Miroirs/slackware-current
1
0
Fork 0
mirror of git://slackware.nl/current.git synced 2024-12-26 09:58:59 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
slackware-current/source/x
History
Patrick J Volkerding 1e755d579a Tue Oct 1 18:01:38 UTC 2024 
Several ELF objects were found to have rpaths pointing into /tmp, a world
writable directory. This could have allowed a local attacker to launch denial
of service attacks or execute arbitrary code when the affected binaries are
run by placing crafted ELF objects in the /tmp rpath location. All rpaths with
an embedded /tmp path have been scrubbed from the binaries, and makepkg has
gained a lint feature to detect these so that they won't creep back in.
a/kernel-firmware-20241001_95bfe08-noarch-1.txz:  Upgraded.
a/kernel-generic-6.10.12-x86_64-1.txz:  Upgraded.
a/pkgtools-15.1-noarch-12.txz:  Rebuilt.
  makepkg: when looking for ELF objects with --remove-rpaths or
  --remove-tmp-rpaths, avoid false hits on files containing 'ELF' as part
  of the directory or filename.
  Also warn about /tmp rpaths after the package is built.
ap/cups-2.4.11-x86_64-1.txz:  Upgraded.
ap/cups-browsed-2.0.1-x86_64-2.txz:  Rebuilt.
  Mitigate security issue that could lead to a denial of service or
  the execution of arbitrary code.
  Rebuilt with --with-browseremoteprotocols=none to disable incoming
  connections, since this daemon has been shown to be insecure. If you
  actually use cups-browsed, be sure to install the new
  /etc/cups/cups-browsed.conf.new containing this line:
  BrowseRemoteProtocols none
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2024-47176
  (* Security fix *)
d/kernel-headers-6.10.12-x86-1.txz:  Upgraded.
d/llvm-18.1.8-x86_64-3.txz:  Rebuilt.
  Remove rpaths from binaries.
  (* Security fix *)
d/luajit-2.1.1727621189-x86_64-1.txz:  Upgraded.
d/ruby-3.3.5-x86_64-2.txz:  Rebuilt.
  Remove rpaths from binaries.
  (* Security fix *)
k/kernel-source-6.10.12-noarch-1.txz:  Upgraded.
kde/kimageformats-5.116.0-x86_64-2.txz:  Rebuilt.
  Recompiled against openexr-3.3.0.
kde/kio-extras-23.08.5-x86_64-2.txz:  Rebuilt.
  Recompiled against openexr-3.3.0.
kde/krita-5.2.5-x86_64-2.txz:  Rebuilt.
  Recompiled against openexr-3.3.0.
kde/libindi-2.1.0-x86_64-1.txz:  Upgraded.
l/cryfs-0.10.3-x86_64-13.txz:  Rebuilt.
  Remove rpaths from binaries.
  (* Security fix *)
l/espeak-ng-1.51.1-x86_64-2.txz:  Rebuilt.
  Remove rpaths from binaries.
  (* Security fix *)
l/ffmpeg-7.1-x86_64-1.txz:  Upgraded.
l/gegl-0.4.48-x86_64-3.txz:  Rebuilt.
  Recompiled against openexr-3.3.0.
l/gst-plugins-bad-free-1.24.8-x86_64-2.txz:  Rebuilt.
  Recompiled against openexr-3.3.0.
l/imagemagick-7.1.1_38-x86_64-2.txz:  Rebuilt.
  Recompiled against openexr-3.3.0.
l/libgsf-1.14.53-x86_64-1.txz:  Upgraded.
l/librsvg-2.58.5-x86_64-1.txz:  Upgraded.
l/libvncserver-0.9.14-x86_64-3.txz:  Rebuilt.
  Remove rpaths from binaries.
  (* Security fix *)
l/mozjs128-128.3.0esr-x86_64-1.txz:  Upgraded.
l/netpbm-11.08.00-x86_64-1.txz:  Upgraded.
l/opencv-4.10.0-x86_64-3.txz:  Rebuilt.
