summaryrefslogtreecommitdiff
path: root/ChangeLog.rss
Commit message (Collapse)AuthorAge
* Sat Oct 13 21:17:39 UTC 201820181013211739Patrick J Volkerding2018-10-14
| | | | | | | | | | | a/kernel-generic-4.14.76-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.76-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.76-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.76-x86-1.txz: Upgraded. k/kernel-source-4.14.76-noarch-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Fri Oct 12 19:24:43 UTC 201820181012192443Patrick J Volkerding2018-10-13
| | | | | | | | | | | | | | l/pycups-1.9.74-x86_64-1.txz: Upgraded. l/pyparsing-2.2.2-x86_64-1.txz: Upgraded. l/python-packaging-18.0-x86_64-1.txz: Upgraded. n/gpgme-1.12.0-x86_64-1.txz: Upgraded. Please note that kdepimlibs ships with an earlier (and incompatible) version of gpgme and both packages install headers into /usr/include/gpgme++/. In order to recompile any packages depending on kdepimlibs, that package will need to be reinstalled. Originally gpgme was developed by the KDE project but later ended up under the gnupg umbrella. I'm not finding any clean way to work around this conflict, but I believe it will go away once we switch over to Plasma 5.
* Wed Oct 10 23:09:36 UTC 201820181010230936Patrick J Volkerding2018-10-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | a/kernel-firmware-20181008_c6b6265-noarch-1.txz: Upgraded. a/kernel-generic-4.14.75-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.75-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.75-x86_64-1.txz: Upgraded. d/git-2.19.1-x86_64-1.txz: Upgraded. Submodules' "URL"s come from the untrusted .gitmodules file, but we blindly gave it to "git clone" to clone submodules when "git clone --recurse-submodules" was used to clone a project that has such a submodule. The code has been hardened to reject such malformed URLs (e.g. one that begins with a dash). Credit for finding and fixing this vulnerability goes to joernchen and Jeff King, respectively. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17456 (* Security fix *) d/kernel-headers-4.14.75-x86-1.txz: Upgraded. d/make-4.2.1-x86_64-4.txz: Rebuilt. Use a non-blocking read with pselect to avoid hangs. Thanks to Linux.tar.gz and David Spencer. d/subversion-1.10.3-x86_64-1.txz: Upgraded. k/kernel-source-4.14.75-noarch-1.txz: Upgraded. Config changes since 4.14.74: FB_HYPERV n -> m Thanks to walecha. l/librsvg-2.44.7-x86_64-1.txz: Upgraded. l/python-pillow-5.3.0-x86_64-1.txz: Upgraded. n/nghttp2-1.34.0-x86_64-1.txz: Upgraded. x/libSM-1.2.3-x86_64-1.txz: Upgraded. x/libX11-1.6.7-x86_64-1.txz: Upgraded. x/libdrm-2.4.95-x86_64-1.txz: Upgraded. x/libxcb-1.13.1-x86_64-1.txz: Upgraded. x/vulkan-sdk-1.1.85.0-x86_64-1.txz: Upgraded. Thanks to dugan. xap/gnuplot-5.2.5-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Fri Oct 5 22:43:41 UTC 201820181005224341Patrick J Volkerding2018-10-06
| | | | | | | ap/mariadb-10.3.10-x86_64-1.txz: Upgraded. d/python-pip-18.1-x86_64-1.txz: Upgraded. x/libinput-1.12.1-x86_64-1.txz: Upgraded. x/mesa-18.2.2-x86_64-1.txz: Upgraded.
* Thu Oct 4 19:58:13 UTC 201820181004195813Patrick J Volkerding2018-10-05
| | | | | | | | | | | | | | | | | | | | a/kernel-generic-4.14.74-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.74-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.74-x86_64-1.txz: Upgraded. ap/cups-filters-1.21.3-x86_64-1.txz: Upgraded. d/cmake-3.12.3-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.74-x86-1.txz: Upgraded. k/kernel-source-4.14.74-noarch-1.txz: Upgraded. l/gst-plugins-base-1.14.4-x86_64-1.txz: Upgraded. l/gst-plugins-good-1.14.4-x86_64-1.txz: Upgraded. l/gst-plugins-libav-1.14.4-x86_64-1.txz: Upgraded. l/gstreamer-1.14.4-x86_64-1.txz: Upgraded. n/dovecot-2.3.3-x86_64-1.txz: Upgraded. Thanks to teoberi for the link to the glibc-2.28 crypt() patch. extra/pure-alsa-system/gst-plugins-good-1.14.4-x86_64-1_alsa.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Wed Oct 3 05:26:51 UTC 201820181003052651Patrick J Volkerding2018-10-03
| | | | | | | | | | | | | | | | | | | | | | | | | a/eudev-3.2.5-x86_64-4.txz: Upgraded. More bugs, unreplaced macros, and systemd-specific stuff have been found in the eudev-3.2.6 release. Since there don't seem to be any improvements that would merit closely following the bleeding edge on this one, we'll revert back to eudev-3.2.5 which worked fine. a/kernel-firmware-20181001_7c81f23-noarch-1.txz: Upgraded. ap/at-3.1.23-x86_64-1.txz: Upgraded. ap/hplip-3.18.9-x86_64-1.txz: Upgraded. d/mercurial-4.7.2-x86_64-1.txz: Upgraded. x/libpthread-stubs-0.4-x86_64-3.txz: Rebuilt. Rebuilt since this should not be "noarch". xap/mozilla-firefox-60.2.2esr-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html https://www.mozilla.org/en-US/security/advisories/mfsa2018-24/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12387 (* Security fix *) xap/mozilla-thunderbird-60.2.1-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://www.mozilla.org/en-US/thunderbird/60.2.1/releasenotes/ xfce/Thunar-1.8.2-x86_64-1.txz: Upgraded.
* Sat Sep 29 20:01:29 UTC 201820180929200129Patrick J Volkerding2018-09-30
| | | | | | | | | | | | a/kernel-generic-4.14.73-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.73-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.73-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.73-x86-1.txz: Upgraded. k/kernel-source-4.14.73-noarch-1.txz: Upgraded. l/librsvg-2.44.6-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Fri Sep 28 03:55:56 UTC 201820180928035556Patrick J Volkerding2018-09-28
| | | | | | ap/sqlite-3.25.2-x86_64-1.txz: Upgraded. d/rust-1.29.1-x86_64-1.txz: Upgraded. l/apr-1.6.5-x86_64-1.txz: Upgraded.
