Commit graph

184 commits

Author SHA1 Message Date
Patrick J Volkerding
d25041e8f5 Wed Jul 10 23:56:13 UTC 2019
a/glibc-zoneinfo-2019b-noarch-1.txz:  Upgraded.
a/kernel-generic-4.19.58-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.19.58-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.19.58-x86_64-1.txz:  Upgraded.
d/Cython-0.29.12-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.19.58-x86-1.txz:  Upgraded.
d/mercurial-5.0.2-x86_64-1.txz:  Upgraded.
d/python3-3.7.4-x86_64-1.txz:  Upgraded.
k/kernel-source-4.19.58-noarch-1.txz:  Upgraded.
l/glib2-2.60.5-x86_64-1.txz:  Upgraded.
n/gnupg2-2.2.17-x86_64-1.txz:  Upgraded.
n/iproute2-5.2.0-x86_64-1.txz:  Upgraded.
n/samba-4.10.6-x86_64-1.txz:  Upgraded.
x/libva-utils-2.5.0-x86_64-1.txz:  Upgraded.
x/mesa-19.1.2-x86_64-1.txz:  Upgraded.
xap/mozilla-firefox-68.0esr-x86_64-1.txz:  Upgraded.
  This release contains security fixes and improvements. Some of the patched
  flaws are considered critical, and could be used to run attacker code and
  install software, requiring no user interaction beyond normal browsing.
  For more information, see:
    https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
    https://www.mozilla.org/en-US/security/advisories/mfsa2019-22/
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9811
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11711
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11712
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11713
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11729
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11715
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11717
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11719
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11730
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11709
  (* Security fix *)
xap/mozilla-thunderbird-60.8.0-x86_64-1.txz:  Upgraded.
  This is a bugfix release.
  For more information, see:
    https://www.mozilla.org/en-US/thunderbird/60.8.0/releasenotes/
xfce/garcon-0.6.3-x86_64-2.txz:  Rebuilt.
  Patched crash bug.
  Installed gtk-doc HTML docs.
  Thanks to Robby Workman.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
testing/packages/blueman-2.1.1-x86_64-1.txz:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2019-07-11 08:59:45 +02:00
Patrick J Volkerding
db3b9f73c4 Wed Jul 3 21:02:58 UTC 2019
a/kernel-generic-4.19.57-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.19.57-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.19.57-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.19.57-x86-1.txz:  Upgraded.
k/kernel-source-4.19.57-noarch-1.txz:  Upgraded.
l/Mako-1.0.13-x86_64-1.txz:  Upgraded.
l/SDL2_image-2.0.5-x86_64-1.txz:  Upgraded.
n/postfix-3.4.6-x86_64-1.txz:  Upgraded.
xap/blueman-2.0.8-x86_64-2.txz:  Rebuilt.
  Reverted to blueman-2.0.8 as I'm also seeing connection issues here with
  the newer version.
xap/xscreensaver-5.43-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
testing/packages/blueman-2.1-x86_64-1.txz:  Upgraded.
  This doesn't seem to be working properly. Any patches are welcome.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2019-07-04 08:59:47 +02:00
Patrick J Volkerding
ed5de188b1 Tue Jul 2 20:36:38 UTC 2019
d/python-setuptools-41.0.1-x86_64-2.txz:  Rebuilt.
l/freetype-2.10.1-x86_64-1.txz:  Upgraded.
l/imagemagick-6.9.10_51-x86_64-1.txz:  Upgraded.
n/php-7.3.7-x86_64-1.txz:  Upgraded.
2019-07-03 08:59:47 +02:00
Patrick J Volkerding
5c403a0983 Sat Jun 29 22:49:01 UTC 2019
a/hwdata-0.325-noarch-1.txz:  Upgraded.
ap/hplip-3.19.6-x86_64-1.txz:  Upgraded.
n/irssi-1.2.1-x86_64-1.txz:  Upgraded.
  This update fixes a security issue: Use after free when sending SASL login
  to the server found by ilbelkyr. May affect the stability of Irssi. SASL
  logins may fail, especially during (manual and automated) reconnect.
  For more information, see:
    https://irssi.org/2019/06/29/irssi-1.2.1-1.1.3-1.0.8-released/
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13045
  (* Security fix *)
xfce/Thunar-1.8.7-x86_64-1.txz:  Upgraded.
2019-06-30 08:59:47 +02:00
Patrick J Volkerding
d633088070 Fri Jun 28 18:44:41 UTC 2019
a/bzip2-1.0.7-x86_64-1.txz:  Upgraded.
a/kernel-firmware-20190628_70e4394-noarch-1.txz:  Upgraded.
l/libssh-0.9.0-x86_64-1.txz:  Upgraded.
n/dhcpcd-7.2.3-x86_64-1.txz:  Upgraded.
n/nfs-utils-2.4.1-x86_64-1.txz:  Upgraded.
2019-06-29 08:59:44 +02:00
Patrick J Volkerding
690121316c Thu Jun 27 19:07:20 UTC 2019
ap/vim-8.1.1601-x86_64-1.txz:  Upgraded.
  Built with --disable-canberra. Thanks to Markus Wiesner.
l/harfbuzz-2.5.3-x86_64-1.txz:  Upgraded.
n/nettle-3.5.1-x86_64-1.txz:  Upgraded.
n/nftables-0.9.1-x86_64-1.txz:  Upgraded.
t/texlive-2019.190626-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
  Thanks to Johannes Schoepfer.
xap/blueman-2.1-x86_64-1.txz:  Upgraded.
  Thanks to Robby Workman.
xap/vim-gvim-8.1.1601-x86_64-1.txz:  Upgraded.
2019-06-28 08:59:46 +02:00
Patrick J Volkerding
96e8885d22 Wed Jun 26 20:14:26 UTC 2019
l/giflib-5.2.1-x86_64-2.txz:  Rebuilt.
  Install obsolete utilities (if they were built).
  If you'd like to see them continued, let upstream know.
l/libarchive-3.4.0-x86_64-2.txz:  Rebuilt.
  Recompiled against nettle-3.5.
l/libzip-1.5.2-x86_64-2.txz:  Rebuilt.
  Recompiled against nettle-3.5.
n/gnutls-3.6.8-x86_64-2.txz:  Rebuilt.
  Recompiled against nettle-3.5.
n/nettle-3.5-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
x/xorg-server-1.20.5-x86_64-2.txz:  Rebuilt.
  Recompiled against nettle-3.5.
x/xorg-server-xephyr-1.20.5-x86_64-2.txz:  Rebuilt.
  Recompiled against nettle-3.5.
x/xorg-server-xnest-1.20.5-x86_64-2.txz:  Rebuilt.
  Recompiled against nettle-3.5.
x/xorg-server-xvfb-1.20.5-x86_64-2.txz:  Rebuilt.
  Recompiled against nettle-3.5.
extra/tigervnc/tigervnc-1.9.0-x86_64-2.txz:  Rebuilt.
  Recompiled against nettle-3.5.
2019-06-27 08:59:47 +02:00
Patrick J Volkerding
352adad5bf Mon Jun 24 18:47:52 UTC 2019
ap/mc-4.8.23-x86_64-1.txz:  Upgraded.
l/imagemagick-6.9.10_50-x86_64-1.txz:  Upgraded.
l/pygobject3-3.32.2-x86_64-1.txz:  Upgraded.
n/php-7.3.6-x86_64-1.txz:  Upgraded.
x/libinput-1.13.3-x86_64-1.txz:  Upgraded.
2019-06-25 08:59:47 +02:00
Patrick J Volkerding
02076d51ff Thu Jun 20 18:08:56 UTC 2019
l/cairo-1.17.2-x86_64-1.txz:  Upgraded.
l/expat-2.2.7-x86_64-1.txz:  Upgraded.
n/bind-9.14.3-x86_64-1.txz:  Upgraded.
  Fixed a race condition in dns_dispatch_getnext() that could cause an
  assertion failure if a significant number of incoming packets were rejected.
  For more information, see:
    https://kb.isc.org/docs/cve-2019-6471
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6471
  (* Security fix *)
x/igt-gpu-tools-1.24-x86_64-1.txz:  Upgraded.
x/xorgproto-2019.1-x86_64-1.txz:  Upgraded.
xap/xlockmore-5.57-x86_64-1.txz:  Upgraded.
2019-06-21 08:59:30 +02:00
Patrick J Volkerding
eae1dffeec Tue Jun 18 21:46:31 UTC 2019
a/kernel-firmware-20190618_acb56f2-noarch-1.txz:  Upgraded.
a/kernel-generic-4.19.52-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.19.52-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.19.52-x86_64-1.txz:  Upgraded.
ap/mariadb-10.3.16-x86_64-1.txz:  Upgraded.
ap/nano-4.3-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.19.52-x86-1.txz:  Upgraded.
d/llvm-8.0.0-x86_64-3.txz:  Rebuilt.
  Added lld-8.0.0. Thanks to TheRealGrogan.
d/meson-0.51.0-x86_64-1.txz:  Upgraded.
d/vala-0.44.5-x86_64-1.txz:  Upgraded.
k/kernel-source-4.19.52-noarch-1.txz:  Upgraded.
  This update fixes "SACK Panic", a remote denial-of-service issue.
  For more information, see:
    https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-001.md
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11477
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11478
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11479
  (* Security fix *)
l/SDL2-2.0.9-x86_64-4.txz:  Rebuilt.
  Include libSDL2_test.a and libSDL2main.a. Thanks to dugan.
l/gtk+3-3.24.9-x86_64-1.txz:  Upgraded.
n/ca-certificates-20190617-noarch-1.txz:  Upgraded.
x/encodings-1.0.5-noarch-1.txz:  Upgraded.
x/libX11-1.6.8-x86_64-1.txz:  Upgraded.
xap/mozilla-firefox-60.7.1esr-x86_64-1.txz:  Upgraded.
  This release contains a security fix and improvements. The patched flaw is
  considered critical, and could be used to run attacker code and install
  software, requiring no user interaction beyond normal browsing.
  For more information, see:
    https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
    https://www.mozilla.org/en-US/security/advisories/mfsa2019-18/
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11707
  (* Security fix *)
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2019-06-19 08:59:48 +02:00
Patrick J Volkerding
76e0d09efe Wed May 29 19:11:22 UTC 2019
a/e2fsprogs-1.45.2-x86_64-1.txz:  Upgraded.
d/Cython-0.29.9-x86_64-1.txz:  Upgraded.
l/imagemagick-6.9.10_47-x86_64-1.txz:  Upgraded.
n/iptables-1.8.3-x86_64-1.txz:  Upgraded.
n/libnftnl-1.1.3-x86_64-1.txz:  Upgraded.
n/php-7.2.19-x86_64-1.txz:  Upgraded.
  This update fixes bugs and security issues:
  Uninitialized read in gdImageCreateFromXbm
  Out-of-bounds read in iconv.c:_php_iconv_mime_decode due to integer overflow
  heap-buffer-overflow on php_jpg_get16
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11038
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11039
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11040
  (* Security fix *)
x/xterm-346-x86_64-1.txz:  Upgraded.
xap/gnuplot-5.2.7-x86_64-1.txz:  Upgraded.
xap/network-manager-applet-1.8.22-x86_64-1.txz:  Upgraded.
2019-05-30 08:59:49 +02:00
Patrick J Volkerding
03f332c882 Tue May 28 19:03:49 UTC 2019
a/openssl-solibs-1.1.1c-x86_64-1.txz:  Upgraded.
l/libevent-2.1.10-x86_64-1.txz:  Upgraded.
n/gnupg2-2.2.16-x86_64-1.txz:  Upgraded.
n/gnutls-3.6.8-x86_64-1.txz:  Upgraded.
n/openssl-1.1.1c-x86_64-1.txz:  Upgraded.
  This update fixes a security issue:
  Prevent over long nonces in ChaCha20-Poly1305.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1543
  (* Security fix *)
2019-05-29 08:59:47 +02:00
Patrick J Volkerding
fafc162864 Wed May 22 23:30:54 UTC 2019
a/kernel-generic-4.19.45-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.19.45-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.19.45-x86_64-1.txz:  Upgraded.
ap/texinfo-6.6-x86_64-2.txz:  Rebuilt.
  Recompiled against perl-5.30.0.
ap/vim-8.1.1365-x86_64-1.txz:  Upgraded.
  Compiled against perl-5.30.0.
d/bison-3.4.1-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.19.45-x86-1.txz:  Upgraded.
d/parallel-20190522-noarch-1.txz:  Upgraded.
d/perl-5.30.0-x86_64-1.txz:  Upgraded.
  Module upgraded: Net-SSLeay-1.88
d/strace-5.1-x86_64-1.txz:  Upgraded.
k/kernel-source-4.19.45-noarch-1.txz:  Upgraded.
kde/perlkde-4.14.3-x86_64-8.txz:  Rebuilt.
  Recompiled against perl-5.30.0.
kde/perlqt-4.14.3-x86_64-9.txz:  Rebuilt.
  Recompiled against perl-5.30.0.
l/glib2-2.60.3-x86_64-1.txz:  Upgraded.
n/curl-7.65.0-x86_64-1.txz:  Upgraded.
  This release fixes the following security issues:
  Integer overflows in curl_url_set
  tftp: use the current blksize for recvfrom()
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5435
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5436
  (* Security fix *)
n/epic5-2.1.1-x86_64-2.txz:  Rebuilt.
  Recompiled against perl-5.30.0.
n/irssi-1.2.0-x86_64-2.txz:  Rebuilt.
  Recompiled against perl-5.30.0.
n/net-snmp-5.8-x86_64-5.txz:  Rebuilt.
  Recompiled against perl-5.30.0.
n/ntp-4.2.8p13-x86_64-2.txz:  Rebuilt.
  Recompiled against perl-5.30.0.
n/samba-4.10.4-x86_64-1.txz:  Upgraded.
x/mesa-19.0.5-x86_64-1.txz:  Upgraded.
xap/hexchat-2.14.2-x86_64-4.txz:  Rebuilt.
  Recompiled against perl-5.30.0.
xap/rxvt-unicode-9.22-x86_64-7.txz:  Rebuilt.
  Recompiled against perl-5.30.0.
xap/vim-gvim-8.1.1365-x86_64-1.txz:  Upgraded.
  Compiled against perl-5.30.0.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2019-05-23 08:59:47 +02:00
Patrick J Volkerding
3fbd9748a3 Sun May 19 01:10:53 UTC 2019
a/file-5.37-x86_64-1.txz:  Upgraded.
l/python-requests-2.22.0-x86_64-1.txz:  Upgraded.
n/iputils-20190515-x86_64-1.txz:  Upgraded.
xap/mozilla-thunderbird-60.7.0-x86_64-1.txz:  Upgraded.
  This is a bugfix release.
  For more information, see:
    https://www.mozilla.org/en-US/thunderbird/60.7.0/releasenotes/
2019-05-19 08:59:47 +02:00
Patrick J Volkerding
38b94979d8 Fri May 17 05:06:06 UTC 2019
a/kernel-generic-4.19.44-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.19.44-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.19.44-x86_64-1.txz:  Upgraded.
ap/cups-filters-1.23.0-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.19.44-x86-1.txz:  Upgraded.
k/kernel-source-4.19.44-noarch-1.txz:  Upgraded.
l/libsoup-2.66.2-x86_64-1.txz:  Upgraded.
n/bind-9.14.2-x86_64-1.txz:  Upgraded.
n/stunnel-5.54-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2019-05-17 11:59:47 +02:00
Patrick J Volkerding
d42cbc1006 Thu May 16 04:55:49 UTC 2019
a/kernel-firmware-20190514_711d329-noarch-1.txz:  Upgraded.
a/kernel-generic-4.19.43-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.19.43-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.19.43-x86_64-1.txz:  Upgraded.
ap/hplip-3.19.5-x86_64-1.txz:  Upgraded.
ap/mariadb-10.3.15-x86_64-1.txz:  Upgraded.
  This update fixes denial-of-service security issues.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2614
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2627
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2628
  (* Security fix *)
d/cmake-3.14.4-x86_64-1.txz:  Upgraded.
d/gcc-9.1.0-x86_64-5.txz:  Rebuilt.
  Rebuilt with --enable-clocale=gnu. This is recommended by Linux From
  Scratch, and while it doesn't seem to fix the issue with kernel compiles
  failing with some locales, it probably doesn't hurt.
d/gcc-brig-9.1.0-x86_64-5.txz:  Rebuilt.
d/gcc-g++-9.1.0-x86_64-5.txz:  Rebuilt.
  Applied patch: PR libstdc++/90397 fix std::variant friend declaration
  This fixes problems compiling programs that use std::variant with clang.
  Thanks to orbea.
d/gcc-gdc-9.1.0-x86_64-5.txz:  Rebuilt.
d/gcc-gfortran-9.1.0-x86_64-5.txz:  Rebuilt.
d/gcc-gnat-9.1.0-x86_64-5.txz:  Rebuilt.
d/gcc-go-9.1.0-x86_64-5.txz:  Rebuilt.
d/gcc-objc-9.1.0-x86_64-5.txz:  Rebuilt.
d/kernel-headers-4.19.43-x86-1.txz:  Upgraded.
d/rust-1.34.2-x86_64-1.txz:  Upgraded.
k/kernel-source-4.19.43-noarch-1.txz:  Upgraded.
l/librsvg-2.44.14-x86_64-1.txz:  Upgraded.
n/samba-4.10.3-x86_64-1.txz:  Upgraded.
