| Commit message (Expand) | Author | Age | Files | Lines |
... | |
* | Fri Dec 9 19:43:46 UTC 2022...a/usbutils-015-x86_64-1.txz: Upgraded.
l/adwaita-icon-theme-43-noarch-1.txz: Upgraded.
l/gtk+3-3.24.35-x86_64-1.txz: Upgraded.
l/libarchive-3.6.2-x86_64-1.txz: Upgraded.
This is a bugfix and security release.
Relevant bugfixes:
rar5 reader: fix possible garbled output with bsdtar -O (#1745)
mtree reader: support reading mtree files with tabs (#1783)
Security fixes:
various small fixes for issues found by CodeQL
(* Security fix *)
l/mozilla-nss-3.86-x86_64-1.txz: Upgraded.
l/pipewire-0.3.62-x86_64-1.txz: Upgraded.
x/OpenCC-1.1.6-x86_64-1.txz: Upgraded.
20221209194346 | Patrick J Volkerding | 2022-12-09 | 3 | -2/+22 |
* | Thu Dec 8 22:48:34 UTC 2022...ap/vim-9.0.1034-x86_64-1.txz: Upgraded.
This update fixes various security issues such as a heap-based buffer
overflow and use after free.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-4141
https://www.cve.org/CVERecord?id=CVE-2022-3591
https://www.cve.org/CVERecord?id=CVE-2022-3520
https://www.cve.org/CVERecord?id=CVE-2022-3491
https://www.cve.org/CVERecord?id=CVE-2022-4292
https://www.cve.org/CVERecord?id=CVE-2022-4293
(* Security fix *)
e/emacs-28.2-x86_64-2.txz: Rebuilt.
GNU Emacs through 28.2 allows attackers to execute commands via shell
metacharacters in the name of a source-code file, because lib-src/etags.c
uses the system C library function in its implementation of the ctags
program. For example, a victim may use the "ctags *" command (suggested in
the ctags documentation) in a situation where the current working directory
has contents that depend on untrusted input.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-45939
(* Security fix *)
kde/akonadi-22.12.0-x86_64-1.txz: Upgraded.
kde/akonadi-calendar-22.12.0-x86_64-1.txz: Upgraded.
kde/akonadi-calendar-tools-22.12.0-x86_64-1.txz: Upgraded.
kde/akonadi-contacts-22.12.0-x86_64-1.txz: Upgraded.
kde/akonadi-import-wizard-22.12.0-x86_64-1.txz: Upgraded.
kde/akonadi-mime-22.12.0-x86_64-1.txz: Upgraded.
kde/akonadi-notes-22.12.0-x86_64-1.txz: Upgraded.
kde/akonadi-search-22.12.0-x86_64-1.txz: Upgraded.
kde/akonadiconsole-22.12.0-x86_64-1.txz: Upgraded.
kde/akregator-22.12.0-x86_64-1.txz: Upgraded.
kde/analitza-22.12.0-x86_64-1.txz: Upgraded.
kde/ark-22.12.0-x86_64-1.txz: Upgraded.
kde/artikulate-22.12.0-x86_64-1.txz: Upgraded.
kde/audiocd-kio-22.12.0-x86_64-1.txz: Upgraded.
kde/baloo-widgets-22.12.0-x86_64-1.txz: Upgraded.
kde/blinken-22.12.0-x86_64-1.txz: Upgraded.
kde/bomber-22.12.0-x86_64-1.txz: Upgraded.
kde/bovo-22.12.0-x86_64-1.txz: Upgraded.
kde/calendarsupport-22.12.0-x86_64-1.txz: Upgraded.
kde/cantor-22.12.0-x86_64-1.txz: Upgraded.
kde/cervisia-22.12.0-x86_64-1.txz: Upgraded.
kde/dolphin-22.12.0-x86_64-1.txz: Upgraded.
kde/dolphin-plugins-22.12.0-x86_64-1.txz: Upgraded.
kde/dragon-22.12.0-x86_64-1.txz: Upgraded.
kde/elisa-22.12.0-x86_64-1.txz: Upgraded.
kde/eventviews-22.12.0-x86_64-1.txz: Upgraded.
kde/falkon-22.12.0-x86_64-1.txz: Upgraded.
kde/ffmpegthumbs-22.12.0-x86_64-1.txz: Upgraded.
kde/filelight-22.12.0-x86_64-1.txz: Upgraded.
kde/granatier-22.12.0-x86_64-1.txz: Upgraded.
kde/grantlee-editor-22.12.0-x86_64-1.txz: Upgraded.
kde/grantleetheme-22.12.0-x86_64-1.txz: Upgraded.
kde/gwenview-22.12.0-x86_64-1.txz: Upgraded.
kde/incidenceeditor-22.12.0-x86_64-1.txz: Upgraded.
kde/itinerary-22.12.0-x86_64-1.txz: Upgraded.
kde/juk-22.12.0-x86_64-1.txz: Upgraded.
kde/k3b-22.12.0-x86_64-1.txz: Upgraded.
kde/kaddressbook-22.12.0-x86_64-1.txz: Upgraded.
kde/kalarm-22.12.0-x86_64-1.txz: Upgraded.
kde/kalendar-22.12.0-x86_64-1.txz: Upgraded.
kde/kalgebra-22.12.0-x86_64-1.txz: Upgraded.
kde/kalzium-22.12.0-x86_64-1.txz: Upgraded.
kde/kamera-22.12.0-x86_64-1.txz: Upgraded.
kde/kamoso-22.12.0-x86_64-1.txz: Upgraded.
kde/kanagram-22.12.0-x86_64-1.txz: Upgraded.
kde/kapman-22.12.0-x86_64-1.txz: Upgraded.
kde/kapptemplate-22.12.0-x86_64-1.txz: Upgraded.
kde/kate-22.12.0-x86_64-1.txz: Upgraded.
kde/katomic-22.12.0-x86_64-1.txz: Upgraded.
kde/kbackup-22.12.0-x86_64-1.txz: Upgraded.
kde/kblackbox-22.12.0-x86_64-1.txz: Upgraded.
kde/kblocks-22.12.0-x86_64-1.txz: Upgraded.
kde/kbounce-22.12.0-x86_64-1.txz: Upgraded.
kde/kbreakout-22.12.0-x86_64-1.txz: Upgraded.
kde/kbruch-22.12.0-x86_64-1.txz: Upgraded.
kde/kcachegrind-22.12.0-x86_64-1.txz: Upgraded.
kde/kcalc-22.12.0-x86_64-1.txz: Upgraded.
kde/kcalutils-22.12.0-x86_64-1.txz: Upgraded.
kde/kcharselect-22.12.0-x86_64-1.txz: Upgraded.
kde/kcolorchooser-22.12.0-x86_64-1.txz: Upgraded.
kde/kcron-22.12.0-x86_64-1.txz: Upgraded.
kde/kde-dev-scripts-22.12.0-x86_64-1.txz: Upgraded.
kde/kde-dev-utils-22.12.0-x86_64-1.txz: Upgraded.
kde/kdebugsettings-22.12.0-x86_64-1.txz: Upgraded.
kde/kdeconnect-kde-22.12.0-x86_64-1.txz: Upgraded.
kde/kdeedu-data-22.12.0-x86_64-1.txz: Upgraded.
kde/kdegraphics-mobipocket-22.12.0-x86_64-1.txz: Upgraded.
kde/kdegraphics-thumbnailers-22.12.0-x86_64-1.txz: Upgraded.
kde/kdenetwork-filesharing-22.12.0-x86_64-1.txz: Upgraded.
kde/kdenlive-22.12.0-x86_64-1.txz: Upgraded.
kde/kdepim-addons-22.12.0-x86_64-1.txz: Upgraded.
kde/kdepim-runtime-22.12.0-x86_64-1.txz: Upgraded.
kde/kdesdk-kio-22.12.0-x86_64-1.txz: Upgraded.
kde/kdesdk-thumbnailers-22.12.0-x86_64-1.txz: Upgraded.
kde/kdev-php-22.12.0-x86_64-1.txz: Upgraded.
kde/kdev-python-22.12.0-x86_64-1.txz: Upgraded.
kde/kdevelop-22.12.0-x86_64-1.txz: Upgraded.
kde/kdf-22.12.0-x86_64-1.txz: Upgraded.
kde/kdialog-22.12.0-x86_64-1.txz: Upgraded.
kde/kdiamond-22.12.0-x86_64-1.txz: Upgraded.
kde/keditbookmarks-22.12.0-x86_64-1.txz: Upgraded.
kde/kfind-22.12.0-x86_64-1.txz: Upgraded.
kde/kfloppy-22.12.0-x86_64-1.txz: Upgraded.
kde/kfourinline-22.12.0-x86_64-1.txz: Upgraded.
kde/kgeography-22.12.0-x86_64-1.txz: Upgraded.
kde/kget-22.12.0-x86_64-1.txz: Upgraded.
kde/kgoldrunner-22.12.0-x86_64-1.txz: Upgraded.
kde/kgpg-22.12.0-x86_64-1.txz: Upgraded.
kde/khangman-22.12.0-x86_64-1.txz: Upgraded.
kde/khelpcenter-22.12.0-x86_64-1.txz: Upgraded.
kde/kidentitymanagement-22.12.0-x86_64-1.txz: Upgraded.
kde/kig-22.12.0-x86_64-1.txz: Upgraded.
kde/kigo-22.12.0-x86_64-1.txz: Upgraded.
kde/killbots-22.12.0-x86_64-1.txz: Upgraded.
kde/kimagemapeditor-22.12.0-x86_64-1.txz: Upgraded.
kde/kimap-22.12.0-x86_64-1.txz: Upgraded.
kde/kio-extras-22.12.0-x86_64-1.txz: Upgraded.
kde/kio-gdrive-22.12.0-x86_64-1.txz: Upgraded.
kde/kio-zeroconf-22.12.0-x86_64-1.txz: Upgraded.
kde/kipi-plugins-22.12.0-x86_64-1.txz: Upgraded.
kde/kirigami-gallery-22.12.0-x86_64-1.txz: Upgraded.
kde/kiriki-22.12.0-x86_64-1.txz: Upgraded.
kde/kiten-22.12.0-x86_64-1.txz: Upgraded.
kde/kitinerary-22.12.0-x86_64-1.txz: Upgraded.
kde/kjumpingcube-22.12.0-x86_64-1.txz: Upgraded.
kde/kldap-22.12.0-x86_64-1.txz: Upgraded.
kde/kleopatra-22.12.0-x86_64-1.txz: Upgraded.
kde/klickety-22.12.0-x86_64-1.txz: Upgraded.
kde/klines-22.12.0-x86_64-1.txz: Upgraded.
kde/kmag-22.12.0-x86_64-1.txz: Upgraded.
kde/kmahjongg-22.12.0-x86_64-1.txz: Upgraded.
kde/kmail-22.12.0-x86_64-1.txz: Upgraded.
kde/kmail-account-wizard-22.12.0-x86_64-1.txz: Upgraded.
kde/kmailtransport-22.12.0-x86_64-1.txz: Upgraded.
kde/kmbox-22.12.0-x86_64-1.txz: Upgraded.
kde/kmime-22.12.0-x86_64-1.txz: Upgraded.
kde/kmines-22.12.0-x86_64-1.txz: Upgraded.
kde/kmix-22.12.0-x86_64-1.txz: Upgraded.
kde/kmousetool-22.12.0-x86_64-1.txz: Upgraded.
kde/kmouth-22.12.0-x86_64-1.txz: Upgraded.
kde/kmplot-22.12.0-x86_64-1.txz: Upgraded.
kde/knavalbattle-22.12.0-x86_64-1.txz: Upgraded.
kde/knetwalk-22.12.0-x86_64-1.txz: Upgraded.
kde/knights-22.12.0-x86_64-1.txz: Upgraded.
kde/knotes-22.12.0-x86_64-1.txz: Upgraded.
kde/kolf-22.12.0-x86_64-1.txz: Upgraded.
kde/kollision-22.12.0-x86_64-1.txz: Upgraded.
kde/kolourpaint-22.12.0-x86_64-1.txz: Upgraded.
kde/kompare-22.12.0-x86_64-1.txz: Upgraded.
kde/konqueror-22.12.0-x86_64-1.txz: Upgraded.
kde/konquest-22.12.0-x86_64-1.txz: Upgraded.
kde/konsole-22.12.0-x86_64-1.txz: Upgraded.
kde/kontact-22.12.0-x86_64-1.txz: Upgraded.
kde/kontactinterface-22.12.0-x86_64-1.txz: Upgraded.
kde/kontrast-22.12.0-x86_64-1.txz: Upgraded.
kde/konversation-22.12.0-x86_64-1.txz: Upgraded.
kde/kopeninghours-22.12.0-x86_64-1.txz: Upgraded.
kde/kopete-22.12.0-x86_64-1.txz: Upgraded.
kde/korganizer-22.12.0-x86_64-1.txz: Upgraded.
kde/kosmindoormap-22.12.0-x86_64-1.txz: Upgraded.
kde/kpat-22.12.0-x86_64-1.txz: Upgraded.
kde/kpimtextedit-22.12.0-x86_64-1.txz: Upgraded.
kde/kpkpass-22.12.0-x86_64-1.txz: Upgraded.
kde/kpmcore-22.12.0-x86_64-1.txz: Upgraded.
kde/kpublictransport-22.12.0-x86_64-1.txz: Upgraded.
kde/kqtquickcharts-22.12.0-x86_64-1.txz: Upgraded.
kde/krdc-22.12.0-x86_64-1.txz: Upgraded.
kde/kreversi-22.12.0-x86_64-1.txz: Upgraded.
kde/krfb-22.12.0-x86_64-1.txz: Upgraded.
kde/kross-interpreters-22.12.0-x86_64-1.txz: Upgraded.
kde/kruler-22.12.0-x86_64-1.txz: Upgraded.
kde/ksanecore-22.12.0-x86_64-1.txz: Upgraded.
kde/kshisen-22.12.0-x86_64-1.txz: Upgraded.
kde/ksirk-22.12.0-x86_64-1.txz: Upgraded.
kde/ksmtp-22.12.0-x86_64-1.txz: Upgraded.
kde/ksnakeduel-22.12.0-x86_64-1.txz: Upgraded.
kde/kspaceduel-22.12.0-x86_64-1.txz: Upgraded.
kde/ksquares-22.12.0-x86_64-1.txz: Upgraded.
kde/ksudoku-22.12.0-x86_64-1.txz: Upgraded.
kde/ksystemlog-22.12.0-x86_64-1.txz: Upgraded.
kde/kteatime-22.12.0-x86_64-1.txz: Upgraded.
kde/ktimer-22.12.0-x86_64-1.txz: Upgraded.
kde/ktnef-22.12.0-x86_64-1.txz: Upgraded.
kde/ktorrent-22.12.0-x86_64-1.txz: Upgraded.
kde/ktouch-22.12.0-x86_64-1.txz: Upgraded.
kde/kturtle-22.12.0-x86_64-1.txz: Upgraded.
kde/kubrick-22.12.0-x86_64-1.txz: Upgraded.
kde/kwalletmanager-22.12.0-x86_64-1.txz: Upgraded.
kde/kwave-22.12.0-x86_64-1.txz: Upgraded.
kde/kwordquiz-22.12.0-x86_64-1.txz: Upgraded.
kde/libgravatar-22.12.0-x86_64-1.txz: Upgraded.
kde/libkcddb-22.12.0-x86_64-1.txz: Upgraded.
kde/libkcompactdisc-22.12.0-x86_64-1.txz: Upgraded.
kde/libkdcraw-22.12.0-x86_64-1.txz: Upgraded.
kde/libkdegames-22.12.0-x86_64-1.txz: Upgraded.
kde/libkdepim-22.12.0-x86_64-1.txz: Upgraded.
kde/libkeduvocdocument-22.12.0-x86_64-1.txz: Upgraded.
kde/libkexiv2-22.12.0-x86_64-1.txz: Upgraded.
kde/libkgapi-22.12.0-x86_64-1.txz: Upgraded.
kde/libkipi-22.12.0-x86_64-1.txz: Upgraded.
kde/libkleo-22.12.0-x86_64-1.txz: Upgraded.
kde/libkmahjongg-22.12.0-x86_64-1.txz: Upgraded.
kde/libkomparediff2-22.12.0-x86_64-1.txz: Upgraded.
kde/libksane-22.12.0-x86_64-1.txz: Upgraded.
kde/libksieve-22.12.0-x86_64-1.txz: Upgraded.
kde/libktorrent-22.12.0-x86_64-1.txz: Upgraded.
kde/lokalize-22.12.0-x86_64-1.txz: Upgraded.
kde/lskat-22.12.0-x86_64-1.txz: Upgraded.
kde/mailcommon-22.12.0-x86_64-1.txz: Upgraded.
kde/mailimporter-22.12.0-x86_64-1.txz: Upgraded.
kde/marble-22.12.0-x86_64-1.txz: Upgraded.
kde/markdownpart-22.12.0-x86_64-1.txz: Upgraded.
kde/mbox-importer-22.12.0-x86_64-1.txz: Upgraded.
kde/messagelib-22.12.0-x86_64-1.txz: Upgraded.
kde/minuet-22.12.0-x86_64-1.txz: Upgraded.
kde/okular-22.12.0-x86_64-1.txz: Upgraded.
kde/palapeli-22.12.0-x86_64-1.txz: Upgraded.
kde/parley-22.12.0-x86_64-1.txz: Upgraded.
kde/partitionmanager-22.12.0-x86_64-1.txz: Upgraded.
kde/picmi-22.12.0-x86_64-1.txz: Upgraded.
kde/pim-data-exporter-22.12.0-x86_64-1.txz: Upgraded.
kde/pim-sieve-editor-22.12.0-x86_64-1.txz: Upgraded.
kde/pimcommon-22.12.0-x86_64-1.txz: Upgraded.
kde/poxml-22.12.0-x86_64-1.txz: Upgraded.
kde/print-manager-22.12.0-x86_64-1.txz: Upgraded.
kde/rocs-22.12.0-x86_64-1.txz: Upgraded.
kde/skanlite-22.12.0-x86_64-1.txz: Upgraded.
kde/skanpage-22.12.0-x86_64-1.txz: Upgraded.
kde/spectacle-22.12.0-x86_64-1.txz: Upgraded.
kde/svgpart-22.12.0-x86_64-1.txz: Upgraded.
kde/sweeper-22.12.0-x86_64-1.txz: Upgraded.
kde/umbrello-22.12.0-x86_64-1.txz: Upgraded.
kde/yakuake-22.12.0-x86_64-1.txz: Upgraded.
kde/zanshin-22.12.0-x86_64-1.txz: Upgraded.
x/ibus-m17n-1.4.18-x86_64-1.txz: Upgraded.
x/libICE-1.1.1-x86_64-1.txz: Upgraded.
x/libXau-1.0.11-x86_64-1.txz: Upgraded.
x/libfontenc-1.1.7-x86_64-1.txz: Upgraded.
x/libxkbfile-1.1.2-x86_64-1.txz: Upgraded.
x/libxshmfence-1.3.2-x86_64-1.txz: Upgraded.
x/xkbcomp-1.4.6-x86_64-1.txz: Upgraded.
xap/vim-gvim-9.0.1034-x86_64-1.txz: Upgraded.