* Wed Sep 26 21:18:33 UTC 201820180926211833Patrick J Volkerding2018-09-27
| | | | | | | | | | | | | | | | | | | | | | | a/aaa_terminfo-6.1_20180923-x86_64-1.txz: Upgraded. a/eudev-3.2.6-x86_64-3.txz: Rebuilt. Fixed issues with the default rules. Thanks to zuriel. a/kernel-generic-4.14.72-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.72-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.72-x86_64-1.txz: Upgraded. ap/vim-8.1.0436-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.72-x86-1.txz: Upgraded. d/re2c-1.1.1-x86_64-1.txz: Upgraded. k/kernel-source-4.14.72-noarch-1.txz: Upgraded. l/ncurses-6.1_20180923-x86_64-1.txz: Upgraded. n/fetchmail-6.3.26-x86_64-5.txz: Rebuilt. Patched to fix certificate verification failures with OpenSSL 1.1.1. Thanks to Jurgen Van Ham. n/gnutls-3.6.4-x86_64-1.txz: Upgraded. x/xf86-video-intel-20180906_25c9a2fc-x86_64-1.txz: Upgraded. xap/vim-gvim-8.1.0436-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Mon Sep 24 21:37:09 UTC 201820180924213709Patrick J Volkerding2018-09-25
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | d/Cython-0.28.5-x86_64-1.txz: Upgraded. d/help2man-1.47.7-x86_64-1.txz: Upgraded. d/meson-0.48.0-x86_64-1.txz: Upgraded. d/python-setuptools-40.4.3-x86_64-1.txz: Upgraded. l/M2Crypto-0.30.1-x86_64-1.txz: Upgraded. l/cairo-1.15.14-x86_64-1.txz: Upgraded. l/librsvg-2.44.4-x86_64-1.txz: Upgraded. l/pycairo-1.17.1-x86_64-1.txz: Upgraded. l/pycurl-7.43.0.2-x86_64-1.txz: Upgraded. l/pyparsing-2.2.1-x86_64-1.txz: Upgraded. n/ModemManager-1.8.2-x86_64-1.txz: Upgraded. n/bind-9.12.2_P2-x86_64-1.txz: Upgraded. This update fixes security issues: There was a long-existing flaw in the documentation for ms-self, krb5-self, ms-subdomain, and krb5-subdomain rules in update-policy statements. Though the policies worked as intended, operators who configured their servers according to the misleading documentation may have thought zone updates were more restricted than they were; users of these rule types are advised to review the documentation and correct their configurations if necessary. New rule types matching the previously documented behavior will be introduced in a future maintenance release. named could crash during recursive processing of DNAME records when deny-answer-aliases was in use. This flaw is disclosed in CVE-2018-5740. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5740 (* Security fix *) n/httpd-2.4.35-x86_64-1.txz: Upgraded. This release fixes bugs and regressions in httpd-2.4.34, adds an apache2ctl -> apachectl symlink, and no longer automatically overwrites rc.httpd when upgraded.
* Sat Sep 22 22:41:41 UTC 201820180922224141Patrick J Volkerding2018-09-23
| | | | | | | | | | | | | | | | | | | | | | | | a/eudev-3.2.6-x86_64-2.txz: Rebuilt. Removed unneeded groups "render" and "kvm" from 50-udev-default.rules. Thanks to Richard David Sherman. a/grub-2.02-x86_64-4.txz: Rebuilt. Applied a patch needed when compiling with recent binutils. Thanks to ivandi. d/parallel-20180922-noarch-1.txz: Upgraded. x/xterm-337-x86_64-1.txz: Upgraded. xap/mozilla-firefox-60.2.1esr-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. A potentially exploitable crash in TransportSecurityInfo used for SSL can be triggered by data stored in the local cache in the user profile directory. This issue is only exploitable in combination with another vulnerability allowing an attacker to write data into the local cache or from locally installed malware. This issue also triggers a non-exploitable startup crash for users switching between the Nightly and Release versions of Firefox if the same profile is used. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html https://www.mozilla.org/en-US/security/advisories/mfsa2018-23/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12383 (* Security fix *)
* Fri Sep 21 18:51:07 UTC 201820180921185107Patrick J Volkerding2018-09-22
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | a/eudev-3.2.6-x86_64-1.txz: Upgraded. a/glibc-solibs-2.28-x86_64-2.txz: Upgraded. a/grub-2.02-x86_64-3.txz: Rebuilt. Patched to fix compatibility with recent xfsprogs. Thanks to Markus Wiesner. a/kernel-generic-4.14.71-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.71-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.71-x86_64-1.txz: Upgraded. ap/opus-tools-0.2-x86_64-1.txz: Upgraded. ap/sqlite-3.25.1-x86_64-1.txz: Upgraded. d/icecream-20180905_cdc6ff8-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.71-x86-1.txz: Upgraded. d/llvm-7.0.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. k/kernel-source-4.14.71-noarch-1.txz: Upgraded. l/ffmpeg-3.4.4-x86_64-2.txz: Rebuilt. Don't try to link with Samba since the latest version is not compatible. l/glibc-2.28-x86_64-2.txz: Upgraded. All packages have been patched where needed for glibc-2.28 and compile tested here. Thanks to nobodino for the help. l/glibc-i18n-2.28-x86_64-2.txz: Upgraded. l/glibc-profile-2.28-x86_64-2.txz: Upgraded. l/gst-plugins-base-1.14.3-x86_64-1.txz: Upgraded. l/gst-plugins-good-1.14.3-x86_64-1.txz: Upgraded. l/gst-plugins-libav-1.14.3-x86_64-1.txz: Upgraded. l/gstreamer-1.14.3-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_11-x86_64-1.txz: Upgraded. l/libopusenc-0.2-x86_64-1.txz: Added. l/librsvg-2.44.3-x86_64-1.txz: Upgraded. l/opus-1.3_rc2-x86_64-1.txz: Upgraded. l/opusfile-0.11-x86_64-1.txz: Upgraded. l/soprano-2.9.4-x86_64-3.txz: Rebuilt. Recompiled to drop virtuoso dependency. l/virtuoso-ose-6.1.8-x86_64-9.txz: Removed. Even KDE4 has migrated away from actually using this for anything. The last thing in Slackware that was dependent on it was Soprano, which has been recompiled to no longer use it. n/postfix-3.3.1-x86_64-2.txz: Rebuilt. Recompiled so that it quits whining about OpenSSL. Thanks to shastah. x/mesa-18.2.1-x86_64-1.txz: Upgraded. Compiled against llvm-7.0.0. x/xf86-video-vmware-13.3.0-x86_64-2.txz: Rebuilt. Recompiled against llvm-7.0.0. x/xterm-336-x86_64-1.txz: Upgraded. extra/pure-alsa-system/ffmpeg-3.4.4-x86_64-2_alsa.txz: Rebuilt. Don't try to link with Samba since the latest version is not compatible. extra/pure-alsa-system/gst-plugins-good-1.14.3-x86_64-1_alsa.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Tue Sep 18 19:22:30 UTC 201820180918192230Patrick J Volkerding2018-09-19
| | | | | | | | | | | | | | | | | | | | ap/dmidecode-3.2-x86_64-1.txz: Upgraded. ap/nano-3.1-x86_64-1.txz: Upgraded. ap/slackpkg-2.83.0-noarch-4.txz: Rebuilt. Merged two patches from git: Clarify that a press of "Enter" is needed to confirm kernel change Mention possible stale mirror if CHECKSUMS.md5 gpg verify fails Thanks to Mario Preksavec and Robby Workman. ap/sqlite-3.25.0-x86_64-1.txz: Upgraded. ap/xorriso-1.5.0-x86_64-1.txz: Upgraded. l/lmdb-0.9.22-x86_64-2.txz: Rebuilt. Fixed the build script to clear out the build area properly - previously it was possible for binaries of the wrong $ARCH to end up in the package. Thanks to reddog83. n/gnutls-3.6.3-x86_64-2.txz: Rebuilt. Merged backported SSL/TLS fixes. Thanks to orbea. n/samba-4.9.0-x86_64-2.txz: Rebuilt. Recompiled in case the lmdb package was broken.
