| Commit message (Expand) | Author | Age | Files | Lines |
* | Wed Jun 5 18:56:53 UTC 2019...a/less-550-x86_64-1.txz: Upgraded.
d/vala-0.44.4-x86_64-1.txz: Upgraded.
n/curl-7.65.1-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://curl.haxx.se/changes.html
xfce/xfdesktop-4.12.5-x86_64-1.txz: Upgraded.
20190605185653 | Patrick J Volkerding | 2019-06-06 | 2 | -3/+4 |
* | Thu May 23 19:55:30 UTC 2019...a/aaa_terminfo-6.1_20190518-x86_64-1.txz: Upgraded.
ap/qpdf-8.4.2-x86_64-1.txz: Upgraded.
l/libidn2-2.2.0-x86_64-1.txz: Upgraded.
l/ncurses-6.1_20190518-x86_64-1.txz: Upgraded.
n/p11-kit-0.23.16.1-x86_64-1.txz: Upgraded.
xap/rdesktop-1.8.6-x86_64-1.txz: Upgraded.
This is a small bug fix release for rdesktop 1.8.5. An issue was discovered
soon after release where it was impossible to connect to some servers. This
issue has now been fixed, but otherwise this release is identical to 1.8.5.
xfce/Thunar-1.8.6-x86_64-1.txz: Upgraded.
xfce/thunar-volman-0.9.2-x86_64-1.txz: Upgraded.
20190523195530 | Patrick J Volkerding | 2019-05-24 | 2 | -1/+2 |
* | Mon May 20 21:07:25 UTC 2019...a/btrfs-progs-5.1-x86_64-1.txz: Upgraded.
a/dbus-1.12.14-x86_64-1.txz: Upgraded.
a/eudev-3.2.8-x86_64-1.txz: Upgraded.
d/bison-3.4-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_46-x86_64-1.txz: Upgraded.
l/pulseaudio-12.2-x86_64-2.txz: Rebuilt.
Patched to build against alsa-lib-1.1.9. Thanks to nobodino.
n/ethtool-5.1-x86_64-1.txz: Upgraded.
xfce/tumbler-0.2.4-x86_64-1.txz: Upgraded.
20190520210725 | Patrick J Volkerding | 2019-05-21 | 1 | -1/+1 |
* | Wed May 1 19:49:49 UTC 2019...ap/tmux-2.9a-x86_64-1.txz: Upgraded.
n/dovecot-2.3.6-x86_64-1.txz: Upgraded.
This update fixes two security issues:
Submission-login crashed with signal 11 due to null pointer access when
authentication was aborted by disconnecting.
Submission-login crashed when authentication was started over TLS secured
channel and invalid authentication message was sent.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11494
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11499
(* Security fix *)
n/php-7.2.18-x86_64-1.txz: Upgraded.
This update fixes bugs and a security issue
Heap-buffer-overflow in _estrndup via exif_process_IFD_TAG.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11036
(* Security fix *)
xfce/exo-0.12.5-x86_64-1.txz: Upgraded.
20190501194949 | Patrick J Volkerding | 2019-05-02 | 1 | -1/+1 |
* | Fri Feb 8 22:04:46 UTC 2019...a/aaa_elflibs-15.0-x86_64-5.txz: Rebuilt.
Upgraded: libglib-2.0.so.0.5800.3, libgmodule-2.0.so.0.5800.3,
libgobject-2.0.so.0.5800.3, libgthread-2.0.so.0.5800.3, libidn2.so.0.3.5,
libmpfr.so.6.0.2, libtdb.so.1.3.17
Removed: libidn2.so.4.0.0
ap/sqlite-3.27.1-x86_64-1.txz: Upgraded.
l/libdvdread-6.0.1-x86_64-1.txz: Upgraded.
l/libidn2-2.1.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
This reverted back to .so.0 as the previous bump was apparently a mistake.
l/libpsl-0.20.2-x86_64-3.txz: Rebuilt.
Recompiled against libidn2-2.1.1.
n/bind-9.12.3_P1-x86_64-3.txz: Rebuilt.
Recompiled against libidn2-2.1.1.
n/curl-7.64.0-x86_64-2.txz: Rebuilt.
Recompiled against libidn2-2.1.1.
n/dhcpcd-7.1.1-x86_64-1.txz: Upgraded.
n/dnsmasq-2.80-x86_64-3.txz: Rebuilt.
Recompiled against libidn2-2.1.1.
n/getmail-5.9-x86_64-1.txz: Upgraded.
n/gnutls-3.6.6-x86_64-2.txz: Rebuilt.
Recompiled against libidn2-2.1.1.
n/iputils-20180629-x86_64-3.txz: Rebuilt.
Recompiled against libidn2-2.1.1.
n/lftp-4.8.4-x86_64-3.txz: Rebuilt.
Recompiled against libidn2-2.1.1.
n/s-nail-14.9.11-x86_64-3.txz: Rebuilt.
Recompiled against libidn2-2.1.1.
n/wget-1.20.1-x86_64-3.txz: Rebuilt.
Recompiled against libidn2-2.1.1.
n/whois-5.4.1-x86_64-2.txz: Rebuilt.
