Commit graph

1252 commits

Author SHA1 Message Date
Patrick J Volkerding
b646b608f5 Fri Jan 6 00:54:38 UTC 2023
kde/akonadi-22.12.1-x86_64-1.txz:  Upgraded.
kde/akonadi-calendar-22.12.1-x86_64-1.txz:  Upgraded.
kde/akonadi-calendar-tools-22.12.1-x86_64-1.txz:  Upgraded.
kde/akonadi-contacts-22.12.1-x86_64-1.txz:  Upgraded.
kde/akonadi-import-wizard-22.12.1-x86_64-1.txz:  Upgraded.
kde/akonadi-mime-22.12.1-x86_64-1.txz:  Upgraded.
kde/akonadi-notes-22.12.1-x86_64-1.txz:  Upgraded.
kde/akonadi-search-22.12.1-x86_64-1.txz:  Upgraded.
kde/akonadiconsole-22.12.1-x86_64-1.txz:  Upgraded.
kde/akregator-22.12.1-x86_64-1.txz:  Upgraded.
kde/analitza-22.12.1-x86_64-1.txz:  Upgraded.
kde/ark-22.12.1-x86_64-1.txz:  Upgraded.
kde/artikulate-22.12.1-x86_64-1.txz:  Upgraded.
kde/audiocd-kio-22.12.1-x86_64-1.txz:  Upgraded.
kde/baloo-widgets-22.12.1-x86_64-1.txz:  Upgraded.
kde/blinken-22.12.1-x86_64-1.txz:  Upgraded.
kde/bomber-22.12.1-x86_64-1.txz:  Upgraded.
kde/bovo-22.12.1-x86_64-1.txz:  Upgraded.
kde/calendarsupport-22.12.1-x86_64-1.txz:  Upgraded.
kde/cantor-22.12.1-x86_64-1.txz:  Upgraded.
kde/cervisia-22.12.1-x86_64-1.txz:  Upgraded.
kde/dolphin-22.12.1-x86_64-1.txz:  Upgraded.
kde/dolphin-plugins-22.12.1-x86_64-1.txz:  Upgraded.
kde/dragon-22.12.1-x86_64-1.txz:  Upgraded.
kde/elisa-22.12.1-x86_64-1.txz:  Upgraded.
kde/eventviews-22.12.1-x86_64-1.txz:  Upgraded.
kde/falkon-22.12.1-x86_64-1.txz:  Upgraded.
kde/ffmpegthumbs-22.12.1-x86_64-1.txz:  Upgraded.
kde/filelight-22.12.1-x86_64-1.txz:  Upgraded.
kde/granatier-22.12.1-x86_64-1.txz:  Upgraded.
kde/grantlee-editor-22.12.1-x86_64-1.txz:  Upgraded.
kde/grantleetheme-22.12.1-x86_64-1.txz:  Upgraded.
kde/gwenview-22.12.1-x86_64-1.txz:  Upgraded.
kde/incidenceeditor-22.12.1-x86_64-1.txz:  Upgraded.
kde/itinerary-22.12.1-x86_64-1.txz:  Upgraded.
kde/juk-22.12.1-x86_64-1.txz:  Upgraded.
kde/k3b-22.12.1-x86_64-1.txz:  Upgraded.
kde/kaddressbook-22.12.1-x86_64-1.txz:  Upgraded.
kde/kalarm-22.12.1-x86_64-1.txz:  Upgraded.
kde/kalendar-22.12.1-x86_64-1.txz:  Upgraded.
kde/kalgebra-22.12.1-x86_64-1.txz:  Upgraded.
kde/kalzium-22.12.1-x86_64-1.txz:  Upgraded.
kde/kamera-22.12.1-x86_64-1.txz:  Upgraded.
kde/kamoso-22.12.1-x86_64-1.txz:  Upgraded.
kde/kanagram-22.12.1-x86_64-1.txz:  Upgraded.
kde/kapman-22.12.1-x86_64-1.txz:  Upgraded.
kde/kapptemplate-22.12.1-x86_64-1.txz:  Upgraded.
kde/kate-22.12.1-x86_64-1.txz:  Upgraded.
kde/katomic-22.12.1-x86_64-1.txz:  Upgraded.
kde/kbackup-22.12.1-x86_64-1.txz:  Upgraded.
kde/kblackbox-22.12.1-x86_64-1.txz:  Upgraded.
kde/kblocks-22.12.1-x86_64-1.txz:  Upgraded.
kde/kbounce-22.12.1-x86_64-1.txz:  Upgraded.
kde/kbreakout-22.12.1-x86_64-1.txz:  Upgraded.
kde/kbruch-22.12.1-x86_64-1.txz:  Upgraded.
kde/kcachegrind-22.12.1-x86_64-1.txz:  Upgraded.
kde/kcalc-22.12.1-x86_64-1.txz:  Upgraded.
kde/kcalutils-22.12.1-x86_64-1.txz:  Upgraded.
kde/kcharselect-22.12.1-x86_64-1.txz:  Upgraded.
kde/kcolorchooser-22.12.1-x86_64-1.txz:  Upgraded.
kde/kcron-22.12.1-x86_64-1.txz:  Upgraded.
kde/kde-dev-scripts-22.12.1-x86_64-1.txz:  Upgraded.
kde/kde-dev-utils-22.12.1-x86_64-1.txz:  Upgraded.
kde/kdebugsettings-22.12.1-x86_64-1.txz:  Upgraded.
kde/kdeconnect-kde-22.12.1-x86_64-1.txz:  Upgraded.
kde/kdeedu-data-22.12.1-x86_64-1.txz:  Upgraded.
kde/kdegraphics-mobipocket-22.12.1-x86_64-1.txz:  Upgraded.
kde/kdegraphics-thumbnailers-22.12.1-x86_64-1.txz:  Upgraded.
kde/kdenetwork-filesharing-22.12.1-x86_64-1.txz:  Upgraded.
kde/kdenlive-22.12.1-x86_64-1.txz:  Upgraded.
kde/kdepim-addons-22.12.1-x86_64-1.txz:  Upgraded.
kde/kdepim-runtime-22.12.1-x86_64-1.txz:  Upgraded.
kde/kdesdk-kio-22.12.1-x86_64-1.txz:  Upgraded.
kde/kdesdk-thumbnailers-22.12.1-x86_64-1.txz:  Upgraded.
kde/kdev-php-22.12.1-x86_64-1.txz:  Upgraded.
kde/kdev-python-22.12.1-x86_64-1.txz:  Upgraded.
kde/kdevelop-22.12.1-x86_64-1.txz:  Upgraded.
kde/kdf-22.12.1-x86_64-1.txz:  Upgraded.
kde/kdialog-22.12.1-x86_64-1.txz:  Upgraded.
kde/kdiamond-22.12.1-x86_64-1.txz:  Upgraded.
kde/keditbookmarks-22.12.1-x86_64-1.txz:  Upgraded.
kde/kfind-22.12.1-x86_64-1.txz:  Upgraded.
kde/kfloppy-22.12.1-x86_64-1.txz:  Upgraded.
kde/kfourinline-22.12.1-x86_64-1.txz:  Upgraded.
kde/kgeography-22.12.1-x86_64-1.txz:  Upgraded.
kde/kget-22.12.1-x86_64-1.txz:  Upgraded.
kde/kgoldrunner-22.12.1-x86_64-1.txz:  Upgraded.
kde/kgpg-22.12.1-x86_64-1.txz:  Upgraded.
kde/khangman-22.12.1-x86_64-1.txz:  Upgraded.
kde/khelpcenter-22.12.1-x86_64-1.txz:  Upgraded.
kde/kidentitymanagement-22.12.1-x86_64-1.txz:  Upgraded.
kde/kig-22.12.1-x86_64-1.txz:  Upgraded.
kde/kigo-22.12.1-x86_64-1.txz:  Upgraded.
kde/killbots-22.12.1-x86_64-1.txz:  Upgraded.
kde/kimagemapeditor-22.12.1-x86_64-1.txz:  Upgraded.
kde/kimap-22.12.1-x86_64-1.txz:  Upgraded.
kde/kio-extras-22.12.1-x86_64-1.txz:  Upgraded.
kde/kio-gdrive-22.12.1-x86_64-1.txz:  Upgraded.
kde/kio-zeroconf-22.12.1-x86_64-1.txz:  Upgraded.
kde/kipi-plugins-22.12.1-x86_64-1.txz:  Upgraded.
kde/kirigami-gallery-22.12.1-x86_64-1.txz:  Upgraded.
kde/kiriki-22.12.1-x86_64-1.txz:  Upgraded.
kde/kiten-22.12.1-x86_64-1.txz:  Upgraded.
kde/kitinerary-22.12.1-x86_64-1.txz:  Upgraded.
kde/kjumpingcube-22.12.1-x86_64-1.txz:  Upgraded.
kde/kldap-22.12.1-x86_64-1.txz:  Upgraded.
kde/kleopatra-22.12.1-x86_64-1.txz:  Upgraded.
kde/klickety-22.12.1-x86_64-1.txz:  Upgraded.
kde/klines-22.12.1-x86_64-1.txz:  Upgraded.
kde/kmag-22.12.1-x86_64-1.txz:  Upgraded.
kde/kmahjongg-22.12.1-x86_64-1.txz:  Upgraded.
kde/kmail-22.12.1-x86_64-1.txz:  Upgraded.
kde/kmail-account-wizard-22.12.1-x86_64-1.txz:  Upgraded.
kde/kmailtransport-22.12.1-x86_64-1.txz:  Upgraded.
kde/kmbox-22.12.1-x86_64-1.txz:  Upgraded.
kde/kmime-22.12.1-x86_64-1.txz:  Upgraded.
kde/kmines-22.12.1-x86_64-1.txz:  Upgraded.
kde/kmix-22.12.1-x86_64-1.txz:  Upgraded.
kde/kmousetool-22.12.1-x86_64-1.txz:  Upgraded.
kde/kmouth-22.12.1-x86_64-1.txz:  Upgraded.
kde/kmplot-22.12.1-x86_64-1.txz:  Upgraded.
kde/knavalbattle-22.12.1-x86_64-1.txz:  Upgraded.
kde/knetwalk-22.12.1-x86_64-1.txz:  Upgraded.
kde/knights-22.12.1-x86_64-1.txz:  Upgraded.
kde/knotes-22.12.1-x86_64-1.txz:  Upgraded.
kde/kolf-22.12.1-x86_64-1.txz:  Upgraded.
kde/kollision-22.12.1-x86_64-1.txz:  Upgraded.
kde/kolourpaint-22.12.1-x86_64-1.txz:  Upgraded.
kde/kompare-22.12.1-x86_64-1.txz:  Upgraded.
kde/konqueror-22.12.1-x86_64-1.txz:  Upgraded.
kde/konquest-22.12.1-x86_64-1.txz:  Upgraded.
kde/konsole-22.12.1-x86_64-1.txz:  Upgraded.
kde/kontact-22.12.1-x86_64-1.txz:  Upgraded.
kde/kontactinterface-22.12.1-x86_64-1.txz:  Upgraded.
kde/kontrast-22.12.1-x86_64-1.txz:  Upgraded.
kde/konversation-22.12.1-x86_64-1.txz:  Upgraded.
kde/kopeninghours-22.12.1-x86_64-1.txz:  Upgraded.
kde/kopete-22.12.1-x86_64-1.txz:  Upgraded.
kde/korganizer-22.12.1-x86_64-1.txz:  Upgraded.
kde/kosmindoormap-22.12.1-x86_64-1.txz:  Upgraded.
kde/kpat-22.12.1-x86_64-1.txz:  Upgraded.
kde/kpimtextedit-22.12.1-x86_64-1.txz:  Upgraded.
kde/kpkpass-22.12.1-x86_64-1.txz:  Upgraded.
kde/kpmcore-22.12.1-x86_64-1.txz:  Upgraded.
kde/kpublictransport-22.12.1-x86_64-1.txz:  Upgraded.
kde/kqtquickcharts-22.12.1-x86_64-1.txz:  Upgraded.
kde/krdc-22.12.1-x86_64-1.txz:  Upgraded.
kde/kreversi-22.12.1-x86_64-1.txz:  Upgraded.
kde/krfb-22.12.1-x86_64-1.txz:  Upgraded.
kde/krita-5.1.5-x86_64-1.txz:  Upgraded.
kde/kross-interpreters-22.12.1-x86_64-1.txz:  Upgraded.
kde/kruler-22.12.1-x86_64-1.txz:  Upgraded.
kde/ksanecore-22.12.1-x86_64-1.txz:  Upgraded.
kde/kshisen-22.12.1-x86_64-1.txz:  Upgraded.
kde/ksirk-22.12.1-x86_64-1.txz:  Upgraded.
kde/ksmtp-22.12.1-x86_64-1.txz:  Upgraded.
kde/ksnakeduel-22.12.1-x86_64-1.txz:  Upgraded.
kde/kspaceduel-22.12.1-x86_64-1.txz:  Upgraded.
kde/ksquares-22.12.1-x86_64-1.txz:  Upgraded.
kde/ksudoku-22.12.1-x86_64-1.txz:  Upgraded.
kde/ksystemlog-22.12.1-x86_64-1.txz:  Upgraded.
kde/kteatime-22.12.1-x86_64-1.txz:  Upgraded.
kde/ktimer-22.12.1-x86_64-1.txz:  Upgraded.
kde/ktnef-22.12.1-x86_64-1.txz:  Upgraded.
kde/ktorrent-22.12.1-x86_64-1.txz:  Upgraded.
kde/ktouch-22.12.1-x86_64-1.txz:  Upgraded.
kde/kturtle-22.12.1-x86_64-1.txz:  Upgraded.
kde/kubrick-22.12.1-x86_64-1.txz:  Upgraded.
kde/kwalletmanager-22.12.1-x86_64-1.txz:  Upgraded.
kde/kwave-22.12.1-x86_64-1.txz:  Upgraded.
kde/kwordquiz-22.12.1-x86_64-1.txz:  Upgraded.
kde/libgravatar-22.12.1-x86_64-1.txz:  Upgraded.
kde/libkcddb-22.12.1-x86_64-1.txz:  Upgraded.
kde/libkcompactdisc-22.12.1-x86_64-1.txz:  Upgraded.
kde/libkdcraw-22.12.1-x86_64-1.txz:  Upgraded.
kde/libkdegames-22.12.1-x86_64-1.txz:  Upgraded.
kde/libkdepim-22.12.1-x86_64-1.txz:  Upgraded.
kde/libkeduvocdocument-22.12.1-x86_64-1.txz:  Upgraded.
kde/libkexiv2-22.12.1-x86_64-1.txz:  Upgraded.
kde/libkgapi-22.12.1-x86_64-1.txz:  Upgraded.
kde/libkipi-22.12.1-x86_64-1.txz:  Upgraded.
kde/libkleo-22.12.1-x86_64-1.txz:  Upgraded.
kde/libkmahjongg-22.12.1-x86_64-1.txz:  Upgraded.
kde/libkomparediff2-22.12.1-x86_64-1.txz:  Upgraded.
kde/libksane-22.12.1-x86_64-1.txz:  Upgraded.
kde/libksieve-22.12.1-x86_64-1.txz:  Upgraded.
kde/libktorrent-22.12.1-x86_64-1.txz:  Upgraded.
kde/lokalize-22.12.1-x86_64-1.txz:  Upgraded.
kde/lskat-22.12.1-x86_64-1.txz:  Upgraded.
kde/mailcommon-22.12.1-x86_64-1.txz:  Upgraded.
kde/mailimporter-22.12.1-x86_64-1.txz:  Upgraded.
kde/marble-22.12.1-x86_64-1.txz:  Upgraded.
kde/markdownpart-22.12.1-x86_64-1.txz:  Upgraded.
kde/mbox-importer-22.12.1-x86_64-1.txz:  Upgraded.
kde/messagelib-22.12.1-x86_64-1.txz:  Upgraded.
kde/minuet-22.12.1-x86_64-1.txz:  Upgraded.
kde/okular-22.12.1-x86_64-1.txz:  Upgraded.
kde/palapeli-22.12.1-x86_64-1.txz:  Upgraded.
kde/parley-22.12.1-x86_64-1.txz:  Upgraded.
kde/partitionmanager-22.12.1-x86_64-1.txz:  Upgraded.
kde/picmi-22.12.1-x86_64-1.txz:  Upgraded.
kde/pim-data-exporter-22.12.1-x86_64-1.txz:  Upgraded.
kde/pim-sieve-editor-22.12.1-x86_64-1.txz:  Upgraded.
kde/pimcommon-22.12.1-x86_64-1.txz:  Upgraded.
kde/poxml-22.12.1-x86_64-1.txz:  Upgraded.
kde/print-manager-22.12.1-x86_64-1.txz:  Upgraded.
kde/rocs-22.12.1-x86_64-1.txz:  Upgraded.
kde/skanlite-22.12.1-x86_64-1.txz:  Upgraded.
kde/skanpage-22.12.1-x86_64-1.txz:  Upgraded.
kde/spectacle-22.12.1-x86_64-1.txz:  Upgraded.
kde/svgpart-22.12.1-x86_64-1.txz:  Upgraded.
kde/sweeper-22.12.1-x86_64-1.txz:  Upgraded.
kde/umbrello-22.12.1-x86_64-1.txz:  Upgraded.
kde/yakuake-22.12.1-x86_64-1.txz:  Upgraded.
kde/zanshin-22.12.1-x86_64-1.txz:  Upgraded.
l/libqalculate-4.5.1-x86_64-1.txz:  Upgraded.
n/traceroute-2.1.1-x86_64-1.txz:  Upgraded.
xap/mozilla-firefox-108.0.2-x86_64-1.txz:  Upgraded.
  This is a bugfix release.
  For more information, see:
    https://www.mozilla.org/en-US/firefox/108.0.2/releasenotes/
xfce/libxfce4ui-4.18.1-x86_64-1.txz:  Upgraded.
xfce/xfce4-screenshooter-1.10.2-x86_64-1.txz:  Upgraded.
  Thanks to Robby Workman.
xfce/xfce4-systemload-plugin-1.3.2-x86_64-1.txz:  Upgraded.
  Thanks to Robby Workman.
xfce/xfce4-taskmanager-1.5.5-x86_64-1.txz:  Upgraded.
  Thanks to Robby Workman.
2023-01-06 02:50:35 +01:00
Patrick J Volkerding
b3409a9b21 Wed Jan 4 02:18:08 UTC 2023
ap/lsof-4.96.5-x86_64-1.txz:  Upgraded.
ap/sqlite-3.40.1-x86_64-1.txz:  Upgraded.
kde/bluedevil-5.26.5-x86_64-1.txz:  Upgraded.
kde/breeze-5.26.5-x86_64-1.txz:  Upgraded.
kde/breeze-grub-5.26.5-x86_64-1.txz:  Upgraded.
kde/breeze-gtk-5.26.5-x86_64-1.txz:  Upgraded.
kde/digikam-7.9.0-x86_64-2.txz:  Rebuilt.
