Commit graph

68 commits

Author SHA1 Message Date
Patrick J Volkerding
ad59f7ca92 Sat Dec 8 04:10:45 UTC 2018
a/btrfs-progs-v4.19.1-x86_64-1.txz:  Upgraded.
a/dbus-1.12.12-x86_64-1.txz:  Upgraded.
ap/cups-2.2.10-x86_64-1.txz:  Upgraded.
ap/cups-filters-1.21.5-x86_64-1.txz:  Upgraded.
ap/hplip-3.18.12-x86_64-1.txz:  Upgraded.
d/mercurial-4.8.1-x86_64-1.txz:  Upgraded.
d/rust-1.31.0-x86_64-1.txz:  Upgraded.
l/libpng-1.6.36-x86_64-1.txz:  Upgraded.
l/python-idna-2.8-x86_64-1.txz:  Upgraded.
n/ntp-4.2.8p12-x86_64-5.txz:  Rebuilt.
  Fixed logrotate file. Thanks to allend and rworkman.
n/php-7.2.13-x86_64-1.txz:  Upgraded.
  This is a security release which also contains several minor bug fixes.
  For more information, see:
    https://php.net/ChangeLog-7.php#7.2.13
  (* Security fix *)
n/wpa_supplicant-2.7-x86_64-1.txz:  Upgraded.
x/mesa-18.3.0-x86_64-1.txz:  Upgraded.
x/xf86-video-i740-1.4.0-x86_64-1.txz:  Upgraded.
xap/mozilla-thunderbird-60.3.3-x86_64-1.txz:  Upgraded.
  This is a bugfix release. For more information, see:
  https://www.mozilla.org/en-US/thunderbird/60.3.3/releasenotes/
xfce/thunar-volman-0.9.1-x86_64-1.txz:  Upgraded.
2018-12-08 08:59:44 +01:00
Patrick J Volkerding
37eaf40ce5 Thu Dec 6 04:38:11 UTC 2018
a/kernel-generic-4.19.7-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.19.7-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.19.7-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.19.7-x86-1.txz:  Upgraded.
k/kernel-source-4.19.7-noarch-1.txz:  Upgraded.
n/gnutls-3.6.5-x86_64-1.txz:  Upgraded.
  This update fixes a security issue:
  Bleichenbacher-like side channel leakage in PKCS#1 1.5 verification and
  padding oracle verification.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16868
  (* Security fix *)
n/nettle-3.4.1-x86_64-1.txz:  Upgraded.
  This update fixes a security issue:
  A Bleichenbacher type side-channel based padding oracle attack was found
  in the way nettle handles endian conversion of RSA decrypted PKCS#1 v1.5
  data. An attacker who is able to run a process on the same physical core
  as the victim process, could use this flaw to extract plaintext or in some
  cases downgrade any TLS connections to a vulnerable server.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16869
  (* Security fix *)
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2018-12-06 17:59:30 +01:00
Patrick J Volkerding
03a61ce024 Mon Dec 3 20:59:30 UTC 2018
ap/sqlite-3.26.0-x86_64-1.txz:  Upgraded.
l/libzip-1.5.1-x86_64-5.txz:  Rebuilt.
  Fixed path in libzip.pc. Thanks to orbea.
l/mozilla-nss-3.40.1-x86_64-1.txz:  Upgraded.
  Mitigate cache side-channel variant of the Bleichenbacher attack.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12404
  (* Security fix *)
n/mutt-1.11.1-x86_64-1.txz:  Upgraded.
n/stunnel-5.50-x86_64-1.txz:  Upgraded.
xfce/xfce4-systemload-plugin-1.2.2-x86_64-2.txz:  Rebuilt.
  Applied reworked hover timeout patch. Thanks to Rod3775.
2018-12-04 08:59:45 +01:00
Patrick J Volkerding
a2792a0934 Sat Dec 1 03:16:35 UTC 2018
ap/texinfo-6.5-x86_64-7.txz:  Rebuilt.
  Recompiled against perl-5.28.1.
ap/vim-8.1.0552-x86_64-1.txz:  Upgraded.
  Compiled against perl-5.28.1.
d/perl-5.28.1-x86_64-1.txz:  Upgraded.
  Upgraded DBD-mysql-4.049, DBI-1.642, abd IO-Socket-SSL-2.060.
  Added Devel-CheckLib-1.13 (needed by DBD-mysql-4.049).
kde/perlkde-4.14.3-x86_64-7.txz:  Rebuilt.
  Recompiled against perl-5.28.1.
kde/perlqt-4.14.3-x86_64-8.txz:  Rebuilt.
  Recompiled against perl-5.28.1.
n/epic5-2.0.1-x86_64-7.txz:  Rebuilt.
  Recompiled against perl-5.28.1.
n/irssi-1.1.1-x86_64-5.txz:  Rebuilt.
  Recompiled against perl-5.28.1.
n/net-snmp-5.8-x86_64-4.txz:  Rebuilt.
  Recompiled against perl-5.28.1.
n/ntp-4.2.8p12-x86_64-4.txz:  Rebuilt.
  Recompiled against perl-5.28.1.
xap/hexchat-2.14.2-x86_64-2.txz:  Rebuilt.
  Recompiled against perl-5.28.1.
xap/mozilla-thunderbird-60.3.2-x86_64-1.txz:  Upgraded.
  This is a bugfix release. For more information, see:
  https://www.mozilla.org/en-US/thunderbird/60.3.2/releasenotes/
xap/rxvt-unicode-9.22-x86_64-6.txz:  Rebuilt.
  Recompiled against perl-5.28.1.
xap/vim-gvim-8.1.0552-x86_64-1.txz:  Upgraded.
  Compiled against perl-5.28.1.
xfce/xfce4-systemload-plugin-1.2.2-x86_64-1.txz:  Upgraded.
2018-12-01 08:59:43 +01:00
Patrick J Volkerding
6aa2cc8350 Fri Nov 30 04:21:06 UTC 2018
n/mutt-1.11.0-x86_64-2.txz:  Rebuilt.
  Put info file in /usr/info and compress it.
  Don't include /usr/info/dir.
  Thanks to Edward Trumbo.
  After upgrading this package, you'll need to reinstall the texinfo package
  to restore the missing /usr/info/dir file.
n/wget-1.20-x86_64-1.txz:  Upgraded.
2018-11-30 08:59:44 +01:00
Patrick J Volkerding
7284497dcf Thu Nov 29 05:53:27 UTC 2018
a/sysvinit-scripts-2.1-noarch-23.txz:  Rebuilt.
  rc.S: simplify test for F2FS filesystem on /. Thanks to GazL.
ap/soma-3.2.0-noarch-1.txz:  Upgraded.
d/cmake-3.13.1-x86_64-1.txz:  Upgraded.
l/jansson-2.12-x86_64-1.txz:  Upgraded.
n/rp-pppoe-3.13-x86_64-1.txz:  Upgraded.
n/samba-4.9.3-x86_64-1.txz:  Upgraded.
  This update fixes bugs and security issues:
  CVE-2018-14629: Unprivileged adding of CNAME record causing loop in AD
    Internal DNS server
  CVE-2018-16841: Double-free in Samba AD DC KDC with PKINIT
  CVE-2018-16851: NULL pointer de-reference in Samba AD DC LDAP server
  CVE-2018-16852: NULL pointer de-reference in Samba AD DC DNS servers
  CVE-2018-16853: Samba AD DC S4U2Self crash in experimental MIT Kerberos
    configuration (unsupported)
  CVE-2018-16857: Bad password count in AD DC not always effective
  For more information, see:
    https://www.samba.org/samba/security/CVE-2018-14629.html
    https://www.samba.org/samba/security/CVE-2018-16841.html
    https://www.samba.org/samba/security/CVE-2018-16851.html
    https://www.samba.org/samba/security/CVE-2018-16852.html
    https://www.samba.org/samba/security/CVE-2018-16853.html
    https://www.samba.org/samba/security/CVE-2018-16857.html
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14629
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16841
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16851
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16852
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16853
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16857
  (* Security fix *)
x/mesa-18.2.6-x86_64-1.txz:  Upgraded.
x/vulkan-sdk-1.1.92.1-x86_64-1.txz:  Upgraded.
2018-11-29 17:59:45 +01:00
Patrick J Volkerding
bec2525518 Mon Nov 26 22:58:11 UTC 2018
ap/lm_sensors-3.5.0-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
ap/sysstat-12.0.2-x86_64-2.txz:  Rebuilt.
  Recompiled against lm_sensors-3.5.0.
kde/kde-workspace-4.11.22-x86_64-6.txz:  Rebuilt.
  Recompiled against lm_sensors-3.5.0.
n/mutt-1.11.0-x86_64-1.txz:  Upgraded.
n/net-snmp-5.8-x86_64-3.txz:  Rebuilt.
  Recompiled against lm_sensors-3.5.0.
n/ntp-4.2.8p12-x86_64-3.txz:  Rebuilt.
  Recompiled against lm_sensors-3.5.0.
n/postfix-3.3.2-x86_64-1.txz:  Upgraded.
xap/gkrellm-2.3.10-x86_64-5.txz:  Rebuilt.
  Recompiled against lm_sensors-3.5.0.
