Commit graph

591 commits

Author SHA1 Message Date
Patrick J Volkerding
51dac8e0d6 Wed Jun 3 20:21:52 UTC 2020
a/dbus-1.12.18-x86_64-1.txz:  Upgraded.
a/kernel-generic-5.4.44-x86_64-1.txz:  Upgraded.
a/kernel-huge-5.4.44-x86_64-1.txz:  Upgraded.
a/kernel-modules-5.4.44-x86_64-1.txz:  Upgraded.
d/bison-3.6.3-x86_64-1.txz:  Upgraded.
d/kernel-headers-5.4.44-x86-1.txz:  Upgraded.
d/subversion-1.14.0-x86_64-1.txz:  Upgraded.
k/kernel-source-5.4.44-noarch-1.txz:  Upgraded.
l/harfbuzz-2.6.7-x86_64-1.txz:  Upgraded.
l/libcap-2.36-x86_64-1.txz:  Upgraded.
l/librsvg-2.48.6-x86_64-1.txz:  Upgraded.
n/gnutls-3.6.14-x86_64-1.txz:  Upgraded.
  Fixed insecure session ticket key construction, since 3.6.4. The TLS server
  would not bind the session ticket encryption key with a value supplied by
  the application until the initial key rotation, allowing attacker to bypass
  authentication in TLS 1.3 and recover previous conversations in TLS 1.2.
  [GNUTLS-SA-2020-06-03, CVSS: high]
  (* Security fix *)
n/iproute2-5.7.0-x86_64-1.txz:  Upgraded.
n/iptables-1.8.5-x86_64-1.txz:  Upgraded.
xap/audacious-4.0.4-x86_64-1.txz:  Upgraded.
xap/audacious-plugins-4.0.4-x86_64-1.txz:  Upgraded.
extra/pure-alsa-system/audacious-plugins-4.0.4-x86_64-1_alsa.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2020-06-04 08:59:54 +02:00
Patrick J Volkerding
611a2c13b5 Tue Jun 2 19:31:39 UTC 2020
a/hwdata-0.336-noarch-1.txz:  Upgraded.
ap/man-db-2.9.2-x86_64-1.txz:  Upgraded.
d/git-2.27.0-x86_64-1.txz:  Upgraded.
d/perl-5.30.3-x86_64-1.txz:  Upgraded.
  Upgraded to IO-Socket-SSL-2.068.
d/strace-5.7-x86_64-1.txz:  Upgraded.
l/libyaml-0.2.5-x86_64-1.txz:  Upgraded.
n/ca-certificates-20200602-noarch-1.txz:  Upgraded.
  This update provides the latest CA certificates to check for the
  authenticity of SSL connections.
n/nghttp2-1.41.0-x86_64-1.txz:  Upgraded.
  This update fixes a security issue where an overly large HTTP/2 SETTINGS
  frame payload causes a denial of service.
  For more information, see:
    https://github.com/nghttp2/nghttp2/security/advisories/GHSA-q5wr-xfw9-q7xr
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11080
  (* Security fix *)
n/proftpd-1.3.6d-x86_64-1.txz:  Upgraded.
  This is a bugfix release:
  Fixed issue with FTPS uploads of large files using TLSv1.3 (Issue #959).
x/intel-vaapi-driver-2.4.1-x86_64-1.txz:  Upgraded.
2020-06-03 08:59:50 +02:00
Patrick J Volkerding
dde17c90da Mon Jun 1 18:27:22 UTC 2020
a/pciutils-3.7.0-x86_64-1.txz:  Upgraded.
l/imagemagick-7.0.10_16-x86_64-1.txz:  Upgraded.
l/lcms2-2.10-x86_64-1.txz:  Upgraded.
l/netpbm-10.90.03-x86_64-1.txz:  Upgraded.
l/qt5-5.15.0-x86_64-1.txz:  Upgraded.
n/iptraf-ng-1.2.0-x86_64-1.txz:  Upgraded.
xap/gnuchess-6.2.7-x86_64-1.txz:  Upgraded.
xap/mozilla-firefox-68.9.0esr-x86_64-1.txz:  Upgraded.
  This release contains security fixes and improvements.
  For more information, see:
    https://www.mozilla.org/en-US/firefox/68.9.0/releasenotes/
  (* Security fix *)
extra/pure-alsa-system/qt5-5.15.0-x86_64-1_alsa.txz:  Upgraded.
2020-06-02 08:59:52 +02:00
Patrick J Volkerding
4490f14406 Sat May 30 21:31:07 UTC 2020
ap/mpg123-1.26.1-x86_64-1.txz:  Upgraded.
d/gyp-20200512_caa60026-x86_64-1.txz:  Added.
l/Mako-1.1.3-x86_64-1.txz:  Upgraded.
l/imagemagick-7.0.10_15-x86_64-1.txz:  Upgraded.
l/librsvg-2.48.5-x86_64-1.txz:  Upgraded.
l/mozilla-nss-3.53-x86_64-1.txz:  Upgraded.
l/vte-0.60.3-x86_64-1.txz:  Upgraded.
n/libgpg-error-1.38-x86_64-1.txz:  Upgraded.
n/libqmi-1.24.14-x86_64-1.txz:  Upgraded.
extra/pure-alsa-system/mpg123-1.26.1-x86_64-1_alsa.txz:  Upgraded.
2020-05-31 08:59:52 +02:00
Patrick J Volkerding
f21d902e06 Fri May 29 21:27:09 UTC 2020
a/mcelog-170-x86_64-1.txz:  Upgraded.
ap/nvme-cli-1.11.2-x86_64-1.txz:  Upgraded.
d/python-setuptools-47.1.1-x86_64-1.txz:  Upgraded.
l/glib-networking-2.64.3-x86_64-1.txz:  Upgraded.
n/NetworkManager-1.24.2-x86_64-1.txz:  Upgraded.
n/fetchmail-6.4.6-x86_64-1.txz:  Upgraded.
2020-05-30 08:59:55 +02:00
Patrick J Volkerding
33e4c65a6c Thu May 28 18:20:36 UTC 2020
a/cryptsetup-2.3.3-x86_64-1.txz:  Upgraded.
a/kernel-generic-5.4.43-x86_64-1.txz:  Upgraded.
a/kernel-huge-5.4.43-x86_64-1.txz:  Upgraded.
a/kernel-modules-5.4.43-x86_64-1.txz:  Upgraded.
d/cmake-3.17.3-x86_64-1.txz:  Upgraded.
d/kernel-headers-5.4.43-x86-1.txz:  Upgraded.
d/python-setuptools-47.1.0-x86_64-1.txz:  Upgraded.
k/kernel-source-5.4.43-noarch-1.txz:  Upgraded.
l/babl-0.1.76-x86_64-1.txz:  Upgraded.
n/openssh-8.3p1-x86_64-1.txz:  Upgraded.
n/rp-pppoe-3.14-x86_64-1.txz:  Upgraded.
x/libdrm-2.4.102-x86_64-1.txz:  Upgraded.
x/mesa-20.1.0-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2020-05-29 08:59:55 +02:00
Patrick J Volkerding
14044bb001 Tue May 26 20:35:03 UTC 2020
ap/mpg123-1.26.0-x86_64-1.txz:  Upgraded.
ap/sqlite-3.32.1-x86_64-1.txz:  Upgraded.
l/keybinder-0.3.1-x86_64-2.txz:  Removed.
l/keybinder3-3.0_0.3.2-x86_64-1.txz:  Added.
n/krb5-1.18.2-x86_64-1.txz:  Upgraded.
n/mutt-1.14.2-x86_64-1.txz:  Upgraded.
xap/gnuplot-5.2.8-x86_64-2.txz:  Rebuilt.
  Rebuilt with Qt5 (uses anti-aliasing to improve the plot output).
extra/aspell-word-lists/aspell-pt-0.50_2-x86_64-5.txz:  Removed.
extra/aspell-word-lists/aspell-pt_PT-20190329_0-x86_64-1.txz:  Upgraded.
