From a733d591479391a9aaf78b2872e2afed5dc6658f Mon Sep 17 00:00:00 2001 From: Patrick J Volkerding Date: Wed, 26 Jan 2022 04:37:35 +0000 Subject: [PATCH] Wed Jan 26 04:37:35 UTC 2022 l/polkit-0.120-x86_64-2.txz: Rebuilt. [PATCH] pkexec: local privilege escalation. Thanks to Qualys Research Labs for reporting this issue. For more information, see: https://blog.qualys.com/vulnerabilities-threat-research/2022/01/25/pwnkit-local-privilege-escalation-vulnerability-discovered-in-polkits-pkexec-cve-2021-4034 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4034 (* Security fix *) --- ChangeLog.rss | 37 +++++++- ChangeLog.txt | 17 ++++ FILELIST.TXT | 95 ++++++++++--------- recompress.sh | 1 + source/d/icecream/icecream.SlackBuild | 6 +- source/d/icecream/rc.icecream.conf | 17 +++- ...5c9c83b6ae46cbd5c779d3055bff81ded683.patch | 79 +++++++++++++++ source/l/polkit/polkit.SlackBuild | 5 +- 8 files changed, 202 insertions(+), 55 deletions(-) create mode 100644 source/l/polkit/a2bf5c9c83b6ae46cbd5c779d3055bff81ded683.patch diff --git a/ChangeLog.rss b/ChangeLog.rss index 24b7707db..0444925b9 100644 --- a/ChangeLog.rss +++ b/ChangeLog.rss @@ -11,9 +11,42 @@ Tracking Slackware development in git. en-us urn:uuid:c964f45e-6732-11e8-bbe5-107b4450212f - Tue, 25 Jan 2022 06:16:36 GMT - Tue, 25 Jan 2022 10:59:51 GMT + Wed, 26 Jan 2022 04:37:35 GMT + Wed, 26 Jan 2022 07:59:45 GMT maintain_current_git.sh v 1.13 + + Wed, 26 Jan 2022 04:37:35 GMT + Wed, 26 Jan 2022 04:37:35 GMT + https://git.slackware.nl/current/tag/?h=20220126043735 + 20220126043735 + + +l/polkit-0.120-x86_64-2.txz: Rebuilt. + [PATCH] pkexec: local privilege escalation. + Thanks to Qualys Research Labs for reporting this issue. + For more information, see: + https://blog.qualys.com/vulnerabilities-threat-research/2022/01/25/pwnkit-local-privilege-escalation-vulnerability-discovered-in-polkits-pkexec-cve-2021-4034 + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4034 + (* Security fix *) + ]]> + + + + Tue, 25 Jan 2022 20:10:35 GMT + Tue, 25 Jan 2022 20:10:35 GMT + https://git.slackware.nl/current/tag/?h=20220125201035 + 20220125201035 + + +d/icecream-1.3.1-x86_64-4.txz: Rebuilt. + rc.icecream.conf: generate an error message and avoid a hang when + "hostname -d" doesn't work, usually because the hostname in /etc/HOSTNAME + can't be resolved. Thanks to franzen. +kde/latte-dock-0.10.8-x86_64-1.txz: Upgraded. +xap/geeqie-1.7.2-x86_64-1.txz: Upgraded. + ]]> + + Tue, 25 Jan 2022 06:16:36 GMT Tue, 25 Jan 2022 06:16:36 GMT diff --git a/ChangeLog.txt b/ChangeLog.txt index 648e263d9..3990d35d5 100644 --- a/ChangeLog.txt +++ b/ChangeLog.txt @@ -1,3 +1,20 @@ +Wed Jan 26 04:37:35 UTC 2022 +l/polkit-0.120-x86_64-2.txz: Rebuilt. + [PATCH] pkexec: local privilege escalation. + Thanks to Qualys Research Labs for reporting this issue. + For more information, see: + https://blog.qualys.com/vulnerabilities-threat-research/2022/01/25/pwnkit-local-privilege-escalation-vulnerability-discovered-in-polkits-pkexec-cve-2021-4034 + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4034 + (* Security fix *) ++--------------------------+ +Tue Jan 25 20:10:35 UTC 2022 +d/icecream-1.3.1-x86_64-4.txz: Rebuilt. + rc.icecream.conf: generate an error message and avoid a hang when + "hostname -d" doesn't work, usually because the hostname in /etc/HOSTNAME + can't be resolved. Thanks to franzen. +kde/latte-dock-0.10.8-x86_64-1.txz: Upgraded. +xap/geeqie-1.7.2-x86_64-1.txz: Upgraded. ++--------------------------+ Tue Jan 25 06:16:36 UTC 2022 It may look like we're currently experiencing more stuckness, but this will lead us to Quality. We'll have this release in the can before you know it. diff --git a/FILELIST.TXT b/FILELIST.TXT index 950ea24db..e093c9d62 