a/bzip2-1.0.8-x86_64-1.txz: Upgraded.
Fixes security issues:
bzip2recover: Fix use after free issue with outFile.
Make sure nSelectors is not out of range.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3189https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12900
(* Security fix *)
a/kernel-generic-4.19.59-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.59-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.59-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.59-x86-1.txz: Upgraded.
k/kernel-source-4.19.59-noarch-1.txz: Upgraded.
l/libwebp-1.0.3-x86_64-1.txz: Upgraded.
n/dovecot-2.3.7-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/kernel-generic-4.19.57-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.57-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.57-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.57-x86-1.txz: Upgraded.
k/kernel-source-4.19.57-noarch-1.txz: Upgraded.
l/Mako-1.0.13-x86_64-1.txz: Upgraded.
l/SDL2_image-2.0.5-x86_64-1.txz: Upgraded.
n/postfix-3.4.6-x86_64-1.txz: Upgraded.
xap/blueman-2.0.8-x86_64-2.txz: Rebuilt.
Reverted to blueman-2.0.8 as I'm also seeing connection issues here with
the newer version.
xap/xscreensaver-5.43-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/blueman-2.1-x86_64-1.txz: Upgraded.
This doesn't seem to be working properly. Any patches are welcome.
usb-and-pxe-installers/usbboot.img: Rebuilt.
d/Cython-0.29.11-x86_64-1.txz: Upgraded.
t/texlive-2019.190626-x86_64-2.txz: Rebuilt.
Patched tabu.sty to fix compiling doxygen.
Thanks to Johannes Schoepfer and nobodino.
x/mesa-19.1.1-x86_64-2.txz: Rebuilt.
Don't build the swr Gallium driver on IA32 - it leads to an illegal
instruction startup crash with CPUs that lack AVX support.
Thanks to Jefferson and Johnson.
xfce/thunar-volman-0.9.3-x86_64-1.txz: Upgraded.
xfce/tumbler-0.2.5-x86_64-1.txz: Upgraded.
a/hwdata-0.325-noarch-1.txz: Upgraded.
ap/hplip-3.19.6-x86_64-1.txz: Upgraded.
n/irssi-1.2.1-x86_64-1.txz: Upgraded.
This update fixes a security issue: Use after free when sending SASL login
to the server found by ilbelkyr. May affect the stability of Irssi. SASL
logins may fail, especially during (manual and automated) reconnect.
For more information, see:
https://irssi.org/2019/06/29/irssi-1.2.1-1.1.3-1.0.8-released/https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13045
(* Security fix *)
xfce/Thunar-1.8.7-x86_64-1.txz: Upgraded.
ap/vim-8.1.1601-x86_64-1.txz: Upgraded.
Built with --disable-canberra. Thanks to Markus Wiesner.
l/harfbuzz-2.5.3-x86_64-1.txz: Upgraded.
n/nettle-3.5.1-x86_64-1.txz: Upgraded.
n/nftables-0.9.1-x86_64-1.txz: Upgraded.
t/texlive-2019.190626-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
Thanks to Johannes Schoepfer.
xap/blueman-2.1-x86_64-1.txz: Upgraded.
Thanks to Robby Workman.
xap/vim-gvim-8.1.1601-x86_64-1.txz: Upgraded.
l/giflib-5.2.1-x86_64-2.txz: Rebuilt.
Install obsolete utilities (if they were built).
If you'd like to see them continued, let upstream know.
l/libarchive-3.4.0-x86_64-2.txz: Rebuilt.
Recompiled against nettle-3.5.
l/libzip-1.5.2-x86_64-2.txz: Rebuilt.
Recompiled against nettle-3.5.
n/gnutls-3.6.8-x86_64-2.txz: Rebuilt.
Recompiled against nettle-3.5.
n/nettle-3.5-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
x/xorg-server-1.20.5-x86_64-2.txz: Rebuilt.
Recompiled against nettle-3.5.
x/xorg-server-xephyr-1.20.5-x86_64-2.txz: Rebuilt.
Recompiled against nettle-3.5.
x/xorg-server-xnest-1.20.5-x86_64-2.txz: Rebuilt.
Recompiled against nettle-3.5.
x/xorg-server-xvfb-1.20.5-x86_64-2.txz: Rebuilt.
Recompiled against nettle-3.5.
extra/tigervnc/tigervnc-1.9.0-x86_64-2.txz: Rebuilt.
Recompiled against nettle-3.5.
x/libglvnd-1.1.1-x86_64-2.txz: Rebuilt.
Rebuilt with --sysconfdir=/etc/X11 as expected by the NVIDIA driver.
Thanks to LuckyCyborg.
x/vulkan-sdk-1.1.108.0-x86_64-1.txz: Upgraded.
a/kernel-firmware-20190620_7ae3a09-noarch-1.txz: Upgraded.
l/cairo-1.16.0-x86_64-1.txz: Upgraded.
Reverted to previous cairo to fix Mozilla crashes.
x/igt-gpu-tools-1.24-x86_64-2.txz: Rebuilt.
Rebuilt against cairo-1.16.0.
l/cairo-1.17.2-x86_64-1.txz: Upgraded.
l/expat-2.2.7-x86_64-1.txz: Upgraded.
n/bind-9.14.3-x86_64-1.txz: Upgraded.
Fixed a race condition in dns_dispatch_getnext() that could cause an
assertion failure if a significant number of incoming packets were rejected.