  Recompiled against opencv-4.7.0.
kde/drkonqi-5.26.5-x86_64-1.txz:  Upgraded.
kde/kactivitymanagerd-5.26.5-x86_64-1.txz:  Upgraded.
kde/kde-cli-tools-5.26.5-x86_64-1.txz:  Upgraded.
kde/kde-gtk-config-5.26.5-x86_64-1.txz:  Upgraded.
kde/kdecoration-5.26.5-x86_64-1.txz:  Upgraded.
kde/kdeplasma-addons-5.26.5-x86_64-1.txz:  Upgraded.
kde/kgamma5-5.26.5-x86_64-1.txz:  Upgraded.
kde/khotkeys-5.26.5-x86_64-1.txz:  Upgraded.
kde/kinfocenter-5.26.5-x86_64-1.txz:  Upgraded.
kde/kmenuedit-5.26.5-x86_64-1.txz:  Upgraded.
kde/kpipewire-5.26.5-x86_64-1.txz:  Upgraded.
kde/kscreen-5.26.5-x86_64-1.txz:  Upgraded.
kde/kscreenlocker-5.26.5-x86_64-1.txz:  Upgraded.
kde/ksshaskpass-5.26.5-x86_64-1.txz:  Upgraded.
kde/ksystemstats-5.26.5-x86_64-1.txz:  Upgraded.
kde/kwallet-pam-5.26.5-x86_64-1.txz:  Upgraded.
kde/kwayland-integration-5.26.5-x86_64-1.txz:  Upgraded.
kde/kwin-5.26.5-x86_64-1.txz:  Upgraded.
kde/kwrited-5.26.5-x86_64-1.txz:  Upgraded.
kde/layer-shell-qt-5.26.5-x86_64-1.txz:  Upgraded.
kde/libkscreen-5.26.5-x86_64-1.txz:  Upgraded.
kde/libksysguard-5.26.5-x86_64-1.txz:  Upgraded.
kde/milou-5.26.5-x86_64-1.txz:  Upgraded.
kde/oxygen-5.26.5-x86_64-1.txz:  Upgraded.
kde/oxygen-sounds-5.26.5-x86_64-1.txz:  Upgraded.
kde/plasma-browser-integration-5.26.5-x86_64-1.txz:  Upgraded.
kde/plasma-desktop-5.26.5-x86_64-1.txz:  Upgraded.
kde/plasma-disks-5.26.5-x86_64-1.txz:  Upgraded.
kde/plasma-firewall-5.26.5-x86_64-1.txz:  Upgraded.
kde/plasma-integration-5.26.5-x86_64-1.txz:  Upgraded.
kde/plasma-nm-5.26.5-x86_64-1.txz:  Upgraded.
kde/plasma-pa-5.26.5-x86_64-1.txz:  Upgraded.
kde/plasma-sdk-5.26.5-x86_64-1.txz:  Upgraded.
kde/plasma-systemmonitor-5.26.5-x86_64-1.txz:  Upgraded.
kde/plasma-vault-5.26.5-x86_64-1.txz:  Upgraded.
kde/plasma-workspace-5.26.5-x86_64-1.txz:  Upgraded.
kde/plasma-workspace-wallpapers-5.26.5-x86_64-1.txz:  Upgraded.
kde/polkit-kde-agent-1-5.26.5-x86_64-1.txz:  Upgraded.
kde/powerdevil-5.26.5-x86_64-1.txz:  Upgraded.
kde/qqc2-breeze-style-5.26.5-x86_64-1.txz:  Upgraded.
kde/sddm-kcm-5.26.5-x86_64-1.txz:  Upgraded.
kde/systemsettings-5.26.5-x86_64-1.txz:  Upgraded.
kde/xdg-desktop-portal-kde-5.26.5-x86_64-1.txz:  Upgraded.
l/SDL2-2.26.2-x86_64-1.txz:  Upgraded.
l/gst-plugins-bad-free-1.20.5-x86_64-2.txz:  Rebuilt.
  Recompiled against opencv-4.7.0.
l/imagemagick-7.1.0_57-x86_64-1.txz:  Upgraded.
l/libpcap-1.10.2-x86_64-1.txz:  Upgraded.
l/libpsl-0.21.2-x86_64-1.txz:  Upgraded.
l/librevenge-0.0.5-x86_64-1.txz:  Upgraded.
l/libsndfile-1.2.0-x86_64-1.txz:  Upgraded.
l/libtiff-4.4.0-x86_64-2.txz:  Rebuilt.
  Patched various security bugs.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2022-2056
    https://www.cve.org/CVERecord?id=CVE-2022-2057
    https://www.cve.org/CVERecord?id=CVE-2022-2058
    https://www.cve.org/CVERecord?id=CVE-2022-3970
    https://www.cve.org/CVERecord?id=CVE-2022-34526
  (* Security fix *)
l/netpbm-11.01.00-x86_64-1.txz:  Upgraded.
l/opencv-4.7.0-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
l/poppler-23.01.0-x86_64-1.txz:  Upgraded.
n/getmail-6.18.11-x86_64-1.txz:  Upgraded.
n/tcpdump-4.99.2-x86_64-1.txz:  Upgraded.
n/whois-5.5.15-x86_64-1.txz:  Upgraded.
  Updated the .bd, .nz and .tv TLD servers.
  Added the .llyw.cymru, .gov.scot and .gov.wales SLD servers.
  Updated the .ac.uk and .gov.uk SLD servers.
  Recursion has been enabled for whois.nic.tv.
  Updated the list of new gTLDs with four generic TLDs assigned in October 2013
  which were missing due to a bug.
  Removed 4 new gTLDs which are no longer active.
  Added the Georgian translation, contributed by Temuri Doghonadze.
  Updated the Finnish translation, contributed by Lauri Nurmi.
xap/pidgin-2.14.12-x86_64-1.txz:  Upgraded.
xap/rxvt-unicode-9.26-x86_64-4.txz:  Rebuilt.
  When the "background" extension was loaded, an attacker able to control the
  data written to the terminal would be able to execute arbitrary code as the
  terminal's user. Thanks to David Leadbeater and Ben Collver.
  For more information, see:
    https://www.openwall.com/lists/oss-security/2022/12/05/1
    https://www.cve.org/CVERecord?id=CVE-2022-4170
  (* Security fix *)
2023-01-04 04:38:00 +01:00
Patrick J Volkerding
5d902bcdde Sun Dec 25 23:21:25 UTC 2022
Hey folks, Merry Christmas and Hanukkah Sameach! Figured it was about time to
get some kind of kernel activity going again, but it most definitely belongs
in /testing for now. I've been trying to shape this up for weeks, but there
are still issues, and maybe someone out there can help. The biggest problem
is that the 32-bit kernels crash on boot. Initially there's some sort of
Intel ME failure (this is on a Thinkpad X1E). If those modules are
blacklisted, then the kernel will go on to crash loading the snd_hda_intel
module. The other issue is that I've got a 4K panel in this machine, and
have always appended the kernel option video=1920x1080@60 to put the console
in HD instead, and then loaded a Terminus console font to make the text even
larger. With these kernels, that option is completely ignored. I've tried some
other syntax I've seen online to no avail. And when the Terminus font is
loaded the text gets *even smaller* for some reason.
So be careful of these kernels (especially the 32-bit ones), but I welcome
any hints about what's going on here or if there are config changes that
might get this working properly. Is anyone out there running a 6.x kernel on
bare metal 32-bit x86?
Cheers!
ap/vim-9.0.1091-x86_64-1.txz:  Upgraded.
d/meson-1.0.0-x86_64-1.txz:  Upgraded.
d/ruby-3.2.0-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
d/subversion-1.14.2-x86_64-3.txz:  Rebuilt.
  Recompiled against ruby-3.2.0.
l/glib2-2.74.4-x86_64-1.txz:  Upgraded.
l/netpbm-11.00.03-x86_64-1.txz:  Upgraded.
l/rubygem-asciidoctor-2.0.18-x86_64-1.txz:  Upgraded.
  Compiled against ruby-3.2.0.
n/epic5-2.1.12-x86_64-2.txz:  Rebuilt.
  Recompiled against ruby-3.2.0.
x/marisa-0.2.6-x86_64-6.txz:  Rebuilt.
  Recompiled against ruby-3.2.0.
xap/vim-gvim-9.0.1091-x86_64-1.txz:  Upgraded.
testing/packages/linux-6.1.x/kernel-generic-6.1.1-x86_64-1.txz:  Added.
testing/packages/linux-6.1.x/kernel-headers-6.1.1-x86-1.txz:  Added.
testing/packages/linux-6.1.x/kernel-huge-6.1.1-x86_64-1.txz:  Added.
testing/packages/linux-6.1.x/kernel-modules-6.1.1-x86_64-1.txz:  Added.
testing/packages/linux-6.1.x/kernel-source-6.1.1-noarch-1.txz:  Added.
2022-12-26 01:38:31 +01:00
Patrick J Volkerding
dc64577687 Fri Dec 23 02:37:47 UTC 2022
a/tcsh-6.24.07-x86_64-1.txz:  Upgraded.
d/nasm-2.16.01-x86_64-1.txz:  Upgraded.
n/dovecot-2.3.20-x86_64-1.txz:  Upgraded.
n/nftables-1.0.6-x86_64-1.txz:  Upgraded.
xfce/thunar-4.18.1-x86_64-1.txz:  Upgraded.
2022-12-23 04:37:12 +01:00
Patrick J Volkerding
a5f767fffe Thu Dec 22 03:40:55 UTC 2022
a/sysvinit-scripts-15.1-noarch-3.txz:  Rebuilt.
  rc.6: support an optional rc.firewall_shutdown script. Most firewall scripts
  don't need a formal shutdown, but in some cases it can be useful. If your
  rc.firewall script supports a stop parameter, the shutdown script should just
  contain "/etc/rc.d/rc.firewall stop", or rc.firewall_shutdown could also be
  a symlink to the rc.firewall script in that case. But how the script works
  is (like the rc.firewall script support) completely up to the admin.
  Thanks to metaed for the suggestion.
  Please note that contrary to the request, I placed this *after* the network
  is shut down to avoid removing firewall protection while the interfaces are
  still active. Whether it'll work in this place for metaed's (or anyone
  else's) needs, I'm not sure. It's a start. Feel free to weigh in on the LQ
  thread if you have any ideas for improvement, but the goal here is to keep
  this support as simple and flexible as possible.
d/nasm-2.16-x86_64-1.txz:  Upgraded.
d/parallel-20221222-noarch-1.txz:  Upgraded.
n/bind-9.18.10-x86_64-1.txz:  Upgraded.
n/curl-7.87.0-x86_64-1.txz:  Upgraded.
xap/mozilla-thunderbird-102.6.1-x86_64-1.txz:  Upgraded.
  This release contains a security fix and improvements.
  For more information, see:
    https://www.mozilla.org/en-US/thunderbird/102.6.1/releasenotes/
    https://www.mozilla.org/en-US/security/advisories/mfsa2022-54/
    https://www.cve.org/CVERecord?id=CVE-2022-46874
  (* Security fix *)
xfce/xfce4-screenshooter-1.10.0-x86_64-1.txz:  Upgraded.
2022-12-22 06:39:00 +01:00
Patrick J Volkerding
a1d6f79ce8 Tue Dec 20 20:40:18 UTC 2022
d/p2c-2.02-x86_64-1.txz:  Upgraded.
kde/dolphin-22.12.0-x86_64-2.txz:  Rebuilt.
  [PATCH] Revert "portalize drag urls"
  Thanks to marav.
l/gst-plugins-bad-free-1.20.5-x86_64-1.txz:  Upgraded.
l/gst-plugins-base-1.20.5-x86_64-1.txz:  Upgraded.
l/gst-plugins-good-1.20.5-x86_64-1.txz:  Upgraded.
l/gst-plugins-libav-1.20.5-x86_64-1.txz:  Upgraded.
l/gstreamer-1.20.5-x86_64-1.txz:  Upgraded.
l/libqalculate-4.5.0-x86_64-1.txz:  Upgraded.
l/libvncserver-0.9.14-x86_64-1.txz:  Upgraded.
l/sdl-1.2.15-x86_64-14.txz:  Rebuilt.
  This update fixes a heap overflow problem in video/SDL_pixels.c in SDL.
  By crafting a malicious .BMP file, an attacker can cause the application
  using this library to crash, denial of service, or code execution.
  Thanks to marav for the heads-up.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2021-33657
  (* Security fix *)
n/gnupg2-2.2.41-x86_64-1.txz:  Upgraded.
n/libksba-1.6.3-x86_64-1.txz:  Upgraded.
  Fix another integer overflow in the CRL's signature parser.
  (* Security fix *)
x/libSM-1.2.4-x86_64-1.txz:  Upgraded.
x/xcb-util-0.4.1-x86_64-1.txz:  Upgraded.
x/xdriinfo-1.0.7-x86_64-1.txz:  Upgraded.
2022-12-20 22:34:22 +01:00
Patrick J Volkerding
4f53dfead2 Mon Dec 19 21:18:22 UTC 2022
a/logrotate-3.21.0-x86_64-1.txz:  Upgraded.
kde/gwenview-22.12.0-x86_64-2.txz:  Rebuilt.
  Recompiled against cfitsio-4.2.0.
kde/kstars-3.6.2-x86_64-2.txz:  Rebuilt.
  Recompiled against cfitsio-4.2.0.
l/cfitsio-4.2.0-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
l/gsettings-desktop-schemas-43.0-x86_64-1.txz:  Upgraded.
l/gtk4-4.8.2-x86_64-1.txz:  Upgraded.
x/xorg-server-21.1.6-x86_64-1.txz:  Upgraded.
  This release fixes an invalid event type mask in XTestSwapFakeInput which
  was inadvertently changed from octal 0177 to hexadecimal 0x177 in the fix
  for CVE-2022-46340.
x/xorg-server-xephyr-21.1.6-x86_64-1.txz:  Upgraded.
x/xorg-server-xnest-21.1.6-x86_64-1.txz:  Upgraded.
x/xorg-server-xvfb-21.1.6-x86_64-1.txz:  Upgraded.
x/xorg-server-xwayland-22.1.7-x86_64-1.txz:  Upgraded.
  This release fixes an invalid event type mask in XTestSwapFakeInput which
  was inadvertently changed from octal 0177 to hexadecimal 0x177 in the fix
  for CVE-2022-46340.
testing/packages/rust-1.66.0-x86_64-1.txz:  Added.
2022-12-19 23:42:51 +01:00
Patrick J Volkerding
5795941801 Sun Dec 18 20:58:52 UTC 2022
l/imagemagick-7.1.0_55-x86_64-2.txz:  Rebuilt.
  Rebuilt to fix dng.so module that was mistakenly compiled against the new
  LibRaw that we don't yet include.
2022-12-18 22:33:11 +01:00
Patrick J Volkerding
2d0cd9a826 Sun Dec 18 02:54:27 UTC 2022
a/aaa_libraries-15.1-x86_64-15.txz:  Rebuilt.
  Upgraded:  liblzma.so.5.4.0, libmpc.so.3.3.1.
  Thanks to LuckyCyborg for the heads-up.
2022-12-18 04:31:37 +01:00
Patrick J Volkerding
ddd9fe141f Sat Dec 17 21:14:11 UTC 2022
a/xz-5.4.0-x86_64-1.txz:  Upgraded.
l/harfbuzz-6.0.0-x86_64-1.txz:  Upgraded.
l/libmpc-1.3.1-x86_64-1.txz:  Upgraded.
n/NetworkManager-1.40.8-x86_64-1.txz:  Upgraded.
n/samba-4.17.4-x86_64-1.txz:  Upgraded.
  This update fixes security issues:
  This is the Samba CVE for the Windows Kerberos RC4-HMAC Elevation of
  Privilege Vulnerability disclosed by Microsoft on Nov 8 2022.
  A Samba Active Directory DC will issue weak rc4-hmac session keys for
  use between modern clients and servers despite all modern Kerberos
  implementations supporting the aes256-cts-hmac-sha1-96 cipher.
  On Samba Active Directory DCs and members
  'kerberos encryption types = legacy'
  would force rc4-hmac as a client even if the server supports
  aes128-cts-hmac-sha1-96 and/or aes256-cts-hmac-sha1-96.
  This is the Samba CVE for the Windows Kerberos Elevation of Privilege
  Vulnerability disclosed by Microsoft on Nov 8 2022.
  A service account with the special constrained delegation permission
  could forge a more powerful ticket than the one it was presented with.
  The "RC4" protection of the NetLogon Secure channel uses the same
  algorithms as rc4-hmac cryptography in Kerberos, and so must also be
  assumed to be weak.
  Note that there are several important behavior changes included in this
  release, which may cause compatibility problems interacting with system
  still expecting the former behavior.
  Please read the advisories of CVE-2022-37966, CVE-2022-37967 and
  CVE-2022-38023 carefully!
  For more information, see:
    https://www.samba.org/samba/security/CVE-2022-37966.html
    https://www.samba.org/samba/security/CVE-2022-37967.html
    https://www.samba.org/samba/security/CVE-2022-38023.html
    https://www.cve.org/CVERecord?id=CVE-2022-37966
    https://www.cve.org/CVERecord?id=CVE-2022-37967
    https://www.cve.org/CVERecord?id=CVE-2022-38023
  (* Security fix *)
xfce/exo-4.18.0-x86_64-1.txz:  Upgraded.
xfce/garcon-4.18.0-x86_64-1.txz:  Upgraded.
xfce/libxfce4ui-4.18.0-x86_64-1.txz:  Upgraded.
xfce/libxfce4util-4.18.0-x86_64-1.txz:  Upgraded.
xfce/thunar-4.18.0-x86_64-1.txz:  Upgraded.
xfce/thunar-volman-4.18.0-x86_64-1.txz:  Upgraded.
xfce/tumbler-4.18.0-x86_64-1.txz:  Upgraded.
xfce/xfce4-appfinder-4.18.0-x86_64-1.txz:  Upgraded.
xfce/xfce4-dev-tools-4.18.0-x86_64-1.txz:  Upgraded.
xfce/xfce4-notifyd-0.6.5-x86_64-1.txz:  Upgraded.
xfce/xfce4-panel-4.18.0-x86_64-1.txz:  Upgraded.
xfce/xfce4-power-manager-4.18.0-x86_64-1.txz:  Upgraded.
xfce/xfce4-session-4.18.0-x86_64-1.txz:  Upgraded.
xfce/xfce4-settings-4.18.0-x86_64-1.txz:  Upgraded.
xfce/xfce4-weather-plugin-0.11.0-x86_64-1.txz:  Upgraded.
xfce/xfconf-4.18.0-x86_64-1.txz:  Upgraded.
xfce/xfdesktop-4.18.0-x86_64-1.txz:  Upgraded.
xfce/xfwm4-4.18.0-x86_64-1.txz:  Upgraded.
2022-12-17 23:32:53 +01:00
Patrick J Volkerding
5eda6aabe1 Sat Dec 17 02:40:06 UTC 2022
a/aaa_libraries-15.1-x86_64-14.txz:  Rebuilt.
  Upgraded:  liblzma.so.5.2.9, libpcre2-8.so.0.11.2, libglib-2.0.so.0.7400.3,
  libgmodule-2.0.so.0.7400.3, libpng16.so.16.39.0.
  Removed:  libFLAC++.so.6.3.0, libFLAC.so.8.3.0, libicudata.so.71.1,
  libicui18n.so.71.1, libicuio.so.71.1, libicutest.so.71.1, libicutu.so.71.1,
  libicuuc.so.71.1, libjasper.so.6.0.0.
  Added:  libboost_atomic.so.1.80.0, libboost_chrono.so.1.80.0,
  libboost_container.so.1.80.0, libboost_context.so.1.80.0,
  libboost_contract.so.1.80.0, libboost_coroutine.so.1.80.0,
  libboost_date_time.so.1.80.0, libboost_fiber.so.1.80.0,
  libboost_filesystem.so.1.80.0, libboost_graph.so.1.80.0,
  libboost_iostreams.so.1.80.0, libboost_json.so.1.80.0,
  libboost_locale.so.1.80.0, libboost_log.so.1.80.0,
  libboost_log_setup.so.1.80.0, libboost_math_c99.so.1.80.0,
  libboost_math_c99f.so.1.80.0, libboost_math_c99l.so.1.80.0,
  libboost_math_tr1.so.1.80.0, libboost_math_tr1f.so.1.80.0,
  libboost_math_tr1l.so.1.80.0, libboost_nowide.so.1.80.0,
  libboost_prg_exec_monitor.so.1.80.0, libboost_program_options.so.1.80.0,
  libboost_python27.so.1.80.0, libboost_python39.so.1.80.0,
  libboost_random.so.1.80.0, libboost_regex.so.1.80.0,
  libboost_serialization.so.1.80.0, libboost_stacktrace_addr2line.so.1.80.0,
  libboost_stacktrace_basic.so.1.80.0, libboost_stacktrace_noop.so.1.80.0,
  libboost_system.so.1.80.0, libboost_thread.so.1.80.0,
  libboost_timer.so.1.80.0, libboost_type_erasure.so.1.80.0,
  libboost_unit_test_framework.so.1.80.0, libboost_wave.so.1.80.0,
  libboost_wserialization.so.1.80.0.
ap/pamixer-1.5-x86_64-5.txz:  Rebuilt.
  Recompiled against boost-1.81.0.
kde/kig-22.12.0-x86_64-2.txz:  Rebuilt.
  Recompiled against boost-1.81.0.
kde/kopeninghours-22.12.0-x86_64-2.txz:  Rebuilt.
  Recompiled against boost-1.81.0.
kde/krita-5.1.4-x86_64-2.txz:  Rebuilt.
  Recompiled against boost-1.81.0.
l/boost-1.81.0-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
l/cryfs-0.10.3-x86_64-7.txz:  Rebuilt.
  Recompiled against boost-1.81.0.
x/fcitx5-chinese-addons-5.0.16-x86_64-2.txz:  Rebuilt.
  Recompiled against boost-1.81.0.
x/libime-1.0.16-x86_64-2.txz:  Rebuilt.
  Recompiled against boost-1.81.0.
xap/mozilla-firefox-108.0.1-x86_64-1.txz:  Upgraded.
  This is a bugfix release.