100644 --- a/FILELIST.TXT +++ b/FILELIST.TXT @@ -1,20 +1,20 @@ -Tue Jan 25 06:24:15 UTC 2022 +Wed Jan 26 04:57:44 UTC 2022 Here is the file list for this directory. If you are using a mirror site and find missing or extra files in the disk subdirectories, please have the archive administrator refresh the mirror. -drwxr-xr-x 12 root root 4096 2022-01-25 06:16 . +drwxr-xr-x 12 root root 4096 2022-01-26 04:37 . -rw-r--r-- 1 root root 10064 2016-06-30 18:39 ./ANNOUNCE.14_2 -rw-r--r-- 1 root root 15913 2022-01-18 20:05 ./CHANGES_AND_HINTS.TXT --rw-r--r-- 1 root root 1095929 2022-01-23 19:40 ./CHECKSUMS.md5 --rw-r--r-- 1 root root 163 2022-01-23 19:40 ./CHECKSUMS.md5.asc +-rw-r--r-- 1 root root 1096424 2022-01-25 20:13 ./CHECKSUMS.md5 +-rw-r--r-- 1 root root 163 2022-01-25 20:13 ./CHECKSUMS.md5.asc -rw-r--r-- 1 root root 17976 1994-06-10 02:28 ./COPYING -rw-r--r-- 1 root root 35147 2007-06-30 04:21 ./COPYING3 -rw-r--r-- 1 root root 19573 2016-06-23 20:08 ./COPYRIGHT.TXT -rw-r--r-- 1 root root 616 2006-10-02 04:37 ./CRYPTO_NOTICE.TXT --rw-r--r-- 1 root root 1853731 2022-01-25 06:16 ./ChangeLog.txt +-rw-r--r-- 1 root root 1854582 2022-01-26 04:37 ./ChangeLog.txt drwxr-xr-x 3 root root 4096 2013-03-20 22:17 ./EFI drwxr-xr-x 2 root root 4096 2022-01-25 05:30 ./EFI/BOOT -rw-r--r-- 1 root root 1187840 2021-06-15 19:16 ./EFI/BOOT/bootx64.efi @@ -25,9 +25,9 @@ drwxr-xr-x 2 root root 4096 2022-01-25 05:30 ./EFI/BOOT -rwxr-xr-x 1 root root 2504 2019-07-05 18:54 ./EFI/BOOT/make-grub.sh -rw-r--r-- 1 root root 10722 2013-09-21 19:02 ./EFI/BOOT/osdetect.cfg -rw-r--r-- 1 root root 1273 2013-08-12 21:08 ./EFI/BOOT/tools.cfg --rw-r--r-- 1 root root 1426784 2022-01-23 19:39 ./FILELIST.TXT +-rw-r--r-- 1 root root 1427359 2022-01-25 20:13 ./FILELIST.TXT -rw-r--r-- 1 root root 1572 2012-08-29 18:27 ./GPG-KEY --rw-r--r-- 1 root root 864745 2022-01-25 06:23 ./PACKAGES.TXT +-rw-r--r-- 1 root root 864745 2022-01-26 04:57 ./PACKAGES.TXT -rw-r--r-- 1 root root 8564 2016-06-28 21:33 ./README.TXT -rw-r--r-- 1 root root 3635 2022-01-25 05:08 ./README.initrd -rw-r--r-- 1 root root 34412 2017-12-01 17:44 ./README_CRYPT.TXT @@ -743,11 +743,11 @@ drwxr-xr-x 2 root root 4096 2012-09-20 18:06 ./patches -rw-r--r-- 1 root root 575 2012-09-20 18:06 ./patches/FILE_LIST -rw-r--r-- 1 root root 14 2012-09-20 18:06 ./patches/MANIFEST.bz2 -rw-r--r-- 1 root root 224 2012-09-20 18:06 ./patches/PACKAGES.TXT -drwxr-xr-x 17 root root 4096 2022-01-25 06:23 ./slackware64 --rw-r--r-- 1 root root 337498 2022-01-25 06:23 ./slackware64/CHECKSUMS.md5 --rw-r--r-- 1 root root 163 2022-01-25 06:23 ./slackware64/CHECKSUMS.md5.asc --rw-r--r-- 1 root root 418557 2022-01-25 06:22 ./slackware64/FILE_LIST --rw-r--r-- 1 root root 4210422 2022-01-25 06:23 ./slackware64/MANIFEST.bz2 +drwxr-xr-x 17 root root 4096 2022-01-26 04:57 ./slackware64 +-rw-r--r-- 1 root root 337498 2022-01-26 04:57 ./slackware64/CHECKSUMS.md5 +-rw-r--r-- 1 root root 163 2022-01-26 04:57 ./slackware64/CHECKSUMS.md5.asc +-rw-r--r-- 1 root root 418557 2022-01-26 04:56 ./slackware64/FILE_LIST +-rw-r--r-- 1 root root 4193091 2022-01-26 04:56 ./slackware64/MANIFEST.bz2 lrwxrwxrwx 1 root root 15 2009-08-23 23:34 ./slackware64/PACKAGES.TXT -> ../PACKAGES.TXT drwxr-xr-x 2 root root 32768 2022-01-25 06:22 ./slackware64/a -rw-r--r-- 1 root root 327 2022-01-16 05:08 ./slackware64/a/aaa_base-15.0-x86_64-3.txt @@ -1385,7 +1385,7 @@ drwxr-xr-x 2 root root 20480 2022-01-25 06:22 ./slackware64/ap -rw-r--r-- 1 root root 506 2021-02-13 11:48 ./slackware64/ap/zsh-5.8-x86_64-3.txt -rw-r--r-- 1 root root 3056824 2021-02-13 11:48 ./slackware64/ap/zsh-5.8-x86_64-3.txz -rw-r--r-- 1 root root 163 2021-02-13 11:48 ./slackware64/ap/zsh-5.8-x86_64-3.txz.asc -drwxr-xr-x 2 root root 20480 2022-01-25 06:22 ./slackware64/d +drwxr-xr-x 2 root root 20480 2022-01-25 20:12 ./slackware64/d -rw-r--r-- 1 root root 360 2021-12-17 05:34 ./slackware64/d/Cython-0.29.26-x86_64-1.txt -rw-r--r-- 1 root root 2392444 2021-12-17 05:34 ./slackware64/d/Cython-0.29.26-x86_64-1.txz -rw-r--r-- 1 root root 163 2021-12-17 05:34 ./slackware64/d/Cython-0.29.26-x86_64-1.txz.asc @@ -1482,9 +1482,9 @@ drwxr-xr-x 2 root root 20480 2022-01-25 06:22 ./slackware64/d -rw-r--r-- 1 root root 287 2021-08-22 17:49 ./slackware64/d/help2man-1.48.5-x86_64-1.txt -rw-r--r-- 1 root root 152856 2021-08-22 17:49 ./slackware64/d/help2man-1.48.5-x86_64-1.txz -rw-r--r-- 1 root root 163 2021-08-22 17:49 ./slackware64/d/help2man-1.48.5-x86_64-1.txz.asc --rw-r--r-- 1 root root 541 2021-02-13 09:57 ./slackware64/d/icecream-1.3.1-x86_64-3.txt --rw-r--r-- 1 root root 255996 2021-02-13 09:57 ./slackware64/d/icecream-1.3.1-x86_64-3.txz --rw-r--r-- 1 root root 163 2021-02-13 09:57 ./slackware64/d/icecream-1.3.1-x86_64-3.txz.asc +-rw-r--r-- 1 root root 541 2022-01-25 20:05 ./slackware64/d/icecream-1.3.1-x86_64-4.txt +-rw-r--r-- 1 root root 255484 2022-01-25 20:05 ./slackware64/d/icecream-1.3.1-x86_64-4.txz +-rw-r--r-- 1 root root 163 2022-01-25 20:05 ./slackware64/d/icecream-1.3.1-x86_64-4.txz.asc -rw-r--r-- 1 root root 431 2021-02-13 09:57 ./slackware64/d/indent-2.2.12-x86_64-3.txt -rw-r--r-- 1 root root 140412 2021-02-13 09:57 ./slackware64/d/indent-2.2.12-x86_64-3.txz -rw-r--r-- 1 root root 163 2021-02-13 09:57 ./slackware64/d/indent-2.2.12-x86_64-3.txz.asc @@ -1634,7 +1634,7 @@ drwxr-xr-x 2 root root 4096 2022-01-25 06:22 ./slackware64/k -rw-r--r-- 1 root root 1171 2022-01-25 05:08 ./slackware64/k/maketag -rw-r--r-- 1 root root 1171 2022-01-25 05:08 ./slackware64/k/maketag.ez -rw-r--r-- 1 root root 18 2022-01-25 05:08 ./slackware64/k/tagfile -drwxr-xr-x 2 root root 86016 2022-01-21 20:00 ./slackware64/kde +drwxr-xr-x 2 root root 86016 2022-01-25 20:12 ./slackware64/kde -rw-r--r-- 1 root root 382 2022-01-06 21:36 ./slackware64/kde/akonadi-21.12.1-x86_64-1.txt -rw-r--r-- 1 root root 2541268 2022-01-06 21:36 ./slackware64/kde/akonadi-21.12.1-x86_64-1.txz -rw-r--r-- 1 root root 163 2022-01-06 21:36 ./slackware64/kde/akonadi-21.12.1-x86_64-1.txz.asc @@ -2474,9 +2474,9 @@ drwxr-xr-x 2 root root 86016 2022-01-21 20:00 ./slackware64/kde -rw-r--r-- 1 root root 286 2022-01-08 22:43 ./slackware64/kde/kxmlrpcclient-5.90.0-x86_64-1.txt -rw-r--r-- 1 root root 44864 2022-01-08 22:43 ./slackware64/kde/kxmlrpcclient-5.90.0-x86_64-1.txz -rw-r--r-- 1 root root 163 2022-01-08 22:43 ./slackware64/kde/kxmlrpcclient-5.90.0-x86_64-1.txz.asc --rw-r--r-- 1 root root 455 2022-01-11 20:30 ./slackware64/kde/latte-dock-0.10.7-x86_64-1.txt --rw-r--r-- 1 root root 1341060 2022-01-11 20:30 ./slackware64/kde/latte-dock-0.10.7-x86_64-1.txz --rw-r--r-- 1 root root 163 2022-01-11 20:30 ./slackware64/kde/latte-dock-0.10.7-x86_64-1.txz.asc +-rw-r--r-- 1 root root 455 2022-01-25 19:27 ./slackware64/kde/latte-dock-0.10.8-x86_64-1.txt +-rw-r--r-- 1 root root 1339320 2022-01-25 19:27 ./slackware64/kde/latte-dock-0.10.8-x86_64-1.txz +-rw-r--r-- 1 root root 163 2022-01-25 19:27 ./slackware64/kde/latte-dock-0.10.8-x86_64-1.txz.asc -rw-r--r-- 1 root root 323 2022-01-04 21:36 ./slackware64/kde/layer-shell-qt-5.23.5-x86_64-1.txt -rw-r--r-- 1 root root 25628 2022-01-04 21:36 ./slackware64/kde/layer-shell-qt-5.23.5-x86_64-1.txz -rw-r--r-- 1 root root 163 2022-01-04 21:36 ./slackware64/kde/layer-shell-qt-5.23.5-x86_64-1.txz.asc @@ -2741,7 +2741,7 @@ drwxr-xr-x 2 root root 86016 2022-01-21 20:00 ./slackware64/kde -rw-r--r-- 1 root root 296 2022-01-06 22:19 ./slackware64/kde/zeroconf-ioslave-21.12.1-x86_64-1.txt -rw-r--r-- 1 root root 50224 2022-01-06 22:19 ./slackware64/kde/zeroconf-ioslave-21.12.1-x86_64-1.txz -rw-r--r-- 1 root root 163 2022-01-06 22:19 ./slackware64/kde/zeroconf-ioslave-21.12.1-x86_64-1.txz.asc -drwxr-xr-x 2 root root 81920 2022-01-25 06:22 ./slackware64/l +drwxr-xr-x 2 root root 81920 2022-01-26 04:56 ./slackware64/l -rw-r--r-- 1 root root 329 2021-02-13 05:56 ./slackware64/l/GConf-3.2.6-x86_64-7.txt -rw-r--r-- 1 root root 928148 2021-02-13 05:56 ./slackware64/l/GConf-3.2.6-x86_64-7.txz -rw-r--r-- 1 root root 163 2021-02-13 05:56 ./slackware64/l/GConf-3.2.6-x86_64-7.txz.asc @@ -3604,9 +3604,9 @@ drwxr-xr-x 2 root root 81920 2022-01-25 06:22 ./slackware64/l -rw-r--r-- 1 root root 552 2022-01-05 20:04 ./slackware64/l/pipewire-0.3.43-x86_64-1.txt -rw-r--r-- 1 root root 1732824 2022-01-05 20:04 ./slackware64/l/pipewire-0.3.43-x86_64-1.txz -rw-r--r-- 1 root root 163 2022-01-05 20:04 ./slackware64/l/pipewire-0.3.43-x86_64-1.txz.asc --rw-r--r-- 1 root root 450 2021-10-06 18:08 ./slackware64/l/polkit-0.120-x86_64-1.txt --rw-r--r-- 1 root root 403244 2021-10-06 18:08 ./slackware64/l/polkit-0.120-x86_64-1.txz --rw-r--r-- 1 root root 163 2021-10-06 18:08 ./slackware64/l/polkit-0.120-x86_64-1.txz.asc +-rw-r--r-- 1 root root 450 2022-01-26 02:16 ./slackware64/l/polkit-0.120-x86_64-2.txt +-rw-r--r-- 1 root root 403056 2022-01-26 02:16 ./slackware64/l/polkit-0.120-x86_64-2.txz +-rw-r--r-- 1 root root 163 2022-01-26 02:16 ./slackware64/l/polkit-0.120-x86_64-2.txz.asc -rw-r--r-- 1 root root 367 2021-02-13 07:37 ./slackware64/l/polkit-gnome-0.105-x86_64-4.txt -rw-r--r-- 1 root root 67536 2021-02-13 07:37 ./slackware64/l/polkit-gnome-0.105-x86_64-4.txz -rw-r--r-- 1 root root 163 2021-02-13 07:37 ./slackware64/l/polkit-gnome-0.105-x86_64-4.txz.asc @@ -5342,7 +5342,7 @@ drwxr-xr-x 2 root root 65536 2022-01-25 06:22 ./slackware64/x -rw-r--r-- 1 root root 213 2021-02-13 13:14 ./slackware64/x/xwud-1.0.5-x86_64-4.txt -rw-r--r-- 1 root root 25428 2021-02-13 13:14 ./slackware64/x/xwud-1.0.5-x86_64-4.txz -rw-r--r-- 1 root root 163 2021-02-13 13:14 ./slackware64/x/xwud-1.0.5-x86_64-4.txz.asc -drwxr-xr-x 2 root root 16384 2022-01-25 06:22 ./slackware64/xap +drwxr-xr-x 2 root root 16384 2022-01-25 20:12 ./slackware64/xap -rw-r--r-- 1 root root 625 2021-04-18 18:11 ./slackware64/xap/MPlayer-20210418-x86_64-1.txt -rw-r--r-- 1 root root 2738724 2021-04-18 18:11 ./slackware64/xap/MPlayer-20210418-x86_64-1.txz -rw-r--r-- 1 root root 163 2021-04-18 18:11 ./slackware64/xap/MPlayer-20210418-x86_64-1.txz.asc @@ -5382,9 +5382,9 @@ drwxr-xr-x 2 root root 16384 2022-01-25 06:22 ./slackware64/xap -rw-r--r-- 1 root root 411 2021-02-13 13:31 ./slackware64/xap/fvwm-2.6.9-x86_64-4.txt -rw-r--r-- 1 root root 2452448 2021-02-13 13:31 ./slackware64/xap/fvwm-2.6.9-x86_64-4.txz -rw-r--r-- 1 root root 163 2021-02-13 13:31 ./slackware64/xap/fvwm-2.6.9-x86_64-4.txz.asc --rw-r--r-- 1 root root 302 2022-01-17 22:01 ./slackware64/xap/geeqie-1.7.1-x86_64-1.txt --rw-r--r-- 1 root root 1051804 2022-01-17 22:01 ./slackware64/xap/geeqie-1.7.1-x86_64-1.txz --rw-r--r-- 1 root root 163 2022-01-17 22:01 ./slackware64/xap/geeqie-1.7.1-x86_64-1.txz.asc +-rw-r--r-- 1 root root 302 2022-01-25 19:25 ./slackware64/xap/geeqie-1.7.2-x86_64-1.txt +-rw-r--r-- 1 root root 1052140 2022-01-25 19:25 ./slackware64/xap/geeqie-1.7.2-x86_64-1.txz +-rw-r--r-- 1 root root 163 2022-01-25 19:25 ./slackware64/xap/geeqie-1.7.2-x86_64-1.txz.asc -rw-r--r-- 1 root root 443 2021-11-15 20:14 ./slackware64/xap/gftp-2.8.0b-x86_64-1.txt -rw-r--r-- 1 root root 697428 2021-11-15 20:14 ./slackware64/xap/gftp-2.8.0b-x86_64-1.txz -rw-r--r-- 1 root root 163 2021-11-15 20:14 ./slackware64/xap/gftp-2.8.0b-x86_64-1.txz.asc @@ -5609,11 +5609,11 @@ drwxr-xr-x 2 root root 4096 2021-02-15 19:33 ./slackware64/y -rw-r--r-- 1 root root 1486956 