20221208224834 | Patrick J Volkerding | 2022-12-09 | 13 | -32/+9307 |
* | Wed Dec 7 18:48:07 UTC 2022...d/cargo-vendor-filterer-0.5.7-x86_64-1.txz: Added.
Thanks to Heinz Wiesinger.
d/cbindgen-0.24.3-x86_64-1.txz: Added.
d/python3-3.9.16-x86_64-1.txz: Upgraded.
This update fixes security issues:
gh-98739: Updated bundled libexpat to 2.5.0 to fix CVE-2022-43680
(heap use-after-free).
gh-98433: The IDNA codec decoder used on DNS hostnames by socket or asyncio
related name resolution functions no longer involves a quadratic algorithm
to fix CVE-2022-45061. This prevents a potential CPU denial of service if an
out-of-spec excessive length hostname involving bidirectional characters were
decoded. Some protocols such as urllib http 3xx redirects potentially allow
for an attacker to supply such a name.
gh-100001: python -m http.server no longer allows terminal control characters
sent within a garbage request to be printed to the stderr server log.
gh-87604: Avoid publishing list of active per-interpreter audit hooks via the
gc module.
gh-97514: On Linux the multiprocessing module returns to using filesystem
backed unix domain sockets for communication with the forkserver process
instead of the Linux abstract socket namespace. Only code that chooses to use
the "forkserver" start method is affected. This prevents Linux CVE-2022-42919
(potential privilege escalation) as abstract sockets have no permissions and
could allow any user on the system in the same network namespace (often the
whole system) to inject code into the multiprocessing forkserver process.
Filesystem based socket permissions restrict this to the forkserver process
user as was the default in Python 3.8 and earlier.
gh-98517: Port XKCP's fix for the buffer overflows in SHA-3 to fix
CVE-2022-37454.
gh-68966: The deprecated mailcap module now refuses to inject unsafe text
(filenames, MIME types, parameters) into shell commands to address
CVE-2015-20107. Instead of using such text, it will warn and act as if a
match was not found (or for test commands, as if the test failed).
For more information, see:
https://pythoninsider.blogspot.com/2022/12/python-3111-3109-3916-3816-3716-and.html
https://www.cve.org/CVERecord?id=CVE-2022-43680
https://www.cve.org/CVERecord?id=CVE-2022-45061
https://www.cve.org/CVERecord?id=CVE-2022-42919
https://www.cve.org/CVERecord?id=CVE-2022-37454
https://www.cve.org/CVERecord?id=CVE-2015-20107
(* Security fix *)
d/rust-bindgen-0.63.0-x86_64-1.txz: Added.
Thanks to Heinz Wiesinger.
l/pcre2-10.41-x86_64-1.txz: Upgraded.
n/proftpd-1.3.8-x86_64-1.txz: Upgraded.
x/mesa-22.3.0-x86_64-1.txz: Upgraded.
Compiled with Rusticl support. Thanks to Heinz Wiesinger.
x/xdm-1.1.14-x86_64-1.txz: Upgraded.
20221207184807 | Patrick J Volkerding | 2022-12-07 | 29 | -351/+447 |
* | Mon Dec 5 21:00:46 UTC 2022...a/glibc-zoneinfo-2022g-noarch-1.txz: Upgraded.
This package provides the latest timezone updates.
ap/texinfo-7.0.1-x86_64-2.txz: Rebuilt.
Rebuilt without the --disable-perl-xs option to fix a2ps failing to build
from source. The option was added during the 15.0 development cycle to fix
glibc failing to build from source, but that issue has been resolved.
Thanks to nobodino and marav.
n/ca-certificates-20221205-noarch-1.txz: Upgraded.
This update provides the latest CA certificates to check for the
authenticity of SSL connections.
n/dnsmasq-2.88-x86_64-1.txz: Upgraded.
20221205210046 | Patrick J Volkerding | 2022-12-06 | 2 | -690/+28 |
* | Mon Dec 5 02:40:12 UTC 2022...x/OpenCC-1.1.5-x86_64-1.txz: Upgraded.
x/libXScrnSaver-1.2.4-x86_64-1.txz: Upgraded.
x/libXcomposite-0.4.6-x86_64-1.txz: Upgraded.
x/libXdamage-1.1.6-x86_64-1.txz: Upgraded.
x/libXres-1.2.2-x86_64-1.txz: Upgraded.
x/libXv-1.0.12-x86_64-1.txz: Upgraded.
x/libXxf86dga-1.1.6-x86_64-1.txz: Upgraded.
x/lndir-1.0.4-x86_64-1.txz: Upgraded.
20221205024012 | Patrick J Volkerding | 2022-12-05 | 19 | -20/+50 |
* | Sat Dec 3 21:07:32 UTC 2022...a/tcsh-6.24.04-x86_64-1.txz: Upgraded.
ap/texinfo-7.0.1-x86_64-1.txz: Upgraded.
l/vte-0.70.2-x86_64-1.txz: Upgraded.
x/transset-1.0.3-x86_64-1.txz: Upgraded.
x/xcursorgen-1.0.8-x86_64-1.txz: Upgraded.
20221203210732 | Patrick J Volkerding | 2022-12-04 | 2 | -2/+2 |
* | Fri Dec 2 06:58:38 UTC 2022...a/gptfdisk-1.0.9-x86_64-2.txz: Rebuilt.
Applied upstream patches to fix a crash and partition corruption caused by
the popt upgrade:
[PATCH] Updated guid.cc to deal with minor change in libuuid
[PATCH] Fix failure & crash of sgdisk when compiled with latest popt
[PATCH] Fix NULL dereference when duplicating string argument
Thanks to jloco.
d/cmake-3.25.1-x86_64-1.txz: Upgraded.
kde/calligra-3.2.1-x86_64-24.txz: Rebuilt.
Recompiled against poppler-22.12.0.
kde/cantor-22.08.3-x86_64-2.txz: Rebuilt.
Recompiled against poppler-22.12.0.
kde/kfilemetadata-5.100.0-x86_64-2.txz: Rebuilt.
Recompiled against poppler-22.12.0.
kde/kile-2.9.93-x86_64-22.txz: Rebuilt.
Recompiled against poppler-22.12.0.
kde/kitinerary-22.08.3-x86_64-2.txz: Rebuilt.
Recompiled against poppler-22.12.0.
kde/krita-5.1.3-x86_64-2.txz: Rebuilt.
Recompiled against poppler-22.12.0.
kde/okular-22.08.3-x86_64-2.txz: Rebuilt.
Recompiled against poppler-22.12.0.
l/glib2-2.74.3-x86_64-1.txz: Upgraded.
l/poppler-22.12.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
n/NetworkManager-1.40.6-x86_64-1.txz: Upgraded.
xap/NetworkManager-openvpn-1.10.2-x86_64-1.txz: Upgraded.
xap/libnma-1.10.4-x86_64-1.txz: Upgraded.
xap/network-manager-applet-1.30.0-x86_64-1.txz: Upgraded.
20221202065838 | Patrick J Volkerding | 2022-12-02 | 15 | -25/+112 |
* | Wed Nov 30 21:39:29 UTC 2022...kde/kstars-3.6.2-x86_64-1.txz: Upgraded.
l/libbluray-1.3.4-x86_64-1.txz: Upgraded.
l/newt-0.52.23-x86_64-1.txz: Upgraded.
l/nodejs-19.2.0-x86_64-1.txz: Upgraded.
x/wayland-protocols-1.31-noarch-1.txz: Upgraded.
extra/php80/php80-8.0.26-x86_64-1.txz: Upgraded.
extra/php81/php81-8.1.13-x86_64-1.txz: Upgraded.
20221130213929 | Patrick J Volkerding | 2022-12-01 | 1 | -1/+1 |
* | Tue Nov 29 20:56:03 UTC 2022...a/cryptsetup-2.6.0-x86_64-1.txz: Upgraded.
a/kernel-firmware-20221123_cdf9499-noarch-1.txz: Upgraded.
kde/bluedevil-5.26.4-x86_64-1.txz: Upgraded.
kde/breeze-5.26.4-x86_64-1.txz: Upgraded.
kde/breeze-grub-5.26.4-x86_64-1.txz: Upgraded.
kde/breeze-gtk-5.26.4-x86_64-1.txz: Upgraded.
kde/drkonqi-5.26.4-x86_64-1.txz: Upgraded.
kde/kactivitymanagerd-5.26.4-x86_64-1.txz: Upgraded.
kde/kde-cli-tools-5.26.4-x86_64-1.txz: Upgraded.
kde/kde-gtk-config-5.26.4-x86_64-1.txz: Upgraded.
kde/kdecoration-5.26.4-x86_64-1.txz: Upgraded.
kde/kdeplasma-addons-5.26.4-x86_64-1.txz: Upgraded.
kde/kgamma5-5.26.4-x86_64-1.txz: Upgraded.
kde/khotkeys-5.26.4-x86_64-1.txz: Upgraded.
kde/kinfocenter-5.26.4-x86_64-1.txz: Upgraded.
kde/kmenuedit-5.26.4-x86_64-1.txz: Upgraded.
kde/kpipewire-5.26.4-x86_64-1.txz: Upgraded.
kde/kscreen-5.26.4-x86_64-1.txz: Upgraded.
kde/kscreenlocker-5.26.4-x86_64-1.txz: Upgraded.
kde/ksshaskpass-5.26.4-x86_64-1.txz: Upgraded.
kde/ksystemstats-5.26.4-x86_64-1.txz: Upgraded.
kde/kwallet-pam-5.26.4-x86_64-1.txz: Upgraded.
kde/kwayland-integration-5.26.4-x86_64-1.txz: Upgraded.
kde/kwin-5.26.4-x86_64-1.txz: Upgraded.
kde/kwrited-5.26.4-x86_64-1.txz: Upgraded.
kde/layer-shell-qt-5.26.4-x86_64-1.txz: Upgraded.
kde/libkscreen-5.26.4-x86_64-1.txz: Upgraded.
kde/libksysguard-5.26.4-x86_64-1.txz: Upgraded.
kde/milou-5.26.4-x86_64-1.txz: Upgraded.
kde/oxygen-5.26.4-x86_64-1.txz: Upgraded.
kde/oxygen-sounds-5.26.4-x86_64-1.txz: Upgraded.
kde/plasma-browser-integration-5.26.4-x86_64-1.txz: Upgraded.
kde/plasma-desktop-5.26.4-x86_64-1.txz: Upgraded.
kde/plasma-disks-5.26.4-x86_64-1.txz: Upgraded.
kde/plasma-firewall-5.26.4-x86_64-1.txz: Upgraded.
kde/plasma-integration-5.26.4-x86_64-1.txz: Upgraded.
kde/plasma-nm-5.26.4-x86_64-1.txz: Upgraded.
kde/plasma-pa-5.26.4-x86_64-1.txz: Upgraded.
kde/plasma-sdk-5.26.4-x86_64-1.txz: Upgraded.
kde/plasma-systemmonitor-5.26.4-x86_64-1.txz: Upgraded.
kde/plasma-vault-5.26.4-x86_64-1.txz: Upgraded.
kde/plasma-workspace-5.26.4.1-x86_64-1.txz: Upgraded.
kde/plasma-workspace-wallpapers-5.26.4-x86_64-1.txz: Upgraded.
kde/polkit-kde-agent-1-5.26.4-x86_64-1.txz: Upgraded.
kde/powerdevil-5.26.4-x86_64-1.txz: Upgraded.
kde/qqc2-breeze-style-5.26.4-x86_64-1.txz: Upgraded.
kde/sddm-kcm-5.26.4-x86_64-1.txz: Upgraded.
kde/systemsettings-5.26.4-x86_64-1.txz: Upgraded.
kde/xdg-desktop-portal-kde-5.26.4-x86_64-1.txz: Upgraded.
l/glib2-2.74.2-x86_64-2.txz: Rebuilt.
Patched to fix C++ API.
Thanks to 0XBF.
l/wavpack-5.6.0-x86_64-1.txz: Upgraded.
n/iputils-20221126-x86_64-1.txz: Upgraded.
n/libmbim-1.28.2-x86_64-1.txz: Upgraded.
x/libime-1.0.16-x86_64-1.txz: Upgraded.
x/xterm-377-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-107.0.1-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/firefox/107.0.1/releasenotes/
20221129205603 | Patrick J Volkerding | 2022-11-30 | 10 | -114/+95 |
* | Fri Nov 25 20:37:16 UTC 2022...a/btrfs-progs-6.0.2-x86_64-1.txz: Upgraded.
l/glib2-2.74.2-x86_64-1.txz: Upgraded.
x/fcitx5-gtk-5.0.21-x86_64-1.txz: Upgraded.
20221125203716 | Patrick J Volkerding | 2022-11-26 | 2 | -134/+1 |
* | Thu Nov 24 20:55:37 UTC 2022...a/bash-5.2.012-x86_64-1.txz: Upgraded.
a/less-612-x86_64-1.txz: Upgraded.
a/tcsh-6.24.02-x86_64-1.txz: Upgraded.
ap/vim-9.0.0942-x86_64-1.txz: Upgraded.
d/make-4.4-x86_64-2.txz: Rebuilt.
[SV 63307] Spawn children with the default disposition of sigpipe.
Thanks to nobodino.
d/ruby-3.1.3-x86_64-1.txz: Upgraded.
This release includes a security fix:
HTTP response splitting in CGI.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2021-33621
(* Security fix *)
l/pipewire-0.3.61-x86_64-1.txz: Upgraded.
n/ipset-7.16-x86_64-1.txz: Upgraded.
x/fcitx5-5.0.21-x86_64-1.txz: Upgraded.
xap/vim-gvim-9.0.0942-x86_64-1.txz: Upgraded.
20221124205537 | Patrick J Volkerding | 2022-11-25 | 10 | -37/+531 |
* | Wed Nov 23 19:51:17 UTC 2022...a/gawk-5.2.1-x86_64-1.txz: Upgraded.
a/rpm2tgz-1.2.2-x86_64-7.txz: Rebuilt.
Take rpmoffset fixes from Gentoo.
Thanks to allend.
d/ccache-4.7.4-x86_64-1.txz: Upgraded.
d/meson-0.64.1-x86_64-1.txz: Upgraded.
d/parallel-20221122-noarch-1.txz: Upgraded.
kde/fcitx5-configtool-5.0.16-x86_64-1.txz: Upgraded.
l/SDL2-2.26.0-x86_64-1.txz: Upgraded.
l/glib2-2.74.1-x86_64-2.txz: Rebuilt.
[PATCH 1/2] Revert "Handling collision between standard i/o file descriptors
and newly created ones."
[PATCH 2/2] glib-unix: Add test to make sure g_unix_open_pipe will intrude
standard range.
Thanks to marav.
l/newt-0.52.22-x86_64-1.txz: Upgraded.
l/pipewire-0.3.60-x86_64-2.txz: Rebuilt.
[PATCH] alsa: force playback start when buffer is full.
Thanks to marav.
tcl/tcl-8.6.13-x86_64-1.txz: Upgraded.
tcl/tk-8.6.13-x86_64-1.txz: Upgraded.
x/libglvnd-1.6.0-x86_64-1.txz: Upgraded.
x/wayland-protocols-1.30-noarch-1.txz: Upgraded.
xap/blueman-2.3.5-x86_64-1.txz: Upgraded.
20221123195117 | Patrick J Volkerding | 2022-11-24 | 13 | -46/+306 |
* | Mon Nov 21 20:23:13 UTC 2022...a/libpwquality-1.4.5-x86_64-1.txz: Upgraded.
a/pciutils-3.9.0-x86_64-1.txz: Upgraded.
ap/qpdf-11.2.0-x86_64-1.txz: Upgraded.
d/mercurial-6.3.1-x86_64-1.txz: Upgraded.
kde/krusader-2.8.0-x86_64-1.txz: Upgraded.
l/libpng-1.6.39-x86_64-1.txz: Upgraded.
l/mlt-7.12.0-x86_64-1.txz: Upgraded.
x/fcitx5-5.0.20-x86_64-1.txz: Upgraded.
x/fcitx5-anthy-5.0.13-x86_64-1.txz: Upgraded.
x/fcitx5-chinese-addons-5.0.16-x86_64-1.txz: Upgraded.
x/fcitx5-gtk-5.0.20-x86_64-1.txz: Upgraded.
x/fcitx5-kkc-5.0.11-x86_64-1.txz: Upgraded.
x/fcitx5-m17n-5.0.11-x86_64-1.txz: Upgraded.
x/fcitx5-qt-5.0.16-x86_64-1.txz: Upgraded.
x/fcitx5-table-extra-5.0.12-x86_64-1.txz: Upgraded.
x/fcitx5-unikey-5.0.12-x86_64-1.txz: Upgraded.
x/libXdmcp-1.1.4-x86_64-1.txz: Upgraded.
x/libXpm-3.5.14-x86_64-1.txz: Upgraded.
x/libXrandr-1.5.3-x86_64-1.txz: Upgraded.
x/libime-1.0.15-x86_64-1.txz: Upgraded.
x/libinput-1.22.0-x86_64-1.txz: Upgraded.
x/xcb-imdkit-1.0.4-x86_64-1.txz: Upgraded.
20221121202313 | Patrick J Volkerding | 2022-11-22 | 29 | -32/+33 |
* | Sun Nov 20 00:54:24 UTC 2022...a/aaa_libraries-15.1-x86_64-13.txz: Rebuilt.
Upgraded: libelf-0.188.so, liblzma.so.5.2.8, libmpfr.so.6.1.1.
Removed: libunistring.so.2.1.0.
Added: libFLAC++.so.6.3.0, libFLAC.so.8.3.0, libjasper.so.6.0.0.
ap/flac-1.4.2-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
ap/moc-2.6_alpha3-x86_64-2.txz: Rebuilt.
Recompiled against flac-1.4.2.
ap/opus-tools-0.2-x86_64-4.txz: Rebuilt.
Recompiled against flac-1.4.2.
ap/sox-14.4.2-x86_64-9.txz: Rebuilt.
Recompiled against flac-1.4.2.
ap/vorbis-tools-1.4.2-x86_64-3.txz: Rebuilt.
Recompiled against flac-1.4.2.
kde/audiocd-kio-22.08.3-x86_64-2.txz: Rebuilt.
Recompiled against flac-1.4.2.
kde/digikam-7.8.0-x86_64-4.txz: Rebuilt.
Recompiled against jasper-4.0.0.
kde/k3b-22.08.3-x86_64-2.txz: Rebuilt.