  For more information, see:
    https://www.mozilla.org/en-US/firefox/108.0.1/releasenotes/
xfce/elementary-xfce-0.17-x86_64-1.txz:  Upgraded.
2022-12-17 04:39:07 +01:00
Patrick J Volkerding
7852409378 Fri Dec 16 04:46:51 UTC 2022
d/help2man-1.49.3-x86_64-1.txz:  Upgraded.
l/pipewire-0.3.63-x86_64-1.txz:  Upgraded.
x/libX11-1.8.3-x86_64-1.txz:  Upgraded.
x/mesa-22.3.1-x86_64-1.txz:  Upgraded.
xap/mozilla-firefox-108.0-x86_64-1.txz:  Upgraded.
  This update contains security fixes and improvements.
  Thanks to marav for the build help.
  For more information, see:
    https://www.mozilla.org/en-US/firefox/108.0/releasenotes/
    https://www.mozilla.org/en-US/security/advisories/mfsa2022-51/
    https://www.cve.org/CVERecord?id=CVE-2022-46871
    https://www.cve.org/CVERecord?id=CVE-2022-46872
    https://www.cve.org/CVERecord?id=CVE-2022-46873
    https://www.cve.org/CVERecord?id=CVE-2022-46874
    https://www.cve.org/CVERecord?id=CVE-2022-46875
    https://www.cve.org/CVERecord?id=CVE-2022-46877
    https://www.cve.org/CVERecord?id=CVE-2022-46878
    https://www.cve.org/CVERecord?id=CVE-2022-46879
  (* Security fix *)
2022-12-16 06:38:01 +01:00
Patrick J Volkerding
fc0ff5a5d7 Wed Dec 14 21:19:34 UTC 2022
a/bash-5.2.015-x86_64-1.txz:  Upgraded.
a/tcsh-6.24.06-x86_64-1.txz:  Upgraded.
ap/inxi-3.3.24_1-noarch-1.txz:  Upgraded.
ap/nano-7.1-x86_64-1.txz:  Upgraded.
d/git-2.39.0-x86_64-1.txz:  Upgraded.
d/rust-1.65.0-x86_64-1.txz:  Upgraded.
d/strace-6.1-x86_64-1.txz:  Upgraded.
kde/krita-5.1.4-x86_64-1.txz:  Upgraded.
l/imagemagick-7.1.0_54-x86_64-1.txz:  Upgraded.
l/nodejs-19.3.0-x86_64-1.txz:  Upgraded.
l/pcre2-10.42-x86_64-1.txz:  Upgraded.
n/iproute2-6.1.0-x86_64-1.txz:  Upgraded.
x/makedepend-1.0.8-x86_64-1.txz:  Upgraded.
x/xhost-1.0.9-x86_64-1.txz:  Upgraded.
x/xorg-server-21.1.5-x86_64-1.txz:  Upgraded.
  This release fixes 6 recently reported security vulnerabilities in
  various extensions.
  For more information, see:
    https://lists.x.org/archives/xorg-announce/2022-December/003302.html
    https://www.cve.org/CVERecord?id=CVE-2022-46340
    https://www.cve.org/CVERecord?id=CVE-2022-46341
    https://www.cve.org/CVERecord?id=CVE-2022-46342
    https://www.cve.org/CVERecord?id=CVE-2022-46343
    https://www.cve.org/CVERecord?id=CVE-2022-46344
    https://www.cve.org/CVERecord?id=CVE-2022-4283
  (* Security fix *)
x/xorg-server-xephyr-21.1.5-x86_64-1.txz:  Upgraded.
x/xorg-server-xnest-21.1.5-x86_64-1.txz:  Upgraded.
x/xorg-server-xvfb-21.1.5-x86_64-1.txz:  Upgraded.
x/xorg-server-xwayland-22.1.6-x86_64-1.txz:  Upgraded.
  This release fixes 6 recently reported security vulnerabilities in
  various extensions.
  For more information, see:
    https://lists.x.org/archives/xorg-announce/2022-December/003302.html
    https://www.cve.org/CVERecord?id=CVE-2022-46340
    https://www.cve.org/CVERecord?id=CVE-2022-46341
    https://www.cve.org/CVERecord?id=CVE-2022-46342
    https://www.cve.org/CVERecord?id=CVE-2022-46343
    https://www.cve.org/CVERecord?id=CVE-2022-46344
    https://www.cve.org/CVERecord?id=CVE-2022-4283
  (* Security fix *)
xap/mozilla-thunderbird-102.6.0-x86_64-1.txz:  Upgraded.
  This release contains security fixes and improvements.
  For more information, see:
    https://www.mozilla.org/en-US/security/advisories/mfsa2022-53/
    https://www.cve.org/CVERecord?id=CVE-2022-46880
    https://www.cve.org/CVERecord?id=CVE-2022-46872
    https://www.cve.org/CVERecord?id=CVE-2022-46881
    https://www.cve.org/CVERecord?id=CVE-2022-46874
    https://www.cve.org/CVERecord?id=CVE-2022-46875
    https://www.cve.org/CVERecord?id=CVE-2022-46882
    https://www.cve.org/CVERecord?id=CVE-2022-46878
  (* Security fix *)
xap/xscreensaver-6.06-x86_64-1.txz:  Upgraded.
testing/packages/mozilla-firefox-108.0-x86_64-1.txz:  Upgraded.
  Starting this out in /testing for now, since I've been trying for 2 days to
  get it to compile on 32-bit with no luck. It ends up failing with a bunch of
  errors like this:
  ld.lld: error: undefined hidden symbol: tabs_4d51_TabsStore_sync
  Any help getting this to build on 32-bit would be greatly appreciated.
  I've tried most of ponce's bag of tricks already. :-)
2022-12-14 23:46:49 +01:00
Patrick J Volkerding
ac5857bb77 Sat Dec 10 19:28:02 UTC 2022
kde/attica-5.101.0-x86_64-1.txz:  Upgraded.
kde/baloo-5.101.0-x86_64-1.txz:  Upgraded.
kde/bluez-qt-5.101.0-x86_64-1.txz:  Upgraded.
kde/breeze-icons-5.101.0-noarch-1.txz:  Upgraded.
kde/extra-cmake-modules-5.101.0-x86_64-1.txz:  Upgraded.
kde/frameworkintegration-5.101.0-x86_64-1.txz:  Upgraded.
kde/kactivities-5.101.0-x86_64-1.txz:  Upgraded.
kde/kactivities-stats-5.101.0-x86_64-1.txz:  Upgraded.
kde/kapidox-5.101.0-x86_64-1.txz:  Upgraded.
kde/karchive-5.101.0-x86_64-1.txz:  Upgraded.
kde/kauth-5.101.0-x86_64-1.txz:  Upgraded.
kde/kbookmarks-5.101.0-x86_64-1.txz:  Upgraded.
kde/kcalendarcore-5.101.0-x86_64-1.txz:  Upgraded.
kde/kcmutils-5.101.0-x86_64-1.txz:  Upgraded.
kde/kcodecs-5.101.0-x86_64-1.txz:  Upgraded.
kde/kcompletion-5.101.0-x86_64-1.txz:  Upgraded.
kde/kconfig-5.101.0-x86_64-1.txz:  Upgraded.
kde/kconfigwidgets-5.101.0-x86_64-1.txz:  Upgraded.
kde/kcontacts-5.101.0-x86_64-1.txz:  Upgraded.
kde/kcoreaddons-5.101.0-x86_64-1.txz:  Upgraded.
kde/kcrash-5.101.0-x86_64-1.txz:  Upgraded.
kde/kdav-5.101.0-x86_64-1.txz:  Upgraded.
kde/kdbusaddons-5.101.0-x86_64-1.txz:  Upgraded.
kde/kdeclarative-5.101.0-x86_64-1.txz:  Upgraded.
kde/kded-5.101.0-x86_64-1.txz:  Upgraded.
kde/kdelibs4support-5.101.0-x86_64-1.txz:  Upgraded.
kde/kdesignerplugin-5.101.0-x86_64-1.txz:  Upgraded.
kde/kdesu-5.101.0-x86_64-1.txz:  Upgraded.
kde/kdewebkit-5.101.0-x86_64-1.txz:  Upgraded.
kde/kdnssd-5.101.0-x86_64-1.txz:  Upgraded.
kde/kdoctools-5.101.0-x86_64-1.txz:  Upgraded.
kde/kemoticons-5.101.0-x86_64-1.txz:  Upgraded.
kde/kfilemetadata-5.101.0-x86_64-1.txz:  Upgraded.
kde/kglobalaccel-5.101.0-x86_64-1.txz:  Upgraded.
kde/kguiaddons-5.101.0-x86_64-1.txz:  Upgraded.
kde/kholidays-5.101.0-x86_64-1.txz:  Upgraded.
kde/khtml-5.101.0-x86_64-1.txz:  Upgraded.
kde/ki18n-5.101.0-x86_64-1.txz:  Upgraded.
kde/kiconthemes-5.101.0-x86_64-1.txz:  Upgraded.
kde/kidletime-5.101.0-x86_64-1.txz:  Upgraded.
kde/kimageformats-5.101.0-x86_64-1.txz:  Upgraded.
kde/kinit-5.101.0-x86_64-1.txz:  Upgraded.
kde/kio-5.101.0-x86_64-1.txz:  Upgraded.
kde/kirigami2-5.101.0-x86_64-1.txz:  Upgraded.
kde/kitemmodels-5.101.0-x86_64-1.txz:  Upgraded.
kde/kitemviews-5.101.0-x86_64-1.txz:  Upgraded.
kde/kjobwidgets-5.101.0-x86_64-1.txz:  Upgraded.
kde/kjs-5.101.0-x86_64-1.txz:  Upgraded.
kde/kjsembed-5.101.0-x86_64-1.txz:  Upgraded.
kde/kmediaplayer-5.101.0-x86_64-1.txz:  Upgraded.
kde/knewstuff-5.101.0-x86_64-1.txz:  Upgraded.
kde/knotifications-5.101.0-x86_64-1.txz:  Upgraded.
kde/knotifyconfig-5.101.0-x86_64-1.txz:  Upgraded.
kde/kpackage-5.101.0-x86_64-1.txz:  Upgraded.
kde/kparts-5.101.0-x86_64-1.txz:  Upgraded.
kde/kpeople-5.101.0-x86_64-1.txz:  Upgraded.
kde/kplotting-5.101.0-x86_64-1.txz:  Upgraded.
kde/kpty-5.101.0-x86_64-1.txz:  Upgraded.
kde/kquickcharts-5.101.0-x86_64-1.txz:  Upgraded.
kde/kross-5.101.0-x86_64-1.txz:  Upgraded.
kde/krunner-5.101.0-x86_64-1.txz:  Upgraded.
kde/kservice-5.101.0-x86_64-1.txz:  Upgraded.
kde/ktexteditor-5.101.0-x86_64-1.txz:  Upgraded.
kde/ktextwidgets-5.101.0-x86_64-1.txz:  Upgraded.
kde/kunitconversion-5.101.0-x86_64-1.txz:  Upgraded.
kde/kwallet-5.101.0-x86_64-1.txz:  Upgraded.
kde/kwayland-5.101.0-x86_64-1.txz:  Upgraded.
kde/kwidgetsaddons-5.101.0-x86_64-1.txz:  Upgraded.
kde/kwindowsystem-5.101.0-x86_64-1.txz:  Upgraded.
kde/kxmlgui-5.101.0-x86_64-1.txz:  Upgraded.
kde/kxmlrpcclient-5.101.0-x86_64-1.txz:  Upgraded.
kde/modemmanager-qt-5.101.0-x86_64-1.txz:  Upgraded.
kde/networkmanager-qt-5.101.0-x86_64-1.txz:  Upgraded.
kde/oxygen-icons5-5.101.0-noarch-1.txz:  Upgraded.
kde/plasma-framework-5.101.0-x86_64-1.txz:  Upgraded.
kde/prison-5.101.0-x86_64-1.txz:  Upgraded.
kde/purpose-5.101.0-x86_64-1.txz:  Upgraded.
kde/qqc2-desktop-style-5.101.0-x86_64-1.txz:  Upgraded.
kde/solid-5.101.0-x86_64-1.txz:  Upgraded.
kde/sonnet-5.101.0-x86_64-1.txz:  Upgraded.
kde/syndication-5.101.0-x86_64-1.txz:  Upgraded.
kde/syntax-highlighting-5.101.0-x86_64-1.txz:  Upgraded.
kde/threadweaver-5.101.0-x86_64-1.txz:  Upgraded.
x/xf86-video-vesa-2.6.0-x86_64-1.txz:  Upgraded.
2022-12-10 21:34:44 +01:00
Patrick J Volkerding
9969c19137 Fri Dec 9 19:43:46 UTC 2022
a/usbutils-015-x86_64-1.txz:  Upgraded.
l/adwaita-icon-theme-43-noarch-1.txz:  Upgraded.
l/gtk+3-3.24.35-x86_64-1.txz:  Upgraded.
l/libarchive-3.6.2-x86_64-1.txz:  Upgraded.
  This is a bugfix and security release.
  Relevant bugfixes:
    rar5 reader: fix possible garbled output with bsdtar -O (#1745)
    mtree reader: support reading mtree files with tabs (#1783)
  Security fixes:
    various small fixes for issues found by CodeQL
  (* Security fix *)
l/mozilla-nss-3.86-x86_64-1.txz:  Upgraded.
l/pipewire-0.3.62-x86_64-1.txz:  Upgraded.
x/OpenCC-1.1.6-x86_64-1.txz:  Upgraded.
2022-12-09 21:38:57 +01:00
Patrick J Volkerding
69f7fbdfae Thu Dec 8 22:48:34 UTC 2022
ap/vim-9.0.1034-x86_64-1.txz:  Upgraded.
  This update fixes various security issues such as a heap-based buffer
  overflow and use after free.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2022-4141
    https://www.cve.org/CVERecord?id=CVE-2022-3591
    https://www.cve.org/CVERecord?id=CVE-2022-3520
    https://www.cve.org/CVERecord?id=CVE-2022-3491
    https://www.cve.org/CVERecord?id=CVE-2022-4292
    https://www.cve.org/CVERecord?id=CVE-2022-4293
  (* Security fix *)
e/emacs-28.2-x86_64-2.txz:  Rebuilt.
  GNU Emacs through 28.2 allows attackers to execute commands via shell
  metacharacters in the name of a source-code file, because lib-src/etags.c
  uses the system C library function in its implementation of the ctags
  program. For example, a victim may use the "ctags *" command (suggested in
  the ctags documentation) in a situation where the current working directory
  has contents that depend on untrusted input.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2022-45939
  (* Security fix *)
kde/akonadi-22.12.0-x86_64-1.txz:  Upgraded.
kde/akonadi-calendar-22.12.0-x86_64-1.txz:  Upgraded.
kde/akonadi-calendar-tools-22.12.0-x86_64-1.txz:  Upgraded.
kde/akonadi-contacts-22.12.0-x86_64-1.txz:  Upgraded.
kde/akonadi-import-wizard-22.12.0-x86_64-1.txz:  Upgraded.
kde/akonadi-mime-22.12.0-x86_64-1.txz:  Upgraded.
kde/akonadi-notes-22.12.0-x86_64-1.txz:  Upgraded.
kde/akonadi-search-22.12.0-x86_64-1.txz:  Upgraded.
kde/akonadiconsole-22.12.0-x86_64-1.txz:  Upgraded.
kde/akregator-22.12.0-x86_64-1.txz:  Upgraded.
kde/analitza-22.12.0-x86_64-1.txz:  Upgraded.
kde/ark-22.12.0-x86_64-1.txz:  Upgraded.
kde/artikulate-22.12.0-x86_64-1.txz:  Upgraded.
kde/audiocd-kio-22.12.0-x86_64-1.txz:  Upgraded.
kde/baloo-widgets-22.12.0-x86_64-1.txz:  Upgraded.
kde/blinken-22.12.0-x86_64-1.txz:  Upgraded.
kde/bomber-22.12.0-x86_64-1.txz:  Upgraded.
kde/bovo-22.12.0-x86_64-1.txz:  Upgraded.
kde/calendarsupport-22.12.0-x86_64-1.txz:  Upgraded.
kde/cantor-22.12.0-x86_64-1.txz:  Upgraded.
kde/cervisia-22.12.0-x86_64-1.txz:  Upgraded.
kde/dolphin-22.12.0-x86_64-1.txz:  Upgraded.
kde/dolphin-plugins-22.12.0-x86_64-1.txz:  Upgraded.
kde/dragon-22.12.0-x86_64-1.txz:  Upgraded.
kde/elisa-22.12.0-x86_64-1.txz:  Upgraded.
kde/eventviews-22.12.0-x86_64-1.txz:  Upgraded.
kde/falkon-22.12.0-x86_64-1.txz:  Upgraded.
kde/ffmpegthumbs-22.12.0-x86_64-1.txz:  Upgraded.
kde/filelight-22.12.0-x86_64-1.txz:  Upgraded.
kde/granatier-22.12.0-x86_64-1.txz:  Upgraded.
kde/grantlee-editor-22.12.0-x86_64-1.txz:  Upgraded.
kde/grantleetheme-22.12.0-x86_64-1.txz:  Upgraded.
kde/gwenview-22.12.0-x86_64-1.txz:  Upgraded.
kde/incidenceeditor-22.12.0-x86_64-1.txz:  Upgraded.
kde/itinerary-22.12.0-x86_64-1.txz:  Upgraded.
kde/juk-22.12.0-x86_64-1.txz:  Upgraded.
kde/k3b-22.12.0-x86_64-1.txz:  Upgraded.
kde/kaddressbook-22.12.0-x86_64-1.txz:  Upgraded.
kde/kalarm-22.12.0-x86_64-1.txz:  Upgraded.
kde/kalendar-22.12.0-x86_64-1.txz:  Upgraded.
kde/kalgebra-22.12.0-x86_64-1.txz:  Upgraded.
kde/kalzium-22.12.0-x86_64-1.txz:  Upgraded.
kde/kamera-22.12.0-x86_64-1.txz:  Upgraded.
kde/kamoso-22.12.0-x86_64-1.txz:  Upgraded.
kde/kanagram-22.12.0-x86_64-1.txz:  Upgraded.
kde/kapman-22.12.0-x86_64-1.txz:  Upgraded.
kde/kapptemplate-22.12.0-x86_64-1.txz:  Upgraded.
kde/kate-22.12.0-x86_64-1.txz:  Upgraded.
kde/katomic-22.12.0-x86_64-1.txz:  Upgraded.
kde/kbackup-22.12.0-x86_64-1.txz:  Upgraded.
kde/kblackbox-22.12.0-x86_64-1.txz:  Upgraded.
kde/kblocks-22.12.0-x86_64-1.txz:  Upgraded.
kde/kbounce-22.12.0-x86_64-1.txz:  Upgraded.
kde/kbreakout-22.12.0-x86_64-1.txz:  Upgraded.
kde/kbruch-22.12.0-x86_64-1.txz:  Upgraded.
kde/kcachegrind-22.12.0-x86_64-1.txz:  Upgraded.
kde/kcalc-22.12.0-x86_64-1.txz:  Upgraded.
kde/kcalutils-22.12.0-x86_64-1.txz:  Upgraded.
kde/kcharselect-22.12.0-x86_64-1.txz:  Upgraded.
kde/kcolorchooser-22.12.0-x86_64-1.txz:  Upgraded.
kde/kcron-22.12.0-x86_64-1.txz:  Upgraded.
kde/kde-dev-scripts-22.12.0-x86_64-1.txz:  Upgraded.
kde/kde-dev-utils-22.12.0-x86_64-1.txz:  Upgraded.
kde/kdebugsettings-22.12.0-x86_64-1.txz:  Upgraded.
kde/kdeconnect-kde-22.12.0-x86_64-1.txz:  Upgraded.
kde/kdeedu-data-22.12.0-x86_64-1.txz:  Upgraded.
kde/kdegraphics-mobipocket-22.12.0-x86_64-1.txz:  Upgraded.
kde/kdegraphics-thumbnailers-22.12.0-x86_64-1.txz:  Upgraded.
kde/kdenetwork-filesharing-22.12.0-x86_64-1.txz:  Upgraded.
kde/kdenlive-22.12.0-x86_64-1.txz:  Upgraded.
kde/kdepim-addons-22.12.0-x86_64-1.txz:  Upgraded.
kde/kdepim-runtime-22.12.0-x86_64-1.txz:  Upgraded.
kde/kdesdk-kio-22.12.0-x86_64-1.txz:  Upgraded.
kde/kdesdk-thumbnailers-22.12.0-x86_64-1.txz:  Upgraded.
kde/kdev-php-22.12.0-x86_64-1.txz:  Upgraded.