  Thanks to sairum for the link to a better word list.
extra/aspell-word-lists/aspell-pt_PT-preao-20190329_0-x86_64-1.txz:  Added.
  Thanks to sairum for the link to a better word list.
extra/pure-alsa-system/mpg123-1.26.0-x86_64-1_alsa.txz:  Upgraded.
2020-05-26 23:59:47 +02:00
Patrick J Volkerding
bda2fc6d37 Sun May 24 18:35:29 UTC 2020
ap/nano-4.9.3-x86_64-1.txz:  Upgraded.
ap/sqlite-3.32.0-x86_64-1.txz:  Upgraded.
d/gdb-9.2-x86_64-1.txz:  Upgraded.
d/parallel-20200522-noarch-1.txz:  Upgraded.
l/imagemagick-7.0.10_14-x86_64-1.txz:  Upgraded.
l/libgphoto2-2.5.25-x86_64-1.txz:  Upgraded.
n/libksba-1.4.0-x86_64-1.txz:  Upgraded.
xfce/thunar-1.8.15-x86_64-1.txz:  Upgraded.
2020-05-25 08:59:53 +02:00
Patrick J Volkerding
0b51abb5ec Sat May 23 00:13:54 UTC 2020
l/libarchive-3.4.3-x86_64-1.txz:  Upgraded.
l/python-six-1.15.0-x86_64-1.txz:  Upgraded.
l/zstd-1.4.5-x86_64-1.txz:  Upgraded.
xap/mozilla-thunderbird-68.8.1-x86_64-1.txz:  Upgraded.
  This is a bugfix release.
  For more information, see:
    https://www.mozilla.org/en-US/thunderbird/68.8.1/releasenotes/
2020-05-23 08:59:52 +02:00
Patrick J Volkerding
bd5ac56451 Fri May 22 04:29:34 UTC 2020
d/Cython-0.29.19-x86_64-1.txz:  Upgraded.
kde/kde-workspace-4.11.22-x86_64-9.txz:  Rebuilt.
  kde-np: by default, do not restrict passwordless login for UIDs below 1000,
  but keep the option to do so in the file commented out.
l/ffmpeg-4.2.3-x86_64-1.txz:  Upgraded.
l/iso-codes-4.5.0-noarch-1.txz:  Upgraded.
l/v4l-utils-1.20.0-x86_64-1.txz:  Upgraded.
extra/pure-alsa-system/ffmpeg-4.2.3-x86_64-1_alsa.txz:  Upgraded.
2020-05-22 17:59:50 +02:00
Patrick J Volkerding
5e10042d4b Wed May 20 23:53:44 UTC 2020
a/kernel-firmware-20200519_8ba6fa6-noarch-1.txz:  Upgraded.
a/kernel-generic-5.4.42-x86_64-1.txz:  Upgraded.
a/kernel-huge-5.4.42-x86_64-1.txz:  Upgraded.
a/kernel-modules-5.4.42-x86_64-1.txz:  Upgraded.
a/util-linux-2.35.2-x86_64-1.txz:  Upgraded.
d/kernel-headers-5.4.42-x86-1.txz:  Upgraded.
d/python-pip-20.1.1-x86_64-1.txz:  Upgraded.
k/kernel-source-5.4.42-noarch-1.txz:  Upgraded.
l/glib2-2.64.3-x86_64-1.txz:  Upgraded.
l/mozilla-nss-3.52.1-x86_64-1.txz:  Upgraded.
n/samba-4.12.3-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2020-05-21 08:59:53 +02:00
Patrick J Volkerding
26cd2dd0d1 Tue May 19 19:47:49 UTC 2020
a/shadow-4.8.1-x86_64-8.txz:  Rebuilt.
  It seems that /etc/suauth is not supported when PAM is in use, even if
  configure.ac is hacked to enable it. I've removed the man pages for it,
  and would suggest using sudo as a replacement.
l/libexif-0.6.22-x86_64-1.txz:  Upgraded.
  This update fixes bugs and security issues:
  CVE-2018-20030: Fix for recursion DoS
  CVE-2020-13114: Time consumption DoS when parsing canon array markers
  CVE-2020-13113: Potential use of uninitialized memory
  CVE-2020-13112: Various buffer overread fixes due to integer overflows
                  in maker notes
  CVE-2020-0093:  read overflow
  CVE-2019-9278:  replaced integer overflow checks the compiler could
                  optimize away by safer constructs
  CVE-2020-12767: fixed division by zero
  CVE-2016-6328:  fixed integer overflow when parsing maker notes
  CVE-2017-7544:  fixed buffer overread
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20030
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13114
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13113
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13112
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0093
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9278
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12767
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6328
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7544
  (* Security fix *)
l/oniguruma-6.9.5_rev1-x86_64-2.txz:  Rebuilt.
  Rebuilt with --enable-posix-api. Thanks to MisterL.
l/python-packaging-20.4-x86_64-1.txz:  Upgraded.
n/bind-9.16.3-x86_64-1.txz:  Upgraded.
  This update fixes a security issue:
  A malicious actor who intentionally exploits the lack of effective
  limitation on the number of fetches performed when processing referrals
  can, through the use of specially crafted referrals, cause a recursing
  server to issue a very large number of fetches in an attempt to process
  the referral. This has at least two potential effects: The performance of
  the recursing server can potentially be degraded by the additional work
  required to perform these fetches, and the attacker can exploit this
  behavior to use the recursing server as a reflector in a reflection attack
  with a high amplification factor.
  For more information, see:
    https://kb.isc.org/docs/cve-2020-8616
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8616
  (* Security fix *)
x/fontconfig-2.13.92-x86_64-1.txz:  Upgraded.
x/xf86-input-libinput-0.30.0-x86_64-1.txz:  Upgraded.
2020-05-20 09:00:04 +02:00
Patrick J Volkerding
bb7dc1ffb7 Mon May 18 23:30:26 UTC 2020
d/Cython-0.29.18-x86_64-1.txz:  Upgraded.
kde/kde-workspace-4.11.22-x86_64-8.txz:  Rebuilt.
  Added /etc/pam.d/kde-np to fix KDM autologin.
  Thanks to USUARIONUEVO for the bug report.
l/gnu-efi-3.0.12-x86_64-1.txz:  Upgraded.
2020-05-19 08:59:53 +02:00
Patrick J Volkerding
ffef56590d Mon May 18 19:17:21 UTC 2020
Greetings! After three months in /testing, the PAM merge into the main tree
is now complete. When updating, be sure to install the new pam, cracklib, and
libpwquality packages or you may find yourself locked out of your machine.
Otherwise, these changes should be completely transparent and you shouldn't
notice any obvious operational differences. Be careful if you make any changes
in /etc/pam.d/ - leaving an extra console logged in while testing PAM config
changes is a recommended standard procedure. Thanks again to Robby Workman,
Vincent Batts, Phantom X, and ivandi for help implementing this. It's not
done yet and there will be more fine-tuning of the config files, but now we
can move on to build some other updates. Enjoy!
a/cracklib-2.9.7-x86_64-1.txz:  Added.
a/kernel-firmware-20200517_f8d32e4-noarch-1.txz:  Upgraded.
a/libcgroup-0.41-x86_64-7.txz:  Rebuilt.
  Rebuilt to add PAM support.
a/libpwquality-1.4.2-x86_64-1.txz:  Added.
a/lilo-24.2-x86_64-9.txz:  Rebuilt.
  Enable the "compact" option by default.
  liloconfig: correctly set the root partition.
a/pam-1.3.1-x86_64-1.txz:  Added.
a/shadow-4.8.1-x86_64-7.txz:  Rebuilt.
  Rebuilt to add PAM support.
a/utempter-1.2.0-x86_64-1.txz:  Upgraded.
a/util-linux-2.35.1-x86_64-6.txz:  Rebuilt.
  Rebuilt to add PAM support.
a/xfsprogs-5.6.0-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-67.1.
ap/at-3.2.1-x86_64-2.txz:  Rebuilt.
