| Commit message (Expand) | Author | Age | Files | Lines |
* | Sun Jan 29 19:01:47 UTC 2023...l/imagemagick-7.1.0_59-x86_64-1.txz: Upgraded.
n/c-ares-1.19.0-x86_64-1.txz: Upgraded.
n/fetchmail-6.4.36-x86_64-1.txz: Upgraded.
x/beforelight-1.0.6-x86_64-1.txz: Upgraded.
20230129190147 | Patrick J Volkerding | 2023-01-29 | 1 | -1/+1 |
* | Fri Jan 27 20:08:12 UTC 2023...n/samba-4.17.5-x86_64-1.txz: Upgraded.
BUG 15240: CVE-2022-38023 [SECURITY] Samba should refuse RC4 (aka md5)
based SChannel on NETLOGON (additional changes).
For more information, see:
https://www.samba.org/samba/security/CVE-2022-38023.html
https://www.cve.org/CVERecord?id=CVE-2022-38023
(* Security fix *)
x/mesa-22.3.4-x86_64-1.txz: Upgraded.
x/xf86-video-vmware-13.4.0-x86_64-1.txz: Upgraded.
20230127200812 | Patrick J Volkerding | 2023-01-27 | 1 | -13/+0 |
* | Thu Jan 19 21:07:32 UTC 2023...a/pkgtools-15.1-noarch-4.txz: Rebuilt.
makepkg: also let xz decide how many threads to use on ARM platforms aarch64
and riscv64. Thanks to Stuart Winter.
installpkg: fix reversed test for if a --threads option was given. It appears
that it's been wrong for years but since xz didn't support threaded
decompression yet it wasn't noticed.
a/xz-5.4.1-x86_64-2.txz: Rebuilt.
Reduce default verbosity from V_WARNING to V_ERROR to avoid sending non-fatal
memory usage information to stderr.
kde/plasma-wayland-protocols-1.10.0-x86_64-1.txz: Upgraded.
l/exiv2-0.27.6-x86_64-1.txz: Upgraded.
l/tdb-1.4.8-x86_64-1.txz: Upgraded.
x/igt-gpu-tools-1.27.1-x86_64-1.txz: Upgraded.
x/libX11-1.8.3-x86_64-2.txz: Rebuilt.
[PATCH] Fix a9e845 and 797755 Allow X*IfEvent() to reenter libX11
Thanks to marav.
20230119210732 | Patrick J Volkerding | 2023-01-19 | 3 | -1/+207 |
* | Wed Jan 18 06:11:54 UTC 2023...ap/diffutils-3.9-x86_64-1.txz: Upgraded.
ap/lsof-4.97.0-x86_64-1.txz: Upgraded.
ap/mpg123-1.31.2-x86_64-1.txz: Upgraded.
d/binutils-2.40-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
d/git-2.39.1-x86_64-1.txz: Upgraded.
d/oprofile-1.4.0-x86_64-11.txz: Rebuilt.
Recompiled against binutils-2.40.
n/httpd-2.4.55-x86_64-1.txz: Upgraded.
This update fixes bugs and the following security issues:
mod_proxy allows a backend to trigger HTTP response splitting.
mod_proxy_ajp possible request smuggling.
mod_dav out of bounds read, or write of zero byte.
For more information, see:
https://downloads.apache.org/httpd/CHANGES_2.4.55
https://www.cve.org/CVERecord?id=CVE-2022-37436
https://www.cve.org/CVERecord?id=CVE-2022-36760
https://www.cve.org/CVERecord?id=CVE-2006-20001
(* Security fix *)
x/ibus-libpinyin-1.15.0-x86_64-1.txz: Upgraded.
Compiled against libpinyin-2.8.1.
x/igt-gpu-tools-1.27-x86_64-1.txz: Upgraded.
x/libXpm-3.5.15-x86_64-1.txz: Upgraded.
This update fixes security issues:
Infinite loop on unclosed comments.
Runaway loop with width of 0 and enormous height.
Compression commands depend on $PATH.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-46285
https://www.cve.org/CVERecord?id=CVE-2022-44617
https://www.cve.org/CVERecord?id=CVE-2022-4883
(* Security fix *)
x/libinput-1.22.1-x86_64-1.txz: Upgraded.
x/libpinyin-2.8.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
xap/mozilla-firefox-109.0-x86_64-1.txz: Upgraded.
This update contains security fixes and improvements.
Thanks to marav for the build help.
For more information, see:
https://www.mozilla.org/en-US/firefox/109.0/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2023-01/
https://www.cve.org/CVERecord?id=CVE-2023-23597
https://www.cve.org/CVERecord?id=CVE-2023-23598
https://www.cve.org/CVERecord?id=CVE-2023-23599
https://www.cve.org/CVERecord?id=CVE-2023-23600
https://www.cve.org/CVERecord?id=CVE-2023-23601
https://www.cve.org/CVERecord?id=CVE-2023-23602
https://www.cve.org/CVERecord?id=CVE-2023-23603
https://www.cve.org/CVERecord?id=CVE-2023-23604
https://www.cve.org/CVERecord?id=CVE-2023-23605
https://www.cve.org/CVERecord?id=CVE-2023-23606
(* Security fix *)
20230118061154 | Patrick J Volkerding | 2023-01-18 | 3 | -39/+1 |
* | Sun Dec 25 23:21:25 UTC 2022...Hey folks, Merry Christmas and Hanukkah Sameach! Figured it was about time to
get some kind of kernel activity going again, but it most definitely belongs
in /testing for now. I've been trying to shape this up for weeks, but there
are still issues, and maybe someone out there can help. The biggest problem
is that the 32-bit kernels crash on boot. Initially there's some sort of
Intel ME failure (this is on a Thinkpad X1E). If those modules are
blacklisted, then the kernel will go on to crash loading the snd_hda_intel
module. The other issue is that I've got a 4K panel in this machine, and
have always appended the kernel option video=1920x1080@60 to put the console
in HD instead, and then loaded a Terminus console font to make the text even
larger. With these kernels, that option is completely ignored. I've tried some
other syntax I've seen online to no avail. And when the Terminus font is
loaded the text gets *even smaller* for some reason.
So be careful of these kernels (especially the 32-bit ones), but I welcome
any hints about what's going on here or if there are config changes that
might get this working properly. Is anyone out there running a 6.x kernel on
bare metal 32-bit x86?
Cheers!
ap/vim-9.0.1091-x86_64-1.txz: Upgraded.
d/meson-1.0.0-x86_64-1.txz: Upgraded.
d/ruby-3.2.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
d/subversion-1.14.2-x86_64-3.txz: Rebuilt.
Recompiled against ruby-3.2.0.
l/glib2-2.74.4-x86_64-1.txz: Upgraded.
l/netpbm-11.00.03-x86_64-1.txz: Upgraded.
l/rubygem-asciidoctor-2.0.18-x86_64-1.txz: Upgraded.
Compiled against ruby-3.2.0.
n/epic5-2.1.12-x86_64-2.txz: Rebuilt.
Recompiled against ruby-3.2.0.
x/marisa-0.2.6-x86_64-6.txz: Rebuilt.
Recompiled against ruby-3.2.0.
xap/vim-gvim-9.0.1091-x86_64-1.txz: Upgraded.
testing/packages/linux-6.1.x/kernel-generic-6.1.1-x86_64-1.txz: Added.
testing/packages/linux-6.1.x/kernel-headers-6.1.1-x86-1.txz: Added.
testing/packages/linux-6.1.x/kernel-huge-6.1.1-x86_64-1.txz: Added.
testing/packages/linux-6.1.x/kernel-modules-6.1.1-x86_64-1.txz: Added.
testing/packages/linux-6.1.x/kernel-source-6.1.1-noarch-1.txz: Added.
20221225232125 | Patrick J Volkerding | 2022-12-26 | 1 | -1/+1 |
* | Tue Dec 20 20:40:18 UTC 2022...d/p2c-2.02-x86_64-1.txz: Upgraded.
kde/dolphin-22.12.0-x86_64-2.txz: Rebuilt.
[PATCH] Revert "portalize drag urls"
Thanks to marav.
l/gst-plugins-bad-free-1.20.5-x86_64-1.txz: Upgraded.
l/gst-plugins-base-1.20.5-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.20.5-x86_64-1.txz: Upgraded.
l/gst-plugins-libav-1.20.5-x86_64-1.txz: Upgraded.
l/gstreamer-1.20.5-x86_64-1.txz: Upgraded.
l/libqalculate-4.5.0-x86_64-1.txz: Upgraded.
l/libvncserver-0.9.14-x86_64-1.txz: Upgraded.
l/sdl-1.2.15-x86_64-14.txz: Rebuilt.
This update fixes a heap overflow problem in video/SDL_pixels.c in SDL.
By crafting a malicious .BMP file, an attacker can cause the application
using this library to crash, denial of service, or code execution.
Thanks to marav for the heads-up.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2021-33657
(* Security fix *)
n/gnupg2-2.2.41-x86_64-1.txz: Upgraded.
n/libksba-1.6.3-x86_64-1.txz: Upgraded.
Fix another integer overflow in the CRL's signature parser.
(* Security fix *)
x/libSM-1.2.4-x86_64-1.txz: Upgraded.
x/xcb-util-0.4.1-x86_64-1.txz: Upgraded.
x/xdriinfo-1.0.7-x86_64-1.txz: Upgraded.
20221220204018 | Patrick J Volkerding | 2022-12-20 | 3 | -3/+3 |
* | Mon Dec 19 21:18:22 UTC 2022...a/logrotate-3.21.0-x86_64-1.txz: Upgraded.
kde/gwenview-22.12.0-x86_64-2.txz: Rebuilt.
Recompiled against cfitsio-4.2.0.
kde/kstars-3.6.2-x86_64-2.txz: Rebuilt.
Recompiled against cfitsio-4.2.0.
l/cfitsio-4.2.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/gsettings-desktop-schemas-43.0-x86_64-1.txz: Upgraded.
l/gtk4-4.8.2-x86_64-1.txz: Upgraded.
x/xorg-server-21.1.6-x86_64-1.txz: Upgraded.
This release fixes an invalid event type mask in XTestSwapFakeInput which
was inadvertently changed from octal 0177 to hexadecimal 0x177 in the fix
for CVE-2022-46340.
x/xorg-server-xephyr-21.1.6-x86_64-1.txz: Upgraded.
x/xorg-server-xnest-21.1.6-x86_64-1.txz: Upgraded.
x/xorg-server-xvfb-21.1.6-x86_64-1.txz: Upgraded.
x/xorg-server-xwayland-22.1.7-x86_64-1.txz: Upgraded.
This release fixes an invalid event type mask in XTestSwapFakeInput which
was inadvertently changed from octal 0177 to hexadecimal 0x177 in the fix
for CVE-2022-46340.
testing/packages/rust-1.66.0-x86_64-1.txz: Added.
20221219211822 | Patrick J Volkerding | 2022-12-19 | 3 | -98/+0 |
* | Sat Dec 17 02:40:06 UTC 2022...a/aaa_libraries-15.1-x86_64-14.txz: Rebuilt.
Upgraded: liblzma.so.5.2.9, libpcre2-8.so.0.11.2, libglib-2.0.so.0.7400.3,
libgmodule-2.0.so.0.7400.3, libpng16.so.16.39.0.
Removed: libFLAC++.so.6.3.0, libFLAC.so.8.3.0, libicudata.so.71.1,
libicui18n.so.71.1, libicuio.so.71.1, libicutest.so.71.1, libicutu.so.71.1,
libicuuc.so.71.1, libjasper.so.6.0.0.
Added: libboost_atomic.so.1.80.0, libboost_chrono.so.1.80.0,
libboost_container.so.1.80.0, libboost_context.so.1.80.0,
libboost_contract.so.1.80.0, libboost_coroutine.so.1.80.0,
libboost_date_time.so.1.80.0, libboost_fiber.so.1.80.0,
libboost_filesystem.so.1.80.0, libboost_graph.so.1.80.0,
libboost_iostreams.so.1.80.0, libboost_json.so.1.80.0,
libboost_locale.so.1.80.0, libboost_log.so.1.80.0,
libboost_log_setup.so.1.80.0, libboost_math_c99.so.1.80.0,
libboost_math_c99f.so.1.80.0, libboost_math_c99l.so.1.80.0,
libboost_math_tr1.so.1.80.0, libboost_math_tr1f.so.1.80.0,
libboost_math_tr1l.so.1.80.0, libboost_nowide.so.1.80.0,
libboost_prg_exec_monitor.so.1.80.0, libboost_program_options.so.1.80.0,
libboost_python27.so.1.80.0, libboost_python39.so.1.80.0,
libboost_random.so.1.80.0, libboost_regex.so.1.80.0,
libboost_serialization.so.1.80.0, libboost_stacktrace_addr2line.so.1.80.0,
libboost_stacktrace_basic.so.1.80.0, libboost_stacktrace_noop.so.1.80.0,
libboost_system.so.1.80.0, libboost_thread.so.1.80.0,
libboost_timer.so.1.80.0, libboost_type_erasure.so.1.80.0,
libboost_unit_test_framework.so.1.80.0, libboost_wave.so.1.80.0,
libboost_wserialization.so.1.80.0.
ap/pamixer-1.5-x86_64-5.txz: Rebuilt.
Recompiled against boost-1.81.0.
kde/kig-22.12.0-x86_64-2.txz: Rebuilt.
Recompiled against boost-1.81.0.
kde/kopeninghours-22.12.0-x86_64-2.txz: Rebuilt.
Recompiled against boost-1.81.0.
kde/krita-5.1.4-x86_64-2.txz: Rebuilt.
Recompiled against boost-1.81.0.
l/boost-1.81.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/cryfs-0.10.3-x86_64-7.txz: Rebuilt.
Recompiled against boost-1.81.0.
x/fcitx5-chinese-addons-5.0.16-x86_64-2.txz: Rebuilt.
Recompiled against boost-1.81.0.
x/libime-1.0.16-x86_64-2.txz: Rebuilt.
Recompiled against boost-1.81.0.
xap/mozilla-firefox-108.0.1-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/firefox/108.0.1/releasenotes/
xfce/elementary-xfce-0.17-x86_64-1.txz: Upgraded.
20221217024006 | Patrick J Volkerding | 2022-12-17 | 2 | -2/+2 |
* | Wed Dec 14 21:19:34 UTC 2022...a/bash-5.2.015-x86_64-1.txz: Upgraded.
a/tcsh-6.24.06-x86_64-1.txz: Upgraded.
ap/inxi-3.3.24_1-noarch-1.txz: Upgraded.
ap/nano-7.1-x86_64-1.txz: Upgraded.
d/git-2.39.0-x86_64-1.txz: Upgraded.
d/rust-1.65.0-x86_64-1.txz: Upgraded.
d/strace-6.1-x86_64-1.txz: Upgraded.
kde/krita-5.1.4-x86_64-1.txz: Upgraded.
l/imagemagick-7.1.0_54-x86_64-1.txz: Upgraded.
l/nodejs-19.3.0-x86_64-1.txz: Upgraded.
l/pcre2-10.42-x86_64-1.txz: Upgraded.
n/iproute2-6.1.0-x86_64-1.txz: Upgraded.
x/makedepend-1.0.8-x86_64-1.txz: Upgraded.
x/xhost-1.0.9-x86_64-1.txz: Upgraded.
x/xorg-server-21.1.5-x86_64-1.txz: Upgraded.
This release fixes 6 recently reported security vulnerabilities in
various extensions.
For more information, see:
https://lists.x.org/archives/xorg-announce/2022-December/003302.html
https://www.cve.org/CVERecord?id=CVE-2022-46340
https://www.cve.org/CVERecord?id=CVE-2022-46341
https://www.cve.org/CVERecord?id=CVE-2022-46342
https://www.cve.org/CVERecord?id=CVE-2022-46343
https://www.cve.org/CVERecord?id=CVE-2022-46344
https://www.cve.org/CVERecord?id=CVE-2022-4283
(* Security fix *)
x/xorg-server-xephyr-21.1.5-x86_64-1.txz: Upgraded.
x/xorg-server-xnest-21.1.5-x86_64-1.txz: Upgraded.
x/xorg-server-xvfb-21.1.5-x86_64-1.txz: Upgraded.
x/xorg-server-xwayland-22.1.6-x86_64-1.txz: Upgraded.
This release fixes 6 recently reported security vulnerabilities in
various extensions.
For more information, see:
https://lists.x.org/archives/xorg-announce/2022-December/003302.html
https://www.cve.org/CVERecord?id=CVE-2022-46340
https://www.cve.org/CVERecord?id=CVE-2022-46341
https://www.cve.org/CVERecord?id=CVE-2022-46342
https://www.cve.org/CVERecord?id=CVE-2022-46343
https://www.cve.org/CVERecord?id=CVE-2022-46344
https://www.cve.org/CVERecord?id=CVE-2022-4283
(* Security fix *)
xap/mozilla-thunderbird-102.6.0-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/security/advisories/mfsa2022-53/
https://www.cve.org/CVERecord?id=CVE-2022-46880
https://www.cve.org/CVERecord?id=CVE-2022-46872
https://www.cve.org/CVERecord?id=CVE-2022-46881
https://www.cve.org/CVERecord?id=CVE-2022-46874
https://www.cve.org/CVERecord?id=CVE-2022-46875
https://www.cve.org/CVERecord?id=CVE-2022-46882
https://www.cve.org/CVERecord?id=CVE-2022-46878
(* Security fix *)
xap/xscreensaver-6.06-x86_64-1.txz: Upgraded.
testing/packages/mozilla-firefox-108.0-x86_64-1.txz: Upgraded.
