame-3.100-x86_64-5.txz: Rebuilt.
Recompiled against ncurses-6.5.
l/libcdio-2.1.0-x86_64-4.txz: Rebuilt.
Recompiled against ncurses-6.5.
l/libedit-20230828_3.1-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
l/libnjb-2.2.7-x86_64-5.txz: Rebuilt.
Recompiled against ncurses-6.5.
l/libnvme-1.9-x86_64-1.txz: Upgraded.
l/libqalculate-5.0.0-x86_64-3.txz: Rebuilt.
Recompiled against ncurses-6.5.
l/python-pygments-2.18.0-x86_64-1.txz: Upgraded.
l/qtkeychain-0.14.3-x86_64-1.txz: Upgraded.
l/readline-8.2.010-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/elm-2.5.8-x86_64-8.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/epic5-2.1.12-x86_64-8.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/iftop-1.0pre4-x86_64-5.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/metamail-2.7-x86_64-11.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/mtr-0.95-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/net-snmp-5.9.4-x86_64-4.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/netkit-ftp-0.17-x86_64-8.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/netkit-ntalk-0.17-x86_64-8.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/netwatch-1.3.1_2-x86_64-6.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/nn-6.7.3-x86_64-9.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/php-8.3.6-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/samba-4.20.0-x86_64-3.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/telnet-0.17-x86_64-7.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/wpa_supplicant-2.10-x86_64-4.txz: Rebuilt.
Recompiled against ncurses-6.5.
n/ytalk-3.3.0-x86_64-7.txz: Rebuilt.
Recompiled against ncurses-6.5.
xap/MPlayer-20240403-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
xap/ddd-3.4.0-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
xap/gnuchess-6.2.9-x86_64-2.txz: Rebuilt.
Recompiled against ncurses-6.5.
xap/xine-ui-0.99.14-x86_64-3.txz: Rebuilt.
Recompiled against ncurses-6.5.
y/bsd-games-2.17-x86_64-5.txz: Rebuilt.
Recompiled against ncurses-6.5.
20240504173711 | Patrick J Volkerding | 2024-05-04 | 15 | -15/+15 |
* | Thu May 2 23:49:58 UTC 2024...a/btrfs-progs-6.8.1-x86_64-1.txz: Upgraded.
a/kernel-firmware-20240502_28f75f1-noarch-1.txz: Upgraded.
a/kernel-generic-6.6.30-x86_64-1.txz: Upgraded.
a/kernel-huge-6.6.30-x86_64-1.txz: Upgraded.
a/kernel-modules-6.6.30-x86_64-1.txz: Upgraded.
ap/mariadb-10.11.7-x86_64-2.txz: Rebuilt.
Try to preserve the timestamp on rc.mysqld.new.
d/kernel-headers-6.6.30-x86-1.txz: Upgraded.
d/llvm-18.1.5-x86_64-1.txz: Upgraded.
d/rust-1.78.0-x86_64-1.txz: Upgraded.
k/kernel-source-6.6.30-noarch-1.txz: Upgraded.
l/SDL2-2.30.3-x86_64-1.txz: Upgraded.
n/mobile-broadband-provider-info-20240502-noarch-1.txz: Upgraded.
x/ibus-1.5.30-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240502234958 | Patrick J Volkerding | 2024-05-03 | 1 | -23/+22 |
* | Mon Apr 29 21:32:37 UTC 2024...a/aaa_libraries-15.1-x86_64-31.txz: Rebuilt.
Added: libncurses++w.so.6.5, libtic.so.6.5.
Upgraded: libformw.so.6.5, libmenuw.so.6.5, libncursesw.so.6.5,
libpanelw.so.6.5, libtinfo.so.6.5.
Removed (with compat symlinks made): libform.so.6.4, libmenu.so.6.4,
libncurses.so.6.4, libpanel.so.6.4.
a/aaa_terminfo-6.5-x86_64-1.txz: Upgraded.
l/ncurses-6.5-x86_64-1.txz: Upgraded.
This seemed like a good opportunity to go over my notes and try to make this
SlackBuild at least defensible, if not correct. :-) The non-wide libraries
have all been purged and replaced with compatibility symlinks pointing to the
wide versions. Anything trying to use -lncurses (etc) will be redirected to
-lncursesw (etc) at compile time. Looks like nearly 50 packages are linked to
the non-wide libraries, but everything works this way.