kde/kdev-python-22.12.0-x86_64-1.txz:  Upgraded.
kde/kdevelop-22.12.0-x86_64-1.txz:  Upgraded.
kde/kdf-22.12.0-x86_64-1.txz:  Upgraded.
kde/kdialog-22.12.0-x86_64-1.txz:  Upgraded.
kde/kdiamond-22.12.0-x86_64-1.txz:  Upgraded.
kde/keditbookmarks-22.12.0-x86_64-1.txz:  Upgraded.
kde/kfind-22.12.0-x86_64-1.txz:  Upgraded.
kde/kfloppy-22.12.0-x86_64-1.txz:  Upgraded.
kde/kfourinline-22.12.0-x86_64-1.txz:  Upgraded.
kde/kgeography-22.12.0-x86_64-1.txz:  Upgraded.
kde/kget-22.12.0-x86_64-1.txz:  Upgraded.
kde/kgoldrunner-22.12.0-x86_64-1.txz:  Upgraded.
kde/kgpg-22.12.0-x86_64-1.txz:  Upgraded.
kde/khangman-22.12.0-x86_64-1.txz:  Upgraded.
kde/khelpcenter-22.12.0-x86_64-1.txz:  Upgraded.
kde/kidentitymanagement-22.12.0-x86_64-1.txz:  Upgraded.
kde/kig-22.12.0-x86_64-1.txz:  Upgraded.
kde/kigo-22.12.0-x86_64-1.txz:  Upgraded.
kde/killbots-22.12.0-x86_64-1.txz:  Upgraded.
kde/kimagemapeditor-22.12.0-x86_64-1.txz:  Upgraded.
kde/kimap-22.12.0-x86_64-1.txz:  Upgraded.
kde/kio-extras-22.12.0-x86_64-1.txz:  Upgraded.
kde/kio-gdrive-22.12.0-x86_64-1.txz:  Upgraded.
kde/kio-zeroconf-22.12.0-x86_64-1.txz:  Upgraded.
kde/kipi-plugins-22.12.0-x86_64-1.txz:  Upgraded.
kde/kirigami-gallery-22.12.0-x86_64-1.txz:  Upgraded.
kde/kiriki-22.12.0-x86_64-1.txz:  Upgraded.
kde/kiten-22.12.0-x86_64-1.txz:  Upgraded.
kde/kitinerary-22.12.0-x86_64-1.txz:  Upgraded.
kde/kjumpingcube-22.12.0-x86_64-1.txz:  Upgraded.
kde/kldap-22.12.0-x86_64-1.txz:  Upgraded.
kde/kleopatra-22.12.0-x86_64-1.txz:  Upgraded.
kde/klickety-22.12.0-x86_64-1.txz:  Upgraded.
kde/klines-22.12.0-x86_64-1.txz:  Upgraded.
kde/kmag-22.12.0-x86_64-1.txz:  Upgraded.
kde/kmahjongg-22.12.0-x86_64-1.txz:  Upgraded.
kde/kmail-22.12.0-x86_64-1.txz:  Upgraded.
kde/kmail-account-wizard-22.12.0-x86_64-1.txz:  Upgraded.
kde/kmailtransport-22.12.0-x86_64-1.txz:  Upgraded.
kde/kmbox-22.12.0-x86_64-1.txz:  Upgraded.
kde/kmime-22.12.0-x86_64-1.txz:  Upgraded.
kde/kmines-22.12.0-x86_64-1.txz:  Upgraded.
kde/kmix-22.12.0-x86_64-1.txz:  Upgraded.
kde/kmousetool-22.12.0-x86_64-1.txz:  Upgraded.
kde/kmouth-22.12.0-x86_64-1.txz:  Upgraded.
kde/kmplot-22.12.0-x86_64-1.txz:  Upgraded.
kde/knavalbattle-22.12.0-x86_64-1.txz:  Upgraded.
kde/knetwalk-22.12.0-x86_64-1.txz:  Upgraded.
kde/knights-22.12.0-x86_64-1.txz:  Upgraded.
kde/knotes-22.12.0-x86_64-1.txz:  Upgraded.
kde/kolf-22.12.0-x86_64-1.txz:  Upgraded.
kde/kollision-22.12.0-x86_64-1.txz:  Upgraded.
kde/kolourpaint-22.12.0-x86_64-1.txz:  Upgraded.
kde/kompare-22.12.0-x86_64-1.txz:  Upgraded.
kde/konqueror-22.12.0-x86_64-1.txz:  Upgraded.
kde/konquest-22.12.0-x86_64-1.txz:  Upgraded.
kde/konsole-22.12.0-x86_64-1.txz:  Upgraded.
kde/kontact-22.12.0-x86_64-1.txz:  Upgraded.
kde/kontactinterface-22.12.0-x86_64-1.txz:  Upgraded.
kde/kontrast-22.12.0-x86_64-1.txz:  Upgraded.
kde/konversation-22.12.0-x86_64-1.txz:  Upgraded.
kde/kopeninghours-22.12.0-x86_64-1.txz:  Upgraded.
kde/kopete-22.12.0-x86_64-1.txz:  Upgraded.
kde/korganizer-22.12.0-x86_64-1.txz:  Upgraded.
kde/kosmindoormap-22.12.0-x86_64-1.txz:  Upgraded.
kde/kpat-22.12.0-x86_64-1.txz:  Upgraded.
kde/kpimtextedit-22.12.0-x86_64-1.txz:  Upgraded.
kde/kpkpass-22.12.0-x86_64-1.txz:  Upgraded.
kde/kpmcore-22.12.0-x86_64-1.txz:  Upgraded.
kde/kpublictransport-22.12.0-x86_64-1.txz:  Upgraded.
kde/kqtquickcharts-22.12.0-x86_64-1.txz:  Upgraded.
kde/krdc-22.12.0-x86_64-1.txz:  Upgraded.
kde/kreversi-22.12.0-x86_64-1.txz:  Upgraded.
kde/krfb-22.12.0-x86_64-1.txz:  Upgraded.
kde/kross-interpreters-22.12.0-x86_64-1.txz:  Upgraded.
kde/kruler-22.12.0-x86_64-1.txz:  Upgraded.
kde/ksanecore-22.12.0-x86_64-1.txz:  Upgraded.
kde/kshisen-22.12.0-x86_64-1.txz:  Upgraded.
kde/ksirk-22.12.0-x86_64-1.txz:  Upgraded.
kde/ksmtp-22.12.0-x86_64-1.txz:  Upgraded.
kde/ksnakeduel-22.12.0-x86_64-1.txz:  Upgraded.
kde/kspaceduel-22.12.0-x86_64-1.txz:  Upgraded.
kde/ksquares-22.12.0-x86_64-1.txz:  Upgraded.
kde/ksudoku-22.12.0-x86_64-1.txz:  Upgraded.
kde/ksystemlog-22.12.0-x86_64-1.txz:  Upgraded.
kde/kteatime-22.12.0-x86_64-1.txz:  Upgraded.
kde/ktimer-22.12.0-x86_64-1.txz:  Upgraded.
kde/ktnef-22.12.0-x86_64-1.txz:  Upgraded.
kde/ktorrent-22.12.0-x86_64-1.txz:  Upgraded.
kde/ktouch-22.12.0-x86_64-1.txz:  Upgraded.
kde/kturtle-22.12.0-x86_64-1.txz:  Upgraded.
kde/kubrick-22.12.0-x86_64-1.txz:  Upgraded.
kde/kwalletmanager-22.12.0-x86_64-1.txz:  Upgraded.
kde/kwave-22.12.0-x86_64-1.txz:  Upgraded.
kde/kwordquiz-22.12.0-x86_64-1.txz:  Upgraded.
kde/libgravatar-22.12.0-x86_64-1.txz:  Upgraded.
kde/libkcddb-22.12.0-x86_64-1.txz:  Upgraded.
kde/libkcompactdisc-22.12.0-x86_64-1.txz:  Upgraded.
kde/libkdcraw-22.12.0-x86_64-1.txz:  Upgraded.
kde/libkdegames-22.12.0-x86_64-1.txz:  Upgraded.
kde/libkdepim-22.12.0-x86_64-1.txz:  Upgraded.
kde/libkeduvocdocument-22.12.0-x86_64-1.txz:  Upgraded.
kde/libkexiv2-22.12.0-x86_64-1.txz:  Upgraded.
kde/libkgapi-22.12.0-x86_64-1.txz:  Upgraded.
kde/libkipi-22.12.0-x86_64-1.txz:  Upgraded.
kde/libkleo-22.12.0-x86_64-1.txz:  Upgraded.
kde/libkmahjongg-22.12.0-x86_64-1.txz:  Upgraded.
kde/libkomparediff2-22.12.0-x86_64-1.txz:  Upgraded.
kde/libksane-22.12.0-x86_64-1.txz:  Upgraded.
kde/libksieve-22.12.0-x86_64-1.txz:  Upgraded.
kde/libktorrent-22.12.0-x86_64-1.txz:  Upgraded.
kde/lokalize-22.12.0-x86_64-1.txz:  Upgraded.
kde/lskat-22.12.0-x86_64-1.txz:  Upgraded.
kde/mailcommon-22.12.0-x86_64-1.txz:  Upgraded.
kde/mailimporter-22.12.0-x86_64-1.txz:  Upgraded.
kde/marble-22.12.0-x86_64-1.txz:  Upgraded.
kde/markdownpart-22.12.0-x86_64-1.txz:  Upgraded.
kde/mbox-importer-22.12.0-x86_64-1.txz:  Upgraded.
kde/messagelib-22.12.0-x86_64-1.txz:  Upgraded.
kde/minuet-22.12.0-x86_64-1.txz:  Upgraded.
kde/okular-22.12.0-x86_64-1.txz:  Upgraded.
kde/palapeli-22.12.0-x86_64-1.txz:  Upgraded.
kde/parley-22.12.0-x86_64-1.txz:  Upgraded.
kde/partitionmanager-22.12.0-x86_64-1.txz:  Upgraded.
kde/picmi-22.12.0-x86_64-1.txz:  Upgraded.
kde/pim-data-exporter-22.12.0-x86_64-1.txz:  Upgraded.
kde/pim-sieve-editor-22.12.0-x86_64-1.txz:  Upgraded.
kde/pimcommon-22.12.0-x86_64-1.txz:  Upgraded.
kde/poxml-22.12.0-x86_64-1.txz:  Upgraded.
kde/print-manager-22.12.0-x86_64-1.txz:  Upgraded.
kde/rocs-22.12.0-x86_64-1.txz:  Upgraded.
kde/skanlite-22.12.0-x86_64-1.txz:  Upgraded.
kde/skanpage-22.12.0-x86_64-1.txz:  Upgraded.
kde/spectacle-22.12.0-x86_64-1.txz:  Upgraded.
kde/svgpart-22.12.0-x86_64-1.txz:  Upgraded.
kde/sweeper-22.12.0-x86_64-1.txz:  Upgraded.
kde/umbrello-22.12.0-x86_64-1.txz:  Upgraded.
kde/yakuake-22.12.0-x86_64-1.txz:  Upgraded.
kde/zanshin-22.12.0-x86_64-1.txz:  Upgraded.
x/ibus-m17n-1.4.18-x86_64-1.txz:  Upgraded.
x/libICE-1.1.1-x86_64-1.txz:  Upgraded.
x/libXau-1.0.11-x86_64-1.txz:  Upgraded.
x/libfontenc-1.1.7-x86_64-1.txz:  Upgraded.
x/libxkbfile-1.1.2-x86_64-1.txz:  Upgraded.
x/libxshmfence-1.3.2-x86_64-1.txz:  Upgraded.
x/xkbcomp-1.4.6-x86_64-1.txz:  Upgraded.
xap/vim-gvim-9.0.1034-x86_64-1.txz:  Upgraded.
2022-12-09 00:41:09 +01:00
Patrick J Volkerding
b98f1614c2 Wed Dec 7 18:48:07 UTC 2022
d/cargo-vendor-filterer-0.5.7-x86_64-1.txz:  Added.
  Thanks to Heinz Wiesinger.
d/cbindgen-0.24.3-x86_64-1.txz:  Added.
d/python3-3.9.16-x86_64-1.txz:  Upgraded.
  This update fixes security issues:
  gh-98739: Updated bundled libexpat to 2.5.0 to fix CVE-2022-43680
  (heap use-after-free).
  gh-98433: The IDNA codec decoder used on DNS hostnames by socket or asyncio
  related name resolution functions no longer involves a quadratic algorithm
  to fix CVE-2022-45061. This prevents a potential CPU denial of service if an
  out-of-spec excessive length hostname involving bidirectional characters were
  decoded. Some protocols such as urllib http 3xx redirects potentially allow
  for an attacker to supply such a name.
  gh-100001: python -m http.server no longer allows terminal control characters
  sent within a garbage request to be printed to the stderr server log.
  gh-87604: Avoid publishing list of active per-interpreter audit hooks via the
  gc module.
  gh-97514: On Linux the multiprocessing module returns to using filesystem
  backed unix domain sockets for communication with the forkserver process
  instead of the Linux abstract socket namespace. Only code that chooses to use
  the "forkserver" start method is affected. This prevents Linux CVE-2022-42919
  (potential privilege escalation) as abstract sockets have no permissions and
  could allow any user on the system in the same network namespace (often the
  whole system) to inject code into the multiprocessing forkserver process.
  Filesystem based socket permissions restrict this to the forkserver process
  user as was the default in Python 3.8 and earlier.
  gh-98517: Port XKCP's fix for the buffer overflows in SHA-3 to fix
  CVE-2022-37454.
  gh-68966: The deprecated mailcap module now refuses to inject unsafe text
  (filenames, MIME types, parameters) into shell commands to address
  CVE-2015-20107. Instead of using such text, it will warn and act as if a
  match was not found (or for test commands, as if the test failed).
  For more information, see:
    https://pythoninsider.blogspot.com/2022/12/python-3111-3109-3916-3816-3716-and.html
    https://www.cve.org/CVERecord?id=CVE-2022-43680
    https://www.cve.org/CVERecord?id=CVE-2022-45061
    https://www.cve.org/CVERecord?id=CVE-2022-42919
    https://www.cve.org/CVERecord?id=CVE-2022-37454
    https://www.cve.org/CVERecord?id=CVE-2015-20107
  (* Security fix *)
d/rust-bindgen-0.63.0-x86_64-1.txz:  Added.
  Thanks to Heinz Wiesinger.
l/pcre2-10.41-x86_64-1.txz:  Upgraded.
n/proftpd-1.3.8-x86_64-1.txz:  Upgraded.
x/mesa-22.3.0-x86_64-1.txz:  Upgraded.
  Compiled with Rusticl support. Thanks to Heinz Wiesinger.
x/xdm-1.1.14-x86_64-1.txz:  Upgraded.
2022-12-07 22:19:17 +01:00
Patrick J Volkerding
df3f13247e Mon Dec 5 21:00:46 UTC 2022
a/glibc-zoneinfo-2022g-noarch-1.txz:  Upgraded.
  This package provides the latest timezone updates.
ap/texinfo-7.0.1-x86_64-2.txz:  Rebuilt.
  Rebuilt without the --disable-perl-xs option to fix a2ps failing to build
  from source. The option was added during the 15.0 development cycle to fix
  glibc failing to build from source, but that issue has been resolved.
  Thanks to nobodino and marav.
n/ca-certificates-20221205-noarch-1.txz:  Upgraded.
  This update provides the latest CA certificates to check for the
  authenticity of SSL connections.
n/dnsmasq-2.88-x86_64-1.txz:  Upgraded.
2022-12-06 07:00:10 +01:00
Patrick J Volkerding
6229c1ff54 Mon Dec 5 02:40:12 UTC 2022
x/OpenCC-1.1.5-x86_64-1.txz:  Upgraded.
x/libXScrnSaver-1.2.4-x86_64-1.txz:  Upgraded.
x/libXcomposite-0.4.6-x86_64-1.txz:  Upgraded.
x/libXdamage-1.1.6-x86_64-1.txz:  Upgraded.
x/libXres-1.2.2-x86_64-1.txz:  Upgraded.
x/libXv-1.0.12-x86_64-1.txz:  Upgraded.
x/libXxf86dga-1.1.6-x86_64-1.txz:  Upgraded.
x/lndir-1.0.4-x86_64-1.txz:  Upgraded.
2022-12-05 07:00:11 +01:00
Patrick J Volkerding
2d4b9b1926 Sat Dec 3 21:07:32 UTC 2022
a/tcsh-6.24.04-x86_64-1.txz:  Upgraded.
ap/texinfo-7.0.1-x86_64-1.txz:  Upgraded.
l/vte-0.70.2-x86_64-1.txz:  Upgraded.
x/transset-1.0.3-x86_64-1.txz:  Upgraded.
x/xcursorgen-1.0.8-x86_64-1.txz:  Upgraded.
2022-12-04 06:59:45 +01:00
Patrick J Volkerding
668a929acf Fri Dec 2 06:58:38 UTC 2022
a/gptfdisk-1.0.9-x86_64-2.txz:  Rebuilt.
  Applied upstream patches to fix a crash and partition corruption caused by
  the popt upgrade:
  [PATCH] Updated guid.cc to deal with minor change in libuuid
  [PATCH] Fix failure & crash of sgdisk when compiled with latest popt
  [PATCH] Fix NULL dereference when duplicating string argument
  Thanks to jloco.
d/cmake-3.25.1-x86_64-1.txz:  Upgraded.
kde/calligra-3.2.1-x86_64-24.txz:  Rebuilt.
  Recompiled against poppler-22.12.0.
kde/cantor-22.08.3-x86_64-2.txz:  Rebuilt.
  Recompiled against poppler-22.12.0.
kde/kfilemetadata-5.100.0-x86_64-2.txz:  Rebuilt.
  Recompiled against poppler-22.12.0.
kde/kile-2.9.93-x86_64-22.txz:  Rebuilt.
  Recompiled against poppler-22.12.0.
kde/kitinerary-22.08.3-x86_64-2.txz:  Rebuilt.
  Recompiled against poppler-22.12.0.
kde/krita-5.1.3-x86_64-2.txz:  Rebuilt.
  Recompiled against poppler-22.12.0.
kde/okular-22.08.3-x86_64-2.txz:  Rebuilt.
  Recompiled against poppler-22.12.0.
l/glib2-2.74.3-x86_64-1.txz:  Upgraded.
l/poppler-22.12.0-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
n/NetworkManager-1.40.6-x86_64-1.txz:  Upgraded.
xap/NetworkManager-openvpn-1.10.2-x86_64-1.txz:  Upgraded.
xap/libnma-1.10.4-x86_64-1.txz:  Upgraded.
xap/network-manager-applet-1.30.0-x86_64-1.txz:  Upgraded.
2022-12-02 16:59:51 +01:00
Patrick J Volkerding
f5b2119f53 Wed Nov 30 21:39:29 UTC 2022
kde/kstars-3.6.2-x86_64-1.txz:  Upgraded.
l/libbluray-1.3.4-x86_64-1.txz:  Upgraded.
l/newt-0.52.23-x86_64-1.txz:  Upgraded.
l/nodejs-19.2.0-x86_64-1.txz:  Upgraded.
x/wayland-protocols-1.31-noarch-1.txz:  Upgraded.
extra/php80/php80-8.0.26-x86_64-1.txz:  Upgraded.
extra/php81/php81-8.1.13-x86_64-1.txz:  Upgraded.
