Commit graph

7 commits

Author SHA1 Message Date
Patrick J Volkerding
ff3b814028 Thu Dec 19 23:02:54 UTC 2019
d/cmake-3.16.2-x86_64-1.txz:  Upgraded.
d/rust-1.40.0-x86_64-1.txz:  Upgraded.
  Package debloating patches are no longer needed.
  No build regressions noted with Firefox, Seamonkey, or Thunderbird.
l/glib2-2.62.4-x86_64-1.txz:  Upgraded.
l/imagemagick-7.0.9_9-x86_64-1.txz:  Upgraded.
l/wavpack-5.2.0-x86_64-1.txz:  Upgraded.
  Fixed denial-of-service and other potential security issues.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19840
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19841
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10536
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10537
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10538
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10539
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10540
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7254
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7253
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6767
  (* Security fix *)
n/bind-9.14.9-x86_64-1.txz:  Upgraded.
  This is a bugfix release:
  Fixed a bug that caused named to leak memory on reconfiguration when
  any GeoIP2 database was in use. [GL #1445]
  Fixed several possible race conditions discovered by Thread Sanitizer.
n/mutt-1.13.2-x86_64-1.txz:  Upgraded.
n/php-7.4.1-x86_64-1.txz:  Upgraded.
  This update fixes bugs and security issues:
  Bcmath: Buffer underflow in bc_shift_addsub.
  Core: link() silently truncates after a null byte on Windows.
  Core: DirectoryIterator class silently truncates after a null byte.
  Core: mail() may release string with refcount==1 twice.
  EXIF: Use-after-free in exif parsing under memory sanitizer.
  EXIF: Heap-buffer-overflow READ in exif.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11046
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11044
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11045
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11049
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11050
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11047
  (* Security fix *)
x/intel-vaapi-driver-2.4.0-x86_64-1.txz:  Upgraded.
x/vulkan-sdk-1.1.126.0-x86_64-2.txz:  Rebuilt.
  Install SPIRV headers in two places to fix building shaderc.
  Thanks to orbea.
xfce/exo-0.12.11-x86_64-1.txz:  Upgraded.
2019-12-20 08:59:50 +01:00
Patrick J Volkerding
0857ff7f63 Mon Sep 30 21:08:32 UTC 2019
d/llvm-9.0.0-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
  Thanks to orbea for getting this working and cleaning up the build script.
d/vala-0.46.2-x86_64-1.txz:  Upgraded.
l/imagemagick-6.9.10_67-x86_64-1.txz:  Upgraded.
  Fixed --disable-opencl configure option. Thanks to Markus Wiesner for the
  bug report and to upstream for the quick fix.
n/NetworkManager-1.20.4-x86_64-1.txz:  Upgraded.
n/gnutls-3.6.10-x86_64-1.txz:  Upgraded.
x/freeglut-3.2.1-x86_64-1.txz:  Upgraded.
x/libglvnd-1.1.1-x86_64-2.txz:  Upgraded.
  Reverted to this version since I'm seeing some errors linking with Mesa
  libraries with the newer one. Thanks to nobodino for the bug report.
x/mesa-19.2.0-x86_64-2.txz:  Rebuilt.
  Recompiled against llvm-9.0.0 and libglvnd-1.1.1.
x/xf86-video-vmware-13.3.0-x86_64-3.txz:  Rebuilt.
  Recompiled against llvm-9.0.0.
2019-10-01 08:59:50 +02:00
Patrick J Volkerding
7284497dcf Thu Nov 29 05:53:27 UTC 2018
a/sysvinit-scripts-2.1-noarch-23.txz:  Rebuilt.
  rc.S: simplify test for F2FS filesystem on /. Thanks to GazL.
ap/soma-3.2.0-noarch-1.txz:  Upgraded.
d/cmake-3.13.1-x86_64-1.txz:  Upgraded.
l/jansson-2.12-x86_64-1.txz:  Upgraded.
n/rp-pppoe-3.13-x86_64-1.txz:  Upgraded.
n/samba-4.9.3-x86_64-1.txz:  Upgraded.
