ap/ispell-3.4.06-x86_64-3.txz: Rebuilt.
Get rid of hardcoded temporary path in munchlist.
l/boost-1.86.0-x86_64-2.txz: Rebuilt.
Get rid of hardcoded temporary paths in the cmake files.
Since these paths point to a location that an unprivileged user could
create and populate with files that could be picked up during a build,
it's possible this bug could be used for malicious purposes.
Thanks to jmacloue.
(* Security fix *)
l/fribidi-1.0.16-x86_64-1.txz: Upgraded.
n/php-8.3.12-x86_64-1.txz: Upgraded.
This update fixes security issues:
CGI: Fixed bug GHSA-p99j-rfp4-xqvq (Bypass of CVE-2024-4577, Parameter
Injection Vulnerability).
CGI: Fixed bug GHSA-94p6-54jq-9mwp (cgi.force_redirect configuration is
bypassable due to the environment variable collision).
FPM: Fixed bug GHSA-865w-9rf3-2wh5 (Logs from children may be altered).
SAPI: Fixed bug GHSA-9pqp-7h25-4f32 (Erroneous parsing of multipart form
data).
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-8926https://www.cve.org/CVERecord?id=CVE-2024-8927https://www.cve.org/CVERecord?id=CVE-2024-9026https://www.cve.org/CVERecord?id=CVE-2024-8925
(* Security fix *)
x/vulkan-sdk-1.3.290.0-x86_64-2.txz: Rebuilt.
Get rid of hardcoded temporary path in volkTargets.cmake.
(* Security fix *)
l/PyQt-builder-1.16.2-x86_64-1.txz: Upgraded.
l/fribidi-1.0.14-x86_64-1.txz: Upgraded.
l/libarchive-3.7.3-x86_64-2.txz: Rebuilt.
Patched an out-of-bound error in the rar e8 filter that could allow for
the execution of arbitrary code.
Thanks to gmgf for the heads-up.
For more information, see:
https://github.com/advisories/GHSA-2jc9-36w4-pmqwhttps://www.cve.org/CVERecord?id=CVE-2024-26256
(* Security fix *)
n/bluez-5.75-x86_64-3.txz: Rebuilt.
[PATCH] shared/uhid: Fix crash if bt_uhid_destroy free replay structure.
Thanks to sombragris.
n/libgpg-error-1.49-x86_64-1.txz: Upgraded.