  This is a security release in order to address the following defect:
  The checksum validation in the S4U2Self handler in the embedded Heimdal KDC
  did not first confirm that the checksum was keyed, allowing replacement of
  the requested target (client) principal.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16860
  (* Security fix *)
x/xterm-345-x86_64-1.txz:  Upgraded.
xap/rdesktop-1.8.5-x86_64-1.txz:  Upgraded.
  This update fixes security issues:
  Add bounds checking to protocol handling in order to fix many
  security problems when communicating with a malicious server.
  (* Security fix *)
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2019-05-16 17:59:33 +02:00
Patrick J Volkerding
d42614785a Mon May 13 22:53:13 UTC 2019
a/aaa_elflibs-15.0-x86_64-8.txz:  Rebuilt.
  Upgraded: libcap.so.2.27, libglib-2.0.so.0.6000.2,
  libgmodule-2.0.so.0.6000.2, libgobject-2.0.so.0.6000.2,
  libgthread-2.0.so.0.6000.2, libpng16.so.16.37.0, libstdc++.so.6.0.26.
a/e2fsprogs-1.45.1-x86_64-1.txz:  Upgraded.
ap/alsa-utils-1.1.9-x86_64-1.txz:  Upgraded.
ap/man-pages-5.01-noarch-1.txz:  Upgraded.
d/gdb-8.3-x86_64-1.txz:  Upgraded.
l/Mako-1.0.10-x86_64-1.txz:  Upgraded.
l/alsa-lib-1.1.9-x86_64-1.txz:  Upgraded.
l/alsa-plugins-1.1.9-x86_64-1.txz:  Upgraded.
l/imagemagick-6.9.10_45-x86_64-1.txz:  Upgraded.
l/mozilla-nss-3.44-x86_64-1.txz:  Upgraded.
l/utf8proc-2.4.0-x86_64-1.txz:  Upgraded.
n/iproute2-5.1.0-x86_64-1.txz:  Upgraded.
n/nfs-utils-2.3.4-x86_64-1.txz:  Upgraded.
extra/pure-alsa-system/alsa-lib-1.1.9-x86_64-1_alsa.txz:  Upgraded.
extra/pure-alsa-system/alsa-plugins-1.1.9-x86_64-1_alsa.txz:  Upgraded.
2019-05-14 08:59:47 +02:00
Patrick J Volkerding
1968344c50 Tue May 7 00:11:33 UTC 2019
a/xfsprogs-5.0.0-x86_64-1.txz:  Upgraded.
d/gcc-9.1.0-x86_64-3.txz:  Rebuilt.
  Patched to fix an internal compiler error (PR90303).
  Thanks to orbea.
d/gcc-brig-9.1.0-x86_64-3.txz:  Rebuilt.
d/gcc-g++-9.1.0-x86_64-3.txz:  Rebuilt.
d/gcc-gdc-9.1.0-x86_64-3.txz:  Rebuilt.
d/gcc-gfortran-9.1.0-x86_64-3.txz:  Rebuilt.
d/gcc-gnat-9.1.0-x86_64-3.txz:  Rebuilt.
d/gcc-go-9.1.0-x86_64-3.txz:  Rebuilt.
d/gcc-objc-9.1.0-x86_64-3.txz:  Rebuilt.
n/postfix-3.4.5-x86_64-2.txz:  Rebuilt.
  Added some additional tools. Thanks to Markus Wiesner.
2019-05-07 08:59:46 +02:00
Patrick J Volkerding
d23d57452f Sat May 4 18:44:36 UTC 2019
a/kernel-generic-4.19.39-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.19.39-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.19.39-x86_64-1.txz:  Upgraded.
d/gcc-9.1.0-x86_64-2.txz:  Rebuilt.
d/gcc-brig-9.1.0-x86_64-2.txz:  Rebuilt.
d/gcc-g++-9.1.0-x86_64-2.txz:  Rebuilt.
d/gcc-gdc-9.1.0-x86_64-2.txz:  Added.
  This package contains the newly added D language support. The other GCC
  packages were rebuilt without any functional changes.
d/gcc-gfortran-9.1.0-x86_64-2.txz:  Rebuilt.
d/gcc-gnat-9.1.0-x86_64-2.txz:  Rebuilt.
d/gcc-go-9.1.0-x86_64-2.txz:  Rebuilt.
d/gcc-objc-9.1.0-x86_64-2.txz:  Rebuilt.
d/kernel-headers-4.19.39-x86-1.txz:  Upgraded.
k/kernel-source-4.19.39-noarch-1.txz:  Upgraded.
l/imagemagick-6.9.10_44-x86_64-1.txz:  Upgraded.
l/v4l-utils-1.16.6-x86_64-1.txz:  Upgraded.
n/dhcpcd-7.2.2-x86_64-1.txz:  Upgraded.
x/vulkan-sdk-1.1.106.0-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2019-05-05 08:59:47 +02:00
Patrick J Volkerding
142b0e6d20 Wed May 1 19:49:49 UTC 2019
ap/tmux-2.9a-x86_64-1.txz:  Upgraded.
n/dovecot-2.3.6-x86_64-1.txz:  Upgraded.
  This update fixes two security issues:
  Submission-login crashed with signal 11 due to null pointer access when
  authentication was aborted by disconnecting.
  Submission-login crashed when authentication was started over TLS secured
  channel and invalid authentication message was sent.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11494
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11499
  (* Security fix *)
n/php-7.2.18-x86_64-1.txz:  Upgraded.
  This update fixes bugs and a security issue
  Heap-buffer-overflow in _estrndup via exif_process_IFD_TAG.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11036
  (* Security fix *)
xfce/exo-0.12.5-x86_64-1.txz:  Upgraded.
2019-05-02 08:59:46 +02:00
Patrick J Volkerding
bfbeefa9c9 Fri Apr 26 18:55:10 UTC 2019
ap/tmux-2.9-x86_64-1.txz:  Upgraded.
d/python-pip-19.1-x86_64-1.txz:  Upgraded.
d/rust-1.34.1-x86_64-1.txz:  Upgraded.
d/subversion-1.12.0-x86_64-1.txz:  Upgraded.
n/bind-9.14.1-x86_64-1.txz:  Upgraded.
  This update fixes security issues:
  The TCP client quota set using the tcp-clients option could be exceeded
  in some cases. This could lead to exhaustion of file descriptors.
  In certain configurations, named could crash with an assertion failure if
  nxdomain-redirect was in use and a redirected query resulted in an NXDOMAIN
  from the cache.
  For more information, see:
    https://kb.isc.org/docs/cve-2018-5743
    https://kb.isc.org/docs/cve-2019-6467
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5743
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6467
  (* Security fix *)
n/dhcpcd-7.2.1-x86_64-1.txz:  Upgraded.
2019-04-27 08:59:45 +02:00
Patrick J Volkerding
c51a629483 Mon Apr 22 20:00:44 UTC 2019
a/aaa_terminfo-6.1_20190420-x86_64-1.txz:  Upgraded.
l/ncurses-6.1_20190420-x86_64-1.txz:  Upgraded.
n/wpa_supplicant-2.8-x86_64-1.txz:  Upgraded.
xap/xpdf-4.00-x86_64-4.txz:  Rebuilt.
  Recompiled with -DSYSTEM_XPDFRC="/etc/xpdfrc". Thanks to J_W.
2019-04-23 08:59:44 +02:00
Patrick J Volkerding
1c4f74fa29 Sun Apr 21 18:45:54 UTC 2019
a/bash-5.0.007-x86_64-1.txz:  Upgraded.
d/parallel-20190422-noarch-1.txz:  Upgraded.
n/NetworkManager-1.18.1-x86_64-1.txz:  Upgraded.
2019-04-22 08:59:43 +02:00
Patrick J Volkerding
e2bd8d2383 Thu Apr 18 21:13:58 UTC 2019
ap/ksh93-20190416_7d7bba3e-x86_64-1.txz:  Upgraded.
ap/sysstat-12.1.4-x86_64-1.txz:  Upgraded.
l/gvfs-1.40.1-x86_64-2.txz:  Rebuilt.
  Recompiled against libcdio-2.1.0.
l/icu4c-64.2-x86_64-1.txz:  Upgraded.
l/libcddb-1.3.2-x86_64-6.txz:  Rebuilt.
  Recompiled against libcdio-2.1.0.
l/libcdio-2.1.0-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
l/libcdio-paranoia-10.2+2.0.0-x86_64-2.txz:  Rebuilt.
  Recompiled against libcdio-2.1.0.
l/zstd-1.4.0-x86_64-1.txz:  Upgraded.
n/dhcpcd-7.2.0-x86_64-1.txz:  Upgraded.
n/dovecot-2.3.5.2-x86_64-1.txz:  Upgraded.
  This update fixes a security issue:
  Trying to login with 8bit username containing invalid UTF8 input causes
  auth process to crash if auth policy is enabled. This could be used rather
  easily to cause a DoS. Similar crash also happens during mail delivery
  when using invalid UTF8 in From or Subject header when OX push
  notification driver is used.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10691
  (* Security fix *)
n/nghttp2-1.38.0-x86_64-1.txz:  Upgraded.
n/openssh-8.0p1-x86_64-1.txz:  Upgraded.
  This release contains a mitigation for a weakness in the scp(1) tool
  and protocol (CVE-2019-6111): when copying files from a remote system
  to a local directory, scp(1) did not verify that the filenames that
  the server sent matched those requested by the client. This could
  allow a hostile server to create or clobber unexpected local files
  with attacker-controlled content.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6111
  (* Security fix *)
xap/MPlayer-20190418-x86_64-1.txz:  Upgraded.
  Compiled against libcdio-2.1.0.
xap/audacious-plugins-3.10.1-x86_64-2.txz:  Rebuilt.
  Recompiled against libcdio-2.1.0.
extra/pure-alsa-system/MPlayer-20190418-x86_64-1_alsa.txz:  Upgraded.
  Compiled against libcdio-2.1.0.
extra/pure-alsa-system/audacious-plugins-3.10.1-x86_64-2_alsa.txz:  Rebuilt.
  Recompiled against libcdio-2.1.0.
2019-04-19 08:59:44 +02:00
Patrick J Volkerding
07d5f96c9f Sat Apr 13 19:44:43 UTC 2019
l/imagemagick-6.9.10_40-x86_64-1.txz:  Upgraded.
l/opus-1.3.1-x86_64-1.txz:  Upgraded.
n/libqmi-1.22.4-x86_64-1.txz:  Upgraded.
2019-04-14 08:59:45 +02:00
Patrick J Volkerding
0be8c4f372 Fri Apr 12 22:13:09 UTC 2019
a/gawk-5.0.0-x86_64-1.txz:  Upgraded.
ap/pamixer-1.4-x86_64-2.txz:  Rebuilt.
  Recompiled against boost-1.70.0.
ap/vim-8.1.1157-x86_64-1.txz:  Upgraded.
d/cmake-3.14.2-x86_64-1.txz:  Upgraded.
e/emacs-26.2-x86_64-1.txz:  Upgraded.
kde/calligra-2.9.11-x86_64-30.txz:  Rebuilt.
  Recompiled against boost-1.70.0.
l/akonadi-1.13.0-x86_64-12.txz:  Rebuilt.
  Recompiled against boost-1.70.0.
l/boost-1.70.0-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
  Note: Boost now provides its own BoostConfig.cmake config file, and it may
  not work with all existing code (here, calligra stumbled over it). At this
  point it's not clear if the included cmake config files are buggy, or if
  affected projects need to change something in order to use them, but there's
  an easy workaround to use cmake's FindBoost.cmake (as was used previously).
  Add this to the call to cmake from any affected project (if cmake fails with
  an error: "No suitable build variant has been found."):
  -DBoost_NO_BOOST_CMAKE=ON
n/libmbim-1.18.2-x86_64-1.txz:  Upgraded.
n/nfs-utils-2.3.3-x86_64-3.txz:  Rebuilt.
  rc.nfsd: don't try to create the nfsv4recoverydir - the build script will
  determine the directory to use and include it in the package.
  rc.nfsd: drop 2.4 kernel support, and use better code for mounting the nfsd
  filesystem.
  Thanks to shasta.
x/libwacom-0.33-x86_64-1.txz:  Upgraded.
xap/vim-gvim-8.1.1157-x86_64-1.txz:  Upgraded.
2019-04-13 08:59:41 +02:00
Patrick J Volkerding
98da285765 Mon Apr 8 20:39:32 UTC 2019
a/glibc-zoneinfo-2019a-noarch-1.txz:  Upgraded.
a/grub-2.02-x86_64-5.txz:  Rebuilt.
  Support F2FS filesystem. Thanks to Nille_kungen.
ap/cups-filters-1.22.5-x86_64-1.txz:  Upgraded.
ap/itstool-2.0.6-x86_64-1.txz:  Upgraded.
d/python-setuptools-41.0.0-x86_64-1.txz:  Upgraded.
l/gobject-introspection-1.60.1-x86_64-1.txz:  Upgraded.
l/imagemagick-6.9.10_39-x86_64-1.txz:  Upgraded.
l/libcroco-0.6.13-x86_64-1.txz:  Upgraded.
l/libnotify-0.7.8-x86_64-1.txz:  Upgraded.
n/cifs-utils-6.9-x86_64-1.txz:  Upgraded.
n/nfs-utils-2.3.3-x86_64-2.txz:  Rebuilt.
  Include recovery directory. Thanks to upnort.
n/samba-4.10.2-x86_64-1.txz:  Upgraded.
  This is a security release in order to address the following defects:
  World writable files in Samba AD DC private/ dir.
  Save registry file outside share as unprivileged user.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3870
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3880
  (* Security fix *)
x/libva-2.4.1-x86_64-1.txz:  Upgraded.
x/pixman-0.38.2-x86_64-1.txz:  Upgraded.
xap/gimp-2.10.10-x86_64-1.txz:  Upgraded.
2019-04-09 08:59:45 +02:00
Patrick J Volkerding
0b0cfa9571 Thu Apr 4 00:45:18 UTC 2019
a/aaa_elflibs-15.0-x86_64-7.txz:  Rebuilt.
  Added: libhistory.so.8.0, libreadline.so.8.0.
a/gawk-4.2.1-x86_64-3.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
a/kernel-generic-4.19.33-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.19.33-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.19.33-x86_64-1.txz:  Upgraded.
a/util-linux-2.33.1-x86_64-3.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
ap/bc-1.07.1-x86_64-3.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
ap/gphoto2-2.5.20-x86_64-2.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
ap/gutenprint-5.3.1-x86_64-2.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
ap/mariadb-10.3.14-x86_64-1.txz:  Upgraded.
ap/xorriso-1.5.0-x86_64-2.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
d/clisp-2.49_20181112_df3b9f6fd-x86_64-2.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
d/gdb-8.2.1-x86_64-3.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
d/guile-2.2.4-x86_64-2.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
d/kernel-headers-4.19.33-x86-1.txz:  Upgraded.
d/python-2.7.16-x86_64-2.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
d/python3-3.7.3-x86_64-2.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
d/ruby-2.6.2-x86_64-2.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
k/kernel-source-4.19.33-noarch-1.txz:  Upgraded.
kde/analitza-4.14.3-x86_64-5.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
l/fluidsynth-1.1.11-x86_64-2.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
l/gdbm-1.18.1-x86_64-2.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
l/hunspell-1.6.2-x86_64-3.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
l/mozjs52-52.9.0esr-x86_64-2.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
l/parted-3.2-x86_64-5.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
l/pcre2-10.32-x86_64-2.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
l/pilot-link-0.12.5-x86_64-14.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
l/readline-8.0.000-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
n/NetworkManager-1.16.0-x86_64-2.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
n/bluez-5.50-x86_64-2.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
n/gnupg-1.4.23-x86_64-2.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
n/gnupg2-2.2.15-x86_64-2.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
n/gnutls-3.6.7.1-x86_64-1.txz:  Upgraded.
n/lftp-4.8.4-x86_64-4.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
n/netkit-ftp-0.17-x86_64-5.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
n/nftables-0.9.0-x86_64-3.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
n/php-7.2.17-x86_64-1.txz:  Upgraded.
  This update fixes bugs and a security issue:
  rename() across the device may allow unwanted access during processing.
  (* Security fix *)
n/samba-4.10.1-x86_64-1.txz:  Upgraded.
  Compiled against readline-8.0.000.
n/tftp-hpa-5.2-x86_64-5.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
n/wpa_supplicant-2.7-x86_64-4.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
xap/fvwm-2.6.8-x86_64-2.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
xap/gftp-2.0.19-x86_64-8.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
xap/gnuchess-6.2.5-x86_64-4.txz:  Rebuilt.
xap/xine-ui-0.99.10-x86_64-3.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
extra/pure-alsa-system/fluidsynth-1.1.11-x86_64-2_alsa.txz:  Rebuilt.