  Recompiled against openexr-3.3.0.
l/openexr-3.3.0-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
l/python-glad2-2.0.8-x86_64-1.txz:  Upgraded.
l/python-pyproject-hooks-1.2.0-x86_64-1.txz:  Upgraded.
l/spirv-llvm-translator-18.1.4-x86_64-2.txz:  Rebuilt.
  Remove rpaths from binaries.
  (* Security fix *)
l/woff2-20231106_0f4d304-x86_64-2.txz:  Rebuilt.
  Remove rpaths from binaries.
  (* Security fix *)
n/openobex-1.7.2-x86_64-6.txz:  Rebuilt.
  Remove rpaths from binaries.
  (* Security fix *)
x/marisa-0.2.6-x86_64-11.txz:  Rebuilt.
  Remove rpaths from binaries.
  (* Security fix *)
xap/gimp-2.10.38-x86_64-2.txz:  Rebuilt.
  Recompiled against openexr-3.3.0.
xap/mozilla-firefox-128.3.0esr-x86_64-1.txz:  Upgraded.
  This update contains security fixes and improvements.
  For more information, see:
    https://www.mozilla.org/en-US/firefox/128.3.0/releasenotes/
    https://www.mozilla.org/security/advisories/mfsa2024-47
    https://www.cve.org/CVERecord?id=CVE-2024-9392
    https://www.cve.org/CVERecord?id=CVE-2024-9393
    https://www.cve.org/CVERecord?id=CVE-2024-9394
    https://www.cve.org/CVERecord?id=CVE-2024-8900
    https://www.cve.org/CVERecord?id=CVE-2024-9396
    https://www.cve.org/CVERecord?id=CVE-2024-9397
    https://www.cve.org/CVERecord?id=CVE-2024-9398
    https://www.cve.org/CVERecord?id=CVE-2024-9399
    https://www.cve.org/CVERecord?id=CVE-2024-9400
    https://www.cve.org/CVERecord?id=CVE-2024-9401
    https://www.cve.org/CVERecord?id=CVE-2024-9402
  (* Security fix *)
xap/xlockmore-5.80-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
testing/packages/kernel-generic-6.11.1-x86_64-1.txz:  Upgraded.
testing/packages/kernel-headers-6.11.1-x86-1.txz:  Upgraded.
testing/packages/kernel-source-6.11.1-noarch-1.txz:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.
2024-10-01 22:04:37 +02:00
..
anthy-unicode Tue May 7 20:06:35 UTC 2024 2024-05-07 22:28:37 +02:00
cldr-emoji-annotation Mon Oct 4 19:28:39 UTC 2021 2021-10-05 09:00:04 +02:00
compiz Sun May 12 19:10:12 UTC 2024 2024-05-12 21:28:58 +02:00
dejavu-fonts-ttf Mon Feb 15 19:23:44 UTC 2021 2021-02-16 08:59:54 +01:00
egl-wayland Sun Aug 11 19:00:08 UTC 2024 2024-08-11 22:16:54 +02:00
eglexternalplatform Wed Sep 4 23:37:27 UTC 2024 2024-09-05 02:15:14 +02:00
fcitx5 Sat Jun 1 19:52:37 UTC 2024 2024-06-01 22:44:21 +02:00
fcitx5-anthy Tue Apr 23 19:48:05 UTC 2024 2024-04-23 22:34:04 +02:00
fcitx5-chinese-addons Thu Aug 15 20:07:37 UTC 2024 2024-08-15 23:02:34 +02:00