Recompiled against flac-1.4.2.
kde/kid3-3.9.2-x86_64-2.txz: Rebuilt.
Recompiled against flac-1.4.2.
kde/kwave-22.08.3-x86_64-2.txz: Rebuilt.
Recompiled against flac-1.4.2.
l/LibRaw-0.20.2-x86_64-6.txz: Rebuilt.
Recompiled against jasper-4.0.0.
l/at-spi2-core-2.46.0-x86_64-1.txz: Upgraded.
l/audiofile-0.3.6-x86_64-5.txz: Rebuilt.
Recompiled against flac-1.4.2.
l/gamin-0.1.10-x86_64-9.txz: Removed.
l/gegl-0.4.40-x86_64-2.txz: Rebuilt.
Recompiled against jasper-4.0.0.
l/glib-networking-2.74.0-x86_64-1.txz: Upgraded.
l/glib2-2.74.1-x86_64-1.txz: Upgraded.
l/gobject-introspection-1.74.0-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.20.4-x86_64-2.txz: Rebuilt.
Recompiled against flac-1.4.2.
l/jasper-4.0.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/libsndfile-1.1.0-x86_64-2.txz: Rebuilt.
Recompiled against flac-1.4.2.
l/libsoup-2.74.3-x86_64-1.txz: Upgraded.
l/pango-1.50.12-x86_64-1.txz: Upgraded.
l/pygobject3-3.42.2-x86_64-1.txz: Upgraded.
l/qt5-5.15.7_20221116_ee27a432-x86_64-1.txz: Upgraded.
Compiled against jasper-4.0.0.
l/sdl-1.2.15-x86_64-13.txz: Rebuilt.
Recompiled against flac-1.4.2.
l/vte-0.70.1-x86_64-1.txz: Upgraded.
xap/audacious-plugins-4.2-x86_64-3.txz: Rebuilt.
Recompiled against flac-1.4.2.
xap/easytag-2.4.3-x86_64-5.txz: Rebuilt.
Recompiled against flac-1.4.2.
xap/xine-lib-1.2.12-x86_64-3.txz: Rebuilt.
Recompiled against flac-1.4.2.
20221120005424 | Patrick J Volkerding | 2022-11-20 | 35 | -346/+37 |
* | Thu Nov 17 20:02:33 UTC 2022...d/cmake-3.25.0-x86_64-1.txz: Upgraded.
kde/kconfig-5.100.1-x86_64-1.txz: Upgraded.
kde/plasma-framework-5.100.1-x86_64-1.txz: Upgraded.
l/mpfr-4.1.1-x86_64-1.txz: Upgraded.
x/mesa-22.2.4-x86_64-1.txz: Upgraded.
x/xterm-376-x86_64-1.txz: Upgraded.
xap/freerdp-2.9.0-x86_64-1.txz: Upgraded.
Fixed multiple client side input validation issues.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-39316
https://www.cve.org/CVERecord?id=CVE-2022-39317
https://www.cve.org/CVERecord?id=CVE-2022-39318
https://www.cve.org/CVERecord?id=CVE-2022-39319
https://www.cve.org/CVERecord?id=CVE-2022-39320
https://www.cve.org/CVERecord?id=CVE-2022-41877
https://www.cve.org/CVERecord?id=CVE-2022-39347
(* Security fix *)
20221117200233 | Patrick J Volkerding | 2022-11-18 | 4 | -30/+2 |
* | Thu Nov 17 01:49:28 UTC 2022...ap/man-db-2.11.1-x86_64-1.txz: Upgraded.
ap/nano-7.0-x86_64-1.txz: Upgraded.
ap/sqlite-3.40.0-x86_64-1.txz: Upgraded.
kde/plasma-framework-5.100.0-x86_64-2.txz: Rebuilt.
[PATCH] svgitem: do not upscale svg when using fractional scaling.
l/netpbm-11.00.02-x86_64-1.txz: Upgraded.
n/bind-9.18.9-x86_64-1.txz: Upgraded.
n/krb5-1.20.1-x86_64-1.txz: Upgraded.
Fixed integer overflows in PAC parsing.
Fixed null deref in KDC when decoding invalid NDR.
Fixed memory leak in OTP kdcpreauth module.
Fixed PKCS11 module path search.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-42898
(* Security fix *)
n/samba-4.17.3-x86_64-1.txz: Upgraded.
Fixed a security issue where Samba's Kerberos libraries and AD DC failed
to guard against integer overflows when parsing a PAC on a 32-bit system,
which allowed an attacker with a forged PAC to corrupt the heap.
For more information, see:
https://www.samba.org/samba/security/CVE-2022-42898.html
https://www.cve.org/CVERecord?id=CVE-2022-42898
(* Security fix *)
x/libXft-2.3.7-x86_64-1.txz: Upgraded.
x/wayland-protocols-1.29-noarch-1.txz: Upgraded.
xap/mozilla-firefox-107.0-x86_64-1.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/107.0/releasenotes/
https://www.mozilla.org/security/advisories/mfsa2022-47/
https://www.cve.org/CVERecord?id=CVE-2022-45403
https://www.cve.org/CVERecord?id=CVE-2022-45404
https://www.cve.org/CVERecord?id=CVE-2022-45405
https://www.cve.org/CVERecord?id=CVE-2022-45406
https://www.cve.org/CVERecord?id=CVE-2022-45407
https://www.cve.org/CVERecord?id=CVE-2022-45408
https://www.cve.org/CVERecord?id=CVE-2022-45409
https://www.cve.org/CVERecord?id=CVE-2022-45410
https://www.cve.org/CVERecord?id=CVE-2022-45411
https://www.cve.org/CVERecord?id=CVE-2022-45412
https://www.cve.org/CVERecord?id=CVE-2022-45413
https://www.cve.org/CVERecord?id=CVE-2022-40674
https://www.cve.org/CVERecord?id=CVE-2022-45415
https://www.cve.org/CVERecord?id=CVE-2022-45416
https://www.cve.org/CVERecord?id=CVE-2022-45417
https://www.cve.org/CVERecord?id=CVE-2022-45418
https://www.cve.org/CVERecord?id=CVE-2022-45419
https://www.cve.org/CVERecord?id=CVE-2022-45420
https://www.cve.org/CVERecord?id=CVE-2022-45421
(* Security fix *)
xap/mozilla-thunderbird-102.5.0-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/102.5.0/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2022-49/
https://www.cve.org/CVERecord?id=CVE-2022-45403
https://www.cve.org/CVERecord?id=CVE-2022-45404
https://www.cve.org/CVERecord?id=CVE-2022-45405
https://www.cve.org/CVERecord?id=CVE-2022-45406
https://www.cve.org/CVERecord?id=CVE-2022-45408
https://www.cve.org/CVERecord?id=CVE-2022-45409
https://www.cve.org/CVERecord?id=CVE-2022-45410
https://www.cve.org/CVERecord?id=CVE-2022-45411
https://www.cve.org/CVERecord?id=CVE-2022-45412
https://www.cve.org/CVERecord?id=CVE-2022-45416
https://www.cve.org/CVERecord?id=CVE-2022-45418
https://www.cve.org/CVERecord?id=CVE-2022-45420
https://www.cve.org/CVERecord?id=CVE-2022-45421
(* Security fix *)
xfce/xfce4-settings-4.16.5-x86_64-1.txz: Upgraded.
This update fixes regressions in the previous security fix:
mime-settings: Properly quote command parameters.
Revert "Escape characters which do not belong into an URI/URL (Issue #390)."
20221117014928 | Patrick J Volkerding | 2022-11-17 | 7 | -5/+33 |
* | Tue Nov 15 01:28:38 UTC 2022...a/xz-5.2.8-x86_64-1.txz: Upgraded.
d/mercurial-6.3.0-x86_64-1.txz: Upgraded.
d/rust-1.64.0-x86_64-1.txz: Upgraded.
kde/attica-5.100.0-x86_64-1.txz: Upgraded.
kde/baloo-5.100.0-x86_64-1.txz: Upgraded.
kde/bluez-qt-5.100.0-x86_64-1.txz: Upgraded.
kde/breeze-icons-5.100.0-noarch-1.txz: Upgraded.
kde/extra-cmake-modules-5.100.0-x86_64-1.txz: Upgraded.
kde/frameworkintegration-5.100.0-x86_64-1.txz: Upgraded.
kde/kactivities-5.100.0-x86_64-1.txz: Upgraded.
kde/kactivities-stats-5.100.0-x86_64-1.txz: Upgraded.
kde/kapidox-5.100.0-x86_64-1.txz: Upgraded.
kde/karchive-5.100.0-x86_64-1.txz: Upgraded.
kde/kauth-5.100.0-x86_64-1.txz: Upgraded.
kde/kbookmarks-5.100.0-x86_64-1.txz: Upgraded.
kde/kcalendarcore-5.100.0-x86_64-1.txz: Upgraded.
kde/kcmutils-5.100.0-x86_64-1.txz: Upgraded.
kde/kcodecs-5.100.0-x86_64-1.txz: Upgraded.
kde/kcompletion-5.100.0-x86_64-1.txz: Upgraded.
kde/kconfig-5.100.0-x86_64-1.txz: Upgraded.
kde/kconfigwidgets-5.100.0-x86_64-1.txz: Upgraded.
kde/kcontacts-5.100.0-x86_64-1.txz: Upgraded.
kde/kcoreaddons-5.100.0-x86_64-1.txz: Upgraded.
kde/kcrash-5.100.0-x86_64-1.txz: Upgraded.
kde/kdav-5.100.0-x86_64-1.txz: Upgraded.
kde/kdbusaddons-5.100.0-x86_64-1.txz: Upgraded.
kde/kdeclarative-5.100.0-x86_64-1.txz: Upgraded.
kde/kded-5.100.0-x86_64-1.txz: Upgraded.
kde/kdelibs4support-5.100.0-x86_64-1.txz: Upgraded.
kde/kdesignerplugin-5.100.0-x86_64-1.txz: Upgraded.
kde/kdesu-5.100.0-x86_64-1.txz: Upgraded.
kde/kdewebkit-5.100.0-x86_64-1.txz: Upgraded.
kde/kdnssd-5.100.0-x86_64-1.txz: Upgraded.
kde/kdoctools-5.100.0-x86_64-1.txz: Upgraded.
kde/kemoticons-5.100.0-x86_64-1.txz: Upgraded.
kde/kfilemetadata-5.100.0-x86_64-1.txz: Upgraded.
kde/kglobalaccel-5.100.0-x86_64-1.txz: Upgraded.
kde/kguiaddons-5.100.0-x86_64-1.txz: Upgraded.
kde/kholidays-5.100.0-x86_64-1.txz: Upgraded.
kde/khtml-5.100.0-x86_64-1.txz: Upgraded.
kde/ki18n-5.100.0-x86_64-1.txz: Upgraded.
kde/kiconthemes-5.100.0-x86_64-1.txz: Upgraded.
kde/kidletime-5.100.0-x86_64-1.txz: Upgraded.
kde/kimageformats-5.100.0-x86_64-1.txz: Upgraded.
kde/kinit-5.100.0-x86_64-1.txz: Upgraded.
kde/kio-5.100.0-x86_64-1.txz: Upgraded.
kde/kirigami2-5.100.0-x86_64-1.txz: Upgraded.
kde/kitemmodels-5.100.0-x86_64-1.txz: Upgraded.
kde/kitemviews-5.100.0-x86_64-1.txz: Upgraded.
kde/kjobwidgets-5.100.0-x86_64-1.txz: Upgraded.
kde/kjs-5.100.0-x86_64-1.txz: Upgraded.
kde/kjsembed-5.100.0-x86_64-1.txz: Upgraded.
kde/kmediaplayer-5.100.0-x86_64-1.txz: Upgraded.
kde/knewstuff-5.100.0-x86_64-1.txz: Upgraded.
kde/knotifications-5.100.0-x86_64-1.txz: Upgraded.
kde/knotifyconfig-5.100.0-x86_64-1.txz: Upgraded.
kde/kpackage-5.100.0-x86_64-1.txz: Upgraded.
kde/kparts-5.100.0-x86_64-1.txz: Upgraded.
kde/kpeople-5.100.0-x86_64-1.txz: Upgraded.
kde/kplotting-5.100.0-x86_64-1.txz: Upgraded.
kde/kpty-5.100.0-x86_64-1.txz: Upgraded.
kde/kquickcharts-5.100.0-x86_64-1.txz: Upgraded.
kde/kross-5.100.0-x86_64-1.txz: Upgraded.
kde/krunner-5.100.0-x86_64-1.txz: Upgraded.
kde/kservice-5.100.0-x86_64-1.txz: Upgraded.
kde/ktexteditor-5.100.0-x86_64-1.txz: Upgraded.
kde/ktextwidgets-5.100.0-x86_64-1.txz: Upgraded.
kde/kunitconversion-5.100.0-x86_64-1.txz: Upgraded.
kde/kwallet-5.100.0-x86_64-1.txz: Upgraded.
kde/kwayland-5.100.0-x86_64-1.txz: Upgraded.
kde/kwidgetsaddons-5.100.0-x86_64-1.txz: Upgraded.
kde/kwindowsystem-5.100.0-x86_64-1.txz: Upgraded.
kde/kxmlgui-5.100.0-x86_64-1.txz: Upgraded.
kde/kxmlrpcclient-5.100.0-x86_64-1.txz: Upgraded.
kde/modemmanager-qt-5.100.0-x86_64-1.txz: Upgraded.
kde/networkmanager-qt-5.100.0-x86_64-1.txz: Upgraded.
kde/oxygen-icons5-5.100.0-noarch-1.txz: Upgraded.
kde/plasma-framework-5.100.0-x86_64-1.txz: Upgraded.
kde/prison-5.100.0-x86_64-1.txz: Upgraded.
kde/purpose-5.100.0-x86_64-1.txz: Upgraded.
kde/qqc2-desktop-style-5.100.0-x86_64-1.txz: Upgraded.
kde/solid-5.100.0-x86_64-1.txz: Upgraded.
kde/sonnet-5.100.0-x86_64-1.txz: Upgraded.
kde/syndication-5.100.0-x86_64-1.txz: Upgraded.
kde/syntax-highlighting-5.100.0-x86_64-1.txz: Upgraded.
kde/threadweaver-5.100.0-x86_64-1.txz: Upgraded.
l/babl-0.1.98-x86_64-1.txz: Upgraded.
l/gegl-0.4.40-x86_64-1.txz: Upgraded.
l/grantlee-5.3.1-x86_64-1.txz: Upgraded.
l/nodejs-19.1.0-x86_64-1.txz: Upgraded.
n/libqmi-1.32.2-x86_64-1.txz: Upgraded.
n/mutt-2.2.9-x86_64-1.txz: Upgraded.
n/nghttp2-1.51.0-x86_64-1.txz: Upgraded.
x/xcompmgr-1.1.9-x86_64-1.txz: Upgraded.
x/xkbevd-1.1.5-x86_64-1.txz: Upgraded.
x/xkill-1.0.6-x86_64-1.txz: Upgraded.
x/xlogo-1.0.6-x86_64-1.txz: Upgraded.
x/xlsatoms-1.1.4-x86_64-1.txz: Upgraded.
x/xlsclients-1.1.5-x86_64-1.txz: Upgraded.
testing/packages/rust-1.65.0-x86_64-1.txz: Upgraded.
20221115012838 | Patrick J Volkerding | 2022-11-15 | 15 | -87/+45 |
* | Thu Nov 10 19:47:59 UTC 2022...ap/texinfo-7.0-x86_64-1.txz: Upgraded.
l/iso-codes-4.12.0-noarch-1.txz: Upgraded.
l/lcms2-2.14-x86_64-1.txz: Upgraded.
l/mozilla-nss-3.85-x86_64-1.txz: Upgraded.
l/pipewire-0.3.60-x86_64-1.txz: Upgraded.
n/php-7.4.33-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues:
GD: OOB read due to insufficient input validation in imageloadfont().
Hash: buffer overflow in hash_update() on long parameter.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-31630
https://www.cve.org/CVERecord?id=CVE-2022-37454
(* Security fix *)
x/ibus-table-1.16.14-x86_64-1.txz: Upgraded.
20221110194759 | Patrick J Volkerding | 2022-11-11 | 6 | -22/+9 |
* | Wed Nov 9 22:16:30 UTC 2022...a/btrfs-progs-6.0.1-x86_64-1.txz: Upgraded.
ap/sysstat-12.7.1-x86_64-1.txz: Upgraded.
On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1,
allocate_structures contains a size_t overflow in sa_common.c. The
allocate_structures function insufficiently checks bounds before arithmetic
multiplication, allowing for an overflow in the size allocated for the
buffer representing system activities.
This issue may lead to Remote Code Execution (RCE).
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-39377
(* Security fix *)
kde/bluedevil-5.26.3.1-x86_64-1.txz: Upgraded.
kde/breeze-5.26.3.1-x86_64-1.txz: Upgraded.
kde/oxygen-sounds-5.26.3.1-x86_64-1.txz: Upgraded.
l/gdk-pixbuf2-2.42.10-x86_64-1.txz: Upgraded.
l/orc-0.4.33-x86_64-1.txz: Upgraded.
n/mobile-broadband-provider-info-20221107-x86_64-1.txz: Upgraded.
xfce/xfce4-settings-4.16.4-x86_64-1.txz: Upgraded.