  Recompiled against readline-8.0.000.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2019-04-04 08:59:45 +02:00
Patrick J Volkerding
caa5f28b83 Tue Apr 2 20:30:22 UTC 2019
a/hwdata-0.322-noarch-1.txz:  Upgraded.
a/kernel-firmware-20190402_67b7579-noarch-1.txz:  Upgraded.
a/shadow-4.6-x86_64-2.txz:  Rebuilt.
  adduser: reprompt on invalid user input. Thanks to ttk.
ap/ghostscript-9.26-x86_64-2.txz:  Rebuilt.
  Fixes security issues:
  A specially crafted PostScript file could have access to the file system
  outside of the constrains imposed by -dSAFER.
  Transient procedures can allow access to system operators, leading to
  remote code execution.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3835
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3838
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6116
  (* Security fix *)
d/vala-0.44.2-x86_64-1.txz:  Upgraded.
l/glib-networking-2.60.1-x86_64-1.txz:  Upgraded.
l/imagemagick-6.9.10_36-x86_64-1.txz:  Upgraded.
l/python-pillow-6.0.0-x86_64-1.txz:  Upgraded.
n/wget-1.20.2-x86_64-1.txz:  Upgraded.
  Fixed an unspecified buffer overflow vulnerability.
  (* Security fix *)
2019-04-03 08:59:45 +02:00
Patrick J Volkerding
df86158dc5 Sun Mar 31 18:51:16 UTC 2019
a/quota-4.05-x86_64-1.txz:  Upgraded.
d/cmake-3.14.1-x86_64-1.txz:  Upgraded.
d/patchelf-0.10-x86_64-1.txz:  Upgraded.
l/harfbuzz-2.4.0-x86_64-1.txz:  Upgraded.
l/utf8proc-2.3.0-x86_64-1.txz:  Upgraded.
n/httpd-2.4.39-x86_64-1.txz:  Upgraded.
n/iputils-20190324-x86_64-1.txz:  Upgraded.
n/postfix-3.4.5-x86_64-1.txz:  Upgraded.
2019-04-01 08:59:43 +02:00
Patrick J Volkerding
7aa0551f5b Fri Mar 29 18:24:36 UTC 2019
a/aaa_elflibs-15.0-x86_64-6.txz:  Rebuilt.
  Upgraded: libelf-0.176.so, libpcre.so.1.2.11, libglib-2.0.so.0.6000.0,
  libgmodule-2.0.so.0.6000.0, libgobject-2.0.so.0.6000.0,
  libgthread-2.0.so.0.6000.0, libtdb.so.1.4.0.
  Temporarily added: libicudata.so.63.1, libicui18n.so.63.1, libicuio.so.63.1,
  libicutest.so.63.1, libicutu.so.63.1, libicuuc.so.63.1.
a/xfsprogs-4.20.0-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-64.1.
ap/sqlite-3.27.2-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-64.1.
kde/calligra-2.9.11-x86_64-29.txz:  Rebuilt.
  Recompiled against icu4c-64.1.
kde/kdepimlibs-4.14.10-x86_64-7.txz:  Rebuilt.
  Recompiled to pull in new gpgme++ header files.
l/boost-1.69.0-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-64.1.
l/ffmpeg-3.4.6-x86_64-1.txz:  Upgraded.
l/giflib-5.1.9-x86_64-1.txz:  Upgraded.
l/harfbuzz-2.3.1-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-64.1.
l/icu4c-64.1-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
l/libical-3.0.4-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-64.1.
l/libvisio-0.1.6-x86_64-6.txz:  Rebuilt.
  Recompiled against icu4c-64.1.
l/qt-4.8.7-x86_64-12.txz:  Rebuilt.
  Recompiled against icu4c-64.1.
l/raptor2-2.0.15-x86_64-7.txz:  Rebuilt.
  Recompiled against icu4c-64.1.
l/v4l-utils-1.16.5-x86_64-1.txz:  Upgraded.
n/dovecot-2.3.5.1-x86_64-1.txz:  Upgraded.
  Missing input buffer size validation leads into arbitrary buffer overflow
  when reading fts or pop3 uidl header from Dovecot index. Exploiting this
  requires direct write access to the index files.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7524
  (* Security fix *)
  Compiled against icu4c-64.1.
n/gpgme-1.13.0-x86_64-1.txz:  Upgraded.
n/php-7.2.16-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-64.1.
n/postfix-3.4.4-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-64.1.
n/tin-2.4.3-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-64.1.
n/whois-5.4.2-x86_64-1.txz:  Upgraded.
t/texlive-2018.180822-x86_64-5.txz:  Rebuilt.
  Recompiled against icu4c-64.1.
x/libinput-1.13.0-x86_64-1.txz:  Upgraded.
x/mesa-19.0.1-x86_64-1.txz:  Upgraded.
x/vulkan-sdk-1.1.101.0-x86_64-1.txz:  Upgraded.
extra/pure-alsa-system/ffmpeg-3.4.6-x86_64-1_alsa.txz:  Upgraded.
2019-03-30 08:59:44 +01:00
Patrick J Volkerding
df07d8b7cd Wed Mar 27 20:37:56 UTC 2019
a/kernel-generic-4.19.32-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.19.32-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.19.32-x86_64-1.txz:  Upgraded.
ap/hplip-3.19.3-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.19.32-x86-1.txz:  Upgraded.
d/python3-3.7.3-x86_64-1.txz:  Upgraded.
  Fixed bugs and the following security issues:
  bpo-36216: Changes urlsplit() to raise ValueError when the URL contains
  characters that decompose under IDNA encoding (NFKC-normalization) into
  characters that affect how the URL is parsed.
  bpo-35746: [CVE-2019-5010] Fix a NULL pointer deref in ssl module. The
  cert parser did not handle CRL distribution points with empty DP or URI
  correctly. A malicious or buggy certificate can result into segfault.
  Vulnerability (TALOS-2018-0758) reported by Colin Read and Nicolas Edet
  of Cisco.
  bpo-35121: Don't send cookies of domain A without Domain attribute to
  domain B when domain A is a suffix match of domain B while using a
  cookiejar with http.cookiejar.DefaultCookiePolicy policy.
  Patch by Karthikeyan Singaravelan.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5010
  (* Security fix *)
d/scons-3.0.5-x86_64-1.txz:  Upgraded.
k/kernel-source-4.19.32-noarch-1.txz:  Upgraded.
n/curl-7.64.1-x86_64-1.txz:  Upgraded.
n/gnutls-3.6.7-x86_64-1.txz:  Upgraded.
  Fixes security issues:
  libgnutls, gnutls tools: Every gnutls_free() will automatically set
  the free'd pointer to NULL. This prevents possible use-after-free and
  double free issues. Use-after-free will be turned into NULL dereference.
  The counter-measure does not extend to applications using gnutls_free().
  libgnutls: Fixed a memory corruption (double free) vulnerability in the
  certificate verification API. Reported by Tavis Ormandy; addressed with
  the change above. [GNUTLS-SA-2019-03-27, #694]
  libgnutls: Fixed an invalid pointer access via malformed TLS1.3 async
  messages; Found using tlsfuzzer. [GNUTLS-SA-2019-03-27, #704]
  libgnutls: enforce key usage limitations on certificates more actively.
  Previously we would enforce it for TLS1.2 protocol, now we enforce it
  even when TLS1.3 is negotiated, or on client certificates as well. When
  an inappropriate for TLS1.3 certificate is seen on the credentials
  structure GnuTLS will disable TLS1.3 support for that session (#690).
  libgnutls: enforce the equality of the two signature parameters fields
  in a certificate. We were already enforcing the signature algorithm,
  but there was a bug in parameter checking code.
  (* Security fix *)
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2019-03-28 08:59:45 +01:00
Patrick J Volkerding
d6b713db54 Sun Mar 24 03:53:12 UTC 2019
a/kernel-generic-4.19.31-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.19.31-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.19.31-x86_64-1.txz:  Upgraded.
ap/cups-2.2.11-x86_64-1.txz:  Upgraded.
ap/sysstat-12.1.3-x86_64-1.txz:  Upgraded.
d/help2man-1.47.10-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.19.31-x86-1.txz:  Upgraded.
k/kernel-source-4.19.31-noarch-1.txz:  Upgraded.
n/samba-4.10.0-x86_64-2.txz:  Rebuilt.
  Recompile dropping python2 support, since talloc no longer supports it.
  Thanks to ponce.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2019-03-24 08:59:45 +01:00
Patrick J Volkerding
67b2ffd2d6 Fri Mar 22 20:41:23 UTC 2019
d/parallel-20190322-noarch-1.txz:  Upgraded.
n/bind-9.14.0-x86_64-1.txz:  Upgraded.
xap/mozilla-firefox-60.6.1esr-x86_64-1.txz:  Upgraded.
  This release contains security fixes and improvements. The patched flaws
  are considered critical, and could be used to run attacker code and install
  software, requiring no user interaction beyond normal browsing.
  For more information, see:
    https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
    https://www.mozilla.org/en-US/security/advisories/mfsa2019-10/
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9810i
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9813
  (* Security fix *)
2019-03-23 08:59:46 +01:00
Patrick J Volkerding
277ffd7057 Tue Mar 19 20:06:28 UTC 2019
a/bash-5.0.003-x86_64-1.txz:  Upgraded.
a/kernel-firmware-20190314_7bc2464-noarch-1.txz:  Upgraded.
a/kernel-generic-4.19.30-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.19.30-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.19.30-x86_64-1.txz:  Upgraded.
d/help2man-1.47.9-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.19.30-x86-1.txz:  Upgraded.
d/strace-5.0-x86_64-1.txz:  Upgraded.
k/kernel-source-4.19.30-noarch-1.txz:  Upgraded.
n/gnupg2-2.2.14-x86_64-1.txz:  Upgraded.
n/libgpg-error-1.36-x86_64-1.txz:  Upgraded.
n/samba-4.10.0-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2019-03-20 08:59:45 +01:00
Patrick J Volkerding
218698dcbc Thu Mar 14 03:41:42 UTC 2019
a/kernel-firmware-20190313_efd2c1c-noarch-1.txz:  Upgraded.
a/kernel-generic-4.19.29-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.19.29-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.19.29-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.19.29-x86-1.txz:  Upgraded.
k/kernel-source-4.19.29-noarch-1.txz:  Upgraded.
n/crda-3.18-x86_64-9.txz:  Rebuilt.
  Upgraded to wireless-regdb-2019.03.01.
n/ethtool-5.0-x86_64-1.txz:  Upgraded.
x/mesa-19.0.0-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2019-03-14 08:59:41 +01:00
Patrick J Volkerding
73b3d9a124 Tue Mar 12 20:03:46 UTC 2019
a/kernel-firmware-20190312_b0d9583-noarch-1.txz:  Upgraded.
l/at-spi2-atk-2.32.0-x86_64-1.txz:  Upgraded.
l/at-spi2-core-2.32.0-x86_64-1.txz:  Upgraded.
l/atk-2.32.0-x86_64-1.txz:  Upgraded.
l/dconf-0.32.0-x86_64-1.txz:  Upgraded.
l/dconf-editor-3.32.0-x86_64-1.txz:  Upgraded.
l/glib-networking-2.60.0-x86_64-1.txz:  Upgraded.
l/gsettings-desktop-schemas-3.32.0-x86_64-1.txz:  Upgraded.
l/gvfs-1.40.0-x86_64-1.txz:  Upgraded.
l/libsoup-2.66.0-x86_64-1.txz:  Upgraded.
l/vte-0.56.0-x86_64-1.txz:  Upgraded.
n/mobile-broadband-provider-info-20190116-x86_64-1.txz:  Upgraded.
n/samba-4.9.5-x86_64-1.txz:  Upgraded.
x/liberation-fonts-ttf-2.00.5-noarch-1.txz:  Upgraded.
xap/gucharmap-12.0.0-x86_64-1.txz:  Upgraded.
2019-03-13 08:59:42 +01:00
Patrick J Volkerding
de75b378d6 Mon Mar 11 19:03:50 UTC 2019
a/coreutils-8.31-x86_64-1.txz:  Upgraded.
d/meson-0.50.0-x86_64-1.txz:  Upgraded.
l/giflib-5.1.7-x86_64-1.txz:  Upgraded.
l/python-certifi-2019.3.9-x86_64-1.txz:  Upgraded.
n/postfix-3.4.3-x86_64-1.txz:  Upgraded.
x/libFS-1.0.8-x86_64-1.txz:  Upgraded.
x/libXcomposite-0.4.5-x86_64-1.txz:  Upgraded.
x/libXcursor-1.2.0-x86_64-1.txz:  Upgraded.
x/libXdamage-1.1.5-x86_64-1.txz:  Upgraded.
2019-03-12 08:59:45 +01:00
Patrick J Volkerding
10851c8f6b Fri Mar 8 18:28:40 UTC 2019
a/bash-5.0.002-x86_64-3.txz:  Rebuilt.
  Fix applying patches. Thanks to saahriktu.
a/e2fsprogs-1.45.0-x86_64-1.txz:  Upgraded.
n/ca-certificates-20190308-noarch-1.txz:  Upgraded.
n/nghttp2-1.37.0-x86_64-1.txz:  Upgraded.
n/ntp-4.2.8p13-x86_64-1.txz:  Upgraded.
  This release fixes a bug that allows an attacker with access to an explicitly
  trusted source to send a crafted malicious mode 6 (ntpq) packet that can
  trigger a NULL pointer dereference, crashing ntpd.
  It also provides 17 other bugfixes and 1 other improvement.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8936
  (* Security fix *)
n/postfix-3.4.1-x86_64-2.txz:  Rebuilt.
n/s-nail-14.9.13-x86_64-1.txz:  Upgraded.
2019-03-09 08:59:47 +01:00
Patrick J Volkerding
490bd1ff02 Tue Mar 5 00:17:16 UTC 2019
d/gcc-8.3.0-x86_64-2.txz:  Rebuilt.
  Reverted backported asm inline patches that broke "asm volatile".
  Thanks to nobodino.
d/gcc-brig-8.3.0-x86_64-2.txz:  Rebuilt.
d/gcc-g++-8.3.0-x86_64-2.txz:  Rebuilt.
d/gcc-gfortran-8.3.0-x86_64-2.txz:  Rebuilt.
d/gcc-gnat-8.3.0-x86_64-2.txz:  Rebuilt.
d/gcc-go-8.3.0-x86_64-2.txz:  Rebuilt.
d/gcc-objc-8.3.0-x86_64-2.txz:  Rebuilt.
l/at-spi2-atk-2.30.1-x86_64-1.txz:  Upgraded.
l/at-spi2-core-2.30.1-x86_64-1.txz:  Upgraded.
l/gc-8.0.4-x86_64-1.txz:  Upgraded.
l/glib2-2.60.0-x86_64-1.txz:  Upgraded.
l/imagemagick-6.9.10_31-x86_64-1.txz:  Upgraded.
n/postfix-3.4.0-x86_64-2.txz:  Rebuilt.
  Prevent the install script from making noise.
x/xinit-1.4.1-x86_64-1.txz:  Upgraded.
x/xlogo-1.0.5-x86_64-1.txz:  Upgraded.
x/xmore-1.0.3-x86_64-1.txz:  Upgraded.
extra/fltk/fltk-1.3.5-x86_64-1.txz:  Upgraded.
2019-03-05 08:59:46 +01:00
Patrick J Volkerding
d26b7f6e82 Fri Mar 1 23:44:12 UTC 2019
a/eudev-3.2.7-x86_64-2.txz:  Rebuilt.
  Don't require kvm group.
2019-03-02 08:59:47 +01:00
Patrick J Volkerding
2c09649cb6 Thu Feb 28 23:05:08 UTC 2019
d/Cython-0.29.6-x86_64-1.txz:  Upgraded.
d/rust-1.33.0-x86_64-1.txz:  Upgraded.
l/imagemagick-6.9.10_29-x86_64-1.txz:  Upgraded.
l/qjson-0.9.0-x86_64-1.txz:  Upgraded.
n/postfix-3.4.0-x86_64-1.txz:  Upgraded.
2019-03-01 08:59:45 +01:00
Patrick J Volkerding
56b8c65632 Wed Feb 27 23:21:15 UTC 2019
a/aaa_terminfo-6.1_20190223-x86_64-1.txz:  Upgraded.
a/kernel-firmware-20190221_9ee52be-noarch-1.txz:  Upgraded.
a/kernel-generic-4.19.26-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.19.26-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.19.26-x86_64-1.txz:  Upgraded.
ap/vim-8.1.0984-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.19.26-x86-1.txz:  Upgraded.
k/kernel-source-4.19.26-noarch-1.txz:  Upgraded.
l/ncurses-6.1_20190223-x86_64-1.txz:  Upgraded.
n/curl-7.64.0-x86_64-3.txz:  Rebuilt.
