summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAge
* Thu Jun 18 22:01:29 UTC 202020200618220129Patrick J Volkerding2020-06-19
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | a/kernel-generic-5.4.47-x86_64-1.txz: Upgraded. a/kernel-huge-5.4.47-x86_64-1.txz: Upgraded. a/kernel-modules-5.4.47-x86_64-1.txz: Upgraded. a/sysvinit-scripts-2.1-noarch-33.txz: Rebuilt. rc.M: add support for elogind. Thanks to alienBOB. a/util-linux-2.35.2-x86_64-3.txz: Rebuilt. /etc/pam.d/login: support pam_elogind.so. Thanks to alienBOB. ap/sqlite-3.32.3-x86_64-1.txz: Upgraded. d/kernel-headers-5.4.47-x86-1.txz: Upgraded. d/rust-1.44.1-x86_64-1.txz: Upgraded. k/kernel-source-5.4.47-noarch-1.txz: Upgraded. n/bind-9.16.4-x86_64-1.txz: Upgraded. This update fixes two security issues: It was possible to trigger an INSIST when determining whether a record would fit into a TCP message buffer. It was possible to trigger an INSIST in lib/dns/rbtdb.c:new_reference() with a particular zone content and query patterns. For more information, see: https://kb.isc.org/docs/cve-2020-8618 https://kb.isc.org/docs/cve-2020-8619 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8618 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8619 (* Security fix *) isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Wed Jun 17 19:42:26 UTC 202020200617194226Patrick J Volkerding2020-06-18
| | | | | | | | ap/nvme-cli-1.12-x86_64-1.txz: Upgraded. d/python-setuptools-47.3.1-x86_64-1.txz: Upgraded. l/lcms2-2.11-x86_64-1.txz: Upgraded. l/mozilla-nss-3.53.1-x86_64-1.txz: Upgraded. l/python-requests-2.24.0-x86_64-1.txz: Upgraded.
* Tue Jun 16 20:50:41 UTC 202020200616205041Patrick J Volkerding2020-06-17
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | a/shadow-4.8.1-x86_64-10.txz: Rebuilt. system-auth: auth required pam_unix.so [...], otherwise the stack exits before pam_gnome_keyring.so executes. Thanks to pyllyukko. Get rid of "auth required pam_deny.so" which seems like a mistake. Still pending: consider GazL's comments on moving stuff out of system-auth. a/upower-0.9.23-x86_64-5.txz: Rebuilt. Recompiled against libimobiledevice-20200615_4791a82 and libplist-2.2.0. The renaming mess initiated by libplist required a rebuild on this one to keep things consistent for now, but don't worry - we aren't going to be sticking to this version for long or anything. ap/hplip-3.20.6-x86_64-1.txz: Upgraded. ap/usbmuxd-20200615_3daa1e9-x86_64-1.txz: Upgraded. Compiled against libimobiledevice-20200615_4791a82 and libplist-2.2.0. d/bison-3.6.4-x86_64-1.txz: Upgraded. d/meson-0.54.3-x86_64-1.txz: Upgraded. d/python-setuptools-47.3.0-x86_64-1.txz: Upgraded. l/ffmpeg-4.3-x86_64-1.txz: Upgraded. l/gvfs-1.44.1-x86_64-2.txz: Rebuilt. Recompiled against libimobiledevice-20200615_4791a82 and libplist-2.2.0. l/libgpod-0.8.3-x86_64-7.txz: Rebuilt. Recompiled against libimobiledevice-20200615_4791a82 and libplist-2.2.0. l/libimobiledevice-20200615_4791a82-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/libplist-2.2.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/libusbmuxd-20200615_c7d7d1a-x86_64-1.txz: Upgraded. Shared library .so-version bump. n/fetchmail-6.4.8-x86_64-1.txz: Upgraded. n/nftables-0.9.6-x86_64-1.txz: Upgraded. extra/pure-alsa-system/ffmpeg-4.3-x86_64-1_alsa.txz: Upgraded.
* Mon Jun 15 18:45:08 UTC 202020200615184508Patrick J Volkerding2020-06-16
| | | | | | | a/file-5.39-x86_64-1.txz: Upgraded. n/mutt-1.14.3-x86_64-1.txz: Upgraded. n/postfix-3.5.3-x86_64-1.txz: Upgraded. x/twm-1.0.11-x86_64-1.txz: Upgraded.
* Sun Jun 14 19:29:20 UTC 202020200614192920Patrick J Volkerding2020-06-15
| | | | | | | | a/haveged-1.9.11-x86_64-1.txz: Upgraded. l/libvncserver-0.9.13-x86_64-1.txz: Upgraded. n/libnetfilter_queue-1.0.5-x86_64-1.txz: Upgraded. x/vulkan-sdk-1.2.141.0-x86_64-1.txz: Upgraded. xap/xlockmore-5.64-x86_64-1.txz: Upgraded.
* Sat Jun 13 20:40:31 UTC 202020200613204031Patrick J Volkerding2020-06-14
| | | | | | | | | | | | | | | | | | | | | a/pam-1.4.0-x86_64-1.txz: Upgraded. IMPORTANT NOTE: This update removes the pam_cracklib and pam_tally2 modules. None of our current configuration files in /etc/pam.d/ use either of those, but if the configuration files on your machine do you'll need to comment out or remove those lines, otherwise you may experience login failures. a/shadow-4.8.1-x86_64-9.txz: Rebuilt. /etc/pam.d/system-auth: prefix lines that call pam_gnome_keyring.so with '-' to avoid spamming the logs about failures. a/sysvinit-scripts-2.1-noarch-32.txz: Rebuilt. rc.S: create /var/run/faillock directory for pam_faillock(8). a/util-linux-2.35.2-x86_64-2.txz: Rebuilt. /etc/pam.d/login: change the example for locking an account for too many failed login attempts to use pam_faillock instead of pam_tally2. l/imagemagick-7.0.10_19-x86_64-1.txz: Upgraded. l/libzip-1.7.1-x86_64-1.txz: Upgraded. n/openssh-8.3p1-x86_64-2.txz: Rebuilt. /etc/pam.d/sshd: change the example for locking an account for too many failed login attempts to use pam_faillock instead of pam_tally2.
* Fri Jun 12 19:05:51 UTC 202020200612190551Patrick J Volkerding2020-06-13
| | | | | | | ap/powertop-2.13-x86_64-1.txz: Upgraded. l/elfutils-0.180-x86_64-1.txz: Upgraded. l/fuse3-3.9.2-x86_64-1.txz: Upgraded. n/alpine-2.22.1-x86_64-1.txz: Upgraded.
* Thu Jun 11 21:17:43 UTC 202020200611211743Patrick J Volkerding2020-06-12
| | | | | | | | | | | | | | a/haveged-1.9.10-x86_64-1.txz: Upgraded. ap/alsa-utils-1.2.3-x86_64-2.txz: Rebuilt. This version seems good, but we'll recompile it against alsa-lib-1.2.2 just to be on the safe side. d/patchelf-0.11-x86_64-1.txz: Upgraded. l/alsa-lib-1.2.2-x86_64-1.txz: Upgraded. Revert to this version of alsa-lib due to the pulseaudio daemon crashing in some cases where multiple audio devices are present. extra/pure-alsa-system/alsa-lib-1.2.2-x86_64-1_alsa.txz: Upgraded. Revert to this version of alsa-lib due to the pulseaudio daemon crashing in some cases where multiple audio devices are present.