* Sat Sep 15 21:19:23 UTC 201820180915211923Patrick J Volkerding2018-09-16
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | a/kernel-firmware-20180913_44d4fca-noarch-1.txz: Upgraded. a/kernel-generic-4.14.70-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.70-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.70-x86_64-1.txz: Upgraded. ap/hplip-3.18.7-x86_64-4.txz: Rebuilt. Applied fixed patch - this has a better chance of working now. I've checked and hpcups no longer links to libImageProcessor. Which, by the way, the previous build dumped onto my main system (not even in "make install"), but not into the package itself. I no longer own an HP printer and will never buy another one, so if there are any remaining problems please report. Thanks to Matteo Bernardini. d/kernel-headers-4.14.70-x86-1.txz: Upgraded. k/kernel-source-4.14.70-noarch-1.txz: Upgraded. Config changes since 4.14.69: CLEANCACHE n -> y CMA n -> y MEMORY_FAILURE n -> y NUMA n -> y X86_CHECK_BIOS_CORRUPTION n -> y Z3FOLD m -> y ZBUD m -> y ZSMALLOC m -> y +ACPI_APEI_MEMORY_FAILURE y +ACPI_NUMA y +AMD_NUMA y +CMA_AREAS 7 +CMA_DEBUG n +CMA_DEBUGFS n +DMA_CMA n +HWPOISON_INJECT m +NEED_MULTIPLE_NODES y +NODES_SHIFT 6 +NODES_SPAN_OTHER_NODES y +NUMA_BALANCING n +NUMA_EMU n +RAS_CEC n +USE_PERCPU_NUMA_NODE_ID y +X86_64_ACPI_NUMA y +X86_BOOTPARAM_MEMORY_CORRUPTION_CHECK n n/NetworkManager-1.14.0-x86_64-1.txz: Upgraded. Added new options: --enable-json-validation --enable-ovs xap/network-manager-applet-1.8.18-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. pasture/php-5.6.38-x86_64-1.txz: Upgraded. One security bug has been fixed in this release: Apache2: XSS due to the header Transfer-Encoding: chunked For more information, see: https://php.net/ChangeLog-5.php#5.6.38 (* Security fix *) usb-and-pxe-installers/usbboot.img: Rebuilt.
* Fri Sep 14 23:06:26 UTC 201820180914230626Patrick J Volkerding2018-09-15
| | | | | | | | | | | | | | | | | | ap/hplip-3.18.7-x86_64-3.txz: Rebuilt. Throw away the broken and ill-advised libImageProcessor closed-source blob. Thanks to Matteo Bernardini. ap/zsh-5.6.2-x86_64-1.txz: Upgraded. d/rust-1.29.0-x86_64-1.txz: Upgraded. l/lmdb-0.9.22-x86_64-1.txz: Added. This is a new dependency of Samba. n/php-7.2.10-x86_64-1.txz: Upgraded. This is a security release which also contains several minor bug fixes. For more information, see: https://php.net/ChangeLog-7.php#7.2.10 (* Security fix *) n/samba-4.9.0-x86_64-1.txz: Upgraded. x/xf86-video-amdgpu-18.1.0-x86_64-1.txz: Upgraded. x/xf86-video-ati-18.1.0-x86_64-1.txz: Upgraded.
* Thu Sep 13 21:41:51 UTC 201820180913214151Patrick J Volkerding2018-09-14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | a/sysvinit-scripts-2.1-noarch-20.txz: Rebuilt. rc.6: it was reported by birdboy that JFS is not properly unmounted unless the order of unmounting local filesystems followed by remounting the root filesystem read-only is inverted. I tried that, and although it did get rid of a "/ filesystem is busy" error during shutdown, the JFS / filesystem was still checked at boot (and found to be clean). I believe that the existing order of unmounting non-root filesystems followed by remounting the root filesystem as read-only is the correct order, and found that putting another sync between these also gets rid of the error on shutdown, so I've done that. When using JFS as the root filesystem there's still another similar error message that's generated earlier in the boot, though. I'm unable to find any way to shut down a JFS root partition in a way that leaves it clean enough that fsck will not check it at boot, but it is always found to be clean so this should only be cosmetic. I recall this behavior of JFS going all the way back to when it was first added to the kernel. If anyone has a better fix, I'll take a look at it, but in my opinion it's not really anything to worry about. ap/ghostscript-9.25-x86_64-1.txz: Upgraded. This release fixes problems with argument handling, some unintended results of the security fixes to the SAFER file access restrictions (specifically accessing ICC profile files), and some additional security issues over the recent 9.24 release. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16509 (* Security fix *) ap/squashfs-tools-20180612_6e242dc-x86_64-1.txz: Upgraded. Linked against libzstd.so.1. Thanks to alienBOB. ap/sudo-1.8.25p1-x86_64-1.txz: Upgraded. d/binutils-2.31.1-x86_64-4.txz: Rebuilt. Since baldzhang has pointed out a valid use case for windres on Linux, we are restoring the "Windows only" utilities, as none of them are very large and there may be valid uses for the other ones as well. l/freetype-2.9.1-x86_64-2.txz: Rebuilt. Patched to build properly if windres is present on the machine. l/sg3_utils-1.44-x86_64-1.txz: Upgraded. l/zstd-1.3.5-x86_64-1.txz: Added. Thanks to alienBOB. xfce/tumbler-0.2.3-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. Use the ter-114v terminus font. It has been reported that the font we were using (ter-v14v) restricts the available console colors from 16 to 8 due to needing an extra bit for the higher number of available glyphs (though in testing here I couldn't see any difference). The new font covers ISO8859-1, ISO8859-15, and Windows-1252 codepages. I'm still not sure it's the best choice, so additional input is welcomed. Thanks to bormant. usb-and-pxe-installers/usbboot.img: Rebuilt. Use the ter-114v terminus font.
* Wed Sep 12 21:19:38 UTC 201820180912211938Patrick J Volkerding2018-09-13
| | | | | | | | | | | | | | | | | | | | | | | | a/elilo-3.16-x86_64-8.txz: Rebuilt. eliloconfig: this was occasionally failing and the issue was traced to the script's use of tr (not sure why still). Replaced the construct with sed and the issue seems to have gone away. a/openssl-solibs-1.1.1-x86_64-1.txz: Upgraded. d/binutils-2.31.1-x86_64-3.txz: Rebuilt. Do not install the Windows-specific tools. Not only are these useless on Linux, but the presence of windres fools freetype into thinking that it is on a Windows system, leading to a build failure. d/git-2.19.0-x86_64-1.txz: Upgraded. l/freetype-2.9.1-x86_64-1.txz: Upgraded. l/harfbuzz-1.9.0-x86_64-1.txz: Upgraded. l/media-player-info-24-noarch-1.txz: Upgraded. l/pcre2-10.32-x86_64-1.txz: Upgraded. l/sg3_utils-1.43-x86_64-1.txz: Upgraded. n/openssl-1.1.1-x86_64-1.txz: Upgraded. x/fontconfig-2.13.1-x86_64-1.txz: Upgraded. We had problem reports with fontconfig-2.13.0 which led to it being reverted but we'll try it again. Please let me know if the issues (with Wine iirc) persist. x/libinput-1.12.0-x86_64-1.txz: Upgraded.
