summaryrefslogtreecommitdiffstats
path: root/source/n (follow)
Commit message (Expand)AuthorAgeFilesLines
* Fri Apr 7 18:53:33 UTC 2023...kde/kstars-3.6.4-x86_64-1.txz: Upgraded. l/pipewire-0.3.68-x86_64-1.txz: Upgraded. n/httpd-2.4.57-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://downloads.apache.org/httpd/CHANGES_2.4.57 n/libgcrypt-1.10.2-x86_64-1.txz: Upgraded. n/libgpg-error-1.47-x86_64-1.txz: Upgraded. 20230407185333 Patrick J Volkerding2023-04-072-3/+3
* Wed Apr 5 18:31:03 UTC 2023...d/cmake-3.26.3-x86_64-1.txz: Upgraded. l/zstd-1.5.5-x86_64-1.txz: Upgraded. n/ntp-4.2.8p15-x86_64-13.txz: Rebuilt. Added ntpdate.8 manpage from Debian. Thanks to Stuart Winter. 20230405183103 Patrick J Volkerding2023-04-052-2/+161
* Sun Apr 2 18:33:01 UTC 2023...kde/krusader-2.8.0-x86_64-2.txz: Rebuilt. [PATCH 1/2] Add workaround for icon size in HiDPI environment. [PATCH 2/2] Don't set QStyle::State_None for brief view. Thanks to Heinz Wiesinger. l/apr-1.7.3-x86_64-1.txz: Upgraded. n/irssi-1.4.4-x86_64-1.txz: Upgraded. Do not crash Irssi when one line is printed as the result of another line being printed. Also solve a memory leak while printing unformatted lines. (* Security fix *) xap/xsnow-3.7.4-x86_64-1.txz: Upgraded. 20230402183301 Patrick J Volkerding2023-04-021-1/+1
* Fri Mar 31 18:01:09 UTC 2023...a/kernel-generic-6.1.22-x86_64-1.txz: Upgraded. a/kernel-huge-6.1.22-x86_64-1.txz: Upgraded. a/kernel-modules-6.1.22-x86_64-1.txz: Upgraded. a/mkinitrd-1.4.11-x86_64-32.txz: Rebuilt. Add /lib/firmware directory to _initrd-tree.tar.gz. Thanks to walecha. d/cmake-3.26.2-x86_64-1.txz: Upgraded. d/kernel-headers-6.1.22-x86-1.txz: Upgraded. d/llvm-16.0.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. Thanks to Heinz Wiesinger for the assistance. Compiled with -DLLVM_BUILD_LLVM_DYLIB=ON -DLLVM_LINK_LLVM_DYLIB=ON -DCLANG_LINK_CLANG_DYLIB=ON. I think we'll get 16.0.1 next week if we need to make any adjustments. d/ruby-3.2.2-x86_64-1.txz: Upgraded. This update fixes security issues: ReDoS vulnerability in URI. ReDoS vulnerability in Time. For more information, see: https://www.ruby-lang.org/en/news/2023/03/28/redos-in-uri-cve-2023-28755/ https://www.ruby-lang.org/en/news/2023/03/30/redos-in-time-cve-2023-28756/ https://www.cve.org/CVERecord?id=CVE-2023-28755 https://www.cve.org/CVERecord?id=CVE-2023-28756 (* Security fix *) k/kernel-source-6.1.22-noarch-1.txz: Upgraded. kde/kdevelop-22.12.3-x86_64-2.txz: Rebuilt. Recompiled against llvm-16.0.0. l/openexr-3.1.7-x86_64-1.txz: Upgraded. l/qt5-5.15.8_20230325_c1a3e988-x86_64-1.txz: Upgraded. Compiled against llvm-16.0.0. l/spirv-llvm-translator-16.0.0-x86_64-1.txz: Upgraded. Compiled against llvm-16.0.0. Thanks to Heinz Wiesinger for finding the fix for -DBUILD_SHARED_LIBS=ON. n/pssh-2.3.5-x86_64-1.txz: Upgraded. n/samba-4.18.1-x86_64-1.txz: Upgraded. This update fixes security issues: An incomplete access check on dnsHostName allows authenticated but otherwise unprivileged users to delete this attribute from any object in the directory. The Samba AD DC administration tool, when operating against a remote LDAP server, will by default send new or reset passwords over a signed-only connection. The fix in 4.6.16, 4.7.9, 4.8.4 and 4.9.7 for CVE-2018-10919 Confidential attribute disclosure via LDAP filters was insufficient and an attacker may be able to obtain confidential BitLocker recovery keys from a Samba AD DC. Installations with such secrets in their Samba AD should assume they have been obtained and need replacing. For more information, see: https://www.samba.org/samba/security/CVE-2023-0225.html https://www.samba.org/samba/security/CVE-2023-0922.html https://www.samba.org/samba/security/CVE-2023-0614.html https://www.cve.org/CVERecord?id=CVE-2023-0225 https://www.cve.org/CVERecord?id=CVE-2023-0922 https://www.cve.org/CVERecord?id=CVE-2023-0614 (* Security fix *) x/mesa-23.0.1-x86_64-2.txz: Rebuilt. Recompiled against llvm-16.0.0 and spirv-llvm-translator-16.0.0. xap/seamonkey-2.53.16-x86_64-1.txz: Upgraded. This update contains security fixes and improvements. For more information, see: https://www.seamonkey-project.org/releases/seamonkey2.53.16 (* Security fix *) isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. testing/packages/rust-1.68.2-x86_64-2.txz: Rebuilt. Use the bundled LLVM rather than the system LLVM. This version of Rust actually does compile with llvm-16.0.0, but since it bundles LLVM 15 let's let it use that for now. usb-and-pxe-installers/usbboot.img: Rebuilt. 20230331180109 Patrick J Volkerding2023-03-313-3/+51
* Sun Mar 26 20:40:26 UTC 2023...a/btrfs-progs-6.2.2-x86_64-1.txz: Upgraded. ap/texinfo-7.0.3-x86_64-1.txz: Upgraded. d/vala-0.56.5-x86_64-1.txz: Upgraded. l/fuse3-3.14.1-x86_64-1.txz: Upgraded. l/gegl-0.4.44-x86_64-1.txz: Upgraded. l/imagemagick-7.1.1_5-x86_64-1.txz: Upgraded. n/mutt-2.2.10-x86_64-1.txz: Upgraded. x/libinput-1.23.0-x86_64-1.txz: Upgraded. 20230326204026 Patrick J Volkerding2023-03-261-1/+1
* Wed Mar 22 20:22:25 UTC 2023...a/coreutils-9.2-x86_64-2.txz: Rebuilt. Don't link with OpenSSL's libcrypto, as it creates problems on machines that don't yet have openssl3 installed when /bin/sort suddenly depends upon libcrypto.so.3. Worked fine without this previously, so it shouldn't really make any difference. There's also a configure option to use the kernel's crypto routines if available, but for now we'll skip this. Thanks to rahrah. a/kernel-firmware-20230320_bcdcfbc-noarch-1.txz: Upgraded. a/kernel-generic-6.1.21-x86_64-1.txz: Upgraded. a/kernel-huge-6.1.21-x86_64-1.txz: Upgraded. a/kernel-modules-6.1.21-x86_64-1.txz: Upgraded. d/kernel-headers-6.1.21-x86-1.txz: Upgraded. k/kernel-source-6.1.21-noarch-1.txz: Upgraded. l/adwaita-icon-theme-44.0-noarch-1.txz: Upgraded. n/gpgme-1.19.0-x86_64-1.txz: Upgraded. n/links-2.29-x86_64-1.txz: Upgraded. t/texlive-2023.230322-x86_64-1.txz: Upgraded. Thanks to Johannes Schoepfer. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. 20230322202225 Patrick J Volkerding2023-03-222-1/+2
* Mon Mar 20 18:26:23 UTC 2023...a/coreutils-9.2-x86_64-1.txz: Upgraded. a/elilo-3.16-x86_64-14.txz: Rebuilt. eliloconfig: check first for /sys/firmware/efi/efivars, and then check for the older /sys/firmware/efi/vars directory. We should be able to install an EFI menu entry if either one is present. Thanks to AlleyTrotter. a/xz-5.4.2-x86_64-1.txz: Upgraded. ap/mpg123-1.31.3-x86_64-1.txz: Upgraded. ap/squashfs-tools-4.6-x86_64-1.txz: Upgraded. ap/vim-9.0.1418-x86_64-1.txz: Upgraded. Fixed security issues: NULL pointer dereference issue in utfc_ptr2len. Incorrect Calculation of Buffer Size. Heap-based Buffer Overflow. Thanks to marav for the heads-up. For more information, see: https://www.cve.org/CVERecord?id=CVE-2023-1264 https://www.cve.org/CVERecord?id=CVE-2023-1175 https://www.cve.org/CVERecord?id=CVE-2023-1170 (* Security fix *) l/imagemagick-7.1.1_4-x86_64-1.txz: Upgraded. l/libsigc++-2.12.0-x86_64-1.txz: Upgraded. l/netpbm-11.01.01-x86_64-1.txz: Upgraded. n/curl-8.0.1-x86_64-1.txz: Upgraded. This update fixes security issues: SSH connection too eager reuse still. HSTS double-free. GSS delegation too eager connection re-use. FTP too eager connection reuse. SFTP path ~ resolving discrepancy. TELNET option IAC injection. For more information, see: https://curl.se/docs/CVE-2023-27538.html https://curl.se/docs/CVE-2023-27537.html https://curl.se/docs/CVE-2023-27536.html https://curl.se/docs/CVE-2023-27535.html https://curl.se/docs/CVE-2023-27534.html https://curl.se/docs/CVE-2023-27533.html https://www.cve.org/CVERecord?id=CVE-2023-27538 https://www.cve.org/CVERecord?id=CVE-2023-27537 https://www.cve.org/CVERecord?id=CVE-2023-27536 https://www.cve.org/CVERecord?id=CVE-2023-27535 https://www.cve.org/CVERecord?id=CVE-2023-27534 https://www.cve.org/CVERecord?id=CVE-2023-27533 (* Security fix *) x/fcitx5-gtk-5.0.23-x86_64-1.txz: Upgraded. x/libva-utils-2.18.0-x86_64-1.txz: Upgraded. xap/vim-gvim-9.0.1418-x86_64-1.txz: Upgraded. xfce/xfce4-screensaver-4.18.0-x86_64-1.txz: Upgraded. 20230320182623 Patrick J Volkerding2023-03-201-1/+1
* Sat Mar 18 18:42:32 UTC 2023...l/glibmm-2.66.6-x86_64-1.txz: Upgraded. n/postfix-3.7.4-x86_64-4.txz: Rebuilt. Fixes warning about being compiled with a different version of OpenSSL. Thanks to gildbg. x/fcitx5-5.0.23-x86_64-1.txz: Upgraded. x/fcitx5-kkc-5.0.12-x86_64-2.txz: Rebuilt. Patched to fix FTBFS. Thanks to nobodino and marav. 20230318184232 Patrick J Volkerding2023-03-181-1/+1
* Thu Mar 16 23:34:56 UTC 2023...a/cracklib-2.9.10-x86_64-1.txz: Upgraded. a/file-5.44-x86_64-2.txz: Rebuilt. Patched to mute debug messages. Thanks to Stuart Winter. n/bind-9.18.13-x86_64-1.txz: Upgraded. This is a bugfix release. n/openssh-9.3p1-x86_64-1.txz: Upgraded. This release contains fixes for a security problem and a memory safety problem. The memory safety problem is not believed to be exploitable, but we report most network-reachable memory faults as security bugs. For more information, see: https://www.openssh.com/txt/release-9.3 (* Security fix *) n/php-8.2.4-x86_64-1.txz: Upgraded. This is a bugfix release. xap/mozilla-thunderbird-102.9.0-x86_64-1.txz: Upgraded. This update contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/firefox/102.9.0/releasenotes/ https://www.mozilla.org/en-US/security/advisories/mfsa2023-10 https://www.cve.org/CVERecord?id=CVE-2023-25751 https://www.cve.org/CVERecord?id=CVE-2023-28164 https://www.cve.org/CVERecord?id=CVE-2023-28162 https://www.cve.org/CVERecord?id=CVE-2023-25752 https://www.cve.org/CVERecord?id=CVE-2023-28163 https://www.cve.org/CVERecord?id=CVE-2023-28176 (* Security fix *) 20230316233456 Patrick J Volkerding2023-03-174-5/+5
* Tue Mar 14 20:42:47 UTC 2023...a/openssl-solibs-3.1.0-x86_64-1.txz: Upgraded. d/cmake-3.26.0-x86_64-1.txz: Upgraded. d/git-2.40.0-x86_64-1.txz: Upgraded. kde/bluedevil-5.27.3-x86_64-1.txz: Upgraded. kde/breeze-5.27.3-x86_64-1.txz: Upgraded. kde/breeze-grub-5.27.3-x86_64-1.txz: Upgraded. kde/breeze-gtk-5.27.3-x86_64-1.txz: Upgraded. kde/drkonqi-5.27.3-x86_64-1.txz: Upgraded. kde/kactivitymanagerd-5.27.3-x86_64-1.txz: Upgraded. kde/kde-cli-tools-5.27.3-x86_64-1.txz: Upgraded. kde/kde-gtk-config-5.27.3-x86_64-1.txz: Upgraded. kde/kdecoration-5.27.3-x86_64-1.txz: Upgraded. kde/kdeplasma-addons-5.27.3-x86_64-1.txz: Upgraded. kde/kgamma5-5.27.3-x86_64-1.txz: Upgraded. kde/khotkeys-5.27.3-x86_64-1.txz: Upgraded. kde/kinfocenter-5.27.3-x86_64-1.txz: Upgraded. kde/kmenuedit-5.27.3-x86_64-1.txz: Upgraded. kde/kpipewire-5.27.3-x86_64-1.txz: Upgraded. kde/kscreen-5.27.3-x86_64-1.txz: Upgraded. kde/kscreenlocker-5.27.3-x86_64-1.txz: Upgraded. kde/ksshaskpass-5.27.3-x86_64-1.txz: Upgraded. kde/ksystemstats-5.27.3-x86_64-1.txz: Upgraded. kde/kwallet-pam-5.27.3-x86_64-1.txz: Upgraded. kde/kwayland-integration-5.27.3-x86_64-1.txz: Upgraded. kde/kwin-5.27.3-x86_64-1.txz: Upgraded. kde/kwrited-5.27.3-x86_64-1.txz: Upgraded. kde/layer-shell-qt-5.27.3-x86_64-1.txz: Upgraded. kde/libkscreen-5.27.3-x86_64-1.txz: Upgraded. kde/libksysguard-5.27.3-x86_64-1.txz: Upgraded. kde/milou-5.27.3-x86_64-1.txz: Upgraded. kde/oxygen-5.27.3-x86_64-1.txz: Upgraded. kde/oxygen-sounds-5.27.3-x86_64-1.txz: Upgraded. kde/plasma-browser-integration-5.27.3-x86_64-1.txz: Upgraded. kde/plasma-desktop-5.27.3-x86_64-1.txz: Upgraded. kde/plasma-disks-5.27.3-x86_64-1.txz: Upgraded. kde/plasma-firewall-5.27.3-x86_64-1.txz: Upgraded. kde/plasma-integration-5.27.3-x86_64-1.txz: Upgraded. kde/plasma-nm-5.27.3-x86_64-1.txz: Upgraded. kde/plasma-pa-5.27.3-x86_64-1.txz: Upgraded. kde/plasma-sdk-5.27.3-x86_64-1.txz: Upgraded. kde/plasma-systemmonitor-5.27.3-x86_64-1.txz: Upgraded. kde/plasma-vault-5.27.3-x86_64-1.txz: Upgraded. kde/plasma-workspace-5.27.3-x86_64-1.txz: Upgraded. kde/plasma-workspace-wallpapers-5.27.3-x86_64-1.txz: Upgraded. kde/polkit-kde-agent-1-5.27.3-x86_64-1.txz: Upgraded. kde/powerdevil-5.27.3-x86_64-1.txz: Upgraded. kde/qqc2-breeze-style-5.27.3-x86_64-1.txz: Upgraded. kde/sddm-kcm-5.27.3-x86_64-1.txz: Upgraded. kde/systemsettings-5.27.3-x86_64-1.txz: Upgraded. kde/xdg-desktop-portal-kde-5.27.3-x86_64-1.txz: Upgraded. l/mozjs102-102.9.0esr-x86_64-1.txz: Upgraded. n/nftables-1.0.7-x86_64-1.txz: Upgraded. n/openssh-9.2p1-x86_64-4.txz: Rebuilt. Recompiled against openssl-3.1.0 to prevent "OpenSSL version mismatch. Built against 30000080, you have 30100000." If anything else needs a rebuild please let me know on LQ. n/openssl-3.1.0-x86_64-1.txz: Upgraded. xap/mozilla-firefox-111.0-x86_64-1.txz: Upgraded. This update contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/firefox/111.0/releasenotes/ https://www.mozilla.org/en-US/security/advisories/mfsa2023-09/ https://www.cve.org/CVERecord?id=CVE-2023-28159 https://www.cve.org/CVERecord?id=CVE-2023-25748 https://www.cve.org/CVERecord?id=CVE-2023-25749 https://www.cve.org/CVERecord?id=CVE-2023-25750 https://www.cve.org/CVERecord?id=CVE-2023-25751 https://www.cve.org/CVERecord?id=CVE-2023-28160 https://www.cve.org/CVERecord?id=CVE-2023-28164 https://www.cve.org/CVERecord?id=CVE-2023-28161 https://www.cve.org/CVERecord?id=CVE-2023-28162 https://www.cve.org/CVERecord?id=CVE-2023-25752 https://www.cve.org/CVERecord?id=CVE-2023-28163 https://www.cve.org/CVERecord?id=CVE-2023-28176 https://www.cve.org/CVERecord?id=CVE-2023-28177 (* Security fix *) 20230314204247 Patrick J Volkerding2023-03-142-2/+2
* Mon Mar 13 23:15:32 UTC 2023...a/kernel-firmware-20230313_c761dbe-noarch-1.txz: Upgraded. a/kernel-generic-6.1.19-x86_64-1.txz: Upgraded. a/kernel-huge-6.1.19-x86_64-1.txz: Upgraded. a/kernel-modules-6.1.19-x86_64-1.txz: Upgraded. a/mcelog-192-x86_64-1.txz: Upgraded. d/ccache-4.8-x86_64-1.txz: Upgraded. d/kernel-headers-6.1.19-x86-1.txz: Upgraded. d/rust-1.67.1-x86_64-2.txz: Rebuilt. Moved here from /testing (not actually rebuilt). k/kernel-source-6.1.19-noarch-1.txz: Upgraded. l/imagemagick-7.1.1_3-x86_64-1.txz: Upgraded. n/vsftpd-3.0.5-x86_64-3.txz: Rebuilt. Patched to compile against openssl-3.0.8. Thanks to Stuart Winter. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. testing/packages/rust-1.68.0-x86_64-1.txz: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. 20230313231532 Patrick J Volkerding2023-03-142-1/+76
