a/xfsprogs-5.12.0-x86_64-1.txz: Upgraded.
l/libcap-2.50-x86_64-1.txz: Upgraded.
l/libqalculate-3.19.0-x86_64-1.txz: Upgraded.
n/gnutls-3.6.16-x86_64-1.txz: Upgraded.
Fixed potential miscalculation of ECDSA/EdDSA code backported from Nettle.
In GnuTLS, as long as it is built and linked against the fixed version of
Nettle, this only affects GOST curves. [CVE-2021-20305]
Fixed potential use-after-free in sending "key_share" and "pre_shared_key"
extensions. When sending those extensions, the client may dereference a
pointer no longer valid after realloc. This happens only when the client
sends a large Client Hello message, e.g., when HRR is sent in a resumed
session previously negotiated large FFDHE parameters, because the initial
allocation of the buffer is large enough without having to call realloc
(#1151). [GNUTLS-SA-2021-03-10, CVSS: low]
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20305
(* Security fix *)
n/libnftnl-1.2.0-x86_64-1.txz: Upgraded.
n/links-2.23-x86_64-1.txz: Upgraded.
a/mcelog-176-x86_64-2.txz: Rebuilt.
Fixed size syntax in logrotate config file. Thanks to ecd102.
d/parallel-20210522-noarch-1.txz: Upgraded.
d/python-pip-21.1.2-x86_64-1.txz: Upgraded.
d/python-setuptools-57.0.0-x86_64-1.txz: Upgraded.
l/elfutils-0.185-x86_64-1.txz: Upgraded.
l/expat-2.4.1-x86_64-1.txz: Upgraded.
This update provides new mitigations against the "billion laughs" denial
of service attack.
For more information, see:
https://github.com/libexpat/libexpat/blob/R_2_4_1/expat/Changeshttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0340
(* Security fix *)
l/imagemagick-7.0.11_13-x86_64-2.txz: Rebuilt.
Recompiled against perl-5.34.0.
n/httpd-2.4.46-x86_64-4.txz: Rebuilt.
Fixed size syntax in logrotate config file. Thanks to ecd102.
a/exfatprogs-1.1.2-x86_64-1.txz: Upgraded.
a/kmod-29-x86_64-1.txz: Upgraded.
a/logrotate-3.18.1-x86_64-1.txz: Upgraded.
a/pkgtools-15.0-noarch-41.txz: Rebuilt.
installpkg, upgradepkg: skip the install script when doing upgradepkg's
pre-install. In cases where the script operations are expensive this can
nearly double the speed of upgrading a package. Thanks to Stuart Winter.
ap/texinfo-6.7-x86_64-5.txz: Rebuilt.
Recompiled against perl-5.34.0.
ap/vim-8.2.2876-x86_64-1.txz: Upgraded.
Compiled against perl-5.34.0.
d/perl-5.34.0-x86_64-1.txz: Upgraded.
d/sassc-3.6.2-x86_64-1.txz: Upgraded.
d/subversion-1.14.1-x86_64-3.txz: Rebuilt.
Recompiled against perl-5.34.0.
l/libsass-3.6.5-x86_64-1.txz: Upgraded.
l/libsigc++3-3.0.7-x86_64-1.txz: Upgraded.
n/bind-9.16.16-x86_64-1.txz: Upgraded.
n/epic5-2.1.4-x86_64-2.txz: Rebuilt.
Recompiled against perl-5.34.0.
n/irssi-1.2.3-x86_64-2.txz: Rebuilt.
Recompiled against perl-5.34.0.
n/libndp-1.8-x86_64-1.txz: Upgraded.
n/net-snmp-5.9-x86_64-6.txz: Rebuilt.
Recompiled against perl-5.34.0.
n/ntp-4.2.8p15-x86_64-8.txz: Rebuilt.
Recompiled against perl-5.34.0.
n/openldap-2.4.58-x86_64-2.txz: Rebuilt.
Recompiled against perl-5.34.0.
x/mesa-21.1.1-x86_64-1.txz: Upgraded.
xap/hexchat-2.14.3-x86_64-8.txz: Rebuilt.
Recompiled against perl-5.34.0.
xap/rxvt-unicode-9.26-x86_64-2.txz: Rebuilt.
Recompiled against perl-5.34.0.
xap/vim-gvim-8.2.2876-x86_64-1.txz: Upgraded.
Compiled against perl-5.34.0.
a/kernel-firmware-20210503_3f23f51-noarch-1.txz: Upgraded.
ap/mariadb-10.5.9-x86_64-1.txz: Upgraded.
Reverted to the latest stable release.
d/mercurial-5.8-x86_64-1.txz: Upgraded.
kde/calligra-3.2.1-x86_64-8.txz: Rebuilt.
Recompiled against poppler-21.05.0.
kde/cantor-21.04.0-x86_64-2.txz: Rebuilt.
Recompiled against poppler-21.05.0.
kde/kfilemetadata-5.81.0-x86_64-2.txz: Rebuilt.
Recompiled against poppler-21.05.0.
kde/kile-2.9.93-x86_64-8.txz: Rebuilt.
Recompiled against poppler-21.05.0.
kde/kitinerary-21.04.0-x86_64-2.txz: Rebuilt.
Recompiled against poppler-21.05.0.
kde/krita-4.4.3-x86_64-4.txz: Rebuilt.
Recompiled against poppler-21.05.0.
kde/okular-21.04.0-x86_64-2.txz: Rebuilt.
Recompiled against poppler-21.05.0.
l/isl-0.24-x86_64-1.txz: Upgraded.
l/poppler-21.05.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/python-pygments-2.9.0-x86_64-1.txz: Upgraded.
n/ethtool-5.12-x86_64-1.txz: Upgraded.
n/httpd-2.4.47-x86_64-2.txz: Rebuilt.
Recompiled against the mariadb-10.5.9 shared libraries.
n/postfix-3.6.0-x86_64-2.txz: Rebuilt.
Recompiled against the mariadb-10.5.9 shared libraries.
xap/gparted-1.3.0-x86_64-1.txz: Upgraded.
testing/packages/mariadb-10.6.0-x86_64-1.txz: Upgraded.
Since this is still considered alpha and not production ready, we'll put it
in /testing for now. Unless you're using an Atom (or other 32-bit processor
affected by the illegal instruction issue) it's probably best to stick with
mariadb-10.5.9.
a/less-581.2-x86_64-1.txz: Upgraded.
ap/nano-5.7-x86_64-1.txz: Upgraded.
d/cmake-3.20.2-x86_64-1.txz: Upgraded.
n/httpd-2.4.47-x86_64-1.txz: Upgraded.
n/samba-4.14.4-x86_64-1.txz: Upgraded.
This is a security release in order to address the following defect:
Negative idmap cache entries can cause incorrect group entries in the
Samba file server process token.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20254https://www.samba.org/samba/security/CVE-2021-20254.html
(* Security fix *)
extra/php8/php8-8.0.5-x86_64-1.txz: Upgraded.
d/gdb-10.2-x86_64-1.txz: Upgraded.
d/python-pip-21.1-x86_64-1.txz: Upgraded.
n/dnsmasq-2.85-x86_64-2.txz: Rebuilt.
rc.dnsmasq: display stop message. Thanks to vineetmehta.
rc.dnsmasq: kill by .pid file (or at least within the current namespace).
Thanks to Petri Kaukasoina.
n/wireguard-tools-1.0.20210424-x86_64-1.txz: Upgraded.
x/fcitx-qt5-1.2.6-x86_64-1.txz: Upgraded.
ap/tmux-3.2-x86_64-1.txz: Upgraded.
l/imagemagick-7.0.11_7-x86_64-1.txz: Upgraded.
l/librsvg-2.50.4-x86_64-1.txz: Upgraded.
n/cifs-utils-6.13-x86_64-1.txz: Upgraded.
n/snownews-1.7-x86_64-1.txz: Upgraded.
x/xorg-server-1.20.11-x86_64-1.txz: Upgraded.
Insufficient checks on the lengths of the XInput extension
ChangeFeedbackControl request can lead to out of bounds memory
accesses in the X server. These issues can lead to privilege
escalation for authorized clients on systems where the X server
is running privileged.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3472
(* Security fix *)
x/xorg-server-xephyr-1.20.11-x86_64-1.txz: Upgraded.
x/xorg-server-xnest-1.20.11-x86_64-1.txz: Upgraded.
x/xorg-server-xvfb-1.20.11-x86_64-1.txz: Upgraded.
x/xorg-server-xwayland-1.20.11-x86_64-1.txz: Upgraded.
a/kernel-generic-5.10.28-x86_64-1.txz: Upgraded.
a/kernel-huge-5.10.28-x86_64-1.txz: Upgraded.
a/kernel-modules-5.10.28-x86_64-1.txz: Upgraded.
d/kernel-headers-5.10.28-x86-1.txz: Upgraded.
k/kernel-source-5.10.28-noarch-1.txz: Upgraded.
DEVKMEM y -> n
Thanks to Jonathan Woithe for the suggestion.
l/pipewire-0.3.25-x86_64-1.txz: Upgraded.
n/libksba-1.5.1-x86_64-1.txz: Upgraded.
x/ibus-m17n-1.4.5-x86_64-1.txz: Upgraded.
x/libdrm-2.4.105-x86_64-1.txz: Upgraded.
x/mesa-21.0.2-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/linux-5.11.x/kernel-generic-5.11.12-x86_64-1.txz: Upgraded.
testing/packages/linux-5.11.x/kernel-headers-5.11.12-x86-1.txz: Upgraded.
testing/packages/linux-5.11.x/kernel-huge-5.11.12-x86_64-1.txz: Upgraded.
testing/packages/linux-5.11.x/kernel-modules-5.11.12-x86_64-1.txz: Upgraded.
testing/packages/linux-5.11.x/kernel-source-5.11.12-noarch-1.txz: Upgraded.
DEVKMEM y -> n
Thanks to Jonathan Woithe for the suggestion.
usb-and-pxe-installers/usbboot.img: Rebuilt.
ap/sqlite-3.35.3-x86_64-1.txz: Upgraded.
d/git-2.31.1-x86_64-1.txz: Upgraded.
d/re2c-2.1-x86_64-1.txz: Upgraded.
l/ffmpeg-4.3.2-x86_64-2.txz: Rebuilt.
libvpx-1.10.0 seems to have a changed ABI, so recompile against it.
l/gst-plugins-good-1.18.4-x86_64-2.txz: Rebuilt.
libvpx-1.10.0 seems to have a changed ABI, so recompile against it.
l/pango-1.48.4-x86_64-1.txz: Upgraded.
l/qt5-5.15.2-x86_64-7.txz: Rebuilt.
n/epic5-2.1.3-x86_64-1.txz: Upgraded.
x/libXaw-1.0.14-x86_64-1.txz: Upgraded.
x/xterm-367-x86_64-1.txz: Upgraded.
This update fixes a security issue:
xterm before Patch #366 allows remote attackers to execute arbitrary code or
cause a denial of service (segmentation fault) via a crafted UTF-8 combining
character sequence.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27135
(* Security fix *)
xap/xine-lib-1.2.11-x86_64-5.txz: Rebuilt.
libvpx-1.10.0 seems to have a changed ABI, so recompile against it.
xap/xpaint-3.1.3-x86_64-1.txz: Upgraded.
xap/xsnow-3.2.3-x86_64-1.txz: Upgraded.
a/mkinitrd-1.4.11-x86_64-20.txz: Rebuilt.
mkinitrd_command_generator.sh: account for the mmc_block module having an
internal name of "mmcblk". Thanks to Andypoo.
ap/cups-filters-1.28.8-x86_64-1.txz: Upgraded.
l/expat-2.3.0-x86_64-1.txz: Upgraded.
l/libvpx-1.10.0-x86_64-1.txz: Upgraded.
l/netpbm-10.93.03-x86_64-1.txz: Upgraded.
n/pam-krb5-4.10-x86_64-1.txz: Upgraded.
a/btrfs-progs-5.11.1-x86_64-1.txz: Upgraded.
a/dialog-1.3_20210324-x86_64-1.txz: Upgraded.
a/kernel-generic-5.10.26-x86_64-1.txz: Upgraded.
a/kernel-huge-5.10.26-x86_64-1.txz: Upgraded.
a/kernel-modules-5.10.26-x86_64-1.txz: Upgraded.
a/openssl-solibs-1.1.1k-x86_64-1.txz: Upgraded.
d/kernel-headers-5.10.26-x86-1.txz: Upgraded.
d/rust-1.51.0-x86_64-1.txz: Upgraded.
e/emacs-27.2-x86_64-1.txz: Upgraded.
k/kernel-source-5.10.26-noarch-1.txz: Upgraded.
-ADI_AXI_ADC m
AD9467 m -> n
FONT_TER16x32 n -> y
n/openssl-1.1.1k-x86_64-1.txz: Upgraded.
This update fixes security issues:
Fixed a problem with verifying a certificate chain when using the
X509_V_FLAG_X509_STRICT flag.
Fixed an issue where an OpenSSL TLS server may crash if sent a maliciously
crafted renegotiation ClientHello message from a client.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3450https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3449
(* Security fix *)
n/samba-4.14.2-x86_64-1.txz: Upgraded.
This is a security release in order to address the following defects:
Heap corruption via crafted DN strings.
Out of bounds read in AD DC LDAP server.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27840https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20277
(* Security fix *)
x/mesa-21.0.1-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/linux-5.11.x/kernel-generic-5.11.10-x86_64-1.txz: Upgraded.
testing/packages/linux-5.11.x/kernel-headers-5.11.10-x86-1.txz: Upgraded.
testing/packages/linux-5.11.x/kernel-huge-5.11.10-x86_64-1.txz: Upgraded.
testing/packages/linux-5.11.x/kernel-modules-5.11.10-x86_64-1.txz: Upgraded.
testing/packages/linux-5.11.x/kernel-source-5.11.10-noarch-1.txz: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
ap/slackpkg-15.0.1-noarch-1.txz: Upgraded.
Tweak default blacklist file's help text (thanks, dive).
Fix display of blacklisted packages.
Tweaks to slack-desc.
Note that kernel-headers should not be blacklisted.
Added Lithuania mirrors (Totoro-kun on LQ).
Fix exit code for pending updates (dive).
Avoid matching txz/tgz etc extension when blacklisting (dive).
Use https for all slackpkg homepage links.
Update mirror files (14.2 -> 15.0).
Add blacklist to search option.
Move applyblacklist to end of makelist().
Clarify how to blacklist duplicate packages.
Fix new-config dialog.
Reduce false positives in DOUBLEFILES detection.
Remove spaces in awk..
More blacklisting fixups (see full commit msg).
Escape plus signs in blacklist regex.
Convert ${ROOT}/${WORKDIR} > ${WORKDIR} (dive).
Convert ${ROOT}/${CONF} -> ${CONF} and tweak blacklists (dive).
Further fixup/enhancement to blacklisting issues.
Fix "slackpkg blacklist" so that it shows blacklist again.
Fixup internal blacklist handling.
Use ERE for sanity_check() function (David Woodfall).
Remove "slackpkg blacklist" from manual pages.
Fix aaa_elflibs --> aaa_libraries in sample blacklist file (mozes).
Split aarch64 and arm mirrors into separate files (mozes).
Allow new-config after slackpkg upgrade itself (PiterPUNK).
Modify blacklist regex line ending.
Thanks to Robby Workman.
ap/sqlite-3.35.2-x86_64-1.txz: Upgraded.
kde/kid3-3.8.6-x86_64-1.txz: Upgraded.
l/glib2-2.66.8-x86_64-1.txz: Upgraded.
l/pango-1.48.3-x86_64-2.txz: Rebuilt.
Eliminate dangling symlink. Thanks to upnort.
n/bind-9.16.13-x86_64-1.txz: Upgraded.
n/links-2.22-x86_64-1.txz: Upgraded.
n/network-scripts-15.0-noarch-14.txz: Rebuilt.
Fix discrepancies between rc.inet1.conf versions.
Move configuration of SLACC before DHCP.
Don't bring up a bridge interface if it will be brought up later by IP config.
Fix a typo in br_open when configuring IFOPTS: i->1.
Add SLAAC security and privacy options.
Fix typo of 'default'.
Added debugging output around new SLAAC enhancements.
Move enabling RA before SLAAC security section. Thanks to davjohn on LQ.
Fix domain name validation checks. Thanks to xbeastx74 on LQ for the report.
Thanks to Darren "Tadgy" Austin and Robby Workman.
n/wireless_tools-30.pre9-x86_64-5.txz: Rebuilt.
rc.wireless: don't leave interfaces in up state as it prevents SLAAC.
Take interface down at exit from rc.wireless. Thanks to davjohn.
x/libgee-0.20.4-x86_64-1.txz: Upgraded.
ap/vim-8.2.2585-x86_64-1.txz: Upgraded.
d/git-2.30.2-x86_64-1.txz: Upgraded.
l/python-dnspython-2.1.0-x86_64-1.txz: Added.
This is needed by samba-4.14.0.
l/python-markdown-3.3.4-x86_64-1.txz: Added.
This is needed by samba-4.14.0.
n/samba-4.14.0-x86_64-1.txz: Upgraded.
xap/vim-gvim-8.2.2585-x86_64-1.txz: Upgraded.
xfce/elementary-xfce-0.15.2-x86_64-1.txz: Upgraded.
a/lrzip-0.641-x86_64-1.txz: Upgraded.
This update fixes the poor compression ratio reported by Toutatis.
a/smartmontools-7.2-x86_64-4.txz: Rebuilt.
Add support for /etc/default/smartd. Thanks to upnort.
a/sysvinit-2.99-x86_64-1.txz: Upgraded.
l/iso-codes-4.6.0-noarch-1.txz: Upgraded.
n/ca-certificates-20210308-noarch-1.txz: Upgraded.
This update provides the latest CA certificates to check for the
authenticity of SSL connections.
n/fetchmail-6.4.17-x86_64-1.txz: Upgraded.
xfce/thunar-4.16.5-x86_64-1.txz: Upgraded.
a/e2fsprogs-1.46.2-x86_64-1.txz: Upgraded.
a/etc-15.0-x86_64-14.txz: Rebuilt.
/etc/hosts: added IPv6 loopback addresses.
a/hwdata-0.345-noarch-1.txz: Upgraded.
ap/hplip-3.20.6-x86_64-7.txz: Rebuilt.
Fixed desktop file to show category and icon properly.
Thanks to upnort and ArTourter.
d/git-2.30.1-x86_64-3.txz: Rebuilt.
Make sure the bash-completion file is installed in the proper location.
Thanks to Robby Workman.
d/python-setuptools-54.0.0-x86_64-1.txz: Upgraded.
d/vala-0.50.4-x86_64-1.txz: Upgraded.
l/imagemagick-7.0.11_2-x86_64-1.txz: Upgraded.
l/python-pillow-8.1.1-x86_64-1.txz: Upgraded.
n/network-scripts-15.0-noarch-13.txz: Rebuilt.
Well, apparently there was a newer branch of this than the one that was
sitting in my usual pending queue, so here it is. This also includes some
additional documentation on the new features. NOTE: In order to use SLAAC
to configure IPv6, you'll need to have USE_SLAAC[x]="yes" for the interface
in rc.inet1.conf. This is to ensure that nobody is surprised to find their
machine fully exposed to the internet - better safe than sorry.
Thanks to Darren "Tadgy" Austin and Robby Workman.
n/wireless_tools-30.pre9-x86_64-4.txz: Rebuilt.
This package contains some updates to rc.wireless and rc.wireless.conf.
Thanks to Darren "Tadgy" Austin.
xfce/mousepad-0.5.3-x86_64-1.txz: Upgraded.
a/kernel-generic-5.10.19-x86_64-1.txz: Upgraded.
a/kernel-huge-5.10.19-x86_64-1.txz: Upgraded.
a/kernel-modules-5.10.19-x86_64-1.txz: Upgraded.
d/kernel-headers-5.10.19-x86-1.txz: Upgraded.
d/poke-1.0-x86_64-1.txz: Added.
This looks useful enough to add upon the initial upstream release.
d/python-setuptools-53.1.0-x86_64-1.txz: Upgraded.
k/kernel-source-5.10.19-noarch-1.txz: Upgraded.
l/babl-0.1.86-x86_64-1.txz: Upgraded.
l/gtk+3-3.24.26-x86_64-1.txz: Upgraded.
n/network-scripts-15.0-noarch-12.txz: Rebuilt.
This has been rewritten to add support for IPv6, VLANs and link aggregation
(bonding). Thanks very much to tadgy!
x/xorgproto-2021.3-x86_64-1.txz: Upgraded.
xfce/xfce4-panel-4.16.2-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/linux-5.11.x/kernel-generic-5.11.2-x86_64-1.txz: Upgraded.
testing/packages/linux-5.11.x/kernel-headers-5.11.2-x86-1.txz: Upgraded.
testing/packages/linux-5.11.x/kernel-huge-5.11.2-x86_64-1.txz: Upgraded.
testing/packages/linux-5.11.x/kernel-modules-5.11.2-x86_64-1.txz: Upgraded.
testing/packages/linux-5.11.x/kernel-source-5.11.2-noarch-1.txz: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/sysvinit-scripts-2.1-noarch-40.txz: Rebuilt.
Drop old /sbin/rescan-scsi-bus as the most recent version is already present
in the sg3_utils package as /usr/bin/rescan-scsi-bus.sh.
d/meson-0.57.1-x86_64-1.txz: Upgraded.
l/mozilla-nss-3.62-x86_64-1.txz: Upgraded.
l/sg3_utils-1.45-x86_64-4.txz: Rebuilt.
Make a symlink /sbin/rescan-scsi-bus -> /usr/bin/rescan-scsi-bus.sh in case
anyone depends on the old path / name from the sysvinit-scripts package.
n/ipset-7.11-x86_64-1.txz: Upgraded.
n/krb5-1.19.1-x86_64-1.txz: Upgraded.
n/s-nail-14.9.21-x86_64-4.txz: Rebuilt.
If there's no mail, exit. Thanks to ardya.
testing/packages/linux-5.11/kernel-generic-5.11.0-x86_64-1.txz: Added.
testing/packages/linux-5.11/kernel-headers-5.11.0-x86-1.txz: Added.
testing/packages/linux-5.11/kernel-huge-5.11.0-x86_64-1.txz: Added.
testing/packages/linux-5.11/kernel-modules-5.11.0-x86_64-1.txz: Added.
testing/packages/linux-5.11/kernel-source-5.11.0-noarch-1.txz: Added.
xap/mozilla-firefox-78.7.1esr-x86_64-1.txz: Upgraded.
It looks like rebuilding Firefox with Rust 1.50.0 causes it to crash on
HTML5 streams, so let's drop back to this build. 78.8.0 is coming soon
and hopefully it'll fix this.
a/exfatprogs-1.1.0-x86_64-1.txz: Upgraded.
a/kernel-firmware-20210208_b79d239-noarch-1.txz: Upgraded.
a/procps-ng-3.3.17-x86_64-1.txz: Upgraded.
ap/man-db-2.9.4-x86_64-1.txz: Upgraded.
ap/slackpkg-15.0-noarch-2.txz: Rebuilt.
Allow new-config after slackpkg upgrade itself. Thanks to PiterPUNK.
d/git-2.30.1-x86_64-1.txz: Upgraded.
l/imagemagick-7.0.10_62-x86_64-1.txz: Upgraded.
l/jasper-2.0.25-x86_64-1.txz: Upgraded.
n/fetchmail-6.4.16-x86_64-1.txz: Upgraded.
xfce/thunar-4.16.3-x86_64-1.txz: Upgraded.
testing/packages/aaa_glibc-solibs-2.33-x86_64-1_testing.txz: Added.
testing/packages/glibc-2.33-x86_64-1_testing.txz: Added.
This is here for some actual testing - don't go just jumping into this one
all willy-nilly, especially if you're on 32-bit. The internal implementation
of some glibc functions has changed in ways that can break sandboxes that
restrict the allowable functions. So far this is known to affect
qt5-webengine and openssl, and in the case of openssl upgrading to this
version of glibc will lock out ssh access to the machine. I've seen one
mention of the openssh issue online as a comment posted to LWN's article
about the release of glibc-2.33. It says that a patch was submitted upstream,
but I haven't been able to locate a copy yet.
