a/btrfs-progs-v4.19.1-x86_64-1.txz: Upgraded.
a/dbus-1.12.12-x86_64-1.txz: Upgraded.
ap/cups-2.2.10-x86_64-1.txz: Upgraded.
ap/cups-filters-1.21.5-x86_64-1.txz: Upgraded.
ap/hplip-3.18.12-x86_64-1.txz: Upgraded.
d/mercurial-4.8.1-x86_64-1.txz: Upgraded.
d/rust-1.31.0-x86_64-1.txz: Upgraded.
l/libpng-1.6.36-x86_64-1.txz: Upgraded.
l/python-idna-2.8-x86_64-1.txz: Upgraded.
n/ntp-4.2.8p12-x86_64-5.txz: Rebuilt.
Fixed logrotate file. Thanks to allend and rworkman.
n/php-7.2.13-x86_64-1.txz: Upgraded.
This is a security release which also contains several minor bug fixes.
For more information, see:
https://php.net/ChangeLog-7.php#7.2.13
(* Security fix *)
n/wpa_supplicant-2.7-x86_64-1.txz: Upgraded.
x/mesa-18.3.0-x86_64-1.txz: Upgraded.
x/xf86-video-i740-1.4.0-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-60.3.3-x86_64-1.txz: Upgraded.
This is a bugfix release. For more information, see:
https://www.mozilla.org/en-US/thunderbird/60.3.3/releasenotes/
xfce/thunar-volman-0.9.1-x86_64-1.txz: Upgraded.
ap/texinfo-6.5-x86_64-7.txz: Rebuilt.
Recompiled against perl-5.28.1.
ap/vim-8.1.0552-x86_64-1.txz: Upgraded.
Compiled against perl-5.28.1.
d/perl-5.28.1-x86_64-1.txz: Upgraded.
Upgraded DBD-mysql-4.049, DBI-1.642, abd IO-Socket-SSL-2.060.
Added Devel-CheckLib-1.13 (needed by DBD-mysql-4.049).
kde/perlkde-4.14.3-x86_64-7.txz: Rebuilt.
Recompiled against perl-5.28.1.
kde/perlqt-4.14.3-x86_64-8.txz: Rebuilt.
Recompiled against perl-5.28.1.
n/epic5-2.0.1-x86_64-7.txz: Rebuilt.
Recompiled against perl-5.28.1.
n/irssi-1.1.1-x86_64-5.txz: Rebuilt.
Recompiled against perl-5.28.1.
n/net-snmp-5.8-x86_64-4.txz: Rebuilt.
Recompiled against perl-5.28.1.
n/ntp-4.2.8p12-x86_64-4.txz: Rebuilt.
Recompiled against perl-5.28.1.
xap/hexchat-2.14.2-x86_64-2.txz: Rebuilt.
Recompiled against perl-5.28.1.
xap/mozilla-thunderbird-60.3.2-x86_64-1.txz: Upgraded.
This is a bugfix release. For more information, see:
https://www.mozilla.org/en-US/thunderbird/60.3.2/releasenotes/
xap/rxvt-unicode-9.22-x86_64-6.txz: Rebuilt.
Recompiled against perl-5.28.1.
xap/vim-gvim-8.1.0552-x86_64-1.txz: Upgraded.
Compiled against perl-5.28.1.
xfce/xfce4-systemload-plugin-1.2.2-x86_64-1.txz: Upgraded.
n/mutt-1.11.0-x86_64-2.txz: Rebuilt.
Put info file in /usr/info and compress it.
Don't include /usr/info/dir.
Thanks to Edward Trumbo.
After upgrading this package, you'll need to reinstall the texinfo package
to restore the missing /usr/info/dir file.
n/wget-1.20-x86_64-1.txz: Upgraded.
a/kernel-generic-4.19.3-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.3-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.3-x86_64-1.txz: Upgraded.
a/openssl-solibs-1.1.1a-x86_64-1.txz: Upgraded.
a/sysvinit-scripts-2.1-noarch-21.txz: Rebuilt.
rc.S: Don't run rc.fuse - udev takes care of the FUSE module and filesystem.
rc.S: Support replacing the /etc/mtab file with a symlink to /proc/mounts.
rc.6: Show more information when unmounting filesystems at shutdown.
ap/ghostscript-9.26-x86_64-1.txz: Upgraded.
ap/mariadb-10.3.11-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues.
For more information, see:
https://mariadb.com/kb/en/library/mariadb-10311-release-notes/https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3282
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2016-9843
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3174
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3143
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3156
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3251
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3185
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3277
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3162
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3173
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3200
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3284
(* Security fix *)
d/cmake-3.13.0-x86_64-1.txz: Upgraded.
d/git-2.19.2-x86_64-1.txz: Upgraded.
d/kernel-headers-4.14.63-x86-1.txz: Upgraded.
d/kernel-headers-4.19.3-x86-1.txz: Upgraded.
d/vala-0.42.3-x86_64-1.txz: Added.
k/kernel-source-4.19.3-noarch-1.txz: Upgraded.
l/adwaita-icon-theme-3.30.0-noarch-1.txz: Upgraded.
l/at-spi2-atk-2.30.0-x86_64-1.txz: Upgraded.
l/at-spi2-core-2.30.0-x86_64-1.txz: Upgraded.
l/atk-2.30.0-x86_64-1.txz: Upgraded.
l/atkmm-2.28.0-x86_64-1.txz: Upgraded.
l/dconf-0.28.0-x86_64-1.txz: Upgraded.
dconf and dconf-editor require Vala; the alternative would be to try to
stick with the old versions forever, and we don't want to do that.
l/dconf-editor-3.30.2-x86_64-1.txz: Upgraded.
l/gcr-3.28.0-x86_64-3.txz: Rebuilt.
Recompiled to add Vala bindings.
l/gdk-pixbuf2-2.38.0-x86_64-1.txz: Upgraded.
l/gexiv2-0.10.9-x86_64-1.txz: Upgraded.
l/glib-networking-2.58.0-x86_64-1.txz: Upgraded.
l/glib2-2.58.1-x86_64-1.txz: Upgraded.
l/glibmm-2.58.0-x86_64-1.txz: Upgraded.
l/gobject-introspection-1.58.0-x86_64-1.txz: Upgraded.
l/gtk+3-3.24.1-x86_64-1.txz: Upgraded.
l/gtkmm3-3.24.0-x86_64-1.txz: Upgraded.
l/gvfs-1.38.1-x86_64-1.txz: Upgraded.
l/libcap-2.26-x86_64-1.txz: Upgraded.
l/libpsl-0.20.1-x86_64-1.txz: Added.