* Sun Mar 12 01:11:34 UTC 2023...a/kernel-generic-6.1.18-x86_64-1.txz: Upgraded. a/kernel-huge-6.1.18-x86_64-1.txz: Upgraded. a/kernel-modules-6.1.18-x86_64-1.txz: Upgraded. ap/sqlite-3.41.1-x86_64-1.txz: Upgraded. d/kernel-headers-6.1.18-x86-1.txz: Upgraded. k/kernel-source-6.1.18-noarch-1.txz: Upgraded. Sorry we missed 6.1.17 ;-) kde/attica-5.104.0-x86_64-1.txz: Upgraded. kde/baloo-5.104.0-x86_64-1.txz: Upgraded. kde/bluez-qt-5.104.0-x86_64-1.txz: Upgraded. kde/breeze-icons-5.104.0-noarch-1.txz: Upgraded. kde/extra-cmake-modules-5.104.0-x86_64-1.txz: Upgraded. kde/fcitx5-configtool-5.0.17-x86_64-1.txz: Upgraded. kde/frameworkintegration-5.104.0-x86_64-1.txz: Upgraded. kde/kactivities-5.104.0-x86_64-1.txz: Upgraded. kde/kactivities-stats-5.104.0-x86_64-1.txz: Upgraded. kde/kapidox-5.104.0-x86_64-1.txz: Upgraded. kde/karchive-5.104.0-x86_64-1.txz: Upgraded. kde/kauth-5.104.0-x86_64-1.txz: Upgraded. kde/kbookmarks-5.104.0-x86_64-1.txz: Upgraded. kde/kcalendarcore-5.104.0-x86_64-1.txz: Upgraded. kde/kcmutils-5.104.0-x86_64-1.txz: Upgraded. kde/kcodecs-5.104.0-x86_64-1.txz: Upgraded. kde/kcompletion-5.104.0-x86_64-1.txz: Upgraded. kde/kconfig-5.104.0-x86_64-1.txz: Upgraded. kde/kconfigwidgets-5.104.0-x86_64-1.txz: Upgraded. kde/kcontacts-5.104.0-x86_64-1.txz: Upgraded. kde/kcoreaddons-5.104.0-x86_64-1.txz: Upgraded. kde/kcrash-5.104.0-x86_64-1.txz: Upgraded. kde/kdav-5.104.0-x86_64-1.txz: Upgraded. kde/kdbusaddons-5.104.0-x86_64-1.txz: Upgraded. kde/kdeclarative-5.104.0-x86_64-1.txz: Upgraded. kde/kded-5.104.0-x86_64-1.txz: Upgraded. kde/kdelibs4support-5.104.0-x86_64-1.txz: Upgraded. kde/kdesignerplugin-5.104.0-x86_64-1.txz: Upgraded. kde/kdesu-5.104.0-x86_64-1.txz: Upgraded. kde/kdewebkit-5.104.0-x86_64-1.txz: Upgraded. kde/kdnssd-5.104.0-x86_64-1.txz: Upgraded. kde/kdoctools-5.104.0-x86_64-1.txz: Upgraded. kde/kemoticons-5.104.0-x86_64-1.txz: Upgraded. kde/kfilemetadata-5.104.0-x86_64-1.txz: Upgraded. kde/kglobalaccel-5.104.0-x86_64-1.txz: Upgraded. kde/kguiaddons-5.104.0-x86_64-1.txz: Upgraded. kde/kholidays-5.104.0-x86_64-1.txz: Upgraded. kde/khtml-5.104.0-x86_64-1.txz: Upgraded. kde/ki18n-5.104.0-x86_64-1.txz: Upgraded. kde/kiconthemes-5.104.0-x86_64-1.txz: Upgraded. kde/kidletime-5.104.0-x86_64-1.txz: Upgraded. kde/kimageformats-5.104.0-x86_64-1.txz: Upgraded. kde/kinit-5.104.0-x86_64-1.txz: Upgraded. kde/kio-5.104.0-x86_64-1.txz: Upgraded. kde/kirigami2-5.104.0-x86_64-1.txz: Upgraded. kde/kitemmodels-5.104.0-x86_64-1.txz: Upgraded. kde/kitemviews-5.104.0-x86_64-1.txz: Upgraded. kde/kjobwidgets-5.104.0-x86_64-1.txz: Upgraded. kde/kjs-5.104.0-x86_64-1.txz: Upgraded. kde/kjsembed-5.104.0-x86_64-1.txz: Upgraded. kde/kmediaplayer-5.104.0-x86_64-1.txz: Upgraded. kde/knewstuff-5.104.0-x86_64-1.txz: Upgraded. kde/knotifications-5.104.0-x86_64-1.txz: Upgraded. kde/knotifyconfig-5.104.0-x86_64-1.txz: Upgraded. kde/kpackage-5.104.0-x86_64-1.txz: Upgraded. kde/kparts-5.104.0-x86_64-1.txz: Upgraded. kde/kpeople-5.104.0-x86_64-1.txz: Upgraded. kde/kplotting-5.104.0-x86_64-1.txz: Upgraded. kde/kpty-5.104.0-x86_64-1.txz: Upgraded. kde/kquickcharts-5.104.0-x86_64-1.txz: Upgraded. kde/kross-5.104.0-x86_64-1.txz: Upgraded. kde/krunner-5.104.0-x86_64-1.txz: Upgraded. kde/kservice-5.104.0-x86_64-1.txz: Upgraded. kde/ktexteditor-5.104.0-x86_64-1.txz: Upgraded. kde/ktextwidgets-5.104.0-x86_64-1.txz: Upgraded. kde/kunitconversion-5.104.0-x86_64-1.txz: Upgraded. kde/kwallet-5.104.0-x86_64-1.txz: Upgraded. kde/kwayland-5.104.0-x86_64-1.txz: Upgraded. kde/kwidgetsaddons-5.104.0-x86_64-1.txz: Upgraded. kde/kwindowsystem-5.104.0-x86_64-1.txz: Upgraded. kde/kxmlgui-5.104.0-x86_64-1.txz: Upgraded. kde/kxmlrpcclient-5.104.0-x86_64-1.txz: Upgraded. kde/modemmanager-qt-5.104.0-x86_64-1.txz: Upgraded. kde/networkmanager-qt-5.104.0-x86_64-1.txz: Upgraded. kde/oxygen-icons5-5.104.0-noarch-1.txz: Upgraded. kde/plasma-framework-5.104.0-x86_64-1.txz: Upgraded. kde/prison-5.104.0-x86_64-1.txz: Upgraded. kde/purpose-5.104.0-x86_64-1.txz: Upgraded. kde/qqc2-desktop-style-5.104.0-x86_64-1.txz: Upgraded. kde/solid-5.104.0-x86_64-1.txz: Upgraded. kde/sonnet-5.104.0-x86_64-1.txz: Upgraded. kde/syndication-5.104.0-x86_64-1.txz: Upgraded. kde/syntax-highlighting-5.104.0-x86_64-1.txz: Upgraded. kde/threadweaver-5.104.0-x86_64-1.txz: Upgraded. n/php-8.2.3-x86_64-2.txz: Rebuilt. The XMLRPC extension is no longer bundled in PHP since PHP 8.0, so stop trying to load it in php.ini. This change is pending in 15.0's /extra/source as well for when there are new versions of PHP8 there. Thanks to ctrlaltca (and others). x/fcitx5-5.0.22-x86_64-1.txz: Upgraded. x/fcitx5-anthy-5.0.14-x86_64-1.txz: Upgraded. x/fcitx5-chinese-addons-5.0.17-x86_64-1.txz: Upgraded. x/fcitx5-gtk-5.0.22-x86_64-1.txz: Upgraded. x/fcitx5-hangul-5.0.11-x86_64-1.txz: Upgraded. x/fcitx5-kkc-5.0.12-x86_64-1.txz: Upgraded. x/fcitx5-qt-5.0.17-x86_64-1.txz: Upgraded. x/fcitx5-table-extra-5.0.13-x86_64-1.txz: Upgraded. x/fcitx5-table-other-5.0.11-x86_64-1.txz: Upgraded. x/fcitx5-unikey-5.0.13-x86_64-1.txz: Upgraded. x/libime-1.0.17-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. 20230312011134 Patrick J Volkerding2023-03-122-7/+6
* Fri Mar 10 20:32:48 UTC 2023...a/kernel-firmware-20230310_588dd07-noarch-1.txz: Upgraded. a/kernel-generic-6.1.16-x86_64-1.txz: Upgraded. a/kernel-huge-6.1.16-x86_64-1.txz: Upgraded. a/kernel-modules-6.1.16-x86_64-1.txz: Upgraded. d/kernel-headers-6.1.16-x86-1.txz: Upgraded. k/kernel-source-6.1.16-noarch-1.txz: Upgraded. +SND_HDA_CTL_DEV_ID n l/imagemagick-7.1.1_2-x86_64-1.txz: Upgraded. l/mozilla-nss-3.89-x86_64-1.txz: Upgraded. l/openexr-3.1.6-x86_64-1.txz: Upgraded. n/libnftnl-1.2.5-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. 20230310203248 Patrick J Volkerding2023-03-101-2/+2
* Thu Mar 9 20:28:23 UTC 2023...a/openssl-solibs-3.0.8-x86_64-2.txz: Rebuilt. ap/dc3dd-7.3.0-x86_64-1.txz: Upgraded. ap/mariadb-10.11.2-x86_64-1.txz: Upgraded. d/cmake-3.25.3-x86_64-1.txz: Upgraded. l/imagemagick-7.1.1_1-x86_64-1.txz: Upgraded. l/libieee1284-0.2.11-x86_64-7.txz: Rebuilt. Rebuilt for python3. Thanks to Heinz Wiesinger. l/libplist-2.2.0-x86_64-4.txz: Rebuilt. Rebuilt for python3. Thanks to Heinz Wiesinger. l/pipewire-0.3.67-x86_64-1.txz: Upgraded. n/ModemManager-1.20.6-x86_64-1.txz: Upgraded. n/NetworkManager-1.42.4-x86_64-1.txz: Upgraded. n/openssl-3.0.8-x86_64-2.txz: Rebuilt. Fixed man pages. Thanks to marav. Add example for enabling the legacy algorithms to /etc/ssl/openssl.cnf. Thanks to ctrlaltca. n/openvpn-2.6.1-x86_64-1.txz: Upgraded. x/ibus-libpinyin-1.15.2-x86_64-1.txz: Upgraded. x/mesa-22.3.7-x86_64-1.txz: Upgraded. 20230309202823 Patrick J Volkerding2023-03-094-35/+74
* Wed Mar 8 20:26:54 UTC 2023...Hey folks, just some more updates on the road to an eventual beta. :-) At this point nothing remains linked with openssl-1.1.1 except for python2 and modules, and vsftpd. I think nobody cares about trying to force python2 to use openssl3... it's EOL but still a zombie, unfortunately. I have seen some patches for vsftpd and intend to take a look at them. We've bumped PHP to 8.2 and just gone ahead and killed 8.0 and 8.1. Like 7.4, 8.0 is not compatible with openssl3 and it doesn't seem worthwhile to try to patch it. And with 8.2 already out for several revisions, 8.1 does not seem particularly valuable. If you make use of PHP you should be used to it being a moving target by now. Enjoy, and let me know if anything isn't working right. Cheers! a/aaa_libraries-15.1-x86_64-19.txz: Rebuilt. Recompiled against openssl-3.0.8: libcups.so.2, libcurl.so.4.8.0, libldap.so.2.0.200, libssh2.so.1.0.1. a/cryptsetup-2.6.1-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. a/kmod-30-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. a/openssl-solibs-3.0.8-x86_64-1.txz: Upgraded. Shared library .so-version bump. a/openssl11-solibs-1.1.1t-x86_64-1.txz: Added. ap/cups-2.4.2-x86_64-4.txz: Rebuilt. Recompiled against openssl-3.0.8. ap/hplip-3.20.5-x86_64-7.txz: Rebuilt. Recompiled against openssl-3.0.8. ap/lxc-4.0.12-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. ap/mariadb-10.6.12-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. ap/qpdf-11.3.0-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. ap/sudo-1.9.13p3-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. d/cargo-vendor-filterer-0.5.7-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. d/cvs-1.11.23-x86_64-9.txz: Rebuilt. Recompiled against openssl-3.0.8. d/git-2.39.2-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. d/perl-5.36.0-x86_64-5.txz: Rebuilt. Recompiled against openssl-3.0.8. d/python3-3.9.16-x86_64-3.txz: Rebuilt. Recompiled against openssl-3.0.8. d/ruby-3.2.1-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. d/rust-1.66.1-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. d/scons-4.5.1-x86_64-1.txz: Upgraded. kde/falkon-22.12.3-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. kde/kitinerary-22.12.3-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. l/M2Crypto-0.38.0-x86_64-4.txz: Rebuilt. Recompiled against openssl-3.0.8. l/SDL2-2.26.4-x86_64-1.txz: Upgraded. l/gst-plugins-bad-free-1.22.1-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. l/libarchive-3.6.2-x86_64-3.txz: Rebuilt. Recompiled against openssl-3.0.8. l/libevent-2.1.12-x86_64-4.txz: Rebuilt. Recompiled against openssl-3.0.8. l/libimobiledevice-20211124_2c6121d-x86_64-3.txz: Rebuilt. Recompiled against openssl-3.0.8. l/libssh2-1.10.0-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. l/libvncserver-0.9.14-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. l/mlt-7.14.0-x86_64-1.txz: Upgraded. l/neon-0.32.5-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. l/nodejs-19.7.0-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. l/opusfile-0.12-x86_64-4.txz: Rebuilt. Recompiled against openssl-3.0.8. l/pipewire-0.3.66-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. l/pulseaudio-16.1-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. l/pycurl-7.44.1-x86_64-4.txz: Rebuilt. Recompiled against openssl-3.0.8. l/qca-2.3.5-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. l/qt5-5.15.8_20230304_d8b881f0-x86_64-1.txz: Upgraded. Compiled against openssl-3.0.8. l/serf-1.3.9-x86_64-8.txz: Rebuilt. Recompiled against openssl-3.0.8. n/alpine-2.26-x86_64-3.txz: Rebuilt. Recompiled against openssl-3.0.8. n/bind-9.18.12-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. n/curl-7.88.1-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. n/cyrus-sasl-2.1.28-x86_64-3.txz: Rebuilt. Recompiled against openssl-3.0.8. n/dovecot-2.3.20-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. n/epic5-2.1.12-x86_64-4.txz: Rebuilt. Recompiled against openssl-3.0.8. n/fetchmail-6.4.37-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. n/htdig-3.2.0b6-x86_64-9.txz: Rebuilt. Recompiled against openssl-3.0.8. n/httpd-2.4.56-x86_64-1.txz: Upgraded. This update fixes two security issues: HTTP Response Smuggling vulnerability via mod_proxy_uwsgi. HTTP Request Smuggling attack via mod_rewrite and mod_proxy. For more information, see: https://downloads.apache.org/httpd/CHANGES_2.4.56 https://www.cve.org/CVERecord?id=CVE-2023-27522 https://www.cve.org/CVERecord?id=CVE-2023-25690 (* Security fix *) NOTE: This package is compiled against openssl-3.0.8. n/irssi-1.4.3-x86_64-3.txz: Rebuilt. Recompiled against openssl-3.0.8. n/krb5-1.20.1-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. n/lftp-4.9.2-x86_64-4.txz: Rebuilt. Recompiled against openssl-3.0.8. n/links-2.28-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. n/lynx-2.9.0dev.10-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. n/mutt-2.2.9-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. n/net-snmp-5.9.3-x86_64-3.txz: Rebuilt. Recompiled against openssl-3.0.8. n/netatalk-3.1.14-x86_64-3.txz: Rebuilt. Recompiled against openssl-3.0.8. n/nmap-7.93-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. n/ntp-4.2.8p15-x86_64-12.txz: Rebuilt. Recompiled against openssl-3.0.8. n/openldap-2.6.4-x86_64-3.txz: Rebuilt. Recompiled against openssl-3.0.8. n/openssh-9.2p1-x86_64-3.txz: Rebuilt. Recompiled against openssl-3.0.8. n/openssl-3.0.8-x86_64-1.txz: Upgraded. Shared library .so-version bump. n/openssl11-1.1.1t-x86_64-1.txz: Added. n/openvpn-2.6.0-x86_64-3.txz: Rebuilt. Recompiled against openssl-3.0.8. n/php-8.2.3-x86_64-1.txz: Upgraded. Compiled against openssl-3.0.8. n/pidentd-3.0.19-x86_64-7.txz: Rebuilt. Recompiled against openssl-3.0.8. n/popa3d-1.0.3-x86_64-7.txz: Rebuilt. Recompiled against openssl-3.0.8. n/postfix-3.7.4-x86_64-3.txz: Rebuilt. Recompiled against openssl-3.0.8. n/ppp-2.4.9-x86_64-4.txz: Rebuilt. Recompiled against openssl-3.0.8. n/proftpd-1.3.8-x86_64-3.txz: Rebuilt. Recompiled against openssl-3.0.8. n/rsync-3.2.7-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. n/s-nail-14.9.24-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. n/samba-4.18.0-x86_64-1.txz: Upgraded. Build with the bundled Heimdal instead of the system MIT Kerberos. Thanks again to rpenny. n/slrn-1.0.3a-x86_64-4.txz: Rebuilt. Recompiled against openssl-3.0.8. n/snownews-1.9-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. n/socat-1.7.4.4-x86_64-3.txz: Rebuilt. Recompiled against openssl-3.0.8. n/stunnel-5.69-x86_64-3.txz: Rebuilt. Recompiled against openssl-3.0.8. n/tcpdump-4.99.3-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. n/wget-1.21.3-x86_64-3.txz: Rebuilt. Recompiled against openssl-3.0.8. n/wpa_supplicant-2.10-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. xap/freerdp-2.10.0-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. xap/gftp-2.9.1b-x86_64-3.txz: Rebuilt. Recompiled against openssl-3.0.8. xap/gkrellm-2.3.11-x86_64-4.txz: Rebuilt. Recompiled against openssl-3.0.8. xap/hexchat-2.16.1-x86_64-3.txz: Rebuilt. Recompiled against openssl-3.0.8. xap/sane-1.0.32-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. xap/x3270-4.0ga14-x86_64-3.txz: Rebuilt. Recompiled against openssl-3.0.8. xap/xine-lib-1.2.13-x86_64-4.txz: Rebuilt. Recompiled against openssl-3.0.8. y/bsd-games-2.17-x86_64-4.txz: Rebuilt. Recompiled against openssl-3.0.8. extra/php80/php80-8.0.28-x86_64-1.txz: Removed. extra/php81/php81-8.1.16-x86_64-1.txz: Removed. extra/rust-for-mozilla/rust-1.60.0-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. extra/sendmail/sendmail-8.17.1-x86_64-7.txz: Rebuilt. Recompiled against openssl-3.0.8. extra/sendmail/sendmail-cf-8.17.1-noarch-7.txz: Rebuilt. testing/packages/rust-1.67.1-x86_64-2.txz: Rebuilt. Recompiled against openssl-3.0.8. testing/packages/samba-4.17.5-x86_64-2.txz: Removed. 20230308202654 Patrick J Volkerding2023-03-0852-832/+343