On the qt5 issue, alienBOB has given me a link to this patch:
09e1adb883/f/qtwebengine-everywhere-src-5.15.2-%231904652.patch
If anyone has a fix for openssl on 32-bit, kindly post it to LQ.
testing/packages/glibc-i18n-2.33-x86_64-1_testing.txz: Added.
testing/packages/glibc-profile-2.33-x86_64-1_testing.txz: Added.
a/hwdata-0.344-noarch-1.txz: Upgraded.
kde/calligra-3.2.1-x86_64-4.txz: Rebuilt.
Recompiled against poppler-21.02.0.
Patched to fix blank screen when starting calligragemini.
Thanks to PiterPunk.
kde/cantor-20.12.1-x86_64-3.txz: Rebuilt.
Recompiled against poppler-21.02.0.
kde/kdev-php-5.6.2-x86_64-1.txz: Upgraded.
kde/kdev-python-5.6.2-x86_64-1.txz: Upgraded.
kde/kdevelop-5.6.2-x86_64-1.txz: Upgraded.
kde/kfilemetadata-5.78.0-x86_64-3.txz: Rebuilt.
Recompiled against poppler-21.02.0.
kde/kile-2.9.93-x86_64-4.txz: Rebuilt.
Recompiled against poppler-21.02.0.
kde/kitinerary-20.12.1-x86_64-3.txz: Rebuilt.
Recompiled against poppler-21.02.0.
kde/krita-4.4.2-x86_64-2.txz: Rebuilt.
Recompiled against poppler-21.02.0.
kde/okular-20.12.1-x86_64-3.txz: Rebuilt.
Recompiled against poppler-21.02.0.
l/gamin-0.1.10-x86_64-8.txz: Rebuilt.
Patched to poll files on NFSv4 filesystems. Thanks to Stuart Winter.
l/poppler-21.02.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
n/krb5-1.19-x86_64-1.txz: Upgraded.
n/nghttp2-1.43.0-x86_64-1.txz: Upgraded.
n/samba-4.13.4-x86_64-2.txz: Rebuilt.
Recompiled against krb5-1.19 to fix libkrb5samba-samba4.so which had an
undefined symbol after krb5-1.19 dropped it. Upstream krb5 says that the
function in question was never shipped in any header and wasn't intended
to be part of any public interface.
a/openssl10-solibs-1.0.2u-x86_64-2.txz: Removed.
d/make-4.3-x86_64-2.txz: Rebuilt.
We'll upgrade to make-4.3 again (with a few patches from Fedora) since this
is now working with all the sources that we ship.
l/gst-plugins-base0-0.10.36-x86_64-4.txz: Removed.
l/gst-plugins-good0-0.10.31-x86_64-4.txz: Removed.
l/gstreamer0-0.10.36-x86_64-3.txz: Removed.
l/libcap-2.47-x86_64-1.txz: Upgraded.
l/libsamplerate-0.2.1-x86_64-1.txz: Upgraded.
l/libvisual-plugins-0.4.0-x86_64-6.txz: Rebuilt.
Drop actor_gstreamer.so (requires gstreamer0).
l/mozjs78-78.7.0esr-x86_64-1.txz: Upgraded.
l/talloc-2.3.2-x86_64-1.txz: Upgraded.
n/NetworkManager-1.28.0-x86_64-4.txz: Rebuilt.
Rebuilt for ppp-2.4.9.
n/openssl10-1.0.2u-x86_64-2.txz: Removed.
n/ppp-2.4.9-x86_64-1.txz: Upgraded.
n/rp-pppoe-3.14-x86_64-3.txz: Rebuilt.
Rebuilt for ppp-2.4.9.
x/ibus-libpinyin-1.12.0-x86_64-1.txz: Upgraded.
x/ibus-table-1.12.4-x86_64-1.txz: Upgraded.
x/libpinyin-2.6.0-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-78.7.0esr-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/78.7.0/releasenotes/
(* Security fix *)
xfce/xfce4-whiskermenu-plugin-2.5.3-x86_64-1.txz: Upgraded.
Hey folks, a little status update here. First, huge thanks are due to
nobodino for helping to shake out packages that weren't building from source.
With all those fixes in place (plus a few more), we have tested and found that
everything in the tree compiles cleanly against glibc-2.32. So, the plan is to
have another mass rebuild soon against that. Although the ABI didn't
technically change, I've heard that libpthread may not be 100% compatible in
some corner cases, so we'll err on the side of caution. Hopefully we can get a
little testing done on the recompiled system and then go through it all again
at the beginning of next month when glibc-2.33 is released. Other than that,
how's Mesa working these days? If there are still issues that are resolved by
dropping back to the previous branch, let's try to figure those out. I'd rather
not revert Mesa unless there's no other choice. I'm hoping that the (probably
unrelated) issues with Intel video hardware will be helped by today's
xorg-server patch that uses the modesetting driver with newer chipsets. Please
report any improvement on the LQ thread.
Beta approaches. :-)
a/sysklogd-2.2.0-x86_64-1.txz: Upgraded.
d/distcc-3.3.5-x86_64-2.txz: Rebuilt.
Properly install distccmon-gnome.desktop. Thanks to marco70.
d/python-setuptools-51.3.3-x86_64-1.txz: Upgraded.
l/imagemagick-7.0.10_58-x86_64-1.txz: Upgraded.
l/libodfgen-0.1.8-x86_64-1.txz: Upgraded.
l/libsigsegv-2.13-x86_64-1.txz: Upgraded.
n/inetd-1.79s-x86_64-12.txz: Rebuilt.
Rebuilt to link with libtirpc. Thanks to nobodino.
n/nftables-0.9.8-x86_64-1.txz: Upgraded.
n/postfix-3.5.9-x86_64-1.txz: Upgraded.
n/tcp_wrappers-7.6-x86_64-4.txz: Rebuilt.
Use strerror(), not sys_errlist(). Thanks to nobodino.
x/xorg-server-1.20.10-x86_64-3.txz: Rebuilt.
Only use the Intel DDX with pre-gen4 hardware. Newer hardware will use the
modesetting driver.
x/xorg-server-xephyr-1.20.10-x86_64-3.txz: Rebuilt.
x/xorg-server-xnest-1.20.10-x86_64-3.txz: Rebuilt.
x/xorg-server-xvfb-1.20.10-x86_64-3.txz: Rebuilt.
x/xorg-server-xwayland-1.20.10-x86_64-3.txz: Rebuilt.
xfce/xfce4-appfinder-4.16.1-x86_64-1.txz: Upgraded.
a/kernel-generic-5.10.7-x86_64-1.txz: Upgraded.
a/kernel-huge-5.10.7-x86_64-1.txz: Upgraded.
a/kernel-modules-5.10.7-x86_64-1.txz: Upgraded.
a/libblockdev-2.25-x86_64-1.txz: Upgraded.
ap/sudo-1.9.5p1-x86_64-1.txz: Upgraded.
Fixed a regression introduced in sudo 1.9.5 where the editor run by sudoedit
was set-user-ID root unless SELinux RBAC was in use. The editor is now run
with the user's real and effective user-IDs.
d/autoconf-2.69-noarch-2.txz: Rebuilt.
We're seeing failures using autoconf-2.70 with some packages that use
autoreconf. It looks like most distributions have not moved on to
autoconf-2.70, and probably we shouldn't either until the next release cycle.
Thanks to nobodino.
d/kernel-headers-5.10.7-x86-1.txz: Upgraded.
e/emacs-27.1-x86_64-2.txz: Rebuilt.
Increase SYSTEM_PURESIZE_EXTRA to 100000 to avoid overflows. Nobody should be
too concerned about adding 97K to emacs' memory footprint given the amount of
memory available on modern machines. Thanks to Jefferson for the bug report.
k/kernel-source-5.10.7-noarch-1.txz: Upgraded.
l/libclc-11.0.1-x86_64-1.txz: Upgraded.
Thanks to USUARIONUEVO.
l/python-pygments-2.7.4-x86_64-1.txz: Upgraded.
n/gnupg2-2.2.27-x86_64-1.txz: Upgraded.
n/socat-1.7.4.1-x86_64-1.txz: Upgraded.
x/libdrm-2.4.104-x86_64-1.txz: Upgraded.
x/libevdev-1.10.1-x86_64-1.txz: Upgraded.
x/vulkan-sdk-1.2.141.0-x86_64-2.txz: Rebuilt.
Install additional Vulkan-ValidationLayers-sdk header files.
Thanks to walecha.
xap/mozilla-thunderbird-78.6.1-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/78.6.1/releasenotes/https://www.mozilla.org/en-US/security/advisories/mfsa2021-02/https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16044
(* Security fix *)
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/exfatprogs-1.0.4-x86_64-1.txz: Added.
ap/vim-8.2.2269-x86_64-1.txz: Upgraded.
Add Ruby and Tcl support, make language support dynamic if possible.
d/ruby-3.0.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
d/subversion-1.14.0-x86_64-4.txz: Rebuilt.
Recompiled against ruby-3.0.0.
l/openexr-2.5.4-x86_64-1.txz: Upgraded.
l/python-idna-3.0-x86_64-1.txz: Upgraded.
n/cifs-utils-6.12-x86_64-1.txz: Upgraded.
n/epic5-2.1.2-x86_64-5.txz: Rebuilt.
Recompiled against ruby-3.0.0.
x/marisa-0.2.6-x86_64-2.txz: Rebuilt.
Recompiled against ruby-3.0.0.
xap/vim-gvim-8.2.2269-x86_64-1.txz: Upgraded.
Add Ruby and Tcl support, make language support dynamic if possible.
And, just a month after Xfce 4.14 appeared in vtown, we have Xfce 4.16 updates
in the main tree. Thanks much to Robby Workman for making it happen. :-)
a/aaa_terminfo-6.2_20201219-x86_64-1.txz: Upgraded.
a/ndctl-71.1-x86_64-2.txz: Rebuilt.
Fix bash-completion file installation (previously it was causing the
completion dir to have mode 0644). Thanks to Robby Workman.
l/harfbuzz-2.7.4-x86_64-1.txz: Upgraded.
l/libarchive-3.5.1-x86_64-1.txz: Upgraded.
l/libgtop-2.40.0-x86_64-1.txz: Added.
This is used by libxfce4ui to provide extra information in the about page.
l/ncurses-6.2_20201219-x86_64-1.txz: Upgraded.
n/wpa_supplicant-2.9-x86_64-4.txz: Rebuilt.
Fix desktop file to not show if kdesu isn't available. Thanks to Hyperion.
x/xterm-363-x86_64-1.txz: Upgraded.
xap/xsnow-3.2.0-x86_64-1.txz: Upgraded.
xfce/Greybird-3.22.13-noarch-2.txz: Rebuilt.
xfce/exo-4.16.0-x86_64-1.txz: Upgraded.
xfce/garcon-0.8.0-x86_64-1.txz: Upgraded.
xfce/libxfce4ui-4.16.0-x86_64-1.txz: Upgraded.
xfce/libxfce4util-4.16.0-x86_64-1.txz: Upgraded.
xfce/mousepad-0.5.1-x86_64-2.txz: Rebuilt.
xfce/thunar-4.16.0-x86_64-1.txz: Upgraded.
xfce/thunar-volman-4.16.0-x86_64-1.txz: Upgraded.
xfce/tumbler-4.16.0-x86_64-1.txz: Upgraded.
xfce/xfce4-appfinder-4.16.0-x86_64-1.txz: Upgraded.
xfce/xfce4-clipman-plugin-1.6.1-x86_64-2.txz: Rebuilt.
xfce/xfce4-dev-tools-4.16.0-x86_64-1.txz: Upgraded.
xfce/xfce4-notifyd-0.6.2-x86_64-2.txz: Rebuilt.
xfce/xfce4-panel-4.16.0-x86_64-1.txz: Upgraded.
xfce/xfce4-panel-profiles-1.0.10-x86_64-2.txz: Rebuilt.
xfce/xfce4-power-manager-4.16.0-x86_64-1.txz: Upgraded.
xfce/xfce4-pulseaudio-plugin-0.4.3-x86_64-2.txz: Rebuilt.
xfce/xfce4-screensaver-0.1.11-x86_64-3.txz: Rebuilt.
xfce/xfce4-screenshooter-1.9.8-x86_64-1.txz: Upgraded.
xfce/xfce4-session-4.16.0-x86_64-1.txz: Upgraded.
xfce/xfce4-settings-4.16.0-x86_64-1.txz: Upgraded.
xfce/xfce4-systemload-plugin-1.2.4-x86_64-2.txz: Rebuilt.
xfce/xfce4-taskmanager-1.2.3-x86_64-2.txz: Rebuilt.
xfce/xfce4-terminal-0.8.10-x86_64-1.txz: Upgraded.
xfce/xfce4-weather-plugin-0.10.2-x86_64-2.txz: Rebuilt.
xfce/xfce4-whiskermenu-plugin-2.5.0-x86_64-1.txz: Upgraded.
xfce/xfconf-4.16.0-x86_64-1.txz: Upgraded.
xfce/xfdesktop-4.16.0-x86_64-1.txz: Upgraded.
xfce/xfwm4-4.16.0-x86_64-1.txz: Upgraded.
Here are some updates to provide a little holiday cheer. The kernels are
rebuilt (yeah, we'll probably have new ones tomorrow but whatever) to build in
HWMON making NVMe temperature monitoring available, and there's also a massive
cleanup of polkit/dbus related packages to move most of the config files out
of /etc and not install them as .new. Local config files that override the
shipped ones may be placed in the directories in /etc to override the ones that
we ship. Thanks to Robby Workman for this!
None of the packages included in Slackware place any files in
/etc/polkit-1/rules.d/ or /etc/dbus-1/system.d/ any more, but there may be
third-party packages that still do. However, since Slackware's packages
originally installed these as .new files, the leftover configs will remain.
You'll probably want to take a look in those directories to clean out any
config files that you haven't modified yourself or that belong to packages that
aren't part of Slackware itself.
Hope everyone has a great day. :-)
a/dbus-1.12.20-x86_64-3.txz: Rebuilt.
Added local config override directory /etc/dbus-1/system.d/ since no other
package provides it now.
a/kernel-generic-5.10.2-x86_64-2.txz: Upgraded.
a/kernel-huge-5.10.2-x86_64-2.txz: Upgraded.
a/kernel-modules-5.10.2-x86_64-2.txz: Upgraded.
a/udisks-1.0.5-x86_64-6.txz: Rebuilt.
Move D-Bus configs from /etc to the system location. Thanks to Robby Workman.
a/udisks2-2.9.1-x86_64-2.txz: Rebuilt.
Include 20-plugdev-group-mount-override.rules, installed in the system
location. Thanks to Robby Workman.
ap/cups-2.3.3-x86_64-3.txz: Rebuilt.
Move D-Bus configs from /etc to the system location. Thanks to Robby Workman.
ap/hplip-3.20.6-x86_64-4.txz: Rebuilt.
Use --enable-qt5.
Move D-Bus configs from /etc to the system location.
Drop HAL support (LOL!)
Thanks to Robby Workman.
ap/mpg123-1.26.4-x86_64-1.txz: Upgraded.
d/gnucobol-3.1.2-x86_64-1.txz: Upgraded.
d/kernel-headers-5.10.2-x86-2.txz: Upgraded.
k/kernel-source-5.10.2-noarch-2.txz: Upgraded.
HWMON m -> y
+NVME_HWMON y
+POWER_SUPPLY_HWMON y
+THERMAL_HWMON y
Thanks to Daedra.
kde/sddm-0.19.0-x86_64-4.txz: Rebuilt.
Don't include the /etc/dbus-1/system.d/ directory.
l/GConf-3.2.6-x86_64-5.txz: Rebuilt.
Move D-Bus configs from /etc to the system location. Thanks to Robby Workman.
l/accountsservice-0.6.55-x86_64-2.txz: Rebuilt.
Move D-Bus configs from /etc to the system location. Thanks to Robby Workman.
l/cryptopp-8.3.0-x86_64-1.txz: Upgraded.
l/harfbuzz-2.7.3-x86_64-1.txz: Upgraded.
l/polkit-0.118-x86_64-3.txz: Rebuilt.
Remove D-Bus rules for udisks2 and NetworkManager (moved to those packages).
Move D-Bus configs from /etc to the system location. Thanks to Robby Workman.
l/pulseaudio-14.0-x86_64-2.txz: Rebuilt.
Move D-Bus configs from /etc to the system location. Thanks to Robby Workman.
l/system-config-printer-1.5.12-x86_64-6.txz: Rebuilt.
Move D-Bus configs from /etc to the system location. Thanks to Robby Workman.
n/ModemManager-1.14.8-x86_64-2.txz: Rebuilt.
Added elogind support.
Move D-Bus configs from /etc to the system location.
Thanks to Robby Workman.
n/NetworkManager-1.28.0-x86_64-2.txz: Rebuilt.
Include 10-org.freedesktop.NetworkManager.rules, installed in the system
location. Thanks to Robby Workman.
n/bluez-5.55-x86_64-2.txz: Rebuilt.
Move D-Bus configs from /etc to the system location. Thanks to Robby Workman.
n/netatalk-3.1.12-x86_64-5.txz: Rebuilt.
Patched to fix failure to build from source with gcc10.
Move D-Bus configs from /etc to the system location.
Thanks to Robby Workman.
n/wpa_supplicant-2.9-x86_64-3.txz: Rebuilt.
Move D-Bus configs from /etc to the system location. Thanks to Robby Workman.
x/mesa-20.3.1-x86_64-2.txz: Rebuilt.
[PATCH] vulkan/device_select: Store Vulkan vendorID and deviceID as uint32_t.
Thanks to sasha69 for the link to the upstream discussion/commit.
xap/blueman-2.1.4-x86_64-3.txz: Rebuilt.
Move D-Bus configs from /etc to the system location. Thanks to Robby Workman.
xap/xgames-0.3-x86_64-6.txz: Rebuilt.
Fixed spider failing to build from source with gcc10.
Removed the ancient version of xsnow.
xap/xscreensaver-5.45-x86_64-2.txz: Rebuilt.
Make the description of the xscreensaver settings be clearly for xscreensaver
as opposed to a generic "screensaver" settings. Thanks to Robby Workman.
xap/xsnow-3.1.9-x86_64-1.txz: Added.
Merry Christmas / Happy Holidays! :-)
xfce/mousepad-0.5.1-x86_64-1.txz: Upgraded.
xfce/xfce4-screensaver-0.1.11-x86_64-2.txz: Rebuilt.
Make the description of the xfce4-screensaver settings be clearly for
xfce4-screensaver as opposed to a generic "screensaver" settings.
Thanks to Robby Workman.
xfce/xfce4-session-4.14.2-x86_64-2.txz: Rebuilt.
Use xfce4-screensaver by default and don't ship the xscreensaver.desktop
autostart file. Thanks to Robby Workman.
extra/pure-alsa-system/*: Removed.
This served a purpose during the pure ALSA to PulseAudio transition, but
it's time for it to go away. If the latency is an issue for your use case,
a look around should turn up documentation on how to reduce it, or how to
send output directly to ALSA without having to uninstall PulseAudio or
recompile anything that's linked to it. As an example, see this one (which
was mentioned here before):
https://wiki.archlinux.org/index.php/PulseAudio/Examples#PulseAudio_as_a_minimal_unintrusive_dumb_pipe_to_ALSA
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Linus didn't think this was a scary kernel and in spite of skipping a few
branches here before getting to this one, I don't either. Not scary enough
to make me think I need to start it out in /testing, anyway. I have a good
feeling about this kernel. Enjoy! :-)
a/bash-5.1.004-x86_64-1.txz: Upgraded.
a/elogind-246.9-x86_64-1.txz: Upgraded.
Don't make 10-enable-session-power.rules a .new file.
Thanks to Robby Workman.
a/kernel-firmware-20201218_646f159-noarch-1.txz: Upgraded.
a/kernel-generic-5.10.1-x86_64-1.txz: Upgraded.
a/kernel-huge-5.10.1-x86_64-1.txz: Upgraded.
a/kernel-modules-5.10.1-x86_64-1.txz: Upgraded.
a/ndctl-71-x86_64-1.txz: Upgraded.
a/sysvinit-scripts-2.1-noarch-37.txz: Rebuilt.
rc.S: don't start cgmanager/cgproxy.
rc.6: don't stop cgmanager/cgproxy.
d/kernel-headers-5.10.1-x86-1.txz: Upgraded.
k/kernel-source-5.10.1-noarch-1.txz: Upgraded.
l/libtiff-4.2.0-x86_64-1.txz: Upgraded.
l/zstd-1.4.8-x86_64-1.txz: Upgraded.
n/ca-certificates-20201219-noarch-1.txz: Upgraded.
This update provides the latest CA certificates to check for the
authenticity of SSL connections.
xap/libnma-1.8.30-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
d/python-pip-20.3.3-x86_64-1.txz: Upgraded.
kde/sddm-0.19.0-x86_64-3.txz: Rebuilt.
In SDDM's Xsession script, don't source $HOME/.xsession as this may launch
the wrong session type or cause dbus-run-session to start twice breaking
logout.
l/orc-0.4.32-x86_64-1.txz: Upgraded.
l/pipewire-0.3.18-x86_64-1.txz: Upgraded.
l/python-chardet-4.0.0-x86_64-1.txz: Upgraded.
l/python-packaging-20.8-x86_64-1.txz: Upgraded.
n/samba-4.13.3-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-78.6.0-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/78.6.0/releasenotes/
xfce/mousepad-0.5.0-x86_64-1.txz: Upgraded.
a/kernel-firmware-20201130_7455a36-noarch-1.txz: Upgraded.
ap/sudo-1.9.4-x86_64-1.txz: Upgraded.
d/python-pip-20.3-x86_64-1.txz: Upgraded.
d/rinutils-0.8.0-x86_64-1.txz: Upgraded.
l/imagemagick-7.0.10_45-x86_64-1.txz: Upgraded.
n/cyrus-sasl-2.1.27-x86_64-5.txz: Rebuilt.
rc.saslauthd: start with -a pam -c
Rebuilt with --with-ldap and include LDAP_SASLAUTHD documentation.
Thanks to voegelas.
ap/qpdf-10.0.4-x86_64-1.txz: Upgraded.
d/cmake-3.19.1-x86_64-1.txz: Upgraded.
n/bind-9.16.9-x86_64-1.txz: Upgraded.
This update fixes bugs, including a denial-of-service security issue:
After a Negative Trust Anchor (NTA) is added, BIND performs periodic
checks to see if it is still necessary. If BIND encountered a failure
while creating a query to perform such a check, it attempted to
dereference a NULL pointer, resulting in a crash. [GL #2244]
(* Security fix *)
n/cifs-utils-6.11-x86_64-2.txz: Rebuilt.
Patched to fix mounting CIFS shares when linked with libcap-ng-0.8.1.
Thanks to marrowsuck.
n/mutt-2.0.0-x86_64-1.txz: Upgraded.
n/ntp-4.2.8p15-x86_64-4.txz: Rebuilt.
Make a /usr/bin/ntpdate symlink so that Plasma 5 can find it.
Thanks to alienBOB.
n/postfix-3.5.8-x86_64-1.txz: Upgraded.
a/hwdata-0.341-noarch-1.txz: Upgraded.
a/kernel-generic-5.4.75-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.75-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.75-x86_64-1.txz: Upgraded.
d/kernel-headers-5.4.75-x86-1.txz: Upgraded.
k/kernel-source-5.4.75-noarch-1.txz: Upgraded.
l/oniguruma-6.9.6-x86_64-1.txz: Upgraded.
l/openal-soft-1.21.0-x86_64-1.txz: Upgraded.
n/ca-certificates-20201105-noarch-1.txz: Upgraded.
This update provides the latest CA certificates to check for the
authenticity of SSL connections.
x/libwacom-1.6-x86_64-1.txz: Upgraded.
x/xkbcomp-1.4.4-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/vtown/kde/sddm-0.18.1-x86_64-1_vtown_3.txz: Rebuilt.
Fixed man page installation directory. Thanks to chrisretusn.
Xsetup: include comments.
