summaryrefslogtreecommitdiffstats
path: root/source (follow)
Commit message (Expand)AuthorAgeFilesLines
* Mon May 18 19:17:21 UTC 2020...Greetings! After three months in /testing, the PAM merge into the main tree is now complete. When updating, be sure to install the new pam, cracklib, and libpwquality packages or you may find yourself locked out of your machine. Otherwise, these changes should be completely transparent and you shouldn't notice any obvious operational differences. Be careful if you make any changes in /etc/pam.d/ - leaving an extra console logged in while testing PAM config changes is a recommended standard procedure. Thanks again to Robby Workman, Vincent Batts, Phantom X, and ivandi for help implementing this. It's not done yet and there will be more fine-tuning of the config files, but now we can move on to build some other updates. Enjoy! a/cracklib-2.9.7-x86_64-1.txz: Added. a/kernel-firmware-20200517_f8d32e4-noarch-1.txz: Upgraded. a/libcgroup-0.41-x86_64-7.txz: Rebuilt. Rebuilt to add PAM support. a/libpwquality-1.4.2-x86_64-1.txz: Added. a/lilo-24.2-x86_64-9.txz: Rebuilt. Enable the "compact" option by default. liloconfig: correctly set the root partition. a/pam-1.3.1-x86_64-1.txz: Added. a/shadow-4.8.1-x86_64-7.txz: Rebuilt. Rebuilt to add PAM support. a/utempter-1.2.0-x86_64-1.txz: Upgraded. a/util-linux-2.35.1-x86_64-6.txz: Rebuilt. Rebuilt to add PAM support. a/xfsprogs-5.6.0-x86_64-2.txz: Rebuilt. Recompiled against icu4c-67.1. ap/at-3.2.1-x86_64-2.txz: Rebuilt. Rebuilt to add PAM support. ap/cups-2.3.3-x86_64-2.txz: Rebuilt. Rebuilt to add PAM support. ap/hplip-3.20.5-x86_64-2.txz: Rebuilt. Rebuilt to add PAM support. ap/mariadb-10.4.13-x86_64-2.txz: Rebuilt. Rebuilt to add PAM support. ap/screen-4.8.0-x86_64-2.txz: Rebuilt. Rebuilt to add PAM support. ap/soma-3.3.0-noarch-1.txz: Upgraded. Thanks to David Woodfall. ap/sqlite-3.31.1-x86_64-2.txz: Rebuilt. Recompiled against icu4c-67.1. ap/sudo-1.9.0-x86_64-2.txz: Rebuilt. Rebuilt to add PAM support. ap/vim-8.2.0788-x86_64-1.txz: Upgraded. d/bison-3.6.2-x86_64-1.txz: Upgraded. d/meson-0.54.2-x86_64-1.txz: Upgraded. d/python-setuptools-46.4.0-x86_64-1.txz: Upgraded. d/vala-0.48.6-x86_64-1.txz: Upgraded. kde/calligra-2.9.11-x86_64-36.txz: Rebuilt. Recompiled against icu4c-67.1. kde/kde-workspace-4.11.22-x86_64-7.txz: Rebuilt. Rebuilt to add PAM support. l/ConsoleKit2-1.2.1-x86_64-4.txz: Rebuilt. Rebuilt to add PAM support. l/boost-1.73.0-x86_64-2.txz: Rebuilt. Recompiled against icu4c-67.1. l/gnome-keyring-3.36.0-x86_64-2.txz: Rebuilt. Rebuilt to add PAM support. l/harfbuzz-2.6.6-x86_64-2.txz: Rebuilt. Recompiled against icu4c-67.1. l/icu4c-67.1-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/imagemagick-7.0.10_13-x86_64-1.txz: Upgraded. l/libcap-2.34-x86_64-2.txz: Rebuilt. Rebuilt to add PAM support. l/libical-3.0.8-x86_64-2.txz: Rebuilt. Recompiled against icu4c-67.1. l/libuv-1.38.0-x86_64-1.txz: Upgraded. l/libvisio-0.1.7-x86_64-3.txz: Rebuilt. Recompiled against icu4c-67.1. l/polkit-0.116-x86_64-3.txz: Rebuilt. Rebuilt to add PAM support. l/qt-4.8.7-x86_64-16.txz: Rebuilt. Recompiled against icu4c-67.1. l/qt5-5.13.2-x86_64-4.txz: Rebuilt. Recompiled against icu4c-67.1. l/qt5-webkit-5.212.0_alpha4-x86_64-2.txz: Rebuilt. Recompiled against icu4c-67.1. l/raptor2-2.0.15-x86_64-9.txz: Rebuilt. Recompiled against icu4c-67.1. l/system-config-printer-1.5.12-x86_64-4.txz: Rebuilt. Rebuilt to add PAM support. l/vte-0.60.2-x86_64-2.txz: Rebuilt. Recompiled against icu4c-67.1. n/cifs-utils-6.10-x86_64-4.txz: Rebuilt. Rebuilt to add PAM support. n/cyrus-sasl-2.1.27-x86_64-4.txz: Rebuilt. Rebuilt to add PAM support. n/dovecot-2.3.10.1-x86_64-1.txz: Upgraded. Rebuilt to add PAM support. Compiled against icu4c-67.1. This update fixes several denial-of-service vulnerabilities. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10957 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10958 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10967 (* Security fix *) n/mutt-1.14.1-x86_64-1.txz: Upgraded. n/netatalk-3.1.12-x86_64-3.txz: Rebuilt. Rebuilt to add PAM support. n/netkit-rsh-0.17-x86_64-3.txz: Rebuilt. Rebuilt to add PAM support. n/nss-pam-ldapd-0.9.11-x86_64-1.txz: Added. n/openssh-8.2p1-x86_64-3.txz: Rebuilt. Rebuilt to add PAM support. n/openvpn-2.4.9-x86_64-2.txz: Rebuilt. Rebuilt to add PAM support. n/pam-krb5-4.9-x86_64-1.txz: Added. n/php-7.4.6-x86_64-2.txz: Rebuilt. Recompiled against icu4c-67.1. n/popa3d-1.0.3-x86_64-4.txz: Rebuilt. Rebuilt to add PAM support. n/postfix-3.5.2-x86_64-1.txz: Upgraded. Compiled against icu4c-67.1. n/ppp-2.4.8-x86_64-2.txz: Rebuilt. Rebuilt to add PAM support. n/proftpd-1.3.6c-x86_64-2.txz: Rebuilt. Rebuilt to add PAM support. n/samba-4.12.2-x86_64-2.txz: Rebuilt. Rebuilt to add PAM support. Recompiled against icu4c-67.1. n/tin-2.4.4-x86_64-2.txz: Rebuilt. Recompiled against icu4c-67.1. n/vsftpd-3.0.3-x86_64-6.txz: Rebuilt. Rebuilt to add PAM support. t/texlive-2019.190626-x86_64-4.txz: Rebuilt. Recompiled against icu4c-67.1. x/vulkan-sdk-1.2.135.0-x86_64-1.txz: Upgraded. x/xdm-1.1.11-x86_64-10.txz: Rebuilt. Rebuilt to add PAM support. x/xisxwayland-1-x86_64-1.txz: Added. xap/sane-1.0.30-x86_64-1.txz: Upgraded. This update fixes several security issues. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12867 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12862 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12863 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12865 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12866 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12861 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12864 (* Security fix *) xap/vim-gvim-8.2.0788-x86_64-1.txz: Upgraded. xap/xlockmore-5.63-x86_64-2.txz: Rebuilt. Rebuilt to add PAM support. xap/xscreensaver-5.44-x86_64-2.txz: Rebuilt. Rebuilt to add PAM support. extra/brltty/brltty-6.1-x86_64-2.txz: Rebuilt. Recompiled against icu4c-67.1. extra/pure-alsa-system/qt5-5.13.2-x86_64-4_alsa.txz: Rebuilt. Recompiled against icu4c-67.1. isolinux/initrd.img: Rebuilt. Added PAM libraries, security modules, and config files. usb-and-pxe-installers/usbboot.img: Rebuilt. Added PAM libraries, security modules, and config files. 20200518191721 Patrick J Volkerding2020-05-18112-337/+4380