Required by libsoup.
l/libsoup-2.64.2-x86_64-1.txz: Upgraded.
l/pangomm-2.42.0-x86_64-1.txz: Upgraded.
l/pygobject3-3.30.2-x86_64-1.txz: Upgraded.
l/vte-0.54.2-x86_64-1.txz: Upgraded.
n/openssl-1.1.1a-x86_64-1.txz: Upgraded.
This update fixes timing side channel attacks on DSA and ECDSA signature
generation that could allow an attacker to recover the private key.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0734https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0735
(* Security fix *)
x/pixman-0.36.0-x86_64-1.txz: Upgraded.
xfce/xfce4-terminal-0.8.7.4-x86_64-2.txz: Rebuilt.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/aaa_terminfo-6.1_20181110-x86_64-1.txz: Upgraded.
a/kernel-generic-4.19.2-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.2-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.2-x86_64-1.txz: Upgraded.
ap/vim-8.1.0526-x86_64-1.txz: Upgraded.
Don't package .desktop files for the base vim package.
Move the terminal-based vim.desktop (menu clutter) into the docs directory.
d/kernel-headers-4.19.2-x86-1.txz: Upgraded.
k/kernel-source-4.19.2-noarch-1.txz: Upgraded.
l/librsvg-2.44.9-x86_64-1.txz: Upgraded.
l/ncurses-6.1_20181110-x86_64-1.txz: Upgraded.
The new kernel fixes the artifact on the virtual console, so the original
linux terminal definition has been restored.
xap/vim-gvim-8.1.0526-x86_64-1.txz: Upgraded.
Let vim install its own icon and gvim.desktop files. Thanks to drumz.
Don't include the terminal-based vim.desktop file.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/efibootmgr-16-x86_64-2.txz: Rebuilt.
Reverted to previous version. We'd tried this before and it still doesn't
work. Thanks to _RDS_.
a/efivar-35-x86_64-1.txz: Upgraded.
Reverted to previous version. We'd tried this before and it still doesn't
work. Thanks to _RDS_.
a/hwdata-0.317-noarch-1.txz: Upgraded.
a/lvm2-2.03.01-x86_64-1.txz: Upgraded.
a/quota-4.04-x86_64-1.txz: Upgraded.
ap/cups-2.2.9-x86_64-1.txz: Upgraded.
ap/sysstat-12.0.2-x86_64-1.txz: Upgraded.
d/cscope-15.9-x86_64-1.txz: Upgraded.
d/distcc-3.3.2-x86_64-1.txz: Upgraded.
d/nasm-2.14-x86_64-1.txz: Upgraded.
d/oprofile-1.3.0-x86_64-1.txz: Upgraded.
d/rust-1.30.1-x86_64-1.txz: Upgraded.
l/elfutils-0.174-x86_64-1.txz: Upgraded.
l/shared-mime-info-1.10-x86_64-1.txz: Upgraded.
n/samba-4.9.2-x86_64-1.txz: Upgraded.
xap/gimp-2.10.8-x86_64-1.txz: Upgraded.
a/bin-11.1-x86_64-3.txz: Rebuilt.
Renamed mktemp to mktemp-debianutils.
Removed bban and sysvbanner which seem to be lacking proper licensing info.
a/coreutils-8.30-x86_64-2.txz: Rebuilt.
Renamed mktemp-gnu to mktemp.
a/xfsprogs-4.18.0-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-63.1.
ap/alsa-utils-1.1.7-x86_64-1.txz: Upgraded.
ap/sqlite-3.25.2-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-63.1.
d/ccache-3.5-x86_64-1.txz: Upgraded.
kde/calligra-2.9.11-x86_64-26.txz: Rebuilt.
Recompiled against icu4c-63.1.
l/alsa-lib-1.1.7-x86_64-1.txz: Upgraded.
l/alsa-plugins-1.1.7-x86_64-1.txz: Upgraded.
l/boost-1.68.0-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-63.1.
l/harfbuzz-1.9.0-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-63.1.
l/icu4c-63.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
Those of you using Plasma 5 or various third party packages should know by
now what it means when icu4c gets a bump in -current. You may want to wait
a few days for those things to appear again rebuilt against this.
l/libical-3.0.4-x86_64-1.txz: Upgraded.
Compiled against icu4c-63.1.
l/libssh-0.7.6-x86_64-1.txz: Upgraded.
Fixed authentication bypass vulnerability.
For more information, see:
https://www.libssh.org/2018/10/16/libssh-0-8-4-and-0-7-6-security-and-bugfix-release/https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10933
(* Security fix *)
l/libvisio-0.1.6-x86_64-5.txz: Rebuilt.
Recompiled against icu4c-63.1.
l/qt-4.8.7-x86_64-11.txz: Rebuilt.
Recompiled against icu4c-63.1.
l/raptor2-2.0.15-x86_64-6.txz: Rebuilt.
Recompiled against icu4c-63.1.
n/dovecot-2.3.3-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-63.1.
n/php-7.2.11-x86_64-1.txz: Upgraded.
Compiled against icu4c-63.1.
n/postfix-3.3.1-x86_64-3.txz: Rebuilt.
Recompiled against icu4c-63.1.
n/tin-2.4.2-x86_64-4.txz: Rebuilt.
Recompiled against icu4c-63.1.
t/texlive-2018.180822-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-63.1.
x/libdrm-2.4.96-x86_64-1.txz: Upgraded.
xfce/exo-0.12.3-x86_64-1.txz: Upgraded.
extra/brltty/brltty-5.6-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-63.1.
extra/pure-alsa-system/alsa-lib-1.1.7-x86_64-1_alsa.txz: Upgraded.
extra/pure-alsa-system/alsa-plugins-1.1.7-x86_64-1_alsa.txz: Upgraded.
a/eudev-3.2.5-x86_64-4.txz: Upgraded.
More bugs, unreplaced macros, and systemd-specific stuff have been found in
the eudev-3.2.6 release. Since there don't seem to be any improvements that
would merit closely following the bleeding edge on this one, we'll revert
back to eudev-3.2.5 which worked fine.
a/kernel-firmware-20181001_7c81f23-noarch-1.txz: Upgraded.
ap/at-3.1.23-x86_64-1.txz: Upgraded.
ap/hplip-3.18.9-x86_64-1.txz: Upgraded.
d/mercurial-4.7.2-x86_64-1.txz: Upgraded.
x/libpthread-stubs-0.4-x86_64-3.txz: Rebuilt.