* Wed Jun 10 23:15:33 UTC 202020200610231533Patrick J Volkerding2020-06-11
| | | | | | | | | | | | a/kernel-generic-5.4.46-x86_64-1.txz: Upgraded. a/kernel-huge-5.4.46-x86_64-1.txz: Upgraded. a/kernel-modules-5.4.46-x86_64-1.txz: Upgraded. d/kernel-headers-5.4.46-x86-1.txz: Upgraded. k/kernel-source-5.4.46-noarch-1.txz: Upgraded. l/QScintilla-2.11.5-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Tue Jun 9 22:11:00 UTC 202020200609221100Patrick J Volkerding2020-06-10
| | | | | | | | | | | ap/alsa-utils-1.2.3-x86_64-1.txz: Upgraded. l/PyQt5-5.15.0-x86_64-1.txz: Upgraded. l/alsa-lib-1.2.3-x86_64-1.txz: Upgraded. l/imagemagick-7.0.10_18-x86_64-1.txz: Upgraded. l/sip-4.19.23-x86_64-1.txz: Upgraded. l/xapian-core-1.4.16-x86_64-1.txz: Upgraded. n/php-7.4.7-x86_64-1.txz: Upgraded. extra/pure-alsa-system/alsa-lib-1.2.3-x86_64-1_alsa.txz: Upgraded.
* Mon Jun 8 19:35:33 UTC 202020200608193533Patrick J Volkerding2020-06-08
| | | | | | | | | l/babl-0.1.78-x86_64-1.txz: Upgraded. l/gegl-0.4.24-x86_64-1.txz: Upgraded. l/qt5-webkit-5.212.0_alpha4-x86_64-3.txz: Rebuilt. n/libnetfilter_queue-1.0.4-x86_64-1.txz: Upgraded. x/liberation-fonts-ttf-2.1.1-noarch-1.txz: Upgraded. xap/gimp-2.10.20-x86_64-1.txz: Upgraded.
* Sun Jun 7 23:31:27 UTC 202020200607233127Patrick J Volkerding2020-06-08
| | | | | | | | | | | | | a/kernel-generic-5.4.45-x86_64-1.txz: Upgraded. a/kernel-huge-5.4.45-x86_64-1.txz: Upgraded. a/kernel-modules-5.4.45-x86_64-1.txz: Upgraded. d/kernel-headers-5.4.45-x86-1.txz: Upgraded. k/kernel-source-5.4.45-noarch-1.txz: Upgraded. l/imagemagick-7.0.10_17-x86_64-1.txz: Upgraded. l/python-certifi-2020.4.5.2-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Sun Jun 7 01:56:26 UTC 202020200607015626Patrick J Volkerding2020-06-07
| | | | | | | d/mercurial-5.4.1-x86_64-1.txz: Upgraded. l/libzip-1.7.0-x86_64-1.txz: Upgraded. n/libnftnl-1.1.7-x86_64-1.txz: Upgraded. n/nftables-0.9.5-x86_64-1.txz: Upgraded.
* Fri Jun 5 20:30:12 UTC 202020200605203012Patrick J Volkerding2020-06-06
| | | | | | | | | ap/cups-filters-1.27.5-x86_64-1.txz: Upgraded. ap/dash-0.5.11-x86_64-1.txz: Upgraded. d/rust-1.44.0-x86_64-1.txz: Upgraded. l/librsvg-2.48.7-x86_64-1.txz: Upgraded. n/ethtool-5.7-x86_64-1.txz: Upgraded. x/xkeyboard-config-2.30-noarch-1.txz: Upgraded.
* Thu Jun 4 17:58:17 UTC 202020200604175817Patrick J Volkerding2020-06-05
| | | | | | | | | | | | | | | | | ap/sqlite-3.32.2-x86_64-1.txz: Upgraded. ap/vim-8.2.0901-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-68.9.0-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/thunderbird/68.9.0/releasenotes/ https://www.mozilla.org/en-US/security/advisories/mfsa2020-22/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12399 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12405 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12406 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12410 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12398 (* Security fix *) xap/vim-gvim-8.2.0901-x86_64-1.txz: Upgraded.
* Wed Jun 3 20:21:52 UTC 202020200603202152Patrick J Volkerding2020-06-04
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | a/dbus-1.12.18-x86_64-1.txz: Upgraded. a/kernel-generic-5.4.44-x86_64-1.txz: Upgraded. a/kernel-huge-5.4.44-x86_64-1.txz: Upgraded. a/kernel-modules-5.4.44-x86_64-1.txz: Upgraded. d/bison-3.6.3-x86_64-1.txz: Upgraded. d/kernel-headers-5.4.44-x86-1.txz: Upgraded. d/subversion-1.14.0-x86_64-1.txz: Upgraded. k/kernel-source-5.4.44-noarch-1.txz: Upgraded. l/harfbuzz-2.6.7-x86_64-1.txz: Upgraded. l/libcap-2.36-x86_64-1.txz: Upgraded. l/librsvg-2.48.6-x86_64-1.txz: Upgraded. n/gnutls-3.6.14-x86_64-1.txz: Upgraded. Fixed insecure session ticket key construction, since 3.6.4. The TLS server would not bind the session ticket encryption key with a value supplied by the application until the initial key rotation, allowing attacker to bypass authentication in TLS 1.3 and recover previous conversations in TLS 1.2. [GNUTLS-SA-2020-06-03, CVSS: high] (* Security fix *) n/iproute2-5.7.0-x86_64-1.txz: Upgraded. n/iptables-1.8.5-x86_64-1.txz: Upgraded. xap/audacious-4.0.4-x86_64-1.txz: Upgraded. xap/audacious-plugins-4.0.4-x86_64-1.txz: Upgraded. extra/pure-alsa-system/audacious-plugins-4.0.4-x86_64-1_alsa.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Tue Jun 2 19:31:39 UTC 202020200602193139Patrick J Volkerding2020-06-03
| | | | | | | | | | | | | | | | | | | | | | | | a/hwdata-0.336-noarch-1.txz: Upgraded. ap/man-db-2.9.2-x86_64-1.txz: Upgraded. d/git-2.27.0-x86_64-1.txz: Upgraded. d/perl-5.30.3-x86_64-1.txz: Upgraded. Upgraded to IO-Socket-SSL-2.068. d/strace-5.7-x86_64-1.txz: Upgraded. l/libyaml-0.2.5-x86_64-1.txz: Upgraded. n/ca-certificates-20200602-noarch-1.txz: Upgraded. This update provides the latest CA certificates to check for the authenticity of SSL connections. n/nghttp2-1.41.0-x86_64-1.txz: Upgraded. This update fixes a security issue where an overly large HTTP/2 SETTINGS frame payload causes a denial of service. For more information, see: https://github.com/nghttp2/nghttp2/security/advisories/GHSA-q5wr-xfw9-q7xr https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11080 (* Security fix *) n/proftpd-1.3.6d-x86_64-1.txz: Upgraded. This is a bugfix release: Fixed issue with FTPS uploads of large files using TLSv1.3 (Issue #959). x/intel-vaapi-driver-2.4.1-x86_64-1.txz: Upgraded.