* Fri May 15 07:28:15 UTC 2020...Hey folks, just a heads-up that PAM is about to be merged into the main tree. We can't have it blocking other upgrades any longer. The config files could be improved (adding support for pam_krb5 and pam_ldap, for example), but they'll do for now. Have a good weekend, and enjoy these updates! :-) a/aaa_elflibs-15.0-x86_64-23.txz: Rebuilt. Upgraded: libcap.so.2.34, libelf-0.179.so, liblzma.so.5.2.5, libglib-2.0.so.0.6400.2, libgmodule-2.0.so.0.6400.2, libgobject-2.0.so.0.6400.2, libgthread-2.0.so.0.6400.2, liblber-2.4.so.2.10.13, libldap-2.4.so.2.10.13, libpcre2-8.so.0.10.0. Added temporarily in preparation for upgrading icu4c: libicudata.so.65.1, libicui18n.so.65.1, libicuio.so.65.1, libicutest.so.65.1, libicutu.so.65.1, libicuuc.so.65.1. a/etc-15.0-x86_64-11.txz: Rebuilt. /etc/passwd: Added ldap (UID 330). /etc/group: Added ldap (GID 330). a/kernel-generic-5.4.41-x86_64-1.txz: Upgraded. a/kernel-huge-5.4.41-x86_64-1.txz: Upgraded. a/kernel-modules-5.4.41-x86_64-1.txz: Upgraded. a/pkgtools-15.0-noarch-33.txz: Rebuilt. setup.services: added support for rc.openldap and rc.openvpn. ap/hplip-3.20.5-x86_64-1.txz: Upgraded. d/kernel-headers-5.4.41-x86-1.txz: Upgraded. d/python-setuptools-46.3.0-x86_64-1.txz: Upgraded. d/python3-3.8.3-x86_64-1.txz: Upgraded. k/kernel-source-5.4.41-noarch-1.txz: Upgraded. n/openldap-2.4.50-x86_64-1.txz: Added. This is a complete OpenLDAP package with both client and server support. Thanks to Giuseppe Di Terlizzi for help with the server parts. n/openldap-client-2.4.50-x86_64-1.txz: Removed. x/mesa-20.0.7-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. testing/packages/PAM/hplip-3.20.5-x86_64-1_pam.txz: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. 20200515072815 Patrick J Volkerding2020-05-1523-208/+456
* Wed May 13 20:01:12 UTC 2020...l/shared-mime-info-2.0-x86_64-2.txz: Rebuilt. Disable fdatasync() usage. n/ethtool-5.6-x86_64-1.txz: Upgraded. 20200513200112 Patrick J Volkerding2020-05-141-5/+4
* Tue May 12 23:49:47 UTC 2020...ap/mariadb-10.4.13-x86_64-1.txz: Upgraded. This update fixes potential denial-of-service vulnerabilities. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2752 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2812 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2814 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2760 (* Security fix *) ap/sudo-1.9.0-x86_64-1.txz: Upgraded. l/harfbuzz-2.6.6-x86_64-1.txz: Upgraded. l/tidy-html5-5.6.0-x86_64-1.txz: Added. n/epic5-2.1.2-x86_64-1.txz: Upgraded. n/php-7.4.6-x86_64-1.txz: Upgraded. Built using --with-tidy=shared. Thanks to Thom1b. This update fixes bugs and security issues: Core: Long variables cause OOM and temp files are not cleaned. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11048 (* Security fix *) x/libmypaint-1.6.1-x86_64-1.txz: Upgraded. Shared library .so-version bump. xap/gimp-2.10.18-x86_64-2.txz: Rebuilt. Recompiled against libmypaint-1.6.1. testing/packages/PAM/mariadb-10.4.13-x86_64-1_pam.txz: Upgraded. This update fixes potential denial-of-service vulnerabilities. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2752 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2812 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2814 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2760 (* Security fix *) testing/packages/PAM/sudo-1.9.0-x86_64-1_pam.txz: Upgraded. 20200512234947 Patrick J Volkerding2020-05-139-13/+163
* Mon May 11 19:13:27 UTC 2020...l/python-appdirs-1.4.4-x86_64-1.txz: Upgraded. xap/xlockmore-5.63-x86_64-1.txz: Upgraded. testing/packages/PAM/xlockmore-5.63-x86_64-1_pam.txz: Upgraded. 20200511191327 Patrick J Volkerding2020-05-121-3/+3
* Sun May 10 23:34:28 UTC 2020...a/btrfs-progs-5.6.1-x86_64-1.txz: Upgraded. a/kernel-generic-5.4.40-x86_64-1.txz: Upgraded. a/kernel-huge-5.4.40-x86_64-1.txz: Upgraded. a/kernel-modules-5.4.40-x86_64-1.txz: Upgraded. d/bison-3.6.1-x86_64-1.txz: Upgraded. d/kernel-headers-5.4.40-x86-1.txz: Upgraded. d/python-setuptools-46.2.0-x86_64-1.txz: Upgraded. k/kernel-source-5.4.40-noarch-1.txz: Upgraded. l/pcre2-10.35-x86_64-1.txz: Upgraded. l/shared-mime-info-2.0-x86_64-1.txz: Upgraded. n/ModemManager-1.12.10-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. 20200510233428 Patrick J Volkerding2020-05-119-21/+42
* Sat May 9 20:49:43 UTC 2020...ap/pamixer-1.4-x86_64-5.txz: Rebuilt. Recompiled against boost-1.73.0. d/Cython-0.29.17-x86_64-2.txz: Rebuilt. Added cython3 symlink. kde/calligra-2.9.11-x86_64-35.txz: Rebuilt. Recompiled against boost-1.73.0. l/akonadi-1.13.0-x86_64-15.txz: Rebuilt. Recompiled against boost-1.73.0. l/boost-1.73.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/freetype-2.10.2-x86_64-1.txz: Upgraded. l/imagemagick-7.0.10_11-x86_64-1.txz: Upgraded. n/libqmi-1.24.12-x86_64-1.txz: Upgraded. xap/blueman-2.1.3-x86_64-1.txz: Upgraded. testing/packages/PAM/pam-krb5-4.9-x86_64-1_pam.txz: Added. Thanks to Bart van der Hall for the packaging hints. 20200509204943 Patrick J Volkerding2020-05-1041-423/+13