* Mon Sep 10 21:00:00 UTC 201820180910210000Patrick J Volkerding2018-09-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | a/kernel-generic-4.14.69-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.69-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.69-x86_64-1.txz: Upgraded. a/xfsprogs-4.18.0-x86_64-1.txz: Upgraded. ap/nano-3.0-x86_64-1.txz: Upgraded. d/cmake-3.12.2-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.69-x86-1.txz: Upgraded. k/kernel-source-4.14.69-noarch-1.txz: Upgraded. Config changes since 4.14.68: CRYPTO_LZO m -> y FRONTSWAP n -> y ZBUD n -> m ZPOOL m -> y +ZSWAP y Thanks to Darth Vader. l/glib2-2.56.2-x86_64-2.txz: Rebuilt. Make links in the documentation directory to all of the API documentation found under /usr/share/gtk-doc/html. Thanks to Didier Spaier. l/libarchive-3.3.3-x86_64-1.txz: Upgraded. n/links-2.17-x86_64-1.txz: Upgraded. xfce/tumbler-0.2.2-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Fri Sep 7 23:00:06 UTC 201820180907230006Patrick J Volkerding2018-09-08
| | | | x/mesa-18.2.0-x86_64-1.txz: Upgraded.
* Thu Sep 6 23:22:45 UTC 201820180906232245Patrick J Volkerding2018-09-07
| | | | | | | | | | | | | | | | | a/pkgtools-15.0-noarch-23.txz: Rebuilt. Removed stray cat and loop kludges for lack of reported size, since this is fixed now in tar. a/tar-1.30-x86_64-3.txz: Rebuilt. Fixed a bug in the nolonezero patch that was evidently causing all of the issues in installpkg that we'd been kludging around (e.g. the "stray cat"). Thanks *very* much to NonNonBa for the patch, and to SeB for the initial analysis of the problem. ap/ghostscript-9.24-x86_64-2.txz: Rebuilt. Applied upstream patch to fix "Filter failed". Thanks to th_r and bamunds. d/gdb-8.2-x86_64-1.txz: Upgraded. d/indent-2.2.12-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Thu Sep 6 06:15:46 UTC 201820180906061546Patrick J Volkerding2018-09-06
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | a/acpid-2.0.30-x86_64-1.txz: Upgraded. a/etc-15.0-x86_64-9.txz: Rebuilt. Added support for /etc/ld.so.conf.d/. Thanks to Qury. a/kernel-firmware-20180904_85c5d90-noarch-1.txz: Upgraded. a/kernel-generic-4.14.68-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.68-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.68-x86_64-1.txz: Upgraded. a/pkgtools-15.0-noarch-22.txz: Rebuilt. installpkg: prevent noise from the "stray cat" if tar hands it a broken pipe. Thanks to ivandi. Also (in the comments) provide a possibly better but untested solution. Thanks to SeB. a/sysvinit-2.90-x86_64-2.txz: Rebuilt. sysvinit-2.90 added an undocumented feature that tries to spawn agetty if it sees console= in the kernel command line. Avoiding the debate about whether this code belongs in init at all, at least such a change should be documented, and probably made opt-in. This patch disables the new behavior unless "sysvinit_agetty" is also seen in the kernel command line. It seems like this might have been something added for Hurd, and it might be wise to stick to what we've got rather than following upstream on this particular package. If anyone notices any other odd behavior, please let me know. Thanks to shastah. a/sysvinit-scripts-2.1-noarch-19.txz: Rebuilt. When checking for intel_pstate, direct the stderr to /dev/null in case the file doesn't exist in /sys. Thanks to ivandi. Allow forcing an option by editing /etc/default/cpufreq. ap/cups-filters-1.21.2-x86_64-1.txz: Upgraded. ap/ghostscript-9.24-x86_64-1.txz: Upgraded. Patched multiple -dSAFER sandbox bypass vulnerabilities. Thanks to Tavis Ormandy. For more information, see: https://www.ghostscript.com/doc/9.24/News.htm https://www.kb.cert.org/vuls/id/332928 (* Security fix *) ap/sudo-1.8.25-x86_64-1.txz: Upgraded. d/binutils-2.31.1-x86_64-2.txz: Rebuilt. elf.c (_bfd_elf_get_symbol_version_string): Return _("<corrupt>") for corrupt symbol version info. elflink.c (bfd_elf_record_link_assignment): Always clear h->verinfo.verdef when overriding a dynamic definition. Thanks to Michael Short for pointing out the upstream patches. d/ccache-3.4.3-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.68-x86-1.txz: Upgraded. d/llvm-6.0.1-x86_64-2.txz: Rebuilt. Recompiled with -DCLANG_BUILD_SHARED_LIBS=ON to fix issues when multiple OpenCL drivers are installed. Thanks to Heinz Wiesinger. d/mercurial-4.7.1-x86_64-1.txz: Upgraded. k/kernel-source-4.14.68-noarch-1.txz: Upgraded. l/mozilla-nss-3.39-x86_64-1.txz: Upgraded. n/curl-7.61.1-x86_64-1.txz: Upgraded. This update fixes an NTLM password overflow via integer overflow. For more information, see: https://curl.haxx.se/docs/CVE-2018-14618.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14618 (* Security fix *) n/gnupg2-2.2.10-x86_64-1.txz: Upgraded. n/libtirpc-1.1.4-x86_64-1.txz: Upgraded. n/netatalk-3.1.11-x86_64-2.txz: Rebuilt. rc.atalk: fixed errors in status output. Thanks to marav. n/nghttp2-1.33.0-x86_64-1.txz: Upgraded. n/p11-kit-0.23.14-x86_64-1.txz: Upgraded. n/stunnel-5.49-x86_64-1.txz: Upgraded. x/libdrm-2.4.94-x86_64-1.txz: Upgraded. x/xf86-video-ati-20180824_de88ea27-x86_64-1.txz: Upgraded. xap/hexchat-2.14.2-x86_64-1.txz: Upgraded. xap/mozilla-firefox-60.2.0esr-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html (* Security fix *) xap/xlockmore-5.56-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Tue Aug 28 22:05:19 UTC 201820180828220519Patrick J Volkerding2018-08-29
| | | | | | | | | a/sysvinit-scripts-2.1-noarch-18.txz: Rebuilt. rc.cpufreq: for CPUs that use intel_pstate, default to the performance governor. The performance governor provides power savings while avoiding the ramp-up lag caused by using "ondemand", which defaults to "powersave" on these systems. Thanks to EdGr. d/bison-3.1-x86_64-1.txz: Upgraded.