Thanks to GazL who provided most of the suggestions used.
l/python-pyproject-hooks-1.1.0-x86_64-1.txz: Upgraded.
n/lynx-2.9.1-x86_64-1.txz: Upgraded.
x/xconsole-1.1.0-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-125.0.3-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/firefox/125.0.3/releasenotes/
20240429213237 | Patrick J Volkerding | 2024-04-30 | 1 | -2/+2 |
* | Thu Apr 25 17:58:17 UTC 2024...l/PyQt-builder-1.16.2-x86_64-1.txz: Upgraded.
l/fribidi-1.0.14-x86_64-1.txz: Upgraded.
l/libarchive-3.7.3-x86_64-2.txz: Rebuilt.
Patched an out-of-bound error in the rar e8 filter that could allow for
the execution of arbitrary code.
Thanks to gmgf for the heads-up.
For more information, see:
https://github.com/advisories/GHSA-2jc9-36w4-pmqw
https://www.cve.org/CVERecord?id=CVE-2024-26256
(* Security fix *)
n/bluez-5.75-x86_64-3.txz: Rebuilt.
[PATCH] shared/uhid: Fix crash if bt_uhid_destroy free replay structure.
Thanks to sombragris.
n/libgpg-error-1.49-x86_64-1.txz: Upgraded.
20240425175817 | Patrick J Volkerding | 2024-04-25 | 2 | -1/+48 |
* | Tue Apr 23 19:48:05 UTC 2024...a/ed-1.20.2-x86_64-1.txz: Upgraded.
d/parallel-20240422-noarch-1.txz: Upgraded.
kde/krusader-2.8.1-x86_64-1.txz: Upgraded.
kde/ktextaddons-1.5.4-x86_64-1.txz: Upgraded.
l/libgusb-0.4.9-x86_64-1.txz: Upgraded.
n/nmap-7.95-x86_64-1.txz: Upgraded.
x/fcitx5-5.1.9-x86_64-1.txz: Upgraded.
x/fcitx5-anthy-5.1.4-x86_64-1.txz: Upgraded.
x/fcitx5-chinese-addons-5.1.5-x86_64-1.txz: Upgraded.
x/fcitx5-gtk-5.1.3-x86_64-1.txz: Upgraded.
x/fcitx5-hangul-5.1.3-x86_64-1.txz: Upgraded.
x/fcitx5-kkc-5.1.3-x86_64-1.txz: Upgraded.
x/fcitx5-m17n-5.1.1-x86_64-1.txz: Upgraded.
x/fcitx5-qt-5.1.6-x86_64-1.txz: Upgraded.
x/fcitx5-sayura-5.1.2-x86_64-1.txz: Upgraded.
x/fcitx5-table-extra-5.1.5-x86_64-1.txz: Upgraded.
x/fcitx5-table-other-5.1.2-x86_64-1.txz: Upgraded.
x/fcitx5-unikey-5.1.4-x86_64-1.txz: Upgraded.
x/libime-1.1.7-x86_64-1.txz: Upgraded.
extra/emacs-regular-build/emacs-29.3-x86_64-2_regular.txz: Rebuilt.
This is a bugfix release.
Only build the X11/GTK+3 version. Use "emacs -nw" if you want to start it
in a terminal emulator in text mode, or rebuild if you really need to get
rid of the X11 dependency for some reason.
Build using --with-pdumper=auto. It seems that --with-dumping=unexec produces
a buggy Emacs here in the modern era, with symptoms such as "child signal FD:
Invalid argument". It's possible this had something to do with the reported
memory leaks as well.
Thanks to 3Tom for the bug report.
20240423194805 | Patrick J Volkerding | 2024-04-23 | 1 | -1/+1 |
* | Fri Apr 19 19:36:17 UTC 2024...a/elogind-252.23-x86_64-3.txz: Rebuilt.
