a/util-linux-2.37-x86_64-1.txz: Upgraded.
l/glib2-2.68.3-x86_64-1.txz: Upgraded.
l/mozilla-nss-3.67-x86_64-1.txz: Upgraded.
l/rubygem-asciidoctor-2.0.15-x86_64-1.txz: Added.
This is required to process the man pages for the util-linux build.
Thanks to Trevor D. Cook.
n/gnupg2-2.2.28-x86_64-1.txz: Upgraded.
Hey folks! Sorry about the delay in getting this batch out but I had other
distractions going on here last week that prevented getting this one wrapped
up. Anyway, probably the highlight of this update set is that we've decided
to abandon the 5.10 LTS kernel in favor of following the latest one. We've
never really had a policy that required LTS in a stable release although that
is how it has been done for years, but based on comments from the Slackware
community it seems like 5.10 LTS isn't getting a lot of love and lacks
hardware support that people need now. Conversely, the reports on 5.12 have
been almost entirely positive, so we're going to provide what we think is the
best available kernel. It's unlikely that we'll see another LTS prior to
release, so the plan for maintenance is to keep following the latest kernels
as needed for security purposes. If that means we have to jump to a new branch
while supporting the stable release, we'll start the kernel out in testing
first until we've had some feedback that it's safe to move it to the patches
directory. Sooner or later we will end up on an LTS kernel again, and at that
point we'll just roll with that one. Feel free to comment (or complain) about
this plan on LQ... I'll be curious to see what people think. Anyway, enjoy!
a/hwdata-0.348-noarch-1.txz: Upgraded.
a/kernel-generic-5.12.9-x86_64-1.txz: Upgraded.
a/kernel-huge-5.12.9-x86_64-1.txz: Upgraded.
a/kernel-modules-5.12.9-x86_64-1.txz: Upgraded.
ap/ispell-3.4.04-x86_64-1.txz: Upgraded.
ap/mpg123-1.28.0-x86_64-1.txz: Upgraded.
ap/slackpkg-15.0.5-noarch-1.txz: Upgraded.
Add "--" option to "command cd" in bash completion file. (akinomyoga)
shell-completions/slackpkg.bash: add "show-changelog".
Import bash-completion file from upstream project.
Added the new-config actions for specific files. (Piter PUNK)
Harden slackpkg with respect to obtaining GPG key. (CRTS)
d/clisp-2.50_20191103_c26de7873-x86_64-5.txz: Rebuilt.
Upgraded to libffcall-2.3.
d/git-2.32.0-x86_64-1.txz: Upgraded.
d/kernel-headers-5.12.9-x86-1.txz: Upgraded.
d/poke-1.3-x86_64-1.txz: Upgraded.
d/vala-0.52.4-x86_64-1.txz: Upgraded.
k/kernel-source-5.12.9-noarch-1.txz: Upgraded.
kde/calligra-3.2.1-x86_64-9.txz: Rebuilt.
Recompiled against poppler-21.06.1.
kde/cantor-21.04.1-x86_64-2.txz: Rebuilt.
Recompiled against poppler-21.06.1.
kde/digikam-7.2.0-x86_64-3.txz: Rebuilt.
Recompiled against imagemagick-7.0.11_14.
kde/kfilemetadata-5.82.0-x86_64-2.txz: Rebuilt.
Recompiled against poppler-21.06.1.
kde/kile-2.9.93-x86_64-9.txz: Rebuilt.
Recompiled against poppler-21.06.1.
kde/kitinerary-21.04.1-x86_64-2.txz: Rebuilt.
Recompiled against poppler-21.06.1.
kde/krita-4.4.3-x86_64-5.txz: Rebuilt.
Recompiled against poppler-21.06.1.
kde/okular-21.04.1-x86_64-2.txz: Rebuilt.
Recompiled against poppler-21.06.1.
l/alsa-lib-1.2.5-x86_64-2.txz: Rebuilt.
Account for unexpected packing of the conf file tarballs. We'll see if this
is enough to make things work well again.
l/at-spi2-core-2.40.2-x86_64-1.txz: Upgraded.
l/dvdauthor-0.7.2-x86_64-5.txz: Rebuilt.
Recompiled against imagemagick-7.0.11_14.
l/libogg-1.3.5-x86_64-1.txz: Upgraded.
l/librsvg-2.50.7-x86_64-1.txz: Upgraded.
l/pipewire-0.3.29-x86_64-1.txz: Upgraded.
l/polkit-0.119-x86_64-1.txz: Upgraded.
This update includes a mitigation for local privilege escalation using
polkit_system_bus_name_get_creds_sync().
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3560
(* Security fix *)
l/poppler-21.06.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/pycairo-1.20.1-x86_64-1.txz: Upgraded.
l/qca-2.3.3-x86_64-1.txz: Upgraded.
l/vte-0.64.2-x86_64-1.txz: Upgraded.
n/epic5-2.1.5-x86_64-1.txz: Upgraded.
n/httpd-2.4.48-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
mod_http2: Fix a potential NULL pointer dereference.
Unexpected <Location> section matching with 'MergeSlashes OFF'.
mod_auth_digest: possible stack overflow by one nul byte while validating
the Digest nonce.
mod_session: Fix possible crash due to NULL pointer dereference, which
could be used to cause a Denial of Service with a malicious backend
server and SessionHeader.
mod_session: Fix possible crash due to NULL pointer dereference, which
could be used to cause a Denial of Service.
mod_proxy_http: Fix possible crash due to NULL pointer dereference, which
could be used to cause a Denial of Service.
mod_proxy_wstunnel, mod_proxy_http: Handle Upgradable protocols end-to-end
negotiation.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-31618https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30641https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35452https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26691https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26690https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13950https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17567
(* Security fix *)
n/libmbim-1.24.8-x86_64-1.txz: Upgraded.
n/libqmi-1.28.6-x86_64-1.txz: Upgraded.
n/nettle-3.7.3-x86_64-1.txz: Upgraded.
n/openldap-2.4.59-x86_64-1.txz: Upgraded.
n/p11-kit-0.24.0-x86_64-1.txz: Upgraded.
n/php-7.4.20-x86_64-1.txz: Upgraded.
n/vsftpd-3.0.4-x86_64-1.txz: Upgraded.
n/whois-5.5.10-x86_64-1.txz: Upgraded.
x/libX11-1.7.2-x86_64-1.txz: Upgraded.
This is a bug fix release, correcting a regression introduced by and
improving the checks from the fix for CVE-2021-31535.
x/libinput-1.18.0-x86_64-1.txz: Upgraded.
x/mesa-21.1.2-x86_64-1.txz: Upgraded.
xap/blueman-2.2.1-x86_64-1.txz: Upgraded.
xap/gnuplot-5.4.2-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-78.11.0-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/78.11.0/releasenotes/https://www.mozilla.org/en-US/security/advisories/mfsa2021-26/https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29964https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29967
(* Security fix *)
xap/pidgin-2.14.5-x86_64-1.txz: Upgraded.
xap/xine-lib-1.2.11-x86_64-6.txz: Rebuilt.
Recompiled against poppler-21.06.1.
extra/bash-completion/bash-completion-2.11-noarch-2.txz: Rebuilt.
Removed the slackpkg completion file.
extra/php8/php8-8.0.7-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/kernel-firmware-20210518_f846292-noarch-1.txz: Upgraded.
a/kernel-generic-5.10.38-x86_64-1.txz: Upgraded.
a/kernel-huge-5.10.38-x86_64-1.txz: Upgraded.
a/kernel-modules-5.10.38-x86_64-1.txz: Upgraded.
d/kernel-headers-5.10.38-x86-1.txz: Upgraded.
k/kernel-source-5.10.38-noarch-1.txz: Upgraded.
l/imagemagick-7.0.11_13-x86_64-1.txz: Upgraded.
l/pango-1.48.5-x86_64-1.txz: Upgraded.
l/pipewire-0.3.28-x86_64-1.txz: Upgraded.
Config files are now installed in the data dir, system overrides
in /etc/pipewire and $HOME are checked first.
x/libX11-1.7.1-x86_64-1.txz: Upgraded.
This update fixes missing request length checks in libX11 that can lead to
the emission of extra X protocol requests to the X server.
For more information, see:
https://lists.x.org/archives/xorg-announce/2021-May/003088.htmlhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-31535
(* Security fix *)
x/libdrm-2.4.106-x86_64-1.txz: Upgraded.
xfce/xfce4-screenshooter-1.9.9-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/linux-5.12.x/kernel-generic-5.12.5-x86_64-1.txz: Upgraded.
testing/packages/linux-5.12.x/kernel-headers-5.12.5-x86-1.txz: Upgraded.
testing/packages/linux-5.12.x/kernel-huge-5.12.5-x86_64-1.txz: Upgraded.
testing/packages/linux-5.12.x/kernel-modules-5.12.5-x86_64-1.txz: Upgraded.
testing/packages/linux-5.12.x/kernel-source-5.12.5-noarch-1.txz: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
n/bind-9.16.15-x86_64-1.txz: Upgraded.
This update fixes bugs and the following security issues:
A specially crafted GSS-TSIG query could cause a buffer overflow in the
ISC implementation of SPNEGO.
named crashed when a DNAME record placed in the ANSWER section during DNAME
chasing turned out to be the final answer to a client query.
Insufficient IXFR checks could result in named serving a zone without an SOA
record at the apex, leading to a RUNTIME_CHECK assertion failure when the
zone was subsequently refreshed. This has been fixed by adding an owner name
check for all SOA records which are included in a zone transfer.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25216https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25215https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25214
(* Security fix *)
a/kernel-generic-5.10.28-x86_64-1.txz: Upgraded.
a/kernel-huge-5.10.28-x86_64-1.txz: Upgraded.
a/kernel-modules-5.10.28-x86_64-1.txz: Upgraded.
d/kernel-headers-5.10.28-x86-1.txz: Upgraded.
k/kernel-source-5.10.28-noarch-1.txz: Upgraded.
DEVKMEM y -> n
Thanks to Jonathan Woithe for the suggestion.
l/pipewire-0.3.25-x86_64-1.txz: Upgraded.
n/libksba-1.5.1-x86_64-1.txz: Upgraded.
x/ibus-m17n-1.4.5-x86_64-1.txz: Upgraded.
x/libdrm-2.4.105-x86_64-1.txz: Upgraded.
x/mesa-21.0.2-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/linux-5.11.x/kernel-generic-5.11.12-x86_64-1.txz: Upgraded.
testing/packages/linux-5.11.x/kernel-headers-5.11.12-x86-1.txz: Upgraded.
testing/packages/linux-5.11.x/kernel-huge-5.11.12-x86_64-1.txz: Upgraded.
testing/packages/linux-5.11.x/kernel-modules-5.11.12-x86_64-1.txz: Upgraded.
testing/packages/linux-5.11.x/kernel-source-5.11.12-noarch-1.txz: Upgraded.
DEVKMEM y -> n
Thanks to Jonathan Woithe for the suggestion.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/btrfs-progs-5.11.1-x86_64-1.txz: Upgraded.
a/dialog-1.3_20210324-x86_64-1.txz: Upgraded.
a/kernel-generic-5.10.26-x86_64-1.txz: Upgraded.
a/kernel-huge-5.10.26-x86_64-1.txz: Upgraded.
a/kernel-modules-5.10.26-x86_64-1.txz: Upgraded.
a/openssl-solibs-1.1.1k-x86_64-1.txz: Upgraded.
d/kernel-headers-5.10.26-x86-1.txz: Upgraded.
d/rust-1.51.0-x86_64-1.txz: Upgraded.
e/emacs-27.2-x86_64-1.txz: Upgraded.
k/kernel-source-5.10.26-noarch-1.txz: Upgraded.
-ADI_AXI_ADC m
AD9467 m -> n
FONT_TER16x32 n -> y
n/openssl-1.1.1k-x86_64-1.txz: Upgraded.
This update fixes security issues:
Fixed a problem with verifying a certificate chain when using the
X509_V_FLAG_X509_STRICT flag.
Fixed an issue where an OpenSSL TLS server may crash if sent a maliciously
crafted renegotiation ClientHello message from a client.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3450https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3449
(* Security fix *)
n/samba-4.14.2-x86_64-1.txz: Upgraded.
This is a security release in order to address the following defects:
Heap corruption via crafted DN strings.
Out of bounds read in AD DC LDAP server.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27840https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20277
(* Security fix *)
x/mesa-21.0.1-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/linux-5.11.x/kernel-generic-5.11.10-x86_64-1.txz: Upgraded.
testing/packages/linux-5.11.x/kernel-headers-5.11.10-x86-1.txz: Upgraded.
testing/packages/linux-5.11.x/kernel-huge-5.11.10-x86_64-1.txz: Upgraded.
testing/packages/linux-5.11.x/kernel-modules-5.11.10-x86_64-1.txz: Upgraded.
testing/packages/linux-5.11.x/kernel-source-5.11.10-noarch-1.txz: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/dialog-1.3_20210319-x86_64-2.txz: Rebuilt.
Install /etc/dialogrc as /etc/dialogrc.new. This won't protect the file with
this update, but it will moving forward. Thanks to Tonus.
l/libsigc++3-3.0.6-x86_64-1.txz: Added.
x/libinput-1.17.1-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-87.0-x86_64-2.txz: Rebuilt.
Pass --enable-optimize to let the build handle optimizations (apparently
which optimizations work best differs throughout the tree). Don't pass
optimization options in CFLAGS/CXXFLAGS. Build with --enable-rust-simd
since upstream's binary releases do.
xap/mozilla-thunderbird-78.9.0-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/78.9.0/releasenotes/https://www.mozilla.org/en-US/security/advisories/mfsa2021-12/https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23981https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23982https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23984https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23987
(* Security fix *)
testing/packages/linux-5.11.x/kernel-generic-5.11.9-x86_64-1.txz: Upgraded.
testing/packages/linux-5.11.x/kernel-headers-5.11.9-x86-1.txz: Upgraded.
testing/packages/linux-5.11.x/kernel-huge-5.11.9-x86_64-1.txz: Upgraded.
testing/packages/linux-5.11.x/kernel-modules-5.11.9-x86_64-1.txz: Upgraded.
testing/packages/linux-5.11.x/kernel-source-5.11.9-noarch-1.txz: Upgraded.
-ADI_AXI_ADC m
AD9467 m -> n
FONT_TER16x32 n -> y
ap/vim-8.2.2585-x86_64-1.txz: Upgraded.
d/git-2.30.2-x86_64-1.txz: Upgraded.
l/python-dnspython-2.1.0-x86_64-1.txz: Added.
This is needed by samba-4.14.0.
l/python-markdown-3.3.4-x86_64-1.txz: Added.
This is needed by samba-4.14.0.
n/samba-4.14.0-x86_64-1.txz: Upgraded.
xap/vim-gvim-8.2.2585-x86_64-1.txz: Upgraded.
xfce/elementary-xfce-0.15.2-x86_64-1.txz: Upgraded.
a/kernel-generic-5.10.19-x86_64-1.txz: Upgraded.
a/kernel-huge-5.10.19-x86_64-1.txz: Upgraded.
a/kernel-modules-5.10.19-x86_64-1.txz: Upgraded.
d/kernel-headers-5.10.19-x86-1.txz: Upgraded.
d/poke-1.0-x86_64-1.txz: Added.
This looks useful enough to add upon the initial upstream release.
d/python-setuptools-53.1.0-x86_64-1.txz: Upgraded.
k/kernel-source-5.10.19-noarch-1.txz: Upgraded.
l/babl-0.1.86-x86_64-1.txz: Upgraded.
l/gtk+3-3.24.26-x86_64-1.txz: Upgraded.
n/network-scripts-15.0-noarch-12.txz: Rebuilt.
This has been rewritten to add support for IPv6, VLANs and link aggregation
(bonding). Thanks very much to tadgy!
x/xorgproto-2021.3-x86_64-1.txz: Upgraded.
xfce/xfce4-panel-4.16.2-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/linux-5.11.x/kernel-generic-5.11.2-x86_64-1.txz: Upgraded.
testing/packages/linux-5.11.x/kernel-headers-5.11.2-x86-1.txz: Upgraded.
testing/packages/linux-5.11.x/kernel-huge-5.11.2-x86_64-1.txz: Upgraded.
testing/packages/linux-5.11.x/kernel-modules-5.11.2-x86_64-1.txz: Upgraded.
testing/packages/linux-5.11.x/kernel-source-5.11.2-noarch-1.txz: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
xap/mozilla-firefox-78.7.1esr-x86_64-1.txz: Upgraded.
It looks like rebuilding Firefox with Rust 1.50.0 causes it to crash on
HTML5 streams, so let's drop back to this build. 78.8.0 is coming soon
and hopefully it'll fix this.
a/aaa_elflibs-15.0-x86_64-30.txz: Removed.
Renamed to aaa_libraries.
a/aaa_glibc-solibs-2.32-x86_64-2.txz: Added.
This package has been renamed from glibc-solibs, which helps avoid trouble
if someone upgrades using "upgradepkg --install-new */*.txz" by upgrading
this package before aaa_libraries. Otherwise, if aaa_libraries is upgraded
first any libraries in it that are linked against a newer version of glibc
than the one installed on the system would refuse to load.
a/aaa_libraries-15.0-x86_64-1.txz: Added.
This package has been renamed from aaa_elflibs to insure that it will come
after aaa_glibc-solibs when upgraded in alphabetical order.
Upgraded: libcap.so.2.48, libelf-0.183.so, libglib-2.0.so.0.6600.6,
libgmodule-2.0.so.0.6600.6, libgobject-2.0.so.0.6600.6,
libgthread-2.0.so.0.6600.6.
Added: libtirpc.so.3.0.0.
a/btrfs-progs-5.10.1-x86_64-1.txz: Upgraded.
a/glibc-solibs-2.32-x86_64-1.txz: Removed.
Renamed to aaa_glibc-solibs.
a/kernel-generic-5.10.14-x86_64-1.txz: Upgraded.
a/kernel-huge-5.10.14-x86_64-1.txz: Upgraded.
a/kernel-modules-5.10.14-x86_64-1.txz: Upgraded.
ap/slackpkg-15.0-noarch-1.txz: Upgraded.
These are some of the important changes (see the ChangeLog for more):
Note that this slackpkg release contains a backwards-incompatible change to
the blacklisting syntax (e.g. glibc ---> glibc-*). This changes the prior
behavior of the blacklist function; previously, adding "glibc" to the
blacklist would cause glibc, glibc-profile, glibc-zoneinfo, et al to be
ignored by slackpkg. The new behavior is that *only* the glibc package is
ignored. If you want to blacklist all packages whose names begin with glibc,
you would need to add "glibc.*" to the blacklist now. Also note that any
special characters, e.g. "+", will need to be escaped in the blacklist file.
To blacklist entire package sets, a trailing slash is now required: e.g. kde/
Another backwards-incompatibility warning: check-updates will now return 1 if
there are updates available - this will make it easier to use this feature
with cron (thanks to Peter Hyman).
Added support for Slackware-AArch64 (thanks to Stuart Winter).
Added aaa_glibc-solibs and aaa_libraries to the "do these first" routine.
Thanks to Robby Workman for the new slackpkg release!
ap/soma-3.3.7-noarch-1.txz: Upgraded.
Thanks to David Woodfall.
ap/xorriso-1.5.4.pl02-x86_64-1.txz: Upgraded.
d/help2man-1.48.1-x86_64-1.txz: Upgraded.
d/kernel-headers-5.10.14-x86-1.txz: Upgraded.
k/kernel-source-5.10.14-noarch-1.txz: Upgraded.
l/elfutils-0.183-x86_64-1.txz: Upgraded.
l/glibc-2.32-x86_64-2.txz: Rebuilt.
l/glibc-i18n-2.32-x86_64-2.txz: Rebuilt.
l/glibc-profile-2.32-x86_64-2.txz: Rebuilt.
l/lcms2-2.12-x86_64-1.txz: Upgraded.
l/libburn-1.5.4-x86_64-1.txz: Upgraded.
x/xf86-input-wacom-0.40.0-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/openssl10-solibs-1.0.2u-x86_64-2.txz: Removed.
d/make-4.3-x86_64-2.txz: Rebuilt.
We'll upgrade to make-4.3 again (with a few patches from Fedora) since this
is now working with all the sources that we ship.
l/gst-plugins-base0-0.10.36-x86_64-4.txz: Removed.
l/gst-plugins-good0-0.10.31-x86_64-4.txz: Removed.
l/gstreamer0-0.10.36-x86_64-3.txz: Removed.
l/libcap-2.47-x86_64-1.txz: Upgraded.
l/libsamplerate-0.2.1-x86_64-1.txz: Upgraded.
l/libvisual-plugins-0.4.0-x86_64-6.txz: Rebuilt.
Drop actor_gstreamer.so (requires gstreamer0).
l/mozjs78-78.7.0esr-x86_64-1.txz: Upgraded.
l/talloc-2.3.2-x86_64-1.txz: Upgraded.
n/NetworkManager-1.28.0-x86_64-4.txz: Rebuilt.
Rebuilt for ppp-2.4.9.
n/openssl10-1.0.2u-x86_64-2.txz: Removed.
n/ppp-2.4.9-x86_64-1.txz: Upgraded.
n/rp-pppoe-3.14-x86_64-3.txz: Rebuilt.
Rebuilt for ppp-2.4.9.
x/ibus-libpinyin-1.12.0-x86_64-1.txz: Upgraded.
x/ibus-table-1.12.4-x86_64-1.txz: Upgraded.
x/libpinyin-2.6.0-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-78.7.0esr-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/78.7.0/releasenotes/
(* Security fix *)
xfce/xfce4-whiskermenu-plugin-2.5.3-x86_64-1.txz: Upgraded.
a/kernel-generic-5.10.7-x86_64-1.txz: Upgraded.
a/kernel-huge-5.10.7-x86_64-1.txz: Upgraded.
a/kernel-modules-5.10.7-x86_64-1.txz: Upgraded.
a/libblockdev-2.25-x86_64-1.txz: Upgraded.
ap/sudo-1.9.5p1-x86_64-1.txz: Upgraded.
Fixed a regression introduced in sudo 1.9.5 where the editor run by sudoedit
was set-user-ID root unless SELinux RBAC was in use. The editor is now run
with the user's real and effective user-IDs.
d/autoconf-2.69-noarch-2.txz: Rebuilt.
We're seeing failures using autoconf-2.70 with some packages that use
autoreconf. It looks like most distributions have not moved on to
autoconf-2.70, and probably we shouldn't either until the next release cycle.
Thanks to nobodino.
d/kernel-headers-5.10.7-x86-1.txz: Upgraded.
e/emacs-27.1-x86_64-2.txz: Rebuilt.
Increase SYSTEM_PURESIZE_EXTRA to 100000 to avoid overflows. Nobody should be
too concerned about adding 97K to emacs' memory footprint given the amount of
memory available on modern machines. Thanks to Jefferson for the bug report.
k/kernel-source-5.10.7-noarch-1.txz: Upgraded.
l/libclc-11.0.1-x86_64-1.txz: Upgraded.
Thanks to USUARIONUEVO.
l/python-pygments-2.7.4-x86_64-1.txz: Upgraded.
n/gnupg2-2.2.27-x86_64-1.txz: Upgraded.
n/socat-1.7.4.1-x86_64-1.txz: Upgraded.
x/libdrm-2.4.104-x86_64-1.txz: Upgraded.
x/libevdev-1.10.1-x86_64-1.txz: Upgraded.
x/vulkan-sdk-1.2.141.0-x86_64-2.txz: Rebuilt.
Install additional Vulkan-ValidationLayers-sdk header files.
Thanks to walecha.
xap/mozilla-thunderbird-78.6.1-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/78.6.1/releasenotes/https://www.mozilla.org/en-US/security/advisories/mfsa2021-02/https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16044
(* Security fix *)
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/kernel-generic-5.10.5-x86_64-1.txz: Upgraded.
a/kernel-huge-5.10.5-x86_64-1.txz: Upgraded.
a/kernel-modules-5.10.5-x86_64-1.txz: Upgraded.
d/kernel-headers-5.10.5-x86-1.txz: Upgraded.
d/meson-0.56.1-x86_64-1.txz: Upgraded.
k/kernel-source-5.10.5-noarch-1.txz: Upgraded.
We'll turn off the silent stream feature as there's a known deadlock bug that
remains in 5.10.5. Perhaps we'll restore it once that's patched... but we
made it this far without the feature so I'll probably wait for a case to be
made for it. Thanks to Petri Kaukasoina.
