ap/lsof-4.99.4-x86_64-1.txz: Upgraded.
n/dovecot-2.3.21.1-x86_64-4.txz: Rebuilt.
Build with option --with-libwrap. Patch configure to add -lnsl to -lwrap.
Thanks to Jonathan Woithe.
xap/xine-lib-1.2.13-x86_64-10.txz: Rebuilt.
Recompiled since ImageMagick upstream fixed their mistake.
Thanks to Petri Kaukasoina.
testing/packages/kernel-generic-6.12.0-x86_64-1.txz: Added.
testing/packages/kernel-headers-6.12.0-x86-1.txz: Added.
testing/packages/kernel-source-6.12.0-noarch-1.txz: Added.
a/kernel-firmware-20241111_6482750-noarch-1.txz: Upgraded.
d/tree-sitter-0.24.4-x86_64-1.txz: Upgraded.
l/openexr-3.3.2-x86_64-1.txz: Upgraded.
n/libgpg-error-1.51-x86_64-1.txz: Upgraded.
n/wget-1.25.0-x86_64-1.txz: Upgraded.
[Breaking change] Drop support for shorthand FTP URLs (CVE-2024-10524)
[Breaking change] Switch to continuous reading from stdin pipes
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-10524
(* Security fix *)
xap/xine-lib-1.2.13-x86_64-9.txz: Rebuilt.
Apparently this needed to be recompiled against imagemagick-7.1.1_40 even
though there wasn't a shared library .so-version bump.
Thanks to Petri Kaukasoina.
a/libblockdev-3.2.1-x86_64-1.txz: Upgraded.
a/mkinitrd-1.4.11-x86_64-45.txz: Rebuilt.
/etc/default/geninitrd: Add AUTOGENERATE_INITRD variable for disabling
automatically generating the initrd when the kernel package is upgraded.
The hook to trigger this will be in the next kernel-generic package.
setup.01.mkinitrd: skip generating an initrd if we're called from the
kernel doinst.sh and AUTOGENERATE_INITRD=false.
geninitrd: Look for an override script called /usr/local/sbin/geninitrd,
not /usr/local/bin/geninitrd-custom. Thanks to GazL.
ap/mariadb-11.4.4-x86_64-2.txz: Rebuilt.
rc.mysqld: use mariadbd-safe, not mysqld_safe. Thanks to teoberi.
d/cmake-3.31.0-x86_64-1.txz: Upgraded.
l/expat-2.6.4-x86_64-1.txz: Upgraded.
This update fixes bugs and a security issue:
Fix crash within function XML_ResumeParser from a NULL pointer dereference
by disallowing function XML_StopParser to (stop or) suspend an unstarted
parser. A new error code XML_ERROR_NOT_STARTED was introduced to properly
communicate this situation.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-50602
(* Security fix *)
n/gpgme-1.24.0-x86_64-1.txz: Upgraded.
Added libqgpgmeqt6.
xap/ffmpegthumbnailer-2.2.3-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-128.4.2esr-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/128.4.2esr/releasenotes/
ap/mariadb-10.11.10-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://mariadb.com/kb/en/mariadb-10-11-10-release-notes/
n/netatalk-4.0.4-x86_64-1.txz: Upgraded.
xap/audacious-4.4.2-x86_64-1.txz: Upgraded.
xap/audacious-plugins-4.4.2-x86_64-1.txz: Upgraded.
a/elilo-3.16-x86_64-18.txz: Rebuilt.
eliloconfig: if we don't find initrd-generic.img, try to fall back on
/boot/initrd.gz. Thanks to rworkman.
a/kernel-firmware-20241022_e1d9577-noarch-1.txz: Upgraded.
a/kernel-generic-6.11.5-x86_64-1.txz: Upgraded.
a/less-668-x86_64-1.txz: Upgraded.
a/openssl11-solibs-1.1.1zb-x86_64-1.txz: Upgraded.
a/sysvinit-3.11-x86_64-1.txz: Upgraded.
a/usbutils-018-x86_64-1.txz: Upgraded.
d/kernel-headers-6.11.5-x86-1.txz: Upgraded.
d/parallel-20241022-noarch-1.txz: Upgraded.
d/swig-4.3.0-x86_64-1.txz: Upgraded.
k/kernel-source-6.11.5-noarch-1.txz: Upgraded.
l/libvisio-0.1.8-x86_64-1.txz: Upgraded.
l/python-trove-classifiers-2024.10.21.16-x86_64-1.txz: Upgraded.
n/openssl11-1.1.1zb-x86_64-1.txz: Upgraded.
Apply patch to fix a security issue:
Harden BN_GF2m_poly2arr against misuse.
This CVE was fixed by the 1.1.1zb release that is only available to
subscribers to OpenSSL's premium extended support. The patch was prepared
by backporting from the OpenSSL-3.0 repo. The reported version number has
been updated so that vulnerability scanners calm down.
Thanks to Ken Zalewski for the patch!
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-9143
(* Security fix *)
xap/gucharmap-16.0.2-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-128.3.3esr-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/128.3.3esr/releasenotes/
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
d/meson-1.6.0-x86_64-1.txz: Upgraded.
kde/okteta-0.26.18-x86_64-1.txz: Upgraded.
l/gjs-1.82.1-x86_64-1.txz: Upgraded.
l/gspell-1.14.0-x86_64-1.txz: Added.
Pan has switched to this instead of gtkspell3.
Nothing else in Slackware uses gtkspell3 -- perhaps it should be removed?
l/vte-0.78.1-x86_64-1.txz: Upgraded.
n/nghttp2-1.64.0-x86_64-1.txz: Upgraded.
x/ibus-m17n-1.4.33-x86_64-1.txz: Upgraded.
xap/pan-0.161-x86_64-1.txz: Upgraded.
xfce/mousepad-0.6.3-x86_64-1.txz: Upgraded.
a/hostname-3.24-x86_64-1.txz: Upgraded.
a/kernel-firmware-20241010_c410e4c-noarch-1.txz: Upgraded.
a/kernel-generic-6.10.14-x86_64-1.txz: Upgraded.
a/mkinitrd-1.4.11-x86_64-39.txz: Rebuilt.
Symlink /boot/remove-orphaned-initrds into /usr/sbin to get it in the $PATH.
a/pkgtools-15.1-noarch-14.txz: Rebuilt.
Renamed kernel-backup to make-kernel-backup.