* Mon Mar 6 02:21:57 UTC 2023...a/aaa_libraries-15.1-x86_64-18.txz: Rebuilt. Upgraded: libcap.so.2.67, libelf-0.189.so, libzstd.so.1.5.4, libcares.so.2.6.0, libglib-2.0.so.0.7400.6, libgmodule-2.0.so.0.7400.6, libgobject-2.0.so.0.7400.6, libgthread-2.0.so.0.7400.6, libtdb.so.1.4.8. Removed: libnsl-2.36.so, libboost*.so.1.80.0. Added: libnsl.so.3.0.0. a/grep-3.9-x86_64-1.txz: Upgraded. a/pam-1.5.2-x86_64-2.txz: Rebuilt. Recompiled against libnsl-2.0.0. a/quota-4.09-x86_64-2.txz: Rebuilt. Recompiled against libnsl-2.0.0. ap/linuxdoc-tools-0.9.82-x86_64-4.txz: Rebuilt. Recompiled against libnsl-2.0.0. ap/vorbis-tools-1.4.2-x86_64-4.txz: Rebuilt. Recompiled against libnsl-2.0.0. d/cvs-1.11.23-x86_64-8.txz: Rebuilt. Recompiled against libnsl-2.0.0. d/perl-5.36.0-x86_64-4.txz: Rebuilt. Recompiled against libnsl-2.0.0. d/python2-2.7.18-x86_64-6.txz: Rebuilt. Recompiled against libnsl-2.0.0. d/python3-3.9.16-x86_64-2.txz: Rebuilt. Recompiled against libnsl-2.0.0. d/subversion-1.14.2-x86_64-4.txz: Rebuilt. Recompiled against libnsl-2.0.0. kde/kio-5.103.0-x86_64-2.txz: Rebuilt. Recompiled against libnsl-2.0.0. kde/kopete-22.12.3-x86_64-2.txz: Rebuilt. Recompiled against libnsl-2.0.0. l/libasyncns-0.8-x86_64-6.txz: Rebuilt. Recompiled against libnsl-2.0.0. l/libnsl-2.0.0-x86_64-1.txz: Upgraded. Deprecated NIS+ code has been removed. Sorry for so many rebuilds due to (of all things) an NIS support library, but we had to get this out of the way eventually. Shared library .so-version bump. l/libnss_nis-3.1-x86_64-4.txz: Rebuilt. Recompiled against libnsl-2.0.0. l/loudmouth-1.5.4-x86_64-3.txz: Rebuilt. Recompiled against libnsl-2.0.0. n/autofs-5.1.8-x86_64-3.txz: Rebuilt. Recompiled against libnsl-2.0.0. n/epic5-2.1.12-x86_64-3.txz: Rebuilt. Recompiled against libnsl-2.0.0. n/irssi-1.4.3-x86_64-2.txz: Rebuilt. Recompiled against libnsl-2.0.0. n/net-snmp-5.9.3-x86_64-2.txz: Rebuilt. Recompiled against libnsl-2.0.0. n/netatalk-3.1.14-x86_64-2.txz: Rebuilt. Recompiled against libnsl-2.0.0. n/ntp-4.2.8p15-x86_64-11.txz: Rebuilt. Recompiled against libnsl-2.0.0. n/openldap-2.6.4-x86_64-2.txz: Rebuilt. Recompiled against libnsl-2.0.0. n/openssh-9.2p1-x86_64-2.txz: Rebuilt. Recompiled against libnsl-2.0.0. n/openvpn-2.6.0-x86_64-2.txz: Rebuilt. Recompiled against libnsl-2.0.0. n/postfix-3.7.4-x86_64-2.txz: Rebuilt. Recompiled against libnsl-2.0.0. n/ppp-2.4.9-x86_64-3.txz: Rebuilt. Recompiled against libnsl-2.0.0. n/procmail-3.24-x86_64-2.txz: Rebuilt. Recompiled against libnsl-2.0.0. n/proftpd-1.3.8-x86_64-2.txz: Rebuilt. Recompiled against libnsl-2.0.0. n/rpcbind-1.2.6-x86_64-2.txz: Rebuilt. Recompiled against libnsl-2.0.0. n/socat-1.7.4.4-x86_64-2.txz: Rebuilt. Recompiled against libnsl-2.0.0. n/stunnel-5.69-x86_64-2.txz: Rebuilt. Recompiled against libnsl-2.0.0. n/tcp_wrappers-7.6-x86_64-7.txz: Rebuilt. Recompiled against libnsl-2.0.0. n/tftp-hpa-5.2-x86_64-9.txz: Rebuilt. Recompiled against libnsl-2.0.0. n/uucp-1.07-x86_64-6.txz: Rebuilt. Recompiled against libnsl-2.0.0. n/vsftpd-3.0.5-x86_64-2.txz: Rebuilt. Recompiled against libnsl-2.0.0. n/yptools-4.2.3-x86_64-6.txz: Rebuilt. Recompiled against libnsl-2.0.0. Upgraded to ypserv-4.2. xap/gftp-2.9.1b-x86_64-2.txz: Rebuilt. Recompiled against libnsl-2.0.0. xap/pidgin-2.14.12-x86_64-2.txz: Rebuilt. Recompiled against libnsl-2.0.0. xap/rxvt-unicode-9.26-x86_64-5.txz: Rebuilt. Recompiled against libnsl-2.0.0. xap/xine-lib-1.2.13-x86_64-3.txz: Rebuilt. Recompiled against libnsl-2.0.0. xap/xine-ui-0.99.14-x86_64-2.txz: Rebuilt. Recompiled against libnsl-2.0.0. xap/xscreensaver-6.06-x86_64-2.txz: Rebuilt. 20230306022157 Patrick J Volkerding2023-03-0621-23/+23
* Tue Feb 28 21:33:32 UTC 2023...a/mkinitrd-1.4.11-x86_64-31.txz: Rebuilt. Fix the check to ensure -R is added when the root partition is a partition of a RAID device. Thanks to perrin4869 and drumz. ap/vim-9.0.1362-x86_64-1.txz: Upgraded. kde/bluedevil-5.27.2-x86_64-1.txz: Upgraded. kde/breeze-5.27.2-x86_64-1.txz: Upgraded. kde/breeze-grub-5.27.2-x86_64-1.txz: Upgraded. kde/breeze-gtk-5.27.2-x86_64-1.txz: Upgraded. kde/drkonqi-5.27.2-x86_64-1.txz: Upgraded. kde/kactivitymanagerd-5.27.2-x86_64-1.txz: Upgraded. kde/kde-cli-tools-5.27.2-x86_64-1.txz: Upgraded. kde/kde-gtk-config-5.27.2-x86_64-1.txz: Upgraded. kde/kdecoration-5.27.2-x86_64-1.txz: Upgraded. kde/kdeplasma-addons-5.27.2-x86_64-1.txz: Upgraded. kde/kgamma5-5.27.2-x86_64-1.txz: Upgraded. kde/khotkeys-5.27.2-x86_64-1.txz: Upgraded. kde/kinfocenter-5.27.2-x86_64-1.txz: Upgraded. kde/kmenuedit-5.27.2-x86_64-1.txz: Upgraded. kde/kpipewire-5.27.2-x86_64-1.txz: Upgraded. kde/kscreen-5.27.2-x86_64-1.txz: Upgraded. kde/kscreenlocker-5.27.2-x86_64-1.txz: Upgraded. kde/ksshaskpass-5.27.2-x86_64-1.txz: Upgraded. kde/ksystemstats-5.27.2-x86_64-1.txz: Upgraded. kde/kwallet-pam-5.27.2-x86_64-1.txz: Upgraded. kde/kwayland-integration-5.27.2-x86_64-1.txz: Upgraded. kde/kwin-5.27.2-x86_64-1.txz: Upgraded. kde/kwrited-5.27.2-x86_64-1.txz: Upgraded. kde/layer-shell-qt-5.27.2-x86_64-1.txz: Upgraded. kde/libkscreen-5.27.2-x86_64-1.txz: Upgraded. kde/libksysguard-5.27.2-x86_64-1.txz: Upgraded. kde/milou-5.27.2-x86_64-1.txz: Upgraded. kde/oxygen-5.27.2-x86_64-1.txz: Upgraded. kde/oxygen-sounds-5.27.2-x86_64-1.txz: Upgraded. kde/plasma-browser-integration-5.27.2-x86_64-1.txz: Upgraded. kde/plasma-desktop-5.27.2-x86_64-1.txz: Upgraded. kde/plasma-disks-5.27.2-x86_64-1.txz: Upgraded. kde/plasma-firewall-5.27.2-x86_64-1.txz: Upgraded. kde/plasma-integration-5.27.2-x86_64-1.txz: Upgraded. kde/plasma-nm-5.27.2-x86_64-1.txz: Upgraded. kde/plasma-pa-5.27.2-x86_64-1.txz: Upgraded. kde/plasma-sdk-5.27.2-x86_64-1.txz: Upgraded. kde/plasma-systemmonitor-5.27.2-x86_64-1.txz: Upgraded. kde/plasma-vault-5.27.2-x86_64-1.txz: Upgraded. kde/plasma-workspace-5.27.2-x86_64-1.txz: Upgraded. kde/plasma-workspace-wallpapers-5.27.2-x86_64-1.txz: Upgraded. kde/polkit-kde-agent-1-5.27.2-x86_64-1.txz: Upgraded. kde/powerdevil-5.27.2-x86_64-1.txz: Upgraded. kde/qqc2-breeze-style-5.27.2-x86_64-1.txz: Upgraded. kde/sddm-kcm-5.27.2-x86_64-1.txz: Upgraded. kde/systemsettings-5.27.2-x86_64-1.txz: Upgraded. kde/xdg-desktop-portal-kde-5.27.2-x86_64-1.txz: Upgraded. l/iso-codes-4.13.0-noarch-1.txz: Upgraded. n/whois-5.5.16-x86_64-1.txz: Upgraded. Add bash completion support, courtesy of Ville Skytta. Updated the .tr TLD server. Removed support for -metu NIC handles. x/encodings-1.0.7-noarch-1.txz: Upgraded. x/font-adobe-100dpi-1.0.4-noarch-1.txz: Upgraded. x/font-adobe-75dpi-1.0.4-noarch-1.txz: Upgraded. x/font-adobe-utopia-100dpi-1.0.5-noarch-1.txz: Upgraded. x/font-adobe-utopia-75dpi-1.0.5-noarch-1.txz: Upgraded. x/font-adobe-utopia-type1-1.0.5-noarch-1.txz: Upgraded. x/font-alias-1.0.5-noarch-1.txz: Upgraded. x/font-arabic-misc-1.0.4-noarch-1.txz: Upgraded. x/font-bh-100dpi-1.0.4-noarch-1.txz: Upgraded. x/font-bh-75dpi-1.0.4-noarch-1.txz: Upgraded. x/font-bh-lucidatypewriter-100dpi-1.0.4-noarch-1.txz: Upgraded. x/font-bh-lucidatypewriter-75dpi-1.0.4-noarch-1.txz: Upgraded. x/font-bh-ttf-1.0.4-noarch-1.txz: Upgraded. x/font-bh-type1-1.0.4-noarch-1.txz: Upgraded. x/font-bitstream-100dpi-1.0.4-noarch-1.txz: Upgraded. x/font-bitstream-75dpi-1.0.4-noarch-1.txz: Upgraded. x/font-bitstream-type1-1.0.4-noarch-1.txz: Upgraded. x/font-cronyx-cyrillic-1.0.4-noarch-1.txz: Upgraded. x/font-cursor-misc-1.0.4-noarch-1.txz: Upgraded. x/font-daewoo-misc-1.0.4-noarch-1.txz: Upgraded. x/font-dec-misc-1.0.4-noarch-1.txz: Upgraded. x/font-ibm-type1-1.0.4-noarch-1.txz: Upgraded. x/font-isas-misc-1.0.4-noarch-1.txz: Upgraded. x/font-jis-misc-1.0.4-noarch-1.txz: Upgraded. x/font-micro-misc-1.0.4-noarch-1.txz: Upgraded. x/font-misc-cyrillic-1.0.4-noarch-1.txz: Upgraded. x/font-misc-ethiopic-1.0.5-noarch-1.txz: Upgraded. x/font-misc-meltho-1.0.4-noarch-1.txz: Upgraded. x/font-misc-misc-1.1.3-noarch-1.txz: Upgraded. x/font-mutt-misc-1.0.4-noarch-1.txz: Upgraded. x/font-schumacher-misc-1.1.3-noarch-1.txz: Upgraded. x/font-screen-cyrillic-1.0.5-noarch-1.txz: Upgraded. x/font-sony-misc-1.0.4-noarch-1.txz: Upgraded. x/font-sun-misc-1.0.4-noarch-1.txz: Upgraded. x/font-winitzki-cyrillic-1.0.4-noarch-1.txz: Upgraded. x/font-xfree86-type1-1.0.5-noarch-1.txz: Upgraded. xap/mozilla-firefox-110.0.1-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://www.mozilla.org/en-US/firefox/110.0.1/releasenotes/ xap/vim-gvim-9.0.1362-x86_64-1.txz: Upgraded. xfce/xfce4-notifyd-0.8.2-x86_64-1.txz: Upgraded. 20230228213332 Patrick J Volkerding2023-02-281-1/+4
* Wed Feb 15 03:05:40 UTC 2023...a/kernel-firmware-20230214_a253a37-noarch-1.txz: Upgraded. a/kernel-generic-6.1.12-x86_64-1.txz: Upgraded. a/kernel-huge-6.1.12-x86_64-1.txz: Upgraded. a/kernel-modules-6.1.12-x86_64-1.txz: Upgraded. d/kernel-headers-6.1.12-x86-1.txz: Upgraded. d/rust-1.66.1-x86_64-1.txz: Upgraded. k/kernel-source-6.1.12-noarch-1.txz: Upgraded. kde/bluedevil-5.27.0-x86_64-1.txz: Upgraded. kde/breeze-5.27.0-x86_64-1.txz: Upgraded. kde/breeze-grub-5.27.0-x86_64-1.txz: Upgraded. kde/breeze-gtk-5.27.0-x86_64-1.txz: Upgraded. kde/drkonqi-5.27.0-x86_64-1.txz: Upgraded. kde/kactivitymanagerd-5.27.0-x86_64-1.txz: Upgraded. kde/kde-cli-tools-5.27.0-x86_64-1.txz: Upgraded. kde/kde-gtk-config-5.27.0-x86_64-1.txz: Upgraded. kde/kdecoration-5.27.0-x86_64-1.txz: Upgraded. kde/kdeplasma-addons-5.27.0-x86_64-1.txz: Upgraded. kde/kgamma5-5.27.0-x86_64-1.txz: Upgraded. kde/khotkeys-5.27.0-x86_64-1.txz: Upgraded. kde/kinfocenter-5.27.0-x86_64-1.txz: Upgraded. kde/kmenuedit-5.27.0-x86_64-1.txz: Upgraded. kde/kpipewire-5.27.0-x86_64-1.txz: Upgraded. kde/kscreen-5.27.0-x86_64-1.txz: Upgraded. kde/kscreenlocker-5.27.0-x86_64-1.txz: Upgraded. kde/ksshaskpass-5.27.0-x86_64-1.txz: Upgraded. kde/ksystemstats-5.27.0-x86_64-1.txz: Upgraded. kde/kwallet-pam-5.27.0-x86_64-1.txz: Upgraded. kde/kwayland-integration-5.27.0-x86_64-1.txz: Upgraded. kde/kwin-5.27.0-x86_64-1.txz: Upgraded. kde/kwrited-5.27.0-x86_64-1.txz: Upgraded. kde/layer-shell-qt-5.27.0-x86_64-1.txz: Upgraded. kde/libkscreen-5.27.0-x86_64-1.txz: Upgraded. kde/libksysguard-5.27.0-x86_64-1.txz: Upgraded. kde/milou-5.27.0-x86_64-1.txz: Upgraded. kde/oxygen-5.27.0-x86_64-1.txz: Upgraded. kde/oxygen-sounds-5.27.0-x86_64-1.txz: Upgraded. kde/plasma-browser-integration-5.27.0-x86_64-1.txz: Upgraded. kde/plasma-desktop-5.27.0-x86_64-1.txz: Upgraded. kde/plasma-disks-5.27.0-x86_64-1.txz: Upgraded. kde/plasma-firewall-5.27.0-x86_64-1.txz: Upgraded. kde/plasma-integration-5.27.0-x86_64-1.txz: Upgraded. kde/plasma-nm-5.27.0-x86_64-1.txz: Upgraded. kde/plasma-pa-5.27.0-x86_64-1.txz: Upgraded. kde/plasma-sdk-5.27.0-x86_64-1.txz: Upgraded. kde/plasma-systemmonitor-5.27.0-x86_64-1.txz: Upgraded. kde/plasma-vault-5.27.0-x86_64-1.txz: Upgraded. kde/plasma-workspace-5.27.0-x86_64-1.txz: Upgraded. kde/plasma-workspace-wallpapers-5.27.0-x86_64-1.txz: Upgraded. kde/polkit-kde-agent-1-5.27.0-x86_64-1.txz: Upgraded. kde/powerdevil-5.27.0-x86_64-1.txz: Upgraded. kde/qqc2-breeze-style-5.27.0-x86_64-1.txz: Upgraded. kde/sddm-kcm-5.27.0-x86_64-1.txz: Upgraded. kde/systemsettings-5.27.0-x86_64-1.txz: Upgraded. kde/xdg-desktop-portal-kde-5.27.0-x86_64-1.txz: Upgraded. l/mozjs102-102.8.0esr-x86_64-1.txz: Upgraded. n/php-7.4.33-x86_64-3.txz: Rebuilt. This update fixes security issues: Core: Password_verify() always return true with some hash. Core: 1-byte array overrun in common path resolve code. SAPI: DOS vulnerability when parsing multipart request body. For more information, see: https://www.cve.org/CVERecord?id=CVE-2023-0567 https://www.cve.org/CVERecord?id=CVE-2023-0568 https://www.cve.org/CVERecord?id=CVE-2023-0662 (* Security fix *) xap/mozilla-firefox-110.0-x86_64-1.txz: Upgraded. This update contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/firefox/110.0/releasenotes/ https://www.mozilla.org/en-US/security/advisories/mfsa2023-05/ https://www.cve.org/CVERecord?id=CVE-2023-25728 https://www.cve.org/CVERecord?id=CVE-2023-25730 https://www.cve.org/CVERecord?id=CVE-2023-25743 https://www.cve.org/CVERecord?id=CVE-2023-0767 https://www.cve.org/CVERecord?id=CVE-2023-25735 https://www.cve.org/CVERecord?id=CVE-2023-25737 https://www.cve.org/CVERecord?id=CVE-2023-25738 https://www.cve.org/CVERecord?id=CVE-2023-25739 https://www.cve.org/CVERecord?id=CVE-2023-25729 https://www.cve.org/CVERecord?id=CVE-2023-25732 https://www.cve.org/CVERecord?id=CVE-2023-25734 https://www.cve.org/CVERecord?id=CVE-2023-25740 https://www.cve.org/CVERecord?id=CVE-2023-25731 https://www.cve.org/CVERecord?id=CVE-2023-25733 https://www.cve.org/CVERecord?id=CVE-2023-25736 https://www.cve.org/CVERecord?id=CVE-2023-25741 https://www.cve.org/CVERecord?id=CVE-2023-25742 https://www.cve.org/CVERecord?id=CVE-2023-25744 https://www.cve.org/CVERecord?id=CVE-2023-25745 (* Security fix *) extra/php80/php80-8.0.28-x86_64-1.txz: Upgraded. This update fixes security issues: Core: Password_verify() always return true with some hash. Core: 1-byte array overrun in common path resolve code. SAPI: DOS vulnerability when parsing multipart request body. For more information, see: https://www.cve.org/CVERecord?id=CVE-2023-0567 https://www.cve.org/CVERecord?id=CVE-2023-0568 https://www.cve.org/CVERecord?id=CVE-2023-0662 (* Security fix *) extra/php81/php81-8.1.16-x86_64-1.txz: Upgraded. This update fixes security issues: Core: Password_verify() always return true with some hash. Core: 1-byte array overrun in common path resolve code. SAPI: DOS vulnerability when parsing multipart request body. For more information, see: https://www.cve.org/CVERecord?id=CVE-2023-0567 https://www.cve.org/CVERecord?id=CVE-2023-0568 https://www.cve.org/CVERecord?id=CVE-2023-0662 (* Security fix *) isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. testing/packages/rust-1.67.1-x86_64-1.txz: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. 20230215030540 Patrick J Volkerding2023-02-154-1/+619
* Mon Feb 13 20:03:36 UTC 2023...ap/man-pages-6.03-noarch-1.txz: Upgraded. l/atkmm-2.28.3-x86_64-1.txz: Upgraded. l/cairomm-1.14.4-x86_64-1.txz: Upgraded. l/glibmm-2.66.5-x86_64-1.txz: Upgraded. l/imagemagick-7.1.0_62-x86_64-1.txz: Upgraded. n/nghttp2-1.52.0-x86_64-1.txz: Upgraded. x/util-macros-1.20.0-noarch-1.txz: Upgraded. 20230213200336 Patrick J Volkerding2023-02-131-1/+1