2022-12-01 07:00:13 +01:00
Patrick J Volkerding
31e27c00fb Tue Nov 29 20:56:03 UTC 2022
a/cryptsetup-2.6.0-x86_64-1.txz:  Upgraded.
a/kernel-firmware-20221123_cdf9499-noarch-1.txz:  Upgraded.
kde/bluedevil-5.26.4-x86_64-1.txz:  Upgraded.
kde/breeze-5.26.4-x86_64-1.txz:  Upgraded.
kde/breeze-grub-5.26.4-x86_64-1.txz:  Upgraded.
kde/breeze-gtk-5.26.4-x86_64-1.txz:  Upgraded.
kde/drkonqi-5.26.4-x86_64-1.txz:  Upgraded.
kde/kactivitymanagerd-5.26.4-x86_64-1.txz:  Upgraded.
kde/kde-cli-tools-5.26.4-x86_64-1.txz:  Upgraded.
kde/kde-gtk-config-5.26.4-x86_64-1.txz:  Upgraded.
kde/kdecoration-5.26.4-x86_64-1.txz:  Upgraded.
kde/kdeplasma-addons-5.26.4-x86_64-1.txz:  Upgraded.
kde/kgamma5-5.26.4-x86_64-1.txz:  Upgraded.
kde/khotkeys-5.26.4-x86_64-1.txz:  Upgraded.
kde/kinfocenter-5.26.4-x86_64-1.txz:  Upgraded.
kde/kmenuedit-5.26.4-x86_64-1.txz:  Upgraded.
kde/kpipewire-5.26.4-x86_64-1.txz:  Upgraded.
kde/kscreen-5.26.4-x86_64-1.txz:  Upgraded.
kde/kscreenlocker-5.26.4-x86_64-1.txz:  Upgraded.
kde/ksshaskpass-5.26.4-x86_64-1.txz:  Upgraded.
kde/ksystemstats-5.26.4-x86_64-1.txz:  Upgraded.
kde/kwallet-pam-5.26.4-x86_64-1.txz:  Upgraded.
kde/kwayland-integration-5.26.4-x86_64-1.txz:  Upgraded.
kde/kwin-5.26.4-x86_64-1.txz:  Upgraded.
kde/kwrited-5.26.4-x86_64-1.txz:  Upgraded.
kde/layer-shell-qt-5.26.4-x86_64-1.txz:  Upgraded.
kde/libkscreen-5.26.4-x86_64-1.txz:  Upgraded.
kde/libksysguard-5.26.4-x86_64-1.txz:  Upgraded.
kde/milou-5.26.4-x86_64-1.txz:  Upgraded.
kde/oxygen-5.26.4-x86_64-1.txz:  Upgraded.
kde/oxygen-sounds-5.26.4-x86_64-1.txz:  Upgraded.
kde/plasma-browser-integration-5.26.4-x86_64-1.txz:  Upgraded.
kde/plasma-desktop-5.26.4-x86_64-1.txz:  Upgraded.
kde/plasma-disks-5.26.4-x86_64-1.txz:  Upgraded.
kde/plasma-firewall-5.26.4-x86_64-1.txz:  Upgraded.
kde/plasma-integration-5.26.4-x86_64-1.txz:  Upgraded.
kde/plasma-nm-5.26.4-x86_64-1.txz:  Upgraded.
kde/plasma-pa-5.26.4-x86_64-1.txz:  Upgraded.
kde/plasma-sdk-5.26.4-x86_64-1.txz:  Upgraded.
kde/plasma-systemmonitor-5.26.4-x86_64-1.txz:  Upgraded.
kde/plasma-vault-5.26.4-x86_64-1.txz:  Upgraded.
kde/plasma-workspace-5.26.4.1-x86_64-1.txz:  Upgraded.
kde/plasma-workspace-wallpapers-5.26.4-x86_64-1.txz:  Upgraded.
kde/polkit-kde-agent-1-5.26.4-x86_64-1.txz:  Upgraded.
kde/powerdevil-5.26.4-x86_64-1.txz:  Upgraded.
kde/qqc2-breeze-style-5.26.4-x86_64-1.txz:  Upgraded.
kde/sddm-kcm-5.26.4-x86_64-1.txz:  Upgraded.
kde/systemsettings-5.26.4-x86_64-1.txz:  Upgraded.
kde/xdg-desktop-portal-kde-5.26.4-x86_64-1.txz:  Upgraded.
l/glib2-2.74.2-x86_64-2.txz:  Rebuilt.
  Patched to fix C++ API.
  Thanks to 0XBF.
l/wavpack-5.6.0-x86_64-1.txz:  Upgraded.
n/iputils-20221126-x86_64-1.txz:  Upgraded.
n/libmbim-1.28.2-x86_64-1.txz:  Upgraded.
x/libime-1.0.16-x86_64-1.txz:  Upgraded.
x/xterm-377-x86_64-1.txz:  Upgraded.
xap/mozilla-firefox-107.0.1-x86_64-1.txz:  Upgraded.
  This is a bugfix release.
  For more information, see:
    https://www.mozilla.org/en-US/firefox/107.0.1/releasenotes/
2022-11-30 01:00:18 +01:00
Patrick J Volkerding
b0246e0205 Fri Nov 25 20:37:16 UTC 2022
a/btrfs-progs-6.0.2-x86_64-1.txz:  Upgraded.
l/glib2-2.74.2-x86_64-1.txz:  Upgraded.
x/fcitx5-gtk-5.0.21-x86_64-1.txz:  Upgraded.
2022-11-26 07:00:13 +01:00
Patrick J Volkerding
a8f1aa5a10 Thu Nov 24 20:55:37 UTC 2022
a/bash-5.2.012-x86_64-1.txz:  Upgraded.
a/less-612-x86_64-1.txz:  Upgraded.
a/tcsh-6.24.02-x86_64-1.txz:  Upgraded.
ap/vim-9.0.0942-x86_64-1.txz:  Upgraded.
d/make-4.4-x86_64-2.txz:  Rebuilt.
  [SV 63307] Spawn children with the default disposition of sigpipe.
  Thanks to nobodino.
d/ruby-3.1.3-x86_64-1.txz:  Upgraded.
  This release includes a security fix:
  HTTP response splitting in CGI.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2021-33621
  (* Security fix *)
l/pipewire-0.3.61-x86_64-1.txz:  Upgraded.
n/ipset-7.16-x86_64-1.txz:  Upgraded.
x/fcitx5-5.0.21-x86_64-1.txz:  Upgraded.
xap/vim-gvim-9.0.0942-x86_64-1.txz:  Upgraded.
2022-11-25 07:00:37 +01:00
Patrick J Volkerding
65b9f8df0a Wed Nov 23 19:51:17 UTC 2022
a/gawk-5.2.1-x86_64-1.txz:  Upgraded.
a/rpm2tgz-1.2.2-x86_64-7.txz:  Rebuilt.
  Take rpmoffset fixes from Gentoo.
  Thanks to allend.
d/ccache-4.7.4-x86_64-1.txz:  Upgraded.
d/meson-0.64.1-x86_64-1.txz:  Upgraded.
d/parallel-20221122-noarch-1.txz:  Upgraded.
kde/fcitx5-configtool-5.0.16-x86_64-1.txz:  Upgraded.
l/SDL2-2.26.0-x86_64-1.txz:  Upgraded.
l/glib2-2.74.1-x86_64-2.txz:  Rebuilt.
  [PATCH 1/2] Revert "Handling collision between standard i/o file descriptors
  and newly created ones."
  [PATCH 2/2] glib-unix: Add test to make sure g_unix_open_pipe will intrude
  standard range.
  Thanks to marav.
l/newt-0.52.22-x86_64-1.txz:  Upgraded.
l/pipewire-0.3.60-x86_64-2.txz:  Rebuilt.
  [PATCH] alsa: force playback start when buffer is full.
  Thanks to marav.
tcl/tcl-8.6.13-x86_64-1.txz:  Upgraded.
tcl/tk-8.6.13-x86_64-1.txz:  Upgraded.
x/libglvnd-1.6.0-x86_64-1.txz:  Upgraded.
x/wayland-protocols-1.30-noarch-1.txz:  Upgraded.
xap/blueman-2.3.5-x86_64-1.txz:  Upgraded.
2022-11-24 07:00:17 +01:00
Patrick J Volkerding
7354944bf0 Mon Nov 21 20:23:13 UTC 2022
a/libpwquality-1.4.5-x86_64-1.txz:  Upgraded.
a/pciutils-3.9.0-x86_64-1.txz:  Upgraded.
ap/qpdf-11.2.0-x86_64-1.txz:  Upgraded.
d/mercurial-6.3.1-x86_64-1.txz:  Upgraded.
kde/krusader-2.8.0-x86_64-1.txz:  Upgraded.
l/libpng-1.6.39-x86_64-1.txz:  Upgraded.
l/mlt-7.12.0-x86_64-1.txz:  Upgraded.
x/fcitx5-5.0.20-x86_64-1.txz:  Upgraded.
x/fcitx5-anthy-5.0.13-x86_64-1.txz:  Upgraded.
x/fcitx5-chinese-addons-5.0.16-x86_64-1.txz:  Upgraded.
x/fcitx5-gtk-5.0.20-x86_64-1.txz:  Upgraded.
x/fcitx5-kkc-5.0.11-x86_64-1.txz:  Upgraded.
x/fcitx5-m17n-5.0.11-x86_64-1.txz:  Upgraded.
x/fcitx5-qt-5.0.16-x86_64-1.txz:  Upgraded.
x/fcitx5-table-extra-5.0.12-x86_64-1.txz:  Upgraded.
x/fcitx5-unikey-5.0.12-x86_64-1.txz:  Upgraded.
x/libXdmcp-1.1.4-x86_64-1.txz:  Upgraded.
x/libXpm-3.5.14-x86_64-1.txz:  Upgraded.
x/libXrandr-1.5.3-x86_64-1.txz:  Upgraded.
x/libime-1.0.15-x86_64-1.txz:  Upgraded.
x/libinput-1.22.0-x86_64-1.txz:  Upgraded.
x/xcb-imdkit-1.0.4-x86_64-1.txz:  Upgraded.
2022-11-22 07:00:14 +01:00
Patrick J Volkerding
4efc82d829 Sun Nov 20 00:54:24 UTC 2022
a/aaa_libraries-15.1-x86_64-13.txz:  Rebuilt.
  Upgraded: libelf-0.188.so, liblzma.so.5.2.8, libmpfr.so.6.1.1.
  Removed: libunistring.so.2.1.0.
  Added: libFLAC++.so.6.3.0, libFLAC.so.8.3.0, libjasper.so.6.0.0.
ap/flac-1.4.2-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
ap/moc-2.6_alpha3-x86_64-2.txz:  Rebuilt.
  Recompiled against flac-1.4.2.
ap/opus-tools-0.2-x86_64-4.txz:  Rebuilt.
  Recompiled against flac-1.4.2.
ap/sox-14.4.2-x86_64-9.txz:  Rebuilt.
  Recompiled against flac-1.4.2.
ap/vorbis-tools-1.4.2-x86_64-3.txz:  Rebuilt.
  Recompiled against flac-1.4.2.
kde/audiocd-kio-22.08.3-x86_64-2.txz:  Rebuilt.
  Recompiled against flac-1.4.2.
kde/digikam-7.8.0-x86_64-4.txz:  Rebuilt.
  Recompiled against jasper-4.0.0.
kde/k3b-22.08.3-x86_64-2.txz:  Rebuilt.
  Recompiled against flac-1.4.2.
kde/kid3-3.9.2-x86_64-2.txz:  Rebuilt.
  Recompiled against flac-1.4.2.
kde/kwave-22.08.3-x86_64-2.txz:  Rebuilt.
  Recompiled against flac-1.4.2.
l/LibRaw-0.20.2-x86_64-6.txz:  Rebuilt.
  Recompiled against jasper-4.0.0.
l/at-spi2-core-2.46.0-x86_64-1.txz:  Upgraded.
l/audiofile-0.3.6-x86_64-5.txz:  Rebuilt.
  Recompiled against flac-1.4.2.
l/gamin-0.1.10-x86_64-9.txz:  Removed.
l/gegl-0.4.40-x86_64-2.txz:  Rebuilt.
  Recompiled against jasper-4.0.0.
l/glib-networking-2.74.0-x86_64-1.txz:  Upgraded.
l/glib2-2.74.1-x86_64-1.txz:  Upgraded.
l/gobject-introspection-1.74.0-x86_64-1.txz:  Upgraded.
l/gst-plugins-good-1.20.4-x86_64-2.txz:  Rebuilt.
  Recompiled against flac-1.4.2.
l/jasper-4.0.0-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
l/libsndfile-1.1.0-x86_64-2.txz:  Rebuilt.
  Recompiled against flac-1.4.2.
l/libsoup-2.74.3-x86_64-1.txz:  Upgraded.
l/pango-1.50.12-x86_64-1.txz:  Upgraded.
l/pygobject3-3.42.2-x86_64-1.txz:  Upgraded.
l/qt5-5.15.7_20221116_ee27a432-x86_64-1.txz:  Upgraded.
  Compiled against jasper-4.0.0.
l/sdl-1.2.15-x86_64-13.txz:  Rebuilt.
  Recompiled against flac-1.4.2.
l/vte-0.70.1-x86_64-1.txz:  Upgraded.
xap/audacious-plugins-4.2-x86_64-3.txz:  Rebuilt.
  Recompiled against flac-1.4.2.
xap/easytag-2.4.3-x86_64-5.txz:  Rebuilt.
  Recompiled against flac-1.4.2.
xap/xine-lib-1.2.12-x86_64-3.txz:  Rebuilt.
  Recompiled against flac-1.4.2.
2022-11-20 07:00:14 +01:00
Patrick J Volkerding
89b746210b Thu Nov 17 20:02:33 UTC 2022
d/cmake-3.25.0-x86_64-1.txz:  Upgraded.
kde/kconfig-5.100.1-x86_64-1.txz:  Upgraded.
kde/plasma-framework-5.100.1-x86_64-1.txz:  Upgraded.
l/mpfr-4.1.1-x86_64-1.txz:  Upgraded.
x/mesa-22.2.4-x86_64-1.txz:  Upgraded.
x/xterm-376-x86_64-1.txz:  Upgraded.
xap/freerdp-2.9.0-x86_64-1.txz:  Upgraded.
  Fixed multiple client side input validation issues.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2022-39316
    https://www.cve.org/CVERecord?id=CVE-2022-39317
    https://www.cve.org/CVERecord?id=CVE-2022-39318
    https://www.cve.org/CVERecord?id=CVE-2022-39319
    https://www.cve.org/CVERecord?id=CVE-2022-39320
    https://www.cve.org/CVERecord?id=CVE-2022-41877
    https://www.cve.org/CVERecord?id=CVE-2022-39347
  (* Security fix *)
2022-11-18 07:00:12 +01:00
Patrick J Volkerding
01d68a3996 Thu Nov 17 01:49:28 UTC 2022
ap/man-db-2.11.1-x86_64-1.txz:  Upgraded.
ap/nano-7.0-x86_64-1.txz:  Upgraded.
ap/sqlite-3.40.0-x86_64-1.txz:  Upgraded.
kde/plasma-framework-5.100.0-x86_64-2.txz:  Rebuilt.
  [PATCH] svgitem: do not upscale svg when using fractional scaling.
l/netpbm-11.00.02-x86_64-1.txz:  Upgraded.
n/bind-9.18.9-x86_64-1.txz:  Upgraded.
n/krb5-1.20.1-x86_64-1.txz:  Upgraded.
  Fixed integer overflows in PAC parsing.
  Fixed null deref in KDC when decoding invalid NDR.
  Fixed memory leak in OTP kdcpreauth module.
  Fixed PKCS11 module path search.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2022-42898
  (* Security fix *)
n/samba-4.17.3-x86_64-1.txz:  Upgraded.
  Fixed a security issue where Samba's Kerberos libraries and AD DC failed
  to guard against integer overflows when parsing a PAC on a 32-bit system,
  which allowed an attacker with a forged PAC to corrupt the heap.
  For more information, see:
    https://www.samba.org/samba/security/CVE-2022-42898.html
    https://www.cve.org/CVERecord?id=CVE-2022-42898
  (* Security fix *)
x/libXft-2.3.7-x86_64-1.txz:  Upgraded.
x/wayland-protocols-1.29-noarch-1.txz:  Upgraded.
xap/mozilla-firefox-107.0-x86_64-1.txz:  Upgraded.
  This update contains security fixes and improvements.
  For more information, see:
    https://www.mozilla.org/en-US/firefox/107.0/releasenotes/
    https://www.mozilla.org/security/advisories/mfsa2022-47/
    https://www.cve.org/CVERecord?id=CVE-2022-45403
    https://www.cve.org/CVERecord?id=CVE-2022-45404
    https://www.cve.org/CVERecord?id=CVE-2022-45405
    https://www.cve.org/CVERecord?id=CVE-2022-45406
    https://www.cve.org/CVERecord?id=CVE-2022-45407
    https://www.cve.org/CVERecord?id=CVE-2022-45408
    https://www.cve.org/CVERecord?id=CVE-2022-45409
    https://www.cve.org/CVERecord?id=CVE-2022-45410
    https://www.cve.org/CVERecord?id=CVE-2022-45411
    https://www.cve.org/CVERecord?id=CVE-2022-45412
    https://www.cve.org/CVERecord?id=CVE-2022-45413
    https://www.cve.org/CVERecord?id=CVE-2022-40674
    https://www.cve.org/CVERecord?id=CVE-2022-45415
    https://www.cve.org/CVERecord?id=CVE-2022-45416
    https://www.cve.org/CVERecord?id=CVE-2022-45417
    https://www.cve.org/CVERecord?id=CVE-2022-45418
    https://www.cve.org/CVERecord?id=CVE-2022-45419
    https://www.cve.org/CVERecord?id=CVE-2022-45420
    https://www.cve.org/CVERecord?id=CVE-2022-45421
  (* Security fix *)
xap/mozilla-thunderbird-102.5.0-x86_64-1.txz:  Upgraded.
  This release contains security fixes and improvements.
  For more information, see:
    https://www.mozilla.org/en-US/thunderbird/102.5.0/releasenotes/
    https://www.mozilla.org/en-US/security/advisories/mfsa2022-49/
    https://www.cve.org/CVERecord?id=CVE-2022-45403
    https://www.cve.org/CVERecord?id=CVE-2022-45404
    https://www.cve.org/CVERecord?id=CVE-2022-45405
    https://www.cve.org/CVERecord?id=CVE-2022-45406
    https://www.cve.org/CVERecord?id=CVE-2022-45408
    https://www.cve.org/CVERecord?id=CVE-2022-45409
    https://www.cve.org/CVERecord?id=CVE-2022-45410
    https://www.cve.org/CVERecord?id=CVE-2022-45411
    https://www.cve.org/CVERecord?id=CVE-2022-45412
    https://www.cve.org/CVERecord?id=CVE-2022-45416
    https://www.cve.org/CVERecord?id=CVE-2022-45418
    https://www.cve.org/CVERecord?id=CVE-2022-45420
    https://www.cve.org/CVERecord?id=CVE-2022-45421
  (* Security fix *)
xfce/xfce4-settings-4.16.5-x86_64-1.txz:  Upgraded.
  This update fixes regressions in the previous security fix:
  mime-settings: Properly quote command parameters.
  Revert "Escape characters which do not belong into an URI/URL (Issue #390)."