  Applied upstream patch to fix log spam:
  [PATCH] multi: remove verbose "Expire in" ... messages
  Thanks to compassnet.
n/postfix-3.3.3-x86_64-1.txz:  Upgraded.
xap/vim-gvim-8.1.0984-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2019-02-28 08:59:46 +01:00
Patrick J Volkerding
aea2ef36ce Wed Feb 27 03:09:41 UTC 2019
a/btrfs-progs-4.20.2-x86_64-1.txz:  Upgraded.
a/openssl-solibs-1.1.1b-x86_64-1.txz:  Upgraded.
ap/ddrescue-1.24-x86_64-1.txz:  Upgraded.
ap/sqlite-3.27.2-x86_64-1.txz:  Upgraded.
l/libssh-0.8.7-x86_64-1.txz:  Upgraded.
l/talloc-2.1.16-x86_64-1.txz:  Upgraded.
l/tdb-1.3.18-x86_64-1.txz:  Upgraded.
l/tevent-0.9.39-x86_64-1.txz:  Upgraded.
n/ca-certificates-20181210-noarch-2.txz:  Rebuilt.
  Use "c_rehash" rather than "openssl rehash" for compatibility with all
  versions of OpenSSL.
n/epic5-2.1.1-x86_64-1.txz:  Upgraded.
n/openssl-1.1.1b-x86_64-1.txz:  Upgraded.
x/xorg-server-1.20.4-x86_64-1.txz:  Upgraded.
x/xorg-server-xephyr-1.20.4-x86_64-1.txz:  Upgraded.
x/xorg-server-xnest-1.20.4-x86_64-1.txz:  Upgraded.
x/xorg-server-xvfb-1.20.4-x86_64-1.txz:  Upgraded.
xap/mozilla-thunderbird-60.5.2-x86_64-1.txz:  Upgraded.
  This is a bugfix release.
  For more information, see:
    https://www.mozilla.org/en-US/thunderbird/60.5.2/releasenotes/
2019-02-27 08:59:45 +01:00
Patrick J Volkerding
e4e2151ae8 Sat Feb 23 03:33:52 UTC 2019
a/file-5.36-x86_64-1.txz:  Upgraded.
ap/mariadb-10.3.13-x86_64-1.txz:  Upgraded.
  This update fixes bugs and security issues.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2510
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2537
  (* Security fix *)
d/p2c-2.01-x86_64-1.txz:  Upgraded.
d/python-pip-19.0.3-x86_64-1.txz:  Upgraded.
l/librsvg-2.44.13-x86_64-2.txz:  Rebuilt.
  Recompiled with --enable-vala=yes.
n/bind-9.12.3_P4-x86_64-1.txz:  Upgraded.
xap/mozilla-firefox-60.5.2esr-x86_64-1.txz:  Upgraded.
  This is a bugfix release.
  For more information, see:
    https://www.mozilla.org/en-US/firefox/60.5.2/releasenotes/
2019-02-23 08:59:46 +01:00
Patrick J Volkerding
9ee3947a2b Wed Feb 20 23:59:17 UTC 2019
a/kernel-generic-4.19.24-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.19.24-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.19.24-x86_64-1.txz:  Upgraded.
a/kmod-26-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
a/util-linux-2.33.1-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
ap/hplip-3.19.1-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
ap/linuxdoc-tools-0.9.73-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
ap/lxc-2.0.9_d3a03247-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
ap/rpm-4.14.2.1-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
d/Cython-0.29.5-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
d/distcc-3.3.2-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
d/gdb-8.2.1-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
d/kernel-headers-4.19.24-x86-1.txz:  Upgraded.
d/llvm-7.0.1-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
d/meson-0.49.2-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
d/python-pip-19.0.2-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
d/python-setuptools-40.8.0-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
d/python3-3.7.2-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
k/kernel-source-4.19.24-noarch-1.txz:  Upgraded.
kde/pykde4-4.14.3-x86_64-8.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/Mako-1.0.7-x86_64-3.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/PyQt-4.12.1-x86_64-3.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/QScintilla-2.10.8-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/alsa-lib-1.1.8-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/dbus-python-1.2.8-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/gexiv2-0.10.10-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/libcaca-0.99.beta19-x86_64-4.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/libcap-ng-0.7.9-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/libjpeg-turbo-2.0.2-x86_64-1.txz:  Upgraded.
l/libproxy-0.4.15-x86_64-3.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/libwebp-1.0.2-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/libxml2-2.9.9-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/newt-0.52.20-x86_64-4.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/pycairo-1.18.0-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/pycups-1.9.74-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/pycurl-7.43.0.2-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/pygobject-2.28.7-x86_64-3.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/pygobject3-3.30.4-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/pyparsing-2.3.1-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/python-appdirs-1.4.3-x86_64-3.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/python-certifi-2018.11.29-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/python-chardet-3.0.4-x86_64-3.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/python-docutils-0.14-x86_64-3.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/python-idna-2.8-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/python-notify2-0.3.1-x86_64-3.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/python-packaging-19.0-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/python-pillow-5.4.1-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/python-requests-2.21.0-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/python-sane-2.8.3-x86_64-3.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/python-six-1.12.0-x86_64-3.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/python-urllib3-1.24.1-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/sip-4.19.8-x86_64-3.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/system-config-printer-1.5.11-x86_64-4.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/talloc-2.1.15-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/tdb-1.3.17-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/tevent-0.9.38-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
l/urwid-1.0.3-x86_64-4.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
n/gpgme-1.12.0-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
n/obexftp-0.24.2-x86_64-4.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
n/openvpn-2.4.7-x86_64-1.txz:  Upgraded.
n/pssh-2.3.1-x86_64-4.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
x/libfontenc-1.1.4-x86_64-1.txz:  Upgraded.
x/xcalc-1.0.7-x86_64-1.txz:  Upgraded.
x/xcb-proto-1.13-x86_64-3.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
x/xclock-1.0.8-x86_64-1.txz:  Upgraded.
x/xev-1.2.3-x86_64-1.txz:  Upgraded.
x/xfsinfo-1.0.6-x86_64-1.txz:  Upgraded.
x/xhost-1.0.8-x86_64-1.txz:  Upgraded.
x/xlsatoms-1.1.3-x86_64-1.txz:  Upgraded.
x/xmodmap-1.0.10-x86_64-1.txz:  Upgraded.
x/xrdb-1.2.0-x86_64-1.txz:  Upgraded.
x/xstdcmap-1.0.4-x86_64-1.txz:  Upgraded.
x/xvinfo-1.1.4-x86_64-1.txz:  Upgraded.
xap/blueman-2.0.8-x86_64-2.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
xap/hexchat-2.14.2-x86_64-3.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
extra/pure-alsa-system/alsa-lib-1.1.8-x86_64-2_alsa.txz:  Rebuilt.
  Recompiled against python3-3.7.2.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2019-02-21 08:59:46 +01:00
Patrick J Volkerding
a8daf9f551 Fri Feb 8 22:04:46 UTC 2019
a/aaa_elflibs-15.0-x86_64-5.txz:  Rebuilt.
  Upgraded: libglib-2.0.so.0.5800.3, libgmodule-2.0.so.0.5800.3,
  libgobject-2.0.so.0.5800.3, libgthread-2.0.so.0.5800.3, libidn2.so.0.3.5,
  libmpfr.so.6.0.2, libtdb.so.1.3.17
  Removed: libidn2.so.4.0.0
ap/sqlite-3.27.1-x86_64-1.txz:  Upgraded.
l/libdvdread-6.0.1-x86_64-1.txz:  Upgraded.
l/libidn2-2.1.1-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
  This reverted back to .so.0 as the previous bump was apparently a mistake.
l/libpsl-0.20.2-x86_64-3.txz:  Rebuilt.
  Recompiled against libidn2-2.1.1.
n/bind-9.12.3_P1-x86_64-3.txz:  Rebuilt.
  Recompiled against libidn2-2.1.1.
n/curl-7.64.0-x86_64-2.txz:  Rebuilt.
  Recompiled against libidn2-2.1.1.
n/dhcpcd-7.1.1-x86_64-1.txz:  Upgraded.
n/dnsmasq-2.80-x86_64-3.txz:  Rebuilt.
  Recompiled against libidn2-2.1.1.
n/getmail-5.9-x86_64-1.txz:  Upgraded.
n/gnutls-3.6.6-x86_64-2.txz:  Rebuilt.
  Recompiled against libidn2-2.1.1.
n/iputils-20180629-x86_64-3.txz:  Rebuilt.
  Recompiled against libidn2-2.1.1.
n/lftp-4.8.4-x86_64-3.txz:  Rebuilt.
  Recompiled against libidn2-2.1.1.
n/s-nail-14.9.11-x86_64-3.txz:  Rebuilt.
  Recompiled against libidn2-2.1.1.
n/wget-1.20.1-x86_64-3.txz:  Rebuilt.
  Recompiled against libidn2-2.1.1.
n/whois-5.4.1-x86_64-2.txz:  Rebuilt.
  Recompiled against libidn2-2.1.1.
x/ttf-tlwg-0.7.1-noarch-1.txz:  Upgraded.
xfce/xfwm4-4.12.5-x86_64-1.txz:  Upgraded.
2019-02-09 08:59:51 +01:00
Patrick J Volkerding
32db72ebc8 Thu Feb 7 22:28:19 UTC 2019
n/php-7.2.15-x86_64-1.txz:  Upgraded.
xap/network-manager-applet-1.8.20-x86_64-1.txz:  Upgraded.
extra/pure-alsa-system/ffmpeg-3.4.5-x86_64-2_alsa.txz:  Rebuilt.
  Recompiled against libvpx-1.8.0.
  Reenabled libsmbclient support.
extra/pure-alsa-system/gst-plugins-good-1.14.4-x86_64-2_alsa.txz:  Rebuilt.
  Recompiled against libvpx-1.8.0.
extra/pure-alsa-system/xine-lib-1.2.9-x86_64-4_alsa.txz:  Rebuilt.
  Recompiled against libvpx-1.8.0.
pasture/php-5.6.40-x86_64-1.txz:  Upgraded.
  Several security bugs have been fixed in this release:
  GD:
  Fixed bug #77269 (efree() on uninitialized Heap data in imagescale leads
  to use-after-free).
  Fixed bug #77270 (imagecolormatch Out Of Bounds Write on Heap).
  Mbstring:
  Fixed bug #77370 (Buffer overflow on mb regex functions - fetch_token).
  Fixed bug #77371 (heap buffer overflow in mb regex functions -
  compile_string_node).
  Fixed bug #77381 (heap buffer overflow in multibyte match_at).
  Fixed bug #77382 (heap buffer overflow due to incorrect length in
  expand_case_fold_string).
  Fixed bug #77385 (buffer overflow in fetch_token).
  Fixed bug #77394 (Buffer overflow in multibyte case folding - unicode).
  Fixed bug #77418 (Heap overflow in utf32be_mbc_to_code).
  Phar:
  Fixed bug #77247 (heap buffer overflow in phar_detect_phar_fname_ext).
  Xmlrpc:
  Fixed bug #77242 (heap out of bounds read in xmlrpc_decode()).
  Fixed bug #77380 (Global out of bounds read in xmlrpc base64 code).
  For more information, see:
    https://php.net/ChangeLog-5.php#5.6.40
  (* Security fix *)
2019-02-08 08:59:46 +01:00
Patrick J Volkerding
f33950cf4b Wed Feb 6 22:44:32 UTC 2019
a/hwdata-0.320-noarch-1.txz:  Upgraded.
a/kernel-generic-4.19.20-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.19.20-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.19.20-x86_64-1.txz:  Upgraded.
a/mcelog-162-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.19.20-x86-1.txz:  Upgraded.
d/opencl-headers-2.2-noarch-2.txz:  Rebuilt.
  Don't trigger "#pragma message" in cl_version.h when falling back on a
  default version of OpenCL to target. Applications such as ffmpeg detect
  this as an error and fail to compile.
k/kernel-source-4.19.20-noarch-1.txz:  Upgraded.
l/ffmpeg-3.4.5-x86_64-2.txz:  Rebuilt.
  Recompiled against libvpx-1.8.0.
  Reenabled libsmbclient support.
l/gst-plugins-good-1.14.4-x86_64-2.txz:  Rebuilt.
  Recompiled against libvpx-1.8.0.
l/libvpx-1.8.0-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
n/curl-7.64.0-x86_64-1.txz:  Upgraded.
  This release fixes the following security issues:
  NTLM type-2 out-of-bounds buffer read.
  NTLMv2 type-3 header stack buffer overflow.
  SMTP end-of-response out-of-bounds read.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16890
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3822
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3823
  (* Security fix *)
n/samba-4.9.4-x86_64-2.txz:  Rebuilt.
  Added time.h to libsmbclient.h to fix ffmpeg compatibility.
  Thanks to USUARIONUEVO.
xap/xine-lib-1.2.9-x86_64-4.txz:  Rebuilt.
  Recompiled against libvpx-1.8.0.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2019-02-07 08:59:47 +01:00
Patrick J Volkerding
05538a2b6d Wed Feb 6 00:29:25 UTC 2019
ap/linuxdoc-tools-0.9.73-x86_64-1.txz:  Upgraded.
  Upgraded to gtk-doc-1.29.
  Upgraded to asciidoc-8.6.10.
  Upgraded to perl-XML-SAX-1.00.
  Thanks to Stuart Winter.
d/meson-0.49.2-x86_64-1.txz:  Upgraded.
d/python-setuptools-40.8.0-x86_64-1.txz:  Upgraded.
d/slacktrack-2.19-x86_64-1.txz:  Upgraded.
  Thanks to Stuart Winter.
l/imagemagick-6.9.10_26-x86_64-1.txz:  Upgraded.
n/dovecot-2.3.4.1-x86_64-1.txz:  Upgraded.
  This update addresses security issues:
  CVE-2019-3814: If imap/pop3/managesieve/submission client has trusted
  certificate with missing username field (ssl_cert_username_field), under
  some configurations Dovecot mistakenly trusts the username provided via
  authentication instead of failing.
  ssl_cert_username_field setting was ignored with external SMTP AUTH,
  because none of the MTAs (Postfix, Exim) currently send the cert_username
  field. This may have allowed users with trusted certificate to specify any
  username in the authentication. This bug didn't affect Dovecot's
  Submission service.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3814
  (* Security fix *)
2019-02-06 08:59:42 +01:00
Patrick J Volkerding
27b0c3822f Sun Feb 3 20:26:34 UTC 2019
d/bison-3.3.2-x86_64-1.txz:  Upgraded.
n/dovecot-2.3.4-x86_64-2.txz:  Rebuilt.
  Patched double free when used with MariaDB 10.3.x. Thanks to Thom1b.
x/xkeyboard-config-2.26-noarch-1.txz:  Upgraded.
extra/bittorrent/bittorrent-4.4.0-noarch-4.txz:  Removed.
2019-02-04 08:59:48 +01:00
Patrick J Volkerding
1d9c56ff69 Sat Feb 2 22:09:17 UTC 2019
ap/qpdf-8.4.0-x86_64-1.txz:  Upgraded.
d/Cython-0.29.4-x86_64-1.txz:  Upgraded.
d/binutils-2.32-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
  Is it safe to use --enable-initfini-array yet? Guess we'll find out.
d/cmake-3.13.4-x86_64-1.txz:  Upgraded.
d/mercurial-4.9-x86_64-1.txz:  Upgraded.
d/oprofile-1.3.0-x86_64-2.txz:  Rebuilt.
  Recompiled against binutils-2.32.
n/iw-5.0-x86_64-1.txz:  Upgraded.
n/mutt-1.11.3-x86_64-1.txz:  Upgraded.
x/libva-utils-2.4.0-x86_64-1.txz:  Upgraded.
2019-02-03 08:59:45 +01:00
Patrick J Volkerding
01d519c790 Wed Jan 30 04:27:03 UTC 2019
d/bison-3.3.1-x86_64-1.txz:  Upgraded.
l/imagemagick-6.9.10_25-x86_64-1.txz:  Upgraded.
l/mozilla-nss-3.42-x86_64-1.txz:  Upgraded.
n/libgpg-error-1.35-x86_64-1.txz:  Upgraded.
n/whois-5.4.1-x86_64-1.txz:  Upgraded.
x/xf86-video-nouveau-1.0.16-x86_64-1.txz:  Upgraded.
xap/mozilla-firefox-60.5.0esr-x86_64-1.txz:  Upgraded.
  This release contains security fixes and improvements.
  For more information, see:
    https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
    https://www.mozilla.org/en-US/security/advisories/mfsa2019-02/
    https://www.mozilla.org/en-US/security/advisories/mfsa2019-02/#CVE-2018-18500
    https://www.mozilla.org/en-US/security/advisories/mfsa2019-02/#CVE-2018-18505
    https://www.mozilla.org/en-US/security/advisories/mfsa2019-02/#CVE-2018-18501
  (* Security fix *)
xap/mozilla-thunderbird-60.5.0-x86_64-1.txz:  Upgraded.
  This is a bugfix release. For more information, see:
  https://www.mozilla.org/en-US/thunderbird/60.5.0/releasenotes/
xfce/Thunar-1.8.4-x86_64-1.txz:  Upgraded.