Fixed an argument injection vulnerability in xfce4-mime-helper.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-45062
(* Security fix *)
20221109221630 | Patrick J Volkerding | 2022-11-10 | 4 | -6/+7 |
* | Tue Nov 8 22:21:43 UTC 2022...a/bash-5.2.009-x86_64-1.txz: Upgraded.
a/glibc-zoneinfo-2022f-noarch-1.txz: Upgraded.
a/sed-4.9-x86_64-1.txz: Upgraded.
ap/mariadb-10.6.11-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://mariadb.com/kb/en/mariadb-10-6-11-release-notes
d/ccache-4.7.3-x86_64-1.txz: Upgraded.
d/meson-0.64.0-x86_64-1.txz: Upgraded.
d/patchelf-0.17.0-x86_64-1.txz: Upgraded.
kde/bluedevil-5.26.3-x86_64-1.txz: Upgraded.
kde/breeze-5.26.3-x86_64-1.txz: Upgraded.
kde/breeze-grub-5.26.3-x86_64-1.txz: Upgraded.
kde/breeze-gtk-5.26.3-x86_64-1.txz: Upgraded.
kde/drkonqi-5.26.3-x86_64-1.txz: Upgraded.
kde/kactivitymanagerd-5.26.3-x86_64-1.txz: Upgraded.
kde/kde-cli-tools-5.26.3-x86_64-1.txz: Upgraded.
kde/kde-gtk-config-5.26.3-x86_64-1.txz: Upgraded.
kde/kdecoration-5.26.3-x86_64-1.txz: Upgraded.
kde/kdeplasma-addons-5.26.3-x86_64-1.txz: Upgraded.
kde/kgamma5-5.26.3-x86_64-1.txz: Upgraded.
kde/khotkeys-5.26.3-x86_64-1.txz: Upgraded.
kde/kinfocenter-5.26.3-x86_64-1.txz: Upgraded.
kde/kmenuedit-5.26.3-x86_64-1.txz: Upgraded.
kde/kpipewire-5.26.3-x86_64-1.txz: Upgraded.
kde/kscreen-5.26.3-x86_64-1.txz: Upgraded.
kde/kscreenlocker-5.26.3-x86_64-1.txz: Upgraded.
kde/ksshaskpass-5.26.3-x86_64-1.txz: Upgraded.
kde/ksystemstats-5.26.3-x86_64-1.txz: Upgraded.
kde/kwallet-pam-5.26.3-x86_64-1.txz: Upgraded.
kde/kwayland-integration-5.26.3-x86_64-1.txz: Upgraded.
kde/kwin-5.26.3-x86_64-1.txz: Upgraded.
kde/kwrited-5.26.3-x86_64-1.txz: Upgraded.
kde/layer-shell-qt-5.26.3-x86_64-1.txz: Upgraded.
kde/libkscreen-5.26.3-x86_64-1.txz: Upgraded.
kde/libksysguard-5.26.3-x86_64-1.txz: Upgraded.
kde/milou-5.26.3-x86_64-1.txz: Upgraded.
kde/oxygen-5.26.3-x86_64-1.txz: Upgraded.
kde/oxygen-sounds-5.26.3-x86_64-1.txz: Upgraded.
kde/plasma-browser-integration-5.26.3-x86_64-1.txz: Upgraded.
kde/plasma-desktop-5.26.3-x86_64-1.txz: Upgraded.
kde/plasma-disks-5.26.3-x86_64-1.txz: Upgraded.
kde/plasma-firewall-5.26.3-x86_64-1.txz: Upgraded.
kde/plasma-integration-5.26.3-x86_64-1.txz: Upgraded.
kde/plasma-nm-5.26.3-x86_64-1.txz: Upgraded.
kde/plasma-pa-5.26.3-x86_64-1.txz: Upgraded.
kde/plasma-sdk-5.26.3-x86_64-1.txz: Upgraded.
kde/plasma-systemmonitor-5.26.3-x86_64-1.txz: Upgraded.
kde/plasma-vault-5.26.3-x86_64-1.txz: Upgraded.
kde/plasma-workspace-5.26.3-x86_64-1.txz: Upgraded.
kde/plasma-workspace-wallpapers-5.26.3-x86_64-1.txz: Upgraded.
kde/polkit-kde-agent-1-5.26.3-x86_64-1.txz: Upgraded.
kde/powerdevil-5.26.3-x86_64-1.txz: Upgraded.
kde/qqc2-breeze-style-5.26.3-x86_64-1.txz: Upgraded.
kde/sddm-kcm-5.26.3-x86_64-1.txz: Upgraded.
kde/systemsettings-5.26.3-x86_64-1.txz: Upgraded.
kde/xdg-desktop-portal-kde-5.26.3-x86_64-1.txz: Upgraded.
l/Imath-3.1.6-x86_64-1.txz: Upgraded.
l/imagemagick-7.1.0_52-x86_64-1.txz: Upgraded.
l/libspectre-0.2.11-x86_64-1.txz: Upgraded.
n/mutt-2.2.8-x86_64-1.txz: Upgraded.
x/mesa-22.2.3-x86_64-1.txz: Upgraded.
x/wayland-protocols-1.28-noarch-1.txz: Upgraded.
20221108222143 | Patrick J Volkerding | 2022-11-09 | 18 | -157/+867 |
* | Sat Nov 5 19:18:19 UTC 2022...ap/sudo-1.9.12p1-x86_64-1.txz: Upgraded.
Fixed a potential out-of-bounds write for passwords smaller than 8
characters when passwd authentication is enabled.
This does not affect configurations that use other authentication
methods such as PAM, AIX authentication or BSD authentication.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-43995
(* Security fix *)
l/nodejs-19.0.1-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-106.0.5-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/firefox/106.0.5/releasenotes/
20221105191819 | Patrick J Volkerding | 2022-11-06 | 1 | -1/+1 |
* | Fri Nov 4 19:29:28 UTC 2022...a/exfatprogs-1.2.0-x86_64-1.txz: Upgraded.
a/openssl-solibs-1.1.1s-x86_64-1.txz: Upgraded.
n/openssl-1.1.1s-x86_64-1.txz: Upgraded.
xap/fvwm-2.7.0-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-102.4.2-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/102.4.2/releasenotes/
20221104192928 | Patrick J Volkerding | 2022-11-05 | 3 | -3/+3 |
* | Fri Nov 4 02:24:51 UTC 2022...a/mcelog-190-x86_64-1.txz: Upgraded.
kde/akonadi-22.08.3-x86_64-1.txz: Upgraded.
kde/akonadi-calendar-22.08.3-x86_64-1.txz: Upgraded.
kde/akonadi-calendar-tools-22.08.3-x86_64-1.txz: Upgraded.
kde/akonadi-contacts-22.08.3-x86_64-1.txz: Upgraded.
kde/akonadi-import-wizard-22.08.3-x86_64-1.txz: Upgraded.
kde/akonadi-mime-22.08.3-x86_64-1.txz: Upgraded.
kde/akonadi-notes-22.08.3-x86_64-1.txz: Upgraded.
kde/akonadi-search-22.08.3-x86_64-1.txz: Upgraded.
kde/akonadiconsole-22.08.3-x86_64-1.txz: Upgraded.
kde/akregator-22.08.3-x86_64-1.txz: Upgraded.
kde/analitza-22.08.3-x86_64-1.txz: Upgraded.
kde/ark-22.08.3-x86_64-1.txz: Upgraded.
kde/artikulate-22.08.3-x86_64-1.txz: Upgraded.
kde/audiocd-kio-22.08.3-x86_64-1.txz: Upgraded.
kde/baloo-widgets-22.08.3-x86_64-1.txz: Upgraded.
kde/blinken-22.08.3-x86_64-1.txz: Upgraded.
kde/bomber-22.08.3-x86_64-1.txz: Upgraded.
kde/bovo-22.08.3-x86_64-1.txz: Upgraded.
kde/calendarsupport-22.08.3-x86_64-1.txz: Upgraded.
kde/cantor-22.08.3-x86_64-1.txz: Upgraded.
kde/cervisia-22.08.3-x86_64-1.txz: Upgraded.
kde/dolphin-22.08.3-x86_64-1.txz: Upgraded.
kde/dolphin-plugins-22.08.3-x86_64-1.txz: Upgraded.
kde/dragon-22.08.3-x86_64-1.txz: Upgraded.
kde/elisa-22.08.3-x86_64-1.txz: Upgraded.
kde/eventviews-22.08.3-x86_64-1.txz: Upgraded.
kde/falkon-22.08.3-x86_64-1.txz: Upgraded.
kde/ffmpegthumbs-22.08.3-x86_64-1.txz: Upgraded.
kde/filelight-22.08.3-x86_64-1.txz: Upgraded.
kde/granatier-22.08.3-x86_64-1.txz: Upgraded.
kde/grantlee-editor-22.08.3-x86_64-1.txz: Upgraded.
kde/grantleetheme-22.08.3-x86_64-1.txz: Upgraded.
kde/gwenview-22.08.3-x86_64-1.txz: Upgraded.
kde/incidenceeditor-22.08.3-x86_64-1.txz: Upgraded.
kde/itinerary-22.08.3-x86_64-1.txz: Upgraded.
kde/juk-22.08.3-x86_64-1.txz: Upgraded.
kde/k3b-22.08.3-x86_64-1.txz: Upgraded.
kde/kaddressbook-22.08.3-x86_64-1.txz: Upgraded.
kde/kalarm-22.08.3-x86_64-1.txz: Upgraded.
kde/kalendar-22.08.3-x86_64-1.txz: Upgraded.
kde/kalgebra-22.08.3-x86_64-1.txz: Upgraded.
kde/kalzium-22.08.3-x86_64-1.txz: Upgraded.
kde/kamera-22.08.3-x86_64-1.txz: Upgraded.
kde/kamoso-22.08.3-x86_64-1.txz: Upgraded.
kde/kanagram-22.08.3-x86_64-1.txz: Upgraded.
kde/kapman-22.08.3-x86_64-1.txz: Upgraded.
kde/kapptemplate-22.08.3-x86_64-1.txz: Upgraded.
kde/kate-22.08.3-x86_64-1.txz: Upgraded.
kde/katomic-22.08.3-x86_64-1.txz: Upgraded.
kde/kbackup-22.08.3-x86_64-1.txz: Upgraded.
kde/kblackbox-22.08.3-x86_64-1.txz: Upgraded.
kde/kblocks-22.08.3-x86_64-1.txz: Upgraded.
kde/kbounce-22.08.3-x86_64-1.txz: Upgraded.
kde/kbreakout-22.08.3-x86_64-1.txz: Upgraded.
kde/kbruch-22.08.3-x86_64-1.txz: Upgraded.
kde/kcachegrind-22.08.3-x86_64-1.txz: Upgraded.
kde/kcalc-22.08.3-x86_64-1.txz: Upgraded.
kde/kcalutils-22.08.3-x86_64-1.txz: Upgraded.
kde/kcharselect-22.08.3-x86_64-1.txz: Upgraded.
kde/kcolorchooser-22.08.3-x86_64-1.txz: Upgraded.
kde/kcron-22.08.3-x86_64-1.txz: Upgraded.
kde/kde-dev-scripts-22.08.3-x86_64-1.txz: Upgraded.
kde/kde-dev-utils-22.08.3-x86_64-1.txz: Upgraded.
kde/kdebugsettings-22.08.3-x86_64-1.txz: Upgraded.
kde/kdeconnect-kde-22.08.3-x86_64-1.txz: Upgraded.
kde/kdeedu-data-22.08.3-x86_64-1.txz: Upgraded.
kde/kdegraphics-mobipocket-22.08.3-x86_64-1.txz: Upgraded.
kde/kdegraphics-thumbnailers-22.08.3-x86_64-1.txz: Upgraded.
kde/kdenetwork-filesharing-22.08.3-x86_64-1.txz: Upgraded.
kde/kdenlive-22.08.3-x86_64-1.txz: Upgraded.
kde/kdepim-addons-22.08.3-x86_64-1.txz: Upgraded.
kde/kdepim-runtime-22.08.3-x86_64-1.txz: Upgraded.
kde/kdesdk-kio-22.08.3-x86_64-1.txz: Upgraded.
kde/kdesdk-thumbnailers-22.08.3-x86_64-1.txz: Upgraded.
kde/kdev-php-22.08.3-x86_64-1.txz: Upgraded.
kde/kdev-python-22.08.3-x86_64-1.txz: Upgraded.
kde/kdevelop-22.08.3-x86_64-1.txz: Upgraded.
kde/kdf-22.08.3-x86_64-1.txz: Upgraded.
kde/kdialog-22.08.3-x86_64-1.txz: Upgraded.
kde/kdiamond-22.08.3-x86_64-1.txz: Upgraded.
kde/keditbookmarks-22.08.3-x86_64-1.txz: Upgraded.
kde/kfind-22.08.3-x86_64-1.txz: Upgraded.
kde/kfloppy-22.08.3-x86_64-1.txz: Upgraded.
kde/kfourinline-22.08.3-x86_64-1.txz: Upgraded.
kde/kgeography-22.08.3-x86_64-1.txz: Upgraded.
kde/kget-22.08.3-x86_64-1.txz: Upgraded.
kde/kgoldrunner-22.08.3-x86_64-1.txz: Upgraded.
kde/kgpg-22.08.3-x86_64-1.txz: Upgraded.
kde/khangman-22.08.3-x86_64-1.txz: Upgraded.
kde/khelpcenter-22.08.3-x86_64-1.txz: Upgraded.
kde/kidentitymanagement-22.08.3-x86_64-1.txz: Upgraded.
kde/kig-22.08.3-x86_64-1.txz: Upgraded.
kde/kigo-22.08.3-x86_64-1.txz: Upgraded.
kde/killbots-22.08.3-x86_64-1.txz: Upgraded.
kde/kimagemapeditor-22.08.3-x86_64-1.txz: Upgraded.
kde/kimap-22.08.3-x86_64-1.txz: Upgraded.
kde/kio-extras-22.08.3-x86_64-1.txz: Upgraded.
kde/kio-gdrive-22.08.3-x86_64-1.txz: Upgraded.
kde/kio-zeroconf-22.08.3-x86_64-1.txz: Upgraded.
kde/kipi-plugins-22.08.3-x86_64-1.txz: Upgraded.
kde/kirigami-gallery-22.08.3-x86_64-1.txz: Upgraded.
kde/kiriki-22.08.3-x86_64-1.txz: Upgraded.
kde/kiten-22.08.3-x86_64-1.txz: Upgraded.
kde/kitinerary-22.08.3-x86_64-1.txz: Upgraded.
kde/kjumpingcube-22.08.3-x86_64-1.txz: Upgraded.
kde/kldap-22.08.3-x86_64-1.txz: Upgraded.
kde/kleopatra-22.08.3-x86_64-1.txz: Upgraded.
kde/klickety-22.08.3-x86_64-1.txz: Upgraded.
kde/klines-22.08.3-x86_64-1.txz: Upgraded.
kde/kmag-22.08.3-x86_64-1.txz: Upgraded.
kde/kmahjongg-22.08.3-x86_64-1.txz: Upgraded.
kde/kmail-22.08.3-x86_64-1.txz: Upgraded.
kde/kmail-account-wizard-22.08.3-x86_64-1.txz: Upgraded.
kde/kmailtransport-22.08.3-x86_64-1.txz: Upgraded.
kde/kmbox-22.08.3-x86_64-1.txz: Upgraded.
kde/kmime-22.08.3-x86_64-1.txz: Upgraded.
kde/kmines-22.08.3-x86_64-1.txz: Upgraded.
kde/kmix-22.08.3-x86_64-1.txz: Upgraded.
kde/kmousetool-22.08.3-x86_64-1.txz: Upgraded.
kde/kmouth-22.08.3-x86_64-1.txz: Upgraded.
kde/kmplot-22.08.3-x86_64-1.txz: Upgraded.
kde/knavalbattle-22.08.3-x86_64-1.txz: Upgraded.
kde/knetwalk-22.08.3-x86_64-1.txz: Upgraded.
kde/knights-22.08.3-x86_64-1.txz: Upgraded.
kde/knotes-22.08.3-x86_64-1.txz: Upgraded.
kde/kolf-22.08.3-x86_64-1.txz: Upgraded.
kde/kollision-22.08.3-x86_64-1.txz: Upgraded.
kde/kolourpaint-22.08.3-x86_64-1.txz: Upgraded.
kde/kompare-22.08.3-x86_64-1.txz: Upgraded.
kde/konqueror-22.08.3-x86_64-1.txz: Upgraded.
kde/konquest-22.08.3-x86_64-1.txz: Upgraded.
kde/konsole-22.08.3-x86_64-1.txz: Upgraded.
kde/kontact-22.08.3-x86_64-1.txz: Upgraded.
kde/kontactinterface-22.08.3-x86_64-1.txz: Upgraded.
kde/kontrast-22.08.3-x86_64-1.txz: Upgraded.
kde/konversation-22.08.3-x86_64-1.txz: Upgraded.
kde/kopeninghours-22.08.3-x86_64-1.txz: Upgraded.
kde/kopete-22.08.3-x86_64-1.txz: Upgraded.
kde/korganizer-22.08.3-x86_64-1.txz: Upgraded.
kde/kosmindoormap-22.08.3-x86_64-1.txz: Upgraded.
kde/kpat-22.08.3-x86_64-1.txz: Upgraded.
kde/kpimtextedit-22.08.3-x86_64-1.txz: Upgraded.
kde/kpkpass-22.08.3-x86_64-1.txz: Upgraded.
kde/kpmcore-22.08.3-x86_64-1.txz: Upgraded.
kde/kpublictransport-22.08.3-x86_64-1.txz: Upgraded.
kde/kqtquickcharts-22.08.3-x86_64-1.txz: Upgraded.
kde/krdc-22.08.3-x86_64-1.txz: Upgraded.
kde/kreversi-22.08.3-x86_64-1.txz: Upgraded.
kde/krfb-22.08.3-x86_64-1.txz: Upgraded.
kde/krita-5.1.2-x86_64-1.txz: Upgraded.
kde/kross-interpreters-22.08.3-x86_64-1.txz: Upgraded.
kde/kruler-22.08.3-x86_64-1.txz: Upgraded.
kde/ksanecore-22.08.3-x86_64-1.txz: Upgraded.
kde/kshisen-22.08.3-x86_64-1.txz: Upgraded.
kde/ksirk-22.08.3-x86_64-1.txz: Upgraded.
kde/ksmtp-22.08.3-x86_64-1.txz: Upgraded.
kde/ksnakeduel-22.08.3-x86_64-1.txz: Upgraded.
kde/kspaceduel-22.08.3-x86_64-1.txz: Upgraded.
kde/ksquares-22.08.3-x86_64-1.txz: Upgraded.
kde/ksudoku-22.08.3-x86_64-1.txz: Upgraded.
kde/ksystemlog-22.08.3-x86_64-1.txz: Upgraded.
kde/kteatime-22.08.3-x86_64-1.txz: Upgraded.
kde/ktimer-22.08.3-x86_64-1.txz: Upgraded.
kde/ktnef-22.08.3-x86_64-1.txz: Upgraded.
kde/ktorrent-22.08.3-x86_64-1.txz: Upgraded.
kde/ktouch-22.08.3-x86_64-1.txz: Upgraded.
kde/kturtle-22.08.3-x86_64-1.txz: Upgraded.
kde/kubrick-22.08.3-x86_64-1.txz: Upgraded.
kde/kwalletmanager-22.08.3-x86_64-1.txz: Upgraded.
kde/kwave-22.08.3-x86_64-1.txz: Upgraded.
kde/kwordquiz-22.08.3-x86_64-1.txz: Upgraded.
kde/libgravatar-22.08.3-x86_64-1.txz: Upgraded.
kde/libkcddb-22.08.3-x86_64-1.txz: Upgraded.
kde/libkcompactdisc-22.08.3-x86_64-1.txz: Upgraded.
kde/libkdcraw-22.08.3-x86_64-1.txz: Upgraded.
kde/libkdegames-22.08.3-x86_64-1.txz: Upgraded.
kde/libkdepim-22.08.3-x86_64-1.txz: Upgraded.
kde/libkeduvocdocument-22.08.3-x86_64-1.txz: Upgraded.
kde/libkexiv2-22.08.3-x86_64-1.txz: Upgraded.