Rebuilt since this should not be "noarch".
xap/mozilla-firefox-60.2.2esr-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.htmlhttps://www.mozilla.org/en-US/security/advisories/mfsa2018-24/https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12387
(* Security fix *)
xap/mozilla-thunderbird-60.2.1-x86_64-1.txz: Upgraded.
This is a bugfix release. For more information, see:
https://www.mozilla.org/en-US/thunderbird/60.2.1/releasenotes/
xfce/Thunar-1.8.2-x86_64-1.txz: Upgraded.
a/eudev-3.2.6-x86_64-1.txz: Upgraded.
a/glibc-solibs-2.28-x86_64-2.txz: Upgraded.
a/grub-2.02-x86_64-3.txz: Rebuilt.
Patched to fix compatibility with recent xfsprogs. Thanks to Markus Wiesner.
a/kernel-generic-4.14.71-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.71-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.71-x86_64-1.txz: Upgraded.
ap/opus-tools-0.2-x86_64-1.txz: Upgraded.
ap/sqlite-3.25.1-x86_64-1.txz: Upgraded.
d/icecream-20180905_cdc6ff8-x86_64-1.txz: Upgraded.
d/kernel-headers-4.14.71-x86-1.txz: Upgraded.
d/llvm-7.0.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
k/kernel-source-4.14.71-noarch-1.txz: Upgraded.
l/ffmpeg-3.4.4-x86_64-2.txz: Rebuilt.
Don't try to link with Samba since the latest version is not compatible.
l/glibc-2.28-x86_64-2.txz: Upgraded.
All packages have been patched where needed for glibc-2.28 and compile
tested here. Thanks to nobodino for the help.
l/glibc-i18n-2.28-x86_64-2.txz: Upgraded.
l/glibc-profile-2.28-x86_64-2.txz: Upgraded.
l/gst-plugins-base-1.14.3-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.14.3-x86_64-1.txz: Upgraded.
l/gst-plugins-libav-1.14.3-x86_64-1.txz: Upgraded.
l/gstreamer-1.14.3-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_11-x86_64-1.txz: Upgraded.
l/libopusenc-0.2-x86_64-1.txz: Added.
l/librsvg-2.44.3-x86_64-1.txz: Upgraded.
l/opus-1.3_rc2-x86_64-1.txz: Upgraded.
l/opusfile-0.11-x86_64-1.txz: Upgraded.
l/soprano-2.9.4-x86_64-3.txz: Rebuilt.
Recompiled to drop virtuoso dependency.
l/virtuoso-ose-6.1.8-x86_64-9.txz: Removed.
Even KDE4 has migrated away from actually using this for anything. The last
thing in Slackware that was dependent on it was Soprano, which has been
recompiled to no longer use it.
n/postfix-3.3.1-x86_64-2.txz: Rebuilt.
Recompiled so that it quits whining about OpenSSL. Thanks to shastah.
x/mesa-18.2.1-x86_64-1.txz: Upgraded.
Compiled against llvm-7.0.0.
x/xf86-video-vmware-13.3.0-x86_64-2.txz: Rebuilt.
Recompiled against llvm-7.0.0.
x/xterm-336-x86_64-1.txz: Upgraded.
extra/pure-alsa-system/ffmpeg-3.4.4-x86_64-2_alsa.txz: Rebuilt.
Don't try to link with Samba since the latest version is not compatible.
extra/pure-alsa-system/gst-plugins-good-1.14.3-x86_64-1_alsa.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
ap/dmidecode-3.2-x86_64-1.txz: Upgraded.
ap/nano-3.1-x86_64-1.txz: Upgraded.
ap/slackpkg-2.83.0-noarch-4.txz: Rebuilt.
Merged two patches from git:
Clarify that a press of "Enter" is needed to confirm kernel change
Mention possible stale mirror if CHECKSUMS.md5 gpg verify fails
Thanks to Mario Preksavec and Robby Workman.
ap/sqlite-3.25.0-x86_64-1.txz: Upgraded.
ap/xorriso-1.5.0-x86_64-1.txz: Upgraded.
l/lmdb-0.9.22-x86_64-2.txz: Rebuilt.
Fixed the build script to clear out the build area properly - previously
it was possible for binaries of the wrong $ARCH to end up in the package.
Thanks to reddog83.
n/gnutls-3.6.3-x86_64-2.txz: Rebuilt.
Merged backported SSL/TLS fixes. Thanks to orbea.
n/samba-4.9.0-x86_64-2.txz: Rebuilt.
Recompiled in case the lmdb package was broken.
a/kernel-firmware-20180913_44d4fca-noarch-1.txz: Upgraded.
a/kernel-generic-4.14.70-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.70-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.70-x86_64-1.txz: Upgraded.
ap/hplip-3.18.7-x86_64-4.txz: Rebuilt.
Applied fixed patch - this has a better chance of working now. I've checked
and hpcups no longer links to libImageProcessor. Which, by the way, the
previous build dumped onto my main system (not even in "make install"),
but not into the package itself. I no longer own an HP printer and will
never buy another one, so if there are any remaining problems please report.
Thanks to Matteo Bernardini.
d/kernel-headers-4.14.70-x86-1.txz: Upgraded.
k/kernel-source-4.14.70-noarch-1.txz: Upgraded.
Config changes since 4.14.69:
CLEANCACHE n -> y
CMA n -> y
MEMORY_FAILURE n -> y
NUMA n -> y
X86_CHECK_BIOS_CORRUPTION n -> y
Z3FOLD m -> y
ZBUD m -> y
ZSMALLOC m -> y
+ACPI_APEI_MEMORY_FAILURE y
+ACPI_NUMA y
+AMD_NUMA y
+CMA_AREAS 7
+CMA_DEBUG n
+CMA_DEBUGFS n
+DMA_CMA n
+HWPOISON_INJECT m
+NEED_MULTIPLE_NODES y
+NODES_SHIFT 6
+NODES_SPAN_OTHER_NODES y
+NUMA_BALANCING n
+NUMA_EMU n
+RAS_CEC n
+USE_PERCPU_NUMA_NODE_ID y
+X86_64_ACPI_NUMA y
+X86_BOOTPARAM_MEMORY_CORRUPTION_CHECK n
n/NetworkManager-1.14.0-x86_64-1.txz: Upgraded.
Added new options: --enable-json-validation --enable-ovs
xap/network-manager-applet-1.8.18-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
pasture/php-5.6.38-x86_64-1.txz: Upgraded.