Create /var/lib/sddm at build time.
Generate /etc/sddm.conf at build time.
Do not mess with users/groups in doinst.sh. These are expected to exist.
Do not add MinimumVT=7 to sddm.conf, as it is already included by default.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/libblockdev-2.24-x86_64-1.txz: Added.
This is required by the new version of udisks2.
a/libbytesize-2.4-x86_64-1.txz: Added.
This is required by the new version of udisks2.
a/ndctl-70.1-x86_64-1.txz: Added.
This is required by libblockdev, which in turn is required by the new
version of udisks2.
a/udisks2-2.9.1-x86_64-1.txz: Upgraded.
Thanks to Robby Workman for this update and the deps for it.
a/volume_key-0.3.12-x86_64-1.txz: Added.
This is required by the new version of udisks2.
ap/qpdf-10.0.2-x86_64-1.txz: Upgraded.
n/openvpn-2.5.0-x86_64-1.txz: Upgraded.
n/php-7.4.12-x86_64-1.txz: Upgraded.
l/libbluray-1.2.1-x86_64-1.txz: Upgraded.
n/libassuan-2.5.4-x86_64-1.txz: Upgraded.
n/nfs-utils-2.5.2-x86_64-2.txz: Rebuilt.
Comment out debugging lines from exportfs.c, probably left in by mistake.
Thanks to upnort.
x/libva-2.9.1-x86_64-1.txz: Upgraded.
a/aaa_terminfo-6.2_20201024-x86_64-1.txz: Upgraded.
a/libpwquality-1.4.4-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
a/util-linux-2.36-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
ap/hplip-3.20.6-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.9.0.
ap/inxi-20201016_e45c6960-noarch-1.txz: Upgraded.
ap/linuxdoc-tools-0.9.73-x86_64-7.txz: Rebuilt.
ap/lxc-2.0.11_fad08f383-x86_64-5.txz: Rebuilt.
Recompiled against python3-3.9.0.
ap/neofetch-20201016_f0b16b6-noarch-1.txz: Upgraded.
ap/rpm-4.16.0-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
ap/undervolt-20201024_13fa33d-x86_64-1.txz: Upgraded.
Compiled against python3-3.9.0.
d/Cython-0.29.21-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
d/distcc-3.3.3-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.9.0.
d/gdb-10.1-x86_64-1.txz: Upgraded.
Compiled against python3-3.9.0.
d/gyp-20200512_caa60026-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
d/llvm-11.0.0-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
d/mercurial-5.5.2-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
d/meson-0.55.3-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
d/python-pip-20.2.4-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
d/python-setuptools-50.3.2-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
d/python3-3.9.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
This update is a bit painful in that it will require most third-party
packages using python3 to be recompiled. But, we needed to get this out
of the way before moving on to bigger and better things. :-)
d/scons-4.0.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
kde/pykde4-4.14.3-x86_64-11.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/M2Crypto-0.36.0-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/Mako-1.1.3-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/PyQt-4.12.3-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/PyQt5-5.15.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/QScintilla-2.11.5-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/boost-1.74.0-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/brotli-1.0.9-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/dbus-python-1.2.16-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/gexiv2-0.12.0-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/gobject-introspection-1.64.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/libcaca-0.99.beta19-x86_64-7.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/libcap-ng-0.8-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/libimobiledevice-20200615_4791a82-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/libproxy-0.4.15-x86_64-5.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/libwebp-1.1.0-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/libxml2-2.9.10-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/ncurses-6.2_20201024-x86_64-1.txz: Upgraded.
l/newt-0.52.21-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/pycairo-1.20.0-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/pycups-2.0.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/pycurl-7.43.0.6-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/pygobject-2.28.7-x86_64-6.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/pygobject3-3.36.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/pyparsing-2.4.7-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/python-appdirs-1.4.4-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/python-certifi-2020.6.20-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/python-chardet-3.0.4-x86_64-6.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/python-distro-1.5.0-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/python-docutils-0.16-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/python-future-0.18.2-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/python-idna-2.10-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/python-notify2-0.3.1-x86_64-6.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/python-packaging-20.4-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/python-pillow-8.0.1-x86_64-1.txz: Upgraded.
Compiled against python3-3.9.0.
l/python-ply-3.11-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/python-pygments-2.7.2-x86_64-1.txz: Upgraded.
Compiled against python3-3.9.0.
l/python-requests-2.24.0-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/python-sane-2.8.3-x86_64-6.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/python-six-1.15.0-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/python-urllib3-1.25.11-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/sip-4.19.23-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/system-config-printer-1.5.12-x86_64-5.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/talloc-2.3.1-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/tdb-1.4.3-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.9.0.
l/tevent-0.10.2-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.9.0.
n/bind-9.16.8-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
n/epic5-2.1.2-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.9.0.
n/fetchmail-6.4.12-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
n/getmail-6.03-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
n/gpgme-1.14.0-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
n/libgcrypt-1.8.7-x86_64-1.txz: Upgraded.
n/net-snmp-5.9-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.9.0.
n/obexftp-0.24.2-x86_64-6.txz: Rebuilt.
Recompiled against python3-3.9.0.
n/pssh-2.3.4-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
n/samba-4.13.0-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.9.0.
x/pyxdg-0.27-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
x/xcb-proto-1.14.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.9.0.
xap/blueman-2.1.3-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.9.0.
xap/hexchat-2.14.3-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.9.0.
a/aaa_elflibs-15.0-x86_64-24.txz: Rebuilt.
Don't skip this one as it contains the libnsl-2.30.so built by glibc that
it's likely many third-party packages will be linking to for some time.
Upgraded: libcap.so.2.44, libelf-0.181.so, libpopt.so.0.0.1,
libcurl.so.4.7.0, libexpat.so.1.6.12, libglib-2.0.so.0.6600.2,
libgmodule-2.0.so.0.6600.2, libgobject-2.0.so.0.6600.2,
libgthread-2.0.so.0.6600.2, libidn.so.12.6.1, liblber-2.4.so.2.11.2,
libldap-2.4.so.2.11.2, libmpc.so.3.2.0, libmpfr.so.6.1.0, libpsl.so.5.3.3.
Added: libnsl-2.30.so, libnsl.so.2.0.1.
Removed: libdvdread.so.4.2.0, libicudata.so.65.1, libicui18n.so.65.1,
libicuio.so.65.1, libicutest.so.65.1, libicutu.so.65.1, libicuuc.so.65.1.
a/glibc-solibs-2.30-x86_64-2.txz: Rebuilt.
a/pam-1.4.0-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
a/quota-4.05-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
a/xfsprogs-5.9.0-x86_64-1.txz: Upgraded.
ap/linuxdoc-tools-0.9.73-x86_64-6.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
ap/vorbis-tools-1.4.0-x86_64-5.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
d/cvs-1.11.23-x86_64-5.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
d/git-2.29.0-x86_64-1.txz: Upgraded.
d/perl-5.32.0-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
d/python2-2.7.18-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
d/python3-3.8.6-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
d/rcs-5.10.0-x86_64-1.txz: Upgraded.
d/subversion-1.14.0-x86_64-3.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
kde/kdelibs-4.14.38-x86_64-7.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
kde/kopete-4.14.3-x86_64-9.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
kde/perlkde-4.14.3-x86_64-10.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
kde/perlqt-4.14.3-x86_64-11.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
l/freetype-2.10.4-x86_64-1.txz: Upgraded.
Fix heap buffer overflow in embedded PNG bitmap handling.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15999
(* Security fix *)
l/glibc-2.30-x86_64-2.txz: Rebuilt.
Rebuilt without the --enable-obsolete-nsl and --enable-obsolete-rpc options.
This change has been somewhat overdue, but since glibc was providing these
options we just continued to use them here - however, newer versions of
glibc have dropped this code entirely and it is expected to be provided in
standalone packages. So we'll do that to make things easier moving forward.
Please note that libnss_nisplus has been unmaintained upstream for quite
some time, is considered obsolete, and no longer compiles. As a result it
will no longer be provided... but there are better options these days.
l/glibc-i18n-2.30-x86_64-2.txz: Rebuilt.
l/glibc-profile-2.30-x86_64-2.txz: Rebuilt.
l/gmime-3.2.7-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
l/libasyncns-0.8-x86_64-3.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
l/libnsl-1.3.0-x86_64-1.txz: Added.
This provides the standalone libnsl.
Shared library .so-version bump.
l/libnss_nis-3.1-x86_64-1.txz: Added.
l/loudmouth-1.5.3-x86_64-5.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
l/rpcsvc-proto-1.4.2-x86_64-1.txz: Added.
n/autofs-5.1.6-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/epic5-2.1.2-x86_64-3.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/irssi-1.2.2-x86_64-4.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/net-snmp-5.9-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/netatalk-3.1.12-x86_64-4.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/ntp-4.2.8p15-x86_64-3.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/openldap-2.4.54-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/openssh-8.4p1-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/openvpn-2.4.9-x86_64-3.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/postfix-3.5.7-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/ppp-2.4.8-x86_64-3.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/procmail-3.22-x86_64-4.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/proftpd-1.3.7a-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/rpcbind-1.2.5-x86_64-3.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/samba-4.13.0-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/socat-1.7.3.4-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/stunnel-5.57-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/tcp_wrappers-7.6-x86_64-3.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/tftp-hpa-5.2-x86_64-6.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/uucp-1.07-x86_64-3.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/vsftpd-3.0.3-x86_64-7.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/yptools-4.2.3-x86_64-1.txz: Upgraded.
Compiled against libnsl-1.3.0.
xap/gftp-2.0.19-x86_64-9.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
xap/pidgin-2.14.1-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
xap/rxvt-unicode-9.22-x86_64-9.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
xap/xine-lib-1.2.10-x86_64-3.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
xap/xine-ui-0.99.12-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
extra/pure-alsa-system/xine-lib-1.2.10-x86_64-3_alsa.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
extra/sendmail/sendmail-8.16.1-x86_64-3.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
extra/sendmail/sendmail-cf-8.16.1-noarch-3.txz: Rebuilt.
d/rust-1.46.0-x86_64-2.txz: Rebuilt.
Recompiled against llvm-11.0.0.
Dropped back to the previous version of Rust, since the Mozilla things
evidently aren't ready for the latest one.
n/ca-certificates-20201016-noarch-1.txz: Upgraded.
This update provides the latest CA certificates to check for the
authenticity of SSL connections.
n/ethtool-5.9-x86_64-1.txz: Upgraded.
n/iproute2-5.9.0-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-78.3.3-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/78.3.3/releasenotes/
ap/nano-5.2-x86_64-1.txz: Upgraded.
d/doxygen-1.8.20-x86_64-1.txz: Upgraded.
d/nasm-2.15.03-x86_64-1.txz: Upgraded.
Reverted to previous nasm since the new version has problems with some of
the assembly included in Firefox.
d/parallel-20200822-noarch-1.txz: Upgraded.
l/libcap-ng-0.7.11-x86_64-1.txz: Upgraded.
n/libgpg-error-1.39-x86_64-1.txz: Upgraded.
n/libqmi-1.26.4-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-78.2.0esr-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/78.2.0/releasenotes/
(* Security fix *)
xap/sane-1.0.31-x86_64-1.txz: Upgraded.
ap/hplip-3.20.6-x86_64-2.txz: Rebuilt.
Recompiled against net-snmp-5.9.
ap/pamixer-1.4-x86_64-6.txz: Rebuilt.
Recompiled against boost-1.74.0.
ap/sqlite-3.33.0-x86_64-1.txz: Upgraded.
kde/calligra-2.9.11-x86_64-37.txz: Rebuilt.
Recompiled against boost-1.74.0.
l/akonadi-1.13.0-x86_64-16.txz: Rebuilt.
Recompiled against boost-1.74.0.
l/boost-1.74.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/libcroco-0.6.13-x86_64-1.txz: Removed.
n/getmail-6.02-x86_64-1.txz: Upgraded.
This is a new version that uses Python 3. The ChangeLog warns that it "loses
some backward compatibility"... please report any bugs.
n/net-snmp-5.9-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
n/ntp-4.2.8p15-x86_64-2.txz: Rebuilt.
Recompiled against net-snmp-5.9.
n/php-7.4.9-x86_64-2.txz: Rebuilt.
Recompiled against net-snmp-5.9.
xap/sane-1.0.30-x86_64-2.txz: Rebuilt.
Recompiled against net-snmp-5.9.
xap/ssr-0.4.2-x86_64-1.txz: Added.
ap/vim-8.2.1361-x86_64-1.txz: Upgraded.
d/mercurial-5.5-x86_64-1.txz: Upgraded.
d/python-pip-20.2.1-x86_64-1.txz: Upgraded.
l/gegl-0.4.26-x86_64-1.txz: Upgraded.
n/php-7.4.9-x86_64-1.txz: Upgraded.
This update fixes bugs and a security issue:
Phar: Use of freed hash key in the phar_parse_zipfile function.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7068
(* Security fix *)
xap/vim-gvim-8.2.1361-x86_64-1.txz: Upgraded.
a/cryptsetup-2.3.3-x86_64-2.txz: Rebuilt.
Recompiled against json-c-0.15_20200726.
l/imagemagick-7.0.10_25-x86_64-1.txz: Upgraded.
l/json-c-0.15_20200726-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/urwid-1.0.3-x86_64-5.txz: Removed.
This is an ancient version that was only used by wicd.
n/bind-9.16.5-x86_64-2.txz: Rebuilt.
Recompiled against json-c-0.15_20200726.
x/libmypaint-1.6.1-x86_64-2.txz: Rebuilt.
Recompiled against json-c-0.15_20200726.
xap/gimp-2.10.20-x86_64-2.txz: Rebuilt.
Recompiled against json-c-0.15_20200726.
extra/wicd/wicd-1.7.4-x86_64-3.txz: Removed.
This is unmaintained, possibly insecure, and doesn't work with Python
versions newer than 2.7.18. NetworkManager is a better choice these days.
a/kernel-firmware-20200721_2b823fc-noarch-1.txz: Upgraded.
d/python3-3.8.5-x86_64-1.txz: Upgraded.
d/re2c-2.0-x86_64-1.txz: Upgraded.
l/farstream-0.2.9-x86_64-1.txz: Added.
Needed by pidgin-2.14.1.
l/libnice-0.1.17-x86_64-1.txz: Added.
Needed by farstream-0.2.9.
n/iptraf-ng-1.2.1-x86_64-1.txz: Upgraded.
n/proftpd-1.3.7a-x86_64-1.txz: Upgraded.
xap/pidgin-2.14.1-x86_64-1.txz: Upgraded.
This update adds support for voice and video via Farstream.
a/kernel-generic-5.4.51-x86_64-1.txz: Upgraded.
+EFI_CUSTOM_SSDT_OVERLAYS y
a/kernel-huge-5.4.51-x86_64-1.txz: Upgraded.
SPEAKUP y -> m
SPEAKUP_SYNTH_ACNTPC y -> m
SPEAKUP_SYNTH_ACNTSA y -> m
SPEAKUP_SYNTH_APOLLO y -> m
SPEAKUP_SYNTH_AUDPTR y -> m
SPEAKUP_SYNTH_BNS y -> m
SPEAKUP_SYNTH_DECEXT y -> m
SPEAKUP_SYNTH_DECTLK y -> m
SPEAKUP_SYNTH_DTLK y -> m
SPEAKUP_SYNTH_DUMMY y -> m
SPEAKUP_SYNTH_KEYPC y -> m
SPEAKUP_SYNTH_LTLK y -> m
SPEAKUP_SYNTH_SOFT y -> m
SPEAKUP_SYNTH_SPKOUT y -> m
SPEAKUP_SYNTH_TXPRT y -> m
+EFI_CUSTOM_SSDT_OVERLAYS y
a/kernel-modules-5.4.51-x86_64-1.txz: Upgraded.
ap/vim-8.2.1167-x86_64-1.txz: Upgraded.
d/Cython-0.29.21-x86_64-1.txz: Upgraded.
d/kernel-headers-5.4.51-x86-1.txz: Upgraded.
k/kernel-source-5.4.51-noarch-1.txz: Upgraded.
+EFI_CUSTOM_SSDT_OVERLAYS y
n/gnupg2-2.2.21-x86_64-1.txz: Upgraded.
x/mesa-20.1.3-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-78.0.2esr-x86_64-1.txz: Upgraded.
This release contains a security fix and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/78.0.2/releasenotes/https://www.mozilla.org/security/advisories/mfsa2020-28/
(* Security fix *)
xap/vim-gvim-8.2.1167-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
Speakup is included as modules which will need to be loaded manually,
for now at least.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Speakup is included as modules which will need to be loaded manually,
for now at least.
d/mercurial-5.4.2-x86_64-1.txz: Upgraded.
d/nasm-2.15.02-x86_64-1.txz: Upgraded.
l/glib2-2.64.4-x86_64-1.txz: Upgraded.
n/samba-4.12.5-x86_64-1.txz: Upgraded.
x/libXaw3dXft-1.6.2g-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-68.10.0-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/68.10.0/releasenotes/
a/kernel-firmware-20200629_1a0c0c2-noarch-1.txz: Upgraded.
ap/mariadb-10.5.4-x86_64-2.txz: Rebuilt.
rc.mysqld: stop the database by PID to avoid improperly stopping other
instances that were not started by this script. Thanks to denydias.
d/vala-0.48.7-x86_64-1.txz: Upgraded.
l/opusfile-0.12-x86_64-1.txz: Upgraded.
n/ca-certificates-20200630-noarch-1.txz: Upgraded.
This update provides the latest CA certificates to check for the
authenticity of SSL connections.
x/libwacom-1.4.1-x86_64-1.txz: Upgraded.
ap/mariadb-10.5.4-x86_64-1.txz: Upgraded.
d/guile-3.0.4-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
Looks like the previous bump was a mistake:
This release fixes the SONAME of libguile-3.0.so, which was erroneously
bumped in 3.0.3 compared to 3.0.2. Distributions are strongly
encouraged to use 3.0.4 instead of 3.0.3.
d/make-4.2.1-x86_64-7.txz: Rebuilt.
Recompiled against guile-3.0.4.
l/libjpeg-turbo-2.0.5-x86_64-1.txz: Upgraded.
This update fixes bugs and a security issue:
Fixed an issue in the PPM reader that caused a buffer overrun in cjpeg,
TJBench, or the `tjLoadImage()` function if one of the values in a binary
PPM/PGM input file exceeded the maximum value defined in the file's header
and that maximum value was less than 255.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13790
(* Security fix *)
n/ModemManager-1.14.0-x86_64-1.txz: Upgraded.
n/curl-7.71.0-x86_64-1.txz: Upgraded.
This update fixes security issues:
curl overwrite local file with -J [111]
Partial password leak over DNS on HTTP redirect [48]
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8177https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8169
(* Security fix *)
n/gnutls-3.6.14-x86_64-3.txz: Rebuilt.
Recompiled against guile-3.0.4.
n/mutt-1.14.5-x86_64-1.txz: Upgraded.
x/libwacom-1.4-x86_64-1.txz: Upgraded.
ap/man-db-2.9.3-x86_64-1.txz: Upgraded.
ap/mariadb-10.4.13-x86_64-3.txz: Rebuilt.
Recompiled to pick up lz4 support. Thanks to Heinz Wiesinger.
ap/squashfs-tools-4.4-x86_64-2.txz: Rebuilt.
Added lz4 support. Thanks to Heinz Wiesinger.
d/ccache-3.7.10-x86_64-1.txz: Upgraded.
d/parallel-20200622-noarch-1.txz: Upgraded.
d/subversion-1.14.0-x86_64-2.txz: Rebuilt.
Use the system lz4 library. Thanks to Heinz Wiesinger.
l/imagemagick-7.0.10_21-x86_64-1.txz: Upgraded.
l/libarchive-3.4.3-x86_64-2.txz: Rebuilt.
Recompiled to pick up lz4 support. Thanks to Heinz Wiesinger.
l/lz4-1.9.2-x86_64-1.txz: Added.
This is a new dependency for dovecot, libarchive, mariadb, rsync,
squashfs-tools, subversion, and zstd. Thanks to Heinz Wiesinger.
l/xxHash-0.7.3-x86_64-1.txz: Added.
This is a new dependency for rsync.
l/zstd-1.4.5-x86_64-2.txz: Rebuilt.
Recompiled to pick up lz4 support. Thanks to Heinz Wiesinger.
n/dovecot-2.3.10.1-x86_64-2.txz: Rebuilt.
Recompiled to pick up lz4 support. Thanks to Heinz Wiesinger.
n/libmbim-1.24.0-x86_64-1.txz: Upgraded.
n/nfs-utils-2.5.1-x86_64-1.txz: Upgraded.
n/ntp-4.2.8p15-x86_64-1.txz: Upgraded.
This release fixes one vulnerability: Associations that use CMAC
authentication between ntpd from versions 4.2.8p11/4.3.97 and
4.2.8p14/4.3.100 will leak a small amount of memory for each packet.
Eventually, ntpd will run out of memory and abort.
(* Security fix *)
n/rsync-3.2.1-x86_64-1.txz: Upgraded.
Please note that this update requires the new packages xxHash and lz4.
t/texlive-2020.200608-x86_64-1.txz: Upgraded.
Thanks to Johannes Schoepfer.
xap/blueman-2.1.3-x86_64-2.txz: Rebuilt.
As a matter of policy and since the rule already exists in
/usr/share/polkit-1/rules.d/, we should not install a rules file in /etc.
Note that since the file was installed as a .new, upgrading the package
will not remove it and it will need to be removed manually. It's harmless
if it remains, though.
Thanks to Robby Workman.
xap/network-manager-applet-1.18.0-x86_64-1.txz: Upgraded.
a/pam-1.4.0-x86_64-1.txz: Upgraded.
IMPORTANT NOTE: This update removes the pam_cracklib and pam_tally2 modules.
None of our current configuration files in /etc/pam.d/ use either of those,
but if the configuration files on your machine do you'll need to comment out
or remove those lines, otherwise you may experience login failures.
a/shadow-4.8.1-x86_64-9.txz: Rebuilt.
/etc/pam.d/system-auth: prefix lines that call pam_gnome_keyring.so with '-'
to avoid spamming the logs about failures.
a/sysvinit-scripts-2.1-noarch-32.txz: Rebuilt.
rc.S: create /var/run/faillock directory for pam_faillock(8).
a/util-linux-2.35.2-x86_64-2.txz: Rebuilt.
/etc/pam.d/login: change the example for locking an account for too many
failed login attempts to use pam_faillock instead of pam_tally2.
l/imagemagick-7.0.10_19-x86_64-1.txz: Upgraded.
l/libzip-1.7.1-x86_64-1.txz: Upgraded.
n/openssh-8.3p1-x86_64-2.txz: Rebuilt.
/etc/pam.d/sshd: change the example for locking an account for too many
failed login attempts to use pam_faillock instead of pam_tally2.
a/hwdata-0.336-noarch-1.txz: Upgraded.
ap/man-db-2.9.2-x86_64-1.txz: Upgraded.
d/git-2.27.0-x86_64-1.txz: Upgraded.
d/perl-5.30.3-x86_64-1.txz: Upgraded.
Upgraded to IO-Socket-SSL-2.068.
d/strace-5.7-x86_64-1.txz: Upgraded.
l/libyaml-0.2.5-x86_64-1.txz: Upgraded.
n/ca-certificates-20200602-noarch-1.txz: Upgraded.
This update provides the latest CA certificates to check for the
authenticity of SSL connections.
n/nghttp2-1.41.0-x86_64-1.txz: Upgraded.
This update fixes a security issue where an overly large HTTP/2 SETTINGS
frame payload causes a denial of service.
For more information, see:
https://github.com/nghttp2/nghttp2/security/advisories/GHSA-q5wr-xfw9-q7xrhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11080
(* Security fix *)
n/proftpd-1.3.6d-x86_64-1.txz: Upgraded.
This is a bugfix release:
Fixed issue with FTPS uploads of large files using TLSv1.3 (Issue #959).
x/intel-vaapi-driver-2.4.1-x86_64-1.txz: Upgraded.
Greetings! After three months in /testing, the PAM merge into the main tree
is now complete. When updating, be sure to install the new pam, cracklib, and
libpwquality packages or you may find yourself locked out of your machine.