All right, it's time to stop the bleeding (edge). This has been verified as
the last working version of elogind, so we'll revert for now while moving the
newer sources into /testing. We didn't actually *need* the 255 branch for
libgudev (I was mistakenly under that impression), so this will be fine for
now. We'll keep an eye on upstream and move forward when things settle down.
d/vala-0.56.17-x86_64-1.txz: Upgraded.
l/gdk-pixbuf2-2.42.11-x86_64-1.txz: Upgraded.
l/gtk4-4.14.3-x86_64-1.txz: Upgraded.
l/polkit-124-x86_64-2.txz: Rebuilt.
Recompiled against elogind-252.23.
l/python-sphinx-7.3.7-x86_64-1.txz: Upgraded.
n/NetworkManager-1.46.0-x86_64-2.txz: Rebuilt.
Build with meson instead of autotools, since setting session_tracking to
elogind is ignored with autotools, and is set to consolekit instead.
While this didn't seem to make a difference in practice, better to get this
right now and rule it out as part of the issue.
Thanks to marav and LuckyCyborg for the options hints.
x/xdg-desktop-portal-1.18.4-x86_64-1.txz: Upgraded.
xap/freerdp-2.11.6-x86_64-1.txz: Upgraded.
This release is a security release and addresses multiple issues:
[Low] OutOfBound Read in zgfx_decompress_segment.
[Moderate] Integer overflow & OutOfBound Write in
clear_decompress_residual_data.
[Low] integer underflow in nsc_rle_decode.
[Low] OutOfBound Read in planar_skip_plane_rle.
[Low] OutOfBound Read in ncrush_decompress.
[Low] OutOfBound Read in interleaved_decompress.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-32041
https://www.cve.org/CVERecord?id=CVE-2024-32039
https://www.cve.org/CVERecord?id=CVE-2024-32040
https://www.cve.org/CVERecord?id=CVE-2024-32458
https://www.cve.org/CVERecord?id=CVE-2024-32459
https://www.cve.org/CVERecord?id=CVE-2024-32460
(* Security fix *)
20240419193617 | Patrick J Volkerding | 2024-04-19 | 1 | -42/+41 |
* | Thu Apr 18 19:17:30 UTC 2024...a/aaa_glibc-solibs-2.39-x86_64-2.txz: Rebuilt.
ap/vim-9.1.0346-x86_64-1.txz: Upgraded.
d/llvm-18.1.4-x86_64-1.txz: Upgraded.
d/nasm-2.16.03-x86_64-1.txz: Upgraded.
l/glibc-2.39-x86_64-2.txz: Rebuilt.
This update fixes a security issue:
The iconv() function in the GNU C Library versions 2.39 and older may
overflow the output buffer passed to it by up to 4 bytes when converting
strings to the ISO-2022-CN-EXT character set, which may be used to crash
an application or overwrite a neighbouring variable.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-2961
(* Security fix *)
l/glibc-i18n-2.39-x86_64-2.txz: Rebuilt.
l/glibc-profile-2.39-x86_64-2.txz: Rebuilt.
l/pycups-2.0.4-x86_64-1.txz: Upgraded.
l/python-hatchling-1.24.1-x86_64-1.txz: Upgraded.
l/python-sphinx-7.3.6-x86_64-1.txz: Upgraded.
n/bind-9.18.26-x86_64-1.txz: Upgraded.
This is a bugfix release.
xap/vim-gvim-9.1.0346-x86_64-1.txz: Upgraded.
20240418191730 | Patrick J Volkerding | 2024-04-18 | 1 | -4/+4 |
* | Wed Apr 17 20:35:48 UTC 2024...a/kernel-firmware-20240417_e678699-noarch-1.txz: Upgraded.
a/kernel-generic-6.6.28-x86_64-1.txz: Upgraded.
a/kernel-huge-6.6.28-x86_64-1.txz: Upgraded.
a/kernel-modules-6.6.28-x86_64-1.txz: Upgraded.
a/xfsprogs-6.7.0-x86_64-1.txz: Upgraded.
d/kernel-headers-6.6.28-x86-1.txz: Upgraded.
k/kernel-source-6.6.28-noarch-1.txz: Upgraded.
l/pycups-2.0.3-x86_64-1.txz: Upgraded.
l/python-sphinx-7.3.5-x86_64-1.txz: Upgraded.
n/bluez-5.75-x86_64-2.txz: Rebuilt.
