| Commit message (Collapse) | Author | Age |
|---|
| |
|
|
|
|
|
|
|
|
|
|
| |
d/perl-5.28.2-x86_64-1.txz: Upgraded.
Modules upgraded:
DBD-mysql-4.050, IO-Socket-SSL-2.066, TermReadKey-2.38, URI-1.76.
l/gst-plugins-base-1.16.0-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.16.0-x86_64-1.txz: Upgraded.
l/gst-plugins-libav-1.16.0-x86_64-1.txz: Upgraded.
l/gstreamer-1.16.0-x86_64-1.txz: Upgraded.
l/python-urllib3-1.24.2-x86_64-1.txz: Upgraded.
extra/pure-alsa-system/gst-plugins-good-1.16.0-x86_64-1_alsa.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
ap/ksh93-20190416_7d7bba3e-x86_64-1.txz: Upgraded.
ap/sysstat-12.1.4-x86_64-1.txz: Upgraded.
l/gvfs-1.40.1-x86_64-2.txz: Rebuilt.
Recompiled against libcdio-2.1.0.
l/icu4c-64.2-x86_64-1.txz: Upgraded.
l/libcddb-1.3.2-x86_64-6.txz: Rebuilt.
Recompiled against libcdio-2.1.0.
l/libcdio-2.1.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/libcdio-paranoia-10.2+2.0.0-x86_64-2.txz: Rebuilt.
Recompiled against libcdio-2.1.0.
l/zstd-1.4.0-x86_64-1.txz: Upgraded.
n/dhcpcd-7.2.0-x86_64-1.txz: Upgraded.
n/dovecot-2.3.5.2-x86_64-1.txz: Upgraded.
This update fixes a security issue:
Trying to login with 8bit username containing invalid UTF8 input causes
auth process to crash if auth policy is enabled. This could be used rather
easily to cause a DoS. Similar crash also happens during mail delivery
when using invalid UTF8 in From or Subject header when OX push
notification driver is used.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10691
(* Security fix *)
n/nghttp2-1.38.0-x86_64-1.txz: Upgraded.
n/openssh-8.0p1-x86_64-1.txz: Upgraded.
This release contains a mitigation for a weakness in the scp(1) tool
and protocol (CVE-2019-6111): when copying files from a remote system
to a local directory, scp(1) did not verify that the filenames that
the server sent matched those requested by the client. This could
allow a hostile server to create or clobber unexpected local files
with attacker-controlled content.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6111
(* Security fix *)
xap/MPlayer-20190418-x86_64-1.txz: Upgraded.
Compiled against libcdio-2.1.0.
xap/audacious-plugins-3.10.1-x86_64-2.txz: Rebuilt.
Recompiled against libcdio-2.1.0.
extra/pure-alsa-system/MPlayer-20190418-x86_64-1_alsa.txz: Upgraded.
Compiled against libcdio-2.1.0.
extra/pure-alsa-system/audacious-plugins-3.10.1-x86_64-2_alsa.txz: Rebuilt.
Recompiled against libcdio-2.1.0.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/kernel-generic-4.19.35-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.35-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.35-x86_64-1.txz: Upgraded.
ap/sqlite-3.28.0-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.35-x86-1.txz: Upgraded.
d/meson-0.50.1-x86_64-1.txz: Upgraded.
d/ruby-2.6.3-x86_64-1.txz: Upgraded.
k/kernel-source-4.19.35-noarch-1.txz: Upgraded.
l/Mako-1.0.9-x86_64-1.txz: Upgraded.
l/libcap-2.27-x86_64-1.txz: Upgraded.
l/libpng-1.6.37-x86_64-1.txz: Upgraded.
This update fixes security issues:
Fixed a use-after-free vulnerability (CVE-2019-7317) in png_image_free.
Fixed a memory leak in the ARM NEON implementation of png_do_expand_palette.
Fixed a memory leak in pngtest.c.
Fixed two vulnerabilities (CVE-2018-14048, CVE-2018-14550) in
contrib/pngminus; refactor.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14048
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14550
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7317
(* Security fix *)
l/libpsl-0.21.0-x86_64-1.txz: Upgraded.
l/pcre2-10.33-x86_64-1.txz: Upgraded.
l/pyparsing-2.4.0-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
| |
|
|
|
|
|
|
|
| |
ap/nano-4.1-x86_64-1.txz: Upgraded.
l/giflib-5.1.9-x86_64-2.txz: Rebuilt.
Restore GifQuantizeBuffer and other deprecated functions to the shared
library. Thanks to Skaendo.
l/glib2-2.60.1-x86_64-1.txz: Upgraded.
l/orc-0.4.29-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/gawk-5.0.0-x86_64-1.txz: Upgraded.
ap/pamixer-1.4-x86_64-2.txz: Rebuilt.
Recompiled against boost-1.70.0.
ap/vim-8.1.1157-x86_64-1.txz: Upgraded.
d/cmake-3.14.2-x86_64-1.txz: Upgraded.
e/emacs-26.2-x86_64-1.txz: Upgraded.
kde/calligra-2.9.11-x86_64-30.txz: Rebuilt.
Recompiled against boost-1.70.0.
l/akonadi-1.13.0-x86_64-12.txz: Rebuilt.
Recompiled against boost-1.70.0.
l/boost-1.70.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
Note: Boost now provides its own BoostConfig.cmake config file, and it may
not work with all existing code (here, calligra stumbled over it). At this
point it's not clear if the included cmake config files are buggy, or if
affected projects need to change something in order to use them, but there's
an easy workaround to use cmake's FindBoost.cmake (as was used previously).
Add this to the call to cmake from any affected project (if cmake fails with
an error: "No suitable build variant has been found."):
-DBoost_NO_BOOST_CMAKE=ON
n/libmbim-1.18.2-x86_64-1.txz: Upgraded.
n/nfs-utils-2.3.3-x86_64-3.txz: Rebuilt.
rc.nfsd: don't try to create the nfsv4recoverydir - the build script will
determine the directory to use and include it in the package.
rc.nfsd: drop 2.4 kernel support, and use better code for mounting the nfsd
filesystem.