2022-11-17 07:00:14 +01:00
Patrick J Volkerding
7925f7cd17 Tue Nov 15 01:28:38 UTC 2022
a/xz-5.2.8-x86_64-1.txz:  Upgraded.
d/mercurial-6.3.0-x86_64-1.txz:  Upgraded.
d/rust-1.64.0-x86_64-1.txz:  Upgraded.
kde/attica-5.100.0-x86_64-1.txz:  Upgraded.
kde/baloo-5.100.0-x86_64-1.txz:  Upgraded.
kde/bluez-qt-5.100.0-x86_64-1.txz:  Upgraded.
kde/breeze-icons-5.100.0-noarch-1.txz:  Upgraded.
kde/extra-cmake-modules-5.100.0-x86_64-1.txz:  Upgraded.
kde/frameworkintegration-5.100.0-x86_64-1.txz:  Upgraded.
kde/kactivities-5.100.0-x86_64-1.txz:  Upgraded.
kde/kactivities-stats-5.100.0-x86_64-1.txz:  Upgraded.
kde/kapidox-5.100.0-x86_64-1.txz:  Upgraded.
kde/karchive-5.100.0-x86_64-1.txz:  Upgraded.
kde/kauth-5.100.0-x86_64-1.txz:  Upgraded.
kde/kbookmarks-5.100.0-x86_64-1.txz:  Upgraded.
kde/kcalendarcore-5.100.0-x86_64-1.txz:  Upgraded.
kde/kcmutils-5.100.0-x86_64-1.txz:  Upgraded.
kde/kcodecs-5.100.0-x86_64-1.txz:  Upgraded.
kde/kcompletion-5.100.0-x86_64-1.txz:  Upgraded.
kde/kconfig-5.100.0-x86_64-1.txz:  Upgraded.
kde/kconfigwidgets-5.100.0-x86_64-1.txz:  Upgraded.
kde/kcontacts-5.100.0-x86_64-1.txz:  Upgraded.
kde/kcoreaddons-5.100.0-x86_64-1.txz:  Upgraded.
kde/kcrash-5.100.0-x86_64-1.txz:  Upgraded.
kde/kdav-5.100.0-x86_64-1.txz:  Upgraded.
kde/kdbusaddons-5.100.0-x86_64-1.txz:  Upgraded.
kde/kdeclarative-5.100.0-x86_64-1.txz:  Upgraded.
kde/kded-5.100.0-x86_64-1.txz:  Upgraded.
kde/kdelibs4support-5.100.0-x86_64-1.txz:  Upgraded.
kde/kdesignerplugin-5.100.0-x86_64-1.txz:  Upgraded.
kde/kdesu-5.100.0-x86_64-1.txz:  Upgraded.
kde/kdewebkit-5.100.0-x86_64-1.txz:  Upgraded.
kde/kdnssd-5.100.0-x86_64-1.txz:  Upgraded.
kde/kdoctools-5.100.0-x86_64-1.txz:  Upgraded.
kde/kemoticons-5.100.0-x86_64-1.txz:  Upgraded.
kde/kfilemetadata-5.100.0-x86_64-1.txz:  Upgraded.
kde/kglobalaccel-5.100.0-x86_64-1.txz:  Upgraded.
kde/kguiaddons-5.100.0-x86_64-1.txz:  Upgraded.
kde/kholidays-5.100.0-x86_64-1.txz:  Upgraded.
kde/khtml-5.100.0-x86_64-1.txz:  Upgraded.
kde/ki18n-5.100.0-x86_64-1.txz:  Upgraded.
kde/kiconthemes-5.100.0-x86_64-1.txz:  Upgraded.
kde/kidletime-5.100.0-x86_64-1.txz:  Upgraded.
kde/kimageformats-5.100.0-x86_64-1.txz:  Upgraded.
kde/kinit-5.100.0-x86_64-1.txz:  Upgraded.
kde/kio-5.100.0-x86_64-1.txz:  Upgraded.
kde/kirigami2-5.100.0-x86_64-1.txz:  Upgraded.
kde/kitemmodels-5.100.0-x86_64-1.txz:  Upgraded.
kde/kitemviews-5.100.0-x86_64-1.txz:  Upgraded.
kde/kjobwidgets-5.100.0-x86_64-1.txz:  Upgraded.
kde/kjs-5.100.0-x86_64-1.txz:  Upgraded.
kde/kjsembed-5.100.0-x86_64-1.txz:  Upgraded.
kde/kmediaplayer-5.100.0-x86_64-1.txz:  Upgraded.
kde/knewstuff-5.100.0-x86_64-1.txz:  Upgraded.
kde/knotifications-5.100.0-x86_64-1.txz:  Upgraded.
kde/knotifyconfig-5.100.0-x86_64-1.txz:  Upgraded.
kde/kpackage-5.100.0-x86_64-1.txz:  Upgraded.
kde/kparts-5.100.0-x86_64-1.txz:  Upgraded.
kde/kpeople-5.100.0-x86_64-1.txz:  Upgraded.
kde/kplotting-5.100.0-x86_64-1.txz:  Upgraded.
kde/kpty-5.100.0-x86_64-1.txz:  Upgraded.
kde/kquickcharts-5.100.0-x86_64-1.txz:  Upgraded.
kde/kross-5.100.0-x86_64-1.txz:  Upgraded.
kde/krunner-5.100.0-x86_64-1.txz:  Upgraded.
kde/kservice-5.100.0-x86_64-1.txz:  Upgraded.
kde/ktexteditor-5.100.0-x86_64-1.txz:  Upgraded.
kde/ktextwidgets-5.100.0-x86_64-1.txz:  Upgraded.
kde/kunitconversion-5.100.0-x86_64-1.txz:  Upgraded.
kde/kwallet-5.100.0-x86_64-1.txz:  Upgraded.
kde/kwayland-5.100.0-x86_64-1.txz:  Upgraded.
kde/kwidgetsaddons-5.100.0-x86_64-1.txz:  Upgraded.
kde/kwindowsystem-5.100.0-x86_64-1.txz:  Upgraded.
kde/kxmlgui-5.100.0-x86_64-1.txz:  Upgraded.
kde/kxmlrpcclient-5.100.0-x86_64-1.txz:  Upgraded.
kde/modemmanager-qt-5.100.0-x86_64-1.txz:  Upgraded.
kde/networkmanager-qt-5.100.0-x86_64-1.txz:  Upgraded.
kde/oxygen-icons5-5.100.0-noarch-1.txz:  Upgraded.
kde/plasma-framework-5.100.0-x86_64-1.txz:  Upgraded.
kde/prison-5.100.0-x86_64-1.txz:  Upgraded.
kde/purpose-5.100.0-x86_64-1.txz:  Upgraded.
kde/qqc2-desktop-style-5.100.0-x86_64-1.txz:  Upgraded.
kde/solid-5.100.0-x86_64-1.txz:  Upgraded.
kde/sonnet-5.100.0-x86_64-1.txz:  Upgraded.
kde/syndication-5.100.0-x86_64-1.txz:  Upgraded.
kde/syntax-highlighting-5.100.0-x86_64-1.txz:  Upgraded.
kde/threadweaver-5.100.0-x86_64-1.txz:  Upgraded.
l/babl-0.1.98-x86_64-1.txz:  Upgraded.
l/gegl-0.4.40-x86_64-1.txz:  Upgraded.
l/grantlee-5.3.1-x86_64-1.txz:  Upgraded.
l/nodejs-19.1.0-x86_64-1.txz:  Upgraded.
n/libqmi-1.32.2-x86_64-1.txz:  Upgraded.
n/mutt-2.2.9-x86_64-1.txz:  Upgraded.
n/nghttp2-1.51.0-x86_64-1.txz:  Upgraded.
x/xcompmgr-1.1.9-x86_64-1.txz:  Upgraded.
x/xkbevd-1.1.5-x86_64-1.txz:  Upgraded.
x/xkill-1.0.6-x86_64-1.txz:  Upgraded.
x/xlogo-1.0.6-x86_64-1.txz:  Upgraded.
x/xlsatoms-1.1.4-x86_64-1.txz:  Upgraded.
x/xlsclients-1.1.5-x86_64-1.txz:  Upgraded.
testing/packages/rust-1.65.0-x86_64-1.txz:  Upgraded.
2022-11-15 07:00:12 +01:00
Patrick J Volkerding
03afa6e49a Thu Nov 10 19:47:59 UTC 2022
ap/texinfo-7.0-x86_64-1.txz:  Upgraded.
l/iso-codes-4.12.0-noarch-1.txz:  Upgraded.
l/lcms2-2.14-x86_64-1.txz:  Upgraded.
l/mozilla-nss-3.85-x86_64-1.txz:  Upgraded.
l/pipewire-0.3.60-x86_64-1.txz:  Upgraded.
n/php-7.4.33-x86_64-1.txz:  Upgraded.
  This update fixes bugs and security issues:
  GD: OOB read due to insufficient input validation in imageloadfont().
  Hash: buffer overflow in hash_update() on long parameter.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2022-31630
    https://www.cve.org/CVERecord?id=CVE-2022-37454
  (* Security fix *)
x/ibus-table-1.16.14-x86_64-1.txz:  Upgraded.
2022-11-11 07:00:07 +01:00
Patrick J Volkerding
e519d8d2c6 Wed Nov 9 22:16:30 UTC 2022
a/btrfs-progs-6.0.1-x86_64-1.txz:  Upgraded.
ap/sysstat-12.7.1-x86_64-1.txz:  Upgraded.
  On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1,
  allocate_structures contains a size_t overflow in sa_common.c. The
  allocate_structures function insufficiently checks bounds before arithmetic
  multiplication, allowing for an overflow in the size allocated for the
  buffer representing system activities.
  This issue may lead to Remote Code Execution (RCE).
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2022-39377
  (* Security fix *)
kde/bluedevil-5.26.3.1-x86_64-1.txz:  Upgraded.
kde/breeze-5.26.3.1-x86_64-1.txz:  Upgraded.
kde/oxygen-sounds-5.26.3.1-x86_64-1.txz:  Upgraded.
l/gdk-pixbuf2-2.42.10-x86_64-1.txz:  Upgraded.
l/orc-0.4.33-x86_64-1.txz:  Upgraded.
n/mobile-broadband-provider-info-20221107-x86_64-1.txz:  Upgraded.
xfce/xfce4-settings-4.16.4-x86_64-1.txz:  Upgraded.
  Fixed an argument injection vulnerability in xfce4-mime-helper.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2022-45062
  (* Security fix *)
2022-11-10 07:00:17 +01:00
Patrick J Volkerding
458c6cc7f8 Tue Nov 8 22:21:43 UTC 2022
a/bash-5.2.009-x86_64-1.txz:  Upgraded.
a/glibc-zoneinfo-2022f-noarch-1.txz:  Upgraded.
a/sed-4.9-x86_64-1.txz:  Upgraded.
ap/mariadb-10.6.11-x86_64-1.txz:  Upgraded.
  This is a bugfix release.
  For more information, see:
    https://mariadb.com/kb/en/mariadb-10-6-11-release-notes
d/ccache-4.7.3-x86_64-1.txz:  Upgraded.
d/meson-0.64.0-x86_64-1.txz:  Upgraded.
d/patchelf-0.17.0-x86_64-1.txz:  Upgraded.
kde/bluedevil-5.26.3-x86_64-1.txz:  Upgraded.
kde/breeze-5.26.3-x86_64-1.txz:  Upgraded.
kde/breeze-grub-5.26.3-x86_64-1.txz:  Upgraded.
kde/breeze-gtk-5.26.3-x86_64-1.txz:  Upgraded.
kde/drkonqi-5.26.3-x86_64-1.txz:  Upgraded.
kde/kactivitymanagerd-5.26.3-x86_64-1.txz:  Upgraded.
kde/kde-cli-tools-5.26.3-x86_64-1.txz:  Upgraded.
kde/kde-gtk-config-5.26.3-x86_64-1.txz:  Upgraded.
kde/kdecoration-5.26.3-x86_64-1.txz:  Upgraded.
kde/kdeplasma-addons-5.26.3-x86_64-1.txz:  Upgraded.
kde/kgamma5-5.26.3-x86_64-1.txz:  Upgraded.
kde/khotkeys-5.26.3-x86_64-1.txz:  Upgraded.
kde/kinfocenter-5.26.3-x86_64-1.txz:  Upgraded.
kde/kmenuedit-5.26.3-x86_64-1.txz:  Upgraded.
kde/kpipewire-5.26.3-x86_64-1.txz:  Upgraded.
kde/kscreen-5.26.3-x86_64-1.txz:  Upgraded.
kde/kscreenlocker-5.26.3-x86_64-1.txz:  Upgraded.
kde/ksshaskpass-5.26.3-x86_64-1.txz:  Upgraded.
kde/ksystemstats-5.26.3-x86_64-1.txz:  Upgraded.
kde/kwallet-pam-5.26.3-x86_64-1.txz:  Upgraded.
kde/kwayland-integration-5.26.3-x86_64-1.txz:  Upgraded.
kde/kwin-5.26.3-x86_64-1.txz:  Upgraded.
kde/kwrited-5.26.3-x86_64-1.txz:  Upgraded.
kde/layer-shell-qt-5.26.3-x86_64-1.txz:  Upgraded.
kde/libkscreen-5.26.3-x86_64-1.txz:  Upgraded.
kde/libksysguard-5.26.3-x86_64-1.txz:  Upgraded.
kde/milou-5.26.3-x86_64-1.txz:  Upgraded.
kde/oxygen-5.26.3-x86_64-1.txz:  Upgraded.
kde/oxygen-sounds-5.26.3-x86_64-1.txz:  Upgraded.
kde/plasma-browser-integration-5.26.3-x86_64-1.txz:  Upgraded.
kde/plasma-desktop-5.26.3-x86_64-1.txz:  Upgraded.
kde/plasma-disks-5.26.3-x86_64-1.txz:  Upgraded.
kde/plasma-firewall-5.26.3-x86_64-1.txz:  Upgraded.
kde/plasma-integration-5.26.3-x86_64-1.txz:  Upgraded.
kde/plasma-nm-5.26.3-x86_64-1.txz:  Upgraded.
kde/plasma-pa-5.26.3-x86_64-1.txz:  Upgraded.
kde/plasma-sdk-5.26.3-x86_64-1.txz:  Upgraded.
kde/plasma-systemmonitor-5.26.3-x86_64-1.txz:  Upgraded.
kde/plasma-vault-5.26.3-x86_64-1.txz:  Upgraded.
kde/plasma-workspace-5.26.3-x86_64-1.txz:  Upgraded.
kde/plasma-workspace-wallpapers-5.26.3-x86_64-1.txz:  Upgraded.
kde/polkit-kde-agent-1-5.26.3-x86_64-1.txz:  Upgraded.
kde/powerdevil-5.26.3-x86_64-1.txz:  Upgraded.
kde/qqc2-breeze-style-5.26.3-x86_64-1.txz:  Upgraded.
kde/sddm-kcm-5.26.3-x86_64-1.txz:  Upgraded.
kde/systemsettings-5.26.3-x86_64-1.txz:  Upgraded.
kde/xdg-desktop-portal-kde-5.26.3-x86_64-1.txz:  Upgraded.
l/Imath-3.1.6-x86_64-1.txz:  Upgraded.
l/imagemagick-7.1.0_52-x86_64-1.txz:  Upgraded.
l/libspectre-0.2.11-x86_64-1.txz:  Upgraded.
n/mutt-2.2.8-x86_64-1.txz:  Upgraded.
x/mesa-22.2.3-x86_64-1.txz:  Upgraded.
x/wayland-protocols-1.28-noarch-1.txz:  Upgraded.
2022-11-09 07:00:18 +01:00
Patrick J Volkerding
7a1e9230e7 Sat Nov 5 19:18:19 UTC 2022
ap/sudo-1.9.12p1-x86_64-1.txz:  Upgraded.
  Fixed a potential out-of-bounds write for passwords smaller than 8
  characters when passwd authentication is enabled.
  This does not affect configurations that use other authentication
  methods such as PAM, AIX authentication or BSD authentication.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2022-43995
  (* Security fix *)
l/nodejs-19.0.1-x86_64-1.txz:  Upgraded.
xap/mozilla-firefox-106.0.5-x86_64-1.txz:  Upgraded.
  This is a bugfix release.
  For more information, see:
    https://www.mozilla.org/en-US/firefox/106.0.5/releasenotes/
2022-11-06 07:00:18 +01:00
Patrick J Volkerding
6c808eb40c Fri Nov 4 19:29:28 UTC 2022
a/exfatprogs-1.2.0-x86_64-1.txz:  Upgraded.
a/openssl-solibs-1.1.1s-x86_64-1.txz:  Upgraded.
n/openssl-1.1.1s-x86_64-1.txz:  Upgraded.
xap/fvwm-2.7.0-x86_64-1.txz:  Upgraded.
xap/mozilla-thunderbird-102.4.2-x86_64-1.txz:  Upgraded.
  This is a bugfix release.
  For more information, see:
    https://www.mozilla.org/en-US/thunderbird/102.4.2/releasenotes/
2022-11-05 07:00:18 +01:00
Patrick J Volkerding
3311874487 Fri Nov 4 02:24:51 UTC 2022
a/mcelog-190-x86_64-1.txz:  Upgraded.
kde/akonadi-22.08.3-x86_64-1.txz:  Upgraded.
kde/akonadi-calendar-22.08.3-x86_64-1.txz:  Upgraded.
kde/akonadi-calendar-tools-22.08.3-x86_64-1.txz:  Upgraded.
kde/akonadi-contacts-22.08.3-x86_64-1.txz:  Upgraded.
kde/akonadi-import-wizard-22.08.3-x86_64-1.txz:  Upgraded.
kde/akonadi-mime-22.08.3-x86_64-1.txz:  Upgraded.
kde/akonadi-notes-22.08.3-x86_64-1.txz:  Upgraded.
kde/akonadi-search-22.08.3-x86_64-1.txz:  Upgraded.
kde/akonadiconsole-22.08.3-x86_64-1.txz:  Upgraded.
kde/akregator-22.08.3-x86_64-1.txz:  Upgraded.
kde/analitza-22.08.3-x86_64-1.txz:  Upgraded.
kde/ark-22.08.3-x86_64-1.txz:  Upgraded.
kde/artikulate-22.08.3-x86_64-1.txz:  Upgraded.
kde/audiocd-kio-22.08.3-x86_64-1.txz:  Upgraded.
kde/baloo-widgets-22.08.3-x86_64-1.txz:  Upgraded.
kde/blinken-22.08.3-x86_64-1.txz:  Upgraded.
kde/bomber-22.08.3-x86_64-1.txz:  Upgraded.
kde/bovo-22.08.3-x86_64-1.txz:  Upgraded.
kde/calendarsupport-22.08.3-x86_64-1.txz:  Upgraded.
kde/cantor-22.08.3-x86_64-1.txz:  Upgraded.
kde/cervisia-22.08.3-x86_64-1.txz:  Upgraded.
kde/dolphin-22.08.3-x86_64-1.txz:  Upgraded.
kde/dolphin-plugins-22.08.3-x86_64-1.txz:  Upgraded.
kde/dragon-22.08.3-x86_64-1.txz:  Upgraded.
kde/elisa-22.08.3-x86_64-1.txz:  Upgraded.
kde/eventviews-22.08.3-x86_64-1.txz:  Upgraded.
kde/falkon-22.08.3-x86_64-1.txz:  Upgraded.
kde/ffmpegthumbs-22.08.3-x86_64-1.txz:  Upgraded.
kde/filelight-22.08.3-x86_64-1.txz:  Upgraded.
kde/granatier-22.08.3-x86_64-1.txz:  Upgraded.
kde/grantlee-editor-22.08.3-x86_64-1.txz:  Upgraded.
kde/grantleetheme-22.08.3-x86_64-1.txz:  Upgraded.
kde/gwenview-22.08.3-x86_64-1.txz:  Upgraded.
kde/incidenceeditor-22.08.3-x86_64-1.txz:  Upgraded.
kde/itinerary-22.08.3-x86_64-1.txz:  Upgraded.
kde/juk-22.08.3-x86_64-1.txz:  Upgraded.
kde/k3b-22.08.3-x86_64-1.txz:  Upgraded.
kde/kaddressbook-22.08.3-x86_64-1.txz:  Upgraded.
kde/kalarm-22.08.3-x86_64-1.txz:  Upgraded.
kde/kalendar-22.08.3-x86_64-1.txz:  Upgraded.
kde/kalgebra-22.08.3-x86_64-1.txz:  Upgraded.
kde/kalzium-22.08.3-x86_64-1.txz:  Upgraded.
kde/kamera-22.08.3-x86_64-1.txz:  Upgraded.
kde/kamoso-22.08.3-x86_64-1.txz:  Upgraded.
kde/kanagram-22.08.3-x86_64-1.txz:  Upgraded.
kde/kapman-22.08.3-x86_64-1.txz:  Upgraded.
kde/kapptemplate-22.08.3-x86_64-1.txz:  Upgraded.
kde/kate-22.08.3-x86_64-1.txz:  Upgraded.
kde/katomic-22.08.3-x86_64-1.txz:  Upgraded.
kde/kbackup-22.08.3-x86_64-1.txz:  Upgraded.
kde/kblackbox-22.08.3-x86_64-1.txz:  Upgraded.
kde/kblocks-22.08.3-x86_64-1.txz:  Upgraded.
kde/kbounce-22.08.3-x86_64-1.txz:  Upgraded.
kde/kbreakout-22.08.3-x86_64-1.txz:  Upgraded.
kde/kbruch-22.08.3-x86_64-1.txz:  Upgraded.
kde/kcachegrind-22.08.3-x86_64-1.txz:  Upgraded.
kde/kcalc-22.08.3-x86_64-1.txz:  Upgraded.
kde/kcalutils-22.08.3-x86_64-1.txz:  Upgraded.
kde/kcharselect-22.08.3-x86_64-1.txz:  Upgraded.
kde/kcolorchooser-22.08.3-x86_64-1.txz:  Upgraded.
kde/kcron-22.08.3-x86_64-1.txz:  Upgraded.
kde/kde-dev-scripts-22.08.3-x86_64-1.txz:  Upgraded.
kde/kde-dev-utils-22.08.3-x86_64-1.txz:  Upgraded.
kde/kdebugsettings-22.08.3-x86_64-1.txz:  Upgraded.
kde/kdeconnect-kde-22.08.3-x86_64-1.txz:  Upgraded.
kde/kdeedu-data-22.08.3-x86_64-1.txz:  Upgraded.
kde/kdegraphics-mobipocket-22.08.3-x86_64-1.txz:  Upgraded.
kde/kdegraphics-thumbnailers-22.08.3-x86_64-1.txz:  Upgraded.
kde/kdenetwork-filesharing-22.08.3-x86_64-1.txz:  Upgraded.
kde/kdenlive-22.08.3-x86_64-1.txz:  Upgraded.
kde/kdepim-addons-22.08.3-x86_64-1.txz:  Upgraded.