Also build the intelfb module. This doesn't have anything to do with the
lockups occurring on Intel systems, but we might as well provide the module.
It remains blacklisted by default.
FB_INTEL n -> m
SND_HDA_INTEL_HDMI_SILENT_STREAM y -> n
+FB_INTEL_DEBUG n
+FB_INTEL_I2C y
l/imagemagick-7.0.10_56-x86_64-1.txz: Upgraded.
x/ibus-table-1.12.3-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-78.6.1esr-x86_64-1.txz: Upgraded.
This release contains a security fix:
A malicious peer could have modified a COOKIE-ECHO chunk in a SCTP packet
in a way that potentially resulted in a use-after-free. We presume that with
enough effort it could have been exploited to run arbitrary code.
For more information, see:
https://www.mozilla.org/en-US/firefox/78.6.1/releasenotes/https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16044
(* Security fix *)
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/exfatprogs-1.0.4-x86_64-1.txz: Added.
ap/vim-8.2.2269-x86_64-1.txz: Upgraded.
Add Ruby and Tcl support, make language support dynamic if possible.
d/ruby-3.0.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
d/subversion-1.14.0-x86_64-4.txz: Rebuilt.
Recompiled against ruby-3.0.0.
l/openexr-2.5.4-x86_64-1.txz: Upgraded.
l/python-idna-3.0-x86_64-1.txz: Upgraded.
n/cifs-utils-6.12-x86_64-1.txz: Upgraded.
n/epic5-2.1.2-x86_64-5.txz: Rebuilt.
Recompiled against ruby-3.0.0.
x/marisa-0.2.6-x86_64-2.txz: Rebuilt.
Recompiled against ruby-3.0.0.
xap/vim-gvim-8.2.2269-x86_64-1.txz: Upgraded.
Add Ruby and Tcl support, make language support dynamic if possible.
a/kernel-firmware-20201230_f580dc2-noarch-1.txz: Upgraded.
a/kernel-generic-5.10.4-x86_64-1.txz: Upgraded.
a/kernel-huge-5.10.4-x86_64-1.txz: Upgraded.
a/kernel-modules-5.10.4-x86_64-1.txz: Upgraded.
d/kernel-headers-5.10.4-x86-1.txz: Upgraded.
k/kernel-source-5.10.4-noarch-1.txz: Upgraded.
xfce/thunar-4.16.1-x86_64-1.txz: Upgraded.
y/nethack-3.6.6-x86_64-1.txz: Added.
Might as well have more than one package in this series. :-)
We'll use similar install paths to the ones used by bsd-games for this.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
And, just a month after Xfce 4.14 appeared in vtown, we have Xfce 4.16 updates
in the main tree. Thanks much to Robby Workman for making it happen. :-)
a/aaa_terminfo-6.2_20201219-x86_64-1.txz: Upgraded.
a/ndctl-71.1-x86_64-2.txz: Rebuilt.
Fix bash-completion file installation (previously it was causing the
completion dir to have mode 0644). Thanks to Robby Workman.
l/harfbuzz-2.7.4-x86_64-1.txz: Upgraded.
l/libarchive-3.5.1-x86_64-1.txz: Upgraded.
l/libgtop-2.40.0-x86_64-1.txz: Added.
This is used by libxfce4ui to provide extra information in the about page.
l/ncurses-6.2_20201219-x86_64-1.txz: Upgraded.
n/wpa_supplicant-2.9-x86_64-4.txz: Rebuilt.
Fix desktop file to not show if kdesu isn't available. Thanks to Hyperion.
x/xterm-363-x86_64-1.txz: Upgraded.
xap/xsnow-3.2.0-x86_64-1.txz: Upgraded.
xfce/Greybird-3.22.13-noarch-2.txz: Rebuilt.
xfce/exo-4.16.0-x86_64-1.txz: Upgraded.
xfce/garcon-0.8.0-x86_64-1.txz: Upgraded.
xfce/libxfce4ui-4.16.0-x86_64-1.txz: Upgraded.
xfce/libxfce4util-4.16.0-x86_64-1.txz: Upgraded.
xfce/mousepad-0.5.1-x86_64-2.txz: Rebuilt.
xfce/thunar-4.16.0-x86_64-1.txz: Upgraded.
xfce/thunar-volman-4.16.0-x86_64-1.txz: Upgraded.
xfce/tumbler-4.16.0-x86_64-1.txz: Upgraded.
xfce/xfce4-appfinder-4.16.0-x86_64-1.txz: Upgraded.
xfce/xfce4-clipman-plugin-1.6.1-x86_64-2.txz: Rebuilt.
xfce/xfce4-dev-tools-4.16.0-x86_64-1.txz: Upgraded.
xfce/xfce4-notifyd-0.6.2-x86_64-2.txz: Rebuilt.
xfce/xfce4-panel-4.16.0-x86_64-1.txz: Upgraded.
xfce/xfce4-panel-profiles-1.0.10-x86_64-2.txz: Rebuilt.
xfce/xfce4-power-manager-4.16.0-x86_64-1.txz: Upgraded.
xfce/xfce4-pulseaudio-plugin-0.4.3-x86_64-2.txz: Rebuilt.
xfce/xfce4-screensaver-0.1.11-x86_64-3.txz: Rebuilt.
xfce/xfce4-screenshooter-1.9.8-x86_64-1.txz: Upgraded.
xfce/xfce4-session-4.16.0-x86_64-1.txz: Upgraded.
xfce/xfce4-settings-4.16.0-x86_64-1.txz: Upgraded.
xfce/xfce4-systemload-plugin-1.2.4-x86_64-2.txz: Rebuilt.
xfce/xfce4-taskmanager-1.2.3-x86_64-2.txz: Rebuilt.
xfce/xfce4-terminal-0.8.10-x86_64-1.txz: Upgraded.
xfce/xfce4-weather-plugin-0.10.2-x86_64-2.txz: Rebuilt.
xfce/xfce4-whiskermenu-plugin-2.5.0-x86_64-1.txz: Upgraded.
xfce/xfconf-4.16.0-x86_64-1.txz: Upgraded.
xfce/xfdesktop-4.16.0-x86_64-1.txz: Upgraded.
xfce/xfwm4-4.16.0-x86_64-1.txz: Upgraded.
a/glibc-zoneinfo-2020e-noarch-1.txz: Upgraded.
This package provides the latest timezone updates.
a/kernel-generic-5.10.3-x86_64-1.txz: Upgraded.
a/kernel-huge-5.10.3-x86_64-1.txz: Upgraded.
a/kernel-modules-5.10.3-x86_64-1.txz: Upgraded.
ap/sysstat-12.5.2-x86_64-1.txz: Upgraded.
d/kernel-headers-5.10.3-x86-1.txz: Upgraded.
k/kernel-source-5.10.3-noarch-1.txz: Upgraded.
SND_PCSP n -> m
SND_SOC_AK5558 n -> m
SND_SOC_INTEL_CML_LP_DA7219_MAX98357A_MACH n -> m
SND_SOC_INTEL_KBL_RT5663_RT5514_MAX98927_MACH n -> m
SND_SOC_INTEL_SKL_HDA_DSP_GENERIC_MACH n -> m
SND_SOC_INTEL_SOF_RT5682_MACH n -> m
+SND_SOC_RT5514 m
+SND_SOC_RT5514_SPI m
Added a few more sound modules. Thanks to Loomx for pointing out that
SND_SOC_INTEL_SKL_HDA_DSP_GENERIC_MACH was missing.
l/imagemagick-7.0.10_53-x86_64-1.txz: Upgraded.
l/libusb-1.0.24-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Here are some updates to provide a little holiday cheer. The kernels are
rebuilt (yeah, we'll probably have new ones tomorrow but whatever) to build in
HWMON making NVMe temperature monitoring available, and there's also a massive
cleanup of polkit/dbus related packages to move most of the config files out
of /etc and not install them as .new. Local config files that override the
shipped ones may be placed in the directories in /etc to override the ones that
we ship. Thanks to Robby Workman for this!
None of the packages included in Slackware place any files in
/etc/polkit-1/rules.d/ or /etc/dbus-1/system.d/ any more, but there may be
third-party packages that still do. However, since Slackware's packages
originally installed these as .new files, the leftover configs will remain.
You'll probably want to take a look in those directories to clean out any
config files that you haven't modified yourself or that belong to packages that
aren't part of Slackware itself.
Hope everyone has a great day. :-)
a/dbus-1.12.20-x86_64-3.txz: Rebuilt.
Added local config override directory /etc/dbus-1/system.d/ since no other
package provides it now.
a/kernel-generic-5.10.2-x86_64-2.txz: Upgraded.
a/kernel-huge-5.10.2-x86_64-2.txz: Upgraded.
a/kernel-modules-5.10.2-x86_64-2.txz: Upgraded.
a/udisks-1.0.5-x86_64-6.txz: Rebuilt.
Move D-Bus configs from /etc to the system location. Thanks to Robby Workman.
a/udisks2-2.9.1-x86_64-2.txz: Rebuilt.
Include 20-plugdev-group-mount-override.rules, installed in the system
location. Thanks to Robby Workman.
ap/cups-2.3.3-x86_64-3.txz: Rebuilt.
Move D-Bus configs from /etc to the system location. Thanks to Robby Workman.
ap/hplip-3.20.6-x86_64-4.txz: Rebuilt.
Use --enable-qt5.
Move D-Bus configs from /etc to the system location.
Drop HAL support (LOL!)
Thanks to Robby Workman.
ap/mpg123-1.26.4-x86_64-1.txz: Upgraded.
d/gnucobol-3.1.2-x86_64-1.txz: Upgraded.
d/kernel-headers-5.10.2-x86-2.txz: Upgraded.
k/kernel-source-5.10.2-noarch-2.txz: Upgraded.
HWMON m -> y
+NVME_HWMON y
+POWER_SUPPLY_HWMON y
+THERMAL_HWMON y
Thanks to Daedra.
kde/sddm-0.19.0-x86_64-4.txz: Rebuilt.
Don't include the /etc/dbus-1/system.d/ directory.
l/GConf-3.2.6-x86_64-5.txz: Rebuilt.
Move D-Bus configs from /etc to the system location. Thanks to Robby Workman.
l/accountsservice-0.6.55-x86_64-2.txz: Rebuilt.
Move D-Bus configs from /etc to the system location. Thanks to Robby Workman.
l/cryptopp-8.3.0-x86_64-1.txz: Upgraded.
l/harfbuzz-2.7.3-x86_64-1.txz: Upgraded.
l/polkit-0.118-x86_64-3.txz: Rebuilt.
Remove D-Bus rules for udisks2 and NetworkManager (moved to those packages).
Move D-Bus configs from /etc to the system location. Thanks to Robby Workman.
l/pulseaudio-14.0-x86_64-2.txz: Rebuilt.
Move D-Bus configs from /etc to the system location. Thanks to Robby Workman.
l/system-config-printer-1.5.12-x86_64-6.txz: Rebuilt.
Move D-Bus configs from /etc to the system location. Thanks to Robby Workman.
n/ModemManager-1.14.8-x86_64-2.txz: Rebuilt.
Added elogind support.
Move D-Bus configs from /etc to the system location.
Thanks to Robby Workman.
n/NetworkManager-1.28.0-x86_64-2.txz: Rebuilt.
Include 10-org.freedesktop.NetworkManager.rules, installed in the system
location. Thanks to Robby Workman.
n/bluez-5.55-x86_64-2.txz: Rebuilt.
Move D-Bus configs from /etc to the system location. Thanks to Robby Workman.
n/netatalk-3.1.12-x86_64-5.txz: Rebuilt.
Patched to fix failure to build from source with gcc10.
Move D-Bus configs from /etc to the system location.
Thanks to Robby Workman.
n/wpa_supplicant-2.9-x86_64-3.txz: Rebuilt.
Move D-Bus configs from /etc to the system location. Thanks to Robby Workman.
x/mesa-20.3.1-x86_64-2.txz: Rebuilt.
[PATCH] vulkan/device_select: Store Vulkan vendorID and deviceID as uint32_t.
Thanks to sasha69 for the link to the upstream discussion/commit.
xap/blueman-2.1.4-x86_64-3.txz: Rebuilt.
Move D-Bus configs from /etc to the system location. Thanks to Robby Workman.
xap/xgames-0.3-x86_64-6.txz: Rebuilt.
Fixed spider failing to build from source with gcc10.
Removed the ancient version of xsnow.
xap/xscreensaver-5.45-x86_64-2.txz: Rebuilt.
Make the description of the xscreensaver settings be clearly for xscreensaver
as opposed to a generic "screensaver" settings. Thanks to Robby Workman.
xap/xsnow-3.1.9-x86_64-1.txz: Added.
Merry Christmas / Happy Holidays! :-)
xfce/mousepad-0.5.1-x86_64-1.txz: Upgraded.
xfce/xfce4-screensaver-0.1.11-x86_64-2.txz: Rebuilt.
Make the description of the xfce4-screensaver settings be clearly for
xfce4-screensaver as opposed to a generic "screensaver" settings.
Thanks to Robby Workman.
xfce/xfce4-session-4.14.2-x86_64-2.txz: Rebuilt.
Use xfce4-screensaver by default and don't ship the xscreensaver.desktop
autostart file. Thanks to Robby Workman.
extra/pure-alsa-system/*: Removed.
This served a purpose during the pure ALSA to PulseAudio transition, but
it's time for it to go away. If the latency is an issue for your use case,
a look around should turn up documentation on how to reduce it, or how to
send output directly to ALSA without having to uninstall PulseAudio or
recompile anything that's linked to it. As an example, see this one (which
was mentioned here before):
https://wiki.archlinux.org/index.php/PulseAudio/Examples#PulseAudio_as_a_minimal_unintrusive_dumb_pipe_to_ALSA
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Linus didn't think this was a scary kernel and in spite of skipping a few
branches here before getting to this one, I don't either. Not scary enough
to make me think I need to start it out in /testing, anyway. I have a good
feeling about this kernel. Enjoy! :-)
a/bash-5.1.004-x86_64-1.txz: Upgraded.
a/elogind-246.9-x86_64-1.txz: Upgraded.
Don't make 10-enable-session-power.rules a .new file.
Thanks to Robby Workman.
a/kernel-firmware-20201218_646f159-noarch-1.txz: Upgraded.
a/kernel-generic-5.10.1-x86_64-1.txz: Upgraded.
a/kernel-huge-5.10.1-x86_64-1.txz: Upgraded.
a/kernel-modules-5.10.1-x86_64-1.txz: Upgraded.
a/ndctl-71-x86_64-1.txz: Upgraded.
a/sysvinit-scripts-2.1-noarch-37.txz: Rebuilt.
rc.S: don't start cgmanager/cgproxy.
rc.6: don't stop cgmanager/cgproxy.
d/kernel-headers-5.10.1-x86-1.txz: Upgraded.
k/kernel-source-5.10.1-noarch-1.txz: Upgraded.
l/libtiff-4.2.0-x86_64-1.txz: Upgraded.
l/zstd-1.4.8-x86_64-1.txz: Upgraded.
n/ca-certificates-20201219-noarch-1.txz: Upgraded.
This update provides the latest CA certificates to check for the
authenticity of SSL connections.
xap/libnma-1.8.30-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/inih-r52-x86_64-1.txz: Added.
This is required by the latest xfsprogs.
a/sysklogd-2.1.2-x86_64-2.txz: Rebuilt.
rc.syslog: fix lack of <CR> after startup output.
a/xfsprogs-5.10.0-x86_64-1.txz: Upgraded.
ap/vim-8.2.2151-x86_64-1.txz: Upgraded.
l/glib2-2.66.4-x86_64-1.txz: Upgraded.
l/imagemagick-7.0.10_50-x86_64-1.txz: Upgraded.
l/python-requests-2.25.1-x86_64-1.txz: Upgraded.
l/qtkeychain-0.12.0-x86_64-1.txz: Upgraded.
l/zstd-1.4.7-x86_64-1.txz: Upgraded.
n/bind-9.16.10-x86_64-1.txz: Upgraded.
x/libwacom-1.7-x86_64-1.txz: Upgraded.
x/xorg-server-1.20.10-x86_64-2.txz: Rebuilt.
Recompiled to find DRI modules in the new location.
x/xorg-server-xephyr-1.20.10-x86_64-2.txz: Rebuilt.
x/xorg-server-xnest-1.20.10-x86_64-2.txz: Rebuilt.
x/xorg-server-xvfb-1.20.10-x86_64-2.txz: Rebuilt.
x/xorg-server-xwayland-1.20.10-x86_64-2.txz: Rebuilt.
xap/vim-gvim-8.2.2151-x86_64-1.txz: Upgraded.
extra/pure-alsa-system/kde-runtime-4.14.3-x86_64-8_alsa.txz: Removed.
I'm starting to learn towards removing all of these packages as there are
ways to configure PulseAudio to get out of the way. See (for example) this
article mentioned in a blog post by alienBOB:
https://wiki.archlinux.org/index.php/PulseAudio/Examples#PulseAudio_as_a_minimal_unintrusive_dumb_pipe_to_ALSA
I'm still poking at that other kernel, but it shouldn't take too much longer.
a/kernel-generic-5.4.84-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.84-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.84-x86_64-1.txz: Upgraded.
ap/rpm-4.16.1.2-x86_64-1.txz: Upgraded.
d/cmake-3.19.2-x86_64-1.txz: Upgraded.
d/kernel-headers-5.4.84-x86-1.txz: Upgraded.
k/kernel-source-5.4.84-noarch-1.txz: Upgraded.
l/utf8proc-2.6.1-x86_64-1.txz: Upgraded.
x/fonttosfnt-1.2.1-x86_64-1.txz: Upgraded.
x/mesa-20.3.1-x86_64-1.txz: Upgraded.
Don't specify dri-drivers-path. Thanks to 414N.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
d/perl-5.32.0-x86_64-3.txz: Rebuilt.
Upgraded: MIME-Base64-3.16, URI-5.05.
Added: Module-Runtime-0.016, Moo-2.004000, Path-Tiny-0.114,
Sub-Quote-2.006006, Template-Toolkit-3.009.
d/rinutils-0.6.0-x86_64-1.txz: Added.
Needed for freecell-solver.
l/freecell-solver-6.2.0-x86_64-1.txz: Added.
Needed for kpat.
l/libunwind-1.5.0-x86_64-1.txz: Upgraded.
l/python-pysol_cards-0.10.1-x86_64-1.txz: Added.
Needed for freecell-solver.
l/python-random2-1.0.1-x86_64-1.txz: Added.
Needed for freecell-solver.
l/python-requests-2.25.0-x86_64-1.txz: Upgraded.
l/python-urllib3-1.26.1-x86_64-1.txz: Upgraded.
x/xterm-362-x86_64-1.txz: Upgraded.
testing/packages/vtown/kde/kpat-20.08.3-x86_64-1_vtown_1.txz: Added.
This seems to be getting a lot of love on LQ, so I'll add it in spite of
(or perhaps because of) the effort required to prop it up.
Digikam is still too big though.
a/hwdata-0.341-noarch-1.txz: Upgraded.
a/kernel-generic-5.4.75-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.75-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.75-x86_64-1.txz: Upgraded.
d/kernel-headers-5.4.75-x86-1.txz: Upgraded.
k/kernel-source-5.4.75-noarch-1.txz: Upgraded.
l/oniguruma-6.9.6-x86_64-1.txz: Upgraded.
l/openal-soft-1.21.0-x86_64-1.txz: Upgraded.
n/ca-certificates-20201105-noarch-1.txz: Upgraded.
This update provides the latest CA certificates to check for the
authenticity of SSL connections.
x/libwacom-1.6-x86_64-1.txz: Upgraded.
x/xkbcomp-1.4.4-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/vtown/kde/sddm-0.18.1-x86_64-1_vtown_3.txz: Rebuilt.
Fixed man page installation directory. Thanks to chrisretusn.
Xsetup: include comments.
Create /var/lib/sddm at build time.
Generate /etc/sddm.conf at build time.
Do not mess with users/groups in doinst.sh. These are expected to exist.
Do not add MinimumVT=7 to sddm.conf, as it is already included by default.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/libblockdev-2.24-x86_64-1.txz: Added.
This is required by the new version of udisks2.
a/libbytesize-2.4-x86_64-1.txz: Added.
This is required by the new version of udisks2.
a/ndctl-70.1-x86_64-1.txz: Added.
This is required by libblockdev, which in turn is required by the new
version of udisks2.
a/udisks2-2.9.1-x86_64-1.txz: Upgraded.
Thanks to Robby Workman for this update and the deps for it.
a/volume_key-0.3.12-x86_64-1.txz: Added.
This is required by the new version of udisks2.
ap/qpdf-10.0.2-x86_64-1.txz: Upgraded.
n/openvpn-2.5.0-x86_64-1.txz: Upgraded.
n/php-7.4.12-x86_64-1.txz: Upgraded.
a/aaa_elflibs-15.0-x86_64-24.txz: Rebuilt.
Don't skip this one as it contains the libnsl-2.30.so built by glibc that
it's likely many third-party packages will be linking to for some time.
Upgraded: libcap.so.2.44, libelf-0.181.so, libpopt.so.0.0.1,
libcurl.so.4.7.0, libexpat.so.1.6.12, libglib-2.0.so.0.6600.2,
libgmodule-2.0.so.0.6600.2, libgobject-2.0.so.0.6600.2,
libgthread-2.0.so.0.6600.2, libidn.so.12.6.1, liblber-2.4.so.2.11.2,
libldap-2.4.so.2.11.2, libmpc.so.3.2.0, libmpfr.so.6.1.0, libpsl.so.5.3.3.
Added: libnsl-2.30.so, libnsl.so.2.0.1.
Removed: libdvdread.so.4.2.0, libicudata.so.65.1, libicui18n.so.65.1,
libicuio.so.65.1, libicutest.so.65.1, libicutu.so.65.1, libicuuc.so.65.1.
a/glibc-solibs-2.30-x86_64-2.txz: Rebuilt.
a/pam-1.4.0-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
a/quota-4.05-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
a/xfsprogs-5.9.0-x86_64-1.txz: Upgraded.
ap/linuxdoc-tools-0.9.73-x86_64-6.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
ap/vorbis-tools-1.4.0-x86_64-5.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
d/cvs-1.11.23-x86_64-5.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
d/git-2.29.0-x86_64-1.txz: Upgraded.
d/perl-5.32.0-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
d/python2-2.7.18-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
d/python3-3.8.6-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
d/rcs-5.10.0-x86_64-1.txz: Upgraded.
d/subversion-1.14.0-x86_64-3.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
kde/kdelibs-4.14.38-x86_64-7.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
kde/kopete-4.14.3-x86_64-9.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
kde/perlkde-4.14.3-x86_64-10.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
kde/perlqt-4.14.3-x86_64-11.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
l/freetype-2.10.4-x86_64-1.txz: Upgraded.
Fix heap buffer overflow in embedded PNG bitmap handling.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15999
(* Security fix *)
l/glibc-2.30-x86_64-2.txz: Rebuilt.
Rebuilt without the --enable-obsolete-nsl and --enable-obsolete-rpc options.
This change has been somewhat overdue, but since glibc was providing these
options we just continued to use them here - however, newer versions of
glibc have dropped this code entirely and it is expected to be provided in
standalone packages. So we'll do that to make things easier moving forward.
Please note that libnss_nisplus has been unmaintained upstream for quite
some time, is considered obsolete, and no longer compiles. As a result it
will no longer be provided... but there are better options these days.
l/glibc-i18n-2.30-x86_64-2.txz: Rebuilt.
l/glibc-profile-2.30-x86_64-2.txz: Rebuilt.
l/gmime-3.2.7-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
l/libasyncns-0.8-x86_64-3.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
l/libnsl-1.3.0-x86_64-1.txz: Added.
This provides the standalone libnsl.
Shared library .so-version bump.
l/libnss_nis-3.1-x86_64-1.txz: Added.
l/loudmouth-1.5.3-x86_64-5.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
l/rpcsvc-proto-1.4.2-x86_64-1.txz: Added.
n/autofs-5.1.6-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/epic5-2.1.2-x86_64-3.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/irssi-1.2.2-x86_64-4.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/net-snmp-5.9-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/netatalk-3.1.12-x86_64-4.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/ntp-4.2.8p15-x86_64-3.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/openldap-2.4.54-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/openssh-8.4p1-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/openvpn-2.4.9-x86_64-3.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/postfix-3.5.7-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/ppp-2.4.8-x86_64-3.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/procmail-3.22-x86_64-4.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/proftpd-1.3.7a-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/rpcbind-1.2.5-x86_64-3.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/samba-4.13.0-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/socat-1.7.3.4-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/stunnel-5.57-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/tcp_wrappers-7.6-x86_64-3.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/tftp-hpa-5.2-x86_64-6.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/uucp-1.07-x86_64-3.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/vsftpd-3.0.3-x86_64-7.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
n/yptools-4.2.3-x86_64-1.txz: Upgraded.