Thanks to shasta.
x/libwacom-0.33-x86_64-1.txz: Upgraded.
xap/vim-gvim-8.1.1157-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
a/util-linux-2.33.2-x86_64-1.txz: Upgraded.
d/vala-0.44.3-x86_64-1.txz: Upgraded.
l/apr-1.7.0-x86_64-1.txz: Upgraded.
l/at-spi2-core-2.32.1-x86_64-1.txz: Upgraded.
l/gvfs-1.40.1-x86_64-1.txz: Upgraded.
l/libbluray-1.1.1-x86_64-1.txz: Upgraded.
l/libsoup-2.66.1-x86_64-1.txz: Upgraded.
l/vte-0.56.1-x86_64-1.txz: Upgraded.
n/stunnel-5.52-x86_64-1.txz: Upgraded.
x/libinput-1.13.1-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/glibc-zoneinfo-2019a-noarch-1.txz: Upgraded.
a/grub-2.02-x86_64-5.txz: Rebuilt.
Support F2FS filesystem. Thanks to Nille_kungen.
ap/cups-filters-1.22.5-x86_64-1.txz: Upgraded.
ap/itstool-2.0.6-x86_64-1.txz: Upgraded.
d/python-setuptools-41.0.0-x86_64-1.txz: Upgraded.
l/gobject-introspection-1.60.1-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_39-x86_64-1.txz: Upgraded.
l/libcroco-0.6.13-x86_64-1.txz: Upgraded.
l/libnotify-0.7.8-x86_64-1.txz: Upgraded.
n/cifs-utils-6.9-x86_64-1.txz: Upgraded.
n/nfs-utils-2.3.3-x86_64-2.txz: Rebuilt.
Include recovery directory. Thanks to upnort.
n/samba-4.10.2-x86_64-1.txz: Upgraded.
This is a security release in order to address the following defects:
World writable files in Samba AD DC private/ dir.
Save registry file outside share as unprivileged user.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3870
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3880
(* Security fix *)
x/libva-2.4.1-x86_64-1.txz: Upgraded.
x/pixman-0.38.2-x86_64-1.txz: Upgraded.
xap/gimp-2.10.10-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
ap/vim-8.1.1119-x86_64-1.txz: Upgraded.
l/openjpeg-2.3.1-x86_64-1.txz: Upgraded.
Includes many bug fixes (including security fixes).
(* Security fix *)
n/links-2.19-x86_64-1.txz: Upgraded.
n/stunnel-5.51-x86_64-1.txz: Upgraded.
n/wget-1.20.3-x86_64-1.txz: Upgraded.
Fixed a buffer overflow vulnerability:
src/iri.c(do_conversion): Reallocate the output buffer to a larger
size if it is already full.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5953
(* Security fix *)
xap/vim-gvim-8.1.1119-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
| |
ap/ghostscript-9.27-x86_64-1.txz: Upgraded.
d/python-setuptools-40.9.0-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_37-x86_64-1.txz: Upgraded.
l/readline-8.0.000-x86_64-2.txz: Rebuilt.
Recompiled to link rlfe against the new libreadline. Thanks to Toutatis.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/aaa_elflibs-15.0-x86_64-7.txz: Rebuilt.
Added: libhistory.so.8.0, libreadline.so.8.0.
a/gawk-4.2.1-x86_64-3.txz: Rebuilt.
Recompiled against readline-8.0.000.
a/kernel-generic-4.19.33-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.33-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.33-x86_64-1.txz: Upgraded.
a/util-linux-2.33.1-x86_64-3.txz: Rebuilt.
Recompiled against readline-8.0.000.
ap/bc-1.07.1-x86_64-3.txz: Rebuilt.
Recompiled against readline-8.0.000.
ap/gphoto2-2.5.20-x86_64-2.txz: Rebuilt.
Recompiled against readline-8.0.000.
ap/gutenprint-5.3.1-x86_64-2.txz: Rebuilt.
Recompiled against readline-8.0.000.
ap/mariadb-10.3.14-x86_64-1.txz: Upgraded.
ap/xorriso-1.5.0-x86_64-2.txz: Rebuilt.
Recompiled against readline-8.0.000.
d/clisp-2.49_20181112_df3b9f6fd-x86_64-2.txz: Rebuilt.
Recompiled against readline-8.0.000.
d/gdb-8.2.1-x86_64-3.txz: Rebuilt.
Recompiled against readline-8.0.000.
d/guile-2.2.4-x86_64-2.txz: Rebuilt.
Recompiled against readline-8.0.000.
d/kernel-headers-4.19.33-x86-1.txz: Upgraded.
d/python-2.7.16-x86_64-2.txz: Rebuilt.
Recompiled against readline-8.0.000.
d/python3-3.7.3-x86_64-2.txz: Rebuilt.
Recompiled against readline-8.0.000.
d/ruby-2.6.2-x86_64-2.txz: Rebuilt.
Recompiled against readline-8.0.000.
k/kernel-source-4.19.33-noarch-1.txz: Upgraded.
kde/analitza-4.14.3-x86_64-5.txz: Rebuilt.
Recompiled against readline-8.0.000.
l/fluidsynth-1.1.11-x86_64-2.txz: Rebuilt.
Recompiled against readline-8.0.000.
l/gdbm-1.18.1-x86_64-2.txz: Rebuilt.
Recompiled against readline-8.0.000.
l/hunspell-1.6.2-x86_64-3.txz: Rebuilt.
Recompiled against readline-8.0.000.
l/mozjs52-52.9.0esr-x86_64-2.txz: Rebuilt.
Recompiled against readline-8.0.000.
l/parted-3.2-x86_64-5.txz: Rebuilt.