Recompiled against libidn2-2.1.1.
x/ttf-tlwg-0.7.1-noarch-1.txz: Upgraded.
xfce/xfwm4-4.12.5-x86_64-1.txz: Upgraded.
20190208220446 | Patrick J Volkerding | 2019-02-09 | 2 | -3/+4 |
* | Wed Jan 30 04:27:03 UTC 2019...d/bison-3.3.1-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_25-x86_64-1.txz: Upgraded.
l/mozilla-nss-3.42-x86_64-1.txz: Upgraded.
n/libgpg-error-1.35-x86_64-1.txz: Upgraded.
n/whois-5.4.1-x86_64-1.txz: Upgraded.
x/xf86-video-nouveau-1.0.16-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-60.5.0esr-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
https://www.mozilla.org/en-US/security/advisories/mfsa2019-02/
https://www.mozilla.org/en-US/security/advisories/mfsa2019-02/#CVE-2018-18500
https://www.mozilla.org/en-US/security/advisories/mfsa2019-02/#CVE-2018-18505
https://www.mozilla.org/en-US/security/advisories/mfsa2019-02/#CVE-2018-18501
(* Security fix *)
xap/mozilla-thunderbird-60.5.0-x86_64-1.txz: Upgraded.
This is a bugfix release. For more information, see:
https://www.mozilla.org/en-US/thunderbird/60.5.0/releasenotes/
xfce/Thunar-1.8.4-x86_64-1.txz: Upgraded.
20190130042703 | Patrick J Volkerding | 2019-01-30 | 1 | -1/+1 |
* | Sat Jan 26 20:44:46 UTC 2019...a/kernel-generic-4.19.18-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.18-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.18-x86_64-1.txz: Upgraded.
ap/zsh-5.7-x86_64-1.txz: Upgraded.
d/bison-3.3-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.18-x86-1.txz: Upgraded.
k/kernel-source-4.19.18-noarch-1.txz: Upgraded.
l/SDL2_ttf-2.0.15-x86_64-1.txz: Upgraded.
l/iso-codes-4.2-noarch-1.txz: Upgraded.
l/libcdio-paranoia-10.2+2.0.0-x86_64-1.txz: Upgraded.
xfce/Thunar-1.8.3-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20190126204446 | Patrick J Volkerding | 2019-01-27 | 1 | -1/+1 |
* | Tue Jan 22 01:38:43 UTC 2019...a/btrfs-progs-4.20-x86_64-1.txz: Upgraded.
a/kernel-firmware-20190118_a8b75ca-noarch-1.txz: Upgraded.
a/sysvinit-scripts-2.1-noarch-26.txz: Rebuilt.
rc.S: Don't sleep for 3 seconds before mounting non-root filesystems. This
should not be needed once udev reports having settled all devices.
Let me know if I'm wrong. :-)
d/parallel-20190122-noarch-1.txz: Upgraded.
l/glib2-2.58.3-x86_64-1.txz: Upgraded.
l/gtk+3-3.24.4-x86_64-1.txz: Upgraded.
l/librsvg-2.44.12-x86_64-1.txz: Upgraded.
l/python-packaging-19.0-x86_64-1.txz: Upgraded.
n/p11-kit-0.23.15-x86_64-1.txz: Upgraded.
x/libinput-1.12.6-x86_64-1.txz: Upgraded.
xfce/exo-0.12.4-x86_64-1.txz: Upgraded.
20190122013843 | Patrick J Volkerding | 2019-01-22 | 1 | -1/+1 |
* | Tue Dec 11 01:16:11 UTC 2018...a/hwdata-0.318-noarch-1.txz: Upgraded.
d/git-2.20.0-x86_64-1.txz: Upgraded.
d/meson-0.49.0-x86_64-1.txz: Upgraded.
l/ffmpeg-3.4.5-x86_64-1.txz: Upgraded.
l/gobject-introspection-1.58.2-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_16-x86_64-1.txz: Upgraded.
l/mozilla-nss-3.41-x86_64-1.txz: Upgraded.
l/python-requests-2.21.0-x86_64-1.txz: Upgraded.
n/libgpg-error-1.33-x86_64-1.txz: Upgraded.
xfce/garcon-0.6.2-x86_64-1.txz: Upgraded.
extra/pure-alsa-system/ffmpeg-3.4.5-x86_64-1_alsa.txz: Upgraded.
20181211011611 | Patrick J Volkerding | 2018-12-11 | 2 | -3/+8 |
* | Sat Dec 8 04:10:45 UTC 2018...a/btrfs-progs-v4.19.1-x86_64-1.txz: Upgraded.
a/dbus-1.12.12-x86_64-1.txz: Upgraded.
ap/cups-2.2.10-x86_64-1.txz: Upgraded.
ap/cups-filters-1.21.5-x86_64-1.txz: Upgraded.
ap/hplip-3.18.12-x86_64-1.txz: Upgraded.
d/mercurial-4.8.1-x86_64-1.txz: Upgraded.
d/rust-1.31.0-x86_64-1.txz: Upgraded.
l/libpng-1.6.36-x86_64-1.txz: Upgraded.
l/python-idna-2.8-x86_64-1.txz: Upgraded.
n/ntp-4.2.8p12-x86_64-5.txz: Rebuilt.
Fixed logrotate file. Thanks to allend and rworkman.
n/php-7.2.13-x86_64-1.txz: Upgraded.