Compiled against libnsl-1.3.0.
xap/gftp-2.0.19-x86_64-9.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
xap/pidgin-2.14.1-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
xap/rxvt-unicode-9.22-x86_64-9.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
xap/xine-lib-1.2.10-x86_64-3.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
xap/xine-ui-0.99.12-x86_64-2.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
extra/pure-alsa-system/xine-lib-1.2.10-x86_64-3_alsa.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
extra/sendmail/sendmail-8.16.1-x86_64-3.txz: Rebuilt.
Recompiled against libnsl-1.3.0.
extra/sendmail/sendmail-cf-8.16.1-noarch-3.txz: Rebuilt.
a/libgudev-234-x86_64-1.txz: Upgraded.
ap/htop-3.0.2-x86_64-1.txz: Upgraded.
l/glib2-2.66.0-x86_64-2.txz: Rebuilt.
Build against system gtk-doc and don't bundle a newer version. You'll need
to reinstall the linuxdoc-tools package to restore the correct version of
gtk-doc. Thanks to chrisVV.
l/mozjs68-68.11.0esr-x86_64-2.txz: Removed.
l/mozjs78-78.2.0esr-x86_64-1.txz: Added.
This is needed by the new version of polkit.
l/polkit-0.118-x86_64-1.txz: Upgraded.
This requires the new mozjs78 package.
x/libva-2.9.0-x86_64-1.txz: Upgraded.
x/libva-utils-2.9.0-x86_64-1.txz: Upgraded.
ap/nano-5.2-x86_64-1.txz: Upgraded.
d/doxygen-1.8.20-x86_64-1.txz: Upgraded.
d/nasm-2.15.03-x86_64-1.txz: Upgraded.
Reverted to previous nasm since the new version has problems with some of
the assembly included in Firefox.
d/parallel-20200822-noarch-1.txz: Upgraded.
l/libcap-ng-0.7.11-x86_64-1.txz: Upgraded.
n/libgpg-error-1.39-x86_64-1.txz: Upgraded.
n/libqmi-1.26.4-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-78.2.0esr-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/78.2.0/releasenotes/
(* Security fix *)
xap/sane-1.0.31-x86_64-1.txz: Upgraded.
ap/hplip-3.20.6-x86_64-2.txz: Rebuilt.
Recompiled against net-snmp-5.9.
ap/pamixer-1.4-x86_64-6.txz: Rebuilt.
Recompiled against boost-1.74.0.
ap/sqlite-3.33.0-x86_64-1.txz: Upgraded.
kde/calligra-2.9.11-x86_64-37.txz: Rebuilt.
Recompiled against boost-1.74.0.
l/akonadi-1.13.0-x86_64-16.txz: Rebuilt.
Recompiled against boost-1.74.0.
l/boost-1.74.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/libcroco-0.6.13-x86_64-1.txz: Removed.
n/getmail-6.02-x86_64-1.txz: Upgraded.
This is a new version that uses Python 3. The ChangeLog warns that it "loses
some backward compatibility"... please report any bugs.
n/net-snmp-5.9-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
n/ntp-4.2.8p15-x86_64-2.txz: Rebuilt.
Recompiled against net-snmp-5.9.
n/php-7.4.9-x86_64-2.txz: Rebuilt.
Recompiled against net-snmp-5.9.
xap/sane-1.0.30-x86_64-2.txz: Rebuilt.
Recompiled against net-snmp-5.9.
xap/ssr-0.4.2-x86_64-1.txz: Added.
a/cryptsetup-2.3.3-x86_64-2.txz: Rebuilt.
Recompiled against json-c-0.15_20200726.
l/imagemagick-7.0.10_25-x86_64-1.txz: Upgraded.
l/json-c-0.15_20200726-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/urwid-1.0.3-x86_64-5.txz: Removed.
This is an ancient version that was only used by wicd.
n/bind-9.16.5-x86_64-2.txz: Rebuilt.
Recompiled against json-c-0.15_20200726.
x/libmypaint-1.6.1-x86_64-2.txz: Rebuilt.
Recompiled against json-c-0.15_20200726.
xap/gimp-2.10.20-x86_64-2.txz: Rebuilt.
Recompiled against json-c-0.15_20200726.
extra/wicd/wicd-1.7.4-x86_64-3.txz: Removed.
This is unmaintained, possibly insecure, and doesn't work with Python
versions newer than 2.7.18. NetworkManager is a better choice these days.
a/kernel-generic-5.4.54-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.54-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.54-x86_64-1.txz: Upgraded.
ap/inxi-20200728_6ce9149b-noarch-1.txz: Added.
A system information script. Not as flashy as neofetch, but with more useful
output options. Thanks to drgibbon for the suggestion.
ap/nano-5.0-x86_64-1.txz: Upgraded.
d/kernel-headers-5.4.54-x86-1.txz: Upgraded.
d/vala-0.48.8-x86_64-1.txz: Upgraded.
k/kernel-source-5.4.54-noarch-1.txz: Upgraded.
l/jasper-2.0.19-x86_64-1.txz: Upgraded.
x/hack-fonts-ttf-3.003-noarch-1.txz: Added.
Thanks to alienBOB.
x/noto-cjk-fonts-ttf-2.001-noarch-1.txz: Added.
Thanks to alienBOB.
x/noto-fonts-ttf-20171024-noarch-1.txz: Added.
Thanks to alienBOB.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/kernel-firmware-20200721_2b823fc-noarch-1.txz: Upgraded.
d/python3-3.8.5-x86_64-1.txz: Upgraded.
d/re2c-2.0-x86_64-1.txz: Upgraded.
l/farstream-0.2.9-x86_64-1.txz: Added.
Needed by pidgin-2.14.1.
l/libnice-0.1.17-x86_64-1.txz: Added.
Needed by farstream-0.2.9.
n/iptraf-ng-1.2.1-x86_64-1.txz: Upgraded.
n/proftpd-1.3.7a-x86_64-1.txz: Upgraded.
xap/pidgin-2.14.1-x86_64-1.txz: Upgraded.
This update adds support for voice and video via Farstream.
a/kernel-generic-5.4.51-x86_64-1.txz: Upgraded.
+EFI_CUSTOM_SSDT_OVERLAYS y
a/kernel-huge-5.4.51-x86_64-1.txz: Upgraded.
SPEAKUP y -> m
SPEAKUP_SYNTH_ACNTPC y -> m
SPEAKUP_SYNTH_ACNTSA y -> m
SPEAKUP_SYNTH_APOLLO y -> m
SPEAKUP_SYNTH_AUDPTR y -> m
SPEAKUP_SYNTH_BNS y -> m
SPEAKUP_SYNTH_DECEXT y -> m
SPEAKUP_SYNTH_DECTLK y -> m
SPEAKUP_SYNTH_DTLK y -> m
SPEAKUP_SYNTH_DUMMY y -> m
SPEAKUP_SYNTH_KEYPC y -> m
SPEAKUP_SYNTH_LTLK y -> m
SPEAKUP_SYNTH_SOFT y -> m
SPEAKUP_SYNTH_SPKOUT y -> m
SPEAKUP_SYNTH_TXPRT y -> m
+EFI_CUSTOM_SSDT_OVERLAYS y
a/kernel-modules-5.4.51-x86_64-1.txz: Upgraded.
ap/vim-8.2.1167-x86_64-1.txz: Upgraded.
d/Cython-0.29.21-x86_64-1.txz: Upgraded.
d/kernel-headers-5.4.51-x86-1.txz: Upgraded.
k/kernel-source-5.4.51-noarch-1.txz: Upgraded.
+EFI_CUSTOM_SSDT_OVERLAYS y
n/gnupg2-2.2.21-x86_64-1.txz: Upgraded.
x/mesa-20.1.3-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-78.0.2esr-x86_64-1.txz: Upgraded.
This release contains a security fix and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/78.0.2/releasenotes/https://www.mozilla.org/security/advisories/mfsa2020-28/
(* Security fix *)
xap/vim-gvim-8.2.1167-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
Speakup is included as modules which will need to be loaded manually,
for now at least.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Speakup is included as modules which will need to be loaded manually,
for now at least.
a/sysklogd-2.1.2-x86_64-1.txz: Upgraded.
Make sure to move the .new init script and config into place for this.
ap/undervolt-20200612_07d0c70-x86_64-1.txz: Added.
l/popt-1.18-x86_64-1.txz: Upgraded.
x/libglvnd-1.3.2-x86_64-1.txz: Upgraded.
x/libva-2.8.0-x86_64-1.txz: Upgraded.
x/libva-utils-2.8.0-x86_64-1.txz: Upgraded.
ap/man-db-2.9.3-x86_64-1.txz: Upgraded.
ap/mariadb-10.4.13-x86_64-3.txz: Rebuilt.
Recompiled to pick up lz4 support. Thanks to Heinz Wiesinger.
ap/squashfs-tools-4.4-x86_64-2.txz: Rebuilt.
Added lz4 support. Thanks to Heinz Wiesinger.
d/ccache-3.7.10-x86_64-1.txz: Upgraded.
d/parallel-20200622-noarch-1.txz: Upgraded.
d/subversion-1.14.0-x86_64-2.txz: Rebuilt.
Use the system lz4 library. Thanks to Heinz Wiesinger.
l/imagemagick-7.0.10_21-x86_64-1.txz: Upgraded.
l/libarchive-3.4.3-x86_64-2.txz: Rebuilt.
Recompiled to pick up lz4 support. Thanks to Heinz Wiesinger.
l/lz4-1.9.2-x86_64-1.txz: Added.
This is a new dependency for dovecot, libarchive, mariadb, rsync,
squashfs-tools, subversion, and zstd. Thanks to Heinz Wiesinger.
l/xxHash-0.7.3-x86_64-1.txz: Added.
This is a new dependency for rsync.
l/zstd-1.4.5-x86_64-2.txz: Rebuilt.
Recompiled to pick up lz4 support. Thanks to Heinz Wiesinger.
n/dovecot-2.3.10.1-x86_64-2.txz: Rebuilt.
Recompiled to pick up lz4 support. Thanks to Heinz Wiesinger.
n/libmbim-1.24.0-x86_64-1.txz: Upgraded.
n/nfs-utils-2.5.1-x86_64-1.txz: Upgraded.
n/ntp-4.2.8p15-x86_64-1.txz: Upgraded.
This release fixes one vulnerability: Associations that use CMAC
authentication between ntpd from versions 4.2.8p11/4.3.97 and
4.2.8p14/4.3.100 will leak a small amount of memory for each packet.
Eventually, ntpd will run out of memory and abort.
(* Security fix *)
n/rsync-3.2.1-x86_64-1.txz: Upgraded.
Please note that this update requires the new packages xxHash and lz4.
t/texlive-2020.200608-x86_64-1.txz: Upgraded.
Thanks to Johannes Schoepfer.
xap/blueman-2.1.3-x86_64-2.txz: Rebuilt.
As a matter of policy and since the rule already exists in
/usr/share/polkit-1/rules.d/, we should not install a rules file in /etc.
Note that since the file was installed as a .new, upgrading the package
will not remove it and it will need to be removed manually. It's harmless
if it remains, though.
Thanks to Robby Workman.
xap/network-manager-applet-1.18.0-x86_64-1.txz: Upgraded.
a/kernel-generic-5.4.47-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.47-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.47-x86_64-1.txz: Upgraded.
a/sysvinit-scripts-2.1-noarch-33.txz: Rebuilt.
rc.M: add support for elogind. Thanks to alienBOB.
a/util-linux-2.35.2-x86_64-3.txz: Rebuilt.
/etc/pam.d/login: support pam_elogind.so. Thanks to alienBOB.
ap/sqlite-3.32.3-x86_64-1.txz: Upgraded.
d/kernel-headers-5.4.47-x86-1.txz: Upgraded.
d/rust-1.44.1-x86_64-1.txz: Upgraded.
k/kernel-source-5.4.47-noarch-1.txz: Upgraded.
n/bind-9.16.4-x86_64-1.txz: Upgraded.
This update fixes two security issues:
It was possible to trigger an INSIST when determining whether a record would
fit into a TCP message buffer.
It was possible to trigger an INSIST in lib/dns/rbtdb.c:new_reference() with
a particular zone content and query patterns.
For more information, see:
https://kb.isc.org/docs/cve-2020-8618https://kb.isc.org/docs/cve-2020-8619https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8618https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8619
(* Security fix *)
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
ap/mpg123-1.26.0-x86_64-1.txz: Upgraded.
ap/sqlite-3.32.1-x86_64-1.txz: Upgraded.
l/keybinder-0.3.1-x86_64-2.txz: Removed.
l/keybinder3-3.0_0.3.2-x86_64-1.txz: Added.
n/krb5-1.18.2-x86_64-1.txz: Upgraded.
n/mutt-1.14.2-x86_64-1.txz: Upgraded.
xap/gnuplot-5.2.8-x86_64-2.txz: Rebuilt.
Rebuilt with Qt5 (uses anti-aliasing to improve the plot output).
extra/aspell-word-lists/aspell-pt-0.50_2-x86_64-5.txz: Removed.
extra/aspell-word-lists/aspell-pt_PT-20190329_0-x86_64-1.txz: Upgraded.
Thanks to sairum for the link to a better word list.
extra/aspell-word-lists/aspell-pt_PT-preao-20190329_0-x86_64-1.txz: Added.
Thanks to sairum for the link to a better word list.
extra/pure-alsa-system/mpg123-1.26.0-x86_64-1_alsa.txz: Upgraded.
Greetings! After three months in /testing, the PAM merge into the main tree
is now complete. When updating, be sure to install the new pam, cracklib, and
libpwquality packages or you may find yourself locked out of your machine.
Otherwise, these changes should be completely transparent and you shouldn't
notice any obvious operational differences. Be careful if you make any changes
in /etc/pam.d/ - leaving an extra console logged in while testing PAM config
changes is a recommended standard procedure. Thanks again to Robby Workman,
Vincent Batts, Phantom X, and ivandi for help implementing this. It's not
done yet and there will be more fine-tuning of the config files, but now we
can move on to build some other updates. Enjoy!
a/cracklib-2.9.7-x86_64-1.txz: Added.
a/kernel-firmware-20200517_f8d32e4-noarch-1.txz: Upgraded.
a/libcgroup-0.41-x86_64-7.txz: Rebuilt.
Rebuilt to add PAM support.
a/libpwquality-1.4.2-x86_64-1.txz: Added.
a/lilo-24.2-x86_64-9.txz: Rebuilt.
Enable the "compact" option by default.
liloconfig: correctly set the root partition.
a/pam-1.3.1-x86_64-1.txz: Added.
a/shadow-4.8.1-x86_64-7.txz: Rebuilt.
Rebuilt to add PAM support.
a/utempter-1.2.0-x86_64-1.txz: Upgraded.
a/util-linux-2.35.1-x86_64-6.txz: Rebuilt.
Rebuilt to add PAM support.
a/xfsprogs-5.6.0-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
ap/at-3.2.1-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
ap/cups-2.3.3-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
ap/hplip-3.20.5-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
ap/mariadb-10.4.13-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
ap/screen-4.8.0-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
ap/soma-3.3.0-noarch-1.txz: Upgraded.
Thanks to David Woodfall.
ap/sqlite-3.31.1-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
ap/sudo-1.9.0-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
ap/vim-8.2.0788-x86_64-1.txz: Upgraded.
d/bison-3.6.2-x86_64-1.txz: Upgraded.
d/meson-0.54.2-x86_64-1.txz: Upgraded.
d/python-setuptools-46.4.0-x86_64-1.txz: Upgraded.
d/vala-0.48.6-x86_64-1.txz: Upgraded.
kde/calligra-2.9.11-x86_64-36.txz: Rebuilt.
Recompiled against icu4c-67.1.
kde/kde-workspace-4.11.22-x86_64-7.txz: Rebuilt.
Rebuilt to add PAM support.
l/ConsoleKit2-1.2.1-x86_64-4.txz: Rebuilt.
Rebuilt to add PAM support.
l/boost-1.73.0-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
l/gnome-keyring-3.36.0-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
l/harfbuzz-2.6.6-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
l/icu4c-67.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/imagemagick-7.0.10_13-x86_64-1.txz: Upgraded.
l/libcap-2.34-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
l/libical-3.0.8-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
l/libuv-1.38.0-x86_64-1.txz: Upgraded.
l/libvisio-0.1.7-x86_64-3.txz: Rebuilt.
Recompiled against icu4c-67.1.
l/polkit-0.116-x86_64-3.txz: Rebuilt.
Rebuilt to add PAM support.
l/qt-4.8.7-x86_64-16.txz: Rebuilt.
Recompiled against icu4c-67.1.
l/qt5-5.13.2-x86_64-4.txz: Rebuilt.
Recompiled against icu4c-67.1.
l/qt5-webkit-5.212.0_alpha4-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
l/raptor2-2.0.15-x86_64-9.txz: Rebuilt.
Recompiled against icu4c-67.1.
l/system-config-printer-1.5.12-x86_64-4.txz: Rebuilt.
Rebuilt to add PAM support.
l/vte-0.60.2-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
n/cifs-utils-6.10-x86_64-4.txz: Rebuilt.
Rebuilt to add PAM support.
n/cyrus-sasl-2.1.27-x86_64-4.txz: Rebuilt.
Rebuilt to add PAM support.
n/dovecot-2.3.10.1-x86_64-1.txz: Upgraded.
Rebuilt to add PAM support.
Compiled against icu4c-67.1.
This update fixes several denial-of-service vulnerabilities.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10957https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10958https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10967
(* Security fix *)
n/mutt-1.14.1-x86_64-1.txz: Upgraded.
n/netatalk-3.1.12-x86_64-3.txz: Rebuilt.
Rebuilt to add PAM support.
n/netkit-rsh-0.17-x86_64-3.txz: Rebuilt.
Rebuilt to add PAM support.
n/nss-pam-ldapd-0.9.11-x86_64-1.txz: Added.
n/openssh-8.2p1-x86_64-3.txz: Rebuilt.
Rebuilt to add PAM support.
n/openvpn-2.4.9-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
n/pam-krb5-4.9-x86_64-1.txz: Added.
n/php-7.4.6-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
n/popa3d-1.0.3-x86_64-4.txz: Rebuilt.
Rebuilt to add PAM support.
n/postfix-3.5.2-x86_64-1.txz: Upgraded.
Compiled against icu4c-67.1.
n/ppp-2.4.8-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
n/proftpd-1.3.6c-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
n/samba-4.12.2-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
Recompiled against icu4c-67.1.
n/tin-2.4.4-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
n/vsftpd-3.0.3-x86_64-6.txz: Rebuilt.
Rebuilt to add PAM support.
t/texlive-2019.190626-x86_64-4.txz: Rebuilt.
Recompiled against icu4c-67.1.
x/vulkan-sdk-1.2.135.0-x86_64-1.txz: Upgraded.
x/xdm-1.1.11-x86_64-10.txz: Rebuilt.
Rebuilt to add PAM support.
x/xisxwayland-1-x86_64-1.txz: Added.
xap/sane-1.0.30-x86_64-1.txz: Upgraded.
This update fixes several security issues.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12867https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12862https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12863https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12865https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12866https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12861https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12864
(* Security fix *)
xap/vim-gvim-8.2.0788-x86_64-1.txz: Upgraded.
xap/xlockmore-5.63-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
xap/xscreensaver-5.44-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
extra/brltty/brltty-6.1-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
extra/pure-alsa-system/qt5-5.13.2-x86_64-4_alsa.txz: Rebuilt.
Recompiled against icu4c-67.1.
isolinux/initrd.img: Rebuilt.
Added PAM libraries, security modules, and config files.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Added PAM libraries, security modules, and config files.
Hey folks, just a heads-up that PAM is about to be merged into the main tree.
We can't have it blocking other upgrades any longer. The config files could be
improved (adding support for pam_krb5 and pam_ldap, for example), but they'll
do for now. Have a good weekend, and enjoy these updates! :-)
a/aaa_elflibs-15.0-x86_64-23.txz: Rebuilt.
Upgraded: libcap.so.2.34, libelf-0.179.so, liblzma.so.5.2.5,
libglib-2.0.so.0.6400.2, libgmodule-2.0.so.0.6400.2,
libgobject-2.0.so.0.6400.2, libgthread-2.0.so.0.6400.2,
liblber-2.4.so.2.10.13, libldap-2.4.so.2.10.13, libpcre2-8.so.0.10.0.
Added temporarily in preparation for upgrading icu4c: libicudata.so.65.1,
libicui18n.so.65.1, libicuio.so.65.1, libicutest.so.65.1, libicutu.so.65.1,
libicuuc.so.65.1.
a/etc-15.0-x86_64-11.txz: Rebuilt.
/etc/passwd: Added ldap (UID 330).
/etc/group: Added ldap (GID 330).
a/kernel-generic-5.4.41-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.41-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.41-x86_64-1.txz: Upgraded.
a/pkgtools-15.0-noarch-33.txz: Rebuilt.
setup.services: added support for rc.openldap and rc.openvpn.
ap/hplip-3.20.5-x86_64-1.txz: Upgraded.
d/kernel-headers-5.4.41-x86-1.txz: Upgraded.
d/python-setuptools-46.3.0-x86_64-1.txz: Upgraded.
d/python3-3.8.3-x86_64-1.txz: Upgraded.
k/kernel-source-5.4.41-noarch-1.txz: Upgraded.
n/openldap-2.4.50-x86_64-1.txz: Added.
This is a complete OpenLDAP package with both client and server support.
Thanks to Giuseppe Di Terlizzi for help with the server parts.
n/openldap-client-2.4.50-x86_64-1.txz: Removed.
x/mesa-20.0.7-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/PAM/hplip-3.20.5-x86_64-1_pam.txz: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/kernel-generic-5.4.39-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.39-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.39-x86_64-1.txz: Upgraded.
d/kernel-headers-5.4.39-x86-1.txz: Upgraded.
k/kernel-source-5.4.39-noarch-1.txz: Upgraded.
HUGETLBFS n -> y
JUMP_LABEL n -> y
+CGROUP_HUGETLB n
+HUGETLB_PAGE y
+STATIC_KEYS_SELFTEST n
Thanks to camerabambai.
l/libspectre-0.2.9-x86_64-1.txz: Upgraded.
l/pygobject3-3.36.1-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/kernel-firmware-20200421_78c0348-noarch-1.txz: Upgraded.
a/kernel-generic-5.4.34-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.34-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.34-x86_64-1.txz: Upgraded.
a/openssl-solibs-1.1.1g-x86_64-1.txz: Upgraded.
d/git-2.26.2-x86_64-1.txz: Upgraded.
This update fixes a security issue:
With a crafted URL that contains a newline or empty host, or lacks
a scheme, the credential helper machinery can be fooled into
providing credential information that is not appropriate for the
protocol in use and host being contacted.
Unlike the vulnerability CVE-2020-5260 fixed in v2.17.4, the
credentials are not for a host of the attacker's choosing; instead,
they are for some unspecified host (based on how the configured
credential helper handles an absent "host" parameter).
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11008
(* Security fix *)
d/kernel-headers-5.4.34-x86-1.txz: Upgraded.
d/vala-0.48.4-x86_64-1.txz: Upgraded.
k/kernel-source-5.4.34-noarch-1.txz: Upgraded.
INFINIBAND_CXGB3 n -> m
INFINIBAND_IPOIB_CM n -> y
INFINIBAND_IPOIB_DEBUG_DATA n -> y
Thanks to Karl Magnus Kolstø.
l/M2Crypto-0.35.2-x86_64-4.txz: Rebuilt.
Don't package typing-3.7.4.1 for python3.
l/netpbm-10.90.01-x86_64-1.txz: Upgraded.
n/openssl-1.1.1g-x86_64-1.txz: Upgraded.
This update fixes a security issue:
Fixed segmentation fault in SSL_check_chain() that could be exploited by a
malicious peer in a Denial of Service attack.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1967
(* Security fix *)
x/libva-2.7.1-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/PAM/openvpn-2.4.9-x86_64-1_pam.txz: Upgraded.