* Fri May 8 21:25:24 UTC 2020...a/shadow-4.8.1-x86_64-6.txz: Rebuilt. Include manpages for sulogin(8). a/util-linux-2.35.1-x86_64-5.txz: Rebuilt. ap/sysstat-12.3.3-x86_64-1.txz: Upgraded. d/bison-3.6-x86_64-1.txz: Upgraded. l/jansson-2.13.1-x86_64-1.txz: Upgraded. n/NetworkManager-1.24.0-x86_64-1.txz: Upgraded. n/fetchmail-6.4.5-x86_64-1.txz: Upgraded. testing/packages/PAM/shadow-4.8.1-x86_64-6_pam.txz: Rebuilt. Include manpages for sulogin(8). Use this version of /bin/su. testing/packages/PAM/util-linux-2.35.1-x86_64-5_pam.txz: Rebuilt. Don't use this version of /bin/su. 20200508212524 Patrick J Volkerding2020-05-0912-18/+72
* Thu May 7 01:30:11 UTC 2020...a/kernel-generic-5.4.39-x86_64-1.txz: Upgraded. a/kernel-huge-5.4.39-x86_64-1.txz: Upgraded. a/kernel-modules-5.4.39-x86_64-1.txz: Upgraded. d/kernel-headers-5.4.39-x86-1.txz: Upgraded. k/kernel-source-5.4.39-noarch-1.txz: Upgraded. HUGETLBFS n -> y JUMP_LABEL n -> y +CGROUP_HUGETLB n +HUGETLB_PAGE y +STATIC_KEYS_SELFTEST n Thanks to camerabambai. l/libspectre-0.2.9-x86_64-1.txz: Upgraded. l/pygobject3-3.36.1-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. 20200507013011 Patrick J Volkerding2020-05-078-22/+42
* Tue May 5 20:21:27 UTC 2020...a/hwdata-0.335-noarch-1.txz: Upgraded. ap/tmux-3.1b-x86_64-1.txz: Upgraded. l/libcap-2.34-x86_64-1.txz: Upgraded. n/mutt-1.14.0-x86_64-1.txz: Upgraded. n/nfs-utils-2.4.3-x86_64-3.txz: Rebuilt. Added /var/lib/nfs/nfsdcltrack database directory for nfsdcltrack. Thanks to upnort. x/xterm-356-x86_64-1.txz: Upgraded. xap/NetworkManager-openvpn-1.8.12-x86_64-1.txz: Added. Thanks to Robby Workman. xap/mozilla-firefox-68.8.0esr-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/firefox/68.8.0/releasenotes/ https://www.mozilla.org/security/advisories/mfsa2020-17/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12387 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12388 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12389 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6831 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12392 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12393 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12395 (* Security fix *) xap/mozilla-thunderbird-68.8.0-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/thunderbird/68.8.0/releasenotes/ (* Security fix *) testing/packages/PAM/libcap-2.34-x86_64-1_pam.txz: Upgraded. 20200505202127 Patrick J Volkerding2020-05-068-25/+217
* Sun May 3 06:47:41 UTC 2020...a/kernel-generic-5.4.38-x86_64-1.txz: Upgraded. a/kernel-huge-5.4.38-x86_64-1.txz: Upgraded. a/kernel-modules-5.4.38-x86_64-1.txz: Upgraded. d/kernel-headers-5.4.38-x86-1.txz: Upgraded. d/mercurial-5.4-x86_64-1.txz: Upgraded. k/kernel-source-5.4.38-noarch-1.txz: Upgraded. l/mozilla-nss-3.52-x86_64-1.txz: Upgraded. l/python-distro-1.5.0-x86_64-1.txz: Upgraded. l/python-pillow-7.1.2-x86_64-1.txz: Upgraded. l/v4l-utils-1.18.1-x86_64-1.txz: Upgraded. xap/seamonkey-2.53.2-x86_64-1.txz: Upgraded. This update contains security fixes and improvements. For more information, see: https://www.seamonkey-project.org/releases/seamonkey2.53.2 (* Security fix *) isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. 20200503064741 Patrick J Volkerding2020-05-0315-4375/+11
* Fri May 1 18:05:38 UTC 2020...a/cryptsetup-2.3.2-x86_64-1.txz: Upgraded. a/sysvinit-scripts-2.1-noarch-30.txz: Rebuilt. rc.S: contents of mounts below /run or /var/run should be visible in both /run and /var/run. Thanks to Markus Wiesner. d/Cython-0.29.17-x86_64-1.txz: Upgraded. Dropped python2 support. d/python-pip-20.1-x86_64-1.txz: Upgraded. Dropped python2 support. d/python-setuptools-46.1.3-x86_64-1.txz: Upgraded. Dropped python2 support. l/M2Crypto-0.35.2-x86_64-5.txz: Rebuilt. Dropped python2 support. l/Mako-1.1.2-x86_64-2.txz: Rebuilt. Dropped python2 support. l/gsettings-desktop-schemas-3.36.1-x86_64-1.txz: Upgraded. l/libzip-1.6.1-x86_64-2.txz: Rebuilt. Recompiled against nettle-3.6. l/oniguruma-6.9.5_rev1-x86_64-1.txz: Upgraded. l/pycairo-1.19.1-x86_64-1.txz: Upgraded. Dropped python2 support. l/pycups-2.0.1-x86_64-1.txz: Upgraded. Dropped python2 support. l/pycurl-7.43.0.5-x86_64-1.txz: Upgraded. Dropped python2 support. l/pyparsing-2.4.7-x86_64-1.txz: Upgraded. Dropped python2 support. l/python-appdirs-1.4.3-x86_64-5.txz: Rebuilt. Dropped python2 support. l/python-certifi-2020.4.5.1-x86_64-1.txz: Upgraded. Dropped python2 support. l/python-chardet-3.0.4-x86_64-5.txz: Rebuilt. Dropped python2 support. l/python-docutils-0.16-x86_64-3.txz: Rebuilt. Dropped python2 support. l/python-enum34-1.1.10-x86_64-1.txz: Removed. l/python-future-0.18.2-x86_64-2.txz: Rebuilt. Dropped python2 support. l/python-idna-2.9-x86_64-2.txz: Rebuilt. Dropped python2 support. l/python-notify2-0.3.1-x86_64-5.txz: Rebuilt. Dropped python2 support. l/python-packaging-20.3-x86_64-2.txz: Rebuilt. Dropped python2 support. l/python-ply-3.11-x86_64-3.txz: Rebuilt. Dropped python2 support. l/python-pygments-2.6.1-x86_64-1.txz: Upgraded. Dropped python2 support. l/python-requests-2.23.0-x86_64-2.txz: Rebuilt. Dropped python2 support. l/python-sane-2.8.3-x86_64-5.txz: Rebuilt. Dropped python2 support. l/python-six-1.14.0-x86_64-2.txz: Rebuilt. Dropped python2 support. l/python-urllib3-1.25.9-x86_64-1.txz: Upgraded. Dropped python2 support. l/python2-module-collection-2.7.18-x86_64-1.txz: Added. Time to quarantine these python2 modules and pin the versions where they are (or in the case of setuptools, downgrade to the last version that doesn't complain). This will keep most of the standard python2 