Starting this out in /testing for now, since I've been trying for 2 days to
get it to compile on 32-bit with no luck. It ends up failing with a bunch of
errors like this:
ld.lld: error: undefined hidden symbol: tabs_4d51_TabsStore_sync
Any help getting this to build on 32-bit would be greatly appreciated.
I've tried most of ponce's bag of tricks already. :-)
20221214211934 | Patrick J Volkerding | 2022-12-14 | 2 | -2/+2 |
* | Sat Dec 10 19:28:02 UTC 2022...kde/attica-5.101.0-x86_64-1.txz: Upgraded.
kde/baloo-5.101.0-x86_64-1.txz: Upgraded.
kde/bluez-qt-5.101.0-x86_64-1.txz: Upgraded.
kde/breeze-icons-5.101.0-noarch-1.txz: Upgraded.
kde/extra-cmake-modules-5.101.0-x86_64-1.txz: Upgraded.
kde/frameworkintegration-5.101.0-x86_64-1.txz: Upgraded.
kde/kactivities-5.101.0-x86_64-1.txz: Upgraded.
kde/kactivities-stats-5.101.0-x86_64-1.txz: Upgraded.
kde/kapidox-5.101.0-x86_64-1.txz: Upgraded.
kde/karchive-5.101.0-x86_64-1.txz: Upgraded.
kde/kauth-5.101.0-x86_64-1.txz: Upgraded.
kde/kbookmarks-5.101.0-x86_64-1.txz: Upgraded.
kde/kcalendarcore-5.101.0-x86_64-1.txz: Upgraded.
kde/kcmutils-5.101.0-x86_64-1.txz: Upgraded.
kde/kcodecs-5.101.0-x86_64-1.txz: Upgraded.
kde/kcompletion-5.101.0-x86_64-1.txz: Upgraded.
kde/kconfig-5.101.0-x86_64-1.txz: Upgraded.
kde/kconfigwidgets-5.101.0-x86_64-1.txz: Upgraded.
kde/kcontacts-5.101.0-x86_64-1.txz: Upgraded.
kde/kcoreaddons-5.101.0-x86_64-1.txz: Upgraded.
kde/kcrash-5.101.0-x86_64-1.txz: Upgraded.
kde/kdav-5.101.0-x86_64-1.txz: Upgraded.
kde/kdbusaddons-5.101.0-x86_64-1.txz: Upgraded.
kde/kdeclarative-5.101.0-x86_64-1.txz: Upgraded.
kde/kded-5.101.0-x86_64-1.txz: Upgraded.
kde/kdelibs4support-5.101.0-x86_64-1.txz: Upgraded.
kde/kdesignerplugin-5.101.0-x86_64-1.txz: Upgraded.
kde/kdesu-5.101.0-x86_64-1.txz: Upgraded.
kde/kdewebkit-5.101.0-x86_64-1.txz: Upgraded.
kde/kdnssd-5.101.0-x86_64-1.txz: Upgraded.
kde/kdoctools-5.101.0-x86_64-1.txz: Upgraded.
kde/kemoticons-5.101.0-x86_64-1.txz: Upgraded.
kde/kfilemetadata-5.101.0-x86_64-1.txz: Upgraded.
kde/kglobalaccel-5.101.0-x86_64-1.txz: Upgraded.
kde/kguiaddons-5.101.0-x86_64-1.txz: Upgraded.
kde/kholidays-5.101.0-x86_64-1.txz: Upgraded.
kde/khtml-5.101.0-x86_64-1.txz: Upgraded.
kde/ki18n-5.101.0-x86_64-1.txz: Upgraded.
kde/kiconthemes-5.101.0-x86_64-1.txz: Upgraded.
kde/kidletime-5.101.0-x86_64-1.txz: Upgraded.
kde/kimageformats-5.101.0-x86_64-1.txz: Upgraded.
kde/kinit-5.101.0-x86_64-1.txz: Upgraded.
kde/kio-5.101.0-x86_64-1.txz: Upgraded.
kde/kirigami2-5.101.0-x86_64-1.txz: Upgraded.
kde/kitemmodels-5.101.0-x86_64-1.txz: Upgraded.
kde/kitemviews-5.101.0-x86_64-1.txz: Upgraded.
kde/kjobwidgets-5.101.0-x86_64-1.txz: Upgraded.
kde/kjs-5.101.0-x86_64-1.txz: Upgraded.
kde/kjsembed-5.101.0-x86_64-1.txz: Upgraded.
kde/kmediaplayer-5.101.0-x86_64-1.txz: Upgraded.
kde/knewstuff-5.101.0-x86_64-1.txz: Upgraded.
kde/knotifications-5.101.0-x86_64-1.txz: Upgraded.
kde/knotifyconfig-5.101.0-x86_64-1.txz: Upgraded.
kde/kpackage-5.101.0-x86_64-1.txz: Upgraded.
kde/kparts-5.101.0-x86_64-1.txz: Upgraded.
kde/kpeople-5.101.0-x86_64-1.txz: Upgraded.
kde/kplotting-5.101.0-x86_64-1.txz: Upgraded.
kde/kpty-5.101.0-x86_64-1.txz: Upgraded.
kde/kquickcharts-5.101.0-x86_64-1.txz: Upgraded.
kde/kross-5.101.0-x86_64-1.txz: Upgraded.
kde/krunner-5.101.0-x86_64-1.txz: Upgraded.
kde/kservice-5.101.0-x86_64-1.txz: Upgraded.
kde/ktexteditor-5.101.0-x86_64-1.txz: Upgraded.
kde/ktextwidgets-5.101.0-x86_64-1.txz: Upgraded.
kde/kunitconversion-5.101.0-x86_64-1.txz: Upgraded.
kde/kwallet-5.101.0-x86_64-1.txz: Upgraded.
kde/kwayland-5.101.0-x86_64-1.txz: Upgraded.
kde/kwidgetsaddons-5.101.0-x86_64-1.txz: Upgraded.
kde/kwindowsystem-5.101.0-x86_64-1.txz: Upgraded.
kde/kxmlgui-5.101.0-x86_64-1.txz: Upgraded.
kde/kxmlrpcclient-5.101.0-x86_64-1.txz: Upgraded.
kde/modemmanager-qt-5.101.0-x86_64-1.txz: Upgraded.
kde/networkmanager-qt-5.101.0-x86_64-1.txz: Upgraded.
kde/oxygen-icons5-5.101.0-noarch-1.txz: Upgraded.
kde/plasma-framework-5.101.0-x86_64-1.txz: Upgraded.
kde/prison-5.101.0-x86_64-1.txz: Upgraded.
kde/purpose-5.101.0-x86_64-1.txz: Upgraded.
kde/qqc2-desktop-style-5.101.0-x86_64-1.txz: Upgraded.
kde/solid-5.101.0-x86_64-1.txz: Upgraded.
kde/sonnet-5.101.0-x86_64-1.txz: Upgraded.
kde/syndication-5.101.0-x86_64-1.txz: Upgraded.
kde/syntax-highlighting-5.101.0-x86_64-1.txz: Upgraded.
kde/threadweaver-5.101.0-x86_64-1.txz: Upgraded.
x/xf86-video-vesa-2.6.0-x86_64-1.txz: Upgraded.
20221210192802 | Patrick J Volkerding | 2022-12-10 | 1 | -1/+1 |
* | Wed Dec 7 18:48:07 UTC 2022...d/cargo-vendor-filterer-0.5.7-x86_64-1.txz: Added.
Thanks to Heinz Wiesinger.
d/cbindgen-0.24.3-x86_64-1.txz: Added.
d/python3-3.9.16-x86_64-1.txz: Upgraded.
This update fixes security issues:
gh-98739: Updated bundled libexpat to 2.5.0 to fix CVE-2022-43680
(heap use-after-free).
gh-98433: The IDNA codec decoder used on DNS hostnames by socket or asyncio
related name resolution functions no longer involves a quadratic algorithm
to fix CVE-2022-45061. This prevents a potential CPU denial of service if an
out-of-spec excessive length hostname involving bidirectional characters were
decoded. Some protocols such as urllib http 3xx redirects potentially allow
for an attacker to supply such a name.
gh-100001: python -m http.server no longer allows terminal control characters
sent within a garbage request to be printed to the stderr server log.
gh-87604: Avoid publishing list of active per-interpreter audit hooks via the
gc module.
gh-97514: On Linux the multiprocessing module returns to using filesystem
backed unix domain sockets for communication with the forkserver process
instead of the Linux abstract socket namespace. Only code that chooses to use
the "forkserver" start method is affected. This prevents Linux CVE-2022-42919
(potential privilege escalation) as abstract sockets have no permissions and
could allow any user on the system in the same network namespace (often the
whole system) to inject code into the multiprocessing forkserver process.
Filesystem based socket permissions restrict this to the forkserver process
user as was the default in Python 3.8 and earlier.
gh-98517: Port XKCP's fix for the buffer overflows in SHA-3 to fix
CVE-2022-37454.
gh-68966: The deprecated mailcap module now refuses to inject unsafe text
(filenames, MIME types, parameters) into shell commands to address
CVE-2015-20107. Instead of using such text, it will warn and act as if a
match was not found (or for test commands, as if the test failed).
For more information, see:
https://pythoninsider.blogspot.com/2022/12/python-3111-3109-3916-3816-3716-and.html
https://www.cve.org/CVERecord?id=CVE-2022-43680
https://www.cve.org/CVERecord?id=CVE-2022-45061
https://www.cve.org/CVERecord?id=CVE-2022-42919
https://www.cve.org/CVERecord?id=CVE-2022-37454
https://www.cve.org/CVERecord?id=CVE-2015-20107
(* Security fix *)
d/rust-bindgen-0.63.0-x86_64-1.txz: Added.
Thanks to Heinz Wiesinger.
l/pcre2-10.41-x86_64-1.txz: Upgraded.
n/proftpd-1.3.8-x86_64-1.txz: Upgraded.
x/mesa-22.3.0-x86_64-1.txz: Upgraded.
Compiled with Rusticl support. Thanks to Heinz Wiesinger.
x/xdm-1.1.14-x86_64-1.txz: Upgraded.
20221207184807 | Patrick J Volkerding | 2022-12-07 | 7 | -153/+8 |
* | Mon Dec 5 02:40:12 UTC 2022...x/OpenCC-1.1.5-x86_64-1.txz: Upgraded.
x/libXScrnSaver-1.2.4-x86_64-1.txz: Upgraded.
x/libXcomposite-0.4.6-x86_64-1.txz: Upgraded.
x/libXdamage-1.1.6-x86_64-1.txz: Upgraded.
x/libXres-1.2.2-x86_64-1.txz: Upgraded.
x/libXv-1.0.12-x86_64-1.txz: Upgraded.
x/libXxf86dga-1.1.6-x86_64-1.txz: Upgraded.
x/lndir-1.0.4-x86_64-1.txz: Upgraded.
20221205024012 | Patrick J Volkerding | 2022-12-05 | 15 | -15/+15 |
* | Sat Dec 3 21:07:32 UTC 2022...a/tcsh-6.24.04-x86_64-1.txz: Upgraded.
ap/texinfo-7.0.1-x86_64-1.txz: Upgraded.
l/vte-0.70.2-x86_64-1.txz: Upgraded.
x/transset-1.0.3-x86_64-1.txz: Upgraded.
x/xcursorgen-1.0.8-x86_64-1.txz: Upgraded.
20221203210732 | Patrick J Volkerding | 2022-12-04 | 2 | -2/+2 |
* | Wed Nov 30 21:39:29 UTC 2022...kde/kstars-3.6.2-x86_64-1.txz: Upgraded.
l/libbluray-1.3.4-x86_64-1.txz: Upgraded.
l/newt-0.52.23-x86_64-1.txz: Upgraded.
l/nodejs-19.2.0-x86_64-1.txz: Upgraded.
x/wayland-protocols-1.31-noarch-1.txz: Upgraded.
extra/php80/php80-8.0.26-x86_64-1.txz: Upgraded.
extra/php81/php81-8.1.13-x86_64-1.txz: Upgraded.
20221130213929 | Patrick J Volkerding | 2022-12-01 | 1 | -1/+1 |
* | Wed Nov 23 19:51:17 UTC 2022...a/gawk-5.2.1-x86_64-1.txz: Upgraded.
a/rpm2tgz-1.2.2-x86_64-7.txz: Rebuilt.
Take rpmoffset fixes from Gentoo.
Thanks to allend.
d/ccache-4.7.4-x86_64-1.txz: Upgraded.
d/meson-0.64.1-x86_64-1.txz: Upgraded.
d/parallel-20221122-noarch-1.txz: Upgraded.
kde/fcitx5-configtool-5.0.16-x86_64-1.txz: Upgraded.
l/SDL2-2.26.0-x86_64-1.txz: Upgraded.
l/glib2-2.74.1-x86_64-2.txz: Rebuilt.
[PATCH 1/2] Revert "Handling collision between standard i/o file descriptors
and newly created ones."
[PATCH 2/2] glib-unix: Add test to make sure g_unix_open_pipe will intrude
standard range.
Thanks to marav.
l/newt-0.52.22-x86_64-1.txz: Upgraded.
l/pipewire-0.3.60-x86_64-2.txz: Rebuilt.
[PATCH] alsa: force playback start when buffer is full.
Thanks to marav.
tcl/tcl-8.6.13-x86_64-1.txz: Upgraded.
tcl/tk-8.6.13-x86_64-1.txz: Upgraded.
x/libglvnd-1.6.0-x86_64-1.txz: Upgraded.
x/wayland-protocols-1.30-noarch-1.txz: Upgraded.
xap/blueman-2.3.5-x86_64-1.txz: Upgraded.
20221123195117 | Patrick J Volkerding | 2022-11-24 | 1 | -0/+1 |
* | Mon Nov 21 20:23:13 UTC 2022...a/libpwquality-1.4.5-x86_64-1.txz: Upgraded.
a/pciutils-3.9.0-x86_64-1.txz: Upgraded.
ap/qpdf-11.2.0-x86_64-1.txz: Upgraded.
d/mercurial-6.3.1-x86_64-1.txz: Upgraded.
kde/krusader-2.8.0-x86_64-1.txz: Upgraded.
l/libpng-1.6.39-x86_64-1.txz: Upgraded.
l/mlt-7.12.0-x86_64-1.txz: Upgraded.
x/fcitx5-5.0.20-x86_64-1.txz: Upgraded.
x/fcitx5-anthy-5.0.13-x86_64-1.txz: Upgraded.
x/fcitx5-chinese-addons-5.0.16-x86_64-1.txz: Upgraded.
x/fcitx5-gtk-5.0.20-x86_64-1.txz: Upgraded.
x/fcitx5-kkc-5.0.11-x86_64-1.txz: Upgraded.
x/fcitx5-m17n-5.0.11-x86_64-1.txz: Upgraded.
x/fcitx5-qt-5.0.16-x86_64-1.txz: Upgraded.
x/fcitx5-table-extra-5.0.12-x86_64-1.txz: Upgraded.
x/fcitx5-unikey-5.0.12-x86_64-1.txz: Upgraded.
x/libXdmcp-1.1.4-x86_64-1.txz: Upgraded.
x/libXpm-3.5.14-x86_64-1.txz: Upgraded.
x/libXrandr-1.5.3-x86_64-1.txz: Upgraded.
x/libime-1.0.15-x86_64-1.txz: Upgraded.
x/libinput-1.22.0-x86_64-1.txz: Upgraded.
x/xcb-imdkit-1.0.4-x86_64-1.txz: Upgraded.