* Mon Jun 1 18:27:22 UTC 202020200601182722Patrick J Volkerding2020-06-02
| | | | | | | | | | | | | | | | a/pciutils-3.7.0-x86_64-1.txz: Upgraded. l/imagemagick-7.0.10_16-x86_64-1.txz: Upgraded. l/lcms2-2.10-x86_64-1.txz: Upgraded. l/netpbm-10.90.03-x86_64-1.txz: Upgraded. l/qt5-5.15.0-x86_64-1.txz: Upgraded. n/iptraf-ng-1.2.0-x86_64-1.txz: Upgraded. xap/gnuchess-6.2.7-x86_64-1.txz: Upgraded. xap/mozilla-firefox-68.9.0esr-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/firefox/68.9.0/releasenotes/ (* Security fix *) extra/pure-alsa-system/qt5-5.15.0-x86_64-1_alsa.txz: Upgraded.
* Sat May 30 21:31:07 UTC 202020200530213107Patrick J Volkerding2020-05-31
| | | | | | | | | | | | | ap/mpg123-1.26.1-x86_64-1.txz: Upgraded. d/gyp-20200512_caa60026-x86_64-1.txz: Added. l/Mako-1.1.3-x86_64-1.txz: Upgraded. l/imagemagick-7.0.10_15-x86_64-1.txz: Upgraded. l/librsvg-2.48.5-x86_64-1.txz: Upgraded. l/mozilla-nss-3.53-x86_64-1.txz: Upgraded. l/vte-0.60.3-x86_64-1.txz: Upgraded. n/libgpg-error-1.38-x86_64-1.txz: Upgraded. n/libqmi-1.24.14-x86_64-1.txz: Upgraded. extra/pure-alsa-system/mpg123-1.26.1-x86_64-1_alsa.txz: Upgraded.
* Fri May 29 21:27:09 UTC 202020200529212709Patrick J Volkerding2020-05-30
| | | | | | | | | a/mcelog-170-x86_64-1.txz: Upgraded. ap/nvme-cli-1.11.2-x86_64-1.txz: Upgraded. d/python-setuptools-47.1.1-x86_64-1.txz: Upgraded. l/glib-networking-2.64.3-x86_64-1.txz: Upgraded. n/NetworkManager-1.24.2-x86_64-1.txz: Upgraded. n/fetchmail-6.4.6-x86_64-1.txz: Upgraded.
* Thu May 28 18:20:36 UTC 202020200528182036Patrick J Volkerding2020-05-29
| | | | | | | | | | | | | | | | | | | a/cryptsetup-2.3.3-x86_64-1.txz: Upgraded. a/kernel-generic-5.4.43-x86_64-1.txz: Upgraded. a/kernel-huge-5.4.43-x86_64-1.txz: Upgraded. a/kernel-modules-5.4.43-x86_64-1.txz: Upgraded. d/cmake-3.17.3-x86_64-1.txz: Upgraded. d/kernel-headers-5.4.43-x86-1.txz: Upgraded. d/python-setuptools-47.1.0-x86_64-1.txz: Upgraded. k/kernel-source-5.4.43-noarch-1.txz: Upgraded. l/babl-0.1.76-x86_64-1.txz: Upgraded. n/openssh-8.3p1-x86_64-1.txz: Upgraded. n/rp-pppoe-3.14-x86_64-1.txz: Upgraded. x/libdrm-2.4.102-x86_64-1.txz: Upgraded. x/mesa-20.1.0-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Tue May 26 20:35:03 UTC 202020200526203503Patrick J Volkerding2020-05-26
| | | | | | | | | | | | | | | | | ap/mpg123-1.26.0-x86_64-1.txz: Upgraded. ap/sqlite-3.32.1-x86_64-1.txz: Upgraded. l/keybinder-0.3.1-x86_64-2.txz: Removed. l/keybinder3-3.0_0.3.2-x86_64-1.txz: Added. n/krb5-1.18.2-x86_64-1.txz: Upgraded. n/mutt-1.14.2-x86_64-1.txz: Upgraded. xap/gnuplot-5.2.8-x86_64-2.txz: Rebuilt. Rebuilt with Qt5 (uses anti-aliasing to improve the plot output). extra/aspell-word-lists/aspell-pt-0.50_2-x86_64-5.txz: Removed. extra/aspell-word-lists/aspell-pt_PT-20190329_0-x86_64-1.txz: Upgraded. Thanks to sairum for the link to a better word list. extra/aspell-word-lists/aspell-pt_PT-preao-20190329_0-x86_64-1.txz: Added. Thanks to sairum for the link to a better word list. extra/pure-alsa-system/mpg123-1.26.0-x86_64-1_alsa.txz: Upgraded.
* Sun May 24 18:35:29 UTC 202020200524183529Patrick J Volkerding2020-05-25
| | | | | | | | | | | ap/nano-4.9.3-x86_64-1.txz: Upgraded. ap/sqlite-3.32.0-x86_64-1.txz: Upgraded. d/gdb-9.2-x86_64-1.txz: Upgraded. d/parallel-20200522-noarch-1.txz: Upgraded. l/imagemagick-7.0.10_14-x86_64-1.txz: Upgraded. l/libgphoto2-2.5.25-x86_64-1.txz: Upgraded. n/libksba-1.4.0-x86_64-1.txz: Upgraded. xfce/thunar-1.8.15-x86_64-1.txz: Upgraded.
* Sat May 23 00:13:54 UTC 202020200523001354Patrick J Volkerding2020-05-23
| | | | | | | | | | l/libarchive-3.4.3-x86_64-1.txz: Upgraded. l/python-six-1.15.0-x86_64-1.txz: Upgraded. l/zstd-1.4.5-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-68.8.1-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://www.mozilla.org/en-US/thunderbird/68.8.1/releasenotes/
* Fri May 22 04:29:34 UTC 202020200522042934Patrick J Volkerding2020-05-22
| | | | | | | | | | | d/Cython-0.29.19-x86_64-1.txz: Upgraded. kde/kde-workspace-4.11.22-x86_64-9.txz: Rebuilt. kde-np: by default, do not restrict passwordless login for UIDs below 1000, but keep the option to do so in the file commented out. l/ffmpeg-4.2.3-x86_64-1.txz: Upgraded. l/iso-codes-4.5.0-noarch-1.txz: Upgraded. l/v4l-utils-1.20.0-x86_64-1.txz: Upgraded. extra/pure-alsa-system/ffmpeg-4.2.3-x86_64-1_alsa.txz: Upgraded.