add-ons in one package so that we can upgrade modules for python3 without having to worry about python2 support getting dropped upstream. n/dnsmasq-2.81-x86_64-2.txz: Rebuilt. Recompiled against nettle-3.6. n/gnutls-3.6.13-x86_64-2.txz: Rebuilt. Recompiled against nettle-3.6. n/nettle-3.6-x86_64-1.txz: Upgraded. Shared library .so-version bump. x/mesa-20.0.6-x86_64-1.txz: Upgraded. x/pyxdg-0.26-x86_64-3.txz: Rebuilt. Dropped python2 support. x/ttf-tlwg-0.7.2-noarch-1.txz: Upgraded. x/xorg-server-1.20.8-x86_64-2.txz: Rebuilt. Recompiled against nettle-3.6. x/xorg-server-xephyr-1.20.8-x86_64-2.txz: Rebuilt. Recompiled against nettle-3.6. x/xorg-server-xnest-1.20.8-x86_64-2.txz: Rebuilt. Recompiled against nettle-3.6. x/xorg-server-xvfb-1.20.8-x86_64-2.txz: Rebuilt. Recompiled against nettle-3.6. x/xorg-server-xwayland-1.20.8-x86_64-2.txz: Rebuilt. Recompiled against nettle-3.6. x/xterm-355-x86_64-1.txz: Upgraded. xap/rdesktop-1.9.0-x86_64-2.txz: Rebuilt. Recompiled against nettle-3.6. extra/tigervnc/tigervnc-1.10.1-x86_64-3.txz: Rebuilt. Recompiled against nettle-3.6. 20200501180538 Patrick J Volkerding2020-05-0237-240/+533
* Thu Apr 30 04:58:02 UTC 2020...a/kernel-generic-5.4.36-x86_64-1.txz: Upgraded. a/kernel-huge-5.4.36-x86_64-1.txz: Upgraded. a/kernel-modules-5.4.36-x86_64-1.txz: Upgraded. d/kernel-headers-5.4.36-x86-1.txz: Upgraded. k/kernel-source-5.4.36-noarch-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. 20200430045802 Patrick J Volkerding2020-04-306-6/+6
* Wed Apr 29 20:19:12 UTC 2020...ap/tmux-3.1a-x86_64-1.txz: Upgraded. d/cmake-3.17.2-x86_64-1.txz: Upgraded. n/curl-7.70.0-x86_64-1.txz: Upgraded. n/openldap-client-2.4.50-x86_64-1.txz: Upgraded. xap/audacious-4.0.3-x86_64-1.txz: Upgraded. xap/audacious-plugins-4.0.3-x86_64-1.txz: Upgraded. extra/pure-alsa-system/audacious-plugins-4.0.3-x86_64-1_alsa.txz: Upgraded. 20200429201912 Patrick J Volkerding2020-04-302-1/+5
* Tue Apr 28 20:18:40 UTC 2020...ap/cups-2.3.3-x86_64-1.txz: Upgraded. This update fixes two security issues: The ppdOpen function did not handle invalid UI constraint. ppdcSource::get_resolution function did not handle invalid resolution strings. The ippReadIO function may under-read an extension. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3898 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8842 (* Security fix *) l/imagemagick-7.0.10_10-x86_64-1.txz: Upgraded. n/samba-4.12.2-x86_64-1.txz: Upgraded. This update fixes two security issues: A client combining the 'ASQ' and 'Paged Results' LDAP controls can cause a use-after-free in Samba's AD DC LDAP server. A deeply nested filter in an un-authenticated LDAP search can exhaust the LDAP server's stack memory causing a SIGSEGV. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10700 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10704 (* Security fix *) testing/packages/PAM/cups-2.3.3-x86_64-1_pam.txz: Upgraded. This update fixes two security issues: The ppdOpen function did not handle invalid UI constraint. ppdcSource::get_resolution function did not handle invalid resolution strings. The ippReadIO function may under-read an extension. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3898 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8842 (* Security fix *) testing/packages/PAM/samba-4.12.2-x86_64-1_pam.txz: Upgraded. This update fixes two security issues: A client combining the 'ASQ' and 'Paged Results' LDAP controls can cause a use-after-free in Samba's AD DC LDAP server. A deeply nested filter in an un-authenticated LDAP search can exhaust the LDAP server's stack memory causing a SIGSEGV. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10700 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10704 (* Security fix *) 20200428201840 Patrick J Volkerding2020-04-291-2/+2
* Mon Apr 27 20:27:30 UTC 2020...a/mkinitrd-1.4.11-x86_64-15.txz: Rebuilt. Use the standard mktemp utility from GNU coreutils, not the old tempfile. d/help2man-1.47.15-x86_64-1.txz: Upgraded. l/aspell-en-2019.10.06_0-x86_64-1.txz: Upgraded. l/gtk+3-3.24.20-x86_64-1.txz: Upgraded. l/imagemagick-7.0.10_9-x86_64-1.txz: Upgraded. n/irssi-1.2.2-x86_64-2.txz: Rebuilt. Fixed ctrl-space killing input with recent glib. Thanks to tramtrist and Urchlay. x/xterm-354-x86_64-1.txz: Upgraded. extra/aspell-word-lists/aspell-de-20161207_7_0-x86_64-1.txz: Upgraded. extra/aspell-word-lists/aspell-ga-5.1_0-x86_64-1.txz: Upgraded. extra/aspell-word-lists/aspell-it-2.4_20070901_0-x86_64-1.txz: Upgraded. extra/aspell-word-lists/aspell-ml-0.04_1-x86_64-1.txz: Upgraded. extra/aspell-word-lists/aspell-pl-6.0_20200327_0-x86_64-1.txz: Upgraded. extra/aspell-word-lists/aspell-pt_BR-20131030_12_0-x86_64-1.txz: Upgraded. extra/aspell-word-lists/aspell-pt_PT-20190329_1_0-x86_64-1.txz: Upgraded. extra/aspell-word-lists/aspell-sk-2.02_0-x86_64-1.txz: Upgraded. extra/aspell-word-lists/aspell-tl-0.4_0-x86_64-1.txz: Upgraded. 20200427202730 Patrick J Volkerding2020-04-287-15/+83
* Sun Apr 26 18:28:01 UTC 2020...d/meson-0.54.1-x86_64-1.txz: Upgraded. l/vte-0.60.2-x86_64-1.txz: Upgraded. n/fetchmail-6.4.4-x86_64-1.txz: Upgraded. n/s-nail-14.9.19-x86_64-1.txz: Upgraded. 20200426182801 Patrick J Volkerding2020-04-271-2/+2
* Sun Apr 26 03:34:28 UTC 2020...d/rust-1.43.0-x86_64-2.txz: Rebuilt. Patched and recompiled with the system LLVM 10 instead of the bundled LLVM 9. 20200426033428 Patrick J Volkerding2020-04-2615-25/+403