Recompiled against readline-8.0.000.
l/pcre2-10.32-x86_64-2.txz: Rebuilt.
Recompiled against readline-8.0.000.
l/pilot-link-0.12.5-x86_64-14.txz: Rebuilt.
Recompiled against readline-8.0.000.
l/readline-8.0.000-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
n/NetworkManager-1.16.0-x86_64-2.txz: Rebuilt.
Recompiled against readline-8.0.000.
n/bluez-5.50-x86_64-2.txz: Rebuilt.
Recompiled against readline-8.0.000.
n/gnupg-1.4.23-x86_64-2.txz: Rebuilt.
Recompiled against readline-8.0.000.
n/gnupg2-2.2.15-x86_64-2.txz: Rebuilt.
Recompiled against readline-8.0.000.
n/gnutls-3.6.7.1-x86_64-1.txz: Upgraded.
n/lftp-4.8.4-x86_64-4.txz: Rebuilt.
Recompiled against readline-8.0.000.
n/netkit-ftp-0.17-x86_64-5.txz: Rebuilt.
Recompiled against readline-8.0.000.
n/nftables-0.9.0-x86_64-3.txz: Rebuilt.
Recompiled against readline-8.0.000.
n/php-7.2.17-x86_64-1.txz: Upgraded.
This update fixes bugs and a security issue:
rename() across the device may allow unwanted access during processing.
(* Security fix *)
n/samba-4.10.1-x86_64-1.txz: Upgraded.
Compiled against readline-8.0.000.
n/tftp-hpa-5.2-x86_64-5.txz: Rebuilt.
Recompiled against readline-8.0.000.
n/wpa_supplicant-2.7-x86_64-4.txz: Rebuilt.
Recompiled against readline-8.0.000.
xap/fvwm-2.6.8-x86_64-2.txz: Rebuilt.
Recompiled against readline-8.0.000.
xap/gftp-2.0.19-x86_64-8.txz: Rebuilt.
Recompiled against readline-8.0.000.
xap/gnuchess-6.2.5-x86_64-4.txz: Rebuilt.
xap/xine-ui-0.99.10-x86_64-3.txz: Rebuilt.
Recompiled against readline-8.0.000.
extra/pure-alsa-system/fluidsynth-1.1.11-x86_64-2_alsa.txz: Rebuilt.
Recompiled against readline-8.0.000.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/hwdata-0.322-noarch-1.txz: Upgraded.
a/kernel-firmware-20190402_67b7579-noarch-1.txz: Upgraded.
a/shadow-4.6-x86_64-2.txz: Rebuilt.
adduser: reprompt on invalid user input. Thanks to ttk.
ap/ghostscript-9.26-x86_64-2.txz: Rebuilt.
Fixes security issues:
A specially crafted PostScript file could have access to the file system
outside of the constrains imposed by -dSAFER.
Transient procedures can allow access to system operators, leading to
remote code execution.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3835
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3838
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6116
(* Security fix *)
d/vala-0.44.2-x86_64-1.txz: Upgraded.
l/glib-networking-2.60.1-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_36-x86_64-1.txz: Upgraded.
l/python-pillow-6.0.0-x86_64-1.txz: Upgraded.
n/wget-1.20.2-x86_64-1.txz: Upgraded.
Fixed an unspecified buffer overflow vulnerability.
(* Security fix *)
|
| |
|
|
|
|
|
|
|
|
|
| |
a/quota-4.05-x86_64-1.txz: Upgraded.
d/cmake-3.14.1-x86_64-1.txz: Upgraded.
d/patchelf-0.10-x86_64-1.txz: Upgraded.
l/harfbuzz-2.4.0-x86_64-1.txz: Upgraded.
l/utf8proc-2.3.0-x86_64-1.txz: Upgraded.
n/httpd-2.4.39-x86_64-1.txz: Upgraded.
n/iputils-20190324-x86_64-1.txz: Upgraded.
n/postfix-3.4.5-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/aaa_elflibs-15.0-x86_64-6.txz: Rebuilt.
Upgraded: libelf-0.176.so, libpcre.so.1.2.11, libglib-2.0.so.0.6000.0,
libgmodule-2.0.so.0.6000.0, libgobject-2.0.so.0.6000.0,
libgthread-2.0.so.0.6000.0, libtdb.so.1.4.0.
Temporarily added: libicudata.so.63.1, libicui18n.so.63.1, libicuio.so.63.1,
libicutest.so.63.1, libicutu.so.63.1, libicuuc.so.63.1.
a/xfsprogs-4.20.0-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-64.1.
ap/sqlite-3.27.2-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-64.1.
kde/calligra-2.9.11-x86_64-29.txz: Rebuilt.
Recompiled against icu4c-64.1.
kde/kdepimlibs-4.14.10-x86_64-7.txz: Rebuilt.
Recompiled to pull in new gpgme++ header files.
l/boost-1.69.0-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-64.1.
l/ffmpeg-3.4.6-x86_64-1.txz: Upgraded.
l/giflib-5.1.9-x86_64-1.txz: Upgraded.
l/harfbuzz-2.3.1-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-64.1.
l/icu4c-64.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/libical-3.0.4-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-64.1.
l/libvisio-0.1.6-x86_64-6.txz: Rebuilt.
Recompiled against icu4c-64.1.
l/qt-4.8.7-x86_64-12.txz: Rebuilt.
Recompiled against icu4c-64.1.
l/raptor2-2.0.15-x86_64-7.txz: Rebuilt.
Recompiled against icu4c-64.1.
l/v4l-utils-1.16.5-x86_64-1.txz: Upgraded.
n/dovecot-2.3.5.1-x86_64-1.txz: Upgraded.