kde/libkgapi-22.08.3-x86_64-1.txz: Upgraded.
kde/libkipi-22.08.3-x86_64-1.txz: Upgraded.
kde/libkleo-22.08.3-x86_64-1.txz: Upgraded.
kde/libkmahjongg-22.08.3-x86_64-1.txz: Upgraded.
kde/libkomparediff2-22.08.3-x86_64-1.txz: Upgraded.
kde/libksane-22.08.3-x86_64-1.txz: Upgraded.
kde/libksieve-22.08.3-x86_64-1.txz: Upgraded.
kde/libktorrent-22.08.3-x86_64-1.txz: Upgraded.
kde/lokalize-22.08.3-x86_64-1.txz: Upgraded.
kde/lskat-22.08.3-x86_64-1.txz: Upgraded.
kde/mailcommon-22.08.3-x86_64-1.txz: Upgraded.
kde/mailimporter-22.08.3-x86_64-1.txz: Upgraded.
kde/marble-22.08.3-x86_64-1.txz: Upgraded.
kde/markdownpart-22.08.3-x86_64-1.txz: Upgraded.
kde/mbox-importer-22.08.3-x86_64-1.txz: Upgraded.
kde/messagelib-22.08.3-x86_64-1.txz: Upgraded.
kde/minuet-22.08.3-x86_64-1.txz: Upgraded.
kde/okular-22.08.3-x86_64-1.txz: Upgraded.
kde/palapeli-22.08.3-x86_64-1.txz: Upgraded.
kde/parley-22.08.3-x86_64-1.txz: Upgraded.
kde/partitionmanager-22.08.3-x86_64-1.txz: Upgraded.
kde/picmi-22.08.3-x86_64-1.txz: Upgraded.
kde/pim-data-exporter-22.08.3-x86_64-1.txz: Upgraded.
kde/pim-sieve-editor-22.08.3-x86_64-1.txz: Upgraded.
kde/pimcommon-22.08.3-x86_64-1.txz: Upgraded.
kde/poxml-22.08.3-x86_64-1.txz: Upgraded.
kde/print-manager-22.08.3-x86_64-1.txz: Upgraded.
kde/rocs-22.08.3-x86_64-1.txz: Upgraded.
kde/skanlite-22.08.3-x86_64-1.txz: Upgraded.
kde/skanpage-22.08.3-x86_64-1.txz: Upgraded.
kde/spectacle-22.08.3-x86_64-1.txz: Upgraded.
kde/step-22.08.3-x86_64-1.txz: Upgraded.
kde/svgpart-22.08.3-x86_64-1.txz: Upgraded.
kde/sweeper-22.08.3-x86_64-1.txz: Upgraded.
kde/umbrello-22.08.3-x86_64-1.txz: Upgraded.
kde/yakuake-22.08.3-x86_64-1.txz: Upgraded.
kde/zanshin-22.08.3-x86_64-1.txz: Upgraded.
l/elfutils-0.188-x86_64-1.txz: Upgraded.
l/mlt-7.10.0-x86_64-1.txz: Upgraded.
l/mozilla-nss-3.84-x86_64-2.txz: Rebuilt.
Fixed a segmentation fault when the server requests a client auth cert but
the client has no certs in its database.
Thanks to marav for the heads-up.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-3479
(* Security fix *)
l/poppler-22.11.0-x86_64-1.txz: Upgraded.
n/dehydrated-0.7.1-noarch-1.txz: Upgraded.
n/ulogd-2.0.8-x86_64-1.txz: Upgraded.
x/libdrm-2.4.114-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-106.0.4-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/firefox/106.0.4/releasenotes/
20221104022451 | Patrick J Volkerding | 2022-11-04 | 10 | -12/+35 |
* | Wed Nov 2 20:01:17 UTC 2022...a/hwdata-0.364-noarch-1.txz: Upgraded.
ap/inxi-3.3.23_1-noarch-1.txz: Upgraded.
ap/mpg123-1.31.1-x86_64-1.txz: Upgraded.
d/cmake-3.24.3-x86_64-1.txz: Upgraded.
l/SDL2-2.24.2-x86_64-1.txz: Upgraded.
l/liburing-2.3-x86_64-1.txz: Upgraded.
l/speech-dispatcher-0.11.4-x86_64-1.txz: Upgraded.
n/irssi-1.4.3-x86_64-1.txz: Upgraded.
n/stunnel-5.67-x86_64-1.txz: Upgraded.
x/ibus-table-1.16.13-x86_64-1.txz: Upgraded.
x/pixman-0.42.2-x86_64-1.txz: Upgraded.
x/xorg-server-xwayland-22.1.5-x86_64-1.txz: Upgraded.
20221102200117 | Patrick J Volkerding | 2022-11-03 | 5 | -53/+108 |
* | Mon Oct 31 23:31:36 UTC 2022...a/ntfs-3g-2022.10.3-x86_64-1.txz: Upgraded.
ap/mpg123-1.31.0-x86_64-1.txz: Upgraded.
ap/vim-9.0.0814-x86_64-1.txz: Upgraded.
A vulnerability was found in vim and classified as problematic. Affected by
this issue is the function qf_update_buffer of the file quickfix.c of the
component autocmd Handler. The manipulation leads to use after free. The
attack may be launched remotely. Upgrading to version 9.0.0805 is able to
address this issue.
Thanks to marav for the heads-up.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-3705
(* Security fix *)
d/ccache-4.7.2-x86_64-1.txz: Upgraded.
d/make-4.4-x86_64-1.txz: Upgraded.
d/patchelf-0.16.1-x86_64-1.txz: Upgraded.
d/strace-6.0-x86_64-1.txz: Upgraded.
kde/kwin-5.26.2.1-x86_64-2.txz: Rebuilt.
[PATCH] x11window: revert more from 3a28c02f.
Thanks to Heinz Wiesinger.
[PATCH] x11: Don't force QT_NO_GLIB=1.
[PATCH] x11: Don't force QT_QPA_PLATFORM=xcb.
Thanks to marav.
l/libedit-20221030_3.1-x86_64-1.txz: Upgraded.
l/python-importlib_metadata-5.0.0-x86_64-1.txz: Upgraded.
l/taglib-1.13-x86_64-1.txz: Upgraded.
l/utf8proc-2.8.0-x86_64-1.txz: Upgraded.
n/openvpn-2.5.8-x86_64-1.txz: Upgraded.
n/socat-1.7.4.4-x86_64-1.txz: Upgraded.
x/libXext-1.3.5-x86_64-1.txz: Upgraded.
x/libXinerama-1.1.5-x86_64-1.txz: Upgraded.
x/makedepend-1.0.7-x86_64-1.txz: Upgraded.
x/rgb-1.1.0-x86_64-1.txz: Upgraded.
x/sessreg-1.1.3-x86_64-1.txz: Upgraded.
x/x11perf-1.6.2-x86_64-1.txz: Upgraded.
x/xsetroot-1.1.3-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-106.0.3-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/firefox/106.0.3/releasenotes/
xap/mozilla-thunderbird-102.4.1-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/102.4.1/releasenotes/
xap/vim-gvim-9.0.0814-x86_64-1.txz: Upgraded.
extra/php80/php80-8.0.25-x86_64-1.txz: Upgraded.
This update fixes security issues:
GD: OOB read due to insufficient input validation in imageloadfont().
Hash: buffer overflow in hash_update() on long parameter.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-31630
https://www.cve.org/CVERecord?id=CVE-2022-37454
(* Security fix *)
extra/php81/php81-8.1.12-x86_64-1.txz: Upgraded.
This update fixes security issues:
GD: OOB read due to insufficient input validation in imageloadfont().
Hash: buffer overflow in hash_update() on long parameter.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2022-31630
https://www.cve.org/CVERecord?id=CVE-2022-37454
(* Security fix *)
20221031233136 | Patrick J Volkerding | 2022-11-01 | 16 | -68/+109 |
* | Thu Oct 27 02:30:15 UTC 2022...a/aaa_libraries-15.1-x86_64-12.txz: Rebuilt.
Upgraded: libexpat.so.1.8.10, libffi.so.8.1.2.
Added (temporarily): libicudata.so.71.1, libicui18n.so.71.1,
libicuio.so.71.1, libicutest.so.71.1, libicutu.so.71.1, libicuuc.so.71.1.
a/xfsprogs-5.13.0-x86_64-4.txz: Rebuilt.
Recompiled against icu4c-72.1.
ap/sqlite-3.39.4-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-72.1.
kde/bluedevil-5.26.2-x86_64-1.txz: Upgraded.
kde/breeze-5.26.2-x86_64-1.txz: Upgraded.
kde/breeze-grub-5.26.2-x86_64-1.txz: Upgraded.
kde/breeze-gtk-5.26.2-x86_64-1.txz: Upgraded.
kde/drkonqi-5.26.2-x86_64-1.txz: Upgraded.
kde/kactivitymanagerd-5.26.2-x86_64-1.txz: Upgraded.
kde/kde-cli-tools-5.26.2-x86_64-1.txz: Upgraded.
kde/kde-gtk-config-5.26.2-x86_64-1.txz: Upgraded.
kde/kdecoration-5.26.2-x86_64-1.txz: Upgraded.
kde/kdeplasma-addons-5.26.2-x86_64-1.txz: Upgraded.
Compiled against icu4c-72.1.
kde/kgamma5-5.26.2-x86_64-1.txz: Upgraded.
kde/khotkeys-5.26.2-x86_64-1.txz: Upgraded.
kde/kinfocenter-5.26.2-x86_64-1.txz: Upgraded.
kde/kmenuedit-5.26.2-x86_64-1.txz: Upgraded.
kde/kpipewire-5.26.2-x86_64-1.txz: Upgraded.
kde/kscreen-5.26.2-x86_64-1.txz: Upgraded.
kde/kscreenlocker-5.26.2-x86_64-1.txz: Upgraded.
kde/ksshaskpass-5.26.2-x86_64-1.txz: Upgraded.
kde/ksystemstats-5.26.2-x86_64-1.txz: Upgraded.
kde/kwallet-pam-5.26.2-x86_64-1.txz: Upgraded.
kde/kwayland-integration-5.26.2-x86_64-1.txz: Upgraded.
kde/kwin-5.26.2.1-x86_64-1.txz: Upgraded.
kde/kwrited-5.26.2-x86_64-1.txz: Upgraded.
kde/layer-shell-qt-5.26.2-x86_64-1.txz: Upgraded.
kde/libkscreen-5.26.2-x86_64-1.txz: Upgraded.
kde/libksysguard-5.26.2-x86_64-1.txz: Upgraded.
kde/milou-5.26.2-x86_64-1.txz: Upgraded.
kde/oxygen-5.26.2-x86_64-1.txz: Upgraded.
kde/oxygen-sounds-5.26.2-x86_64-1.txz: Upgraded.
kde/plasma-browser-integration-5.26.2-x86_64-1.txz: Upgraded.
kde/plasma-desktop-5.26.2-x86_64-1.txz: Upgraded.
kde/plasma-disks-5.26.2-x86_64-1.txz: Upgraded.
kde/plasma-firewall-5.26.2-x86_64-1.txz: Upgraded.
kde/plasma-integration-5.26.2-x86_64-1.txz: Upgraded.
kde/plasma-nm-5.26.2-x86_64-1.txz: Upgraded.
kde/plasma-pa-5.26.2-x86_64-1.txz: Upgraded.
kde/plasma-sdk-5.26.2-x86_64-1.txz: Upgraded.
kde/plasma-systemmonitor-5.26.2-x86_64-1.txz: Upgraded.
kde/plasma-vault-5.26.2-x86_64-1.txz: Upgraded.
kde/plasma-workspace-5.26.2-x86_64-1.txz: Upgraded.
Compiled against icu4c-72.1.
kde/plasma-workspace-wallpapers-5.26.2-x86_64-1.txz: Upgraded.
kde/polkit-kde-agent-1-5.26.2-x86_64-1.txz: Upgraded.
kde/powerdevil-5.26.2-x86_64-1.txz: Upgraded.
kde/qqc2-breeze-style-5.26.2-x86_64-1.txz: Upgraded.
kde/sddm-kcm-5.26.2-x86_64-1.txz: Upgraded.
kde/systemsettings-5.26.2-x86_64-1.txz: Upgraded.
kde/xdg-desktop-portal-kde-5.26.2-x86_64-1.txz: Upgraded.
l/boost-1.80.0-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-72.1.
l/harfbuzz-5.3.1-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-72.1.
l/icu4c-72.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/libical-3.0.16-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-72.1.
l/libqalculate-4.4.0-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-72.1.
l/libvisio-0.1.7-x86_64-10.txz: Rebuilt.
Recompiled against icu4c-72.1.
l/nodejs-19.0.0-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-72.1.
l/qt5-5.15.6_20221026_0402bce0-x86_64-1.txz: Upgraded.
Compiled against icu4c-72.1.
l/qt5-webkit-5.212.0_alpha4-x86_64-10.txz: Rebuilt.
Recompiled against icu4c-72.1.
l/vte-0.68.0-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-72.1.
n/curl-7.86.0-x86_64-1.txz: Upgraded.
This update fixes security issues:
HSTS bypass via IDN.
HTTP proxy double-free.
.netrc parser out-of-bounds access.
POST following PUT confusion.
For more information, see:
https://curl.se/docs/CVE-2022-42916.html
https://curl.se/docs/CVE-2022-42915.html
https://curl.se/docs/CVE-2022-35260.html
https://curl.se/docs/CVE-2022-32221.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42916
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42915
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35260
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32221
(* Security fix *)
n/dovecot-2.3.19.1-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-72.1.
n/php-7.4.32-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-72.1.
n/postfix-3.7.3-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-72.1.
n/samba-4.17.2-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-72.1.
n/tin-2.6.1-x86_64-4.txz: Rebuilt.
Recompiled against icu4c-72.1.
t/texlive-2022.220801-x86_64-3.txz: Rebuilt.
Recompiled against icu4c-72.1.
x/xorg-server-xwayland-22.1.4-x86_64-2.txz: Rebuilt.
[PATCH] xwayland/input: Do not ignore leave events.
Thanks to marav.
xap/mozilla-firefox-106.0.2-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/firefox/106.0.2/releasenotes/
extra/brltty/brltty-6.5-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-72.1.
extra/php80/php80-8.0.24-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-72.1.
extra/php81/php81-8.1.11-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-72.1.
extra/sendmail/sendmail-8.17.1-x86_64-6.txz: Rebuilt.
Recompiled against icu4c-72.1.
extra/sendmail/sendmail-cf-8.17.1-noarch-6.txz: Rebuilt.
20221027023015 | Patrick J Volkerding | 2022-10-27 | 21 | -27/+87 |
* | Tue Oct 25 18:38:58 UTC 2022...ap/alsa-utils-1.2.8-x86_64-1.txz: Upgraded.
l/alsa-lib-1.2.8-x86_64-1.txz: Upgraded.
l/expat-2.5.0-x86_64-1.txz: Upgraded.
This update fixes a security issue:
Fix heap use-after-free after overeager destruction of a shared DTD in
function XML_ExternalEntityParserCreate in out-of-memory situations.
Expected impact is denial of service or potentially arbitrary code
execution.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-43680
(* Security fix *)
n/samba-4.17.2-x86_64-1.txz: Upgraded.
This update fixes the following security issues:
There is a limited write heap buffer overflow in the GSSAPI unwrap_des()
and unwrap_des3() routines of Heimdal (included in Samba).
A malicious client can use a symlink to escape the exported directory.
For more information, see:
https://www.samba.org/samba/security/CVE-2022-3437.html
https://www.samba.org/samba/security/CVE-2022-3592.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3437
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3592
(* Security fix *)
20221025183858 | Patrick J Volkerding | 2022-10-26 | 2 | -4/+4 |
* | Mon Oct 24 18:57:53 UTC 2022...a/kernel-firmware-20221017_48407ff-noarch-1.txz: Upgraded.
a/kernel-generic-5.19.17-x86_64-1.txz: Upgraded.
a/kernel-huge-5.19.17-x86_64-1.txz: Upgraded.
a/kernel-modules-5.19.17-x86_64-1.txz: Upgraded.
ap/sudo-1.9.12-x86_64-1.txz: Upgraded.
d/ccache-4.7.1-x86_64-1.txz: Upgraded.
d/kernel-headers-5.19.17-x86-1.txz: Upgraded.
k/kernel-source-5.19.17-noarch-1.txz: Upgraded.
l/libffi-3.4.4-x86_64-1.txz: Upgraded.
l/libidn2-2.3.4-x86_64-1.txz: Upgraded.
x/xterm-375-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20221024185753 | Patrick J Volkerding | 2022-10-25 | 8 | -8/+22 |
* | Sat Oct 22 18:40:34 UTC 2022...d/parallel-20221022-noarch-1.txz: Upgraded.
l/gc-8.2.2-x86_64-1.txz: Upgraded.
x/libXrender-0.9.11-x86_64-1.txz: Upgraded.
x/xfsinfo-1.0.7-x86_64-1.txz: Upgraded.
20221022184034 | Patrick J Volkerding | 2022-10-23 | 5 | -8/+8 |
* | Fri Oct 21 18:19:00 UTC 2022...a/tree-2.0.4-x86_64-1.txz: Upgraded.
l/freecell-solver-6.8.0-x86_64-1.txz: Upgraded.
l/speech-dispatcher-0.11.3-x86_64-1.txz: Upgraded.
n/rsync-3.2.7-x86_64-1.txz: Upgraded.
This is a bugfix release.
Notably, this addresses some regressions caused by the file-list validation
fix in rsync-3.2.5.
Thanks to llgar.
20221021181900 | Patrick J Volkerding | 2022-10-22 | 1 | -1/+1 |
* | Thu Oct 20 18:39:03 UTC 2022...l/harfbuzz-5.3.1-x86_64-1.txz: Upgraded.
l/qca-2.3.5-x86_64-1.txz: Upgraded.
x/mesa-22.2.2-x86_64-1.txz: Upgraded.
x/xorg-server-xwayland-22.1.4-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-106.0.1-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/firefox/106.0.1/releasenotes/
xap/mozilla-thunderbird-102.4.0-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/102.4.0/releasenotes/
20221020183903 | Patrick J Volkerding | 2022-10-21 | 3 | -99/+8 |
* | Wed Oct 19 20:06:33 UTC 2022...a/aaa_libraries-15.1-x86_64-11.txz: Rebuilt.
Upgraded: libcap.so.2.66, liblzma.so.5.2.7, libpopt.so.0.0.2,
libexpat.so.1.8.9, libglib-2.0.so.0.7200.4, libgmodule-2.0.so.0.7200.4,
libgobject-2.0.so.0.7200.4, libgthread-2.0.so.0.7200.4, libhistory.so.8.2,
libreadline.so.8.2.
Added: libunistring.so.2.1.0, libunistring.so.5.0.0.