* Fri Feb 10 20:08:41 UTC 2023...a/cryptsetup-2.6.1-x86_64-1.txz: Upgraded. a/dialog-1.3_20230209-x86_64-1.txz: Upgraded. l/mozilla-nss-3.87.1-x86_64-1.txz: Upgraded. l/zstd-1.5.4-x86_64-1.txz: Upgraded. n/NetworkManager-1.42.0-x86_64-1.txz: Upgraded. n/gnutls-3.7.9-x86_64-1.txz: Upgraded. libgnutls: Fix a Bleichenbacher oracle in the TLS RSA key exchange. Reported by Hubert Kario (#1050). Fix developed by Alexander Sosedkin. [GNUTLS-SA-2020-07-14, CVSS: medium] [CVE-2023-0361] For more information, see: https://www.cve.org/CVERecord?id=CVE-2023-0361 (* Security fix *) xfce/mousepad-0.6.0-x86_64-1.txz: Upgraded. xfce/xfce4-power-manager-4.18.1-x86_64-1.txz: Upgraded. xfce/xfce4-session-4.18.1-x86_64-1.txz: Upgraded. 20230210200841 Patrick J Volkerding2023-02-101-1/+1
* Wed Feb 1 05:29:53 UTC 2023...d/perl-5.36.0-x86_64-3.txz: Rebuilt. Upgraded: IO-Socket-SSL-2.081, Moo-2.005005, Path-Tiny-0.144, Sub-Quote-2.006008, Template-Toolkit-3.101, URI-5.17. Added: JSON-4.10 (needed to build Samba with --bundled-libraries=heimdal). kde/kstars-3.6.3-x86_64-1.txz: Upgraded. l/gjs-1.74.1-x86_64-1.txz: Upgraded. Compiled against mozjs102-102.7.0esr. l/mozjs102-102.7.0esr-x86_64-1.txz: Added. This is required by gjs-1.74.1 and polkit-122. l/mozjs78-78.15.0esr-x86_64-1.txz: Removed. l/polkit-122-x86_64-1.txz: Upgraded. Compiled against mozjs102-102.7.0esr. 20230201052953 Patrick J Volkerding2023-02-011-3/+13
* Fri Jan 27 20:08:12 UTC 2023...n/samba-4.17.5-x86_64-1.txz: Upgraded. BUG 15240: CVE-2022-38023 [SECURITY] Samba should refuse RC4 (aka md5) based SChannel on NETLOGON (additional changes). For more information, see: https://www.samba.org/samba/security/CVE-2022-38023.html https://www.cve.org/CVERecord?id=CVE-2022-38023 (* Security fix *) x/mesa-22.3.4-x86_64-1.txz: Upgraded. x/xf86-video-vmware-13.4.0-x86_64-1.txz: Upgraded. 20230127200812 Patrick J Volkerding2023-01-271-2/+2
* Mon Jan 23 20:34:38 UTC 2023...ap/ddrescue-1.27-x86_64-1.txz: Upgraded. ap/lsof-4.98.0-x86_64-1.txz: Upgraded. d/parallel-20230122-noarch-1.txz: Upgraded. l/imagemagick-7.1.0_58-x86_64-1.txz: Upgraded. l/neon-0.32.5-x86_64-1.txz: Upgraded. l/quazip-1.4-x86_64-1.txz: Upgraded. n/getmail-6.18.12-x86_64-1.txz: Upgraded. n/postfix-3.7.4-x86_64-1.txz: Upgraded. x/libwacom-2.6.0-x86_64-1.txz: Upgraded. xfce/thunar-4.18.3-x86_64-1.txz: Upgraded. xfce/xfdesktop-4.18.1-x86_64-1.txz: Upgraded. 20230123203438 Patrick J Volkerding2023-01-232-28/+1
* Wed Jan 18 06:11:54 UTC 2023...ap/diffutils-3.9-x86_64-1.txz: Upgraded. ap/lsof-4.97.0-x86_64-1.txz: Upgraded. ap/mpg123-1.31.2-x86_64-1.txz: Upgraded. d/binutils-2.40-x86_64-1.txz: Upgraded. Shared library .so-version bump. d/git-2.39.1-x86_64-1.txz: Upgraded. d/oprofile-1.4.0-x86_64-11.txz: Rebuilt. Recompiled against binutils-2.40. n/httpd-2.4.55-x86_64-1.txz: Upgraded. This update fixes bugs and the following security issues: mod_proxy allows a backend to trigger HTTP response splitting. mod_proxy_ajp possible request smuggling. mod_dav out of bounds read, or write of zero byte. For more information, see: https://downloads.apache.org/httpd/CHANGES_2.4.55 https://www.cve.org/CVERecord?id=CVE-2022-37436 https://www.cve.org/CVERecord?id=CVE-2022-36760 https://www.cve.org/CVERecord?id=CVE-2006-20001 (* Security fix *) x/ibus-libpinyin-1.15.0-x86_64-1.txz: Upgraded. Compiled against libpinyin-2.8.1. x/igt-gpu-tools-1.27-x86_64-1.txz: Upgraded. x/libXpm-3.5.15-x86_64-1.txz: Upgraded. This update fixes security issues: Infinite loop on unclosed comments. Runaway loop with width of 0 and enormous height. Compression commands depend on $PATH. For more information, see: https://www.cve.org/CVERecord?id=CVE-2022-46285 https://www.cve.org/CVERecord?id=CVE-2022-44617 https://www.cve.org/CVERecord?id=CVE-2022-4883 (* Security fix *) x/libinput-1.22.1-x86_64-1.txz: Upgraded. x/libpinyin-2.8.1-x86_64-1.txz: Upgraded. Shared library .so-version bump. xap/mozilla-firefox-109.0-x86_64-1.txz: Upgraded. This update contains security fixes and improvements. Thanks to marav for the build help. For more information, see: https://www.mozilla.org/en-US/firefox/109.0/releasenotes/ https://www.mozilla.org/en-US/security/advisories/mfsa2023-01/ https://www.cve.org/CVERecord?id=CVE-2023-23597 https://www.cve.org/CVERecord?id=CVE-2023-23598 https://www.cve.org/CVERecord?id=CVE-2023-23599 https://www.cve.org/CVERecord?id=CVE-2023-23600 https://www.cve.org/CVERecord?id=CVE-2023-23601 https://www.cve.org/CVERecord?id=CVE-2023-23602 https://www.cve.org/CVERecord?id=CVE-2023-23603 https://www.cve.org/CVERecord?id=CVE-2023-23604 https://www.cve.org/CVERecord?id=CVE-2023-23605 https://www.cve.org/CVERecord?id=CVE-2023-23606 (* Security fix *) 20230118061154 Patrick J Volkerding2023-01-181-2/+2
* Fri Jan 13 20:29:55 UTC 2023...a/mcelog-191-x86_64-1.txz: Upgraded. kde/kid3-3.9.3-x86_64-1.txz: Upgraded. l/fuse3-3.13.0-x86_64-1.txz: Upgraded. l/libpcap-1.10.3-x86_64-1.txz: Upgraded. l/libwebp-1.3.0-x86_64-1.txz: Upgraded. n/netatalk-3.1.14-x86_64-1.txz: Upgraded. Netatalk through 3.1.13 has an afp_getappl heap-based buffer overflow resulting in code execution via a crafted .appl file. For more information, see: https://www.cve.org/CVERecord?id=CVE-2022-45188 (* Security fix *) n/tcpdump-4.99.3-x86_64-1.txz: Upgraded. xfce/xfce4-screenshooter-1.10.3-x86_64-1.txz: Upgraded. 20230113202955 Patrick J Volkerding2023-01-131-0/+1
* Tue Jan 10 21:32:00 UTC 2023...a/kernel-firmware-20230110_a1ad1d5-noarch-1.txz: Upgraded. n/ca-certificates-20221205-noarch-2.txz: Rebuilt. Make sure that if we're installing this package on another partition (such as when using installpkg with a --root parameter) that the updates are done on that partition. Thanks to fulalas. x/libva-utils-2.17.1-x86_64-1.txz: Upgraded. xfce/libxfce4util-4.18.1-x86_64-1.txz: Upgraded. xfce/thunar-4.18.2-x86_64-1.txz: Upgraded. 20230110213200 Patrick J Volkerding2023-01-102-3/+7
* Sat Jan 7 20:30:44 UTC 2023...We're going to go ahead and jump to the 6.1.4 kernel, in spite of the fact that a kernel bisect identified the patch that was preventing 32-bit from booting here on a Thinkpad X1E: ------ From 2e479b3b82c49bfb9422274c0a9c155a41caecb7 Mon Sep 17 00:00:00 2001 From: Michael Kelley <mikelley@microsoft.com> Date: Wed, 16 Nov 2022 10:41:24 -0800 Subject: [PATCH] x86/ioremap: Fix page aligned size calculation in __ioremap_caller() commit 4dbd6a3e90e03130973688fd79e19425f720d999 upstream. Current code re-calculates the size after aligning the starting and ending physical addresses on a page boundary. But the re-calculation also embeds the masking of high order bits that exceed the size of the physical address space (via PHYSICAL_PAGE_MASK). If the masking removes any high order bits, the size calculation results in a huge value that is likely to immediately fail. Fix this by re-calculating the page-aligned size first. Then mask any high order bits using PHYSICAL_PAGE_MASK. Fixes: ffa71f33a820 ("x86, ioremap: Fix incorrect physical address handling in PAE mode") ------ The non-SMP non-PAE 32-bit kernel is fine even without the patch revert. The PAE kernel also works fine with this patch reverted without any need to revert ffa71f33a820 (the patch that this one is supposed to fix). The machine's excessive (for 32-bit) amount of physical RAM (64GB) might also be a factor here considering the PAE kernel works on all the other machines around here without reverting this patch. The patch is reverted only on 32-bit. Upstream report still pending. Enjoy! :-) a/kernel-generic-6.1.4-x86_64-1.txz: Upgraded. a/kernel-huge-6.1.4-x86_64-1.txz: Upgraded. a/kernel-modules-6.1.4-x86_64-1.txz: Upgraded. a/tree-2.1.0-x86_64-1.txz: Upgraded. d/kernel-headers-6.1.4-x86-1.txz: Upgraded. k/kernel-source-6.1.4-noarch-1.txz: Upgraded. l/gvfs-1.50.3-x86_64-1.txz: Upgraded. l/hunspell-1.7.2-x86_64-1.txz: Upgraded. l/libnice-0.1.21-x86_64-1.txz: Upgraded. n/tin-2.6.2-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. 20230107203044 Patrick J Volkerding2023-01-071-1/+1
* Sat Jan 7 01:50:00 UTC 2023...a/btrfs-progs-6.1.2-x86_64-1.txz: Upgraded. l/mozilla-nss-3.87-x86_64-1.txz: Upgraded. Fixed memory corruption in NSS via DER-encoded DSA and RSA-PSS signatures. For more information, see: https://www.mozilla.org/en-US/security/advisories/mfsa2021-51/ https://www.cve.org/CVERecord?id=CVE-2021-43527 (* Security fix *) l/nodejs-19.4.0-x86_64-1.txz: Upgraded. n/php-7.4.33-x86_64-2.txz: Rebuilt. This update fixes a security issue: PDO::quote() may return unquoted string. For more information, see: https://www.cve.org/CVERecord?id=CVE-2022-31631 (* Security fix *) extra/php80/php80-8.0.27-x86_64-1.txz: Upgraded. This update fixes a security issue: PDO::quote() may return unquoted string. For more information, see: https://www.cve.org/CVERecord?id=CVE-2022-31631 (* Security fix *) extra/php81/php81-8.1.14-x86_64-1.txz: Upgraded. This update fixes bugs and a security issue: PDO::quote() may return unquoted string. For more information, see: https://www.cve.org/CVERecord?id=CVE-2022-31631 (* Security fix *) 20230107015000 Patrick J Volkerding2023-01-072-2/+54
* Fri Jan 6 00:54:38 UTC 2023...kde/akonadi-22.12.1-x86_64-1.txz: Upgraded. kde/akonadi-calendar-22.12.1-x86_64-1.txz: Upgraded. kde/akonadi-calendar-tools-22.12.1-x86_64-1.txz: Upgraded. kde/akonadi-contacts-22.12.1-x86_64-1.txz: Upgraded. kde/akonadi-import-wizard-22.12.1-x86_64-1.txz: Upgraded. kde/akonadi-mime-22.12.1-x86_64-1.txz: Upgraded. kde/akonadi-notes-22.12.1-x86_64-1.txz: Upgraded. kde/akonadi-search-22.12.1-x86_64-1.txz: Upgraded. kde/akonadiconsole-22.12.1-x86_64-1.txz: Upgraded. kde/akregator-22.12.1-x86_64-1.txz: Upgraded. kde/analitza-22.12.1-x86_64-1.txz: Upgraded. kde/ark-22.12.1-x86_64-1.txz: Upgraded. kde/artikulate-22.12.1-x86_64-1.txz: Upgraded. kde/audiocd-kio-22.12.1-x86_64-1.txz: Upgraded. kde/baloo-widgets-22.12.1-x86_64-1.txz: Upgraded. kde/blinken-22.12.1-x86_64-1.txz: Upgraded. kde/bomber-22.12.1-x86_64-1.txz: Upgraded. kde/bovo-22.12.1-x86_64-1.txz: Upgraded. kde/calendarsupport-22.12.1-x86_64-1.txz: Upgraded. kde/cantor-22.12.1-x86_64-1.txz: Upgraded. kde/cervisia-22.12.1-x86_64-1.txz: Upgraded. kde/dolphin-22.12.1-x86_64-1.txz: Upgraded. kde/dolphin-plugins-22.12.1-x86_64-1.txz: Upgraded. kde/dragon-22.12.1-x86_64-1.txz: Upgraded. kde/elisa-22.12.1-x86_64-1.txz: Upgraded. kde/eventviews-22.12.1-x86_64-1.txz: Upgraded. kde/falkon-22.12.1-x86_64-1.txz: Upgraded. kde/ffmpegthumbs-22.12.1-x86_64-1.txz: Upgraded. kde/filelight-22.12.1-x86_64-1.txz: Upgraded. kde/granatier-22.12.1-x86_64-1.txz: Upgraded. kde/grantlee-editor-22.12.1-x86_64-1.txz: Upgraded. kde/grantleetheme-22.12.1-x86_64-1.txz: Upgraded. kde/gwenview-22.12.1-x86_64-1.txz: Upgraded. kde/incidenceeditor-22.12.1-x86_64-1.txz: Upgraded. kde/itinerary-22.12.1-x86_64-1.txz: Upgraded. kde/juk-22.12.1-x86_64-1.txz: Upgraded. kde/k3b-22.12.1-x86_64-1.txz: Upgraded. kde/kaddressbook-22.12.1-x86_64-1.txz: Upgraded. kde/kalarm-22.12.1-x86_64-1.txz: Upgraded. kde/kalendar-22.12.1-x86_64-1.txz: Upgraded. kde/kalgebra-22.12.1-x86_64-1.txz: Upgraded. kde/kalzium-22.12.1-x86_64-1.txz: Upgraded. kde/kamera-22.12.1-x86_64-1.txz: Upgraded. kde/kamoso-22.12.1-x86_64-1.txz: Upgraded. kde/kanagram-22.12.1-x86_64-1.txz: Upgraded. kde/kapman-22.12.1-x86_64-1.txz: Upgraded. kde/kapptemplate-22.12.1-x86_64-1.txz: Upgraded. kde/kate-22.12.1-x86_64-1.txz: Upgraded. kde/katomic-22.12.1-x86_64-1.txz: Upgraded. kde/kbackup-22.12.1-x86_64-1.txz: Upgraded. kde/kblackbox-22.12.1-x86_64-1.txz: Upgraded. kde/kblocks-22.12.1-x86_64-1.txz: Upgraded. kde/kbounce-22.12.1-x86_64-1.txz: Upgraded. kde/kbreakout-22.12.1-x86_64-1.txz: Upgraded. kde/kbruch-22.12.1-x86_64-1.txz: Upgraded. kde/kcachegrind-22.12.1-x86_64-1.txz: Upgraded. kde/kcalc-22.12.1-x86_64-1.txz: Upgraded. kde/kcalutils-22.12.1-x86_64-1.txz: Upgraded. kde/kcharselect-22.12.1-x86_64-1.txz: Upgraded. kde/kcolorchooser-22.12.1-x86_64-1.txz: Upgraded. kde/kcron-22.12.1-x86_64-1.txz: Upgraded. kde/kde-dev-scripts-22.12.1-x86_64-1.txz: Upgraded. kde/kde-dev-utils-22.12.1-x86_64-1.txz: Upgraded. kde/kdebugsettings-22.12.1-x86_64-1.txz: Upgraded. kde/kdeconnect-kde-22.12.1-x86_64-1.txz: Upgraded. kde/kdeedu-data-22.12.1-x86_64-1.txz: Upgraded. kde/kdegraphics-mobipocket-22.12.1-x86_64-1.txz: Upgraded. kde/kdegraphics-thumbnailers-22.12.1-x86_64-1.txz: Upgraded. kde/kdenetwork-filesharing-22.12.1-x86_64-1.txz: Upgraded. kde/kdenlive-22.12.1-x86_64-1.txz: Upgraded. kde/kdepim-addons-22.12.1-x86_64-1.txz: Upgraded. kde/kdepim-runtime-22.12.1-x86_64-1.txz: Upgraded. kde/kdesdk-kio-22.12.1-x86_64-1.txz: Upgraded. kde/kdesdk-thumbnailers-22.12.1-x86_64-1.txz: Upgraded. kde/kdev-php-22.12.1-x86_64-1.txz: Upgraded. kde/kdev-python-22.12.1-x86_64-1.txz: Upgraded. kde/kdevelop-22.12.1-x86_64-1.txz: Upgraded. kde/kdf-22.12.1-x86_64-1.txz: Upgraded. kde/kdialog-22.12.1-x86_64-1.txz: Upgraded. kde/kdiamond-22.12.1-x86_64-1.txz: Upgraded. kde/keditbookmarks-22.12.1-x86_64-1.txz: Upgraded. kde/kfind-22.12.1-x86_64-1.txz: Upgraded. kde/kfloppy-22.12.1-x86_64-1.txz: Upgraded. kde/kfourinline-22.12.1-x86_64-1.txz: Upgraded. kde/kgeography-22.12.1-x86_64-1.txz: Upgraded. kde/kget-22.12.1-x86_64-1.txz: Upgraded. kde/kgoldrunner-22.12.1-x86_64-1.txz: Upgraded. kde/kgpg-22.12.1-x86_64-1.txz: Upgraded. kde/khangman-22.12.1-x86_64-1.txz: Upgraded. kde/khelpcenter-22.12.1-x86_64-1.txz: Upgraded. kde/kidentitymanagement-22.12.1-x86_64-1.txz: Upgraded. kde/kig-22.12.1-x86_64-1.txz: Upgraded. kde/kigo-22.12.1-x86_64-1.txz: Upgraded. kde/killbots-22.12.1-x86_64-1.txz: Upgraded. kde/kimagemapeditor-22.12.1-x86_64-1.txz: Upgraded. kde/kimap-22.12.1-x86_64-1.txz: Upgraded. kde/kio-extras-22.12.1-x86_64-1.txz: Upgraded. kde/kio-gdrive-22.12.1-x86_64-1.txz: Upgraded. kde/kio-zeroconf-22.12.1-x86_64-1.txz: Upgraded. kde/kipi-plugins-22.12.1-x86_64-1.txz: Upgraded. kde/kirigami-gallery-22.12.1-x86_64-1.txz: Upgraded. kde/kiriki-22.12.1-x86_64-1.txz: Upgraded. kde/kiten-22.12.1-x86_64-1.txz: Upgraded. kde/kitinerary-22.12.1-x86_64-1.txz: Upgraded. kde/kjumpingcube-22.12.1-x86_64-1.txz: Upgraded. kde/kldap-22.12.1-x86_64-1.txz: Upgraded. kde/kleopatra-22.12.1-x86_64-1.txz: Upgraded. kde/klickety-22.12.1-x86_64-1.txz: Upgraded. kde/klines-22.12.1-x86_64-1.txz: Upgraded. kde/kmag-22.12.1-x86_64-1.txz: Upgraded. kde/kmahjongg-22.12.1-x86_64-1.txz: Upgraded. kde/kmail-22.12.1-x86_64-1.txz: Upgraded. kde/kmail-account-wizard-22.12.1-x86_64-1.txz: Upgraded. kde/kmailtransport-22.12.1-x86_64-1.txz: Upgraded. kde/kmbox-22.12.1-x86_64-1.txz: Upgraded. kde/kmime-22.12.1-x86_64-1.txz: Upgraded. kde/kmines-22.12.1-x86_64-1.txz: Upgraded. kde/kmix-22.12.1-x86_64-1.txz: Upgraded. kde/kmousetool-22.12.1-x86_64-1.txz: Upgraded. kde/kmouth-22.12.1-x86_64-1.txz: Upgraded. kde/kmplot-22.12.1-x86_64-1.txz: Upgraded. kde/knavalbattle-22.12.1-x86_64-1.txz: Upgraded. kde/knetwalk-22.12.1-x86_64-1.txz: Upgraded. kde/knights-22.12.1-x86_64-1.txz: Upgraded. kde/knotes-22.12.1-x86_64-1.txz: Upgraded. kde/kolf-22.12.1-x86_64-1.txz: Upgraded. kde/kollision-22.12.1-x86_64-1.txz: Upgraded. kde/kolourpaint-22.12.1-x86_64-1.txz: Upgraded. kde/kompare-22.12.1-x86_64-1.txz: Upgraded. kde/konqueror-22.12.1-x86_64-1.txz: Upgraded. kde/konquest-22.12.1-x86_64-1.txz: Upgraded. kde/konsole-22.12.1-x86_64-1.txz: Upgraded. kde/kontact-22.12.1-x86_64-1.txz: Upgraded. kde/kontactinterface-22.12.1-x86_64-1.txz: Upgraded. kde/kontrast-22.12.1-x86_64-1.txz: Upgraded. kde/konversation-22.12.1-x86_64-1.txz: Upgraded. kde/kopeninghours-22.12.1-x86_64-1.txz: Upgraded. kde/kopete-22.12.1-x86_64-1.txz: Upgraded. kde/korganizer-22.12.1-x86_64-1.txz: Upgraded. kde/kosmindoormap-22.12.1-x86_64-1.txz: Upgraded. kde/kpat-22.12.1-x86_64-1.txz: Upgraded. kde/kpimtextedit-22.12.1-x86_64-1.txz: Upgraded. kde/kpkpass-22.12.1-x86_64-1.txz: Upgraded. kde/kpmcore-22.12.1-x86_64-1.txz: Upgraded. kde/kpublictransport-22.12.1-x86_64-1.txz: Upgraded. kde/kqtquickcharts-22.12.1-x86_64-1.txz: Upgraded. kde/krdc-22.12.1-x86_64-1.txz: Upgraded. kde/kreversi-22.12.1-x86_64-1.txz: Upgraded. kde/krfb-22.12.1-x86_64-1.txz: Upgraded. kde/krita-5.1.5-x86_64-1.txz: Upgraded. kde/kross-interpreters-22.12.1-x86_64-1.txz: Upgraded. kde/kruler-22.12.1-x86_64-1.txz: Upgraded. kde/ksanecore-22.12.1-x86_64-1.txz: Upgraded. kde/kshisen-22.12.1-x86_64-1.txz: Upgraded. kde/ksirk-22.12.1-x86_64-1.txz: Upgraded. kde/ksmtp-22.12.1-x86_64-1.txz: Upgraded. kde/ksnakeduel-22.12.1-x86_64-1.txz: Upgraded. kde/kspaceduel-22.12.1-x86_64-1.txz: Upgraded. kde/ksquares-22.12.1-x86_64-1.txz: Upgraded. kde/ksudoku-22.12.1-x86_64-1.txz: Upgraded. kde/ksystemlog-22.12.1-x86_64-1.txz: Upgraded. kde/kteatime-22.12.1-x86_64-1.txz: Upgraded. kde/ktimer-22.12.1-x86_64-1.txz: Upgraded. kde/ktnef-22.12.1-x86_64-1.txz: Upgraded. kde/ktorrent-22.12.1-x86_64-1.txz: Upgraded. kde/ktouch-22.12.1-x86_64-1.txz: Upgraded. kde/kturtle-22.12.1-x86_64-1.txz: Upgraded. kde/kubrick-22.12.1-x86_64-1.txz: Upgraded. kde/kwalletmanager-22.12.1-x86_64-1.txz: Upgraded. kde/kwave-22.12.1-x86_64-1.txz: Upgraded. kde/kwordquiz-22.12.1-x86_64-1.txz: Upgraded. kde/libgravatar-22.12.1-x86_64-1.txz: Upgraded. kde/libkcddb-22.12.1-x86_64-1.txz: Upgraded. kde/libkcompactdisc-22.12.1-x86_64-1.txz: Upgraded. kde/libkdcraw-22.12.1-x86_64-1.txz: Upgraded. kde/libkdegames-22.12.1-x86_64-1.txz: Upgraded. kde/libkdepim-22.12.1-x86_64-1.txz: Upgraded. kde/libkeduvocdocument-22.12.1-x86_64-1.txz: Upgraded. kde/libkexiv2-22.12.1-x86_64-1.txz: Upgraded. kde/libkgapi-22.12.1-x86_64-1.txz: Upgraded. kde/libkipi-22.12.1-x86_64-1.txz: Upgraded. kde/libkleo-22.12.1-x86_64-1.txz: Upgraded. kde/libkmahjongg-22.12.1-x86_64-1.txz: Upgraded. kde/libkomparediff2-22.12.1-x86_64-1.txz: Upgraded. kde/libksane-22.12.1-x86_64-1.txz: Upgraded. kde/libksieve-22.12.1-x86_64-1.txz: Upgraded. kde/libktorrent-22.12.1-x86_64-1.txz: Upgraded. kde/lokalize-22.12.1-x86_64-1.txz: Upgraded. kde/lskat-22.12.1-x86_64-1.txz: Upgraded. kde/mailcommon-22.12.1-x86_64-1.txz: Upgraded. kde/mailimporter-22.12.1-x86_64-1.txz: Upgraded. kde/marble-22.12.1-x86_64-1.txz: Upgraded. kde/markdownpart-22.12.1-x86_64-1.txz: Upgraded. kde/mbox-importer-22.12.1-x86_64-1.txz: Upgraded. kde/messagelib-22.12.1-x86_64-1.txz: Upgraded. kde/minuet-22.12.1-x86_64-1.txz: Upgraded. kde/okular-22.12.1-x86_64-1.txz: Upgraded. kde/palapeli-22.12.1-x86_64-1.txz: Upgraded. kde/parley-22.12.1-x86_64-1.txz: Upgraded. kde/partitionmanager-22.12.1-x86_64-1.txz: Upgraded. kde/picmi-22.12.1-x86_64-1.txz: Upgraded. kde/pim-data-exporter-22.12.1-x86_64-1.txz: Upgraded. kde/pim-sieve-editor-22.12.1-x86_64-1.txz: Upgraded. kde/pimcommon-22.12.1-x86_64-1.txz: Upgraded. kde/poxml-22.12.1-x86_64-1.txz: Upgraded. kde/print-manager-22.12.1-x86_64-1.txz: Upgraded. kde/rocs-22.12.1-x86_64-1.txz: Upgraded. kde/skanlite-22.12.1-x86_64-1.txz: Upgraded. kde/skanpage-22.12.1-x86_64-1.txz: Upgraded. kde/spectacle-22.12.1-x86_64-1.txz: Upgraded. kde/svgpart-22.12.1-x86_64-1.txz: Upgraded. kde/sweeper-22.12.1-x86_64-1.txz: Upgraded. kde/umbrello-22.12.1-x86_64-1.txz: Upgraded. kde/yakuake-22.12.1-x86_64-1.txz: Upgraded. kde/zanshin-22.12.1-x86_64-1.txz: Upgraded. l/libqalculate-4.5.1-x86_64-1.txz: Upgraded. n/traceroute-2.1.1-x86_64-1.txz: Upgraded. xap/mozilla-firefox-108.0.2-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://www.mozilla.org/en-US/firefox/108.0.2/releasenotes/ xfce/libxfce4ui-4.18.1-x86_64-1.txz: Upgraded. xfce/xfce4-screenshooter-1.10.2-x86_64-1.txz: Upgraded. Thanks to Robby Workman. xfce/xfce4-systemload-plugin-1.3.2-x86_64-1.txz: Upgraded. Thanks to Robby Workman. xfce/xfce4-taskmanager-1.5.5-x86_64-1.txz: Upgraded. Thanks to Robby Workman. 20230106005438 Patrick J Volkerding2023-01-061-4/+4
* Sun Dec 25 23:21:25 UTC 2022...Hey folks, Merry Christmas and Hanukkah Sameach! Figured it was about time to get some kind of kernel activity going again, but it most definitely belongs in /testing for now. I've been trying to shape this up for weeks, but there are still issues, and maybe someone out there can help. The biggest problem is that the 32-bit kernels crash on boot. Initially there's some sort of Intel ME failure (this is on a Thinkpad X1E). If those modules are blacklisted, then the kernel will go on to crash loading the snd_hda_intel module. The other issue is that I've got a 4K panel in this machine, and have always appended the kernel option video=1920x1080@60 to put the console in HD instead, and then loaded a Terminus console font to make the text even larger. With these kernels, that option is completely ignored. I've tried some other syntax I've seen online to no avail. And when the Terminus font is loaded the text gets *even smaller* for some reason. So be careful of these kernels (especially the 32-bit ones), but I welcome any hints about what's going on here or if there are config changes that might get this working properly. Is anyone out there running a 6.x kernel on bare metal 32-bit x86? Cheers! ap/vim-9.0.1091-x86_64-1.txz: Upgraded. d/meson-1.0.0-x86_64-1.txz: Upgraded. d/ruby-3.2.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. d/subversion-1.14.2-x86_64-3.txz: Rebuilt. Recompiled against ruby-3.2.0. l/glib2-2.74.4-x86_64-1.txz: Upgraded. l/netpbm-11.00.03-x86_64-1.txz: Upgraded. l/rubygem-asciidoctor-2.0.18-x86_64-1.txz: Upgraded. Compiled against ruby-3.2.0. n/epic5-2.1.12-x86_64-2.txz: Rebuilt. Recompiled against ruby-3.2.0. x/marisa-0.2.6-x86_64-6.txz: Rebuilt. Recompiled against ruby-3.2.0. xap/vim-gvim-9.0.1091-x86_64-1.txz: Upgraded. testing/packages/linux-6.1.x/kernel-generic-6.1.1-x86_64-1.txz: Added. testing/packages/linux-6.1.x/kernel-headers-6.1.1-x86-1.txz: Added. testing/packages/linux-6.1.x/kernel-huge-6.1.1-x86_64-1.txz: Added. testing/packages/linux-6.1.x/kernel-modules-6.1.1-x86_64-1.txz: Added. testing/packages/linux-6.1.x/kernel-source-6.1.1-noarch-1.txz: Added. 20221225232125 Patrick J Volkerding2022-12-261-1/+1
* Fri Dec 23 02:37:47 UTC 2022...a/tcsh-6.24.07-x86_64-1.txz: Upgraded. d/nasm-2.16.01-x86_64-1.txz: Upgraded. n/dovecot-2.3.20-x86_64-1.txz: Upgraded. n/nftables-1.0.6-x86_64-1.txz: Upgraded. xfce/thunar-4.18.1-x86_64-1.txz: Upgraded. 20221223023747 Patrick J Volkerding2022-12-231-1/+1
* Sat Dec 17 21:14:11 UTC 2022...a/xz-5.4.0-x86_64-1.txz: Upgraded. l/harfbuzz-6.0.0-x86_64-1.txz: Upgraded. l/libmpc-1.3.1-x86_64-1.txz: Upgraded. n/NetworkManager-1.40.8-x86_64-1.txz: Upgraded. n/samba-4.17.4-x86_64-1.txz: Upgraded. This update fixes security issues: This is the Samba CVE for the Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability disclosed by Microsoft on Nov 8 2022. A Samba Active Directory DC will issue weak rc4-hmac session keys for use between modern clients and servers despite all modern Kerberos implementations supporting the aes256-cts-hmac-sha1-96 cipher. On Samba Active Directory DCs and members 'kerberos encryption types = legacy' would force rc4-hmac as a client even if the server supports aes128-cts-hmac-sha1-96 and/or aes256-cts-hmac-sha1-96. This is the Samba CVE for the Windows Kerberos Elevation of Privilege Vulnerability disclosed by Microsoft on Nov 8 2022. A service account with the special constrained delegation permission could forge a more powerful ticket than the one it was presented with. The "RC4" protection of the NetLogon Secure channel uses the same algorithms as rc4-hmac cryptography in Kerberos, and so must also be assumed to be weak. Note that there are several important behavior changes included in this release, which may cause compatibility problems interacting with system still expecting the former behavior. Please read the advisories of CVE-2022-37966, CVE-2022-37967 and CVE-2022-38023 carefully! For more information, see: https://www.samba.org/samba/security/CVE-2022-37966.html https://www.samba.org/samba/security/CVE-2022-37967.html https://www.samba.org/samba/security/CVE-2022-38023.html https://www.cve.org/CVERecord?id=CVE-2022-37966 https://www.cve.org/CVERecord?id=CVE-2022-37967 https://www.cve.org/CVERecord?id=CVE-2022-38023 (* Security fix *) xfce/exo-4.18.0-x86_64-1.txz: Upgraded. xfce/garcon-4.18.0-x86_64-1.txz: Upgraded. xfce/libxfce4ui-4.18.0-x86_64-1.txz: Upgraded. xfce/libxfce4util-4.18.0-x86_64-1.txz: Upgraded. xfce/thunar-4.18.0-x86_64-1.txz: Upgraded. xfce/thunar-volman-4.18.0-x86_64-1.txz: Upgraded. xfce/tumbler-4.18.0-x86_64-1.txz: Upgraded. xfce/xfce4-appfinder-4.18.0-x86_64-1.txz: Upgraded. xfce/xfce4-dev-tools-4.18.0-x86_64-1.txz: Upgraded. xfce/xfce4-notifyd-0.6.5-x86_64-1.txz: Upgraded. xfce/xfce4-panel-4.18.0-x86_64-1.txz: Upgraded. xfce/xfce4-power-manager-4.18.0-x86_64-1.txz: Upgraded. xfce/xfce4-session-4.18.0-x86_64-1.txz: Upgraded. xfce/xfce4-settings-4.18.0-x86_64-1.txz: Upgraded. xfce/xfce4-weather-plugin-0.11.0-x86_64-1.txz: Upgraded. xfce/xfconf-4.18.0-x86_64-1.txz: Upgraded. xfce/xfdesktop-4.18.0-x86_64-1.txz: Upgraded. xfce/xfwm4-4.18.0-x86_64-1.txz: Upgraded. 20221217211411 Patrick J Volkerding2022-12-171-2/+2
* Wed Dec 7 18:48:07 UTC 2022...d/cargo-vendor-filterer-0.5.7-x86_64-1.txz: Added. Thanks to Heinz Wiesinger. d/cbindgen-0.24.3-x86_64-1.txz: Added. d/python3-3.9.16-x86_64-1.txz: Upgraded. This update fixes security issues: gh-98739: Updated bundled libexpat to 2.5.0 to fix CVE-2022-43680 (heap use-after-free). gh-98433: The IDNA codec decoder used on DNS hostnames by socket or asyncio related name resolution functions no longer involves a quadratic algorithm to fix CVE-2022-45061. This prevents a potential CPU denial of service if an out-of-spec excessive length hostname involving bidirectional characters were decoded. Some protocols such as urllib http 3xx redirects potentially allow for an attacker to supply such a name. gh-100001: python -m http.server no longer allows terminal control characters sent within a garbage request to be printed to the stderr server log. gh-87604: Avoid publishing list of active per-interpreter audit hooks via the gc module. gh-97514: On Linux the multiprocessing module returns to using filesystem backed unix domain sockets for communication with the forkserver process instead of the Linux abstract socket namespace. Only code that chooses to use the "forkserver" start method is affected. This prevents Linux CVE-2022-42919 (potential privilege escalation) as abstract sockets have no permissions and could allow any user on the system in the same network namespace (often the whole system) to inject code into the multiprocessing forkserver process. Filesystem based socket permissions restrict this to the forkserver process user as was the default in Python 3.8 and earlier. gh-98517: Port XKCP's fix for the buffer overflows in SHA-3 to fix CVE-2022-37454. gh-68966: The deprecated mailcap module now refuses to inject unsafe text (filenames, MIME types, parameters) into shell commands to address CVE-2015-20107. Instead of using such text, it will warn and act as if a match was not found (or for test commands, as if the test failed). For more information, see: https://pythoninsider.blogspot.com/2022/12/python-3111-3109-3916-3816-3716-and.html https://www.cve.org/CVERecord?id=CVE-2022-43680 https://www.cve.org/CVERecord?id=CVE-2022-45061 https://www.cve.org/CVERecord?id=CVE-2022-42919 https://www.cve.org/CVERecord?id=CVE-2022-37454 https://www.cve.org/CVERecord?id=CVE-2015-20107 (* Security fix *) d/rust-bindgen-0.63.0-x86_64-1.txz: Added. Thanks to Heinz Wiesinger. l/pcre2-10.41-x86_64-1.txz: Upgraded. n/proftpd-1.3.8-x86_64-1.txz: Upgraded. x/mesa-22.3.0-x86_64-1.txz: Upgraded. Compiled with Rusticl support. Thanks to Heinz Wiesinger. x/xdm-1.1.14-x86_64-1.txz: Upgraded. 20221207184807 Patrick J Volkerding2022-12-071-2/+2
* Mon Dec 5 21:00:46 UTC 2022...a/glibc-zoneinfo-2022g-noarch-1.txz: Upgraded. This package provides the latest timezone updates. ap/texinfo-7.0.1-x86_64-2.txz: Rebuilt. Rebuilt without the --disable-perl-xs option to fix a2ps failing to build from source. The option was added during the 15.0 development cycle to fix glibc failing to build from source, but that issue has been resolved. Thanks to nobodino and marav. n/ca-certificates-20221205-noarch-1.txz: Upgraded. This update provides the latest CA certificates to check for the authenticity of SSL connections. n/dnsmasq-2.88-x86_64-1.txz: Upgraded. 20221205210046 Patrick J Volkerding2022-12-061-688/+25