Otherwise, these changes should be completely transparent and you shouldn't
notice any obvious operational differences. Be careful if you make any changes
in /etc/pam.d/ - leaving an extra console logged in while testing PAM config
changes is a recommended standard procedure. Thanks again to Robby Workman,
Vincent Batts, Phantom X, and ivandi for help implementing this. It's not
done yet and there will be more fine-tuning of the config files, but now we
can move on to build some other updates. Enjoy!
a/cracklib-2.9.7-x86_64-1.txz: Added.
a/kernel-firmware-20200517_f8d32e4-noarch-1.txz: Upgraded.
a/libcgroup-0.41-x86_64-7.txz: Rebuilt.
Rebuilt to add PAM support.
a/libpwquality-1.4.2-x86_64-1.txz: Added.
a/lilo-24.2-x86_64-9.txz: Rebuilt.
Enable the "compact" option by default.
liloconfig: correctly set the root partition.
a/pam-1.3.1-x86_64-1.txz: Added.
a/shadow-4.8.1-x86_64-7.txz: Rebuilt.
Rebuilt to add PAM support.
a/utempter-1.2.0-x86_64-1.txz: Upgraded.
a/util-linux-2.35.1-x86_64-6.txz: Rebuilt.
Rebuilt to add PAM support.
a/xfsprogs-5.6.0-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
ap/at-3.2.1-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
ap/cups-2.3.3-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
ap/hplip-3.20.5-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
ap/mariadb-10.4.13-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
ap/screen-4.8.0-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
ap/soma-3.3.0-noarch-1.txz: Upgraded.
Thanks to David Woodfall.
ap/sqlite-3.31.1-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
ap/sudo-1.9.0-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
ap/vim-8.2.0788-x86_64-1.txz: Upgraded.
d/bison-3.6.2-x86_64-1.txz: Upgraded.
d/meson-0.54.2-x86_64-1.txz: Upgraded.
d/python-setuptools-46.4.0-x86_64-1.txz: Upgraded.
d/vala-0.48.6-x86_64-1.txz: Upgraded.
kde/calligra-2.9.11-x86_64-36.txz: Rebuilt.
Recompiled against icu4c-67.1.
kde/kde-workspace-4.11.22-x86_64-7.txz: Rebuilt.
Rebuilt to add PAM support.
l/ConsoleKit2-1.2.1-x86_64-4.txz: Rebuilt.
Rebuilt to add PAM support.
l/boost-1.73.0-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
l/gnome-keyring-3.36.0-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
l/harfbuzz-2.6.6-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
l/icu4c-67.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/imagemagick-7.0.10_13-x86_64-1.txz: Upgraded.
l/libcap-2.34-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
l/libical-3.0.8-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
l/libuv-1.38.0-x86_64-1.txz: Upgraded.
l/libvisio-0.1.7-x86_64-3.txz: Rebuilt.
Recompiled against icu4c-67.1.
l/polkit-0.116-x86_64-3.txz: Rebuilt.
Rebuilt to add PAM support.
l/qt-4.8.7-x86_64-16.txz: Rebuilt.
Recompiled against icu4c-67.1.
l/qt5-5.13.2-x86_64-4.txz: Rebuilt.
Recompiled against icu4c-67.1.
l/qt5-webkit-5.212.0_alpha4-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
l/raptor2-2.0.15-x86_64-9.txz: Rebuilt.
Recompiled against icu4c-67.1.
l/system-config-printer-1.5.12-x86_64-4.txz: Rebuilt.
Rebuilt to add PAM support.
l/vte-0.60.2-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
n/cifs-utils-6.10-x86_64-4.txz: Rebuilt.
Rebuilt to add PAM support.
n/cyrus-sasl-2.1.27-x86_64-4.txz: Rebuilt.
Rebuilt to add PAM support.
n/dovecot-2.3.10.1-x86_64-1.txz: Upgraded.
Rebuilt to add PAM support.
Compiled against icu4c-67.1.
This update fixes several denial-of-service vulnerabilities.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10957https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10958https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10967
(* Security fix *)
n/mutt-1.14.1-x86_64-1.txz: Upgraded.
n/netatalk-3.1.12-x86_64-3.txz: Rebuilt.
Rebuilt to add PAM support.
n/netkit-rsh-0.17-x86_64-3.txz: Rebuilt.
Rebuilt to add PAM support.
n/nss-pam-ldapd-0.9.11-x86_64-1.txz: Added.
n/openssh-8.2p1-x86_64-3.txz: Rebuilt.
Rebuilt to add PAM support.
n/openvpn-2.4.9-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
n/pam-krb5-4.9-x86_64-1.txz: Added.
n/php-7.4.6-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
n/popa3d-1.0.3-x86_64-4.txz: Rebuilt.
Rebuilt to add PAM support.
n/postfix-3.5.2-x86_64-1.txz: Upgraded.
Compiled against icu4c-67.1.
n/ppp-2.4.8-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
n/proftpd-1.3.6c-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
n/samba-4.12.2-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
Recompiled against icu4c-67.1.
n/tin-2.4.4-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
n/vsftpd-3.0.3-x86_64-6.txz: Rebuilt.
Rebuilt to add PAM support.
t/texlive-2019.190626-x86_64-4.txz: Rebuilt.
Recompiled against icu4c-67.1.
x/vulkan-sdk-1.2.135.0-x86_64-1.txz: Upgraded.
x/xdm-1.1.11-x86_64-10.txz: Rebuilt.
Rebuilt to add PAM support.
x/xisxwayland-1-x86_64-1.txz: Added.
xap/sane-1.0.30-x86_64-1.txz: Upgraded.
This update fixes several security issues.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12867https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12862https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12863https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12865https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12866https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12861https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12864
(* Security fix *)
xap/vim-gvim-8.2.0788-x86_64-1.txz: Upgraded.
xap/xlockmore-5.63-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
xap/xscreensaver-5.44-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
extra/brltty/brltty-6.1-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
extra/pure-alsa-system/qt5-5.13.2-x86_64-4_alsa.txz: Rebuilt.
Recompiled against icu4c-67.1.
isolinux/initrd.img: Rebuilt.
Added PAM libraries, security modules, and config files.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Added PAM libraries, security modules, and config files.
Hey folks, just a heads-up that PAM is about to be merged into the main tree.
We can't have it blocking other upgrades any longer. The config files could be
improved (adding support for pam_krb5 and pam_ldap, for example), but they'll
do for now. Have a good weekend, and enjoy these updates! :-)
a/aaa_elflibs-15.0-x86_64-23.txz: Rebuilt.
Upgraded: libcap.so.2.34, libelf-0.179.so, liblzma.so.5.2.5,
libglib-2.0.so.0.6400.2, libgmodule-2.0.so.0.6400.2,
libgobject-2.0.so.0.6400.2, libgthread-2.0.so.0.6400.2,
liblber-2.4.so.2.10.13, libldap-2.4.so.2.10.13, libpcre2-8.so.0.10.0.
Added temporarily in preparation for upgrading icu4c: libicudata.so.65.1,
libicui18n.so.65.1, libicuio.so.65.1, libicutest.so.65.1, libicutu.so.65.1,
libicuuc.so.65.1.
a/etc-15.0-x86_64-11.txz: Rebuilt.
/etc/passwd: Added ldap (UID 330).
/etc/group: Added ldap (GID 330).
a/kernel-generic-5.4.41-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.41-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.41-x86_64-1.txz: Upgraded.
a/pkgtools-15.0-noarch-33.txz: Rebuilt.
setup.services: added support for rc.openldap and rc.openvpn.
ap/hplip-3.20.5-x86_64-1.txz: Upgraded.
d/kernel-headers-5.4.41-x86-1.txz: Upgraded.
d/python-setuptools-46.3.0-x86_64-1.txz: Upgraded.
d/python3-3.8.3-x86_64-1.txz: Upgraded.
k/kernel-source-5.4.41-noarch-1.txz: Upgraded.
n/openldap-2.4.50-x86_64-1.txz: Added.
This is a complete OpenLDAP package with both client and server support.
Thanks to Giuseppe Di Terlizzi for help with the server parts.
n/openldap-client-2.4.50-x86_64-1.txz: Removed.
x/mesa-20.0.7-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/PAM/hplip-3.20.5-x86_64-1_pam.txz: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/gawk-5.1.0-x86_64-1.txz: Upgraded.
a/gettext-0.20.2-x86_64-1.txz: Upgraded.
d/gettext-tools-0.20.2-x86_64-1.txz: Upgraded.
d/git-2.26.1-x86_64-1.txz: Upgraded.
This update fixes a security issue:
With a crafted URL that contains a newline in it, the credential helper
machinery can be fooled to give credential information for a wrong host.
The attack has been made impossible by forbidding a newline character in
any value passed via the credential protocol. Credit for finding the
vulnerability goes to Felix Wilhelm of Google Project Zero.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-5260
(* Security fix *)
l/glib-networking-2.64.2-x86_64-1.txz: Upgraded.
l/libsecret-0.20.3-x86_64-1.txz: Upgraded.
n/php-7.4.5-x86_64-1.txz: Upgraded.
x/xorgproto-2020.1-x86_64-1.txz: Upgraded.
xap/audacious-4.0.2-x86_64-1.txz: Upgraded.
xap/audacious-plugins-4.0.2-x86_64-1.txz: Upgraded.
extra/pure-alsa-system/audacious-plugins-4.0.2-x86_64-1_alsa.txz: Upgraded.
d/bison-3.5.4-x86_64-1.txz: Upgraded.
kde/k3b-2.0.3-x86_64-7.txz: Rebuilt.
Recompiled against libdvdread-6.1.1.
l/gobject-introspection-1.64.1-x86_64-1.txz: Upgraded.
l/imagemagick-7.0.10_4-x86_64-1.txz: Upgraded.
l/libdvdnav-6.1.0-x86_64-2.txz: Rebuilt.
Recompiled against libdvdread-6.1.1.
Who bumps an .soname and only boosts the version number by 0.0.1?
Anyway, sorry to drop the ball a second time. I'll try to avoid this.
Thanks to gmgf for the bug report.
n/fetchmail-6.4.3-x86_64-1.txz: Upgraded.
tcl/tclx-8.4.4-x86_64-1.txz: Upgraded.
xap/MPlayer-20200103-x86_64-2.txz: Rebuilt.
Recompiled against libdvdread-6.1.1.
xap/windowmaker-0.95.9-x86_64-1.txz: Upgraded.
xap/xine-lib-1.2.10-x86_64-2.txz: Rebuilt.
Recompiled against libdvdread-6.1.1.
extra/pure-alsa-system/MPlayer-20200103-x86_64-2_alsa.txz: Rebuilt.
Recompiled against libdvdread-6.1.1.
extra/pure-alsa-system/xine-lib-1.2.10-x86_64-2_alsa.txz: Rebuilt.
Recompiled against libdvdread-6.1.1.
ap/lsof-4.93.2-x86_64-2.txz: Rebuilt.
Fixed the manpage. Thanks to kaott.
ap/sc-7.16-x86_64-7.txz: Rebuilt.
Brought back the classic SC. Thanks to dive.
d/Cython-0.29.16-x86_64-1.txz: Upgraded.
d/mercurial-5.3.2-x86_64-1.txz: Upgraded.
l/gtk+3-3.24.17-x86_64-1.txz: Upgraded.
n/dhcpcd-8.1.7-x86_64-1.txz: Upgraded.
n/iproute2-5.6.0-x86_64-1.txz: Upgraded.
x/libdrm-2.4.101-x86_64-1.txz: Upgraded.
x/mesa-20.0.4-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-68.6.1esr-x86_64-1.txz: Upgraded.
This release contains critical security fixes and improvements.
"Under certain conditions, when running the nsDocShell destructor, a race
condition can cause a use-after-free. We are aware of targeted attacks in
the wild abusing this flaw."
"Under certain conditions, when handling a ReadableStream, a race condition
can cause a use-after-free. We are aware of targeted attacks in the wild
abusing this flaw."
For more information, see:
https://www.mozilla.org/en-US/firefox/68.6.1/releasenotes/https://www.mozilla.org/en-US/security/advisories/mfsa2020-11/https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6819https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6820
(* Security fix *)
a/dialog-1.3_20200327-x86_64-1.txz: Upgraded.
a/openssl-solibs-1.1.1f-x86_64-1.txz: Upgraded.
ap/nano-4.9.1-x86_64-1.txz: Upgraded.
l/elfutils-0.179-x86_64-1.txz: Upgraded.
n/gnutls-3.6.13-x86_64-1.txz: Upgraded.
This update fixes a security issue:
libgnutls: Fix a DTLS-protocol regression (caused by TLS1.3 support),
since 3.6.3. The DTLS client would not contribute any randomness to the
DTLS negotiation, breaking the security guarantees of the DTLS protocol.
[GNUTLS-SA-2020-03-31, CVSS: high]
(* Security fix *)
n/httpd-2.4.43-x86_64-1.txz: Upgraded.
n/openssl-1.1.1f-x86_64-1.txz: Upgraded.
n/curl-7.69.1-x86_64-3.txz: Rebuilt.
Removed --with-ca-bundle=/usr/share/curl/ca-bundle.crt and
added --without-ca-bundle. Thanks to drgibbon and Willy Sudiarto Raharjo.
Don't bother with 5.4.26 folks, just wait for the next one. Trust me.
a/tcsh-6.22.02-x86_64-2.txz: Rebuilt.
Fixed merging history from multiple shells. Thanks to jmccue.
a/xz-5.2.5-x86_64-1.txz: Upgraded.
d/git-2.25.2-x86_64-1.txz: Upgraded.
l/glibmm-2.64.1-x86_64-1.txz: Upgraded.
n/bind-9.16.1-x86_64-1.txz: Upgraded.
n/dovecot-2.3.10-x86_64-2.txz: Rebuilt.
x/libinput-1.15.4-x86_64-1.txz: Upgraded.
x/mesa-20.0.2-x86_64-1.txz: Upgraded.
testing/packages/PAM/dovecot-2.3.10-x86_64-2_pam.txz: Rebuilt.
Recompiled using --with-pam. Thanks to HQuest.
l/gobject-introspection-1.64.0-x86_64-1.txz: Upgraded.
l/imagemagick-7.0.10_0-x86_64-1.txz: Upgraded.
l/libical-3.0.8-x86_64-1.txz: Upgraded.
l/librsvg-2.48.0-x86_64-1.txz: Upgraded.
l/libsoup-2.70.0-x86_64-1.txz: Upgraded.
l/mozilla-nss-3.51-x86_64-1.txz: Upgraded.
xap/libnma-1.8.28-x86_64-1.txz: Added.
This is the NetworkManager GUI client library, which was previously
provided by network-manager-applet. It's now a standalone project, and
is required by network-manager-applet and other NetworkManager frontends.
xap/network-manager-applet-1.16.0-x86_64-1.txz: Upgraded.
This requires the new libnma package.
a/cryptsetup-2.3.0-x86_64-2.txz: Rebuilt.
Include some additional documentation. Thanks to regdub.
a/sdparm-1.11-x86_64-1.txz: Upgraded.
ap/moc-2.5.2-x86_64-6.txz: Rebuilt.
Fixed docs permissions. Thanks to regdub.
l/glib-networking-2.64.0-x86_64-1.txz: Upgraded.
l/glib2-2.64.0-x86_64-1.txz: Upgraded.
l/gvfs-1.44.0-x86_64-1.txz: Upgraded.
l/libnl-1.1.4-x86_64-3.txz: Rebuilt.
Fixed docs permissions. Thanks to regdub.
l/tdb-1.4.3-x86_64-3.txz: Rebuilt.
Fixed docs permissions. Thanks to regdub.
l/tevent-0.10.2-x86_64-3.txz: Rebuilt.
Fixed docs permissions. Thanks to regdub.
n/bind-9.16.0-x86_64-3.txz: Rebuilt.
Applied upstream patch to fix a discrepancy in the quota code that can
result in a situation where the count is not properly decremented in
some cases.
n/dovecot-2.3.10-x86_64-1.txz: Upgraded.
n/rp-pppoe-3.13-x86_64-2.txz: Rebuilt.
This needed a rebuild for ppp-2.4.8. Thanks to regdub.
x/libinput-1.15.3-x86_64-1.txz: Upgraded.
testing/packages/PAM/dovecot-2.3.10-x86_64-1_pam.txz: Upgraded.
a/sdparm-1.10-x86_64-3.txz: Rebuilt.
Recompiled against sg3_utils-1.45.
a/udisks-1.0.5-x86_64-5.txz: Rebuilt.
Recompiled against sg3_utils-1.45.
d/cmake-3.16.5-x86_64-1.txz: Upgraded.
l/libgpod-0.8.3-x86_64-6.txz: Rebuilt.
Recompiled against sg3_utils-1.45.
n/curl-7.69.0-x86_64-1.txz: Upgraded.
n/cyrus-sasl-2.1.27-x86_64-3.txz: Rebuilt.
Added SQL support via MariaDB. Thanks to niksoggia.
n/ntp-4.2.8p14-x86_64-1.txz: Upgraded.
n/ppp-2.4.8-x86_64-1.txz: Upgraded.
This update fixes a security issue:
By sending an unsolicited EAP packet to a vulnerable ppp client or server,
an unauthenticated remote attacker could cause memory corruption in the
pppd process, which may allow for arbitrary code execution.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8597
(* Security fix *)
testing/packages/PAM/cyrus-sasl-2.1.27-x86_64-3_pam.txz: Rebuilt.
Added SQL support via MariaDB. Thanks to niksoggia.
testing/packages/PAM/ppp-2.4.8-x86_64-1_pam.txz: Upgraded.
This update fixes a security issue:
By sending an unsolicited EAP packet to a vulnerable ppp client or server,
an unauthenticated remote attacker could cause memory corruption in the
pppd process, which may allow for arbitrary code execution.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8597
(* Security fix *)
a/dialog-1.3_20200228-x86_64-1.txz: Upgraded.
l/Mako-1.1.2-x86_64-1.txz: Upgraded.
l/imagemagick-7.0.9_27-x86_64-1.txz: Upgraded.
l/libcap-2.33-x86_64-1.txz: Upgraded.
n/bind-9.16.0-x86_64-2.txz: Rebuilt.
rc.bind: ensure /var/run/named exists before starting named. Thanks to MarcT.
rc.bind: when stopping named, only kill processes in the current namespace.
x/libevdev-1.9.0-x86_64-1.txz: Upgraded.
x/wayland-protocols-1.20-noarch-1.txz: Upgraded.
xap/seamonkey-2.53.1-x86_64-1.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
https://www.seamonkey-project.org/releases/seamonkey2.53.1
(* Security fix *)
testing/packages/PAM/libcap-2.33-x86_64-1_pam.txz: Upgraded.
a/ed-1.16-x86_64-1.txz: Upgraded.
l/gtk+3-3.24.14-x86_64-3.txz: Rebuilt.
Rebuilt to add wayland backend.
l/libuv-1.34.2-x86_64-1.txz: Added.
This is needed by bind-9.16.0.
l/qt5-5.13.2-x86_64-2.txz: Rebuilt.
Rebuilt to add wayland support.
Use the system ffmpeg, not the bundled one.
n/bind-9.16.0-x86_64-1.txz: Upgraded.
rc.bind: don't change file ownerships in /var/named. Thanks to voegelas.
n/proftpd-1.3.6c-x86_64-1.txz: Upgraded.
No CVEs assigned, but this sure looks like a security issue:
Use-after-free vulnerability in memory pools during data transfer.
(* Security fix *)
x/libinput-1.15.2-x86_64-1.txz: Upgraded.
x/xkbcomp-1.4.3-x86_64-1.txz: Upgraded.
testing/packages/PAM/proftpd-1.3.6c-x86_64-1_pam.txz: Upgraded.
No CVEs assigned, but this sure looks like a security issue:
Use-after-free vulnerability in memory pools during data transfer.
(* Security fix *)
a/gptfdisk-1.0.5-x86_64-1.txz: Upgraded.
a/kernel-firmware-20200219_2277987-noarch-1.txz: Upgraded.
a/kernel-generic-5.4.21-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.21-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.21-x86_64-1.txz: Upgraded.
a/shadow-4.8.1-x86_64-5.txz: Rebuilt.
a/util-linux-2.35.1-x86_64-4.txz: Rebuilt.
ap/cdparanoia-III_10.2-x86_64-3.txz: Rebuilt.
Moved man page from /usr/man/jp/man1/ to /usr/man/ja/man1/. Thanks to Xsane.
Don't ship the static libraries.
d/kernel-headers-5.4.21-x86-1.txz: Upgraded.
k/kernel-source-5.4.21-noarch-1.txz: Upgraded.