2018-11-27 08:59:46 +01:00
Patrick J Volkerding
6b0434cfef Sat Nov 24 20:44:07 UTC 2018
a/tree-1.8.0-x86_64-1.txz:  Upgraded.
ap/cups-filters-1.21.4-x86_64-1.txz:  Upgraded.
ap/itstool-2.0.5-x86_64-1.txz:  Upgraded.
d/Cython-0.29.1-x86_64-1.txz:  Upgraded.
l/dconf-0.30.1-x86_64-1.txz:  Upgraded.
l/elfutils-0.175-x86_64-1.txz:  Upgraded.
l/gc-8.0.0-x86_64-1.txz:  Upgraded.
l/gobject-introspection-1.58.1-x86_64-1.txz:  Upgraded.
l/json-glib-1.4.4-x86_64-1.txz:  Upgraded.
l/keyutils-1.6-x86_64-1.txz:  Upgraded.
l/libjpeg-turbo-2.0.1-x86_64-1.txz:  Upgraded.
l/libpsl-0.20.2-x86_64-1.txz:  Upgraded.
l/libsecret-0.18.6-x86_64-3.txz:  Rebuilt.
  Recompiled with --enable-introspection (also picks up Vala support).
n/cyrus-sasl-2.1.27-x86_64-1.txz:  Upgraded.
n/dovecot-2.3.4-x86_64-1.txz:  Upgraded.
n/mailx-12.5-x86_64-4.txz:  Removed.
n/s-nail-14.9.11-x86_64-1.txz:  Added.
  This package replaces mailx. Thanks to Johannes Schoepfer.
tcl/tcl-8.6.9-x86_64-1.txz:  Upgraded.
tcl/tk-8.6.9.1-x86_64-1.txz:  Upgraded.
xap/gucharmap-11.0.3-x86_64-1.txz:  Upgraded.
xfce/xfce4-clipman-plugin-1.4.3-x86_64-1.txz:  Upgraded.
xfce/xfce4-screenshooter-1.9.3-x86_64-1.txz:  Upgraded.
2018-11-25 08:59:43 +01:00
Patrick J Volkerding
3a6358fa3e Thu Nov 15 19:47:53 UTC 2018
d/python-setuptools-40.6.2-x86_64-1.txz:  Upgraded.
l/python-requests-2.20.1-x86_64-1.txz:  Upgraded.
n/cifs-utils-6.8-x86_64-1.txz:  Upgraded.
n/getmail-5.8-x86_64-1.txz:  Upgraded.
n/nfs-utils-2.3.3-x86_64-1.txz:  Upgraded.
n/rpcbind-1.2.5-x86_64-1.txz:  Upgraded.
x/mesa-18.2.5-x86_64-1.txz:  Upgraded.
2018-11-16 08:59:44 +01:00
Patrick J Volkerding
7b3da2adfb Wed Nov 14 20:07:37 UTC 2018
a/xfsprogs-4.19.0-x86_64-1.txz:  Upgraded.
ap/sudo-1.8.26-x86_64-1.txz:  Upgraded.
l/babl-0.1.60-x86_64-1.txz:  Upgraded.
n/iptables-1.8.2-x86_64-1.txz:  Upgraded.
  Compiled against libnftnl-1.1.2.
n/libnftnl-1.1.2-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
n/nftables-0.9.0-x86_64-2.txz:  Rebuilt.
  Recompiled against libnftnl-1.1.2.
extra/pure-alsa-system/alsa-lib-1.1.7-x86_64-2_alsa.txz:  Rebuilt.
  Sorry this package had not been recompiled with the patch. Thanks to orbea
  for pointing this out.
2018-11-15 08:59:46 +01:00
Patrick J Volkerding
2520b90f18 Tue Nov 13 05:15:29 UTC 2018
d/python-setuptools-40.6.1-x86_64-1.txz:  Upgraded.
l/M2Crypto-0.31.0-x86_64-1.txz:  Upgraded.
l/SDL2-2.0.9-x86_64-2.txz:  Rebuilt.
  Fixed use of SDL_syswm.h with SDL_PROTOTYPES_ONLY in C++ mode.
  Thanks to orbea.
l/libtiff-4.0.10-x86_64-1.txz:  Upgraded.
  This update fixes some denial of service security issues.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10779
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18661
  (* Security fix *)
l/netpbm-10.84.02-x86_64-1.txz:  Upgraded.
n/net-snmp-5.8-x86_64-2.txz:  Rebuilt.
  Recompiled to link the perl modules to the new libraries. Thanks to th_r.
2018-11-13 17:59:46 +01:00
Patrick J Volkerding
374248fe50 Fri Nov 9 21:46:09 UTC 2018
a/udisks2-2.6.5-x86_64-3.txz:  Rebuilt.
  Recompiled against net-snmp-5.8.
ap/hplip-3.18.10-x86_64-2.txz:  Rebuilt.
  Recompiled against net-snmp-5.8.
d/bison-3.2.1-x86_64-1.txz:  Upgraded.
d/meson-0.48.2-x86_64-1.txz:  Upgraded.
l/pycairo-1.18.0-x86_64-1.txz:  Upgraded.
n/bridge-utils-1.6-x86_64-1.txz:  Upgraded.
n/net-snmp-5.8-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
n/ntp-4.2.8p12-x86_64-2.txz:  Rebuilt.
  Recompiled against net-snmp-5.8.
n/php-7.2.12-x86_64-2.txz:  Rebuilt.
  Recompiled against net-snmp-5.8.
xap/blackbox-0.74-x86_64-2.txz:  Rebuilt.
  When building, don't install anything to the system. Thanks to Didier Spaier.
xap/sane-1.0.27-x86_64-4.txz:  Rebuilt.
  Recompiled against net-snmp-5.8.
extra/aspell-word-lists/aspell-ar-1.2_0-x86_64-1.txz:  Added.
extra/aspell-word-lists/aspell-ast-0.01-x86_64-1.txz:  Added.
extra/aspell-word-lists/aspell-ca-2.1.5_1-x86_64-1.txz:  Upgraded.
extra/aspell-word-lists/aspell-de_alt-2.1_1-x86_64-1.txz:  Added.
extra/aspell-word-lists/aspell-fy-0.12_0-x86_64-1.txz:  Added.
extra/aspell-word-lists/aspell-grc-0.02_0-x86_64-1.txz:  Added.
extra/aspell-word-lists/aspell-hy-0.10.0_0-x86_64-1.txz:  Added.
extra/aspell-word-lists/aspell-ky-0.01_0-x86_64-1.txz:  Added.
extra/aspell-word-lists/aspell-ml-0.03_1-x86_64-1.txz:  Added.
extra/aspell-word-lists/aspell-pt_PT-20070510_0-x86_64-1.txz:  Added.
extra/aspell-word-lists/aspell-tk-0.01_0-x86_64-1.txz:  Added.
2018-11-10 08:59:45 +01:00
Patrick J Volkerding
0e6f7049d6 Fri Nov 9 02:42:22 UTC 2018
a/efibootmgr-16-x86_64-2.txz:  Rebuilt.
  Reverted to previous version. We'd tried this before and it still doesn't
  work. Thanks to _RDS_.
a/efivar-35-x86_64-1.txz:  Upgraded.
  Reverted to previous version. We'd tried this before and it still doesn't
  work. Thanks to _RDS_.
a/hwdata-0.317-noarch-1.txz:  Upgraded.
a/lvm2-2.03.01-x86_64-1.txz:  Upgraded.
a/quota-4.04-x86_64-1.txz:  Upgraded.
ap/cups-2.2.9-x86_64-1.txz:  Upgraded.
ap/sysstat-12.0.2-x86_64-1.txz:  Upgraded.
d/cscope-15.9-x86_64-1.txz:  Upgraded.
d/distcc-3.3.2-x86_64-1.txz:  Upgraded.
d/nasm-2.14-x86_64-1.txz:  Upgraded.
d/oprofile-1.3.0-x86_64-1.txz:  Upgraded.
d/rust-1.30.1-x86_64-1.txz:  Upgraded.
l/elfutils-0.174-x86_64-1.txz:  Upgraded.
l/shared-mime-info-1.10-x86_64-1.txz:  Upgraded.
n/samba-4.9.2-x86_64-1.txz:  Upgraded.
xap/gimp-2.10.8-x86_64-1.txz:  Upgraded.