* Fri Apr 24 18:54:41 UTC 2020...a/bash-5.0.017-x86_64-1.txz: Upgraded. a/kernel-generic-5.4.35-x86_64-1.txz: Upgraded. a/kernel-huge-5.4.35-x86_64-1.txz: Upgraded. a/kernel-modules-5.4.35-x86_64-1.txz: Upgraded. a/mcelog-169-x86_64-1.txz: Upgraded. ap/nvme-cli-1.11.1-x86_64-1.txz: Upgraded. ap/powertop-2.12-x86_64-1.txz: Upgraded. ap/tmux-3.1-x86_64-1.txz: Upgraded. d/kernel-headers-5.4.35-x86-1.txz: Upgraded. d/parallel-20200422-noarch-1.txz: Upgraded. d/rust-1.43.0-x86_64-1.txz: Upgraded. d/vala-0.48.5-x86_64-1.txz: Upgraded. k/kernel-source-5.4.35-noarch-1.txz: Upgraded. l/gmm-5.4-noarch-1.txz: Upgraded. l/librsvg-2.48.4-x86_64-1.txz: Upgraded. l/sip-4.19.22-x86_64-1.txz: Upgraded. n/dhcpcd-8.1.9-x86_64-1.txz: Upgraded. x/mesa-20.0.5-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. 20200424185441 Patrick J Volkerding2020-04-2514-23/+312
* Wed Apr 22 02:19:37 UTC 2020...a/kernel-firmware-20200421_78c0348-noarch-1.txz: Upgraded. a/kernel-generic-5.4.34-x86_64-1.txz: Upgraded. a/kernel-huge-5.4.34-x86_64-1.txz: Upgraded. a/kernel-modules-5.4.34-x86_64-1.txz: Upgraded. a/openssl-solibs-1.1.1g-x86_64-1.txz: Upgraded. d/git-2.26.2-x86_64-1.txz: Upgraded. This update fixes a security issue: With a crafted URL that contains a newline or empty host, or lacks a scheme, the credential helper machinery can be fooled into providing credential information that is not appropriate for the protocol in use and host being contacted. Unlike the vulnerability CVE-2020-5260 fixed in v2.17.4, the credentials are not for a host of the attacker's choosing; instead, they are for some unspecified host (based on how the configured credential helper handles an absent "host" parameter). For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11008 (* Security fix *) d/kernel-headers-5.4.34-x86-1.txz: Upgraded. d/vala-0.48.4-x86_64-1.txz: Upgraded. k/kernel-source-5.4.34-noarch-1.txz: Upgraded. INFINIBAND_CXGB3 n -> m INFINIBAND_IPOIB_CM n -> y INFINIBAND_IPOIB_DEBUG_DATA n -> y Thanks to Karl Magnus Kolstø. l/M2Crypto-0.35.2-x86_64-4.txz: Rebuilt. Don't package typing-3.7.4.1 for python3. l/netpbm-10.90.01-x86_64-1.txz: Upgraded. n/openssl-1.1.1g-x86_64-1.txz: Upgraded. This update fixes a security issue: Fixed segmentation fault in SSL_check_chain() that could be exploited by a malicious peer in a Denial of Service attack. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1967 (* Security fix *) x/libva-2.7.1-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. testing/packages/PAM/openvpn-2.4.9-x86_64-1_pam.txz: Upgraded. This update fixes a security issue: Fix illegal client float. Thanks to Lev Stipakov. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11810 (* Security fix *) usb-and-pxe-installers/usbboot.img: Rebuilt. 20200422021937 Patrick J Volkerding2020-04-227-26/+27
* Tue Apr 21 02:45:06 UTC 2020...d/python-2.7.17-x86_64-2.txz: Removed. d/python2-2.7.18-x86_64-1.txz: Added. OK, I know a few people got excited seeing python-2 removed in the previous entry, but it's just being renamed to python2 for consistency with the python3 package. It's DOA though, and is the final release of the already EOL python 2 branch (a "commemorative" release as they say in the announcement). l/M2Crypto-0.35.2-x86_64-3.txz: Rebuilt. Added python3 modules. Thanks to sombragris and ponce. l/harfbuzz-2.6.5-x86_64-1.txz: Upgraded. l/imagemagick-7.0.10_7-x86_64-1.txz: Upgraded. l/libuv-1.37.0-x86_64-1.txz: Upgraded. l/libyaml-0.2.4-x86_64-1.txz: Upgraded. l/oniguruma-6.9.5-x86_64-1.txz: Upgraded. x/pixman-0.40.0-x86_64-1.txz: Upgraded. 20200421024506 Patrick J Volkerding2020-04-2114-698/+535
* Sun Apr 19 21:06:43 UTC 2020...l/neon-0.31.1-x86_64-1.txz: Upgraded. n/postfix-3.5.1-x86_64-1.txz: Upgraded. n/s-nail-14.9.18-x86_64-1.txz: Upgraded. xap/gnuchess-6.2.6-x86_64-1.txz: Upgraded. 20200419210643 Patrick J Volkerding2020-04-204-6/+6
* Fri Apr 17 21:38:36 UTC 2020...a/kernel-firmware-20200417_6314fa0-noarch-1.txz: Upgraded. a/kernel-generic-5.4.33-x86_64-1.txz: Upgraded. a/kernel-huge-5.4.33-x86_64-1.txz: Upgraded. a/kernel-modules-5.4.33-x86_64-1.txz: Upgraded. d/kernel-headers-5.4.33-x86-1.txz: Upgraded. k/kernel-source-5.4.33-noarch-1.txz: Upgraded. l/adwaita-icon-theme-3.36.1-noarch-1.txz: Upgraded. l/libuv-1.36.0-x86_64-2.txz: Rebuilt. Revert commits that cause BIND to crash. Thanks to Markus Wiesner. l/wavpack-5.3.0-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. 20200417213836 Patrick J Volkerding2020-04-188-7/+494
* Fri Apr 17 04:03:54 UTC 2020...ap/rpm-4.15.1-x86_64-3.txz: Rebuilt. Dropped python2 modules. l/libcaca-0.99.beta19-x86_64-6.txz: Rebuilt. Dropped python2 modules. l/libuv-1.36.0-x86_64-1.txz: Upgraded. l/libwebp-1.1.0-x86_64-2.txz: Rebuilt. Dropped python2 modules. l/python-distro-1.4.0-x86_64-2.txz: Rebuilt. Dropped python2 modules. l/python-docutils-0.16-x86_64-2.txz: Rebuilt. Replace /usr/bin scripts with python3 versions. l/system-config-printer-1.5.12-x86_64-3.txz: Rebuilt. Dropped python2 modules. n/openvpn-2.4.9-x86_64-1.txz: Upgraded. This update fixes a security issue: Fix illegal client float. Thanks to Lev Stipakov. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11810 (* Security fix *) extra/xf86-video-nouveau-blacklist/xf86-video-nouveau-blacklist-1.0-noarch-1.txz: Added. If it is easier for people using slackpkg to leave xf86-video-nouveau installed and change the name of this package from xf86-video-nouveau to xf86-video-nouveau-blacklist with a $VERSION of 1.0, then so be it. extra/xf86-video-nouveau-blacklist/xf86-video-nouveau-blacklist-noarch-1.txz: Removed. 20200417040354 Patrick J Volkerding2020-04-176-18/+24