We'll leave it in /boot where it's more likely to be noticed, but also
add a symlink in /usr/sbin so that it's in the $PATH.
Support /etc/default/make-kernel-backup.
Test to see if $KERNEL_FILE is actually a Linux kernel.
d/kernel-headers-6.10.14-x86-1.txz: Upgraded.
k/kernel-source-6.10.14-noarch-1.txz: Upgraded.
l/python-sphinx-8.1.0-x86_64-1.txz: Upgraded.
l/python-sphinx_rtd_theme-3.0.1-x86_64-1.txz: Upgraded.
n/c-ares-1.34.1-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-128.3.1esr-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/128.3.1esr/releasenotes/
(* Security fix *)
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/kernel-generic-6.11.3-x86_64-1.txz: Upgraded.
testing/packages/kernel-headers-6.11.3-x86-1.txz: Upgraded.
testing/packages/kernel-source-6.11.3-noarch-1.txz: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/dracut-104-x86_64-1.txz: Upgraded.
d/cmake-3.30.5-x86_64-1.txz: Upgraded.
d/subversion-1.14.4-x86_64-1.txz: Upgraded.
l/mozjs128-128.3.1esr-x86_64-1.txz: Upgraded.
l/openexr-3.3.1-x86_64-1.txz: Upgraded.
l/python-charset-normalizer-3.4.0-x86_64-1.txz: Upgraded.
x/fcitx5-5.1.11-x86_64-1.txz: Upgraded.
x/fcitx5-anthy-5.1.5-x86_64-1.txz: Upgraded.
x/fcitx5-chinese-addons-5.1.7-x86_64-1.txz: Upgraded.
x/fcitx5-hangul-5.1.5-x86_64-1.txz: Upgraded.
x/fcitx5-kkc-5.1.5-x86_64-1.txz: Upgraded.
x/fcitx5-m17n-5.1.2-x86_64-1.txz: Upgraded.
x/fcitx5-qt-5.1.7-x86_64-1.txz: Upgraded.
x/fcitx5-unikey-5.1.5-x86_64-1.txz: Upgraded.
x/libime-1.1.9-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-128.3.1esr-x86_64-1.txz: Upgraded.
This update contains a critical security fix:
Use-after-free in Animation timeline.
"An attacker was able to achieve code execution in the content process by
exploiting a use-after-free in Animation timelines. We have had reports of
this vulnerability being exploited in the wild."
For more information, see:
https://www.mozilla.org/en-US/firefox/128.3.1/releasenotes/https://www.mozilla.org/security/advisories/mfsa2024-51/https://www.cve.org/CVERecord?id=CVE-2024-9680
(* Security fix *)
Several ELF objects were found to have rpaths pointing into /tmp, a world
writable directory. This could have allowed a local attacker to launch denial
of service attacks or execute arbitrary code when the affected binaries are
run by placing crafted ELF objects in the /tmp rpath location. All rpaths with
an embedded /tmp path have been scrubbed from the binaries, and makepkg has
gained a lint feature to detect these so that they won't creep back in.
a/kernel-firmware-20241001_95bfe08-noarch-1.txz: Upgraded.
a/kernel-generic-6.10.12-x86_64-1.txz: Upgraded.
a/pkgtools-15.1-noarch-12.txz: Rebuilt.
makepkg: when looking for ELF objects with --remove-rpaths or
--remove-tmp-rpaths, avoid false hits on files containing 'ELF' as part
of the directory or filename.
Also warn about /tmp rpaths after the package is built.
ap/cups-2.4.11-x86_64-1.txz: Upgraded.
ap/cups-browsed-2.0.1-x86_64-2.txz: Rebuilt.
Mitigate security issue that could lead to a denial of service or
the execution of arbitrary code.
Rebuilt with --with-browseremoteprotocols=none to disable incoming
connections, since this daemon has been shown to be insecure. If you
actually use cups-browsed, be sure to install the new
/etc/cups/cups-browsed.conf.new containing this line:
BrowseRemoteProtocols none
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-47176
(* Security fix *)
d/kernel-headers-6.10.12-x86-1.txz: Upgraded.
d/llvm-18.1.8-x86_64-3.txz: Rebuilt.
Remove rpaths from binaries.
(* Security fix *)
d/luajit-2.1.1727621189-x86_64-1.txz: Upgraded.
d/ruby-3.3.5-x86_64-2.txz: Rebuilt.
Remove rpaths from binaries.
(* Security fix *)
k/kernel-source-6.10.12-noarch-1.txz: Upgraded.
kde/kimageformats-5.116.0-x86_64-2.txz: Rebuilt.
Recompiled against openexr-3.3.0.
kde/kio-extras-23.08.5-x86_64-2.txz: Rebuilt.
Recompiled against openexr-3.3.0.
kde/krita-5.2.5-x86_64-2.txz: Rebuilt.
Recompiled against openexr-3.3.0.
kde/libindi-2.1.0-x86_64-1.txz: Upgraded.
l/cryfs-0.10.3-x86_64-13.txz: Rebuilt.
Remove rpaths from binaries.
(* Security fix *)
l/espeak-ng-1.51.1-x86_64-2.txz: Rebuilt.
Remove rpaths from binaries.
(* Security fix *)
l/ffmpeg-7.1-x86_64-1.txz: Upgraded.
l/gegl-0.4.48-x86_64-3.txz: Rebuilt.
Recompiled against openexr-3.3.0.
l/gst-plugins-bad-free-1.24.8-x86_64-2.txz: Rebuilt.
Recompiled against openexr-3.3.0.
l/imagemagick-7.1.1_38-x86_64-2.txz: Rebuilt.
Recompiled against openexr-3.3.0.
l/libgsf-1.14.53-x86_64-1.txz: Upgraded.
l/librsvg-2.58.5-x86_64-1.txz: Upgraded.
l/libvncserver-0.9.14-x86_64-3.txz: Rebuilt.
Remove rpaths from binaries.
(* Security fix *)
l/mozjs128-128.3.0esr-x86_64-1.txz: Upgraded.
l/netpbm-11.08.00-x86_64-1.txz: Upgraded.
l/opencv-4.10.0-x86_64-3.txz: Rebuilt.
Recompiled against openexr-3.3.0.
l/openexr-3.3.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/python-glad2-2.0.8-x86_64-1.txz: Upgraded.
l/python-pyproject-hooks-1.2.0-x86_64-1.txz: Upgraded.
l/spirv-llvm-translator-18.1.4-x86_64-2.txz: Rebuilt.