2019-01-30 17:59:47 +01:00
Patrick J Volkerding
22643bf376 Sat Jan 26 04:15:08 UTC 2019
a/mkinitrd-1.4.11-x86_64-11.txz:  Rebuilt.
  setup.01.mkinitrd: revert to the previous command line for
  mkinitrd_command_generator.sh (the new one fails when called from the
  installer).
2019-01-26 08:59:46 +01:00
Patrick J Volkerding
7ad185bd2d Wed Jan 23 22:02:34 UTC 2019
a/bash-5.0.002-x86_64-2.txz:  Rebuilt.
  Rebuilt with --libdir=/usr/lib${LIBDIRSUFFIX}. Thanks to RandomTroll.
a/btrfs-progs-4.20.1-x86_64-1.txz:  Upgraded.
a/mkinitrd-1.4.11-x86_64-9.txz:  Rebuilt.
  Automatically generate an initial ramdisk from the installer.
  Added 'geninitrd' script to generate an initial ramdisk for the kernel that
  /boot/vmlinuz-generic (and/or /boot/vmlinuz-generic-smp) points to.
ap/man-db-2.8.5-x86_64-2.txz:  Rebuilt.
  Comment out all the options in /etc/profile.d/man-db.{csh,sh} and let the
  user decide whether or not to choose anything.
d/python-pip-19.0.1-x86_64-1.txz:  Upgraded.
l/mozilla-nss-3.41.1-x86_64-1.txz:  Upgraded.
n/dhcpcd-7.1.0-x86_64-1.txz:  Upgraded.
2019-01-24 08:59:49 +01:00
Patrick J Volkerding
f4a16dfaa3 Wed Jan 23 04:39:04 UTC 2019
a/kernel-generic-4.19.17-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.19.17-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.19.17-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.19.17-x86-1.txz:  Upgraded.
d/scons-3.0.4-x86_64-1.txz:  Upgraded.
d/vala-0.42.5-x86_64-1.txz:  Upgraded.
k/kernel-source-4.19.17-noarch-1.txz:  Upgraded.
n/httpd-2.4.38-x86_64-1.txz:  Upgraded.
  This release contains security fixes and improvements.
  mod_session: mod_session_cookie does not respect expiry time allowing
  sessions to be reused.  [Hank Ibell]
  mod_http2: fixes a DoS attack vector. By sending slow request bodies
  to resources not consuming them, httpd cleanup code occupies a server
  thread unnecessarily. This was changed to an immediate stream reset
  which discards all stream state and incoming data.  [Stefan Eissing]
  mod_ssl: Fix infinite loop triggered by a client-initiated
  renegotiation in TLSv1.2 (or earlier) with OpenSSL 1.1.1 and
  later.  PR 63052.  [Joe Orton]
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17199
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17189
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0190
  (* Security fix *)
x/libdrm-2.4.97-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2019-01-23 17:59:47 +01:00
Patrick J Volkerding
e6dca6f946 Fri Jan 11 21:15:41 UTC 2019
a/bash-5.0.000-x86_64-1.txz:  Upgraded.
a/glibc-zoneinfo-2018i-noarch-1.txz:  Upgraded.
a/lzlib-1.11-x86_64-1.txz:  Upgraded.
ap/vim-8.1.0727-x86_64-1.txz:  Upgraded.
  Fixed vimrc to work with "crontab -e" again now that cron's files have been
  moved into /run/cron/. Thanks to Andreas Vögel.
d/subversion-1.11.1-x86_64-1.txz:  Upgraded.
n/irssi-1.1.2-x86_64-1.txz:  Upgraded.
  This update addresses bugs including security and stability issues:
  A NULL pointer dereference occurs for an "empty" nick.
  Certain nick names could result in out-of-bounds access when printing
  theme strings.
  Crash due to a NULL pointer dereference w hen the number of windows
  exceeds the available space.
  Use-after-free when SASL messages are received in an unexpected order.
  Use-after-free when a server is disconnected during netsplits.
  Use-after-free when hidden lines were expired from the scroll buffer.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7050
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7051
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7052
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7053
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7054
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5882
  (* Security fix *)
xap/vim-gvim-8.1.0727-x86_64-1.txz:  Upgraded.
2019-01-12 08:59:44 +01:00
Patrick J Volkerding
9bf4df6951 Thu Jan 10 22:32:08 UTC 2019
ap/qpdf-8.3.0-x86_64-1.txz:  Upgraded.
l/argon2-20171227-x86_64-1.txz:  Added.
  This is a new dependency for the PHP package.
n/libmbim-1.18.0-x86_64-1.txz:  Upgraded.
n/libqmi-1.22.0-x86_64-1.txz:  Upgraded.
n/php-7.2.14-x86_64-1.txz:  Upgraded.
  Use --with-password-argon2. PHP now requires the new argon2 package.
2019-01-11 12:24:38 +01:00
Patrick J Volkerding
1e8ea1d7ed Wed Jan 9 03:21:06 UTC 2019
ap/alsa-utils-1.1.8-x86_64-1.txz:  Upgraded.
ap/gutenprint-5.3.1-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
l/alsa-lib-1.1.8-x86_64-1.txz:  Upgraded.
l/alsa-oss-1.1.8-x86_64-1.txz:  Upgraded.
l/alsa-plugins-1.1.8-x86_64-1.txz:  Upgraded.
extra/pure-alsa-system/alsa-lib-1.1.8-x86_64-1_alsa.txz:  Upgraded.
extra/pure-alsa-system/alsa-plugins-1.1.8-x86_64-1_alsa.txz:  Upgraded.
2019-01-09 08:59:41 +01:00
Patrick J Volkerding
29982cb6ad Sat Jan 5 20:04:43 UTC 2019
a/aaa_elflibs-15.0-x86_64-4.txz:  Rebuilt.
  Upgraded: libfuse.so.2.9.9, libidn2.so.4.0.0.
  Kept (for now): libidn2.so.0.3.4.
ap/vim-8.1.0693-x86_64-1.txz:  Upgraded.
l/fuse-2.9.9-x86_64-1.txz:  Upgraded.
l/libidn2-2.1.0-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
l/libpsl-0.20.2-x86_64-2.txz:  Rebuilt.
  Recompiled against libidn2-2.1.0.
n/bind-9.12.3_P1-x86_64-2.txz:  Rebuilt.
  Recompiled against libidn2-2.1.0.
n/curl-7.63.0-x86_64-2.txz:  Rebuilt.
  Recompiled against libidn2-2.1.0.
n/dnsmasq-2.80-x86_64-2.txz:  Rebuilt.
  Recompiled against libidn2-2.1.0.
n/gnutls-3.6.5-x86_64-2.txz:  Rebuilt.
  Recompiled against libidn2-2.1.0.
n/iputils-s20180629-x86_64-2.txz:  Rebuilt.
  Recompiled against libidn2-2.1.0.
n/lftp-4.8.4-x86_64-2.txz:  Rebuilt.
  Recompiled against libidn2-2.1.0.
n/s-nail-14.9.11-x86_64-2.txz:  Rebuilt.
  Recompiled against libidn2-2.1.0.
n/wget-1.20.1-x86_64-2.txz:  Rebuilt.
  Recompiled against libidn2-2.1.0.
n/whois-5.4.0-x86_64-2.txz:  Rebuilt.
  Recompiled against libidn2-2.1.0.
xap/vim-gvim-8.1.0693-x86_64-1.txz:  Upgraded.
2019-01-06 17:59:46 +01:00
Patrick J Volkerding
9b2263c35d Mon Dec 31 21:33:54 UTC 2018
a/efibootmgr-17-x86_64-1.txz:  Upgraded.
a/efivar-37-x86_64-1.txz:  Upgraded.
d/cmake-3.13.2-x86_64-2.txz:  Rebuilt.
  Work around build failures with recent doxygen.
d/ruby-2.6.0-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
d/subversion-1.11.0-x86_64-2.txz:  Rebuilt.
  Recompiled against ruby-2.6.0.
kde/korundum-4.14.3-x86_64-7.txz:  Rebuilt.
  Recompiled against ruby-2.6.0.
kde/qtruby-4.14.3-x86_64-9.txz:  Rebuilt.
  Recompiled against ruby-2.6.0.
l/gobject-introspection-1.58.3-x86_64-1.txz:  Upgraded.
l/imagemagick-6.9.10_22-x86_64-1.txz:  Upgraded.
l/libssh-0.8.6-x86_64-1.txz:  Upgraded.
n/epic5-2.0.1-x86_64-8.txz:  Rebuilt.
  Recompiled against ruby-2.6.0.
n/tin-2.4.3-x86_64-1.txz:  Upgraded.
n/wireless_tools-30.pre9-x86_64-1.txz:  Upgraded.
x/xterm-341-x86_64-2.txz:  Rebuilt.
  Install xterm app-defaults that resemble the Linux console. Thanks to GazL.
2019-01-01 08:59:45 +01:00
Patrick J Volkerding
527328c5da Sat Dec 29 23:13:15 UTC 2018
a/kernel-generic-4.19.13-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.19.13-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.19.13-x86_64-1.txz:  Upgraded.
d/doxygen-1.8.15-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.19.13-x86-1.txz:  Upgraded.
k/kernel-source-4.19.13-noarch-1.txz:  Upgraded.
  FRAMEBUFFER_CONSOLE_DEFERRED_TAKEOVER y -> n
l/libsecret-0.18.7-x86_64-1.txz:  Upgraded.
n/wpa_supplicant-2.6-x86_64-6.txz:  Upgraded.
  It seems we're not the only ones with broken WPA2-Enterprise support
  with wpa_supplicant-2.7, so we'll fix it the same way as everyone else -
  by reverting to wpa_supplicant-2.6 for now.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
testing/packages/wpa_supplicant-2.7-x86_64-2.txz:  Upgraded.
  Applied a patch from Gentoo to allow building CONFIG_IEEE80211X=y without
  the experimental CONFIG_FILS=y option.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2018-12-30 08:59:46 +01:00
Patrick J Volkerding
1e1c447e2e Fri Dec 28 00:23:43 UTC 2018
a/aaa_elflibs-15.0-x86_64-3.txz:  Rebuilt.
  Moved libsigsegv.so.2 from /usr/lib{,64} to /lib{,64}.
  Upgraded: libcap.so.2.26, libelf-0.175.so, libfuse.so.2.9.8,
  libexpat.so.1.6.8, libglib-2.0.so.0.5800.2, libgmodule-2.0.so.0.5800.2,
  libgobject-2.0.so.0.5800.2, libgthread-2.0.so.0.5800.2, libjpeg.so.62.3.0,
  liblber-2.4.so.2.10.10, libldap-2.4.so.2.10.10, libpng16.so.16.36.0,
  libstdc++.so.6.0.25, libtdb.so.1.3.16, libtiff.so.5.4.0,
  libtiffxx.so.5.4.0, libturbojpeg.so.0.2.0.
ap/vim-8.1.0648-x86_64-1.txz:  Upgraded.
d/nasm-2.14.02-x86_64-1.txz:  Upgraded.
d/strace-4.26-x86_64-1.txz:  Upgraded.
l/libsigsegv-2.12-x86_64-3.txz:  Rebuilt.
  Moved shared library into /lib{,64} to avoid problems when /usr is on a
  separate partition. Thanks to TommyC7.
  But please note: that has never been a recommended configuration (it was
  always a bad idea prone to corner-case bugs), and with basically everyone
  else moving everything into /usr, no upstream is developing with this
  scenario in mind these days. Some of the problems caused by separate /usr
  are simply not possibly to fix in a straightforward fashion. Consider it a
  completely unsupported configuration choice. While it's not my style to
  make the installer refuse to allow it, I won't be bending over backwards
  to try to fix bugs related to this in the future. If I recall properly,
  the original rationale was to make it possible for /usr to reside on a
  shared network partition, which might have made sense back when 40MB was
  a typical hard drive size. I can think of no good rationale now (and no,
  I don't think making /usr read-only helps security in any tangible way).
n/wget-1.20.1-x86_64-1.txz:  Upgraded.
x/xf86-video-chips-1.3.0-x86_64-1.txz:  Upgraded.
x/xf86-video-neomagic-1.3.0-x86_64-1.txz:  Upgraded.
x/xterm-341-x86_64-1.txz:  Upgraded.
xap/audacious-3.10.1-x86_64-1.txz:  Upgraded.
xap/audacious-plugins-3.10.1-x86_64-1.txz:  Upgraded.
xap/vim-gvim-8.1.0648-x86_64-1.txz:  Upgraded.
2018-12-28 08:59:46 +01:00
Patrick J Volkerding
c602562d7b Sat Dec 22 04:38:27 UTC 2018
a/coreutils-8.30-x86_64-3.txz:  Rebuilt.
  Support tmux terms in DIR_COLORS. Thanks to qunying.
a/grep-3.3-x86_64-1.txz:  Upgraded.
a/kernel-generic-4.19.12-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.19.12-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.19.12-x86_64-1.txz:  Upgraded.
a/sed-4.7-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.19.12-x86-1.txz:  Upgraded.
d/rust-1.31.1-x86_64-1.txz:  Upgraded.
k/kernel-source-4.19.12-noarch-1.txz:  Upgraded.
l/graphite2-1.3.13-x86_64-1.txz:  Upgraded.
l/harfbuzz-2.3.0-x86_64-1.txz:  Upgraded.
l/imagemagick-6.9.10_19-x86_64-1.txz:  Upgraded.
l/lmdb-0.9.23-x86_64-1.txz:  Upgraded.
l/v4l-utils-1.16.3-x86_64-1.txz:  Upgraded.
n/netatalk-3.1.12-x86_64-1.txz:  Upgraded.
  Netatalk before 3.1.12 is vulnerable to an out of bounds write in
  dsi_opensess.c. This is due to lack of bounds checking on attacker
  controlled data. A remote unauthenticated attacker can leverage
  this vulnerability to achieve arbitrary code execution.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1160
  (* Security fix *)
n/openldap-client-2.4.47-x86_64-1.txz:  Upgraded.
n/samba-4.9.4-x86_64-1.txz:  Upgraded.
x/intel-vaapi-driver-2.3.0-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2018-12-22 17:59:45 +01:00
Patrick J Volkerding
47b0e0208e Fri Dec 14 01:49:19 UTC 2018
a/kernel-generic-4.19.9-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.19.9-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.19.9-x86_64-1.txz:  Upgraded.
a/logrotate-3.15.0-x86_64-1.txz:  Upgraded.
d/cmake-3.13.2-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.19.9-x86-1.txz:  Upgraded.
d/python-setuptools-40.6.3-x86_64-1.txz:  Upgraded.
k/kernel-source-4.19.9-noarch-1.txz:  Upgraded.
l/gtk+3-3.24.2-x86_64-1.txz:  Upgraded.
l/libedit-20181209_3.1-x86_64-1.txz:  Upgraded.
l/python-six-1.12.0-x86_64-2.txz:  Rebuilt.
n/bind-9.12.3_P1-x86_64-1.txz:  Upgraded.
n/curl-7.63.0-x86_64-1.txz:  Upgraded.
n/ipset-7.1-x86_64-1.txz:  Upgraded.
n/libassuan-2.5.2-x86_64-1.txz:  Upgraded.
x/xf86-input-void-1.4.1-x86_64-1.txz:  Upgraded.
x/xterm-339-x86_64-1.txz:  Upgraded.
xap/gparted-0.33.0-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2018-12-14 08:59:45 +01:00
Patrick J Volkerding
fda1305d74 Wed Dec 12 04:09:54 UTC 2018
l/librsvg-2.44.10-x86_64-1.txz:  Upgraded.
l/vte-0.54.3-x86_64-1.txz:  Upgraded.
n/ca-certificates-20181210-noarch-1.txz:  Upgraded.
x/mesa-18.3.1-x86_64-1.txz:  Upgraded.
x/xf86-video-i128-1.4.0-x86_64-1.txz:  Upgraded.
x/xf86-video-mga-2.0.0-x86_64-1.txz:  Upgraded.
x/xterm-338-x86_64-1.txz:  Upgraded.
xap/mozilla-firefox-60.4.0esr-x86_64-1.txz:  Upgraded.
  This release contains security fixes and improvements.
  For more information, see:
    https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
    https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/
    https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-17466
    https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-18492
    https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-18493
    https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-18494
    https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-18498
    https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-12405
  (* Security fix *)
2018-12-12 08:59:45 +01:00
Patrick J Volkerding
ad59f7ca92 Sat Dec 8 04:10:45 UTC 2018
a/btrfs-progs-v4.19.1-x86_64-1.txz:  Upgraded.
a/dbus-1.12.12-x86_64-1.txz:  Upgraded.
ap/cups-2.2.10-x86_64-1.txz:  Upgraded.
ap/cups-filters-1.21.5-x86_64-1.txz:  Upgraded.
ap/hplip-3.18.12-x86_64-1.txz:  Upgraded.
d/mercurial-4.8.1-x86_64-1.txz:  Upgraded.
d/rust-1.31.0-x86_64-1.txz:  Upgraded.
l/libpng-1.6.36-x86_64-1.txz:  Upgraded.
l/python-idna-2.8-x86_64-1.txz:  Upgraded.
n/ntp-4.2.8p12-x86_64-5.txz:  Rebuilt.