  Rebuilt to add PAM support.
ap/cups-2.3.3-x86_64-2.txz:  Rebuilt.
  Rebuilt to add PAM support.
ap/hplip-3.20.5-x86_64-2.txz:  Rebuilt.
  Rebuilt to add PAM support.
ap/mariadb-10.4.13-x86_64-2.txz:  Rebuilt.
  Rebuilt to add PAM support.
ap/screen-4.8.0-x86_64-2.txz:  Rebuilt.
  Rebuilt to add PAM support.
ap/soma-3.3.0-noarch-1.txz:  Upgraded.
  Thanks to David Woodfall.
ap/sqlite-3.31.1-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-67.1.
ap/sudo-1.9.0-x86_64-2.txz:  Rebuilt.
  Rebuilt to add PAM support.
ap/vim-8.2.0788-x86_64-1.txz:  Upgraded.
d/bison-3.6.2-x86_64-1.txz:  Upgraded.
d/meson-0.54.2-x86_64-1.txz:  Upgraded.
d/python-setuptools-46.4.0-x86_64-1.txz:  Upgraded.
d/vala-0.48.6-x86_64-1.txz:  Upgraded.
kde/calligra-2.9.11-x86_64-36.txz:  Rebuilt.
  Recompiled against icu4c-67.1.
kde/kde-workspace-4.11.22-x86_64-7.txz:  Rebuilt.
  Rebuilt to add PAM support.
l/ConsoleKit2-1.2.1-x86_64-4.txz:  Rebuilt.
  Rebuilt to add PAM support.
l/boost-1.73.0-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-67.1.
l/gnome-keyring-3.36.0-x86_64-2.txz:  Rebuilt.
  Rebuilt to add PAM support.
l/harfbuzz-2.6.6-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-67.1.
l/icu4c-67.1-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
l/imagemagick-7.0.10_13-x86_64-1.txz:  Upgraded.
l/libcap-2.34-x86_64-2.txz:  Rebuilt.
  Rebuilt to add PAM support.
l/libical-3.0.8-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-67.1.
l/libuv-1.38.0-x86_64-1.txz:  Upgraded.
l/libvisio-0.1.7-x86_64-3.txz:  Rebuilt.
  Recompiled against icu4c-67.1.
l/polkit-0.116-x86_64-3.txz:  Rebuilt.
  Rebuilt to add PAM support.
l/qt-4.8.7-x86_64-16.txz:  Rebuilt.
  Recompiled against icu4c-67.1.
l/qt5-5.13.2-x86_64-4.txz:  Rebuilt.
  Recompiled against icu4c-67.1.
l/qt5-webkit-5.212.0_alpha4-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-67.1.
l/raptor2-2.0.15-x86_64-9.txz:  Rebuilt.
  Recompiled against icu4c-67.1.
l/system-config-printer-1.5.12-x86_64-4.txz:  Rebuilt.
  Rebuilt to add PAM support.
l/vte-0.60.2-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-67.1.
n/cifs-utils-6.10-x86_64-4.txz:  Rebuilt.
  Rebuilt to add PAM support.
n/cyrus-sasl-2.1.27-x86_64-4.txz:  Rebuilt.
  Rebuilt to add PAM support.
n/dovecot-2.3.10.1-x86_64-1.txz:  Upgraded.
  Rebuilt to add PAM support.
  Compiled against icu4c-67.1.
  This update fixes several denial-of-service vulnerabilities.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10957
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10958
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10967
  (* Security fix *)
n/mutt-1.14.1-x86_64-1.txz:  Upgraded.
n/netatalk-3.1.12-x86_64-3.txz:  Rebuilt.
  Rebuilt to add PAM support.
n/netkit-rsh-0.17-x86_64-3.txz:  Rebuilt.
  Rebuilt to add PAM support.
n/nss-pam-ldapd-0.9.11-x86_64-1.txz:  Added.
n/openssh-8.2p1-x86_64-3.txz:  Rebuilt.
  Rebuilt to add PAM support.
n/openvpn-2.4.9-x86_64-2.txz:  Rebuilt.
  Rebuilt to add PAM support.
n/pam-krb5-4.9-x86_64-1.txz:  Added.
n/php-7.4.6-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-67.1.
n/popa3d-1.0.3-x86_64-4.txz:  Rebuilt.
  Rebuilt to add PAM support.
n/postfix-3.5.2-x86_64-1.txz:  Upgraded.
  Compiled against icu4c-67.1.
n/ppp-2.4.8-x86_64-2.txz:  Rebuilt.
  Rebuilt to add PAM support.
n/proftpd-1.3.6c-x86_64-2.txz:  Rebuilt.
  Rebuilt to add PAM support.
n/samba-4.12.2-x86_64-2.txz:  Rebuilt.
  Rebuilt to add PAM support.
  Recompiled against icu4c-67.1.
n/tin-2.4.4-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-67.1.
n/vsftpd-3.0.3-x86_64-6.txz:  Rebuilt.
  Rebuilt to add PAM support.
t/texlive-2019.190626-x86_64-4.txz:  Rebuilt.
  Recompiled against icu4c-67.1.
x/vulkan-sdk-1.2.135.0-x86_64-1.txz:  Upgraded.
x/xdm-1.1.11-x86_64-10.txz:  Rebuilt.
  Rebuilt to add PAM support.
x/xisxwayland-1-x86_64-1.txz:  Added.
xap/sane-1.0.30-x86_64-1.txz:  Upgraded.
  This update fixes several security issues.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12867
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12862
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12863
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12865
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12866
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12861
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12864
  (* Security fix *)
xap/vim-gvim-8.2.0788-x86_64-1.txz:  Upgraded.
xap/xlockmore-5.63-x86_64-2.txz:  Rebuilt.
  Rebuilt to add PAM support.
xap/xscreensaver-5.44-x86_64-2.txz:  Rebuilt.
  Rebuilt to add PAM support.
extra/brltty/brltty-6.1-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-67.1.
extra/pure-alsa-system/qt5-5.13.2-x86_64-4_alsa.txz:  Rebuilt.
  Recompiled against icu4c-67.1.
isolinux/initrd.img:  Rebuilt.
  Added PAM libraries, security modules, and config files.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
  Added PAM libraries, security modules, and config files.
2020-05-18 23:25:14 +02:00
Patrick J Volkerding
eba2e5b781 Fri May 15 07:28:15 UTC 2020
Hey folks, just a heads-up that PAM is about to be merged into the main tree.
We can't have it blocking other upgrades any longer. The config files could be
improved (adding support for pam_krb5 and pam_ldap, for example), but they'll
do for now. Have a good weekend, and enjoy these updates! :-)
a/aaa_elflibs-15.0-x86_64-23.txz:  Rebuilt.
  Upgraded: libcap.so.2.34, libelf-0.179.so, liblzma.so.5.2.5,
  libglib-2.0.so.0.6400.2, libgmodule-2.0.so.0.6400.2,
  libgobject-2.0.so.0.6400.2, libgthread-2.0.so.0.6400.2,
  liblber-2.4.so.2.10.13, libldap-2.4.so.2.10.13, libpcre2-8.so.0.10.0.
  Added temporarily in preparation for upgrading icu4c: libicudata.so.65.1,
  libicui18n.so.65.1, libicuio.so.65.1, libicutest.so.65.1, libicutu.so.65.1,
  libicuuc.so.65.1.
a/etc-15.0-x86_64-11.txz:  Rebuilt.
  /etc/passwd: Added ldap (UID 330).
  /etc/group: Added ldap (GID 330).
a/kernel-generic-5.4.41-x86_64-1.txz:  Upgraded.
a/kernel-huge-5.4.41-x86_64-1.txz:  Upgraded.
a/kernel-modules-5.4.41-x86_64-1.txz:  Upgraded.
a/pkgtools-15.0-noarch-33.txz:  Rebuilt.
  setup.services: added support for rc.openldap and rc.openvpn.
ap/hplip-3.20.5-x86_64-1.txz:  Upgraded.
d/kernel-headers-5.4.41-x86-1.txz:  Upgraded.
d/python-setuptools-46.3.0-x86_64-1.txz:  Upgraded.
d/python3-3.8.3-x86_64-1.txz:  Upgraded.
k/kernel-source-5.4.41-noarch-1.txz:  Upgraded.
n/openldap-2.4.50-x86_64-1.txz:  Added.