* Wed May 20 23:53:44 UTC 202020200520235344Patrick J Volkerding2020-05-21
| | | | | | | | | | | | | | | | | a/kernel-firmware-20200519_8ba6fa6-noarch-1.txz: Upgraded. a/kernel-generic-5.4.42-x86_64-1.txz: Upgraded. a/kernel-huge-5.4.42-x86_64-1.txz: Upgraded. a/kernel-modules-5.4.42-x86_64-1.txz: Upgraded. a/util-linux-2.35.2-x86_64-1.txz: Upgraded. d/kernel-headers-5.4.42-x86-1.txz: Upgraded. d/python-pip-20.1.1-x86_64-1.txz: Upgraded. k/kernel-source-5.4.42-noarch-1.txz: Upgraded. l/glib2-2.64.3-x86_64-1.txz: Upgraded. l/mozilla-nss-3.52.1-x86_64-1.txz: Upgraded. n/samba-4.12.3-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Tue May 19 19:47:49 UTC 202020200519194749Patrick J Volkerding2020-05-20
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | a/shadow-4.8.1-x86_64-8.txz: Rebuilt. It seems that /etc/suauth is not supported when PAM is in use, even if configure.ac is hacked to enable it. I've removed the man pages for it, and would suggest using sudo as a replacement. l/libexif-0.6.22-x86_64-1.txz: Upgraded. This update fixes bugs and security issues: CVE-2018-20030: Fix for recursion DoS CVE-2020-13114: Time consumption DoS when parsing canon array markers CVE-2020-13113: Potential use of uninitialized memory CVE-2020-13112: Various buffer overread fixes due to integer overflows in maker notes CVE-2020-0093: read overflow CVE-2019-9278: replaced integer overflow checks the compiler could optimize away by safer constructs CVE-2020-12767: fixed division by zero CVE-2016-6328: fixed integer overflow when parsing maker notes CVE-2017-7544: fixed buffer overread For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20030 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13114 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13113 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13112 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0093 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9278 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12767 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6328 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7544 (* Security fix *) l/oniguruma-6.9.5_rev1-x86_64-2.txz: Rebuilt. Rebuilt with --enable-posix-api. Thanks to MisterL. l/python-packaging-20.4-x86_64-1.txz: Upgraded. n/bind-9.16.3-x86_64-1.txz: Upgraded. This update fixes a security issue: A malicious actor who intentionally exploits the lack of effective limitation on the number of fetches performed when processing referrals can, through the use of specially crafted referrals, cause a recursing server to issue a very large number of fetches in an attempt to process the referral. This has at least two potential effects: The performance of the recursing server can potentially be degraded by the additional work required to perform these fetches, and the attacker can exploit this behavior to use the recursing server as a reflector in a reflection attack with a high amplification factor. For more information, see: https://kb.isc.org/docs/cve-2020-8616 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8616 (* Security fix *) x/fontconfig-2.13.92-x86_64-1.txz: Upgraded. x/xf86-input-libinput-0.30.0-x86_64-1.txz: Upgraded.
* Mon May 18 23:30:26 UTC 202020200518233026Patrick J Volkerding2020-05-19
| | | | | | | | d/Cython-0.29.18-x86_64-1.txz: Upgraded. kde/kde-workspace-4.11.22-x86_64-8.txz: Rebuilt. Added /etc/pam.d/kde-np to fix KDM autologin. Thanks to USUARIONUEVO for the bug report. l/gnu-efi-3.0.12-x86_64-1.txz: Upgraded.
* Mon May 18 19:17:21 UTC 202020200518191721Patrick J Volkerding2020-05-18
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Greetings! After three months in /testing, the PAM merge into the main tree is now complete. When updating, be sure to install the new pam, cracklib, and libpwquality packages or you may find yourself locked out of your machine. Otherwise, these changes should be completely transparent and you shouldn't notice any obvious operational differences. Be careful if you make any changes in /etc/pam.d/ - leaving an extra console logged in while testing PAM config changes is a recommended standard procedure. Thanks again to Robby Workman, Vincent Batts, Phantom X, and ivandi for help implementing this. It's not done yet and there will be more fine-tuning of the config files, but now we can move on to build some other updates. Enjoy! a/cracklib-2.9.7-x86_64-1.txz: Added. a/kernel-firmware-20200517_f8d32e4-noarch-1.txz: Upgraded. a/libcgroup-0.41-x86_64-7.txz: Rebuilt. Rebuilt to add PAM support. a/libpwquality-1.4.2-x86_64-1.txz: Added. a/lilo-24.2-x86_64-9.txz: Rebuilt. Enable the "compact" option by default. liloconfig: correctly set the root partition. a/pam-1.3.1-x86_64-1.txz: Added. a/shadow-4.8.1-x86_64-7.txz: Rebuilt. Rebuilt to add PAM support. a/utempter-1.2.0-x86_64-1.txz: Upgraded. a/util-linux-2.35.1-x86_64-6.txz: Rebuilt. Rebuilt to add PAM support. a/xfsprogs-5.6.0-x86_64-2.txz: Rebuilt. Recompiled against icu4c-67.1. ap/at-3.2.1-x86_64-2.txz: Rebuilt. Rebuilt to add PAM support. ap/cups-2.3.3-x86_64-2.txz: Rebuilt. Rebuilt to add PAM support. ap/hplip-3.20.5-x86_64-2.txz: Rebuilt. Rebuilt to add PAM support. ap/mariadb-10.4.13-x86_64-2.txz: Rebuilt. Rebuilt to add PAM support. ap/screen-4.8.0-x86_64-2.txz: Rebuilt. Rebuilt to add PAM support. ap/soma-3.3.0-noarch-1.txz: Upgraded. Thanks to David Woodfall. ap/sqlite-3.31.1-x86_64-2.txz: Rebuilt. Recompiled against icu4c-67.1. ap/sudo-1.9.0-x86_64-2.txz: Rebuilt. Rebuilt to add PAM support. ap/vim-8.2.0788-x86_64-1.txz: Upgraded. d/bison-3.6.2-x86_64-1.txz: Upgraded. d/meson-0.54.2-x86_64-1.txz: Upgraded. d/python-setuptools-46.4.0-x86_64-1.txz: Upgraded. d/vala-0.48.6-x86_64-1.txz: Upgraded. kde/calligra-2.9.11-x86_64-36.txz: Rebuilt. Recompiled against icu4c-67.1. kde/kde-workspace-4.11.22-x86_64-7.txz: Rebuilt. Rebuilt to add PAM support. l/ConsoleKit2-1.2.1-x86_64-4.txz: Rebuilt. Rebuilt to add PAM support. l/boost-1.73.0-x86_64-2.txz: Rebuilt. Recompiled against icu4c-67.1. l/gnome-keyring-3.36.0-x86_64-2.txz: Rebuilt. Rebuilt to add PAM support. l/harfbuzz-2.6.6-x86_64-2.txz: Rebuilt. Recompiled against icu4c-67.1. l/icu4c-67.1-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/imagemagick-7.0.10_13-x86_64-1.txz: Upgraded. l/libcap-2.34-x86_64-2.txz: Rebuilt. Rebuilt to add PAM support. l/libical-3.0.8-x86_64-2.txz: Rebuilt. Recompiled against icu4c-67.1. l/libuv-1.38.0-x86_64-1.txz: Upgraded. l/libvisio-0.1.7-x86_64-3.txz: Rebuilt. Recompiled against icu4c-67.1. l/polkit-0.116-x86_64-3.txz: Rebuilt. Rebuilt to add PAM support. l/qt-4.8.7-x86_64-16.txz: Rebuilt. Recompiled against icu4c-67.1. l/qt5-5.13.2-x86_64-4.txz: Rebuilt. Recompiled against icu4c-67.1. l/qt5-webkit-5.212.0_alpha4-x86_64-2.txz: Rebuilt. Recompiled against icu4c-67.1. l/raptor2-2.0.15-x86_64-9.txz: Rebuilt. Recompiled against icu4c-67.1. l/system-config-printer-1.5.12-x86_64-4.txz: Rebuilt. Rebuilt to add PAM support. l/vte-0.60.2-x86_64-2.txz: Rebuilt. Recompiled against icu4c-67.1. n/cifs-utils-6.10-x86_64-4.txz: Rebuilt. Rebuilt to add PAM support. n/cyrus-sasl-2.1.27-x86_64-4.txz: Rebuilt. Rebuilt to add PAM support. n/dovecot-2.3.10.1-x86_64-1.txz: Upgraded. Rebuilt to add PAM support. Compiled against icu4c-67.1. This update fixes several denial-of-service vulnerabilities. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10957 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10958 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10967 (* Security fix *) n/mutt-1.14.1-x86_64-1.txz: Upgraded. n/netatalk-3.1.12-x86_64-3.txz: Rebuilt. Rebuilt to add PAM support. n/netkit-rsh-0.17-x86_64-3.txz: Rebuilt. Rebuilt to add PAM support. n/nss-pam-ldapd-0.9.11-x86_64-1.txz: Added. n/openssh-8.2p1-x86_64-3.txz: Rebuilt. Rebuilt to add PAM support. n/openvpn-2.4.9-x86_64-2.txz: Rebuilt. Rebuilt to add PAM support. n/pam-krb5-4.9-x86_64-1.txz: Added. n/php-7.4.6-x86_64-2.txz: Rebuilt. Recompiled against icu4c-67.1. n/popa3d-1.0.3-x86_64-4.txz: Rebuilt. Rebuilt to add PAM support. n/postfix-3.5.2-x86_64-1.txz: Upgraded. Compiled against icu4c-67.1. n/ppp-2.4.8-x86_64-2.txz: Rebuilt. Rebuilt to add PAM support. n/proftpd-1.3.6c-x86_64-2.txz: Rebuilt. Rebuilt to add PAM support. n/samba-4.12.2-x86_64-2.txz: Rebuilt. Rebuilt to add PAM support. Recompiled against icu4c-67.1. n/tin-2.4.4-x86_64-2.txz: Rebuilt. Recompiled against icu4c-67.1. n/vsftpd-3.0.3-x86_64-6.txz: Rebuilt. Rebuilt to add PAM support. t/texlive-2019.190626-x86_64-4.txz: Rebuilt. Recompiled against icu4c-67.1. x/vulkan-sdk-1.2.135.0-x86_64-1.txz: Upgraded. x/xdm-1.1.11-x86_64-10.txz: Rebuilt. Rebuilt to add PAM support. x/xisxwayland-1-x86_64-1.txz: Added. xap/sane-1.0.30-x86_64-1.txz: Upgraded. This update fixes several security issues. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12867 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12862 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12863 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12865 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12866 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12861 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12864 (* Security fix *) xap/vim-gvim-8.2.0788-x86_64-1.txz: Upgraded. xap/xlockmore-5.63-x86_64-2.txz: Rebuilt. Rebuilt to add PAM support. xap/xscreensaver-5.44-x86_64-2.txz: Rebuilt. Rebuilt to add PAM support. extra/brltty/brltty-6.1-x86_64-2.txz: Rebuilt. Recompiled against icu4c-67.1. extra/pure-alsa-system/qt5-5.13.2-x86_64-4_alsa.txz: Rebuilt. Recompiled against icu4c-67.1. isolinux/initrd.img: Rebuilt. Added PAM libraries, security modules, and config files. usb-and-pxe-installers/usbboot.img: Rebuilt. Added PAM libraries, security modules, and config files.
* Fri May 15 07:28:15 UTC 202020200515072815Patrick J Volkerding2020-05-15
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Hey folks, just a heads-up that PAM is about to be merged into the main tree. We can't have it blocking other upgrades any longer. The config files could be improved (adding support for pam_krb5 and pam_ldap, for example), but they'll do for now. Have a good weekend, and enjoy these updates! :-) a/aaa_elflibs-15.0-x86_64-23.txz: Rebuilt. Upgraded: libcap.so.2.34, libelf-0.179.so, liblzma.so.5.2.5, libglib-2.0.so.0.6400.2, libgmodule-2.0.so.0.6400.2, libgobject-2.0.so.0.6400.2, libgthread-2.0.so.0.6400.2, liblber-2.4.so.2.10.13, libldap-2.4.so.2.10.13, libpcre2-8.so.0.10.0. Added temporarily in preparation for upgrading icu4c: libicudata.so.65.1, libicui18n.so.65.1, libicuio.so.65.1, libicutest.so.65.1, libicutu.so.65.1, libicuuc.so.65.1. a/etc-15.0-x86_64-11.txz: Rebuilt. /etc/passwd: Added ldap (UID 330). /etc/group: Added ldap (GID 330). a/kernel-generic-5.4.41-x86_64-1.txz: Upgraded. a/kernel-huge-5.4.41-x86_64-1.txz: Upgraded. a/kernel-modules-5.4.41-x86_64-1.txz: Upgraded. a/pkgtools-15.0-noarch-33.txz: Rebuilt. setup.services: added support for rc.openldap and rc.openvpn. ap/hplip-3.20.5-x86_64-1.txz: Upgraded. d/kernel-headers-5.4.41-x86-1.txz: Upgraded. d/python-setuptools-46.3.0-x86_64-1.txz: Upgraded. d/python3-3.8.3-x86_64-1.txz: Upgraded. k/kernel-source-5.4.41-noarch-1.txz: Upgraded. n/openldap-2.4.50-x86_64-1.txz: Added. This is a complete OpenLDAP package with both client and server support. Thanks to Giuseppe Di Terlizzi for help with the server parts. n/openldap-client-2.4.50-x86_64-1.txz: Removed. x/mesa-20.0.7-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. testing/packages/PAM/hplip-3.20.5-x86_64-1_pam.txz: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Wed May 13 20:01:12 UTC 202020200513200112Patrick J Volkerding2020-05-14
| | | | | | l/shared-mime-info-2.0-x86_64-2.txz: Rebuilt. Disable fdatasync() usage. n/ethtool-5.6-x86_64-1.txz: Upgraded.
* Tue May 12 23:49:47 UTC 202020200512234947Patrick J Volkerding2020-05-13
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | ap/mariadb-10.4.13-x86_64-1.txz: Upgraded. This update fixes potential denial-of-service vulnerabilities. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2752 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2812 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2814 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2760 (* Security fix *) ap/sudo-1.9.0-x86_64-1.txz: Upgraded. l/harfbuzz-2.6.6-x86_64-1.txz: Upgraded. l/tidy-html5-5.6.0-x86_64-1.txz: Added. n/epic5-2.1.2-x86_64-1.txz: Upgraded. n/php-7.4.6-x86_64-1.txz: Upgraded. Built using --with-tidy=shared. Thanks to Thom1b. This update fixes bugs and security issues: Core: Long variables cause OOM and temp files are not cleaned. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11048 (* Security fix *) x/libmypaint-1.6.1-x86_64-1.txz: Upgraded. Shared library .so-version bump. xap/gimp-2.10.18-x86_64-2.txz: Rebuilt. Recompiled against libmypaint-1.6.1. testing/packages/PAM/mariadb-10.4.13-x86_64-1_pam.txz: Upgraded. This update fixes potential denial-of-service vulnerabilities. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2752 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2812 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2814 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2760 (* Security fix *) testing/packages/PAM/sudo-1.9.0-x86_64-1_pam.txz: Upgraded.