SND_SOC n -> m
SPI n -> y
VFIO_PCI_VGA n -> y
+ADE7854_SPI m
+ADT7316_SPI m
+BMC150_ACCEL_SPI m
+BMG160_SPI m
+BMP280_SPI m
+FXAS21002C_SPI m
+HTS221_SPI m
+IIO_ST_ACCEL_SPI_3AXIS m
+IIO_ST_GYRO_SPI_3AXIS m
+IIO_ST_MAGN_SPI_3AXIS m
+IIO_ST_PRESS_SPI m
+IIO_ST_SENSORS_SPI m
+INPUT_AD714X_SPI m
+INPUT_ADXL34X_SPI m
+KXSD9_SPI m
+REGMAP_SPI m
+SND_COMPRESS_OFFLOAD m
+SND_DESIGNWARE_I2S m
+SND_DESIGNWARE_PCM y
+SND_DMAENGINE_PCM m
+SND_HDA_EXT_CORE m
+SND_I2S_HI6210_I2S m
+SND_PCM_ELD y
+SND_PCM_IEC958 y
+SND_SIMPLE_CARD m
+SND_SIMPLE_CARD_UTILS m
+SND_SOC_AC97_BUS y
+SND_SOC_AC97_CODEC m
+SND_SOC_ACPI m
+SND_SOC_ACPI_INTEL_MATCH m
+SND_SOC_ADAU1761 m
+SND_SOC_ADAU1761_I2C m
+SND_SOC_ADAU1761_SPI m
+SND_SOC_ADAU17X1 m
+SND_SOC_ADAU7002 m
+SND_SOC_ADAU_UTILS m
+SND_SOC_AMD_ACP m
+SND_SOC_AMD_ACP3x m
+SND_SOC_AMD_CZ_DA7219MX98357_MACH m
+SND_SOC_AMD_CZ_RT5645_MACH m
+SND_SOC_BD28623 m
+SND_SOC_COMPRESS y
+SND_SOC_CROS_EC_CODEC m
+SND_SOC_CS35L34 m
+SND_SOC_CS35L35 m
+SND_SOC_CS35L36 m
+SND_SOC_CS42L42 m
+SND_SOC_CS43130 m
+SND_SOC_CX2072X m
+SND_SOC_DA7213 m
+SND_SOC_DA7219 m
+SND_SOC_DMIC m
+SND_SOC_ES7134 m
+SND_SOC_ES7241 m
+SND_SOC_ES8316 m
+SND_SOC_ES8328 m
+SND_SOC_ES8328_I2C m
+SND_SOC_ES8328_SPI m
+SND_SOC_GENERIC_DMAENGINE_PCM y
+SND_SOC_HDAC_HDA m
+SND_SOC_HDAC_HDMI m
+SND_SOC_HDMI_CODEC m
+SND_SOC_I2C_AND_SPI m
+SND_SOC_INTEL_APL m
+SND_SOC_INTEL_BDW_RT5677_MACH m
+SND_SOC_INTEL_BROADWELL_MACH m
+SND_SOC_INTEL_BXT_DA7219_MAX98357A_MACH m
+SND_SOC_INTEL_BXT_RT298_MACH m
+SND_SOC_INTEL_BYTCR_RT5640_MACH m
+SND_SOC_INTEL_BYTCR_RT5651_MACH m
+SND_SOC_INTEL_BYT_CHT_CX2072X_MACH m
+SND_SOC_INTEL_BYT_CHT_DA7213_MACH m
+SND_SOC_INTEL_BYT_CHT_ES8316_MACH m
+SND_SOC_INTEL_BYT_CHT_NOCODEC_MACH m
+SND_SOC_INTEL_CFL m
+SND_SOC_INTEL_CHT_BSW_MAX98090_TI_MACH m
+SND_SOC_INTEL_CHT_BSW_NAU8824_MACH m
+SND_SOC_INTEL_CHT_BSW_RT5645_MACH m
+SND_SOC_INTEL_CHT_BSW_RT5672_MACH m
+SND_SOC_INTEL_CML_H m
+SND_SOC_INTEL_CML_LP m
+SND_SOC_INTEL_CNL m
+SND_SOC_INTEL_DA7219_MAX98357A_GENERIC m
+SND_SOC_INTEL_GLK m
+SND_SOC_INTEL_GLK_RT5682_MAX98357A_MACH m
+SND_SOC_INTEL_HASWELL m
+SND_SOC_INTEL_HASWELL_MACH m
+SND_SOC_INTEL_KBL m
+SND_SOC_INTEL_KBL_DA7219_MAX98357A_MACH m
+SND_SOC_INTEL_KBL_DA7219_MAX98927_MACH m
+SND_SOC_INTEL_KBL_RT5660_MACH m
+SND_SOC_INTEL_KBL_RT5663_MAX98927_MACH m
+SND_SOC_INTEL_MACH y
+SND_SOC_INTEL_SKL m
+SND_SOC_INTEL_SKL_NAU88L25_MAX98357A_MACH m
+SND_SOC_INTEL_SKL_NAU88L25_SSM4567_MACH m
+SND_SOC_INTEL_SKL_RT286_MACH m
+SND_SOC_INTEL_SKYLAKE m
+SND_SOC_INTEL_SKYLAKE_COMMON m
+SND_SOC_INTEL_SKYLAKE_FAMILY m
+SND_SOC_INTEL_SKYLAKE_HDAUDIO_CODEC y
+SND_SOC_INTEL_SKYLAKE_SSP_CLK m
+SND_SOC_INTEL_SST m
+SND_SOC_INTEL_SST_ACPI m
+SND_SOC_INTEL_SST_FIRMWARE m
+SND_SOC_INTEL_SST_TOPLEVEL y
+SND_SOC_MAX9759 m
+SND_SOC_MAX98088 m
+SND_SOC_MAX98090 m
+SND_SOC_MAX98357A m
+SND_SOC_MAX98373 m
+SND_SOC_MAX9867 m
+SND_SOC_MAX98927 m
+SND_SOC_NAU8540 m
+SND_SOC_NAU8824 m
+SND_SOC_NAU8825 m
+SND_SOC_PCM1789 m
+SND_SOC_PCM1789_I2C m
+SND_SOC_PCM186X m
+SND_SOC_PCM186X_I2C m
+SND_SOC_PCM186X_SPI m
+SND_SOC_PCM3060 m
+SND_SOC_PCM3060_I2C m
+SND_SOC_PCM3060_SPI m
+SND_SOC_RL6231 m
+SND_SOC_RL6347A m
+SND_SOC_RT286 m
+SND_SOC_RT298 m
+SND_SOC_RT5640 m
+SND_SOC_RT5645 m
+SND_SOC_RT5651 m
+SND_SOC_RT5660 m
+SND_SOC_RT5663 m
+SND_SOC_RT5670 m
+SND_SOC_RT5677 m
+SND_SOC_RT5677_SPI m
+SND_SOC_RT5682 m
+SND_SOC_SIGMADSP m
+SND_SOC_SIGMADSP_REGMAP m
+SND_SOC_SIMPLE_AMPLIFIER m
+SND_SOC_SOF m
+SND_SOC_SOF_ACPI m
+SND_SOC_SOF_APOLLOLAKE m
+SND_SOC_SOF_APOLLOLAKE_SUPPORT y
+SND_SOC_SOF_BAYTRAIL m
+SND_SOC_SOF_BAYTRAIL_SUPPORT y
+SND_SOC_SOF_CANNONLAKE m
+SND_SOC_SOF_CANNONLAKE_SUPPORT y
+SND_SOC_SOF_COFFEELAKE m
+SND_SOC_SOF_COFFEELAKE_SUPPORT y
+SND_SOC_SOF_COMETLAKE_H m
+SND_SOC_SOF_COMETLAKE_H_SUPPORT y
+SND_SOC_SOF_COMETLAKE_LP m
+SND_SOC_SOF_COMETLAKE_LP_SUPPORT y
+SND_SOC_SOF_ELKHARTLAKE m
+SND_SOC_SOF_ELKHARTLAKE_SUPPORT y
+SND_SOC_SOF_GEMINILAKE m
+SND_SOC_SOF_GEMINILAKE_SUPPORT y
+SND_SOC_SOF_HDA m
+SND_SOC_SOF_HDA_AUDIO_CODEC y
+SND_SOC_SOF_HDA_COMMON m
+SND_SOC_SOF_HDA_LINK y
+SND_SOC_SOF_HDA_LINK_BASELINE m
+SND_SOC_SOF_ICELAKE m
+SND_SOC_SOF_ICELAKE_SUPPORT y
+SND_SOC_SOF_INTEL_ACPI m
+SND_SOC_SOF_INTEL_ATOM_HIFI_EP m
+SND_SOC_SOF_INTEL_COMMON m
+SND_SOC_SOF_INTEL_HIFI_EP_IPC m
+SND_SOC_SOF_INTEL_PCI m
+SND_SOC_SOF_INTEL_TOPLEVEL y
+SND_SOC_SOF_MERRIFIELD m
+SND_SOC_SOF_MERRIFIELD_SUPPORT y
+SND_SOC_SOF_OPTIONS m
+SND_SOC_SOF_PCI m
+SND_SOC_SOF_PROBE_WORK_QUEUE y
+SND_SOC_SOF_TIGERLAKE m
+SND_SOC_SOF_TIGERLAKE_SUPPORT y
+SND_SOC_SOF_TOPLEVEL y
+SND_SOC_SOF_XTENSA m
+SND_SOC_SPDIF m
+SND_SOC_SSM4567 m
+SND_SOC_TAS6424 m
+SND_SOC_TDA7419 m
+SND_SOC_TLV320AIC32X4 m
+SND_SOC_TLV320AIC32X4_I2C m
+SND_SOC_TLV320AIC32X4_SPI m
+SND_SOC_TOPOLOGY y
+SND_SOC_TS3A227E m
+SND_SOC_TSCS42XX m
+SND_SOC_WM8524 m
+SND_SPI y
+SND_SST_ATOM_HIFI2_PLATFORM m
+SND_SST_ATOM_HIFI2_PLATFORM_ACPI m
+SND_SST_ATOM_HIFI2_PLATFORM_PCI m
+SND_SST_IPC m
+SND_SST_IPC_ACPI m
+SND_SST_IPC_PCI m
+SPI_MASTER y
+ST_UVIS25_SPI m
l/gegl-0.4.22-x86_64-1.txz: Upgraded.
l/glib2-2.62.5-x86_64-1.txz: Upgraded.
l/python-requests-2.23.0-x86_64-1.txz: Upgraded.
n/NetworkManager-1.22.8-x86_64-1.txz: Upgraded.
n/openssh-8.2p1-x86_64-2.txz: Rebuilt.
n/php-7.4.3-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues:
Phar: Files added to tar with Phar::buildFromIterator have
all-access permissions.
Phar: heap-buffer-overflow in phar_extract_file.
Session: Null Pointer Dereference in PHP Session Upload Progress.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7063https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7061https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7062
(* Security fix *)
x/mesa-20.0.0-x86_64-1.txz: Upgraded.
Added Wayland platform support.
x/wayland-1.18.0-x86_64-1.txz: Added.
x/wayland-protocols-1.18-noarch-1.txz: Added.
x/xorg-server-1.20.7-x86_64-2.txz: Rebuilt.
x/xorg-server-xephyr-1.20.7-x86_64-2.txz: Rebuilt.
x/xorg-server-xnest-1.20.7-x86_64-2.txz: Rebuilt.
x/xorg-server-xvfb-1.20.7-x86_64-2.txz: Rebuilt.
x/xorg-server-xwayland-1.20.7-x86_64-2.txz: Added.
xap/gimp-2.10.16-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/PAM/openssh-8.2p1-x86_64-2_pam.txz: Rebuilt.
/etc/pam.d/sshd: add commented out pam_tally2 example.
testing/packages/PAM/shadow-4.8.1-x86_64-5_pam.txz: Rebuilt.
/etc/pam.d/system-auth: add support for pam_group, remove pam_tally2.
Thanks to ivandi.
/etc/pam.d/*: Don't use tabs.
testing/packages/PAM/util-linux-2.35.1-x86_64-4_pam.txz: Rebuilt.
/etc/pam.d/login: add commented out pam_tally2 example.
/etc/pam.d/*: Don't use tabs.
usb-and-pxe-installers/usbboot.img: Rebuilt.
l/gtk+3-3.24.14-x86_64-2.txz: Rebuilt.
Rebuilt with -DG_ENABLE_DEBUG. Thanks to Bindestreck.
Also built with -DG_DISABLE_CAST_CHECKS and -Dbroadway_backend=true.
l/imagemagick-7.0.9_24-x86_64-1.txz: Upgraded.
n/bind-9.14.10-x86_64-2.txz: Rebuilt.
rc.bind: make sure it works with a non-root user specified in $NAMED_OPTIONS.
Thanks to Luigi Trovato.
n/tin-2.4.4-x86_64-1.txz: Upgraded.
xap/blackbox-0.76-x86_64-1.txz: Upgraded.
testing/packages/PAM/libcap-2.32-x86_64-1_pam.txz: Upgraded.
ap/ksh93-20200131_e4fea8c5-x86_64-1.txz: Upgraded.
ap/zsh-5.8-x86_64-1.txz: Upgraded.
l/brotli-1.0.7-x86_64-1.txz: Added.
l/gmime-3.2.6-x86_64-1.txz: Upgraded.
l/hyphen-2.8.8-x86_64-1.txz: Added.
l/openal-soft-1.20.1-x86_64-1.txz: Upgraded.
Thanks to Skaendo and Willy Sudiarto Raharjo.
l/qt5-webkit-5.212.0_alpha3-x86_64-1.txz: Added.
Thanks to alienBOB.
l/woff2-20180531_a0d0ed7-x86_64-1.txz: Added.
n/bluez-5.53-x86_64-1.txz: Upgraded.
n/mutt-1.13.4-x86_64-1.txz: Upgraded.
n/samba-4.11.6-x86_64-3.txz: Rebuilt.
n/socat-1.7.3.4-x86_64-1.txz: Added.
n/whois-5.5.6-x86_64-1.txz: Upgraded.
testing/packages/PAM/samba-4.11.6-x86_64-3_pam.txz: Rebuilt.
Added patches to fix joining a DC when using krb5. Looks like the patches are
already upstreamed in the latest 4.12.0-rc. Thanks to camerabambai.
a/libcgroup-0.41-x86_64-6.txz: Rebuilt.
ap/mariadb-10.4.12-x86_64-2.txz: Rebuilt.
d/Cython-0.29.15-x86_64-1.txz: Upgraded.
d/cmake-3.16.4-x86_64-2.txz: Rebuilt.
Recompiled against qt5-5.13.2.
d/doxygen-1.8.17-x86_64-2.txz: Rebuilt.
Recompiled against qt5-5.13.2.
l/ConsoleKit2-1.2.1-x86_64-3.txz: Rebuilt.
l/gnome-keyring-3.34.0-x86_64-2.txz: Rebuilt.
l/imagemagick-7.0.9_23-x86_64-1.txz: Upgraded.
l/polkit-0.116-x86_64-2.txz: Rebuilt.
l/python-future-0.18.2-x86_64-1.txz: Added.
This is needed by fetchmailconf and will probably see additional use as
projects jump off of the sinking Python 2 ship.
l/v4l-utils-1.18.0-x86_64-2.txz: Rebuilt.
Recompiled against qt5-5.13.2.
n/cifs-utils-6.10-x86_64-3.txz: Rebuilt.
n/fetchmail-6.4.2-x86_64-1.txz: Upgraded.
n/pinentry-1.1.0-x86_64-3.txz: Rebuilt.
Recompiled against qt5-5.13.2.
n/samba-4.11.6-x86_64-2.txz: Rebuilt.
n/wpa_supplicant-2.9-x86_64-2.txz: Rebuilt.
Recompiled against qt5-5.13.2.
xap/xpdf-4.02-x86_64-3.txz: Rebuilt.
Recompiled against qt5-5.13.2.
testing/packages/PAM/ConsoleKit2-1.2.1-x86_64-3_pam.txz: Rebuilt.
Put the pam security modules in /lib${LIBDIRSUFFIX}/security.
Remove .la files in /lib${LIBDIRSUFFIX}/security.
testing/packages/PAM/cifs-utils-6.10-x86_64-3_pam.txz: Rebuilt.
Put the pam security modules in /lib${LIBDIRSUFFIX}/security.
testing/packages/PAM/gnome-keyring-3.34.0-x86_64-2_pam.txz: Rebuilt.
Put the pam security modules in /lib${LIBDIRSUFFIX}/security.
Remove .la files in /lib${LIBDIRSUFFIX}/security.
testing/packages/PAM/libcgroup-0.41-x86_64-6_pam.txz: Rebuilt.
Put the pam security modules in /lib${LIBDIRSUFFIX}/security.
Remove .la files in /lib${LIBDIRSUFFIX}/security.
testing/packages/PAM/libpwquality-1.4.2-x86_64-2_pam.txz: Rebuilt.
Put the pam security modules in /lib${LIBDIRSUFFIX}/security.
Remove .la files in /lib${LIBDIRSUFFIX}/security.
testing/packages/PAM/mariadb-10.4.12-x86_64-2_pam.txz: Rebuilt.
Put the pam security modules in /lib${LIBDIRSUFFIX}/security.
testing/packages/PAM/pam-1.3.1-x86_64-2_pam.txz: Rebuilt.
Put the pam security modules in /lib${LIBDIRSUFFIX}/security to support
multilib. Thanks to GazL.
testing/packages/PAM/polkit-0.116-x86_64-2_pam.txz: Rebuilt.
Rebuilt using --with-pam-module-dir=/lib${LIBDIRSUFFIX}/security.
testing/packages/PAM/samba-4.11.6-x86_64-2_pam.txz: Rebuilt.
Put the pam security modules in /lib${LIBDIRSUFFIX}/security.
a/kernel-generic-5.4.20-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.20-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.20-x86_64-1.txz: Upgraded.
a/shadow-4.8.1-x86_64-3.txz: Rebuilt.
a/util-linux-2.35.1-x86_64-3.txz: Rebuilt.
d/kernel-headers-5.4.20-x86-1.txz: Upgraded.
k/kernel-source-5.4.20-noarch-1.txz: Upgraded.
l/ConsoleKit2-1.2.1-x86_64-2.txz: Rebuilt.
l/dconf-editor-3.34.4-x86_64-1.txz: Upgraded.
l/libxkbcommon-0.10.0-x86_64-1.txz: Added.
l/openal-soft-1.19.1-x86_64-1.txz: Added.
l/qt5-5.13.2-x86_64-1.txz: Added.
Thanks to alienBOB.
n/openssh-8.2p1-x86_64-1.txz: Upgraded.
Potentially incompatible changes:
* ssh(1), sshd(8): the removal of "ssh-rsa" from the accepted
CASignatureAlgorithms list.
* ssh(1), sshd(8): this release removes diffie-hellman-group14-sha1
from the default key exchange proposal for both the client and
server.
* ssh-keygen(1): the command-line options related to the generation
and screening of safe prime numbers used by the
diffie-hellman-group-exchange-* key exchange algorithms have
changed. Most options have been folded under the -O flag.
* sshd(8): the sshd listener process title visible to ps(1) has
changed to include information about the number of connections that
are currently attempting authentication and the limits configured
by MaxStartups.
x/mesa-19.3.4-x86_64-2.txz: Rebuilt.
Reverted "[PATCH] swr: Fix GCC 4.9 checks." which makes X fail to start with
an illegal instruction on some hardware.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/PAM/ConsoleKit2-1.2.1-x86_64-2_pam.txz: Rebuilt.
Rebuilt with --disable-libcgmanager to fix setting limits on PAM.
Thanks to gattocarlo.
testing/packages/PAM/openssh-8.2p1-x86_64-1_pam.txz: Upgraded.
testing/packages/PAM/shadow-4.8.1-x86_64-3_pam.txz: Rebuilt.
Moved some of the /etc/pam.d/ file to the util-linux package where they
more properly belong.
testing/packages/PAM/util-linux-2.35.1-x86_64-3_pam.txz: Rebuilt.
Added some /etc/pam.d/ files previously in the shadow package.
Changed /etc/pam.d/{chfn,chsh} and made chfn/chsh setuid root to fix them.
Added /etc/pam.d/{runuser,runuser-l}.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Hey folks! PAM has finally landed in /testing. Some here wanted it to go
right into the main tree immediately, and in a more normal development cycle
I'd have been inclined to agree (it is -current, after all). But it's
probably better for it to appear in /testing first, to make sure we didn't
miss any bugs and also to serve as a warning shot that we'll be shaking up
the tree pretty good over the next few weeks. I'd like to see this merged
into the main tree in a day or two, so any testing is greatly appreciated.
Switching to the PAM packages (or reverting from them) is as easy as
installing all of them with upgradepkg --install-new, and if reverting then
remove the three leftover _pam packages. After reverting, a bit of residue
will remain in /etc/pam.d/ and /etc/security/ which can either be manually
deleted or simply ignored. While there are many more features available in
PAM compared with plain shadow, out of the box about the only noticable
change is the use of cracklib and libpwquality to check the quality of a
user-supplied password. Hopefully having PAM and krb5 will get us on track
to having proper Active Directory integration as well as using code paths
that are likely better audited these days. The attack surface *might* be
bigger, but it's also a lot better scrutinized.
Thanks to Robby Workman and Vincent Batts who did most of the initial heavy
lifting on the core PAM packages as a side project for many years. Thanks
also to Phantom X whose PAM related SlackBuilds were a valuable reference.
And thanks as well to ivandi - I learned a lot from the SlackMATE build
scripts and was even occasionally thankful for the amusing ways you would
kick my ass on LQ. ;-) You're more than welcome to let us know where we've
messed up this time.
The binutils and glibc packages in /testing were removed and are off the
table for now. I'm not seeing much upside to heading down that rabbit hole
at the moment. Next we need to be looking at Xfce 4.14 and Plasma 5.18 LTS
and some other things that have been held back since KDE4 couldn't use them.
Cheers! :-)
a/kernel-generic-5.4.19-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.19-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.19-x86_64-1.txz: Upgraded.
a/lvm2-2.03.08-x86_64-1.txz: Upgraded.
a/shadow-4.8.1-x86_64-2.txz: Rebuilt.
Automatically backup /etc/login.defs and install the new version if
incompatible PAM options are detected.
d/kernel-headers-5.4.19-x86-1.txz: Upgraded.
k/kernel-source-5.4.19-noarch-1.txz: Upgraded.
VALIDATE_FS_PARSER y -> n
xap/mozilla-thunderbird-68.5.0-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/68.5.0/releasenotes/https://www.mozilla.org/en-US/security/advisories/mfsa2020-07/https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6793https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6794https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6795https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6797https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6798https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6792https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6800
(* Security fix *)
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/PAM/ConsoleKit2-1.2.1-x86_64-1_pam.txz: Added.
testing/packages/PAM/at-3.2.1-x86_64-1_pam.txz: Added.
testing/packages/PAM/cifs-utils-6.10-x86_64-2_pam.txz: Added.
testing/packages/PAM/cracklib-2.9.7-x86_64-1_pam.txz: Added.
testing/packages/PAM/cups-2.3.1-x86_64-1_pam.txz: Added.
testing/packages/PAM/cyrus-sasl-2.1.27-x86_64-2_pam.txz: Added.
testing/packages/PAM/dovecot-2.3.9.2-x86_64-1_pam.txz: Added.
testing/packages/PAM/gnome-keyring-3.34.0-x86_64-1_pam.txz: Added.
testing/packages/PAM/hplip-3.19.12-x86_64-2_pam.txz: Added.
testing/packages/PAM/kde-workspace-4.11.22-x86_64-6_pam.txz: Added.
testing/packages/PAM/libcap-2.31-x86_64-1_pam.txz: Added.
testing/packages/PAM/libcgroup-0.41-x86_64-5_pam.txz: Added.
testing/packages/PAM/libpwquality-1.4.2-x86_64-1_pam.txz: Added.
testing/packages/PAM/mariadb-10.4.12-x86_64-1_pam.txz: Added.
testing/packages/PAM/netatalk-3.1.12-x86_64-2_pam.txz: Added.
testing/packages/PAM/netkit-rsh-0.17-x86_64-2_pam.txz: Added.
testing/packages/PAM/openssh-8.1p1-x86_64-1_pam.txz: Added.
testing/packages/PAM/openvpn-2.4.8-x86_64-1_pam.txz: Added.
testing/packages/PAM/pam-1.3.1-x86_64-1_pam.txz: Added.
testing/packages/PAM/polkit-0.116-x86_64-1_pam.txz: Added.
testing/packages/PAM/popa3d-1.0.3-x86_64-3_pam.txz: Added.
testing/packages/PAM/ppp-2.4.7-x86_64-3_pam.txz: Added.
testing/packages/PAM/proftpd-1.3.6b-x86_64-1_pam.txz: Added.
testing/packages/PAM/samba-4.11.6-x86_64-1_pam.txz: Added.
testing/packages/PAM/screen-4.8.0-x86_64-1_pam.txz: Added.
testing/packages/PAM/shadow-4.8.1-x86_64-2_pam.txz: Added.
testing/packages/PAM/sudo-1.8.31-x86_64-1_pam.txz: Added.
testing/packages/PAM/system-config-printer-1.5.12-x86_64-2_pam.txz: Added.
testing/packages/PAM/util-linux-2.35.1-x86_64-1_pam.txz: Added.
testing/packages/PAM/vsftpd-3.0.3-x86_64-5_pam.txz: Added.
testing/packages/PAM/xdm-1.1.11-x86_64-9_pam.txz: Added.
testing/packages/PAM/xlockmore-5.62-x86_64-1_pam.txz: Added.
testing/packages/PAM/xscreensaver-5.43-x86_64-1_pam.txz: Added.
testing/packages/binutils-2.34-x86_64-1.txz: Removed.
testing/packages/glibc-2.31-x86_64-1.txz: Removed.
testing/packages/glibc-i18n-2.31-x86_64-1.txz: Removed.
testing/packages/glibc-profile-2.31-x86_64-1.txz: Removed.
testing/packages/glibc-solibs-2.31-x86_64-1.txz: Removed.
usb-and-pxe-installers/usbboot.img: Rebuilt.
ap/man-pages-5.05-noarch-2.txz: Rebuilt.
Clean up /usr/man directory moving miscellaneous documentation to
/usr/doc/man-pages-5.05. Thanks to Xsane.
d/python-setuptools-45.2.0-x86_64-1.txz: Upgraded.
n/nfs-utils-2.4.3-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-68.5.0esr-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/firefox/68.5.0/releasenotes/
a/cryptsetup-2.3.0-x86_64-1.txz: Upgraded.
a/kernel-firmware-20200203_6d9f399-noarch-1.txz: Upgraded.
ap/xfsdump-3.1.9-x86_64-1.txz: Upgraded.
d/mercurial-5.3-x86_64-1.txz: Upgraded.
l/libzip-1.6.1-x86_64-1.txz: Upgraded.
n/nfs-utils-2.4.2-x86_64-3.txz: Rebuilt.
Added /etc/exports.d directory.
Removed the bogus sanity checks. Sure, we could try to "fix" them, but this
seems to be the path of least resistance.
n/postfix-3.4.9-x86_64-1.txz: Upgraded.
x/libinput-1.15.1-x86_64-1.txz: Upgraded.
x/vulkan-sdk-1.2.131.1-x86_64-1.txz: Upgraded.
xap/sane-1.0.29-x86_64-1.txz: Upgraded.
a/util-linux-2.35.1-x86_64-1.txz: Upgraded.
a/zerofree-1.1.1-x86_64-1.txz: Added.