20221121202313 | Patrick J Volkerding | 2022-11-22 | 3 | -3/+3 |
* | Tue Nov 15 01:28:38 UTC 2022...a/xz-5.2.8-x86_64-1.txz: Upgraded.
d/mercurial-6.3.0-x86_64-1.txz: Upgraded.
d/rust-1.64.0-x86_64-1.txz: Upgraded.
kde/attica-5.100.0-x86_64-1.txz: Upgraded.
kde/baloo-5.100.0-x86_64-1.txz: Upgraded.
kde/bluez-qt-5.100.0-x86_64-1.txz: Upgraded.
kde/breeze-icons-5.100.0-noarch-1.txz: Upgraded.
kde/extra-cmake-modules-5.100.0-x86_64-1.txz: Upgraded.
kde/frameworkintegration-5.100.0-x86_64-1.txz: Upgraded.
kde/kactivities-5.100.0-x86_64-1.txz: Upgraded.
kde/kactivities-stats-5.100.0-x86_64-1.txz: Upgraded.
kde/kapidox-5.100.0-x86_64-1.txz: Upgraded.
kde/karchive-5.100.0-x86_64-1.txz: Upgraded.
kde/kauth-5.100.0-x86_64-1.txz: Upgraded.
kde/kbookmarks-5.100.0-x86_64-1.txz: Upgraded.
kde/kcalendarcore-5.100.0-x86_64-1.txz: Upgraded.
kde/kcmutils-5.100.0-x86_64-1.txz: Upgraded.
kde/kcodecs-5.100.0-x86_64-1.txz: Upgraded.
kde/kcompletion-5.100.0-x86_64-1.txz: Upgraded.
kde/kconfig-5.100.0-x86_64-1.txz: Upgraded.
kde/kconfigwidgets-5.100.0-x86_64-1.txz: Upgraded.
kde/kcontacts-5.100.0-x86_64-1.txz: Upgraded.
kde/kcoreaddons-5.100.0-x86_64-1.txz: Upgraded.
kde/kcrash-5.100.0-x86_64-1.txz: Upgraded.
kde/kdav-5.100.0-x86_64-1.txz: Upgraded.
kde/kdbusaddons-5.100.0-x86_64-1.txz: Upgraded.
kde/kdeclarative-5.100.0-x86_64-1.txz: Upgraded.
kde/kded-5.100.0-x86_64-1.txz: Upgraded.
kde/kdelibs4support-5.100.0-x86_64-1.txz: Upgraded.
kde/kdesignerplugin-5.100.0-x86_64-1.txz: Upgraded.
kde/kdesu-5.100.0-x86_64-1.txz: Upgraded.
kde/kdewebkit-5.100.0-x86_64-1.txz: Upgraded.
kde/kdnssd-5.100.0-x86_64-1.txz: Upgraded.
kde/kdoctools-5.100.0-x86_64-1.txz: Upgraded.
kde/kemoticons-5.100.0-x86_64-1.txz: Upgraded.
kde/kfilemetadata-5.100.0-x86_64-1.txz: Upgraded.
kde/kglobalaccel-5.100.0-x86_64-1.txz: Upgraded.
kde/kguiaddons-5.100.0-x86_64-1.txz: Upgraded.
kde/kholidays-5.100.0-x86_64-1.txz: Upgraded.
kde/khtml-5.100.0-x86_64-1.txz: Upgraded.
kde/ki18n-5.100.0-x86_64-1.txz: Upgraded.
kde/kiconthemes-5.100.0-x86_64-1.txz: Upgraded.
kde/kidletime-5.100.0-x86_64-1.txz: Upgraded.
kde/kimageformats-5.100.0-x86_64-1.txz: Upgraded.
kde/kinit-5.100.0-x86_64-1.txz: Upgraded.
kde/kio-5.100.0-x86_64-1.txz: Upgraded.
kde/kirigami2-5.100.0-x86_64-1.txz: Upgraded.
kde/kitemmodels-5.100.0-x86_64-1.txz: Upgraded.
kde/kitemviews-5.100.0-x86_64-1.txz: Upgraded.
kde/kjobwidgets-5.100.0-x86_64-1.txz: Upgraded.
kde/kjs-5.100.0-x86_64-1.txz: Upgraded.
kde/kjsembed-5.100.0-x86_64-1.txz: Upgraded.
kde/kmediaplayer-5.100.0-x86_64-1.txz: Upgraded.
kde/knewstuff-5.100.0-x86_64-1.txz: Upgraded.
kde/knotifications-5.100.0-x86_64-1.txz: Upgraded.
kde/knotifyconfig-5.100.0-x86_64-1.txz: Upgraded.
kde/kpackage-5.100.0-x86_64-1.txz: Upgraded.
kde/kparts-5.100.0-x86_64-1.txz: Upgraded.
kde/kpeople-5.100.0-x86_64-1.txz: Upgraded.
kde/kplotting-5.100.0-x86_64-1.txz: Upgraded.
kde/kpty-5.100.0-x86_64-1.txz: Upgraded.
kde/kquickcharts-5.100.0-x86_64-1.txz: Upgraded.
kde/kross-5.100.0-x86_64-1.txz: Upgraded.
kde/krunner-5.100.0-x86_64-1.txz: Upgraded.
kde/kservice-5.100.0-x86_64-1.txz: Upgraded.
kde/ktexteditor-5.100.0-x86_64-1.txz: Upgraded.
kde/ktextwidgets-5.100.0-x86_64-1.txz: Upgraded.
kde/kunitconversion-5.100.0-x86_64-1.txz: Upgraded.
kde/kwallet-5.100.0-x86_64-1.txz: Upgraded.
kde/kwayland-5.100.0-x86_64-1.txz: Upgraded.
kde/kwidgetsaddons-5.100.0-x86_64-1.txz: Upgraded.
kde/kwindowsystem-5.100.0-x86_64-1.txz: Upgraded.
kde/kxmlgui-5.100.0-x86_64-1.txz: Upgraded.
kde/kxmlrpcclient-5.100.0-x86_64-1.txz: Upgraded.
kde/modemmanager-qt-5.100.0-x86_64-1.txz: Upgraded.
kde/networkmanager-qt-5.100.0-x86_64-1.txz: Upgraded.
kde/oxygen-icons5-5.100.0-noarch-1.txz: Upgraded.
kde/plasma-framework-5.100.0-x86_64-1.txz: Upgraded.
kde/prison-5.100.0-x86_64-1.txz: Upgraded.
kde/purpose-5.100.0-x86_64-1.txz: Upgraded.
kde/qqc2-desktop-style-5.100.0-x86_64-1.txz: Upgraded.
kde/solid-5.100.0-x86_64-1.txz: Upgraded.
kde/sonnet-5.100.0-x86_64-1.txz: Upgraded.
kde/syndication-5.100.0-x86_64-1.txz: Upgraded.
kde/syntax-highlighting-5.100.0-x86_64-1.txz: Upgraded.
kde/threadweaver-5.100.0-x86_64-1.txz: Upgraded.
l/babl-0.1.98-x86_64-1.txz: Upgraded.
l/gegl-0.4.40-x86_64-1.txz: Upgraded.
l/grantlee-5.3.1-x86_64-1.txz: Upgraded.
l/nodejs-19.1.0-x86_64-1.txz: Upgraded.
n/libqmi-1.32.2-x86_64-1.txz: Upgraded.
n/mutt-2.2.9-x86_64-1.txz: Upgraded.
n/nghttp2-1.51.0-x86_64-1.txz: Upgraded.
x/xcompmgr-1.1.9-x86_64-1.txz: Upgraded.
x/xkbevd-1.1.5-x86_64-1.txz: Upgraded.
x/xkill-1.0.6-x86_64-1.txz: Upgraded.
x/xlogo-1.0.6-x86_64-1.txz: Upgraded.
x/xlsatoms-1.1.4-x86_64-1.txz: Upgraded.
x/xlsclients-1.1.5-x86_64-1.txz: Upgraded.
testing/packages/rust-1.65.0-x86_64-1.txz: Upgraded.
20221115012838 | Patrick J Volkerding | 2022-11-15 | 6 | -6/+6 |
* | Wed Nov 2 20:01:17 UTC 2022...a/hwdata-0.364-noarch-1.txz: Upgraded.
ap/inxi-3.3.23_1-noarch-1.txz: Upgraded.
ap/mpg123-1.31.1-x86_64-1.txz: Upgraded.
d/cmake-3.24.3-x86_64-1.txz: Upgraded.
l/SDL2-2.24.2-x86_64-1.txz: Upgraded.
l/liburing-2.3-x86_64-1.txz: Upgraded.
l/speech-dispatcher-0.11.4-x86_64-1.txz: Upgraded.
n/irssi-1.4.3-x86_64-1.txz: Upgraded.
n/stunnel-5.67-x86_64-1.txz: Upgraded.
x/ibus-table-1.16.13-x86_64-1.txz: Upgraded.
x/pixman-0.42.2-x86_64-1.txz: Upgraded.
x/xorg-server-xwayland-22.1.5-x86_64-1.txz: Upgraded.
20221102200117 | Patrick J Volkerding | 2022-11-03 | 2 | -53/+1 |
* | Mon Oct 31 23:31:36 UTC 2022...a/ntfs-3g-2022.10.3-x86_64-1.txz: Upgraded.
ap/mpg123-1.31.0-x86_64-1.txz: Upgraded.
ap/vim-9.0.0814-x86_64-1.txz: Upgraded.
A vulnerability was found in vim and classified as problematic. Affected by
this issue is the function qf_update_buffer of the file quickfix.c of the
component autocmd Handler. The manipulation leads to use after free. The
attack may be launched remotely. Upgrading to version 9.0.0805 is able to
address this issue.
Thanks to marav for the heads-up.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-3705
(* Security fix *)
d/ccache-4.7.2-x86_64-1.txz: Upgraded.
d/make-4.4-x86_64-1.txz: Upgraded.
d/patchelf-0.16.1-x86_64-1.txz: Upgraded.
d/strace-6.0-x86_64-1.txz: Upgraded.
kde/kwin-5.26.2.1-x86_64-2.txz: Rebuilt.
[PATCH] x11window: revert more from 3a28c02f.
Thanks to Heinz Wiesinger.
[PATCH] x11: Don't force QT_NO_GLIB=1.
[PATCH] x11: Don't force QT_QPA_PLATFORM=xcb.
Thanks to marav.
l/libedit-20221030_3.1-x86_64-1.txz: Upgraded.
l/python-importlib_metadata-5.0.0-x86_64-1.txz: Upgraded.
l/taglib-1.13-x86_64-1.txz: Upgraded.
l/utf8proc-2.8.0-x86_64-1.txz: Upgraded.
n/openvpn-2.5.8-x86_64-1.txz: Upgraded.
n/socat-1.7.4.4-x86_64-1.txz: Upgraded.
x/libXext-1.3.5-x86_64-1.txz: Upgraded.
x/libXinerama-1.1.5-x86_64-1.txz: Upgraded.
x/makedepend-1.0.7-x86_64-1.txz: Upgraded.
x/rgb-1.1.0-x86_64-1.txz: Upgraded.
x/sessreg-1.1.3-x86_64-1.txz: Upgraded.
x/x11perf-1.6.2-x86_64-1.txz: Upgraded.
x/xsetroot-1.1.3-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-106.0.3-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/firefox/106.0.3/releasenotes/
xap/mozilla-thunderbird-102.4.1-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/102.4.1/releasenotes/
xap/vim-gvim-9.0.0814-x86_64-1.txz: Upgraded.
extra/php80/php80-8.0.25-x86_64-1.txz: Upgraded.
This update fixes security issues:
GD: OOB read due to insufficient input validation in imageloadfont().
Hash: buffer overflow in hash_update() on long parameter.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-31630
https://www.cve.org/CVERecord?id=CVE-2022-37454
(* Security fix *)
extra/php81/php81-8.1.12-x86_64-1.txz: Upgraded.
This update fixes security issues:
GD: OOB read due to insufficient input validation in imageloadfont().
Hash: buffer overflow in hash_update() on long parameter.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-31630
https://www.cve.org/CVERecord?id=CVE-2022-37454
(* Security fix *)
20221031233136 | Patrick J Volkerding | 2022-11-01 | 7 | -7/+7 |
* | Thu Oct 27 02:30:15 UTC 2022...a/aaa_libraries-15.1-x86_64-12.txz: Rebuilt.
Upgraded: libexpat.so.1.8.10, libffi.so.8.1.2.
Added (temporarily): libicudata.so.71.1, libicui18n.so.71.1,
libicuio.so.71.1, libicutest.so.71.1, libicutu.so.71.1, libicuuc.so.71.1.
a/xfsprogs-5.13.0-x86_64-4.txz: Rebuilt.
Recompiled against icu4c-72.1.
ap/sqlite-3.39.4-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-72.1.
kde/bluedevil-5.26.2-x86_64-1.txz: Upgraded.
kde/breeze-5.26.2-x86_64-1.txz: Upgraded.
kde/breeze-grub-5.26.2-x86_64-1.txz: Upgraded.
kde/breeze-gtk-5.26.2-x86_64-1.txz: Upgraded.
kde/drkonqi-5.26.2-x86_64-1.txz: Upgraded.
kde/kactivitymanagerd-5.26.2-x86_64-1.txz: Upgraded.
kde/kde-cli-tools-5.26.2-x86_64-1.txz: Upgraded.
kde/kde-gtk-config-5.26.2-x86_64-1.txz: Upgraded.
kde/kdecoration-5.26.2-x86_64-1.txz: Upgraded.
kde/kdeplasma-addons-5.26.2-x86_64-1.txz: Upgraded.
Compiled against icu4c-72.1.
kde/kgamma5-5.26.2-x86_64-1.txz: Upgraded.
kde/khotkeys-5.26.2-x86_64-1.txz: Upgraded.
kde/kinfocenter-5.26.2-x86_64-1.txz: Upgraded.
kde/kmenuedit-5.26.2-x86_64-1.txz: Upgraded.
kde/kpipewire-5.26.2-x86_64-1.txz: Upgraded.
kde/kscreen-5.26.2-x86_64-1.txz: Upgraded.
kde/kscreenlocker-5.26.2-x86_64-1.txz: Upgraded.
kde/ksshaskpass-5.26.2-x86_64-1.txz: Upgraded.
kde/ksystemstats-5.26.2-x86_64-1.txz: Upgraded.
kde/kwallet-pam-5.26.2-x86_64-1.txz: Upgraded.
kde/kwayland-integration-5.26.2-x86_64-1.txz: Upgraded.
kde/kwin-5.26.2.1-x86_64-1.txz: Upgraded.
kde/kwrited-5.26.2-x86_64-1.txz: Upgraded.
kde/layer-shell-qt-5.26.2-x86_64-1.txz: Upgraded.
kde/libkscreen-5.26.2-x86_64-1.txz: Upgraded.
kde/libksysguard-5.26.2-x86_64-1.txz: Upgraded.
kde/milou-5.26.2-x86_64-1.txz: Upgraded.
kde/oxygen-5.26.2-x86_64-1.txz: Upgraded.
kde/oxygen-sounds-5.26.2-x86_64-1.txz: Upgraded.
kde/plasma-browser-integration-5.26.2-x86_64-1.txz: Upgraded.
kde/plasma-desktop-5.26.2-x86_64-1.txz: Upgraded.
kde/plasma-disks-5.26.2-x86_64-1.txz: Upgraded.
kde/plasma-firewall-5.26.2-x86_64-1.txz: Upgraded.
kde/plasma-integration-5.26.2-x86_64-1.txz: Upgraded.
kde/plasma-nm-5.26.2-x86_64-1.txz: Upgraded.
kde/plasma-pa-5.26.2-x86_64-1.txz: Upgraded.
kde/plasma-sdk-5.26.2-x86_64-1.txz: Upgraded.
kde/plasma-systemmonitor-5.26.2-x86_64-1.txz: Upgraded.
kde/plasma-vault-5.26.2-x86_64-1.txz: Upgraded.
kde/plasma-workspace-5.26.2-x86_64-1.txz: Upgraded.
Compiled against icu4c-72.1.
kde/plasma-workspace-wallpapers-5.26.2-x86_64-1.txz: Upgraded.
kde/polkit-kde-agent-1-5.26.2-x86_64-1.txz: Upgraded.
kde/powerdevil-5.26.2-x86_64-1.txz: Upgraded.
kde/qqc2-breeze-style-5.26.2-x86_64-1.txz: Upgraded.
kde/sddm-kcm-5.26.2-x86_64-1.txz: Upgraded.
kde/systemsettings-5.26.2-x86_64-1.txz: Upgraded.
kde/xdg-desktop-portal-kde-5.26.2-x86_64-1.txz: Upgraded.
l/boost-1.80.0-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-72.1.
l/harfbuzz-5.3.1-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-72.1.
l/icu4c-72.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/libical-3.0.16-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-72.1.
l/libqalculate-4.4.0-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-72.1.
l/libvisio-0.1.7-x86_64-10.txz: Rebuilt.
Recompiled against icu4c-72.1.
l/nodejs-19.0.0-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-72.1.
l/qt5-5.15.6_20221026_0402bce0-x86_64-1.txz: Upgraded.
Compiled against icu4c-72.1.
l/qt5-webkit-5.212.0_alpha4-x86_64-10.txz: Rebuilt.
Recompiled against icu4c-72.1.
l/vte-0.68.0-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-72.1.
n/curl-7.86.0-x86_64-1.txz: Upgraded.
This update fixes security issues:
HSTS bypass via IDN.
HTTP proxy double-free.
.netrc parser out-of-bounds access.
POST following PUT confusion.
For more information, see:
https://curl.se/docs/CVE-2022-42916.html
https://curl.se/docs/CVE-2022-42915.html
https://curl.se/docs/CVE-2022-35260.html
https://curl.se/docs/CVE-2022-32221.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42916
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42915
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35260
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32221
(* Security fix *)
n/dovecot-2.3.19.1-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-72.1.
n/php-7.4.32-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-72.1.
n/postfix-3.7.3-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-72.1.
n/samba-4.17.2-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-72.1.
n/tin-2.6.1-x86_64-4.txz: Rebuilt.
Recompiled against icu4c-72.1.
t/texlive-2022.220801-x86_64-3.txz: Rebuilt.
Recompiled against icu4c-72.1.
x/xorg-server-xwayland-22.1.4-x86_64-2.txz: Rebuilt.
[PATCH] xwayland/input: Do not ignore leave events.
Thanks to marav.
xap/mozilla-firefox-106.0.2-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/firefox/106.0.2/releasenotes/
extra/brltty/brltty-6.5-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-72.1.
extra/php80/php80-8.0.24-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-72.1.
extra/php81/php81-8.1.11-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-72.1.
extra/sendmail/sendmail-8.17.1-x86_64-6.txz: Rebuilt.
Recompiled against icu4c-72.1.
extra/sendmail/sendmail-cf-8.17.1-noarch-6.txz: Rebuilt.
20221027023015 | Patrick J Volkerding | 2022-10-27 | 2 | -1/+53 |
* | Sat Oct 22 18:40:34 UTC 2022...d/parallel-20221022-noarch-1.txz: Upgraded.
l/gc-8.2.2-x86_64-1.txz: Upgraded.
x/libXrender-0.9.11-x86_64-1.txz: Upgraded.
x/xfsinfo-1.0.7-x86_64-1.txz: Upgraded.