* Mon Aug 27 20:27:22 UTC 201820180827202722Patrick J Volkerding2018-08-28
| | | | | | | | | | | | | | | | | | | | | | | a/kernel-firmware-20180825_fea76a0-noarch-1.txz: Upgraded. ap/vim-8.1.0328-x86_64-1.txz: Upgraded. d/meson-0.47.2-x86_64-1.txz: Upgraded. d/python-setuptools-40.2.0-x86_64-1.txz: Upgraded. l/python-certifi-2018.8.24-x86_64-1.txz: Upgraded. l/python-idna-2.7-x86_64-1.txz: Upgraded. l/python-packaging-17.1-x86_64-1.txz: Upgraded. l/python-pillow-5.2.0-x86_64-1.txz: Upgraded. l/python-requests-2.19.1-x86_64-1.txz: Upgraded. l/python-urllib3-1.23-x86_64-1.txz: Upgraded. l/talloc-2.1.14-x86_64-1.txz: Upgraded. l/tdb-1.3.16-x86_64-1.txz: Upgraded. l/tevent-0.9.37-x86_64-1.txz: Upgraded. n/ethtool-4.18-x86_64-1.txz: Upgraded. n/openssh-7.8p1-x86_64-1.txz: Upgraded. n/samba-4.8.5-x86_64-1.txz: Upgraded. x/xauth-1.0.10-x86_64-3.txz: Rebuilt. Patched to fix a bug where changing the hostname caused X access to be lost. Thanks to TurboBlaze. xap/vim-gvim-8.1.0328-x86_64-1.txz: Upgraded.
* Fri Aug 24 23:06:52 UTC 201820180824230652Patrick J Volkerding2018-08-25
| | | | | | | | | | | | | | a/kernel-generic-4.14.67-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.67-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.67-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.67-x86-1.txz: Upgraded. d/parallel-20180822-noarch-1.txz: Upgraded. k/kernel-source-4.14.67-noarch-1.txz: Upgraded. x/mesa-18.1.7-x86_64-1.txz: Upgraded. xap/gparted-0.32.0-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Wed Aug 22 23:44:25 UTC 201820180822234425Patrick J Volkerding2018-08-23
| | | | | | | | | | | | | | | | | | | | | a/findutils-4.6.0-x86_64-1.txz: Upgraded. a/kernel-firmware-20180821_1d17c18-noarch-1.txz: Upgraded. a/kernel-generic-4.14.66-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.66-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.66-x86_64-1.txz: Upgraded. ap/man-db-2.8.4-x86_64-2.txz: Rebuilt. Rebuilt to get it on the slackpkg upgrade list since the previous texlive package clobbered /usr/bin/man and we need to fix that. d/kernel-headers-4.14.66-x86-1.txz: Upgraded. k/kernel-source-4.14.66-noarch-1.txz: Upgraded. l/glib2-2.56.2-x86_64-1.txz: Upgraded. t/texlive-2018.180822-x86_64-1.txz: Upgraded. Added some patches that I'd dropped - sorry, my bad. Don't clobber /usr/bin/man. Thanks to Johannes Schoepfer. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Tue Aug 21 18:39:27 UTC 201820180821183927Patrick J Volkerding2018-08-22
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | a/openssl-solibs-1.1.0i-x86_64-2.txz: Rebuilt. ap/cups-filters-1.21.0-x86_64-1.txz: Upgraded. Compiled against poppler-0.68.0. ap/qpdf-8.2.1-x86_64-1.txz: Upgraded. kde/calligra-2.9.11-x86_64-25.txz: Rebuilt. Recompiled against poppler-0.68.0. l/babl-0.1.56-x86_64-1.txz: Upgraded. l/gdbm-1.18-x86_64-1.txz: Upgraded. l/gegl-0.4.8-x86_64-1.txz: Upgraded. l/jmtpfs-0.5-x86_64-1.txz: Added. l/pango-1.42.4-x86_64-1.txz: Upgraded. l/poppler-0.68.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. n/dhcpcd-7.0.8-x86_64-1.txz: Upgraded. n/openssl-1.1.0i-x86_64-2.txz: Rebuilt. Fixed c_rehash script. n/php-7.2.9-x86_64-1.txz: Upgraded. t/texlive-2018.180820-x86_64-1.txz: Upgraded. Compiled against poppler-0.68.0. texdoc fixed - a cache file was missing synctex header was missing (for building third-party apps) xindy was broken - recompiled from source Thanks to Johannes Schoepfer. x/libX11-1.6.6-x86_64-1.txz: Upgraded. This update fixes some security issues: Fixed crash on invalid reply (CVE-2018-14598). Fixed off-by-one writes (CVE-2018-14599). Fixed out of boundary write (CVE-2018-14600). For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14598 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14599 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14600 (* Security fix *) xap/gimp-2.10.6-x86_64-1.txz: Upgraded. xfce/tumbler-0.2.1-x86_64-6.txz: Rebuilt. Recompiled against poppler-0.68.0.
* Sun Aug 19 23:59:17 UTC 201820180819235917Patrick J Volkerding2018-08-20
| | | | | | | | | | | | | | | | | | a/e2fsprogs-1.44.4-x86_64-1.txz: Upgraded. a/kernel-generic-4.14.65-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.65-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.65-x86_64-1.txz: Upgraded. ap/jove-4.16.0.73-x86_64-6.txz: Rebuilt. Fixed getline() namespace collision patch. ap/sudo-1.8.24-x86_64-1.txz: Upgraded. d/icecream-20180808-x86_64-1.txz: Upgraded. Use sources from git, which avoids timeouts and hangs that have been observed with version 1.1, and adds additional support for clang. d/kernel-headers-4.14.65-x86-1.txz: Upgraded. k/kernel-source-4.14.65-noarch-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Sat Aug 18 02:09:51 UTC 201820180818020951Patrick J Volkerding2018-08-18
| | | | | | | | | | | a/kernel-generic-4.14.64-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.64-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.64-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.64-x86-1.txz: Upgraded. k/kernel-source-4.14.64-noarch-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Tue Aug 14 22:56:09 UTC 201820180814225609Patrick J Volkerding2018-08-15
| | | | | | | | | | | | | | | | | | | | a/kernel-firmware-20180814_fdd3468-noarch-1.txz: Upgraded. a/openssl-solibs-1.1.0i-x86_64-1.txz: Upgraded. d/strace-4.24-x86_64-1.txz: Upgraded. l/harfbuzz-1.8.8-x86_64-1.txz: Upgraded. n/iproute2-4.18.0-x86_64-1.txz: Upgraded. n/openssl-1.1.0i-x86_64-1.txz: Upgraded. This update fixes two low severity security issues: Client DoS due to large DH parameter. Cache timing vulnerability in RSA Key Generation. For more information, see: https://www.openssl.org/news/secadv/20180612.txt https://www.openssl.org/news/secadv/20180416.txt https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0732 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0737 (* Security fix *) x/mesa-18.1.6-x86_64-1.txz: Upgraded. xap/xscreensaver-5.40-x86_64-1.txz: Upgraded.
* Tue Aug 14 00:10:54 UTC 201820180814001054Patrick J Volkerding2018-08-14
| | | | | | | | | | | | | | | a/etc-15.0-x86_64-8.txz: Rebuilt. /etc/passwd: Added icecc (UID 49). /etc/group: Added icecc (GID 49). a/pciutils-3.6.2-x86_64-1.txz: Upgraded. a/sysvinit-scripts-2.1-noarch-17.txz: Rebuilt. rc.M: start rc.icecc-scheduler and rc.iceccd. d/icecream-1.1-x86_64-1.txz: Added. Thanks to Heinz Wiesinger for the SBo reference build script. n/libmbim-1.16.2-x86_64-1.txz: Upgraded. n/libqmi-1.20.2-x86_64-1.txz: Upgraded. n/p11-kit-0.23.13-x86_64-1.txz: Upgraded. x/xterm-334-x86_64-1.txz: Upgraded.