fcitx5-gtk Tue Aug 13 20:33:27 UTC 2024 2024-08-13 23:09:21 +02:00
fcitx5-hangul Mon Jun 10 19:23:44 UTC 2024 2024-06-10 22:00:40 +02:00
fcitx5-kkc Mon Jun 10 19:23:44 UTC 2024 2024-06-10 22:00:40 +02:00
fcitx5-m17n Tue Apr 23 19:48:05 UTC 2024 2024-04-23 22:34:04 +02:00
fcitx5-qt Tue Jul 23 18:54:25 UTC 2024 2024-07-23 22:50:05 +02:00
fcitx5-sayura Mon Jun 10 19:23:44 UTC 2024 2024-06-10 22:00:40 +02:00
fcitx5-table-extra Mon Jun 10 19:23:44 UTC 2024 2024-06-10 22:00:40 +02:00
fcitx5-table-other Mon Jun 10 19:23:44 UTC 2024 2024-06-10 22:00:40 +02:00
fcitx5-unikey Mon Jun 10 19:23:44 UTC 2024 2024-06-10 22:00:40 +02:00
fontconfig Mon Feb 15 19:23:44 UTC 2021 2021-02-16 08:59:54 +01:00
freeglut Sat Oct 8 19:23:31 UTC 2022 2022-10-09 07:00:16 +02:00
glew Mon Feb 15 19:23:44 UTC 2021 2021-02-16 08:59:54 +01:00
glu Mon Jul 24 00:17:18 UTC 2023 2023-07-24 04:33:52 +02:00
hack-fonts-ttf Tue Sep 6 20:21:24 UTC 2022 2022-09-07 07:00:17 +02:00
ibus Tue Aug 13 20:33:27 UTC 2024 2024-08-13 23:09:21 +02:00
ibus-anthy Fri Mar 29 20:39:11 UTC 2024 2024-03-29 22:36:12 +01:00
ibus-hangul Fri Mar 29 20:39:11 UTC 2024 2024-03-29 22:36:12 +01:00
ibus-kkc Sun May 12 19:10:12 UTC 2024 2024-05-12 21:28:58 +02:00
ibus-libpinyin Fri Jul 26 18:26:05 UTC 2024 2024-07-26 21:06:15 +02:00
ibus-m17n Mon Sep 9 17:27:00 UTC 2024 2024-09-09 19:59:46 +02:00
ibus-table Wed Aug 28 17:31:38 UTC 2024 2024-08-28 20:02:06 +02:00
ibus-unikey Mon Feb 15 19:23:44 UTC 2021 2021-02-16 08:59:54 +01:00
intel-vaapi-driver Mon Feb 15 19:23:44 UTC 2021 2021-02-16 08:59:54 +01:00
libdrm Tue Aug 27 19:24:48 UTC 2024 2024-08-27 21:59:36 +02:00
libepoxy Sat Mar 19 20:28:16 UTC 2022 2022-03-20 06:59:46 +01:00
liberation-fonts-ttf Fri Oct 1 05:38:04 UTC 2021 2021-10-01 17:59:54 +02:00
libevdev Tue Sep 3 21:07:09 UTC 2024 2024-09-04 00:33:23 +02:00
libgee Sun May 12 19:10:12 UTC 2024 2024-05-12 21:28:58 +02:00
libglvnd Fri Aug 16 19:58:10 UTC 2024 2024-08-16 22:28:37 +02:00
libhangul Mon Feb 15 19:23:44 UTC 2021 2021-02-16 08:59:54 +01:00
libime Thu Aug 15 20:07:37 UTC 2024 2024-08-15 23:02:34 +02:00
libinput Mon Aug 19 18:50:19 UTC 2024 2024-08-19 21:49:36 +02:00
libkkc Sun May 12 19:10:12 UTC 2024 2024-05-12 21:28:58 +02:00
libkkc-data Thu Mar 21 19:53:15 UTC 2024 2024-03-21 21:35:32 +01:00
libmypaint Tue Sep 6 20:21:24 UTC 2022 2022-09-07 07:00:17 +02:00
libpinyin Fri Sep 17 04:17:57 UTC 2021 2021-09-17 17:59:52 +02:00
libva Mon Feb 21 20:21:38 UTC 2022 2022-02-22 06:59:43 +01:00
libva-utils Fri Jun 21 00:44:39 UTC 2024 2024-06-21 04:38:16 +02:00