20221022184034 | Patrick J Volkerding | 2022-10-23 | 2 | -2/+2 |
* | Thu Oct 20 18:39:03 UTC 2022...l/harfbuzz-5.3.1-x86_64-1.txz: Upgraded.
l/qca-2.3.5-x86_64-1.txz: Upgraded.
x/mesa-22.2.2-x86_64-1.txz: Upgraded.
x/xorg-server-xwayland-22.1.4-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-106.0.1-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/firefox/106.0.1/releasenotes/
xap/mozilla-thunderbird-102.4.0-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/102.4.0/releasenotes/
20221020183903 | Patrick J Volkerding | 2022-10-21 | 3 | -99/+8 |
* | Wed Oct 19 20:06:33 UTC 2022...a/aaa_libraries-15.1-x86_64-11.txz: Rebuilt.
Upgraded: libcap.so.2.66, liblzma.so.5.2.7, libpopt.so.0.0.2,
libexpat.so.1.8.9, libglib-2.0.so.0.7200.4, libgmodule-2.0.so.0.7200.4,
libgobject-2.0.so.0.7200.4, libgthread-2.0.so.0.7200.4, libhistory.so.8.2,
libreadline.so.8.2.
Added: libunistring.so.2.1.0, libunistring.so.5.0.0.
Removed: libffi.so.7.1.0.
a/gettext-0.21.1-x86_64-2.txz: Rebuilt.
ap/lsof-4.96.4-x86_64-1.txz: Upgraded.
ap/man-pages-6.01-noarch-1.txz: Upgraded.
d/clisp-2.50_20220927_acb1266ee-x86_64-1.txz: Upgraded.
Compiled against libunistring-1.1.
d/gettext-tools-0.21.1-x86_64-2.txz: Rebuilt.
Recompiled against libunistring-1.1.
d/guile-3.0.8-x86_64-3.txz: Rebuilt.
Recompiled against libunistring-1.1.
kde/kguiaddons-5.99.0-x86_64-2.txz: Rebuilt.
[PATCH] systemclipboard: Don't signal data source cancellation.
Thanks to marav.
l/libidn2-2.3.3-x86_64-2.txz: Rebuilt.
l/libpsl-0.21.1-x86_64-5.txz: Rebuilt.
Recompiled against libunistring-1.1.
l/libunistring-1.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
n/bind-9.18.8-x86_64-1.txz: Upgraded.
n/gnutls-3.7.8-x86_64-2.txz: Rebuilt.
Recompiled against libunistring-1.1.
n/samba-4.17.1-x86_64-1.txz: Upgraded.
This update fixes the following security issue:
Bad password count not incremented atomically.
For more information, see:
https://bugzilla.samba.org/show_bug.cgi?id=14611
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20251
(* Security fix *)
n/wget-1.21.3-x86_64-2.txz: Rebuilt.
Recompiled against libunistring-1.1.
x/imake-1.0.9-x86_64-1.txz: Upgraded.
x/xcb-util-errors-1.0.1-x86_64-1.txz: Upgraded.
x/xcb-util-image-0.4.1-x86_64-1.txz: Upgraded.
x/xcb-util-keysyms-0.4.1-x86_64-1.txz: Upgraded.
x/xcb-util-renderutil-0.3.10-x86_64-1.txz: Upgraded.
x/xcb-util-wm-0.4.2-x86_64-1.txz: Upgraded.
| Patrick J Volkerding | 2022-10-20 | 6 | -6/+6 |
* | Tue Oct 18 20:29:54 UTC 2022...ap/vim-9.0.0790-x86_64-1.txz: Upgraded.
d/ccache-4.7-x86_64-1.txz: Upgraded.
d/git-2.38.1-x86_64-1.txz: Upgraded.
This release fixes two security issues:
* CVE-2022-39253:
When relying on the `--local` clone optimization, Git dereferences
symbolic links in the source repository before creating hardlinks
(or copies) of the dereferenced link in the destination repository.
This can lead to surprising behavior where arbitrary files are
present in a repository's `$GIT_DIR` when cloning from a malicious
repository.
Git will no longer dereference symbolic links via the `--local`
clone mechanism, and will instead refuse to clone repositories that
have symbolic links present in the `$GIT_DIR/objects` directory.
Additionally, the value of `protocol.file.allow` is changed to be
"user" by default.
* CVE-2022-39260:
An overly-long command string given to `git shell` can result in
overflow in `split_cmdline()`, leading to arbitrary heap writes and
remote code execution when `git shell` is exposed and the directory
`$HOME/git-shell-commands` exists.
`git shell` is taught to refuse interactive commands that are
longer than 4MiB in size. `split_cmdline()` is hardened to reject
inputs larger than 2GiB.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39253
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39260
(* Security fix *)
kde/bluedevil-5.26.1-x86_64-1.txz: Upgraded.
kde/breeze-5.26.1-x86_64-1.txz: Upgraded.
kde/breeze-grub-5.26.1-x86_64-1.txz: Upgraded.
kde/breeze-gtk-5.26.1-x86_64-1.txz: Upgraded.
kde/drkonqi-5.26.1-x86_64-1.txz: Upgraded.
kde/kactivitymanagerd-5.26.1-x86_64-1.txz: Upgraded.
kde/kde-cli-tools-5.26.1-x86_64-1.txz: Upgraded.
kde/kde-gtk-config-5.26.1-x86_64-1.txz: Upgraded.
kde/kdecoration-5.26.1-x86_64-1.txz: Upgraded.
kde/kdeplasma-addons-5.26.1-x86_64-1.txz: Upgraded.
kde/kgamma5-5.26.1-x86_64-1.txz: Upgraded.
kde/khotkeys-5.26.1-x86_64-1.txz: Upgraded.
kde/kinfocenter-5.26.1-x86_64-1.txz: Upgraded.
kde/kmenuedit-5.26.1-x86_64-1.txz: Upgraded.
kde/kpipewire-5.26.1-x86_64-1.txz: Upgraded.
kde/kscreen-5.26.1-x86_64-1.txz: Upgraded.
kde/kscreenlocker-5.26.1-x86_64-1.txz: Upgraded.
kde/ksshaskpass-5.26.1-x86_64-1.txz: Upgraded.
kde/ksystemstats-5.26.1-x86_64-1.txz: Upgraded.
kde/kwallet-pam-5.26.1-x86_64-1.txz: Upgraded.
kde/kwayland-integration-5.26.1-x86_64-1.txz: Upgraded.
kde/kwin-5.26.1-x86_64-1.txz: Upgraded.
kde/kwrited-5.26.1-x86_64-1.txz: Upgraded.
kde/layer-shell-qt-5.26.1-x86_64-1.txz: Upgraded.
kde/libkscreen-5.26.1-x86_64-1.txz: Upgraded.
kde/libksysguard-5.26.1-x86_64-1.txz: Upgraded.
kde/milou-5.26.1-x86_64-1.txz: Upgraded.
kde/oxygen-5.26.1-x86_64-1.txz: Upgraded.
kde/oxygen-sounds-5.26.1-x86_64-1.txz: Upgraded.
kde/plasma-browser-integration-5.26.1-x86_64-1.txz: Upgraded.
kde/plasma-desktop-5.26.1-x86_64-1.txz: Upgraded.
kde/plasma-disks-5.26.1-x86_64-1.txz: Upgraded.
kde/plasma-firewall-5.26.1-x86_64-1.txz: Upgraded.
kde/plasma-integration-5.26.1-x86_64-1.txz: Upgraded.
kde/plasma-nm-5.26.1-x86_64-1.txz: Upgraded.
kde/plasma-pa-5.26.1-x86_64-1.txz: Upgraded.
kde/plasma-sdk-5.26.1-x86_64-1.txz: Upgraded.
kde/plasma-systemmonitor-5.26.1-x86_64-1.txz: Upgraded.
kde/plasma-vault-5.26.1-x86_64-1.txz: Upgraded.
kde/plasma-workspace-5.26.1-x86_64-1.txz: Upgraded.
kde/plasma-workspace-wallpapers-5.26.1-x86_64-1.txz: Upgraded.
kde/polkit-kde-agent-1-5.26.1-x86_64-1.txz: Upgraded.
kde/powerdevil-5.26.1-x86_64-1.txz: Upgraded.
kde/qqc2-breeze-style-5.26.1-x86_64-1.txz: Upgraded.
kde/sddm-kcm-5.26.1-x86_64-1.txz: Upgraded.
kde/systemsettings-5.26.1-x86_64-1.txz: Upgraded.
kde/xdg-desktop-portal-kde-5.26.1-x86_64-1.txz: Upgraded.
l/libical-3.0.16-x86_64-1.txz: Upgraded.
l/nodejs-19.0.0-x86_64-1.txz: Upgraded.
n/NetworkManager-1.40.2-x86_64-1.txz: Upgraded.
n/whois-5.5.14-x86_64-1.txz: Upgraded.
x/libXmu-1.1.4-x86_64-1.txz: Upgraded.
x/libXpresent-1.0.1-x86_64-1.txz: Upgraded.
x/libpciaccess-0.17-x86_64-1.txz: Upgraded.
x/libxkbfile-1.1.1-x86_64-1.txz: Upgraded.
x/libxshmfence-1.3.1-x86_64-1.txz: Upgraded.
x/pixman-0.42.0-x86_64-1.txz: Upgraded.
x/xcb-util-cursor-0.1.4-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-106.0-x86_64-1.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/106.0/releasenotes/
https://www.mozilla.org/security/advisories/mfsa2022-44/
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42927
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42928
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42929
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42930
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42931
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42932
(* Security fix *)
xap/vim-gvim-9.0.0790-x86_64-1.txz: Upgraded.
20221018202954 | Patrick J Volkerding | 2022-10-19 | 7 | -7/+7 |
* | Mon Oct 17 19:31:45 UTC 2022...l/libqalculate-4.4.0-x86_64-1.txz: Upgraded.
l/netpbm-11.00.01-x86_64-1.txz: Upgraded.
x/xorg-server-21.1.4-x86_64-2.txz: Rebuilt.
xkb: proof GetCountedString against request length attacks.
xkb: fix some possible memleaks in XkbGetKbdByName.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3550
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3551
(* Security fix *)
x/xorg-server-xephyr-21.1.4-x86_64-2.txz: Rebuilt.
x/xorg-server-xnest-21.1.4-x86_64-2.txz: Rebuilt.
x/xorg-server-xvfb-21.1.4-x86_64-2.txz: Rebuilt.
x/xorg-server-xwayland-22.1.3-x86_64-2.txz: Rebuilt.
xkb: proof GetCountedString against request length attacks.
xkb: fix some possible memleaks in XkbGetKbdByName.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3550
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3551
(* Security fix *)
xap/blueman-2.3.4-x86_64-1.txz: Upgraded.
20221017193145 | Patrick J Volkerding | 2022-10-18 | 8 | -39/+198 |
* | Sat Oct 15 20:28:34 UTC 2022...a/kernel-firmware-20221013_49fccf6-noarch-1.txz: Upgraded.
a/kernel-generic-5.19.16-x86_64-1.txz: Upgraded.
a/kernel-huge-5.19.16-x86_64-1.txz: Upgraded.
a/kernel-modules-5.19.16-x86_64-1.txz: Upgraded.
ap/man-db-2.11.0-x86_64-1.txz: Upgraded.
ap/man-pages-6.00-noarch-1.txz: Upgraded.
d/kernel-headers-5.19.16-x86-1.txz: Upgraded.
k/kernel-source-5.19.16-noarch-1.txz: Upgraded.
l/libedit-20221009_3.1-x86_64-1.txz: Upgraded.
l/mozilla-nss-3.84-x86_64-1.txz: Upgraded.
l/nodejs-18.11.0-x86_64-1.txz: Upgraded.
l/zlib-1.2.13-x86_64-1.txz: Upgraded.
Fixed a bug when getting a gzip header extra field with inflateGetHeader().
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37434
(* Security fix *)
n/fetchmail-6.4.34-x86_64-1.txz: Upgraded.
n/gnupg2-2.2.40-x86_64-1.txz: Upgraded.
x/bdftopcf-1.1.1-x86_64-1.txz: Upgraded.
x/libwacom-2.5.0-x86_64-1.txz: Upgraded.
x/smproxy-1.0.7-x86_64-1.txz: Upgraded.
x/viewres-1.0.7-x86_64-1.txz: Upgraded.
x/xditview-1.0.6-x86_64-1.txz: Upgraded.
x/xf86-input-vmmouse-13.2.0-x86_64-1.txz: Added.
x/xgc-1.0.6-x86_64-1.txz: Upgraded.
x/xkbprint-1.0.6-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20221015202834 | Patrick J Volkerding | 2022-10-16 | 12 | -28/+79 |
* | Mon Oct 10 18:45:33 UTC 2022...ap/diffstat-1.65-x86_64-1.txz: Upgraded.
ap/moc-2.6_alpha3-x86_64-1.txz: Upgraded.
Compiled against ffmpeg-5.1.2.
kde/attica-5.99.0-x86_64-1.txz: Upgraded.
kde/baloo-5.99.0-x86_64-1.txz: Upgraded.
kde/bluez-qt-5.99.0-x86_64-1.txz: Upgraded.
kde/breeze-icons-5.99.0-noarch-1.txz: Upgraded.
kde/digikam-7.8.0-x86_64-3.txz: Rebuilt.
Recompiled against ffmpeg-5.1.2.
kde/extra-cmake-modules-5.99.0-x86_64-1.txz: Upgraded.
kde/ffmpegthumbs-22.08.1-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-5.1.2.
kde/frameworkintegration-5.99.0-x86_64-1.txz: Upgraded.
kde/kactivities-5.99.0-x86_64-1.txz: Upgraded.
kde/kactivities-stats-5.99.0-x86_64-1.txz: Upgraded.
kde/kapidox-5.99.0-x86_64-1.txz: Upgraded.
kde/karchive-5.99.0-x86_64-1.txz: Upgraded.
kde/kauth-5.99.0-x86_64-1.txz: Upgraded.
kde/kbookmarks-5.99.0-x86_64-1.txz: Upgraded.
kde/kcalendarcore-5.99.0-x86_64-1.txz: Upgraded.
kde/kcmutils-5.99.0-x86_64-1.txz: Upgraded.
kde/kcodecs-5.99.0-x86_64-1.txz: Upgraded.
kde/kcompletion-5.99.0-x86_64-1.txz: Upgraded.
kde/kconfig-5.99.0-x86_64-1.txz: Upgraded.
kde/kconfigwidgets-5.99.0-x86_64-1.txz: Upgraded.
kde/kcontacts-5.99.0-x86_64-1.txz: Upgraded.
kde/kcoreaddons-5.99.0-x86_64-1.txz: Upgraded.
kde/kcrash-5.99.0-x86_64-1.txz: Upgraded.
kde/kdav-5.99.0-x86_64-1.txz: Upgraded.
kde/kdbusaddons-5.99.0-x86_64-1.txz: Upgraded.
kde/kdeclarative-5.99.0-x86_64-1.txz: Upgraded.
kde/kded-5.99.0-x86_64-1.txz: Upgraded.
kde/kdelibs4support-5.99.0-x86_64-1.txz: Upgraded.
kde/kdesignerplugin-5.99.0-x86_64-1.txz: Upgraded.
kde/kdesu-5.99.0-x86_64-1.txz: Upgraded.
kde/kdewebkit-5.99.0-x86_64-1.txz: Upgraded.
kde/kdnssd-5.99.0-x86_64-1.txz: Upgraded.
kde/kdoctools-5.99.0-x86_64-1.txz: Upgraded.
kde/kemoticons-5.99.0-x86_64-1.txz: Upgraded.
kde/kfilemetadata-5.99.0-x86_64-1.txz: Upgraded.