  This update fixes bugs and security issues:
  CVE-2018-14629: Unprivileged adding of CNAME record causing loop in AD
    Internal DNS server
  CVE-2018-16841: Double-free in Samba AD DC KDC with PKINIT
  CVE-2018-16851: NULL pointer de-reference in Samba AD DC LDAP server
  CVE-2018-16852: NULL pointer de-reference in Samba AD DC DNS servers
  CVE-2018-16853: Samba AD DC S4U2Self crash in experimental MIT Kerberos
    configuration (unsupported)
  CVE-2018-16857: Bad password count in AD DC not always effective
  For more information, see:
    https://www.samba.org/samba/security/CVE-2018-14629.html
    https://www.samba.org/samba/security/CVE-2018-16841.html
    https://www.samba.org/samba/security/CVE-2018-16851.html
    https://www.samba.org/samba/security/CVE-2018-16852.html
    https://www.samba.org/samba/security/CVE-2018-16853.html
    https://www.samba.org/samba/security/CVE-2018-16857.html
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14629
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16841
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16851
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16852
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16853
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16857
  (* Security fix *)
x/mesa-18.2.6-x86_64-1.txz:  Upgraded.
x/vulkan-sdk-1.1.92.1-x86_64-1.txz:  Upgraded.
2018-11-29 17:59:45 +01:00
Patrick J Volkerding
7716b728c1 Wed Oct 10 23:09:36 UTC 2018
a/kernel-firmware-20181008_c6b6265-noarch-1.txz:  Upgraded.
a/kernel-generic-4.14.75-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.14.75-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.14.75-x86_64-1.txz:  Upgraded.
d/git-2.19.1-x86_64-1.txz:  Upgraded.
  Submodules' "URL"s come from the untrusted .gitmodules file, but we
  blindly gave it to "git clone" to clone submodules when "git clone
  --recurse-submodules" was used to clone a project that has such a
  submodule. The code has been hardened to reject such malformed URLs
  (e.g. one that begins with a dash). Credit for finding and fixing this
  vulnerability goes to joernchen and Jeff King, respectively.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17456
  (* Security fix *)
d/kernel-headers-4.14.75-x86-1.txz:  Upgraded.
d/make-4.2.1-x86_64-4.txz:  Rebuilt.
  Use a non-blocking read with pselect to avoid hangs.
  Thanks to Linux.tar.gz and David Spencer.
d/subversion-1.10.3-x86_64-1.txz:  Upgraded.
k/kernel-source-4.14.75-noarch-1.txz:  Upgraded.
  Config changes since 4.14.74:
  FB_HYPERV n -> m
  Thanks to walecha.
l/librsvg-2.44.7-x86_64-1.txz:  Upgraded.
l/python-pillow-5.3.0-x86_64-1.txz:  Upgraded.
n/nghttp2-1.34.0-x86_64-1.txz:  Upgraded.
x/libSM-1.2.3-x86_64-1.txz:  Upgraded.
x/libX11-1.6.7-x86_64-1.txz:  Upgraded.
x/libdrm-2.4.95-x86_64-1.txz:  Upgraded.
x/libxcb-1.13.1-x86_64-1.txz:  Upgraded.
x/vulkan-sdk-1.1.85.0-x86_64-1.txz:  Upgraded.
  Thanks to dugan.
xap/gnuplot-5.2.5-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2018-10-11 09:00:31 +02:00
Patrick J Volkerding
48e09f463d Fri Sep 21 18:51:07 UTC 2018
a/eudev-3.2.6-x86_64-1.txz:  Upgraded.
a/glibc-solibs-2.28-x86_64-2.txz:  Upgraded.
a/grub-2.02-x86_64-3.txz:  Rebuilt.
  Patched to fix compatibility with recent xfsprogs. Thanks to Markus Wiesner.
a/kernel-generic-4.14.71-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.14.71-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.14.71-x86_64-1.txz:  Upgraded.
ap/opus-tools-0.2-x86_64-1.txz:  Upgraded.
ap/sqlite-3.25.1-x86_64-1.txz:  Upgraded.
d/icecream-20180905_cdc6ff8-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.14.71-x86-1.txz:  Upgraded.
d/llvm-7.0.0-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
k/kernel-source-4.14.71-noarch-1.txz:  Upgraded.
l/ffmpeg-3.4.4-x86_64-2.txz:  Rebuilt.
  Don't try to link with Samba since the latest version is not compatible.
l/glibc-2.28-x86_64-2.txz:  Upgraded.