Missing input buffer size validation leads into arbitrary buffer overflow
when reading fts or pop3 uidl header from Dovecot index. Exploiting this
requires direct write access to the index files.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7524
(* Security fix *)
Compiled against icu4c-64.1.
n/gpgme-1.13.0-x86_64-1.txz: Upgraded.
n/php-7.2.16-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-64.1.
n/postfix-3.4.4-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-64.1.
n/tin-2.4.3-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-64.1.
n/whois-5.4.2-x86_64-1.txz: Upgraded.
t/texlive-2018.180822-x86_64-5.txz: Rebuilt.
Recompiled against icu4c-64.1.
x/libinput-1.13.0-x86_64-1.txz: Upgraded.
x/mesa-19.0.1-x86_64-1.txz: Upgraded.
x/vulkan-sdk-1.1.101.0-x86_64-1.txz: Upgraded.
extra/pure-alsa-system/ffmpeg-3.4.6-x86_64-1_alsa.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
| |
ap/cups-filters-1.22.3-x86_64-1.txz: Upgraded.
ap/lsscsi-0.30-x86_64-1.txz: Upgraded.
ap/soma-3.2.3-noarch-1.txz: Upgraded.
ap/vim-8.1.1053-x86_64-1.txz: Upgraded.
l/libssh2-1.8.2-x86_64-1.txz: Upgraded.
n/gnupg2-2.2.15-x86_64-1.txz: Upgraded.
xap/vim-gvim-8.1.1053-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
ap/nano-4.0-x86_64-1.txz: Upgraded.
l/Mako-1.0.8-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_35-x86_64-1.txz: Upgraded.
l/libedit-20190324_3.1-x86_64-1.txz: Upgraded.
l/shared-mime-info-1.12-x86_64-1.txz: Upgraded.
x/xcompmgr-1.1.8-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-60.6.1-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/60.6.1/releasenotes/
https://www.mozilla.org/security/known-vulnerabilities/thunderbird.html
(* Security fix *)
|
| |
|
|
|
|
|
| |
l/talloc-2.2.0-x86_64-1.txz: Upgraded.
l/tdb-1.4.0-x86_64-1.txz: Upgraded.
l/tevent-0.10.0-x86_64-1.txz: Upgraded.
x/mkfontscale-1.2.1-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
ap/cups-filters-1.22.2-x86_64-1.txz: Upgraded.
kde/calligra-2.9.11-x86_64-28.txz: Rebuilt.
Patched to fix Calligra Plan crash. Thanks to Olek.
l/adwaita-icon-theme-3.32.0-noarch-1.txz: Upgraded.
l/giflib-5.1.8-x86_64-1.txz: Upgraded.
l/libssh2-1.8.1-x86_64-1.txz: Upgraded.
Fixed several security issues.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3855
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3856
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3857
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3858
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3859
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3860
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3861
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3862
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3863
(* Security fix *)
x/scim-1.4.18-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-60.6.0esr-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/firefox/60.6.0/releasenotes/
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Saint Patrick was a gentleman
Who through strategy and stealth
Drove all the snakes from Ireland
Here's toasting to his health -
But not too many toastings
Lest you lose yourself, and then,
Forget the good Saint Patrick
And see all those snakes again.
a/eudev-3.2.7-x86_64-3.txz: Rebuilt.
Added tqmx86_wdt to watchdog.conf. Thanks to Robby Workman.
d/vala-0.44.1-x86_64-1.txz: Upgraded.
kde/ktorrent-4.3.1-x86_64-4.txz: Rebuilt.
Embed a copy of the GeoIP database since the download link no longer works.
l/glibmm-2.58.1-x86_64-1.txz: Upgraded.
l/mozilla-nss-3.43-x86_64-1.txz: Upgraded.
x/imake-1.0.8-x86_64-1.txz: Upgraded.
x/libXdmcp-1.1.3-x86_64-1.txz: Upgraded.
x/libXext-1.3.4-x86_64-1.txz: Upgraded.
x/libXft-2.3.3-x86_64-1.txz: Upgraded.
x/libXmu-1.1.3-x86_64-1.txz: Upgraded.
x/libXrandr-1.5.2-x86_64-1.txz: Upgraded.
x/libXvMC-1.0.11-x86_64-1.txz: Upgraded.
x/libXxf86dga-1.1.5-x86_64-1.txz: Upgraded.
x/libxkbfile-1.1.0-x86_64-1.txz: Upgraded.
x/makedepend-1.0.6-x86_64-1.txz: Upgraded.
x/x11perf-1.6.1-x86_64-1.txz: Upgraded.
x/xf86-video-intel-20190301_6afed33b-x86_64-1.txz: Upgraded.
x/xf86-video-savage-20190128_8579718-x86_64-1.txz: Upgraded.
x/xf86-video-sis-20181217_22d3c79-x86_64-1.txz: Upgraded.
x/xtrans-1.4.0-noarch-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
| |
l/freetype-2.10.0-x86_64-2.txz: Rebuilt.
Removed unneeded freetype.this.is.not.a.windows.system.diff.gz patch.
Rebased freetype.subpixel.rendering.diff.gz patch.
Thanks to Daedra.
l/imagemagick-6.9.10_34-x86_64-1.txz: Upgraded.
n/NetworkManager-1.16.0-x86_64-1.txz: Upgraded.
|
| |
|
|
|
| |
l/freetype-2.10.0-x86_64-1.txz: Upgraded.
n/postfix-3.4.4-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
| |
ap/cgmanager-0.42-x86_64-1.txz: Upgraded.
d/cmake-3.14.0-x86_64-1.txz: Upgraded.
l/gexiv2-0.12.0-x86_64-1.txz: Upgraded.
l/gsettings-desktop-schemas-3.32.0-x86_64-2.txz: Rebuilt.