2018-11-09 08:59:43 +01:00
Patrick J Volkerding
fa6118f0a7 Thu Nov 8 02:52:55 UTC 2018
a/aaa_terminfo-6.1_20181027-x86_64-2.txz:  Rebuilt.
a/efibootmgr-17-x86_64-1.txz:  Upgraded.
a/efivar-36-x86_64-1.txz:  Upgraded.
a/hostname-3.21-x86_64-1.txz:  Upgraded.
a/inotify-tools-3.20.1-x86_64-1.txz:  Upgraded.
a/mdadm-4.1-x86_64-1.txz:  Upgraded.
a/usb_modeswitch-2.5.2-x86_64-1.txz:  Upgraded.
a/util-linux-2.33-x86_64-1.txz:  Upgraded.
ap/cdrdao-1.2.4-x86_64-1.txz:  Upgraded.
ap/dash-0.5.10.2-x86_64-1.txz:  Upgraded.
ap/diffstat-1.62-x86_64-1.txz:  Upgraded.
ap/rpm-4.14.2.1-x86_64-1.txz:  Upgraded.
ap/sqlite-3.25.3-x86_64-1.txz:  Upgraded.
l/gnu-efi-3.0.9-x86_64-1.txz:  Upgraded.
l/iso-codes-4.1-noarch-1.txz:  Upgraded.
l/jasper-2.0.14-x86_64-1.txz:  Upgraded.
l/libbluray-1.0.2-x86_64-1.txz:  Upgraded.
l/libcap-ng-0.7.9-x86_64-1.txz:  Upgraded.
l/libiodbc-3.52.12-x86_64-1.txz:  Upgraded.
l/libodfgen-0.1.7-x86_64-1.txz:  Upgraded.
l/libwpd-0.10.2-x86_64-1.txz:  Upgraded.
l/libwpg-0.3.2-x86_64-1.txz:  Upgraded.
l/libyaml-0.2.1-x86_64-1.txz:  Upgraded.
l/ncurses-6.1_20181027-x86_64-2.txz:  Rebuilt.
  Temporarily removed the bce feature from the linux console definition until
  the console is fixed. Added a linux-bce terminal definition for testing.
l/sbc-1.4-x86_64-1.txz:  Upgraded.
l/zstd-1.3.7-x86_64-1.txz:  Upgraded.
n/gnupg2-2.2.11-x86_64-1.txz:  Upgraded.
n/ipset-7.0-x86_64-1.txz:  Upgraded.
n/libndp-1.7-x86_64-1.txz:  Upgraded.
n/npth-1.6-x86_64-1.txz:  Upgraded.
n/php-7.2.12-x86_64-1.txz:  Upgraded.
n/slrn-1.0.3a-x86_64-1.txz:  Upgraded.
n/snownews-1.6.10-x86_64-1.txz:  Upgraded.
n/whois-5.4.0-x86_64-1.txz:  Upgraded.
x/libinput-1.12.3-x86_64-1.txz:  Upgraded.
x/libva-2.3.0-x86_64-1.txz:  Upgraded.
x/libva-utils-2.3.0-x86_64-1.txz:  Upgraded.
x/libwacom-0.32-x86_64-1.txz:  Upgraded.
x/xdg-user-dirs-0.17-x86_64-1.txz:  Upgraded.
xap/blackbox-0.74-x86_64-1.txz:  Upgraded.
2018-11-08 08:59:43 +01:00
Patrick J Volkerding
0dada1b871 Fri Nov 2 20:41:52 UTC 2018
a/haveged-1.9.4-x86_64-1.txz:  Upgraded.
a/kernel-firmware-20181026_1baa348-noarch-1.txz:  Upgraded.
a/mcelog-161-x86_64-1.txz:  Upgraded.
ap/powertop-2.9-x86_64-1.txz:  Upgraded.
d/clisp-2.49_20180922_228b90a52-x86_64-1.txz:  Upgraded.
d/mercurial-4.8-x86_64-1.txz:  Upgraded.
l/fribidi-1.0.5-x86_64-1.txz:  Upgraded.
l/libjpeg-turbo-2.0.0-x86_64-1.txz:  Upgraded.
n/lynx-2.8.9rel.1-x86_64-1.txz:  Upgraded.
t/texlive-2018.180822-x86_64-3.txz:  Rebuilt.
  Rebuilt to recompile xindy for the upgraded CLISP runtime.
2018-11-03 08:59:43 +01:00
Patrick J Volkerding
190c4fa148 Fri Nov 2 01:21:12 UTC 2018
kde/kde-runtime-4.14.3-x86_64-8.txz:  Rebuilt.
  Applied upstream patch to fix info and man page display.
  Thanks to igadoter and lougavulin.
l/gegl-0.4.12-x86_64-1.txz:  Upgraded.
n/bind-9.12.3-x86_64-1.txz:  Upgraded.
x/mesa-18.2.4-x86_64-1.txz:  Upgraded.
extra/pure-alsa-system/kde-runtime-4.14.3-x86_64-8_alsa.txz:  Rebuilt.
  Applied upstream patch to fix info and man page display.
  Thanks to igadoter and lougavulin.
2018-11-02 08:59:43 +01:00
Patrick J Volkerding
94c93fbaaa Wed Oct 31 22:49:36 UTC 2018
d/subversion-1.11.0-x86_64-1.txz:  Upgraded.
l/SDL2-2.0.9-x86_64-1.txz:  Upgraded.
l/SDL2_gfx-1.0.4-x86_64-1.txz:  Upgraded.
l/SDL2_image-2.0.4-x86_64-1.txz:  Upgraded.
l/SDL2_mixer-2.0.4-x86_64-1.txz:  Upgraded.
n/autofs-5.1.5-x86_64-1.txz:  Upgraded.
n/curl-7.62.0-x86_64-1.txz:  Upgraded.
  This release fixes the following security issues:
  SASL password overflow via integer overflow.
  Use-after-free in handle close.
  Warning message out-of-buffer read.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16839
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16840
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16842
  (* Security fix *)
xap/mozilla-thunderbird-60.3.0-x86_64-1.txz:  Upgraded.
  This is a bugfix release. For more information, see:
  https://www.mozilla.org/en-US/thunderbird/60.3.0/releasenotes/
2018-11-01 09:00:29 +01:00
Patrick J Volkerding
686ec3f974 Tue Oct 30 21:50:53 UTC 2018
a/aaa_terminfo-6.1_20181027-x86_64-1.txz:  Upgraded.
ap/hplip-3.18.10-x86_64-1.txz:  Upgraded.
d/bison-3.2-x86_64-1.txz:  Upgraded.
d/strace-4.25-x86_64-1.txz:  Upgraded.
l/libsigc++-2.10.1-x86_64-1.txz:  Upgraded.
l/ncurses-6.1_20181027-x86_64-1.txz:  Upgraded.
l/xapian-core-1.4.8-x86_64-1.txz:  Upgraded.
n/getmail-5.7-x86_64-1.txz:  Upgraded.
xfce/xfce4-notifyd-0.4.3-x86_64-1.txz:  Upgraded.
2018-10-31 09:00:30 +01:00
Patrick J Volkerding
34b4c5ed43 Mon Oct 29 20:02:38 UTC 2018
a/glibc-zoneinfo-2018g-noarch-1.txz:  Upgraded.
a/hdparm-9.58-x86_64-1.txz:  Upgraded.
ap/gphoto2-2.5.20-x86_64-1.txz:  Upgraded.
d/python-setuptools-40.5.0-x86_64-1.txz:  Upgraded.
l/libgphoto2-2.5.20-x86_64-1.txz:  Upgraded.
l/libmtp-1.1.16-x86_64-1.txz:  Upgraded.
l/libssh-0.8.5-x86_64-1.txz:  Upgraded.
n/gpa-0.10.0-x86_64-1.txz:  Upgraded.
n/libgcrypt-1.8.4-x86_64-1.txz:  Upgraded.
2018-10-30 09:00:29 +01:00
Patrick J Volkerding
b80b3b22eb Wed Oct 24 21:22:04 UTC 2018
d/strace-20181024_43700247-x86_64-1.txz:  Upgraded.
l/alsa-plugins-1.1.7-x86_64-4.txz:  Rebuilt.
  Applied upstream fix for double free. Thanks to Jean-Philippe Guillemin.
n/httpd-2.4.37-x86_64-1.txz:  Upgraded.
n/mcabber-1.1.0-x86_64-1.txz:  Upgraded.
x/libepoxy-1.5.3-x86_64-1.txz:  Upgraded.
xap/pan-0.145-x86_64-1.txz:  Upgraded.
extra/pure-alsa-system/alsa-plugins-1.1.7-x86_64-4_alsa.txz:  Rebuilt.
  Applied upstream fix for double free. Thanks to Jean-Philippe Guillemin.
2018-10-25 09:00:34 +02:00
Patrick J Volkerding
1c1637ba89 Tue Oct 23 05:11:47 UTC 2018
a/kernel-generic-4.19.0-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.19.0-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.19.0-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.19.0-x86-1.txz:  Upgraded.
d/parallel-20181022-noarch-1.txz:  Upgraded.
k/kernel-source-4.19.0-noarch-1.txz:  Upgraded.
  [581 lines of diffconfig output omitted here]
l/alsa-plugins-1.1.7-x86_64-3.txz:  Rebuilt.
  Reverted two patches that have been reported to cause crashes with USB audio
  devices. Thanks to Jean-Philippe Guillemin.
l/harfbuzz-1.9.0-x86_64-2.txz:  Rebuilt.
  Reverted (for now) to harfbuzz-1.9.0 to fix build failures with texlive, php,
  and calligra caused by API changes. Thanks to nobodino.
l/libpng-1.6.35-x86_64-1.txz:  Upgraded.
n/samba-4.9.1-x86_64-1.txz:  Upgraded.
xap/mozilla-firefox-60.3.0esr-x86_64-1.txz:  Upgraded.
  This release contains security fixes and improvements.
  For more information, see:
    https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
  (* Security fix *)
extra/pure-alsa-system/alsa-plugins-1.1.7-x86_64-3_alsa.txz:  Rebuilt.