One security bug has been fixed in this release:
Apache2: XSS due to the header Transfer-Encoding: chunked
For more information, see:
https://php.net/ChangeLog-5.php#5.6.38
(* Security fix *)
usb-and-pxe-installers/usbboot.img: Rebuilt.
ap/hplip-3.18.7-x86_64-3.txz: Rebuilt.
Throw away the broken and ill-advised libImageProcessor closed-source blob.
Thanks to Matteo Bernardini.
ap/zsh-5.6.2-x86_64-1.txz: Upgraded.
d/rust-1.29.0-x86_64-1.txz: Upgraded.
l/lmdb-0.9.22-x86_64-1.txz: Added.
This is a new dependency of Samba.
n/php-7.2.10-x86_64-1.txz: Upgraded.
This is a security release which also contains several minor bug fixes.
For more information, see:
https://php.net/ChangeLog-7.php#7.2.10
(* Security fix *)
n/samba-4.9.0-x86_64-1.txz: Upgraded.
x/xf86-video-amdgpu-18.1.0-x86_64-1.txz: Upgraded.
x/xf86-video-ati-18.1.0-x86_64-1.txz: Upgraded.
a/sysvinit-scripts-2.1-noarch-20.txz: Rebuilt.
rc.6: it was reported by birdboy that JFS is not properly unmounted unless
the order of unmounting local filesystems followed by remounting the root
filesystem read-only is inverted. I tried that, and although it did get rid
of a "/ filesystem is busy" error during shutdown, the JFS / filesystem was
still checked at boot (and found to be clean). I believe that the existing
order of unmounting non-root filesystems followed by remounting the root
filesystem as read-only is the correct order, and found that putting
another sync between these also gets rid of the error on shutdown, so I've
done that. When using JFS as the root filesystem there's still another
similar error message that's generated earlier in the boot, though. I'm
unable to find any way to shut down a JFS root partition in a way that
leaves it clean enough that fsck will not check it at boot, but it is always
found to be clean so this should only be cosmetic. I recall this behavior of
JFS going all the way back to when it was first added to the kernel. If
anyone has a better fix, I'll take a look at it, but in my opinion it's not
really anything to worry about.
ap/ghostscript-9.25-x86_64-1.txz: Upgraded.
This release fixes problems with argument handling, some unintended
results of the security fixes to the SAFER file access restrictions
(specifically accessing ICC profile files), and some additional
security issues over the recent 9.24 release.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16509
(* Security fix *)
ap/squashfs-tools-20180612_6e242dc-x86_64-1.txz: Upgraded.
Linked against libzstd.so.1. Thanks to alienBOB.
ap/sudo-1.8.25p1-x86_64-1.txz: Upgraded.
d/binutils-2.31.1-x86_64-4.txz: Rebuilt.
Since baldzhang has pointed out a valid use case for windres on Linux,
we are restoring the "Windows only" utilities, as none of them are
very large and there may be valid uses for the other ones as well.
l/freetype-2.9.1-x86_64-2.txz: Rebuilt.
Patched to build properly if windres is present on the machine.
l/sg3_utils-1.44-x86_64-1.txz: Upgraded.
l/zstd-1.3.5-x86_64-1.txz: Added.
Thanks to alienBOB.
xfce/tumbler-0.2.3-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
Use the ter-114v terminus font. It has been reported that the font we were
using (ter-v14v) restricts the available console colors from 16 to 8 due
to needing an extra bit for the higher number of available glyphs (though
in testing here I couldn't see any difference). The new font covers
ISO8859-1, ISO8859-15, and Windows-1252 codepages. I'm still not sure it's
the best choice, so additional input is welcomed.
Thanks to bormant.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Use the ter-114v terminus font.
a/kernel-generic-4.14.69-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.69-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.69-x86_64-1.txz: Upgraded.
a/xfsprogs-4.18.0-x86_64-1.txz: Upgraded.
ap/nano-3.0-x86_64-1.txz: Upgraded.
d/cmake-3.12.2-x86_64-1.txz: Upgraded.
d/kernel-headers-4.14.69-x86-1.txz: Upgraded.
k/kernel-source-4.14.69-noarch-1.txz: Upgraded.
Config changes since 4.14.68:
CRYPTO_LZO m -> y
FRONTSWAP n -> y
ZBUD n -> m
ZPOOL m -> y
+ZSWAP y
Thanks to Darth Vader.
l/glib2-2.56.2-x86_64-2.txz: Rebuilt.
Make links in the documentation directory to all of the API documentation
found under /usr/share/gtk-doc/html. Thanks to Didier Spaier.
l/libarchive-3.3.3-x86_64-1.txz: Upgraded.
n/links-2.17-x86_64-1.txz: Upgraded.
xfce/tumbler-0.2.2-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/pkgtools-15.0-noarch-23.txz: Rebuilt.
Removed stray cat and loop kludges for lack of reported size, since this
is fixed now in tar.
a/tar-1.30-x86_64-3.txz: Rebuilt.
Fixed a bug in the nolonezero patch that was evidently causing all of the
issues in installpkg that we'd been kludging around (e.g. the "stray cat").
Thanks *very* much to NonNonBa for the patch, and to SeB for the initial
analysis of the problem.
ap/ghostscript-9.24-x86_64-2.txz: Rebuilt.
Applied upstream patch to fix "Filter failed". Thanks to th_r and bamunds.
d/gdb-8.2-x86_64-1.txz: Upgraded.
d/indent-2.2.12-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/acpid-2.0.30-x86_64-1.txz: Upgraded.
a/etc-15.0-x86_64-9.txz: Rebuilt.
Added support for /etc/ld.so.conf.d/. Thanks to Qury.
a/kernel-firmware-20180904_85c5d90-noarch-1.txz: Upgraded.
a/kernel-generic-4.14.68-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.68-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.68-x86_64-1.txz: Upgraded.
a/pkgtools-15.0-noarch-22.txz: Rebuilt.
installpkg: prevent noise from the "stray cat" if tar hands it a broken
pipe. Thanks to ivandi.
Also (in the comments) provide a possibly better but untested solution.
Thanks to SeB.
a/sysvinit-2.90-x86_64-2.txz: Rebuilt.
sysvinit-2.90 added an undocumented feature that tries to spawn agetty
if it sees console= in the kernel command line. Avoiding the debate about
whether this code belongs in init at all, at least such a change should
be documented, and probably made opt-in. This patch disables the new
behavior unless "sysvinit_agetty" is also seen in the kernel command line.
It seems like this might have been something added for Hurd, and it might
be wise to stick to what we've got rather than following upstream on this
particular package. If anyone notices any other odd behavior, please let
me know. Thanks to shastah.
a/sysvinit-scripts-2.1-noarch-19.txz: Rebuilt.