Prune duplicate config files. Thanks to audriusk.
x/libXmu-1.2.1-x86_64-1.txz: Upgraded.
x/util-macros-1.20.1-noarch-1.txz: Upgraded.
x/wayland-protocols-1.35-noarch-1.txz: Upgraded.
xap/mozilla-thunderbird-115.10.0-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/115.10.0/releasenotes/
https://www.mozilla.org/en-US/security/known-vulnerabilities/thunderbird/#thunderbird115.10
(* Security fix *)
xfce/xfce4-notifyd-0.9.4-x86_64-2.txz: Rebuilt.
Do not install DBus service files, as these cause xfce4-notifyd to start in
plasma sessions. Thanks to ctrlaltca.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240417203548 | Patrick J Volkerding | 2024-04-17 | 3 | -14/+8 |
* | Fri Apr 12 19:08:59 UTC 2024...a/less-653-x86_64-1.txz: Upgraded.
d/ninja-1.12.0-x86_64-1.txz: Upgraded.
d/valgrind-3.22.0-x86_64-1.txz: Added.
Thanks to Kyle Guinn, Peter Wang, and Willy Sudiarto Raharjo.
l/netpbm-11.06.01-x86_64-1.txz: Upgraded.
n/php-8.3.6-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues.
For more information, see:
https://www.php.net/ChangeLog-8.php#8.3.6
(* Security fix *)
20240412190859 | Patrick J Volkerding | 2024-04-12 | 1 | -2/+2 |
* | Thu Apr 11 19:05:36 UTC 2024...a/elogind-255.4-x86_64-1.txz: Upgraded.
a/libblockdev-3.1.1_1-x86_64-1.txz: Upgraded.
a/libbytesize-2.10-x86_64-1.txz: Upgraded.
a/libgudev-238-x86_64-1.txz: Upgraded.
a/udisks-1.0.5-x86_64-11.txz: Removed.
a/udisks2-2.10.1-x86_64-1.txz: Upgraded.
a/upower-1.90.4-x86_64-1.txz: Upgraded.
l/python-docutils-0.21.1-x86_64-1.txz: Upgraded.
l/python-idna-3.7-x86_64-1.txz: Upgraded.
n/php-8.3.5-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues.
For more information, see:
https://www.php.net/ChangeLog-8.php#8.3.6
(* Security fix *)
x/ibus-m17n-1.4.29-x86_64-1.txz: Upgraded.
x/mesa-24.0.5-x86_64-1.txz: Upgraded.
20240411190536 | Patrick J Volkerding | 2024-04-11 | 1 | -2/+2 |
* | Wed Apr 10 19:09:14 UTC 2024...a/cryptsetup-2.7.2-x86_64-1.txz: Upgraded.
a/kernel-firmware-20240410_53438f8-noarch-1.txz: Upgraded.
a/kernel-generic-6.6.26-x86_64-1.txz: Upgraded.
a/kernel-huge-6.6.26-x86_64-1.txz: Upgraded.
a/kernel-modules-6.6.26-x86_64-1.txz: Upgraded.
a/openssl-solibs-3.3.0-x86_64-1.txz: Upgraded.
a/pam-1.6.1-x86_64-1.txz: Upgraded.
d/kernel-headers-6.6.26-x86-1.txz: Upgraded.
d/rust-1.77.2-x86_64-1.txz: Upgraded.
[PATCH] compiler: Use wasm-ld for wasm targets.
Thanks to Heinz Wiesinger.
k/kernel-source-6.6.26-noarch-1.txz: Upgraded.
+SPECTRE_BHI_AUTO n
+SPECTRE_BHI_OFF n
+SPECTRE_BHI_ON y
l/gst-plugins-bad-free-1.24.2-x86_64-1.txz: Upgraded.
l/gst-plugins-base-1.24.2-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.24.2-x86_64-1.txz: Upgraded.
l/gst-plugins-libav-1.24.2-x86_64-1.txz: Upgraded.
l/gstreamer-1.24.2-x86_64-1.txz: Upgraded.
l/libcap-ng-0.8.5-x86_64-1.txz: Upgraded.
l/nodejs-20.12.2-x86_64-1.txz: Upgraded.
l/python-trove-classifiers-2024.4.10-x86_64-1.txz: Upgraded.
n/gnutls-3.8.5-x86_64-2.txz: Rebuilt.