This update fixes a security issue:
Fix illegal client float. Thanks to Lev Stipakov.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11810
(* Security fix *)
usb-and-pxe-installers/usbboot.img: Rebuilt.
d/python-2.7.17-x86_64-2.txz: Removed.
d/python2-2.7.18-x86_64-1.txz: Added.
OK, I know a few people got excited seeing python-2 removed in the previous
entry, but it's just being renamed to python2 for consistency with the
python3 package. It's DOA though, and is the final release of the already EOL
python 2 branch (a "commemorative" release as they say in the announcement).
l/M2Crypto-0.35.2-x86_64-3.txz: Rebuilt.
Added python3 modules. Thanks to sombragris and ponce.
l/harfbuzz-2.6.5-x86_64-1.txz: Upgraded.
l/imagemagick-7.0.10_7-x86_64-1.txz: Upgraded.
l/libuv-1.37.0-x86_64-1.txz: Upgraded.
l/libyaml-0.2.4-x86_64-1.txz: Upgraded.
l/oniguruma-6.9.5-x86_64-1.txz: Upgraded.
x/pixman-0.40.0-x86_64-1.txz: Upgraded.
ap/lsof-4.93.2-x86_64-2.txz: Rebuilt.
Fixed the manpage. Thanks to kaott.
ap/sc-7.16-x86_64-7.txz: Rebuilt.
Brought back the classic SC. Thanks to dive.
d/Cython-0.29.16-x86_64-1.txz: Upgraded.
d/mercurial-5.3.2-x86_64-1.txz: Upgraded.
l/gtk+3-3.24.17-x86_64-1.txz: Upgraded.
n/dhcpcd-8.1.7-x86_64-1.txz: Upgraded.
n/iproute2-5.6.0-x86_64-1.txz: Upgraded.
x/libdrm-2.4.101-x86_64-1.txz: Upgraded.
x/mesa-20.0.4-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-68.6.1esr-x86_64-1.txz: Upgraded.
This release contains critical security fixes and improvements.
"Under certain conditions, when running the nsDocShell destructor, a race
condition can cause a use-after-free. We are aware of targeted attacks in
the wild abusing this flaw."
"Under certain conditions, when handling a ReadableStream, a race condition
can cause a use-after-free. We are aware of targeted attacks in the wild
abusing this flaw."
For more information, see:
https://www.mozilla.org/en-US/firefox/68.6.1/releasenotes/https://www.mozilla.org/en-US/security/advisories/mfsa2020-11/https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6819https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6820
(* Security fix *)
l/gobject-introspection-1.64.0-x86_64-1.txz: Upgraded.
l/imagemagick-7.0.10_0-x86_64-1.txz: Upgraded.
l/libical-3.0.8-x86_64-1.txz: Upgraded.
l/librsvg-2.48.0-x86_64-1.txz: Upgraded.
l/libsoup-2.70.0-x86_64-1.txz: Upgraded.
l/mozilla-nss-3.51-x86_64-1.txz: Upgraded.
xap/libnma-1.8.28-x86_64-1.txz: Added.
This is the NetworkManager GUI client library, which was previously
provided by network-manager-applet. It's now a standalone project, and
is required by network-manager-applet and other NetworkManager frontends.
xap/network-manager-applet-1.16.0-x86_64-1.txz: Upgraded.
This requires the new libnma package.
a/ed-1.16-x86_64-1.txz: Upgraded.
l/gtk+3-3.24.14-x86_64-3.txz: Rebuilt.
Rebuilt to add wayland backend.
l/libuv-1.34.2-x86_64-1.txz: Added.
This is needed by bind-9.16.0.
l/qt5-5.13.2-x86_64-2.txz: Rebuilt.
Rebuilt to add wayland support.
Use the system ffmpeg, not the bundled one.
n/bind-9.16.0-x86_64-1.txz: Upgraded.
rc.bind: don't change file ownerships in /var/named. Thanks to voegelas.
n/proftpd-1.3.6c-x86_64-1.txz: Upgraded.
No CVEs assigned, but this sure looks like a security issue:
Use-after-free vulnerability in memory pools during data transfer.
(* Security fix *)
x/libinput-1.15.2-x86_64-1.txz: Upgraded.
x/xkbcomp-1.4.3-x86_64-1.txz: Upgraded.
testing/packages/PAM/proftpd-1.3.6c-x86_64-1_pam.txz: Upgraded.
No CVEs assigned, but this sure looks like a security issue:
Use-after-free vulnerability in memory pools during data transfer.
(* Security fix *)
a/gptfdisk-1.0.5-x86_64-1.txz: Upgraded.
a/kernel-firmware-20200219_2277987-noarch-1.txz: Upgraded.
a/kernel-generic-5.4.21-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.21-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.21-x86_64-1.txz: Upgraded.
a/shadow-4.8.1-x86_64-5.txz: Rebuilt.
a/util-linux-2.35.1-x86_64-4.txz: Rebuilt.
ap/cdparanoia-III_10.2-x86_64-3.txz: Rebuilt.
Moved man page from /usr/man/jp/man1/ to /usr/man/ja/man1/. Thanks to Xsane.
Don't ship the static libraries.
d/kernel-headers-5.4.21-x86-1.txz: Upgraded.
k/kernel-source-5.4.21-noarch-1.txz: Upgraded.
SND_SOC n -> m
SPI n -> y
VFIO_PCI_VGA n -> y
+ADE7854_SPI m
+ADT7316_SPI m
+BMC150_ACCEL_SPI m
+BMG160_SPI m
+BMP280_SPI m
+FXAS21002C_SPI m
+HTS221_SPI m
+IIO_ST_ACCEL_SPI_3AXIS m
+IIO_ST_GYRO_SPI_3AXIS m
+IIO_ST_MAGN_SPI_3AXIS m
+IIO_ST_PRESS_SPI m
+IIO_ST_SENSORS_SPI m
+INPUT_AD714X_SPI m
+INPUT_ADXL34X_SPI m
+KXSD9_SPI m
+REGMAP_SPI m
+SND_COMPRESS_OFFLOAD m
+SND_DESIGNWARE_I2S m
+SND_DESIGNWARE_PCM y
+SND_DMAENGINE_PCM m
+SND_HDA_EXT_CORE m
+SND_I2S_HI6210_I2S m
+SND_PCM_ELD y
+SND_PCM_IEC958 y
+SND_SIMPLE_CARD m
+SND_SIMPLE_CARD_UTILS m
+SND_SOC_AC97_BUS y
+SND_SOC_AC97_CODEC m
+SND_SOC_ACPI m
+SND_SOC_ACPI_INTEL_MATCH m
+SND_SOC_ADAU1761 m
+SND_SOC_ADAU1761_I2C m
+SND_SOC_ADAU1761_SPI m
+SND_SOC_ADAU17X1 m
+SND_SOC_ADAU7002 m
+SND_SOC_ADAU_UTILS m
+SND_SOC_AMD_ACP m
+SND_SOC_AMD_ACP3x m
+SND_SOC_AMD_CZ_DA7219MX98357_MACH m
+SND_SOC_AMD_CZ_RT5645_MACH m
+SND_SOC_BD28623 m
+SND_SOC_COMPRESS y
+SND_SOC_CROS_EC_CODEC m
+SND_SOC_CS35L34 m
+SND_SOC_CS35L35 m
+SND_SOC_CS35L36 m
+SND_SOC_CS42L42 m
+SND_SOC_CS43130 m
+SND_SOC_CX2072X m
+SND_SOC_DA7213 m
+SND_SOC_DA7219 m
+SND_SOC_DMIC m
+SND_SOC_ES7134 m
+SND_SOC_ES7241 m
+SND_SOC_ES8316 m
+SND_SOC_ES8328 m
+SND_SOC_ES8328_I2C m
+SND_SOC_ES8328_SPI m
+SND_SOC_GENERIC_DMAENGINE_PCM y
+SND_SOC_HDAC_HDA m
+SND_SOC_HDAC_HDMI m
+SND_SOC_HDMI_CODEC m
+SND_SOC_I2C_AND_SPI m
+SND_SOC_INTEL_APL m
+SND_SOC_INTEL_BDW_RT5677_MACH m
+SND_SOC_INTEL_BROADWELL_MACH m
+SND_SOC_INTEL_BXT_DA7219_MAX98357A_MACH m
+SND_SOC_INTEL_BXT_RT298_MACH m
+SND_SOC_INTEL_BYTCR_RT5640_MACH m
+SND_SOC_INTEL_BYTCR_RT5651_MACH m
+SND_SOC_INTEL_BYT_CHT_CX2072X_MACH m
+SND_SOC_INTEL_BYT_CHT_DA7213_MACH m
+SND_SOC_INTEL_BYT_CHT_ES8316_MACH m
+SND_SOC_INTEL_BYT_CHT_NOCODEC_MACH m
+SND_SOC_INTEL_CFL m
+SND_SOC_INTEL_CHT_BSW_MAX98090_TI_MACH m
+SND_SOC_INTEL_CHT_BSW_NAU8824_MACH m
+SND_SOC_INTEL_CHT_BSW_RT5645_MACH m
+SND_SOC_INTEL_CHT_BSW_RT5672_MACH m
+SND_SOC_INTEL_CML_H m
+SND_SOC_INTEL_CML_LP m
+SND_SOC_INTEL_CNL m
+SND_SOC_INTEL_DA7219_MAX98357A_GENERIC m
+SND_SOC_INTEL_GLK m
+SND_SOC_INTEL_GLK_RT5682_MAX98357A_MACH m
+SND_SOC_INTEL_HASWELL m
+SND_SOC_INTEL_HASWELL_MACH m
+SND_SOC_INTEL_KBL m
+SND_SOC_INTEL_KBL_DA7219_MAX98357A_MACH m
+SND_SOC_INTEL_KBL_DA7219_MAX98927_MACH m
+SND_SOC_INTEL_KBL_RT5660_MACH m
+SND_SOC_INTEL_KBL_RT5663_MAX98927_MACH m
+SND_SOC_INTEL_MACH y
+SND_SOC_INTEL_SKL m
+SND_SOC_INTEL_SKL_NAU88L25_MAX98357A_MACH m
+SND_SOC_INTEL_SKL_NAU88L25_SSM4567_MACH m
+SND_SOC_INTEL_SKL_RT286_MACH m
+SND_SOC_INTEL_SKYLAKE m
+SND_SOC_INTEL_SKYLAKE_COMMON m
+SND_SOC_INTEL_SKYLAKE_FAMILY m
+SND_SOC_INTEL_SKYLAKE_HDAUDIO_CODEC y
+SND_SOC_INTEL_SKYLAKE_SSP_CLK m
+SND_SOC_INTEL_SST m
+SND_SOC_INTEL_SST_ACPI m
+SND_SOC_INTEL_SST_FIRMWARE m
+SND_SOC_INTEL_SST_TOPLEVEL y
+SND_SOC_MAX9759 m
+SND_SOC_MAX98088 m
+SND_SOC_MAX98090 m
+SND_SOC_MAX98357A m
+SND_SOC_MAX98373 m
+SND_SOC_MAX9867 m
+SND_SOC_MAX98927 m
+SND_SOC_NAU8540 m
+SND_SOC_NAU8824 m
+SND_SOC_NAU8825 m
+SND_SOC_PCM1789 m
+SND_SOC_PCM1789_I2C m
+SND_SOC_PCM186X m
+SND_SOC_PCM186X_I2C m
+SND_SOC_PCM186X_SPI m
+SND_SOC_PCM3060 m
+SND_SOC_PCM3060_I2C m
+SND_SOC_PCM3060_SPI m
+SND_SOC_RL6231 m
+SND_SOC_RL6347A m
+SND_SOC_RT286 m
+SND_SOC_RT298 m
+SND_SOC_RT5640 m
+SND_SOC_RT5645 m
+SND_SOC_RT5651 m
+SND_SOC_RT5660 m
+SND_SOC_RT5663 m
+SND_SOC_RT5670 m
+SND_SOC_RT5677 m
+SND_SOC_RT5677_SPI m
+SND_SOC_RT5682 m
+SND_SOC_SIGMADSP m
+SND_SOC_SIGMADSP_REGMAP m
+SND_SOC_SIMPLE_AMPLIFIER m
+SND_SOC_SOF m
+SND_SOC_SOF_ACPI m
+SND_SOC_SOF_APOLLOLAKE m
+SND_SOC_SOF_APOLLOLAKE_SUPPORT y
+SND_SOC_SOF_BAYTRAIL m
+SND_SOC_SOF_BAYTRAIL_SUPPORT y
+SND_SOC_SOF_CANNONLAKE m
+SND_SOC_SOF_CANNONLAKE_SUPPORT y
+SND_SOC_SOF_COFFEELAKE m
+SND_SOC_SOF_COFFEELAKE_SUPPORT y
+SND_SOC_SOF_COMETLAKE_H m
+SND_SOC_SOF_COMETLAKE_H_SUPPORT y
+SND_SOC_SOF_COMETLAKE_LP m
+SND_SOC_SOF_COMETLAKE_LP_SUPPORT y
+SND_SOC_SOF_ELKHARTLAKE m
+SND_SOC_SOF_ELKHARTLAKE_SUPPORT y
+SND_SOC_SOF_GEMINILAKE m
+SND_SOC_SOF_GEMINILAKE_SUPPORT y
+SND_SOC_SOF_HDA m
+SND_SOC_SOF_HDA_AUDIO_CODEC y
+SND_SOC_SOF_HDA_COMMON m
+SND_SOC_SOF_HDA_LINK y
+SND_SOC_SOF_HDA_LINK_BASELINE m
+SND_SOC_SOF_ICELAKE m
+SND_SOC_SOF_ICELAKE_SUPPORT y
+SND_SOC_SOF_INTEL_ACPI m
+SND_SOC_SOF_INTEL_ATOM_HIFI_EP m
+SND_SOC_SOF_INTEL_COMMON m
+SND_SOC_SOF_INTEL_HIFI_EP_IPC m
+SND_SOC_SOF_INTEL_PCI m
+SND_SOC_SOF_INTEL_TOPLEVEL y
+SND_SOC_SOF_MERRIFIELD m
+SND_SOC_SOF_MERRIFIELD_SUPPORT y
+SND_SOC_SOF_OPTIONS m
+SND_SOC_SOF_PCI m
+SND_SOC_SOF_PROBE_WORK_QUEUE y
+SND_SOC_SOF_TIGERLAKE m
+SND_SOC_SOF_TIGERLAKE_SUPPORT y
+SND_SOC_SOF_TOPLEVEL y
+SND_SOC_SOF_XTENSA m
+SND_SOC_SPDIF m
+SND_SOC_SSM4567 m
+SND_SOC_TAS6424 m
+SND_SOC_TDA7419 m
+SND_SOC_TLV320AIC32X4 m
+SND_SOC_TLV320AIC32X4_I2C m
+SND_SOC_TLV320AIC32X4_SPI m
+SND_SOC_TOPOLOGY y
+SND_SOC_TS3A227E m
+SND_SOC_TSCS42XX m
+SND_SOC_WM8524 m
+SND_SPI y
+SND_SST_ATOM_HIFI2_PLATFORM m
+SND_SST_ATOM_HIFI2_PLATFORM_ACPI m
+SND_SST_ATOM_HIFI2_PLATFORM_PCI m
+SND_SST_IPC m
+SND_SST_IPC_ACPI m
+SND_SST_IPC_PCI m
+SPI_MASTER y
+ST_UVIS25_SPI m
l/gegl-0.4.22-x86_64-1.txz: Upgraded.
l/glib2-2.62.5-x86_64-1.txz: Upgraded.
l/python-requests-2.23.0-x86_64-1.txz: Upgraded.
n/NetworkManager-1.22.8-x86_64-1.txz: Upgraded.
n/openssh-8.2p1-x86_64-2.txz: Rebuilt.
n/php-7.4.3-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues:
Phar: Files added to tar with Phar::buildFromIterator have
all-access permissions.
Phar: heap-buffer-overflow in phar_extract_file.
Session: Null Pointer Dereference in PHP Session Upload Progress.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7063https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7061https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7062
(* Security fix *)
x/mesa-20.0.0-x86_64-1.txz: Upgraded.
Added Wayland platform support.
x/wayland-1.18.0-x86_64-1.txz: Added.
x/wayland-protocols-1.18-noarch-1.txz: Added.
x/xorg-server-1.20.7-x86_64-2.txz: Rebuilt.
x/xorg-server-xephyr-1.20.7-x86_64-2.txz: Rebuilt.
x/xorg-server-xnest-1.20.7-x86_64-2.txz: Rebuilt.
x/xorg-server-xvfb-1.20.7-x86_64-2.txz: Rebuilt.
x/xorg-server-xwayland-1.20.7-x86_64-2.txz: Added.
xap/gimp-2.10.16-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/PAM/openssh-8.2p1-x86_64-2_pam.txz: Rebuilt.
/etc/pam.d/sshd: add commented out pam_tally2 example.
testing/packages/PAM/shadow-4.8.1-x86_64-5_pam.txz: Rebuilt.
/etc/pam.d/system-auth: add support for pam_group, remove pam_tally2.
Thanks to ivandi.
/etc/pam.d/*: Don't use tabs.
testing/packages/PAM/util-linux-2.35.1-x86_64-4_pam.txz: Rebuilt.
/etc/pam.d/login: add commented out pam_tally2 example.
/etc/pam.d/*: Don't use tabs.
usb-and-pxe-installers/usbboot.img: Rebuilt.
ap/ksh93-20200131_e4fea8c5-x86_64-1.txz: Upgraded.
ap/zsh-5.8-x86_64-1.txz: Upgraded.
l/brotli-1.0.7-x86_64-1.txz: Added.
l/gmime-3.2.6-x86_64-1.txz: Upgraded.
l/hyphen-2.8.8-x86_64-1.txz: Added.
l/openal-soft-1.20.1-x86_64-1.txz: Upgraded.
Thanks to Skaendo and Willy Sudiarto Raharjo.
l/qt5-webkit-5.212.0_alpha3-x86_64-1.txz: Added.
Thanks to alienBOB.
l/woff2-20180531_a0d0ed7-x86_64-1.txz: Added.
n/bluez-5.53-x86_64-1.txz: Upgraded.
n/mutt-1.13.4-x86_64-1.txz: Upgraded.
n/samba-4.11.6-x86_64-3.txz: Rebuilt.
n/socat-1.7.3.4-x86_64-1.txz: Added.
n/whois-5.5.6-x86_64-1.txz: Upgraded.
testing/packages/PAM/samba-4.11.6-x86_64-3_pam.txz: Rebuilt.
Added patches to fix joining a DC when using krb5. Looks like the patches are
already upstreamed in the latest 4.12.0-rc. Thanks to camerabambai.
a/libcgroup-0.41-x86_64-6.txz: Rebuilt.
ap/mariadb-10.4.12-x86_64-2.txz: Rebuilt.
d/Cython-0.29.15-x86_64-1.txz: Upgraded.
d/cmake-3.16.4-x86_64-2.txz: Rebuilt.
Recompiled against qt5-5.13.2.
d/doxygen-1.8.17-x86_64-2.txz: Rebuilt.
Recompiled against qt5-5.13.2.
l/ConsoleKit2-1.2.1-x86_64-3.txz: Rebuilt.
l/gnome-keyring-3.34.0-x86_64-2.txz: Rebuilt.
l/imagemagick-7.0.9_23-x86_64-1.txz: Upgraded.
l/polkit-0.116-x86_64-2.txz: Rebuilt.
l/python-future-0.18.2-x86_64-1.txz: Added.
This is needed by fetchmailconf and will probably see additional use as
projects jump off of the sinking Python 2 ship.
l/v4l-utils-1.18.0-x86_64-2.txz: Rebuilt.
Recompiled against qt5-5.13.2.
n/cifs-utils-6.10-x86_64-3.txz: Rebuilt.
n/fetchmail-6.4.2-x86_64-1.txz: Upgraded.
n/pinentry-1.1.0-x86_64-3.txz: Rebuilt.
Recompiled against qt5-5.13.2.
n/samba-4.11.6-x86_64-2.txz: Rebuilt.
n/wpa_supplicant-2.9-x86_64-2.txz: Rebuilt.
Recompiled against qt5-5.13.2.
xap/xpdf-4.02-x86_64-3.txz: Rebuilt.
Recompiled against qt5-5.13.2.
testing/packages/PAM/ConsoleKit2-1.2.1-x86_64-3_pam.txz: Rebuilt.
Put the pam security modules in /lib${LIBDIRSUFFIX}/security.
Remove .la files in /lib${LIBDIRSUFFIX}/security.
testing/packages/PAM/cifs-utils-6.10-x86_64-3_pam.txz: Rebuilt.
Put the pam security modules in /lib${LIBDIRSUFFIX}/security.
testing/packages/PAM/gnome-keyring-3.34.0-x86_64-2_pam.txz: Rebuilt.
Put the pam security modules in /lib${LIBDIRSUFFIX}/security.
Remove .la files in /lib${LIBDIRSUFFIX}/security.
testing/packages/PAM/libcgroup-0.41-x86_64-6_pam.txz: Rebuilt.
Put the pam security modules in /lib${LIBDIRSUFFIX}/security.
Remove .la files in /lib${LIBDIRSUFFIX}/security.
testing/packages/PAM/libpwquality-1.4.2-x86_64-2_pam.txz: Rebuilt.
Put the pam security modules in /lib${LIBDIRSUFFIX}/security.
Remove .la files in /lib${LIBDIRSUFFIX}/security.
testing/packages/PAM/mariadb-10.4.12-x86_64-2_pam.txz: Rebuilt.
Put the pam security modules in /lib${LIBDIRSUFFIX}/security.
testing/packages/PAM/pam-1.3.1-x86_64-2_pam.txz: Rebuilt.
Put the pam security modules in /lib${LIBDIRSUFFIX}/security to support
multilib. Thanks to GazL.
testing/packages/PAM/polkit-0.116-x86_64-2_pam.txz: Rebuilt.
Rebuilt using --with-pam-module-dir=/lib${LIBDIRSUFFIX}/security.
testing/packages/PAM/samba-4.11.6-x86_64-2_pam.txz: Rebuilt.
Put the pam security modules in /lib${LIBDIRSUFFIX}/security.
a/kernel-generic-5.4.20-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.20-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.20-x86_64-1.txz: Upgraded.
a/shadow-4.8.1-x86_64-3.txz: Rebuilt.
a/util-linux-2.35.1-x86_64-3.txz: Rebuilt.
d/kernel-headers-5.4.20-x86-1.txz: Upgraded.
k/kernel-source-5.4.20-noarch-1.txz: Upgraded.
l/ConsoleKit2-1.2.1-x86_64-2.txz: Rebuilt.
l/dconf-editor-3.34.4-x86_64-1.txz: Upgraded.
l/libxkbcommon-0.10.0-x86_64-1.txz: Added.
l/openal-soft-1.19.1-x86_64-1.txz: Added.
l/qt5-5.13.2-x86_64-1.txz: Added.
Thanks to alienBOB.
n/openssh-8.2p1-x86_64-1.txz: Upgraded.
Potentially incompatible changes:
* ssh(1), sshd(8): the removal of "ssh-rsa" from the accepted
CASignatureAlgorithms list.
* ssh(1), sshd(8): this release removes diffie-hellman-group14-sha1
from the default key exchange proposal for both the client and
server.
* ssh-keygen(1): the command-line options related to the generation
and screening of safe prime numbers used by the
diffie-hellman-group-exchange-* key exchange algorithms have
changed. Most options have been folded under the -O flag.
* sshd(8): the sshd listener process title visible to ps(1) has
changed to include information about the number of connections that
are currently attempting authentication and the limits configured
by MaxStartups.
x/mesa-19.3.4-x86_64-2.txz: Rebuilt.
Reverted "[PATCH] swr: Fix GCC 4.9 checks." which makes X fail to start with
an illegal instruction on some hardware.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/PAM/ConsoleKit2-1.2.1-x86_64-2_pam.txz: Rebuilt.
Rebuilt with --disable-libcgmanager to fix setting limits on PAM.
Thanks to gattocarlo.
testing/packages/PAM/openssh-8.2p1-x86_64-1_pam.txz: Upgraded.
testing/packages/PAM/shadow-4.8.1-x86_64-3_pam.txz: Rebuilt.