Compiled against ffmpeg-5.1.2.
kde/kglobalaccel-5.99.0-x86_64-1.txz: Upgraded.
kde/kguiaddons-5.99.0-x86_64-1.txz: Upgraded.
kde/kholidays-5.99.0-x86_64-1.txz: Upgraded.
kde/khtml-5.99.0-x86_64-1.txz: Upgraded.
kde/ki18n-5.99.0-x86_64-1.txz: Upgraded.
kde/kiconthemes-5.99.0-x86_64-1.txz: Upgraded.
kde/kidletime-5.99.0-x86_64-1.txz: Upgraded.
kde/kimageformats-5.99.0-x86_64-1.txz: Upgraded.
kde/kinit-5.99.0-x86_64-1.txz: Upgraded.
kde/kio-5.99.0-x86_64-1.txz: Upgraded.
kde/kirigami2-5.99.0-x86_64-1.txz: Upgraded.
kde/kitemmodels-5.99.0-x86_64-1.txz: Upgraded.
kde/kitemviews-5.99.0-x86_64-1.txz: Upgraded.
kde/kjobwidgets-5.99.0-x86_64-1.txz: Upgraded.
kde/kjs-5.99.0-x86_64-1.txz: Upgraded.
kde/kjsembed-5.99.0-x86_64-1.txz: Upgraded.
kde/kmediaplayer-5.99.0-x86_64-1.txz: Upgraded.
kde/knewstuff-5.99.0-x86_64-1.txz: Upgraded.
kde/knotifications-5.99.0-x86_64-1.txz: Upgraded.
kde/knotifyconfig-5.99.0-x86_64-1.txz: Upgraded.
kde/kpackage-5.99.0-x86_64-1.txz: Upgraded.
kde/kparts-5.99.0-x86_64-1.txz: Upgraded.
kde/kpeople-5.99.0-x86_64-1.txz: Upgraded.
kde/kplotting-5.99.0-x86_64-1.txz: Upgraded.
kde/kpty-5.99.0-x86_64-1.txz: Upgraded.
kde/kquickcharts-5.99.0-x86_64-1.txz: Upgraded.
kde/kross-5.99.0-x86_64-1.txz: Upgraded.
kde/krunner-5.99.0-x86_64-1.txz: Upgraded.
kde/kservice-5.99.0-x86_64-1.txz: Upgraded.
kde/ktexteditor-5.99.0-x86_64-1.txz: Upgraded.
kde/ktextwidgets-5.99.0-x86_64-1.txz: Upgraded.
kde/kunitconversion-5.99.0-x86_64-1.txz: Upgraded.
kde/kwallet-5.99.0-x86_64-1.txz: Upgraded.
kde/kwayland-5.99.0-x86_64-1.txz: Upgraded.
kde/kwidgetsaddons-5.99.0-x86_64-1.txz: Upgraded.
kde/kwindowsystem-5.99.0-x86_64-1.txz: Upgraded.
kde/kxmlgui-5.99.0-x86_64-1.txz: Upgraded.
kde/kxmlrpcclient-5.99.0-x86_64-1.txz: Upgraded.
kde/modemmanager-qt-5.99.0-x86_64-1.txz: Upgraded.
kde/networkmanager-qt-5.99.0-x86_64-1.txz: Upgraded.
kde/oxygen-icons5-5.99.0-noarch-1.txz: Upgraded.
kde/plasma-framework-5.99.0-x86_64-1.txz: Upgraded.
kde/prison-5.99.0-x86_64-1.txz: Upgraded.
kde/purpose-5.99.0-x86_64-1.txz: Upgraded.
kde/qqc2-desktop-style-5.99.0-x86_64-1.txz: Upgraded.
kde/solid-5.99.0-x86_64-1.txz: Upgraded.
kde/sonnet-5.99.0-x86_64-1.txz: Upgraded.
kde/syndication-5.99.0-x86_64-1.txz: Upgraded.
kde/syntax-highlighting-5.99.0-x86_64-1.txz: Upgraded.
kde/threadweaver-5.99.0-x86_64-1.txz: Upgraded.
l/QtAV-20220226_fdc613dc-x86_64-1.txz: Upgraded.
Compiled against ffmpeg-5.1.2.
l/alsa-plugins-1.2.7.1-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-5.1.2.
l/ffmpeg-5.1.2-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
Enabled glslang and vulkan. Thanks to Heinz Wiesinger.
l/gegl-0.4.38-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-5.1.2.
l/gst-plugins-libav-1.20.3-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-5.1.2.
l/harfbuzz-5.3.0-x86_64-1.txz: Upgraded.
l/imagemagick-7.1.0_50-x86_64-1.txz: Upgraded.
l/libvncserver-0.9.13-x86_64-4.txz: Rebuilt.
Disabled ffmpeg support (not compatible with ffmpeg5).
l/mlt-7.8.0-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-5.1.2.
l/opencv-4.6.0-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-5.1.2.
l/pcre2-10.40-x86_64-2.txz: Rebuilt.
Moved shared libraries into /lib${LIBDIRSUFFIX}. Thanks to TommyC7.
l/pipewire-0.3.59-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-5.1.2.
l/qt5-5.15.6_20220928_06b700dd-x86_64-1.txz: Upgraded.
Compiled against ffmpeg-5.1.2.
n/libgpg-error-1.46-x86_64-2.txz: Rebuilt.
Rebuilt with --enable-install-gpg-error-config to fix regression building
gpgme. Thanks to nobodino and ponce.
x/libva-utils-2.16.0-x86_64-1.txz: Upgraded.
x/wayland-protocols-1.27-noarch-1.txz: Upgraded.
xap/MPlayer-20221009-x86_64-1.txz: Upgraded.
Compiled against ffmpeg-5.1.2.
xap/audacious-plugins-4.2-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-5.1.2.
xap/ffmpegthumbnailer-2.2.2-x86_64-4.txz: Rebuilt.
Recompiled against ffmpeg-5.1.2.
xap/freerdp-2.8.0-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-5.1.2.
xap/ssr-0.4.4-x86_64-1.txz: Upgraded.
Compiled against ffmpeg-5.1.2.
xap/xine-lib-1.2.12-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-5.1.2.
20221010184533 | Patrick J Volkerding | 2022-10-11 | 1 | -1/+1 |
* | Sat Oct 8 19:23:31 UTC 2022...ap/inxi-3.3.22_1-noarch-1.txz: Upgraded.
n/conntrack-tools-1.4.7-x86_64-1.txz: Upgraded.
n/libgpg-error-1.46-x86_64-1.txz: Upgraded.
n/libksba-1.6.2-x86_64-1.txz: Upgraded.
Detect a possible overflow directly in the TLV parser.
This patch detects possible integer overflows immmediately when creating
the TI object.
Reported-by: ZDI-CAN-18927, ZDI-CAN-18928, ZDI-CAN-18929
(* Security fix *)
n/postfix-3.7.3-x86_64-1.txz: Upgraded.
x/freeglut-3.4.0-x86_64-1.txz: Upgraded.
x/fstobdf-1.0.7-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-105.0.3-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/firefox/105.0.3/releasenotes/
20221008192331 | Patrick J Volkerding | 2022-10-09 | 2 | -11/+20 |
* | Fri Sep 30 17:52:21 UTC 2022...a/dbus-1.14.2-x86_64-1.txz: Upgraded.
ap/powertop-2.15-x86_64-1.txz: Upgraded.
ap/sqlite-3.39.4-x86_64-1.txz: Upgraded.
ap/vim-9.0.0623-x86_64-1.txz: Upgraded.
Fixed use-after-free and stack-based buffer overflow.
Thanks to marav for the heads-up.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-3352
https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-3324
(* Security fix *)
kde/digikam-7.8.0-x86_64-2.txz: Rebuilt.
Recompiled against lensfun-0.3.3.
kde/kstars-3.6.1-x86_64-1.txz: Upgraded.
kde/plasma-wayland-protocols-1.9.0-x86_64-1.txz: Upgraded.
l/lensfun-0.3.3-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/netpbm-11.00.00-x86_64-1.txz: Upgraded.
l/nodejs-18.10.0-x86_64-1.txz: Upgraded.
l/pipewire-0.3.59-x86_64-1.txz: Upgraded.
n/php-7.4.32-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues:
phar wrapper: DOS when using quine gzip file.
Don't mangle HTTP variable names that clash with ones that have a specific
semantic meaning.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31628
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31629
(* Security fix *)
xap/mozilla-thunderbird-102.3.1-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/102.3.1/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39249
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39250
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39251
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39236
(* Security fix *)
xap/seamonkey-2.53.14-x86_64-1.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
https://www.seamonkey-project.org/releases/seamonkey2.53.14
(* Security fix *)
xap/vim-gvim-9.0.0623-x86_64-1.txz: Upgraded.
xap/xsnow-3.5.3-x86_64-1.txz: Upgraded.
extra/php80/php80-8.0.24-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues:
phar wrapper: DOS when using quine gzip file.
Don't mangle HTTP variable names that clash with ones that have a specific
semantic meaning.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31628
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31629
(* Security fix *)
extra/php81/php81-8.1.11-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues:
phar wrapper: DOS when using quine gzip file.
Don't mangle HTTP variable names that clash with ones that have a specific
semantic meaning.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31628
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31629
(* Security fix *)
20220930175221 | Patrick J Volkerding | 2022-10-01 | 1 | -0/+2 |
* | Tue Sep 27 21:19:17 UTC 2022...a/kernel-firmware-20220927_0958301-noarch-1.txz: Upgraded.
n/pinentry-1.2.1-x86_64-2.txz: Rebuilt.
Build pinentry-tty. Thanks to pek.
Build pinentry-emacs.
x/fcitx5-gtk-5.0.19-x86_64-1.txz: Upgraded.
x/libXtst-1.2.4-x86_64-1.txz: Upgraded.
x/libXxf86vm-1.1.5-x86_64-1.txz: Upgraded.
x/mesa-22.2.0-x86_64-1.txz: Upgraded.
20220927211917 | Patrick J Volkerding | 2022-09-28 | 2 | -2/+2 |
* | Wed Sep 14 04:53:53 UTC 2022...a/btrfs-progs-5.19.1-x86_64-1.txz: Upgraded.
a/file-5.43-x86_64-1.txz: Upgraded.
a/kernel-firmware-20220913_f09bebf-noarch-1.txz: Upgraded.
d/cmake-3.24.2-x86_64-1.txz: Upgraded.
kde/krita-5.1.1-x86_64-1.txz: Upgraded.
l/kdsoap-2.1.0-x86_64-1.txz: Upgraded.
n/krb5-1.20-x86_64-2.txz: Rebuilt.
n/samba-4.17.0-x86_64-1.txz: Upgraded.
x/libXp-1.0.4-x86_64-1.txz: Upgraded.
20220914045353 | Patrick J Volkerding | 2022-09-14 | 1 | -1/+1 |
* | Sat Sep 10 18:29:38 UTC 2022...n/ModemManager-1.18.12-x86_64-1.txz: Upgraded.
n/rsync-3.2.6-x86_64-1.txz: Upgraded.
x/fslsfonts-1.0.6-x86_64-1.txz: Upgraded.
x/ibus-m17n-1.4.13-x86_64-1.txz: Upgraded.
x/ibus-table-1.16.12-x86_64-1.txz: Upgraded.
x/libXft-2.3.6-x86_64-1.txz: Upgraded.
xap/libnma-1.10.2-x86_64-1.txz: Upgraded.
xap/xscreensaver-6.05-x86_64-1.txz: Upgraded.
20220910182938 | Patrick J Volkerding | 2022-09-11 | 1 | -1/+1 |
* | Tue Sep 6 20:21:24 UTC 2022...a/cracklib-2.9.8-x86_64-1.txz: Upgraded.
a/gawk-5.2.0-x86_64-1.txz: Upgraded.
a/grep-3.8-x86_64-1.txz: Upgraded.
a/kernel-firmware-20220902_2f2f018-noarch-1.txz: Upgraded.
a/kernel-generic-5.19.7-x86_64-1.txz: Upgraded.
a/kernel-huge-5.19.7-x86_64-1.txz: Upgraded.
a/kernel-modules-5.19.7-x86_64-1.txz: Upgraded.
a/pcmciautils-018-x86_64-5.txz: Rebuilt.
rc.pcmcia: change fgrep to grep -F.
a/pkgtools-15.1-noarch-1.txz: Upgraded.
removepkg: change fgrep to grep -F.
a/sysvinit-functions-8.53-x86_64-6.txz: Rebuilt.
/etc/rc.d/init.d/functions: change egrep to grep -E.
a/sysvinit-scripts-15.1-noarch-2.txz: Rebuilt.
rc.cpufreq: command-line choice should take priority
over /etc/default/cpufreq. Thanks to af7567.
rc.6: change egrep to grep -E.
ap/sqlite-3.39.3-x86_64-1.txz: Upgraded.
ap/vim-9.0.0396-x86_64-1.txz: Upgraded.
Fixed use after free.
Thanks to marav for the heads-up.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3099
(* Security fix *)
d/autoconf-2.71-noarch-2.txz: Rebuilt.
doinst.sh: change fgrep to grep -F.
d/autoconf-archive-2022.09.03-noarch-1.txz: Upgraded.
d/automake-1.16.5-noarch-2.txz: Rebuilt.
doinst.sh: change fgrep to grep -F.
d/kernel-headers-5.19.7-x86-1.txz: Upgraded.
d/libtool-2.4.7-x86_64-4.txz: Rebuilt.
doinst.sh: change fgrep to grep -F.
d/meson-0.63.2-x86_64-1.txz: Upgraded.
d/vala-0.56.3-x86_64-1.txz: Upgraded.
k/kernel-source-5.19.7-noarch-1.txz: Upgraded.
kde/bluedevil-5.25.5-x86_64-1.txz: Upgraded.
kde/breeze-5.25.5-x86_64-1.txz: Upgraded.
kde/breeze-grub-5.25.5-x86_64-1.txz: Upgraded.
kde/breeze-gtk-5.25.5-x86_64-1.txz: Upgraded.
kde/drkonqi-5.25.5-x86_64-1.txz: Upgraded.
kde/kactivitymanagerd-5.25.5-x86_64-1.txz: Upgraded.
kde/kde-cli-tools-5.25.5-x86_64-1.txz: Upgraded.
kde/kde-gtk-config-5.25.5-x86_64-1.txz: Upgraded.
kde/kdecoration-5.25.5-x86_64-1.txz: Upgraded.
kde/kdeplasma-addons-5.25.5-x86_64-1.txz: Upgraded.
kde/kgamma5-5.25.5-x86_64-1.txz: Upgraded.
kde/khotkeys-5.25.5-x86_64-1.txz: Upgraded.
kde/kinfocenter-5.25.5-x86_64-1.txz: Upgraded.
kde/kmenuedit-5.25.5-x86_64-1.txz: Upgraded.
kde/kscreen-5.25.5-x86_64-1.txz: Upgraded.
kde/kscreenlocker-5.25.5-x86_64-1.txz: Upgraded.
kde/ksshaskpass-5.25.5-x86_64-1.txz: Upgraded.
kde/ksystemstats-5.25.5-x86_64-1.txz: Upgraded.
kde/kwallet-pam-5.25.5-x86_64-1.txz: Upgraded.
kde/kwayland-integration-5.25.5-x86_64-1.txz: Upgraded.
kde/kwin-5.25.5-x86_64-1.txz: Upgraded.
kde/kwrited-5.25.5-x86_64-1.txz: Upgraded.
kde/layer-shell-qt-5.25.5-x86_64-1.txz: Upgraded.
kde/libkscreen-5.25.5-x86_64-1.txz: Upgraded.
kde/libksysguard-5.25.5-x86_64-1.txz: Upgraded.
kde/milou-5.25.5-x86_64-1.txz: Upgraded.
kde/oxygen-5.25.5-x86_64-1.txz: Upgraded.
kde/oxygen-sounds-5.25.5-x86_64-1.txz: Upgraded.
kde/plasma-browser-integration-5.25.5-x86_64-1.txz: Upgraded.
kde/plasma-desktop-5.25.5-x86_64-1.txz: Upgraded.
kde/plasma-disks-5.25.5-x86_64-1.txz: Upgraded.
kde/plasma-firewall-5.25.5-x86_64-1.txz: Upgraded.
kde/plasma-integration-5.25.5-x86_64-1.txz: Upgraded.
kde/plasma-nm-5.25.5-x86_64-1.txz: Upgraded.
kde/plasma-pa-5.25.5-x86_64-1.txz: Upgraded.
kde/plasma-sdk-5.25.5-x86_64-1.txz: Upgraded.
kde/plasma-systemmonitor-5.25.5-x86_64-1.txz: Upgraded.
kde/plasma-vault-5.25.5-x86_64-1.txz: Upgraded.
kde/plasma-wayland-protocols-1.8.0-x86_64-1.txz: Upgraded.
kde/plasma-workspace-5.25.5-x86_64-1.txz: Upgraded.
kde/plasma-workspace-wallpapers-5.25.5-x86_64-1.txz: Upgraded.
kde/polkit-kde-agent-1-5.25.5-x86_64-1.txz: Upgraded.
kde/powerdevil-5.25.5-x86_64-1.txz: Upgraded.
kde/qqc2-breeze-style-5.25.5-x86_64-1.txz: Upgraded.
kde/sddm-kcm-5.25.5-x86_64-1.txz: Upgraded.
kde/systemsettings-5.25.5-x86_64-1.txz: Upgraded.
kde/xdg-desktop-portal-kde-5.25.5-x86_64-1.txz: Upgraded.
l/fluidsynth-2.2.9-x86_64-1.txz: Upgraded.
l/libsoup3-3.0.8-x86_64-1.txz: Upgraded.
l/libssh-0.10.3-x86_64-1.txz: Upgraded.
l/neon-0.32.3-x86_64-1.txz: Upgraded.
l/slang-2.3.3-x86_64-1.txz: Upgraded.
n/nmap-7.93-x86_64-1.txz: Upgraded.
x/ibus-m17n-1.4.11-x86_64-1.txz: Upgraded.
x/libXft-2.3.5-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-104.0.2-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/firefox/104.0.2/releasenotes/
xap/vim-gvim-9.0.0396-x86_64-1.txz: Upgraded.
xfce/xfce4-pulseaudio-plugin-0.4.4-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20220906202124 | Patrick J Volkerding | 2022-09-07 | 8 | -8/+8 |
* | Thu Sep 1 03:08:39 UTC 2022...a/aaa_glibc-solibs-2.36-x86_64-3.txz: Rebuilt.
a/kernel-generic-5.19.6-x86_64-1.txz: Upgraded.
a/kernel-huge-5.19.6-x86_64-1.txz: Upgraded.
a/kernel-modules-5.19.6-x86_64-1.txz: Upgraded.
d/git-2.37.3-x86_64-1.txz: Upgraded.
d/kernel-headers-5.19.6-x86-1.txz: Upgraded.
d/ninja-1.11.1-x86_64-1.txz: Upgraded.
k/kernel-source-5.19.6-noarch-1.txz: Upgraded.
kde/krename-5.0.2-x86_64-1.txz: Upgraded.
l/glibc-2.36-x86_64-3.txz: Rebuilt.
