Commit graph

8 commits

Author SHA1 Message Date
Patrick J Volkerding
748f32bae5 Thu Jul 18 20:01:18 UTC 2024
a/kernel-firmware-20240718_058deb9-noarch-1.txz:  Upgraded.
a/kernel-generic-6.9.10-x86_64-1.txz:  Upgraded.
a/kernel-huge-6.9.10-x86_64-1.txz:  Upgraded.
a/kernel-modules-6.9.10-x86_64-1.txz:  Upgraded.
d/cmake-3.30.1-x86_64-1.txz:  Upgraded.
d/kernel-headers-6.9.10-x86-1.txz:  Upgraded.
d/python-setuptools-71.0.3-x86_64-1.txz:  Upgraded.
k/kernel-source-6.9.10-noarch-1.txz:  Upgraded.
kde/labplot-2.11.1-x86_64-1.txz:  Upgraded.
l/python-sphinx-7.4.6-x86_64-1.txz:  Upgraded.
l/sof-firmware-2024.06-noarch-1.txz:  Upgraded.
n/httpd-2.4.62-x86_64-1.txz:  Upgraded.
  This release contains security fixes and improvements.
  The first CVE is for Windows, but the second one is an additional fix for
  the source code disclosure regression when using AddType.
  Users are recommended to upgrade to version 2.4.62 which fixes this issue.
  For more information, see:
    https://downloads.apache.org/httpd/CHANGES_2.4.62
    https://www.cve.org/CVERecord?id=CVE-2024-40898
    https://www.cve.org/CVERecord?id=CVE-2024-40725
  (* Security fix *)
n/openvpn-2.6.12-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2024-07-18 22:52:07 +02:00
Patrick J Volkerding
e0375de323 Thu Apr 4 20:49:23 UTC 2024
a/hwdata-0.381-noarch-1.txz:  Upgraded.
a/kernel-generic-6.6.25-x86_64-1.txz:  Upgraded.
a/kernel-huge-6.6.25-x86_64-1.txz:  Upgraded.
a/kernel-modules-6.6.25-x86_64-1.txz:  Upgraded.
d/cmake-3.29.1-x86_64-1.txz:  Upgraded.
d/kernel-headers-6.6.25-x86-1.txz:  Upgraded.
d/llvm-18.1.3-x86_64-1.txz:  Upgraded.
k/kernel-source-6.6.25-noarch-1.txz:  Upgraded.
kde/kstars-3.7.0-x86_64-1.txz:  Upgraded.
l/enchant-2.6.9-x86_64-1.txz:  Upgraded.
l/libclc-18.1.3-x86_64-1.txz:  Upgraded.
l/sof-firmware-2024.03-noarch-1.txz:  Upgraded.
n/gnutls-3.8.5-x86_64-1.txz:  Upgraded.
n/httpd-2.4.59-x86_64-1.txz:  Upgraded.
  This update fixes security issues:
  HTTP/2 DoS by memory exhaustion on endless continuation frames.
  HTTP Response Splitting in multiple modules.
  HTTP response splitting.
  For more information, see:
    https://downloads.apache.org/httpd/CHANGES_2.4.59
    https://www.cve.org/CVERecord?id=CVE-2024-27316
    https://www.cve.org/CVERecord?id=CVE-2024-24795
    https://www.cve.org/CVERecord?id=CVE-2023-38709
  (* Security fix *)
n/nghttp2-1.61.0-x86_64-1.txz:  Upgraded.
  This update fixes security issues:
  nghttp2 library keeps reading the unbounded number of HTTP/2 CONTINUATION
  frames even after a stream is reset to keep HPACK context in sync. This
  causes excessive CPU usage to decode HPACK stream. nghttp2 v1.61.0 mitigates
  this vulnerability by limiting the number of CONTINUATION frames it can
  accept after a HEADERS frame.
  For more information, see:
    https://github.com/nghttp2/nghttp2/security/advisories/GHSA-x6x3-gv8h-m57q
    https://www.kb.cert.org/vuls/id/421644
    https://www.cve.org/CVERecord?id=CVE-2024-28182
  (* Security fix *)
x/xdg-desktop-portal-1.18.3-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2024-04-04 23:55:21 +02:00
Patrick J Volkerding
367bace23d Tue Mar 5 21:16:50 UTC 2024
l/gst-plugins-bad-free-1.24.0-x86_64-1.txz:  Upgraded.
l/gst-plugins-base-1.24.0-x86_64-1.txz:  Upgraded.
l/gst-plugins-good-1.24.0-x86_64-1.txz:  Upgraded.
l/gst-plugins-libav-1.24.0-x86_64-1.txz:  Upgraded.
l/gstreamer-1.24.0-x86_64-1.txz:  Upgraded.
l/libnice-0.1.22-x86_64-1.txz:  Upgraded.
l/opus-1.5.1-x86_64-1.txz:  Upgraded.
l/pycairo-1.26.0-x86_64-2.txz:  Rebuilt.
  Build with meson so that the pkgconfig file is included. Thanks to jloco.
l/sof-firmware-2023.12.1-noarch-1.txz:  Upgraded.
n/postfix-3.8.6-x86_64-1.txz:  Upgraded.
  This is a bugfix release.
  For more information, see:
    https://www.postfix.org/announcements/postfix-3.8.6.html
xap/mozilla-thunderbird-115.8.1-x86_64-1.txz:  Upgraded.