  Reverted two patches that have been reported to cause crashes with USB audio
  devices. Thanks to Jean-Philippe Guillemin.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2018-10-23 18:00:36 +02:00
Patrick J Volkerding
fcbdf0b9cc Fri Oct 19 19:59:54 UTC 2018
a/file-5.35-x86_64-1.txz:  Upgraded.
a/glibc-zoneinfo-2018f-noarch-1.txz:  Upgraded.
a/kernel-firmware-20181018_d877533-noarch-1.txz:  Upgraded.
ap/ksh93-20181018_89d7b802-x86_64-1.txz:  Upgraded.
l/harfbuzz-2.0.0-x86_64-1.txz:  Upgraded.
l/libopusenc-0.2.1-x86_64-1.txz:  Upgraded.
l/opus-1.3-x86_64-1.txz:  Upgraded.
l/v4l-utils-1.16.1-x86_64-1.txz:  Upgraded.
n/NetworkManager-1.14.2-x86_64-1.txz:  Upgraded.
n/dnsmasq-2.80-x86_64-1.txz:  Upgraded.
n/openssh-7.9p1-x86_64-1.txz:  Upgraded.
x/mesa-18.2.3-x86_64-1.txz:  Upgraded.
x/xkeyboard-config-2.25-noarch-1.txz:  Upgraded.
2018-10-20 09:00:32 +02:00
Patrick J Volkerding
8073ad053c Wed Oct 17 03:11:25 UTC 2018
a/bin-11.1-x86_64-3.txz:  Rebuilt.
  Renamed mktemp to mktemp-debianutils.
  Removed bban and sysvbanner which seem to be lacking proper licensing info.
a/coreutils-8.30-x86_64-2.txz:  Rebuilt.
  Renamed mktemp-gnu to mktemp.
a/xfsprogs-4.18.0-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-63.1.
ap/alsa-utils-1.1.7-x86_64-1.txz:  Upgraded.
ap/sqlite-3.25.2-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-63.1.
d/ccache-3.5-x86_64-1.txz:  Upgraded.
kde/calligra-2.9.11-x86_64-26.txz:  Rebuilt.
  Recompiled against icu4c-63.1.
l/alsa-lib-1.1.7-x86_64-1.txz:  Upgraded.
l/alsa-plugins-1.1.7-x86_64-1.txz:  Upgraded.
l/boost-1.68.0-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-63.1.
l/harfbuzz-1.9.0-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-63.1.
l/icu4c-63.1-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
  Those of you using Plasma 5 or various third party packages should know by
  now what it means when icu4c gets a bump in -current. You may want to wait
  a few days for those things to appear again rebuilt against this.
l/libical-3.0.4-x86_64-1.txz:  Upgraded.
  Compiled against icu4c-63.1.
l/libssh-0.7.6-x86_64-1.txz:  Upgraded.
  Fixed authentication bypass vulnerability.
  For more information, see:
    https://www.libssh.org/2018/10/16/libssh-0-8-4-and-0-7-6-security-and-bugfix-release/
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10933
  (* Security fix *)
l/libvisio-0.1.6-x86_64-5.txz:  Rebuilt.
  Recompiled against icu4c-63.1.
l/qt-4.8.7-x86_64-11.txz:  Rebuilt.
  Recompiled against icu4c-63.1.
l/raptor2-2.0.15-x86_64-6.txz:  Rebuilt.
  Recompiled against icu4c-63.1.
n/dovecot-2.3.3-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-63.1.
n/php-7.2.11-x86_64-1.txz:  Upgraded.
  Compiled against icu4c-63.1.
n/postfix-3.3.1-x86_64-3.txz:  Rebuilt.
  Recompiled against icu4c-63.1.
n/tin-2.4.2-x86_64-4.txz:  Rebuilt.
  Recompiled against icu4c-63.1.
t/texlive-2018.180822-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-63.1.
x/libdrm-2.4.96-x86_64-1.txz:  Upgraded.
xfce/exo-0.12.3-x86_64-1.txz:  Upgraded.
extra/brltty/brltty-5.6-x86_64-2.txz:  Rebuilt.
  Recompiled against icu4c-63.1.
extra/pure-alsa-system/alsa-lib-1.1.7-x86_64-1_alsa.txz:  Upgraded.
extra/pure-alsa-system/alsa-plugins-1.1.7-x86_64-1_alsa.txz:  Upgraded.
2018-10-17 09:00:35 +02:00
Patrick J Volkerding
3f536b705b Thu Oct 4 19:58:13 UTC 2018
a/kernel-generic-4.14.74-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.14.74-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.14.74-x86_64-1.txz:  Upgraded.
ap/cups-filters-1.21.3-x86_64-1.txz:  Upgraded.
d/cmake-3.12.3-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.14.74-x86-1.txz:  Upgraded.
k/kernel-source-4.14.74-noarch-1.txz:  Upgraded.
l/gst-plugins-base-1.14.4-x86_64-1.txz:  Upgraded.
l/gst-plugins-good-1.14.4-x86_64-1.txz:  Upgraded.
l/gst-plugins-libav-1.14.4-x86_64-1.txz:  Upgraded.
l/gstreamer-1.14.4-x86_64-1.txz:  Upgraded.
n/dovecot-2.3.3-x86_64-1.txz:  Upgraded.
  Thanks to teoberi for the link to the glibc-2.28 crypt() patch.
extra/pure-alsa-system/gst-plugins-good-1.14.4-x86_64-1_alsa.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2018-10-05 09:00:31 +02:00
Patrick J Volkerding
23035b95d9 Wed Sep 26 21:18:33 UTC 2018
a/aaa_terminfo-6.1_20180923-x86_64-1.txz:  Upgraded.
a/eudev-3.2.6-x86_64-3.txz:  Rebuilt.
  Fixed issues with the default rules. Thanks to zuriel.
a/kernel-generic-4.14.72-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.14.72-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.14.72-x86_64-1.txz:  Upgraded.
ap/vim-8.1.0436-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.14.72-x86-1.txz:  Upgraded.
d/re2c-1.1.1-x86_64-1.txz:  Upgraded.
k/kernel-source-4.14.72-noarch-1.txz:  Upgraded.
l/ncurses-6.1_20180923-x86_64-1.txz:  Upgraded.
n/fetchmail-6.3.26-x86_64-5.txz:  Rebuilt.
  Patched to fix certificate verification failures with OpenSSL 1.1.1.
  Thanks to Jurgen Van Ham.
n/gnutls-3.6.4-x86_64-1.txz:  Upgraded.
x/xf86-video-intel-20180906_25c9a2fc-x86_64-1.txz:  Upgraded.
xap/vim-gvim-8.1.0436-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2018-09-27 09:00:30 +02:00
Patrick J Volkerding
6371ee337f Mon Sep 24 21:37:09 UTC 2018
d/Cython-0.28.5-x86_64-1.txz:  Upgraded.
d/help2man-1.47.7-x86_64-1.txz:  Upgraded.
d/meson-0.48.0-x86_64-1.txz:  Upgraded.
d/python-setuptools-40.4.3-x86_64-1.txz:  Upgraded.
l/M2Crypto-0.30.1-x86_64-1.txz:  Upgraded.
l/cairo-1.15.14-x86_64-1.txz:  Upgraded.
l/librsvg-2.44.4-x86_64-1.txz:  Upgraded.
l/pycairo-1.17.1-x86_64-1.txz:  Upgraded.
l/pycurl-7.43.0.2-x86_64-1.txz:  Upgraded.
l/pyparsing-2.2.1-x86_64-1.txz:  Upgraded.
n/ModemManager-1.8.2-x86_64-1.txz:  Upgraded.
n/bind-9.12.2_P2-x86_64-1.txz:  Upgraded.
  This update fixes security issues:
  There was a long-existing flaw in the documentation for ms-self, krb5-self,
  ms-subdomain, and krb5-subdomain rules in update-policy statements. Though
  the policies worked as intended, operators who configured their servers
  according to the misleading documentation may have thought zone updates were
  more restricted than they were; users of these rule types are advised to
  review the documentation and correct their configurations if necessary. New
  rule types matching the previously documented behavior will be introduced in
  a future maintenance release.
  named could crash during recursive processing of DNAME records when
  deny-answer-aliases was in use. This flaw is disclosed in CVE-2018-5740.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5740
  (* Security fix *)
n/httpd-2.4.35-x86_64-1.txz:  Upgraded.
  This release fixes bugs and regressions in httpd-2.4.34, adds an
  apache2ctl -> apachectl symlink, and no longer automatically
  overwrites rc.httpd when upgraded.
2018-09-25 09:00:30 +02:00
Patrick J Volkerding
48e09f463d Fri Sep 21 18:51:07 UTC 2018
a/eudev-3.2.6-x86_64-1.txz:  Upgraded.
a/glibc-solibs-2.28-x86_64-2.txz:  Upgraded.
a/grub-2.02-x86_64-3.txz:  Rebuilt.