Removed: libffi.so.7.1.0.
a/gettext-0.21.1-x86_64-2.txz: Rebuilt.
ap/lsof-4.96.4-x86_64-1.txz: Upgraded.
ap/man-pages-6.01-noarch-1.txz: Upgraded.
d/clisp-2.50_20220927_acb1266ee-x86_64-1.txz: Upgraded.
Compiled against libunistring-1.1.
d/gettext-tools-0.21.1-x86_64-2.txz: Rebuilt.
Recompiled against libunistring-1.1.
d/guile-3.0.8-x86_64-3.txz: Rebuilt.
Recompiled against libunistring-1.1.
kde/kguiaddons-5.99.0-x86_64-2.txz: Rebuilt.
[PATCH] systemclipboard: Don't signal data source cancellation.
Thanks to marav.
l/libidn2-2.3.3-x86_64-2.txz: Rebuilt.
l/libpsl-0.21.1-x86_64-5.txz: Rebuilt.
Recompiled against libunistring-1.1.
l/libunistring-1.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
n/bind-9.18.8-x86_64-1.txz: Upgraded.
n/gnutls-3.7.8-x86_64-2.txz: Rebuilt.
Recompiled against libunistring-1.1.
n/samba-4.17.1-x86_64-1.txz: Upgraded.
This update fixes the following security issue:
Bad password count not incremented atomically.
For more information, see:
https://bugzilla.samba.org/show_bug.cgi?id=14611
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20251
(* Security fix *)
n/wget-1.21.3-x86_64-2.txz: Rebuilt.
Recompiled against libunistring-1.1.
x/imake-1.0.9-x86_64-1.txz: Upgraded.
x/xcb-util-errors-1.0.1-x86_64-1.txz: Upgraded.
x/xcb-util-image-0.4.1-x86_64-1.txz: Upgraded.
x/xcb-util-keysyms-0.4.1-x86_64-1.txz: Upgraded.
x/xcb-util-renderutil-0.3.10-x86_64-1.txz: Upgraded.
x/xcb-util-wm-0.4.2-x86_64-1.txz: Upgraded.
| Patrick J Volkerding | 2022-10-20 | 23 | -24/+74 |
* | Tue Oct 18 20:29:54 UTC 2022...ap/vim-9.0.0790-x86_64-1.txz: Upgraded.
d/ccache-4.7-x86_64-1.txz: Upgraded.
d/git-2.38.1-x86_64-1.txz: Upgraded.
This release fixes two security issues:
* CVE-2022-39253:
When relying on the `--local` clone optimization, Git dereferences
symbolic links in the source repository before creating hardlinks
(or copies) of the dereferenced link in the destination repository.
This can lead to surprising behavior where arbitrary files are
present in a repository's `$GIT_DIR` when cloning from a malicious
repository.
Git will no longer dereference symbolic links via the `--local`
clone mechanism, and will instead refuse to clone repositories that
have symbolic links present in the `$GIT_DIR/objects` directory.
Additionally, the value of `protocol.file.allow` is changed to be
"user" by default.
* CVE-2022-39260:
An overly-long command string given to `git shell` can result in
overflow in `split_cmdline()`, leading to arbitrary heap writes and
remote code execution when `git shell` is exposed and the directory
`$HOME/git-shell-commands` exists.
`git shell` is taught to refuse interactive commands that are
longer than 4MiB in size. `split_cmdline()` is hardened to reject
inputs larger than 2GiB.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39253
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39260
(* Security fix *)
kde/bluedevil-5.26.1-x86_64-1.txz: Upgraded.
kde/breeze-5.26.1-x86_64-1.txz: Upgraded.
kde/breeze-grub-5.26.1-x86_64-1.txz: Upgraded.
kde/breeze-gtk-5.26.1-x86_64-1.txz: Upgraded.
kde/drkonqi-5.26.1-x86_64-1.txz: Upgraded.
kde/kactivitymanagerd-5.26.1-x86_64-1.txz: Upgraded.
kde/kde-cli-tools-5.26.1-x86_64-1.txz: Upgraded.
kde/kde-gtk-config-5.26.1-x86_64-1.txz: Upgraded.
kde/kdecoration-5.26.1-x86_64-1.txz: Upgraded.
kde/kdeplasma-addons-5.26.1-x86_64-1.txz: Upgraded.
kde/kgamma5-5.26.1-x86_64-1.txz: Upgraded.
kde/khotkeys-5.26.1-x86_64-1.txz: Upgraded.
kde/kinfocenter-5.26.1-x86_64-1.txz: Upgraded.
kde/kmenuedit-5.26.1-x86_64-1.txz: Upgraded.
kde/kpipewire-5.26.1-x86_64-1.txz: Upgraded.
kde/kscreen-5.26.1-x86_64-1.txz: Upgraded.
kde/kscreenlocker-5.26.1-x86_64-1.txz: Upgraded.
kde/ksshaskpass-5.26.1-x86_64-1.txz: Upgraded.
kde/ksystemstats-5.26.1-x86_64-1.txz: Upgraded.
kde/kwallet-pam-5.26.1-x86_64-1.txz: Upgraded.
kde/kwayland-integration-5.26.1-x86_64-1.txz: Upgraded.
kde/kwin-5.26.1-x86_64-1.txz: Upgraded.
kde/kwrited-5.26.1-x86_64-1.txz: Upgraded.
kde/layer-shell-qt-5.26.1-x86_64-1.txz: Upgraded.
kde/libkscreen-5.26.1-x86_64-1.txz: Upgraded.
kde/libksysguard-5.26.1-x86_64-1.txz: Upgraded.
kde/milou-5.26.1-x86_64-1.txz: Upgraded.
kde/oxygen-5.26.1-x86_64-1.txz: Upgraded.
kde/oxygen-sounds-5.26.1-x86_64-1.txz: Upgraded.
kde/plasma-browser-integration-5.26.1-x86_64-1.txz: Upgraded.
kde/plasma-desktop-5.26.1-x86_64-1.txz: Upgraded.
kde/plasma-disks-5.26.1-x86_64-1.txz: Upgraded.
kde/plasma-firewall-5.26.1-x86_64-1.txz: Upgraded.
kde/plasma-integration-5.26.1-x86_64-1.txz: Upgraded.
kde/plasma-nm-5.26.1-x86_64-1.txz: Upgraded.
kde/plasma-pa-5.26.1-x86_64-1.txz: Upgraded.
kde/plasma-sdk-5.26.1-x86_64-1.txz: Upgraded.
kde/plasma-systemmonitor-5.26.1-x86_64-1.txz: Upgraded.
kde/plasma-vault-5.26.1-x86_64-1.txz: Upgraded.
kde/plasma-workspace-5.26.1-x86_64-1.txz: Upgraded.
kde/plasma-workspace-wallpapers-5.26.1-x86_64-1.txz: Upgraded.
kde/polkit-kde-agent-1-5.26.1-x86_64-1.txz: Upgraded.
kde/powerdevil-5.26.1-x86_64-1.txz: Upgraded.
kde/qqc2-breeze-style-5.26.1-x86_64-1.txz: Upgraded.
kde/sddm-kcm-5.26.1-x86_64-1.txz: Upgraded.
kde/systemsettings-5.26.1-x86_64-1.txz: Upgraded.
kde/xdg-desktop-portal-kde-5.26.1-x86_64-1.txz: Upgraded.
l/libical-3.0.16-x86_64-1.txz: Upgraded.
l/nodejs-19.0.0-x86_64-1.txz: Upgraded.
n/NetworkManager-1.40.2-x86_64-1.txz: Upgraded.
n/whois-5.5.14-x86_64-1.txz: Upgraded.
x/libXmu-1.1.4-x86_64-1.txz: Upgraded.
x/libXpresent-1.0.1-x86_64-1.txz: Upgraded.
x/libpciaccess-0.17-x86_64-1.txz: Upgraded.
x/libxkbfile-1.1.1-x86_64-1.txz: Upgraded.
x/libxshmfence-1.3.1-x86_64-1.txz: Upgraded.
x/pixman-0.42.0-x86_64-1.txz: Upgraded.
x/xcb-util-cursor-0.1.4-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-106.0-x86_64-1.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/106.0/releasenotes/
https://www.mozilla.org/security/advisories/mfsa2022-44/
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42927
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42928
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42929
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42930
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42931
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42932
(* Security fix *)
xap/vim-gvim-9.0.0790-x86_64-1.txz: Upgraded.
20221018202954 | Patrick J Volkerding | 2022-10-19 | 7 | -7/+7 |
* | Mon Oct 17 19:31:45 UTC 2022...l/libqalculate-4.4.0-x86_64-1.txz: Upgraded.
l/netpbm-11.00.01-x86_64-1.txz: Upgraded.
x/xorg-server-21.1.4-x86_64-2.txz: Rebuilt.
xkb: proof GetCountedString against request length attacks.
xkb: fix some possible memleaks in XkbGetKbdByName.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3550
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3551
(* Security fix *)
x/xorg-server-xephyr-21.1.4-x86_64-2.txz: Rebuilt.
x/xorg-server-xnest-21.1.4-x86_64-2.txz: Rebuilt.
x/xorg-server-xvfb-21.1.4-x86_64-2.txz: Rebuilt.
x/xorg-server-xwayland-22.1.3-x86_64-2.txz: Rebuilt.
xkb: proof GetCountedString against request length attacks.
xkb: fix some possible memleaks in XkbGetKbdByName.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3550
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3551
(* Security fix *)
xap/blueman-2.3.4-x86_64-1.txz: Upgraded.
20221017193145 | Patrick J Volkerding | 2022-10-18 | 8 | -39/+198 |
* | Mon Oct 17 00:42:43 UTC 2022...a/gettext-0.21.1-x86_64-1.txz: Upgraded.
a/glibc-zoneinfo-2022e-noarch-1.txz: Upgraded.
This package provides the latest timezone updates.
d/gettext-tools-0.21.1-x86_64-1.txz: Upgraded.
l/imagemagick-7.1.0_51-x86_64-1.txz: Upgraded.
20221017004243 | Patrick J Volkerding | 2022-10-17 | 5 | -5/+27 |
* | Sat Oct 15 20:28:34 UTC 2022...a/kernel-firmware-20221013_49fccf6-noarch-1.txz: Upgraded.
a/kernel-generic-5.19.16-x86_64-1.txz: Upgraded.
a/kernel-huge-5.19.16-x86_64-1.txz: Upgraded.
a/kernel-modules-5.19.16-x86_64-1.txz: Upgraded.
ap/man-db-2.11.0-x86_64-1.txz: Upgraded.
ap/man-pages-6.00-noarch-1.txz: Upgraded.
d/kernel-headers-5.19.16-x86-1.txz: Upgraded.
k/kernel-source-5.19.16-noarch-1.txz: Upgraded.
l/libedit-20221009_3.1-x86_64-1.txz: Upgraded.
l/mozilla-nss-3.84-x86_64-1.txz: Upgraded.
l/nodejs-18.11.0-x86_64-1.txz: Upgraded.
l/zlib-1.2.13-x86_64-1.txz: Upgraded.
Fixed a bug when getting a gzip header extra field with inflateGetHeader().
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37434
(* Security fix *)
n/fetchmail-6.4.34-x86_64-1.txz: Upgraded.
n/gnupg2-2.2.40-x86_64-1.txz: Upgraded.
x/bdftopcf-1.1.1-x86_64-1.txz: Upgraded.
x/libwacom-2.5.0-x86_64-1.txz: Upgraded.
x/smproxy-1.0.7-x86_64-1.txz: Upgraded.
x/viewres-1.0.7-x86_64-1.txz: Upgraded.
x/xditview-1.0.6-x86_64-1.txz: Upgraded.
x/xf86-input-vmmouse-13.2.0-x86_64-1.txz: Added.
x/xgc-1.0.6-x86_64-1.txz: Upgraded.
x/xkbprint-1.0.6-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20221015202834 | Patrick J Volkerding | 2022-10-16 | 22 | -93/+91 |
* | Fri Oct 14 01:39:37 UTC 2022...a/btrfs-progs-6.0-x86_64-1.txz: Upgraded.
d/python3-3.9.15-x86_64-1.txz: Upgraded.
This update fixes security issues:
Bundled libexpat was upgraded from 2.4.7 to 2.4.9 which fixes a heap
use-after-free vulnerability in function doContent.
gh-97616: a fix for a possible buffer overflow in list *= int.
gh-97612: a fix for possible shell injection in the example script
get-remote-certificate.py.
gh-96577: a fix for a potential buffer overrun in msilib.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40674
(* Security fix *)
kde/akonadi-22.08.2-x86_64-1.txz: Upgraded.
kde/akonadi-calendar-22.08.2-x86_64-1.txz: Upgraded.
kde/akonadi-calendar-tools-22.08.2-x86_64-1.txz: Upgraded.
kde/akonadi-contacts-22.08.2-x86_64-1.txz: Upgraded.
kde/akonadi-import-wizard-22.08.2-x86_64-1.txz: Upgraded.
kde/akonadi-mime-22.08.2-x86_64-1.txz: Upgraded.
kde/akonadi-notes-22.08.2-x86_64-1.txz: Upgraded.
kde/akonadi-search-22.08.2-x86_64-1.txz: Upgraded.
kde/akonadiconsole-22.08.2-x86_64-1.txz: Upgraded.
kde/akregator-22.08.2-x86_64-1.txz: Upgraded.
kde/analitza-22.08.2-x86_64-1.txz: Upgraded.
kde/ark-22.08.2-x86_64-1.txz: Upgraded.
kde/artikulate-22.08.2-x86_64-1.txz: Upgraded.
kde/audiocd-kio-22.08.2-x86_64-1.txz: Upgraded.
kde/baloo-widgets-22.08.2-x86_64-1.txz: Upgraded.
kde/blinken-22.08.2-x86_64-1.txz: Upgraded.
kde/bluedevil-5.26.0-x86_64-1.txz: Upgraded.
kde/bomber-22.08.2-x86_64-1.txz: Upgraded.
kde/bovo-22.08.2-x86_64-1.txz: Upgraded.
kde/breeze-5.26.0-x86_64-1.txz: Upgraded.
kde/breeze-grub-5.26.0-x86_64-1.txz: Upgraded.
kde/breeze-gtk-5.26.0-x86_64-1.txz: Upgraded.
kde/calendarsupport-22.08.2-x86_64-1.txz: Upgraded.
kde/cantor-22.08.2-x86_64-1.txz: Upgraded.
kde/cervisia-22.08.2-x86_64-1.txz: Upgraded.
kde/dolphin-22.08.2-x86_64-1.txz: Upgraded.
kde/dolphin-plugins-22.08.2-x86_64-1.txz: Upgraded.
kde/dragon-22.08.2-x86_64-1.txz: Upgraded.
kde/drkonqi-5.26.0-x86_64-1.txz: Upgraded.
Thanks to ctrlaltca for the patch that allows us to avoid kuserfeedback (at
least for now).
kde/elisa-22.08.2-x86_64-1.txz: Upgraded.
kde/eventviews-22.08.2-x86_64-1.txz: Upgraded.
kde/falkon-22.08.2-x86_64-1.txz: Upgraded.
kde/ffmpegthumbs-22.08.2-x86_64-1.txz: Upgraded.
kde/filelight-22.08.2-x86_64-1.txz: Upgraded.
kde/granatier-22.08.2-x86_64-1.txz: Upgraded.
kde/grantlee-editor-22.08.2-x86_64-1.txz: Upgraded.
kde/grantleetheme-22.08.2-x86_64-1.txz: Upgraded.
kde/gwenview-22.08.2-x86_64-1.txz: Upgraded.
kde/incidenceeditor-22.08.2-x86_64-1.txz: Upgraded.
kde/itinerary-22.08.2-x86_64-1.txz: Upgraded.
kde/juk-22.08.2-x86_64-1.txz: Upgraded.
kde/k3b-22.08.2-x86_64-1.txz: Upgraded.
kde/kactivitymanagerd-5.26.0-x86_64-1.txz: Upgraded.
kde/kaddressbook-22.08.2-x86_64-1.txz: Upgraded.
kde/kalarm-22.08.2-x86_64-1.txz: Upgraded.
kde/kalendar-22.08.2-x86_64-1.txz: Upgraded.
kde/kalgebra-22.08.2-x86_64-1.txz: Upgraded.
kde/kalzium-22.08.2-x86_64-1.txz: Upgraded.
kde/kamera-22.08.2-x86_64-1.txz: Upgraded.
kde/kamoso-22.08.2-x86_64-1.txz: Upgraded.
kde/kanagram-22.08.2-x86_64-1.txz: Upgraded.
kde/kapman-22.08.2-x86_64-1.txz: Upgraded.
kde/kapptemplate-22.08.2-x86_64-1.txz: Upgraded.
kde/kate-22.08.2-x86_64-1.txz: Upgraded.
kde/katomic-22.08.2-x86_64-1.txz: Upgraded.
kde/kbackup-22.08.2-x86_64-1.txz: Upgraded.
kde/kblackbox-22.08.2-x86_64-1.txz: Upgraded.
kde/kblocks-22.08.2-x86_64-1.txz: Upgraded.
kde/kbounce-22.08.2-x86_64-1.txz: Upgraded.
kde/kbreakout-22.08.2-x86_64-1.txz: Upgraded.
kde/kbruch-22.08.2-x86_64-1.txz: Upgraded.
kde/kcachegrind-22.08.2-x86_64-1.txz: Upgraded.
kde/kcalc-22.08.2-x86_64-1.txz: Upgraded.
kde/kcalutils-22.08.2-x86_64-1.txz: Upgraded.
kde/kcharselect-22.08.2-x86_64-1.txz: Upgraded.
kde/kcolorchooser-22.08.2-x86_64-1.txz: Upgraded.
kde/kcron-22.08.2-x86_64-1.txz: Upgraded.
kde/kde-cli-tools-5.26.0-x86_64-1.txz: Upgraded.
kde/kde-dev-scripts-22.08.2-x86_64-1.txz: Upgraded.
kde/kde-dev-utils-22.08.2-x86_64-1.txz: Upgraded.
kde/kde-gtk-config-5.26.0-x86_64-1.txz: Upgraded.
kde/kdebugsettings-22.08.2-x86_64-1.txz: Upgraded.
kde/kdeconnect-kde-22.08.2-x86_64-1.txz: Upgraded.
kde/kdecoration-5.26.0-x86_64-1.txz: Upgraded.
kde/kdeedu-data-22.08.2-x86_64-1.txz: Upgraded.
kde/kdegraphics-mobipocket-22.08.2-x86_64-1.txz: Upgraded.
kde/kdegraphics-thumbnailers-22.08.2-x86_64-1.txz: Upgraded.
kde/kdenetwork-filesharing-22.08.2-x86_64-1.txz: Upgraded.
kde/kdenlive-22.08.2-x86_64-1.txz: Upgraded.