2021-02-13 13:56 ./slackware64/y/nethack-3.6.6-x86_64-3.txz -rw-r--r-- 1 root root 163 2021-02-13 13:56 ./slackware64/y/nethack-3.6.6-x86_64-3.txz.asc -rw-r--r-- 1 root root 26 2020-12-30 21:55 ./slackware64/y/tagfile -drwxr-xr-x 18 root root 4096 2022-01-25 06:24 ./source --rw-r--r-- 1 root root 584635 2022-01-25 06:24 ./source/CHECKSUMS.md5 --rw-r--r-- 1 root root 163 2022-01-25 06:24 ./source/CHECKSUMS.md5.asc --rw-r--r-- 1 root root 813685 2022-01-25 06:24 ./source/FILE_LIST --rw-r--r-- 1 root root 23343654 2022-01-25 06:24 ./source/MANIFEST.bz2 +drwxr-xr-x 18 root root 4096 2022-01-26 04:57 ./source +-rw-r--r-- 1 root root 584730 2022-01-26 04:57 ./source/CHECKSUMS.md5 +-rw-r--r-- 1 root root 163 2022-01-26 04:57 ./source/CHECKSUMS.md5.asc +-rw-r--r-- 1 root root 813795 2022-01-26 04:57 ./source/FILE_LIST +-rw-r--r-- 1 root root 23343424 2022-01-26 04:57 ./source/MANIFEST.bz2 -rw-r--r-- 1 root root 1314 2006-10-02 04:40 ./source/README.TXT drwxr-xr-x 122 root root 4096 2022-01-25 03:37 ./source/a -rw-r--r-- 1 root root 1847 2022-01-21 19:54 ./source/a/FTBFSlog @@ -7300,7 +7300,7 @@ drwxr-xr-x 2 root root 4096 2021-02-13 05:31 ./source/ap/zsh -rwxr-xr-x 1 root root 4352 2021-02-13 05:31 ./source/ap/zsh/zsh.SlackBuild -rw-r--r-- 1 root root 23 2018-09-14 17:50 ./source/ap/zsh/zsh.url -rwxr-xr-x 1 root root 12001 2021-10-08 01:36 ./source/buildlist-from-changelog.sh -drwxr-xr-x 63 root root 4096 2022-01-05 01:03 ./source/d +drwxr-xr-x 63 root root 4096 2022-01-25 19:45 ./source/d drwxr-xr-x 2 root root 4096 2021-12-17 05:33 ./source/d/Cython -rw-r--r-- 1 root root 1612428 2021-12-16 22:12 ./source/d/Cython/Cython-0.29.26.tar.lz -rwxr-xr-x 1 root root 3031 2021-12-06 19:51 ./source/d/Cython/Cython.SlackBuild @@ -7473,16 +7473,16 @@ drwxr-xr-x 2 root root 4096 2021-08-22 17:49 ./source/d/help2man -rw-r--r-- 1 root root 95 2021-08-22 12:39 ./source/d/help2man/help2man-1.48.5.tar.xz.sig -rwxr-xr-x 1 root root 4742 2021-03-03 19:25 ./source/d/help2man/help2man.SlackBuild -rw-r--r-- 1 root root 743 2018-02-27 06:13 ./source/d/help2man/slack-desc -drwxr-xr-x 2 root root 4096 2021-02-13 05:31 ./source/d/icecream +drwxr-xr-x 2 root root 4096 2022-01-25 19:45 ./source/d/icecream -rw-r--r-- 1 root root 459 2018-08-13 21:29 ./source/d/icecream/doinst.sh.gz -rwxr-xr-x 1 root root 1899 2020-07-09 18:37 ./source/d/icecream/get-icecream.sh -rw-r--r-- 1 root root 504545 2020-02-04 13:40 ./source/d/icecream/icecc-1.3.1.tar.lz --rwxr-xr-x 1 root root 4239 2021-02-13 05:31 ./source/d/icecream/icecream.SlackBuild +-rwxr-xr-x 1 root root 4245 2022-01-25 20:05 ./source/d/icecream/icecream.SlackBuild -rw-r--r-- 1 root root 211 2019-10-15 03:29 ./source/d/icecream/icecream.csh -rw-r--r-- 1 root root 206 2019-10-15 03:28 ./source/d/icecream/icecream.sh -rw-r--r-- 1 root root 964 2018-09-21 02:28 ./source/d/icecream/rc.icecc-scheduler -rw-r--r-- 1 root root 901 2018-09-21 02:28 ./source/d/icecream/rc.iceccd --rw-r--r-- 1 root root 1179 2018-09-21 02:29 ./source/d/icecream/rc.icecream.conf +-rw-r--r-- 1 root root 1894 2022-01-25 20:00 ./source/d/icecream/rc.icecream.conf -rw-r--r-- 1 root root 1030 2018-08-13 20:18 ./source/d/icecream/slack-desc drwxr-xr-x 2 root root 4096 2021-02-13 05:31 ./source/d/indent -rw-r--r-- 1 root root 620280 2018-09-06 10:58 ./source/d/indent/indent-2.2.12.tar.xz @@ -9579,12 +9579,12 @@ drwxr-xr-x 2 root root 4096 2022-01-08 21:37 ./source/kde/kde/src/framewo -rw-r--r-- 1 root root 1412588 2022-01-01 14:34 ./source/kde/kde/src/frameworks/threadweaver-5.90.0.tar.xz -rw-r--r-- 1 root root 488 2022-01-01 14:34 ./source/kde/kde/src/frameworks/threadweaver-5.90.0.tar.xz.sig drwxr-xr-x 2 root root 12288 2022-01-04 21:32 ./source/kde/kde/src/plasma -drwxr-xr-x 2 root root 4096 