When checking for intel_pstate, direct the stderr to /dev/null in case
the file doesn't exist in /sys. Thanks to ivandi.
Allow forcing an option by editing /etc/default/cpufreq.
ap/cups-filters-1.21.2-x86_64-1.txz: Upgraded.
ap/ghostscript-9.24-x86_64-1.txz: Upgraded.
Patched multiple -dSAFER sandbox bypass vulnerabilities.
Thanks to Tavis Ormandy.
For more information, see:
https://www.ghostscript.com/doc/9.24/News.htmhttps://www.kb.cert.org/vuls/id/332928
(* Security fix *)
ap/sudo-1.8.25-x86_64-1.txz: Upgraded.
d/binutils-2.31.1-x86_64-2.txz: Rebuilt.
elf.c (_bfd_elf_get_symbol_version_string): Return _("<corrupt>") for
corrupt symbol version info.
elflink.c (bfd_elf_record_link_assignment): Always clear h->verinfo.verdef
when overriding a dynamic definition.
Thanks to Michael Short for pointing out the upstream patches.
d/ccache-3.4.3-x86_64-1.txz: Upgraded.
d/kernel-headers-4.14.68-x86-1.txz: Upgraded.
d/llvm-6.0.1-x86_64-2.txz: Rebuilt.
Recompiled with -DCLANG_BUILD_SHARED_LIBS=ON to fix issues when multiple
OpenCL drivers are installed. Thanks to Heinz Wiesinger.
d/mercurial-4.7.1-x86_64-1.txz: Upgraded.
k/kernel-source-4.14.68-noarch-1.txz: Upgraded.
l/mozilla-nss-3.39-x86_64-1.txz: Upgraded.
n/curl-7.61.1-x86_64-1.txz: Upgraded.
This update fixes an NTLM password overflow via integer overflow.
For more information, see:
https://curl.haxx.se/docs/CVE-2018-14618.htmlhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14618
(* Security fix *)
n/gnupg2-2.2.10-x86_64-1.txz: Upgraded.
n/libtirpc-1.1.4-x86_64-1.txz: Upgraded.
n/netatalk-3.1.11-x86_64-2.txz: Rebuilt.
rc.atalk: fixed errors in status output. Thanks to marav.
n/nghttp2-1.33.0-x86_64-1.txz: Upgraded.
n/p11-kit-0.23.14-x86_64-1.txz: Upgraded.
n/stunnel-5.49-x86_64-1.txz: Upgraded.
x/libdrm-2.4.94-x86_64-1.txz: Upgraded.
x/xf86-video-ati-20180824_de88ea27-x86_64-1.txz: Upgraded.
xap/hexchat-2.14.2-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-60.2.0esr-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
(* Security fix *)
xap/xlockmore-5.56-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/findutils-4.6.0-x86_64-1.txz: Upgraded.
a/kernel-firmware-20180821_1d17c18-noarch-1.txz: Upgraded.
a/kernel-generic-4.14.66-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.66-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.66-x86_64-1.txz: Upgraded.
ap/man-db-2.8.4-x86_64-2.txz: Rebuilt.
Rebuilt to get it on the slackpkg upgrade list since the previous texlive
package clobbered /usr/bin/man and we need to fix that.
d/kernel-headers-4.14.66-x86-1.txz: Upgraded.
k/kernel-source-4.14.66-noarch-1.txz: Upgraded.
l/glib2-2.56.2-x86_64-1.txz: Upgraded.
t/texlive-2018.180822-x86_64-1.txz: Upgraded.
Added some patches that I'd dropped - sorry, my bad.
Don't clobber /usr/bin/man.
Thanks to Johannes Schoepfer.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/e2fsprogs-1.44.4-x86_64-1.txz: Upgraded.
a/kernel-generic-4.14.65-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.65-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.65-x86_64-1.txz: Upgraded.
ap/jove-4.16.0.73-x86_64-6.txz: Rebuilt.
Fixed getline() namespace collision patch.
ap/sudo-1.8.24-x86_64-1.txz: Upgraded.
d/icecream-20180808-x86_64-1.txz: Upgraded.
Use sources from git, which avoids timeouts and hangs that have been
observed with version 1.1, and adds additional support for clang.
d/kernel-headers-4.14.65-x86-1.txz: Upgraded.
k/kernel-source-4.14.65-noarch-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/kernel-generic-4.14.62-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.62-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.62-x86_64-1.txz: Upgraded.
ap/pamixer-1.3.1-x86_64-7.txz: Rebuilt.
Recompiled against boost-1.68.0.
d/cmake-3.12.1-x86_64-1.txz: Upgraded.
d/distcc-3.3-x86_64-3.txz: Rebuilt.
Install masquerade symlinks in /usr/lib${LIBDIRSUFFIX}/distcc/.
d/kernel-headers-4.14.62-x86-1.txz: Upgraded.
k/kernel-source-4.14.62-noarch-1.txz: Upgraded.
kde/calligra-2.9.11-x86_64-24.txz: Rebuilt.
Recompiled against boost-1.68.0.
l/akonadi-1.13.0-x86_64-10.txz: Rebuilt.
Recompiled against boost-1.68.0.
l/boost-1.68.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/harfbuzz-1.8.7-x86_64-1.txz: Upgraded.
l/libgsf-1.14.44-x86_64-1.txz: Upgraded.
l/librsvg-2.42.6-x86_64-1.txz: Upgraded.
l/libsoup-2.62.3-x86_64-1.txz: Upgraded.
n/bind-9.12.2_P1-x86_64-1.txz: Upgraded.
Fixed a security issue where named could crash during recursive processing
of DNAME records when "deny-answer-aliases" was in use resulting in a
denial of service. Note that "deny-answer-aliases" is rarely used.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5740
(* Security fix *)
xap/audacious-3.10-x86_64-1.txz: Upgraded.
xap/audacious-plugins-3.10-x86_64-1.txz: Upgraded.
extra/pure-alsa-system/audacious-plugins-3.10-x86_64-1_alsa.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
ap/man-db-2.8.4-x86_64-1.txz: Upgraded.
d/gdb-8.1.1-x86_64-1.txz: Upgraded.
d/python-pip-18.0-x86_64-1.txz: Upgraded.
d/python-setuptools-40.0.0-x86_64-1.txz: Upgraded.
d/python3-3.6.6-x86_64-1.txz: Upgraded.
l/libpcap-1.9.0-x86_64-1.txz: Upgraded.
l/pango-1.42.3-x86_64-1.txz: Upgraded.
x/libdrm-2.4.93-x86_64-1.txz: Upgraded.
xap/blueman-2.0.6-x86_64-1.txz: Upgraded.