* Wed Apr 15 19:52:52 UTC 2020...a/xfsprogs-5.6.0-x86_64-1.txz: Upgraded. l/gtk+3-3.24.18-x86_64-2.txz: Rebuilt. Fixed the version number embedded in pkg-config files and elsewhere. Thanks to davjohn for the bug report. n/bind-9.16.2-x86_64-1.txz: Upgraded. This update fixes a security issue: DNS rebinding protection was ineffective when BIND 9 is configured as a forwarding DNS server. Found and responsibly reported by Tobias Klein. [GL #1574] (* Security fix *) 20200415195252 Patrick J Volkerding2020-04-162-1/+13
* Tue Apr 14 22:26:11 UTC 2020...a/gawk-5.1.0-x86_64-1.txz: Upgraded. a/gettext-0.20.2-x86_64-1.txz: Upgraded. d/gettext-tools-0.20.2-x86_64-1.txz: Upgraded. d/git-2.26.1-x86_64-1.txz: Upgraded. This update fixes a security issue: With a crafted URL that contains a newline in it, the credential helper machinery can be fooled to give credential information for a wrong host. The attack has been made impossible by forbidding a newline character in any value passed via the credential protocol. Credit for finding the vulnerability goes to Felix Wilhelm of Google Project Zero. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-5260 (* Security fix *) l/glib-networking-2.64.2-x86_64-1.txz: Upgraded. l/libsecret-0.20.3-x86_64-1.txz: Upgraded. n/php-7.4.5-x86_64-1.txz: Upgraded. x/xorgproto-2020.1-x86_64-1.txz: Upgraded. xap/audacious-4.0.2-x86_64-1.txz: Upgraded. xap/audacious-plugins-4.0.2-x86_64-1.txz: Upgraded. extra/pure-alsa-system/audacious-plugins-4.0.2-x86_64-1_alsa.txz: Upgraded. 20200414222611 Patrick J Volkerding2020-04-153-6/+6
* Mon Apr 13 22:16:49 UTC 2020...a/kernel-firmware-20200413_64dba0f-noarch-1.txz: Upgraded. a/kernel-generic-5.4.32-x86_64-1.txz: Upgraded. a/kernel-huge-5.4.32-x86_64-1.txz: Upgraded. a/kernel-modules-5.4.32-x86_64-1.txz: Upgraded. d/doxygen-1.8.18-x86_64-1.txz: Upgraded. d/kernel-headers-5.4.32-x86-1.txz: Upgraded. k/kernel-source-5.4.32-noarch-1.txz: Upgraded. n/dhcpcd-8.1.8-x86_64-1.txz: Upgraded. x/libvdpau-1.4-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. 20200413221649 Patrick J Volkerding2020-04-149-8/+8
* Sun Apr 12 20:02:28 UTC 2020...ap/man-pages-5.06-noarch-1.txz: Upgraded. l/libyaml-0.2.3-x86_64-1.txz: Upgraded. n/dnsmasq-2.81-x86_64-1.txz: Upgraded. x/libinput-1.15.5-x86_64-1.txz: Upgraded. 20200412200228 Patrick J Volkerding2020-04-134-27/+4
* Fri Apr 10 20:33:06 UTC 2020...ap/cups-filters-1.27.4-x86_64-1.txz: Upgraded. ap/qpdf-10.0.1-x86_64-1.txz: Upgraded. ap/sysstat-12.3.2-x86_64-1.txz: Upgraded. l/gtk+3-3.24.18-x86_64-1.txz: Upgraded. l/librsvg-2.48.3-x86_64-1.txz: Upgraded. n/libqmi-1.24.10-x86_64-1.txz: Upgraded. n/libtirpc-1.2.6-x86_64-1.txz: Upgraded. 20200410203306 Patrick J Volkerding2020-04-112-2/+2
* Thu Apr 9 22:20:10 UTC 2020...d/cmake-3.17.1-x86_64-1.txz: Upgraded. l/glib2-2.64.2-x86_64-1.txz: Upgraded. l/libssh-0.9.4-x86_64-1.txz: Upgraded. Fixed possible DoS in client and server when handling AES-CTR keys with OpenSSL. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1730 (* Security fix *) 20200409222010 Patrick J Volkerding2020-04-101-1/+1
* Thu Apr 9 00:53:59 UTC 2020...a/kernel-generic-5.4.31-x86_64-1.txz: Upgraded. a/kernel-huge-5.4.31-x86_64-1.txz: Upgraded. a/kernel-modules-5.4.31-x86_64-1.txz: Upgraded. d/kernel-headers-5.4.31-x86-1.txz: Upgraded. k/kernel-source-5.4.31-noarch-1.txz: Upgraded. l/mozilla-nss-3.51.1-x86_64-1.txz: Upgraded. n/samba-4.12.1-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-68.7.0-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/thunderbird/68.7.0/releasenotes/ (* Security fix *) isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. 20200409005359 Patrick J Volkerding2020-04-097-7/+7
* Tue Apr 7 22:23:02 UTC 2020...testing/packages/PAM/samba-4.12.1-x86_64-1_pam.txz: Upgraded. 20200407222302 Patrick J Volkerding2020-04-083-4/+4
* Mon Apr 6 21:23:19 UTC 2020...ap/vim-8.2.0521-x86_64-1.txz: Upgraded. d/vala-0.48.3-x86_64-1.txz: Upgraded. l/imagemagick-7.0.10_5-x86_64-1.txz: Upgraded. x/compiz-0.8.18-x86_64-1.txz: Upgraded. xap/audacious-4.0.1-x86_64-1.txz: Upgraded. xap/audacious-plugins-4.0.1-x86_64-1.txz: Upgraded. xap/vim-gvim-8.2.0521-x86_64-1.txz: Upgraded. extra/brltty/brltty-6.1-x86_64-1.txz: Upgraded. extra/pure-alsa-system/audacious-plugins-4.0.1-x86_64-1_alsa.txz: Upgraded. testing/packages/PAM/sudo-1.8.31p1-x86_64-1_pam.txz: Upgraded. 20200406212319 Patrick J Volkerding2020-04-073-3/+3
* Sun Apr 5 21:02:32 UTC 2020...d/bison-3.5.4-x86_64-1.txz: Upgraded. kde/k3b-2.0.3-x86_64-7.txz: Rebuilt. Recompiled against libdvdread-6.1.1. l/gobject-introspection-1.64.1-x86_64-1.txz: Upgraded. l/imagemagick-7.0.10_4-x86_64-1.txz: Upgraded. l/libdvdnav-6.1.0-x86_64-2.txz: Rebuilt. Recompiled against libdvdread-6.1.1. Who bumps an .soname and only boosts the version number by 0.0.1? Anyway, sorry to drop the ball a second time. I'll try to avoid this. Thanks to gmgf for the bug report. n/fetchmail-6.4.3-x86_64-1.txz: Upgraded. tcl/tclx-8.4.4-x86_64-1.txz: Upgraded. xap/MPlayer-20200103-x86_64-2.txz: Rebuilt. Recompiled against libdvdread-6.1.1. xap/windowmaker-0.95.9-x86_64-1.txz: Upgraded. xap/xine-lib-1.2.10-x86_64-2.txz: Rebuilt. Recompiled against libdvdread-6.1.1. extra/pure-alsa-system/MPlayer-20200103-x86_64-2_alsa.txz: Rebuilt. Recompiled against libdvdread-6.1.1. extra/pure-alsa-system/xine-lib-1.2.10-x86_64-2_alsa.txz: Rebuilt. Recompiled against libdvdread-6.1.1. 20200405210232 Patrick J Volkerding2020-04-067-19/+5
* Sun Apr 5 01:33:45 UTC 2020...kde/calligra-2.9.11-x86_64-34.txz: Rebuilt. Recompiled against glew-2.2.0. The libGLEW.so.2.2 .soname (rather than libGLEW.so.2) gets me every time. Thanks to marrowsuck for the bug report. l/libdvdread-6.1.1-x86_64-1.txz: Upgraded. x/mesa-20.0.4-x86_64-2.txz: Rebuilt. Recompiled against glew-2.2.0. 20200405013345 Patrick J Volkerding2020-04-056-8/+56