This is a security release which also contains several minor bug fixes.
For more information, see:
https://php.net/ChangeLog-7.php#7.2.13
(* Security fix *)
n/wpa_supplicant-2.7-x86_64-1.txz: Upgraded.
x/mesa-18.3.0-x86_64-1.txz: Upgraded.
x/xf86-video-i740-1.4.0-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-60.3.3-x86_64-1.txz: Upgraded.
This is a bugfix release. For more information, see:
https://www.mozilla.org/en-US/thunderbird/60.3.3/releasenotes/
xfce/thunar-volman-0.9.1-x86_64-1.txz: Upgraded.
20181208041045 | Patrick J Volkerding | 2018-12-08 | 2 | -31/+3 |
* | Mon Dec 3 20:59:30 UTC 2018...ap/sqlite-3.26.0-x86_64-1.txz: Upgraded.
l/libzip-1.5.1-x86_64-5.txz: Rebuilt.
Fixed path in libzip.pc. Thanks to orbea.
l/mozilla-nss-3.40.1-x86_64-1.txz: Upgraded.
Mitigate cache side-channel variant of the Bleichenbacher attack.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12404
(* Security fix *)
n/mutt-1.11.1-x86_64-1.txz: Upgraded.
n/stunnel-5.50-x86_64-1.txz: Upgraded.
xfce/xfce4-systemload-plugin-1.2.2-x86_64-2.txz: Rebuilt.
Applied reworked hover timeout patch. Thanks to Rod3775.
20181203205930 | Patrick J Volkerding | 2018-12-04 | 2 | -1/+54 |
* | Sat Dec 1 03:16:35 UTC 2018...ap/texinfo-6.5-x86_64-7.txz: Rebuilt.
Recompiled against perl-5.28.1.
ap/vim-8.1.0552-x86_64-1.txz: Upgraded.
Compiled against perl-5.28.1.
d/perl-5.28.1-x86_64-1.txz: Upgraded.
Upgraded DBD-mysql-4.049, DBI-1.642, abd IO-Socket-SSL-2.060.
Added Devel-CheckLib-1.13 (needed by DBD-mysql-4.049).
kde/perlkde-4.14.3-x86_64-7.txz: Rebuilt.
Recompiled against perl-5.28.1.
kde/perlqt-4.14.3-x86_64-8.txz: Rebuilt.
Recompiled against perl-5.28.1.
n/epic5-2.0.1-x86_64-7.txz: Rebuilt.
Recompiled against perl-5.28.1.
n/irssi-1.1.1-x86_64-5.txz: Rebuilt.
Recompiled against perl-5.28.1.
n/net-snmp-5.8-x86_64-4.txz: Rebuilt.
Recompiled against perl-5.28.1.
n/ntp-4.2.8p12-x86_64-4.txz: Rebuilt.
Recompiled against perl-5.28.1.
xap/hexchat-2.14.2-x86_64-2.txz: Rebuilt.
Recompiled against perl-5.28.1.
xap/mozilla-thunderbird-60.3.2-x86_64-1.txz: Upgraded.
This is a bugfix release. For more information, see:
https://www.mozilla.org/en-US/thunderbird/60.3.2/releasenotes/
xap/rxvt-unicode-9.22-x86_64-6.txz: Rebuilt.
Recompiled against perl-5.28.1.
xap/vim-gvim-8.1.0552-x86_64-1.txz: Upgraded.
Compiled against perl-5.28.1.
xfce/xfce4-systemload-plugin-1.2.2-x86_64-1.txz: Upgraded.
20181201031635 | Patrick J Volkerding | 2018-12-01 | 2 | -54/+1 |
* | Sat Nov 24 20:44:07 UTC 2018...a/tree-1.8.0-x86_64-1.txz: Upgraded.
ap/cups-filters-1.21.4-x86_64-1.txz: Upgraded.
ap/itstool-2.0.5-x86_64-1.txz: Upgraded.
d/Cython-0.29.1-x86_64-1.txz: Upgraded.
l/dconf-0.30.1-x86_64-1.txz: Upgraded.
l/elfutils-0.175-x86_64-1.txz: Upgraded.
l/gc-8.0.0-x86_64-1.txz: Upgraded.
l/gobject-introspection-1.58.1-x86_64-1.txz: Upgraded.
l/json-glib-1.4.4-x86_64-1.txz: Upgraded.
l/keyutils-1.6-x86_64-1.txz: Upgraded.
l/libjpeg-turbo-2.0.1-x86_64-1.txz: Upgraded.
l/libpsl-0.20.2-x86_64-1.txz: Upgraded.
l/libsecret-0.18.6-x86_64-3.txz: Rebuilt.
Recompiled with --enable-introspection (also picks up Vala support).
n/cyrus-sasl-2.1.27-x86_64-1.txz: Upgraded.
n/dovecot-2.3.4-x86_64-1.txz: Upgraded.
n/mailx-12.5-x86_64-4.txz: Removed.
n/s-nail-14.9.11-x86_64-1.txz: Added.