This update fixes an issue where blueman-mechanism did not enforce the
polkit action 'org.blueman.network.setup' for which a polkit policy is
shipped. This meant that any user with access to the D-Bus system bus was
able to access the related API without authentication. The result was an
unspecified impact on the networking stack.
Thanks to Matthias Gerstner for discovering this issue.
(* Security fix *)
testing/packages/glibc-2.28-x86_64-1.txz: Added.
These packages are in /testing pending FTBFS analysis. They seem to work
fine here, but with a few header file deprecations and some other
possible API changes and incompatibilities (see the NEWS file), I expect
there will be some changes required to various packages. Feel free to
test them out though. Because of changes to the way glibc is built and
installed that started with the glibc-2.27 packages, you can upgrade to
these packages and also (if you wish) downgrade back to glibc-2.27 using
upgradepkg.
testing/packages/glibc-i18n-2.28-x86_64-1.txz: Added.
testing/packages/glibc-profile-2.28-x86_64-1.txz: Added.
testing/packages/glibc-solibs-2.28-x86_64-1.txz: Added.
ap/cups-filters-1.20.4-x86_64-2.txz: Rebuilt.
Recompiled against poppler-0.67.0.
kde/calligra-2.9.11-x86_64-23.txz: Rebuilt.
Recompiled against poppler-0.67.0.
l/ffmpeg-3.4.4-x86_64-1.txz: Upgraded.
l/gst-plugins-base-1.14.2-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.14.2-x86_64-1.txz: Upgraded.
l/gst-plugins-libav-1.14.2-x86_64-1.txz: Upgraded.
l/gstreamer-1.14.2-x86_64-1.txz: Upgraded.
l/poppler-0.67.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
n/php-7.2.8-x86_64-1.txz: Upgraded.
This is a security release which also contains several minor bug fixes.
(* Security fix *)
t/texlive-2018.180630-x86_64-2.txz: Rebuilt.
Recompiled against poppler-0.67.0.
xap/MPlayer-20180720-x86_64-1.txz: Upgraded.
xfce/tumbler-0.2.1-x86_64-5.txz: Rebuilt.
Recompiled against poppler-0.67.0.
extra/pure-alsa-system/MPlayer-20180720-x86_64-1_alsa.txz: Upgraded.
extra/pure-alsa-system/ffmpeg-3.4.4-x86_64-1_alsa.txz: Upgraded.
extra/pure-alsa-system/gst-plugins-good-1.14.2-x86_64-1_alsa.txz: Upgraded.
pasture/php-5.6.37-x86_64-1.txz: Upgraded.
Several security bugs have been fixed in this release, including:
Int Overflow lead to Heap OverFlow in exif_thumbnail_extract of exif.c
heap-buffer-overflow (READ of size 48) while reading exif data
(* Security fix *)
a/dcron-4.5-x86_64-9.txz: Rebuilt.
Dropped two patches that were breaking @daily jobs.
Thanks to Dennis Snow for the bug report.
ap/texinfo-6.5-x86_64-6.txz: Rebuilt.
Rebuilt with --disable-perl-xs (use native Perl modules instead of C
versions), which fixes the FTBFS issues we were having with glibc.
Thanks to nobodino, ponce, and mmawhin for the help.
a/kernel-generic-4.14.52-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.52-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.52-x86_64-1.txz: Upgraded.
ap/sox-14.4.2-x86_64-6.txz: Rebuilt.
Rebuilt to drop libssp dependency. We're no longer building that with gcc
since glibc already includes a built-in SSP implementation.
d/gcc-8.1.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
This is taken from the gcc-8-branch of the svn repo on 20180626, revision
r262159. All packages have been tested for build failures and all new FTBFS
issues are fixed - I think we're down to the six possibly obsolete X drivers
(geode, r128, s3virge, savage, sis, and tseng) and virtuoso-ose.
d/gcc-brig-8.1.1-x86_64-1.txz: Upgraded.
d/gcc-g++-8.1.1-x86_64-1.txz: Upgraded.
d/gcc-gfortran-8.1.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
d/gcc-gnat-8.1.1-x86_64-1.txz: Upgraded.
d/gcc-go-8.1.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
d/gcc-objc-8.1.1-x86_64-1.txz: Upgraded.
d/kernel-headers-4.14.52-x86-1.txz: Upgraded.
d/libtool-2.4.6-x86_64-8.txz: Rebuilt.
Recompiled to update embedded GCC version number.
k/kernel-source-4.14.52-noarch-1.txz: Upgraded.
l/db48-4.8.30-x86_64-4.txz: Rebuilt.
Patched to fix a symbol collision with gcc8.
n/netatalk-3.1.11-x86_64-1.txz: Upgraded.
Thanks to Matthew Schumacher for updating the build script and providing
some useful config file examples.
extra/pure-alsa-system/sox-14.4.2-x86_64-6_alsa.txz: Rebuilt.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/aaa_base-14.2-x86_64-5.txz: Rebuilt.
Don't include /var/log/{packages,scripts,removed_packages,removed_scripts}.
a/procps-ng-3.3.15-x86_64-2.txz: Rebuilt.
Upgraded to psmisc-23.1. This adds namespace support to killall, and makes
the default behavior to match against the current PID's namespace, rather
than all namespaces as it did previously.
ap/qpdf-8.1.0-x86_64-1.txz: Upgraded.
ap/texinfo-6.5-x86_64-4.txz: Rebuilt.
Recompiled against perl-5.28.0.
ap/vim-8.1.0113-x86_64-1.txz: Upgraded.
Compiled against perl-5.28.0.
d/perl-5.28.0-x86_64-1.txz: Upgraded.
kde/perlkde-4.14.3-x86_64-6.txz: Rebuilt.
Recompiled against perl-5.28.0.
kde/perlqt-4.14.3-x86_64-7.txz: Rebuilt.
Recompiled against perl-5.28.0.
l/tango-icon-theme-0.8.90-noarch-4.txz: Rebuilt.
Made a couple of minor corrections to the slack-desc.
n/epic5-2.0.1-x86_64-6.txz: Rebuilt.
Recompiled against perl-5.28.0.
n/irssi-1.1.1-x86_64-4.txz: Rebuilt.
Recompiled against perl-5.28.0.
n/net-snmp-5.7.3-x86_64-9.txz: Rebuilt.