Moved some of the /etc/pam.d/ file to the util-linux package where they
more properly belong.
testing/packages/PAM/util-linux-2.35.1-x86_64-3_pam.txz: Rebuilt.
Added some /etc/pam.d/ files previously in the shadow package.
Changed /etc/pam.d/{chfn,chsh} and made chfn/chsh setuid root to fix them.
Added /etc/pam.d/{runuser,runuser-l}.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Hey folks! PAM has finally landed in /testing. Some here wanted it to go
right into the main tree immediately, and in a more normal development cycle
I'd have been inclined to agree (it is -current, after all). But it's
probably better for it to appear in /testing first, to make sure we didn't
miss any bugs and also to serve as a warning shot that we'll be shaking up
the tree pretty good over the next few weeks. I'd like to see this merged
into the main tree in a day or two, so any testing is greatly appreciated.
Switching to the PAM packages (or reverting from them) is as easy as
installing all of them with upgradepkg --install-new, and if reverting then
remove the three leftover _pam packages. After reverting, a bit of residue
will remain in /etc/pam.d/ and /etc/security/ which can either be manually
deleted or simply ignored. While there are many more features available in
PAM compared with plain shadow, out of the box about the only noticable
change is the use of cracklib and libpwquality to check the quality of a
user-supplied password. Hopefully having PAM and krb5 will get us on track
to having proper Active Directory integration as well as using code paths
that are likely better audited these days. The attack surface *might* be
bigger, but it's also a lot better scrutinized.
Thanks to Robby Workman and Vincent Batts who did most of the initial heavy
lifting on the core PAM packages as a side project for many years. Thanks
also to Phantom X whose PAM related SlackBuilds were a valuable reference.
And thanks as well to ivandi - I learned a lot from the SlackMATE build
scripts and was even occasionally thankful for the amusing ways you would
kick my ass on LQ. ;-) You're more than welcome to let us know where we've
messed up this time.
The binutils and glibc packages in /testing were removed and are off the
table for now. I'm not seeing much upside to heading down that rabbit hole
at the moment. Next we need to be looking at Xfce 4.14 and Plasma 5.18 LTS
and some other things that have been held back since KDE4 couldn't use them.
Cheers! :-)
a/kernel-generic-5.4.19-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.19-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.19-x86_64-1.txz: Upgraded.
a/lvm2-2.03.08-x86_64-1.txz: Upgraded.
a/shadow-4.8.1-x86_64-2.txz: Rebuilt.
Automatically backup /etc/login.defs and install the new version if
incompatible PAM options are detected.
d/kernel-headers-5.4.19-x86-1.txz: Upgraded.
k/kernel-source-5.4.19-noarch-1.txz: Upgraded.
VALIDATE_FS_PARSER y -> n
xap/mozilla-thunderbird-68.5.0-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/68.5.0/releasenotes/https://www.mozilla.org/en-US/security/advisories/mfsa2020-07/https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6793https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6794https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6795https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6797https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6798https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6792https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6800
(* Security fix *)
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/PAM/ConsoleKit2-1.2.1-x86_64-1_pam.txz: Added.
testing/packages/PAM/at-3.2.1-x86_64-1_pam.txz: Added.
testing/packages/PAM/cifs-utils-6.10-x86_64-2_pam.txz: Added.
testing/packages/PAM/cracklib-2.9.7-x86_64-1_pam.txz: Added.
testing/packages/PAM/cups-2.3.1-x86_64-1_pam.txz: Added.
testing/packages/PAM/cyrus-sasl-2.1.27-x86_64-2_pam.txz: Added.
testing/packages/PAM/dovecot-2.3.9.2-x86_64-1_pam.txz: Added.
testing/packages/PAM/gnome-keyring-3.34.0-x86_64-1_pam.txz: Added.
testing/packages/PAM/hplip-3.19.12-x86_64-2_pam.txz: Added.
testing/packages/PAM/kde-workspace-4.11.22-x86_64-6_pam.txz: Added.
testing/packages/PAM/libcap-2.31-x86_64-1_pam.txz: Added.
testing/packages/PAM/libcgroup-0.41-x86_64-5_pam.txz: Added.
testing/packages/PAM/libpwquality-1.4.2-x86_64-1_pam.txz: Added.
testing/packages/PAM/mariadb-10.4.12-x86_64-1_pam.txz: Added.
testing/packages/PAM/netatalk-3.1.12-x86_64-2_pam.txz: Added.
testing/packages/PAM/netkit-rsh-0.17-x86_64-2_pam.txz: Added.
testing/packages/PAM/openssh-8.1p1-x86_64-1_pam.txz: Added.
testing/packages/PAM/openvpn-2.4.8-x86_64-1_pam.txz: Added.
testing/packages/PAM/pam-1.3.1-x86_64-1_pam.txz: Added.
testing/packages/PAM/polkit-0.116-x86_64-1_pam.txz: Added.
testing/packages/PAM/popa3d-1.0.3-x86_64-3_pam.txz: Added.
testing/packages/PAM/ppp-2.4.7-x86_64-3_pam.txz: Added.
testing/packages/PAM/proftpd-1.3.6b-x86_64-1_pam.txz: Added.
testing/packages/PAM/samba-4.11.6-x86_64-1_pam.txz: Added.
testing/packages/PAM/screen-4.8.0-x86_64-1_pam.txz: Added.
testing/packages/PAM/shadow-4.8.1-x86_64-2_pam.txz: Added.
testing/packages/PAM/sudo-1.8.31-x86_64-1_pam.txz: Added.
testing/packages/PAM/system-config-printer-1.5.12-x86_64-2_pam.txz: Added.
testing/packages/PAM/util-linux-2.35.1-x86_64-1_pam.txz: Added.
testing/packages/PAM/vsftpd-3.0.3-x86_64-5_pam.txz: Added.
testing/packages/PAM/xdm-1.1.11-x86_64-9_pam.txz: Added.
testing/packages/PAM/xlockmore-5.62-x86_64-1_pam.txz: Added.
testing/packages/PAM/xscreensaver-5.43-x86_64-1_pam.txz: Added.
testing/packages/binutils-2.34-x86_64-1.txz: Removed.
testing/packages/glibc-2.31-x86_64-1.txz: Removed.
testing/packages/glibc-i18n-2.31-x86_64-1.txz: Removed.
testing/packages/glibc-profile-2.31-x86_64-1.txz: Removed.
testing/packages/glibc-solibs-2.31-x86_64-1.txz: Removed.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/util-linux-2.35.1-x86_64-1.txz: Upgraded.
a/zerofree-1.1.1-x86_64-1.txz: Added.
Also queued up for the next installer build. Thanks to bifferos.
ap/sudo-1.8.31-x86_64-1.txz: Upgraded.
This update fixes a security issue:
In Sudo before 1.8.31, if pwfeedback is enabled in /etc/sudoers, users can
trigger a stack-based buffer overflow in the privileged sudo process.
(pwfeedback is a default setting in some Linux distributions; however, it
is not the default for upstream or in Slackware, and would exist only if
enabled by an administrator.) The attacker needs to deliver a long string
to the stdin of getln() in tgetpass.c.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18634
(* Security fix *)
n/NetworkManager-1.22.6-x86_64-1.txz: Upgraded.
n/openldap-client-2.4.49-x86_64-1.txz: Upgraded.
xfce/Thunar-1.8.11-x86_64-1.txz: Removed.
xfce/thunar-1.8.12-x86_64-1.txz: Added.
Changed package name from "Thunar" to "thunar" to follow upstream's naming.
a/kernel-generic-5.4.16-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.16-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.16-x86_64-1.txz: Upgraded.
ap/linuxdoc-tools-0.9.73-x86_64-5.txz: Rebuilt.
gnome-doc-tools: Make '/usr/bin/xml2po' and its accompanying Python module
build against Python3.
Thanks to bassmadrigal and ponce on LQ for the report and the patch.
docbook2x: Removed '--disable-maintainer-mode' configuration flag because
it's no longer valid.
Thanks to Stuart Winter.
d/kernel-headers-5.4.16-x86-1.txz: Upgraded.
k/kernel-source-5.4.16-noarch-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/aaa_elflibs-15.0-x86_64-21.txz: Rebuilt.
Upgraded: libisl.so.22.0.1.
Added: libkeyutils.so.1.9.
a/kernel-generic-5.4.15-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.15-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.15-x86_64-1.txz: Upgraded.
a/pciutils-3.6.4-x86_64-1.txz: Upgraded.
a/shadow-4.8.1-x86_64-1.txz: Upgraded.
d/check-0.14.0-x86_64-1.txz: Upgraded.
d/kernel-headers-5.4.15-x86-1.txz: Upgraded.
d/make-4.2.1-x86_64-5.txz: Rebuilt.
Drop back to make-4.2.1 since make-4.3 is breaking a few builds. We'll
revisit it later after sources have caught up to it or regressions have
been patched upstream.
d/python-pip-20.0.2-x86_64-1.txz: Upgraded.
k/kernel-source-5.4.15-noarch-1.txz: Upgraded.
l/imagemagick-7.0.9_18-x86_64-1.txz: Upgraded.
l/python-packaging-20.1-x86_64-1.txz: Upgraded.
n/php-7.4.2-x86_64-3.txz: Rebuilt.
php.ini: Added extension=gd and extension=zip. Thanks to avian.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/aaa_elflibs-15.0-x86_64-19.txz: Rebuilt.
Upgraded: libcap.so.2.31, libgmp.so.10.4.0, libgmpxx.so.4.6.0.
Added: libgssapi_krb5.so.2.2, libk5crypto.so.3.1, libkrb5.so.3.3,
libkrb5support.so.0.1.
a/util-linux-2.35-x86_64-1.txz: Upgraded.
d/python-pip-20.0.1-x86_64-1.txz: Upgraded.
l/Mako-1.1.1-x86_64-1.txz: Upgraded.
l/keyutils-1.6.1-x86_64-1.txz: Upgraded.
n/krb5-1.17-x86_64-1.txz: Added.
Nothing links to this yet, but we'll need it soon enough. :-)
n/php-7.4.2-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues:
Standard: OOB read in php_strip_tags_ex
Mbstring: global buffer-overflow in 'mbfl_filt_conv_big5_wchar'
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7059https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7060
(* Security fix *)
n/samba-4.11.5-x86_64-1.txz: Upgraded.
This update fixes the following security issues:
Replication of ACLs set to inherit down a subtree on AD Directory
not automatic.
Crash after failed character conversion at log level 3 or above.
Use after free during DNS zone scavenging in Samba AD DC.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14902https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14907https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19344
(* Security fix *)
xap/gparted-1.1.0-x86_64-1.txz: Upgraded.
a/elvis-2.2_0-x86_64-5.txz: Rebuilt.
Don't make /usr/bin/{ex,vi} symlinks.
a/kernel-generic-5.4.11-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.11-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.11-x86_64-1.txz: Upgraded.
a/nvi-1.81.6-x86_64-1.txz: Added.
This is an implementation of the classic ex/vi text editor written by Keith
Bostic. Due to this having UTF8 support which elvis lacks, we'll have it
take over the ex/vi symlinks if they aren't already pointing to a different
choice. Note that the removal of vi/ex symlinks from the elvis and vim
packages might cause your ex/vi symlinks to point to this after all the ex/vi
packages have been upgraded. You can set them to your preferences using
pkgtool -> Setup -> vi-ex.
a/pkgtools-15.0-noarch-29.txz: Rebuilt.
Added an installer/pkgtool menu to select the default ex/vi editor.
ap/vim-8.2.0114-x86_64-1.txz: Upgraded.
Don't make /usr/bin/{ex,vi} symlinks.
d/kernel-headers-5.4.11-x86-1.txz: Upgraded.
d/python-setuptools-45.0.0-x86_64-1.txz: Upgraded.
k/kernel-source-5.4.11-noarch-1.txz: Upgraded.
l/imagemagick-7.0.9_15-x86_64-1.txz: Upgraded.
n/ethtool-5.4-x86_64-1.txz: Upgraded.
xap/vim-gvim-8.2.0114-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
d/ccache-3.7.7-x86_64-1.txz: Upgraded.
l/libpsl-0.21.0-x86_64-2.txz: Rebuilt.
Patched for new gtk-doc. Thanks to Matteo Bernardini.
l/pyparsing-2.4.6-x86_64-1.txz: Upgraded.
l/python-packaging-20.0-x86_64-1.txz: Upgraded.
l/python-pygments-2.5.2-x86_64-1.txz: Added.
This is needed by gtk-doc.
n/iputils-20190709-x86_64-2.txz: Rebuilt.
Patched for new libcap. Thanks to Matteo Bernardini.
x/fonttosfnt-1.1.0-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-68.4.0esr-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/68.4.0/releasenotes/https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
(* Security fix *)
a/kernel-generic-5.4.6-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.6-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.6-x86_64-1.txz: Upgraded.
a/procps-ng-3.3.16-x86_64-2.txz: Rebuilt.
Patched to hardcode the pgrep command string buffer size to 4096 as was done
in the previous release. This avoids an allocation error when the stack size
is unlimited. Thanks to Jeroslaw Siebert.
a/xfsprogs-5.4.0-x86_64-1.txz: Upgraded.
d/kernel-headers-5.4.6-x86-1.txz: Upgraded.
k/kernel-source-5.4.6-noarch-1.txz: Upgraded.
l/QScintilla-2.11.4-x86_64-1.txz: Upgraded.
n/dhcpcd-8.1.4-x86_64-1.txz: Upgraded.
n/lftp-4.9.0-x86_64-1.txz: Upgraded.
xap/hexchat-2.14.3-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
ap/mariadb-10.4.11-x86_64-1.txz: Upgraded.
d/cmake-3.16.1-x86_64-1.txz: Upgraded.
d/git-2.24.1-x86_64-1.txz: Upgraded.
l/mozjs52-52.9.0esr-x86_64-2.txz: Removed.
This was used only by polkit-0.115.
l/mozjs60-60.9.0esr-x86_64-1.txz: Added.
This is needed for polkit-0.116.
l/polkit-0.116-x86_64-1.txz: Upgraded.
n/ModemManager-1.12.2-x86_64-1.txz: Upgraded.
xap/xine-ui-0.99.12-x86_64-1.txz: Upgraded.
n/bind-9.14.8-x86_64-1.txz: Upgraded.
This update fixes a security issue:
Set a limit on the number of concurrently served pipelined TCP queries.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6477
(* Security fix *)
x/mesa-19.2.5-x86_64-1.txz: Upgraded.
ap/qpdf-9.1.0-x86_64-1.txz: Upgraded.
d/check-0.13.0-x86_64-1.txz: Added.
This is needed to build PulseAudio using Meson.
l/alsa-lib-1.2.1-x86_64-2.txz: Rebuilt.
Merge alsa-topology-conf-1.2.1 and alsa-ucm-conf-1.2.1 into the package.
l/pulseaudio-13.0-x86_64-2.txz: Rebuilt.
Rebuilt with meson. This causes esound support to be dropped, but it's
likely that nobody will care.
l/pyparsing-2.4.5-x86_64-1.txz: Upgraded.
extra/pure-alsa-system/alsa-lib-1.2.1-x86_64-2_alsa.txz: Rebuilt.
Merge alsa-topology-conf-1.2.1 and alsa-ucm-conf-1.2.1 into the package.
a/aaa_elflibs-15.0-x86_64-14.txz: Rebuilt.
Upgraded: libglib-2.0.so.0.6200.2, libgmodule-2.0.so.0.6200.2,
libgobject-2.0.so.0.6200.2, libgthread-2.0.so.0.6200.2.
Added: libgomp.so.1.0.0.
a/kernel-firmware-20191029_4065643-noarch-1.txz: Upgraded.
a/kernel-generic-4.19.81-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.81-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.81-x86_64-1.txz: Upgraded.
ap/sudo-1.8.29-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.81-x86-1.txz: Upgraded.
d/python-setuptools-41.6.0-x86_64-1.txz: Upgraded.
k/kernel-source-4.19.81-noarch-1.txz: Upgraded.
l/harfbuzz-2.6.3-x86_64-1.txz: Upgraded.
n/samba-4.11.2-x86_64-1.txz: Upgraded.
This update fixes bugs and these security issues:
Client code can return filenames containing path separators.
Samba AD DC check password script does not receive the full password.
User with "get changes" permission can crash AD DC LDAP server via dirsync.
For more information, see:
https://www.samba.org/samba/security/CVE-2019-10218.htmlhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10218https://www.samba.org/samba/security/CVE-2019-14833.htmlhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14833https://www.samba.org/samba/security/CVE-2019-14847.htmlhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14847
(* Security fix *)
x/libglvnd-1.2.0-x86_64-4.txz: Rebuilt.
Applied upstream patches to fix EGL/eglplatform.h.
x/xorg-server-1.20.5-x86_64-3.txz: Rebuilt.
#define EGL_NO_X11 to fix glamor build against libglvnd-1.2.0.
x/xorg-server-xephyr-1.20.5-x86_64-3.txz: Rebuilt.
x/xorg-server-xnest-1.20.5-x86_64-3.txz: Rebuilt.
x/xorg-server-xvfb-1.20.5-x86_64-3.txz: Rebuilt.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
l/imagemagick-6.9.10_70-x86_64-1.txz: Upgraded.
x/libinput-1.14.3-x86_64-1.txz: Upgraded.
x/mkfontdir-1.0.7-noarch-2.txz: Removed.
The mkfontdir wrapper script and man page are provided by recent versions
of the mkfontscale package, making the mkfontdir package redundant.
Thanks to DarkVision.
x/mkfontscale-1.2.1-x86_64-2.txz: Rebuilt.
Moved the mkfontdir install script to this package since it includes the
mkfontdir wrapper script now.
xap/gimp-2.10.14-x86_64-1.txz: Upgraded.
a/getty-ps-2.1.0b-x86_64-4.txz: Removed.
a/lha-114i-x86_64-2.txz: Removed.
Removed due to vague licensing terms.
a/lhasa-0.3.1-x86_64-1.txz: Added.
This is an extraction-only LHA utility with an OSI approved license.
a/shadow-4.7-x86_64-2.txz: Rebuilt.
Added /etc/environment.new to fix "sudo -i" noise.
ap/lm_sensors-3.6.0-x86_64-1.txz: Upgraded.
ap/vim-8.1.2174-x86_64-1.txz: Upgraded.
l/netpbm-10.88.00-x86_64-1.txz: Upgraded.
n/ca-certificates-20191018-noarch-1.txz: Upgraded.
n/samba-4.11.1-x86_64-1.txz: Upgraded.
xap/vim-gvim-8.1.2174-x86_64-1.txz: Upgraded.
xap/xfractint-20.04p13-x86_64-2.txz: Removed.
xap/xv-3.10a-x86_64-9.txz: Removed.
extra/getty-ps/getty-ps-2.1.0b-x86_64-4.txz: Rebuilt.
Moved here from the A series due to commercial use restrictions.
extra/xfractint/xfractint-20.04p14-x86_64-1.txz: Upgraded.
Moved here from the XAP series due to commercial use restrictions.
extra/xv/xv-3.10a-x86_64-9.txz: Rebuilt.
Moved here from the XAP series due to non-commercial use shareware license.
a/etc-15.0-x86_64-10.txz: Rebuilt.
Fix "include /etc/ld.so.conf.d/*.conf" repeats in /etc/ld.so.conf.
l/imagemagick-6.9.10_64-x86_64-1.txz: Upgraded.
l/seamonkey-solibs-2.49.5-x86_64-1.txz: Removed.
This package was included years ago to support a few things that needed
nss/nspr, but we've since included that in the mozilla-nss package.
Nothing should be using this anymore.
xap/seamonkey-2.49.5-x86_64-2.txz: Rebuilt.
Added additional options to more closely match the official build:
--enable-rust --enable-js-shell --enable-elf-hack --enable-release
--enable-calendar
Thanks to ljb643 for the bug report.
Removed /usr/lib{,64}/seamonkey from /etc/ld.so.conf.
a/kernel-generic-4.19.66-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.66-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.66-x86_64-1.txz: Upgraded.
ap/amp-0.7.6-x86_64-3.txz: Rebuilt.
Patched to clean up the code for a modern compiler and to not use overly
aggressive optimizations that can lead to crashes. Thanks to Labinnah.
d/doxygen-1.8.16-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.66-x86-1.txz: Upgraded.
d/scons-3.1.1-x86_64-1.txz: Upgraded.
k/kernel-source-4.19.66-noarch-1.txz: Upgraded.
n/NetworkManager-1.20.0-x86_64-1.txz: Upgraded.
n/wpa_supplicant-2.9-x86_64-1.txz: Upgraded.
x/libinput-1.14.0-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/bzip2-1.0.8-x86_64-1.txz: Upgraded.
Fixes security issues:
bzip2recover: Fix use after free issue with outFile.
Make sure nSelectors is not out of range.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3189https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12900
(* Security fix *)
a/kernel-generic-4.19.59-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.59-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.59-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.59-x86-1.txz: Upgraded.
k/kernel-source-4.19.59-noarch-1.txz: Upgraded.
l/libwebp-1.0.3-x86_64-1.txz: Upgraded.
n/dovecot-2.3.7-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/kernel-generic-4.19.57-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.57-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.57-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.57-x86-1.txz: Upgraded.
k/kernel-source-4.19.57-noarch-1.txz: Upgraded.
l/Mako-1.0.13-x86_64-1.txz: Upgraded.
l/SDL2_image-2.0.5-x86_64-1.txz: Upgraded.
n/postfix-3.4.6-x86_64-1.txz: Upgraded.
xap/blueman-2.0.8-x86_64-2.txz: Rebuilt.
Reverted to blueman-2.0.8 as I'm also seeing connection issues here with
the newer version.
xap/xscreensaver-5.43-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/blueman-2.1-x86_64-1.txz: Upgraded.
This doesn't seem to be working properly. Any patches are welcome.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/gettext-0.20.1-x86_64-1.txz: Upgraded.
a/kernel-generic-4.19.46-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.46-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.46-x86_64-1.txz: Upgraded.
d/gcc-9.1.0-x86_64-6.txz: Rebuilt.
Patched to fix a format string error in the es locale that led to an
assertion failure when compiling the Linux kernel.
Thanks to USUARIONUEVO.
d/gcc-brig-9.1.0-x86_64-6.txz: Rebuilt.
d/gcc-g++-9.1.0-x86_64-6.txz: Rebuilt.
d/gcc-gdc-9.1.0-x86_64-6.txz: Rebuilt.
d/gcc-gfortran-9.1.0-x86_64-6.txz: Rebuilt.
d/gcc-gnat-9.1.0-x86_64-6.txz: Rebuilt.
d/gcc-go-9.1.0-x86_64-6.txz: Rebuilt.
d/gcc-objc-9.1.0-x86_64-6.txz: Rebuilt.
d/gettext-tools-0.20.1-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.46-x86-1.txz: Upgraded.
d/rust-1.35.0-x86_64-1.txz: Upgraded.
k/kernel-source-4.19.46-noarch-1.txz: Upgraded.
l/python-urllib3-1.25.3-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/kernel-firmware-20190514_711d329-noarch-1.txz: Upgraded.
a/kernel-generic-4.19.43-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.43-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.43-x86_64-1.txz: Upgraded.
ap/hplip-3.19.5-x86_64-1.txz: Upgraded.
ap/mariadb-10.3.15-x86_64-1.txz: Upgraded.
This update fixes denial-of-service security issues.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2614https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2627https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2628
(* Security fix *)
d/cmake-3.14.4-x86_64-1.txz: Upgraded.
d/gcc-9.1.0-x86_64-5.txz: Rebuilt.
Rebuilt with --enable-clocale=gnu. This is recommended by Linux From
Scratch, and while it doesn't seem to fix the issue with kernel compiles
failing with some locales, it probably doesn't hurt.
d/gcc-brig-9.1.0-x86_64-5.txz: Rebuilt.
d/gcc-g++-9.1.0-x86_64-5.txz: Rebuilt.
Applied patch: PR libstdc++/90397 fix std::variant friend declaration
This fixes problems compiling programs that use std::variant with clang.
Thanks to orbea.
d/gcc-gdc-9.1.0-x86_64-5.txz: Rebuilt.
d/gcc-gfortran-9.1.0-x86_64-5.txz: Rebuilt.
d/gcc-gnat-9.1.0-x86_64-5.txz: Rebuilt.
d/gcc-go-9.1.0-x86_64-5.txz: Rebuilt.
d/gcc-objc-9.1.0-x86_64-5.txz: Rebuilt.
d/kernel-headers-4.19.43-x86-1.txz: Upgraded.
d/rust-1.34.2-x86_64-1.txz: Upgraded.
k/kernel-source-4.19.43-noarch-1.txz: Upgraded.
l/librsvg-2.44.14-x86_64-1.txz: Upgraded.
n/samba-4.10.3-x86_64-1.txz: Upgraded.