* Sat Aug 11 05:01:49 UTC 201820180811050149Patrick J Volkerding2018-08-11
| | | | | | xap/mozilla-thunderbird-60.0-x86_64-2.txz: Rebuilt. Applied upstream patch to fix crash with folder name with special characters. Thanks to Karl Magnus Kolstø for the bug report and link to the patch.
* Fri Aug 10 22:42:55 UTC 201820180810224255Patrick J Volkerding2018-08-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | a/kernel-generic-4.14.62-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.62-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.62-x86_64-1.txz: Upgraded. ap/pamixer-1.3.1-x86_64-7.txz: Rebuilt. Recompiled against boost-1.68.0. d/cmake-3.12.1-x86_64-1.txz: Upgraded. d/distcc-3.3-x86_64-3.txz: Rebuilt. Install masquerade symlinks in /usr/lib${LIBDIRSUFFIX}/distcc/. d/kernel-headers-4.14.62-x86-1.txz: Upgraded. k/kernel-source-4.14.62-noarch-1.txz: Upgraded. kde/calligra-2.9.11-x86_64-24.txz: Rebuilt. Recompiled against boost-1.68.0. l/akonadi-1.13.0-x86_64-10.txz: Rebuilt. Recompiled against boost-1.68.0. l/boost-1.68.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/harfbuzz-1.8.7-x86_64-1.txz: Upgraded. l/libgsf-1.14.44-x86_64-1.txz: Upgraded. l/librsvg-2.42.6-x86_64-1.txz: Upgraded. l/libsoup-2.62.3-x86_64-1.txz: Upgraded. n/bind-9.12.2_P1-x86_64-1.txz: Upgraded. Fixed a security issue where named could crash during recursive processing of DNAME records when "deny-answer-aliases" was in use resulting in a denial of service. Note that "deny-answer-aliases" is rarely used. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5740 (* Security fix *) xap/audacious-3.10-x86_64-1.txz: Upgraded. xap/audacious-plugins-3.10-x86_64-1.txz: Upgraded. extra/pure-alsa-system/audacious-plugins-3.10-x86_64-1_alsa.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Tue Aug 7 23:24:17 UTC 201820180807232417Patrick J Volkerding2018-08-08
| | | | | | | | | | | | | | a/btrfs-progs-v4.17.1-x86_64-1.txz: Upgraded. a/sysvinit-scripts-2.1-noarch-16.txz: Rebuilt. rc.M: call update-gdk-pixbuf-loaders with HOME=/root to prevent creating a .cache directory in /. Thanks to Konrad Rzepecki. n/NetworkManager-1.12.2-x86_64-2.txz: Rebuilt. Fix libnm compile errors due to NM_AVAILABLE_IN_1_12_2 macro. x/xorg-server-1.20.1-x86_64-1.txz: Upgraded. x/xorg-server-xephyr-1.20.1-x86_64-1.txz: Upgraded. x/xorg-server-xnest-1.20.1-x86_64-1.txz: Upgraded. x/xorg-server-xvfb-1.20.1-x86_64-1.txz: Upgraded. xap/network-manager-applet-1.8.16-x86_64-1.txz: Upgraded.
* Tue Aug 7 05:51:28 UTC 201820180807055128Patrick J Volkerding2018-08-07
| | | | | | | | | | | | | | | | | | | | | | | | a/kernel-generic-4.14.61-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.61-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.61-x86_64-1.txz: Upgraded. a/sysvinit-scripts-2.1-noarch-15.txz: Rebuilt. rc.S: clean up files in /var/lib/pkgtools/setup/tmp. Thanks to burdi01. ap/hplip-3.18.7-x86_64-2.txz: Rebuilt. Patched to fix libImageProcessor installation. Thanks to Matteo Bernardini. d/kernel-headers-4.14.61-x86-1.txz: Upgraded. k/kernel-source-4.14.61-noarch-1.txz: Upgraded. l/opus-1.3_rc-x86_64-1.txz: Upgraded. n/iputils-s20180629-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-60.0-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/thunderbird/60.0/releasenotes/ https://www.mozilla.org/security/known-vulnerabilities/thunderbird.html https://www.mozilla.org/en-US/security/advisories/mfsa2018-19/ (* Security fix *) isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Sat Aug 4 07:38:34 UTC 201820180804073834Patrick J Volkerding2018-08-04
| | | | | | | | | | | | | | | | | | | | | | a/dbus-1.12.10-x86_64-1.txz: Upgraded. a/kernel-generic-4.14.60-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.60-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.60-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.60-x86-1.txz: Upgraded. d/mercurial-4.7-x86_64-1.txz: Upgraded. d/rust-1.28.0-x86_64-1.txz: Upgraded. k/kernel-source-4.14.60-noarch-1.txz: Upgraded. xap/blueman-2.0.6-x86_64-2.txz: Rebuilt. Allow users in the netdev group to make changes. Thanks to voleg, kgha, and zakame. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. testing/packages/glibc-2.28-x86_64-2.txz: Rebuilt. Fixed compile issues when linking with libpthread. testing/packages/glibc-i18n-2.28-x86_64-2.txz: Rebuilt. testing/packages/glibc-profile-2.28-x86_64-2.txz: Rebuilt. testing/packages/glibc-solibs-2.28-x86_64-2.txz: Rebuilt. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Thu Aug 2 20:12:10 UTC 201820180802201210Patrick J Volkerding2018-08-03
| | | | | | | | | | | | | | | | ap/hplip-3.18.7-x86_64-1.txz: Upgraded. l/harfbuzz-1.8.5-x86_64-1.txz: Upgraded. n/lftp-4.8.4-x86_64-1.txz: Upgraded. It has been discovered that lftp up to and including version 4.8.3 does not properly sanitize remote file names, leading to a loss of integrity on the local system when reverse mirroring is used. A remote attacker may trick a user to use reverse mirroring on an attacker controlled FTP server, resulting in the removal of all files in the current working directory of the victim's system. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10916 (* Security fix *) x/fonttosfnt-1.0.5-x86_64-1.txz: Upgraded.
* Wed Aug 1 22:38:53 UTC 201820180801223853Patrick J Volkerding2018-08-02
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | ap/man-db-2.8.4-x86_64-1.txz: Upgraded. d/gdb-8.1.1-x86_64-1.txz: Upgraded. d/python-pip-18.0-x86_64-1.txz: Upgraded. d/python-setuptools-40.0.0-x86_64-1.txz: Upgraded. d/python3-3.6.6-x86_64-1.txz: Upgraded. l/libpcap-1.9.0-x86_64-1.txz: Upgraded. l/pango-1.42.3-x86_64-1.txz: Upgraded. x/libdrm-2.4.93-x86_64-1.txz: Upgraded. xap/blueman-2.0.6-x86_64-1.txz: Upgraded. This update fixes an issue where blueman-mechanism did not enforce the polkit action 'org.blueman.network.setup' for which a polkit policy is shipped. This meant that any user with access to the D-Bus system bus was able to access the related API without authentication. The result was an unspecified impact on the networking stack. Thanks to Matthias Gerstner for discovering this issue. (* Security fix *) testing/packages/glibc-2.28-x86_64-1.txz: Added. These packages are in /testing pending FTBFS analysis. They seem to work fine here, but with a few header file deprecations and some other possible API changes and incompatibilities (see the NEWS file), I expect there will be some changes required to various packages. Feel free to test them out though. Because of changes to the way glibc is built and installed that started with the glibc-2.27 packages, you can upgrade to these packages and also (if you wish) downgrade back to glibc-2.27 using upgradepkg. testing/packages/glibc-i18n-2.28-x86_64-1.txz: Added. testing/packages/glibc-profile-2.28-x86_64-1.txz: Added. testing/packages/glibc-solibs-2.28-x86_64-1.txz: Added.