Remove rpaths from binaries.
(* Security fix *)
l/woff2-20231106_0f4d304-x86_64-2.txz: Rebuilt.
Remove rpaths from binaries.
(* Security fix *)
n/openobex-1.7.2-x86_64-6.txz: Rebuilt.
Remove rpaths from binaries.
(* Security fix *)
x/marisa-0.2.6-x86_64-11.txz: Rebuilt.
Remove rpaths from binaries.
(* Security fix *)
xap/gimp-2.10.38-x86_64-2.txz: Rebuilt.
Recompiled against openexr-3.3.0.
xap/mozilla-firefox-128.3.0esr-x86_64-1.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/128.3.0/releasenotes/https://www.mozilla.org/security/advisories/mfsa2024-47https://www.cve.org/CVERecord?id=CVE-2024-9392https://www.cve.org/CVERecord?id=CVE-2024-9393https://www.cve.org/CVERecord?id=CVE-2024-9394https://www.cve.org/CVERecord?id=CVE-2024-8900https://www.cve.org/CVERecord?id=CVE-2024-9396https://www.cve.org/CVERecord?id=CVE-2024-9397https://www.cve.org/CVERecord?id=CVE-2024-9398https://www.cve.org/CVERecord?id=CVE-2024-9399https://www.cve.org/CVERecord?id=CVE-2024-9400https://www.cve.org/CVERecord?id=CVE-2024-9401https://www.cve.org/CVERecord?id=CVE-2024-9402
(* Security fix *)
xap/xlockmore-5.80-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/kernel-generic-6.11.1-x86_64-1.txz: Upgraded.
testing/packages/kernel-headers-6.11.1-x86-1.txz: Upgraded.
testing/packages/kernel-source-6.11.1-noarch-1.txz: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
d/parallel-20240922-noarch-1.txz: Upgraded.
l/libarchive-3.7.6-x86_64-1.txz: Upgraded.
This release fixes a tar regression introduced in libarchive 3.7.5.
xap/geeqie-2.5-x86_64-2.txz: Rebuilt.
-Dgq_helpdir and -Dgq_htmldir should be relative to the prefix (/usr).
Thanks to mickski56.
d/meson-1.5.2-x86_64-1.txz: Upgraded.
l/python-sphinx-8.0.2-x86_64-2.txz: Rebuilt.
Upgraded extension modules: sphinxcontrib_applehelp-2.0,
sphinxcontrib_devhelp-2.0.0, sphinxcontrib_htmlhelp-2.1.0,
sphinxcontrib_qthelp-2.0.0, sphinxcontrib_serializinghtml-2.0.0.
Thanks to USUARIONUEVO.
xap/geeqie-2.5-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-128.2.3esr-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/128.2.3esr/releasenotes/
ap/moc-2.6_alpha3-x86_64-4.txz: Rebuilt.
The ffmpeg7 patch isn't 100% there, so rebuild without the ffmpeg plugin.
ap/sqlite-3.46.1-x86_64-1.txz: Upgraded.
kde/digikam-8.4.0-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-7.0.2.
kde/ffmpegthumbs-23.08.5-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-7.0.2.
kde/k3b-23.08.5-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-7.0.2.
kde/kfilemetadata-5.116.0-x86_64-6.txz: Rebuilt.
Recompiled against ffmpeg-7.0.2.
kde/kpipewire-5.27.11-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-7.0.2.
l/alsa-plugins-1.2.12-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-7.0.2.
l/ffmpeg-7.0.2-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
Compiled against vulkan-sdk-1.3.290.0.
l/freetype-2.13.3-x86_64-1.txz: Upgraded.
l/gegl-0.4.48-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-7.0.2.
l/gst-plugins-bad-free-1.24.6-x86_64-2.txz: Rebuilt.
Recompiled against vulkan-sdk-1.3.290.0.
l/gst-plugins-libav-1.24.6-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-7.0.2.
l/gtk4-4.14.4-x86_64-2.txz: Rebuilt.
Recompiled against vulkan-sdk-1.3.290.0.
l/libplacebo-7.349.0-x86_64-2.txz: Rebuilt.
Recompiled against vulkan-sdk-1.3.290.0.
l/mlt-7.24.0-x86_64-3.txz: Rebuilt.
Recompiled against ffmpeg-7.0.2.
l/opencv-4.10.0-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-7.0.2.
l/pipewire-1.2.2-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-7.0.2.
Recompiled against vulkan-sdk-1.3.290.0.
l/qt5-5.15.14_20240716_ae0c8451-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-7.0.2.
l/qt6-6.7.2_20240610_3f005f1e-x86_64-5.txz: Rebuilt.
Recompiled against ffmpeg-7.0.2.
l/spirv-llvm-translator-18.1.3-x86_64-2.txz: Rebuilt.
Recompiled against vulkan-sdk-1.3.290.0.
x/fcitx5-gtk-5.1.3-x86_64-2.txz: Rebuilt.
Recompiled against vulkan-sdk-1.3.290.0.
x/ibus-1.5.30-x86_64-2.txz: Rebuilt.
Recompiled against vulkan-sdk-1.3.290.0.
x/mesa-24.1.5-x86_64-2.txz: Rebuilt.
Recompiled against vulkan-sdk-1.3.290.0.
x/vulkan-sdk-1.3.290.0-x86_64-1.txz: Upgraded.
xap/MPlayer-20240812-x86_64-1.txz: Upgraded.
Recompiled against ffmpeg-7.0.2.
xap/audacious-plugins-4.4-x86_64-3.txz: Rebuilt.
Recompiled against ffmpeg-7.0.2.
xap/ffmpegthumbnailer-2.2.2-x86_64-6.txz: Rebuilt.
Recompiled against ffmpeg-7.0.2.
xap/freerdp-2.11.7-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-7.0.2.
xap/mpv-0.38.0-x86_64-5.txz: Rebuilt.
Recompiled against ffmpeg-7.0.2.
Recompiled against vulkan-sdk-1.3.290.0.
xap/ssr-0.4.4-x86_64-3.txz: Rebuilt.
Recompiled against ffmpeg-7.0.2.
xap/xine-lib-1.2.13-x86_64-8.txz: Rebuilt.
Recompiled against ffmpeg-7.0.2.
xap/xscreensaver-6.09-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-7.0.2.
d/cbindgen-0.26.0-x86_64-3.txz: Rebuilt.