This is a security release in order to address the following defect:
The checksum validation in the S4U2Self handler in the embedded Heimdal KDC
did not first confirm that the checksum was keyed, allowing replacement of
the requested target (client) principal.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16860
(* Security fix *)
x/xterm-345-x86_64-1.txz: Upgraded.
xap/rdesktop-1.8.5-x86_64-1.txz: Upgraded.
This update fixes security issues:
Add bounds checking to protocol handling in order to fix many
security problems when communicating with a malicious server.
(* Security fix *)
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/kernel-generic-4.19.42-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.42-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.42-x86_64-1.txz: Upgraded.
a/tcsh-6.21.00-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.42-x86-1.txz: Upgraded.
k/kernel-source-4.19.42-noarch-1.txz: Upgraded.
x/libglvnd-1.1.1-x86_64-1.txz: Added.
This is the GL Vendor-Neutral Dispatch library, which allows multiple
drivers from different vendors to coexist on the same machine. When
libglvnd is present, the NVIDIA driver will not overwrite any system
files. Note that this is known to work when installing the NVIDIA driver
using the .run installer. Other methods may require adjustment.
This library is now a dependency of Mesa.
Thanks to Heinz Wiesinger.
x/libinput-1.13.2-x86_64-1.txz: Upgraded.
x/mesa-19.0.4-x86_64-1.txz: Upgraded.
Compiled with --enable-libglvnd.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/hwdata-0.323-noarch-1.txz: Upgraded.
a/kernel-generic-4.19.41-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.41-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.41-x86_64-1.txz: Upgraded.
a/usbutils-012-x86_64-1.txz: Upgraded.
ap/lsof-4.93.2-x86_64-1.txz: Upgraded.
d/gcc-9.1.0-x86_64-4.txz: Rebuilt.
d/gcc-brig-9.1.0-x86_64-4.txz: Rebuilt.
d/gcc-g++-9.1.0-x86_64-4.txz: Rebuilt.
d/gcc-gdc-9.1.0-x86_64-4.txz: Rebuilt.
d/gcc-gfortran-9.1.0-x86_64-4.txz: Rebuilt.
d/gcc-gnat-9.1.0-x86_64-4.txz: Rebuilt.
d/gcc-go-9.1.0-x86_64-4.txz: Rebuilt.
d/gcc-objc-9.1.0-x86_64-4.txz: Rebuilt.
Add support for Objective-C++. Thanks to USUARIONUEVO.
d/kernel-headers-4.19.41-x86-1.txz: Upgraded.
d/python-pip-19.1.1-x86_64-1.txz: Upgraded.
k/kernel-source-4.19.41-noarch-1.txz: Upgraded.
l/gegl-0.4.16-x86_64-1.txz: Upgraded.
l/vte-0.56.3-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-60.6.3esr-x86_64-1.txz: Upgraded.
This update provides further improvements to re-enable web extensions which
had been disabled for users with a master password set (Bug 1549249).
For more information, see:
https://www.mozilla.org/en-US/firefox/60.6.3/releasenotes/
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/kernel-generic-4.19.34-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.34-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.34-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.34-x86-1.txz: Upgraded.
k/kernel-source-4.19.34-noarch-1.txz: Upgraded.
SPEAKUP y -> m
SPEAKUP_SYNTH_ACNTPC y -> m
SPEAKUP_SYNTH_ACNTSA y -> m
SPEAKUP_SYNTH_APOLLO y -> m
SPEAKUP_SYNTH_AUDPTR y -> m
SPEAKUP_SYNTH_BNS y -> m
SPEAKUP_SYNTH_DECEXT y -> m
SPEAKUP_SYNTH_DECTLK y -> m
SPEAKUP_SYNTH_DTLK y -> m
SPEAKUP_SYNTH_DUMMY y -> m
SPEAKUP_SYNTH_KEYPC y -> m
SPEAKUP_SYNTH_LTLK y -> m
SPEAKUP_SYNTH_SOFT y -> m
SPEAKUP_SYNTH_SPKOUT y -> m
SPEAKUP_SYNTH_TXPRT y -> m
Thanks to Didier Spaier.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/kernel-generic-4.19.32-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.32-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.32-x86_64-1.txz: Upgraded.
ap/hplip-3.19.3-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.32-x86-1.txz: Upgraded.
d/python3-3.7.3-x86_64-1.txz: Upgraded.
Fixed bugs and the following security issues:
bpo-36216: Changes urlsplit() to raise ValueError when the URL contains
characters that decompose under IDNA encoding (NFKC-normalization) into
characters that affect how the URL is parsed.
bpo-35746: [CVE-2019-5010] Fix a NULL pointer deref in ssl module. The
cert parser did not handle CRL distribution points with empty DP or URI
correctly. A malicious or buggy certificate can result into segfault.
Vulnerability (TALOS-2018-0758) reported by Colin Read and Nicolas Edet
of Cisco.
bpo-35121: Don't send cookies of domain A without Domain attribute to
domain B when domain A is a suffix match of domain B while using a
cookiejar with http.cookiejar.DefaultCookiePolicy policy.
Patch by Karthikeyan Singaravelan.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5010
(* Security fix *)
d/scons-3.0.5-x86_64-1.txz: Upgraded.
k/kernel-source-4.19.32-noarch-1.txz: Upgraded.
n/curl-7.64.1-x86_64-1.txz: Upgraded.
n/gnutls-3.6.7-x86_64-1.txz: Upgraded.
Fixes security issues:
libgnutls, gnutls tools: Every gnutls_free() will automatically set
the free'd pointer to NULL. This prevents possible use-after-free and
double free issues. Use-after-free will be turned into NULL dereference.
The counter-measure does not extend to applications using gnutls_free().
libgnutls: Fixed a memory corruption (double free) vulnerability in the
certificate verification API. Reported by Tavis Ormandy; addressed with
the change above. [GNUTLS-SA-2019-03-27, #694]
libgnutls: Fixed an invalid pointer access via malformed TLS1.3 async
messages; Found using tlsfuzzer. [GNUTLS-SA-2019-03-27, #704]
libgnutls: enforce key usage limitations on certificates more actively.
Previously we would enforce it for TLS1.2 protocol, now we enforce it
even when TLS1.3 is negotiated, or on client certificates as well. When
an inappropriate for TLS1.3 certificate is seen on the credentials
structure GnuTLS will disable TLS1.3 support for that session (#690).
libgnutls: enforce the equality of the two signature parameters fields
in a certificate. We were already enforcing the signature algorithm,
but there was a bug in parameter checking code.
(* Security fix *)
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/hwdata-0.321-noarch-1.txz: Upgraded.
a/kernel-generic-4.19.27-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.27-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.27-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.27-x86-1.txz: Upgraded.
k/kernel-source-4.19.27-noarch-1.txz: Upgraded.
l/M2Crypto-0.32.0-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_32-x86_64-1.txz: Upgraded.
n/dovecot-2.3.5-x86_64-1.txz: Upgraded.
x/xdm-1.1.11-x86_64-9.txz: Rebuilt.
Reverted to xdm-1.1.11, as the new release after 7 years has some issues.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/kernel-firmware-20190212_28f5f7d-noarch-1.txz: Upgraded.
a/kernel-generic-4.19.21-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.21-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.21-x86_64-1.txz: Upgraded.
ap/lxc-2.0.9_d3a03247-x86_64-1.txz: Upgraded.
This update fixes a security issue where a malicious privileged container
could overwrite the host binary and thus gain root-level code execution on
the host. As the LXC project considers privileged containers to be unsafe
no CVE has been assigned for this issue for LXC. To prevent this attack,
LXC has been patched to create a temporary copy of the calling binary
itself when it starts or attaches to containers. To do this LXC creates an
anonymous, in-memory file using the memfd_create() system call and copies
itself into the temporary in-memory file, which is then sealed to prevent
further modifications. LXC then executes this sealed, in-memory file
instead of the original on-disk binary.
For more information, see:
https://seclists.org/oss-sec/2019/q1/119
(* Security fix *)
d/kernel-headers-4.19.21-x86-1.txz: Upgraded.
k/kernel-source-4.19.21-noarch-1.txz: Upgraded.
l/libbluray-1.1.0-x86_64-1.txz: Upgraded.
l/libcap-2.26-x86_64-2.txz: Rebuilt.
Don't ship static library.
l/xapian-core-1.4.10-x86_64-1.txz: Upgraded.
n/gnupg2-2.2.13-x86_64-1.txz: Upgraded.
n/irssi-1.2.0-x86_64-1.txz: Upgraded.
n/libassuan-2.5.3-x86_64-1.txz: Upgraded.
x/bitmap-1.0.9-x86_64-1.txz: Upgraded.
x/libXau-1.0.9-x86_64-1.txz: Upgraded.
x/pixman-0.38.0-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/hwdata-0.320-noarch-1.txz: Upgraded.
a/kernel-generic-4.19.20-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.20-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.20-x86_64-1.txz: Upgraded.
a/mcelog-162-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.20-x86-1.txz: Upgraded.
d/opencl-headers-2.2-noarch-2.txz: Rebuilt.
Don't trigger "#pragma message" in cl_version.h when falling back on a
default version of OpenCL to target. Applications such as ffmpeg detect
this as an error and fail to compile.
k/kernel-source-4.19.20-noarch-1.txz: Upgraded.
l/ffmpeg-3.4.5-x86_64-2.txz: Rebuilt.
Recompiled against libvpx-1.8.0.
Reenabled libsmbclient support.
l/gst-plugins-good-1.14.4-x86_64-2.txz: Rebuilt.
Recompiled against libvpx-1.8.0.
l/libvpx-1.8.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
n/curl-7.64.0-x86_64-1.txz: Upgraded.
This release fixes the following security issues:
NTLM type-2 out-of-bounds buffer read.
NTLMv2 type-3 header stack buffer overflow.
SMTP end-of-response out-of-bounds read.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16890https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3822https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3823
(* Security fix *)
n/samba-4.9.4-x86_64-2.txz: Rebuilt.
Added time.h to libsmbclient.h to fix ffmpeg compatibility.
Thanks to USUARIONUEVO.
xap/xine-lib-1.2.9-x86_64-4.txz: Rebuilt.
Recompiled against libvpx-1.8.0.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/kernel-generic-4.19.17-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.17-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.17-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.17-x86-1.txz: Upgraded.
d/scons-3.0.4-x86_64-1.txz: Upgraded.
d/vala-0.42.5-x86_64-1.txz: Upgraded.
k/kernel-source-4.19.17-noarch-1.txz: Upgraded.
n/httpd-2.4.38-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
mod_session: mod_session_cookie does not respect expiry time allowing
sessions to be reused. [Hank Ibell]
mod_http2: fixes a DoS attack vector. By sending slow request bodies
to resources not consuming them, httpd cleanup code occupies a server
thread unnecessarily. This was changed to an immediate stream reset
which discards all stream state and incoming data. [Stefan Eissing]
mod_ssl: Fix infinite loop triggered by a client-initiated
renegotiation in TLSv1.2 (or earlier) with OpenSSL 1.1.1 and
later. PR 63052. [Joe Orton]
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17199https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17189https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0190
(* Security fix *)
x/libdrm-2.4.97-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
ap/qpdf-8.3.0-x86_64-1.txz: Upgraded.
l/argon2-20171227-x86_64-1.txz: Added.
This is a new dependency for the PHP package.
n/libmbim-1.18.0-x86_64-1.txz: Upgraded.
n/libqmi-1.22.0-x86_64-1.txz: Upgraded.
n/php-7.2.14-x86_64-1.txz: Upgraded.
Use --with-password-argon2. PHP now requires the new argon2 package.
a/kernel-generic-4.19.13-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.13-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.13-x86_64-1.txz: Upgraded.
d/doxygen-1.8.15-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.13-x86-1.txz: Upgraded.
k/kernel-source-4.19.13-noarch-1.txz: Upgraded.
FRAMEBUFFER_CONSOLE_DEFERRED_TAKEOVER y -> n
l/libsecret-0.18.7-x86_64-1.txz: Upgraded.
n/wpa_supplicant-2.6-x86_64-6.txz: Upgraded.
It seems we're not the only ones with broken WPA2-Enterprise support
with wpa_supplicant-2.7, so we'll fix it the same way as everyone else -
by reverting to wpa_supplicant-2.6 for now.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/wpa_supplicant-2.7-x86_64-2.txz: Upgraded.
Applied a patch from Gentoo to allow building CONFIG_IEEE80211X=y without
the experimental CONFIG_FILS=y option.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/coreutils-8.30-x86_64-3.txz: Rebuilt.
Support tmux terms in DIR_COLORS. Thanks to qunying.
a/grep-3.3-x86_64-1.txz: Upgraded.
a/kernel-generic-4.19.12-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.12-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.12-x86_64-1.txz: Upgraded.
a/sed-4.7-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.12-x86-1.txz: Upgraded.
d/rust-1.31.1-x86_64-1.txz: Upgraded.
k/kernel-source-4.19.12-noarch-1.txz: Upgraded.
l/graphite2-1.3.13-x86_64-1.txz: Upgraded.
l/harfbuzz-2.3.0-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_19-x86_64-1.txz: Upgraded.
l/lmdb-0.9.23-x86_64-1.txz: Upgraded.
l/v4l-utils-1.16.3-x86_64-1.txz: Upgraded.
n/netatalk-3.1.12-x86_64-1.txz: Upgraded.
Netatalk before 3.1.12 is vulnerable to an out of bounds write in
dsi_opensess.c. This is due to lack of bounds checking on attacker
controlled data. A remote unauthenticated attacker can leverage
this vulnerability to achieve arbitrary code execution.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1160
(* Security fix *)
n/openldap-client-2.4.47-x86_64-1.txz: Upgraded.
n/samba-4.9.4-x86_64-1.txz: Upgraded.
x/intel-vaapi-driver-2.3.0-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/kernel-generic-4.19.7-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.7-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.7-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.7-x86-1.txz: Upgraded.
k/kernel-source-4.19.7-noarch-1.txz: Upgraded.
n/gnutls-3.6.5-x86_64-1.txz: Upgraded.
This update fixes a security issue:
Bleichenbacher-like side channel leakage in PKCS#1 1.5 verification and
padding oracle verification.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16868
(* Security fix *)
n/nettle-3.4.1-x86_64-1.txz: Upgraded.
This update fixes a security issue:
A Bleichenbacher type side-channel based padding oracle attack was found
in the way nettle handles endian conversion of RSA decrypted PKCS#1 v1.5
data. An attacker who is able to run a process on the same physical core
as the victim process, could use this flaw to extract plaintext or in some
cases downgrade any TLS connections to a vulnerable server.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16869
(* Security fix *)
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/elilo-3.16-x86_64-9.txz: Rebuilt.
eliloconfig: don't assume that mount output lists the / partition first.
a/f2fs-tools-1.12.0-x86_64-1.txz: Added.
a/kernel-generic-4.19.5-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.5-x86_64-1.txz: Upgraded.
CRYPTO_CRC32 m -> y
F2FS_FS m -> y
a/kernel-modules-4.19.5-x86_64-1.txz: Upgraded.
a/sysvinit-scripts-2.1-noarch-22.txz: Rebuilt.
rc.S: if we're using F2FS for the root filesystem, don't try to check it as
fsck.f2fs throws an error on trying to check a read-only filesystem.
d/clisp-2.49_20181112_df3b9f6fd-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.5-x86-1.txz: Upgraded.
k/kernel-source-4.19.5-noarch-1.txz: Upgraded.
l/graphite2-1.3.12-x86_64-1.txz: Added.
Required by harfbuzz in order to use it as a system library for TeXlive.
l/harfbuzz-2.1.3-x86_64-1.txz: Upgraded.
Requires graphite2-1.3.12.
t/texlive-2018.180822-x86_64-4.txz: Rebuilt.
Use system harfbuzz, not the bundled version.
isolinux/initrd.img: Rebuilt.
Activate LVM volumes at boot, not only when setup is run.
Make /etc/mtab a symlink to /proc/mounts on the installer.
On a freshly installed system, make /etc/mtab a symlink to /proc/mounts.
Include f2fs-tools on the installer.
Support installing on F2FS partitions.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/kernel-generic-4.19.3-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.3-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.3-x86_64-1.txz: Upgraded.
a/openssl-solibs-1.1.1a-x86_64-1.txz: Upgraded.
a/sysvinit-scripts-2.1-noarch-21.txz: Rebuilt.
rc.S: Don't run rc.fuse - udev takes care of the FUSE module and filesystem.
rc.S: Support replacing the /etc/mtab file with a symlink to /proc/mounts.
rc.6: Show more information when unmounting filesystems at shutdown.
ap/ghostscript-9.26-x86_64-1.txz: Upgraded.
ap/mariadb-10.3.11-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues.
For more information, see:
https://mariadb.com/kb/en/library/mariadb-10311-release-notes/https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3282
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2016-9843
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3174
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3143
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3156
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3251
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3185
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3277
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3162
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3173
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3200
https://cve.mitre.org/cgi-bin/cvename.cgi?name= CVE-2018-3284
(* Security fix *)
d/cmake-3.13.0-x86_64-1.txz: Upgraded.
d/git-2.19.2-x86_64-1.txz: Upgraded.
d/kernel-headers-4.14.63-x86-1.txz: Upgraded.
d/kernel-headers-4.19.3-x86-1.txz: Upgraded.
d/vala-0.42.3-x86_64-1.txz: Added.
k/kernel-source-4.19.3-noarch-1.txz: Upgraded.
l/adwaita-icon-theme-3.30.0-noarch-1.txz: Upgraded.
l/at-spi2-atk-2.30.0-x86_64-1.txz: Upgraded.
l/at-spi2-core-2.30.0-x86_64-1.txz: Upgraded.
l/atk-2.30.0-x86_64-1.txz: Upgraded.
l/atkmm-2.28.0-x86_64-1.txz: Upgraded.
l/dconf-0.28.0-x86_64-1.txz: Upgraded.
dconf and dconf-editor require Vala; the alternative would be to try to
stick with the old versions forever, and we don't want to do that.
l/dconf-editor-3.30.2-x86_64-1.txz: Upgraded.
l/gcr-3.28.0-x86_64-3.txz: Rebuilt.
Recompiled to add Vala bindings.
l/gdk-pixbuf2-2.38.0-x86_64-1.txz: Upgraded.
l/gexiv2-0.10.9-x86_64-1.txz: Upgraded.
l/glib-networking-2.58.0-x86_64-1.txz: Upgraded.
l/glib2-2.58.1-x86_64-1.txz: Upgraded.
l/glibmm-2.58.0-x86_64-1.txz: Upgraded.
l/gobject-introspection-1.58.0-x86_64-1.txz: Upgraded.
l/gtk+3-3.24.1-x86_64-1.txz: Upgraded.
l/gtkmm3-3.24.0-x86_64-1.txz: Upgraded.
l/gvfs-1.38.1-x86_64-1.txz: Upgraded.
l/libcap-2.26-x86_64-1.txz: Upgraded.
l/libpsl-0.20.1-x86_64-1.txz: Added.
Required by libsoup.
l/libsoup-2.64.2-x86_64-1.txz: Upgraded.
l/pangomm-2.42.0-x86_64-1.txz: Upgraded.
l/pygobject3-3.30.2-x86_64-1.txz: Upgraded.
l/vte-0.54.2-x86_64-1.txz: Upgraded.
n/openssl-1.1.1a-x86_64-1.txz: Upgraded.
This update fixes timing side channel attacks on DSA and ECDSA signature
generation that could allow an attacker to recover the private key.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0734https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0735
(* Security fix *)
x/pixman-0.36.0-x86_64-1.txz: Upgraded.
xfce/xfce4-terminal-0.8.7.4-x86_64-2.txz: Rebuilt.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
l/js185-1.0.0-x86_64-2.txz: Removed.
l/libwebp-1.0.1-x86_64-1.txz: Upgraded.
l/mozjs52-52.9.0esr-x86_64-1.txz: Added.
Required by the new version of polkit.
l/polkit-0.115-x86_64-1.txz: Upgraded.
Thanks to Robby Workman.
a/aaa_terminfo-6.1_20181110-x86_64-1.txz: Upgraded.
a/kernel-generic-4.19.2-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.2-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.2-x86_64-1.txz: Upgraded.
ap/vim-8.1.0526-x86_64-1.txz: Upgraded.
Don't package .desktop files for the base vim package.
Move the terminal-based vim.desktop (menu clutter) into the docs directory.
d/kernel-headers-4.19.2-x86-1.txz: Upgraded.
k/kernel-source-4.19.2-noarch-1.txz: Upgraded.
l/librsvg-2.44.9-x86_64-1.txz: Upgraded.
l/ncurses-6.1_20181110-x86_64-1.txz: Upgraded.
The new kernel fixes the artifact on the virtual console, so the original
linux terminal definition has been restored.
xap/vim-gvim-8.1.0526-x86_64-1.txz: Upgraded.
Let vim install its own icon and gvim.desktop files. Thanks to drumz.
Don't include the terminal-based vim.desktop file.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/btrfs-progs-v4.19-x86_64-1.txz: Upgraded.
a/haveged-1.9.4-x86_64-2.txz: Rebuilt.
rc.haveged: eliminate startup noise.
a/kernel-generic-4.19.1-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.1-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.1-x86_64-1.txz: Upgraded.
d/cmake-3.12.4-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.1-x86-1.txz: Upgraded.
k/kernel-source-4.19.1-noarch-1.txz: Upgraded.
Temporarily build in speakup drivers until the modular ones are fixed.
Thanks to Didier Spaier.
SPEAKUP m -> y
SPEAKUP_SYNTH_ACNTPC m -> y
SPEAKUP_SYNTH_ACNTSA m -> y
SPEAKUP_SYNTH_APOLLO m -> y
SPEAKUP_SYNTH_AUDPTR m -> y
SPEAKUP_SYNTH_BNS m -> y
SPEAKUP_SYNTH_DECEXT m -> y
SPEAKUP_SYNTH_DECTLK m -> y
SPEAKUP_SYNTH_DTLK m -> y
SPEAKUP_SYNTH_DUMMY m -> y
SPEAKUP_SYNTH_KEYPC m -> y
SPEAKUP_SYNTH_LTLK m -> y
SPEAKUP_SYNTH_SOFT m -> y
SPEAKUP_SYNTH_SPKOUT m -> y
SPEAKUP_SYNTH_TXPRT m -> y
l/alsa-lib-1.1.7-x86_64-2.txz: Rebuilt.
Fixed PCM interval. Thanks to aaditya.
l/xapian-core-1.4.9-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/kernel-generic-4.19.0-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.0-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.0-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.0-x86-1.txz: Upgraded.
d/parallel-20181022-noarch-1.txz: Upgraded.
k/kernel-source-4.19.0-noarch-1.txz: Upgraded.
[581 lines of diffconfig output omitted here]
l/alsa-plugins-1.1.7-x86_64-3.txz: Rebuilt.
Reverted two patches that have been reported to cause crashes with USB audio
devices. Thanks to Jean-Philippe Guillemin.
l/harfbuzz-1.9.0-x86_64-2.txz: Rebuilt.
Reverted (for now) to harfbuzz-1.9.0 to fix build failures with texlive, php,
and calligra caused by API changes. Thanks to nobodino.
l/libpng-1.6.35-x86_64-1.txz: Upgraded.
n/samba-4.9.1-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-60.3.0esr-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
(* Security fix *)
extra/pure-alsa-system/alsa-plugins-1.1.7-x86_64-3_alsa.txz: Rebuilt.
Reverted two patches that have been reported to cause crashes with USB audio
devices. Thanks to Jean-Philippe Guillemin.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/kernel-generic-4.14.77-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.77-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.77-x86_64-1.txz: Upgraded.
d/kernel-headers-4.14.77-x86-1.txz: Upgraded.
d/ruby-2.5.3-x86_64-1.txz: Upgraded.
This update fixes bugs and two security issues:
OpenSSL::X509::Name equality check does not work correctly.