* Tue Jul 31 05:53:40 UTC 201820180731055340Patrick J Volkerding2018-07-31
| | | | | | | | | | | | | a/kernel-firmware-20180730_7b5835f-noarch-1.txz: Upgraded. l/fuse-2.9.8-x86_64-1.txz: Upgraded. l/gdbm-1.17-x86_64-1.txz: Upgraded. l/seamonkey-solibs-2.49.4-x86_64-1.txz: Upgraded. l/utf8proc-2.2.0-x86_64-1.txz: Upgraded. xap/seamonkey-2.49.4-x86_64-1.txz: Upgraded. This update contains security fixes and improvements. For more information, see: http://www.seamonkey-project.org/releases/seamonkey2.49.4 (* Security fix *)
* Sun Jul 29 08:27:12 UTC 201820180729082712Patrick J Volkerding2018-07-29
| | | | | | | | | | | | a/kernel-generic-4.14.59-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.59-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.59-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.59-x86-1.txz: Upgraded. k/kernel-source-4.14.59-noarch-1.txz: Upgraded. x/mesa-18.1.5-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Fri Jul 27 21:01:22 UTC 201820180727210122Patrick J Volkerding2018-07-28
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Hey folks, my first order of business here needs to be a huge thank you to everyone who has donated at https://paypal.me/volkerdi to help keep this project going. As most of you are already aware by now, the financal situation here at Slackware HQ has not been great for many years, including not getting any pay for the last two years and forcing me (and my family) to live very frugally while I continued to work on the project hoping I'd figure out a way to actually monitize it by the time that Slackware 15.0 is ready for release. I'm not trying to cast any blame regarding the situation. Really, I can only blame myself for not trying to build my own ship years ago when things began to not really work out. I'm still looking into sustainable funding options such as Patreon or Liberapay (or perhaps both), and I'm open to other ideas. I'm no longer in immediate danger of going broke, and I'm no longer entertaining the notion of joining my friends at the local potato chip factory in order to pay my bills. :) My family is grateful and humbled by the support we've received. Hope we'll be able to keep this project going for a long time. Also, I realize that the website lacks updates and needs attention and I will need to find some time to devote to that. I've never been much of a website designer, and the slackware.com site is basically left over from work done by former Walnut Creek / BSDi employees. I've never seen able to make much sense of the SQL backend. The interface to edit and post articles is clunky (and I'm not sure the PHP for that even works any more). When I've posted articles in recent years, I've done so by editing the main page already processed from PHP into HTML, which is pretty darn messy as I'm sure you can imagine. I tend to prioritize the distribution itself over other demands on my time - that's clearly a lot to do with how things ended up the way they did. So, I guess that's the report for now. Lots more work to do and not enough time to do it in... that part I don't see changing moving forward. :) Thanks very much again. I'll do my best to keep you all posted. - Pat a/file-5.34-x86_64-1.txz: Upgraded. a/kernel-firmware-20180727_b01151b-noarch-1.txz: Upgraded. a/kernel-generic-4.14.58-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.58-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.58-x86_64-1.txz: Upgraded. d/gcc-8.2.0-x86_64-1.txz: Upgraded. d/gcc-brig-8.2.0-x86_64-1.txz: Upgraded. d/gcc-g++-8.2.0-x86_64-1.txz: Upgraded. d/gcc-gfortran-8.2.0-x86_64-1.txz: Upgraded. d/gcc-gnat-8.2.0-x86_64-1.txz: Upgraded. d/gcc-go-8.2.0-x86_64-1.txz: Upgraded. d/gcc-objc-8.2.0-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.58-x86-1.txz: Upgraded. d/libtool-2.4.6-x86_64-9.txz: Rebuilt. Recompiled to update embedded GCC version number. k/kernel-source-4.14.58-noarch-1.txz: Upgraded. CRASH_DUMP n -> y KEXEC n -> y +KEXEC_JUMP y +PROC_VMCORE y l/babl-0.1.54-x86_64-1.txz: Upgraded. l/gegl-0.4.6-x86_64-1.txz: Upgraded. l/libart_lgpl-2.3.21-x86_64-2.txz: Removed. This actually hasn't been needed by any Slackware package since koffice in KDE3, and this particular version won't work with the Trinity Desktop Environment, which is essentially a fork of KDE 3.5 updated to compile and run with modern libraries and development tools. I can't see much point in keeping it around. Thanks to _gin. n/NetworkManager-1.12.2-x86_64-1.txz: Upgraded. n/dhcpcd-7.0.7-x86_64-1.txz: Upgraded. x/libinput-1.11.3-x86_64-1.txz: Upgraded. extra/tigervnc/tigervnc-1.9.0-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Wed Jul 25 03:50:17 UTC 201820180725035017Patrick J Volkerding2018-07-25
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | a/kernel-generic-4.14.57-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.57-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.57-x86_64-1.txz: Upgraded. a/shadow-4.2.1-x86_64-5.txz: Rebuilt. adduser: added "input" to additional user groups. Thanks to stormtracknole. a/sysvinit-scripts-2.1-noarch-14.txz: Rebuilt. Handle remote (NFS, etc.) mounts with spaces in the name. Thanks to upnort. d/kernel-headers-4.14.57-x86-1.txz: Upgraded. d/parallel-20180722-noarch-1.txz: Upgraded. d/rust-1.27.2-x86_64-1.txz: Upgraded. d/subversion-1.10.2-x86_64-1.txz: Upgraded. k/kernel-source-4.14.57-noarch-1.txz: Upgraded. l/libgphoto2-2.5.19-x86_64-1.txz: Upgraded. l/libzip-1.5.1-x86_64-4.txz: Rebuilt. Make sure that the API-CHANGES file is included in the package documentation. x/xf86-video-r128-6.11.0-x86_64-1.txz: Upgraded. x/xorg-server-1.20.0-x86_64-3.txz: Rebuilt. Applied some patches that other distributions have been using for a while: Fix glamor so that the return value from glamor_fds_from_pixmap matches what's expected (thanks to Darth Vader for pointing out these patches). Autobind secondary GPUs to the master as output sink / offload source. This seems like a beneficial patch until/unless DEs start to handle this. For nvidia cards, if they are GeForce 8 or newer use the modesetting driver by default. Seems to be recommmended by upstream where they indicate that fixes going into nouveau are primarily to target older cards for legacy support and that the modesetting ddx is preferable for newer ones: https://bugs.freedesktop.org/show_bug.cgi?id=94844 x/xorg-server-xephyr-1.20.0-x86_64-3.txz: Rebuilt. x/xorg-server-xnest-1.20.0-x86_64-3.txz: Rebuilt. x/xorg-server-xvfb-1.20.0-x86_64-3.txz: Rebuilt. isolinux/initrd.img: Rebuilt. Use ter-v14v.psf.gz as the consolefont. It supports more character sets, and the larger font was causing wraparound on UEFI (at least on bare metal here). kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Fri Jul 20 23:16:32 UTC 201820180720231632Patrick J Volkerding2018-07-21