Don't override the system font defaults (especially with fonts that we don't
include). Thanks to Markus Wiesner.
l/libyaml-0.2.2-x86_64-1.txz: Upgraded.
l/libzip-1.5.2-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
| |
d/ruby-2.6.2-x86_64-1.txz: Upgraded.
l/glib-networking-2.60.0.1-x86_64-1.txz: Upgraded.
l/gtk+3-3.24.7-x86_64-1.txz: Upgraded.
l/jasper-2.0.16-x86_64-1.txz: Upgraded.
n/mutt-1.11.4-x86_64-1.txz: Upgraded.
xap/gucharmap-12.0.1-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/kernel-firmware-20190312_b0d9583-noarch-1.txz: Upgraded.
l/at-spi2-atk-2.32.0-x86_64-1.txz: Upgraded.
l/at-spi2-core-2.32.0-x86_64-1.txz: Upgraded.
l/atk-2.32.0-x86_64-1.txz: Upgraded.
l/dconf-0.32.0-x86_64-1.txz: Upgraded.
l/dconf-editor-3.32.0-x86_64-1.txz: Upgraded.
l/glib-networking-2.60.0-x86_64-1.txz: Upgraded.
l/gsettings-desktop-schemas-3.32.0-x86_64-1.txz: Upgraded.
l/gvfs-1.40.0-x86_64-1.txz: Upgraded.
l/libsoup-2.66.0-x86_64-1.txz: Upgraded.
l/vte-0.56.0-x86_64-1.txz: Upgraded.
n/mobile-broadband-provider-info-20190116-x86_64-1.txz: Upgraded.
n/samba-4.9.5-x86_64-1.txz: Upgraded.
x/liberation-fonts-ttf-2.00.5-noarch-1.txz: Upgraded.
xap/gucharmap-12.0.0-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
| |
a/coreutils-8.31-x86_64-1.txz: Upgraded.
d/meson-0.50.0-x86_64-1.txz: Upgraded.
l/giflib-5.1.7-x86_64-1.txz: Upgraded.
l/python-certifi-2019.3.9-x86_64-1.txz: Upgraded.
n/postfix-3.4.3-x86_64-1.txz: Upgraded.
x/libFS-1.0.8-x86_64-1.txz: Upgraded.
x/libXcomposite-0.4.5-x86_64-1.txz: Upgraded.
x/libXcursor-1.2.0-x86_64-1.txz: Upgraded.
x/libXdamage-1.1.5-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/kernel-generic-4.19.28-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.28-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.28-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.28-x86-1.txz: Upgraded.
d/vala-0.44.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
k/kernel-source-4.19.28-noarch-1.txz: Upgraded.
l/gobject-introspection-1.60.0-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_33-x86_64-1.txz: Upgraded.
l/pygobject3-3.32.0-x86_64-1.txz: Upgraded.
x/xfd-1.1.3-x86_64-1.txz: Upgraded.
x/xprop-1.2.4-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
d/gcc-8.3.0-x86_64-2.txz: Rebuilt.
Reverted backported asm inline patches that broke "asm volatile".
Thanks to nobodino.
d/gcc-brig-8.3.0-x86_64-2.txz: Rebuilt.
d/gcc-g++-8.3.0-x86_64-2.txz: Rebuilt.
d/gcc-gfortran-8.3.0-x86_64-2.txz: Rebuilt.
d/gcc-gnat-8.3.0-x86_64-2.txz: Rebuilt.
d/gcc-go-8.3.0-x86_64-2.txz: Rebuilt.
d/gcc-objc-8.3.0-x86_64-2.txz: Rebuilt.
l/at-spi2-atk-2.30.1-x86_64-1.txz: Upgraded.
l/at-spi2-core-2.30.1-x86_64-1.txz: Upgraded.
l/gc-8.0.4-x86_64-1.txz: Upgraded.
l/glib2-2.60.0-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_31-x86_64-1.txz: Upgraded.
n/postfix-3.4.0-x86_64-2.txz: Rebuilt.
Prevent the install script from making noise.
x/xinit-1.4.1-x86_64-1.txz: Upgraded.
x/xlogo-1.0.5-x86_64-1.txz: Upgraded.
x/xmore-1.0.3-x86_64-1.txz: Upgraded.
extra/fltk/fltk-1.3.5-x86_64-1.txz: Upgraded.
|
| |
|
|
|
| |
a/eudev-3.2.7-x86_64-2.txz: Rebuilt.
Don't require kvm group.
|
| |
|
|
|
|
|
|
| |
d/Cython-0.29.6-x86_64-1.txz: Upgraded.
d/rust-1.33.0-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_29-x86_64-1.txz: Upgraded.
l/qjson-0.9.0-x86_64-1.txz: Upgraded.
n/postfix-3.4.0-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/btrfs-progs-4.20.2-x86_64-1.txz: Upgraded.
a/openssl-solibs-1.1.1b-x86_64-1.txz: Upgraded.
ap/ddrescue-1.24-x86_64-1.txz: Upgraded.
ap/sqlite-3.27.2-x86_64-1.txz: Upgraded.
l/libssh-0.8.7-x86_64-1.txz: Upgraded.
l/talloc-2.1.16-x86_64-1.txz: Upgraded.
l/tdb-1.3.18-x86_64-1.txz: Upgraded.
l/tevent-0.9.39-x86_64-1.txz: Upgraded.
n/ca-certificates-20181210-noarch-2.txz: Rebuilt.
Use "c_rehash" rather than "openssl rehash" for compatibility with all
versions of OpenSSL.
n/epic5-2.1.1-x86_64-1.txz: Upgraded.
n/openssl-1.1.1b-x86_64-1.txz: Upgraded.
x/xorg-server-1.20.4-x86_64-1.txz: Upgraded.
x/xorg-server-xephyr-1.20.4-x86_64-1.txz: Upgraded.
x/xorg-server-xnest-1.20.4-x86_64-1.txz: Upgraded.
x/xorg-server-xvfb-1.20.4-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-60.5.2-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/60.5.2/releasenotes/
|
| |
|
|
|
|
|
|
| |
a/xfsprogs-4.20.0-x86_64-1.txz: Upgraded.
d/git-2.21.0-x86_64-1.txz: Upgraded.
l/pcre-8.43-x86_64-1.txz: Upgraded.
n/getmail-5.13-x86_64-1.txz: Upgraded.
extra/brltty/brltty-6.0-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/file-5.36-x86_64-1.txz: Upgraded.
ap/mariadb-10.3.13-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2510
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2537
(* Security fix *)
d/p2c-2.01-x86_64-1.txz: Upgraded.
d/python-pip-19.0.3-x86_64-1.txz: Upgraded.
l/librsvg-2.44.13-x86_64-2.txz: Rebuilt.