This package replaces mailx. Thanks to Johannes Schoepfer.
tcl/tcl-8.6.9-x86_64-1.txz: Upgraded.
tcl/tk-8.6.9.1-x86_64-1.txz: Upgraded.
xap/gucharmap-11.0.3-x86_64-1.txz: Upgraded.
xfce/xfce4-clipman-plugin-1.4.3-x86_64-1.txz: Upgraded.
xfce/xfce4-screenshooter-1.9.3-x86_64-1.txz: Upgraded.
20181124204407 | Patrick J Volkerding | 2018-11-25 | 4 | -6/+6 |
* | Thu Nov 22 05:56:56 UTC 2018...a/kernel-generic-4.19.3-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.3-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.3-x86_64-1.txz: Upgraded.
a/openssl-solibs-1.1.1a-x86_64-1.txz: Upgraded.
a/sysvinit-scripts-2.1-noarch-21.txz: Rebuilt.
rc.S: Don't run rc.fuse - udev takes care of the FUSE module and filesystem.
rc.S: Support replacing the /etc/mtab file with a symlink to /proc/mounts.
rc.6: Show more information when unmounting filesystems at shutdown.
ap/ghostscript-9.26-x86_64-1.txz: Upgraded.
ap/mariadb-10.3.11-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues.
For more information, see:
https://mariadb.com/kb/en/library/mariadb-10311-release-notes/
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3282
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2016-9843
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3174
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3143
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3156
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3251
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3185
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3277
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3162
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3173
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3200
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3284
(* Security fix *)
d/cmake-3.13.0-x86_64-1.txz: Upgraded.
d/git-2.19.2-x86_64-1.txz: Upgraded.
d/kernel-headers-4.14.63-x86-1.txz: Upgraded.
d/kernel-headers-4.19.3-x86-1.txz: Upgraded.
d/vala-0.42.3-x86_64-1.txz: Added.
k/kernel-source-4.19.3-noarch-1.txz: Upgraded.
l/adwaita-icon-theme-3.30.0-noarch-1.txz: Upgraded.
l/at-spi2-atk-2.30.0-x86_64-1.txz: Upgraded.
l/at-spi2-core-2.30.0-x86_64-1.txz: Upgraded.
l/atk-2.30.0-x86_64-1.txz: Upgraded.
l/atkmm-2.28.0-x86_64-1.txz: Upgraded.
l/dconf-0.28.0-x86_64-1.txz: Upgraded.
dconf and dconf-editor require Vala; the alternative would be to try to
stick with the old versions forever, and we don't want to do that.
l/dconf-editor-3.30.2-x86_64-1.txz: Upgraded.
l/gcr-3.28.0-x86_64-3.txz: Rebuilt.
Recompiled to add Vala bindings.
l/gdk-pixbuf2-2.38.0-x86_64-1.txz: Upgraded.
l/gexiv2-0.10.9-x86_64-1.txz: Upgraded.
l/glib-networking-2.58.0-x86_64-1.txz: Upgraded.
l/glib2-2.58.1-x86_64-1.txz: Upgraded.
l/glibmm-2.58.0-x86_64-1.txz: Upgraded.
l/gobject-introspection-1.58.0-x86_64-1.txz: Upgraded.
l/gtk+3-3.24.1-x86_64-1.txz: Upgraded.
l/gtkmm3-3.24.0-x86_64-1.txz: Upgraded.
l/gvfs-1.38.1-x86_64-1.txz: Upgraded.
l/libcap-2.26-x86_64-1.txz: Upgraded.
l/libpsl-0.20.1-x86_64-1.txz: Added.
Required by libsoup.
l/libsoup-2.64.2-x86_64-1.txz: Upgraded.
l/pangomm-2.42.0-x86_64-1.txz: Upgraded.
l/pygobject3-3.30.2-x86_64-1.txz: Upgraded.
l/vte-0.54.2-x86_64-1.txz: Upgraded.
n/openssl-1.1.1a-x86_64-1.txz: Upgraded.
This update fixes timing side channel attacks on DSA and ECDSA signature
generation that could allow an attacker to recover the private key.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0734
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0735
(* Security fix *)
x/pixman-0.36.0-x86_64-1.txz: Upgraded.
xfce/xfce4-terminal-0.8.7.4-x86_64-2.txz: Rebuilt.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20181122055656 | Patrick J Volkerding | 2018-11-22 | 1 | -1/+1 |
* | Tue Oct 30 21:50:53 UTC 2018...a/aaa_terminfo-6.1_20181027-x86_64-1.txz: Upgraded.
ap/hplip-3.18.10-x86_64-1.txz: Upgraded.
d/bison-3.2-x86_64-1.txz: Upgraded.
d/strace-4.25-x86_64-1.txz: Upgraded.
l/libsigc++-2.10.1-x86_64-1.txz: Upgraded.
l/ncurses-6.1_20181027-x86_64-1.txz: Upgraded.
l/xapian-core-1.4.8-x86_64-1.txz: Upgraded.
n/getmail-5.7-x86_64-1.txz: Upgraded.
xfce/xfce4-notifyd-0.4.3-x86_64-1.txz: Upgraded.
20181030215053 | Patrick J Volkerding | 2018-10-31 | 2 | -2/+2 |
* | Wed Oct 17 03:11:25 UTC 2018...a/bin-11.1-x86_64-3.txz: Rebuilt.
Renamed mktemp to mktemp-debianutils.