  Patched to fix compatibility with recent xfsprogs. Thanks to Markus Wiesner.
a/kernel-generic-4.14.71-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.14.71-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.14.71-x86_64-1.txz:  Upgraded.
ap/opus-tools-0.2-x86_64-1.txz:  Upgraded.
ap/sqlite-3.25.1-x86_64-1.txz:  Upgraded.
d/icecream-20180905_cdc6ff8-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.14.71-x86-1.txz:  Upgraded.
d/llvm-7.0.0-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
k/kernel-source-4.14.71-noarch-1.txz:  Upgraded.
l/ffmpeg-3.4.4-x86_64-2.txz:  Rebuilt.
  Don't try to link with Samba since the latest version is not compatible.
l/glibc-2.28-x86_64-2.txz:  Upgraded.
  All packages have been patched where needed for glibc-2.28 and compile
  tested here. Thanks to nobodino for the help.
l/glibc-i18n-2.28-x86_64-2.txz:  Upgraded.
l/glibc-profile-2.28-x86_64-2.txz:  Upgraded.
l/gst-plugins-base-1.14.3-x86_64-1.txz:  Upgraded.
l/gst-plugins-good-1.14.3-x86_64-1.txz:  Upgraded.
l/gst-plugins-libav-1.14.3-x86_64-1.txz:  Upgraded.
l/gstreamer-1.14.3-x86_64-1.txz:  Upgraded.
l/imagemagick-6.9.10_11-x86_64-1.txz:  Upgraded.
l/libopusenc-0.2-x86_64-1.txz:  Added.
l/librsvg-2.44.3-x86_64-1.txz:  Upgraded.
l/opus-1.3_rc2-x86_64-1.txz:  Upgraded.
l/opusfile-0.11-x86_64-1.txz:  Upgraded.
l/soprano-2.9.4-x86_64-3.txz:  Rebuilt.
  Recompiled to drop virtuoso dependency.
l/virtuoso-ose-6.1.8-x86_64-9.txz:  Removed.
  Even KDE4 has migrated away from actually using this for anything. The last
  thing in Slackware that was dependent on it was Soprano, which has been
  recompiled to no longer use it.
n/postfix-3.3.1-x86_64-2.txz:  Rebuilt.
  Recompiled so that it quits whining about OpenSSL. Thanks to shastah.
x/mesa-18.2.1-x86_64-1.txz:  Upgraded.
  Compiled against llvm-7.0.0.
x/xf86-video-vmware-13.3.0-x86_64-2.txz:  Rebuilt.
  Recompiled against llvm-7.0.0.
x/xterm-336-x86_64-1.txz:  Upgraded.
extra/pure-alsa-system/ffmpeg-3.4.4-x86_64-2_alsa.txz:  Rebuilt.
  Don't try to link with Samba since the latest version is not compatible.
extra/pure-alsa-system/gst-plugins-good-1.14.3-x86_64-1_alsa.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2018-09-22 09:00:39 +02:00
Patrick J Volkerding
a22d184390 Tue Sep 18 19:22:30 UTC 2018
ap/dmidecode-3.2-x86_64-1.txz:  Upgraded.
ap/nano-3.1-x86_64-1.txz:  Upgraded.
ap/slackpkg-2.83.0-noarch-4.txz:  Rebuilt.
  Merged two patches from git:
  Clarify that a press of "Enter" is needed to confirm kernel change
  Mention possible stale mirror if CHECKSUMS.md5 gpg verify fails
  Thanks to Mario Preksavec and Robby Workman.
ap/sqlite-3.25.0-x86_64-1.txz:  Upgraded.
ap/xorriso-1.5.0-x86_64-1.txz:  Upgraded.
l/lmdb-0.9.22-x86_64-2.txz:  Rebuilt.
  Fixed the build script to clear out the build area properly - previously
  it was possible for binaries of the wrong $ARCH to end up in the package.
  Thanks to reddog83.
n/gnutls-3.6.3-x86_64-2.txz:  Rebuilt.
  Merged backported SSL/TLS fixes. Thanks to orbea.
n/samba-4.9.0-x86_64-2.txz:  Rebuilt.
  Recompiled in case the lmdb package was broken.
2018-09-19 09:00:33 +02:00
Patrick J Volkerding
77f4f1f5e6 Sat Sep 15 21:19:23 UTC 2018
a/kernel-firmware-20180913_44d4fca-noarch-1.txz:  Upgraded.
a/kernel-generic-4.14.70-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.14.70-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.14.70-x86_64-1.txz:  Upgraded.
ap/hplip-3.18.7-x86_64-4.txz:  Rebuilt.
  Applied fixed patch - this has a better chance of working now. I've checked
  and hpcups no longer links to libImageProcessor. Which, by the way, the
  previous build dumped onto my main system (not even in "make install"),
  but not into the package itself. I no longer own an HP printer and will
  never buy another one, so if there are any remaining problems please report.
  Thanks to Matteo Bernardini.
d/kernel-headers-4.14.70-x86-1.txz:  Upgraded.
k/kernel-source-4.14.70-noarch-1.txz:  Upgraded.
  Config changes since 4.14.69:
   CLEANCACHE n -> y
   CMA n -> y
   MEMORY_FAILURE n -> y
   NUMA n -> y
   X86_CHECK_BIOS_CORRUPTION n -> y
   Z3FOLD m -> y
   ZBUD m -> y
   ZSMALLOC m -> y
  +ACPI_APEI_MEMORY_FAILURE y
  +ACPI_NUMA y
  +AMD_NUMA y
  +CMA_AREAS 7
  +CMA_DEBUG n
  +CMA_DEBUGFS n
  +DMA_CMA n
  +HWPOISON_INJECT m
  +NEED_MULTIPLE_NODES y
  +NODES_SHIFT 6
  +NODES_SPAN_OTHER_NODES y
  +NUMA_BALANCING n
  +NUMA_EMU n
  +RAS_CEC n
  +USE_PERCPU_NUMA_NODE_ID y
  +X86_64_ACPI_NUMA y
  +X86_BOOTPARAM_MEMORY_CORRUPTION_CHECK n
n/NetworkManager-1.14.0-x86_64-1.txz:  Upgraded.
  Added new options:  --enable-json-validation --enable-ovs
xap/network-manager-applet-1.8.18-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
pasture/php-5.6.38-x86_64-1.txz:  Upgraded.
  One security bug has been fixed in this release:
  Apache2: XSS due to the header Transfer-Encoding: chunked
  For more information, see:
    https://php.net/ChangeLog-5.php#5.6.38
  (* Security fix *)
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2018-09-16 09:00:33 +02:00
Patrick J Volkerding
1b2f3407f0 Fri Sep 14 23:06:26 UTC 2018
ap/hplip-3.18.7-x86_64-3.txz:  Rebuilt.
  Throw away the broken and ill-advised libImageProcessor closed-source blob.
  Thanks to Matteo Bernardini.
ap/zsh-5.6.2-x86_64-1.txz:  Upgraded.
d/rust-1.29.0-x86_64-1.txz:  Upgraded.
l/lmdb-0.9.22-x86_64-1.txz:  Added.
  This is a new dependency of Samba.
n/php-7.2.10-x86_64-1.txz:  Upgraded.
  This is a security release which also contains several minor bug fixes.
  For more information, see:
    https://php.net/ChangeLog-7.php#7.2.10
  (* Security fix *)
n/samba-4.9.0-x86_64-1.txz:  Upgraded.
x/xf86-video-amdgpu-18.1.0-x86_64-1.txz:  Upgraded.
x/xf86-video-ati-18.1.0-x86_64-1.txz:  Upgraded.
2018-09-15 09:00:31 +02:00
Patrick J Volkerding
4ccd8ebc9a Wed Sep 12 21:19:38 UTC 2018
a/elilo-3.16-x86_64-8.txz:  Rebuilt.
  eliloconfig: this was occasionally failing and the issue was traced to the
  script's use of tr (not sure why still). Replaced the construct with sed
  and the issue seems to have gone away.
a/openssl-solibs-1.1.1-x86_64-1.txz:  Upgraded.
d/binutils-2.31.1-x86_64-3.txz:  Rebuilt.
  Do not install the Windows-specific tools. Not only are these useless on
  Linux, but the presence of windres fools freetype into thinking that it is
  on a Windows system, leading to a build failure.
d/git-2.19.0-x86_64-1.txz:  Upgraded.
l/freetype-2.9.1-x86_64-1.txz:  Upgraded.
l/harfbuzz-1.9.0-x86_64-1.txz:  Upgraded.
l/media-player-info-24-noarch-1.txz:  Upgraded.
l/pcre2-10.32-x86_64-1.txz:  Upgraded.
l/sg3_utils-1.43-x86_64-1.txz:  Upgraded.
n/openssl-1.1.1-x86_64-1.txz:  Upgraded.
x/fontconfig-2.13.1-x86_64-1.txz:  Upgraded.
  We had problem reports with fontconfig-2.13.0 which led to it being reverted
  but we'll try it again. Please let me know if the issues (with Wine iirc)
  persist.
x/libinput-1.12.0-x86_64-1.txz:  Upgraded.
2018-09-13 09:00:32 +02:00
Patrick J Volkerding
4ffeac7318 Mon Sep 10 21:00:00 UTC 2018
a/kernel-generic-4.14.69-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.14.69-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.14.69-x86_64-1.txz:  Upgraded.
a/xfsprogs-4.18.0-x86_64-1.txz:  Upgraded.
ap/nano-3.0-x86_64-1.txz:  Upgraded.
d/cmake-3.12.2-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.14.69-x86-1.txz:  Upgraded.
k/kernel-source-4.14.69-noarch-1.txz:  Upgraded.