  Fixed logrotate file. Thanks to allend and rworkman.
n/php-7.2.13-x86_64-1.txz:  Upgraded.
  This is a security release which also contains several minor bug fixes.
  For more information, see:
    https://php.net/ChangeLog-7.php#7.2.13
  (* Security fix *)
n/wpa_supplicant-2.7-x86_64-1.txz:  Upgraded.
x/mesa-18.3.0-x86_64-1.txz:  Upgraded.
x/xf86-video-i740-1.4.0-x86_64-1.txz:  Upgraded.
xap/mozilla-thunderbird-60.3.3-x86_64-1.txz:  Upgraded.
  This is a bugfix release. For more information, see:
  https://www.mozilla.org/en-US/thunderbird/60.3.3/releasenotes/
xfce/thunar-volman-0.9.1-x86_64-1.txz:  Upgraded.
2018-12-08 08:59:44 +01:00
Patrick J Volkerding
37eaf40ce5 Thu Dec 6 04:38:11 UTC 2018
a/kernel-generic-4.19.7-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.19.7-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.19.7-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.19.7-x86-1.txz:  Upgraded.
k/kernel-source-4.19.7-noarch-1.txz:  Upgraded.
n/gnutls-3.6.5-x86_64-1.txz:  Upgraded.
  This update fixes a security issue:
  Bleichenbacher-like side channel leakage in PKCS#1 1.5 verification and
  padding oracle verification.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16868
  (* Security fix *)
n/nettle-3.4.1-x86_64-1.txz:  Upgraded.
  This update fixes a security issue:
  A Bleichenbacher type side-channel based padding oracle attack was found
  in the way nettle handles endian conversion of RSA decrypted PKCS#1 v1.5
  data. An attacker who is able to run a process on the same physical core
  as the victim process, could use this flaw to extract plaintext or in some
  cases downgrade any TLS connections to a vulnerable server.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16869
  (* Security fix *)
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2018-12-06 17:59:30 +01:00
Patrick J Volkerding
03a61ce024 Mon Dec 3 20:59:30 UTC 2018
ap/sqlite-3.26.0-x86_64-1.txz:  Upgraded.
l/libzip-1.5.1-x86_64-5.txz:  Rebuilt.
  Fixed path in libzip.pc. Thanks to orbea.
l/mozilla-nss-3.40.1-x86_64-1.txz:  Upgraded.
  Mitigate cache side-channel variant of the Bleichenbacher attack.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12404
  (* Security fix *)
n/mutt-1.11.1-x86_64-1.txz:  Upgraded.
n/stunnel-5.50-x86_64-1.txz:  Upgraded.
xfce/xfce4-systemload-plugin-1.2.2-x86_64-2.txz:  Rebuilt.
  Applied reworked hover timeout patch. Thanks to Rod3775.
2018-12-04 08:59:45 +01:00
Patrick J Volkerding
a2792a0934 Sat Dec 1 03:16:35 UTC 2018
ap/texinfo-6.5-x86_64-7.txz:  Rebuilt.
  Recompiled against perl-5.28.1.
ap/vim-8.1.0552-x86_64-1.txz:  Upgraded.
  Compiled against perl-5.28.1.
d/perl-5.28.1-x86_64-1.txz:  Upgraded.
  Upgraded DBD-mysql-4.049, DBI-1.642, abd IO-Socket-SSL-2.060.
  Added Devel-CheckLib-1.13 (needed by DBD-mysql-4.049).
kde/perlkde-4.14.3-x86_64-7.txz:  Rebuilt.
  Recompiled against perl-5.28.1.
kde/perlqt-4.14.3-x86_64-8.txz:  Rebuilt.
  Recompiled against perl-5.28.1.
n/epic5-2.0.1-x86_64-7.txz:  Rebuilt.
  Recompiled against perl-5.28.1.
n/irssi-1.1.1-x86_64-5.txz:  Rebuilt.
  Recompiled against perl-5.28.1.
n/net-snmp-5.8-x86_64-4.txz:  Rebuilt.
  Recompiled against perl-5.28.1.
n/ntp-4.2.8p12-x86_64-4.txz:  Rebuilt.
  Recompiled against perl-5.28.1.
xap/hexchat-2.14.2-x86_64-2.txz:  Rebuilt.
  Recompiled against perl-5.28.1.
xap/mozilla-thunderbird-60.3.2-x86_64-1.txz:  Upgraded.
  This is a bugfix release. For more information, see:
  https://www.mozilla.org/en-US/thunderbird/60.3.2/releasenotes/
xap/rxvt-unicode-9.22-x86_64-6.txz:  Rebuilt.
  Recompiled against perl-5.28.1.
xap/vim-gvim-8.1.0552-x86_64-1.txz:  Upgraded.
  Compiled against perl-5.28.1.
xfce/xfce4-systemload-plugin-1.2.2-x86_64-1.txz:  Upgraded.
2018-12-01 08:59:43 +01:00
Patrick J Volkerding
6aa2cc8350 Fri Nov 30 04:21:06 UTC 2018
n/mutt-1.11.0-x86_64-2.txz:  Rebuilt.
  Put info file in /usr/info and compress it.
  Don't include /usr/info/dir.
  Thanks to Edward Trumbo.
  After upgrading this package, you'll need to reinstall the texinfo package
  to restore the missing /usr/info/dir file.
n/wget-1.20-x86_64-1.txz:  Upgraded.
2018-11-30 08:59:44 +01:00
Patrick J Volkerding
7284497dcf Thu Nov 29 05:53:27 UTC 2018
a/sysvinit-scripts-2.1-noarch-23.txz:  Rebuilt.
  rc.S: simplify test for F2FS filesystem on /. Thanks to GazL.
ap/soma-3.2.0-noarch-1.txz:  Upgraded.
d/cmake-3.13.1-x86_64-1.txz:  Upgraded.
l/jansson-2.12-x86_64-1.txz:  Upgraded.
n/rp-pppoe-3.13-x86_64-1.txz:  Upgraded.
n/samba-4.9.3-x86_64-1.txz:  Upgraded.
  This update fixes bugs and security issues:
  CVE-2018-14629: Unprivileged adding of CNAME record causing loop in AD
    Internal DNS server
  CVE-2018-16841: Double-free in Samba AD DC KDC with PKINIT
  CVE-2018-16851: NULL pointer de-reference in Samba AD DC LDAP server
  CVE-2018-16852: NULL pointer de-reference in Samba AD DC DNS servers
  CVE-2018-16853: Samba AD DC S4U2Self crash in experimental MIT Kerberos
    configuration (unsupported)
  CVE-2018-16857: Bad password count in AD DC not always effective
  For more information, see:
    https://www.samba.org/samba/security/CVE-2018-14629.html
    https://www.samba.org/samba/security/CVE-2018-16841.html
    https://www.samba.org/samba/security/CVE-2018-16851.html
    https://www.samba.org/samba/security/CVE-2018-16852.html
    https://www.samba.org/samba/security/CVE-2018-16853.html
    https://www.samba.org/samba/security/CVE-2018-16857.html
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14629
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16841
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16851
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16852
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16853
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16857
  (* Security fix *)
x/mesa-18.2.6-x86_64-1.txz:  Upgraded.
x/vulkan-sdk-1.1.92.1-x86_64-1.txz:  Upgraded.
2018-11-29 17:59:45 +01:00
Patrick J Volkerding
bec2525518 Mon Nov 26 22:58:11 UTC 2018
ap/lm_sensors-3.5.0-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
ap/sysstat-12.0.2-x86_64-2.txz:  Rebuilt.
  Recompiled against lm_sensors-3.5.0.
kde/kde-workspace-4.11.22-x86_64-6.txz:  Rebuilt.
  Recompiled against lm_sensors-3.5.0.
n/mutt-1.11.0-x86_64-1.txz:  Upgraded.
n/net-snmp-5.8-x86_64-3.txz:  Rebuilt.
  Recompiled against lm_sensors-3.5.0.
n/ntp-4.2.8p12-x86_64-3.txz:  Rebuilt.
  Recompiled against lm_sensors-3.5.0.
n/postfix-3.3.2-x86_64-1.txz:  Upgraded.
xap/gkrellm-2.3.10-x86_64-5.txz:  Rebuilt.
  Recompiled against lm_sensors-3.5.0.
2018-11-27 08:59:46 +01:00
Patrick J Volkerding
6b0434cfef Sat Nov 24 20:44:07 UTC 2018
a/tree-1.8.0-x86_64-1.txz:  Upgraded.
ap/cups-filters-1.21.4-x86_64-1.txz:  Upgraded.
ap/itstool-2.0.5-x86_64-1.txz:  Upgraded.
d/Cython-0.29.1-x86_64-1.txz:  Upgraded.
l/dconf-0.30.1-x86_64-1.txz:  Upgraded.
l/elfutils-0.175-x86_64-1.txz:  Upgraded.
l/gc-8.0.0-x86_64-1.txz:  Upgraded.
l/gobject-introspection-1.58.1-x86_64-1.txz:  Upgraded.
l/json-glib-1.4.4-x86_64-1.txz:  Upgraded.
l/keyutils-1.6-x86_64-1.txz:  Upgraded.
l/libjpeg-turbo-2.0.1-x86_64-1.txz:  Upgraded.
l/libpsl-0.20.2-x86_64-1.txz:  Upgraded.
l/libsecret-0.18.6-x86_64-3.txz:  Rebuilt.
  Recompiled with --enable-introspection (also picks up Vala support).
n/cyrus-sasl-2.1.27-x86_64-1.txz:  Upgraded.
n/dovecot-2.3.4-x86_64-1.txz:  Upgraded.
n/mailx-12.5-x86_64-4.txz:  Removed.
n/s-nail-14.9.11-x86_64-1.txz:  Added.
  This package replaces mailx. Thanks to Johannes Schoepfer.
tcl/tcl-8.6.9-x86_64-1.txz:  Upgraded.
tcl/tk-8.6.9.1-x86_64-1.txz:  Upgraded.
xap/gucharmap-11.0.3-x86_64-1.txz:  Upgraded.
xfce/xfce4-clipman-plugin-1.4.3-x86_64-1.txz:  Upgraded.
xfce/xfce4-screenshooter-1.9.3-x86_64-1.txz:  Upgraded.
2018-11-25 08:59:43 +01:00
Patrick J Volkerding
3a6358fa3e Thu Nov 15 19:47:53 UTC 2018
d/python-setuptools-40.6.2-x86_64-1.txz:  Upgraded.
l/python-requests-2.20.1-x86_64-1.txz:  Upgraded.
n/cifs-utils-6.8-x86_64-1.txz:  Upgraded.
n/getmail-5.8-x86_64-1.txz:  Upgraded.
n/nfs-utils-2.3.3-x86_64-1.txz:  Upgraded.
n/rpcbind-1.2.5-x86_64-1.txz:  Upgraded.
x/mesa-18.2.5-x86_64-1.txz:  Upgraded.
2018-11-16 08:59:44 +01:00
Patrick J Volkerding
7b3da2adfb Wed Nov 14 20:07:37 UTC 2018
a/xfsprogs-4.19.0-x86_64-1.txz:  Upgraded.
ap/sudo-1.8.26-x86_64-1.txz:  Upgraded.
l/babl-0.1.60-x86_64-1.txz:  Upgraded.
n/iptables-1.8.2-x86_64-1.txz:  Upgraded.
  Compiled against libnftnl-1.1.2.
n/libnftnl-1.1.2-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
n/nftables-0.9.0-x86_64-2.txz:  Rebuilt.
  Recompiled against libnftnl-1.1.2.
extra/pure-alsa-system/alsa-lib-1.1.7-x86_64-2_alsa.txz:  Rebuilt.
  Sorry this package had not been recompiled with the patch. Thanks to orbea
  for pointing this out.
2018-11-15 08:59:46 +01:00
Patrick J Volkerding
2520b90f18 Tue Nov 13 05:15:29 UTC 2018
d/python-setuptools-40.6.1-x86_64-1.txz:  Upgraded.
l/M2Crypto-0.31.0-x86_64-1.txz:  Upgraded.
l/SDL2-2.0.9-x86_64-2.txz:  Rebuilt.
  Fixed use of SDL_syswm.h with SDL_PROTOTYPES_ONLY in C++ mode.
  Thanks to orbea.
l/libtiff-4.0.10-x86_64-1.txz:  Upgraded.
  This update fixes some denial of service security issues.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10779
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18661
  (* Security fix *)
l/netpbm-10.84.02-x86_64-1.txz:  Upgraded.
n/net-snmp-5.8-x86_64-2.txz:  Rebuilt.
  Recompiled to link the perl modules to the new libraries. Thanks to th_r.
2018-11-13 17:59:46 +01:00
Patrick J Volkerding
374248fe50 Fri Nov 9 21:46:09 UTC 2018
a/udisks2-2.6.5-x86_64-3.txz:  Rebuilt.
  Recompiled against net-snmp-5.8.
ap/hplip-3.18.10-x86_64-2.txz:  Rebuilt.
  Recompiled against net-snmp-5.8.
d/bison-3.2.1-x86_64-1.txz:  Upgraded.
d/meson-0.48.2-x86_64-1.txz:  Upgraded.
l/pycairo-1.18.0-x86_64-1.txz:  Upgraded.
n/bridge-utils-1.6-x86_64-1.txz:  Upgraded.
n/net-snmp-5.8-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
n/ntp-4.2.8p12-x86_64-2.txz:  Rebuilt.
  Recompiled against net-snmp-5.8.
n/php-7.2.12-x86_64-2.txz:  Rebuilt.
  Recompiled against net-snmp-5.8.
xap/blackbox-0.74-x86_64-2.txz:  Rebuilt.
  When building, don't install anything to the system. Thanks to Didier Spaier.
xap/sane-1.0.27-x86_64-4.txz:  Rebuilt.
  Recompiled against net-snmp-5.8.
extra/aspell-word-lists/aspell-ar-1.2_0-x86_64-1.txz:  Added.
extra/aspell-word-lists/aspell-ast-0.01-x86_64-1.txz:  Added.
extra/aspell-word-lists/aspell-ca-2.1.5_1-x86_64-1.txz:  Upgraded.
extra/aspell-word-lists/aspell-de_alt-2.1_1-x86_64-1.txz:  Added.
extra/aspell-word-lists/aspell-fy-0.12_0-x86_64-1.txz:  Added.
extra/aspell-word-lists/aspell-grc-0.02_0-x86_64-1.txz:  Added.
extra/aspell-word-lists/aspell-hy-0.10.0_0-x86_64-1.txz:  Added.
extra/aspell-word-lists/aspell-ky-0.01_0-x86_64-1.txz:  Added.
extra/aspell-word-lists/aspell-ml-0.03_1-x86_64-1.txz:  Added.
extra/aspell-word-lists/aspell-pt_PT-20070510_0-x86_64-1.txz:  Added.
extra/aspell-word-lists/aspell-tk-0.01_0-x86_64-1.txz:  Added.
2018-11-10 08:59:45 +01:00
Patrick J Volkerding
0e6f7049d6 Fri Nov 9 02:42:22 UTC 2018
a/efibootmgr-16-x86_64-2.txz:  Rebuilt.
  Reverted to previous version. We'd tried this before and it still doesn't
  work. Thanks to _RDS_.
a/efivar-35-x86_64-1.txz:  Upgraded.
  Reverted to previous version. We'd tried this before and it still doesn't
  work. Thanks to _RDS_.
a/hwdata-0.317-noarch-1.txz:  Upgraded.
a/lvm2-2.03.01-x86_64-1.txz:  Upgraded.
a/quota-4.04-x86_64-1.txz:  Upgraded.
ap/cups-2.2.9-x86_64-1.txz:  Upgraded.
ap/sysstat-12.0.2-x86_64-1.txz:  Upgraded.
d/cscope-15.9-x86_64-1.txz:  Upgraded.
d/distcc-3.3.2-x86_64-1.txz:  Upgraded.
d/nasm-2.14-x86_64-1.txz:  Upgraded.
d/oprofile-1.3.0-x86_64-1.txz:  Upgraded.
d/rust-1.30.1-x86_64-1.txz:  Upgraded.
l/elfutils-0.174-x86_64-1.txz:  Upgraded.
l/shared-mime-info-1.10-x86_64-1.txz:  Upgraded.
n/samba-4.9.2-x86_64-1.txz:  Upgraded.
xap/gimp-2.10.8-x86_64-1.txz:  Upgraded.