Also queued up for the next installer build. Thanks to bifferos.
ap/sudo-1.8.31-x86_64-1.txz: Upgraded.
This update fixes a security issue:
In Sudo before 1.8.31, if pwfeedback is enabled in /etc/sudoers, users can
trigger a stack-based buffer overflow in the privileged sudo process.
(pwfeedback is a default setting in some Linux distributions; however, it
is not the default for upstream or in Slackware, and would exist only if
enabled by an administrator.) The attacker needs to deliver a long string
to the stdin of getln() in tgetpass.c.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18634
(* Security fix *)
n/NetworkManager-1.22.6-x86_64-1.txz: Upgraded.
n/openldap-client-2.4.49-x86_64-1.txz: Upgraded.
xfce/Thunar-1.8.11-x86_64-1.txz: Removed.
xfce/thunar-1.8.12-x86_64-1.txz: Added.
Changed package name from "Thunar" to "thunar" to follow upstream's naming.
a/aaa_elflibs-15.0-x86_64-21.txz: Rebuilt.
Upgraded: libisl.so.22.0.1.
Added: libkeyutils.so.1.9.
a/kernel-generic-5.4.15-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.15-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.15-x86_64-1.txz: Upgraded.
a/pciutils-3.6.4-x86_64-1.txz: Upgraded.
a/shadow-4.8.1-x86_64-1.txz: Upgraded.
d/check-0.14.0-x86_64-1.txz: Upgraded.
d/kernel-headers-5.4.15-x86-1.txz: Upgraded.
d/make-4.2.1-x86_64-5.txz: Rebuilt.
Drop back to make-4.2.1 since make-4.3 is breaking a few builds. We'll
revisit it later after sources have caught up to it or regressions have
been patched upstream.
d/python-pip-20.0.2-x86_64-1.txz: Upgraded.
k/kernel-source-5.4.15-noarch-1.txz: Upgraded.
l/imagemagick-7.0.9_18-x86_64-1.txz: Upgraded.
l/python-packaging-20.1-x86_64-1.txz: Upgraded.
n/php-7.4.2-x86_64-3.txz: Rebuilt.
php.ini: Added extension=gd and extension=zip. Thanks to avian.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/kernel-firmware-20200122_1eb2408-noarch-1.txz: Upgraded.
a/pciutils-3.6.3-x86_64-1.txz: Upgraded.
a/pkgtools-15.0-noarch-30.txz: Rebuilt.
removepkg: prevent upgradepkg noise when a directory turns into a symlink.
setup.vi-ex: don't make symlinks if the targets don't exist.
d/cmake-3.16.3-x86_64-1.txz: Upgraded.
d/distcc-3.3.3-x86_64-3.txz: Rebuilt.
Move symlink tree into /usr/lib/distcc/, and make a link in /usr/lib64/ if
needed. Seems like this is how everyone else sets it up. Thanks to hpfeil.
Recompiled against krb5-1.17.1 (--with-auth).
d/parallel-20200122-noarch-1.txz: Upgraded.
l/python-urllib3-1.25.8-x86_64-1.txz: Upgraded.
n/bind-9.14.10-x86_64-1.txz: Upgraded.
This is a bugfix release:
With some libmaxminddb versions, named could erroneously match an IP address
not belonging to any subnet defined in a given GeoIP2 database to one of the
existing entries in that database. [GL #1552]
Fix line spacing in `rndc secroots`. Thanks to Tony Finch. [GL #2478]
Recompiled against krb5-1.17.1 (--with-gssapi).
n/dhcp-4.4.2-x86_64-1.txz: Upgraded.
n/p11-kit-0.23.19-x86_64-1.txz: Upgraded.
n/php-7.4.2-x86_64-2.txz: Rebuilt.
Patched for c-client library API change. Thanks to ecd102.
Recompiled against krb5-1.17.1 (--with-kerberos).
a/aaa_elflibs-15.0-x86_64-19.txz: Rebuilt.
Upgraded: libcap.so.2.31, libgmp.so.10.4.0, libgmpxx.so.4.6.0.
Added: libgssapi_krb5.so.2.2, libk5crypto.so.3.1, libkrb5.so.3.3,
libkrb5support.so.0.1.
a/util-linux-2.35-x86_64-1.txz: Upgraded.
d/python-pip-20.0.1-x86_64-1.txz: Upgraded.
l/Mako-1.1.1-x86_64-1.txz: Upgraded.
l/keyutils-1.6.1-x86_64-1.txz: Upgraded.
n/krb5-1.17-x86_64-1.txz: Added.
Nothing links to this yet, but we'll need it soon enough. :-)
n/php-7.4.2-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues:
Standard: OOB read in php_strip_tags_ex
Mbstring: global buffer-overflow in 'mbfl_filt_conv_big5_wchar'
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7059https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7060
(* Security fix *)
n/samba-4.11.5-x86_64-1.txz: Upgraded.
This update fixes the following security issues:
Replication of ACLs set to inherit down a subtree on AD Directory
not automatic.
Crash after failed character conversion at log level 3 or above.
Use after free during DNS zone scavenging in Samba AD DC.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14902https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14907https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19344
(* Security fix *)
xap/gparted-1.1.0-x86_64-1.txz: Upgraded.
a/aaa_terminfo-6.1_20200118-x86_64-1.txz: Upgraded.
d/make-4.3-x86_64-1.txz: Upgraded.
d/python-setuptools-45.1.0-x86_64-1.txz: Upgraded.
l/ncurses-6.1_20200118-x86_64-1.txz: Upgraded.
n/alpine-2.22-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-68.4.2esr-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/firefox/68.4.2/releasenotes/https://bugzilla.mozilla.org/show_bug.cgi?id=1602726
d/ccache-3.7.7-x86_64-1.txz: Upgraded.
l/libpsl-0.21.0-x86_64-2.txz: Rebuilt.
Patched for new gtk-doc. Thanks to Matteo Bernardini.
l/pyparsing-2.4.6-x86_64-1.txz: Upgraded.
l/python-packaging-20.0-x86_64-1.txz: Upgraded.
l/python-pygments-2.5.2-x86_64-1.txz: Added.
This is needed by gtk-doc.
n/iputils-20190709-x86_64-2.txz: Rebuilt.
Patched for new libcap. Thanks to Matteo Bernardini.
x/fonttosfnt-1.1.0-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-68.4.0esr-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/68.4.0/releasenotes/https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
(* Security fix *)
Happy 2020 to the Slackware community! :-)
a/aaa_terminfo-6.1_20191228-x86_64-1.txz: Upgraded.
a/smartmontools-7.1-x86_64-1.txz: Upgraded.
ap/sudo-1.8.30-x86_64-1.txz: Upgraded.
d/python-setuptools-43.0.0-x86_64-1.txz: Upgraded.
l/boost-1.72.0-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
Patched to fix missing boost/serialization/split_member.hpp include.
This fixes the lightspark build at SBo. Thanks to orbea.
l/ffmpeg-4.2.2-x86_64-1.txz: Upgraded.
l/ncurses-6.1_20191228-x86_64-1.txz: Upgraded.
l/netpbm-10.89.00-x86_64-1.txz: Upgraded.
n/epic5-2.1.1-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.8.1.
Thanks to Willy Sudiarto Raharjo for pointing this one out.
n/whois-5.5.4-x86_64-1.txz: Upgraded.
x/vulkan-sdk-1.1.130.0-x86_64-1.txz: Upgraded.
extra/pure-alsa-system/ffmpeg-4.2.2-x86_64-1_alsa.txz: Upgraded.
a/kmod-26-x86_64-3.txz: Rebuilt.
This doesn't build with --enable-python and python3-3.8.1, so we'll
disable it for now. The python additions don't appear to be widely
packaged anyway.
a/util-linux-2.34-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
ap/hplip-3.19.12-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
ap/ksh93-20191228_5abcbd06-x86_64-1.txz: Upgraded.
ap/linuxdoc-tools-0.9.73-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.8.1.
ap/lxc-2.0.11_fad08f383-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.8.1.
ap/rpm-4.15.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
d/Cython-0.29.14-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
d/clisp-2.50_20191103_c26de7873-x86_64-1.txz: Upgraded.
d/distcc-3.3.3-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
d/gdb-8.3.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
d/llvm-9.0.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
d/meson-0.52.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
d/python-pip-19.3.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
d/python-setuptools-42.0.2-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
d/python3-3.8.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
kde/pykde4-4.14.3-x86_64-10.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/Mako-1.1.0-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/PyQt-4.12.3-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/QScintilla-2.11.4-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/alsa-lib-1.2.1.2-x86_64-2.txz: Rebuilt.
Recompiled without --enable-mixer-pymods.
l/dbus-python-1.2.14-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/gexiv2-0.12.0-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/gobject-introspection-1.62.0-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/libcaca-0.99.beta19-x86_64-5.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/libcap-ng-0.7.10-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/libproxy-0.4.15-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/libwebp-1.0.3-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/libwmf-0.2.8.4-x86_64-9.txz: Rebuilt.
Correct the path for the GDK_PIXBUF_DIR.
Thanks to B. Watson and Robby Workman.
l/libxml2-2.9.10-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/newt-0.52.21-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/pycairo-1.18.2-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/pycups-1.9.74-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/pycurl-7.43.0.3-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/pygobject-2.28.7-x86_64-5.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/pygobject3-3.34.0-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/pyparsing-2.4.5-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/python-appdirs-1.4.3-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/python-certifi-2019.11.28-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/python-chardet-3.0.4-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/python-docutils-0.15.2-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/python-idna-2.8-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/python-notify2-0.3.1-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/python-packaging-19.2-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/python-pillow-6.2.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/python-ply-3.11-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/python-requests-2.22.0-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/python-sane-2.8.3-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/python-six-1.13.0-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/python-urllib3-1.25.7-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/sip-4.19.20-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/system-config-printer-1.5.12-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/talloc-2.3.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/tdb-1.4.3-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/tevent-0.10.2-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/urwid-1.0.3-x86_64-5.txz: Rebuilt.
Recompiled against python3-3.8.1.
l/zstd-1.4.4-x86_64-2.txz: Rebuilt.
Fix libdir in libzstd.pc. Thanks to orbea.
n/gpgme-1.13.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
n/obexftp-0.24.2-x86_64-5.txz: Rebuilt.
Recompiled against python3-3.8.1.
n/pssh-2.3.1-x86_64-5.txz: Rebuilt.
Recompiled against python3-3.8.1.
n/s-nail-14.9.16-x86_64-1.txz: Upgraded.
n/samba-4.11.4-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
x/pyxdg-0.26-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
x/xcb-proto-1.13-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.8.1.
xap/blueman-2.1.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
xap/hexchat-2.14.3-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.8.1.
extra/pure-alsa-system/alsa-lib-1.2.1.2-x86_64-2_alsa.txz: Rebuilt.
Recompiled without --enable-mixer-pymods.
isolinux/initrd.img: Rebuilt.
SeTEFI: Patched to remove extra whitespace from lsblk output.
Thanks to Didier Spaier.
usb-and-pxe-installers/usbboot.img: Rebuilt.
SeTEFI: Patched to remove extra whitespace from lsblk output.
Thanks to Didier Spaier.
a/kernel-generic-5.4.6-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.6-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.6-x86_64-1.txz: Upgraded.
a/procps-ng-3.3.16-x86_64-2.txz: Rebuilt.
Patched to hardcode the pgrep command string buffer size to 4096 as was done
in the previous release. This avoids an allocation error when the stack size
is unlimited. Thanks to Jeroslaw Siebert.
a/xfsprogs-5.4.0-x86_64-1.txz: Upgraded.
d/kernel-headers-5.4.6-x86-1.txz: Upgraded.
k/kernel-source-5.4.6-noarch-1.txz: Upgraded.
l/QScintilla-2.11.4-x86_64-1.txz: Upgraded.
n/dhcpcd-8.1.4-x86_64-1.txz: Upgraded.
n/lftp-4.9.0-x86_64-1.txz: Upgraded.
xap/hexchat-2.14.3-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/aaa_elflibs-15.0-x86_64-17.txz: Rebuilt.
Upgraded: libcap.so.2.28, libelf-0.178.so, libglib-2.0.so.0.6200.4,
libgmodule-2.0.so.0.6200.4, libgobject-2.0.so.0.6200.4,
libgthread-2.0.so.0.6200.4, libidn2.so.0.3.7, libpcre2-8.so.0.9.0,
libtdb.so.1.4.3.
Added: libffi.so.6.0.4, libffi.so.7.1.0.
a/file-5.38-x86_64-2.txz: Rebuilt.
Patched to fix ELF shared libraries misidentified as "statically linked."
a/kernel-firmware-20191220_6871bff-noarch-1.txz: Upgraded.
a/openssl10-solibs-1.0.2u-x86_64-1.txz: Upgraded.
(* Security fix *)
d/guile-2.2.6-x86_64-2.txz: Rebuilt.
Recompiled against libffi-3.3.
d/llvm-9.0.1-x86_64-1.txz: Upgraded.
Compiled against libffi-3.3.
d/python-2.7.17-x86_64-2.txz: Rebuilt.
Recompiled against libffi-3.3.
d/python3-3.7.6-x86_64-1.txz: Upgraded.
Compiled against libffi-3.3.
d/ruby-2.6.5-x86_64-2.txz: Rebuilt.
Recompiled against libffi-3.3.
l/glib2-2.62.4-x86_64-2.txz: Rebuilt.
Recompiled against libffi-3.3.
l/libffi-3.3-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/libvpx-1.8.2-x86_64-1.txz: Upgraded.
l/pygobject-2.28.7-x86_64-4.txz: Rebuilt.
Recompiled against libffi-3.3.
l/pygobject3-3.34.0-x86_64-2.txz: Rebuilt.
Recompiled against libffi-3.3.
l/sip-4.19.20-x86_64-1.txz: Upgraded.
n/cifs-utils-6.10-x86_64-1.txz: Upgraded.
n/dhcpcd-8.1.3-x86_64-1.txz: Upgraded.
n/openssl10-1.0.2u-x86_64-1.txz: Upgraded.
This update fixes a low severity security issue:
Fixed an an overflow bug in the x86_64 Montgomery squaring procedure used in
exponentiation with 512-bit moduli.
For more information, see:
https://www.openssl.org/news/secadv/20191206.txthttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1551
(* Security fix *)
n/p11-kit-0.23.18.1-x86_64-2.txz: Rebuilt.
Recompiled against libffi-3.3.
extra/tigervnc/tigervnc-1.10.1-x86_64-1.txz: Upgraded.
From tigervnc.org: "This is a security release to fix a number of issues
that were found by Kaspersky Lab. These issues affect both the client and
server and could theoretically allow a malicious peer to take control
over the software on the other side. No working exploit is known at this
time, and the issues require the peer to first be authenticated. We still
urge users to upgrade when possible."
(* Security fix *)
a/usb_modeswitch-2.5.2-x86_64-2.txz: Rebuilt.
Seems there's a regression in usb_modeswitch-2.6.0, so let's revert to
usb_modeswitch-2.5.2 but keep the latest usb-modeswitch-data-20191128.
Thanks to Lockywolf.
l/fuse3-3.9.0-x86_64-2.txz: Rebuilt.
Install fuse.conf as fuse.conf.new. This won't prevent an existing config
file from being overwritten with this upgrade, but it will prevent that
from happening again moving forward. Thanks to chrisVV.
l/dconf-0.34.0-x86_64-2.txz: Rebuilt.
Rebuilt using the sed replacements suggested by LFS. This fixes a
subsequent build of dconf-editor.
l/glib-networking-2.62.2-x86_64-1.txz: Upgraded.
n/samba-4.11.3-x86_64-1.txz: Upgraded.
This update fixes the following security issues:
Samba AD DC zone-named record Denial of Service in DNS management server.
DelegationNotAllowed was not enforced in protocol transition on Samba AD DC.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14861https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14870
(* Security fix *)
x/vulkan-sdk-1.1.126.0-x86_64-1.txz: Upgraded.
a/tcsh-6.22.02-x86_64-1.txz: Upgraded.
ap/vim-8.1.2391-x86_64-1.txz: Upgraded.
l/fuse3-3.8.0-x86_64-2.txz: Rebuilt.
rc.fuse3: Don't source /lib/lsb/init-functions unless it exists.
NOTE: FUSE seems to work fine without starting rc.fuse3, which it why it
isn't actually called from anywhere during system startup.
n/iw-5.4-x86_64-1.txz: Upgraded.
n/php-7.4.0-x86_64-2.txz: Rebuilt.
Rebuilt using --enable-gd=shared and --with-zip=shared.
Thanks to Matteo Bernardini.
xap/gv-3.7.4-x86_64-3.txz: Rebuilt.
Patched to fix save/print features when used with the latest ghostscript.
Added --enable-international build option.
Fixed broken whitespace in the bounding-box patch.
Thanks to Xsane.
xap/vim-gvim-8.1.2391-x86_64-1.txz: Upgraded.
n/bind-9.14.8-x86_64-1.txz: Upgraded.
This update fixes a security issue:
Set a limit on the number of concurrently served pipelined TCP queries.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6477
(* Security fix *)
x/mesa-19.2.5-x86_64-1.txz: Upgraded.
ap/qpdf-9.1.0-x86_64-1.txz: Upgraded.
d/check-0.13.0-x86_64-1.txz: Added.
This is needed to build PulseAudio using Meson.
l/alsa-lib-1.2.1-x86_64-2.txz: Rebuilt.
Merge alsa-topology-conf-1.2.1 and alsa-ucm-conf-1.2.1 into the package.
l/pulseaudio-13.0-x86_64-2.txz: Rebuilt.
Rebuilt with meson. This causes esound support to be dropped, but it's
likely that nobody will care.
l/pyparsing-2.4.5-x86_64-1.txz: Upgraded.
extra/pure-alsa-system/alsa-lib-1.2.1-x86_64-2_alsa.txz: Rebuilt.
Merge alsa-topology-conf-1.2.1 and alsa-ucm-conf-1.2.1 into the package.
l/system-config-printer-1.5.12-x86_64-1.txz: Upgraded.
n/sshfs-3.6.0-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-68.2.2-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/68.2.2/releasenotes/
a/aaa_elflibs-15.0-x86_64-14.txz: Rebuilt.
Upgraded: libglib-2.0.so.0.6200.2, libgmodule-2.0.so.0.6200.2,
libgobject-2.0.so.0.6200.2, libgthread-2.0.so.0.6200.2.
Added: libgomp.so.1.0.0.
a/kernel-firmware-20191029_4065643-noarch-1.txz: Upgraded.
a/kernel-generic-4.19.81-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.81-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.81-x86_64-1.txz: Upgraded.
ap/sudo-1.8.29-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.81-x86-1.txz: Upgraded.
d/python-setuptools-41.6.0-x86_64-1.txz: Upgraded.
k/kernel-source-4.19.81-noarch-1.txz: Upgraded.
l/harfbuzz-2.6.3-x86_64-1.txz: Upgraded.
n/samba-4.11.2-x86_64-1.txz: Upgraded.
This update fixes bugs and these security issues:
Client code can return filenames containing path separators.
Samba AD DC check password script does not receive the full password.
User with "get changes" permission can crash AD DC LDAP server via dirsync.
For more information, see:
https://www.samba.org/samba/security/CVE-2019-10218.htmlhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10218https://www.samba.org/samba/security/CVE-2019-14833.htmlhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14833https://www.samba.org/samba/security/CVE-2019-14847.htmlhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14847
(* Security fix *)
x/libglvnd-1.2.0-x86_64-4.txz: Rebuilt.
Applied upstream patches to fix EGL/eglplatform.h.
x/xorg-server-1.20.5-x86_64-3.txz: Rebuilt.
#define EGL_NO_X11 to fix glamor build against libglvnd-1.2.0.
x/xorg-server-xephyr-1.20.5-x86_64-3.txz: Rebuilt.
x/xorg-server-xnest-1.20.5-x86_64-3.txz: Rebuilt.
x/xorg-server-xvfb-1.20.5-x86_64-3.txz: Rebuilt.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
d/python-2.7.17-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues:
Update vendorized expat library version to 2.2.8.
Disallow URL paths with embedded whitespace or control characters into the
underlying http client request. Such potentially malicious header injection
URLs now cause an httplib.InvalidURL exception to be raised.
Avoid file reading by disallowing ``local-file://`` and ``local_file://``
URL schemes in :func:`urllib.urlopen`, :meth:`urllib.URLopener.open` and
:meth:`urllib.URLopener.retrieve`.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15903https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9740https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9948
(* Security fix *)
n/proftpd-1.3.6b-x86_64-1.txz: Upgraded.
a/getty-ps-2.1.0b-x86_64-4.txz: Removed.
a/lha-114i-x86_64-2.txz: Removed.
Removed due to vague licensing terms.
a/lhasa-0.3.1-x86_64-1.txz: Added.
This is an extraction-only LHA utility with an OSI approved license.
a/shadow-4.7-x86_64-2.txz: Rebuilt.
Added /etc/environment.new to fix "sudo -i" noise.
ap/lm_sensors-3.6.0-x86_64-1.txz: Upgraded.
ap/vim-8.1.2174-x86_64-1.txz: Upgraded.
l/netpbm-10.88.00-x86_64-1.txz: Upgraded.
n/ca-certificates-20191018-noarch-1.txz: Upgraded.
n/samba-4.11.1-x86_64-1.txz: Upgraded.
xap/vim-gvim-8.1.2174-x86_64-1.txz: Upgraded.
xap/xfractint-20.04p13-x86_64-2.txz: Removed.
xap/xv-3.10a-x86_64-9.txz: Removed.
extra/getty-ps/getty-ps-2.1.0b-x86_64-4.txz: Rebuilt.
Moved here from the A series due to commercial use restrictions.
extra/xfractint/xfractint-20.04p14-x86_64-1.txz: Upgraded.
Moved here from the XAP series due to commercial use restrictions.
extra/xv/xv-3.10a-x86_64-9.txz: Rebuilt.
Moved here from the XAP series due to non-commercial use shareware license.
ap/sudo-1.8.28p1-x86_64-1.txz: Upgraded.
This is a bugfix release:
A fix in sudo-1.8.28 caused "sudo -v" to prompt for a password when
"verifypw" is set to "all" (the default) and all of the user's sudoers
entries are marked with NOPASSWD.
l/xapian-core-1.4.13-x86_64-1.txz: Upgraded.
n/dhcpcd-8.1.1-x86_64-1.txz: Upgraded.
x/xf86-input-wacom-0.38.0-x86_64-1.txz: Upgraded.
ap/ghostscript-9.50-x86_64-1.txz: Upgraded.
d/icecream-1.3-x86_64-2.txz: Rebuilt.
Have the profile scripts just check for -x /etc/rc.d/rc.iceccd, since pgrep
with --ns $$ isn't working for non-root users. Thanks to Leopold E. Midha.
d/python-pip-19.3-x86_64-1.txz: Upgraded.
n/bluez-5.51-x86_64-2.txz: Rebuilt.
Fixed path to obexd in org.bluez.obex.service.
Thanks to Jean-Philippe Guillemin.
x/xf86-video-ati-19.1.0-x86_64-1.txz: Upgraded.
a/pkgtools-15.0-noarch-26.txz: Rebuilt.
upgradepkg: add spaces to --dry-run package list. Thanks to Markus Wiesner.
l/aspell-0.60.8-x86_64-1.txz: Upgraded.
n/network-scripts-15.0-noarch-9.txz: Rebuilt.
rc.inet1: Fix typos and spacing.
rc.inet2: Start rc.firewall first. This had been later in the script due to
the now unsupported idea of having /usr on NFS. Thanks to abga.
rc.inet2: If present and executable, start the Kerberos init scripts.
rc.inet2: Remove obsolete rpc.pcnfsd/rpc.bwnfsd section from the end.
n/proftpd-1.3.6a-x86_64-1.txz: Upgraded.
xap/pan-0.146-x86_64-1.txz: Upgraded.
d/llvm-9.0.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
Thanks to orbea for getting this working and cleaning up the build script.
d/vala-0.46.2-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_67-x86_64-1.txz: Upgraded.