  Config changes since 4.14.68:
   CRYPTO_LZO m -> y
   FRONTSWAP n -> y
   ZBUD n -> m
   ZPOOL m -> y
  +ZSWAP y
  Thanks to Darth Vader.
l/glib2-2.56.2-x86_64-2.txz:  Rebuilt.
  Make links in the documentation directory to all of the API documentation
  found under /usr/share/gtk-doc/html. Thanks to Didier Spaier.
l/libarchive-3.3.3-x86_64-1.txz:  Upgraded.
n/links-2.17-x86_64-1.txz:  Upgraded.
xfce/tumbler-0.2.2-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2018-09-11 03:00:39 +02:00
Patrick J Volkerding
ce9883adca Thu Sep 6 06:15:46 UTC 2018
a/acpid-2.0.30-x86_64-1.txz:  Upgraded.
a/etc-15.0-x86_64-9.txz:  Rebuilt.
  Added support for /etc/ld.so.conf.d/. Thanks to Qury.
a/kernel-firmware-20180904_85c5d90-noarch-1.txz:  Upgraded.
a/kernel-generic-4.14.68-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.14.68-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.14.68-x86_64-1.txz:  Upgraded.
a/pkgtools-15.0-noarch-22.txz:  Rebuilt.
  installpkg: prevent noise from the "stray cat" if tar hands it a broken
  pipe. Thanks to ivandi.
  Also (in the comments) provide a possibly better but untested solution.
  Thanks to SeB.
a/sysvinit-2.90-x86_64-2.txz:  Rebuilt.
  sysvinit-2.90 added an undocumented feature that tries to spawn agetty
  if it sees console= in the kernel command line. Avoiding the debate about
  whether this code belongs in init at all, at least such a change should
  be documented, and probably made opt-in. This patch disables the new
  behavior unless "sysvinit_agetty" is also seen in the kernel command line.
  It seems like this might have been something added for Hurd, and it might
  be wise to stick to what we've got rather than following upstream on this
  particular package. If anyone notices any other odd behavior, please let
  me know. Thanks to shastah.
a/sysvinit-scripts-2.1-noarch-19.txz:  Rebuilt.
  When checking for intel_pstate, direct the stderr to /dev/null in case
  the file doesn't exist in /sys. Thanks to ivandi.
  Allow forcing an option by editing /etc/default/cpufreq.
ap/cups-filters-1.21.2-x86_64-1.txz:  Upgraded.
ap/ghostscript-9.24-x86_64-1.txz:  Upgraded.
  Patched multiple -dSAFER sandbox bypass vulnerabilities.
  Thanks to Tavis Ormandy.
  For more information, see:
    https://www.ghostscript.com/doc/9.24/News.htm
    https://www.kb.cert.org/vuls/id/332928
  (* Security fix *)
ap/sudo-1.8.25-x86_64-1.txz:  Upgraded.
d/binutils-2.31.1-x86_64-2.txz:  Rebuilt.
  elf.c (_bfd_elf_get_symbol_version_string): Return _("<corrupt>") for
  corrupt symbol version info.
  elflink.c (bfd_elf_record_link_assignment): Always clear h->verinfo.verdef
  when overriding a dynamic definition.
  Thanks to Michael Short for pointing out the upstream patches.
d/ccache-3.4.3-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.14.68-x86-1.txz:  Upgraded.
d/llvm-6.0.1-x86_64-2.txz:  Rebuilt.
  Recompiled with -DCLANG_BUILD_SHARED_LIBS=ON to fix issues when multiple
  OpenCL drivers are installed. Thanks to Heinz Wiesinger.
d/mercurial-4.7.1-x86_64-1.txz:  Upgraded.
k/kernel-source-4.14.68-noarch-1.txz:  Upgraded.
l/mozilla-nss-3.39-x86_64-1.txz:  Upgraded.
n/curl-7.61.1-x86_64-1.txz:  Upgraded.
  This update fixes an NTLM password overflow via integer overflow.
  For more information, see:
    https://curl.haxx.se/docs/CVE-2018-14618.html
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14618
  (* Security fix *)
n/gnupg2-2.2.10-x86_64-1.txz:  Upgraded.
n/libtirpc-1.1.4-x86_64-1.txz:  Upgraded.
n/netatalk-3.1.11-x86_64-2.txz:  Rebuilt.
  rc.atalk: fixed errors in status output. Thanks to marav.
n/nghttp2-1.33.0-x86_64-1.txz:  Upgraded.
n/p11-kit-0.23.14-x86_64-1.txz:  Upgraded.
n/stunnel-5.49-x86_64-1.txz:  Upgraded.
x/libdrm-2.4.94-x86_64-1.txz:  Upgraded.
x/xf86-video-ati-20180824_de88ea27-x86_64-1.txz:  Upgraded.
xap/hexchat-2.14.2-x86_64-1.txz:  Upgraded.
xap/mozilla-firefox-60.2.0esr-x86_64-1.txz:  Upgraded.
  This release contains security fixes and improvements.
  For more information, see:
    https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
  (* Security fix *)
xap/xlockmore-5.56-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2018-09-06 18:00:33 +02:00
Patrick J Volkerding
b70192b921 Mon Aug 27 20:27:22 UTC 2018
a/kernel-firmware-20180825_fea76a0-noarch-1.txz:  Upgraded.
ap/vim-8.1.0328-x86_64-1.txz:  Upgraded.
d/meson-0.47.2-x86_64-1.txz:  Upgraded.
d/python-setuptools-40.2.0-x86_64-1.txz:  Upgraded.
l/python-certifi-2018.8.24-x86_64-1.txz:  Upgraded.
l/python-idna-2.7-x86_64-1.txz:  Upgraded.
l/python-packaging-17.1-x86_64-1.txz:  Upgraded.
l/python-pillow-5.2.0-x86_64-1.txz:  Upgraded.
l/python-requests-2.19.1-x86_64-1.txz:  Upgraded.
l/python-urllib3-1.23-x86_64-1.txz:  Upgraded.
l/talloc-2.1.14-x86_64-1.txz:  Upgraded.
l/tdb-1.3.16-x86_64-1.txz:  Upgraded.
l/tevent-0.9.37-x86_64-1.txz:  Upgraded.
n/ethtool-4.18-x86_64-1.txz:  Upgraded.
n/openssh-7.8p1-x86_64-1.txz:  Upgraded.
n/samba-4.8.5-x86_64-1.txz:  Upgraded.
x/xauth-1.0.10-x86_64-3.txz:  Rebuilt.
  Patched to fix a bug where changing the hostname caused X access to be lost.
  Thanks to TurboBlaze.
xap/vim-gvim-8.1.0328-x86_64-1.txz:  Upgraded.
2018-08-28 09:00:35 +02:00
Patrick J Volkerding
cfe7baffee Tue Aug 21 18:39:27 UTC 2018
a/openssl-solibs-1.1.0i-x86_64-2.txz:  Rebuilt.
ap/cups-filters-1.21.0-x86_64-1.txz:  Upgraded.
  Compiled against poppler-0.68.0.
ap/qpdf-8.2.1-x86_64-1.txz:  Upgraded.
kde/calligra-2.9.11-x86_64-25.txz:  Rebuilt.
  Recompiled against poppler-0.68.0.
l/babl-0.1.56-x86_64-1.txz:  Upgraded.
l/gdbm-1.18-x86_64-1.txz:  Upgraded.
l/gegl-0.4.8-x86_64-1.txz:  Upgraded.
l/jmtpfs-0.5-x86_64-1.txz:  Added.
l/pango-1.42.4-x86_64-1.txz:  Upgraded.
l/poppler-0.68.0-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
n/dhcpcd-7.0.8-x86_64-1.txz:  Upgraded.
n/openssl-1.1.0i-x86_64-2.txz:  Rebuilt.
  Fixed c_rehash script.
n/php-7.2.9-x86_64-1.txz:  Upgraded.
t/texlive-2018.180820-x86_64-1.txz:  Upgraded.
  Compiled against poppler-0.68.0.
  texdoc fixed - a cache file was missing
  synctex header was missing (for building third-party apps)
  xindy was broken - recompiled from source
  Thanks to Johannes Schoepfer.
x/libX11-1.6.6-x86_64-1.txz:  Upgraded.
  This update fixes some security issues:
  Fixed crash on invalid reply (CVE-2018-14598).
  Fixed off-by-one writes (CVE-2018-14599).
  Fixed out of boundary write (CVE-2018-14600).
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14598
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14599
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14600
  (* Security fix *)
xap/gimp-2.10.6-x86_64-1.txz:  Upgraded.
xfce/tumbler-0.2.1-x86_64-6.txz:  Rebuilt.
  Recompiled against poppler-0.68.0.