Revert this until FF/TB are patched. Thanks to Lenard Spencer.
l/M2Crypto-0.42.0-x86_64-1.txz: Upgraded.
l/libedit-20240808_3.1-x86_64-1.txz: Upgraded.
l/python-lxml-5.3.0-x86_64-1.txz: Upgraded.
l/python-zipp-3.20.0-x86_64-1.txz: Upgraded.
xap/ddd-3.4.1-x86_64-1.txz: Upgraded.
xap/pan-0.160-x86_64-1.txz: Upgraded.
testing/packages/aaa_glibc-solibs-2.40-x86_64-2.txz: Added.
testing/packages/glibc-2.40-x86_64-2.txz: Added.
Let's test building with -fno-omit-frame-pointer and
-mno-omit-leaf-frame-pointer added to the CFLAGS (thanks alienBOB),
and --enable-multi-arch added to the configure options as suggested
by iive. Hopefully they will test and report if these changes fix
the reported stability issues when running Steam.
testing/packages/glibc-i18n-2.40-x86_64-2.txz: Added.
testing/packages/glibc-profile-2.40-x86_64-2.txz: Added.
Hey folks, we got a new glibc and are beginning the process of baking the new
default compile flags into the toolchain, the graphics stack, and whatever else
happens along. Enjoy! :-)
a/aaa_glibc-solibs-2.40-x86_64-1.txz: Upgraded.
a/libblockdev-3.1.1_1-x86_64-2.txz: Rebuilt.
Fix build against recent ext2fs.h. Thanks to shipujin.
a/xfsprogs-6.9.0-x86_64-1.txz: Upgraded.
ap/rpm-4.19.1.1-x86_64-3.txz: Rebuilt.
ap/slackpkg-15.0.10-noarch-4.txz: Rebuilt.
Prefer gpg1 again. Going with the modern gpg with more dependencies was
a mistake in this case. (now we know why gnupg-1 is still around :-)
Thanks to Petri Kaukasoina.
d/binutils-2.42-x86_64-3.txz: Rebuilt.
d/cargo-vendor-filterer-0.5.14-x86_64-2.txz: Rebuilt.
d/cbindgen-0.26.0-x86_64-2.txz: Rebuilt.
d/ccache-4.10.2-x86_64-1.txz: Upgraded.
d/cmake-3.30.1-x86_64-2.txz: Rebuilt.
d/gcc-14.1.0-x86_64-2.txz: Rebuilt.
d/gcc-g++-14.1.0-x86_64-2.txz: Rebuilt.
d/gcc-gdc-14.1.0-x86_64-2.txz: Rebuilt.
d/gcc-gfortran-14.1.0-x86_64-2.txz: Rebuilt.
d/gcc-gm2-14.1.0-x86_64-2.txz: Rebuilt.
d/gcc-gnat-14.1.0-x86_64-2.txz: Rebuilt.
d/gcc-go-14.1.0-x86_64-2.txz: Rebuilt.
d/gcc-objc-14.1.0-x86_64-2.txz: Rebuilt.
d/libgccjit-14.1.0-x86_64-2.txz: Rebuilt.
d/libtool-2.4.7-x86_64-8.txz: Rebuilt.
d/parallel-20240722-noarch-1.txz: Upgraded.
d/pkg-config-0.29.2-x86_64-5.txz: Rebuilt.
d/python-setuptools-71.1.0-x86_64-1.txz: Upgraded.
d/ruby-3.3.4-x86_64-2.txz: Rebuilt.
d/rust-bindgen-0.69.4-x86_64-2.txz: Rebuilt.
d/strace-6.10-x86_64-1.txz: Upgraded.
d/subversion-1.14.3-x86_64-3.txz: Rebuilt.
e/emacs-29.4-x86_64-2.txz: Rebuilt.
l/PyQt-builder-1.16.4-x86_64-2.txz: Rebuilt.
l/PyQt5-5.15.11-x86_64-1.txz: Upgraded.
l/PyQt5_sip-12.15.0-x86_64-2.txz: Rebuilt.
l/argon2-20190702-x86_64-6.txz: Rebuilt.
l/ffmpeg-6.1.1-x86_64-5.txz: Rebuilt.
l/glibc-2.40-x86_64-1.txz: Upgraded.
This update fixes security issues:
nscd: Stack-based buffer overflow in netgroup cache.
nscd: Null pointer crash after notfound response.
nscd: netgroup cache may terminate daemon on memory allocation failure.
nscd: netgroup cache assumes NSS callback uses in-buffer strings.
These vulnerabilities were only present in the nscd binary.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-33599https://www.cve.org/CVERecord?id=CVE-2024-33600https://www.cve.org/CVERecord?id=CVE-2024-33601https://www.cve.org/CVERecord?id=CVE-2024-33602
(* Security fix *)
l/glibc-i18n-2.40-x86_64-1.txz: Upgraded.
l/glibc-profile-2.40-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.24.5-x86_64-2.txz: Rebuilt.
l/libcdio-paranoia-10.2+2.0.2-x86_64-1.txz: Upgraded.
l/libclc-18.1.8-x86_64-3.txz: Rebuilt.
l/libproxy-0.5.8-x86_64-1.txz: Upgraded.
l/lz4-1.10.0-x86_64-1.txz: Upgraded.
l/poppler-24.07.0-x86_64-2.txz: Rebuilt.
l/python-importlib_metadata-8.1.0-x86_64-1.txz: Upgraded.
l/python-sphinx-7.4.7-x86_64-1.txz: Upgraded.
l/qt5-5.15.14_20240716_ae0c8451-x86_64-1.txz: Upgraded.
l/qt5-webkit-5.212.0_alpha4-x86_64-13.txz: Rebuilt.
l/qt6-6.7.2_20240610_3f005f1e-x86_64-3.txz: Rebuilt.
l/sip-6.8.6-x86_64-2.txz: Rebuilt.
l/spirv-llvm-translator-18.1.2-x86_64-2.txz: Rebuilt.
l/v4l-utils-1.28.0-x86_64-1.txz: Upgraded.
n/bind-9.18.28-x86_64-1.txz: Upgraded.
This update fixes security issues:
Remove SIG(0) support from named as a countermeasure for CVE-2024-1975.
qctx-zversion was not being cleared when it should have been leading to
an assertion failure if it needed to be reused.