  This is a complete OpenLDAP package with both client and server support.
  Thanks to Giuseppe Di Terlizzi for help with the server parts.
n/openldap-client-2.4.50-x86_64-1.txz:  Removed.
x/mesa-20.0.7-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
testing/packages/PAM/hplip-3.20.5-x86_64-1_pam.txz:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2020-05-15 17:59:53 +02:00
Patrick J Volkerding
5864796142 Wed May 13 20:01:12 UTC 2020
l/shared-mime-info-2.0-x86_64-2.txz:  Rebuilt.
  Disable fdatasync() usage.
n/ethtool-5.6-x86_64-1.txz:  Upgraded.
2020-05-14 08:59:52 +02:00
Patrick J Volkerding
823b6649c1 Tue May 12 23:49:47 UTC 2020
ap/mariadb-10.4.13-x86_64-1.txz:  Upgraded.
  This update fixes potential denial-of-service vulnerabilities.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2752
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2812
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2814
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2760
  (* Security fix *)
ap/sudo-1.9.0-x86_64-1.txz:  Upgraded.
l/harfbuzz-2.6.6-x86_64-1.txz:  Upgraded.
l/tidy-html5-5.6.0-x86_64-1.txz:  Added.
n/epic5-2.1.2-x86_64-1.txz:  Upgraded.
n/php-7.4.6-x86_64-1.txz:  Upgraded.
  Built using --with-tidy=shared. Thanks to Thom1b.
  This update fixes bugs and security issues:
  Core: Long variables cause OOM and temp files are not cleaned.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11048
  (* Security fix *)
x/libmypaint-1.6.1-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
xap/gimp-2.10.18-x86_64-2.txz:  Rebuilt.
  Recompiled against libmypaint-1.6.1.
testing/packages/PAM/mariadb-10.4.13-x86_64-1_pam.txz:  Upgraded.
  This update fixes potential denial-of-service vulnerabilities.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2752
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2812
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2814
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2760
  (* Security fix *)
testing/packages/PAM/sudo-1.9.0-x86_64-1_pam.txz:  Upgraded.
2020-05-13 08:59:54 +02:00
Patrick J Volkerding
1bba447d7a Mon May 11 19:13:27 UTC 2020
l/python-appdirs-1.4.4-x86_64-1.txz:  Upgraded.
xap/xlockmore-5.63-x86_64-1.txz:  Upgraded.
testing/packages/PAM/xlockmore-5.63-x86_64-1_pam.txz:  Upgraded.
2020-05-12 08:59:54 +02:00
Patrick J Volkerding
eb9aabd4fd Sun May 10 23:34:28 UTC 2020
a/btrfs-progs-5.6.1-x86_64-1.txz:  Upgraded.
a/kernel-generic-5.4.40-x86_64-1.txz:  Upgraded.
a/kernel-huge-5.4.40-x86_64-1.txz:  Upgraded.
a/kernel-modules-5.4.40-x86_64-1.txz:  Upgraded.
d/bison-3.6.1-x86_64-1.txz:  Upgraded.
d/kernel-headers-5.4.40-x86-1.txz:  Upgraded.
d/python-setuptools-46.2.0-x86_64-1.txz:  Upgraded.
k/kernel-source-5.4.40-noarch-1.txz:  Upgraded.
l/pcre2-10.35-x86_64-1.txz:  Upgraded.
l/shared-mime-info-2.0-x86_64-1.txz:  Upgraded.
n/ModemManager-1.12.10-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2020-05-11 08:59:53 +02:00
Patrick J Volkerding
8c0924cc55 Sat May 9 20:49:43 UTC 2020
ap/pamixer-1.4-x86_64-5.txz:  Rebuilt.
  Recompiled against boost-1.73.0.
d/Cython-0.29.17-x86_64-2.txz:  Rebuilt.
  Added cython3 symlink.
kde/calligra-2.9.11-x86_64-35.txz:  Rebuilt.
  Recompiled against boost-1.73.0.
l/akonadi-1.13.0-x86_64-15.txz:  Rebuilt.
  Recompiled against boost-1.73.0.
l/boost-1.73.0-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
l/freetype-2.10.2-x86_64-1.txz:  Upgraded.
l/imagemagick-7.0.10_11-x86_64-1.txz:  Upgraded.
n/libqmi-1.24.12-x86_64-1.txz:  Upgraded.
xap/blueman-2.1.3-x86_64-1.txz:  Upgraded.
testing/packages/PAM/pam-krb5-4.9-x86_64-1_pam.txz:  Added.
  Thanks to Bart van der Hall for the packaging hints.
2020-05-10 08:59:54 +02:00
Patrick J Volkerding
04ebdce888 Fri May 8 21:25:24 UTC 2020
a/shadow-4.8.1-x86_64-6.txz:  Rebuilt.
  Include manpages for sulogin(8).
a/util-linux-2.35.1-x86_64-5.txz:  Rebuilt.
ap/sysstat-12.3.3-x86_64-1.txz:  Upgraded.
d/bison-3.6-x86_64-1.txz:  Upgraded.
l/jansson-2.13.1-x86_64-1.txz:  Upgraded.
n/NetworkManager-1.24.0-x86_64-1.txz:  Upgraded.
n/fetchmail-6.4.5-x86_64-1.txz:  Upgraded.
testing/packages/PAM/shadow-4.8.1-x86_64-6_pam.txz:  Rebuilt.
  Include manpages for sulogin(8).
  Use this version of /bin/su.
testing/packages/PAM/util-linux-2.35.1-x86_64-5_pam.txz:  Rebuilt.
  Don't use this version of /bin/su.
2020-05-09 08:59:52 +02:00
Patrick J Volkerding
7f9672ea57 Thu May 7 01:30:11 UTC 2020
a/kernel-generic-5.4.39-x86_64-1.txz:  Upgraded.
a/kernel-huge-5.4.39-x86_64-1.txz:  Upgraded.
a/kernel-modules-5.4.39-x86_64-1.txz:  Upgraded.
d/kernel-headers-5.4.39-x86-1.txz:  Upgraded.
k/kernel-source-5.4.39-noarch-1.txz:  Upgraded.
   HUGETLBFS n -> y
   JUMP_LABEL n -> y
  +CGROUP_HUGETLB n
  +HUGETLB_PAGE y
  +STATIC_KEYS_SELFTEST n
  Thanks to camerabambai.
l/libspectre-0.2.9-x86_64-1.txz:  Upgraded.
l/pygobject3-3.36.1-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2020-05-07 08:59:50 +02:00
Patrick J Volkerding
33be03fb13 Tue May 5 20:21:27 UTC 2020
a/hwdata-0.335-noarch-1.txz:  Upgraded.
ap/tmux-3.1b-x86_64-1.txz:  Upgraded.
l/libcap-2.34-x86_64-1.txz:  Upgraded.
n/mutt-1.14.0-x86_64-1.txz:  Upgraded.
n/nfs-utils-2.4.3-x86_64-3.txz:  Rebuilt.
  Added /var/lib/nfs/nfsdcltrack database directory for nfsdcltrack.
  Thanks to upnort.
x/xterm-356-x86_64-1.txz:  Upgraded.
xap/NetworkManager-openvpn-1.8.12-x86_64-1.txz:  Added.
  Thanks to Robby Workman.
xap/mozilla-firefox-68.8.0esr-x86_64-1.txz:  Upgraded.
  This release contains security fixes and improvements.
  For more information, see:
    https://www.mozilla.org/en-US/firefox/68.8.0/releasenotes/
    https://www.mozilla.org/security/advisories/mfsa2020-17/
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12387
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12388
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12389
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6831
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12392
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12393
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12395
  (* Security fix *)
xap/mozilla-thunderbird-68.8.0-x86_64-1.txz:  Upgraded.