* Fri Apr 3 23:07:16 UTC 2020...ap/lsof-4.93.2-x86_64-2.txz: Rebuilt. Fixed the manpage. Thanks to kaott. ap/sc-7.16-x86_64-7.txz: Rebuilt. Brought back the classic SC. Thanks to dive. d/Cython-0.29.16-x86_64-1.txz: Upgraded. d/mercurial-5.3.2-x86_64-1.txz: Upgraded. l/gtk+3-3.24.17-x86_64-1.txz: Upgraded. n/dhcpcd-8.1.7-x86_64-1.txz: Upgraded. n/iproute2-5.6.0-x86_64-1.txz: Upgraded. x/libdrm-2.4.101-x86_64-1.txz: Upgraded. x/mesa-20.0.4-x86_64-1.txz: Upgraded. xap/mozilla-firefox-68.6.1esr-x86_64-1.txz: Upgraded. This release contains critical security fixes and improvements. "Under certain conditions, when running the nsDocShell destructor, a race condition can cause a use-after-free. We are aware of targeted attacks in the wild abusing this flaw." "Under certain conditions, when handling a ReadableStream, a race condition can cause a use-after-free. We are aware of targeted attacks in the wild abusing this flaw." For more information, see: https://www.mozilla.org/en-US/firefox/68.6.1/releasenotes/ https://www.mozilla.org/en-US/security/advisories/mfsa2020-11/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6819 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6820 (* Security fix *) 20200403230716 Patrick J Volkerding2020-04-048-18/+735
* Thu Apr 2 22:13:11 UTC 2020...a/kernel-generic-5.4.30-x86_64-1.txz: Upgraded. a/kernel-huge-5.4.30-x86_64-1.txz: Upgraded. a/kernel-modules-5.4.30-x86_64-1.txz: Upgraded. d/kernel-headers-5.4.30-x86-1.txz: Upgraded. k/kernel-source-5.4.30-noarch-1.txz: Upgraded. l/atk-2.36.0-x86_64-1.txz: Upgraded. l/libunwind-1.4.0-x86_64-1.txz: Upgraded. n/conntrack-tools-1.4.6-x86_64-1.txz: Upgraded. n/libnetfilter_conntrack-1.0.8-x86_64-1.txz: Upgraded. n/libnftnl-1.1.6-x86_64-1.txz: Upgraded. n/nftables-0.9.4-x86_64-1.txz: Upgraded. x/mesa-20.0.3-x86_64-1.txz: Upgraded. xap/network-manager-applet-1.16.0-x86_64-2.txz: Rebuilt. Rebuilt using meson. Thanks to bassmadrigal. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. 20200402221311 Patrick J Volkerding2020-04-0311-39/+32
* Thu Apr 2 06:07:52 UTC 2020...a/hwdata-0.334-noarch-1.txz: Upgraded. a/kernel-generic-5.4.29-x86_64-1.txz: Upgraded. a/kernel-huge-5.4.29-x86_64-1.txz: Upgraded. a/kernel-modules-5.4.29-x86_64-1.txz: Upgraded. a/pkgtools-15.0-noarch-32.txz: Rebuilt. installpkg: handle the uninstall script packaged as /install/douninst.sh. removepkg: add --skip-douninst option to skip running the uninstall script. Save removed douninst.sh in /var/log/pkgtools/removed_uninstall_scripts. ap/groff-1.22.4-x86_64-2.txz: Rebuilt. Fixed docdir. Thanks to Xsane. d/gcc-9.3.0-x86_64-2.txz: Rebuilt. d/gcc-brig-9.3.0-x86_64-2.txz: Rebuilt. d/gcc-g++-9.3.0-x86_64-2.txz: Rebuilt. d/gcc-gdc-9.3.0-x86_64-2.txz: Rebuilt. d/gcc-gfortran-9.3.0-x86_64-2.txz: Rebuilt. Patched a compiler bug concerning assumed-shape vs. deferred-shape arrays. Thanks to Lockywolf. d/gcc-gnat-9.3.0-x86_64-2.txz: Rebuilt. d/gcc-go-9.3.0-x86_64-2.txz: Rebuilt. d/gcc-objc-9.3.0-x86_64-2.txz: Rebuilt. d/kernel-headers-5.4.29-x86-1.txz: Upgraded. d/ruby-2.7.1-x86_64-1.txz: Upgraded. This update fixes security issues: Unsafe Object Creation Vulnerability in JSON (Additional fix). Heap exposure vulnerability in the socket library. For more information, see: https://www.ruby-lang.org/en/news/2020/03/19/json-dos-cve-2020-10663/ https://www.ruby-lang.org/en/news/2020/03/31/heap-exposure-in-socket-cve-2020-10933/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10663 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10933 (* Security fix *) k/kernel-source-5.4.29-noarch-1.txz: Upgraded. l/graphite2-1.3.14-x86_64-1.txz: Upgraded. l/librsvg-2.48.2-x86_64-1.txz: Upgraded. l/utf8proc-2.5.0-x86_64-1.txz: Upgraded. x/libva-2.7.0-x86_64-1.txz: Upgraded. x/libva-utils-2.7.1-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. 20200402060752 Patrick J Volkerding2020-04-0215-24/+105
* Tue Mar 31 19:01:17 UTC 2020...a/dialog-1.3_20200327-x86_64-1.txz: Upgraded. a/openssl-solibs-1.1.1f-x86_64-1.txz: Upgraded. ap/nano-4.9.1-x86_64-1.txz: Upgraded. l/elfutils-0.179-x86_64-1.txz: Upgraded. n/gnutls-3.6.13-x86_64-1.txz: Upgraded. This update fixes a security issue: libgnutls: Fix a DTLS-protocol regression (caused by TLS1.3 support), since 3.6.3. The DTLS client would not contribute any randomness to the DTLS negotiation, breaking the security guarantees of the DTLS protocol. [GNUTLS-SA-2020-03-31, CVSS: high] (* Security fix *) n/httpd-2.4.43-x86_64-1.txz: Upgraded. n/openssl-1.1.1f-x86_64-1.txz: Upgraded. 20200331190117 Patrick J Volkerding2020-04-014-4/+7
* Tue Mar 31 04:00:43 UTC 2020...a/pkgtools-15.0-noarch-31.txz: Rebuilt. removepkg: support an uninstall script. See removepkg(8). d/meson-0.54.0-x86_64-1.txz: Upgraded. 20200331040043 Patrick J Volkerding2020-03-313-16/+42
* Sun Mar 29 23:05:46 UTC 2020...d/ccache-3.7.9-x86_64-1.txz: Upgraded. d/llvm-10.0.0-x86_64-2.txz: Rebuilt. Ensure that lit-cpuid is built and installed. Thanks to jkh2cpu. l/imagemagick-7.0.10_3-x86_64-1.txz: Upgraded. l/netpbm-10.90.00-x86_64-1.txz: Upgraded. n/mutt-1.13.5-x86_64-1.txz: Upgraded. n/nfs-utils-2.4.3-x86_64-2.txz: Rebuilt. Rebuilt with --with-pluginpath=/usr/lib${LIBDIRSUFFIX}/libnfsidmap. Thanks to lecho. x/xorg-server-1.20.8-x86_64-1.txz: Upgraded. x/xorg-server-xephyr-1.20.8-x86_64-1.txz: Upgraded. x/xorg-server-xnest-1.20.8-x86_64-1.txz: Upgraded. x/xorg-server-xvfb-1.20.8-x86_64-1.txz: Upgraded. x/xorg-server-xwayland-1.20.8-x86_64-1.txz: Upgraded. 20200329230546 Patrick J Volkerding2020-03-303-8/+16