An excessively large number of rrtypes per owner can slow down database query
processing, so a limit has been placed on the number of rrtypes that can be
stored per owner (node) in a cache or zone database. This is configured with
the new "max-rrtypes-per-name" option, and defaults to 100.
Excessively large rdatasets can slow down database query processing, so a
limit has been placed on the number of records that can be stored per
rdataset in a cache or zone database. This is configured with the new
"max-records-per-type" option, and defaults to 100.
Malicious DNS client that sends many queries over TCP but never reads
responses can cause server to respond slowly or not respond at all for other
clients.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-1975https://www.cve.org/CVERecord?id=CVE-2024-4076https://www.cve.org/CVERecord?id=CVE-2024-1737https://www.cve.org/CVERecord?id=CVE-2024-0760
(* Security fix *)
n/fetchmail-6.4.39-x86_64-1.txz: Upgraded.
n/obexftp-0.24.2-x86_64-13.txz: Rebuilt.
n/pinentry-1.3.1-x86_64-2.txz: Rebuilt.
n/wpa_supplicant-2.11-x86_64-1.txz: Upgraded.
x/fcitx5-qt-5.1.6-x86_64-3.txz: Rebuilt.
x/ibus-m17n-1.4.30-x86_64-1.txz: Upgraded.
x/libdrm-2.4.122-x86_64-2.txz: Rebuilt.
x/marisa-0.2.6-x86_64-10.txz: Rebuilt.
x/mesa-24.1.4-x86_64-2.txz: Rebuilt.
x/vulkan-sdk-1.3.275.0-x86_64-3.txz: Rebuilt.
xap/audacious-4.4-x86_64-2.txz: Rebuilt.
xap/audacious-plugins-4.4-x86_64-2.txz: Rebuilt.
xap/mozilla-thunderbird-128.0.1esr-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/128.0.1esr/releasenotes/
xap/xaos-4.3.2-x86_64-2.txz: Rebuilt.
extra/emacs-regular-build/emacs-29.4-x86_64-2_regular.txz: Rebuilt.
l/librsvg-2.58.2-x86_64-1.txz: Upgraded.
l/pulseaudio-17.0-x86_64-4.txz: Rebuilt.
Add directories /etc/pulse/{default,system}.pa.d to avoid log warnings.
Thanks to gmgf.
xap/mozilla-thunderbird-128.0esr-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/128.0esr/releasenotes/
ap/ksh93-1.0.9-x86_64-1.txz: Upgraded.
kde/calligra-3.2.1-x86_64-42.txz: Rebuilt.
Recompiled against poppler-24.07.0.
kde/cantor-23.08.5-x86_64-8.txz: Rebuilt.
Recompiled against poppler-24.07.0.
kde/kfilemetadata-5.116.0-x86_64-4.txz: Rebuilt.
Recompiled against poppler-24.07.0.
kde/kile-2.9.93-x86_64-35.txz: Rebuilt.
Recompiled against poppler-24.07.0.
kde/kitinerary-23.08.5-x86_64-6.txz: Rebuilt.
Recompiled against poppler-24.07.0.
kde/krita-5.2.3-x86_64-2.txz: Rebuilt.
Recompiled against poppler-24.07.0.
kde/okular-23.08.5-x86_64-6.txz: Rebuilt.
Recompiled against poppler-24.07.0.
l/ffmpeg-6.1.1-x86_64-4.txz: Rebuilt.
Recompiled against libplacebo-7.349.0.
l/gdbm-1.24-x86_64-1.txz: Upgraded.
l/libplacebo-7.349.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/poppler-24.07.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/python-trove-classifiers-2024.7.2-x86_64-1.txz: Upgraded.
n/getmail-6.19.02-x86_64-1.txz: Upgraded.
n/httpd-2.4.60-x86_64-2.txz: Rebuilt.
This update is to fix a regression and to note security issues that were not
listed in the CHANGES file included with the source code.
Fixed a regression where a config file using AddType rather than AddHandler
could cause raw PHP files to be downloaded rather than processed.
Thanks to Nobby6.
For more information, see:
https://downloads.apache.org/httpd/CHANGES_2.4.60https://www.cve.org/CVERecord?id=CVE-2024-39573https://www.cve.org/CVERecord?id=CVE-2024-38477https://www.cve.org/CVERecord?id=CVE-2024-38476https://www.cve.org/CVERecord?id=CVE-2024-38475https://www.cve.org/CVERecord?id=CVE-2024-38474https://www.cve.org/CVERecord?id=CVE-2024-38473https://www.cve.org/CVERecord?id=CVE-2024-38472https://www.cve.org/CVERecord?id=CVE-2024-36387
(* Security fix *)
xap/mpv-0.38.0-x86_64-4.txz: Rebuilt.
Recompiled against libplacebo-7.349.0.
a/grub-2.12-x86_64-6.txz: Rebuilt.
Added update-grub script. Thanks to LuckyCyborg.
Also add grub-update symlink.
Disable the submenus. Thanks to LuckyCyborg.
Also find initrd-${tag}-${version}.gz and initrd-${tag}.gz. Thanks to gwhl.
Support kernel symlinks/files named vmlinu[xz]-generic, vmlinu[xz]-custom,
and vmlinu[xz]-huge. Thanks to Petri Kaukasoina.
Enabled os-prober again. It works here, and (at least with lilo) we've always
been friendly to dual-booting. It's easy to disable if you don't like it.
Sorry to LuckyCyborg. ;-)
d/parallel-20240622-noarch-1.txz: Upgraded.
kde/qca-2.3.9-x86_64-1.txz: Upgraded.
l/imagemagick-7.1.1_34-x86_64-1.txz: Upgraded.
n/NetworkManager-1.48.2-x86_64-1.txz: Upgraded.
n/ntp-4.2.8p18-x86_64-4.txz: Rebuilt.
In ntp.conf, don't use direct logging to /var/log/ntp. Instead use the syslog
facility to avoid having to restart ntpd when the logs are rotated.
We'll still rotate /var/log/ntp if we see it, though.
Thanks to Petri Kaukasoina.
xap/NetworkManager-openvpn-1.12.0-x86_64-1.txz: Upgraded.
a/kernel-firmware-20240604_22643bb-noarch-1.txz: Upgraded.
a/less-657-x86_64-1.txz: Upgraded.
a/openssl-solibs-3.3.1-x86_64-1.txz: Upgraded.
d/cmake-3.29.4-x86_64-1.txz: Upgraded.
l/poppler-24.06.0-x86_64-1.txz: Upgraded.
l/protobuf-27.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/python-zipp-3.19.2-x86_64-1.txz: Upgraded.
l/qt6-6.7.1_20240516_6977d02f-x86_64-2.txz: Rebuilt.