  This release contains security fixes and improvements.
  For more information, see:
    https://www.mozilla.org/en-US/thunderbird/68.8.0/releasenotes/
  (* Security fix *)
testing/packages/PAM/libcap-2.34-x86_64-1_pam.txz:  Upgraded.
2020-05-06 08:59:52 +02:00
Patrick J Volkerding
df4c9b0919 Sun May 3 06:47:41 UTC 2020
a/kernel-generic-5.4.38-x86_64-1.txz:  Upgraded.
a/kernel-huge-5.4.38-x86_64-1.txz:  Upgraded.
a/kernel-modules-5.4.38-x86_64-1.txz:  Upgraded.
d/kernel-headers-5.4.38-x86-1.txz:  Upgraded.
d/mercurial-5.4-x86_64-1.txz:  Upgraded.
k/kernel-source-5.4.38-noarch-1.txz:  Upgraded.
l/mozilla-nss-3.52-x86_64-1.txz:  Upgraded.
l/python-distro-1.5.0-x86_64-1.txz:  Upgraded.
l/python-pillow-7.1.2-x86_64-1.txz:  Upgraded.
l/v4l-utils-1.18.1-x86_64-1.txz:  Upgraded.
xap/seamonkey-2.53.2-x86_64-1.txz:  Upgraded.
  This update contains security fixes and improvements.
  For more information, see:
    https://www.seamonkey-project.org/releases/seamonkey2.53.2
  (* Security fix *)
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2020-05-03 17:59:53 +02:00
Patrick J Volkerding
5d2f345306 Fri May 1 18:05:38 UTC 2020
a/cryptsetup-2.3.2-x86_64-1.txz:  Upgraded.
a/sysvinit-scripts-2.1-noarch-30.txz:  Rebuilt.
  rc.S: contents of mounts below /run or /var/run should be visible in both
  /run and /var/run. Thanks to Markus Wiesner.
d/Cython-0.29.17-x86_64-1.txz:  Upgraded.
  Dropped python2 support.
d/python-pip-20.1-x86_64-1.txz:  Upgraded.
  Dropped python2 support.
d/python-setuptools-46.1.3-x86_64-1.txz:  Upgraded.
  Dropped python2 support.
l/M2Crypto-0.35.2-x86_64-5.txz:  Rebuilt.
  Dropped python2 support.
l/Mako-1.1.2-x86_64-2.txz:  Rebuilt.
  Dropped python2 support.
l/gsettings-desktop-schemas-3.36.1-x86_64-1.txz:  Upgraded.
l/libzip-1.6.1-x86_64-2.txz:  Rebuilt.
  Recompiled against nettle-3.6.
l/oniguruma-6.9.5_rev1-x86_64-1.txz:  Upgraded.
l/pycairo-1.19.1-x86_64-1.txz:  Upgraded.
  Dropped python2 support.
l/pycups-2.0.1-x86_64-1.txz:  Upgraded.
  Dropped python2 support.
l/pycurl-7.43.0.5-x86_64-1.txz:  Upgraded.
  Dropped python2 support.
l/pyparsing-2.4.7-x86_64-1.txz:  Upgraded.
  Dropped python2 support.
l/python-appdirs-1.4.3-x86_64-5.txz:  Rebuilt.
  Dropped python2 support.
l/python-certifi-2020.4.5.1-x86_64-1.txz:  Upgraded.
  Dropped python2 support.
l/python-chardet-3.0.4-x86_64-5.txz:  Rebuilt.
  Dropped python2 support.
l/python-docutils-0.16-x86_64-3.txz:  Rebuilt.
  Dropped python2 support.
l/python-enum34-1.1.10-x86_64-1.txz:  Removed.
l/python-future-0.18.2-x86_64-2.txz:  Rebuilt.
  Dropped python2 support.
l/python-idna-2.9-x86_64-2.txz:  Rebuilt.
  Dropped python2 support.
l/python-notify2-0.3.1-x86_64-5.txz:  Rebuilt.
  Dropped python2 support.
l/python-packaging-20.3-x86_64-2.txz:  Rebuilt.
  Dropped python2 support.
l/python-ply-3.11-x86_64-3.txz:  Rebuilt.
  Dropped python2 support.
l/python-pygments-2.6.1-x86_64-1.txz:  Upgraded.
  Dropped python2 support.
l/python-requests-2.23.0-x86_64-2.txz:  Rebuilt.
  Dropped python2 support.
l/python-sane-2.8.3-x86_64-5.txz:  Rebuilt.
  Dropped python2 support.
l/python-six-1.14.0-x86_64-2.txz:  Rebuilt.
  Dropped python2 support.
l/python-urllib3-1.25.9-x86_64-1.txz:  Upgraded.
  Dropped python2 support.
l/python2-module-collection-2.7.18-x86_64-1.txz:  Added.
  Time to quarantine these python2 modules and pin the versions where they
  are (or in the case of setuptools, downgrade to the last version that doesn't
  complain). This will keep most of the standard python2 add-ons in one package
  so that we can upgrade modules for python3 without having to worry about
  python2 support getting dropped upstream.
n/dnsmasq-2.81-x86_64-2.txz:  Rebuilt.
  Recompiled against nettle-3.6.
n/gnutls-3.6.13-x86_64-2.txz:  Rebuilt.
  Recompiled against nettle-3.6.
n/nettle-3.6-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
x/mesa-20.0.6-x86_64-1.txz:  Upgraded.
x/pyxdg-0.26-x86_64-3.txz:  Rebuilt.
  Dropped python2 support.
x/ttf-tlwg-0.7.2-noarch-1.txz:  Upgraded.
x/xorg-server-1.20.8-x86_64-2.txz:  Rebuilt.
  Recompiled against nettle-3.6.
x/xorg-server-xephyr-1.20.8-x86_64-2.txz:  Rebuilt.
  Recompiled against nettle-3.6.
x/xorg-server-xnest-1.20.8-x86_64-2.txz:  Rebuilt.
  Recompiled against nettle-3.6.
x/xorg-server-xvfb-1.20.8-x86_64-2.txz:  Rebuilt.
  Recompiled against nettle-3.6.
x/xorg-server-xwayland-1.20.8-x86_64-2.txz:  Rebuilt.
  Recompiled against nettle-3.6.
x/xterm-355-x86_64-1.txz:  Upgraded.
xap/rdesktop-1.9.0-x86_64-2.txz:  Rebuilt.
  Recompiled against nettle-3.6.
extra/tigervnc/tigervnc-1.10.1-x86_64-3.txz:  Rebuilt.
  Recompiled against nettle-3.6.
2020-05-02 08:59:53 +02:00
Patrick J Volkerding
bb3d80d1a7 Thu Apr 30 04:58:02 UTC 2020
a/kernel-generic-5.4.36-x86_64-1.txz:  Upgraded.
a/kernel-huge-5.4.36-x86_64-1.txz:  Upgraded.
a/kernel-modules-5.4.36-x86_64-1.txz:  Upgraded.
d/kernel-headers-5.4.36-x86-1.txz:  Upgraded.
k/kernel-source-5.4.36-noarch-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2020-04-30 18:00:04 +02:00
Patrick J Volkerding
9c2212f2f0 Wed Apr 29 20:19:12 UTC 2020
ap/tmux-3.1a-x86_64-1.txz:  Upgraded.
d/cmake-3.17.2-x86_64-1.txz:  Upgraded.
n/curl-7.70.0-x86_64-1.txz:  Upgraded.
n/openldap-client-2.4.50-x86_64-1.txz:  Upgraded.
xap/audacious-4.0.3-x86_64-1.txz:  Upgraded.
xap/audacious-plugins-4.0.3-x86_64-1.txz:  Upgraded.
extra/pure-alsa-system/audacious-plugins-4.0.3-x86_64-1_alsa.txz:  Upgraded.
2020-04-30 08:59:51 +02:00
Patrick J Volkerding
fc35afb36c Tue Apr 28 20:18:40 UTC 2020
ap/cups-2.3.3-x86_64-1.txz:  Upgraded.