libvdpau Tue Mar 8 04:39:53 UTC 2022 2022-03-08 06:59:43 +01:00
libwacom Mon Sep 2 19:56:17 UTC 2024 2024-09-02 22:40:20 +02:00
libXaw3dXft Sun May 12 19:10:12 UTC 2024 2024-05-12 21:28:58 +02:00
libXcm Mon Feb 15 19:23:44 UTC 2021 2021-02-16 08:59:54 +01:00
m17n-lib Mon Aug 28 00:38:01 UTC 2023 2023-08-28 03:00:22 +02:00
marisa Tue Oct 1 18:01:38 UTC 2024 2024-10-01 22:04:37 +02:00
mesa Wed Sep 18 21:23:19 UTC 2024 2024-09-19 00:41:24 +02:00
motif Sun May 12 19:10:12 UTC 2024 2024-05-12 21:28:58 +02:00
mtdev Sat Apr 6 17:19:58 UTC 2024 2024-04-06 19:59:46 +02:00
mypaint-brushes Wed Dec 27 20:43:42 UTC 2023 2023-12-27 21:59:13 +01:00
noto-cjk-fonts-ttf Mon Feb 15 19:23:44 UTC 2021 2021-02-16 08:59:54 +01:00
noto-emoji Mon Sep 9 00:53:17 UTC 2024 2024-09-09 04:00:54 +02:00
noto-fonts-ttf Fri Oct 1 05:38:04 UTC 2021 2021-10-01 17:59:54 +02:00
OpenCC Fri Aug 9 21:22:03 UTC 2024 2024-08-10 00:09:19 +02:00
pyxdg Fri Mar 29 20:39:11 UTC 2024 2024-03-29 22:36:12 +01:00
sazanami-fonts-ttf Mon Feb 15 19:23:44 UTC 2021 2021-02-16 08:59:54 +01:00
sddm Mon Feb 26 20:09:43 UTC 2024 2024-02-26 22:05:23 +01:00
sinhala_lklug-font-ttf Mon Feb 15 19:23:44 UTC 2021 2021-02-16 08:59:54 +01:00
skkdic Mon Aug 15 20:23:47 UTC 2022 2022-08-16 07:00:14 +02:00
tibmachuni-font-ttf Mon Feb 15 19:23:44 UTC 2021 2021-02-16 08:59:54 +01:00
ttf-indic-fonts Mon Feb 15 19:23:44 UTC 2021 2021-02-16 08:59:54 +01:00
ttf-tlwg Tue Oct 19 18:10:12 UTC 2021 2021-10-20 08:59:56 +02:00
urw-core35-fonts-otf Mon Feb 15 19:23:44 UTC 2021 2021-02-16 08:59:54 +01:00
vulkan-sdk Thu Sep 26 18:28:55 UTC 2024 2024-09-26 21:02:37 +02:00
wayland Sun Aug 25 17:38:49 UTC 2024 2024-08-25 19:59:05 +02:00
wayland-protocols Sat Aug 31 18:26:20 UTC 2024 2024-08-31 21:02:58 +02:00
wqy-zenhei-font-ttf Mon Feb 15 19:23:44 UTC 2021 2021-02-16 08:59:54 +01:00
x11 Thu Sep 5 22:14:23 UTC 2024 2024-09-06 01:14:21 +02:00
x11-skel Mon Aug 15 20:23:47 UTC 2022 2022-08-16 07:00:14 +02:00
xcb-imdkit Sat Jun 1 19:52:37 UTC 2024 2024-06-01 22:44:21 +02:00
xcm Mon Feb 15 19:23:44 UTC 2021 2021-02-16 08:59:54 +01:00
xdg-desktop-portal Sat Nov 25 19:44:38 UTC 2023 2023-11-25 20:59:35 +01:00
xdg-user-dirs Wed Aug 3 19:33:34 UTC 2022 2022-08-04 07:00:11 +02:00
xdg-utils Tue Feb 6 21:45:37 UTC 2024 2024-02-06 23:44:07 +01:00
xorg-server-xwayland Wed Aug 7 18:19:56 UTC 2024 2024-08-07 20:58:43 +02:00
xterm Tue Sep 3 21:07:09 UTC 2024 2024-09-04 00:33:23 +02:00
FTBFSlog Mon May 22 19:05:02 UTC 2023 2023-05-22 21:32:45 +02:00