Recompiled against protobuf-27.0.
n/ca-certificates-20240604-noarch-1.txz: Upgraded.
This update provides the latest CA certificates to check for the
authenticity of SSL connections.
n/mosh-1.4.0-x86_64-2.txz: Rebuilt.
Recompiled against protobuf-27.0.
n/openssl-3.3.1-x86_64-1.txz: Upgraded.
This update fixes bugs and one low severity security issue:
Calling the OpenSSL API function SSL_free_buffers may cause memory to be
accessed that was previously freed in some situations. Our investigations
indicate that this function is rarely used by applications.
For more information, see:
https://www.openssl.org/news/secadv/20240528.txthttps://www.cve.org/CVERecord?id=CVE-2024-4741
(* Security fix *)
a/findutils-4.10.0-x86_64-1.txz: Upgraded.
a/logrotate-3.22.0-x86_64-1.txz: Upgraded.
Thanks to opty for getting our changes accepted upstream.
a/sysvinit-scripts-15.1-noarch-18.txz: Rebuilt.
rc.M: start dnsmasq before ntpd. Thanks to lostintime.
d/git-2.45.2-x86_64-1.txz: Upgraded.
d/poke-4.1-x86_64-1.txz: Upgraded.
kde/fcitx5-configtool-5.1.6-x86_64-1.txz: Upgraded.
kde/kwin-5.27.11-x86_64-2.txz: Rebuilt.
Recompiled against wayland-1.23.0 since it seems they broke the ABI.
Let me know if anything else needs help.
kde/libindi-2.0.8-x86_64-1.txz: Upgraded.
l/mujs-1.3.4-x86_64-1.txz: Added.
l/python-zipp-3.19.1-x86_64-1.txz: Upgraded.
n/ntp-4.2.8p18-x86_64-2.txz: Rebuilt.
rc.ntp: properly create the PID file on start.
Add /etc/default/ntp to configure ntpd startup options since some people are
needing to add -4 to avoid an error.
Thanks to rkelsen and teoberi.
x/fcitx5-5.1.10-x86_64-1.txz: Upgraded.
x/fcitx5-chinese-addons-5.1.6-x86_64-1.txz: Upgraded.
x/fcitx5-hangul-5.1.4-x86_64-1.txz: Upgraded.
x/fcitx5-kkc-5.1.4-x86_64-1.txz: Upgraded.
x/fcitx5-table-extra-5.1.6-x86_64-1.txz: Upgraded.
x/fcitx5-table-other-5.1.3-x86_64-1.txz: Upgraded.
x/libime-1.1.8-x86_64-1.txz: Upgraded.
x/xcb-imdkit-1.0.9-x86_64-1.txz: Upgraded.
xap/blueman-2.4.2-x86_64-1.txz: Upgraded.
xap/mpv-0.38.0-x86_64-3.txz: Rebuilt.
Recompiled against mujs-1.3.4.
d/luajit-2.0.1716656478-x86_64-1.txz: Added.
Thanks to Erik Falor.
n/proftpd-1.3.8b-x86_64-4.txz: Rebuilt.
Build with mod_wrap2 and mod_wrap2_file instead of mod_wrap, which has
problems with ipv6. Thanks to jayjwa.
xap/mpv-0.38.0-x86_64-2.txz: Rebuilt.
[PATCH 1/4] av_common: parent mp_get_lavf_demuxer contents to the list.
[PATCH 2/4] stream: implement get_protocols method for stream_lavf.
[PATCH 3/4] build: dynamically generate mpv.desktop file protocols.
[PATCH 4/4] stream_lavf: don't add ffmpeg bluray or dvd protocols.
Thanks to gmgf.
Build against luajit. Thanks to pm_a_cup_of_tea.
a/hwdata-0.383-noarch-1.txz: Upgraded.
a/pciutils-3.13.0-x86_64-1.txz: Upgraded.
d/ccache-4.10-x86_64-1.txz: Upgraded.
d/meson-1.4.1-x86_64-1.txz: Upgraded.
d/ruby-3.3.2-x86_64-1.txz: Upgraded.
kde/plasma-sdk-5.27.11.1-x86_64-1.txz: Upgraded.
kde/plasma-workspace-5.27.11.1-x86_64-1.txz: Upgraded.
kde/tokodon-23.08.5-x86_64-1.txz: Added.
l/libvpx-1.14.1-x86_64-1.txz: Upgraded.
l/python-requests-2.32.3-x86_64-1.txz: Upgraded.
n/NetworkManager-1.48.0-x86_64-1.txz: Upgraded.
n/getmail-6.19.00-x86_64-1.txz: Upgraded.
x/libevdev-1.13.2-x86_64-1.txz: Upgraded.
x/wayland-1.23.0-x86_64-1.txz: Upgraded.
xap/gnuplot-6.0.1-x86_64-1.txz: Upgraded.
xap/mpv-0.38.0-x86_64-1.txz: Added.
Evidently we need one more media player. ;-)
Thanks to John Vogel Corning, Andreas Guldstrand, and Christoph Willing.
a/etc-15.1-x86_64-12.txz: Rebuilt.
Remove less related profile variables from /etc/profile.
a/exfatprogs-1.2.3-x86_64-1.txz: Upgraded.
a/less-655-x86_64-2.txz: Rebuilt.
Create /etc/profile.d/less.{csh,sh} for less related profile variables.
By default, don't display the informational messages on the top line
of the output (this can be configured in less.{csh,sh}.
Don't attempt special handling of .log files as it breaks viewing a file
such as foo.log.bz2.
d/parallel-20240522-noarch-1.txz: Upgraded.
l/python-trove-classifiers-2024.5.22-x86_64-1.txz: Upgraded.
x/mesa-24.1.0-x86_64-1.txz: Upgraded.
x/xterm-392-x86_64-1.txz: Upgraded.
xap/pavucontrol-6.0-x86_64-1.txz: Upgraded.
a/less-654-x86_64-1.txz: Upgraded.
d/ninja-1.12.1-x86_64-1.txz: Upgraded.
n/whois-5.5.23-x86_64-1.txz: Upgraded.