Applied all post-release patches from the 2.36 branch.
This fixes a security issue introduced in glibc-2.36: When the syslog
function is passed a crafted input string larger than 1024 bytes, it
reads uninitialized memory from the heap and prints it to the target log
file, potentially revealing a portion of the contents of the heap.
Thanks to marav.
The patches also help with several packages failing to build from source.
Thanks to nobodino.
l/glibc-i18n-2.36-x86_64-3.txz: Rebuilt.
l/glibc-profile-2.36-x86_64-3.txz: Rebuilt.
l/libssh-0.10.1-x86_64-1.txz: Upgraded.
n/curl-7.85.0-x86_64-1.txz: Upgraded.
This update fixes a security issue:
control code in cookie denial of service.
For more information, see:
https://curl.se/docs/CVE-2022-35252.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35252
(* Security fix *)
x/fcitx5-gtk-5.0.18-x86_64-1.txz: Upgraded.
x/fcitx5-qt-5.0.15-x86_64-1.txz: Upgraded.
x/ico-1.0.6-x86_64-1.txz: Upgraded.
x/libdrm-2.4.113-x86_64-1.txz: Upgraded.
x/libfontenc-1.1.6-x86_64-1.txz: Upgraded.
x/oclock-1.0.5-x86_64-1.txz: Upgraded.
x/showfont-1.0.6-x86_64-1.txz: Upgraded.
x/xmh-1.0.4-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20220901030839 | Patrick J Volkerding | 2022-09-01 | 4 | -4/+4 |
* | Sat Aug 27 18:13:36 UTC 2022...ap/ksh93-1.0_20220825_b16c91f0-x86_64-1.txz: Upgraded.
d/doxygen-1.9.5-x86_64-1.txz: Upgraded.
d/python-pip-22.2.2-x86_64-1.txz: Upgraded.
l/librsvg-2.54.5-x86_64-1.txz: Upgraded.
l/libssh-0.10.0-x86_64-1.txz: Upgraded.
n/NetworkManager-1.40.0-x86_64-1.txz: Upgraded.
n/fetchmail-6.4.33-x86_64-1.txz: Upgraded.
x/libFS-1.0.9-x86_64-1.txz: Upgraded.
x/libXau-1.0.10-x86_64-1.txz: Upgraded.
x/libXaw3d-1.6.4-x86_64-1.txz: Upgraded.
x/libXfont2-2.0.6-x86_64-1.txz: Upgraded.
x/libfontenc-1.1.5-x86_64-1.txz: Upgraded.
xfce/xfce4-terminal-1.0.4-x86_64-1.txz: Upgraded.
20220827181336 | Patrick J Volkerding | 2022-08-28 | 4 | -4/+4 |
* | Fri Aug 26 04:02:20 UTC 2022...a/kernel-generic-5.19.4-x86_64-1.txz: Upgraded.
a/kernel-huge-5.19.4-x86_64-1.txz: Upgraded.
a/kernel-modules-5.19.4-x86_64-1.txz: Upgraded.
a/mcelog-189-x86_64-1.txz: Upgraded.
ap/cups-filters-1.28.16-x86_64-1.txz: Upgraded.
ap/vim-9.0.0270-x86_64-1.txz: Upgraded.
Fixed use after free and null pointer dereference.
Thanks to marav for the heads-up.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2946
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2923
(* Security fix *)
d/kernel-headers-5.19.4-x86-1.txz: Upgraded.
d/pahole-1.24-x86_64-1.txz: Upgraded.
k/kernel-source-5.19.4-noarch-1.txz: Upgraded.
l/babl-0.1.96-x86_64-1.txz: Upgraded.
l/libtasn1-4.19.0-x86_64-1.txz: Upgraded.
l/nodejs-18.8.0-x86_64-1.txz: Upgraded.
n/gnupg2-2.2.37-x86_64-1.txz: Upgraded.
n/pinentry-1.2.1-x86_64-1.txz: Upgraded.
x/xisxwayland-2-x86_64-1.txz: Upgraded.
xap/vim-gvim-9.0.0270-x86_64-1.txz: Upgraded.
xap/xsnow-3.5.2-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20220826040220 | Patrick J Volkerding | 2022-08-26 | 1 | -1/+1 |
* | Tue Aug 23 19:27:56 UTC 2022...ap/inxi-3.3.21_1-noarch-1.txz: Upgraded.
d/ccache-4.6.2-x86_64-1.txz: Upgraded.
d/parallel-20220822-noarch-1.txz: Upgraded.
kde/kleopatra-22.08.0-x86_64-2.txz: Rebuilt.
Patched to build with gpgme-1.18.0.
l/babl-0.1.94-x86_64-1.txz: Upgraded.
l/hunspell-1.7.1-x86_64-1.txz: Upgraded.
Fixed invalid read operation in SuggestMgr::leftcommonsubstring
in suggestmgr.cxx.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-16707
(* Security fix *)
l/libqalculate-4.3.0-x86_64-1.txz: Upgraded.
n/ethtool-5.19-x86_64-1.txz: Upgraded.
n/gpgme-1.18.0-x86_64-1.txz: Upgraded.
n/nghttp2-1.49.0-x86_64-1.txz: Upgraded.
x/ibus-1.5.27-x86_64-1.txz: Upgraded.
x/libglvnd-1.5.0-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-104.0-x86_64-1.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/104.0/releasenotes/
https://www.mozilla.org/security/advisories/mfsa2022-33/
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38472
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38473
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38474
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38475
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38477
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38478
(* Security fix *)
xap/mozilla-thunderbird-102.2.0-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/102.2.0/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2022-36/
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38472
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38473
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38476
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38477
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38478
(* Security fix *)
extra/sendmail/sendmail-8.17.1-x86_64-4.txz: Rebuilt.
In recent versions of glibc, USE_INET6 has been removed which caused sendmail
to reject mail from IPv6 addresses. Adding -DHAS_GETHOSTBYNNAME2=1 to the
site.config.m4 allows the reverse lookups to work again fixing this issue.
Thanks to talo.
extra/sendmail/sendmail-cf-8.17.1-noarch-4.txz: Rebuilt.
20220823192756 | Patrick J Volkerding | 2022-08-24 | 1 | -1/+1 |
* | Sat Aug 20 20:04:15 UTC 2022...ap/vim-9.0.0231-x86_64-1.txz: Upgraded.
Fix use after free.
Thanks to marav for the heads-up.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2889
(* Security fix *)
l/SDL2-2.24.0-x86_64-1.txz: Upgraded.
l/SDL2_image-2.6.2-x86_64-1.txz: Upgraded.
l/SDL2_mixer-2.6.2-x86_64-1.txz: Upgraded.
l/SDL2_net-2.2.0-x86_64-1.txz: Upgraded.
l/SDL2_ttf-2.20.1-x86_64-1.txz: Upgraded.
l/gmime-3.2.13-x86_64-1.txz: Upgraded.
l/gtk+3-3.24.34-x86_64-1.txz: Upgraded.
l/gtk4-4.6.7-x86_64-1.txz: Upgraded.
l/libxslt-1.1.36-x86_64-1.txz: Upgraded.
x/ibus-libpinyin-1.13.0-x86_64-1.txz: Upgraded.
xap/vim-gvim-9.0.0231-x86_64-1.txz: Upgraded.
20220820200415 | Patrick J Volkerding | 2022-08-21 | 1 | -1/+1 |
* | Tue Aug 16 18:51:34 UTC 2022...a/btrfs-progs-5.19-x86_64-1.txz: Upgraded.
a/kernel-firmware-20220815_8413c63-noarch-1.txz: Upgraded.
ap/mariadb-10.6.9-x86_64-1.txz: Upgraded.
This update fixes bugs and several security issues.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32082
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32089
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32081
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-25032
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32091
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32084
(* Security fix *)
l/glade-3.40.0-x86_64-1.txz: Upgraded.
l/lz4-1.9.4-x86_64-1.txz: Upgraded.
20220816185134 | Patrick J Volkerding | 2022-08-17 | 2 | -0/+98 |
* | Mon Aug 15 20:23:47 UTC 2022...a/etc-15.1-x86_64-2.txz: Rebuilt.
Added support for $HOME/.profile.d/*.{csh,sh} scripts.
Thanks to Heinz Wiesinger.
a/mcelog-188-x86_64-1.txz: Upgraded.
kde/fcitx5-configtool-5.0.14-x86_64-1.txz: Added.
Thanks to Heinz Wiesinger.
kde/fcitx5-theme-breeze-2.0.0-noarch-1.txz: Added.
Thanks to Heinz Wiesinger.
kde/kcm-fcitx-0.5.6-x86_64-4.txz: Removed.
l/fmt-9.0.0-x86_64-1.txz: Added.
Thanks to Steven Voges.
l/librsvg-2.54.4-x86_64-2.txz: Rebuilt.
Removed dangling symlink. Thanks to marav.
n/rsync-3.2.5-x86_64-1.txz: Upgraded.
Added some file-list safety checking that helps to ensure that a rogue
sending rsync can't add unrequested top-level names and/or include recursive
names that should have been excluded by the sender. These extra safety
checks only require the receiver rsync to be updated. When dealing with an
untrusted sending host, it is safest to copy into a dedicated destination
directory for the remote content (i.e. don't copy into a destination
directory that contains files that aren't from the remote host unless you
trust the remote host).
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29154
(* Security fix *)
x/anthy-9100h-x86_64-4.txz: Removed.
x/anthy-unicode-1.0.0.20211224-x86_64-1.txz: Added.
Thanks to Heinz Wiesinger.
x/fcitx-4.2.9.8-x86_64-3.txz: Removed.
x/fcitx-anthy-0.2.4-x86_64-1.txz: Removed.
x/fcitx-configtool-0.4.10-x86_64-3.txz: Removed.
x/fcitx-hangul-0.3.1-x86_64-3.txz: Removed.
x/fcitx-kkc-0.1.4-x86_64-3.txz: Removed.
x/fcitx-libpinyin-0.5.4-x86_64-2.txz: Removed.
x/fcitx-m17n-0.2.4-x86_64-3.txz: Removed.
x/fcitx-qt5-1.2.7-x86_64-1.txz: Removed.
x/fcitx-sayura-0.1.2-x86_64-3.txz: Removed.
x/fcitx-table-extra-0.3.8-x86_64-3.txz: Removed.
x/fcitx-table-other-0.2.4-x86_64-3.txz: Removed.
x/fcitx-unikey-0.2.7-x86_64-3.txz: Removed.
x/fcitx5-5.0.18-x86_64-1.txz: Added.
Thanks to Heinz Wiesinger.
x/fcitx5-anthy-5.0.12-x86_64-1.txz: Added.
Thanks to Heinz Wiesinger.
x/fcitx5-chinese-addons-5.0.14-x86_64-1.txz: Added.
Thanks to Heinz Wiesinger.
x/fcitx5-gtk-5.0.17-x86_64-1.txz: Added.
Thanks to Heinz Wiesinger.
x/fcitx5-hangul-5.0.10-x86_64-1.txz: Added.
Thanks to Heinz Wiesinger.
x/fcitx5-kkc-5.0.10-x86_64-1.txz: Added.
Thanks to Heinz Wiesinger.
x/fcitx5-m17n-5.0.10-x86_64-1.txz: Added.
Thanks to Heinz Wiesinger.
x/fcitx5-qt-5.0.14-x86_64-1.txz: Added.
Thanks to Heinz Wiesinger.
x/fcitx5-sayura-5.0.8-x86_64-1.txz: Added.
Thanks to Heinz Wiesinger.
x/fcitx5-table-extra-5.0.11-x86_64-1.txz: Added.
Thanks to Heinz Wiesinger.
x/fcitx5-table-other-5.0.10-x86_64-1.txz: Added.
Thanks to Heinz Wiesinger.
x/fcitx5-unikey-5.0.11-x86_64-1.txz: Added.
Thanks to Heinz Wiesinger.
x/ibus-1.5.26-x86_64-2.txz: Rebuilt.
Use correct path to kimpanel in ibus-autostart.
Thanks to Lockywolf.
x/ibus-anthy-1.5.14-x86_64-2.txz: Rebuilt.
Recompiled against anthy-unicode-1.0.0.20211224.
Thanks to Heinz Wiesinger.
x/libime-1.0.13-x86_64-1.txz: Added.
Thanks to Heinz Wiesinger.
x/m17n-lib-1.8.0-x86_64-5.txz: Rebuilt.
Rebuilt to drop the dependency on anthy-9100h.
Thanks to Heinz Wiesinger.
x/skkdic-20210919-noarch-1.txz: Upgraded.
Thanks to Heinz Wiesinger.
x/x11-skel-7.7-x86_64-9.txz: Rebuilt.
Added imconfig script for selecting the input method.
Thanks to Heinz Wiesinger.
x/xcb-imdkit-1.0.3-x86_64-1.txz: Added.
Thanks to Heinz Wiesinger.
20220815202347 | Patrick J Volkerding | 2022-08-16 | 73 | -921/+1324 |
* | Sun Aug 14 18:32:51 UTC 2022...a/sysklogd-2.4.4-x86_64-1.txz: Upgraded.
kde/attica-5.97.0-x86_64-1.txz: Upgraded.
kde/baloo-5.97.0-x86_64-1.txz: Upgraded.
kde/bluez-qt-5.97.0-x86_64-1.txz: Upgraded.
kde/breeze-icons-5.97.0-noarch-1.txz: Upgraded.
kde/extra-cmake-modules-5.97.0-x86_64-1.txz: Upgraded.
kde/frameworkintegration-5.97.0-x86_64-1.txz: Upgraded.
kde/kactivities-5.97.0-x86_64-1.txz: Upgraded.
kde/kactivities-stats-5.97.0-x86_64-1.txz: Upgraded.
kde/kapidox-5.97.0-x86_64-1.txz: Upgraded.
kde/karchive-5.97.0-x86_64-1.txz: Upgraded.
kde/kauth-5.97.0-x86_64-1.txz: Upgraded.
kde/kbookmarks-5.97.0-x86_64-1.txz: Upgraded.
kde/kcalendarcore-5.97.0-x86_64-1.txz: Upgraded.
kde/kcmutils-5.97.0-x86_64-1.txz: Upgraded.
kde/kcodecs-5.97.0-x86_64-1.txz: Upgraded.
kde/kcompletion-5.97.0-x86_64-1.txz: Upgraded.
kde/kconfig-5.97.0-x86_64-1.txz: Upgraded.
kde/kconfigwidgets-5.97.0-x86_64-1.txz: Upgraded.
kde/kcontacts-5.97.0-x86_64-1.txz: Upgraded.
kde/kcoreaddons-5.97.0-x86_64-1.txz: Upgraded.
kde/kcrash-5.97.0-x86_64-1.txz: Upgraded.
kde/kdav-5.97.0-x86_64-1.txz: Upgraded.
kde/kdbusaddons-5.97.0-x86_64-1.txz: Upgraded.
kde/kdeclarative-5.97.0-x86_64-1.txz: Upgraded.
kde/kded-5.97.0-x86_64-1.txz: Upgraded.
kde/kdelibs4support-5.97.0-x86_64-1.txz: Upgraded.
kde/kdesignerplugin-5.97.0-x86_64-1.txz: Upgraded.
kde/kdesu-5.97.0-x86_64-1.txz: Upgraded.
kde/kdewebkit-5.97.0-x86_64-1.txz: Upgraded.
kde/kdnssd-5.97.0-x86_64-1.txz: Upgraded.
kde/kdoctools-5.97.0-x86_64-1.txz: Upgraded.
kde/kemoticons-5.97.0-x86_64-1.txz: Upgraded.
kde/kfilemetadata-5.97.0-x86_64-1.txz: Upgraded.
kde/kglobalaccel-5.97.0-x86_64-1.txz: Upgraded.
kde/kguiaddons-5.97.0-x86_64-1.txz: Upgraded.
kde/kholidays-5.97.0-x86_64-1.txz: Upgraded.
kde/khtml-5.97.0-x86_64-1.txz: Upgraded.
kde/ki18n-5.97.0-x86_64-1.txz: Upgraded.
kde/kiconthemes-5.97.0-x86_64-1.txz: Upgraded.
kde/kidletime-5.97.0-x86_64-1.txz: Upgraded.
kde/kimageformats-5.97.0-x86_64-1.txz: Upgraded.
kde/kinit-5.97.0-x86_64-1.txz: Upgraded.
kde/kio-5.97.0-x86_64-1.txz: Upgraded.
kde/kirigami2-5.97.0-x86_64-1.txz: Upgraded.
kde/kitemmodels-5.97.0-x86_64-1.txz: Upgraded.
kde/kitemviews-5.97.0-x86_64-1.txz: Upgraded.
kde/kjobwidgets-5.97.0-x86_64-1.txz: Upgraded.
kde/kjs-5.97.0-x86_64-1.txz: Upgraded.
kde/kjsembed-5.97.0-x86_64-1.txz: Upgraded.
kde/kmediaplayer-5.97.0-x86_64-1.txz: Upgraded.
kde/knewstuff-5.97.0-x86_64-1.txz: Upgraded.
kde/knotifications-5.97.0-x86_64-1.txz: Upgraded.
kde/knotifyconfig-5.97.0-x86_64-1.txz: Upgraded.
kde/kpackage-5.97.0-x86_64-1.txz: Upgraded.
kde/kparts-5.97.0-x86_64-1.txz: Upgraded.
kde/kpeople-5.97.0-x86_64-1.txz: Upgraded.
kde/kplotting-5.97.0-x86_64-1.txz: Upgraded.
kde/kpty-5.97.0-x86_64-1.txz: Upgraded.
kde/kquickcharts-5.97.0-x86_64-1.txz: Upgraded.
kde/kross-5.97.0-x86_64-1.txz: Upgraded.
kde/krunner-5.97.0-x86_64-1.txz: Upgraded.
kde/kservice-5.97.0-x86_64-1.txz: Upgraded.
kde/ktexteditor-5.97.0-x86_64-1.txz: Upgraded.
kde/ktextwidgets-5.97.0-x86_64-1.txz: Upgraded.
kde/kunitconversion-5.97.0-x86_64-1.txz: Upgraded.
kde/kwallet-5.97.0-x86_64-1.txz: Upgraded.
kde/kwayland-5.97.0-x86_64-1.txz: Upgraded.
kde/kwidgetsaddons-5.97.0-x86_64-1.txz: Upgraded.
kde/kwindowsystem-5.97.0-x86_64-1.txz: Upgraded.
kde/kxmlgui-5.97.0-x86_64-1.txz: Upgraded.
kde/kxmlrpcclient-5.97.0-x86_64-1.txz: Upgraded.
kde/modemmanager-qt-5.97.0-x86_64-1.txz: Upgraded.
kde/networkmanager-qt-5.97.0-x86_64-1.txz: Upgraded.
kde/oxygen-icons5-5.97.0-noarch-1.txz: Upgraded.
kde/plasma-framework-5.97.0-x86_64-1.txz: Upgraded.
kde/prison-5.97.0-x86_64-1.txz: Upgraded.
kde/purpose-5.97.0-x86_64-1.txz: Upgraded.
kde/qqc2-desktop-style-5.97.0-x86_64-1.txz: Upgraded.
kde/solid-5.97.0-x86_64-1.txz: Upgraded.
kde/sonnet-5.97.0-x86_64-1.txz: Upgraded.
kde/syndication-5.97.0-x86_64-1.txz: Upgraded.
kde/syntax-highlighting-5.97.0-x86_64-1.txz: Upgraded.
kde/threadweaver-5.97.0-x86_64-1.txz: Upgraded.
x/xf86-video-mach64-6.9.7-x86_64-1.txz: Added.
x/xf86-video-mga-2.0.1-x86_64-1.txz: Added.
x/xf86-video-r128-20220127_7b0941d-x86_64-1.txz: Added.