Tainted flags are not propagated in Array#pack and String#unpack with
some directives.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16395https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16396
(* Security fix *)
k/kernel-source-4.14.77-noarch-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/kernel-firmware-20181008_c6b6265-noarch-1.txz: Upgraded.
a/kernel-generic-4.14.75-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.75-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.75-x86_64-1.txz: Upgraded.
d/git-2.19.1-x86_64-1.txz: Upgraded.
Submodules' "URL"s come from the untrusted .gitmodules file, but we
blindly gave it to "git clone" to clone submodules when "git clone
--recurse-submodules" was used to clone a project that has such a
submodule. The code has been hardened to reject such malformed URLs
(e.g. one that begins with a dash). Credit for finding and fixing this
vulnerability goes to joernchen and Jeff King, respectively.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17456
(* Security fix *)
d/kernel-headers-4.14.75-x86-1.txz: Upgraded.
d/make-4.2.1-x86_64-4.txz: Rebuilt.
Use a non-blocking read with pselect to avoid hangs.
Thanks to Linux.tar.gz and David Spencer.
d/subversion-1.10.3-x86_64-1.txz: Upgraded.
k/kernel-source-4.14.75-noarch-1.txz: Upgraded.
Config changes since 4.14.74:
FB_HYPERV n -> m
Thanks to walecha.
l/librsvg-2.44.7-x86_64-1.txz: Upgraded.
l/python-pillow-5.3.0-x86_64-1.txz: Upgraded.
n/nghttp2-1.34.0-x86_64-1.txz: Upgraded.
x/libSM-1.2.3-x86_64-1.txz: Upgraded.
x/libX11-1.6.7-x86_64-1.txz: Upgraded.
x/libdrm-2.4.95-x86_64-1.txz: Upgraded.
x/libxcb-1.13.1-x86_64-1.txz: Upgraded.
x/vulkan-sdk-1.1.85.0-x86_64-1.txz: Upgraded.
Thanks to dugan.
xap/gnuplot-5.2.5-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/eudev-3.2.5-x86_64-4.txz: Upgraded.
More bugs, unreplaced macros, and systemd-specific stuff have been found in
the eudev-3.2.6 release. Since there don't seem to be any improvements that
would merit closely following the bleeding edge on this one, we'll revert
back to eudev-3.2.5 which worked fine.
a/kernel-firmware-20181001_7c81f23-noarch-1.txz: Upgraded.
ap/at-3.1.23-x86_64-1.txz: Upgraded.
ap/hplip-3.18.9-x86_64-1.txz: Upgraded.
d/mercurial-4.7.2-x86_64-1.txz: Upgraded.
x/libpthread-stubs-0.4-x86_64-3.txz: Rebuilt.
Rebuilt since this should not be "noarch".
xap/mozilla-firefox-60.2.2esr-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.htmlhttps://www.mozilla.org/en-US/security/advisories/mfsa2018-24/https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12387
(* Security fix *)
xap/mozilla-thunderbird-60.2.1-x86_64-1.txz: Upgraded.
This is a bugfix release. For more information, see:
https://www.mozilla.org/en-US/thunderbird/60.2.1/releasenotes/
xfce/Thunar-1.8.2-x86_64-1.txz: Upgraded.
a/eudev-3.2.6-x86_64-1.txz: Upgraded.
a/glibc-solibs-2.28-x86_64-2.txz: Upgraded.
a/grub-2.02-x86_64-3.txz: Rebuilt.
Patched to fix compatibility with recent xfsprogs. Thanks to Markus Wiesner.
a/kernel-generic-4.14.71-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.71-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.71-x86_64-1.txz: Upgraded.
ap/opus-tools-0.2-x86_64-1.txz: Upgraded.
ap/sqlite-3.25.1-x86_64-1.txz: Upgraded.
d/icecream-20180905_cdc6ff8-x86_64-1.txz: Upgraded.
d/kernel-headers-4.14.71-x86-1.txz: Upgraded.
d/llvm-7.0.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
k/kernel-source-4.14.71-noarch-1.txz: Upgraded.
l/ffmpeg-3.4.4-x86_64-2.txz: Rebuilt.
Don't try to link with Samba since the latest version is not compatible.
l/glibc-2.28-x86_64-2.txz: Upgraded.
All packages have been patched where needed for glibc-2.28 and compile
tested here. Thanks to nobodino for the help.
l/glibc-i18n-2.28-x86_64-2.txz: Upgraded.
l/glibc-profile-2.28-x86_64-2.txz: Upgraded.
l/gst-plugins-base-1.14.3-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.14.3-x86_64-1.txz: Upgraded.
l/gst-plugins-libav-1.14.3-x86_64-1.txz: Upgraded.
l/gstreamer-1.14.3-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_11-x86_64-1.txz: Upgraded.
l/libopusenc-0.2-x86_64-1.txz: Added.
l/librsvg-2.44.3-x86_64-1.txz: Upgraded.
l/opus-1.3_rc2-x86_64-1.txz: Upgraded.
l/opusfile-0.11-x86_64-1.txz: Upgraded.
l/soprano-2.9.4-x86_64-3.txz: Rebuilt.
Recompiled to drop virtuoso dependency.
l/virtuoso-ose-6.1.8-x86_64-9.txz: Removed.
Even KDE4 has migrated away from actually using this for anything. The last
thing in Slackware that was dependent on it was Soprano, which has been
recompiled to no longer use it.
n/postfix-3.3.1-x86_64-2.txz: Rebuilt.
Recompiled so that it quits whining about OpenSSL. Thanks to shastah.
x/mesa-18.2.1-x86_64-1.txz: Upgraded.
Compiled against llvm-7.0.0.
x/xf86-video-vmware-13.3.0-x86_64-2.txz: Rebuilt.
Recompiled against llvm-7.0.0.
x/xterm-336-x86_64-1.txz: Upgraded.
extra/pure-alsa-system/ffmpeg-3.4.4-x86_64-2_alsa.txz: Rebuilt.
Don't try to link with Samba since the latest version is not compatible.
extra/pure-alsa-system/gst-plugins-good-1.14.3-x86_64-1_alsa.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/kernel-firmware-20180913_44d4fca-noarch-1.txz: Upgraded.
a/kernel-generic-4.14.70-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.70-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.70-x86_64-1.txz: Upgraded.
ap/hplip-3.18.7-x86_64-4.txz: Rebuilt.
Applied fixed patch - this has a better chance of working now. I've checked
and hpcups no longer links to libImageProcessor. Which, by the way, the
previous build dumped onto my main system (not even in "make install"),
but not into the package itself. I no longer own an HP printer and will
never buy another one, so if there are any remaining problems please report.
Thanks to Matteo Bernardini.
d/kernel-headers-4.14.70-x86-1.txz: Upgraded.
k/kernel-source-4.14.70-noarch-1.txz: Upgraded.
Config changes since 4.14.69:
CLEANCACHE n -> y
CMA n -> y
MEMORY_FAILURE n -> y
NUMA n -> y
X86_CHECK_BIOS_CORRUPTION n -> y
Z3FOLD m -> y
ZBUD m -> y
ZSMALLOC m -> y
+ACPI_APEI_MEMORY_FAILURE y
+ACPI_NUMA y
+AMD_NUMA y
+CMA_AREAS 7
+CMA_DEBUG n
+CMA_DEBUGFS n
+DMA_CMA n
+HWPOISON_INJECT m
+NEED_MULTIPLE_NODES y
+NODES_SHIFT 6
+NODES_SPAN_OTHER_NODES y
+NUMA_BALANCING n
+NUMA_EMU n
+RAS_CEC n
+USE_PERCPU_NUMA_NODE_ID y
+X86_64_ACPI_NUMA y
+X86_BOOTPARAM_MEMORY_CORRUPTION_CHECK n
n/NetworkManager-1.14.0-x86_64-1.txz: Upgraded.
Added new options: --enable-json-validation --enable-ovs
xap/network-manager-applet-1.8.18-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
pasture/php-5.6.38-x86_64-1.txz: Upgraded.
One security bug has been fixed in this release:
Apache2: XSS due to the header Transfer-Encoding: chunked
For more information, see:
https://php.net/ChangeLog-5.php#5.6.38
(* Security fix *)
usb-and-pxe-installers/usbboot.img: Rebuilt.
ap/hplip-3.18.7-x86_64-3.txz: Rebuilt.
Throw away the broken and ill-advised libImageProcessor closed-source blob.
Thanks to Matteo Bernardini.
ap/zsh-5.6.2-x86_64-1.txz: Upgraded.
d/rust-1.29.0-x86_64-1.txz: Upgraded.
l/lmdb-0.9.22-x86_64-1.txz: Added.
This is a new dependency of Samba.
n/php-7.2.10-x86_64-1.txz: Upgraded.
This is a security release which also contains several minor bug fixes.
For more information, see:
https://php.net/ChangeLog-7.php#7.2.10
(* Security fix *)
n/samba-4.9.0-x86_64-1.txz: Upgraded.
x/xf86-video-amdgpu-18.1.0-x86_64-1.txz: Upgraded.
x/xf86-video-ati-18.1.0-x86_64-1.txz: Upgraded.
a/sysvinit-scripts-2.1-noarch-20.txz: Rebuilt.
rc.6: it was reported by birdboy that JFS is not properly unmounted unless
the order of unmounting local filesystems followed by remounting the root
filesystem read-only is inverted. I tried that, and although it did get rid
of a "/ filesystem is busy" error during shutdown, the JFS / filesystem was
still checked at boot (and found to be clean). I believe that the existing
order of unmounting non-root filesystems followed by remounting the root
filesystem as read-only is the correct order, and found that putting
another sync between these also gets rid of the error on shutdown, so I've
done that. When using JFS as the root filesystem there's still another
similar error message that's generated earlier in the boot, though. I'm
unable to find any way to shut down a JFS root partition in a way that
leaves it clean enough that fsck will not check it at boot, but it is always
found to be clean so this should only be cosmetic. I recall this behavior of
JFS going all the way back to when it was first added to the kernel. If
anyone has a better fix, I'll take a look at it, but in my opinion it's not
really anything to worry about.
ap/ghostscript-9.25-x86_64-1.txz: Upgraded.
This release fixes problems with argument handling, some unintended
results of the security fixes to the SAFER file access restrictions
(specifically accessing ICC profile files), and some additional
security issues over the recent 9.24 release.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16509
(* Security fix *)
ap/squashfs-tools-20180612_6e242dc-x86_64-1.txz: Upgraded.
Linked against libzstd.so.1. Thanks to alienBOB.
ap/sudo-1.8.25p1-x86_64-1.txz: Upgraded.
d/binutils-2.31.1-x86_64-4.txz: Rebuilt.
Since baldzhang has pointed out a valid use case for windres on Linux,
we are restoring the "Windows only" utilities, as none of them are
very large and there may be valid uses for the other ones as well.
l/freetype-2.9.1-x86_64-2.txz: Rebuilt.
Patched to build properly if windres is present on the machine.
l/sg3_utils-1.44-x86_64-1.txz: Upgraded.
l/zstd-1.3.5-x86_64-1.txz: Added.
Thanks to alienBOB.
xfce/tumbler-0.2.3-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
Use the ter-114v terminus font. It has been reported that the font we were
using (ter-v14v) restricts the available console colors from 16 to 8 due
to needing an extra bit for the higher number of available glyphs (though
in testing here I couldn't see any difference). The new font covers
ISO8859-1, ISO8859-15, and Windows-1252 codepages. I'm still not sure it's
the best choice, so additional input is welcomed.
Thanks to bormant.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Use the ter-114v terminus font.
a/kernel-generic-4.14.69-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.69-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.69-x86_64-1.txz: Upgraded.
a/xfsprogs-4.18.0-x86_64-1.txz: Upgraded.
ap/nano-3.0-x86_64-1.txz: Upgraded.
d/cmake-3.12.2-x86_64-1.txz: Upgraded.
d/kernel-headers-4.14.69-x86-1.txz: Upgraded.
k/kernel-source-4.14.69-noarch-1.txz: Upgraded.
Config changes since 4.14.68:
CRYPTO_LZO m -> y
FRONTSWAP n -> y
ZBUD n -> m
ZPOOL m -> y
+ZSWAP y
Thanks to Darth Vader.
l/glib2-2.56.2-x86_64-2.txz: Rebuilt.
Make links in the documentation directory to all of the API documentation
found under /usr/share/gtk-doc/html. Thanks to Didier Spaier.
l/libarchive-3.3.3-x86_64-1.txz: Upgraded.
n/links-2.17-x86_64-1.txz: Upgraded.
xfce/tumbler-0.2.2-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/acpid-2.0.30-x86_64-1.txz: Upgraded.
a/etc-15.0-x86_64-9.txz: Rebuilt.
Added support for /etc/ld.so.conf.d/. Thanks to Qury.
a/kernel-firmware-20180904_85c5d90-noarch-1.txz: Upgraded.
a/kernel-generic-4.14.68-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.68-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.68-x86_64-1.txz: Upgraded.
a/pkgtools-15.0-noarch-22.txz: Rebuilt.
installpkg: prevent noise from the "stray cat" if tar hands it a broken
pipe. Thanks to ivandi.
Also (in the comments) provide a possibly better but untested solution.
Thanks to SeB.
a/sysvinit-2.90-x86_64-2.txz: Rebuilt.
sysvinit-2.90 added an undocumented feature that tries to spawn agetty
if it sees console= in the kernel command line. Avoiding the debate about
whether this code belongs in init at all, at least such a change should
be documented, and probably made opt-in. This patch disables the new
behavior unless "sysvinit_agetty" is also seen in the kernel command line.
It seems like this might have been something added for Hurd, and it might
be wise to stick to what we've got rather than following upstream on this
particular package. If anyone notices any other odd behavior, please let
me know. Thanks to shastah.
a/sysvinit-scripts-2.1-noarch-19.txz: Rebuilt.
When checking for intel_pstate, direct the stderr to /dev/null in case
the file doesn't exist in /sys. Thanks to ivandi.
Allow forcing an option by editing /etc/default/cpufreq.
ap/cups-filters-1.21.2-x86_64-1.txz: Upgraded.
ap/ghostscript-9.24-x86_64-1.txz: Upgraded.
Patched multiple -dSAFER sandbox bypass vulnerabilities.
Thanks to Tavis Ormandy.
For more information, see:
https://www.ghostscript.com/doc/9.24/News.htmhttps://www.kb.cert.org/vuls/id/332928
(* Security fix *)
ap/sudo-1.8.25-x86_64-1.txz: Upgraded.
d/binutils-2.31.1-x86_64-2.txz: Rebuilt.
elf.c (_bfd_elf_get_symbol_version_string): Return _("<corrupt>") for
corrupt symbol version info.
elflink.c (bfd_elf_record_link_assignment): Always clear h->verinfo.verdef
when overriding a dynamic definition.
Thanks to Michael Short for pointing out the upstream patches.
d/ccache-3.4.3-x86_64-1.txz: Upgraded.
d/kernel-headers-4.14.68-x86-1.txz: Upgraded.
d/llvm-6.0.1-x86_64-2.txz: Rebuilt.
Recompiled with -DCLANG_BUILD_SHARED_LIBS=ON to fix issues when multiple
OpenCL drivers are installed. Thanks to Heinz Wiesinger.
d/mercurial-4.7.1-x86_64-1.txz: Upgraded.
k/kernel-source-4.14.68-noarch-1.txz: Upgraded.
l/mozilla-nss-3.39-x86_64-1.txz: Upgraded.
n/curl-7.61.1-x86_64-1.txz: Upgraded.
This update fixes an NTLM password overflow via integer overflow.
For more information, see:
https://curl.haxx.se/docs/CVE-2018-14618.htmlhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14618
(* Security fix *)
n/gnupg2-2.2.10-x86_64-1.txz: Upgraded.
n/libtirpc-1.1.4-x86_64-1.txz: Upgraded.
n/netatalk-3.1.11-x86_64-2.txz: Rebuilt.
rc.atalk: fixed errors in status output. Thanks to marav.
n/nghttp2-1.33.0-x86_64-1.txz: Upgraded.
n/p11-kit-0.23.14-x86_64-1.txz: Upgraded.
n/stunnel-5.49-x86_64-1.txz: Upgraded.
x/libdrm-2.4.94-x86_64-1.txz: Upgraded.
x/xf86-video-ati-20180824_de88ea27-x86_64-1.txz: Upgraded.
xap/hexchat-2.14.2-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-60.2.0esr-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
(* Security fix *)
xap/xlockmore-5.56-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/findutils-4.6.0-x86_64-1.txz: Upgraded.
a/kernel-firmware-20180821_1d17c18-noarch-1.txz: Upgraded.
a/kernel-generic-4.14.66-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.66-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.66-x86_64-1.txz: Upgraded.
ap/man-db-2.8.4-x86_64-2.txz: Rebuilt.
Rebuilt to get it on the slackpkg upgrade list since the previous texlive
package clobbered /usr/bin/man and we need to fix that.
d/kernel-headers-4.14.66-x86-1.txz: Upgraded.
k/kernel-source-4.14.66-noarch-1.txz: Upgraded.
l/glib2-2.56.2-x86_64-1.txz: Upgraded.
t/texlive-2018.180822-x86_64-1.txz: Upgraded.
Added some patches that I'd dropped - sorry, my bad.
Don't clobber /usr/bin/man.
Thanks to Johannes Schoepfer.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/e2fsprogs-1.44.4-x86_64-1.txz: Upgraded.
a/kernel-generic-4.14.65-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.65-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.65-x86_64-1.txz: Upgraded.
ap/jove-4.16.0.73-x86_64-6.txz: Rebuilt.
Fixed getline() namespace collision patch.
ap/sudo-1.8.24-x86_64-1.txz: Upgraded.
d/icecream-20180808-x86_64-1.txz: Upgraded.
Use sources from git, which avoids timeouts and hangs that have been
observed with version 1.1, and adds additional support for clang.
d/kernel-headers-4.14.65-x86-1.txz: Upgraded.
k/kernel-source-4.14.65-noarch-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/kernel-generic-4.14.62-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.62-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.62-x86_64-1.txz: Upgraded.
ap/pamixer-1.3.1-x86_64-7.txz: Rebuilt.
Recompiled against boost-1.68.0.
d/cmake-3.12.1-x86_64-1.txz: Upgraded.
d/distcc-3.3-x86_64-3.txz: Rebuilt.
Install masquerade symlinks in /usr/lib${LIBDIRSUFFIX}/distcc/.
d/kernel-headers-4.14.62-x86-1.txz: Upgraded.
k/kernel-source-4.14.62-noarch-1.txz: Upgraded.
kde/calligra-2.9.11-x86_64-24.txz: Rebuilt.
Recompiled against boost-1.68.0.
l/akonadi-1.13.0-x86_64-10.txz: Rebuilt.
Recompiled against boost-1.68.0.
l/boost-1.68.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/harfbuzz-1.8.7-x86_64-1.txz: Upgraded.
l/libgsf-1.14.44-x86_64-1.txz: Upgraded.
l/librsvg-2.42.6-x86_64-1.txz: Upgraded.
l/libsoup-2.62.3-x86_64-1.txz: Upgraded.
n/bind-9.12.2_P1-x86_64-1.txz: Upgraded.
Fixed a security issue where named could crash during recursive processing
of DNAME records when "deny-answer-aliases" was in use resulting in a
denial of service. Note that "deny-answer-aliases" is rarely used.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5740
(* Security fix *)
xap/audacious-3.10-x86_64-1.txz: Upgraded.
xap/audacious-plugins-3.10-x86_64-1.txz: Upgraded.
extra/pure-alsa-system/audacious-plugins-3.10-x86_64-1_alsa.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Hey folks, my first order of business here needs to be a huge thank you to
everyone who has donated at https://paypal.me/volkerdi to help keep this
project going. As most of you are already aware by now, the financal situation
here at Slackware HQ has not been great for many years, including not getting
any pay for the last two years and forcing me (and my family) to live very
frugally while I continued to work on the project hoping I'd figure out a way
to actually monitize it by the time that Slackware 15.0 is ready for release.
I'm not trying to cast any blame regarding the situation. Really, I can only
blame myself for not trying to build my own ship years ago when things began
to not really work out. I'm still looking into sustainable funding options
such as Patreon or Liberapay (or perhaps both), and I'm open to other ideas.
I'm no longer in immediate danger of going broke, and I'm no longer
entertaining the notion of joining my friends at the local potato chip factory
in order to pay my bills. :) My family is grateful and humbled by the support
we've received. Hope we'll be able to keep this project going for a long time.
Also, I realize that the website lacks updates and needs attention and I will
need to find some time to devote to that. I've never been much of a website
designer, and the slackware.com site is basically left over from work done by
former Walnut Creek / BSDi employees. I've never seen able to make much sense
of the SQL backend. The interface to edit and post articles is clunky (and
I'm not sure the PHP for that even works any more). When I've posted articles
in recent years, I've done so by editing the main page already processed from
PHP into HTML, which is pretty darn messy as I'm sure you can imagine. I tend
to prioritize the distribution itself over other demands on my time - that's
clearly a lot to do with how things ended up the way they did.
So, I guess that's the report for now. Lots more work to do and not enough
time to do it in... that part I don't see changing moving forward. :)
Thanks very much again. I'll do my best to keep you all posted.
- Pat
a/file-5.34-x86_64-1.txz: Upgraded.
a/kernel-firmware-20180727_b01151b-noarch-1.txz: Upgraded.
a/kernel-generic-4.14.58-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.58-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.58-x86_64-1.txz: Upgraded.
d/gcc-8.2.0-x86_64-1.txz: Upgraded.
d/gcc-brig-8.2.0-x86_64-1.txz: Upgraded.
d/gcc-g++-8.2.0-x86_64-1.txz: Upgraded.
d/gcc-gfortran-8.2.0-x86_64-1.txz: Upgraded.
d/gcc-gnat-8.2.0-x86_64-1.txz: Upgraded.
d/gcc-go-8.2.0-x86_64-1.txz: Upgraded.
d/gcc-objc-8.2.0-x86_64-1.txz: Upgraded.
d/kernel-headers-4.14.58-x86-1.txz: Upgraded.
d/libtool-2.4.6-x86_64-9.txz: Rebuilt.
Recompiled to update embedded GCC version number.
k/kernel-source-4.14.58-noarch-1.txz: Upgraded.
CRASH_DUMP n -> y
KEXEC n -> y
+KEXEC_JUMP y
+PROC_VMCORE y
l/babl-0.1.54-x86_64-1.txz: Upgraded.
l/gegl-0.4.6-x86_64-1.txz: Upgraded.
l/libart_lgpl-2.3.21-x86_64-2.txz: Removed.
This actually hasn't been needed by any Slackware package since koffice in
KDE3, and this particular version won't work with the Trinity Desktop
Environment, which is essentially a fork of KDE 3.5 updated to compile and
run with modern libraries and development tools. I can't see much point in
keeping it around. Thanks to _gin.
n/NetworkManager-1.12.2-x86_64-1.txz: Upgraded.
n/dhcpcd-7.0.7-x86_64-1.txz: Upgraded.
x/libinput-1.11.3-x86_64-1.txz: Upgraded.
extra/tigervnc/tigervnc-1.9.0-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/kernel-generic-4.14.57-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.57-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.57-x86_64-1.txz: Upgraded.
a/shadow-4.2.1-x86_64-5.txz: Rebuilt.
adduser: added "input" to additional user groups. Thanks to stormtracknole.
a/sysvinit-scripts-2.1-noarch-14.txz: Rebuilt.
Handle remote (NFS, etc.) mounts with spaces in the name. Thanks to upnort.
d/kernel-headers-4.14.57-x86-1.txz: Upgraded.
d/parallel-20180722-noarch-1.txz: Upgraded.
d/rust-1.27.2-x86_64-1.txz: Upgraded.
d/subversion-1.10.2-x86_64-1.txz: Upgraded.
k/kernel-source-4.14.57-noarch-1.txz: Upgraded.
l/libgphoto2-2.5.19-x86_64-1.txz: Upgraded.
l/libzip-1.5.1-x86_64-4.txz: Rebuilt.
Make sure that the API-CHANGES file is included in the package documentation.
x/xf86-video-r128-6.11.0-x86_64-1.txz: Upgraded.
x/xorg-server-1.20.0-x86_64-3.txz: Rebuilt.
Applied some patches that other distributions have been using for a while:
Fix glamor so that the return value from glamor_fds_from_pixmap matches
what's expected (thanks to Darth Vader for pointing out these patches).
Autobind secondary GPUs to the master as output sink / offload source. This
seems like a beneficial patch until/unless DEs start to handle this.