Recompiled with --enable-vala=yes.
n/bind-9.12.3_P4-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-60.5.2esr-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/firefox/60.5.2/releasenotes/
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/kernel-generic-4.19.24-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.24-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.24-x86_64-1.txz: Upgraded.
a/kmod-26-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
a/util-linux-2.33.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
ap/hplip-3.19.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
ap/linuxdoc-tools-0.9.73-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
ap/lxc-2.0.9_d3a03247-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
ap/rpm-4.14.2.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
d/Cython-0.29.5-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
d/distcc-3.3.2-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
d/gdb-8.2.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
d/kernel-headers-4.19.24-x86-1.txz: Upgraded.
d/llvm-7.0.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
d/meson-0.49.2-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
d/python-pip-19.0.2-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
d/python-setuptools-40.8.0-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
d/python3-3.7.2-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
k/kernel-source-4.19.24-noarch-1.txz: Upgraded.
kde/pykde4-4.14.3-x86_64-8.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/Mako-1.0.7-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/PyQt-4.12.1-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/QScintilla-2.10.8-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/alsa-lib-1.1.8-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/dbus-python-1.2.8-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/gexiv2-0.10.10-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/libcaca-0.99.beta19-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/libcap-ng-0.7.9-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/libjpeg-turbo-2.0.2-x86_64-1.txz: Upgraded.
l/libproxy-0.4.15-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/libwebp-1.0.2-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/libxml2-2.9.9-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/newt-0.52.20-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/pycairo-1.18.0-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/pycups-1.9.74-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/pycurl-7.43.0.2-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/pygobject-2.28.7-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/pygobject3-3.30.4-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/pyparsing-2.3.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/python-appdirs-1.4.3-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/python-certifi-2018.11.29-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/python-chardet-3.0.4-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/python-docutils-0.14-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/python-idna-2.8-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/python-notify2-0.3.1-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/python-packaging-19.0-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/python-pillow-5.4.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/python-requests-2.21.0-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/python-sane-2.8.3-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/python-six-1.12.0-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/python-urllib3-1.24.1-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/sip-4.19.8-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/system-config-printer-1.5.11-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/talloc-2.1.15-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/tdb-1.3.17-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/tevent-0.9.38-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
l/urwid-1.0.3-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.7.2.
n/gpgme-1.12.0-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
n/obexftp-0.24.2-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.7.2.
n/openvpn-2.4.7-x86_64-1.txz: Upgraded.
n/pssh-2.3.1-x86_64-4.txz: Rebuilt.
Recompiled against python3-3.7.2.
x/libfontenc-1.1.4-x86_64-1.txz: Upgraded.
x/xcalc-1.0.7-x86_64-1.txz: Upgraded.
x/xcb-proto-1.13-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.7.2.
x/xclock-1.0.8-x86_64-1.txz: Upgraded.
x/xev-1.2.3-x86_64-1.txz: Upgraded.
x/xfsinfo-1.0.6-x86_64-1.txz: Upgraded.
x/xhost-1.0.8-x86_64-1.txz: Upgraded.
x/xlsatoms-1.1.3-x86_64-1.txz: Upgraded.
x/xmodmap-1.0.10-x86_64-1.txz: Upgraded.
x/xrdb-1.2.0-x86_64-1.txz: Upgraded.
x/xstdcmap-1.0.4-x86_64-1.txz: Upgraded.
x/xvinfo-1.1.4-x86_64-1.txz: Upgraded.
xap/blueman-2.0.8-x86_64-2.txz: Rebuilt.
Recompiled against python3-3.7.2.
xap/hexchat-2.14.2-x86_64-3.txz: Rebuilt.
Recompiled against python3-3.7.2.
extra/pure-alsa-system/alsa-lib-1.1.8-x86_64-2_alsa.txz: Rebuilt.
Recompiled against python3-3.7.2.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/glibc-solibs-2.29-x86_64-3.txz: Rebuilt.
ap/texinfo-6.6-x86_64-1.txz: Upgraded.
l/elfutils-0.176-x86_64-1.txz: Upgraded.
l/glibc-2.29-x86_64-3.txz: Rebuilt.
l/glibc-i18n-2.29-x86_64-3.txz: Rebuilt.
Go back to using the glibc.locale.no-archive.diff patch rather than the new
built-in no-archive locale target. Avoiding hardlinks is not worth 700MB of
useless bloat. Thanks to baldzhang.
l/glibc-profile-2.29-x86_64-3.txz: Rebuilt.
l/librsvg-2.44.13-x86_64-1.txz: Upgraded.
x/xf86-video-chips-1.4.0-x86_64-1.txz: Upgraded.
x/xf86-video-tdfx-1.5.0-x86_64-1.txz: Upgraded.
|
| |
|
|
| |
extra/pure-alsa-system/fluidsynth-1.1.11-x86_64-1_alsa.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
l/giflib-5.1.6-x86_64-1.txz: Upgraded.
n/getmail-5.11-x86_64-1.txz: Upgraded.
x/xterm-344-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-60.5.1esr-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
https://www.mozilla.org/en-US/security/advisories/mfsa2019-05/
https://www.mozilla.org/en-US/security/advisories/mfsa2019-05/#CVE-2018-18356
https://www.mozilla.org/en-US/security/advisories/mfsa2019-05/#CVE-2019-5785
https://www.mozilla.org/en-US/security/advisories/mfsa2019-05/#CVE-2018-18335
(* Security fix *)
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/kernel-firmware-20190212_28f5f7d-noarch-1.txz: Upgraded.
a/kernel-generic-4.19.21-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.21-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.21-x86_64-1.txz: Upgraded.
ap/lxc-2.0.9_d3a03247-x86_64-1.txz: Upgraded.