Removed bban and sysvbanner which seem to be lacking proper licensing info.
a/coreutils-8.30-x86_64-2.txz: Rebuilt.
Renamed mktemp-gnu to mktemp.
a/xfsprogs-4.18.0-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-63.1.
ap/alsa-utils-1.1.7-x86_64-1.txz: Upgraded.
ap/sqlite-3.25.2-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-63.1.
d/ccache-3.5-x86_64-1.txz: Upgraded.
kde/calligra-2.9.11-x86_64-26.txz: Rebuilt.
Recompiled against icu4c-63.1.
l/alsa-lib-1.1.7-x86_64-1.txz: Upgraded.
l/alsa-plugins-1.1.7-x86_64-1.txz: Upgraded.
l/boost-1.68.0-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-63.1.
l/harfbuzz-1.9.0-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-63.1.
l/icu4c-63.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
Those of you using Plasma 5 or various third party packages should know by
now what it means when icu4c gets a bump in -current. You may want to wait
a few days for those things to appear again rebuilt against this.
l/libical-3.0.4-x86_64-1.txz: Upgraded.
Compiled against icu4c-63.1.
l/libssh-0.7.6-x86_64-1.txz: Upgraded.
Fixed authentication bypass vulnerability.
For more information, see:
https://www.libssh.org/2018/10/16/libssh-0-8-4-and-0-7-6-security-and-bugfix-release/
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10933
(* Security fix *)
l/libvisio-0.1.6-x86_64-5.txz: Rebuilt.
Recompiled against icu4c-63.1.
l/qt-4.8.7-x86_64-11.txz: Rebuilt.
Recompiled against icu4c-63.1.
l/raptor2-2.0.15-x86_64-6.txz: Rebuilt.
Recompiled against icu4c-63.1.
n/dovecot-2.3.3-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-63.1.
n/php-7.2.11-x86_64-1.txz: Upgraded.
Compiled against icu4c-63.1.
n/postfix-3.3.1-x86_64-3.txz: Rebuilt.
Recompiled against icu4c-63.1.
n/tin-2.4.2-x86_64-4.txz: Rebuilt.
Recompiled against icu4c-63.1.
t/texlive-2018.180822-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-63.1.
x/libdrm-2.4.96-x86_64-1.txz: Upgraded.
xfce/exo-0.12.3-x86_64-1.txz: Upgraded.
extra/brltty/brltty-5.6-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-63.1.
extra/pure-alsa-system/alsa-lib-1.1.7-x86_64-1_alsa.txz: Upgraded.
extra/pure-alsa-system/alsa-plugins-1.1.7-x86_64-1_alsa.txz: Upgraded.
20181017031125 | Patrick J Volkerding | 2018-10-17 | 1 | -1/+1 |
* | Fri Sep 28 03:55:56 UTC 2018...ap/sqlite-3.25.2-x86_64-1.txz: Upgraded.
d/rust-1.29.1-x86_64-1.txz: Upgraded.
l/apr-1.6.5-x86_64-1.txz: Upgraded.
20180928035556 | Patrick J Volkerding | 2018-09-28 | 1 | -1/+1 |
* | Fri Sep 21 18:51:07 UTC 2018...a/eudev-3.2.6-x86_64-1.txz: Upgraded.
a/glibc-solibs-2.28-x86_64-2.txz: Upgraded.
a/grub-2.02-x86_64-3.txz: Rebuilt.
Patched to fix compatibility with recent xfsprogs. Thanks to Markus Wiesner.
a/kernel-generic-4.14.71-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.71-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.71-x86_64-1.txz: Upgraded.
ap/opus-tools-0.2-x86_64-1.txz: Upgraded.
ap/sqlite-3.25.1-x86_64-1.txz: Upgraded.
d/icecream-20180905_cdc6ff8-x86_64-1.txz: Upgraded.
d/kernel-headers-4.14.71-x86-1.txz: Upgraded.
d/llvm-7.0.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
k/kernel-source-4.14.71-noarch-1.txz: Upgraded.
l/ffmpeg-3.4.4-x86_64-2.txz: Rebuilt.
Don't try to link with Samba since the latest version is not compatible.
l/glibc-2.28-x86_64-2.txz: Upgraded.
All packages have been patched where needed for glibc-2.28 and compile
tested here. Thanks to nobodino for the help.
l/glibc-i18n-2.28-x86_64-2.txz: Upgraded.
l/glibc-profile-2.28-x86_64-2.txz: Upgraded.
l/gst-plugins-base-1.14.3-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.14.3-x86_64-1.txz: Upgraded.
l/gst-plugins-libav-1.14.3-x86_64-1.txz: Upgraded.
l/gstreamer-1.14.3-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_11-x86_64-1.txz: Upgraded.
l/libopusenc-0.2-x86_64-1.txz: Added.
l/librsvg-2.44.3-x86_64-1.txz: Upgraded.
l/opus-1.3_rc2-x86_64-1.txz: Upgraded.
l/opusfile-0.11-x86_64-1.txz: Upgraded.
l/soprano-2.9.4-x86_64-3.txz: Rebuilt.
Recompiled to drop virtuoso dependency.
l/virtuoso-ose-6.1.8-x86_64-9.txz: Removed.