2018-08-22 09:00:30 +02:00
Patrick J Volkerding
865737c0c7 Sat Aug 18 02:09:51 UTC 2018
a/kernel-generic-4.14.64-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.14.64-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.14.64-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.14.64-x86-1.txz:  Upgraded.
k/kernel-source-4.14.64-noarch-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2018-08-18 09:00:31 +02:00
Patrick J Volkerding
b4263a7629 Tue Aug 14 22:56:09 UTC 2018
a/kernel-firmware-20180814_fdd3468-noarch-1.txz:  Upgraded.
a/openssl-solibs-1.1.0i-x86_64-1.txz:  Upgraded.
d/strace-4.24-x86_64-1.txz:  Upgraded.
l/harfbuzz-1.8.8-x86_64-1.txz:  Upgraded.
n/iproute2-4.18.0-x86_64-1.txz:  Upgraded.
n/openssl-1.1.0i-x86_64-1.txz:  Upgraded.
  This update fixes two low severity security issues:
  Client DoS due to large DH parameter.
  Cache timing vulnerability in RSA Key Generation.
  For more information, see:
    https://www.openssl.org/news/secadv/20180612.txt
    https://www.openssl.org/news/secadv/20180416.txt
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0732
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0737
  (* Security fix *)
x/mesa-18.1.6-x86_64-1.txz:  Upgraded.
xap/xscreensaver-5.40-x86_64-1.txz:  Upgraded.
2018-08-15 09:00:29 +02:00
Patrick J Volkerding
9cbba79744 Tue Aug 14 00:10:54 UTC 2018
a/etc-15.0-x86_64-8.txz:  Rebuilt.
  /etc/passwd: Added icecc (UID 49).
  /etc/group: Added icecc (GID 49).
a/pciutils-3.6.2-x86_64-1.txz:  Upgraded.
a/sysvinit-scripts-2.1-noarch-17.txz:  Rebuilt.
  rc.M: start rc.icecc-scheduler and rc.iceccd.
d/icecream-1.1-x86_64-1.txz:  Added.
  Thanks to Heinz Wiesinger for the SBo reference build script.
n/libmbim-1.16.2-x86_64-1.txz:  Upgraded.
n/libqmi-1.20.2-x86_64-1.txz:  Upgraded.
n/p11-kit-0.23.13-x86_64-1.txz:  Upgraded.
x/xterm-334-x86_64-1.txz:  Upgraded.
2018-08-14 09:00:26 +02:00
Patrick J Volkerding
cc59e5e82c Fri Aug 10 22:42:55 UTC 2018
a/kernel-generic-4.14.62-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.14.62-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.14.62-x86_64-1.txz:  Upgraded.
ap/pamixer-1.3.1-x86_64-7.txz:  Rebuilt.
  Recompiled against boost-1.68.0.
d/cmake-3.12.1-x86_64-1.txz:  Upgraded.
d/distcc-3.3-x86_64-3.txz:  Rebuilt.
  Install masquerade symlinks in /usr/lib${LIBDIRSUFFIX}/distcc/.
d/kernel-headers-4.14.62-x86-1.txz:  Upgraded.
k/kernel-source-4.14.62-noarch-1.txz:  Upgraded.
kde/calligra-2.9.11-x86_64-24.txz:  Rebuilt.
  Recompiled against boost-1.68.0.
l/akonadi-1.13.0-x86_64-10.txz:  Rebuilt.
  Recompiled against boost-1.68.0.
l/boost-1.68.0-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
l/harfbuzz-1.8.7-x86_64-1.txz:  Upgraded.
l/libgsf-1.14.44-x86_64-1.txz:  Upgraded.
l/librsvg-2.42.6-x86_64-1.txz:  Upgraded.
l/libsoup-2.62.3-x86_64-1.txz:  Upgraded.
n/bind-9.12.2_P1-x86_64-1.txz:  Upgraded.
  Fixed a security issue where named could crash during recursive processing
  of DNAME records when "deny-answer-aliases" was in use resulting in a
  denial of service. Note that "deny-answer-aliases" is rarely used.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5740
  (* Security fix *)
xap/audacious-3.10-x86_64-1.txz:  Upgraded.
xap/audacious-plugins-3.10-x86_64-1.txz:  Upgraded.
extra/pure-alsa-system/audacious-plugins-3.10-x86_64-1_alsa.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2018-08-11 09:00:31 +02:00
Patrick J Volkerding
16c26916c0 Tue Aug 7 23:24:17 UTC 2018
a/btrfs-progs-v4.17.1-x86_64-1.txz:  Upgraded.
a/sysvinit-scripts-2.1-noarch-16.txz:  Rebuilt.
  rc.M: call update-gdk-pixbuf-loaders with HOME=/root to prevent creating
  a .cache directory in /. Thanks to Konrad Rzepecki.
n/NetworkManager-1.12.2-x86_64-2.txz:  Rebuilt.
  Fix libnm compile errors due to NM_AVAILABLE_IN_1_12_2 macro.
x/xorg-server-1.20.1-x86_64-1.txz:  Upgraded.
x/xorg-server-xephyr-1.20.1-x86_64-1.txz:  Upgraded.
x/xorg-server-xnest-1.20.1-x86_64-1.txz:  Upgraded.
x/xorg-server-xvfb-1.20.1-x86_64-1.txz:  Upgraded.
xap/network-manager-applet-1.8.16-x86_64-1.txz:  Upgraded.
2018-08-08 09:00:27 +02:00
Patrick J Volkerding
2f3a640550 Tue Aug 7 05:51:28 UTC 2018
a/kernel-generic-4.14.61-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.14.61-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.14.61-x86_64-1.txz:  Upgraded.
a/sysvinit-scripts-2.1-noarch-15.txz:  Rebuilt.
  rc.S: clean up files in /var/lib/pkgtools/setup/tmp. Thanks to burdi01.
ap/hplip-3.18.7-x86_64-2.txz:  Rebuilt.
  Patched to fix libImageProcessor installation. Thanks to Matteo Bernardini.
d/kernel-headers-4.14.61-x86-1.txz:  Upgraded.
k/kernel-source-4.14.61-noarch-1.txz:  Upgraded.
l/opus-1.3_rc-x86_64-1.txz:  Upgraded.
n/iputils-s20180629-x86_64-1.txz:  Upgraded.
xap/mozilla-thunderbird-60.0-x86_64-1.txz:  Upgraded.
  This release contains security fixes and improvements.
  For more information, see:
    https://www.mozilla.org/en-US/thunderbird/60.0/releasenotes/
    https://www.mozilla.org/security/known-vulnerabilities/thunderbird.html
    https://www.mozilla.org/en-US/security/advisories/mfsa2018-19/
  (* Security fix *)
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2018-08-07 21:52:45 +02:00
Patrick J Volkerding
564ec5a0ac Thu Aug 2 20:12:10 UTC 2018
ap/hplip-3.18.7-x86_64-1.txz:  Upgraded.
l/harfbuzz-1.8.5-x86_64-1.txz:  Upgraded.
n/lftp-4.8.4-x86_64-1.txz:  Upgraded.
  It has been discovered that lftp up to and including version 4.8.3 does
  not properly sanitize remote file names, leading to a loss of integrity
  on the local system when reverse mirroring is used. A remote attacker
  may trick a user to use reverse mirroring on an attacker controlled FTP
  server, resulting in the removal of all files in the current working
  directory of the victim's system.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10916
  (* Security fix *)
x/fonttosfnt-1.0.5-x86_64-1.txz:  Upgraded.
2018-08-03 09:00:36 +02:00
Patrick J Volkerding
e100944d49 Fri Jul 27 21:01:22 UTC 2018
Hey folks, my first order of business here needs to be a huge thank you to
everyone who has donated at https://paypal.me/volkerdi to help keep this
project going. As most of you are already aware by now, the financal situation
here at Slackware HQ has not been great for many years, including not getting
any pay for the last two years and forcing me (and my family) to live very
frugally while I continued to work on the project hoping I'd figure out a way
to actually monitize it by the time that Slackware 15.0 is ready for release.
I'm not trying to cast any blame regarding the situation. Really, I can only
blame myself for not trying to build my own ship years ago when things began
to not really work out. I'm still looking into sustainable funding options
such as Patreon or Liberapay (or perhaps both), and I'm open to other ideas.
I'm no longer in immediate danger of going broke, and I'm no longer
entertaining the notion of joining my friends at the local potato chip factory
in order to pay my bills. :) My family is grateful and humbled by the support
we've received. Hope we'll be able to keep this project going for a long time.
Also, I realize that the website lacks updates and needs attention and I will
need to find some time to devote to that. I've never been much of a website
designer, and the slackware.com site is basically left over from work done by
former Walnut Creek / BSDi employees. I've never seen able to make much sense
of the SQL backend. The interface to edit and post articles is clunky (and
I'm not sure the PHP for that even works any more). When I've posted articles
in recent years, I've done so by editing the main page already processed from
PHP into HTML, which is pretty darn messy as I'm sure you can imagine. I tend
to prioritize the distribution itself over other demands on my time - that's
clearly a lot to do with how things ended up the way they did.
So, I guess that's the report for now. Lots more work to do and not enough
time to do it in... that part I don't see changing moving forward. :)
Thanks very much again. I'll do my best to keep you all posted.