  All packages have been patched where needed for glibc-2.28 and compile
  tested here. Thanks to nobodino for the help.
l/glibc-i18n-2.28-x86_64-2.txz:  Upgraded.
l/glibc-profile-2.28-x86_64-2.txz:  Upgraded.
l/gst-plugins-base-1.14.3-x86_64-1.txz:  Upgraded.
l/gst-plugins-good-1.14.3-x86_64-1.txz:  Upgraded.
l/gst-plugins-libav-1.14.3-x86_64-1.txz:  Upgraded.
l/gstreamer-1.14.3-x86_64-1.txz:  Upgraded.
l/imagemagick-6.9.10_11-x86_64-1.txz:  Upgraded.
l/libopusenc-0.2-x86_64-1.txz:  Added.
l/librsvg-2.44.3-x86_64-1.txz:  Upgraded.
l/opus-1.3_rc2-x86_64-1.txz:  Upgraded.
l/opusfile-0.11-x86_64-1.txz:  Upgraded.
l/soprano-2.9.4-x86_64-3.txz:  Rebuilt.
  Recompiled to drop virtuoso dependency.
l/virtuoso-ose-6.1.8-x86_64-9.txz:  Removed.
  Even KDE4 has migrated away from actually using this for anything. The last
  thing in Slackware that was dependent on it was Soprano, which has been
  recompiled to no longer use it.
n/postfix-3.3.1-x86_64-2.txz:  Rebuilt.
  Recompiled so that it quits whining about OpenSSL. Thanks to shastah.
x/mesa-18.2.1-x86_64-1.txz:  Upgraded.
  Compiled against llvm-7.0.0.
x/xf86-video-vmware-13.3.0-x86_64-2.txz:  Rebuilt.
  Recompiled against llvm-7.0.0.
x/xterm-336-x86_64-1.txz:  Upgraded.
extra/pure-alsa-system/ffmpeg-3.4.4-x86_64-2_alsa.txz:  Rebuilt.
  Don't try to link with Samba since the latest version is not compatible.
extra/pure-alsa-system/gst-plugins-good-1.14.3-x86_64-1_alsa.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2018-09-22 09:00:39 +02:00
Patrick J Volkerding
a27618d0d0 Tue Jun 19 05:47:22 UTC 2018
a/btrfs-progs-v4.17-x86_64-1.txz:  Upgraded.
a/lvm2-2.02.179-x86_64-1.txz:  Upgraded.
l/imagemagick-6.9.10_2-x86_64-1.txz:  Upgraded.
n/NetworkManager-1.10.10-x86_64-1.txz:  Upgraded.
x/vulkan-sdk-1.1.73.0-x86_64-1.txz:  Upgraded.
2018-06-19 21:00:33 +02:00
Patrick J Volkerding
646a5c1cbf Mon May 28 19:12:29 UTC 2018
a/pkgtools-15.0-noarch-13.txz:  Rebuilt.
  installpkg: default line length for --terselength is the number of columns.
  removepkg: added --terse mode.
  upgradepkg: default line length for --terselength is the number of columns.
  upgradepkg: accept -option in addition to --option.
ap/vim-8.1.0026-x86_64-1.txz:  Upgraded.
d/bison-3.0.5-x86_64-1.txz:  Upgraded.
e/emacs-26.1-x86_64-1.txz:  Upgraded.
kde/kopete-4.14.3-x86_64-8.txz:  Rebuilt.
  Recompiled against libidn-1.35.
n/conntrack-tools-1.4.5-x86_64-1.txz:  Upgraded.
n/libnetfilter_conntrack-1.0.7-x86_64-1.txz:  Upgraded.
n/libnftnl-1.1.0-x86_64-1.txz:  Upgraded.
n/links-2.16-x86_64-2.txz:  Rebuilt.
  Rebuilt to enable X driver for -g mode.
n/lynx-2.8.9dev.19-x86_64-1.txz:  Upgraded.
n/nftables-0.8.5-x86_64-1.txz:  Upgraded.
n/p11-kit-0.23.11-x86_64-1.txz:  Upgraded.
n/ulogd-2.0.7-x86_64-1.txz:  Upgraded.
n/whois-5.3.1-x86_64-1.txz:  Upgraded.
xap/network-manager-applet-1.8.12-x86_64-1.txz:  Upgraded.
xap/vim-gvim-8.1.0026-x86_64-1.txz:  Upgraded.
2018-05-31 23:39:35 +02:00