Even KDE4 has migrated away from actually using this for anything. The last
thing in Slackware that was dependent on it was Soprano, which has been
recompiled to no longer use it.
n/postfix-3.3.1-x86_64-2.txz: Rebuilt.
Recompiled so that it quits whining about OpenSSL. Thanks to shastah.
x/mesa-18.2.1-x86_64-1.txz: Upgraded.
Compiled against llvm-7.0.0.
x/xf86-video-vmware-13.3.0-x86_64-2.txz: Rebuilt.
Recompiled against llvm-7.0.0.
x/xterm-336-x86_64-1.txz: Upgraded.
extra/pure-alsa-system/ffmpeg-3.4.4-x86_64-2_alsa.txz: Rebuilt.
Don't try to link with Samba since the latest version is not compatible.
extra/pure-alsa-system/gst-plugins-good-1.14.3-x86_64-1_alsa.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20180921185107 | Patrick J Volkerding | 2018-09-22 | 26 | -26/+26 |
* | Thu Sep 13 21:41:51 UTC 2018...a/sysvinit-scripts-2.1-noarch-20.txz: Rebuilt.
rc.6: it was reported by birdboy that JFS is not properly unmounted unless
the order of unmounting local filesystems followed by remounting the root
filesystem read-only is inverted. I tried that, and although it did get rid
of a "/ filesystem is busy" error during shutdown, the JFS / filesystem was
still checked at boot (and found to be clean). I believe that the existing
order of unmounting non-root filesystems followed by remounting the root
filesystem as read-only is the correct order, and found that putting
another sync between these also gets rid of the error on shutdown, so I've
done that. When using JFS as the root filesystem there's still another
similar error message that's generated earlier in the boot, though. I'm
unable to find any way to shut down a JFS root partition in a way that
leaves it clean enough that fsck will not check it at boot, but it is always
found to be clean so this should only be cosmetic. I recall this behavior of
JFS going all the way back to when it was first added to the kernel. If
anyone has a better fix, I'll take a look at it, but in my opinion it's not
really anything to worry about.
ap/ghostscript-9.25-x86_64-1.txz: Upgraded.
This release fixes problems with argument handling, some unintended
results of the security fixes to the SAFER file access restrictions
(specifically accessing ICC profile files), and some additional
security issues over the recent 9.24 release.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16509
(* Security fix *)
ap/squashfs-tools-20180612_6e242dc-x86_64-1.txz: Upgraded.
Linked against libzstd.so.1. Thanks to alienBOB.
ap/sudo-1.8.25p1-x86_64-1.txz: Upgraded.
d/binutils-2.31.1-x86_64-4.txz: Rebuilt.
Since baldzhang has pointed out a valid use case for windres on Linux,
we are restoring the "Windows only" utilities, as none of them are
very large and there may be valid uses for the other ones as well.
l/freetype-2.9.1-x86_64-2.txz: Rebuilt.
Patched to build properly if windres is present on the machine.
l/sg3_utils-1.44-x86_64-1.txz: Upgraded.
l/zstd-1.3.5-x86_64-1.txz: Added.
Thanks to alienBOB.
xfce/tumbler-0.2.3-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
Use the ter-114v terminus font. It has been reported that the font we were
using (ter-v14v) restricts the available console colors from 16 to 8 due
to needing an extra bit for the higher number of available glyphs (though
in testing here I couldn't see any difference). The new font covers
ISO8859-1, ISO8859-15, and Windows-1252 codepages. I'm still not sure it's
the best choice, so additional input is welcomed.
Thanks to bormant.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Use the ter-114v terminus font.
20180913214151 | Patrick J Volkerding | 2018-09-14 | 1 | -1/+1 |
* | Mon Sep 10 21:00:00 UTC 2018...a/kernel-generic-4.14.69-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.69-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.69-x86_64-1.txz: Upgraded.
a/xfsprogs-4.18.0-x86_64-1.txz: Upgraded.
ap/nano-3.0-x86_64-1.txz: Upgraded.
d/cmake-3.12.2-x86_64-1.txz: Upgraded.
d/kernel-headers-4.14.69-x86-1.txz: Upgraded.
k/kernel-source-4.14.69-noarch-1.txz: Upgraded.
Config changes since 4.14.68:
CRYPTO_LZO m -> y
FRONTSWAP n -> y
ZBUD n -> m
ZPOOL m -> y
+ZSWAP y
Thanks to Darth Vader.
l/glib2-2.56.2-x86_64-2.txz: Rebuilt.
Make links in the documentation directory to all of the API documentation
found under /usr/share/gtk-doc/html. Thanks to Didier Spaier.
l/libarchive-3.3.3-x86_64-1.txz: Upgraded.
n/links-2.17-x86_64-1.txz: Upgraded.
xfce/tumbler-0.2.2-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20180910210000 | Patrick J Volkerding | 2018-09-11 | 2 | -2/+2 |
* | Tue Aug 21 18:39:27 UTC 2018...a/openssl-solibs-1.1.0i-x86_64-2.txz: Rebuilt.
ap/cups-filters-1.21.0-x86_64-1.txz: Upgraded.
Compiled against poppler-0.68.0.
ap/qpdf-8.2.1-x86_64-1.txz: Upgraded.
kde/calligra-2.9.11-x86_64-25.txz: Rebuilt.