  This update fixes two security issues:
  The ppdOpen function did not handle invalid UI constraint.
  ppdcSource::get_resolution function did not handle invalid resolution strings.
  The ippReadIO function may under-read an extension.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3898
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8842
  (* Security fix *)
l/imagemagick-7.0.10_10-x86_64-1.txz:  Upgraded.
n/samba-4.12.2-x86_64-1.txz:  Upgraded.
  This update fixes two security issues:
  A client combining the 'ASQ' and 'Paged Results' LDAP controls can cause a
  use-after-free in Samba's AD DC LDAP server.
  A deeply nested filter in an un-authenticated LDAP search can exhaust the
  LDAP server's stack memory causing a SIGSEGV.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10700
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10704
  (* Security fix *)
testing/packages/PAM/cups-2.3.3-x86_64-1_pam.txz:  Upgraded.
  This update fixes two security issues:
  The ppdOpen function did not handle invalid UI constraint.
  ppdcSource::get_resolution function did not handle invalid resolution strings.
  The ippReadIO function may under-read an extension.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3898
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8842
  (* Security fix *)
testing/packages/PAM/samba-4.12.2-x86_64-1_pam.txz:  Upgraded.
  This update fixes two security issues:
  A client combining the 'ASQ' and 'Paged Results' LDAP controls can cause a
  use-after-free in Samba's AD DC LDAP server.
  A deeply nested filter in an un-authenticated LDAP search can exhaust the
  LDAP server's stack memory causing a SIGSEGV.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10700
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10704
  (* Security fix *)
2020-04-29 08:59:53 +02:00
Patrick J Volkerding
1cf9f87b65 Mon Apr 27 20:27:30 UTC 2020
a/mkinitrd-1.4.11-x86_64-15.txz:  Rebuilt.
  Use the standard mktemp utility from GNU coreutils, not the old tempfile.
d/help2man-1.47.15-x86_64-1.txz:  Upgraded.
l/aspell-en-2019.10.06_0-x86_64-1.txz:  Upgraded.
l/gtk+3-3.24.20-x86_64-1.txz:  Upgraded.
l/imagemagick-7.0.10_9-x86_64-1.txz:  Upgraded.
n/irssi-1.2.2-x86_64-2.txz:  Rebuilt.
  Fixed ctrl-space killing input with recent glib.
  Thanks to tramtrist and Urchlay.
x/xterm-354-x86_64-1.txz:  Upgraded.
extra/aspell-word-lists/aspell-de-20161207_7_0-x86_64-1.txz:  Upgraded.
extra/aspell-word-lists/aspell-ga-5.1_0-x86_64-1.txz:  Upgraded.
extra/aspell-word-lists/aspell-it-2.4_20070901_0-x86_64-1.txz:  Upgraded.
extra/aspell-word-lists/aspell-ml-0.04_1-x86_64-1.txz:  Upgraded.
extra/aspell-word-lists/aspell-pl-6.0_20200327_0-x86_64-1.txz:  Upgraded.
extra/aspell-word-lists/aspell-pt_BR-20131030_12_0-x86_64-1.txz:  Upgraded.
extra/aspell-word-lists/aspell-pt_PT-20190329_1_0-x86_64-1.txz:  Upgraded.
extra/aspell-word-lists/aspell-sk-2.02_0-x86_64-1.txz:  Upgraded.
extra/aspell-word-lists/aspell-tl-0.4_0-x86_64-1.txz:  Upgraded.
2020-04-28 08:59:53 +02:00
Patrick J Volkerding
6e0d30774b Sun Apr 26 18:28:01 UTC 2020
d/meson-0.54.1-x86_64-1.txz:  Upgraded.
l/vte-0.60.2-x86_64-1.txz:  Upgraded.
n/fetchmail-6.4.4-x86_64-1.txz:  Upgraded.
n/s-nail-14.9.19-x86_64-1.txz:  Upgraded.
2020-04-27 08:59:52 +02:00
Patrick J Volkerding
e6a0a756a3 Sun Apr 26 03:34:28 UTC 2020
d/rust-1.43.0-x86_64-2.txz:  Rebuilt.
  Patched and recompiled with the system LLVM 10 instead of the bundled LLVM 9.
2020-04-26 08:59:53 +02:00
Patrick J Volkerding
fc0b7eb5cb Fri Apr 24 18:54:41 UTC 2020
a/bash-5.0.017-x86_64-1.txz:  Upgraded.
a/kernel-generic-5.4.35-x86_64-1.txz:  Upgraded.
a/kernel-huge-5.4.35-x86_64-1.txz:  Upgraded.
a/kernel-modules-5.4.35-x86_64-1.txz:  Upgraded.
a/mcelog-169-x86_64-1.txz:  Upgraded.
ap/nvme-cli-1.11.1-x86_64-1.txz:  Upgraded.
ap/powertop-2.12-x86_64-1.txz:  Upgraded.
ap/tmux-3.1-x86_64-1.txz:  Upgraded.
d/kernel-headers-5.4.35-x86-1.txz:  Upgraded.
d/parallel-20200422-noarch-1.txz:  Upgraded.
d/rust-1.43.0-x86_64-1.txz:  Upgraded.
d/vala-0.48.5-x86_64-1.txz:  Upgraded.
k/kernel-source-5.4.35-noarch-1.txz:  Upgraded.
l/gmm-5.4-noarch-1.txz:  Upgraded.
l/librsvg-2.48.4-x86_64-1.txz:  Upgraded.
l/sip-4.19.22-x86_64-1.txz:  Upgraded.
n/dhcpcd-8.1.9-x86_64-1.txz:  Upgraded.
x/mesa-20.0.5-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2020-04-25 08:59:53 +02:00
Patrick J Volkerding
bf29f9a870 Wed Apr 22 02:19:37 UTC 2020
a/kernel-firmware-20200421_78c0348-noarch-1.txz:  Upgraded.
a/kernel-generic-5.4.34-x86_64-1.txz:  Upgraded.
a/kernel-huge-5.4.34-x86_64-1.txz:  Upgraded.
a/kernel-modules-5.4.34-x86_64-1.txz:  Upgraded.
a/openssl-solibs-1.1.1g-x86_64-1.txz:  Upgraded.
d/git-2.26.2-x86_64-1.txz:  Upgraded.
  This update fixes a security issue:
  With a crafted URL that contains a newline or empty host, or lacks
  a scheme, the credential helper machinery can be fooled into
  providing credential information that is not appropriate for the
  protocol in use and host being contacted.
  Unlike the vulnerability CVE-2020-5260 fixed in v2.17.4, the
  credentials are not for a host of the attacker's choosing; instead,
  they are for some unspecified host (based on how the configured
  credential helper handles an absent "host" parameter).
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11008
  (* Security fix *)
d/kernel-headers-5.4.34-x86-1.txz:  Upgraded.
d/vala-0.48.4-x86_64-1.txz:  Upgraded.
k/kernel-source-5.4.34-noarch-1.txz:  Upgraded.
  INFINIBAND_CXGB3 n -> m
  INFINIBAND_IPOIB_CM n -> y
  INFINIBAND_IPOIB_DEBUG_DATA n -> y
  Thanks to Karl Magnus Kolstø.
l/M2Crypto-0.35.2-x86_64-4.txz:  Rebuilt.
  Don't package typing-3.7.4.1 for python3.
l/netpbm-10.90.01-x86_64-1.txz:  Upgraded.
n/openssl-1.1.1g-x86_64-1.txz:  Upgraded.
  This update fixes a security issue:
  Fixed segmentation fault in SSL_check_chain() that could be exploited by a
  malicious peer in a Denial of Service attack.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1967
  (* Security fix *)
x/libva-2.7.1-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
testing/packages/PAM/openvpn-2.4.9-x86_64-1_pam.txz:  Upgraded.
