| Commit message (Expand) | Author | Age | Files | Lines |
* | Thu Sep 24 19:39:47 UTC 2020...a/mcelog-173-x86_64-1.txz: Upgraded.
ap/cups-filters-1.28.3-x86_64-1.txz: Upgraded.
ap/sudo-1.9.3p1-x86_64-1.txz: Upgraded.
d/python3-3.8.6-x86_64-1.txz: Upgraded.
l/mozjs78-78.3.0esr-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-78.3.0-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/78.3.0/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2020-44/
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15677
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15676
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15678
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15673
(* Security fix *)
20200924193947 | Patrick J Volkerding | 2020-09-25 | 1 | -54/+0 |
* | Tue Aug 25 18:59:52 UTC 2020...a/kernel-firmware-20200824_74bd44f-noarch-1.txz: Upgraded.
ap/vim-8.2.1522-x86_64-1.txz: Upgraded.
l/libuv-1.39.0-x86_64-1.txz: Upgraded.
x/libX11-1.6.12-x86_64-1.txz: Upgraded.
x/xorg-server-1.20.9-x86_64-1.txz: Upgraded.
x/xorg-server-xephyr-1.20.9-x86_64-1.txz: Upgraded.
x/xorg-server-xnest-1.20.9-x86_64-1.txz: Upgraded.
x/xorg-server-xvfb-1.20.9-x86_64-1.txz: Upgraded.
x/xorg-server-xwayland-1.20.9-x86_64-1.txz: Upgraded.
xap/vim-gvim-8.2.1522-x86_64-1.txz: Upgraded.
testing/packages/mozilla-thunderbird-78.2.0-x86_64-1.txz: Added.
https://www.mozilla.org/en-US/thunderbird/78.2.0/releasenotes/
I'm putting this into /testing first so that any problems with OpenPGP can
be reported before it goes into the main tree. Here's the current status
from the release notes and Thunderbird:OpenPGP wiki page:
Add-on support: As of version 78.0, Thunderbird only supports MailExtensions.
Your favorite add-ons may not have been updated for compatibility. At this
time, users of the Enigmail Add-on should not update to Thunderbird 78.
OpenPGP in Thunderbird 78.2.0 has reached feature complete state, but it's
still disabled by default, to allow more time for testing, correctness, and
localization. See the wiki for how to enable and help with testing. If you
use OpenPGP for non-critical purposes, then you are welcome to enable it
manually and help with testing. To enable it in Thunderbird 78.0, use the
config editor and change the value of preference mail.openpgp.enable to true,
then restart Thunderbird. If you are running 78.x and have the previous
Enigmail Add-on installed, then Enigmail will update to version 2.2.x, which
is a minimal release that helps you to migrate the keys and settings to
Thunderbird 78. If you haven't used Enigmail previously, you can enable
OpenPGP for an email account in account settings.
See the release notes for more complete information about testing and
reporting bugs.
20200825185952 | Patrick J Volkerding | 2020-08-26 | 1 | -0/+54 |
* | Thu Sep 12 03:58:53 UTC 2019...a/glibc-zoneinfo-2019c-noarch-1.txz: Upgraded.
This package provides the latest timezone updates.
a/openssl-solibs-1.1.1d-x86_64-1.txz: Upgraded.
a/openssl10-solibs-1.0.2t-x86_64-1.txz: Upgraded.
ap/mariadb-10.4.8-x86_64-1.txz: Upgraded.
l/netpbm-10.87.02-x86_64-1.txz: Upgraded.
n/curl-7.66.0-x86_64-1.txz: Upgraded.
This update fixes security issues:
FTP-KRB double-free
TFTP small blocksize heap buffer overflow
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5481
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5482
(* Security fix *)
n/openssl-1.1.1d-x86_64-1.txz: Upgraded.
This update fixes low severity security issues:
Fixed a fork protection issue
Fixed a padding oracle in PKCS7_dataDecode and CMS_decrypt_set1_pkey
Compute ECC cofactors if not provided during EC_GROUP construction
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1549
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1563
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1547
(* Security fix *)
n/openssl10-1.0.2t-x86_64-1.txz: Upgraded.
This update fixes low severity security issues:
Fixed a padding oracle in PKCS7_dataDecode and CMS_decrypt_set1_pkey
Compute ECC cofactors if not provided during EC_GROUP construction
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1563
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1547
(* Security fix *)
n/p11-kit-0.23.17-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-68.1.0-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/68.1.0/releasenotes/
https://www.mozilla.org/security/known-vulnerabilities/thunderbird.html
(* Security fix *)
extra/google-chrome/google-chrome.SlackBuild: Upgraded.
Patched the packaging script to account for the internal change
of control.tar.gz to control.tar.xz.
Thanks to _RDS_ and Tim Thomas who both provided the same patch.
20190912035853 | Patrick J Volkerding | 2019-09-12 | 1 | -54/+0 |
* | Thu Aug 29 22:21:17 UTC 2019...a/kernel-firmware-20190827_7307a29-noarch-1.txz: Upgraded.
a/kernel-generic-4.19.69-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.69-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.69-x86_64-1.txz: Upgraded.
ap/vim-8.1.1936-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.69-x86-1.txz: Upgraded.
e/emacs-26.3-x86_64-1.txz: Upgraded.
k/kernel-source-4.19.69-noarch-1.txz: Upgraded.
n/libgcrypt-1.8.5-x86_64-1.txz: Upgraded.
Add mitigation against an ECDSA timing attack.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13627
(* Security fix *)
xap/vim-gvim-8.1.1936-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/mozilla-thunderbird-68.0-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/68.0/releasenotes/
usb-and-pxe-installers/usbboot.img: Rebuilt.
20190829222117 | Patrick J Volkerding | 2019-08-30 | 1 | -0/+54 |