  This release contains security fixes and improvements.
  For more information, see:
    https://www.mozilla.org/en-US/thunderbird/115.8.1/releasenotes/
    https://www.mozilla.org/en-US/security/advisories/mfsa2024-11/
    https://www.cve.org/CVERecord?id=CVE-2024-1936
  (* Security fix *)
xap/x3270-4.3ga6-x86_64-1.txz:  Upgraded.
xfce/xfce4-screensaver-4.18.3-x86_64-1.txz:  Upgraded.
2024-03-05 23:05:14 +01:00
Patrick J Volkerding
9798eebe58 Wed Dec 20 21:10:47 UTC 2023
a/kernel-firmware-20231215_c156e6b-noarch-1.txz:  Upgraded.
a/kernel-generic-6.6.8-x86_64-1.txz:  Upgraded.
a/kernel-huge-6.6.8-x86_64-1.txz:  Upgraded.
a/kernel-modules-6.6.8-x86_64-1.txz:  Upgraded.
d/kernel-headers-6.6.8-x86-1.txz:  Upgraded.
k/kernel-source-6.6.8-noarch-1.txz:  Upgraded.
l/aspell-0.60.8.1-x86_64-1.txz:  Upgraded.
l/libcap-ng-0.8.4-x86_64-1.txz:  Upgraded.
  Drop python2 support.
l/sof-firmware-2023.12-noarch-1.txz:  Upgraded.
n/bind-9.18.21-x86_64-1.txz:  Upgraded.
n/proftpd-1.3.8b-x86_64-1.txz:  Upgraded.
  This update fixes a security issue:
  mod_sftp: implemented mitigations for "Terrapin" SSH attack.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2023-48795
  (* Security fix *)
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2023-12-20 23:06:42 +01:00
Patrick J Volkerding
ad19829da8 Thu Nov 16 20:51:47 UTC 2023
l/jasper-4.1.0-x86_64-1.txz:  Upgraded.
l/pipewire-0.3.85-x86_64-1.txz:  Upgraded.
l/sof-firmware-2023.09.2-noarch-1.txz:  Upgraded.
n/gnutls-3.8.2-x86_64-1.txz:  Upgraded.
n/libksba-1.6.5-x86_64-1.txz:  Upgraded.
xap/pan-0.155-x86_64-1.txz:  Upgraded.
testing/packages/rust-1.74.0-x86_64-1.txz:  Upgraded.
2023-11-16 22:35:27 +01:00
Patrick J Volkerding
add4749a74 Sat Nov 4 17:56:53 UTC 2023
l/sof-firmware-2023.09.1-noarch-1.txz:  Upgraded.
n/iproute2-6.6.0-x86_64-1.txz:  Upgraded.
x/fcitx5-5.1.3-x86_64-1.txz:  Upgraded.
x/fcitx5-qt-5.1.3-x86_64-1.txz:  Upgraded.
2023-11-04 19:37:45 +01:00
Patrick J Volkerding
83bf1d11ee Fri Sep 29 19:45:18 UTC 2023
d/meson-1.2.2-x86_64-1.txz:  Upgraded.
l/nodejs-20.8.0-x86_64-1.txz:  Upgraded.
l/sof-firmware-2023.09-noarch-1.txz:  Upgraded.
n/bluez-5.70-x86_64-1.txz:  Upgraded.
n/php-8.2.11-x86_64-1.txz:  Upgraded.
  This is a bugfix release.
  For more information, see:
    https://www.php.net/ChangeLog-8.php#8.2.11
x/mesa-23.2.1-x86_64-1.txz:  Upgraded.
x/xman-1.1.6-x86_64-1.txz:  Upgraded.
xfce/xfce4-clipman-plugin-1.6.5-x86_64-1.txz:  Upgraded.
2023-09-29 22:31:51 +02:00
Patrick J Volkerding
8b05abc6cf Wed May 3 19:33:18 UTC 2023
d/llvm-16.0.3-x86_64-1.txz:  Upgraded.
kde/calligra-3.2.1-x86_64-27.txz:  Rebuilt.
  Recompiled against poppler-23.05.0.
kde/cantor-23.04.0-x86_64-2.txz:  Rebuilt.
  Recompiled against poppler-23.05.0.
kde/kfilemetadata-5.105.0-x86_64-2.txz:  Rebuilt.
  Recompiled against poppler-23.05.0.
kde/kile-2.9.93-x86_64-24.txz:  Rebuilt.
  Recompiled against poppler-23.05.0.
kde/kitinerary-23.04.0-x86_64-2.txz:  Rebuilt.
  Recompiled against poppler-23.05.0.
kde/krita-5.1.5-x86_64-7.txz:  Rebuilt.
  Recompiled against poppler-23.05.0.
kde/okular-23.04.0-x86_64-2.txz:  Rebuilt.
  Recompiled against poppler-23.05.0.
l/poppler-23.05.0-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
l/sof-firmware-2.2.4-noarch-1.txz:  Added.
  Thanks to Heinz Wiesinger.
n/whois-5.5.17-x86_64-1.txz:  Upgraded.
  Added the .cd TLD server.
  Updated the -kg NIC handles server name.
  Removed 2 new gTLDs which are no longer active.
2023-05-03 22:45:57 +02:00