  This update fixes a security issue:
  Fix illegal client float. Thanks to Lev Stipakov.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11810
  (* Security fix *)
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2020-04-22 08:59:52 +02:00
Patrick J Volkerding
72b3c9e90f Tue Apr 21 02:45:06 UTC 2020
d/python-2.7.17-x86_64-2.txz:  Removed.
d/python2-2.7.18-x86_64-1.txz:  Added.
  OK, I know a few people got excited seeing python-2 removed in the previous
  entry, but it's just being renamed to python2 for consistency with the
  python3 package. It's DOA though, and is the final release of the already EOL
  python 2 branch (a "commemorative" release as they say in the announcement).
l/M2Crypto-0.35.2-x86_64-3.txz:  Rebuilt.
  Added python3 modules. Thanks to sombragris and ponce.
l/harfbuzz-2.6.5-x86_64-1.txz:  Upgraded.
l/imagemagick-7.0.10_7-x86_64-1.txz:  Upgraded.
l/libuv-1.37.0-x86_64-1.txz:  Upgraded.
l/libyaml-0.2.4-x86_64-1.txz:  Upgraded.
l/oniguruma-6.9.5-x86_64-1.txz:  Upgraded.
x/pixman-0.40.0-x86_64-1.txz:  Upgraded.
2020-04-21 08:59:53 +02:00
Patrick J Volkerding
a4a9ee5efe Sun Apr 19 21:06:43 UTC 2020
l/neon-0.31.1-x86_64-1.txz:  Upgraded.
n/postfix-3.5.1-x86_64-1.txz:  Upgraded.
n/s-nail-14.9.18-x86_64-1.txz:  Upgraded.
xap/gnuchess-6.2.6-x86_64-1.txz:  Upgraded.
2020-04-20 08:59:52 +02:00
Patrick J Volkerding
c55b2370e9 Fri Apr 17 21:38:36 UTC 2020
a/kernel-firmware-20200417_6314fa0-noarch-1.txz:  Upgraded.
a/kernel-generic-5.4.33-x86_64-1.txz:  Upgraded.
a/kernel-huge-5.4.33-x86_64-1.txz:  Upgraded.
a/kernel-modules-5.4.33-x86_64-1.txz:  Upgraded.
d/kernel-headers-5.4.33-x86-1.txz:  Upgraded.
k/kernel-source-5.4.33-noarch-1.txz:  Upgraded.
l/adwaita-icon-theme-3.36.1-noarch-1.txz:  Upgraded.
l/libuv-1.36.0-x86_64-2.txz:  Rebuilt.
  Revert commits that cause BIND to crash. Thanks to Markus Wiesner.
l/wavpack-5.3.0-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2020-04-18 08:59:53 +02:00
Patrick J Volkerding
3021bc8054 Fri Apr 17 04:03:54 UTC 2020
ap/rpm-4.15.1-x86_64-3.txz:  Rebuilt.
  Dropped python2 modules.
l/libcaca-0.99.beta19-x86_64-6.txz:  Rebuilt.
  Dropped python2 modules.
l/libuv-1.36.0-x86_64-1.txz:  Upgraded.
l/libwebp-1.1.0-x86_64-2.txz:  Rebuilt.
  Dropped python2 modules.
l/python-distro-1.4.0-x86_64-2.txz:  Rebuilt.
  Dropped python2 modules.
l/python-docutils-0.16-x86_64-2.txz:  Rebuilt.
  Replace /usr/bin scripts with python3 versions.
l/system-config-printer-1.5.12-x86_64-3.txz:  Rebuilt.
  Dropped python2 modules.
n/openvpn-2.4.9-x86_64-1.txz:  Upgraded.
  This update fixes a security issue:
  Fix illegal client float. Thanks to Lev Stipakov.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11810
  (* Security fix *)
extra/xf86-video-nouveau-blacklist/xf86-video-nouveau-blacklist-1.0-noarch-1.txz:  Added.
  If it is easier for people using slackpkg to leave xf86-video-nouveau
  installed and change the name of this package from xf86-video-nouveau to
  xf86-video-nouveau-blacklist with a $VERSION of 1.0, then so be it.
extra/xf86-video-nouveau-blacklist/xf86-video-nouveau-blacklist-noarch-1.txz:  Removed.
2020-04-17 17:59:56 +02:00
Patrick J Volkerding
56d77dd7f4 Wed Apr 15 19:52:52 UTC 2020
a/xfsprogs-5.6.0-x86_64-1.txz:  Upgraded.
l/gtk+3-3.24.18-x86_64-2.txz:  Rebuilt.
  Fixed the version number embedded in pkg-config files and elsewhere.
  Thanks to davjohn for the bug report.
n/bind-9.16.2-x86_64-1.txz:  Upgraded.
  This update fixes a security issue:
  DNS rebinding protection was ineffective when BIND 9 is configured as a
  forwarding DNS server. Found and responsibly reported by Tobias Klein.
  [GL #1574]
  (* Security fix *)
2020-04-16 08:59:52 +02:00
Patrick J Volkerding
4bb8e72194 Tue Apr 14 22:26:11 UTC 2020
a/gawk-5.1.0-x86_64-1.txz:  Upgraded.
a/gettext-0.20.2-x86_64-1.txz:  Upgraded.
d/gettext-tools-0.20.2-x86_64-1.txz:  Upgraded.
d/git-2.26.1-x86_64-1.txz:  Upgraded.
  This update fixes a security issue:
  With a crafted URL that contains a newline in it, the credential helper
  machinery can be fooled to give credential information for a wrong host.
  The attack has been made impossible by forbidding a newline character in
  any value passed via the credential protocol. Credit for finding the
  vulnerability goes to Felix Wilhelm of Google Project Zero.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-5260
  (* Security fix *)
l/glib-networking-2.64.2-x86_64-1.txz:  Upgraded.
l/libsecret-0.20.3-x86_64-1.txz:  Upgraded.
n/php-7.4.5-x86_64-1.txz:  Upgraded.
x/xorgproto-2020.1-x86_64-1.txz:  Upgraded.
xap/audacious-4.0.2-x86_64-1.txz:  Upgraded.
xap/audacious-plugins-4.0.2-x86_64-1.txz:  Upgraded.
extra/pure-alsa-system/audacious-plugins-4.0.2-x86_64-1_alsa.txz:  Upgraded.
2020-04-15 08:59:52 +02:00
Patrick J Volkerding
aafeea9fc4 Mon Apr 13 22:16:49 UTC 2020
a/kernel-firmware-20200413_64dba0f-noarch-1.txz:  Upgraded.
a/kernel-generic-5.4.32-x86_64-1.txz:  Upgraded.
a/kernel-huge-5.4.32-x86_64-1.txz:  Upgraded.
a/kernel-modules-5.4.32-x86_64-1.txz:  Upgraded.
d/doxygen-1.8.18-x86_64-1.txz:  Upgraded.
d/kernel-headers-5.4.32-x86-1.txz:  Upgraded.
k/kernel-source-5.4.32-noarch-1.txz:  Upgraded.
n/dhcpcd-8.1.8-x86_64-1.txz:  Upgraded.
x/libvdpau-1.4-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2020-04-14 08:59:43 +02:00
Patrick J Volkerding
8efda2a1ab Sun Apr 12 20:02:28 UTC 2020
ap/man-pages-5.06-noarch-1.txz:  Upgraded.
l/libyaml-0.2.3-x86_64-1.txz:  Upgraded.
n/dnsmasq-2.81-x86_64-1.txz:  Upgraded.
x/libinput-1.15.5-x86_64-1.txz:  Upgraded.
2020-04-13 08:59:51 +02:00
Patrick J Volkerding
4907ec15b8 Fri Apr 10 20:33:06 UTC 2020
ap/cups-filters-1.27.4-x86_64-1.txz:  Upgraded.
ap/qpdf-10.0.1-x86_64-1.txz:  Upgraded.
ap/sysstat-12.3.2-x86_64-1.txz:  Upgraded.
l/gtk+3-3.24.18-x86_64-1.txz:  Upgraded.
l/librsvg-2.48.3-x86_64-1.txz:  Upgraded.
n/libqmi-1.24.10-x86_64-1.txz:  Upgraded.
n/libtirpc-1.2.6-x86_64-1.txz:  Upgraded.