kde/kdepim-addons-22.08.2-x86_64-1.txz: Upgraded.
kde/kdepim-runtime-22.08.2-x86_64-1.txz: Upgraded.
kde/kdeplasma-addons-5.26.0-x86_64-1.txz: Upgraded.
kde/kdesdk-kio-22.08.2-x86_64-1.txz: Upgraded.
kde/kdesdk-thumbnailers-22.08.2-x86_64-1.txz: Upgraded.
kde/kdev-php-22.08.2-x86_64-1.txz: Upgraded.
kde/kdev-python-22.08.2-x86_64-1.txz: Upgraded.
kde/kdevelop-22.08.2-x86_64-1.txz: Upgraded.
kde/kdf-22.08.2-x86_64-1.txz: Upgraded.
kde/kdialog-22.08.2-x86_64-1.txz: Upgraded.
kde/kdiamond-22.08.2-x86_64-1.txz: Upgraded.
kde/keditbookmarks-22.08.2-x86_64-1.txz: Upgraded.
kde/kfind-22.08.2-x86_64-1.txz: Upgraded.
kde/kfloppy-22.08.2-x86_64-1.txz: Upgraded.
kde/kfourinline-22.08.2-x86_64-1.txz: Upgraded.
kde/kgamma5-5.26.0-x86_64-1.txz: Upgraded.
kde/kgeography-22.08.2-x86_64-1.txz: Upgraded.
kde/kget-22.08.2-x86_64-1.txz: Upgraded.
kde/kgoldrunner-22.08.2-x86_64-1.txz: Upgraded.
kde/kgpg-22.08.2-x86_64-1.txz: Upgraded.
kde/khangman-22.08.2-x86_64-1.txz: Upgraded.
kde/khelpcenter-22.08.2-x86_64-1.txz: Upgraded.
kde/khotkeys-5.26.0-x86_64-1.txz: Upgraded.
kde/kidentitymanagement-22.08.2-x86_64-1.txz: Upgraded.
kde/kig-22.08.2-x86_64-1.txz: Upgraded.
kde/kigo-22.08.2-x86_64-1.txz: Upgraded.
kde/killbots-22.08.2-x86_64-1.txz: Upgraded.
kde/kimagemapeditor-22.08.2-x86_64-1.txz: Upgraded.
kde/kimap-22.08.2-x86_64-1.txz: Upgraded.
kde/kinfocenter-5.26.0-x86_64-1.txz: Upgraded.
kde/kio-extras-22.08.2-x86_64-1.txz: Upgraded.
kde/kio-gdrive-22.08.2-x86_64-1.txz: Upgraded.
kde/kio-zeroconf-22.08.2-x86_64-1.txz: Upgraded.
kde/kipi-plugins-22.08.2-x86_64-1.txz: Upgraded.
kde/kirigami-gallery-22.08.2-x86_64-1.txz: Upgraded.
kde/kiriki-22.08.2-x86_64-1.txz: Upgraded.
kde/kiten-22.08.2-x86_64-1.txz: Upgraded.
kde/kitinerary-22.08.2-x86_64-1.txz: Upgraded.
kde/kjumpingcube-22.08.2-x86_64-1.txz: Upgraded.
kde/kldap-22.08.2-x86_64-1.txz: Upgraded.
kde/kleopatra-22.08.2-x86_64-1.txz: Upgraded.
kde/klickety-22.08.2-x86_64-1.txz: Upgraded.
kde/klines-22.08.2-x86_64-1.txz: Upgraded.
kde/kmag-22.08.2-x86_64-1.txz: Upgraded.
kde/kmahjongg-22.08.2-x86_64-1.txz: Upgraded.
kde/kmail-22.08.2-x86_64-1.txz: Upgraded.
kde/kmail-account-wizard-22.08.2-x86_64-1.txz: Upgraded.
kde/kmailtransport-22.08.2-x86_64-1.txz: Upgraded.
kde/kmbox-22.08.2-x86_64-1.txz: Upgraded.
kde/kmenuedit-5.26.0-x86_64-1.txz: Upgraded.
kde/kmime-22.08.2-x86_64-1.txz: Upgraded.
kde/kmines-22.08.2-x86_64-1.txz: Upgraded.
kde/kmix-22.08.2-x86_64-1.txz: Upgraded.
kde/kmousetool-22.08.2-x86_64-1.txz: Upgraded.
kde/kmouth-22.08.2-x86_64-1.txz: Upgraded.
kde/kmplot-22.08.2-x86_64-1.txz: Upgraded.
kde/knavalbattle-22.08.2-x86_64-1.txz: Upgraded.
kde/knetwalk-22.08.2-x86_64-1.txz: Upgraded.
kde/knights-22.08.2-x86_64-1.txz: Upgraded.
kde/knotes-22.08.2-x86_64-1.txz: Upgraded.
kde/kolf-22.08.2-x86_64-1.txz: Upgraded.
kde/kollision-22.08.2-x86_64-1.txz: Upgraded.
kde/kolourpaint-22.08.2-x86_64-1.txz: Upgraded.
kde/kompare-22.08.2-x86_64-1.txz: Upgraded.
kde/konqueror-22.08.2-x86_64-1.txz: Upgraded.
kde/konquest-22.08.2-x86_64-1.txz: Upgraded.
kde/konsole-22.08.2-x86_64-1.txz: Upgraded.
kde/kontact-22.08.2-x86_64-1.txz: Upgraded.
kde/kontactinterface-22.08.2-x86_64-1.txz: Upgraded.
kde/kontrast-22.08.2-x86_64-1.txz: Upgraded.
kde/konversation-22.08.2-x86_64-1.txz: Upgraded.
kde/kopeninghours-22.08.2-x86_64-1.txz: Upgraded.
kde/kopete-22.08.2-x86_64-1.txz: Upgraded.
kde/korganizer-22.08.2-x86_64-1.txz: Upgraded.
kde/kosmindoormap-22.08.2-x86_64-1.txz: Upgraded.
kde/kpat-22.08.2-x86_64-1.txz: Upgraded.
kde/kpimtextedit-22.08.2-x86_64-1.txz: Upgraded.
kde/kpipewire-5.26.0-x86_64-1.txz: Added.
kde/kpkpass-22.08.2-x86_64-1.txz: Upgraded.
kde/kpmcore-22.08.2-x86_64-1.txz: Upgraded.
kde/kpublictransport-22.08.2-x86_64-1.txz: Upgraded.
kde/kqtquickcharts-22.08.2-x86_64-1.txz: Upgraded.
kde/krdc-22.08.2-x86_64-1.txz: Upgraded.
kde/kreversi-22.08.2-x86_64-1.txz: Upgraded.
kde/krfb-22.08.2-x86_64-1.txz: Upgraded.
kde/kross-interpreters-22.08.2-x86_64-1.txz: Upgraded.
kde/kruler-22.08.2-x86_64-1.txz: Upgraded.
kde/ksanecore-22.08.2-x86_64-1.txz: Upgraded.
kde/kscreen-5.26.0-x86_64-1.txz: Upgraded.
kde/kscreenlocker-5.26.0-x86_64-1.txz: Upgraded.
kde/kshisen-22.08.2-x86_64-1.txz: Upgraded.
kde/ksirk-22.08.2-x86_64-1.txz: Upgraded.
kde/ksmtp-22.08.2-x86_64-1.txz: Upgraded.
kde/ksnakeduel-22.08.2-x86_64-1.txz: Upgraded.
kde/kspaceduel-22.08.2-x86_64-1.txz: Upgraded.
kde/ksquares-22.08.2-x86_64-1.txz: Upgraded.
kde/ksshaskpass-5.26.0-x86_64-1.txz: Upgraded.
kde/ksudoku-22.08.2-x86_64-1.txz: Upgraded.
kde/ksystemlog-22.08.2-x86_64-1.txz: Upgraded.
kde/ksystemstats-5.26.0-x86_64-1.txz: Upgraded.
kde/kteatime-22.08.2-x86_64-1.txz: Upgraded.
kde/ktimer-22.08.2-x86_64-1.txz: Upgraded.
kde/ktnef-22.08.2-x86_64-1.txz: Upgraded.
kde/ktorrent-22.08.2-x86_64-1.txz: Upgraded.
kde/ktouch-22.08.2-x86_64-1.txz: Upgraded.
kde/kturtle-22.08.2-x86_64-1.txz: Upgraded.
kde/kubrick-22.08.2-x86_64-1.txz: Upgraded.
kde/kwallet-pam-5.26.0-x86_64-1.txz: Upgraded.
kde/kwalletmanager-22.08.2-x86_64-1.txz: Upgraded.
kde/kwave-22.08.2-x86_64-1.txz: Upgraded.
kde/kwayland-integration-5.26.0-x86_64-1.txz: Upgraded.
kde/kwin-5.26.0-x86_64-1.txz: Upgraded.
kde/kwordquiz-22.08.2-x86_64-1.txz: Upgraded.
kde/kwrited-5.26.0-x86_64-1.txz: Upgraded.
kde/layer-shell-qt-5.26.0-x86_64-1.txz: Upgraded.
kde/libgravatar-22.08.2-x86_64-1.txz: Upgraded.
kde/libkcddb-22.08.2-x86_64-1.txz: Upgraded.
kde/libkcompactdisc-22.08.2-x86_64-1.txz: Upgraded.
kde/libkdcraw-22.08.2-x86_64-1.txz: Upgraded.
kde/libkdegames-22.08.2-x86_64-1.txz: Upgraded.
kde/libkdepim-22.08.2-x86_64-1.txz: Upgraded.
kde/libkeduvocdocument-22.08.2-x86_64-1.txz: Upgraded.
kde/libkexiv2-22.08.2-x86_64-1.txz: Upgraded.
kde/libkgapi-22.08.2-x86_64-1.txz: Upgraded.
kde/libkipi-22.08.2-x86_64-1.txz: Upgraded.
kde/libkleo-22.08.2-x86_64-1.txz: Upgraded.
kde/libkmahjongg-22.08.2-x86_64-1.txz: Upgraded.
kde/libkomparediff2-22.08.2-x86_64-1.txz: Upgraded.
kde/libksane-22.08.2-x86_64-1.txz: Upgraded.
kde/libkscreen-5.26.0-x86_64-1.txz: Upgraded.
kde/libksieve-22.08.2-x86_64-1.txz: Upgraded.
kde/libksysguard-5.26.0-x86_64-1.txz: Upgraded.
kde/libktorrent-22.08.2-x86_64-1.txz: Upgraded.
kde/lokalize-22.08.2-x86_64-1.txz: Upgraded.
kde/lskat-22.08.2-x86_64-1.txz: Upgraded.
kde/mailcommon-22.08.2-x86_64-1.txz: Upgraded.
kde/mailimporter-22.08.2-x86_64-1.txz: Upgraded.
kde/marble-22.08.2-x86_64-1.txz: Upgraded.
kde/markdownpart-22.08.2-x86_64-1.txz: Upgraded.
kde/mbox-importer-22.08.2-x86_64-1.txz: Upgraded.
kde/messagelib-22.08.2-x86_64-1.txz: Upgraded.
kde/milou-5.26.0-x86_64-1.txz: Upgraded.
kde/minuet-22.08.2-x86_64-1.txz: Upgraded.
kde/okular-22.08.2-x86_64-1.txz: Upgraded.
kde/oxygen-5.26.0-x86_64-1.txz: Upgraded.
kde/oxygen-sounds-5.26.0-x86_64-1.txz: Upgraded.
kde/palapeli-22.08.2-x86_64-1.txz: Upgraded.
kde/parley-22.08.2-x86_64-1.txz: Upgraded.
kde/partitionmanager-22.08.2-x86_64-1.txz: Upgraded.
kde/picmi-22.08.2-x86_64-1.txz: Upgraded.
kde/pim-data-exporter-22.08.2-x86_64-1.txz: Upgraded.
kde/pim-sieve-editor-22.08.2-x86_64-1.txz: Upgraded.
kde/pimcommon-22.08.2-x86_64-1.txz: Upgraded.
kde/plasma-browser-integration-5.26.0-x86_64-1.txz: Upgraded.
kde/plasma-desktop-5.26.0-x86_64-1.txz: Upgraded.
kde/plasma-disks-5.26.0-x86_64-1.txz: Upgraded.
kde/plasma-firewall-5.26.0-x86_64-1.txz: Upgraded.
kde/plasma-integration-5.26.0-x86_64-1.txz: Upgraded.
kde/plasma-nm-5.26.0-x86_64-1.txz: Upgraded.
kde/plasma-pa-5.26.0-x86_64-1.txz: Upgraded.
kde/plasma-sdk-5.26.0-x86_64-1.txz: Upgraded.
kde/plasma-systemmonitor-5.26.0-x86_64-1.txz: Upgraded.
kde/plasma-vault-5.26.0-x86_64-1.txz: Upgraded.
kde/plasma-workspace-5.26.0-x86_64-1.txz: Upgraded.
kde/plasma-workspace-wallpapers-5.26.0-x86_64-1.txz: Upgraded.
kde/polkit-kde-agent-1-5.26.0-x86_64-1.txz: Upgraded.
kde/powerdevil-5.26.0-x86_64-1.txz: Upgraded.
kde/poxml-22.08.2-x86_64-1.txz: Upgraded.
kde/print-manager-22.08.2-x86_64-1.txz: Upgraded.
kde/qqc2-breeze-style-5.26.0-x86_64-1.txz: Upgraded.
kde/rocs-22.08.2-x86_64-1.txz: Upgraded.
kde/sddm-kcm-5.26.0-x86_64-1.txz: Upgraded.
kde/skanlite-22.08.2-x86_64-1.txz: Upgraded.
kde/skanpage-22.08.2-x86_64-1.txz: Upgraded.
kde/spectacle-22.08.2-x86_64-1.txz: Upgraded.
kde/step-22.08.2-x86_64-1.txz: Upgraded.
kde/svgpart-22.08.2-x86_64-1.txz: Upgraded.
kde/sweeper-22.08.2-x86_64-1.txz: Upgraded.
kde/systemsettings-5.26.0-x86_64-1.txz: Upgraded.
kde/umbrello-22.08.2-x86_64-1.txz: Upgraded.
kde/xdg-desktop-portal-kde-5.26.0-x86_64-1.txz: Upgraded.
kde/yakuake-22.08.2-x86_64-1.txz: Upgraded.
kde/zanshin-22.08.2-x86_64-1.txz: Upgraded.
l/gst-plugins-bad-free-1.20.4-x86_64-1.txz: Upgraded.
l/gst-plugins-base-1.20.4-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.20.4-x86_64-1.txz: Upgraded.
l/gst-plugins-libav-1.20.4-x86_64-1.txz: Upgraded.
l/gstreamer-1.20.4-x86_64-1.txz: Upgraded.
x/mesa-22.2.1-x86_64-1.txz: Upgraded.
x/xterm-374-x86_64-1.txz: Upgraded.
xap/freerdp-2.8.1-x86_64-1.txz: Upgraded.
Fixed possible information leak security issues:
RDP client: Read of uninitialized memory with parallel port redirection.
RDP client might read out of bounds data and display it.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39282
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39283
(* Security fix *)
xap/mozilla-thunderbird-102.3.3-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/102.3.3/releasenotes/
isolinux/initrd.img: Rebuilt.
Moved libpcre2 from /usr/lib(64) to /lib(64). Thanks to Stuart Winter.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Moved libpcre2 from /usr/lib(64) to /lib(64). Thanks to Stuart Winter.
20221014013937 | Patrick J Volkerding | 2022-10-14 | 34 | -204/+357 |
* | Wed Oct 12 19:21:37 UTC 2022...a/kernel-generic-5.19.15-x86_64-1.txz: Upgraded.
a/kernel-huge-5.19.15-x86_64-1.txz: Upgraded.
a/kernel-modules-5.19.15-x86_64-1.txz: Upgraded.
d/kernel-headers-5.19.15-x86-1.txz: Upgraded.
k/kernel-source-5.19.15-noarch-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20221012192137 | Patrick J Volkerding | 2022-10-13 | 6 | -6/+12 |
* | Mon Oct 10 18:45:33 UTC 2022...ap/diffstat-1.65-x86_64-1.txz: Upgraded.
ap/moc-2.6_alpha3-x86_64-1.txz: Upgraded.
Compiled against ffmpeg-5.1.2.
kde/attica-5.99.0-x86_64-1.txz: Upgraded.
kde/baloo-5.99.0-x86_64-1.txz: Upgraded.
kde/bluez-qt-5.99.0-x86_64-1.txz: Upgraded.
kde/breeze-icons-5.99.0-noarch-1.txz: Upgraded.
kde/digikam-7.8.0-x86_64-3.txz: Rebuilt.
Recompiled against ffmpeg-5.1.2.
kde/extra-cmake-modules-5.99.0-x86_64-1.txz: Upgraded.
kde/ffmpegthumbs-22.08.1-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-5.1.2.
kde/frameworkintegration-5.99.0-x86_64-1.txz: Upgraded.
kde/kactivities-5.99.0-x86_64-1.txz: Upgraded.
kde/kactivities-stats-5.99.0-x86_64-1.txz: Upgraded.
kde/kapidox-5.99.0-x86_64-1.txz: Upgraded.
kde/karchive-5.99.0-x86_64-1.txz: Upgraded.
kde/kauth-5.99.0-x86_64-1.txz: Upgraded.
kde/kbookmarks-5.99.0-x86_64-1.txz: Upgraded.
kde/kcalendarcore-5.99.0-x86_64-1.txz: Upgraded.
kde/kcmutils-5.99.0-x86_64-1.txz: Upgraded.
kde/kcodecs-5.99.0-x86_64-1.txz: Upgraded.
kde/kcompletion-5.99.0-x86_64-1.txz: Upgraded.
kde/kconfig-5.99.0-x86_64-1.txz: Upgraded.
kde/kconfigwidgets-5.99.0-x86_64-1.txz: Upgraded.
kde/kcontacts-5.99.0-x86_64-1.txz: Upgraded.
kde/kcoreaddons-5.99.0-x86_64-1.txz: Upgraded.
kde/kcrash-5.99.0-x86_64-1.txz: Upgraded.
kde/kdav-5.99.0-x86_64-1.txz: Upgraded.
kde/kdbusaddons-5.99.0-x86_64-1.txz: Upgraded.
kde/kdeclarative-5.99.0-x86_64-1.txz: Upgraded.
kde/kded-5.99.0-x86_64-1.txz: Upgraded.
kde/kdelibs4support-5.99.0-x86_64-1.txz: Upgraded.
kde/kdesignerplugin-5.99.0-x86_64-1.txz: Upgraded.
kde/kdesu-5.99.0-x86_64-1.txz: Upgraded.
kde/kdewebkit-5.99.0-x86_64-1.txz: Upgraded.
kde/kdnssd-5.99.0-x86_64-1.txz: Upgraded.
kde/kdoctools-5.99.0-x86_64-1.txz: Upgraded.
kde/kemoticons-5.99.0-x86_64-1.txz: Upgraded.
kde/kfilemetadata-5.99.0-x86_64-1.txz: Upgraded.