20220814183251 | Patrick J Volkerding | 2022-08-14 | 3 | -4/+14 |
* | Tue Aug 9 19:25:22 UTC 2022...a/mcelog-187-x86_64-1.txz: Upgraded.
l/zlib-1.2.12-x86_64-2.txz: Rebuilt.
Applied an upstream patch to restore the handling of CRC inputs to be the
same as in previous releases of zlib. This fixes an issue with OpenJDK.
Thanks to alienBOB.
x/xf86-input-wacom-1.1.0-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-102.1.2-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/102.1.2/releasenotes/
20220809192522 | Patrick J Volkerding | 2022-08-10 | 2 | -2/+2 |
* | Mon Aug 8 23:29:31 UTC 2022...Hey folks, here's that graphics stack upgrade that you've been waiting for!
After looking at what drivers are currently shipped by other projects, I took
an axe to the driver list. Some of the removed drivers will still compile even
though they are abandoned, and some of the others are still getting git commits
(which allows *some* of them to compile). The removed stuff mostly looks
obsolete to me (we really can't support ancient hardware forever). But if you
think I've gone too far with any of these removals, please make or contribute
to a thread about it on LQ and I'll take any comments there into consideration.
a/kernel-firmware-20220808_e6857b6-noarch-1.txz: Upgraded.
ap/vim-9.0.0174-x86_64-1.txz: Upgraded.
l/gnu-efi-3.0.15-x86_64-1.txz: Upgraded.
n/libtirpc-1.3.3-x86_64-1.txz: Upgraded.
n/mutt-2.2.7-x86_64-1.txz: Upgraded.
x/egl-wayland-1.1.10-x86_64-1.txz: Upgraded.
x/libdrm-2.4.112-x86_64-1.txz: Upgraded.
x/libglvnd-1.4.0-x86_64-1.txz: Upgraded.
x/mesa-22.1.5-x86_64-1.txz: Upgraded.
Includes Mesa amber 21.3.9 DRI drivers, and mesa-demos-8.5.0.
Thanks to LuckyCyborg for posting some valuable hints on LQ.
x/xcb-proto-1.15.2-x86_64-1.txz: Upgraded.
x/xf86-input-acecad-1.5.0-x86_64-14.txz: Removed.
x/xf86-input-evdev-2.10.6-x86_64-4.txz: Rebuilt.
x/xf86-input-joystick-1.6.3-x86_64-5.txz: Removed.
x/xf86-input-keyboard-1.9.0-x86_64-5.txz: Removed.
x/xf86-input-libinput-1.2.1-x86_64-2.txz: Rebuilt.
x/xf86-input-mouse-1.9.3-x86_64-3.txz: Removed.
x/xf86-input-penmount-1.5.0-x86_64-14.txz: Removed.
x/xf86-input-synaptics-1.9.2-x86_64-1.txz: Upgraded.
x/xf86-input-vmmouse-13.1.0-x86_64-9.txz: Removed.
x/xf86-input-void-1.4.1-x86_64-3.txz: Removed.
x/xf86-input-wacom-1.0.0-x86_64-2.txz: Rebuilt.
x/xf86-video-amdgpu-22.0.0-x86_64-2.txz: Rebuilt.
x/xf86-video-apm-1.3.0-x86_64-3.txz: Removed.
x/xf86-video-ark-0.7.5-x86_64-13.txz: Removed.
x/xf86-video-ast-1.1.5-x86_64-7.txz: Removed.
x/xf86-video-ati-20220730_7a6a34af-x86_64-1.txz: Upgraded.
x/xf86-video-chips-1.4.0-x86_64-3.txz: Removed.
x/xf86-video-cirrus-1.5.3-x86_64-7.txz: Removed.
x/xf86-video-dummy-0.4.0-x86_64-2.txz: Rebuilt.
x/xf86-video-glint-1.2.9-x86_64-5.txz: Removed.
x/xf86-video-i128-1.4.0-x86_64-3.txz: Removed.
x/xf86-video-i740-1.4.0-x86_64-3.txz: Removed.
x/xf86-video-intel-20210115_31486f40-x86_64-1.txz: Upgraded.
x/xf86-video-mach64-6.9.6-x86_64-3.txz: Removed.
x/xf86-video-mga-2.0.0-x86_64-3.txz: Removed.
x/xf86-video-neomagic-1.3.0-x86_64-3.txz: Removed.
x/xf86-video-nouveau-20220125_29cc528-x86_64-1.txz: Upgraded.
x/xf86-video-nv-2.1.21-x86_64-5.txz: Removed.
x/xf86-video-openchrome-0.6.0-x86_64-6.txz: Rebuilt.
x/xf86-video-r128-6.12.0-x86_64-3.txz: Removed.
x/xf86-video-rendition-4.2.7-x86_64-3.txz: Removed.
x/xf86-video-s3-0.7.0-x86_64-3.txz: Removed.
x/xf86-video-s3virge-1.11.0-x86_64-3.txz: Removed.
x/xf86-video-savage-20190128_8579718-x86_64-3.txz: Removed.
x/xf86-video-siliconmotion-1.7.9-x86_64-5.txz: Removed.
x/xf86-video-sis-0.12.0-x86_64-3.txz: Removed.
x/xf86-video-sisusb-0.9.7-x86_64-5.txz: Removed.
x/xf86-video-tdfx-1.5.0-x86_64-3.txz: Removed.
x/xf86-video-tga-1.2.2-x86_64-13.txz: Removed.
x/xf86-video-trident-1.3.8-x86_64-5.txz: Removed.
x/xf86-video-tseng-1.2.5-x86_64-13.txz: Removed.
x/xf86-video-v4l-0.3.0-x86_64-3.txz: Removed.
x/xf86-video-vboxvideo-1.0.0-x86_64-5.txz: Removed.
x/xf86-video-vesa-2.5.0-x86_64-4.txz: Rebuilt.
x/xf86-video-vmware-20220621_ff5637a-x86_64-1.txz: Upgraded.
x/xf86-video-voodoo-1.2.5-x86_64-14.txz: Removed.
x/xorg-server-21.1.4-x86_64-1.txz: Upgraded.
x/xorg-server-xephyr-21.1.4-x86_64-1.txz: Upgraded.
x/xorg-server-xnest-21.1.4-x86_64-1.txz: Upgraded.
x/xorg-server-xvfb-21.1.4-x86_64-1.txz: Upgraded.
x/xorg-server-xwayland-22.1.3-x86_64-1.txz: Upgraded.
x/xorgproto-2022.1-x86_64-1.txz: Upgraded.
xap/geeqie-2.0-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-103.0.2-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/firefox/103.0.2/releasenotes/
xap/vim-gvim-9.0.0174-x86_64-1.txz: Upgraded.
extra/xf86-video-fbdev/xf86-video-fbdev-0.5.0-x86_64-2.txz: Rebuilt.
20220808232931 | Patrick J Volkerding | 2022-08-09 | 72 | -1030/+342 |
* | Sat Aug 6 23:57:27 UTC 2022...a/aaa_libraries-15.1-x86_64-7.txz: Rebuilt.
Upgraded: libnsl-2.36.so.
Added: libffi.so.8.1.0.
Removed: libffi.so.6.0.4, libicudata.so.70.1, libicui18n.so.70.1,
libicuio.so.70.1, libicutest.so.70.1, libicutu.so.70.1, libicuuc.so.70.1.
d/guile-3.0.8-x86_64-2.txz: Rebuilt.
Recompiled against libffi-3.4.2.
d/llvm-14.0.6-x86_64-3.txz: Rebuilt.
Recompiled against libffi-3.4.2.
d/python2-2.7.18-x86_64-5.txz: Rebuilt.
Recompiled against libffi-3.4.2.
d/python3-3.9.13-x86_64-2.txz: Rebuilt.
Recompiled against libffi-3.4.2.
d/ruby-3.1.2-x86_64-2.txz: Rebuilt.
Recompiled against libffi-3.4.2.
kde/kid3-3.9.2-x86_64-1.txz: Upgraded.
l/gjs-1.70.2-x86_64-2.txz: Rebuilt.
Recompiled against libffi-3.4.2.
l/glib-networking-2.72.2-x86_64-1.txz: Upgraded.
l/glib2-2.72.3-x86_64-2.txz: Rebuilt.
Recompiled against libffi-3.4.2.
l/gobject-introspection-1.72.0-x86_64-2.txz: Rebuilt.
Recompiled against libffi-3.4.2.
l/gtkmm3-3.24.6-x86_64-1.txz: Upgraded.
l/libffi-3.4.2-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/libwebp-1.2.4-x86_64-1.txz: Upgraded.
l/pygobject-2.28.7-x86_64-9.txz: Rebuilt.
Recompiled against libffi-3.4.2.
l/pygobject3-3.42.1-x86_64-2.txz: Rebuilt.
Recompiled against libffi-3.4.2.
l/python-cffi-1.15.0-x86_64-3.txz: Rebuilt.
Recompiled against libffi-3.4.2.
n/p11-kit-0.24.1-x86_64-2.txz: Rebuilt.
Recompiled against libffi-3.4.2.
x/ibus-m17n-1.4.10-x86_64-1.txz: Upgraded.
x/wayland-1.21.0-x86_64-2.txz: Rebuilt.
Recompiled against libffi-3.4.2.
xap/mozilla-thunderbird-102.1.1-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/102.1.1/releasenotes/
20220806235727 | Patrick J Volkerding | 2022-08-07 | 1 | -1/+1 |
* | Wed Aug 3 19:33:34 UTC 2022...a/aaa_glibc-solibs-2.36-x86_64-1.txz: Upgraded.
a/kernel-generic-5.18.16-x86_64-1.txz: Upgraded.
a/kernel-huge-5.18.16-x86_64-1.txz: Upgraded.
a/kernel-modules-5.18.16-x86_64-1.txz: Upgraded.
ap/nano-6.4-x86_64-1.txz: Upgraded.
d/kernel-headers-5.18.16-x86-1.txz: Upgraded.
k/kernel-source-5.18.16-noarch-1.txz: Upgraded.
Dropping back to this branch until the EFI stub issue with 5.19 and elilo is
figured out. Might have to bisect that one. Thanks for testing! :-)
kde/bluedevil-5.25.4-x86_64-1.txz: Upgraded.
kde/breeze-5.25.4-x86_64-1.txz: Upgraded.
kde/breeze-grub-5.25.4-x86_64-1.txz: Upgraded.
kde/breeze-gtk-5.25.4-x86_64-1.txz: Upgraded.
kde/calligra-3.2.1-x86_64-21.txz: Rebuilt.
Recompiled against poppler-22.08.0.
kde/cantor-22.04.3-x86_64-2.txz: Rebuilt.
Recompiled against poppler-22.08.0.
kde/drkonqi-5.25.4-x86_64-1.txz: Upgraded.
kde/kactivitymanagerd-5.25.4-x86_64-1.txz: Upgraded.
kde/kde-cli-tools-5.25.4-x86_64-1.txz: Upgraded.
kde/kde-gtk-config-5.25.4-x86_64-1.txz: Upgraded.
kde/kdecoration-5.25.4-x86_64-1.txz: Upgraded.
kde/kdeplasma-addons-5.25.4-x86_64-1.txz: Upgraded.
kde/kfilemetadata-5.96.0-x86_64-2.txz: Rebuilt.
Recompiled against poppler-22.08.0.
kde/kgamma5-5.25.4-x86_64-1.txz: Upgraded.
kde/khotkeys-5.25.4-x86_64-1.txz: Upgraded.
kde/kile-2.9.93-x86_64-19.txz: Rebuilt.
Recompiled against poppler-22.08.0.
kde/kinfocenter-5.25.4-x86_64-1.txz: Upgraded.
kde/kitinerary-22.04.3-x86_64-2.txz: Rebuilt.
Recompiled against poppler-22.08.0.
kde/kmenuedit-5.25.4-x86_64-1.txz: Upgraded.
kde/krita-5.0.8-x86_64-3.txz: Rebuilt.
Recompiled against poppler-22.08.0.
kde/kscreen-5.25.4-x86_64-1.txz: Upgraded.
kde/kscreenlocker-5.25.4-x86_64-1.txz: Upgraded.
kde/ksshaskpass-5.25.4-x86_64-1.txz: Upgraded.
kde/ksystemstats-5.25.4-x86_64-1.txz: Upgraded.
kde/kwallet-pam-5.25.4-x86_64-1.txz: Upgraded.
kde/kwayland-integration-5.25.4-x86_64-1.txz: Upgraded.
kde/kwin-5.25.4-x86_64-1.txz: Upgraded.
kde/kwrited-5.25.4-x86_64-1.txz: Upgraded.
kde/layer-shell-qt-5.25.4-x86_64-1.txz: Upgraded.
kde/libkscreen-5.25.4-x86_64-1.txz: Upgraded.
kde/libksysguard-5.25.4-x86_64-1.txz: Upgraded.
kde/milou-5.25.4-x86_64-1.txz: Upgraded.
kde/okular-22.04.3-x86_64-2.txz: Rebuilt.
Recompiled against poppler-22.08.0.
kde/oxygen-5.25.4-x86_64-1.txz: Upgraded.
kde/oxygen-sounds-5.25.4-x86_64-1.txz: Upgraded.
kde/plasma-browser-integration-5.25.4-x86_64-1.txz: Upgraded.
kde/plasma-desktop-5.25.4-x86_64-1.txz: Upgraded.
kde/plasma-disks-5.25.4-x86_64-1.txz: Upgraded.
kde/plasma-firewall-5.25.4-x86_64-1.txz: Upgraded.
kde/plasma-integration-5.25.4-x86_64-1.txz: Upgraded.
kde/plasma-nm-5.25.4-x86_64-1.txz: Upgraded.
kde/plasma-pa-5.25.4-x86_64-1.txz: Upgraded.
kde/plasma-sdk-5.25.4-x86_64-1.txz: Upgraded.
kde/plasma-systemmonitor-5.25.4-x86_64-1.txz: Upgraded.
kde/plasma-vault-5.25.4-x86_64-1.txz: Upgraded.
kde/plasma-workspace-5.25.4-x86_64-1.txz: Upgraded.
kde/plasma-workspace-wallpapers-5.25.4-x86_64-1.txz: Upgraded.
kde/polkit-kde-agent-1-5.25.4-x86_64-1.txz: Upgraded.
kde/powerdevil-5.25.4-x86_64-1.txz: Upgraded.
kde/qqc2-breeze-style-5.25.4-x86_64-1.txz: Upgraded.
kde/sddm-kcm-5.25.4-x86_64-1.txz: Upgraded.
kde/systemsettings-5.25.4-x86_64-1.txz: Upgraded.
kde/xdg-desktop-portal-kde-5.25.4-x86_64-1.txz: Upgraded.
l/SDL2_image-2.6.1-x86_64-1.txz: Upgraded.
l/glibc-2.36-x86_64-1.txz: Upgraded.
l/glibc-i18n-2.36-x86_64-1.txz: Upgraded.
l/glibc-profile-2.36-x86_64-1.txz: Upgraded.
l/poppler-22.08.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
n/iproute2-5.19.0-x86_64-1.txz: Upgraded.
t/texlive-2022.220801-x86_64-1.txz: Upgraded.