This update fixes a security issue where a malicious privileged container
could overwrite the host binary and thus gain root-level code execution on
the host. As the LXC project considers privileged containers to be unsafe
no CVE has been assigned for this issue for LXC. To prevent this attack,
LXC has been patched to create a temporary copy of the calling binary
itself when it starts or attaches to containers. To do this LXC creates an
anonymous, in-memory file using the memfd_create() system call and copies
itself into the temporary in-memory file, which is then sealed to prevent
further modifications. LXC then executes this sealed, in-memory file
instead of the original on-disk binary.
For more information, see:
https://seclists.org/oss-sec/2019/q1/119
(* Security fix *)
d/kernel-headers-4.19.21-x86-1.txz: Upgraded.
k/kernel-source-4.19.21-noarch-1.txz: Upgraded.
l/libbluray-1.1.0-x86_64-1.txz: Upgraded.
l/libcap-2.26-x86_64-2.txz: Rebuilt.
Don't ship static library.
l/xapian-core-1.4.10-x86_64-1.txz: Upgraded.
n/gnupg2-2.2.13-x86_64-1.txz: Upgraded.
n/irssi-1.2.0-x86_64-1.txz: Upgraded.
n/libassuan-2.5.3-x86_64-1.txz: Upgraded.
x/bitmap-1.0.9-x86_64-1.txz: Upgraded.
x/libXau-1.0.9-x86_64-1.txz: Upgraded.
x/pixman-0.38.0-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
| |
|
|
|
|
|
| |
d/python-pip-19.0.2-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_27-x86_64-1.txz: Upgraded.
x/xf86-video-apm-1.3.0-x86_64-1.txz: Upgraded.
x/xf86-video-s3virge-1.11.0-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
| |
a/kmod-26-x86_64-1.txz: Upgraded.
d/Cython-0.29.5-x86_64-1.txz: Upgraded.
l/libidn2-2.1.1a-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/aaa_elflibs-15.0-x86_64-5.txz: Rebuilt.
Upgraded: libglib-2.0.so.0.5800.3, libgmodule-2.0.so.0.5800.3,
libgobject-2.0.so.0.5800.3, libgthread-2.0.so.0.5800.3, libidn2.so.0.3.5,
libmpfr.so.6.0.2, libtdb.so.1.3.17
Removed: libidn2.so.4.0.0
ap/sqlite-3.27.1-x86_64-1.txz: Upgraded.
l/libdvdread-6.0.1-x86_64-1.txz: Upgraded.
l/libidn2-2.1.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
This reverted back to .so.0 as the previous bump was apparently a mistake.
l/libpsl-0.20.2-x86_64-3.txz: Rebuilt.
Recompiled against libidn2-2.1.1.
n/bind-9.12.3_P1-x86_64-3.txz: Rebuilt.
Recompiled against libidn2-2.1.1.
n/curl-7.64.0-x86_64-2.txz: Rebuilt.
Recompiled against libidn2-2.1.1.
n/dhcpcd-7.1.1-x86_64-1.txz: Upgraded.
n/dnsmasq-2.80-x86_64-3.txz: Rebuilt.
Recompiled against libidn2-2.1.1.
n/getmail-5.9-x86_64-1.txz: Upgraded.
n/gnutls-3.6.6-x86_64-2.txz: Rebuilt.
Recompiled against libidn2-2.1.1.
n/iputils-20180629-x86_64-3.txz: Rebuilt.
Recompiled against libidn2-2.1.1.
n/lftp-4.8.4-x86_64-3.txz: Rebuilt.
Recompiled against libidn2-2.1.1.
n/s-nail-14.9.11-x86_64-3.txz: Rebuilt.
Recompiled against libidn2-2.1.1.
n/wget-1.20.1-x86_64-3.txz: Rebuilt.
Recompiled against libidn2-2.1.1.
n/whois-5.4.1-x86_64-2.txz: Rebuilt.
Recompiled against libidn2-2.1.1.
x/ttf-tlwg-0.7.1-noarch-1.txz: Upgraded.
xfce/xfwm4-4.12.5-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/hwdata-0.320-noarch-1.txz: Upgraded.
a/kernel-generic-4.19.20-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.20-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.20-x86_64-1.txz: Upgraded.
a/mcelog-162-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.20-x86-1.txz: Upgraded.
d/opencl-headers-2.2-noarch-2.txz: Rebuilt.
Don't trigger "#pragma message" in cl_version.h when falling back on a
default version of OpenCL to target. Applications such as ffmpeg detect
this as an error and fail to compile.
k/kernel-source-4.19.20-noarch-1.txz: Upgraded.
l/ffmpeg-3.4.5-x86_64-2.txz: Rebuilt.
Recompiled against libvpx-1.8.0.
Reenabled libsmbclient support.
l/gst-plugins-good-1.14.4-x86_64-2.txz: Rebuilt.
Recompiled against libvpx-1.8.0.
l/libvpx-1.8.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
n/curl-7.64.0-x86_64-1.txz: Upgraded.
This release fixes the following security issues:
NTLM type-2 out-of-bounds buffer read.
NTLMv2 type-3 header stack buffer overflow.
SMTP end-of-response out-of-bounds read.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16890
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3822
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3823
(* Security fix *)
n/samba-4.9.4-x86_64-2.txz: Rebuilt.
Added time.h to libsmbclient.h to fix ffmpeg compatibility.