2018-11-09 08:59:43 +01:00
Patrick J Volkerding
fa6118f0a7 Thu Nov 8 02:52:55 UTC 2018
a/aaa_terminfo-6.1_20181027-x86_64-2.txz:  Rebuilt.
a/efibootmgr-17-x86_64-1.txz:  Upgraded.
a/efivar-36-x86_64-1.txz:  Upgraded.
a/hostname-3.21-x86_64-1.txz:  Upgraded.
a/inotify-tools-3.20.1-x86_64-1.txz:  Upgraded.
a/mdadm-4.1-x86_64-1.txz:  Upgraded.
a/usb_modeswitch-2.5.2-x86_64-1.txz:  Upgraded.
a/util-linux-2.33-x86_64-1.txz:  Upgraded.
ap/cdrdao-1.2.4-x86_64-1.txz:  Upgraded.
ap/dash-0.5.10.2-x86_64-1.txz:  Upgraded.
ap/diffstat-1.62-x86_64-1.txz:  Upgraded.
ap/rpm-4.14.2.1-x86_64-1.txz:  Upgraded.
ap/sqlite-3.25.3-x86_64-1.txz:  Upgraded.
l/gnu-efi-3.0.9-x86_64-1.txz:  Upgraded.
l/iso-codes-4.1-noarch-1.txz:  Upgraded.
l/jasper-2.0.14-x86_64-1.txz:  Upgraded.
l/libbluray-1.0.2-x86_64-1.txz:  Upgraded.
l/libcap-ng-0.7.9-x86_64-1.txz:  Upgraded.
l/libiodbc-3.52.12-x86_64-1.txz:  Upgraded.
l/libodfgen-0.1.7-x86_64-1.txz:  Upgraded.
l/libwpd-0.10.2-x86_64-1.txz:  Upgraded.
l/libwpg-0.3.2-x86_64-1.txz:  Upgraded.
l/libyaml-0.2.1-x86_64-1.txz:  Upgraded.
l/ncurses-6.1_20181027-x86_64-2.txz:  Rebuilt.
  Temporarily removed the bce feature from the linux console definition until
  the console is fixed. Added a linux-bce terminal definition for testing.
l/sbc-1.4-x86_64-1.txz:  Upgraded.
l/zstd-1.3.7-x86_64-1.txz:  Upgraded.
n/gnupg2-2.2.11-x86_64-1.txz:  Upgraded.
n/ipset-7.0-x86_64-1.txz:  Upgraded.
n/libndp-1.7-x86_64-1.txz:  Upgraded.
n/npth-1.6-x86_64-1.txz:  Upgraded.
n/php-7.2.12-x86_64-1.txz:  Upgraded.
n/slrn-1.0.3a-x86_64-1.txz:  Upgraded.
n/snownews-1.6.10-x86_64-1.txz:  Upgraded.
n/whois-5.4.0-x86_64-1.txz:  Upgraded.
x/libinput-1.12.3-x86_64-1.txz:  Upgraded.
x/libva-2.3.0-x86_64-1.txz:  Upgraded.
x/libva-utils-2.3.0-x86_64-1.txz:  Upgraded.
x/libwacom-0.32-x86_64-1.txz:  Upgraded.
x/xdg-user-dirs-0.17-x86_64-1.txz:  Upgraded.
xap/blackbox-0.74-x86_64-1.txz:  Upgraded.
2018-11-08 08:59:43 +01:00
Patrick J Volkerding
0dada1b871 Fri Nov 2 20:41:52 UTC 2018
a/haveged-1.9.4-x86_64-1.txz:  Upgraded.
a/kernel-firmware-20181026_1baa348-noarch-1.txz:  Upgraded.
a/mcelog-161-x86_64-1.txz:  Upgraded.
ap/powertop-2.9-x86_64-1.txz:  Upgraded.
d/clisp-2.49_20180922_228b90a52-x86_64-1.txz:  Upgraded.
d/mercurial-4.8-x86_64-1.txz:  Upgraded.
l/fribidi-1.0.5-x86_64-1.txz:  Upgraded.
l/libjpeg-turbo-2.0.0-x86_64-1.txz:  Upgraded.
n/lynx-2.8.9rel.1-x86_64-1.txz:  Upgraded.
t/texlive-2018.180822-x86_64-3.txz:  Rebuilt.
  Rebuilt to recompile xindy for the upgraded CLISP runtime.
2018-11-03 08:59:43 +01:00
Patrick J Volkerding
190c4fa148 Fri Nov 2 01:21:12 UTC 2018
kde/kde-runtime-4.14.3-x86_64-8.txz:  Rebuilt.
  Applied upstream patch to fix info and man page display.
  Thanks to igadoter and lougavulin.
l/gegl-0.4.12-x86_64-1.txz:  Upgraded.
n/bind-9.12.3-x86_64-1.txz:  Upgraded.
x/mesa-18.2.4-x86_64-1.txz:  Upgraded.
extra/pure-alsa-system/kde-runtime-4.14.3-x86_64-8_alsa.txz:  Rebuilt.
  Applied upstream patch to fix info and man page display.
  Thanks to igadoter and lougavulin.
2018-11-02 08:59:43 +01:00
Patrick J Volkerding
94c93fbaaa Wed Oct 31 22:49:36 UTC 2018
d/subversion-1.11.0-x86_64-1.txz:  Upgraded.
l/SDL2-2.0.9-x86_64-1.txz:  Upgraded.
l/SDL2_gfx-1.0.4-x86_64-1.txz:  Upgraded.
l/SDL2_image-2.0.4-x86_64-1.txz:  Upgraded.
l/SDL2_mixer-2.0.4-x86_64-1.txz:  Upgraded.
n/autofs-5.1.5-x86_64-1.txz:  Upgraded.
n/curl-7.62.0-x86_64-1.txz:  Upgraded.
  This release fixes the following security issues:
  SASL password overflow via integer overflow.
  Use-after-free in handle close.
  Warning message out-of-buffer read.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16839
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16840
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16842
  (* Security fix *)
xap/mozilla-thunderbird-60.3.0-x86_64-1.txz:  Upgraded.
  This is a bugfix release. For more information, see:
  https://www.mozilla.org/en-US/thunderbird/60.3.0/releasenotes/
2018-11-01 09:00:29 +01:00
Patrick J Volkerding
686ec3f974 Tue Oct 30 21:50:53 UTC 2018
a/aaa_terminfo-6.1_20181027-x86_64-1.txz:  Upgraded.
ap/hplip-3.18.10-x86_64-1.txz:  Upgraded.
d/bison-3.2-x86_64-1.txz:  Upgraded.
d/strace-4.25-x86_64-1.txz:  Upgraded.
l/libsigc++-2.10.1-x86_64-1.txz:  Upgraded.
l/ncurses-6.1_20181027-x86_64-1.txz:  Upgraded.
l/xapian-core-1.4.8-x86_64-1.txz:  Upgraded.
n/getmail-5.7-x86_64-1.txz:  Upgraded.
xfce/xfce4-notifyd-0.4.3-x86_64-1.txz:  Upgraded.
2018-10-31 09:00:30 +01:00
Patrick J Volkerding
34b4c5ed43 Mon Oct 29 20:02:38 UTC 2018
a/glibc-zoneinfo-2018g-noarch-1.txz:  Upgraded.
a/hdparm-9.58-x86_64-1.txz:  Upgraded.
ap/gphoto2-2.5.20-x86_64-1.txz:  Upgraded.
d/python-setuptools-40.5.0-x86_64-1.txz:  Upgraded.
l/libgphoto2-2.5.20-x86_64-1.txz:  Upgraded.
l/libmtp-1.1.16-x86_64-1.txz:  Upgraded.
l/libssh-0.8.5-x86_64-1.txz:  Upgraded.
n/gpa-0.10.0-x86_64-1.txz:  Upgraded.
n/libgcrypt-1.8.4-x86_64-1.txz:  Upgraded.
2018-10-30 09:00:29 +01:00
Patrick J Volkerding
b80b3b22eb Wed Oct 24 21:22:04 UTC 2018
d/strace-20181024_43700247-x86_64-1.txz:  Upgraded.
l/alsa-plugins-1.1.7-x86_64-4.txz:  Rebuilt.
  Applied upstream fix for double free. Thanks to Jean-Philippe Guillemin.
n/httpd-2.4.37-x86_64-1.txz:  Upgraded.
n/mcabber-1.1.0-x86_64-1.txz:  Upgraded.
x/libepoxy-1.5.3-x86_64-1.txz:  Upgraded.
xap/pan-0.145-x86_64-1.txz:  Upgraded.
extra/pure-alsa-system/alsa-plugins-1.1.7-x86_64-4_alsa.txz:  Rebuilt.
  Applied upstream fix for double free. Thanks to Jean-Philippe Guillemin.
2018-10-25 09:00:34 +02:00
Patrick J Volkerding
1c1637ba89 Tue Oct 23 05:11:47 UTC 2018
a/kernel-generic-4.19.0-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.19.0-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.19.0-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.19.0-x86-1.txz:  Upgraded.
d/parallel-20181022-noarch-1.txz:  Upgraded.
k/kernel-source-4.19.0-noarch-1.txz:  Upgraded.
  [581 lines of diffconfig output omitted here]
l/alsa-plugins-1.1.7-x86_64-3.txz:  Rebuilt.
  Reverted two patches that have been reported to cause crashes with USB audio
  devices. Thanks to Jean-Philippe Guillemin.
l/harfbuzz-1.9.0-x86_64-2.txz:  Rebuilt.
  Reverted (for now) to harfbuzz-1.9.0 to fix build failures with texlive, php,
  and calligra caused by API changes. Thanks to nobodino.
l/libpng-1.6.35-x86_64-1.txz:  Upgraded.
n/samba-4.9.1-x86_64-1.txz:  Upgraded.
xap/mozilla-firefox-60.3.0esr-x86_64-1.txz:  Upgraded.
  This release contains security fixes and improvements.
  For more information, see:
    https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
  (* Security fix *)
extra/pure-alsa-system/alsa-plugins-1.1.7-x86_64-3_alsa.txz:  Rebuilt.
  Reverted two patches that have been reported to cause crashes with USB audio
  devices. Thanks to Jean-Philippe Guillemin.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2018-10-23 18:00:36 +02:00
Patrick J Volkerding
fcbdf0b9cc Fri Oct 19 19:59:54 UTC 2018
a/file-5.35-x86_64-1.txz:  Upgraded.
a/glibc-zoneinfo-2018f-noarch-1.txz:  Upgraded.
a/kernel-firmware-20181018_d877533-noarch-1.txz:  Upgraded.
ap/ksh93-20181018_89d7b802-x86_64-1.txz:  Upgraded.
l/harfbuzz-2.0.0-x86_64-1.txz:  Upgraded.
l/libopusenc-0.2.1-x86_64-1.txz:  Upgraded.
l/opus-1.3-x86_64-1.txz:  Upgraded.
l/v4l-utils-1.16.1-x86_64-1.txz:  Upgraded.
n/NetworkManager-1.14.2-x86_64-1.txz:  Upgraded.
n/dnsmasq-2.80-x86_64-1.txz:  Upgraded.
n/openssh-7.9p1-x86_64-1.txz:  Upgraded.
x/mesa-18.2.3-x86_64-1.txz:  Upgraded.
x/xkeyboard-config-2.25-noarch-1.txz:  Upgraded.
2018-10-20 09:00:32 +02:00
Patrick J Volkerding
8073ad053c Wed Oct 17 03:11:25 UTC 2018
a/bin-11.1-x86_64-3.txz:  Rebuilt.
  Renamed mktemp to mktemp-debianutils.
  Removed bban and sysvbanner which seem to be lacking proper licensing info.
a/coreutils-8.30-x86_64-2.txz:  Rebuilt.
  Renamed mktemp-gnu to mktemp.
a/xfsprogs-4.18.0-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-63.1.
ap/alsa-utils-1.1.7-x86_64-1.txz:  Upgraded.
ap/sqlite-3.25.2-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-63.1.
d/ccache-3.5-x86_64-1.txz:  Upgraded.
kde/calligra-2.9.11-x86_64-26.txz:  Rebuilt.
  Recompiled against icu4c-63.1.
l/alsa-lib-1.1.7-x86_64-1.txz:  Upgraded.
l/alsa-plugins-1.1.7-x86_64-1.txz:  Upgraded.
l/boost-1.68.0-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-63.1.
l/harfbuzz-1.9.0-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-63.1.
l/icu4c-63.1-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
  Those of you using Plasma 5 or various third party packages should know by
  now what it means when icu4c gets a bump in -current. You may want to wait
  a few days for those things to appear again rebuilt against this.
l/libical-3.0.4-x86_64-1.txz:  Upgraded.
  Compiled against icu4c-63.1.
l/libssh-0.7.6-x86_64-1.txz:  Upgraded.
  Fixed authentication bypass vulnerability.
  For more information, see:
    https://www.libssh.org/2018/10/16/libssh-0-8-4-and-0-7-6-security-and-bugfix-release/
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10933
  (* Security fix *)
l/libvisio-0.1.6-x86_64-5.txz:  Rebuilt.
  Recompiled against icu4c-63.1.
l/qt-4.8.7-x86_64-11.txz:  Rebuilt.
  Recompiled against icu4c-63.1.
l/raptor2-2.0.15-x86_64-6.txz:  Rebuilt.
  Recompiled against icu4c-63.1.
n/dovecot-2.3.3-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-63.1.
n/php-7.2.11-x86_64-1.txz:  Upgraded.
  Compiled against icu4c-63.1.
n/postfix-3.3.1-x86_64-3.txz:  Rebuilt.
  Recompiled against icu4c-63.1.
n/tin-2.4.2-x86_64-4.txz:  Rebuilt.
  Recompiled against icu4c-63.1.
t/texlive-2018.180822-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-63.1.
x/libdrm-2.4.96-x86_64-1.txz:  Upgraded.
xfce/exo-0.12.3-x86_64-1.txz:  Upgraded.
extra/brltty/brltty-5.6-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-63.1.
extra/pure-alsa-system/alsa-lib-1.1.7-x86_64-1_alsa.txz:  Upgraded.
extra/pure-alsa-system/alsa-plugins-1.1.7-x86_64-1_alsa.txz:  Upgraded.
2018-10-17 09:00:35 +02:00
Patrick J Volkerding
3f536b705b Thu Oct 4 19:58:13 UTC 2018
a/kernel-generic-4.14.74-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.14.74-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.14.74-x86_64-1.txz:  Upgraded.
ap/cups-filters-1.21.3-x86_64-1.txz:  Upgraded.
d/cmake-3.12.3-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.14.74-x86-1.txz:  Upgraded.
k/kernel-source-4.14.74-noarch-1.txz:  Upgraded.
l/gst-plugins-base-1.14.4-x86_64-1.txz:  Upgraded.
l/gst-plugins-good-1.14.4-x86_64-1.txz:  Upgraded.
l/gst-plugins-libav-1.14.4-x86_64-1.txz:  Upgraded.
l/gstreamer-1.14.4-x86_64-1.txz:  Upgraded.
n/dovecot-2.3.3-x86_64-1.txz:  Upgraded.
  Thanks to teoberi for the link to the glibc-2.28 crypt() patch.
extra/pure-alsa-system/gst-plugins-good-1.14.4-x86_64-1_alsa.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2018-10-05 09:00:31 +02:00
Patrick J Volkerding
23035b95d9 Wed Sep 26 21:18:33 UTC 2018
a/aaa_terminfo-6.1_20180923-x86_64-1.txz:  Upgraded.
a/eudev-3.2.6-x86_64-3.txz:  Rebuilt.
  Fixed issues with the default rules. Thanks to zuriel.
a/kernel-generic-4.14.72-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.14.72-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.14.72-x86_64-1.txz:  Upgraded.
ap/vim-8.1.0436-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.14.72-x86-1.txz:  Upgraded.
d/re2c-1.1.1-x86_64-1.txz:  Upgraded.
k/kernel-source-4.14.72-noarch-1.txz:  Upgraded.
l/ncurses-6.1_20180923-x86_64-1.txz:  Upgraded.
n/fetchmail-6.3.26-x86_64-5.txz:  Rebuilt.
  Patched to fix certificate verification failures with OpenSSL 1.1.1.
  Thanks to Jurgen Van Ham.
n/gnutls-3.6.4-x86_64-1.txz:  Upgraded.
x/xf86-video-intel-20180906_25c9a2fc-x86_64-1.txz:  Upgraded.
xap/vim-gvim-8.1.0436-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2018-09-27 09:00:30 +02:00
Patrick J Volkerding
6371ee337f Mon Sep 24 21:37:09 UTC 2018
d/Cython-0.28.5-x86_64-1.txz:  Upgraded.
d/help2man-1.47.7-x86_64-1.txz:  Upgraded.
d/meson-0.48.0-x86_64-1.txz:  Upgraded.
d/python-setuptools-40.4.3-x86_64-1.txz:  Upgraded.
l/M2Crypto-0.30.1-x86_64-1.txz:  Upgraded.
l/cairo-1.15.14-x86_64-1.txz:  Upgraded.
l/librsvg-2.44.4-x86_64-1.txz:  Upgraded.
l/pycairo-1.17.1-x86_64-1.txz:  Upgraded.
l/pycurl-7.43.0.2-x86_64-1.txz:  Upgraded.
l/pyparsing-2.2.1-x86_64-1.txz:  Upgraded.
n/ModemManager-1.8.2-x86_64-1.txz:  Upgraded.
n/bind-9.12.2_P2-x86_64-1.txz:  Upgraded.