Updated the .sc, .********* (.xn--yfro4i67o, Singapore)
and .********************************* (.xn--clchc0ea0b2g2a9gcd, Singapore)
TLD servers.
extra/bittornado/bittornado-0.3.18-noarch-3.txz: Removed.
Obsolete and based on python2.
a/kernel-firmware-20240426_fc21f47-noarch-1.txz: Upgraded.
ap/cups-2.4.7-x86_64-3.txz: Rebuilt.
Rebuild using --with-rundir=/run/cups.
ap/cups-browsed-2.0.0-x86_64-1.txz: Added.
This is the CUPS/IPP print queue browser daemon, previously part of the
cups-filters package.
ap/cups-filters-2.0.0-x86_64-1.txz: Upgraded.
l/libarchive-3.7.4-x86_64-1.txz: Upgraded.
l/libcupsfilters-2.0.0-x86_64-1.txz: Added.
This is required by cups-filters-2.0.0.
l/libppd-2.0.0-x86_64-1.txz: Added.
This is required by cups-filters-2.0.0.
l/libproxy-0.5.6-x86_64-1.txz: Upgraded.
x/wayland-protocols-1.36-noarch-1.txz: Upgraded.
xap/mozilla-firefox-125.0.2-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-125.0-x86_64-1.txz: Upgraded.
extra/rust-for-mozilla/rust-1.70.0-x86_64-4.txz: Removed.
a/elogind-252.23-x86_64-3.txz: Rebuilt.
All right, it's time to stop the bleeding (edge). This has been verified as
the last working version of elogind, so we'll revert for now while moving the
newer sources into /testing. We didn't actually *need* the 255 branch for
libgudev (I was mistakenly under that impression), so this will be fine for
now. We'll keep an eye on upstream and move forward when things settle down.
d/vala-0.56.17-x86_64-1.txz: Upgraded.
l/gdk-pixbuf2-2.42.11-x86_64-1.txz: Upgraded.
l/gtk4-4.14.3-x86_64-1.txz: Upgraded.
l/polkit-124-x86_64-2.txz: Rebuilt.
Recompiled against elogind-252.23.
l/python-sphinx-7.3.7-x86_64-1.txz: Upgraded.
n/NetworkManager-1.46.0-x86_64-2.txz: Rebuilt.
Build with meson instead of autotools, since setting session_tracking to
elogind is ignored with autotools, and is set to consolekit instead.
While this didn't seem to make a difference in practice, better to get this
right now and rule it out as part of the issue.
Thanks to marav and LuckyCyborg for the options hints.
x/xdg-desktop-portal-1.18.4-x86_64-1.txz: Upgraded.
xap/freerdp-2.11.6-x86_64-1.txz: Upgraded.
This release is a security release and addresses multiple issues:
[Low] OutOfBound Read in zgfx_decompress_segment.
[Moderate] Integer overflow & OutOfBound Write in
clear_decompress_residual_data.
[Low] integer underflow in nsc_rle_decode.
[Low] OutOfBound Read in planar_skip_plane_rle.
[Low] OutOfBound Read in ncrush_decompress.
[Low] OutOfBound Read in interleaved_decompress.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-32041https://www.cve.org/CVERecord?id=CVE-2024-32039https://www.cve.org/CVERecord?id=CVE-2024-32040https://www.cve.org/CVERecord?id=CVE-2024-32458https://www.cve.org/CVERecord?id=CVE-2024-32459https://www.cve.org/CVERecord?id=CVE-2024-32460
(* Security fix *)
l/imagemagick-7.1.1_30-x86_64-1.txz: Upgraded.
l/libarchive-3.7.3-x86_64-1.txz: Upgraded.
This update fixes a security issue:
Fix possible vulnerability in tar error reporting introduced in f27c173
by JiaT75.
For more information, see:
f27c173d17https://github.com/libarchive/libarchive/pull/2101
(* Security fix *)
n/net-snmp-5.9.4-x86_64-3.txz: Rebuilt.
[PATCH] Add Linux 6.7 compatibility parsing /proc/net/snmp.
Thanks to walecha.
n/rsync-3.3.0-x86_64-1.txz: Upgraded.
x/xorg-sgml-doctools-1.12.1-x86_64-1.txz: Upgraded.
xap/gimp-2.10.36-x86_64-3.txz: Rebuilt.
[PATCH] QuitDialog: disconnect signal handler on dialog destroy.
This fixes a crash on quit.
Thanks to USUARIONUEVO.
xap/xlockmore-5.77-x86_64-1.txz: Upgraded.
a/kernel-generic-6.6.24-x86_64-1.txz: Upgraded.
a/kernel-huge-6.6.24-x86_64-1.txz: Upgraded.
a/kernel-modules-6.6.24-x86_64-1.txz: Upgraded.
d/kernel-headers-6.6.24-x86-1.txz: Upgraded.
d/python3-3.11.9-x86_64-1.txz: Upgraded.
k/kernel-source-6.6.24-noarch-1.txz: Upgraded.
-AMD_MEM_ENCRYPT_ACTIVE_BY_DEFAULT n
-GCC11_NO_ARRAY_BOUNDS y
NUMA_BALANCING n -> y
+GCC10_NO_ARRAY_BOUNDS y
+NUMA_BALANCING_DEFAULT_ENABLED y
kde/libindi-2.0.7-x86_64-1.txz: Upgraded.
l/SDL2-2.30.2-x86_64-1.txz: Upgraded.
l/aom-3.8.2-x86_64-1.txz: Added.
Needed to add AV1 encode/decode support to ffmpeg.
Thanks to Andrew Strong.
l/dav1d-1.4.1-x86_64-1.txz: Added.
Needed to add AV1 decode support to ffmpeg.
l/ffmpeg-6.1.1-x86_64-2.txz: Rebuilt.
Patched to build with nv-codec-headers-12.2.72.0. Thanks to J_W.
Compiled against aom-3.8.2 and dav1d-1.4.1 for AV1 support.
Thanks to glennmcc.
l/gtk4-4.14.2-x86_64-1.txz: Upgraded.
n/whois-5.5.22-x86_64-1.txz: Upgraded.
Fixed a segmentation fault with --no-recursion.
Updated the .bm and .vi TLD servers.
Removed 4 new gTLDs which are no longer active.
xap/MPlayer-20240403-x86_64-1.txz: Upgraded.
Compiled using --enable-libaom-lavc and --enable-libdav1d-lavc.