* Tue Nov 29 20:56:03 UTC 2022...a/cryptsetup-2.6.0-x86_64-1.txz: Upgraded. a/kernel-firmware-20221123_cdf9499-noarch-1.txz: Upgraded. kde/bluedevil-5.26.4-x86_64-1.txz: Upgraded. kde/breeze-5.26.4-x86_64-1.txz: Upgraded. kde/breeze-grub-5.26.4-x86_64-1.txz: Upgraded. kde/breeze-gtk-5.26.4-x86_64-1.txz: Upgraded. kde/drkonqi-5.26.4-x86_64-1.txz: Upgraded. kde/kactivitymanagerd-5.26.4-x86_64-1.txz: Upgraded. kde/kde-cli-tools-5.26.4-x86_64-1.txz: Upgraded. kde/kde-gtk-config-5.26.4-x86_64-1.txz: Upgraded. kde/kdecoration-5.26.4-x86_64-1.txz: Upgraded. kde/kdeplasma-addons-5.26.4-x86_64-1.txz: Upgraded. kde/kgamma5-5.26.4-x86_64-1.txz: Upgraded. kde/khotkeys-5.26.4-x86_64-1.txz: Upgraded. kde/kinfocenter-5.26.4-x86_64-1.txz: Upgraded. kde/kmenuedit-5.26.4-x86_64-1.txz: Upgraded. kde/kpipewire-5.26.4-x86_64-1.txz: Upgraded. kde/kscreen-5.26.4-x86_64-1.txz: Upgraded. kde/kscreenlocker-5.26.4-x86_64-1.txz: Upgraded. kde/ksshaskpass-5.26.4-x86_64-1.txz: Upgraded. kde/ksystemstats-5.26.4-x86_64-1.txz: Upgraded. kde/kwallet-pam-5.26.4-x86_64-1.txz: Upgraded. kde/kwayland-integration-5.26.4-x86_64-1.txz: Upgraded. kde/kwin-5.26.4-x86_64-1.txz: Upgraded. kde/kwrited-5.26.4-x86_64-1.txz: Upgraded. kde/layer-shell-qt-5.26.4-x86_64-1.txz: Upgraded. kde/libkscreen-5.26.4-x86_64-1.txz: Upgraded. kde/libksysguard-5.26.4-x86_64-1.txz: Upgraded. kde/milou-5.26.4-x86_64-1.txz: Upgraded. kde/oxygen-5.26.4-x86_64-1.txz: Upgraded. kde/oxygen-sounds-5.26.4-x86_64-1.txz: Upgraded. kde/plasma-browser-integration-5.26.4-x86_64-1.txz: Upgraded. kde/plasma-desktop-5.26.4-x86_64-1.txz: Upgraded. kde/plasma-disks-5.26.4-x86_64-1.txz: Upgraded. kde/plasma-firewall-5.26.4-x86_64-1.txz: Upgraded. kde/plasma-integration-5.26.4-x86_64-1.txz: Upgraded. kde/plasma-nm-5.26.4-x86_64-1.txz: Upgraded. kde/plasma-pa-5.26.4-x86_64-1.txz: Upgraded. kde/plasma-sdk-5.26.4-x86_64-1.txz: Upgraded. kde/plasma-systemmonitor-5.26.4-x86_64-1.txz: Upgraded. kde/plasma-vault-5.26.4-x86_64-1.txz: Upgraded. kde/plasma-workspace-5.26.4.1-x86_64-1.txz: Upgraded. kde/plasma-workspace-wallpapers-5.26.4-x86_64-1.txz: Upgraded. kde/polkit-kde-agent-1-5.26.4-x86_64-1.txz: Upgraded. kde/powerdevil-5.26.4-x86_64-1.txz: Upgraded. kde/qqc2-breeze-style-5.26.4-x86_64-1.txz: Upgraded. kde/sddm-kcm-5.26.4-x86_64-1.txz: Upgraded. kde/systemsettings-5.26.4-x86_64-1.txz: Upgraded. kde/xdg-desktop-portal-kde-5.26.4-x86_64-1.txz: Upgraded. l/glib2-2.74.2-x86_64-2.txz: Rebuilt. Patched to fix C++ API. Thanks to 0XBF. l/wavpack-5.6.0-x86_64-1.txz: Upgraded. n/iputils-20221126-x86_64-1.txz: Upgraded. n/libmbim-1.28.2-x86_64-1.txz: Upgraded. x/libime-1.0.16-x86_64-1.txz: Upgraded. x/xterm-377-x86_64-1.txz: Upgraded. xap/mozilla-firefox-107.0.1-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://www.mozilla.org/en-US/firefox/107.0.1/releasenotes/ 20221129205603 Patrick J Volkerding2022-11-304-109/+76
* Mon Nov 21 20:23:13 UTC 2022...a/libpwquality-1.4.5-x86_64-1.txz: Upgraded. a/pciutils-3.9.0-x86_64-1.txz: Upgraded. ap/qpdf-11.2.0-x86_64-1.txz: Upgraded. d/mercurial-6.3.1-x86_64-1.txz: Upgraded. kde/krusader-2.8.0-x86_64-1.txz: Upgraded. l/libpng-1.6.39-x86_64-1.txz: Upgraded. l/mlt-7.12.0-x86_64-1.txz: Upgraded. x/fcitx5-5.0.20-x86_64-1.txz: Upgraded. x/fcitx5-anthy-5.0.13-x86_64-1.txz: Upgraded. x/fcitx5-chinese-addons-5.0.16-x86_64-1.txz: Upgraded. x/fcitx5-gtk-5.0.20-x86_64-1.txz: Upgraded. x/fcitx5-kkc-5.0.11-x86_64-1.txz: Upgraded. x/fcitx5-m17n-5.0.11-x86_64-1.txz: Upgraded. x/fcitx5-qt-5.0.16-x86_64-1.txz: Upgraded. x/fcitx5-table-extra-5.0.12-x86_64-1.txz: Upgraded. x/fcitx5-unikey-5.0.12-x86_64-1.txz: Upgraded. x/libXdmcp-1.1.4-x86_64-1.txz: Upgraded. x/libXpm-3.5.14-x86_64-1.txz: Upgraded. x/libXrandr-1.5.3-x86_64-1.txz: Upgraded. x/libime-1.0.15-x86_64-1.txz: Upgraded. x/libinput-1.22.0-x86_64-1.txz: Upgraded. x/xcb-imdkit-1.0.4-x86_64-1.txz: Upgraded. 20221121202313 Patrick J Volkerding2022-11-224-4/+4
* Thu Nov 17 01:49:28 UTC 2022...ap/man-db-2.11.1-x86_64-1.txz: Upgraded. ap/nano-7.0-x86_64-1.txz: Upgraded. ap/sqlite-3.40.0-x86_64-1.txz: Upgraded. kde/plasma-framework-5.100.0-x86_64-2.txz: Rebuilt. [PATCH] svgitem: do not upscale svg when using fractional scaling. l/netpbm-11.00.02-x86_64-1.txz: Upgraded. n/bind-9.18.9-x86_64-1.txz: Upgraded. n/krb5-1.20.1-x86_64-1.txz: Upgraded. Fixed integer overflows in PAC parsing. Fixed null deref in KDC when decoding invalid NDR. Fixed memory leak in OTP kdcpreauth module. Fixed PKCS11 module path search. For more information, see: https://www.cve.org/CVERecord?id=CVE-2022-42898 (* Security fix *) n/samba-4.17.3-x86_64-1.txz: Upgraded. Fixed a security issue where Samba's Kerberos libraries and AD DC failed to guard against integer overflows when parsing a PAC on a 32-bit system, which allowed an attacker with a forged PAC to corrupt the heap. For more information, see: https://www.samba.org/samba/security/CVE-2022-42898.html https://www.cve.org/CVERecord?id=CVE-2022-42898 (* Security fix *) x/libXft-2.3.7-x86_64-1.txz: Upgraded. x/wayland-protocols-1.29-noarch-1.txz: Upgraded. xap/mozilla-firefox-107.0-x86_64-1.txz: Upgraded. This update contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/firefox/107.0/releasenotes/ https://www.mozilla.org/security/advisories/mfsa2022-47/ https://www.cve.org/CVERecord?id=CVE-2022-45403 https://www.cve.org/CVERecord?id=CVE-2022-45404 https://www.cve.org/CVERecord?id=CVE-2022-45405 https://www.cve.org/CVERecord?id=CVE-2022-45406 https://www.cve.org/CVERecord?id=CVE-2022-45407 https://www.cve.org/CVERecord?id=CVE-2022-45408 https://www.cve.org/CVERecord?id=CVE-2022-45409 https://www.cve.org/CVERecord?id=CVE-2022-45410 https://www.cve.org/CVERecord?id=CVE-2022-45411 https://www.cve.org/CVERecord?id=CVE-2022-45412 https://www.cve.org/CVERecord?id=CVE-2022-45413 https://www.cve.org/CVERecord?id=CVE-2022-40674 https://www.cve.org/CVERecord?id=CVE-2022-45415 https://www.cve.org/CVERecord?id=CVE-2022-45416 https://www.cve.org/CVERecord?id=CVE-2022-45417 https://www.cve.org/CVERecord?id=CVE-2022-45418 https://www.cve.org/CVERecord?id=CVE-2022-45419 https://www.cve.org/CVERecord?id=CVE-2022-45420 https://www.cve.org/CVERecord?id=CVE-2022-45421 (* Security fix *) xap/mozilla-thunderbird-102.5.0-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/thunderbird/102.5.0/releasenotes/ https://www.mozilla.org/en-US/security/advisories/mfsa2022-49/ https://www.cve.org/CVERecord?id=CVE-2022-45403 https://www.cve.org/CVERecord?id=CVE-2022-45404 https://www.cve.org/CVERecord?id=CVE-2022-45405 https://www.cve.org/CVERecord?id=CVE-2022-45406 https://www.cve.org/CVERecord?id=CVE-2022-45408 https://www.cve.org/CVERecord?id=CVE-2022-45409 https://www.cve.org/CVERecord?id=CVE-2022-45410 https://www.cve.org/CVERecord?id=CVE-2022-45411 https://www.cve.org/CVERecord?id=CVE-2022-45412 https://www.cve.org/CVERecord?id=CVE-2022-45416 https://www.cve.org/CVERecord?id=CVE-2022-45418 https://www.cve.org/CVERecord?id=CVE-2022-45420 https://www.cve.org/CVERecord?id=CVE-2022-45421 (* Security fix *) xfce/xfce4-settings-4.16.5-x86_64-1.txz: Upgraded. This update fixes regressions in the previous security fix: mime-settings: Properly quote command parameters. Revert "Escape characters which do not belong into an URI/URL (Issue #390)." 20221117014928 Patrick J Volkerding2022-11-172-2/+2
* Tue Nov 15 01:28:38 UTC 2022...a/xz-5.2.8-x86_64-1.txz: Upgraded. d/mercurial-6.3.0-x86_64-1.txz: Upgraded. d/rust-1.64.0-x86_64-1.txz: Upgraded. kde/attica-5.100.0-x86_64-1.txz: Upgraded. kde/baloo-5.100.0-x86_64-1.txz: Upgraded. kde/bluez-qt-5.100.0-x86_64-1.txz: Upgraded. kde/breeze-icons-5.100.0-noarch-1.txz: Upgraded. kde/extra-cmake-modules-5.100.0-x86_64-1.txz: Upgraded. kde/frameworkintegration-5.100.0-x86_64-1.txz: Upgraded. kde/kactivities-5.100.0-x86_64-1.txz: Upgraded. kde/kactivities-stats-5.100.0-x86_64-1.txz: Upgraded. kde/kapidox-5.100.0-x86_64-1.txz: Upgraded. kde/karchive-5.100.0-x86_64-1.txz: Upgraded. kde/kauth-5.100.0-x86_64-1.txz: Upgraded. kde/kbookmarks-5.100.0-x86_64-1.txz: Upgraded. kde/kcalendarcore-5.100.0-x86_64-1.txz: Upgraded. kde/kcmutils-5.100.0-x86_64-1.txz: Upgraded. kde/kcodecs-5.100.0-x86_64-1.txz: Upgraded. kde/kcompletion-5.100.0-x86_64-1.txz: Upgraded. kde/kconfig-5.100.0-x86_64-1.txz: Upgraded. kde/kconfigwidgets-5.100.0-x86_64-1.txz: Upgraded. kde/kcontacts-5.100.0-x86_64-1.txz: Upgraded. kde/kcoreaddons-5.100.0-x86_64-1.txz: Upgraded. kde/kcrash-5.100.0-x86_64-1.txz: Upgraded. kde/kdav-5.100.0-x86_64-1.txz: Upgraded. kde/kdbusaddons-5.100.0-x86_64-1.txz: Upgraded. kde/kdeclarative-5.100.0-x86_64-1.txz: Upgraded. kde/kded-5.100.0-x86_64-1.txz: Upgraded. kde/kdelibs4support-5.100.0-x86_64-1.txz: Upgraded. kde/kdesignerplugin-5.100.0-x86_64-1.txz: Upgraded. kde/kdesu-5.100.0-x86_64-1.txz: Upgraded. kde/kdewebkit-5.100.0-x86_64-1.txz: Upgraded. kde/kdnssd-5.100.0-x86_64-1.txz: Upgraded. kde/kdoctools-5.100.0-x86_64-1.txz: Upgraded. kde/kemoticons-5.100.0-x86_64-1.txz: Upgraded. kde/kfilemetadata-5.100.0-x86_64-1.txz: Upgraded. kde/kglobalaccel-5.100.0-x86_64-1.txz: Upgraded. kde/kguiaddons-5.100.0-x86_64-1.txz: Upgraded. kde/kholidays-5.100.0-x86_64-1.txz: Upgraded. kde/khtml-5.100.0-x86_64-1.txz: Upgraded. kde/ki18n-5.100.0-x86_64-1.txz: Upgraded. kde/kiconthemes-5.100.0-x86_64-1.txz: Upgraded. kde/kidletime-5.100.0-x86_64-1.txz: Upgraded. kde/kimageformats-5.100.0-x86_64-1.txz: Upgraded. kde/kinit-5.100.0-x86_64-1.txz: Upgraded. kde/kio-5.100.0-x86_64-1.txz: Upgraded. kde/kirigami2-5.100.0-x86_64-1.txz: Upgraded. kde/kitemmodels-5.100.0-x86_64-1.txz: Upgraded. kde/kitemviews-5.100.0-x86_64-1.txz: Upgraded. kde/kjobwidgets-5.100.0-x86_64-1.txz: Upgraded. kde/kjs-5.100.0-x86_64-1.txz: Upgraded. kde/kjsembed-5.100.0-x86_64-1.txz: Upgraded. kde/kmediaplayer-5.100.0-x86_64-1.txz: Upgraded. kde/knewstuff-5.100.0-x86_64-1.txz: Upgraded. kde/knotifications-5.100.0-x86_64-1.txz: Upgraded. kde/knotifyconfig-5.100.0-x86_64-1.txz: Upgraded. kde/kpackage-5.100.0-x86_64-1.txz: Upgraded. kde/kparts-5.100.0-x86_64-1.txz: Upgraded. kde/kpeople-5.100.0-x86_64-1.txz: Upgraded. kde/kplotting-5.100.0-x86_64-1.txz: Upgraded. kde/kpty-5.100.0-x86_64-1.txz: Upgraded. kde/kquickcharts-5.100.0-x86_64-1.txz: Upgraded. kde/kross-5.100.0-x86_64-1.txz: Upgraded. kde/krunner-5.100.0-x86_64-1.txz: Upgraded. kde/kservice-5.100.0-x86_64-1.txz: Upgraded. kde/ktexteditor-5.100.0-x86_64-1.txz: Upgraded. kde/ktextwidgets-5.100.0-x86_64-1.txz: Upgraded. kde/kunitconversion-5.100.0-x86_64-1.txz: Upgraded. kde/kwallet-5.100.0-x86_64-1.txz: Upgraded. kde/kwayland-5.100.0-x86_64-1.txz: Upgraded. kde/kwidgetsaddons-5.100.0-x86_64-1.txz: Upgraded. kde/kwindowsystem-5.100.0-x86_64-1.txz: Upgraded. kde/kxmlgui-5.100.0-x86_64-1.txz: Upgraded. kde/kxmlrpcclient-5.100.0-x86_64-1.txz: Upgraded. kde/modemmanager-qt-5.100.0-x86_64-1.txz: Upgraded. kde/networkmanager-qt-5.100.0-x86_64-1.txz: Upgraded. kde/oxygen-icons5-5.100.0-noarch-1.txz: Upgraded. kde/plasma-framework-5.100.0-x86_64-1.txz: Upgraded. kde/prison-5.100.0-x86_64-1.txz: Upgraded. kde/purpose-5.100.0-x86_64-1.txz: Upgraded. kde/qqc2-desktop-style-5.100.0-x86_64-1.txz: Upgraded. kde/solid-5.100.0-x86_64-1.txz: Upgraded. kde/sonnet-5.100.0-x86_64-1.txz: Upgraded. kde/syndication-5.100.0-x86_64-1.txz: Upgraded. kde/syntax-highlighting-5.100.0-x86_64-1.txz: Upgraded. kde/threadweaver-5.100.0-x86_64-1.txz: Upgraded. l/babl-0.1.98-x86_64-1.txz: Upgraded. l/gegl-0.4.40-x86_64-1.txz: Upgraded. l/grantlee-5.3.1-x86_64-1.txz: Upgraded. l/nodejs-19.1.0-x86_64-1.txz: Upgraded. n/libqmi-1.32.2-x86_64-1.txz: Upgraded. n/mutt-2.2.9-x86_64-1.txz: Upgraded. n/nghttp2-1.51.0-x86_64-1.txz: Upgraded. x/xcompmgr-1.1.9-x86_64-1.txz: Upgraded. x/xkbevd-1.1.5-x86_64-1.txz: Upgraded. x/xkill-1.0.6-x86_64-1.txz: Upgraded. x/xlogo-1.0.6-x86_64-1.txz: Upgraded. x/xlsatoms-1.1.4-x86_64-1.txz: Upgraded. x/xlsclients-1.1.5-x86_64-1.txz: Upgraded. testing/packages/rust-1.65.0-x86_64-1.txz: Upgraded. 20221115012838 Patrick J Volkerding2022-11-153-23/+30
* Thu Nov 10 19:47:59 UTC 2022...ap/texinfo-7.0-x86_64-1.txz: Upgraded. l/iso-codes-4.12.0-noarch-1.txz: Upgraded. l/lcms2-2.14-x86_64-1.txz: Upgraded. l/mozilla-nss-3.85-x86_64-1.txz: Upgraded. l/pipewire-0.3.60-x86_64-1.txz: Upgraded. n/php-7.4.33-x86_64-1.txz: Upgraded. This update fixes bugs and security issues: GD: OOB read due to insufficient input validation in imageloadfont(). Hash: buffer overflow in hash_update() on long parameter. For more information, see: https://www.cve.org/CVERecord?id=CVE-2022-31630 https://www.cve.org/CVERecord?id=CVE-2022-37454 (* Security fix *) x/ibus-table-1.16.14-x86_64-1.txz: Upgraded. 20221110194759 Patrick J Volkerding2022-11-112-3/+3
* Fri Nov 4 19:29:28 UTC 2022...a/exfatprogs-1.2.0-x86_64-1.txz: Upgraded. a/openssl-solibs-1.1.1s-x86_64-1.txz: Upgraded. n/openssl-1.1.1s-x86_64-1.txz: Upgraded. xap/fvwm-2.7.0-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-102.4.2-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://www.mozilla.org/en-US/thunderbird/102.4.2/releasenotes/ 20221104192928 Patrick J Volkerding2022-11-051-1/+1