Recompiled against perl-5.28.0.
n/ntp-4.2.8p11-x86_64-4.txz: Rebuilt.
Recompiled against perl-5.28.0.
n/stunnel-5.47-x86_64-1.txz: Upgraded.
xap/hexchat-2.14.1-x86_64-4.txz: Rebuilt.
Recompiled against perl-5.28.0.
xap/vim-gvim-8.1.0113-x86_64-1.txz: Upgraded.
Compiled against perl-5.28.0.
a/aaa_elflibs-15.0-x86_64-1.txz: Upgraded.
Upgraded to libelf-0.171.so, added libgdbm.so.6.0.0.
a/etc-15.0-x86_64-6.txz: Rebuilt.
Add $(uname -m) information to /etc/issue.new.
Don't include /tmp directories - these are handled by aaa_base.
a/kernel-generic-4.14.50-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.50-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.50-x86_64-1.txz: Upgraded.
ap/man-db-2.8.3-x86_64-3.txz: Rebuilt.
Recompiled against gdbm-1.15.
ap/zsh-5.5.1-x86_64-2.txz: Rebuilt.
Recompiled against gdbm-1.15.
d/clisp-2.49_20180423_d1310adc5-x86_64-1.txz: Upgraded.
Compiled against gdbm-1.15.
d/kernel-headers-4.14.50-x86-1.txz: Upgraded.
d/perl-5.26.2-x86_64-5.txz: Rebuilt.
Recompiled against gdbm-1.15.
d/python-2.7.15-x86_64-3.txz: Rebuilt.
Recompiled against gdbm-1.15.
d/python3-3.6.5-x86_64-4.txz: Rebuilt.
Recompiled against gdbm-1.15.
d/ruby-2.5.1-x86_64-4.txz: Rebuilt.
Recompiled against gdbm-1.15.
k/kernel-source-4.14.50-noarch-1.txz: Upgraded.
kde/kdelibs-4.14.38-x86_64-3.txz: Rebuilt.
Patched to build with OpenSSL-1.1.x. Thanks to nobodino.
l/gdbm-1.15-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
n/cyrus-sasl-2.1.27_rc8-x86_64-1.txz: Upgraded.
Compiled against gdbm-1.15.
n/mutt-1.10.0-x86_64-2.txz: Rebuilt.
Recompiled against gdbm-1.15.
n/php-7.2.6-x86_64-2.txz: Rebuilt.
Recompiled against gdbm-1.15.
n/yptools-2.14-x86_64-11.txz: Rebuilt.
Recompiled against gdbm-1.15.
xap/gnuchess-6.2.5-x86_64-3.txz: Rebuilt.
Recompiled against gdbm-1.15.
isolinux/initrd.img: Rebuilt.
Copy libefiboot to the installer (needed by efibootmgr).
Compress the kernel modules with xz.
Compress the initrd image with xz.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Copy libefiboot to the installer (needed by efibootmgr).
Compress the kernel modules with xz.
Compress the initrd image with xz.
a/efibootmgr-16-x86_64-2.txz: Rebuilt.
a/efivar-35-x86_64-1.txz: Upgraded.
Switch to efivar-35, since 36 seems to have problems. Thanks to _RDS_.
ap/slackpkg-2.83.0-noarch-3.txz: Rebuilt.
Don't remove ChangeLog.txt upon upgrade/reinstall.
Use CHECKSUMS.md5.asc to determine if ChangeLog.txt is unchanged.
Remove dead bjtu.edu.cn mirrors from the sample mirrors files.
isolinux/initrd.img: Rebuilt.
Include libefivar.so.1 on the installer (needed by efibootmgr).
usb-and-pxe-installers/usbboot.img: Rebuilt.
Include libefivar.so.1 on the installer (needed by efibootmgr).
a/dcron-4.5-x86_64-8.txz: Rebuilt.
rc.crond: match the running process more accurately.
a/glibc-zoneinfo-2018e-noarch-3.txz: Rebuilt.
Don't emit an error if the /etc/localtime-copied-from is not present when
the package is initially installed.
a/libcgroup-0.41-x86_64-5.txz: Rebuilt.
Added /etc/cgconfig.d/ directory.
a/pkgtools-15.0-noarch-19.txz: Rebuilt.
installpkg, makebootdisk, removepkg, upgradepkg: don't try to remove admin
directories (supposedly "in case" they are a symlink).
a/sysvinit-scripts-2.1-noarch-12.txz: Rebuilt.
rc.6: stop haveged
rc.S: start rc.cgconfig and rc.cgred
ap/at-3.1.20-x86_64-5.txz: Rebuilt.
rc.atd: match the running process more accurately.
ap/slackpkg-2.83.0-noarch-2.txz: Rebuilt.
Patched to handle the case where /var/log/packages is a symlink.
l/gsl-2.5-x86_64-1.txz: Upgraded.
a/etc-15.0-x86_64-5.txz: Rebuilt.
Don't hardcode passwd/shadow/group additions in doinst.sh - get them from
the .new files.
a/sysvinit-scripts-2.1-noarch-11.txz: Rebuilt.
rc.S: don't start rc.haveged in this script - move it to rc.M.
rc.M: start rc.haveged after seeding /dev/urandom in rc.S, and after
starting syslogd, klogd, and udev in rc.M.
rc.M: start rc.rndg (we don't ship it or rng-tools) after udev.
H. Peter Anvin says that it's fine to run both haveged and rndg,
and I trust his opinion on that.
Thanks to GazL.
ap/at-3.1.20-x86_64-4.txz: Rebuilt.
Fixed wrong variable in rc.atd. Thanks to upnort.
n/libgcrypt-1.8.3-x86_64-1.txz: Upgraded.
Use blinding for ECDSA signing to mitigate a novel side-channel attack.
For more information, see:
https://www.nccgroup.trust/us/our-research/technical-advisory-return-of-the-hidden-number-problem/https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0495
(* Security fix *)
a/dcron-4.5-x86_64-7.txz: Rebuilt.
Added init script and defaults file.
Moved TMPDIR to /run/cron.
Thanks to Robby Workman and shasta.
a/efibootmgr-16-x86_64-1.txz: Upgraded.
a/efivar-36-x86_64-1.txz: Added.
a/elilo-3.16-x86_64-7.txz: Rebuilt.
a/glibc-solibs-2.27-x86_64-4.txz: Rebuilt.