Recompiled against poppler-0.68.0.
l/babl-0.1.56-x86_64-1.txz: Upgraded.
l/gdbm-1.18-x86_64-1.txz: Upgraded.
l/gegl-0.4.8-x86_64-1.txz: Upgraded.
l/jmtpfs-0.5-x86_64-1.txz: Added.
l/pango-1.42.4-x86_64-1.txz: Upgraded.
l/poppler-0.68.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
n/dhcpcd-7.0.8-x86_64-1.txz: Upgraded.
n/openssl-1.1.0i-x86_64-2.txz: Rebuilt.
Fixed c_rehash script.
n/php-7.2.9-x86_64-1.txz: Upgraded.
t/texlive-2018.180820-x86_64-1.txz: Upgraded.
Compiled against poppler-0.68.0.
texdoc fixed - a cache file was missing
synctex header was missing (for building third-party apps)
xindy was broken - recompiled from source
Thanks to Johannes Schoepfer.
x/libX11-1.6.6-x86_64-1.txz: Upgraded.
This update fixes some security issues:
Fixed crash on invalid reply (CVE-2018-14598).
Fixed off-by-one writes (CVE-2018-14599).
Fixed out of boundary write (CVE-2018-14600).
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14598
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14599
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14600
(* Security fix *)
xap/gimp-2.10.6-x86_64-1.txz: Upgraded.
xfce/tumbler-0.2.1-x86_64-6.txz: Rebuilt.
Recompiled against poppler-0.68.0.
20180821183927 | Patrick J Volkerding | 2018-08-22 | 1 | -1/+1 |
* | Fri Jul 20 23:16:32 UTC 2018...ap/cups-filters-1.20.4-x86_64-2.txz: Rebuilt.
Recompiled against poppler-0.67.0.
kde/calligra-2.9.11-x86_64-23.txz: Rebuilt.
Recompiled against poppler-0.67.0.
l/ffmpeg-3.4.4-x86_64-1.txz: Upgraded.
l/gst-plugins-base-1.14.2-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.14.2-x86_64-1.txz: Upgraded.
l/gst-plugins-libav-1.14.2-x86_64-1.txz: Upgraded.
l/gstreamer-1.14.2-x86_64-1.txz: Upgraded.
l/poppler-0.67.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
n/php-7.2.8-x86_64-1.txz: Upgraded.
This is a security release which also contains several minor bug fixes.
(* Security fix *)
t/texlive-2018.180630-x86_64-2.txz: Rebuilt.
Recompiled against poppler-0.67.0.
xap/MPlayer-20180720-x86_64-1.txz: Upgraded.
xfce/tumbler-0.2.1-x86_64-5.txz: Rebuilt.
Recompiled against poppler-0.67.0.
extra/pure-alsa-system/MPlayer-20180720-x86_64-1_alsa.txz: Upgraded.
extra/pure-alsa-system/ffmpeg-3.4.4-x86_64-1_alsa.txz: Upgraded.
extra/pure-alsa-system/gst-plugins-good-1.14.2-x86_64-1_alsa.txz: Upgraded.
pasture/php-5.6.37-x86_64-1.txz: Upgraded.
Several security bugs have been fixed in this release, including:
Int Overflow lead to Heap OverFlow in exif_thumbnail_extract of exif.c
heap-buffer-overflow (READ of size 48) while reading exif data
(* Security fix *)
20180720231632 | Patrick J Volkerding | 2018-07-21 | 1 | -1/+1 |
* | Mon Jun 25 21:22:04 UTC 2018...a/eudev-3.2.5-x86_64-4.txz: Rebuilt.
Added a couple more modules to watchdog.conf.
l/fribidi-1.0.4-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_3-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-60.1.0esr-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
(* Security fix *)
xap/network-manager-applet-1.8.14-x86_64-1.txz: Upgraded.
xap/rxvt-unicode-9.22-x86_64-5.txz: Rebuilt.
Recompiled against perl-5.28.0.
xfce/Thunar-1.8.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
xfce/xfce4-pulseaudio-plugin-0.4.1-x86_64-1.txz: Upgraded.
xfce/xfce4-screenshooter-1.9.2-x86_64-1.txz: Upgraded.
xfce/xfce4-taskmanager-1.2.1-x86_64-1.txz: Upgraded.
xfce/xfdesktop-4.12.4-x86_64-3.txz: Rebuilt.
Rebuilt after upgrading to Thunar-1.8.1.
20180625212204 | Patrick J Volkerding | 2018-06-26 | 5 | -8/+8 |
* | Thu Jun 21 22:58:42 UTC 2018...a/pkgtools-15.0-noarch-20.txz: Rebuilt.
Move pkgtools database to /var/lib/pkgtools/.
Move removed logs to /var/log/pkgtools/.
a/sysvinit-2.90-x86_64-1.txz: Upgraded.
ap/cups-filters-1.20.3-x86_64-3.txz: Rebuilt.
Recompiled against poppler-0.66.0.
kde/calligra-2.9.11-x86_64-22.txz: Rebuilt.