Fixed --disable-opencl configure option. Thanks to Markus Wiesner for the
bug report and to upstream for the quick fix.
n/NetworkManager-1.20.4-x86_64-1.txz: Upgraded.
n/gnutls-3.6.10-x86_64-1.txz: Upgraded.
x/freeglut-3.2.1-x86_64-1.txz: Upgraded.
x/libglvnd-1.1.1-x86_64-2.txz: Upgraded.
Reverted to this version since I'm seeing some errors linking with Mesa
libraries with the newer one. Thanks to nobodino for the bug report.
x/mesa-19.2.0-x86_64-2.txz: Rebuilt.
Recompiled against llvm-9.0.0 and libglvnd-1.1.1.
x/xf86-video-vmware-13.3.0-x86_64-3.txz: Rebuilt.
Recompiled against llvm-9.0.0.
a/f2fs-tools-1.13.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
ap/rpm-4.15.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
d/rust-1.38.0-x86_64-1.txz: Upgraded.
It seems that rust-1.38.0 builds fewer shared objects causing the package
size to bloat to almost double. I held this back overnight to compile some
modified builds to see if the old build behavior could be restored but
didn't have any luck, so I'll put this out as-is for now. Any help debloating
this package would be appreciated. Note that it also had to be bootstrapped
from the official binaries using LOCAL_BOOTSTRAP=NO. That's not all that
unusual for Rust, but perhaps that's another problem...
l/fribidi-1.0.7-x86_64-1.txz: Upgraded.
l/fuse3-3.7.0-x86_64-1.txz: Upgraded.
n/fetchmail-6.4.1-x86_64-1.txz: Upgraded.
d/python-2.7.16-x86_64-3.txz: Rebuilt.
Rebuilt against glibc-2.30 to get rid of #define HAVE_STROPTS_H 1
in pyconfig.h. Thanks to ecd102.
d/python3-3.7.4-x86_64-2.txz: Rebuilt.
Rebuilt against glibc-2.30 to get rid of #define HAVE_STROPTS_H 1
in pyconfig.h. Thanks to ecd102.
n/openobex-1.7.2-x86_64-3.txz: Rebuilt.
Build/install extra openobex apps. Thanks to Dave Woodfall.
x/xf86-video-intel-20190724_6f4972d5-x86_64-1.txz: Upgraded.
extra/google-chrome/google-chrome.SlackBuild: Upgraded.
Patched the packaging script to handle either control.tar.gz or
control.tar.xz.
a/eudev-3.2.8-x86_64-2.txz: Rebuilt.
Blacklisted mlx_wdt in watchdog.conf. Thanks to Robby Workman.
l/libical-3.0.6-x86_64-1.txz: Upgraded.
n/rpcbind-1.2.5-x86_64-2.txz: Rebuilt.
Added patch from git master to fix a segfault.
Fixed application of the next patch.
Thanks to Robby Workman.
x/freeglut-3.2.0-x86_64-1.txz: Upgraded.
x/mesa-19.1.7-x86_64-1.txz: Upgraded.
l/dbus-python-1.2.10-x86_64-1.txz: Upgraded.
l/glib2-2.60.7-x86_64-1.txz: Upgraded.
l/librsvg-2.44.15-x86_64-1.txz: Upgraded.
l/pyparsing-2.4.2-x86_64-1.txz: Upgraded.
n/samba-4.10.8-x86_64-1.txz: Upgraded.
This update addresses a security issue:
On a Samba SMB server for all versions of Samba from 4.9.0 clients are
able to escape outside the share root directory if certain
configuration parameters set in the smb.conf file.
For more information, see:
https://www.samba.org/samba/security/CVE-2019-10197.htmlhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10197
(* Security fix *)
d/ccache-3.7.3-x86_64-1.txz: Upgraded.
l/libvisio-0.1.7-x86_64-1.txz: Upgraded.
n/bind-9.14.4-x86_64-2.txz: Rebuilt.
Updated to the latest named.root in the caching-example configs.
Thanks to 3rensho for the bug report.
n/s-nail-14.9.15-x86_64-1.txz: Upgraded.
n/whois-5.5.1-x86_64-1.txz: Upgraded.
xap/xlockmore-5.58-x86_64-1.txz: Upgraded.
a/kernel-generic-4.19.66-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.66-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.66-x86_64-1.txz: Upgraded.
ap/amp-0.7.6-x86_64-3.txz: Rebuilt.
Patched to clean up the code for a modern compiler and to not use overly
aggressive optimizations that can lead to crashes. Thanks to Labinnah.
d/doxygen-1.8.16-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.66-x86-1.txz: Upgraded.
d/scons-3.1.1-x86_64-1.txz: Upgraded.
k/kernel-source-4.19.66-noarch-1.txz: Upgraded.
n/NetworkManager-1.20.0-x86_64-1.txz: Upgraded.
n/wpa_supplicant-2.9-x86_64-1.txz: Upgraded.
x/libinput-1.14.0-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/aaa_elflibs-15.0-x86_64-9.txz: Rebuilt.
Upgraded: libbz2.so.1.0.8, libexpat.so.1.6.9, libglib-2.0.so.0.6000.5,
libgmodule-2.0.so.0.6000.5, libgobject-2.0.so.0.6000.5,
libgthread-2.0.so.0.6000.5, libidn2.so.0.3.6.
Removed: libicudata.so.63.1, libicui18n.so.63.1, libicuio.so.63.1,
libicutest.so.63.1, libicutu.so.63.1, libicuuc.so.63.1.
Added: libpcre2-8.so.0.8.0, libpsl.so.5.3.2. These are needed by wget which
is used by slackpkg, so they should be in here. Thanks to OutSiderBR.
ap/lxc-2.0.11_fad08f383-x86_64-1.txz: Upgraded.
Updated from 2.0 git branch.
Ported init script updates from sysvinit-scripts.
d/ccache-3.7.2-x86_64-1.txz: Upgraded.
l/libsigc++-2.10.2-x86_64-1.txz: Upgraded.
n/curl-7.65.3-x86_64-1.txz: Upgraded.
This is a bugfix release:
Fix a regression that caused the progress meter not to appear.
For more information, see:
https://curl.haxx.se/changes.html
n/iputils-20190709-x86_64-1.txz: Upgraded.
a/kernel-firmware-20190717_bf13a71-noarch-1.txz: Upgraded.
ap/mpg123-1.25.11-x86_64-1.txz: Upgraded.
l/gvfs-1.40.2-x86_64-2.txz: Rebuilt.
daemon/meson.build: define gvfs_rpath for libgvfsdaemon.so
This fixes "libgvfscommon.so => not found" running ldd on libgvfsdaemon.so.
Thanks to Robby Workman.
n/bind-9.14.4-x86_64-1.txz: Upgraded.
x/libpciaccess-0.16-x86_64-1.txz: Upgraded.
x/xinput-1.6.3-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-68.0.1esr-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/firefox/68.0.1esr/releasenotes/
extra/pure-alsa-system/mpg123-1.25.11-x86_64-1_alsa.txz: Upgraded.
ap/moc-2.5.2-x86_64-5.txz: Rebuilt.
Patched and recompiled against ffmpeg-4.1.4. Thanks to Heinz Wiesinger.
ap/vim-8.1.1710-x86_64-1.txz: Upgraded.
d/cmake-3.15.0-x86_64-1.txz: Upgraded.
e/emacs-26.2-x86_64-2.txz: Rebuilt.
Patched package.el to obey buffer-file-coding-system (bug #35739), fixing
bad signature from GNU ELPA for archive-contents.
Thanks to Stefan Monnier and Eric Lindblad.
kde/k3b-2.0.3-x86_64-5.txz: Rebuilt.
Recompiled against ffmpeg-4.1.4.
kde/kfilemetadata-4.14.3-x86_64-5.txz: Rebuilt.
Recompiled against ffmpeg-4.1.4.
kde/nepomuk-core-4.14.3-x86_64-5.txz: Rebuilt.
Recompiled against ffmpeg-4.1.4.
l/alsa-plugins-1.1.9-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-4.1.4.
l/ffmpeg-4.1.4-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/gegl-0.4.16-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-4.1.4.
l/gst-plugins-libav-1.16.0-x86_64-2.txz: Rebuilt.
Recompiled against ffmpeg-4.1.4.
l/gvfs-1.40.2-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_54-x86_64-1.txz: Upgraded.
l/libvisual-plugins-0.4.0-x86_64-4.txz: Rebuilt.
Patched to fix a segmentation fault while loading plugin file.
Thanks to alienBOB.
l/libvpx-1.8.1-x86_64-1.txz: Upgraded.
n/curl-7.65.2-x86_64-1.txz: Upgraded.
xap/MPlayer-20190717-x86_64-1.txz: Upgraded.
Compiled against ffmpeg-4.1.4.
xap/audacious-plugins-3.10.1-x86_64-3.txz: Rebuilt.
Recompiled against ffmpeg-4.1.4.
xap/vim-gvim-8.1.1710-x86_64-1.txz: Upgraded.
xap/xine-lib-1.2.9-x86_64-5.txz: Rebuilt.
Recompiled against ffmpeg-4.1.4.
extra/pure-alsa-system/MPlayer-20190717-x86_64-1_alsa.txz: Upgraded.
Compiled against ffmpeg-4.1.4.
extra/pure-alsa-system/alsa-plugins-1.1.9-x86_64-2_alsa.txz: Rebuilt.
Recompiled against ffmpeg-4.1.4.
extra/pure-alsa-system/audacious-plugins-3.10.1-x86_64-3_alsa.txz: Rebuilt.
Recompiled against ffmpeg-4.1.4.
extra/pure-alsa-system/ffmpeg-4.1.4-x86_64-1_alsa.txz: Upgraded.
Shared library .so-version bump.
extra/pure-alsa-system/xine-lib-1.2.9-x86_64-5_alsa.txz: Rebuilt.
Recompiled against ffmpeg-4.1.4.
a/bzip2-1.0.8-x86_64-1.txz: Upgraded.
Fixes security issues:
bzip2recover: Fix use after free issue with outFile.
Make sure nSelectors is not out of range.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3189https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12900
(* Security fix *)
a/kernel-generic-4.19.59-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.59-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.59-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.59-x86-1.txz: Upgraded.
k/kernel-source-4.19.59-noarch-1.txz: Upgraded.
l/libwebp-1.0.3-x86_64-1.txz: Upgraded.
n/dovecot-2.3.7-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/kernel-generic-4.19.57-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.57-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.57-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.57-x86-1.txz: Upgraded.
k/kernel-source-4.19.57-noarch-1.txz: Upgraded.
l/Mako-1.0.13-x86_64-1.txz: Upgraded.
l/SDL2_image-2.0.5-x86_64-1.txz: Upgraded.
n/postfix-3.4.6-x86_64-1.txz: Upgraded.
xap/blueman-2.0.8-x86_64-2.txz: Rebuilt.
Reverted to blueman-2.0.8 as I'm also seeing connection issues here with
the newer version.
xap/xscreensaver-5.43-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/blueman-2.1-x86_64-1.txz: Upgraded.
This doesn't seem to be working properly. Any patches are welcome.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/hwdata-0.325-noarch-1.txz: Upgraded.
ap/hplip-3.19.6-x86_64-1.txz: Upgraded.
n/irssi-1.2.1-x86_64-1.txz: Upgraded.
This update fixes a security issue: Use after free when sending SASL login
to the server found by ilbelkyr. May affect the stability of Irssi. SASL
logins may fail, especially during (manual and automated) reconnect.
For more information, see:
https://irssi.org/2019/06/29/irssi-1.2.1-1.1.3-1.0.8-released/https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13045
(* Security fix *)
xfce/Thunar-1.8.7-x86_64-1.txz: Upgraded.
ap/vim-8.1.1601-x86_64-1.txz: Upgraded.
Built with --disable-canberra. Thanks to Markus Wiesner.
l/harfbuzz-2.5.3-x86_64-1.txz: Upgraded.
n/nettle-3.5.1-x86_64-1.txz: Upgraded.
n/nftables-0.9.1-x86_64-1.txz: Upgraded.
t/texlive-2019.190626-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
Thanks to Johannes Schoepfer.
xap/blueman-2.1-x86_64-1.txz: Upgraded.
Thanks to Robby Workman.
xap/vim-gvim-8.1.1601-x86_64-1.txz: Upgraded.
l/giflib-5.2.1-x86_64-2.txz: Rebuilt.
Install obsolete utilities (if they were built).
If you'd like to see them continued, let upstream know.
l/libarchive-3.4.0-x86_64-2.txz: Rebuilt.
Recompiled against nettle-3.5.
l/libzip-1.5.2-x86_64-2.txz: Rebuilt.
Recompiled against nettle-3.5.
n/gnutls-3.6.8-x86_64-2.txz: Rebuilt.
Recompiled against nettle-3.5.
n/nettle-3.5-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
x/xorg-server-1.20.5-x86_64-2.txz: Rebuilt.
Recompiled against nettle-3.5.
x/xorg-server-xephyr-1.20.5-x86_64-2.txz: Rebuilt.
Recompiled against nettle-3.5.
x/xorg-server-xnest-1.20.5-x86_64-2.txz: Rebuilt.
Recompiled against nettle-3.5.
x/xorg-server-xvfb-1.20.5-x86_64-2.txz: Rebuilt.
Recompiled against nettle-3.5.
extra/tigervnc/tigervnc-1.9.0-x86_64-2.txz: Rebuilt.
Recompiled against nettle-3.5.
l/cairo-1.17.2-x86_64-1.txz: Upgraded.
l/expat-2.2.7-x86_64-1.txz: Upgraded.
n/bind-9.14.3-x86_64-1.txz: Upgraded.
Fixed a race condition in dns_dispatch_getnext() that could cause an
assertion failure if a significant number of incoming packets were rejected.
For more information, see:
https://kb.isc.org/docs/cve-2019-6471https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6471
(* Security fix *)
x/igt-gpu-tools-1.24-x86_64-1.txz: Upgraded.
x/xorgproto-2019.1-x86_64-1.txz: Upgraded.
xap/xlockmore-5.57-x86_64-1.txz: Upgraded.
a/openssl-solibs-1.1.1c-x86_64-1.txz: Upgraded.
l/libevent-2.1.10-x86_64-1.txz: Upgraded.
n/gnupg2-2.2.16-x86_64-1.txz: Upgraded.
n/gnutls-3.6.8-x86_64-1.txz: Upgraded.
n/openssl-1.1.1c-x86_64-1.txz: Upgraded.
This update fixes a security issue:
Prevent over long nonces in ChaCha20-Poly1305.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1543
(* Security fix *)
a/file-5.37-x86_64-1.txz: Upgraded.
l/python-requests-2.22.0-x86_64-1.txz: Upgraded.
n/iputils-20190515-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-60.7.0-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/60.7.0/releasenotes/
a/kernel-firmware-20190514_711d329-noarch-1.txz: Upgraded.
a/kernel-generic-4.19.43-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.43-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.43-x86_64-1.txz: Upgraded.
ap/hplip-3.19.5-x86_64-1.txz: Upgraded.
ap/mariadb-10.3.15-x86_64-1.txz: Upgraded.
This update fixes denial-of-service security issues.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2614https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2627https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2628
(* Security fix *)
d/cmake-3.14.4-x86_64-1.txz: Upgraded.
d/gcc-9.1.0-x86_64-5.txz: Rebuilt.
Rebuilt with --enable-clocale=gnu. This is recommended by Linux From
Scratch, and while it doesn't seem to fix the issue with kernel compiles
failing with some locales, it probably doesn't hurt.
d/gcc-brig-9.1.0-x86_64-5.txz: Rebuilt.
d/gcc-g++-9.1.0-x86_64-5.txz: Rebuilt.
Applied patch: PR libstdc++/90397 fix std::variant friend declaration
This fixes problems compiling programs that use std::variant with clang.
Thanks to orbea.
d/gcc-gdc-9.1.0-x86_64-5.txz: Rebuilt.
d/gcc-gfortran-9.1.0-x86_64-5.txz: Rebuilt.
d/gcc-gnat-9.1.0-x86_64-5.txz: Rebuilt.
d/gcc-go-9.1.0-x86_64-5.txz: Rebuilt.
d/gcc-objc-9.1.0-x86_64-5.txz: Rebuilt.
d/kernel-headers-4.19.43-x86-1.txz: Upgraded.
d/rust-1.34.2-x86_64-1.txz: Upgraded.
k/kernel-source-4.19.43-noarch-1.txz: Upgraded.
l/librsvg-2.44.14-x86_64-1.txz: Upgraded.
n/samba-4.10.3-x86_64-1.txz: Upgraded.
This is a security release in order to address the following defect:
The checksum validation in the S4U2Self handler in the embedded Heimdal KDC
did not first confirm that the checksum was keyed, allowing replacement of
the requested target (client) principal.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16860
(* Security fix *)
x/xterm-345-x86_64-1.txz: Upgraded.
xap/rdesktop-1.8.5-x86_64-1.txz: Upgraded.
This update fixes security issues:
Add bounds checking to protocol handling in order to fix many
security problems when communicating with a malicious server.
(* Security fix *)
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
ap/tmux-2.9a-x86_64-1.txz: Upgraded.
n/dovecot-2.3.6-x86_64-1.txz: Upgraded.
This update fixes two security issues:
Submission-login crashed with signal 11 due to null pointer access when
authentication was aborted by disconnecting.
Submission-login crashed when authentication was started over TLS secured
channel and invalid authentication message was sent.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11494https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11499
(* Security fix *)
n/php-7.2.18-x86_64-1.txz: Upgraded.
This update fixes bugs and a security issue
Heap-buffer-overflow in _estrndup via exif_process_IFD_TAG.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11036
(* Security fix *)
xfce/exo-0.12.5-x86_64-1.txz: Upgraded.
ap/tmux-2.9-x86_64-1.txz: Upgraded.
d/python-pip-19.1-x86_64-1.txz: Upgraded.
d/rust-1.34.1-x86_64-1.txz: Upgraded.
d/subversion-1.12.0-x86_64-1.txz: Upgraded.
n/bind-9.14.1-x86_64-1.txz: Upgraded.
This update fixes security issues:
The TCP client quota set using the tcp-clients option could be exceeded
in some cases. This could lead to exhaustion of file descriptors.
In certain configurations, named could crash with an assertion failure if
nxdomain-redirect was in use and a redirected query resulted in an NXDOMAIN
from the cache.
For more information, see:
https://kb.isc.org/docs/cve-2018-5743https://kb.isc.org/docs/cve-2019-6467https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5743https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6467
(* Security fix *)
n/dhcpcd-7.2.1-x86_64-1.txz: Upgraded.
ap/ksh93-20190416_7d7bba3e-x86_64-1.txz: Upgraded.
ap/sysstat-12.1.4-x86_64-1.txz: Upgraded.
l/gvfs-1.40.1-x86_64-2.txz: Rebuilt.
Recompiled against libcdio-2.1.0.
l/icu4c-64.2-x86_64-1.txz: Upgraded.
l/libcddb-1.3.2-x86_64-6.txz: Rebuilt.
Recompiled against libcdio-2.1.0.
l/libcdio-2.1.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/libcdio-paranoia-10.2+2.0.0-x86_64-2.txz: Rebuilt.
Recompiled against libcdio-2.1.0.
l/zstd-1.4.0-x86_64-1.txz: Upgraded.
n/dhcpcd-7.2.0-x86_64-1.txz: Upgraded.
n/dovecot-2.3.5.2-x86_64-1.txz: Upgraded.
This update fixes a security issue:
Trying to login with 8bit username containing invalid UTF8 input causes
auth process to crash if auth policy is enabled. This could be used rather
easily to cause a DoS. Similar crash also happens during mail delivery
when using invalid UTF8 in From or Subject header when OX push
notification driver is used.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10691
(* Security fix *)
n/nghttp2-1.38.0-x86_64-1.txz: Upgraded.
n/openssh-8.0p1-x86_64-1.txz: Upgraded.
This release contains a mitigation for a weakness in the scp(1) tool
and protocol (CVE-2019-6111): when copying files from a remote system
to a local directory, scp(1) did not verify that the filenames that
the server sent matched those requested by the client. This could
allow a hostile server to create or clobber unexpected local files
with attacker-controlled content.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6111
(* Security fix *)
xap/MPlayer-20190418-x86_64-1.txz: Upgraded.
Compiled against libcdio-2.1.0.
xap/audacious-plugins-3.10.1-x86_64-2.txz: Rebuilt.
Recompiled against libcdio-2.1.0.
extra/pure-alsa-system/MPlayer-20190418-x86_64-1_alsa.txz: Upgraded.
Compiled against libcdio-2.1.0.
extra/pure-alsa-system/audacious-plugins-3.10.1-x86_64-2_alsa.txz: Rebuilt.
Recompiled against libcdio-2.1.0.
a/gawk-5.0.0-x86_64-1.txz: Upgraded.
ap/pamixer-1.4-x86_64-2.txz: Rebuilt.
Recompiled against boost-1.70.0.
ap/vim-8.1.1157-x86_64-1.txz: Upgraded.
d/cmake-3.14.2-x86_64-1.txz: Upgraded.
e/emacs-26.2-x86_64-1.txz: Upgraded.
kde/calligra-2.9.11-x86_64-30.txz: Rebuilt.
Recompiled against boost-1.70.0.
l/akonadi-1.13.0-x86_64-12.txz: Rebuilt.
Recompiled against boost-1.70.0.
l/boost-1.70.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
Note: Boost now provides its own BoostConfig.cmake config file, and it may
not work with all existing code (here, calligra stumbled over it). At this
point it's not clear if the included cmake config files are buggy, or if
affected projects need to change something in order to use them, but there's
an easy workaround to use cmake's FindBoost.cmake (as was used previously).
Add this to the call to cmake from any affected project (if cmake fails with
an error: "No suitable build variant has been found."):
-DBoost_NO_BOOST_CMAKE=ON
n/libmbim-1.18.2-x86_64-1.txz: Upgraded.
n/nfs-utils-2.3.3-x86_64-3.txz: Rebuilt.
rc.nfsd: don't try to create the nfsv4recoverydir - the build script will
determine the directory to use and include it in the package.
rc.nfsd: drop 2.4 kernel support, and use better code for mounting the nfsd
filesystem.
Thanks to shasta.
x/libwacom-0.33-x86_64-1.txz: Upgraded.
xap/vim-gvim-8.1.1157-x86_64-1.txz: Upgraded.
a/glibc-zoneinfo-2019a-noarch-1.txz: Upgraded.
a/grub-2.02-x86_64-5.txz: Rebuilt.
Support F2FS filesystem. Thanks to Nille_kungen.
ap/cups-filters-1.22.5-x86_64-1.txz: Upgraded.
ap/itstool-2.0.6-x86_64-1.txz: Upgraded.
d/python-setuptools-41.0.0-x86_64-1.txz: Upgraded.
l/gobject-introspection-1.60.1-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_39-x86_64-1.txz: Upgraded.
l/libcroco-0.6.13-x86_64-1.txz: Upgraded.
l/libnotify-0.7.8-x86_64-1.txz: Upgraded.
n/cifs-utils-6.9-x86_64-1.txz: Upgraded.
n/nfs-utils-2.3.3-x86_64-2.txz: Rebuilt.
Include recovery directory. Thanks to upnort.
n/samba-4.10.2-x86_64-1.txz: Upgraded.
This is a security release in order to address the following defects:
World writable files in Samba AD DC private/ dir.
Save registry file outside share as unprivileged user.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3870https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3880
(* Security fix *)
x/libva-2.4.1-x86_64-1.txz: Upgraded.
x/pixman-0.38.2-x86_64-1.txz: Upgraded.
xap/gimp-2.10.10-x86_64-1.txz: Upgraded.
a/hwdata-0.322-noarch-1.txz: Upgraded.
a/kernel-firmware-20190402_67b7579-noarch-1.txz: Upgraded.
a/shadow-4.6-x86_64-2.txz: Rebuilt.
adduser: reprompt on invalid user input. Thanks to ttk.
ap/ghostscript-9.26-x86_64-2.txz: Rebuilt.
Fixes security issues:
A specially crafted PostScript file could have access to the file system
outside of the constrains imposed by -dSAFER.