* Fri Nov 4 02:24:51 UTC 2022...a/mcelog-190-x86_64-1.txz: Upgraded. kde/akonadi-22.08.3-x86_64-1.txz: Upgraded. kde/akonadi-calendar-22.08.3-x86_64-1.txz: Upgraded. kde/akonadi-calendar-tools-22.08.3-x86_64-1.txz: Upgraded. kde/akonadi-contacts-22.08.3-x86_64-1.txz: Upgraded. kde/akonadi-import-wizard-22.08.3-x86_64-1.txz: Upgraded. kde/akonadi-mime-22.08.3-x86_64-1.txz: Upgraded. kde/akonadi-notes-22.08.3-x86_64-1.txz: Upgraded. kde/akonadi-search-22.08.3-x86_64-1.txz: Upgraded. kde/akonadiconsole-22.08.3-x86_64-1.txz: Upgraded. kde/akregator-22.08.3-x86_64-1.txz: Upgraded. kde/analitza-22.08.3-x86_64-1.txz: Upgraded. kde/ark-22.08.3-x86_64-1.txz: Upgraded. kde/artikulate-22.08.3-x86_64-1.txz: Upgraded. kde/audiocd-kio-22.08.3-x86_64-1.txz: Upgraded. kde/baloo-widgets-22.08.3-x86_64-1.txz: Upgraded. kde/blinken-22.08.3-x86_64-1.txz: Upgraded. kde/bomber-22.08.3-x86_64-1.txz: Upgraded. kde/bovo-22.08.3-x86_64-1.txz: Upgraded. kde/calendarsupport-22.08.3-x86_64-1.txz: Upgraded. kde/cantor-22.08.3-x86_64-1.txz: Upgraded. kde/cervisia-22.08.3-x86_64-1.txz: Upgraded. kde/dolphin-22.08.3-x86_64-1.txz: Upgraded. kde/dolphin-plugins-22.08.3-x86_64-1.txz: Upgraded. kde/dragon-22.08.3-x86_64-1.txz: Upgraded. kde/elisa-22.08.3-x86_64-1.txz: Upgraded. kde/eventviews-22.08.3-x86_64-1.txz: Upgraded. kde/falkon-22.08.3-x86_64-1.txz: Upgraded. kde/ffmpegthumbs-22.08.3-x86_64-1.txz: Upgraded. kde/filelight-22.08.3-x86_64-1.txz: Upgraded. kde/granatier-22.08.3-x86_64-1.txz: Upgraded. kde/grantlee-editor-22.08.3-x86_64-1.txz: Upgraded. kde/grantleetheme-22.08.3-x86_64-1.txz: Upgraded. kde/gwenview-22.08.3-x86_64-1.txz: Upgraded. kde/incidenceeditor-22.08.3-x86_64-1.txz: Upgraded. kde/itinerary-22.08.3-x86_64-1.txz: Upgraded. kde/juk-22.08.3-x86_64-1.txz: Upgraded. kde/k3b-22.08.3-x86_64-1.txz: Upgraded. kde/kaddressbook-22.08.3-x86_64-1.txz: Upgraded. kde/kalarm-22.08.3-x86_64-1.txz: Upgraded. kde/kalendar-22.08.3-x86_64-1.txz: Upgraded. kde/kalgebra-22.08.3-x86_64-1.txz: Upgraded. kde/kalzium-22.08.3-x86_64-1.txz: Upgraded. kde/kamera-22.08.3-x86_64-1.txz: Upgraded. kde/kamoso-22.08.3-x86_64-1.txz: Upgraded. kde/kanagram-22.08.3-x86_64-1.txz: Upgraded. kde/kapman-22.08.3-x86_64-1.txz: Upgraded. kde/kapptemplate-22.08.3-x86_64-1.txz: Upgraded. kde/kate-22.08.3-x86_64-1.txz: Upgraded. kde/katomic-22.08.3-x86_64-1.txz: Upgraded. kde/kbackup-22.08.3-x86_64-1.txz: Upgraded. kde/kblackbox-22.08.3-x86_64-1.txz: Upgraded. kde/kblocks-22.08.3-x86_64-1.txz: Upgraded. kde/kbounce-22.08.3-x86_64-1.txz: Upgraded. kde/kbreakout-22.08.3-x86_64-1.txz: Upgraded. kde/kbruch-22.08.3-x86_64-1.txz: Upgraded. kde/kcachegrind-22.08.3-x86_64-1.txz: Upgraded. kde/kcalc-22.08.3-x86_64-1.txz: Upgraded. kde/kcalutils-22.08.3-x86_64-1.txz: Upgraded. kde/kcharselect-22.08.3-x86_64-1.txz: Upgraded. kde/kcolorchooser-22.08.3-x86_64-1.txz: Upgraded. kde/kcron-22.08.3-x86_64-1.txz: Upgraded. kde/kde-dev-scripts-22.08.3-x86_64-1.txz: Upgraded. kde/kde-dev-utils-22.08.3-x86_64-1.txz: Upgraded. kde/kdebugsettings-22.08.3-x86_64-1.txz: Upgraded. kde/kdeconnect-kde-22.08.3-x86_64-1.txz: Upgraded. kde/kdeedu-data-22.08.3-x86_64-1.txz: Upgraded. kde/kdegraphics-mobipocket-22.08.3-x86_64-1.txz: Upgraded. kde/kdegraphics-thumbnailers-22.08.3-x86_64-1.txz: Upgraded. kde/kdenetwork-filesharing-22.08.3-x86_64-1.txz: Upgraded. kde/kdenlive-22.08.3-x86_64-1.txz: Upgraded. kde/kdepim-addons-22.08.3-x86_64-1.txz: Upgraded. kde/kdepim-runtime-22.08.3-x86_64-1.txz: Upgraded. kde/kdesdk-kio-22.08.3-x86_64-1.txz: Upgraded. kde/kdesdk-thumbnailers-22.08.3-x86_64-1.txz: Upgraded. kde/kdev-php-22.08.3-x86_64-1.txz: Upgraded. kde/kdev-python-22.08.3-x86_64-1.txz: Upgraded. kde/kdevelop-22.08.3-x86_64-1.txz: Upgraded. kde/kdf-22.08.3-x86_64-1.txz: Upgraded. kde/kdialog-22.08.3-x86_64-1.txz: Upgraded. kde/kdiamond-22.08.3-x86_64-1.txz: Upgraded. kde/keditbookmarks-22.08.3-x86_64-1.txz: Upgraded. kde/kfind-22.08.3-x86_64-1.txz: Upgraded. kde/kfloppy-22.08.3-x86_64-1.txz: Upgraded. kde/kfourinline-22.08.3-x86_64-1.txz: Upgraded. kde/kgeography-22.08.3-x86_64-1.txz: Upgraded. kde/kget-22.08.3-x86_64-1.txz: Upgraded. kde/kgoldrunner-22.08.3-x86_64-1.txz: Upgraded. kde/kgpg-22.08.3-x86_64-1.txz: Upgraded. kde/khangman-22.08.3-x86_64-1.txz: Upgraded. kde/khelpcenter-22.08.3-x86_64-1.txz: Upgraded. kde/kidentitymanagement-22.08.3-x86_64-1.txz: Upgraded. kde/kig-22.08.3-x86_64-1.txz: Upgraded. kde/kigo-22.08.3-x86_64-1.txz: Upgraded. kde/killbots-22.08.3-x86_64-1.txz: Upgraded. kde/kimagemapeditor-22.08.3-x86_64-1.txz: Upgraded. kde/kimap-22.08.3-x86_64-1.txz: Upgraded. kde/kio-extras-22.08.3-x86_64-1.txz: Upgraded. kde/kio-gdrive-22.08.3-x86_64-1.txz: Upgraded. kde/kio-zeroconf-22.08.3-x86_64-1.txz: Upgraded. kde/kipi-plugins-22.08.3-x86_64-1.txz: Upgraded. kde/kirigami-gallery-22.08.3-x86_64-1.txz: Upgraded. kde/kiriki-22.08.3-x86_64-1.txz: Upgraded. kde/kiten-22.08.3-x86_64-1.txz: Upgraded. kde/kitinerary-22.08.3-x86_64-1.txz: Upgraded. kde/kjumpingcube-22.08.3-x86_64-1.txz: Upgraded. kde/kldap-22.08.3-x86_64-1.txz: Upgraded. kde/kleopatra-22.08.3-x86_64-1.txz: Upgraded. kde/klickety-22.08.3-x86_64-1.txz: Upgraded. kde/klines-22.08.3-x86_64-1.txz: Upgraded. kde/kmag-22.08.3-x86_64-1.txz: Upgraded. kde/kmahjongg-22.08.3-x86_64-1.txz: Upgraded. kde/kmail-22.08.3-x86_64-1.txz: Upgraded. kde/kmail-account-wizard-22.08.3-x86_64-1.txz: Upgraded. kde/kmailtransport-22.08.3-x86_64-1.txz: Upgraded. kde/kmbox-22.08.3-x86_64-1.txz: Upgraded. kde/kmime-22.08.3-x86_64-1.txz: Upgraded. kde/kmines-22.08.3-x86_64-1.txz: Upgraded. kde/kmix-22.08.3-x86_64-1.txz: Upgraded. kde/kmousetool-22.08.3-x86_64-1.txz: Upgraded. kde/kmouth-22.08.3-x86_64-1.txz: Upgraded. kde/kmplot-22.08.3-x86_64-1.txz: Upgraded. kde/knavalbattle-22.08.3-x86_64-1.txz: Upgraded. kde/knetwalk-22.08.3-x86_64-1.txz: Upgraded. kde/knights-22.08.3-x86_64-1.txz: Upgraded. kde/knotes-22.08.3-x86_64-1.txz: Upgraded. kde/kolf-22.08.3-x86_64-1.txz: Upgraded. kde/kollision-22.08.3-x86_64-1.txz: Upgraded. kde/kolourpaint-22.08.3-x86_64-1.txz: Upgraded. kde/kompare-22.08.3-x86_64-1.txz: Upgraded. kde/konqueror-22.08.3-x86_64-1.txz: Upgraded. kde/konquest-22.08.3-x86_64-1.txz: Upgraded. kde/konsole-22.08.3-x86_64-1.txz: Upgraded. kde/kontact-22.08.3-x86_64-1.txz: Upgraded. kde/kontactinterface-22.08.3-x86_64-1.txz: Upgraded. kde/kontrast-22.08.3-x86_64-1.txz: Upgraded. kde/konversation-22.08.3-x86_64-1.txz: Upgraded. kde/kopeninghours-22.08.3-x86_64-1.txz: Upgraded. kde/kopete-22.08.3-x86_64-1.txz: Upgraded. kde/korganizer-22.08.3-x86_64-1.txz: Upgraded. kde/kosmindoormap-22.08.3-x86_64-1.txz: Upgraded. kde/kpat-22.08.3-x86_64-1.txz: Upgraded. kde/kpimtextedit-22.08.3-x86_64-1.txz: Upgraded. kde/kpkpass-22.08.3-x86_64-1.txz: Upgraded. kde/kpmcore-22.08.3-x86_64-1.txz: Upgraded. kde/kpublictransport-22.08.3-x86_64-1.txz: Upgraded. kde/kqtquickcharts-22.08.3-x86_64-1.txz: Upgraded. kde/krdc-22.08.3-x86_64-1.txz: Upgraded. kde/kreversi-22.08.3-x86_64-1.txz: Upgraded. kde/krfb-22.08.3-x86_64-1.txz: Upgraded. kde/krita-5.1.2-x86_64-1.txz: Upgraded. kde/kross-interpreters-22.08.3-x86_64-1.txz: Upgraded. kde/kruler-22.08.3-x86_64-1.txz: Upgraded. kde/ksanecore-22.08.3-x86_64-1.txz: Upgraded. kde/kshisen-22.08.3-x86_64-1.txz: Upgraded. kde/ksirk-22.08.3-x86_64-1.txz: Upgraded. kde/ksmtp-22.08.3-x86_64-1.txz: Upgraded. kde/ksnakeduel-22.08.3-x86_64-1.txz: Upgraded. kde/kspaceduel-22.08.3-x86_64-1.txz: Upgraded. kde/ksquares-22.08.3-x86_64-1.txz: Upgraded. kde/ksudoku-22.08.3-x86_64-1.txz: Upgraded. kde/ksystemlog-22.08.3-x86_64-1.txz: Upgraded. kde/kteatime-22.08.3-x86_64-1.txz: Upgraded. kde/ktimer-22.08.3-x86_64-1.txz: Upgraded. kde/ktnef-22.08.3-x86_64-1.txz: Upgraded. kde/ktorrent-22.08.3-x86_64-1.txz: Upgraded. kde/ktouch-22.08.3-x86_64-1.txz: Upgraded. kde/kturtle-22.08.3-x86_64-1.txz: Upgraded. kde/kubrick-22.08.3-x86_64-1.txz: Upgraded. kde/kwalletmanager-22.08.3-x86_64-1.txz: Upgraded. kde/kwave-22.08.3-x86_64-1.txz: Upgraded. kde/kwordquiz-22.08.3-x86_64-1.txz: Upgraded. kde/libgravatar-22.08.3-x86_64-1.txz: Upgraded. kde/libkcddb-22.08.3-x86_64-1.txz: Upgraded. kde/libkcompactdisc-22.08.3-x86_64-1.txz: Upgraded. kde/libkdcraw-22.08.3-x86_64-1.txz: Upgraded. kde/libkdegames-22.08.3-x86_64-1.txz: Upgraded. kde/libkdepim-22.08.3-x86_64-1.txz: Upgraded. kde/libkeduvocdocument-22.08.3-x86_64-1.txz: Upgraded. kde/libkexiv2-22.08.3-x86_64-1.txz: Upgraded. kde/libkgapi-22.08.3-x86_64-1.txz: Upgraded. kde/libkipi-22.08.3-x86_64-1.txz: Upgraded. kde/libkleo-22.08.3-x86_64-1.txz: Upgraded. kde/libkmahjongg-22.08.3-x86_64-1.txz: Upgraded. kde/libkomparediff2-22.08.3-x86_64-1.txz: Upgraded. kde/libksane-22.08.3-x86_64-1.txz: Upgraded. kde/libksieve-22.08.3-x86_64-1.txz: Upgraded. kde/libktorrent-22.08.3-x86_64-1.txz: Upgraded. kde/lokalize-22.08.3-x86_64-1.txz: Upgraded. kde/lskat-22.08.3-x86_64-1.txz: Upgraded. kde/mailcommon-22.08.3-x86_64-1.txz: Upgraded. kde/mailimporter-22.08.3-x86_64-1.txz: Upgraded. kde/marble-22.08.3-x86_64-1.txz: Upgraded. kde/markdownpart-22.08.3-x86_64-1.txz: Upgraded. kde/mbox-importer-22.08.3-x86_64-1.txz: Upgraded. kde/messagelib-22.08.3-x86_64-1.txz: Upgraded. kde/minuet-22.08.3-x86_64-1.txz: Upgraded. kde/okular-22.08.3-x86_64-1.txz: Upgraded. kde/palapeli-22.08.3-x86_64-1.txz: Upgraded. kde/parley-22.08.3-x86_64-1.txz: Upgraded. kde/partitionmanager-22.08.3-x86_64-1.txz: Upgraded. kde/picmi-22.08.3-x86_64-1.txz: Upgraded. kde/pim-data-exporter-22.08.3-x86_64-1.txz: Upgraded. kde/pim-sieve-editor-22.08.3-x86_64-1.txz: Upgraded. kde/pimcommon-22.08.3-x86_64-1.txz: Upgraded. kde/poxml-22.08.3-x86_64-1.txz: Upgraded. kde/print-manager-22.08.3-x86_64-1.txz: Upgraded. kde/rocs-22.08.3-x86_64-1.txz: Upgraded. kde/skanlite-22.08.3-x86_64-1.txz: Upgraded. kde/skanpage-22.08.3-x86_64-1.txz: Upgraded. kde/spectacle-22.08.3-x86_64-1.txz: Upgraded. kde/step-22.08.3-x86_64-1.txz: Upgraded. kde/svgpart-22.08.3-x86_64-1.txz: Upgraded. kde/sweeper-22.08.3-x86_64-1.txz: Upgraded. kde/umbrello-22.08.3-x86_64-1.txz: Upgraded. kde/yakuake-22.08.3-x86_64-1.txz: Upgraded. kde/zanshin-22.08.3-x86_64-1.txz: Upgraded. l/elfutils-0.188-x86_64-1.txz: Upgraded. l/mlt-7.10.0-x86_64-1.txz: Upgraded. l/mozilla-nss-3.84-x86_64-2.txz: Rebuilt. Fixed a segmentation fault when the server requests a client auth cert but the client has no certs in its database. Thanks to marav for the heads-up. For more information, see: https://www.cve.org/CVERecord?id=CVE-2022-3479 (* Security fix *) l/poppler-22.11.0-x86_64-1.txz: Upgraded. n/dehydrated-0.7.1-noarch-1.txz: Upgraded. n/ulogd-2.0.8-x86_64-1.txz: Upgraded. x/libdrm-2.4.114-x86_64-1.txz: Upgraded. xap/mozilla-firefox-106.0.4-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://www.mozilla.org/en-US/firefox/106.0.4/releasenotes/ 20221104022451 Patrick J Volkerding2022-11-044-4/+8
* Thu Oct 27 02:30:15 UTC 2022...a/aaa_libraries-15.1-x86_64-12.txz: Rebuilt. Upgraded: libexpat.so.1.8.10, libffi.so.8.1.2. Added (temporarily): libicudata.so.71.1, libicui18n.so.71.1, libicuio.so.71.1, libicutest.so.71.1, libicutu.so.71.1, libicuuc.so.71.1. a/xfsprogs-5.13.0-x86_64-4.txz: Rebuilt. Recompiled against icu4c-72.1. ap/sqlite-3.39.4-x86_64-2.txz: Rebuilt. Recompiled against icu4c-72.1. kde/bluedevil-5.26.2-x86_64-1.txz: Upgraded. kde/breeze-5.26.2-x86_64-1.txz: Upgraded. kde/breeze-grub-5.26.2-x86_64-1.txz: Upgraded. kde/breeze-gtk-5.26.2-x86_64-1.txz: Upgraded. kde/drkonqi-5.26.2-x86_64-1.txz: Upgraded. kde/kactivitymanagerd-5.26.2-x86_64-1.txz: Upgraded. kde/kde-cli-tools-5.26.2-x86_64-1.txz: Upgraded. kde/kde-gtk-config-5.26.2-x86_64-1.txz: Upgraded. kde/kdecoration-5.26.2-x86_64-1.txz: Upgraded. kde/kdeplasma-addons-5.26.2-x86_64-1.txz: Upgraded. Compiled against icu4c-72.1. kde/kgamma5-5.26.2-x86_64-1.txz: Upgraded. kde/khotkeys-5.26.2-x86_64-1.txz: Upgraded. kde/kinfocenter-5.26.2-x86_64-1.txz: Upgraded. kde/kmenuedit-5.26.2-x86_64-1.txz: Upgraded. kde/kpipewire-5.26.2-x86_64-1.txz: Upgraded. kde/kscreen-5.26.2-x86_64-1.txz: Upgraded. kde/kscreenlocker-5.26.2-x86_64-1.txz: Upgraded. kde/ksshaskpass-5.26.2-x86_64-1.txz: Upgraded. kde/ksystemstats-5.26.2-x86_64-1.txz: Upgraded. kde/kwallet-pam-5.26.2-x86_64-1.txz: Upgraded. kde/kwayland-integration-5.26.2-x86_64-1.txz: Upgraded. kde/kwin-5.26.2.1-x86_64-1.txz: Upgraded. kde/kwrited-5.26.2-x86_64-1.txz: Upgraded. kde/layer-shell-qt-5.26.2-x86_64-1.txz: Upgraded. kde/libkscreen-5.26.2-x86_64-1.txz: Upgraded. kde/libksysguard-5.26.2-x86_64-1.txz: Upgraded. kde/milou-5.26.2-x86_64-1.txz: Upgraded. kde/oxygen-5.26.2-x86_64-1.txz: Upgraded. kde/oxygen-sounds-5.26.2-x86_64-1.txz: Upgraded. kde/plasma-browser-integration-5.26.2-x86_64-1.txz: Upgraded. kde/plasma-desktop-5.26.2-x86_64-1.txz: Upgraded. kde/plasma-disks-5.26.2-x86_64-1.txz: Upgraded. kde/plasma-firewall-5.26.2-x86_64-1.txz: Upgraded. kde/plasma-integration-5.26.2-x86_64-1.txz: Upgraded. kde/plasma-nm-5.26.2-x86_64-1.txz: Upgraded. kde/plasma-pa-5.26.2-x86_64-1.txz: Upgraded. kde/plasma-sdk-5.26.2-x86_64-1.txz: Upgraded. kde/plasma-systemmonitor-5.26.2-x86_64-1.txz: Upgraded. kde/plasma-vault-5.26.2-x86_64-1.txz: Upgraded. kde/plasma-workspace-5.26.2-x86_64-1.txz: Upgraded. Compiled against icu4c-72.1. kde/plasma-workspace-wallpapers-5.26.2-x86_64-1.txz: Upgraded. kde/polkit-kde-agent-1-5.26.2-x86_64-1.txz: Upgraded. kde/powerdevil-5.26.2-x86_64-1.txz: Upgraded. kde/qqc2-breeze-style-5.26.2-x86_64-1.txz: Upgraded. kde/sddm-kcm-5.26.2-x86_64-1.txz: Upgraded. kde/systemsettings-5.26.2-x86_64-1.txz: Upgraded. kde/xdg-desktop-portal-kde-5.26.2-x86_64-1.txz: Upgraded. l/boost-1.80.0-x86_64-2.txz: Rebuilt. Recompiled against icu4c-72.1. l/harfbuzz-5.3.1-x86_64-2.txz: Rebuilt. Recompiled against icu4c-72.1. l/icu4c-72.1-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/libical-3.0.16-x86_64-2.txz: Rebuilt. Recompiled against icu4c-72.1. l/libqalculate-4.4.0-x86_64-2.txz: Rebuilt. Recompiled against icu4c-72.1. l/libvisio-0.1.7-x86_64-10.txz: Rebuilt. Recompiled against icu4c-72.1. l/nodejs-19.0.0-x86_64-2.txz: Rebuilt. Recompiled against icu4c-72.1. l/qt5-5.15.6_20221026_0402bce0-x86_64-1.txz: Upgraded. Compiled against icu4c-72.1. l/qt5-webkit-5.212.0_alpha4-x86_64-10.txz: Rebuilt. Recompiled against icu4c-72.1. l/vte-0.68.0-x86_64-2.txz: Rebuilt. Recompiled against icu4c-72.1. n/curl-7.86.0-x86_64-1.txz: Upgraded. This update fixes security issues: HSTS bypass via IDN. HTTP proxy double-free. .netrc parser out-of-bounds access. POST following PUT confusion. For more information, see: https://curl.se/docs/CVE-2022-42916.html https://curl.se/docs/CVE-2022-42915.html https://curl.se/docs/CVE-2022-35260.html https://curl.se/docs/CVE-2022-32221.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42916 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42915 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35260 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32221 (* Security fix *) n/dovecot-2.3.19.1-x86_64-2.txz: Rebuilt. Recompiled against icu4c-72.1. n/php-7.4.32-x86_64-2.txz: Rebuilt. Recompiled against icu4c-72.1. n/postfix-3.7.3-x86_64-2.txz: Rebuilt. Recompiled against icu4c-72.1. n/samba-4.17.2-x86_64-2.txz: Rebuilt. Recompiled against icu4c-72.1. n/tin-2.6.1-x86_64-4.txz: Rebuilt. Recompiled against icu4c-72.1. t/texlive-2022.220801-x86_64-3.txz: Rebuilt. Recompiled against icu4c-72.1. x/xorg-server-xwayland-22.1.4-x86_64-2.txz: Rebuilt. [PATCH] xwayland/input: Do not ignore leave events. Thanks to marav. xap/mozilla-firefox-106.0.2-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://www.mozilla.org/en-US/firefox/106.0.2/releasenotes/ extra/brltty/brltty-6.5-x86_64-2.txz: Rebuilt. Recompiled against icu4c-72.1. extra/php80/php80-8.0.24-x86_64-2.txz: Rebuilt. Recompiled against icu4c-72.1. extra/php81/php81-8.1.11-x86_64-2.txz: Rebuilt. Recompiled against icu4c-72.1. extra/sendmail/sendmail-8.17.1-x86_64-6.txz: Rebuilt. Recompiled against icu4c-72.1. extra/sendmail/sendmail-cf-8.17.1-noarch-6.txz: Rebuilt. 20221027023015 Patrick J Volkerding2022-10-275-5/+5