* Mon May 11 19:13:27 UTC 202020200511191327Patrick J Volkerding2020-05-12
| | | | | | l/python-appdirs-1.4.4-x86_64-1.txz: Upgraded. xap/xlockmore-5.63-x86_64-1.txz: Upgraded. testing/packages/PAM/xlockmore-5.63-x86_64-1_pam.txz: Upgraded.
* Sun May 10 23:34:28 UTC 202020200510233428Patrick J Volkerding2020-05-11
| | | | | | | | | | | | | | | | | a/btrfs-progs-5.6.1-x86_64-1.txz: Upgraded. a/kernel-generic-5.4.40-x86_64-1.txz: Upgraded. a/kernel-huge-5.4.40-x86_64-1.txz: Upgraded. a/kernel-modules-5.4.40-x86_64-1.txz: Upgraded. d/bison-3.6.1-x86_64-1.txz: Upgraded. d/kernel-headers-5.4.40-x86-1.txz: Upgraded. d/python-setuptools-46.2.0-x86_64-1.txz: Upgraded. k/kernel-source-5.4.40-noarch-1.txz: Upgraded. l/pcre2-10.35-x86_64-1.txz: Upgraded. l/shared-mime-info-2.0-x86_64-1.txz: Upgraded. n/ModemManager-1.12.10-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Sat May 9 20:49:43 UTC 202020200509204943Patrick J Volkerding2020-05-10
| | | | | | | | | | | | | | | | | | | ap/pamixer-1.4-x86_64-5.txz: Rebuilt. Recompiled against boost-1.73.0. d/Cython-0.29.17-x86_64-2.txz: Rebuilt. Added cython3 symlink. kde/calligra-2.9.11-x86_64-35.txz: Rebuilt. Recompiled against boost-1.73.0. l/akonadi-1.13.0-x86_64-15.txz: Rebuilt. Recompiled against boost-1.73.0. l/boost-1.73.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/freetype-2.10.2-x86_64-1.txz: Upgraded. l/imagemagick-7.0.10_11-x86_64-1.txz: Upgraded. n/libqmi-1.24.12-x86_64-1.txz: Upgraded. xap/blueman-2.1.3-x86_64-1.txz: Upgraded. testing/packages/PAM/pam-krb5-4.9-x86_64-1_pam.txz: Added. Thanks to Bart van der Hall for the packaging hints.
* Fri May 8 21:25:24 UTC 202020200508212524Patrick J Volkerding2020-05-09
| | | | | | | | | | | | | | | | a/shadow-4.8.1-x86_64-6.txz: Rebuilt. Include manpages for sulogin(8). a/util-linux-2.35.1-x86_64-5.txz: Rebuilt. ap/sysstat-12.3.3-x86_64-1.txz: Upgraded. d/bison-3.6-x86_64-1.txz: Upgraded. l/jansson-2.13.1-x86_64-1.txz: Upgraded. n/NetworkManager-1.24.0-x86_64-1.txz: Upgraded. n/fetchmail-6.4.5-x86_64-1.txz: Upgraded. testing/packages/PAM/shadow-4.8.1-x86_64-6_pam.txz: Rebuilt. Include manpages for sulogin(8). Use this version of /bin/su. testing/packages/PAM/util-linux-2.35.1-x86_64-5_pam.txz: Rebuilt. Don't use this version of /bin/su.
* Thu May 7 01:30:11 UTC 202020200507013011Patrick J Volkerding2020-05-07
| | | | | | | | | | | | | | | | | | | a/kernel-generic-5.4.39-x86_64-1.txz: Upgraded. a/kernel-huge-5.4.39-x86_64-1.txz: Upgraded. a/kernel-modules-5.4.39-x86_64-1.txz: Upgraded. d/kernel-headers-5.4.39-x86-1.txz: Upgraded. k/kernel-source-5.4.39-noarch-1.txz: Upgraded. HUGETLBFS n -> y JUMP_LABEL n -> y +CGROUP_HUGETLB n +HUGETLB_PAGE y +STATIC_KEYS_SELFTEST n Thanks to camerabambai. l/libspectre-0.2.9-x86_64-1.txz: Upgraded. l/pygobject3-3.36.1-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Tue May 5 20:21:27 UTC 202020200505202127Patrick J Volkerding2020-05-06
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | a/hwdata-0.335-noarch-1.txz: Upgraded. ap/tmux-3.1b-x86_64-1.txz: Upgraded. l/libcap-2.34-x86_64-1.txz: Upgraded. n/mutt-1.14.0-x86_64-1.txz: Upgraded. n/nfs-utils-2.4.3-x86_64-3.txz: Rebuilt. Added /var/lib/nfs/nfsdcltrack database directory for nfsdcltrack. Thanks to upnort. x/xterm-356-x86_64-1.txz: Upgraded. xap/NetworkManager-openvpn-1.8.12-x86_64-1.txz: Added. Thanks to Robby Workman. xap/mozilla-firefox-68.8.0esr-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/firefox/68.8.0/releasenotes/ https://www.mozilla.org/security/advisories/mfsa2020-17/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12387 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12388 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12389 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6831 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12392 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12393 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12395 (* Security fix *) xap/mozilla-thunderbird-68.8.0-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/thunderbird/68.8.0/releasenotes/ (* Security fix *) testing/packages/PAM/libcap-2.34-x86_64-1_pam.txz: Upgraded.