2020-04-11 08:59:51 +02:00
Patrick J Volkerding
e35c3a1aa0 Thu Apr 9 22:20:10 UTC 2020
d/cmake-3.17.1-x86_64-1.txz:  Upgraded.
l/glib2-2.64.2-x86_64-1.txz:  Upgraded.
l/libssh-0.9.4-x86_64-1.txz:  Upgraded.
  Fixed possible DoS in client and server when handling AES-CTR keys
  with OpenSSL.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1730
  (* Security fix *)
2020-04-10 08:59:49 +02:00
Patrick J Volkerding
648447b38a Thu Apr 9 00:53:59 UTC 2020
a/kernel-generic-5.4.31-x86_64-1.txz:  Upgraded.
a/kernel-huge-5.4.31-x86_64-1.txz:  Upgraded.
a/kernel-modules-5.4.31-x86_64-1.txz:  Upgraded.
d/kernel-headers-5.4.31-x86-1.txz:  Upgraded.
k/kernel-source-5.4.31-noarch-1.txz:  Upgraded.
l/mozilla-nss-3.51.1-x86_64-1.txz:  Upgraded.
n/samba-4.12.1-x86_64-1.txz:  Upgraded.
xap/mozilla-thunderbird-68.7.0-x86_64-1.txz:  Upgraded.
  This release contains security fixes and improvements.
  For more information, see:
    https://www.mozilla.org/en-US/thunderbird/68.7.0/releasenotes/
  (* Security fix *)
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2020-04-09 08:59:49 +02:00
Patrick J Volkerding
6c51ff9eac Tue Apr 7 22:23:02 UTC 2020
testing/packages/PAM/samba-4.12.1-x86_64-1_pam.txz:  Upgraded.
2020-04-08 08:59:50 +02:00
Patrick J Volkerding
3f40480143 Mon Apr 6 21:23:19 UTC 2020
ap/vim-8.2.0521-x86_64-1.txz:  Upgraded.
d/vala-0.48.3-x86_64-1.txz:  Upgraded.
l/imagemagick-7.0.10_5-x86_64-1.txz:  Upgraded.
x/compiz-0.8.18-x86_64-1.txz:  Upgraded.
xap/audacious-4.0.1-x86_64-1.txz:  Upgraded.
xap/audacious-plugins-4.0.1-x86_64-1.txz:  Upgraded.
xap/vim-gvim-8.2.0521-x86_64-1.txz:  Upgraded.
extra/brltty/brltty-6.1-x86_64-1.txz:  Upgraded.
extra/pure-alsa-system/audacious-plugins-4.0.1-x86_64-1_alsa.txz:  Upgraded.
testing/packages/PAM/sudo-1.8.31p1-x86_64-1_pam.txz:  Upgraded.
2020-04-07 08:59:49 +02:00
Patrick J Volkerding
c83fbfbb71 Sun Apr 5 21:02:32 UTC 2020
d/bison-3.5.4-x86_64-1.txz:  Upgraded.
kde/k3b-2.0.3-x86_64-7.txz:  Rebuilt.
  Recompiled against libdvdread-6.1.1.
l/gobject-introspection-1.64.1-x86_64-1.txz:  Upgraded.
l/imagemagick-7.0.10_4-x86_64-1.txz:  Upgraded.
l/libdvdnav-6.1.0-x86_64-2.txz:  Rebuilt.
  Recompiled against libdvdread-6.1.1.
  Who bumps an .soname and only boosts the version number by 0.0.1?
  Anyway, sorry to drop the ball a second time. I'll try to avoid this.
  Thanks to gmgf for the bug report.
n/fetchmail-6.4.3-x86_64-1.txz:  Upgraded.
tcl/tclx-8.4.4-x86_64-1.txz:  Upgraded.
xap/MPlayer-20200103-x86_64-2.txz:  Rebuilt.
  Recompiled against libdvdread-6.1.1.
xap/windowmaker-0.95.9-x86_64-1.txz:  Upgraded.
xap/xine-lib-1.2.10-x86_64-2.txz:  Rebuilt.
  Recompiled against libdvdread-6.1.1.
extra/pure-alsa-system/MPlayer-20200103-x86_64-2_alsa.txz:  Rebuilt.
  Recompiled against libdvdread-6.1.1.
extra/pure-alsa-system/xine-lib-1.2.10-x86_64-2_alsa.txz:  Rebuilt.
  Recompiled against libdvdread-6.1.1.
2020-04-06 08:59:52 +02:00
Patrick J Volkerding
a9b559dd10 Sun Apr 5 01:33:45 UTC 2020
kde/calligra-2.9.11-x86_64-34.txz:  Rebuilt.
  Recompiled against glew-2.2.0.
  The libGLEW.so.2.2 .soname (rather than libGLEW.so.2) gets me every time.
  Thanks to marrowsuck for the bug report.
l/libdvdread-6.1.1-x86_64-1.txz:  Upgraded.
x/mesa-20.0.4-x86_64-2.txz:  Rebuilt.
  Recompiled against glew-2.2.0.
2020-04-05 08:59:51 +02:00
Patrick J Volkerding
df9b2cc164 Fri Apr 3 23:07:16 UTC 2020
ap/lsof-4.93.2-x86_64-2.txz:  Rebuilt.
  Fixed the manpage. Thanks to kaott.
ap/sc-7.16-x86_64-7.txz:  Rebuilt.
  Brought back the classic SC. Thanks to dive.
d/Cython-0.29.16-x86_64-1.txz:  Upgraded.
d/mercurial-5.3.2-x86_64-1.txz:  Upgraded.
l/gtk+3-3.24.17-x86_64-1.txz:  Upgraded.
n/dhcpcd-8.1.7-x86_64-1.txz:  Upgraded.
n/iproute2-5.6.0-x86_64-1.txz:  Upgraded.
x/libdrm-2.4.101-x86_64-1.txz:  Upgraded.
x/mesa-20.0.4-x86_64-1.txz:  Upgraded.
xap/mozilla-firefox-68.6.1esr-x86_64-1.txz:  Upgraded.
  This release contains critical security fixes and improvements.
  "Under certain conditions, when running the nsDocShell destructor, a race
  condition can cause a use-after-free. We are aware of targeted attacks in
  the wild abusing this flaw."
  "Under certain conditions, when handling a ReadableStream, a race condition
  can cause a use-after-free. We are aware of targeted attacks in the wild
  abusing this flaw."
  For more information, see:
    https://www.mozilla.org/en-US/firefox/68.6.1/releasenotes/
    https://www.mozilla.org/en-US/security/advisories/mfsa2020-11/
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6819
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6820
  (* Security fix *)
2020-04-04 08:59:51 +02:00
Patrick J Volkerding
fe5dc86cee Thu Apr 2 22:13:11 UTC 2020
a/kernel-generic-5.4.30-x86_64-1.txz:  Upgraded.
a/kernel-huge-5.4.30-x86_64-1.txz:  Upgraded.
a/kernel-modules-5.4.30-x86_64-1.txz:  Upgraded.
d/kernel-headers-5.4.30-x86-1.txz:  Upgraded.
k/kernel-source-5.4.30-noarch-1.txz:  Upgraded.
l/atk-2.36.0-x86_64-1.txz:  Upgraded.
l/libunwind-1.4.0-x86_64-1.txz:  Upgraded.
n/conntrack-tools-1.4.6-x86_64-1.txz:  Upgraded.
n/libnetfilter_conntrack-1.0.8-x86_64-1.txz:  Upgraded.
n/libnftnl-1.1.6-x86_64-1.txz:  Upgraded.
n/nftables-0.9.4-x86_64-1.txz:  Upgraded.
x/mesa-20.0.3-x86_64-1.txz:  Upgraded.
xap/network-manager-applet-1.16.0-x86_64-2.txz:  Rebuilt.
  Rebuilt using meson. Thanks to bassmadrigal.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2020-04-03 08:59:50 +02:00