[PATCH] Fix RSAES-PKCS1-v1_5 system-wide configuration.
Thanks to bortolotto.
n/openssl-3.3.0-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240410190914 | Patrick J Volkerding | 2024-04-10 | 2 | -2/+101 |
* | Mon Apr 8 18:44:37 UTC 2024...l/imagemagick-7.1.1_30-x86_64-1.txz: Upgraded.
l/libarchive-3.7.3-x86_64-1.txz: Upgraded.
This update fixes a security issue:
Fix possible vulnerability in tar error reporting introduced in f27c173
by JiaT75.
For more information, see:
https://github.com/libarchive/libarchive/commit/f27c173d17dc807733b3a4f8c11207c3f04ff34f
https://github.com/libarchive/libarchive/pull/2101
(* Security fix *)
n/net-snmp-5.9.4-x86_64-3.txz: Rebuilt.
[PATCH] Add Linux 6.7 compatibility parsing /proc/net/snmp.
Thanks to walecha.
n/rsync-3.3.0-x86_64-1.txz: Upgraded.
x/xorg-sgml-doctools-1.12.1-x86_64-1.txz: Upgraded.
xap/gimp-2.10.36-x86_64-3.txz: Rebuilt.
[PATCH] QuitDialog: disconnect signal handler on dialog destroy.
This fixes a crash on quit.
Thanks to USUARIONUEVO.
xap/xlockmore-5.77-x86_64-1.txz: Upgraded.
20240408184437 | Patrick J Volkerding | 2024-04-08 | 3 | -3/+125 |
* | Thu Apr 4 20:49:23 UTC 2024...a/hwdata-0.381-noarch-1.txz: Upgraded.
a/kernel-generic-6.6.25-x86_64-1.txz: Upgraded.
a/kernel-huge-6.6.25-x86_64-1.txz: Upgraded.
a/kernel-modules-6.6.25-x86_64-1.txz: Upgraded.
d/cmake-3.29.1-x86_64-1.txz: Upgraded.
d/kernel-headers-6.6.25-x86-1.txz: Upgraded.
d/llvm-18.1.3-x86_64-1.txz: Upgraded.
k/kernel-source-6.6.25-noarch-1.txz: Upgraded.
kde/kstars-3.7.0-x86_64-1.txz: Upgraded.
l/enchant-2.6.9-x86_64-1.txz: Upgraded.
l/libclc-18.1.3-x86_64-1.txz: Upgraded.
l/sof-firmware-2024.03-noarch-1.txz: Upgraded.
n/gnutls-3.8.5-x86_64-1.txz: Upgraded.
n/httpd-2.4.59-x86_64-1.txz: Upgraded.
This update fixes security issues:
HTTP/2 DoS by memory exhaustion on endless continuation frames.
HTTP Response Splitting in multiple modules.
HTTP response splitting.
For more information, see:
https://downloads.apache.org/httpd/CHANGES_2.4.59
https://www.cve.org/CVERecord?id=CVE-2024-27316
https://www.cve.org/CVERecord?id=CVE-2024-24795
https://www.cve.org/CVERecord?id=CVE-2023-38709
(* Security fix *)
n/nghttp2-1.61.0-x86_64-1.txz: Upgraded.
This update fixes security issues:
nghttp2 library keeps reading the unbounded number of HTTP/2 CONTINUATION
frames even after a stream is reset to keep HPACK context in sync. This
causes excessive CPU usage to decode HPACK stream. nghttp2 v1.61.0 mitigates
this vulnerability by limiting the number of CONTINUATION frames it can
accept after a HEADERS frame.
For more information, see:
https://github.com/nghttp2/nghttp2/security/advisories/GHSA-x6x3-gv8h-m57q
https://www.kb.cert.org/vuls/id/421644
https://www.cve.org/CVERecord?id=CVE-2024-28182
(* Security fix *)
x/xdg-desktop-portal-1.18.3-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20240404204923 | Patrick J Volkerding | 2024-04-04 | 4 | -20/+3 |