Thanks to USUARIONUEVO.
xap/xine-lib-1.2.9-x86_64-4.txz: Rebuilt.
Recompiled against libvpx-1.8.0.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
| |
|
|
|
|
|
|
|
| |
ap/zsh-5.7.1-x86_64-1.txz: Upgraded.
d/python-setuptools-40.7.3-x86_64-1.txz: Upgraded.
l/babl-0.1.62-x86_64-1.txz: Upgraded.
l/gtk+3-3.24.5-x86_64-1.txz: Upgraded.
n/iw-5.0.1-x86_64-1.txz: Upgraded.
x/xf86-input-libinput-0.28.2-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
| |
ap/vim-8.1.0867-x86_64-1.txz: Upgraded.
d/python-setuptools-40.7.2-x86_64-1.txz: Upgraded.
l/mozilla-nss-3.42.1-x86_64-1.txz: Upgraded.
xap/vim-gvim-8.1.0867-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
| |
a/glibc-solibs-2.29-x86_64-2.txz: Rebuilt.
d/opencl-headers-2.2-noarch-1.txz: Upgraded.
Thanks to Heinz Wiesinger.
l/glibc-2.29-x86_64-2.txz: Rebuilt.
l/glibc-i18n-2.29-x86_64-2.txz: Rebuilt.
Reverted en_US.UTF8 date(1) format back to 24 hour. I'm pretty sure that
the majority of people here in this locale will agree.
l/glibc-profile-2.29-x86_64-2.txz: Rebuilt.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/glibc-solibs-2.29-x86_64-1.txz: Upgraded.
a/kernel-generic-4.19.19-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.19-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.19-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.19-x86-1.txz: Upgraded.
d/ninja-1.9.0-x86_64-1.txz: Upgraded.
d/ruby-2.6.1-x86_64-1.txz: Upgraded.
k/kernel-source-4.19.19-noarch-1.txz: Upgraded.
l/glibc-2.29-x86_64-1.txz: Upgraded.
l/glibc-i18n-2.29-x86_64-1.txz: Upgraded.
l/glibc-profile-2.29-x86_64-1.txz: Upgraded.
l/harfbuzz-2.3.1-x86_64-1.txz: Upgraded.
l/libimobiledevice-20190126_d200973-x86_64-1.txz: Upgraded.
Switch to git since the latest release no longer works.
l/libusbmuxd-20190118_c75605d-x86_64-1.txz: Upgraded.
Switch to git since the latest release no longer works.
l/mpfr-4.0.2-x86_64-1.txz: Upgraded.
x/mesa-18.3.3-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
d/bison-3.3.1-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_25-x86_64-1.txz: Upgraded.
l/mozilla-nss-3.42-x86_64-1.txz: Upgraded.
n/libgpg-error-1.35-x86_64-1.txz: Upgraded.
n/whois-5.4.1-x86_64-1.txz: Upgraded.
x/xf86-video-nouveau-1.0.16-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-60.5.0esr-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
https://www.mozilla.org/en-US/security/advisories/mfsa2019-02/
https://www.mozilla.org/en-US/security/advisories/mfsa2019-02/#CVE-2018-18500
https://www.mozilla.org/en-US/security/advisories/mfsa2019-02/#CVE-2018-18505
https://www.mozilla.org/en-US/security/advisories/mfsa2019-02/#CVE-2018-18501
(* Security fix *)
xap/mozilla-thunderbird-60.5.0-x86_64-1.txz: Upgraded.
This is a bugfix release. For more information, see:
https://www.mozilla.org/en-US/thunderbird/60.5.0/releasenotes/
xfce/Thunar-1.8.4-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/kernel-generic-4.19.18-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.18-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.18-x86_64-1.txz: Upgraded.
ap/zsh-5.7-x86_64-1.txz: Upgraded.
d/bison-3.3-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.18-x86-1.txz: Upgraded.
k/kernel-source-4.19.18-noarch-1.txz: Upgraded.
l/SDL2_ttf-2.0.15-x86_64-1.txz: Upgraded.
l/iso-codes-4.2-noarch-1.txz: Upgraded.
l/libcdio-paranoia-10.2+2.0.0-x86_64-1.txz: Upgraded.
xfce/Thunar-1.8.3-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/bash-5.0.002-x86_64-2.txz: Rebuilt.
Rebuilt with --libdir=/usr/lib${LIBDIRSUFFIX}. Thanks to RandomTroll.
a/btrfs-progs-4.20.1-x86_64-1.txz: Upgraded.
a/mkinitrd-1.4.11-x86_64-9.txz: Rebuilt.
Automatically generate an initial ramdisk from the installer.
Added 'geninitrd' script to generate an initial ramdisk for the kernel that
/boot/vmlinuz-generic (and/or /boot/vmlinuz-generic-smp) points to.
ap/man-db-2.8.5-x86_64-2.txz: Rebuilt.
Comment out all the options in /etc/profile.d/man-db.{csh,sh} and let the
user decide whether or not to choose anything.
d/python-pip-19.0.1-x86_64-1.txz: Upgraded.
l/mozilla-nss-3.41.1-x86_64-1.txz: Upgraded.
n/dhcpcd-7.1.0-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
| |
ap/cups-filters-1.22.0-x86_64-1.txz: Upgraded.
d/Cython-0.29.3-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_24-x86_64-1.txz: Upgraded.
l/libwebp-1.0.2-x86_64-1.txz: Upgraded.
n/ModemManager-1.10.0-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
| |
a/bash-5.0.002-x86_64-1.txz: Upgraded.
d/rust-1.32.0-x86_64-1.txz: Upgraded.
l/gcr-3.28.1-x86_64-1.txz: Upgraded.
n/nghttp2-1.36.0-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
| |
a/kernel-generic-4.19.16-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.16-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.16-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.16-x86-1.txz: Upgraded.
k/kernel-source-4.19.16-noarch-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