This update adds a few components needed to build documentation for doxygen.
Thanks to Johannes Schoepfer and nobodino.
x/libevdev-1.13.0-x86_64-1.txz: Upgraded.
x/xdg-desktop-portal-1.14.6-x86_64-1.txz: Upgraded.
x/xdg-user-dirs-0.18-x86_64-1.txz: Upgraded.
xap/blueman-2.3.2-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20220803193334 | Patrick J Volkerding | 2022-08-04 | 1 | -2/+2 |
* | Thu Jul 14 18:48:34 UTC 2022...a/kernel-firmware-20220714_84661a3-noarch-1.txz: Upgraded.
ap/sqlite-3.39.1-x86_64-1.txz: Upgraded.
d/vala-0.56.2-x86_64-1.txz: Upgraded.
l/gegl-0.4.38-x86_64-1.txz: Upgraded.
l/jasper-3.0.6-x86_64-1.txz: Upgraded.
l/libidn2-2.3.3-x86_64-1.txz: Upgraded.
x/encodings-1.0.6-noarch-1.txz: Upgraded.
x/wayland-1.21.0-x86_64-1.txz: Upgraded.
x/wayland-protocols-1.26-noarch-1.txz: Upgraded.
x/xev-1.2.5-x86_64-1.txz: Upgraded.
x/xkbutils-1.0.5-x86_64-1.txz: Upgraded.
x/xmag-1.0.7-x86_64-1.txz: Upgraded.
x/xmessage-1.0.6-x86_64-1.txz: Upgraded.
x/xrefresh-1.0.7-x86_64-1.txz: Upgraded.
xap/xlockmore-5.70-x86_64-1.txz: Upgraded.
20220714184834 | Patrick J Volkerding | 2022-07-15 | 6 | -6/+6 |
* | Wed Jul 13 19:56:59 UTC 2022...a/inih-56-x86_64-1.txz: Upgraded.
a/kernel-firmware-20220710_dfa2931-noarch-1.txz: Upgraded.
a/kernel-generic-5.18.11-x86_64-1.txz: Upgraded.
a/kernel-huge-5.18.11-x86_64-1.txz: Upgraded.
a/kernel-modules-5.18.11-x86_64-1.txz: Upgraded.
ap/mpg123-1.30.1-x86_64-1.txz: Upgraded.
d/git-2.37.1-x86_64-1.txz: Upgraded.
d/kernel-headers-5.18.11-x86-1.txz: Upgraded.
d/mercurial-6.2-x86_64-1.txz: Upgraded.
k/kernel-source-5.18.11-noarch-1.txz: Upgraded.
kde/bluedevil-5.25.3-x86_64-1.txz: Upgraded.
kde/breeze-5.25.3-x86_64-1.txz: Upgraded.
kde/breeze-grub-5.25.3-x86_64-1.txz: Upgraded.
kde/breeze-gtk-5.25.3-x86_64-1.txz: Upgraded.
kde/drkonqi-5.25.3-x86_64-1.txz: Upgraded.
kde/kactivitymanagerd-5.25.3-x86_64-1.txz: Upgraded.
kde/kde-cli-tools-5.25.3-x86_64-1.txz: Upgraded.
kde/kde-gtk-config-5.25.3-x86_64-1.txz: Upgraded.
kde/kdecoration-5.25.3-x86_64-1.txz: Upgraded.
kde/kdeplasma-addons-5.25.3-x86_64-1.txz: Upgraded.
kde/kgamma5-5.25.3-x86_64-1.txz: Upgraded.
kde/khotkeys-5.25.3-x86_64-1.txz: Upgraded.
kde/kinfocenter-5.25.3-x86_64-1.txz: Upgraded.
kde/kmenuedit-5.25.3-x86_64-1.txz: Upgraded.
kde/kscreen-5.25.3-x86_64-1.txz: Upgraded.
kde/kscreenlocker-5.25.3-x86_64-1.txz: Upgraded.
kde/ksshaskpass-5.25.3-x86_64-1.txz: Upgraded.
kde/ksystemstats-5.25.3-x86_64-1.txz: Upgraded.
kde/kwallet-pam-5.25.3-x86_64-1.txz: Upgraded.
kde/kwayland-integration-5.25.3-x86_64-1.txz: Upgraded.
kde/kwin-5.25.3-x86_64-1.txz: Upgraded.
kde/kwrited-5.25.3-x86_64-1.txz: Upgraded.
kde/layer-shell-qt-5.25.3-x86_64-1.txz: Upgraded.
kde/libkscreen-5.25.3-x86_64-1.txz: Upgraded.
kde/libksysguard-5.25.3-x86_64-1.txz: Upgraded.
kde/milou-5.25.3-x86_64-1.txz: Upgraded.
kde/oxygen-5.25.3-x86_64-1.txz: Upgraded.
kde/oxygen-sounds-5.25.3-x86_64-1.txz: Upgraded.
kde/plasma-browser-integration-5.25.3-x86_64-1.txz: Upgraded.
kde/plasma-desktop-5.25.3-x86_64-1.txz: Upgraded.
kde/plasma-disks-5.25.3-x86_64-1.txz: Upgraded.
kde/plasma-firewall-5.25.3-x86_64-1.txz: Upgraded.
kde/plasma-integration-5.25.3-x86_64-1.txz: Upgraded.
kde/plasma-nm-5.25.3-x86_64-1.txz: Upgraded.
kde/plasma-pa-5.25.3-x86_64-1.txz: Upgraded.
kde/plasma-sdk-5.25.3-x86_64-1.txz: Upgraded.
kde/plasma-systemmonitor-5.25.3-x86_64-1.txz: Upgraded.
kde/plasma-vault-5.25.3-x86_64-1.txz: Upgraded.
kde/plasma-workspace-5.25.3.1-x86_64-1.txz: Upgraded.
kde/plasma-workspace-wallpapers-5.25.3-x86_64-1.txz: Upgraded.
kde/polkit-kde-agent-1-5.25.3-x86_64-1.txz: Upgraded.
kde/powerdevil-5.25.3-x86_64-1.txz: Upgraded.
kde/qqc2-breeze-style-5.25.3-x86_64-1.txz: Upgraded.
kde/sddm-kcm-5.25.3-x86_64-1.txz: Upgraded.
kde/systemsettings-5.25.3-x86_64-1.txz: Upgraded.
kde/xdg-desktop-portal-kde-5.25.3-x86_64-1.txz: Upgraded.
l/SDL2_mixer-2.6.1-x86_64-1.txz: Upgraded.
l/gtk4-4.6.6-x86_64-2.txz: Rebuilt.
Drop embedded pango library and use "unshare -n" to prevent the issue from
happening again.
l/libuv-1.44.2-x86_64-1.txz: Upgraded.
l/pango-1.50.8-x86_64-1.txz: Upgraded.
l/pipewire-0.3.55-x86_64-1.txz: Upgraded.
x/font-util-1.3.3-x86_64-1.txz: Upgraded.
x/xorg-server-1.20.14-x86_64-4.txz: Rebuilt.
xkb: switch to array index loops to moving pointers.
xkb: add request length validation for XkbSetGeometry.
xkb: swap XkbSetDeviceInfo and XkbSetDeviceInfoCheck.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2319
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2320
(* Security fix *)
x/xorg-server-xephyr-1.20.14-x86_64-4.txz: Rebuilt.
x/xorg-server-xnest-1.20.14-x86_64-4.txz: Rebuilt.
x/xorg-server-xvfb-1.20.14-x86_64-4.txz: Rebuilt.
xap/mozilla-thunderbird-102.0.2-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/102.0.2/releasenotes/
xfce/xfce4-settings-4.16.3-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20220713195659 | Patrick J Volkerding | 2022-07-14 | 8 | -3/+535 |
* | Mon Jul 11 19:22:52 UTC 2022...x/xclipboard-1.1.4-x86_64-1.txz: Upgraded.
x/xcmsdb-1.0.6-x86_64-1.txz: Upgraded.
x/xconsole-1.0.8-x86_64-1.txz: Upgraded.
x/xfontsel-1.1.0-x86_64-1.txz: Upgraded.
x/xfs-1.2.1-x86_64-1.txz: Upgraded.
x/xmodmap-1.0.11-x86_64-1.txz: Upgraded.
x/xpr-1.1.0-x86_64-1.txz: Upgraded.
x/xscope-1.4.3-x86_64-1.txz: Upgraded.
x/xwud-1.0.6-x86_64-1.txz: Upgraded.
xap/seamonkey-2.53.13-x86_64-1.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
https://www.seamonkey-project.org/releases/seamonkey2.53.13
(* Security fix *)
20220711192252 | Patrick J Volkerding | 2022-07-12 | 8 | -8/+8 |
* | Tue Jul 5 20:33:18 UTC 2022...a/hwdata-0.361-noarch-1.txz: Upgraded.
a/kernel-firmware-20220705_f5f02da-noarch-1.txz: Upgraded.
a/kmod-30-x86_64-1.txz: Upgraded.
a/mcelog-184-x86_64-1.txz: Upgraded.
a/openssl-solibs-1.1.1q-x86_64-1.txz: Upgraded.
ap/vim-9.0.0041-x86_64-1.txz: Upgraded.
d/llvm-14.0.6-x86_64-2.txz: Rebuilt.
Shared library .so-version bump.
We gave the DYLIB options a try and the resulting compilers are unable to
compile Firefox or Thunderbird, so we're back to using BUILD_SHARED_LIBS
(which works fine). I'm in no real hurry to revisit this, but I'll look at
any hints you might have for me if you post them on LQ.
d/meson-0.63.0-x86_64-1.txz: Upgraded.
d/rust-1.62.0-x86_64-1.txz: Upgraded.
l/imagemagick-7.1.0_40-x86_64-1.txz: Upgraded.
l/isl-0.25-x86_64-1.txz: Upgraded.
l/libdmtx-0.7.7-x86_64-1.txz: Upgraded.
l/libgphoto2-2.5.30-x86_64-1.txz: Upgraded.
l/libmtp-1.1.20-x86_64-1.txz: Upgraded.
l/libvpx-1.12.0-x86_64-1.txz: Upgraded.
l/pipewire-0.3.53-x86_64-1.txz: Upgraded.
l/poppler-22.07.0-x86_64-1.txz: Upgraded.
l/spirv-llvm-translator-14.0.0-x86_64-2.txz: Rebuilt.
Recompiled against llvm-14.0.6-2.
n/openssl-1.1.1q-x86_64-1.txz: Upgraded.
This update fixes security issues:
Heap memory corruption with RSA private key operation.
AES OCB fails to encrypt some bytes.
For more information, see:
https://www.openssl.org/news/secadv/20220705.txt
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2274
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2097
(* Security fix *)
n/wget2-2.0.1-x86_64-1.txz: Upgraded.
x/libva-2.15.0-x86_64-1.txz: Upgraded.
x/libva-utils-2.15.0-x86_64-1.txz: Upgraded.
x/mesa-21.3.8-x86_64-3.txz: Rebuilt.
Recompiled against llvm-14.0.6-2.
xap/mozilla-firefox-102.0.1-x86_64-1.txz: Upgraded.
This update contains security fixes (possibly) and improvements.
At this time, the link below only says "We're still preparing the notes for
this release, and will post them here when they are ready. Please check back
later."
For more information, see:
https://www.mozilla.org/en-US/firefox/102.0.1/releasenotes/
(* Security fix *)
xap/vim-gvim-9.0.0041-x86_64-1.txz: Upgraded.
extra/rust-for-mozilla/rust-1.60.0-x86_64-1.txz: Upgraded.
20220705203318 | Patrick J Volkerding | 2022-07-06 | 1 | -1/+1 |
* | Tue Jun 28 19:16:08 UTC 2022...ap/mpg123-1.30.0-x86_64-1.txz: Upgraded.
d/git-2.37.0-x86_64-1.txz: Upgraded.
d/llvm-14.0.6-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
d/rust-1.61.0-x86_64-2.txz: Rebuilt.
Recompiled against llvm-14.0.6.
kde/bluedevil-5.25.2-x86_64-1.txz: Upgraded.
kde/breeze-5.25.2-x86_64-1.txz: Upgraded.
kde/breeze-grub-5.25.2-x86_64-1.txz: Upgraded.
kde/breeze-gtk-5.25.2-x86_64-1.txz: Upgraded.
kde/drkonqi-5.25.2-x86_64-1.txz: Upgraded.
kde/kactivitymanagerd-5.25.2-x86_64-1.txz: Upgraded.
kde/kde-cli-tools-5.25.2-x86_64-1.txz: Upgraded.
kde/kde-gtk-config-5.25.2-x86_64-1.txz: Upgraded.
kde/kdecoration-5.25.2-x86_64-1.txz: Upgraded.
kde/kdeplasma-addons-5.25.2-x86_64-1.txz: Upgraded.
kde/kgamma5-5.25.2-x86_64-1.txz: Upgraded.
kde/khotkeys-5.25.2-x86_64-1.txz: Upgraded.
kde/kinfocenter-5.25.2-x86_64-1.txz: Upgraded.
kde/kmenuedit-5.25.2-x86_64-1.txz: Upgraded.
kde/kscreen-5.25.2-x86_64-1.txz: Upgraded.
kde/kscreenlocker-5.25.2-x86_64-1.txz: Upgraded.
kde/ksshaskpass-5.25.2-x86_64-1.txz: Upgraded.
kde/ksystemstats-5.25.2-x86_64-1.txz: Upgraded.
kde/kwallet-pam-5.25.2-x86_64-1.txz: Upgraded.
kde/kwayland-integration-5.25.2-x86_64-1.txz: Upgraded.
kde/kwin-5.25.2-x86_64-1.txz: Upgraded.
kde/kwrited-5.25.2-x86_64-1.txz: Upgraded.
kde/layer-shell-qt-5.25.2-x86_64-1.txz: Upgraded.
kde/libkscreen-5.25.2-x86_64-1.txz: Upgraded.
kde/libksysguard-5.25.2-x86_64-1.txz: Upgraded.
kde/milou-5.25.2-x86_64-1.txz: Upgraded.
kde/oxygen-5.25.2-x86_64-1.txz: Upgraded.
kde/oxygen-sounds-5.25.2-x86_64-1.txz: Upgraded.
kde/plasma-browser-integration-5.25.2-x86_64-1.txz: Upgraded.
kde/plasma-desktop-5.25.2-x86_64-1.txz: Upgraded.
kde/plasma-disks-5.25.2-x86_64-1.txz: Upgraded.
kde/plasma-firewall-5.25.2-x86_64-1.txz: Upgraded.
kde/plasma-integration-5.25.2-x86_64-1.txz: Upgraded.
kde/plasma-nm-5.25.2-x86_64-1.txz: Upgraded.
kde/plasma-pa-5.25.2-x86_64-1.txz: Upgraded.
kde/plasma-sdk-5.25.2-x86_64-1.txz: Upgraded.
kde/plasma-systemmonitor-5.25.2-x86_64-1.txz: Upgraded.
kde/plasma-vault-5.25.2-x86_64-1.txz: Upgraded.
kde/plasma-workspace-5.25.2-x86_64-1.txz: Upgraded.
kde/plasma-workspace-wallpapers-5.25.2-x86_64-1.txz: Upgraded.
kde/polkit-kde-agent-1-5.25.2-x86_64-1.txz: Upgraded.
kde/powerdevil-5.25.2-x86_64-1.txz: Upgraded.
kde/qqc2-breeze-style-5.25.2-x86_64-1.txz: Upgraded.
kde/sddm-kcm-5.25.2-x86_64-1.txz: Upgraded.
kde/systemsettings-5.25.2-x86_64-1.txz: Upgraded.
kde/xdg-desktop-portal-kde-5.25.2-x86_64-1.txz: Upgraded.
l/harfbuzz-4.4.0-x86_64-1.txz: Upgraded.
l/libidn-1.41-x86_64-1.txz: Upgraded.
l/liburing-2.2-x86_64-1.txz: Upgraded.
l/libzip-1.9.1-x86_64-1.txz: Upgraded.
l/openal-soft-1.22.2-x86_64-1.txz: Upgraded.
l/spirv-llvm-translator-14.0.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
Compiled against llvm-14.0.6.
n/ModemManager-1.18.10-x86_64-1.txz: Upgraded.
n/curl-7.84.0-x86_64-1.txz: Upgraded.
This update fixes security issues:
Set-Cookie denial of service.
HTTP compression denial of service.
Unpreserved file permissions.
FTP-KRB bad message verification.
For more information, see:
https://curl.se/docs/CVE-2022-32205.html
https://curl.se/docs/CVE-2022-32206.html
https://curl.se/docs/CVE-2022-32207.html
https://curl.se/docs/CVE-2022-32208.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32205
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32206
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32207
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32208
(* Security fix *)
t/texlive-2022.220522-x86_64-1.txz: Upgraded.
Thanks to Johannes Schoepfer.
x/mesa-21.3.8-x86_64-2.txz: Rebuilt.
Recompiled against llvm-14.0.6.
xap/mozilla-firefox-102.0-x86_64-1.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/102.0/releasenotes/
https://www.mozilla.org/security/advisories/mfsa2022-24/
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34479
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34470
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34468
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34482
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34483
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34476
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34481
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34474
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34469
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34471
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34472
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34478
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2200
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34480
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34477
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34475
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34473
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34484
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34485
(* Security fix *)
20220628191608 | Patrick J Volkerding | 2022-06-29 | 1 | -1/+1 |