Transient procedures can allow access to system operators, leading to
remote code execution.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3835https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3838https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6116
(* Security fix *)
d/vala-0.44.2-x86_64-1.txz: Upgraded.
l/glib-networking-2.60.1-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_36-x86_64-1.txz: Upgraded.
l/python-pillow-6.0.0-x86_64-1.txz: Upgraded.
n/wget-1.20.2-x86_64-1.txz: Upgraded.
Fixed an unspecified buffer overflow vulnerability.
(* Security fix *)
a/kernel-generic-4.19.32-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.32-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.32-x86_64-1.txz: Upgraded.
ap/hplip-3.19.3-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.32-x86-1.txz: Upgraded.
d/python3-3.7.3-x86_64-1.txz: Upgraded.
Fixed bugs and the following security issues:
bpo-36216: Changes urlsplit() to raise ValueError when the URL contains
characters that decompose under IDNA encoding (NFKC-normalization) into
characters that affect how the URL is parsed.
bpo-35746: [CVE-2019-5010] Fix a NULL pointer deref in ssl module. The
cert parser did not handle CRL distribution points with empty DP or URI
correctly. A malicious or buggy certificate can result into segfault.
Vulnerability (TALOS-2018-0758) reported by Colin Read and Nicolas Edet
of Cisco.
bpo-35121: Don't send cookies of domain A without Domain attribute to
domain B when domain A is a suffix match of domain B while using a
cookiejar with http.cookiejar.DefaultCookiePolicy policy.
Patch by Karthikeyan Singaravelan.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5010
(* Security fix *)
d/scons-3.0.5-x86_64-1.txz: Upgraded.
k/kernel-source-4.19.32-noarch-1.txz: Upgraded.
n/curl-7.64.1-x86_64-1.txz: Upgraded.
n/gnutls-3.6.7-x86_64-1.txz: Upgraded.
Fixes security issues:
libgnutls, gnutls tools: Every gnutls_free() will automatically set
the free'd pointer to NULL. This prevents possible use-after-free and
double free issues. Use-after-free will be turned into NULL dereference.
The counter-measure does not extend to applications using gnutls_free().
libgnutls: Fixed a memory corruption (double free) vulnerability in the
certificate verification API. Reported by Tavis Ormandy; addressed with
the change above. [GNUTLS-SA-2019-03-27, #694]
libgnutls: Fixed an invalid pointer access via malformed TLS1.3 async
messages; Found using tlsfuzzer. [GNUTLS-SA-2019-03-27, #704]
libgnutls: enforce key usage limitations on certificates more actively.
Previously we would enforce it for TLS1.2 protocol, now we enforce it
even when TLS1.3 is negotiated, or on client certificates as well. When
an inappropriate for TLS1.3 certificate is seen on the credentials
structure GnuTLS will disable TLS1.3 support for that session (#690).
libgnutls: enforce the equality of the two signature parameters fields
in a certificate. We were already enforcing the signature algorithm,
but there was a bug in parameter checking code.
(* Security fix *)
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/bash-5.0.002-x86_64-3.txz: Rebuilt.
Fix applying patches. Thanks to saahriktu.
a/e2fsprogs-1.45.0-x86_64-1.txz: Upgraded.
n/ca-certificates-20190308-noarch-1.txz: Upgraded.
n/nghttp2-1.37.0-x86_64-1.txz: Upgraded.
n/ntp-4.2.8p13-x86_64-1.txz: Upgraded.
This release fixes a bug that allows an attacker with access to an explicitly
trusted source to send a crafted malicious mode 6 (ntpq) packet that can
trigger a NULL pointer dereference, crashing ntpd.
It also provides 17 other bugfixes and 1 other improvement.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8936
(* Security fix *)
n/postfix-3.4.1-x86_64-2.txz: Rebuilt.
n/s-nail-14.9.13-x86_64-1.txz: Upgraded.
a/btrfs-progs-4.20.2-x86_64-1.txz: Upgraded.
a/openssl-solibs-1.1.1b-x86_64-1.txz: Upgraded.
ap/ddrescue-1.24-x86_64-1.txz: Upgraded.
ap/sqlite-3.27.2-x86_64-1.txz: Upgraded.
l/libssh-0.8.7-x86_64-1.txz: Upgraded.
l/talloc-2.1.16-x86_64-1.txz: Upgraded.
l/tdb-1.3.18-x86_64-1.txz: Upgraded.
l/tevent-0.9.39-x86_64-1.txz: Upgraded.
n/ca-certificates-20181210-noarch-2.txz: Rebuilt.
Use "c_rehash" rather than "openssl rehash" for compatibility with all
versions of OpenSSL.
n/epic5-2.1.1-x86_64-1.txz: Upgraded.
n/openssl-1.1.1b-x86_64-1.txz: Upgraded.
x/xorg-server-1.20.4-x86_64-1.txz: Upgraded.
x/xorg-server-xephyr-1.20.4-x86_64-1.txz: Upgraded.
x/xorg-server-xnest-1.20.4-x86_64-1.txz: Upgraded.
x/xorg-server-xvfb-1.20.4-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-60.5.2-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/60.5.2/releasenotes/
n/php-7.2.15-x86_64-1.txz: Upgraded.
xap/network-manager-applet-1.8.20-x86_64-1.txz: Upgraded.
extra/pure-alsa-system/ffmpeg-3.4.5-x86_64-2_alsa.txz: Rebuilt.
Recompiled against libvpx-1.8.0.
Reenabled libsmbclient support.
extra/pure-alsa-system/gst-plugins-good-1.14.4-x86_64-2_alsa.txz: Rebuilt.
Recompiled against libvpx-1.8.0.
extra/pure-alsa-system/xine-lib-1.2.9-x86_64-4_alsa.txz: Rebuilt.
Recompiled against libvpx-1.8.0.
pasture/php-5.6.40-x86_64-1.txz: Upgraded.
Several security bugs have been fixed in this release:
GD:
Fixed bug #77269 (efree() on uninitialized Heap data in imagescale leads
to use-after-free).
Fixed bug #77270 (imagecolormatch Out Of Bounds Write on Heap).
Mbstring:
Fixed bug #77370 (Buffer overflow on mb regex functions - fetch_token).
Fixed bug #77371 (heap buffer overflow in mb regex functions -
compile_string_node).
Fixed bug #77381 (heap buffer overflow in multibyte match_at).
Fixed bug #77382 (heap buffer overflow due to incorrect length in
expand_case_fold_string).
Fixed bug #77385 (buffer overflow in fetch_token).
Fixed bug #77394 (Buffer overflow in multibyte case folding - unicode).
Fixed bug #77418 (Heap overflow in utf32be_mbc_to_code).
Phar:
Fixed bug #77247 (heap buffer overflow in phar_detect_phar_fname_ext).
Xmlrpc:
Fixed bug #77242 (heap out of bounds read in xmlrpc_decode()).
Fixed bug #77380 (Global out of bounds read in xmlrpc base64 code).
For more information, see:
https://php.net/ChangeLog-5.php#5.6.40
(* Security fix *)
a/hwdata-0.320-noarch-1.txz: Upgraded.
a/kernel-generic-4.19.20-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.20-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.20-x86_64-1.txz: Upgraded.
a/mcelog-162-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.20-x86-1.txz: Upgraded.
d/opencl-headers-2.2-noarch-2.txz: Rebuilt.
Don't trigger "#pragma message" in cl_version.h when falling back on a
default version of OpenCL to target. Applications such as ffmpeg detect
this as an error and fail to compile.
k/kernel-source-4.19.20-noarch-1.txz: Upgraded.
l/ffmpeg-3.4.5-x86_64-2.txz: Rebuilt.
Recompiled against libvpx-1.8.0.
Reenabled libsmbclient support.
l/gst-plugins-good-1.14.4-x86_64-2.txz: Rebuilt.
Recompiled against libvpx-1.8.0.
l/libvpx-1.8.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
n/curl-7.64.0-x86_64-1.txz: Upgraded.
This release fixes the following security issues:
NTLM type-2 out-of-bounds buffer read.
NTLMv2 type-3 header stack buffer overflow.
SMTP end-of-response out-of-bounds read.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16890https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3822https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3823
(* Security fix *)
n/samba-4.9.4-x86_64-2.txz: Rebuilt.
Added time.h to libsmbclient.h to fix ffmpeg compatibility.
Thanks to USUARIONUEVO.
xap/xine-lib-1.2.9-x86_64-4.txz: Rebuilt.
Recompiled against libvpx-1.8.0.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
ap/linuxdoc-tools-0.9.73-x86_64-1.txz: Upgraded.
Upgraded to gtk-doc-1.29.
Upgraded to asciidoc-8.6.10.
Upgraded to perl-XML-SAX-1.00.
Thanks to Stuart Winter.
d/meson-0.49.2-x86_64-1.txz: Upgraded.
d/python-setuptools-40.8.0-x86_64-1.txz: Upgraded.
d/slacktrack-2.19-x86_64-1.txz: Upgraded.
Thanks to Stuart Winter.
l/imagemagick-6.9.10_26-x86_64-1.txz: Upgraded.
n/dovecot-2.3.4.1-x86_64-1.txz: Upgraded.
This update addresses security issues:
CVE-2019-3814: If imap/pop3/managesieve/submission client has trusted
certificate with missing username field (ssl_cert_username_field), under
some configurations Dovecot mistakenly trusts the username provided via
authentication instead of failing.
ssl_cert_username_field setting was ignored with external SMTP AUTH,
because none of the MTAs (Postfix, Exim) currently send the cert_username
field. This may have allowed users with trusted certificate to specify any
username in the authentication. This bug didn't affect Dovecot's
Submission service.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3814
(* Security fix *)
d/bison-3.3.2-x86_64-1.txz: Upgraded.
n/dovecot-2.3.4-x86_64-2.txz: Rebuilt.
Patched double free when used with MariaDB 10.3.x. Thanks to Thom1b.
x/xkeyboard-config-2.26-noarch-1.txz: Upgraded.
extra/bittorrent/bittorrent-4.4.0-noarch-4.txz: Removed.
a/mkinitrd-1.4.11-x86_64-11.txz: Rebuilt.
setup.01.mkinitrd: revert to the previous command line for
mkinitrd_command_generator.sh (the new one fails when called from the
installer).
a/bash-5.0.002-x86_64-2.txz: Rebuilt.
Rebuilt with --libdir=/usr/lib${LIBDIRSUFFIX}. Thanks to RandomTroll.
a/btrfs-progs-4.20.1-x86_64-1.txz: Upgraded.
a/mkinitrd-1.4.11-x86_64-9.txz: Rebuilt.
Automatically generate an initial ramdisk from the installer.
Added 'geninitrd' script to generate an initial ramdisk for the kernel that
/boot/vmlinuz-generic (and/or /boot/vmlinuz-generic-smp) points to.
ap/man-db-2.8.5-x86_64-2.txz: Rebuilt.
Comment out all the options in /etc/profile.d/man-db.{csh,sh} and let the
user decide whether or not to choose anything.
d/python-pip-19.0.1-x86_64-1.txz: Upgraded.
l/mozilla-nss-3.41.1-x86_64-1.txz: Upgraded.
n/dhcpcd-7.1.0-x86_64-1.txz: Upgraded.
a/kernel-generic-4.19.17-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.17-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.17-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.17-x86-1.txz: Upgraded.
d/scons-3.0.4-x86_64-1.txz: Upgraded.
d/vala-0.42.5-x86_64-1.txz: Upgraded.
k/kernel-source-4.19.17-noarch-1.txz: Upgraded.
n/httpd-2.4.38-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
mod_session: mod_session_cookie does not respect expiry time allowing
sessions to be reused. [Hank Ibell]
mod_http2: fixes a DoS attack vector. By sending slow request bodies
to resources not consuming them, httpd cleanup code occupies a server
thread unnecessarily. This was changed to an immediate stream reset
which discards all stream state and incoming data. [Stefan Eissing]
mod_ssl: Fix infinite loop triggered by a client-initiated
renegotiation in TLSv1.2 (or earlier) with OpenSSL 1.1.1 and
later. PR 63052. [Joe Orton]
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17199https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17189https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0190
(* Security fix *)
x/libdrm-2.4.97-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
ap/qpdf-8.3.0-x86_64-1.txz: Upgraded.
l/argon2-20171227-x86_64-1.txz: Added.
This is a new dependency for the PHP package.
n/libmbim-1.18.0-x86_64-1.txz: Upgraded.
n/libqmi-1.22.0-x86_64-1.txz: Upgraded.
n/php-7.2.14-x86_64-1.txz: Upgraded.
Use --with-password-argon2. PHP now requires the new argon2 package.
a/kernel-generic-4.19.13-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.13-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.13-x86_64-1.txz: Upgraded.
d/doxygen-1.8.15-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.13-x86-1.txz: Upgraded.
k/kernel-source-4.19.13-noarch-1.txz: Upgraded.
FRAMEBUFFER_CONSOLE_DEFERRED_TAKEOVER y -> n
l/libsecret-0.18.7-x86_64-1.txz: Upgraded.
n/wpa_supplicant-2.6-x86_64-6.txz: Upgraded.
It seems we're not the only ones with broken WPA2-Enterprise support
with wpa_supplicant-2.7, so we'll fix it the same way as everyone else -
by reverting to wpa_supplicant-2.6 for now.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/wpa_supplicant-2.7-x86_64-2.txz: Upgraded.
Applied a patch from Gentoo to allow building CONFIG_IEEE80211X=y without
the experimental CONFIG_FILS=y option.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/aaa_elflibs-15.0-x86_64-3.txz: Rebuilt.
Moved libsigsegv.so.2 from /usr/lib{,64} to /lib{,64}.
Upgraded: libcap.so.2.26, libelf-0.175.so, libfuse.so.2.9.8,
libexpat.so.1.6.8, libglib-2.0.so.0.5800.2, libgmodule-2.0.so.0.5800.2,
libgobject-2.0.so.0.5800.2, libgthread-2.0.so.0.5800.2, libjpeg.so.62.3.0,
liblber-2.4.so.2.10.10, libldap-2.4.so.2.10.10, libpng16.so.16.36.0,
libstdc++.so.6.0.25, libtdb.so.1.3.16, libtiff.so.5.4.0,
libtiffxx.so.5.4.0, libturbojpeg.so.0.2.0.
ap/vim-8.1.0648-x86_64-1.txz: Upgraded.
d/nasm-2.14.02-x86_64-1.txz: Upgraded.
d/strace-4.26-x86_64-1.txz: Upgraded.
l/libsigsegv-2.12-x86_64-3.txz: Rebuilt.
Moved shared library into /lib{,64} to avoid problems when /usr is on a
separate partition. Thanks to TommyC7.
But please note: that has never been a recommended configuration (it was
always a bad idea prone to corner-case bugs), and with basically everyone
else moving everything into /usr, no upstream is developing with this
scenario in mind these days. Some of the problems caused by separate /usr
are simply not possibly to fix in a straightforward fashion. Consider it a
completely unsupported configuration choice. While it's not my style to
make the installer refuse to allow it, I won't be bending over backwards
to try to fix bugs related to this in the future. If I recall properly,
the original rationale was to make it possible for /usr to reside on a
shared network partition, which might have made sense back when 40MB was
a typical hard drive size. I can think of no good rationale now (and no,
I don't think making /usr read-only helps security in any tangible way).
n/wget-1.20.1-x86_64-1.txz: Upgraded.
x/xf86-video-chips-1.3.0-x86_64-1.txz: Upgraded.
x/xf86-video-neomagic-1.3.0-x86_64-1.txz: Upgraded.
x/xterm-341-x86_64-1.txz: Upgraded.
xap/audacious-3.10.1-x86_64-1.txz: Upgraded.
xap/audacious-plugins-3.10.1-x86_64-1.txz: Upgraded.
xap/vim-gvim-8.1.0648-x86_64-1.txz: Upgraded.
a/coreutils-8.30-x86_64-3.txz: Rebuilt.
Support tmux terms in DIR_COLORS. Thanks to qunying.
a/grep-3.3-x86_64-1.txz: Upgraded.
a/kernel-generic-4.19.12-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.12-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.12-x86_64-1.txz: Upgraded.
a/sed-4.7-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.12-x86-1.txz: Upgraded.
d/rust-1.31.1-x86_64-1.txz: Upgraded.
k/kernel-source-4.19.12-noarch-1.txz: Upgraded.
l/graphite2-1.3.13-x86_64-1.txz: Upgraded.
l/harfbuzz-2.3.0-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_19-x86_64-1.txz: Upgraded.
l/lmdb-0.9.23-x86_64-1.txz: Upgraded.
l/v4l-utils-1.16.3-x86_64-1.txz: Upgraded.
n/netatalk-3.1.12-x86_64-1.txz: Upgraded.
Netatalk before 3.1.12 is vulnerable to an out of bounds write in
dsi_opensess.c. This is due to lack of bounds checking on attacker
controlled data. A remote unauthenticated attacker can leverage
this vulnerability to achieve arbitrary code execution.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1160
(* Security fix *)
n/openldap-client-2.4.47-x86_64-1.txz: Upgraded.
n/samba-4.9.4-x86_64-1.txz: Upgraded.
x/intel-vaapi-driver-2.3.0-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/btrfs-progs-v4.19.1-x86_64-1.txz: Upgraded.
a/dbus-1.12.12-x86_64-1.txz: Upgraded.
ap/cups-2.2.10-x86_64-1.txz: Upgraded.
ap/cups-filters-1.21.5-x86_64-1.txz: Upgraded.
ap/hplip-3.18.12-x86_64-1.txz: Upgraded.
d/mercurial-4.8.1-x86_64-1.txz: Upgraded.
d/rust-1.31.0-x86_64-1.txz: Upgraded.
l/libpng-1.6.36-x86_64-1.txz: Upgraded.
l/python-idna-2.8-x86_64-1.txz: Upgraded.
n/ntp-4.2.8p12-x86_64-5.txz: Rebuilt.
Fixed logrotate file. Thanks to allend and rworkman.
n/php-7.2.13-x86_64-1.txz: Upgraded.
This is a security release which also contains several minor bug fixes.
For more information, see:
https://php.net/ChangeLog-7.php#7.2.13
(* Security fix *)
n/wpa_supplicant-2.7-x86_64-1.txz: Upgraded.
x/mesa-18.3.0-x86_64-1.txz: Upgraded.
x/xf86-video-i740-1.4.0-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-60.3.3-x86_64-1.txz: Upgraded.
This is a bugfix release. For more information, see:
https://www.mozilla.org/en-US/thunderbird/60.3.3/releasenotes/
xfce/thunar-volman-0.9.1-x86_64-1.txz: Upgraded.
a/kernel-generic-4.19.7-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.7-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.7-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.7-x86-1.txz: Upgraded.
k/kernel-source-4.19.7-noarch-1.txz: Upgraded.
n/gnutls-3.6.5-x86_64-1.txz: Upgraded.
This update fixes a security issue:
Bleichenbacher-like side channel leakage in PKCS#1 1.5 verification and
padding oracle verification.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16868
(* Security fix *)
n/nettle-3.4.1-x86_64-1.txz: Upgraded.
This update fixes a security issue:
A Bleichenbacher type side-channel based padding oracle attack was found
in the way nettle handles endian conversion of RSA decrypted PKCS#1 v1.5
data. An attacker who is able to run a process on the same physical core
as the victim process, could use this flaw to extract plaintext or in some
cases downgrade any TLS connections to a vulnerable server.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16869
(* Security fix *)
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
ap/texinfo-6.5-x86_64-7.txz: Rebuilt.
Recompiled against perl-5.28.1.
ap/vim-8.1.0552-x86_64-1.txz: Upgraded.
Compiled against perl-5.28.1.
d/perl-5.28.1-x86_64-1.txz: Upgraded.
Upgraded DBD-mysql-4.049, DBI-1.642, abd IO-Socket-SSL-2.060.
Added Devel-CheckLib-1.13 (needed by DBD-mysql-4.049).
kde/perlkde-4.14.3-x86_64-7.txz: Rebuilt.
Recompiled against perl-5.28.1.
kde/perlqt-4.14.3-x86_64-8.txz: Rebuilt.
Recompiled against perl-5.28.1.
n/epic5-2.0.1-x86_64-7.txz: Rebuilt.
Recompiled against perl-5.28.1.
n/irssi-1.1.1-x86_64-5.txz: Rebuilt.
Recompiled against perl-5.28.1.
n/net-snmp-5.8-x86_64-4.txz: Rebuilt.
Recompiled against perl-5.28.1.
n/ntp-4.2.8p12-x86_64-4.txz: Rebuilt.
Recompiled against perl-5.28.1.
xap/hexchat-2.14.2-x86_64-2.txz: Rebuilt.
Recompiled against perl-5.28.1.
xap/mozilla-thunderbird-60.3.2-x86_64-1.txz: Upgraded.
This is a bugfix release. For more information, see:
https://www.mozilla.org/en-US/thunderbird/60.3.2/releasenotes/
xap/rxvt-unicode-9.22-x86_64-6.txz: Rebuilt.
Recompiled against perl-5.28.1.
xap/vim-gvim-8.1.0552-x86_64-1.txz: Upgraded.
Compiled against perl-5.28.1.
xfce/xfce4-systemload-plugin-1.2.2-x86_64-1.txz: Upgraded.
n/mutt-1.11.0-x86_64-2.txz: Rebuilt.
Put info file in /usr/info and compress it.
Don't include /usr/info/dir.
Thanks to Edward Trumbo.
After upgrading this package, you'll need to reinstall the texinfo package
to restore the missing /usr/info/dir file.
n/wget-1.20-x86_64-1.txz: Upgraded.
a/xfsprogs-4.19.0-x86_64-1.txz: Upgraded.
ap/sudo-1.8.26-x86_64-1.txz: Upgraded.
l/babl-0.1.60-x86_64-1.txz: Upgraded.
n/iptables-1.8.2-x86_64-1.txz: Upgraded.
Compiled against libnftnl-1.1.2.
n/libnftnl-1.1.2-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
n/nftables-0.9.0-x86_64-2.txz: Rebuilt.
Recompiled against libnftnl-1.1.2.
extra/pure-alsa-system/alsa-lib-1.1.7-x86_64-2_alsa.txz: Rebuilt.
Sorry this package had not been recompiled with the patch. Thanks to orbea
for pointing this out.
a/efibootmgr-16-x86_64-2.txz: Rebuilt.
Reverted to previous version. We'd tried this before and it still doesn't
work. Thanks to _RDS_.
a/efivar-35-x86_64-1.txz: Upgraded.
Reverted to previous version. We'd tried this before and it still doesn't
work. Thanks to _RDS_.
a/hwdata-0.317-noarch-1.txz: Upgraded.
a/lvm2-2.03.01-x86_64-1.txz: Upgraded.
a/quota-4.04-x86_64-1.txz: Upgraded.
ap/cups-2.2.9-x86_64-1.txz: Upgraded.
ap/sysstat-12.0.2-x86_64-1.txz: Upgraded.
d/cscope-15.9-x86_64-1.txz: Upgraded.
d/distcc-3.3.2-x86_64-1.txz: Upgraded.
d/nasm-2.14-x86_64-1.txz: Upgraded.
d/oprofile-1.3.0-x86_64-1.txz: Upgraded.
d/rust-1.30.1-x86_64-1.txz: Upgraded.
l/elfutils-0.174-x86_64-1.txz: Upgraded.
l/shared-mime-info-1.10-x86_64-1.txz: Upgraded.
n/samba-4.9.2-x86_64-1.txz: Upgraded.
xap/gimp-2.10.8-x86_64-1.txz: Upgraded.
kde/kde-runtime-4.14.3-x86_64-8.txz: Rebuilt.
Applied upstream patch to fix info and man page display.
Thanks to igadoter and lougavulin.
l/gegl-0.4.12-x86_64-1.txz: Upgraded.
n/bind-9.12.3-x86_64-1.txz: Upgraded.
x/mesa-18.2.4-x86_64-1.txz: Upgraded.
extra/pure-alsa-system/kde-runtime-4.14.3-x86_64-8_alsa.txz: Rebuilt.
Applied upstream patch to fix info and man page display.
Thanks to igadoter and lougavulin.