2022-01-16 07:15 ./source/kde/kde/src/plasma-extra +drwxr-xr-x 2 root root 4096 2022-01-25 19:26 ./source/kde/kde/src/plasma-extra -rwxr-xr-x 1 root root 2071 2020-07-12 21:54 ./source/kde/kde/src/plasma-extra/fetch-wacomtablet.sh -rw-r--r-- 1 root root 13424 2019-12-07 18:49 ./source/kde/kde/src/plasma-extra/kpeoplevcard-0.1.tar.xz -rw-r--r-- 1 root root 488 2019-12-07 18:49 ./source/kde/kde/src/plasma-extra/kpeoplevcard-0.1.tar.xz.sig --rw-r--r-- 1 root root 1001356 2022-01-10 14:54 ./source/kde/kde/src/plasma-extra/latte-dock-0.10.7.tar.xz --rw-r--r-- 1 root root 488 2022-01-10 14:54 ./source/kde/kde/src/plasma-extra/latte-dock-0.10.7.tar.xz.sig +-rw-r--r-- 1 root root 1001964 2022-01-25 09:45 ./source/kde/kde/src/plasma-extra/latte-dock-0.10.8.tar.xz +-rw-r--r-- 1 root root 488 2022-01-25 09:45 ./source/kde/kde/src/plasma-extra/latte-dock-0.10.8.tar.xz.sig -rw-r--r-- 1 root root 161700 2015-12-24 15:38 ./source/kde/kde/src/plasma-extra/oxygen-fonts-5.4.3.tar.xz -rw-r--r-- 1 root root 41752 2022-01-13 15:09 ./source/kde/kde/src/plasma-extra/plasma-wayland-protocols-1.6.0.tar.xz -rw-r--r-- 1 root root 488 2022-01-13 15:09 ./source/kde/kde/src/plasma-extra/plasma-wayland-protocols-1.6.0.tar.xz.sig @@ -11265,7 +11265,7 @@ drwxr-xr-x 2 root root 4096 2022-01-05 19:45 ./source/l/pipewire -rw-r--r-- 1 root root 268 2022-01-03 20:11 ./source/l/pipewire/pipewire.desktop.sample -rw-r--r-- 1 root root 49 2020-09-29 01:53 ./source/l/pipewire/pipewire.url -rw-r--r-- 1 root root 1038 2020-11-01 20:04 ./source/l/pipewire/slack-desc -drwxr-xr-x 2 root root 4096 2021-10-06 18:08 ./source/l/polkit +drwxr-xr-x 2 root root 4096 2022-01-26 02:15 ./source/l/polkit drwxr-xr-x 2 root root 4096 2021-02-13 05:32 ./source/l/polkit-gnome -rw-r--r-- 1 root root 310876 2011-10-27 13:27 ./source/l/polkit-gnome/polkit-gnome-0.105.tar.xz -rw-r--r-- 1 root root 4581 2011-02-25 05:43 ./source/l/polkit-gnome/polkit-gnome-authentication-agent-1.desktop @@ -11278,10 +11278,11 @@ drwxr-xr-x 2 root root 4096 2021-06-19 18:57 ./source/l/polkit-qt-1 -rw-r--r-- 1 root root 44 2020-09-29 04:12 ./source/l/polkit-qt-1/polkit-qt-1.url -rw-r--r-- 1 root root 921 2020-11-01 20:04 ./source/l/polkit-qt-1/slack-desc -rw-r--r-- 1 root root 610 2018-08-20 21:35 ./source/l/polkit/0001-configure-fix-elogind-support.patch.gz +-rw-r--r-- 1 root root 1061 2022-01-26 02:14 ./source/l/polkit/a2bf5c9c83b6ae46cbd5c779d3055bff81ded683.patch.gz -rw-r--r-- 1 root root 484 2020-11-30 06:55 ./source/l/polkit/doinst.sh.gz -rw-r--r-- 1 root root 292 2015-01-02 05:35 ./source/l/polkit/dont-set-wheel-group-as-admin.diff.gz -rw-r--r-- 1 root root 675865 2021-10-06 18:06 ./source/l/polkit/polkit-0.120.tar.lz --rwxr-xr-x 1 root root 6362 2021-06-05 18:09 ./source/l/polkit/polkit.SlackBuild +-rwxr-xr-x 1 root root 6464 2022-01-26 02:15 ./source/l/polkit/polkit.SlackBuild -rw-r--r-- 1 root root 903 2020-11-01 20:04 ./source/l/polkit/slack-desc drwxr-xr-x 2 root root 4096 2021-12-26 19:51 ./source/l/poppler drwxr-xr-x 2 root root 4096 2021-09-07 17:02 ./source/l/poppler-data @@ -11944,9 +11945,9 @@ drwxr-xr-x 2 root root 4096 2022-01-05 19:57 ./source/n/curl -rw-r--r-- 1 root root 2486388 2022-01-05 07:52 ./source/n/curl/curl-7.81.0.tar.xz -rw-r--r-- 1 root root 488 2022-01-05 07:52 ./source/n/curl/curl-7.81.0.tar.xz.asc -rwxr-xr-x 1 root root 4851 2021-05-26 18:57 ./source/n/curl/curl.SlackBuild --rw-r--r-- 1 root root 30 2018-04-20 16:49 ./source/n/curl/curl.url --rw-r--r-- 1 root root 1004 2019-02-06 21:57 ./source/n/curl/slack-desc -drwxr-xr-x 2 root root 4096 2021-02-13 05:32 ./source/n/cyrus-sasl +-rw-r--r-- 1 root root 30 2018-04-20 16:49 ./source/n/curl/curl.url +-rw-r--r-- 1 root root 1004 2019-02-06 21:57 ./source/n/curl/slack-desc +drwxr-xr-x 2 root root 4096 2021-02-13 05:32 ./source/n/cyrus-sasl -rw-r--r-- 1 root root 1596313 2018-11-17 00:25 ./source/n/cyrus-sasl/cyrus-sasl-2.1.27.tar.lz -rwxr-xr-x 1 root root 4562 2021-02-13 05:32 ./source/n/cyrus-sasl/cyrus-sasl.SlackBuild -rw-r--r-- 1 root root 36 2018-05-07 05:40 ./source/n/cyrus-sasl/cyrus-sasl.url @@ -14607,10 +14608,10 @@ drwxr-xr-x 2 root root 4096 2021-02-13 05:32 ./source/xap/fvwm -rw-r--r-- 1 root root 863 2018-02-27 06:13 ./source/xap/fvwm/slack-desc -rw-r--r-- 1 root root 217 2012-08-09 04:42 ./source/xap/fvwm/startfvwm2.gz -rw-r--r-- 1 root root 360 2012-08-10 23:46 ./source/xap/fvwm/xinitrc.fvwm2.gz -drwxr-xr-x 2 root root 4096 2022-01-17 21:59 ./source/xap/geeqie +drwxr-xr-x 2 root root 4096 2022-01-25 19:24 ./source/xap/geeqie -rw-r--r-- 1 root root 163 2010-03-11 23:20 ./source/xap/geeqie/doinst.sh.gz -rw-r--r-- 1 root root 399 2018-01-02 08:20 ./source/xap/geeqie/fix-build-re-docs.diff.gz --rw-r--r-- 1 root root 1435846 2022-01-16 14:23 ./source/xap/geeqie/geeqie-1.7.1.tar.lz +-rw-r--r-- 1 root root 1436044 2022-01-25 13:04 ./source/xap/geeqie/geeqie-1.7.2.tar.lz -rwxr-xr-x 1 root root 4642 2022-01-17 22:01 ./source/xap/geeqie/geeqie.SlackBuild -rw-r--r-- 1 root root 42 2022-01-17 21:59 ./source/xap/geeqie/geeqie.url -rw-r--r-- 1 root root 756 2018-02-27 06:13 ./source/xap/geeqie/slack-desc diff --git a/recompress.sh b/recompress.sh index ccba8337d..467ecc553 100755 --- a/recompress.sh +++ b/recompress.sh @@ -903,6 +903,7 @@ gzip ./source/l/pilot-link/pilot-link.png14.diff gzip ./source/l/pipewire/doinst.sh gzip ./source/l/polkit/dont-set-wheel-group-as-admin.diff gzip ./source/l/polkit/doinst.sh +gzip ./source/l/polkit/a2bf5c9c83b6ae46cbd5c779d3055bff81ded683.patch gzip ./source/l/polkit/0001-configure-fix-elogind-support.patch gzip ./source/l/expat/5f100ffa78b74da8020b71d1582a8979193c1359.patch gzip ./source/l/expat/178d26f50af21ec23d6e43814b9b602590b5865c.patch diff --git a/source/d/icecream/icecream.SlackBuild b/source/d/icecream/icecream.SlackBuild index aad5a1603..120c23c8a 100755 --- a/source/d/icecream/icecream.SlackBuild +++ b/source/d/icecream/icecream.SlackBuild @@ -1,7 +1,7 @@ #!/bin/sh # Copyright 2009-2018 Heinz Wiesinger, Amsterdam, The Netherlands -# Copyright 2018 Patrick J. Volkerding, Sebeka, Minnesota, USA +# Copyright 2018, 2022 Patrick J. Volkerding, Sebeka, Minnesota, USA # All rights reserved. # # Redistribution and use of this script, with or without modification, is @@ -26,7 +26,7 @@ cd $(dirname $0) ; CWD=$(pwd) PKGNAM=icecream SRCNAM=icecc VERSION=${VERSION:-$(echo $SRCNAM-*.tar.?z | rev | cut -f 3- -d . | cut -f 1 -d - | rev)} -BUILD=${BUILD:-3} +BUILD=${BUILD:-4} if [ -z "$ARCH" ]; then case "$( uname -m )" in @@ -67,7 +67,7 @@ NUMJOBS=${NUMJOBS:-" -j$(expr $(nproc) + 1) "} rm -rf $PKG mkdir -p $TMP $PKG $OUTPUT cd $TMP -rm -rf $PKGNAM-$VERSION +rm -rf $SRCNAM-$VERSION tar xvf $CWD/$SRCNAM-$VERSION.tar.lz || exit 1 cd $SRCNAM-$VERSION || exit 1 diff --git a/source/d/icecream/rc.icecream.conf b/source/d/icecream/rc.icecream.conf index d0bfaadf0..2c1e0607c 100644 --- a/source/d/icecream/rc.icecream.conf +++ b/source/d/icecream/rc.icecream.conf @@ -5,7 +5,22 @@ # Defines the network name used to determine which nodes can be used for # the compile processes. That way you can have several icecream clusters # in the same network. -ICECC_NETWORK=$(hostname -d) +ICECC_NETWORK=$(hostname -d 2> /dev/null) + +# If /etc/HOSTNAME isn't relected in /etc/hosts or through DNS for any reason, +# then the default ICECC_NETWORK=$(hostname -d) won't be set. So if that +# variable is empty here, output an error message and exit so that the +# rc.iceccd script doesn't hang: +if [ "$ICECC_NETWORK" = "" ]; then + echo "ERROR: No network set in \$ICECC_NETWORK, so iceccd and/or icecc-scheduler" + echo "will be unable to start. Please make sure that the hostname in /etc/HOSTNAME" + echo "is reflected in /etc/hosts or through DNS. You should be able to run" + echo "'hostname -d' and see your network domain." + echo "This is the current output from 'hostname -d':" + echo $(hostname -d) + echo "Exiting..." + exit 1 +fi # Defines the options passed to icecc-scheduler: ICECC_SCHEDULER_OPTIONS="-n $ICECC_NETWORK -d -l /var/log/icecream/icecc-scheduler.log" diff --git a/source/l/polkit/a2bf5c9c83b6ae46cbd5c779d3055bff81ded683.patch b/source/l/polkit/a2bf5c9c83b6ae46cbd5c779d3055bff81ded683.patch new file mode 100644 index 000000000..a06300a53 --- /dev/null +++ b/source/l/polkit/a2bf5c9c83b6ae46cbd5c779d3055bff81ded683.patch @@ -0,0 +1,79 @@ +From a2bf5c9c83b6ae46cbd5c779d3055bff81ded683 Mon Sep 17 00:00:00 2001 +From: Jan Rybar +Date: Tue, 25 Jan 2022 17:21:46 +0000 +Subject: [PATCH] pkexec: local privilege escalation (CVE-2021-4034) + +--- + src/programs/pkcheck.c | 5 +++++ + src/programs/pkexec.c | 23 ++++++++++++++++++++--- + 2 files changed, 25 insertions(+), 3 deletions(-) + +diff --git a/src/programs/pkcheck.c b/src/programs/pkcheck.c +index f1bb4e1..768525c 100644 +--- a/src/programs/pkcheck.c ++++ b/src/programs/pkcheck.c +@@ -363,6 +363,11 @@ main (int argc, char *argv[]) + local_agent_handle = NULL; + ret = 126; + ++ if (argc < 1) ++ { ++ exit(126); ++ } ++ + /* Disable remote file access from GIO. */ + setenv ("GIO_USE_VFS", "local", 1); + +diff --git a/src/programs/pkexec.c b/src/programs/pkexec.c +index 7698c5c..84e5ef6 100644 +--- a/src/programs/pkexec.c ++++ b/src/programs/pkexec.c +@@ -488,6 +488,15 @@ main (int argc, char *argv[]) + pid_t pid_of_caller; + gpointer local_agent_handle; + ++ ++ /* ++ * If 'pkexec' is called THIS wrong, someone's probably evil-doing. Don't be nice, just bail out. ++ */ ++ if (argc<1) ++ { ++ exit(127); ++ } ++ + ret = 127; + authority = NULL; + subject = NULL; +@@ -614,10 +623,10 @@ main (int argc, char *argv[]) + + path = g_strdup (pwstruct.pw_shell); + if (!path) +- { ++ { + g_printerr ("No shell configured or error retrieving pw_shell\n"); + goto out; +- } ++ } + /* If you change this, be sure to change the if (!command_line) + case below too */ + command_line = g_strdup (path); +@@ -636,7 +645,15 @@ main (int argc, char *argv[]) + goto out; + } + g_free (path); +- argv[n] = path = s; ++ path = s; ++ ++ /* argc<2 and pkexec runs just shell, argv is guaranteed to be null-terminated. ++ * /-less shell shouldn't happen, but let's be defensive and don't write to null-termination ++ */ ++ if (argv[n] != NULL) ++ { ++ argv[n] = path; ++ } + } + if (access (path, F_OK) != 0) + { +-- +GitLab + diff --git a/source/l/polkit/polkit.SlackBuild b/source/l/polkit/polkit.SlackBuild index 61304ea21..13e1f948f 100755 --- a/source/l/polkit/polkit.SlackBuild +++ b/source/l/polkit/polkit.SlackBuild @@ -26,7 +26,7 @@ cd $(dirname $0) ; CWD=$(pwd) PKGNAM=polkit VERSION=${VERSION:-$(echo $PKGNAM-*.tar.?z | rev | cut -f 3- -d . | cut -f 1 -d - | rev)} -BUILD=${BUILD:-1} +BUILD=${BUILD:-2} # Automatically determine the architecture we're building on: if [ -z "$ARCH" ]; then @@ -80,7 +80,8 @@ find . \ \( -perm 666 -o -perm 664 -o -perm 600 -o -perm 444 -o -perm 440 -o -perm 400 \) \ -exec chmod 644 {} \+ -zcat $CWD/dont-set-wheel-group-as-admin.diff.gz | patch -p1 || exit 1 +zcat $CWD/dont-set-wheel-group-as-admin.diff.gz | patch -p1 --verbose || exit 1 +zcat $CWD/a2bf5c9c83b6ae46cbd5c779d3055bff81ded683.patch.gz | patch -p1 --verbose || exit 1 # https://gitlab.freedesktop.org/polkit/polkit/-/issues/29 zcat $CWD/0001-configure-fix-elogind-support.patch.gz | patch -p1 || exit 1