Compiled against ffmpeg-5.1.2.
kde/kglobalaccel-5.99.0-x86_64-1.txz: Upgraded.
kde/kguiaddons-5.99.0-x86_64-1.txz: Upgraded.
kde/kholidays-5.99.0-x86_64-1.txz: Upgraded.
kde/khtml-5.99.0-x86_64-1.txz: Upgraded.
kde/ki18n-5.99.0-x86_64-1.txz: Upgraded.
kde/kiconthemes-5.99.0-x86_64-1.txz: Upgraded.
kde/kidletime-5.99.0-x86_64-1.txz: Upgraded.
kde/kimageformats-5.99.0-x86_64-1.txz: Upgraded.
kde/kinit-5.99.0-x86_64-1.txz: Upgraded.
kde/kio-5.99.0-x86_64-1.txz: Upgraded.
kde/kirigami2-5.99.0-x86_64-1.txz: Upgraded.
kde/kitemmodels-5.99.0-x86_64-1.txz: Upgraded.
kde/kitemviews-5.99.0-x86_64-1.txz: Upgraded.
kde/kjobwidgets-5.99.0-x86_64-1.txz: Upgraded.
kde/kjs-5.99.0-x86_64-1.txz: Upgraded.
kde/kjsembed-5.99.0-x86_64-1.txz: Upgraded.
kde/kmediaplayer-5.99.0-x86_64-1.txz: Upgraded.
kde/knewstuff-5.99.0-x86_64-1.txz: Upgraded.
kde/knotifications-5.99.0-x86_64-1.txz: Upgraded.
kde/knotifyconfig-5.99.0-x86_64-1.txz: Upgraded.
kde/kpackage-5.99.0-x86_64-1.txz: Upgraded.
kde/kparts-5.99.0-x86_64-1.txz: Upgraded.
kde/kpeople-5.99.0-x86_64-1.txz: Upgraded.
kde/kplotting-5.99.0-x86_64-1.txz: Upgraded.
kde/kpty-5.99.0-x86_64-1.txz: Upgraded.
kde/kquickcharts-5.99.0-x86_64-1.txz: Upgraded.
kde/kross-5.99.0-x86_64-1.txz: Upgraded.
kde/krunner-5.99.0-x86_64-1.txz: Upgraded.
kde/kservice-5.99.0-x86_64-1.txz: Upgraded.
kde/ktexteditor-5.99.0-x86_64-1.txz: Upgraded.
kde/ktextwidgets-5.99.0-x86_64-1.txz: Upgraded.
kde/kunitconversion-5.99.0-x86_64-1.txz: Upgraded.
kde/kwallet-5.99.0-x86_64-1.txz: Upgraded.
kde/kwayland-5.99.0-x86_64-1.txz: Upgraded.
kde/kwidgetsaddons-5.99.0-x86_64-1.txz: Upgraded.
kde/kwindowsystem-5.99.0-x86_64-1.txz: Upgraded.
kde/kxmlgui-5.99.0-x86_64-1.txz: Upgraded.
kde/kxmlrpcclient-5.99.0-x86_64-1.txz: Upgraded.
kde/modemmanager-qt-5.99.0-x86_64-1.txz: Upgraded.
kde/networkmanager-qt-5.99.0-x86_64-1.txz: Upgraded.
kde/oxygen-icons5-5.99.0-noarch-1.txz: Upgraded.
kde/plasma-framework-5.99.0-x86_64-1.txz: Upgraded.
kde/prison-5.99.0-x86_64-1.txz: Upgraded.
kde/purpose-5.99.0-x86_64-1.txz: Upgraded.
kde/qqc2-desktop-style-5.99.0-x86_64-1.txz: Upgraded.
kde/solid-5.99.0-x86_64-1.txz: Upgraded.
kde/sonnet-5.99.0-x86_64-1.txz: Upgraded.
kde/syndication-5.99.0-x86_64-1.txz: Upgraded.
kde/syntax-highlighting-5.99.0-x86_64-1.txz: Upgraded.
kde/threadweaver-5.99.0-x86_64-1.txz: Upgraded.
l/QtAV-20220226_fdc613dc-x86_64-1.txz: Upgraded.
Compiled against ffmpeg-5.1.2.
l/alsa-plugins-1.2.7.1-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-5.1.2.
l/ffmpeg-5.1.2-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
Enabled glslang and vulkan. Thanks to Heinz Wiesinger.
l/gegl-0.4.38-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-5.1.2.
l/gst-plugins-libav-1.20.3-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-5.1.2.
l/harfbuzz-5.3.0-x86_64-1.txz: Upgraded.
l/imagemagick-7.1.0_50-x86_64-1.txz: Upgraded.
l/libvncserver-0.9.13-x86_64-4.txz: Rebuilt.
Disabled ffmpeg support (not compatible with ffmpeg5).
l/mlt-7.8.0-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-5.1.2.
l/opencv-4.6.0-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-5.1.2.
l/pcre2-10.40-x86_64-2.txz: Rebuilt.
Moved shared libraries into /lib${LIBDIRSUFFIX}. Thanks to TommyC7.
l/pipewire-0.3.59-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-5.1.2.
l/qt5-5.15.6_20220928_06b700dd-x86_64-1.txz: Upgraded.
Compiled against ffmpeg-5.1.2.
n/libgpg-error-1.46-x86_64-2.txz: Rebuilt.
Rebuilt with --enable-install-gpg-error-config to fix regression building
gpgme. Thanks to nobodino and ponce.
x/libva-utils-2.16.0-x86_64-1.txz: Upgraded.
x/wayland-protocols-1.27-noarch-1.txz: Upgraded.
xap/MPlayer-20221009-x86_64-1.txz: Upgraded.
Compiled against ffmpeg-5.1.2.
xap/audacious-plugins-4.2-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-5.1.2.
xap/ffmpegthumbnailer-2.2.2-x86_64-4.txz: Rebuilt.
Recompiled against ffmpeg-5.1.2.
xap/freerdp-2.8.0-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-5.1.2.
xap/ssr-0.4.4-x86_64-1.txz: Upgraded.
Compiled against ffmpeg-5.1.2.
xap/xine-lib-1.2.12-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-5.1.2.
20221010184533 | Patrick J Volkerding | 2022-10-11 | 48 | -72/+2349 |
* | Sat Oct 8 19:23:31 UTC 2022...ap/inxi-3.3.22_1-noarch-1.txz: Upgraded.
n/conntrack-tools-1.4.7-x86_64-1.txz: Upgraded.
n/libgpg-error-1.46-x86_64-1.txz: Upgraded.
n/libksba-1.6.2-x86_64-1.txz: Upgraded.
Detect a possible overflow directly in the TLV parser.
This patch detects possible integer overflows immmediately when creating
the TI object.
Reported-by: ZDI-CAN-18927, ZDI-CAN-18928, ZDI-CAN-18929
(* Security fix *)
n/postfix-3.7.3-x86_64-1.txz: Upgraded.
x/freeglut-3.4.0-x86_64-1.txz: Upgraded.
x/fstobdf-1.0.7-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-105.0.3-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/firefox/105.0.3/releasenotes/
20221008192331 | Patrick J Volkerding | 2022-10-09 | 6 | -14/+50 |
* | Fri Oct 7 20:32:18 UTC 2022...a/iniparser-4.1-x86_64-1.txz: Added.
This is needed by ndctl.
a/ndctl-74-x86_64-1.txz: Upgraded.
l/libical-3.0.15-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-102.3.2-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/102.3.2/releasenotes/
20221007203218 | Patrick J Volkerding | 2022-10-08 | 6 | -28/+161 |
* | Thu Oct 6 18:53:43 UTC 2022...a/bash-5.2.002-x86_64-1.txz: Upgraded.
a/dbus-1.14.4-x86_64-1.txz: Upgraded.
a/less-608-x86_64-1.txz: Upgraded.
d/meson-0.63.3-x86_64-1.txz: Upgraded.
l/readline-8.2.001-x86_64-1.txz: Upgraded.
n/iproute2-6.0.0-x86_64-1.txz: Upgraded.
n/openssh-9.1p1-x86_64-1.txz: Upgraded.
x/xkeyboard-config-2.37-noarch-1.txz: Upgraded.
20221006185343 | Patrick J Volkerding | 2022-10-07 | 3 | -0/+134 |
* | Wed Oct 5 18:55:36 UTC 2022...a/kernel-generic-5.19.14-x86_64-1.txz: Upgraded.
a/kernel-huge-5.19.14-x86_64-1.txz: Upgraded.
a/kernel-modules-5.19.14-x86_64-1.txz: Upgraded.
d/kernel-headers-5.19.14-x86-1.txz: Upgraded.
k/kernel-source-5.19.14-noarch-1.txz: Upgraded.
n/dhcp-4.4.3_P1-x86_64-1.txz: Upgraded.
This update fixes two security issues:
Corrected a reference count leak that occurs when the server builds
responses to leasequery packets.
Corrected a memory leak that occurs when unpacking a packet that has an
FQDN option (81) that contains a label with length greater than 63 bytes.
Thanks to VictorV of Cyber Kunlun Lab for reporting these issues.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2928
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2929
(* Security fix *)
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20221005185536 | Patrick J Volkerding | 2022-10-06 | 6 | -6/+6 |
* | Wed Oct 5 04:01:25 UTC 2022...a/hwdata-0.363-noarch-1.txz: Upgraded.
a/kernel-firmware-20220930_fdf1a65-noarch-1.txz: Upgraded.
a/kernel-generic-5.19.13-x86_64-1.txz: Upgraded.
a/kernel-huge-5.19.13-x86_64-1.txz: Upgraded.
a/kernel-modules-5.19.13-x86_64-1.txz: Upgraded.
ap/qpdf-11.1.1-x86_64-1.txz: Upgraded.
d/git-2.38.0-x86_64-1.txz: Upgraded.
d/kernel-headers-5.19.13-x86-1.txz: Upgraded.
d/mercurial-6.2.3-x86_64-1.txz: Upgraded.
k/kernel-source-5.19.13-noarch-1.txz: Upgraded.
kde/calligra-3.2.1-x86_64-23.txz: Rebuilt.
Recompiled against poppler-22.10.0.
kde/cantor-22.08.1-x86_64-2.txz: Rebuilt.
Recompiled against poppler-22.10.0.
kde/kfilemetadata-5.98.0-x86_64-2.txz: Rebuilt.
Recompiled against poppler-22.10.0.
kde/kile-2.9.93-x86_64-21.txz: Rebuilt.
Recompiled against poppler-22.10.0.
kde/kitinerary-22.08.1-x86_64-2.txz: Rebuilt.
Recompiled against poppler-22.10.0.
kde/krita-5.1.1-x86_64-2.txz: Rebuilt.
Recompiled against poppler-22.10.0.
kde/okular-22.08.1-x86_64-2.txz: Rebuilt.
Recompiled against poppler-22.10.0.
l/pango-1.50.11-x86_64-1.txz: Upgraded.
l/poppler-22.10.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
x/libva-2.16.0-x86_64-1.txz: Upgraded.
xap/gnuplot-5.4.5-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-105.0.2-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/firefox/105.0.2/releasenotes/
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20221005040125 | Patrick J Volkerding | 2022-10-05 | 13 | -13/+13 |
* | Sat Oct 1 18:38:27 UTC 2022...a/glibc-zoneinfo-2022d-noarch-1.txz: Upgraded.
This package provides the latest timezone updates.
a/xz-5.2.7-x86_64-1.txz: Upgraded.
l/glib2-2.72.4-x86_64-1.txz: Upgraded.
n/links-2.28-x86_64-1.txz: Upgraded.
20221001183827 | Patrick J Volkerding | 2022-10-02 | 1 | -1/+1 |
* | Fri Sep 30 17:52:21 UTC 2022...a/dbus-1.14.2-x86_64-1.txz: Upgraded.
ap/powertop-2.15-x86_64-1.txz: Upgraded.
ap/sqlite-3.39.4-x86_64-1.txz: Upgraded.
ap/vim-9.0.0623-x86_64-1.txz: Upgraded.
Fixed use-after-free and stack-based buffer overflow.
Thanks to marav for the heads-up.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-3352
https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-3324
(* Security fix *)
kde/digikam-7.8.0-x86_64-2.txz: Rebuilt.
Recompiled against lensfun-0.3.3.
kde/kstars-3.6.1-x86_64-1.txz: Upgraded.
kde/plasma-wayland-protocols-1.9.0-x86_64-1.txz: Upgraded.
l/lensfun-0.3.3-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/netpbm-11.00.00-x86_64-1.txz: Upgraded.
l/nodejs-18.10.0-x86_64-1.txz: Upgraded.
l/pipewire-0.3.59-x86_64-1.txz: Upgraded.
n/php-7.4.32-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues:
phar wrapper: DOS when using quine gzip file.
Don't mangle HTTP variable names that clash with ones that have a specific
semantic meaning.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31628
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31629
(* Security fix *)
xap/mozilla-thunderbird-102.3.1-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/102.3.1/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2022-43/
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39249
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39250
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39251
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39236
(* Security fix *)
xap/seamonkey-2.53.14-x86_64-1.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
https://www.seamonkey-project.org/releases/seamonkey2.53.14
(* Security fix *)
xap/vim-gvim-9.0.0623-x86_64-1.txz: Upgraded.
xap/xsnow-3.5.3-x86_64-1.txz: Upgraded.
extra/php80/php80-8.0.24-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues:
phar wrapper: DOS when using quine gzip file.
Don't mangle HTTP variable names that clash with ones that have a specific
semantic meaning.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31628
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31629
(* Security fix *)
extra/php81/php81-8.1.11-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues:
phar wrapper: DOS when using quine gzip file.
Don't mangle HTTP variable names that clash with ones that have a specific
semantic meaning.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31628
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31629
(* Security fix *)
20220930175221 | Patrick J Volkerding | 2022-10-01 | 5 | -5/+7 |
* | Wed Sep 28 18:59:51 UTC 2022...a/kernel-firmware-20220928_8d19846-noarch-1.txz: Upgraded.
a/kernel-generic-5.19.12-x86_64-1.txz: Upgraded.
a/kernel-huge-5.19.12-x86_64-1.txz: Upgraded.
a/kernel-modules-5.19.12-x86_64-1.txz: Upgraded.
d/kernel-headers-5.19.12-x86-1.txz: Upgraded.
k/kernel-source-5.19.12-noarch-1.txz: Upgraded.
kde/kscreenlocker-5.25.5-x86_64-2.txz: Rebuilt.
Subject: [PATCH] Set QSurfaceFormat::ResetNotification.
This got lost in frameworks porting from shared KDeclarative code and is
important (especially for NVIDIA after suspend+resume).
Thanks to marav for the heads-up.
kde/plasma-workspace-5.25.5-x86_64-3.txz: Rebuilt.
[PATCH] set setInteractiveAuthorizationAllowed on SetPassword call.
It is important that the SetPassword call uses interactive authorization,
otherwise it will be denied unless the user had been modified beforehand
so an authorization was already granted.
Thanks to marav for the heads-up.
n/gnutls-3.7.8-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
/sbin/probe: Fix duplicated enumeration of mmc storage devices (e.g. SD
cards). Thanks to gsl on LQ for the report.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
/sbin/probe: Fix duplicated enumeration of mmc storage devices (e.g. SD
cards). Thanks to gsl on LQ for the report.
20220928185951 | Patrick J Volkerding | 2022-09-29 | 12 | -14/+86 |
* | Tue Sep 27 21:19:17 UTC 2022...a/kernel-firmware-20220927_0958301-noarch-1.txz: Upgraded.
n/pinentry-1.2.1-x86_64-2.txz: Rebuilt.
Build pinentry-tty. Thanks to pek.
Build pinentry-emacs.
x/fcitx5-gtk-5.0.19-x86_64-1.txz: Upgraded.
x/libXtst-1.2.4-x86_64-1.txz: Upgraded.
x/libXxf86vm-1.1.5-x86_64-1.txz: Upgraded.
x/mesa-22.2.0-x86_64-1.txz: Upgraded.
20220927211917 | Patrick J Volkerding | 2022-09-28 | 3 | -7/+7 |
* | Mon Sep 26 19:43:54 UTC 2022...a/bash-5.2.000-x86_64-1.txz: Upgraded.
ap/vim-9.0.0594-x86_64-1.txz: Upgraded.
Fixed stack-based buffer overflow.
Thanks to marav for the heads-up.
In addition, Mig21 pointed out an issue where the defaults.vim file might
need to be edited for some purposes as its contents will override the
settings in the system-wide vimrc. Usually this file is replaced whenever
vim is upgraded, which in those situations would be inconvenient for the
admin. So, I've added support for a file named defaults.vim.custom which
(if it exists) will be used instead of the defaults.vim file shipped in
the package and will persist through upgrades.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3296
(* Security fix *)
l/fluidsynth-2.3.0-x86_64-1.txz: Upgraded.
l/imagemagick-7.1.0_49-x86_64-1.txz: Upgraded.
l/libcap-2.66-x86_64-1.txz: Upgraded.
l/netpbm-10.99.03-x86_64-1.txz: Upgraded.
l/readline-8.2.000-x86_64-1.txz: Upgraded.
l/xapian-core-1.4.21-x86_64-1.txz: Upgraded.
n/dnsmasq-2.87-x86_64-1.txz: Upgraded.
Fix write-after-free error in DHCPv6 server code.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0934
(* Security fix *)
x/xterm-373-x86_64-1.txz: Upgraded.
xap/vim-gvim-9.0.0594-x86_64-1.txz: Upgraded.
20220926194354 | Patrick J Volkerding | 2022-09-27 | 25 | -1446/+41 |
* | Fri Sep 23 23:51:02 UTC 2022...a/kernel-firmware-20220923_bb3f948-noarch-1.txz: Upgraded.
a/kernel-generic-5.19.11-x86_64-1.txz: Upgraded.
a/kernel-huge-5.19.11-x86_64-1.txz: Upgraded.
a/kernel-modules-5.19.11-x86_64-1.txz: Upgraded.
ap/vim-9.0.0558-x86_64-1.txz: Upgraded.
Fixed use after free.
Thanks to marav for the heads-up.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3256
(* Security fix *)
d/kernel-headers-5.19.11-x86-1.txz: Upgraded.
k/kernel-source-5.19.11-noarch-1.txz: Upgraded.
l/nodejs-18.9.1-x86_64-1.txz: Upgraded.
n/getmail-6.18.10-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-105.0.1-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/firefox/105.0.1/releasenotes/
xap/vim-gvim-9.0.0558-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
20220923235102 | Patrick J Volkerding | 2022-09-24 | 6 | -6/+6 |