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | ap/cups-filters-1.20.4-x86_64-2.txz: Rebuilt. Recompiled against poppler-0.67.0. kde/calligra-2.9.11-x86_64-23.txz: Rebuilt. Recompiled against poppler-0.67.0. l/ffmpeg-3.4.4-x86_64-1.txz: Upgraded. l/gst-plugins-base-1.14.2-x86_64-1.txz: Upgraded. l/gst-plugins-good-1.14.2-x86_64-1.txz: Upgraded. l/gst-plugins-libav-1.14.2-x86_64-1.txz: Upgraded. l/gstreamer-1.14.2-x86_64-1.txz: Upgraded. l/poppler-0.67.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. n/php-7.2.8-x86_64-1.txz: Upgraded. This is a security release which also contains several minor bug fixes. (* Security fix *) t/texlive-2018.180630-x86_64-2.txz: Rebuilt. Recompiled against poppler-0.67.0. xap/MPlayer-20180720-x86_64-1.txz: Upgraded. xfce/tumbler-0.2.1-x86_64-5.txz: Rebuilt. Recompiled against poppler-0.67.0. extra/pure-alsa-system/MPlayer-20180720-x86_64-1_alsa.txz: Upgraded. extra/pure-alsa-system/ffmpeg-3.4.4-x86_64-1_alsa.txz: Upgraded. extra/pure-alsa-system/gst-plugins-good-1.14.2-x86_64-1_alsa.txz: Upgraded. pasture/php-5.6.37-x86_64-1.txz: Upgraded. Several security bugs have been fixed in this release, including: Int Overflow lead to Heap OverFlow in exif_thumbnail_extract of exif.c heap-buffer-overflow (READ of size 48) while reading exif data (* Security fix *)
* Fri Jul 20 02:05:55 UTC 201820180720020555Patrick J Volkerding2018-07-20
| | | | | | | | | a/util-linux-2.32.1-x86_64-1.txz: Upgraded. l/pango-1.42.2-x86_64-1.txz: Upgraded. n/whois-5.3.2-x86_64-1.txz: Upgraded. x/igt-gpu-tools-1.23-x86_64-1.txz: Added. x/intel-gpu-tools-1.22-x86_64-3.txz: Removed. x/xf86-video-ati-20180719_64bd009d-x86_64-1.txz: Upgraded.
* Wed Jul 18 22:41:16 UTC 201820180718224116Patrick J Volkerding2018-07-19
| | | | | | | | | | | n/httpd-2.4.34-x86_64-1.txz: Upgraded. This update fixes two denial of service issues: mod_md: DoS via Coredumps on specially crafted requests mod_http2: DoS for HTTP/2 connections by specially crafted requests For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8011 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1333 (* Security fix *)
* Tue Jul 17 21:16:10 UTC 201820180717211610Patrick J Volkerding2018-07-18
| | | | | | | | | | | | | | | | | | | | | Happy 25th anniversary to the Slackware 1.00 release! When the original announcement went out on Usenet, I believe it had a UTC timestamp which has led to some confusion over whether the anniversary falls on the 16th (which was the date when I made the post) or on the 17th (which is when most people first saw it)... but really, what's the difference? We can celebrate on both days as far as I'm concerned. Thanks for sticking with the project all these years. Glad I was able to help. :) Here's a link to the 1.00 announcement: http://www.slackware.com/announce/1.0.php And here's a nice article that was posted on opensource.com: https://opensource.com/article/18/7/stackware-turns-25 a/kernel-firmware-20180717_8d69bab-noarch-1.txz: Upgraded. l/pulseaudio-12.2-x86_64-1.txz: Upgraded. n/gnutls-3.6.3-x86_64-1.txz: Upgraded. n/mutt-1.10.1-x86_64-1.txz: Upgraded. This update fixes bugs and security issues. Upstream strongly recommends that all IMAP and POP users upgrade as soon as possible. (* Security fix *)
* Sat Jul 14 21:49:31 UTC 201820180714214931Patrick J Volkerding2018-07-15
| | | | | l/pulseaudio-12.1-x86_64-1.txz: Upgraded. l/utf8proc-2.1.1-x86_64-1.txz: Upgraded.
* Fri Jul 13 21:48:06 UTC 201820180713214806Patrick J Volkerding2018-07-14
| | | | | | | a/pciutils-3.6.1-x86_64-1.txz: Upgraded. ap/cups-filters-1.20.4-x86_64-1.txz: Upgraded. n/gnupg2-2.2.9-x86_64-1.txz: Upgraded. n/libgpg-error-1.32-x86_64-1.txz: Upgraded.
* Thu Jul 12 21:28:13 UTC 201820180712212813Patrick J Volkerding2018-07-13
| | | | | | | | | | | | | | | | a/etc-15.0-x86_64-7.txz: Rebuilt. Don't set a default MANPATH - it ends up overriding the config file settings. Thanks to Nate_KS and andygoth. a/mkinitrd-1.4.11-x86_64-8.txz: Rebuilt. Added hid-asus module to mkinitrd_command_generator.sh. Thanks to phalange. l/harfbuzz-1.8.3-x86_64-1.txz: Upgraded. n/bind-9.12.2-x86_64-1.txz: Upgraded. Looking at the BIND release schedule, it's probably better to stick with this stable branch than to track the development/unstable which isn't due to become bind-9.14.0 for many months. Like always, we'll move to a newer branch if that becomes necessary. x/xf86-input-libinput-0.28.0-x86_64-1.txz: Upgraded. x/xf86-video-ati-20180711_f533b1f6-x86_64-1.txz: Upgraded.
* Thu Jul 12 01:50:07 UTC 201820180712015007Patrick J Volkerding2018-07-12
| | | | | | | | | | | | | | | | | | | | | | | | | | a/kernel-generic-4.14.55-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.55-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.55-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.55-x86-1.txz: Upgraded. d/rust-1.27.1-x86_64-1.txz: Upgraded. k/kernel-source-4.14.55-noarch-1.txz: Upgraded. n/bind-9.13.2-x86_64-1.txz: Upgraded. This update fixes security issues: Fixed a bug where extraordinarily large zone transfers caused several problems, with possible outcomes including corrupted journal files or server exit due to assertion failure. Don't permit recursive query service to unauthorized clients. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5738 (* Security fix *) n/curl-7.61.0-x86_64-1.txz: Upgraded. This update fixes a buffer overflow in SMTP send. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0500 (* Security fix *) isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Tue Jul 10 21:57:11 UTC 201820180710215711Patrick J Volkerding2018-07-11
| | | | | | | | | | | | | | | a/e2fsprogs-1.44.3-x86_64-1.txz: Upgraded. a/gptfdisk-1.0.4-x86_64-1.txz: Upgraded. n/dovecot-2.3.2.1-x86_64-1.txz: Upgraded. n/iptables-1.8.0-x86_64-1.txz: Upgraded. n/libnftnl-1.1.1-x86_64-1.txz: Upgraded. n/nftables-0.9.0-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-52.9.1-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/thunderbird/52.9.1/releasenotes/ https://www.mozilla.org/security/known-vulnerabilities/thunderbird.html (* Security fix *)