* Sun May 3 06:47:41 UTC 202020200503064741Patrick J Volkerding2020-05-03
| | | | | | | | | | | | | | | | | | | | | a/kernel-generic-5.4.38-x86_64-1.txz: Upgraded. a/kernel-huge-5.4.38-x86_64-1.txz: Upgraded. a/kernel-modules-5.4.38-x86_64-1.txz: Upgraded. d/kernel-headers-5.4.38-x86-1.txz: Upgraded. d/mercurial-5.4-x86_64-1.txz: Upgraded. k/kernel-source-5.4.38-noarch-1.txz: Upgraded. l/mozilla-nss-3.52-x86_64-1.txz: Upgraded. l/python-distro-1.5.0-x86_64-1.txz: Upgraded. l/python-pillow-7.1.2-x86_64-1.txz: Upgraded. l/v4l-utils-1.18.1-x86_64-1.txz: Upgraded. xap/seamonkey-2.53.2-x86_64-1.txz: Upgraded. This update contains security fixes and improvements. For more information, see: https://www.seamonkey-project.org/releases/seamonkey2.53.2 (* Security fix *) isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Fri May 1 18:05:38 UTC 202020200501180538Patrick J Volkerding2020-05-02
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | a/cryptsetup-2.3.2-x86_64-1.txz: Upgraded. a/sysvinit-scripts-2.1-noarch-30.txz: Rebuilt. rc.S: contents of mounts below /run or /var/run should be visible in both /run and /var/run. Thanks to Markus Wiesner. d/Cython-0.29.17-x86_64-1.txz: Upgraded. Dropped python2 support. d/python-pip-20.1-x86_64-1.txz: Upgraded. Dropped python2 support. d/python-setuptools-46.1.3-x86_64-1.txz: Upgraded. Dropped python2 support. l/M2Crypto-0.35.2-x86_64-5.txz: Rebuilt. Dropped python2 support. l/Mako-1.1.2-x86_64-2.txz: Rebuilt. Dropped python2 support. l/gsettings-desktop-schemas-3.36.1-x86_64-1.txz: Upgraded. l/libzip-1.6.1-x86_64-2.txz: Rebuilt. Recompiled against nettle-3.6. l/oniguruma-6.9.5_rev1-x86_64-1.txz: Upgraded. l/pycairo-1.19.1-x86_64-1.txz: Upgraded. Dropped python2 support. l/pycups-2.0.1-x86_64-1.txz: Upgraded. Dropped python2 support. l/pycurl-7.43.0.5-x86_64-1.txz: Upgraded. Dropped python2 support. l/pyparsing-2.4.7-x86_64-1.txz: Upgraded. Dropped python2 support. l/python-appdirs-1.4.3-x86_64-5.txz: Rebuilt. Dropped python2 support. l/python-certifi-2020.4.5.1-x86_64-1.txz: Upgraded. Dropped python2 support. l/python-chardet-3.0.4-x86_64-5.txz: Rebuilt. Dropped python2 support. l/python-docutils-0.16-x86_64-3.txz: Rebuilt. Dropped python2 support. l/python-enum34-1.1.10-x86_64-1.txz: Removed. l/python-future-0.18.2-x86_64-2.txz: Rebuilt. Dropped python2 support. l/python-idna-2.9-x86_64-2.txz: Rebuilt. Dropped python2 support. l/python-notify2-0.3.1-x86_64-5.txz: Rebuilt. Dropped python2 support. l/python-packaging-20.3-x86_64-2.txz: Rebuilt. Dropped python2 support. l/python-ply-3.11-x86_64-3.txz: Rebuilt. Dropped python2 support. l/python-pygments-2.6.1-x86_64-1.txz: Upgraded. Dropped python2 support. l/python-requests-2.23.0-x86_64-2.txz: Rebuilt. Dropped python2 support. l/python-sane-2.8.3-x86_64-5.txz: Rebuilt. Dropped python2 support. l/python-six-1.14.0-x86_64-2.txz: Rebuilt. Dropped python2 support. l/python-urllib3-1.25.9-x86_64-1.txz: Upgraded. Dropped python2 support. l/python2-module-collection-2.7.18-x86_64-1.txz: Added. Time to quarantine these python2 modules and pin the versions where they are (or in the case of setuptools, downgrade to the last version that doesn't complain). This will keep most of the standard python2 add-ons in one package so that we can upgrade modules for python3 without having to worry about python2 support getting dropped upstream. n/dnsmasq-2.81-x86_64-2.txz: Rebuilt. Recompiled against nettle-3.6. n/gnutls-3.6.13-x86_64-2.txz: Rebuilt. Recompiled against nettle-3.6. n/nettle-3.6-x86_64-1.txz: Upgraded. Shared library .so-version bump. x/mesa-20.0.6-x86_64-1.txz: Upgraded. x/pyxdg-0.26-x86_64-3.txz: Rebuilt. Dropped python2 support. x/ttf-tlwg-0.7.2-noarch-1.txz: Upgraded. x/xorg-server-1.20.8-x86_64-2.txz: Rebuilt. Recompiled against nettle-3.6. x/xorg-server-xephyr-1.20.8-x86_64-2.txz: Rebuilt. Recompiled against nettle-3.6. x/xorg-server-xnest-1.20.8-x86_64-2.txz: Rebuilt. Recompiled against nettle-3.6. x/xorg-server-xvfb-1.20.8-x86_64-2.txz: Rebuilt. Recompiled against nettle-3.6. x/xorg-server-xwayland-1.20.8-x86_64-2.txz: Rebuilt. Recompiled against nettle-3.6. x/xterm-355-x86_64-1.txz: Upgraded. xap/rdesktop-1.9.0-x86_64-2.txz: Rebuilt. Recompiled against nettle-3.6. extra/tigervnc/tigervnc-1.10.1-x86_64-3.txz: Rebuilt. Recompiled against nettle-3.6.
* Thu Apr 30 04:58:02 UTC 202020200430045802Patrick J Volkerding2020-04-30
| | | | | | | | | | | a/kernel-generic-5.4.36-x86_64-1.txz: Upgraded. a/kernel-huge-5.4.36-x86_64-1.txz: Upgraded. a/kernel-modules-5.4.36-x86_64-1.txz: Upgraded. d/kernel-headers-5.4.36-x86-1.txz: Upgraded. k/kernel-source-5.4.36-noarch-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Wed Apr 29 20:19:12 UTC 202020200429201912Patrick J Volkerding2020-04-30
| | | | | | | | | | ap/tmux-3.1a-x86_64-1.txz: Upgraded. d/cmake-3.17.2-x86_64-1.txz: Upgraded. n/curl-7.70.0-x86_64-1.txz: Upgraded. n/openldap-client-2.4.50-x86_64-1.txz: Upgraded. xap/audacious-4.0.3-x86_64-1.txz: Upgraded. xap/audacious-plugins-4.0.3-x86_64-1.txz: Upgraded. extra/pure-alsa-system/audacious-plugins-4.0.3-x86_64-1_alsa.txz: Upgraded.
* Tue Apr 28 20:18:40 UTC 202020200428201840Patrick J Volkerding2020-04-29
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | ap/cups-2.3.3-x86_64-1.txz: Upgraded. This update fixes two security issues: The ppdOpen function did not handle invalid UI constraint. ppdcSource::get_resolution function did not handle invalid resolution strings. The ippReadIO function may under-read an extension. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3898 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8842 (* Security fix *) l/imagemagick-7.0.10_10-x86_64-1.txz: Upgraded. n/samba-4.12.2-x86_64-1.txz: Upgraded. This update fixes two security issues: A client combining the 'ASQ' and 'Paged Results' LDAP controls can cause a use-after-free in Samba's AD DC LDAP server. A deeply nested filter in an un-authenticated LDAP search can exhaust the LDAP server's stack memory causing a SIGSEGV. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10700 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10704 (* Security fix *) testing/packages/PAM/cups-2.3.3-x86_64-1_pam.txz: Upgraded. This update fixes two security issues: The ppdOpen function did not handle invalid UI constraint. ppdcSource::get_resolution function did not handle invalid resolution strings. The ippReadIO function may under-read an extension. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3898 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8842 (* Security fix *) testing/packages/PAM/samba-4.12.2-x86_64-1_pam.txz: Upgraded. This update fixes two security issues: A client combining the 'ASQ' and 'Paged Results' LDAP controls can cause a use-after-free in Samba's AD DC LDAP server. A deeply nested filter in an un-authenticated LDAP search can exhaust the LDAP server's stack memory causing a SIGSEGV. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10700 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10704 (* Security fix *)
* Mon Apr 27 20:27:30 UTC 202020200427202730Patrick J Volkerding2020-04-28
| | | | | | | | | | | | | | | | | | | | | | a/mkinitrd-1.4.11-x86_64-15.txz: Rebuilt. Use the standard mktemp utility from GNU coreutils, not the old tempfile. d/help2man-1.47.15-x86_64-1.txz: Upgraded. l/aspell-en-2019.10.06_0-x86_64-1.txz: Upgraded. l/gtk+3-3.24.20-x86_64-1.txz: Upgraded. l/imagemagick-7.0.10_9-x86_64-1.txz: Upgraded. n/irssi-1.2.2-x86_64-2.txz: Rebuilt. Fixed ctrl-space killing input with recent glib. Thanks to tramtrist and Urchlay. x/xterm-354-x86_64-1.txz: Upgraded. extra/aspell-word-lists/aspell-de-20161207_7_0-x86_64-1.txz: Upgraded. extra/aspell-word-lists/aspell-ga-5.1_0-x86_64-1.txz: Upgraded. extra/aspell-word-lists/aspell-it-2.4_20070901_0-x86_64-1.txz: Upgraded. extra/aspell-word-lists/aspell-ml-0.04_1-x86_64-1.txz: Upgraded. extra/aspell-word-lists/aspell-pl-6.0_20200327_0-x86_64-1.txz: Upgraded. extra/aspell-word-lists/aspell-pt_BR-20131030_12_0-x86_64-1.txz: Upgraded. extra/aspell-word-lists/aspell-pt_PT-20190329_1_0-x86_64-1.txz: Upgraded. extra/aspell-word-lists/aspell-sk-2.02_0-x86_64-1.txz: Upgraded. extra/aspell-word-lists/aspell-tl-0.4_0-x86_64-1.txz: Upgraded.