kde/kdepim-runtime-22.08.3-x86_64-1.txz:  Upgraded.
kde/kdesdk-kio-22.08.3-x86_64-1.txz:  Upgraded.
kde/kdesdk-thumbnailers-22.08.3-x86_64-1.txz:  Upgraded.
kde/kdev-php-22.08.3-x86_64-1.txz:  Upgraded.
kde/kdev-python-22.08.3-x86_64-1.txz:  Upgraded.
kde/kdevelop-22.08.3-x86_64-1.txz:  Upgraded.
kde/kdf-22.08.3-x86_64-1.txz:  Upgraded.
kde/kdialog-22.08.3-x86_64-1.txz:  Upgraded.
kde/kdiamond-22.08.3-x86_64-1.txz:  Upgraded.
kde/keditbookmarks-22.08.3-x86_64-1.txz:  Upgraded.
kde/kfind-22.08.3-x86_64-1.txz:  Upgraded.
kde/kfloppy-22.08.3-x86_64-1.txz:  Upgraded.
kde/kfourinline-22.08.3-x86_64-1.txz:  Upgraded.
kde/kgeography-22.08.3-x86_64-1.txz:  Upgraded.
kde/kget-22.08.3-x86_64-1.txz:  Upgraded.
kde/kgoldrunner-22.08.3-x86_64-1.txz:  Upgraded.
kde/kgpg-22.08.3-x86_64-1.txz:  Upgraded.
kde/khangman-22.08.3-x86_64-1.txz:  Upgraded.
kde/khelpcenter-22.08.3-x86_64-1.txz:  Upgraded.
kde/kidentitymanagement-22.08.3-x86_64-1.txz:  Upgraded.
kde/kig-22.08.3-x86_64-1.txz:  Upgraded.
kde/kigo-22.08.3-x86_64-1.txz:  Upgraded.
kde/killbots-22.08.3-x86_64-1.txz:  Upgraded.
kde/kimagemapeditor-22.08.3-x86_64-1.txz:  Upgraded.
kde/kimap-22.08.3-x86_64-1.txz:  Upgraded.
kde/kio-extras-22.08.3-x86_64-1.txz:  Upgraded.
kde/kio-gdrive-22.08.3-x86_64-1.txz:  Upgraded.
kde/kio-zeroconf-22.08.3-x86_64-1.txz:  Upgraded.
kde/kipi-plugins-22.08.3-x86_64-1.txz:  Upgraded.
kde/kirigami-gallery-22.08.3-x86_64-1.txz:  Upgraded.
kde/kiriki-22.08.3-x86_64-1.txz:  Upgraded.
kde/kiten-22.08.3-x86_64-1.txz:  Upgraded.
kde/kitinerary-22.08.3-x86_64-1.txz:  Upgraded.
kde/kjumpingcube-22.08.3-x86_64-1.txz:  Upgraded.
kde/kldap-22.08.3-x86_64-1.txz:  Upgraded.
kde/kleopatra-22.08.3-x86_64-1.txz:  Upgraded.
kde/klickety-22.08.3-x86_64-1.txz:  Upgraded.
kde/klines-22.08.3-x86_64-1.txz:  Upgraded.
kde/kmag-22.08.3-x86_64-1.txz:  Upgraded.
kde/kmahjongg-22.08.3-x86_64-1.txz:  Upgraded.
kde/kmail-22.08.3-x86_64-1.txz:  Upgraded.
kde/kmail-account-wizard-22.08.3-x86_64-1.txz:  Upgraded.
kde/kmailtransport-22.08.3-x86_64-1.txz:  Upgraded.
kde/kmbox-22.08.3-x86_64-1.txz:  Upgraded.
kde/kmime-22.08.3-x86_64-1.txz:  Upgraded.
kde/kmines-22.08.3-x86_64-1.txz:  Upgraded.
kde/kmix-22.08.3-x86_64-1.txz:  Upgraded.
kde/kmousetool-22.08.3-x86_64-1.txz:  Upgraded.
kde/kmouth-22.08.3-x86_64-1.txz:  Upgraded.
kde/kmplot-22.08.3-x86_64-1.txz:  Upgraded.
kde/knavalbattle-22.08.3-x86_64-1.txz:  Upgraded.
kde/knetwalk-22.08.3-x86_64-1.txz:  Upgraded.
kde/knights-22.08.3-x86_64-1.txz:  Upgraded.
kde/knotes-22.08.3-x86_64-1.txz:  Upgraded.
kde/kolf-22.08.3-x86_64-1.txz:  Upgraded.
kde/kollision-22.08.3-x86_64-1.txz:  Upgraded.
kde/kolourpaint-22.08.3-x86_64-1.txz:  Upgraded.
kde/kompare-22.08.3-x86_64-1.txz:  Upgraded.
kde/konqueror-22.08.3-x86_64-1.txz:  Upgraded.
kde/konquest-22.08.3-x86_64-1.txz:  Upgraded.
kde/konsole-22.08.3-x86_64-1.txz:  Upgraded.
kde/kontact-22.08.3-x86_64-1.txz:  Upgraded.
kde/kontactinterface-22.08.3-x86_64-1.txz:  Upgraded.
kde/kontrast-22.08.3-x86_64-1.txz:  Upgraded.
kde/konversation-22.08.3-x86_64-1.txz:  Upgraded.
kde/kopeninghours-22.08.3-x86_64-1.txz:  Upgraded.
kde/kopete-22.08.3-x86_64-1.txz:  Upgraded.
kde/korganizer-22.08.3-x86_64-1.txz:  Upgraded.
kde/kosmindoormap-22.08.3-x86_64-1.txz:  Upgraded.
kde/kpat-22.08.3-x86_64-1.txz:  Upgraded.
kde/kpimtextedit-22.08.3-x86_64-1.txz:  Upgraded.
kde/kpkpass-22.08.3-x86_64-1.txz:  Upgraded.
kde/kpmcore-22.08.3-x86_64-1.txz:  Upgraded.
kde/kpublictransport-22.08.3-x86_64-1.txz:  Upgraded.
kde/kqtquickcharts-22.08.3-x86_64-1.txz:  Upgraded.
kde/krdc-22.08.3-x86_64-1.txz:  Upgraded.
kde/kreversi-22.08.3-x86_64-1.txz:  Upgraded.
kde/krfb-22.08.3-x86_64-1.txz:  Upgraded.
kde/krita-5.1.2-x86_64-1.txz:  Upgraded.
kde/kross-interpreters-22.08.3-x86_64-1.txz:  Upgraded.
kde/kruler-22.08.3-x86_64-1.txz:  Upgraded.
kde/ksanecore-22.08.3-x86_64-1.txz:  Upgraded.
kde/kshisen-22.08.3-x86_64-1.txz:  Upgraded.
kde/ksirk-22.08.3-x86_64-1.txz:  Upgraded.
kde/ksmtp-22.08.3-x86_64-1.txz:  Upgraded.
kde/ksnakeduel-22.08.3-x86_64-1.txz:  Upgraded.
kde/kspaceduel-22.08.3-x86_64-1.txz:  Upgraded.
kde/ksquares-22.08.3-x86_64-1.txz:  Upgraded.
kde/ksudoku-22.08.3-x86_64-1.txz:  Upgraded.
kde/ksystemlog-22.08.3-x86_64-1.txz:  Upgraded.
kde/kteatime-22.08.3-x86_64-1.txz:  Upgraded.
kde/ktimer-22.08.3-x86_64-1.txz:  Upgraded.
kde/ktnef-22.08.3-x86_64-1.txz:  Upgraded.
kde/ktorrent-22.08.3-x86_64-1.txz:  Upgraded.
kde/ktouch-22.08.3-x86_64-1.txz:  Upgraded.
kde/kturtle-22.08.3-x86_64-1.txz:  Upgraded.
kde/kubrick-22.08.3-x86_64-1.txz:  Upgraded.
kde/kwalletmanager-22.08.3-x86_64-1.txz:  Upgraded.
kde/kwave-22.08.3-x86_64-1.txz:  Upgraded.
kde/kwordquiz-22.08.3-x86_64-1.txz:  Upgraded.
kde/libgravatar-22.08.3-x86_64-1.txz:  Upgraded.
kde/libkcddb-22.08.3-x86_64-1.txz:  Upgraded.
kde/libkcompactdisc-22.08.3-x86_64-1.txz:  Upgraded.
kde/libkdcraw-22.08.3-x86_64-1.txz:  Upgraded.
kde/libkdegames-22.08.3-x86_64-1.txz:  Upgraded.
kde/libkdepim-22.08.3-x86_64-1.txz:  Upgraded.
kde/libkeduvocdocument-22.08.3-x86_64-1.txz:  Upgraded.
kde/libkexiv2-22.08.3-x86_64-1.txz:  Upgraded.
kde/libkgapi-22.08.3-x86_64-1.txz:  Upgraded.
kde/libkipi-22.08.3-x86_64-1.txz:  Upgraded.
kde/libkleo-22.08.3-x86_64-1.txz:  Upgraded.
kde/libkmahjongg-22.08.3-x86_64-1.txz:  Upgraded.
kde/libkomparediff2-22.08.3-x86_64-1.txz:  Upgraded.
kde/libksane-22.08.3-x86_64-1.txz:  Upgraded.
kde/libksieve-22.08.3-x86_64-1.txz:  Upgraded.
kde/libktorrent-22.08.3-x86_64-1.txz:  Upgraded.
kde/lokalize-22.08.3-x86_64-1.txz:  Upgraded.
kde/lskat-22.08.3-x86_64-1.txz:  Upgraded.
kde/mailcommon-22.08.3-x86_64-1.txz:  Upgraded.
kde/mailimporter-22.08.3-x86_64-1.txz:  Upgraded.
kde/marble-22.08.3-x86_64-1.txz:  Upgraded.
kde/markdownpart-22.08.3-x86_64-1.txz:  Upgraded.
kde/mbox-importer-22.08.3-x86_64-1.txz:  Upgraded.
kde/messagelib-22.08.3-x86_64-1.txz:  Upgraded.
kde/minuet-22.08.3-x86_64-1.txz:  Upgraded.
kde/okular-22.08.3-x86_64-1.txz:  Upgraded.
kde/palapeli-22.08.3-x86_64-1.txz:  Upgraded.
kde/parley-22.08.3-x86_64-1.txz:  Upgraded.
kde/partitionmanager-22.08.3-x86_64-1.txz:  Upgraded.
kde/picmi-22.08.3-x86_64-1.txz:  Upgraded.
kde/pim-data-exporter-22.08.3-x86_64-1.txz:  Upgraded.
kde/pim-sieve-editor-22.08.3-x86_64-1.txz:  Upgraded.
kde/pimcommon-22.08.3-x86_64-1.txz:  Upgraded.
kde/poxml-22.08.3-x86_64-1.txz:  Upgraded.
kde/print-manager-22.08.3-x86_64-1.txz:  Upgraded.
kde/rocs-22.08.3-x86_64-1.txz:  Upgraded.
kde/skanlite-22.08.3-x86_64-1.txz:  Upgraded.
kde/skanpage-22.08.3-x86_64-1.txz:  Upgraded.
kde/spectacle-22.08.3-x86_64-1.txz:  Upgraded.
kde/step-22.08.3-x86_64-1.txz:  Upgraded.
kde/svgpart-22.08.3-x86_64-1.txz:  Upgraded.
kde/sweeper-22.08.3-x86_64-1.txz:  Upgraded.
kde/umbrello-22.08.3-x86_64-1.txz:  Upgraded.
kde/yakuake-22.08.3-x86_64-1.txz:  Upgraded.
kde/zanshin-22.08.3-x86_64-1.txz:  Upgraded.
l/elfutils-0.188-x86_64-1.txz:  Upgraded.
l/mlt-7.10.0-x86_64-1.txz:  Upgraded.
l/mozilla-nss-3.84-x86_64-2.txz:  Rebuilt.
  Fixed a segmentation fault when the server requests a client auth cert but
  the client has no certs in its database.
  Thanks to marav for the heads-up.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2022-3479
  (* Security fix *)
l/poppler-22.11.0-x86_64-1.txz:  Upgraded.
n/dehydrated-0.7.1-noarch-1.txz:  Upgraded.
n/ulogd-2.0.8-x86_64-1.txz:  Upgraded.
x/libdrm-2.4.114-x86_64-1.txz:  Upgraded.
xap/mozilla-firefox-106.0.4-x86_64-1.txz:  Upgraded.
  This is a bugfix release.
  For more information, see:
    https://www.mozilla.org/en-US/firefox/106.0.4/releasenotes/
2022-11-04 07:00:19 +01:00
Patrick J Volkerding
e008ee0ca4 Wed Nov 2 20:01:17 UTC 2022
a/hwdata-0.364-noarch-1.txz:  Upgraded.
ap/inxi-3.3.23_1-noarch-1.txz:  Upgraded.
ap/mpg123-1.31.1-x86_64-1.txz:  Upgraded.
d/cmake-3.24.3-x86_64-1.txz:  Upgraded.
l/SDL2-2.24.2-x86_64-1.txz:  Upgraded.
l/liburing-2.3-x86_64-1.txz:  Upgraded.
l/speech-dispatcher-0.11.4-x86_64-1.txz:  Upgraded.
n/irssi-1.4.3-x86_64-1.txz:  Upgraded.
n/stunnel-5.67-x86_64-1.txz:  Upgraded.
x/ibus-table-1.16.13-x86_64-1.txz:  Upgraded.
x/pixman-0.42.2-x86_64-1.txz:  Upgraded.
x/xorg-server-xwayland-22.1.5-x86_64-1.txz:  Upgraded.
2022-11-03 07:00:18 +01:00
Patrick J Volkerding
f866235e9a Mon Oct 31 23:31:36 UTC 2022
a/ntfs-3g-2022.10.3-x86_64-1.txz:  Upgraded.
ap/mpg123-1.31.0-x86_64-1.txz:  Upgraded.
ap/vim-9.0.0814-x86_64-1.txz:  Upgraded.
  A vulnerability was found in vim and classified as problematic. Affected by
  this issue is the function qf_update_buffer of the file quickfix.c of the
  component autocmd Handler. The manipulation leads to use after free. The
  attack may be launched remotely. Upgrading to version 9.0.0805 is able to
  address this issue.
  Thanks to marav for the heads-up.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2022-3705
  (* Security fix *)
d/ccache-4.7.2-x86_64-1.txz:  Upgraded.
d/make-4.4-x86_64-1.txz:  Upgraded.
d/patchelf-0.16.1-x86_64-1.txz:  Upgraded.
d/strace-6.0-x86_64-1.txz:  Upgraded.
kde/kwin-5.26.2.1-x86_64-2.txz:  Rebuilt.
  [PATCH] x11window: revert more from 3a28c02f.
  Thanks to Heinz Wiesinger.
  [PATCH] x11: Don't force QT_NO_GLIB=1.
  [PATCH] x11: Don't force QT_QPA_PLATFORM=xcb.
  Thanks to marav.
l/libedit-20221030_3.1-x86_64-1.txz:  Upgraded.
l/python-importlib_metadata-5.0.0-x86_64-1.txz:  Upgraded.
l/taglib-1.13-x86_64-1.txz:  Upgraded.
l/utf8proc-2.8.0-x86_64-1.txz:  Upgraded.
n/openvpn-2.5.8-x86_64-1.txz:  Upgraded.
n/socat-1.7.4.4-x86_64-1.txz:  Upgraded.
x/libXext-1.3.5-x86_64-1.txz:  Upgraded.
x/libXinerama-1.1.5-x86_64-1.txz:  Upgraded.
x/makedepend-1.0.7-x86_64-1.txz:  Upgraded.
x/rgb-1.1.0-x86_64-1.txz:  Upgraded.
x/sessreg-1.1.3-x86_64-1.txz:  Upgraded.
x/x11perf-1.6.2-x86_64-1.txz:  Upgraded.
x/xsetroot-1.1.3-x86_64-1.txz:  Upgraded.
xap/mozilla-firefox-106.0.3-x86_64-1.txz:  Upgraded.
  This is a bugfix release.
  For more information, see:
    https://www.mozilla.org/en-US/firefox/106.0.3/releasenotes/
xap/mozilla-thunderbird-102.4.1-x86_64-1.txz:  Upgraded.
  This is a bugfix release.
  For more information, see:
    https://www.mozilla.org/en-US/thunderbird/102.4.1/releasenotes/
xap/vim-gvim-9.0.0814-x86_64-1.txz:  Upgraded.
extra/php80/php80-8.0.25-x86_64-1.txz:  Upgraded.
  This update fixes security issues:
  GD: OOB read due to insufficient input validation in imageloadfont().
  Hash: buffer overflow in hash_update() on long parameter.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2022-31630
    https://www.cve.org/CVERecord?id=CVE-2022-37454
  (* Security fix *)
extra/php81/php81-8.1.12-x86_64-1.txz:  Upgraded.
  This update fixes security issues:
  GD: OOB read due to insufficient input validation in imageloadfont().
  Hash: buffer overflow in hash_update() on long parameter.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2022-31630
    https://www.cve.org/CVERecord?id=CVE-2022-37454
  (* Security fix *)
2022-11-01 07:00:17 +01:00
Patrick J Volkerding
58dca16531 Thu Oct 27 02:30:15 UTC 2022
a/aaa_libraries-15.1-x86_64-12.txz:  Rebuilt.
  Upgraded: libexpat.so.1.8.10, libffi.so.8.1.2.
  Added (temporarily): libicudata.so.71.1, libicui18n.so.71.1,
  libicuio.so.71.1, libicutest.so.71.1, libicutu.so.71.1, libicuuc.so.71.1.
a/xfsprogs-5.13.0-x86_64-4.txz:  Rebuilt.
  Recompiled against icu4c-72.1.
ap/sqlite-3.39.4-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-72.1.
kde/bluedevil-5.26.2-x86_64-1.txz:  Upgraded.
kde/breeze-5.26.2-x86_64-1.txz:  Upgraded.
kde/breeze-grub-5.26.2-x86_64-1.txz:  Upgraded.
kde/breeze-gtk-5.26.2-x86_64-1.txz:  Upgraded.
kde/drkonqi-5.26.2-x86_64-1.txz:  Upgraded.
kde/kactivitymanagerd-5.26.2-x86_64-1.txz:  Upgraded.
kde/kde-cli-tools-5.26.2-x86_64-1.txz:  Upgraded.
kde/kde-gtk-config-5.26.2-x86_64-1.txz:  Upgraded.
kde/kdecoration-5.26.2-x86_64-1.txz:  Upgraded.
kde/kdeplasma-addons-5.26.2-x86_64-1.txz:  Upgraded.
  Compiled against icu4c-72.1.
kde/kgamma5-5.26.2-x86_64-1.txz:  Upgraded.
kde/khotkeys-5.26.2-x86_64-1.txz:  Upgraded.
kde/kinfocenter-5.26.2-x86_64-1.txz:  Upgraded.
kde/kmenuedit-5.26.2-x86_64-1.txz:  Upgraded.
kde/kpipewire-5.26.2-x86_64-1.txz:  Upgraded.
kde/kscreen-5.26.2-x86_64-1.txz:  Upgraded.
kde/kscreenlocker-5.26.2-x86_64-1.txz:  Upgraded.
kde/ksshaskpass-5.26.2-x86_64-1.txz:  Upgraded.
kde/ksystemstats-5.26.2-x86_64-1.txz:  Upgraded.
kde/kwallet-pam-5.26.2-x86_64-1.txz:  Upgraded.
kde/kwayland-integration-5.26.2-x86_64-1.txz:  Upgraded.
kde/kwin-5.26.2.1-x86_64-1.txz:  Upgraded.
kde/kwrited-5.26.2-x86_64-1.txz:  Upgraded.
kde/layer-shell-qt-5.26.2-x86_64-1.txz:  Upgraded.
kde/libkscreen-5.26.2-x86_64-1.txz:  Upgraded.
kde/libksysguard-5.26.2-x86_64-1.txz:  Upgraded.
kde/milou-5.26.2-x86_64-1.txz:  Upgraded.
kde/oxygen-5.26.2-x86_64-1.txz:  Upgraded.
kde/oxygen-sounds-5.26.2-x86_64-1.txz:  Upgraded.
kde/plasma-browser-integration-5.26.2-x86_64-1.txz:  Upgraded.
kde/plasma-desktop-5.26.2-x86_64-1.txz:  Upgraded.
kde/plasma-disks-5.26.2-x86_64-1.txz:  Upgraded.
kde/plasma-firewall-5.26.2-x86_64-1.txz:  Upgraded.
kde/plasma-integration-5.26.2-x86_64-1.txz:  Upgraded.
kde/plasma-nm-5.26.2-x86_64-1.txz:  Upgraded.
kde/plasma-pa-5.26.2-x86_64-1.txz:  Upgraded.
kde/plasma-sdk-5.26.2-x86_64-1.txz:  Upgraded.
kde/plasma-systemmonitor-5.26.2-x86_64-1.txz:  Upgraded.
kde/plasma-vault-5.26.2-x86_64-1.txz:  Upgraded.
kde/plasma-workspace-5.26.2-x86_64-1.txz:  Upgraded.