  - Pat
a/file-5.34-x86_64-1.txz:  Upgraded.
a/kernel-firmware-20180727_b01151b-noarch-1.txz:  Upgraded.
a/kernel-generic-4.14.58-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.14.58-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.14.58-x86_64-1.txz:  Upgraded.
d/gcc-8.2.0-x86_64-1.txz:  Upgraded.
d/gcc-brig-8.2.0-x86_64-1.txz:  Upgraded.
d/gcc-g++-8.2.0-x86_64-1.txz:  Upgraded.
d/gcc-gfortran-8.2.0-x86_64-1.txz:  Upgraded.
d/gcc-gnat-8.2.0-x86_64-1.txz:  Upgraded.
d/gcc-go-8.2.0-x86_64-1.txz:  Upgraded.
d/gcc-objc-8.2.0-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.14.58-x86-1.txz:  Upgraded.
d/libtool-2.4.6-x86_64-9.txz:  Rebuilt.
  Recompiled to update embedded GCC version number.
k/kernel-source-4.14.58-noarch-1.txz:  Upgraded.
   CRASH_DUMP n -> y
   KEXEC n -> y
  +KEXEC_JUMP y
  +PROC_VMCORE y
l/babl-0.1.54-x86_64-1.txz:  Upgraded.
l/gegl-0.4.6-x86_64-1.txz:  Upgraded.
l/libart_lgpl-2.3.21-x86_64-2.txz:  Removed.
  This actually hasn't been needed by any Slackware package since koffice in
  KDE3, and this particular version won't work with the Trinity Desktop
  Environment, which is essentially a fork of KDE 3.5 updated to compile and
  run with modern libraries and development tools. I can't see much point in
  keeping it around. Thanks to _gin.
n/NetworkManager-1.12.2-x86_64-1.txz:  Upgraded.
n/dhcpcd-7.0.7-x86_64-1.txz:  Upgraded.
x/libinput-1.11.3-x86_64-1.txz:  Upgraded.
extra/tigervnc/tigervnc-1.9.0-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2018-07-28 09:00:34 +02:00
Patrick J Volkerding
00d6960a08 Fri Jul 20 23:16:32 UTC 2018
ap/cups-filters-1.20.4-x86_64-2.txz:  Rebuilt.
  Recompiled against poppler-0.67.0.
kde/calligra-2.9.11-x86_64-23.txz:  Rebuilt.
  Recompiled against poppler-0.67.0.
l/ffmpeg-3.4.4-x86_64-1.txz:  Upgraded.
l/gst-plugins-base-1.14.2-x86_64-1.txz:  Upgraded.
l/gst-plugins-good-1.14.2-x86_64-1.txz:  Upgraded.
l/gst-plugins-libav-1.14.2-x86_64-1.txz:  Upgraded.
l/gstreamer-1.14.2-x86_64-1.txz:  Upgraded.
l/poppler-0.67.0-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
n/php-7.2.8-x86_64-1.txz:  Upgraded.
  This is a security release which also contains several minor bug fixes.
  (* Security fix *)
t/texlive-2018.180630-x86_64-2.txz:  Rebuilt.
  Recompiled against poppler-0.67.0.
xap/MPlayer-20180720-x86_64-1.txz:  Upgraded.
xfce/tumbler-0.2.1-x86_64-5.txz:  Rebuilt.
  Recompiled against poppler-0.67.0.
extra/pure-alsa-system/MPlayer-20180720-x86_64-1_alsa.txz:  Upgraded.
extra/pure-alsa-system/ffmpeg-3.4.4-x86_64-1_alsa.txz:  Upgraded.
extra/pure-alsa-system/gst-plugins-good-1.14.2-x86_64-1_alsa.txz:  Upgraded.
pasture/php-5.6.37-x86_64-1.txz:  Upgraded.
  Several security bugs have been fixed in this release, including:
  Int Overflow lead to Heap OverFlow in exif_thumbnail_extract of exif.c
  heap-buffer-overflow (READ of size 48) while reading exif data
  (* Security fix *)
2018-07-21 09:00:35 +02:00
Patrick J Volkerding
d9f16c58d5 Wed Jul 18 22:41:16 UTC 2018
n/httpd-2.4.34-x86_64-1.txz:  Upgraded.
  This update fixes two denial of service issues:
  mod_md: DoS via Coredumps on specially crafted requests
  mod_http2: DoS for HTTP/2 connections by specially crafted requests
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8011
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1333
  (* Security fix *)
2018-07-19 09:00:36 +02:00
Patrick J Volkerding
9f99889c0c Tue Jul 17 21:16:10 UTC 2018
Happy 25th anniversary to the Slackware 1.00 release! When the original
announcement went out on Usenet, I believe it had a UTC timestamp which has
led to some confusion over whether the anniversary falls on the 16th (which
was the date when I made the post) or on the 17th (which is when most people
first saw it)... but really, what's the difference? We can celebrate on both
days as far as I'm concerned. Thanks for sticking with the project all these
years. Glad I was able to help. :)
Here's a link to the 1.00 announcement:
  http://www.slackware.com/announce/1.0.php
And here's a nice article that was posted on opensource.com:
  https://opensource.com/article/18/7/stackware-turns-25
a/kernel-firmware-20180717_8d69bab-noarch-1.txz:  Upgraded.
l/pulseaudio-12.2-x86_64-1.txz:  Upgraded.
n/gnutls-3.6.3-x86_64-1.txz:  Upgraded.
n/mutt-1.10.1-x86_64-1.txz:  Upgraded.
  This update fixes bugs and security issues. Upstream strongly recommends
  that all IMAP and POP users upgrade as soon as possible.
  (* Security fix *)
2018-07-18 09:00:36 +02:00
Patrick J Volkerding
eb3b16e594 Thu Jul 12 21:28:13 UTC 2018
a/etc-15.0-x86_64-7.txz:  Rebuilt.
  Don't set a default MANPATH - it ends up overriding the config file settings.
  Thanks to Nate_KS and andygoth.
a/mkinitrd-1.4.11-x86_64-8.txz:  Rebuilt.
  Added hid-asus module to mkinitrd_command_generator.sh. Thanks to phalange.
l/harfbuzz-1.8.3-x86_64-1.txz:  Upgraded.
n/bind-9.12.2-x86_64-1.txz:  Upgraded.
  Looking at the BIND release schedule, it's probably better to stick with
  this stable branch than to track the development/unstable which isn't due
  to become bind-9.14.0 for many months. Like always, we'll move to a newer
  branch if that becomes necessary.
x/xf86-input-libinput-0.28.0-x86_64-1.txz:  Upgraded.
x/xf86-video-ati-20180711_f533b1f6-x86_64-1.txz:  Upgraded.
2018-07-13 09:00:33 +02:00
Patrick J Volkerding
ed7e9fe9c2 Thu Jul 12 01:50:07 UTC 2018
a/kernel-generic-4.14.55-x86_64-1.txz:  Upgraded.
a/kernel-huge-4.14.55-x86_64-1.txz:  Upgraded.
a/kernel-modules-4.14.55-x86_64-1.txz:  Upgraded.
d/kernel-headers-4.14.55-x86-1.txz:  Upgraded.
d/rust-1.27.1-x86_64-1.txz:  Upgraded.
k/kernel-source-4.14.55-noarch-1.txz:  Upgraded.
n/bind-9.13.2-x86_64-1.txz:  Upgraded.
  This update fixes security issues:
  Fixed a bug where extraordinarily large zone transfers caused several
  problems, with possible outcomes including corrupted journal files or
  server exit due to assertion failure.
  Don't permit recursive query service to unauthorized clients.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5738
  (* Security fix *)
n/curl-7.61.0-x86_64-1.txz:  Upgraded.
  This update fixes a buffer overflow in SMTP send.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0500
  (* Security fix *)
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2018-07-12 21:00:37 +02:00
Patrick J Volkerding
cc2d429ab3 Tue Jul 10 21:57:11 UTC 2018
a/e2fsprogs-1.44.3-x86_64-1.txz:  Upgraded.
a/gptfdisk-1.0.4-x86_64-1.txz:  Upgraded.
n/dovecot-2.3.2.1-x86_64-1.txz:  Upgraded.
n/iptables-1.8.0-x86_64-1.txz:  Upgraded.
n/libnftnl-1.1.1-x86_64-1.txz:  Upgraded.
n/nftables-0.9.0-x86_64-1.txz:  Upgraded.
xap/mozilla-thunderbird-52.9.1-x86_64-1.txz:  Upgraded.
  This release contains security fixes and improvements.
  For more information, see:
    https://www.mozilla.org/en-US/thunderbird/52.9.1/releasenotes/
    https://www.mozilla.org/security/known-vulnerabilities/thunderbird.html
  (* Security fix *)
2018-07-11 09:00:34 +02:00
Patrick J Volkerding
925fbfa5e9 Sun Jul 1 18:49:11 UTC 2018
a/pciutils-3.6.0-x86_64-1.txz:  Upgraded.
a/sysvinit-scripts-2.1-noarch-13.txz:  Rebuilt.
  rc.M: remove sockets from /tmp/.X11-unix/. Thanks to Xsane.
n/NetworkManager-1.12.0-x86_64-2.txz:  Rebuilt.
  Recompiled with --with-libnm-glib. Thanks to Skaendo.
2018-07-02 09:00:34 +02:00