Don't restart init in the install script, let rc.6 handle it.
a/haveged-1.9.2-x86_64-1.txz: Added.
a/pkgtools-15.0-noarch-18.txz: Rebuilt.
setup.services: add support for rc.atd and rc.crond
a/sysvinit-scripts-2.1-noarch-10.txz: Rebuilt.
rc.6: restart init when shutting down - this prevents it from holding file
handles to removed/upgraded versions of the glibc shared libraries which
would interfere with shutdown.
rc.K: use full path to telinit
rc.M: start rc.atd and rc.crond
rc.M: don't remove cron tempfiles (moved to /run/cron)
rc.S: start rc.haveged
ap/at-3.1.20-x86_64-3.txz: Rebuilt.
Added init script and defaults file.
l/glibc-2.27-x86_64-4.txz: Rebuilt.
Don't restart init in the install script, let rc.6 handle it.
l/glibc-i18n-2.27-x86_64-4.txz: Rebuilt.
l/glibc-profile-2.27-x86_64-4.txz: Rebuilt.
l/gnu-efi-3.0.8-x86_64-1.txz: Upgraded.
a/bash-4.4.023-x86_64-1.txz: Upgraded.
a/kernel-firmware-20180604_1fa9ce3-noarch-1.txz: Upgraded.
a/kernel-generic-4.14.48-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.48-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.48-x86_64-1.txz: Upgraded.
ap/cups-2.2.8-x86_64-1.txz: Upgraded.
ap/ghostscript-fonts-std-8.11-noarch-3.txz: Rebuilt.
Rebuilt this and many other font packages or packages with build scripts
that call mkfontdir or mkfontscale to suppress any error messages caused
by collisions if another package installation is writing files to the
same font directories when those utilities are run. In that case, the
other package will also be running mkfontdir/mkfontscale after the files
are installed, so any issues will be cleaned up then. Last one out turn
off the lights, so to speak.
ap/sqlite-3.24.0-x86_64-1.txz: Upgraded.
ap/terminus-font-4.40-noarch-3.txz: Rebuilt.
d/kernel-headers-4.14.48-x86-1.txz: Upgraded.
d/rust-1.26.2-x86_64-1.txz: Upgraded.
k/kernel-source-4.14.48-noarch-1.txz: Upgraded.
l/elfutils-0.171-x86_64-1.txz: Upgraded.
l/harfbuzz-1.7.7-x86_64-1.txz: Upgraded.
l/mozilla-nss-3.37.3-x86_64-1.txz: Upgraded.
l/readline-7.0.005-x86_64-1.txz: Upgraded.
x/dejavu-fonts-ttf-2.37-noarch-4.txz: Rebuilt.
x/font-adobe-100dpi-1.0.3-noarch-3.txz: Rebuilt.
x/font-adobe-75dpi-1.0.3-noarch-3.txz: Rebuilt.
x/font-adobe-utopia-100dpi-1.0.4-noarch-3.txz: Rebuilt.
x/font-adobe-utopia-75dpi-1.0.4-noarch-3.txz: Rebuilt.
x/font-adobe-utopia-type1-1.0.4-noarch-3.txz: Rebuilt.
x/font-arabic-misc-1.0.3-noarch-3.txz: Rebuilt.
x/font-bh-100dpi-1.0.3-noarch-3.txz: Rebuilt.
x/font-bh-75dpi-1.0.3-noarch-3.txz: Rebuilt.
x/font-bh-lucidatypewriter-100dpi-1.0.3-noarch-3.txz: Rebuilt.
x/font-bh-lucidatypewriter-75dpi-1.0.3-noarch-3.txz: Rebuilt.
x/font-bh-ttf-1.0.3-noarch-3.txz: Rebuilt.
x/font-bh-type1-1.0.3-noarch-3.txz: Rebuilt.
x/font-bitstream-100dpi-1.0.3-noarch-3.txz: Rebuilt.
x/font-bitstream-75dpi-1.0.3-noarch-3.txz: Rebuilt.
x/font-bitstream-speedo-1.0.2-noarch-3.txz: Rebuilt.
x/font-bitstream-type1-1.0.3-noarch-3.txz: Rebuilt.
x/font-cronyx-cyrillic-1.0.3-noarch-3.txz: Rebuilt.
x/font-cursor-misc-1.0.3-noarch-3.txz: Rebuilt.
x/font-daewoo-misc-1.0.3-noarch-3.txz: Rebuilt.
x/font-dec-misc-1.0.3-noarch-3.txz: Rebuilt.
x/font-ibm-type1-1.0.3-noarch-3.txz: Rebuilt.
x/font-isas-misc-1.0.3-noarch-3.txz: Rebuilt.
x/font-jis-misc-1.0.3-noarch-3.txz: Rebuilt.
x/font-micro-misc-1.0.3-noarch-3.txz: Rebuilt.
x/font-misc-cyrillic-1.0.3-noarch-3.txz: Rebuilt.
x/font-misc-ethiopic-1.0.3-noarch-3.txz: Rebuilt.
x/font-misc-meltho-1.0.3-noarch-3.txz: Rebuilt.
x/font-misc-misc-1.1.2-noarch-3.txz: Rebuilt.
x/font-mutt-misc-1.0.3-noarch-3.txz: Rebuilt.
x/font-schumacher-misc-1.1.2-noarch-3.txz: Rebuilt.
x/font-screen-cyrillic-1.0.4-noarch-3.txz: Rebuilt.
x/font-sony-misc-1.0.3-noarch-3.txz: Rebuilt.
x/font-sun-misc-1.0.3-noarch-3.txz: Rebuilt.
x/font-winitzki-cyrillic-1.0.3-noarch-3.txz: Rebuilt.
x/font-xfree86-type1-1.0.4-noarch-3.txz: Rebuilt.
x/liberation-fonts-ttf-2.00.1-noarch-3.txz: Rebuilt.
x/libinput-1.11.0-x86_64-1.txz: Upgraded.
x/sazanami-fonts-ttf-20040629-noarch-3.txz: Rebuilt.
x/sinhala_lklug-font-ttf-20060929-noarch-3.txz: Rebuilt.
x/tibmachuni-font-ttf-1.901b-noarch-3.txz: Rebuilt.
x/ttf-indic-fonts-0.5.14-noarch-3.txz: Rebuilt.
x/ttf-tlwg-0.6.4-noarch-3.txz: Rebuilt.
x/urw-core35-fonts-otf-20170801_91edd6e_git-noarch-2.txz: Rebuilt.
x/wqy-zenhei-font-ttf-0.8.38_1-noarch-6.txz: Rebuilt.
xap/mozilla-firefox-60.0.2-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/security/known-vulnerabilities/firefox.html
(* Security fix *)
xap/x3270-3.3.12ga7-x86_64-5.txz: Rebuilt.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.