  Compiled against icu4c-72.1.
kde/plasma-workspace-wallpapers-5.26.2-x86_64-1.txz:  Upgraded.
kde/polkit-kde-agent-1-5.26.2-x86_64-1.txz:  Upgraded.
kde/powerdevil-5.26.2-x86_64-1.txz:  Upgraded.
kde/qqc2-breeze-style-5.26.2-x86_64-1.txz:  Upgraded.
kde/sddm-kcm-5.26.2-x86_64-1.txz:  Upgraded.
kde/systemsettings-5.26.2-x86_64-1.txz:  Upgraded.
kde/xdg-desktop-portal-kde-5.26.2-x86_64-1.txz:  Upgraded.
l/boost-1.80.0-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-72.1.
l/harfbuzz-5.3.1-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-72.1.
l/icu4c-72.1-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
l/libical-3.0.16-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-72.1.
l/libqalculate-4.4.0-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-72.1.
l/libvisio-0.1.7-x86_64-10.txz:  Rebuilt.
  Recompiled against icu4c-72.1.
l/nodejs-19.0.0-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-72.1.
l/qt5-5.15.6_20221026_0402bce0-x86_64-1.txz:  Upgraded.
  Compiled against icu4c-72.1.
l/qt5-webkit-5.212.0_alpha4-x86_64-10.txz:  Rebuilt.
  Recompiled against icu4c-72.1.
l/vte-0.68.0-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-72.1.
n/curl-7.86.0-x86_64-1.txz:  Upgraded.
  This update fixes security issues:
  HSTS bypass via IDN.
  HTTP proxy double-free.
  .netrc parser out-of-bounds access.
  POST following PUT confusion.
  For more information, see:
    https://curl.se/docs/CVE-2022-42916.html
    https://curl.se/docs/CVE-2022-42915.html
    https://curl.se/docs/CVE-2022-35260.html
    https://curl.se/docs/CVE-2022-32221.html
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42916
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42915
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35260
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32221
  (* Security fix *)
n/dovecot-2.3.19.1-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-72.1.
n/php-7.4.32-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-72.1.
n/postfix-3.7.3-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-72.1.
n/samba-4.17.2-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-72.1.
n/tin-2.6.1-x86_64-4.txz:  Rebuilt.
  Recompiled against icu4c-72.1.
t/texlive-2022.220801-x86_64-3.txz:  Rebuilt.
  Recompiled against icu4c-72.1.
x/xorg-server-xwayland-22.1.4-x86_64-2.txz:  Rebuilt.
  [PATCH] xwayland/input: Do not ignore leave events.
  Thanks to marav.
xap/mozilla-firefox-106.0.2-x86_64-1.txz:  Upgraded.
  This is a bugfix release.
  For more information, see:
    https://www.mozilla.org/en-US/firefox/106.0.2/releasenotes/
extra/brltty/brltty-6.5-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-72.1.
extra/php80/php80-8.0.24-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-72.1.
extra/php81/php81-8.1.11-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-72.1.
extra/sendmail/sendmail-8.17.1-x86_64-6.txz:  Rebuilt.
  Recompiled against icu4c-72.1.
extra/sendmail/sendmail-cf-8.17.1-noarch-6.txz:  Rebuilt.
2022-10-27 09:00:17 +02:00
Patrick J Volkerding
387b2bc525 Tue Oct 25 18:38:58 UTC 2022
ap/alsa-utils-1.2.8-x86_64-1.txz:  Upgraded.
l/alsa-lib-1.2.8-x86_64-1.txz:  Upgraded.
l/expat-2.5.0-x86_64-1.txz:  Upgraded.
  This update fixes a security issue:
  Fix heap use-after-free after overeager destruction of a shared DTD in
  function XML_ExternalEntityParserCreate in out-of-memory situations.
  Expected impact is denial of service or potentially arbitrary code
  execution.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-43680
  (* Security fix *)
n/samba-4.17.2-x86_64-1.txz:  Upgraded.
  This update fixes the following security issues:
  There is a limited write heap buffer overflow in the GSSAPI unwrap_des()
  and unwrap_des3() routines of Heimdal (included in Samba).
  A malicious client can use a symlink to escape the exported directory.
  For more information, see:
    https://www.samba.org/samba/security/CVE-2022-3437.html
    https://www.samba.org/samba/security/CVE-2022-3592.html
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3437
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3592
  (* Security fix *)
2022-10-26 07:00:17 +02:00
Patrick J Volkerding
1214d38107 Mon Oct 24 18:57:53 UTC 2022
a/kernel-firmware-20221017_48407ff-noarch-1.txz:  Upgraded.
a/kernel-generic-5.19.17-x86_64-1.txz:  Upgraded.
a/kernel-huge-5.19.17-x86_64-1.txz:  Upgraded.
a/kernel-modules-5.19.17-x86_64-1.txz:  Upgraded.
ap/sudo-1.9.12-x86_64-1.txz:  Upgraded.
d/ccache-4.7.1-x86_64-1.txz:  Upgraded.
d/kernel-headers-5.19.17-x86-1.txz:  Upgraded.
k/kernel-source-5.19.17-noarch-1.txz:  Upgraded.
l/libffi-3.4.4-x86_64-1.txz:  Upgraded.
l/libidn2-2.3.4-x86_64-1.txz:  Upgraded.
x/xterm-375-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2022-10-25 07:00:17 +02:00
Patrick J Volkerding
af2cb09097 Sat Oct 22 18:40:34 UTC 2022
d/parallel-20221022-noarch-1.txz:  Upgraded.
l/gc-8.2.2-x86_64-1.txz:  Upgraded.
x/libXrender-0.9.11-x86_64-1.txz:  Upgraded.
x/xfsinfo-1.0.7-x86_64-1.txz:  Upgraded.
2022-10-23 07:00:16 +02:00
Patrick J Volkerding
9d96d90a7d Fri Oct 21 18:19:00 UTC 2022
a/tree-2.0.4-x86_64-1.txz:  Upgraded.
l/freecell-solver-6.8.0-x86_64-1.txz:  Upgraded.
l/speech-dispatcher-0.11.3-x86_64-1.txz:  Upgraded.
n/rsync-3.2.7-x86_64-1.txz:  Upgraded.
  This is a bugfix release.
  Notably, this addresses some regressions caused by the file-list validation
  fix in rsync-3.2.5.
  Thanks to llgar.
2022-10-22 07:00:19 +02:00
Patrick J Volkerding
cc9100112b Thu Oct 20 18:39:03 UTC 2022
l/harfbuzz-5.3.1-x86_64-1.txz:  Upgraded.
l/qca-2.3.5-x86_64-1.txz:  Upgraded.
x/mesa-22.2.2-x86_64-1.txz:  Upgraded.
x/xorg-server-xwayland-22.1.4-x86_64-1.txz:  Upgraded.
xap/mozilla-firefox-106.0.1-x86_64-1.txz:  Upgraded.
  This is a bugfix release.
  For more information, see:
    https://www.mozilla.org/en-US/firefox/106.0.1/releasenotes/
xap/mozilla-thunderbird-102.4.0-x86_64-1.txz:  Upgraded.
  This is a bugfix release.
  For more information, see:
    https://www.mozilla.org/en-US/thunderbird/102.4.0/releasenotes/
2022-10-21 07:00:16 +02:00
Patrick J Volkerding
6df8986241 Wed Oct 19 20:06:33 UTC 2022
a/aaa_libraries-15.1-x86_64-11.txz:  Rebuilt.
  Upgraded: libcap.so.2.66, liblzma.so.5.2.7, libpopt.so.0.0.2,
  libexpat.so.1.8.9, libglib-2.0.so.0.7200.4, libgmodule-2.0.so.0.7200.4,
  libgobject-2.0.so.0.7200.4, libgthread-2.0.so.0.7200.4, libhistory.so.8.2,
  libreadline.so.8.2.
  Added: libunistring.so.2.1.0, libunistring.so.5.0.0.
  Removed: libffi.so.7.1.0.
a/gettext-0.21.1-x86_64-2.txz:  Rebuilt.
ap/lsof-4.96.4-x86_64-1.txz:  Upgraded.
ap/man-pages-6.01-noarch-1.txz:  Upgraded.
d/clisp-2.50_20220927_acb1266ee-x86_64-1.txz:  Upgraded.
  Compiled against libunistring-1.1.
d/gettext-tools-0.21.1-x86_64-2.txz:  Rebuilt.
  Recompiled against libunistring-1.1.
d/guile-3.0.8-x86_64-3.txz:  Rebuilt.
  Recompiled against libunistring-1.1.
kde/kguiaddons-5.99.0-x86_64-2.txz:  Rebuilt.
  [PATCH] systemclipboard: Don't signal data source cancellation.
  Thanks to marav.
l/libidn2-2.3.3-x86_64-2.txz:  Rebuilt.
l/libpsl-0.21.1-x86_64-5.txz:  Rebuilt.
  Recompiled against libunistring-1.1.
l/libunistring-1.1-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
n/bind-9.18.8-x86_64-1.txz:  Upgraded.
n/gnutls-3.7.8-x86_64-2.txz:  Rebuilt.
  Recompiled against libunistring-1.1.
n/samba-4.17.1-x86_64-1.txz:  Upgraded.
  This update fixes the following security issue:
  Bad password count not incremented atomically.
  For more information, see:
    https://bugzilla.samba.org/show_bug.cgi?id=14611
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20251
  (* Security fix *)
n/wget-1.21.3-x86_64-2.txz:  Rebuilt.
  Recompiled against libunistring-1.1.
x/imake-1.0.9-x86_64-1.txz:  Upgraded.
x/xcb-util-errors-1.0.1-x86_64-1.txz:  Upgraded.
x/xcb-util-image-0.4.1-x86_64-1.txz:  Upgraded.
x/xcb-util-keysyms-0.4.1-x86_64-1.txz:  Upgraded.
x/xcb-util-renderutil-0.3.10-x86_64-1.txz:  Upgraded.
x/xcb-util-wm-0.4.2-x86_64-1.txz:  Upgraded.
2022-10-20 17:00:19 +02:00
Patrick J Volkerding
f342454223 Tue Oct 18 20:29:54 UTC 2022
ap/vim-9.0.0790-x86_64-1.txz:  Upgraded.
d/ccache-4.7-x86_64-1.txz:  Upgraded.
d/git-2.38.1-x86_64-1.txz:  Upgraded.
  This release fixes two security issues:
  * CVE-2022-39253:
  When relying on the `--local` clone optimization, Git dereferences
  symbolic links in the source repository before creating hardlinks
  (or copies) of the dereferenced link in the destination repository.
  This can lead to surprising behavior where arbitrary files are
  present in a repository's `$GIT_DIR` when cloning from a malicious
  repository.
  Git will no longer dereference symbolic links via the `--local`
  clone mechanism, and will instead refuse to clone repositories that
  have symbolic links present in the `$GIT_DIR/objects` directory.
  Additionally, the value of `protocol.file.allow` is changed to be
  "user" by default.
  * CVE-2022-39260:
  An overly-long command string given to `git shell` can result in
  overflow in `split_cmdline()`, leading to arbitrary heap writes and
  remote code execution when `git shell` is exposed and the directory
  `$HOME/git-shell-commands` exists.
  `git shell` is taught to refuse interactive commands that are
  longer than 4MiB in size. `split_cmdline()` is hardened to reject
  inputs larger than 2GiB.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39253
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39260
  (* Security fix *)
kde/bluedevil-5.26.1-x86_64-1.txz:  Upgraded.
kde/breeze-5.26.1-x86_64-1.txz:  Upgraded.
kde/breeze-grub-5.26.1-x86_64-1.txz:  Upgraded.
kde/breeze-gtk-5.26.1-x86_64-1.txz:  Upgraded.
kde/drkonqi-5.26.1-x86_64-1.txz:  Upgraded.
kde/kactivitymanagerd-5.26.1-x86_64-1.txz:  Upgraded.
kde/kde-cli-tools-5.26.1-x86_64-1.txz:  Upgraded.
kde/kde-gtk-config-5.26.1-x86_64-1.txz:  Upgraded.
kde/kdecoration-5.26.1-x86_64-1.txz:  Upgraded.
kde/kdeplasma-addons-5.26.1-x86_64-1.txz:  Upgraded.
kde/kgamma5-5.26.1-x86_64-1.txz:  Upgraded.
kde/khotkeys-5.26.1-x86_64-1.txz:  Upgraded.
kde/kinfocenter-5.26.1-x86_64-1.txz:  Upgraded.
kde/kmenuedit-5.26.1-x86_64-1.txz:  Upgraded.
kde/kpipewire-5.26.1-x86_64-1.txz:  Upgraded.
kde/kscreen-5.26.1-x86_64-1.txz:  Upgraded.
kde/kscreenlocker-5.26.1-x86_64-1.txz:  Upgraded.
kde/ksshaskpass-5.26.1-x86_64-1.txz:  Upgraded.
kde/ksystemstats-5.26.1-x86_64-1.txz:  Upgraded.
kde/kwallet-pam-5.26.1-x86_64-1.txz:  Upgraded.
kde/kwayland-integration-5.26.1-x86_64-1.txz:  Upgraded.
kde/kwin-5.26.1-x86_64-1.txz:  Upgraded.
kde/kwrited-5.26.1-x86_64-1.txz:  Upgraded.
kde/layer-shell-qt-5.26.1-x86_64-1.txz:  Upgraded.
kde/libkscreen-5.26.1-x86_64-1.txz:  Upgraded.
kde/libksysguard-5.26.1-x86_64-1.txz:  Upgraded.
kde/milou-5.26.1-x86_64-1.txz:  Upgraded.
kde/oxygen-5.26.1-x86_64-1.txz:  Upgraded.
kde/oxygen-sounds-5.26.1-x86_64-1.txz:  Upgraded.
kde/plasma-browser-integration-5.26.1-x86_64-1.txz:  Upgraded.
kde/plasma-desktop-5.26.1-x86_64-1.txz:  Upgraded.
kde/plasma-disks-5.26.1-x86_64-1.txz:  Upgraded.
kde/plasma-firewall-5.26.1-x86_64-1.txz:  Upgraded.
kde/plasma-integration-5.26.1-x86_64-1.txz:  Upgraded.
kde/plasma-nm-5.26.1-x86_64-1.txz:  Upgraded.
kde/plasma-pa-5.26.1-x86_64-1.txz:  Upgraded.
kde/plasma-sdk-5.26.1-x86_64-1.txz:  Upgraded.
kde/plasma-systemmonitor-5.26.1-x86_64-1.txz:  Upgraded.
kde/plasma-vault-5.26.1-x86_64-1.txz:  Upgraded.
kde/plasma-workspace-5.26.1-x86_64-1.txz:  Upgraded.
kde/plasma-workspace-wallpapers-5.26.1-x86_64-1.txz:  Upgraded.
kde/polkit-kde-agent-1-5.26.1-x86_64-1.txz:  Upgraded.
kde/powerdevil-5.26.1-x86_64-1.txz:  Upgraded.
kde/qqc2-breeze-style-5.26.1-x86_64-1.txz:  Upgraded.
kde/sddm-kcm-5.26.1-x86_64-1.txz:  Upgraded.
kde/systemsettings-5.26.1-x86_64-1.txz:  Upgraded.
kde/xdg-desktop-portal-kde-5.26.1-x86_64-1.txz:  Upgraded.
l/libical-3.0.16-x86_64-1.txz:  Upgraded.
l/nodejs-19.0.0-x86_64-1.txz:  Upgraded.
n/NetworkManager-1.40.2-x86_64-1.txz:  Upgraded.
n/whois-5.5.14-x86_64-1.txz:  Upgraded.
x/libXmu-1.1.4-x86_64-1.txz:  Upgraded.
x/libXpresent-1.0.1-x86_64-1.txz:  Upgraded.
x/libpciaccess-0.17-x86_64-1.txz:  Upgraded.
x/libxkbfile-1.1.1-x86_64-1.txz:  Upgraded.
x/libxshmfence-1.3.1-x86_64-1.txz:  Upgraded.
x/pixman-0.42.0-x86_64-1.txz:  Upgraded.
x/xcb-util-cursor-0.1.4-x86_64-1.txz:  Upgraded.
xap/mozilla-firefox-106.0-x86_64-1.txz:  Upgraded.
  This update contains security fixes and improvements.
  For more information, see:
    https://www.mozilla.org/en-US/firefox/106.0/releasenotes/
    https://www.mozilla.org/security/advisories/mfsa2022-44/
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42927
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42928
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42929
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42930
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42931
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42932
  (* Security fix *)
xap/vim-gvim-9.0.0790-x86_64-1.txz:  Upgraded.
2022-10-19 07:00:56 +02:00
Patrick J Volkerding
717971ecd6 Mon Oct 17 19:31:45 UTC 2022
l/libqalculate-4.4.0-x86_64-1.txz:  Upgraded.
l/netpbm-11.00.01-x86_64-1.txz:  Upgraded.
x/xorg-server-21.1.4-x86_64-2.txz:  Rebuilt.
  xkb: proof GetCountedString against request length attacks.
  xkb: fix some possible memleaks in XkbGetKbdByName.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3550
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3551
  (* Security fix *)
x/xorg-server-xephyr-21.1.4-x86_64-2.txz:  Rebuilt.
x/xorg-server-xnest-21.1.4-x86_64-2.txz:  Rebuilt.
x/xorg-server-xvfb-21.1.4-x86_64-2.txz:  Rebuilt.
x/xorg-server-xwayland-22.1.3-x86_64-2.txz:  Rebuilt.
  xkb: proof GetCountedString against request length attacks.
  xkb: fix some possible memleaks in XkbGetKbdByName.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3550
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3551
  (* Security fix *)
xap/blueman-2.3.4-x86_64-1.txz:  Upgraded.
2022-10-18 07:00:18 +02:00
Patrick J Volkerding
9b906307de Mon Oct 17 00:42:43 UTC 2022
a/gettext-0.21.1-x86_64-1.txz:  Upgraded.
a/glibc-zoneinfo-2022e-noarch-1.txz:  Upgraded.
  This package provides the latest timezone updates.
d/gettext-tools-0.21.1-x86_64-1.txz:  Upgraded.
l/imagemagick-7.1.0_51-x86_64-1.txz:  Upgraded.
2022-10-17 07:00:20 +02:00
Patrick J Volkerding
8640934374 Sat Oct 15 20:28:34 UTC 2022
a/kernel-firmware-20221013_49fccf6-noarch-1.txz:  Upgraded.
a/kernel-generic-5.19.16-x86_64-1.txz:  Upgraded.
a/kernel-huge-5.19.16-x86_64-1.txz:  Upgraded.
a/kernel-modules-5.19.16-x86_64-1.txz:  Upgraded.
ap/man-db-2.11.0-x86_64-1.txz:  Upgraded.
ap/man-pages-6.00-noarch-1.txz:  Upgraded.
d/kernel-headers-5.19.16-x86-1.txz:  Upgraded.
k/kernel-source-5.19.16-noarch-1.txz:  Upgraded.
l/libedit-20221009_3.1-x86_64-1.txz:  Upgraded.
l/mozilla-nss-3.84-x86_64-1.txz:  Upgraded.
l/nodejs-18.11.0-x86_64-1.txz:  Upgraded.
l/zlib-1.2.13-x86_64-1.txz:  Upgraded.
  Fixed a bug when getting a gzip header extra field with inflateGetHeader().
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37434
  (* Security fix *)
n/fetchmail-6.4.34-x86_64-1.txz:  Upgraded.
n/gnupg2-2.2.40-x86_64-1.txz:  Upgraded.
x/bdftopcf-1.1.1-x86_64-1.txz:  Upgraded.
x/libwacom-2.5.0-x86_64-1.txz:  Upgraded.
x/smproxy-1.0.7-x86_64-1.txz:  Upgraded.
x/viewres-1.0.7-x86_64-1.txz:  Upgraded.
x/xditview-1.0.6-x86_64-1.txz:  Upgraded.
x/xf86-input-vmmouse-13.2.0-x86_64-1.txz:  Added.
x/xgc-1.0.6-x86_64-1.txz:  Upgraded.
x/xkbprint-1.0.6-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2022-10-16 07:00:18 +02:00