* Sun Apr 26 18:28:01 UTC 202020200426182801Patrick J Volkerding2020-04-27
| | | | | | | d/meson-0.54.1-x86_64-1.txz: Upgraded. l/vte-0.60.2-x86_64-1.txz: Upgraded. n/fetchmail-6.4.4-x86_64-1.txz: Upgraded. n/s-nail-14.9.19-x86_64-1.txz: Upgraded.
* Sun Apr 26 03:34:28 UTC 202020200426033428Patrick J Volkerding2020-04-26
| | | | | d/rust-1.43.0-x86_64-2.txz: Rebuilt. Patched and recompiled with the system LLVM 10 instead of the bundled LLVM 9.
* Fri Apr 24 18:54:41 UTC 202020200424185441Patrick J Volkerding2020-04-25
| | | | | | | | | | | | | | | | | | | | | | | | a/bash-5.0.017-x86_64-1.txz: Upgraded. a/kernel-generic-5.4.35-x86_64-1.txz: Upgraded. a/kernel-huge-5.4.35-x86_64-1.txz: Upgraded. a/kernel-modules-5.4.35-x86_64-1.txz: Upgraded. a/mcelog-169-x86_64-1.txz: Upgraded. ap/nvme-cli-1.11.1-x86_64-1.txz: Upgraded. ap/powertop-2.12-x86_64-1.txz: Upgraded. ap/tmux-3.1-x86_64-1.txz: Upgraded. d/kernel-headers-5.4.35-x86-1.txz: Upgraded. d/parallel-20200422-noarch-1.txz: Upgraded. d/rust-1.43.0-x86_64-1.txz: Upgraded. d/vala-0.48.5-x86_64-1.txz: Upgraded. k/kernel-source-5.4.35-noarch-1.txz: Upgraded. l/gmm-5.4-noarch-1.txz: Upgraded. l/librsvg-2.48.4-x86_64-1.txz: Upgraded. l/sip-4.19.22-x86_64-1.txz: Upgraded. n/dhcpcd-8.1.9-x86_64-1.txz: Upgraded. x/mesa-20.0.5-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Wed Apr 22 02:19:37 UTC 202020200422021937Patrick J Volkerding2020-04-22
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | a/kernel-firmware-20200421_78c0348-noarch-1.txz: Upgraded. a/kernel-generic-5.4.34-x86_64-1.txz: Upgraded. a/kernel-huge-5.4.34-x86_64-1.txz: Upgraded. a/kernel-modules-5.4.34-x86_64-1.txz: Upgraded. a/openssl-solibs-1.1.1g-x86_64-1.txz: Upgraded. d/git-2.26.2-x86_64-1.txz: Upgraded. This update fixes a security issue: With a crafted URL that contains a newline or empty host, or lacks a scheme, the credential helper machinery can be fooled into providing credential information that is not appropriate for the protocol in use and host being contacted. Unlike the vulnerability CVE-2020-5260 fixed in v2.17.4, the credentials are not for a host of the attacker's choosing; instead, they are for some unspecified host (based on how the configured credential helper handles an absent "host" parameter). For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11008 (* Security fix *) d/kernel-headers-5.4.34-x86-1.txz: Upgraded. d/vala-0.48.4-x86_64-1.txz: Upgraded. k/kernel-source-5.4.34-noarch-1.txz: Upgraded. INFINIBAND_CXGB3 n -> m INFINIBAND_IPOIB_CM n -> y INFINIBAND_IPOIB_DEBUG_DATA n -> y Thanks to Karl Magnus Kolstø. l/M2Crypto-0.35.2-x86_64-4.txz: Rebuilt. Don't package typing-3.7.4.1 for python3. l/netpbm-10.90.01-x86_64-1.txz: Upgraded. n/openssl-1.1.1g-x86_64-1.txz: Upgraded. This update fixes a security issue: Fixed segmentation fault in SSL_check_chain() that could be exploited by a malicious peer in a Denial of Service attack. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1967 (* Security fix *) x/libva-2.7.1-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. testing/packages/PAM/openvpn-2.4.9-x86_64-1_pam.txz: Upgraded. This update fixes a security issue: Fix illegal client float. Thanks to Lev Stipakov. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11810 (* Security fix *) usb-and-pxe-installers/usbboot.img: Rebuilt.
* Tue Apr 21 02:45:06 UTC 202020200421024506Patrick J Volkerding2020-04-21
| | | | | | | | | | | | | | | | | d/python-2.7.17-x86_64-2.txz: Removed. d/python2-2.7.18-x86_64-1.txz: Added. OK, I know a few people got excited seeing python-2 removed in the previous entry, but it's just being renamed to python2 for consistency with the python3 package. It's DOA though, and is the final release of the already EOL python 2 branch (a "commemorative" release as they say in the announcement). l/M2Crypto-0.35.2-x86_64-3.txz: Rebuilt. Added python3 modules. Thanks to sombragris and ponce. l/harfbuzz-2.6.5-x86_64-1.txz: Upgraded. l/imagemagick-7.0.10_7-x86_64-1.txz: Upgraded. l/libuv-1.37.0-x86_64-1.txz: Upgraded. l/libyaml-0.2.4-x86_64-1.txz: Upgraded. l/oniguruma-6.9.5-x86_64-1.txz: Upgraded. x/pixman-0.40.0-x86_64-1.txz: Upgraded.
* Sun Apr 19 21:06:43 UTC 202020200419210643Patrick J Volkerding2020-04-20
| | | | | | | l/neon-0.31.1-x86_64-1.txz: Upgraded. n/postfix-3.5.1-x86_64-1.txz: Upgraded. n/s-nail-14.9.18-x86_64-1.txz: Upgraded. xap/gnuchess-6.2.6-x86_64-1.txz: Upgraded.