For more information, see:
https://kb.isc.org/docs/cve-2019-6471https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6471
(* Security fix *)
x/igt-gpu-tools-1.24-x86_64-1.txz: Upgraded.
x/xorgproto-2019.1-x86_64-1.txz: Upgraded.
xap/xlockmore-5.57-x86_64-1.txz: Upgraded.
a/less-550-x86_64-1.txz: Upgraded.
d/vala-0.44.4-x86_64-1.txz: Upgraded.
n/curl-7.65.1-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://curl.haxx.se/changes.html
xfce/xfdesktop-4.12.5-x86_64-1.txz: Upgraded.
a/openssl-solibs-1.1.1c-x86_64-1.txz: Upgraded.
l/libevent-2.1.10-x86_64-1.txz: Upgraded.
n/gnupg2-2.2.16-x86_64-1.txz: Upgraded.
n/gnutls-3.6.8-x86_64-1.txz: Upgraded.
n/openssl-1.1.1c-x86_64-1.txz: Upgraded.
This update fixes a security issue:
Prevent over long nonces in ChaCha20-Poly1305.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1543
(* Security fix *)
a/gettext-0.20.1-x86_64-1.txz: Upgraded.
a/kernel-generic-4.19.46-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.46-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.46-x86_64-1.txz: Upgraded.
d/gcc-9.1.0-x86_64-6.txz: Rebuilt.
Patched to fix a format string error in the es locale that led to an
assertion failure when compiling the Linux kernel.
Thanks to USUARIONUEVO.
d/gcc-brig-9.1.0-x86_64-6.txz: Rebuilt.
d/gcc-g++-9.1.0-x86_64-6.txz: Rebuilt.
d/gcc-gdc-9.1.0-x86_64-6.txz: Rebuilt.
d/gcc-gfortran-9.1.0-x86_64-6.txz: Rebuilt.
d/gcc-gnat-9.1.0-x86_64-6.txz: Rebuilt.
d/gcc-go-9.1.0-x86_64-6.txz: Rebuilt.
d/gcc-objc-9.1.0-x86_64-6.txz: Rebuilt.
d/gettext-tools-0.20.1-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.46-x86-1.txz: Upgraded.
d/rust-1.35.0-x86_64-1.txz: Upgraded.
k/kernel-source-4.19.46-noarch-1.txz: Upgraded.
l/python-urllib3-1.25.3-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/aaa_terminfo-6.1_20190518-x86_64-1.txz: Upgraded.
ap/qpdf-8.4.2-x86_64-1.txz: Upgraded.
l/libidn2-2.2.0-x86_64-1.txz: Upgraded.
l/ncurses-6.1_20190518-x86_64-1.txz: Upgraded.
n/p11-kit-0.23.16.1-x86_64-1.txz: Upgraded.
xap/rdesktop-1.8.6-x86_64-1.txz: Upgraded.
This is a small bug fix release for rdesktop 1.8.5. An issue was discovered
soon after release where it was impossible to connect to some servers. This
issue has now been fixed, but otherwise this release is identical to 1.8.5.
xfce/Thunar-1.8.6-x86_64-1.txz: Upgraded.
xfce/thunar-volman-0.9.2-x86_64-1.txz: Upgraded.
a/file-5.37-x86_64-1.txz: Upgraded.
l/python-requests-2.22.0-x86_64-1.txz: Upgraded.
n/iputils-20190515-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-60.7.0-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/60.7.0/releasenotes/
a/kernel-firmware-20190514_711d329-noarch-1.txz: Upgraded.
a/kernel-generic-4.19.43-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.43-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.43-x86_64-1.txz: Upgraded.
ap/hplip-3.19.5-x86_64-1.txz: Upgraded.
ap/mariadb-10.3.15-x86_64-1.txz: Upgraded.
This update fixes denial-of-service security issues.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2614https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2627https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2628
(* Security fix *)
d/cmake-3.14.4-x86_64-1.txz: Upgraded.
d/gcc-9.1.0-x86_64-5.txz: Rebuilt.
Rebuilt with --enable-clocale=gnu. This is recommended by Linux From
Scratch, and while it doesn't seem to fix the issue with kernel compiles
failing with some locales, it probably doesn't hurt.
d/gcc-brig-9.1.0-x86_64-5.txz: Rebuilt.
d/gcc-g++-9.1.0-x86_64-5.txz: Rebuilt.
Applied patch: PR libstdc++/90397 fix std::variant friend declaration
This fixes problems compiling programs that use std::variant with clang.
Thanks to orbea.
d/gcc-gdc-9.1.0-x86_64-5.txz: Rebuilt.
d/gcc-gfortran-9.1.0-x86_64-5.txz: Rebuilt.
d/gcc-gnat-9.1.0-x86_64-5.txz: Rebuilt.
d/gcc-go-9.1.0-x86_64-5.txz: Rebuilt.
d/gcc-objc-9.1.0-x86_64-5.txz: Rebuilt.
d/kernel-headers-4.19.43-x86-1.txz: Upgraded.
d/rust-1.34.2-x86_64-1.txz: Upgraded.
k/kernel-source-4.19.43-noarch-1.txz: Upgraded.
l/librsvg-2.44.14-x86_64-1.txz: Upgraded.
n/samba-4.10.3-x86_64-1.txz: Upgraded.
This is a security release in order to address the following defect:
The checksum validation in the S4U2Self handler in the embedded Heimdal KDC
did not first confirm that the checksum was keyed, allowing replacement of
the requested target (client) principal.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16860
(* Security fix *)
x/xterm-345-x86_64-1.txz: Upgraded.
xap/rdesktop-1.8.5-x86_64-1.txz: Upgraded.
This update fixes security issues:
Add bounds checking to protocol handling in order to fix many
security problems when communicating with a malicious server.
(* Security fix *)
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