For nvidia cards, if they are GeForce 8 or newer use the modesetting driver
by default. Seems to be recommmended by upstream where they indicate that
fixes going into nouveau are primarily to target older cards for legacy
support and that the modesetting ddx is preferable for newer ones:
https://bugs.freedesktop.org/show_bug.cgi?id=94844
x/xorg-server-xephyr-1.20.0-x86_64-3.txz: Rebuilt.
x/xorg-server-xnest-1.20.0-x86_64-3.txz: Rebuilt.
x/xorg-server-xvfb-1.20.0-x86_64-3.txz: Rebuilt.
isolinux/initrd.img: Rebuilt.
Use ter-v14v.psf.gz as the consolefont. It supports more character sets, and
the larger font was causing wraparound on UEFI (at least on bare metal here).
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
ap/cups-filters-1.20.4-x86_64-2.txz: Rebuilt.
Recompiled against poppler-0.67.0.
kde/calligra-2.9.11-x86_64-23.txz: Rebuilt.
Recompiled against poppler-0.67.0.
l/ffmpeg-3.4.4-x86_64-1.txz: Upgraded.
l/gst-plugins-base-1.14.2-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.14.2-x86_64-1.txz: Upgraded.
l/gst-plugins-libav-1.14.2-x86_64-1.txz: Upgraded.
l/gstreamer-1.14.2-x86_64-1.txz: Upgraded.
l/poppler-0.67.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
n/php-7.2.8-x86_64-1.txz: Upgraded.
This is a security release which also contains several minor bug fixes.
(* Security fix *)
t/texlive-2018.180630-x86_64-2.txz: Rebuilt.
Recompiled against poppler-0.67.0.
xap/MPlayer-20180720-x86_64-1.txz: Upgraded.
xfce/tumbler-0.2.1-x86_64-5.txz: Rebuilt.
Recompiled against poppler-0.67.0.
extra/pure-alsa-system/MPlayer-20180720-x86_64-1_alsa.txz: Upgraded.
extra/pure-alsa-system/ffmpeg-3.4.4-x86_64-1_alsa.txz: Upgraded.
extra/pure-alsa-system/gst-plugins-good-1.14.2-x86_64-1_alsa.txz: Upgraded.
pasture/php-5.6.37-x86_64-1.txz: Upgraded.
Several security bugs have been fixed in this release, including:
Int Overflow lead to Heap OverFlow in exif_thumbnail_extract of exif.c
heap-buffer-overflow (READ of size 48) while reading exif data
(* Security fix *)
a/kernel-generic-4.14.55-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.55-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.55-x86_64-1.txz: Upgraded.
d/kernel-headers-4.14.55-x86-1.txz: Upgraded.
d/rust-1.27.1-x86_64-1.txz: Upgraded.
k/kernel-source-4.14.55-noarch-1.txz: Upgraded.
n/bind-9.13.2-x86_64-1.txz: Upgraded.
This update fixes security issues:
Fixed a bug where extraordinarily large zone transfers caused several
problems, with possible outcomes including corrupted journal files or
server exit due to assertion failure.
Don't permit recursive query service to unauthorized clients.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5738
(* Security fix *)
n/curl-7.61.0-x86_64-1.txz: Upgraded.
This update fixes a buffer overflow in SMTP send.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0500
(* Security fix *)
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/kernel-generic-4.14.54-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.54-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.54-x86_64-1.txz: Upgraded.
a/pkgtools-15.0-noarch-21.txz: Rebuilt.
Modify makepkg to make reproducible builds possible:
makepkg: sort symlinks in doinst.sh
makepkg: sort the filelist piped into tar
makepkg: add the -n flag to gzip to avoid embedding a timestamp
makepkg: support the SOURCE_DATE_EPOCH environment variable
Thanks to David Spencer.
d/kernel-headers-4.14.54-x86-1.txz: Upgraded.
k/kernel-source-4.14.54-noarch-1.txz: Upgraded.
IP_FIB_TRIE_STATS n -> y
NETWORK_PHY_TIMESTAMPING n -> y
NET_KEY_MIGRATE n -> y
NF_CONNTRACK_EVENTS n -> y
NF_CONNTRACK_TIMEOUT n -> y
NF_CONNTRACK_TIMESTAMP n -> y
TCP_MD5SIG n -> y
VLAN_8021Q_MVRP n -> y
XFRM_MIGRATE n -> y
+DP83640_PHY m
+MRP m
Thanks to Wayne, aka slackwhere on LQ.
l/QScintilla-2.10.7-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/kernel-generic-4.14.52-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.52-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.52-x86_64-1.txz: Upgraded.
ap/sox-14.4.2-x86_64-6.txz: Rebuilt.
Rebuilt to drop libssp dependency. We're no longer building that with gcc
since glibc already includes a built-in SSP implementation.
d/gcc-8.1.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
This is taken from the gcc-8-branch of the svn repo on 20180626, revision
r262159. All packages have been tested for build failures and all new FTBFS
issues are fixed - I think we're down to the six possibly obsolete X drivers
(geode, r128, s3virge, savage, sis, and tseng) and virtuoso-ose.
d/gcc-brig-8.1.1-x86_64-1.txz: Upgraded.
d/gcc-g++-8.1.1-x86_64-1.txz: Upgraded.
d/gcc-gfortran-8.1.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
d/gcc-gnat-8.1.1-x86_64-1.txz: Upgraded.
d/gcc-go-8.1.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
d/gcc-objc-8.1.1-x86_64-1.txz: Upgraded.
d/kernel-headers-4.14.52-x86-1.txz: Upgraded.
d/libtool-2.4.6-x86_64-8.txz: Rebuilt.
Recompiled to update embedded GCC version number.
k/kernel-source-4.14.52-noarch-1.txz: Upgraded.
l/db48-4.8.30-x86_64-4.txz: Rebuilt.
Patched to fix a symbol collision with gcc8.
n/netatalk-3.1.11-x86_64-1.txz: Upgraded.
Thanks to Matthew Schumacher for updating the build script and providing
some useful config file examples.
extra/pure-alsa-system/sox-14.4.2-x86_64-6_alsa.txz: Rebuilt.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/aaa_elflibs-15.0-x86_64-1.txz: Upgraded.
Upgraded to libelf-0.171.so, added libgdbm.so.6.0.0.
a/etc-15.0-x86_64-6.txz: Rebuilt.
Add $(uname -m) information to /etc/issue.new.
Don't include /tmp directories - these are handled by aaa_base.
a/kernel-generic-4.14.50-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.50-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.50-x86_64-1.txz: Upgraded.
ap/man-db-2.8.3-x86_64-3.txz: Rebuilt.
Recompiled against gdbm-1.15.
ap/zsh-5.5.1-x86_64-2.txz: Rebuilt.
Recompiled against gdbm-1.15.
d/clisp-2.49_20180423_d1310adc5-x86_64-1.txz: Upgraded.
Compiled against gdbm-1.15.
d/kernel-headers-4.14.50-x86-1.txz: Upgraded.
d/perl-5.26.2-x86_64-5.txz: Rebuilt.
Recompiled against gdbm-1.15.
d/python-2.7.15-x86_64-3.txz: Rebuilt.
Recompiled against gdbm-1.15.
d/python3-3.6.5-x86_64-4.txz: Rebuilt.
Recompiled against gdbm-1.15.
d/ruby-2.5.1-x86_64-4.txz: Rebuilt.
Recompiled against gdbm-1.15.
k/kernel-source-4.14.50-noarch-1.txz: Upgraded.
kde/kdelibs-4.14.38-x86_64-3.txz: Rebuilt.
Patched to build with OpenSSL-1.1.x. Thanks to nobodino.
l/gdbm-1.15-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
n/cyrus-sasl-2.1.27_rc8-x86_64-1.txz: Upgraded.
Compiled against gdbm-1.15.
n/mutt-1.10.0-x86_64-2.txz: Rebuilt.
Recompiled against gdbm-1.15.
n/php-7.2.6-x86_64-2.txz: Rebuilt.
Recompiled against gdbm-1.15.
n/yptools-2.14-x86_64-11.txz: Rebuilt.
Recompiled against gdbm-1.15.
xap/gnuchess-6.2.5-x86_64-3.txz: Rebuilt.
Recompiled against gdbm-1.15.
isolinux/initrd.img: Rebuilt.
Copy libefiboot to the installer (needed by efibootmgr).
Compress the kernel modules with xz.
Compress the initrd image with xz.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Copy libefiboot to the installer (needed by efibootmgr).
Compress the kernel modules with xz.
Compress the initrd image with xz.
a/kernel-firmware-20180606_d114732-noarch-1.txz: Upgraded.
a/kernel-generic-4.14.49-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.49-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.49-x86_64-1.txz: Upgraded.
a/libcgroup-0.41-x86_64-4.txz: Rebuilt.
Apply all post 0.41 patches from git, including one for an infinite loop
bug that causes 100% CPU usage on one core. Thanks to chris.willing.
a/pkgtools-15.0-noarch-17.txz: Rebuilt.
installpkg: Use terse mode if TERSE=0 is set in the environment (this already
works for removepkg and upgradepkg). This allows using terse mode in other
tools that use the pkgtools (such as slackpkg with: TERSE=0 slackpkg).
Thanks to Xsane.
ap/hplip-3.18.6-x86_64-1.txz: Upgraded.
d/kernel-headers-4.14.49-x86-1.txz: Upgraded.
k/kernel-source-4.14.49-noarch-1.txz: Upgraded.
GPIO_AMDPT n -> m (thanks to walecha)
NFSD_V3_ACL n -> y (thanks to Jonathan Woithe)
NFS_V3_ACL n -> y (thanks to Jonathan Woithe)
NFS_V4_2 n -> y
+NFSD_V2_ACL y
+NFS_ACL_SUPPORT y
+NFS_V4_SECURITY_LABEL y
l/LibRaw-0.18.12-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues, including:
parse_qt: possible integer overflow
reject broken/crafted NOKIARAW files
recover read position if TIFF/EXIF tag is too long
possible infinite loop in parse_minolta()
possible stack overrun in X3F parser
out of bounds read in X3F parser
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13735https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14265https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10528https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10529
(* Security fix *)
l/dconf-0.26.1-x86_64-3.txz: Rebuilt.
Eliminate install script noise.
l/dconf-editor-3.26.2-x86_64-3.txz: Rebuilt.
Eliminate install script noise.
n/iproute2-4.17.0-x86_64-1.txz: Upgraded.
x/wqy-zenhei-font-ttf-0.8.38_1-noarch-7.txz: Rebuilt.
Try to avoid overriding other font choices unless lang = zh-cn or zh-sg.
x/xkbcomp-1.4.2-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/bash-4.4.023-x86_64-1.txz: Upgraded.
a/kernel-firmware-20180604_1fa9ce3-noarch-1.txz: Upgraded.
a/kernel-generic-4.14.48-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.48-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.48-x86_64-1.txz: Upgraded.
ap/cups-2.2.8-x86_64-1.txz: Upgraded.
ap/ghostscript-fonts-std-8.11-noarch-3.txz: Rebuilt.
Rebuilt this and many other font packages or packages with build scripts
that call mkfontdir or mkfontscale to suppress any error messages caused
by collisions if another package installation is writing files to the
same font directories when those utilities are run. In that case, the
other package will also be running mkfontdir/mkfontscale after the files
are installed, so any issues will be cleaned up then. Last one out turn
off the lights, so to speak.
ap/sqlite-3.24.0-x86_64-1.txz: Upgraded.
ap/terminus-font-4.40-noarch-3.txz: Rebuilt.
d/kernel-headers-4.14.48-x86-1.txz: Upgraded.
d/rust-1.26.2-x86_64-1.txz: Upgraded.
k/kernel-source-4.14.48-noarch-1.txz: Upgraded.
l/elfutils-0.171-x86_64-1.txz: Upgraded.
l/harfbuzz-1.7.7-x86_64-1.txz: Upgraded.
l/mozilla-nss-3.37.3-x86_64-1.txz: Upgraded.
l/readline-7.0.005-x86_64-1.txz: Upgraded.
x/dejavu-fonts-ttf-2.37-noarch-4.txz: Rebuilt.
x/font-adobe-100dpi-1.0.3-noarch-3.txz: Rebuilt.
x/font-adobe-75dpi-1.0.3-noarch-3.txz: Rebuilt.
x/font-adobe-utopia-100dpi-1.0.4-noarch-3.txz: Rebuilt.
x/font-adobe-utopia-75dpi-1.0.4-noarch-3.txz: Rebuilt.
x/font-adobe-utopia-type1-1.0.4-noarch-3.txz: Rebuilt.
x/font-arabic-misc-1.0.3-noarch-3.txz: Rebuilt.
x/font-bh-100dpi-1.0.3-noarch-3.txz: Rebuilt.
x/font-bh-75dpi-1.0.3-noarch-3.txz: Rebuilt.
x/font-bh-lucidatypewriter-100dpi-1.0.3-noarch-3.txz: Rebuilt.
x/font-bh-lucidatypewriter-75dpi-1.0.3-noarch-3.txz: Rebuilt.
x/font-bh-ttf-1.0.3-noarch-3.txz: Rebuilt.
x/font-bh-type1-1.0.3-noarch-3.txz: Rebuilt.
x/font-bitstream-100dpi-1.0.3-noarch-3.txz: Rebuilt.
x/font-bitstream-75dpi-1.0.3-noarch-3.txz: Rebuilt.
x/font-bitstream-speedo-1.0.2-noarch-3.txz: Rebuilt.
x/font-bitstream-type1-1.0.3-noarch-3.txz: Rebuilt.
x/font-cronyx-cyrillic-1.0.3-noarch-3.txz: Rebuilt.
x/font-cursor-misc-1.0.3-noarch-3.txz: Rebuilt.
x/font-daewoo-misc-1.0.3-noarch-3.txz: Rebuilt.
x/font-dec-misc-1.0.3-noarch-3.txz: Rebuilt.
x/font-ibm-type1-1.0.3-noarch-3.txz: Rebuilt.
x/font-isas-misc-1.0.3-noarch-3.txz: Rebuilt.
x/font-jis-misc-1.0.3-noarch-3.txz: Rebuilt.
x/font-micro-misc-1.0.3-noarch-3.txz: Rebuilt.
x/font-misc-cyrillic-1.0.3-noarch-3.txz: Rebuilt.
x/font-misc-ethiopic-1.0.3-noarch-3.txz: Rebuilt.
x/font-misc-meltho-1.0.3-noarch-3.txz: Rebuilt.
x/font-misc-misc-1.1.2-noarch-3.txz: Rebuilt.
x/font-mutt-misc-1.0.3-noarch-3.txz: Rebuilt.
x/font-schumacher-misc-1.1.2-noarch-3.txz: Rebuilt.
x/font-screen-cyrillic-1.0.4-noarch-3.txz: Rebuilt.
x/font-sony-misc-1.0.3-noarch-3.txz: Rebuilt.
x/font-sun-misc-1.0.3-noarch-3.txz: Rebuilt.
x/font-winitzki-cyrillic-1.0.3-noarch-3.txz: Rebuilt.
x/font-xfree86-type1-1.0.4-noarch-3.txz: Rebuilt.
x/liberation-fonts-ttf-2.00.1-noarch-3.txz: Rebuilt.
x/libinput-1.11.0-x86_64-1.txz: Upgraded.
x/sazanami-fonts-ttf-20040629-noarch-3.txz: Rebuilt.
x/sinhala_lklug-font-ttf-20060929-noarch-3.txz: Rebuilt.
x/tibmachuni-font-ttf-1.901b-noarch-3.txz: Rebuilt.
x/ttf-indic-fonts-0.5.14-noarch-3.txz: Rebuilt.
x/ttf-tlwg-0.6.4-noarch-3.txz: Rebuilt.
x/urw-core35-fonts-otf-20170801_91edd6e_git-noarch-2.txz: Rebuilt.
x/wqy-zenhei-font-ttf-0.8.38_1-noarch-6.txz: Rebuilt.
xap/mozilla-firefox-60.0.2-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/security/known-vulnerabilities/firefox.html
(* Security fix *)
xap/x3270-3.3.12ga7-x86_64-5.txz: Rebuilt.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/kernel-generic-4.14.47-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.47-x86_64-1.txz: Upgraded.
SCSI_DPT_I2O m -> y
SCSI_ISCI m -> y (thanks to wael_h)
a/kernel-modules-4.14.47-x86_64-1.txz: Upgraded.
a/pkgtools-15.0-noarch-14.txz: Rebuilt.
installpkg: rarely, an uncompressed size that's not quite to the next level
(e.g., 1020K) will exceed the expected length and cause a --terse line to
be one character longer than --terselength. Chop lines to --terselength
before outputting them. The trailing ']' might be dropped, but no big deal.
ap/slackpkg-2.83.0-noarch-1.txz: Upgraded.
Release 2.83.0; thanks to orbea, Didier Spaier, burdi01, David Allen,
Eduard Rozenberg, and Stuart Winter for various fixes and enhancements.
Allow using vimdiff to compare .new and original files
Numerous fixups for alternate $ROOT
.new config files are sorted so that display order should be consistent
among multiple machines
Abort operation if system date is near epoch (mostly relevant for ARM
machines and others with no RTC)
Update Slackware ARM gpg key
Update Slackware ARM mirror list
No longer offer to run lilo - simply advise user that the kernel image has
changed and give advice, but also require a keypress to (hopefully) confirm
that the message was actually read
mandoc lint fixes to slackpkg.8
Warn user if a -current mirror is selected (but only warn once)
d/git-2.17.1-x86_64-1.txz: Upgraded.
d/kernel-headers-4.14.47-x86-1.txz: Upgraded.
d/rust-1.26.1-x86_64-1.txz: Upgraded.
k/kernel-source-4.14.47-noarch-1.txz: Upgraded.
l/fftw-3.3.8-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.9_48-x86_64-1.txz: Upgraded.
n/network-scripts-15.0-noarch-8.txz: Rebuilt.
Allow setting an interface in promiscuous mode; this is needed for networking
to function properly in containers
Fixup setting of IPALIASES (allow non /32 masks; not only is the /32 mask not
required and even undesirable in some cases, this makes ipv6 support easier
to integrate (and Darren is working on that as well)
Thanks to Darren Austin.
n/stunnel-5.46-x86_64-1.txz: Upgraded.
n/ulogd-2.0.7-x86_64-2.txz: Rebuilt.
Fixed empty logrotate file.
x/xorg-server-1.20.0-x86_64-2.txz: Rebuilt.
Patched to fix nouveau segfault. Thanks to Rod3775 for the patch.
x/xorg-server-xephyr-1.20.0-x86_64-2.txz: Rebuilt.
x/xorg-server-xnest-1.20.0-x86_64-2.txz: Rebuilt.
x/xorg-server-xvfb-1.20.0-x86_64-2.txz: Rebuilt.
xap/network-manager-applet-1.8.12-x86_64-2.txz: Rebuilt.
Patched crash bug. Thanks to gmgf.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
a/pkgtools-15.0-noarch-13.txz: Rebuilt.
installpkg: default line length for --terselength is the number of columns.
removepkg: added --terse mode.
upgradepkg: default line length for --terselength is the number of columns.
upgradepkg: accept -option in addition to --option.
ap/vim-8.1.0026-x86_64-1.txz: Upgraded.
d/bison-3.0.5-x86_64-1.txz: Upgraded.
e/emacs-26.1-x86_64-1.txz: Upgraded.
kde/kopete-4.14.3-x86_64-8.txz: Rebuilt.
Recompiled against libidn-1.35.
n/conntrack-tools-1.4.5-x86_64-1.txz: Upgraded.
n/libnetfilter_conntrack-1.0.7-x86_64-1.txz: Upgraded.
n/libnftnl-1.1.0-x86_64-1.txz: Upgraded.
n/links-2.16-x86_64-2.txz: Rebuilt.
Rebuilt to enable X driver for -g mode.
n/lynx-2.8.9dev.19-x86_64-1.txz: Upgraded.
n/nftables-0.8.5-x86_64-1.txz: Upgraded.
n/p11-kit-0.23.11-x86_64-1.txz: Upgraded.
n/ulogd-2.0.7-x86_64-1.txz: Upgraded.
n/whois-5.3.1-x86_64-1.txz: Upgraded.
xap/network-manager-applet-1.8.12-x86_64-1.txz: Upgraded.
xap/vim-gvim-8.1.0026-x86_64-1.txz: Upgraded.
Thu Jun 30 20:26:57 UTC 2016
Slackware 14.2 x86_64 stable is released!
The long development cycle (the Linux community has lately been living in
"interesting times", as they say) is finally behind us, and we're proud to
announce the release of Slackware 14.2. The new release brings many updates
and modern tools, has switched from udev to eudev (no systemd), and adds
well over a hundred new packages to the system. Thanks to the team, the
upstream developers, the dedicated Slackware community, and everyone else
who pitched in to help make this release a reality.
The ISOs are off to be replicated, a 6 CD-ROM 32-bit set and a dual-sided
32-bit/64-bit x86/x86_64 DVD. Please consider supporting the Slackware
project by picking up a copy from store.slackware.com. We're taking
pre-orders now, and offer a discount if you sign up for a subscription.
Have fun! :-)
Mon Nov 4 17:08:47 UTC 2013
Slackware 14.1 x86_64 stable is released!
It's been another interesting release cycle here at Slackware bringing
new features like support for UEFI machines, updated compilers and
development tools, the switch from MySQL to MariaDB, and many more
improvements throughout the system. Thanks to the team, the upstream
developers, the dedicated Slackware community, and everyone else who
pitched in to help make this release a reality.
The ISOs are off to be replicated, a 6 CD-ROM 32-bit set and a
dual-sided
32-bit/64-bit x86/x86_64 DVD. Please consider supporting the Slackware
project by picking up a copy from store.slackware.com. We're taking
pre-orders now, and offer a discount if you sign up for a subscription.
Have fun! :-)
Wed Sep 26 01:10:42 UTC 2012
Slackware 14.0 x86_64 stable is released!
We're perfectionists here at Slackware, so this release has been a long
time a-brewing. But we think you'll agree that it was worth the wait.
Slackware 14.0 combines modern components, ease of use, and flexible
configuration... our "KISS" philosophy demands it.
The ISOs are off to be replicated, a 6 CD-ROM 32-bit set and a
dual-sided
32-bit/64-bit x86/x86_64 DVD. Please consider supporting the Slackware
project by picking up a copy from store.slackware.com. We're taking
pre-orders now, and offer a discount if you sign up for a subscription.
Thanks to everyone who helped make this happen. The Slackware team, the
upstream developers, and (of course) the awesome Slackware user
community.
Have fun! :-)
Mon Apr 25 13:37:00 UTC 2011
Slackware 13.37 x86_64 stable is released!
Thanks to everyone who pitched in on this release: the Slackware team,
the folks producing upstream code, and linuxquestions.org for providing
a great forum for collaboration and testing.
The ISOs are off to be replicated, a 6 CD-ROM 32-bit set and a
dual-sided
32-bit/64-bit x86/x86_64 DVD. Please consider supporting the Slackware
project by picking up a copy from store.slackware.com. We're taking
pre-orders now, and offer a discount if you sign up for a subscription.
As always, thanks to the Slackware community for testing, suggestions,
and feedback. :-)
Have fun!
Wed May 19 08:58:23 UTC 2010
Slackware 13.1 x86_64 stable is released!
Lots of thanks are due -- see the RELEASE_NOTES and the rest of the
ChangeLog for credits. The ISOs are on their way to replication,
a 6 CD-ROM 32-bit set and a dual-sided 32-bit/64-bit x86/x86_64 DVD.
We are taking pre-orders now at store.slackware.com, and offering
a discount if you sign up for a subscription. Consider picking up
a copy to help support the project. Thanks again to the Slackware
community for testing, contributing, and generally holding us to a
high level of quality. :-)
Enjoy!
Wed Aug 26 10:00:38 CDT 2009
Slackware 13.0 x86_64 is released as stable! Thanks to everyone who
helped make this release possible -- see the RELEASE_NOTES for the
credits. The ISOs are off to the replicator. This time it will be a
6 CD-ROM 32-bit set and a dual-sided 32-bit/64-bit x86/x86_64 DVD.
We're taking pre-orders now at store.slackware.com. Please consider
picking up a copy to help support the project. Once again, thanks to
the entire Slackware community for all the help testing and fixing
things and offering suggestions during this development cycle.
As always, have fun and enjoy! -P.