Recompiled against poppler-0.66.0.
l/dbus-python-1.2.8-x86_64-1.txz: Upgraded.
l/gc-7.6.6-x86_64-1.txz: Upgraded.
l/harfbuzz-1.8.1-x86_64-1.txz: Upgraded.
l/poppler-0.66.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/pulseaudio-12.0-x86_64-1.txz: Upgraded.
n/dhcpcd-7.0.6-x86_64-1.txz: Upgraded.
n/php-7.2.7-x86_64-1.txz: Upgraded.
Added support for libedit.
t/texlive-2017.171108-x86_64-7.txz: Rebuilt.
Recompiled against poppler-0.66.0.
x/libwacom-0.30-x86_64-1.txz: Upgraded.
xfce/exo-0.12.2-x86_64-1.txz: Upgraded.
xfce/tumbler-0.2.1-x86_64-4.txz: Rebuilt.
Recompiled against poppler-0.66.0.
xfce/xfce4-settings-4.12.4-x86_64-1.txz: Upgraded.
20180621225842 | Patrick J Volkerding | 2018-06-22 | 4 | -4/+4 |
* | Mon May 28 19:12:29 UTC 2018...a/pkgtools-15.0-noarch-13.txz: Rebuilt.
installpkg: default line length for --terselength is the number of columns.
removepkg: added --terse mode.
upgradepkg: default line length for --terselength is the number of columns.
upgradepkg: accept -option in addition to --option.
ap/vim-8.1.0026-x86_64-1.txz: Upgraded.
d/bison-3.0.5-x86_64-1.txz: Upgraded.
e/emacs-26.1-x86_64-1.txz: Upgraded.
kde/kopete-4.14.3-x86_64-8.txz: Rebuilt.
Recompiled against libidn-1.35.
n/conntrack-tools-1.4.5-x86_64-1.txz: Upgraded.
n/libnetfilter_conntrack-1.0.7-x86_64-1.txz: Upgraded.
n/libnftnl-1.1.0-x86_64-1.txz: Upgraded.
n/links-2.16-x86_64-2.txz: Rebuilt.
Rebuilt to enable X driver for -g mode.
n/lynx-2.8.9dev.19-x86_64-1.txz: Upgraded.
n/nftables-0.8.5-x86_64-1.txz: Upgraded.
n/p11-kit-0.23.11-x86_64-1.txz: Upgraded.
n/ulogd-2.0.7-x86_64-1.txz: Upgraded.
n/whois-5.3.1-x86_64-1.txz: Upgraded.
xap/network-manager-applet-1.8.12-x86_64-1.txz: Upgraded.
xap/vim-gvim-8.1.0026-x86_64-1.txz: Upgraded.
20180528191229 | Patrick J Volkerding | 2018-05-31 | 69 | -424/+597 |
* | Slackware 14.2...Thu Jun 30 20:26:57 UTC 2016
Slackware 14.2 x86_64 stable is released!
The long development cycle (the Linux community has lately been living in
"interesting times", as they say) is finally behind us, and we're proud to
announce the release of Slackware 14.2. The new release brings many updates
and modern tools, has switched from udev to eudev (no systemd), and adds
well over a hundred new packages to the system. Thanks to the team, the
upstream developers, the dedicated Slackware community, and everyone else
who pitched in to help make this release a reality.
The ISOs are off to be replicated, a 6 CD-ROM 32-bit set and a dual-sided
32-bit/64-bit x86/x86_64 DVD. Please consider supporting the Slackware
project by picking up a copy from store.slackware.com. We're taking
pre-orders now, and offer a discount if you sign up for a subscription.
Have fun! :-)
slackware-14.2 | Patrick J Volkerding | 2018-05-31 | 51 | -675/+459 |
* | Slackware 14.1...Mon Nov 4 17:08:47 UTC 2013
Slackware 14.1 x86_64 stable is released!
It's been another interesting release cycle here at Slackware bringing
new features like support for UEFI machines, updated compilers and
development tools, the switch from MySQL to MariaDB, and many more
improvements throughout the system. Thanks to the team, the upstream
developers, the dedicated Slackware community, and everyone else who
pitched in to help make this release a reality.
The ISOs are off to be replicated, a 6 CD-ROM 32-bit set and a
dual-sided
32-bit/64-bit x86/x86_64 DVD. Please consider supporting the Slackware
project by picking up a copy from store.slackware.com. We're taking
pre-orders now, and offer a discount if you sign up for a subscription.
Have fun! :-)
slackware-14.1 | Patrick J Volkerding | 2018-05-31 | 22 | -45/+124 |
* | Slackware 14.0...Wed Sep 26 01:10:42 UTC 2012
Slackware 14.0 x86_64 stable is released!
We're perfectionists here at Slackware, so this release has been a long
time a-brewing. But we think you'll agree that it was worth the wait.
Slackware 14.0 combines modern components, ease of use, and flexible
configuration... our "KISS" philosophy demands it.
The ISOs are off to be replicated, a 6 CD-ROM 32-bit set and a
dual-sided
32-bit/64-bit x86/x86_64 DVD. Please consider supporting the Slackware
project by picking up a copy from store.slackware.com. We're taking
pre-orders now, and offer a discount if you sign up for a subscription.
Thanks to everyone who helped make this happen. The Slackware team, the
upstream developers, and (of course) the awesome Slackware user
community.
Have fun! :-)
slackware-14.0 | Patrick J Volkerding | 2018-05-31 | 73 | -0/+4434 |