Thanks to glennmcc.
xap/pan-0.157-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
ap/hplip-3.23.12-x86_64-4.txz: Rebuilt.
Add a few patches from Arch, including one to fix a Unicode error with the
sixext.py script that causes hp-setup to crash after detecting a printer.
Thanks to truepatriot76.
d/Cython-3.0.10-x86_64-1.txz: Upgraded.
d/cargo-vendor-filterer-0.5.13-x86_64-1.txz: Upgraded.
d/poke-4.0-x86_64-1.txz: Upgraded.
l/editorconfig-core-c-0.12.7-x86_64-1.txz: Upgraded.
l/jasper-4.2.3-x86_64-1.txz: Upgraded.
l/libical-3.0.18-x86_64-1.txz: Upgraded.
l/pango-1.52.2-x86_64-1.txz: Upgraded.
l/python-lxml-5.2.0-x86_64-1.txz: Upgraded.
l/wireplumber-0.5.1-x86_64-1.txz: Upgraded.
n/c-ares-1.28.1-x86_64-1.txz: Upgraded.
xap/blueman-2.4-x86_64-1.txz: Upgraded.
a/libblockdev-2.28-x86_64-2.txz: Rebuilt.
Drop python2 support.
a/sysvinit-scripts-15.1-noarch-15.txz: Rebuilt.
rc.M: start rc.iceccd and rc.icecc-scheduler earlier.
a/util-linux-2.39.3-x86_64-2.txz: Rebuilt.
Drop python2 support.
a/volume_key-0.3.12-x86_64-6.txz: Rebuilt.
Drop python2 support.
ap/man-pages-6.7-noarch-1.txz: Upgraded.
d/cmake-3.28.4-x86_64-1.txz: Upgraded.
d/llvm-18.1.2-x86_64-1.txz: Upgraded.
d/python2-2.7.18-x86_64-7.txz: Rebuilt.
Bundle the final python2 versions of pip and setuptools.
Drop the /usr/bin/python symlink.
d/python3-3.9.19-x86_64-1.txz: Upgraded.
Point the /usr/bin/python symlink at python3.9.
PEP 394 says we can do this, and in a world of ambigious shebangs, this
is probably the best of the available options.
This update also fixes security issues:
bundled libexpat was updated to 2.6.0.
zipfile is now protected from the "quoted-overlap" zipbomb.
tempfile.TemporaryDirectory cleanup no longer dereferences symlinks when
working around file system permission errors.
For more information, see:
https://pythoninsider.blogspot.com/2024/03/python-31014-3919-and-3819-is-now.htmlhttps://www.cve.org/CVERecord?id=CVE-2023-52425https://www.cve.org/CVERecord?id=CVE-2024-0450https://www.cve.org/CVERecord?id=CVE-2023-6597
(* Security fix *)
d/strace-6.8-x86_64-1.txz: Upgraded.
kde/kross-interpreters-23.08.5-x86_64-2.txz: Rebuilt.
Drop python2 support.
l/libxml2-2.12.6-x86_64-2.txz: Rebuilt.
Drop python2 support.
l/mozjs115-115.9.0esr-x86_64-2.txz: Rebuilt.
Fixed installed library name. Thanks to reddog83.
Fixed slack-desc. Thanks to r1w1s1.
l/phonon-4.12.0-x86_64-1.txz: Upgraded.
l/pilot-link-0.12.5-x86_64-17.txz: Rebuilt.
Drop python2 support.
l/python2-module-collection-2.7.18-x86_64-6.txz: Removed.
Good bye!
l/python2-pycairo-1.18.2-x86_64-1.txz: Added.
We'll need this (along with pygtk and pygobject) until we get gimp3.
Well, we could build gimp without python support, but I really don't think
that's the route we want to take.
n/bind-9.18.25-x86_64-1.txz: Upgraded.
n/crda-4.15-x86_64-1.txz: Removed.
The kernel is able to load from wireless-regdb directly. Obsolete.
n/getmail-6.18.14-x86_64-1.txz: Upgraded.
n/gpgme-1.23.2-x86_64-2.txz: Rebuilt.
Drop python2 support.
n/obexftp-0.24.2-x86_64-11.txz: Rebuilt.
Drop python2 support.
n/wireless-regdb-2024.01.23-x86_64-1.txz: Added.
Wireless regulatory database, previously bundled with crda.
x/ibus-1.5.29-x86_64-2.txz: Rebuilt.
Drop python2 support.
x/libkkc-0.3.5-x86_64-4.txz: Rebuilt.
Still forcing python2 with this one, but perhaps a python3 marisa module
could work around this.
x/libkkc-data-0.2.7-x86_64-4.txz: Rebuilt.
Still forcing python2 with this one, but perhaps a python3 marisa module
could work around this.
x/xcb-proto-1.16.0-x86_64-2.txz: Rebuilt.
Drop python2 support.
x/xpyb-1.3.1-x86_64-7.txz: Removed.
Nothing uses it, and it was never updated for python3. Removed as obsolete.
a/etc-15.1-x86_64-9.txz: Rebuilt.
Added proftpd user (97) and proftpd group (97).
Added nm-openvpn user (320) and nm-openvpn group (320).
Added openvpn user (443) and openvpn group (443).
Added overflowuid user (65534) and overflowgid group (65534).
Thanks to opty for encouraging us to think about nobody.
d/meson-1.4.0-x86_64-1.txz: Upgraded.
d/python-setuptools-69.2.0-x86_64-1.txz: Upgraded.
l/expat-2.6.2-x86_64-1.txz: Upgraded.
Prevent billion laughs attacks with isolated use of external parsers.
For more information, see:
1d50b80cf3https://www.cve.org/CVERecord?id=CVE-2024-28757
(* Security fix *)
l/pipewire-1.0.4-x86_64-1.txz: Upgraded.
l/python-zipp-3.18.0-x86_64-1.txz: Upgraded.
n/openvpn-2.6.9-x86_64-2.txz: Rebuilt.
Run as openvpn:openvpn. Thanks to rkelsen.
n/proftpd-1.3.8b-x86_64-2.txz: Rebuilt.
Run as proftpd:proftpd.
x/libva-2.21.0-x86_64-1.txz: Upgraded.
x/libva-utils-2.21.0-x86_64-1.txz: Upgraded.
xap/NetworkManager-openvpn-1.10.2-x86_64-2.txz: Rebuilt.
Run as nm-openvpn:nm-openvpn. Thanks to Markus Wiesner.