* Tue Oct 25 18:38:58 UTC 2022...ap/alsa-utils-1.2.8-x86_64-1.txz: Upgraded. l/alsa-lib-1.2.8-x86_64-1.txz: Upgraded. l/expat-2.5.0-x86_64-1.txz: Upgraded. This update fixes a security issue: Fix heap use-after-free after overeager destruction of a shared DTD in function XML_ExternalEntityParserCreate in out-of-memory situations. Expected impact is denial of service or potentially arbitrary code execution. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-43680 (* Security fix *) n/samba-4.17.2-x86_64-1.txz: Upgraded. This update fixes the following security issues: There is a limited write heap buffer overflow in the GSSAPI unwrap_des() and unwrap_des3() routines of Heimdal (included in Samba). A malicious client can use a symlink to escape the exported directory. For more information, see: https://www.samba.org/samba/security/CVE-2022-3437.html https://www.samba.org/samba/security/CVE-2022-3592.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3437 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3592 (* Security fix *) 20221025183858 Patrick J Volkerding2022-10-261-2/+2
* Wed Oct 19 20:06:33 UTC 2022...a/aaa_libraries-15.1-x86_64-11.txz: Rebuilt. Upgraded: libcap.so.2.66, liblzma.so.5.2.7, libpopt.so.0.0.2, libexpat.so.1.8.9, libglib-2.0.so.0.7200.4, libgmodule-2.0.so.0.7200.4, libgobject-2.0.so.0.7200.4, libgthread-2.0.so.0.7200.4, libhistory.so.8.2, libreadline.so.8.2. Added: libunistring.so.2.1.0, libunistring.so.5.0.0. Removed: libffi.so.7.1.0. a/gettext-0.21.1-x86_64-2.txz: Rebuilt. ap/lsof-4.96.4-x86_64-1.txz: Upgraded. ap/man-pages-6.01-noarch-1.txz: Upgraded. d/clisp-2.50_20220927_acb1266ee-x86_64-1.txz: Upgraded. Compiled against libunistring-1.1. d/gettext-tools-0.21.1-x86_64-2.txz: Rebuilt. Recompiled against libunistring-1.1. d/guile-3.0.8-x86_64-3.txz: Rebuilt. Recompiled against libunistring-1.1. kde/kguiaddons-5.99.0-x86_64-2.txz: Rebuilt. [PATCH] systemclipboard: Don't signal data source cancellation. Thanks to marav. l/libidn2-2.3.3-x86_64-2.txz: Rebuilt. l/libpsl-0.21.1-x86_64-5.txz: Rebuilt. Recompiled against libunistring-1.1. l/libunistring-1.1-x86_64-1.txz: Upgraded. Shared library .so-version bump. n/bind-9.18.8-x86_64-1.txz: Upgraded. n/gnutls-3.7.8-x86_64-2.txz: Rebuilt. Recompiled against libunistring-1.1. n/samba-4.17.1-x86_64-1.txz: Upgraded. This update fixes the following security issue: Bad password count not incremented atomically. For more information, see: https://bugzilla.samba.org/show_bug.cgi?id=14611 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20251 (* Security fix *) n/wget-1.21.3-x86_64-2.txz: Rebuilt. Recompiled against libunistring-1.1. x/imake-1.0.9-x86_64-1.txz: Upgraded. x/xcb-util-errors-1.0.1-x86_64-1.txz: Upgraded. x/xcb-util-image-0.4.1-x86_64-1.txz: Upgraded. x/xcb-util-keysyms-0.4.1-x86_64-1.txz: Upgraded. x/xcb-util-renderutil-0.3.10-x86_64-1.txz: Upgraded. x/xcb-util-wm-0.4.2-x86_64-1.txz: Upgraded. Patrick J Volkerding2022-10-203-4/+4
* Mon Oct 10 18:45:33 UTC 2022...ap/diffstat-1.65-x86_64-1.txz: Upgraded. ap/moc-2.6_alpha3-x86_64-1.txz: Upgraded. Compiled against ffmpeg-5.1.2. kde/attica-5.99.0-x86_64-1.txz: Upgraded. kde/baloo-5.99.0-x86_64-1.txz: Upgraded. kde/bluez-qt-5.99.0-x86_64-1.txz: Upgraded. kde/breeze-icons-5.99.0-noarch-1.txz: Upgraded. kde/digikam-7.8.0-x86_64-3.txz: Rebuilt. Recompiled against ffmpeg-5.1.2. kde/extra-cmake-modules-5.99.0-x86_64-1.txz: Upgraded. kde/ffmpegthumbs-22.08.1-x86_64-2.txz: Rebuilt. Recompiled against ffmpeg-5.1.2. kde/frameworkintegration-5.99.0-x86_64-1.txz: Upgraded. kde/kactivities-5.99.0-x86_64-1.txz: Upgraded. kde/kactivities-stats-5.99.0-x86_64-1.txz: Upgraded. kde/kapidox-5.99.0-x86_64-1.txz: Upgraded. kde/karchive-5.99.0-x86_64-1.txz: Upgraded. kde/kauth-5.99.0-x86_64-1.txz: Upgraded. kde/kbookmarks-5.99.0-x86_64-1.txz: Upgraded. kde/kcalendarcore-5.99.0-x86_64-1.txz: Upgraded. kde/kcmutils-5.99.0-x86_64-1.txz: Upgraded. kde/kcodecs-5.99.0-x86_64-1.txz: Upgraded. kde/kcompletion-5.99.0-x86_64-1.txz: Upgraded. kde/kconfig-5.99.0-x86_64-1.txz: Upgraded. kde/kconfigwidgets-5.99.0-x86_64-1.txz: Upgraded. kde/kcontacts-5.99.0-x86_64-1.txz: Upgraded. kde/kcoreaddons-5.99.0-x86_64-1.txz: Upgraded. kde/kcrash-5.99.0-x86_64-1.txz: Upgraded. kde/kdav-5.99.0-x86_64-1.txz: Upgraded. kde/kdbusaddons-5.99.0-x86_64-1.txz: Upgraded. kde/kdeclarative-5.99.0-x86_64-1.txz: Upgraded. kde/kded-5.99.0-x86_64-1.txz: Upgraded. kde/kdelibs4support-5.99.0-x86_64-1.txz: Upgraded. kde/kdesignerplugin-5.99.0-x86_64-1.txz: Upgraded. kde/kdesu-5.99.0-x86_64-1.txz: Upgraded. kde/kdewebkit-5.99.0-x86_64-1.txz: Upgraded. kde/kdnssd-5.99.0-x86_64-1.txz: Upgraded. kde/kdoctools-5.99.0-x86_64-1.txz: Upgraded. kde/kemoticons-5.99.0-x86_64-1.txz: Upgraded. kde/kfilemetadata-5.99.0-x86_64-1.txz: Upgraded. Compiled against ffmpeg-5.1.2. kde/kglobalaccel-5.99.0-x86_64-1.txz: Upgraded. kde/kguiaddons-5.99.0-x86_64-1.txz: Upgraded. kde/kholidays-5.99.0-x86_64-1.txz: Upgraded. kde/khtml-5.99.0-x86_64-1.txz: Upgraded. kde/ki18n-5.99.0-x86_64-1.txz: Upgraded. kde/kiconthemes-5.99.0-x86_64-1.txz: Upgraded. kde/kidletime-5.99.0-x86_64-1.txz: Upgraded. kde/kimageformats-5.99.0-x86_64-1.txz: Upgraded. kde/kinit-5.99.0-x86_64-1.txz: Upgraded. kde/kio-5.99.0-x86_64-1.txz: Upgraded. kde/kirigami2-5.99.0-x86_64-1.txz: Upgraded. kde/kitemmodels-5.99.0-x86_64-1.txz: Upgraded. kde/kitemviews-5.99.0-x86_64-1.txz: Upgraded. kde/kjobwidgets-5.99.0-x86_64-1.txz: Upgraded. kde/kjs-5.99.0-x86_64-1.txz: Upgraded. kde/kjsembed-5.99.0-x86_64-1.txz: Upgraded. kde/kmediaplayer-5.99.0-x86_64-1.txz: Upgraded. kde/knewstuff-5.99.0-x86_64-1.txz: Upgraded. kde/knotifications-5.99.0-x86_64-1.txz: Upgraded. kde/knotifyconfig-5.99.0-x86_64-1.txz: Upgraded. kde/kpackage-5.99.0-x86_64-1.txz: Upgraded. kde/kparts-5.99.0-x86_64-1.txz: Upgraded. kde/kpeople-5.99.0-x86_64-1.txz: Upgraded. kde/kplotting-5.99.0-x86_64-1.txz: Upgraded. kde/kpty-5.99.0-x86_64-1.txz: Upgraded. kde/kquickcharts-5.99.0-x86_64-1.txz: Upgraded. kde/kross-5.99.0-x86_64-1.txz: Upgraded. kde/krunner-5.99.0-x86_64-1.txz: Upgraded. kde/kservice-5.99.0-x86_64-1.txz: Upgraded. kde/ktexteditor-5.99.0-x86_64-1.txz: Upgraded. kde/ktextwidgets-5.99.0-x86_64-1.txz: Upgraded. kde/kunitconversion-5.99.0-x86_64-1.txz: Upgraded. kde/kwallet-5.99.0-x86_64-1.txz: Upgraded. kde/kwayland-5.99.0-x86_64-1.txz: Upgraded. kde/kwidgetsaddons-5.99.0-x86_64-1.txz: Upgraded. kde/kwindowsystem-5.99.0-x86_64-1.txz: Upgraded. kde/kxmlgui-5.99.0-x86_64-1.txz: Upgraded. kde/kxmlrpcclient-5.99.0-x86_64-1.txz: Upgraded. kde/modemmanager-qt-5.99.0-x86_64-1.txz: Upgraded. kde/networkmanager-qt-5.99.0-x86_64-1.txz: Upgraded. kde/oxygen-icons5-5.99.0-noarch-1.txz: Upgraded. kde/plasma-framework-5.99.0-x86_64-1.txz: Upgraded. kde/prison-5.99.0-x86_64-1.txz: Upgraded. kde/purpose-5.99.0-x86_64-1.txz: Upgraded. kde/qqc2-desktop-style-5.99.0-x86_64-1.txz: Upgraded. kde/solid-5.99.0-x86_64-1.txz: Upgraded. kde/sonnet-5.99.0-x86_64-1.txz: Upgraded. kde/syndication-5.99.0-x86_64-1.txz: Upgraded. kde/syntax-highlighting-5.99.0-x86_64-1.txz: Upgraded. kde/threadweaver-5.99.0-x86_64-1.txz: Upgraded. l/QtAV-20220226_fdc613dc-x86_64-1.txz: Upgraded. Compiled against ffmpeg-5.1.2. l/alsa-plugins-1.2.7.1-x86_64-2.txz: Rebuilt. Recompiled against ffmpeg-5.1.2. l/ffmpeg-5.1.2-x86_64-1.txz: Upgraded. Shared library .so-version bump. Enabled glslang and vulkan. Thanks to Heinz Wiesinger. l/gegl-0.4.38-x86_64-2.txz: Rebuilt. Recompiled against ffmpeg-5.1.2. l/gst-plugins-libav-1.20.3-x86_64-2.txz: Rebuilt. Recompiled against ffmpeg-5.1.2. l/harfbuzz-5.3.0-x86_64-1.txz: Upgraded. l/imagemagick-7.1.0_50-x86_64-1.txz: Upgraded. l/libvncserver-0.9.13-x86_64-4.txz: Rebuilt. Disabled ffmpeg support (not compatible with ffmpeg5). l/mlt-7.8.0-x86_64-2.txz: Rebuilt. Recompiled against ffmpeg-5.1.2. l/opencv-4.6.0-x86_64-2.txz: Rebuilt. Recompiled against ffmpeg-5.1.2. l/pcre2-10.40-x86_64-2.txz: Rebuilt. Moved shared libraries into /lib${LIBDIRSUFFIX}. Thanks to TommyC7. l/pipewire-0.3.59-x86_64-2.txz: Rebuilt. Recompiled against ffmpeg-5.1.2. l/qt5-5.15.6_20220928_06b700dd-x86_64-1.txz: Upgraded. Compiled against ffmpeg-5.1.2. n/libgpg-error-1.46-x86_64-2.txz: Rebuilt. Rebuilt with --enable-install-gpg-error-config to fix regression building gpgme. Thanks to nobodino and ponce. x/libva-utils-2.16.0-x86_64-1.txz: Upgraded. x/wayland-protocols-1.27-noarch-1.txz: Upgraded. xap/MPlayer-20221009-x86_64-1.txz: Upgraded. Compiled against ffmpeg-5.1.2. xap/audacious-plugins-4.2-x86_64-2.txz: Rebuilt. Recompiled against ffmpeg-5.1.2. xap/ffmpegthumbnailer-2.2.2-x86_64-4.txz: Rebuilt. Recompiled against ffmpeg-5.1.2. xap/freerdp-2.8.0-x86_64-2.txz: Rebuilt. Recompiled against ffmpeg-5.1.2. xap/ssr-0.4.4-x86_64-1.txz: Upgraded. Compiled against ffmpeg-5.1.2. xap/xine-lib-1.2.12-x86_64-2.txz: Rebuilt. Recompiled against ffmpeg-5.1.2. 20221010184533 Patrick J Volkerding2022-10-111-2/+3
* Sat Oct 8 19:23:31 UTC 2022...ap/inxi-3.3.22_1-noarch-1.txz: Upgraded. n/conntrack-tools-1.4.7-x86_64-1.txz: Upgraded. n/libgpg-error-1.46-x86_64-1.txz: Upgraded. n/libksba-1.6.2-x86_64-1.txz: Upgraded. Detect a possible overflow directly in the TLV parser. This patch detects possible integer overflows immmediately when creating the TI object. Reported-by: ZDI-CAN-18927, ZDI-CAN-18928, ZDI-CAN-18929 (* Security fix *) n/postfix-3.7.3-x86_64-1.txz: Upgraded. x/freeglut-3.4.0-x86_64-1.txz: Upgraded. x/fstobdf-1.0.7-x86_64-1.txz: Upgraded. xap/mozilla-firefox-105.0.3-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://www.mozilla.org/en-US/firefox/105.0.3/releasenotes/ 20221008192331 Patrick J Volkerding2022-10-094-3/+30
* Fri Sep 30 17:52:21 UTC 2022...a/dbus-1.14.2-x86_64-1.txz: Upgraded. ap/powertop-2.15-x86_64-1.txz: Upgraded. ap/sqlite-3.39.4-x86_64-1.txz: Upgraded. ap/vim-9.0.0623-x86_64-1.txz: Upgraded. Fixed use-after-free and stack-based buffer overflow. Thanks to marav for the heads-up. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-3352 https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-3324 (* Security fix *) kde/digikam-7.8.0-x86_64-2.txz: Rebuilt. Recompiled against lensfun-0.3.3. kde/kstars-3.6.1-x86_64-1.txz: Upgraded. kde/plasma-wayland-protocols-1.9.0-x86_64-1.txz: Upgraded. l/lensfun-0.3.3-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/netpbm-11.00.00-x86_64-1.txz: Upgraded. l/nodejs-18.10.0-x86_64-1.txz: Upgraded. l/pipewire-0.3.59-x86_64-1.txz: Upgraded. n/php-7.4.32-x86_64-1.txz: Upgraded. This update fixes bugs and security issues: phar wrapper: DOS when using quine gzip file. Don't mangle HTTP variable names that clash with ones that have a specific semantic meaning. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31628 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31629 (* Security fix *) xap/mozilla-thunderbird-102.3.1-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/thunderbird/102.3.1/releasenotes/ https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39249 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39250 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39251 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39236 (* Security fix *) xap/seamonkey-2.53.14-x86_64-1.txz: Upgraded. This update contains security fixes and improvements. For more information, see: https://www.seamonkey-project.org/releases/seamonkey2.53.14 (* Security fix *) xap/vim-gvim-9.0.0623-x86_64-1.txz: Upgraded. xap/xsnow-3.5.3-x86_64-1.txz: Upgraded. extra/php80/php80-8.0.24-x86_64-1.txz: Upgraded. This update fixes bugs and security issues: phar wrapper: DOS when using quine gzip file. Don't mangle HTTP variable names that clash with ones that have a specific semantic meaning. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31628 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31629 (* Security fix *) extra/php81/php81-8.1.11-x86_64-1.txz: Upgraded. This update fixes bugs and security issues: phar wrapper: DOS when using quine gzip file. Don't mangle HTTP variable names that clash with ones that have a specific semantic meaning. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31628 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31629 (* Security fix *) 20220930175221 Patrick J Volkerding2022-10-012-3/+3
* Tue Sep 27 21:19:17 UTC 2022...a/kernel-firmware-20220927_0958301-noarch-1.txz: Upgraded. n/pinentry-1.2.1-x86_64-2.txz: Rebuilt. Build pinentry-tty. Thanks to pek. Build pinentry-emacs. x/fcitx5-gtk-5.0.19-x86_64-1.txz: Upgraded. x/libXtst-1.2.4-x86_64-1.txz: Upgraded. x/libXxf86vm-1.1.5-x86_64-1.txz: Upgraded. x/mesa-22.2.0-x86_64-1.txz: Upgraded. 20220927211917 Patrick J Volkerding2022-09-281-5/+5
* Mon Sep 26 19:43:54 UTC 2022...a/bash-5.2.000-x86_64-1.txz: Upgraded. ap/vim-9.0.0594-x86_64-1.txz: Upgraded. Fixed stack-based buffer overflow. Thanks to marav for the heads-up. In addition, Mig21 pointed out an issue where the defaults.vim file might need to be edited for some purposes as its contents will override the settings in the system-wide vimrc. Usually this file is replaced whenever vim is upgraded, which in those situations would be inconvenient for the admin. So, I've added support for a file named defaults.vim.custom which (if it exists) will be used instead of the defaults.vim file shipped in the package and will persist through upgrades. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3296 (* Security fix *) l/fluidsynth-2.3.0-x86_64-1.txz: Upgraded. l/imagemagick-7.1.0_49-x86_64-1.txz: Upgraded. l/libcap-2.66-x86_64-1.txz: Upgraded. l/netpbm-10.99.03-x86_64-1.txz: Upgraded. l/readline-8.2.000-x86_64-1.txz: Upgraded. l/xapian-core-1.4.21-x86_64-1.txz: Upgraded. n/dnsmasq-2.87-x86_64-1.txz: Upgraded. Fix write-after-free error in DHCPv6 server code. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0934 (* Security fix *) x/xterm-373-x86_64-1.txz: Upgraded. xap/vim-gvim-9.0.0594-x86_64-1.txz: Upgraded. 20220926194354 Patrick J Volkerding2022-09-272-64/+1
* Thu Sep 22 19:50:20 UTC 2022...a/quota-4.09-x86_64-1.txz: Upgraded. d/parallel-20220922-noarch-1.txz: Upgraded. l/jemalloc-5.3.0-x86_64-2.txz: Rebuilt. Fixed version numbers in jemalloc.h. Thanks to Markus Wiesner. n/ca-certificates-20220922-noarch-1.txz: Upgraded. This update provides the latest CA certificates to check for the authenticity of SSL connections. testing/packages/rust-1.64.0-x86_64-1.txz: Added. We've found ourselves in a situation where Thunderbird requires the Rust compiler in /extra, and Firefox requires the one in the main tree (and can't use this one until Firefox 107 sometime in November), so we'll just park this here until we can use it. 20220922195020 Patrick J Volkerding2022-09-231-164/+581