  This update fixes security issues:
  There was a long-existing flaw in the documentation for ms-self, krb5-self,
  ms-subdomain, and krb5-subdomain rules in update-policy statements. Though
  the policies worked as intended, operators who configured their servers
  according to the misleading documentation may have thought zone updates were
  more restricted than they were; users of these rule types are advised to
  review the documentation and correct their configurations if necessary. New
  rule types matching the previously documented behavior will be introduced in
  a future maintenance release.
  named could crash during recursive processing of DNAME records when
  deny-answer-aliases was in use. This flaw is disclosed in CVE-2018-5740.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5740
  (* Security fix *)
n/httpd-2.4.35-x86_64-1.txz:  Upgraded.
  This release fixes bugs and regressions in httpd-2.4.34, adds an
  apache2ctl -> apachectl symlink, and no longer automatically
  overwrites rc.httpd when upgraded.
2018-09-25 09:00:30 +02:00
Patrick J Volkerding
48e09f463d Fri Sep 21 18:51:07 UTC 2018
a/eudev-3.2.6-x86_64-1.txz:  Upgraded.
a/glibc-solibs-2.28-x86_64-2.txz:  Upgraded.
a/grub-2.02-x86_64-3.txz:  Rebuilt.
  Patched to fix compatibility with recent xfsprogs. Thanks to Markus Wiesner.
a/kernel-generic-4.14.71-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.14.71-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.14.71-x86_64-1.txz:  Upgraded.
ap/opus-tools-0.2-x86_64-1.txz:  Upgraded.
ap/sqlite-3.25.1-x86_64-1.txz:  Upgraded.
d/icecream-20180905_cdc6ff8-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.14.71-x86-1.txz:  Upgraded.
d/llvm-7.0.0-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
k/kernel-source-4.14.71-noarch-1.txz:  Upgraded.
l/ffmpeg-3.4.4-x86_64-2.txz:  Rebuilt.
  Don't try to link with Samba since the latest version is not compatible.
l/glibc-2.28-x86_64-2.txz:  Upgraded.
  All packages have been patched where needed for glibc-2.28 and compile
  tested here. Thanks to nobodino for the help.
l/glibc-i18n-2.28-x86_64-2.txz:  Upgraded.
l/glibc-profile-2.28-x86_64-2.txz:  Upgraded.
l/gst-plugins-base-1.14.3-x86_64-1.txz:  Upgraded.
l/gst-plugins-good-1.14.3-x86_64-1.txz:  Upgraded.
l/gst-plugins-libav-1.14.3-x86_64-1.txz:  Upgraded.
l/gstreamer-1.14.3-x86_64-1.txz:  Upgraded.
l/imagemagick-6.9.10_11-x86_64-1.txz:  Upgraded.
l/libopusenc-0.2-x86_64-1.txz:  Added.
l/librsvg-2.44.3-x86_64-1.txz:  Upgraded.
l/opus-1.3_rc2-x86_64-1.txz:  Upgraded.
l/opusfile-0.11-x86_64-1.txz:  Upgraded.
l/soprano-2.9.4-x86_64-3.txz:  Rebuilt.
  Recompiled to drop virtuoso dependency.
l/virtuoso-ose-6.1.8-x86_64-9.txz:  Removed.
  Even KDE4 has migrated away from actually using this for anything. The last
  thing in Slackware that was dependent on it was Soprano, which has been
  recompiled to no longer use it.
n/postfix-3.3.1-x86_64-2.txz:  Rebuilt.
  Recompiled so that it quits whining about OpenSSL. Thanks to shastah.
x/mesa-18.2.1-x86_64-1.txz:  Upgraded.
  Compiled against llvm-7.0.0.
x/xf86-video-vmware-13.3.0-x86_64-2.txz:  Rebuilt.
  Recompiled against llvm-7.0.0.
x/xterm-336-x86_64-1.txz:  Upgraded.
extra/pure-alsa-system/ffmpeg-3.4.4-x86_64-2_alsa.txz:  Rebuilt.
  Don't try to link with Samba since the latest version is not compatible.
extra/pure-alsa-system/gst-plugins-good-1.14.3-x86_64-1_alsa.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2018-09-22 09:00:39 +02:00
Patrick J Volkerding
a22d184390 Tue Sep 18 19:22:30 UTC 2018
ap/dmidecode-3.2-x86_64-1.txz:  Upgraded.
ap/nano-3.1-x86_64-1.txz:  Upgraded.
ap/slackpkg-2.83.0-noarch-4.txz:  Rebuilt.
  Merged two patches from git:
  Clarify that a press of "Enter" is needed to confirm kernel change
  Mention possible stale mirror if CHECKSUMS.md5 gpg verify fails
  Thanks to Mario Preksavec and Robby Workman.
ap/sqlite-3.25.0-x86_64-1.txz:  Upgraded.
ap/xorriso-1.5.0-x86_64-1.txz:  Upgraded.
l/lmdb-0.9.22-x86_64-2.txz:  Rebuilt.
  Fixed the build script to clear out the build area properly - previously
  it was possible for binaries of the wrong $ARCH to end up in the package.
  Thanks to reddog83.
n/gnutls-3.6.3-x86_64-2.txz:  Rebuilt.
  Merged backported SSL/TLS fixes. Thanks to orbea.
n/samba-4.9.0-x86_64-2.txz:  Rebuilt.
  Recompiled in case the lmdb package was broken.
2018-09-19 09:00:33 +02:00
Patrick J Volkerding
77f4f1f5e6 Sat Sep 15 21:19:23 UTC 2018
a/kernel-firmware-20180913_44d4fca-noarch-1.txz:  Upgraded.
a/kernel-generic-4.14.70-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.14.70-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.14.70-x86_64-1.txz:  Upgraded.
ap/hplip-3.18.7-x86_64-4.txz:  Rebuilt.
  Applied fixed patch - this has a better chance of working now. I've checked
  and hpcups no longer links to libImageProcessor. Which, by the way, the
  previous build dumped onto my main system (not even in "make install"),
  but not into the package itself. I no longer own an HP printer and will
  never buy another one, so if there are any remaining problems please report.
  Thanks to Matteo Bernardini.
d/kernel-headers-4.14.70-x86-1.txz:  Upgraded.
k/kernel-source-4.14.70-noarch-1.txz:  Upgraded.
  Config changes since 4.14.69:
   CLEANCACHE n -> y
   CMA n -> y
   MEMORY_FAILURE n -> y
   NUMA n -> y
   X86_CHECK_BIOS_CORRUPTION n -> y
   Z3FOLD m -> y
   ZBUD m -> y
   ZSMALLOC m -> y
  +ACPI_APEI_MEMORY_FAILURE y
  +ACPI_NUMA y
  +AMD_NUMA y
  +CMA_AREAS 7
  +CMA_DEBUG n
  +CMA_DEBUGFS n
  +DMA_CMA n
  +HWPOISON_INJECT m
  +NEED_MULTIPLE_NODES y
  +NODES_SHIFT 6
  +NODES_SPAN_OTHER_NODES y
  +NUMA_BALANCING n
  +NUMA_EMU n
  +RAS_CEC n
  +USE_PERCPU_NUMA_NODE_ID y
  +X86_64_ACPI_NUMA y
  +X86_BOOTPARAM_MEMORY_CORRUPTION_CHECK n
n/NetworkManager-1.14.0-x86_64-1.txz:  Upgraded.
  Added new options:  --enable-json-validation --enable-ovs
xap/network-manager-applet-1.8.18-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
pasture/php-5.6.38-x86_64-1.txz:  Upgraded.
  One security bug has been fixed in this release:
  Apache2: XSS due to the header Transfer-Encoding: chunked
  For more information, see:
    https://php.net/ChangeLog-5.php#5.6.38
  (* Security fix *)
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2018-09-16 09:00:33 +02:00
Patrick J Volkerding
1b2f3407f0 Fri Sep 14 23:06:26 UTC 2018
ap/hplip-3.18.7-x86_64-3.txz:  Rebuilt.
  Throw away the broken and ill-advised libImageProcessor closed-source blob.
  Thanks to Matteo Bernardini.
ap/zsh-5.6.2-x86_64-1.txz:  Upgraded.
d/rust-1.29.0-x86_64-1.txz:  Upgraded.
l/lmdb-0.9.22-x86_64-1.txz:  Added.
  This is a new dependency of Samba.
n/php-7.2.10-x86_64-1.txz:  Upgraded.
  This is a security release which also contains several minor bug fixes.
  For more information, see:
    https://php.net/ChangeLog-7.php#7.2.10
  (* Security fix *)
n/samba-4.9.0-x86_64-1.txz:  Upgraded.
x/xf86-video-amdgpu-18.1.0-x86_64-1.txz:  Upgraded.
x/xf86-video-ati-18.1.0-x86_64-1.txz:  Upgraded.
2018-09-15 09:00:31 +02:00
Patrick J Volkerding
4ccd8ebc9a Wed Sep 12 21:19:38 UTC 2018
a/elilo-3.16-x86_64-8.txz:  Rebuilt.
  eliloconfig: this was occasionally failing and the issue was traced to the
  script's use of tr (not sure why still). Replaced the construct with sed
  and the issue seems to have gone away.
a/openssl-solibs-1.1.1-x86_64-1.txz:  Upgraded.
d/binutils-2.31.1-x86_64-3.txz:  Rebuilt.
  Do not install the Windows-specific tools. Not only are these useless on
  Linux, but the presence of windres fools freetype into thinking that it is
  on a Windows system, leading to a build failure.
d/git-2.19.0-x86_64-1.txz:  Upgraded.
l/freetype-2.9.1-x86_64-1.txz:  Upgraded.
l/harfbuzz-1.9.0-x86_64-1.txz:  Upgraded.
l/media-player-info-24-noarch-1.txz:  Upgraded.
l/pcre2-10.32-x86_64-1.txz:  Upgraded.
l/sg3_utils-1.43-x86_64-1.txz:  Upgraded.
n/openssl-1.1.1-x86_64-1.txz:  Upgraded.
x/fontconfig-2.13.1-x86_64-1.txz:  Upgraded.
  We had problem reports with fontconfig-2.13.0 which led to it being reverted
  but we'll try it again. Please let me know if the issues (with Wine iirc)
  persist.
x/libinput-1.12.0-x86_64-1.txz:  Upgraded.
2018-09-13 09:00:32 +02:00
Patrick J Volkerding
4ffeac7318 Mon Sep 10 21:00:00 UTC 2018
a/kernel-generic-4.14.69-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.14.69-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.14.69-x86_64-1.txz:  Upgraded.
a/xfsprogs-4.18.0-x86_64-1.txz:  Upgraded.
ap/nano-3.0-x86_64-1.txz:  Upgraded.
d/cmake-3.12.2-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.14.69-x86-1.txz:  Upgraded.
k/kernel-source-4.14.69-noarch-1.txz:  Upgraded.
  Config changes since 4.14.68:
   CRYPTO_LZO m -> y
   FRONTSWAP n -> y
   ZBUD n -> m
   ZPOOL m -> y
  +ZSWAP y
  Thanks to Darth Vader.
l/glib2-2.56.2-x86_64-2.txz:  Rebuilt.
  Make links in the documentation directory to all of the API documentation
  found under /usr/share/gtk-doc/html. Thanks to Didier Spaier.
l/libarchive-3.3.3-x86_64-1.txz:  Upgraded.
n/links-2.17-x86_64-1.txz:  Upgraded.
xfce/tumbler-0.2.2-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2018-09-11 03:00:39 +02:00
Patrick J Volkerding
ce9883adca Thu Sep 6 06:15:46 UTC 2018
a/acpid-2.0.30-x86_64-1.txz:  Upgraded.
a/etc-15.0-x86_64-9.txz:  Rebuilt.
  Added support for /etc/ld.so.conf.d/. Thanks to Qury.
a/kernel-firmware-20180904_85c5d90-noarch-1.txz:  Upgraded.
a/kernel-generic-4.14.68-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.14.68-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.14.68-x86_64-1.txz:  Upgraded.
a/pkgtools-15.0-noarch-22.txz:  Rebuilt.
  installpkg: prevent noise from the "stray cat" if tar hands it a broken
  pipe. Thanks to ivandi.
  Also (in the comments) provide a possibly better but untested solution.
  Thanks to SeB.
a/sysvinit-2.90-x86_64-2.txz:  Rebuilt.
  sysvinit-2.90 added an undocumented feature that tries to spawn agetty
  if it sees console= in the kernel command line. Avoiding the debate about
  whether this code belongs in init at all, at least such a change should
  be documented, and probably made opt-in. This patch disables the new
  behavior unless "sysvinit_agetty" is also seen in the kernel command line.
  It seems like this might have been something added for Hurd, and it might
  be wise to stick to what we've got rather than following upstream on this
  particular package. If anyone notices any other odd behavior, please let
  me know. Thanks to shastah.
a/sysvinit-scripts-2.1-noarch-19.txz:  Rebuilt.
  When checking for intel_pstate, direct the stderr to /dev/null in case
  the file doesn't exist in /sys. Thanks to ivandi.
  Allow forcing an option by editing /etc/default/cpufreq.
ap/cups-filters-1.21.2-x86_64-1.txz:  Upgraded.
ap/ghostscript-9.24-x86_64-1.txz:  Upgraded.
  Patched multiple -dSAFER sandbox bypass vulnerabilities.
  Thanks to Tavis Ormandy.
  For more information, see:
    https://www.ghostscript.com/doc/9.24/News.htm
    https://www.kb.cert.org/vuls/id/332928
  (* Security fix *)
ap/sudo-1.8.25-x86_64-1.txz:  Upgraded.
d/binutils-2.31.1-x86_64-2.txz:  Rebuilt.
  elf.c (_bfd_elf_get_symbol_version_string): Return _("<corrupt>") for
  corrupt symbol version info.
  elflink.c (bfd_elf_record_link_assignment): Always clear h->verinfo.verdef
  when overriding a dynamic definition.
  Thanks to Michael Short for pointing out the upstream patches.
d/ccache-3.4.3-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.14.68-x86-1.txz:  Upgraded.
d/llvm-6.0.1-x86_64-2.txz:  Rebuilt.
  Recompiled with -DCLANG_BUILD_SHARED_LIBS=ON to fix issues when multiple
  OpenCL drivers are installed. Thanks to Heinz Wiesinger.
d/mercurial-4.7.1-x86_64-1.txz:  Upgraded.
k/kernel-source-4.14.68-noarch-1.txz:  Upgraded.
l/mozilla-nss-3.39-x86_64-1.txz:  Upgraded.
n/curl-7.61.1-x86_64-1.txz:  Upgraded.
  This update fixes an NTLM password overflow via integer overflow.
  For more information, see:
    https://curl.haxx.se/docs/CVE-2018-14618.html
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14618
  (* Security fix *)
n/gnupg2-2.2.10-x86_64-1.txz:  Upgraded.
n/libtirpc-1.1.4-x86_64-1.txz:  Upgraded.
n/netatalk-3.1.11-x86_64-2.txz:  Rebuilt.
  rc.atalk: fixed errors in status output. Thanks to marav.
n/nghttp2-1.33.0-x86_64-1.txz:  Upgraded.
n/p11-kit-0.23.14-x86_64-1.txz:  Upgraded.
n/stunnel-5.49-x86_64-1.txz:  Upgraded.
x/libdrm-2.4.94-x86_64-1.txz:  Upgraded.
x/xf86-video-ati-20180824_de88ea27-x86_64-1.txz:  Upgraded.
xap/hexchat-2.14.2-x86_64-1.txz:  Upgraded.
xap/mozilla-firefox-60.2.0esr-x86_64-1.txz:  Upgraded.
  This release contains security fixes and improvements.
  For more information, see:
    https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
  (* Security fix *)
xap/xlockmore-5.56-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2018-09-06 18:00:33 +02:00
Patrick J Volkerding
b70192b921 Mon Aug 27 20:27:22 UTC 2018
a/kernel-firmware-20180825_fea76a0-noarch-1.txz:  Upgraded.
ap/vim-8.1.0328-x86_64-1.txz:  Upgraded.
d/meson-0.47.2-x86_64-1.txz:  Upgraded.
d/python-setuptools-40.2.0-x86_64-1.txz:  Upgraded.
l/python-certifi-2018.8.24-x86_64-1.txz:  Upgraded.
l/python-idna-2.7-x86_64-1.txz:  Upgraded.
l/python-packaging-17.1-x86_64-1.txz:  Upgraded.
l/python-pillow-5.2.0-x86_64-1.txz:  Upgraded.
l/python-requests-2.19.1-x86_64-1.txz:  Upgraded.
l/python-urllib3-1.23-x86_64-1.txz:  Upgraded.
l/talloc-2.1.14-x86_64-1.txz:  Upgraded.
l/tdb-1.3.16-x86_64-1.txz:  Upgraded.
l/tevent-0.9.37-x86_64-1.txz:  Upgraded.
n/ethtool-4.18-x86_64-1.txz:  Upgraded.
n/openssh-7.8p1-x86_64-1.txz:  Upgraded.
n/samba-4.8.5-x86_64-1.txz:  Upgraded.
x/xauth-1.0.10-x86_64-3.txz:  Rebuilt.
  Patched to fix a bug where changing the hostname caused X access to be lost.
  Thanks to TurboBlaze.
xap/vim-gvim-8.1.0328-x86_64-1.txz:  Upgraded.
2018-08-28 09:00:35 +02:00