* Sat Mar 28 05:48:42 UTC 2020...a/lvm2-2.03.09-x86_64-1.txz: Upgraded. d/guile-3.0.2-x86_64-1.txz: Upgraded. l/glib-networking-2.64.1-x86_64-1.txz: Upgraded. l/gtk+3-3.24.16-x86_64-1.txz: Upgraded. l/gvfs-1.44.1-x86_64-1.txz: Upgraded. l/librsvg-2.48.1-x86_64-1.txz: Upgraded. l/vte-0.60.1-x86_64-1.txz: Upgraded. xap/audacious-4.0-x86_64-3.txz: Rebuilt. Also support GTK+ interface, including a .desktop file for it. xap/audacious-plugins-4.0-x86_64-3.txz: Rebuilt. Rebuilt with --enable-gtk. extra/pure-alsa-system/audacious-plugins-4.0-x86_64-3_alsa.txz: Rebuilt. Rebuilt with --enable-gtk. extra/pure-alsa-system/qt5-5.13.2-x86_64-3_alsa.txz: Added. 20200328054842 Patrick J Volkerding2020-03-285-20/+12
* Wed Mar 25 22:53:06 UTC 2020...a/e2fsprogs-1.45.6-x86_64-2.txz: Rebuilt. Fixed RELEASE-NOTES dangling symlink. a/kernel-generic-5.4.28-x86_64-1.txz: Upgraded. a/kernel-huge-5.4.28-x86_64-1.txz: Upgraded. a/kernel-modules-5.4.28-x86_64-1.txz: Upgraded. ap/nano-4.9-x86_64-1.txz: Upgraded. d/kernel-headers-5.4.28-x86-1.txz: Upgraded. d/llvm-10.0.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. d/rust-1.42.0-x86_64-2.txz: Rebuilt. Recompiled against llvm-10.0.0. d/scons-3.1.2-x86_64-3.txz: Rebuilt. Fixed shebangs for python3, removed useless .bat files. Thanks to teeemcee and ponce. d/vala-0.48.2-x86_64-1.txz: Upgraded. k/kernel-source-5.4.28-noarch-1.txz: Upgraded. l/libgsf-1.14.47-x86_64-1.txz: Upgraded. l/neon-0.31.0-x86_64-1.txz: Upgraded. l/netpbm-10.89.03-x86_64-1.txz: Upgraded. l/qt5-5.13.2-x86_64-3.txz: Rebuilt. Recompiled against llvm-10.0.0. x/mesa-20.0.2-x86_64-2.txz: Rebuilt. Recompiled against llvm-10.0.0. xfce/thunar-1.8.14-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. 20200325225306 Patrick J Volkerding2020-03-2621-40/+103
* Tue Mar 24 05:08:25 UTC 2020...n/curl-7.69.1-x86_64-3.txz: Rebuilt. Removed --with-ca-bundle=/usr/share/curl/ca-bundle.crt and added --without-ca-bundle. Thanks to drgibbon and Willy Sudiarto Raharjo. 20200324050825 Patrick J Volkerding2020-03-249-3525/+348
* Sun Mar 22 19:58:16 UTC 2020...l/glibmm-2.64.2-x86_64-1.txz: Upgraded. l/imagemagick-7.0.10_2-x86_64-1.txz: Upgraded. l/libcue-2.2.1-x86_64-1.txz: Added. The initial use for this is adding CUE support to audacious-plugins. l/libdvdnav-6.1.0-x86_64-1.txz: Upgraded. l/libdvdread-6.1.0-x86_64-1.txz: Upgraded. xap/audacious-4.0-x86_64-1.txz: Upgraded. xap/audacious-plugins-4.0-x86_64-1.txz: Upgraded. extra/pure-alsa-system/audacious-plugins-4.0-x86_64-1_alsa.txz: Upgraded. 20200322195816 Patrick J Volkerding2020-03-235-49/+196
* Sun Mar 22 01:55:55 UTC 2020...a/kernel-generic-5.4.27-x86_64-1.txz: Upgraded. a/kernel-huge-5.4.27-x86_64-1.txz: Upgraded. a/kernel-modules-5.4.27-x86_64-1.txz: Upgraded. a/tcsh-6.22.02-x86_64-3.txz: Rebuilt. Actually apply the shell history patch this time. Thanks to jmccue. ap/cups-filters-1.27.3-x86_64-1.txz: Upgraded. d/automake-1.16.2-noarch-1.txz: Upgraded. d/kernel-headers-5.4.27-x86-1.txz: Upgraded. d/parallel-20200322-noarch-1.txz: Upgraded. k/kernel-source-5.4.27-noarch-1.txz: Upgraded. l/gmime-3.2.7-x86_64-1.txz: Upgraded. l/pangomm-2.42.1-x86_64-1.txz: Upgraded. n/gnupg2-2.2.20-x86_64-1.txz: Upgraded. xap/xaos-3.7-x86_64-1.txz: Upgraded. xap/xscreensaver-5.44-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. testing/packages/PAM/xscreensaver-5.44-x86_64-1_pam.txz: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. 20200322015555 Patrick J Volkerding2020-03-2211-38/+18
* Fri Mar 20 18:58:08 UTC 2020...a/kernel-firmware-20200320_edf390c-noarch-1.txz: Upgraded. ap/vim-8.2.0418-x86_64-1.txz: Upgraded. d/cmake-3.17.0-x86_64-1.txz: Upgraded. l/fuse3-3.9.1-x86_64-1.txz: Upgraded. x/igt-gpu-tools-1.25-x86_64-1.txz: Upgraded. xap/vim-gvim-8.2.0418-x86_64-1.txz: Upgraded. 20200320185808 Patrick J Volkerding2020-03-212-2/+2
* Thu Mar 19 22:01:05 UTC 2020...ap/ghostscript-9.52-x86_64-1.txz: Upgraded. l/PyQt5-5.13.2-x86_64-1.txz: Added. l/QScintilla-2.11.4-x86_64-3.txz: Rebuilt. Added PyQt5 support. Thanks to alienBOB. l/sip-4.19.21-x86_64-2.txz: Rebuilt. Recompiled to pick up Qt5 support. n/gpgme-1.13.1-x86_64-3.txz: Rebuilt. Added Qt5 bindings. Thanks to alienBOB. 20200319220105 Patrick J Volkerding2020-03-207-15/+206
* Thu Mar 19 01:45:30 UTC 2020...Don't bother with 5.4.26 folks, just wait for the next one. Trust me. a/tcsh-6.22.02-x86_64-2.txz: Rebuilt. Fixed merging history from multiple shells. Thanks to jmccue. a/xz-5.2.5-x86_64-1.txz: Upgraded. d/git-2.25.2-x86_64-1.txz: Upgraded. l/glibmm-2.64.1-x86_64-1.txz: Upgraded. n/bind-9.16.1-x86_64-1.txz: Upgraded. n/dovecot-2.3.10-x86_64-2.txz: Rebuilt. x/libinput-1.15.4-x86_64-1.txz: Upgraded. x/mesa-20.0.2-x86_64-1.txz: Upgraded. testing/packages/PAM/dovecot-2.3.10-x86_64-2_pam.txz: Rebuilt. Recompiled using --with-pam. Thanks to HQuest. 20200319014530 Patrick J Volkerding2020-03-197-352/+19
* Tue Mar 17 22:11:07 UTC 2020...Happy Feast of Saint Patrick. Stay safe everyone. a/openssl-solibs-1.1.1e-x86_64-1.txz: Upgraded. d/ccache-3.7.8-x86_64-1.txz: Upgraded. l/glibmm-2.64.0-x86_64-1.txz: Upgraded. n/openssl-1.1.1e-x86_64-1.txz: Upgraded. Fixed an overflow bug in the x64_64 Montgomery squaring procedure used in exponentiation with 512-bit moduli. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1551 (* Security fix *) n/php-7.4.4-x86_64-1.txz: Upgraded. This update fixes bugs and security issues: Core: get_headers() silently truncates after a null byte EXIF: Use-of-uninitialized-value in exif MBstring: mb_strtolower: stack-buffer-overflow at php_unicode_tolower_full For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7066 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7064 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7065 (* Security fix *) 20200317221107 Patrick J Volkerding2020-03-182-52/+45