| Commit message (Collapse) | Author | Age |
... | |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/kernel-generic-4.19.17-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.17-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.17-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.17-x86-1.txz: Upgraded.
d/scons-3.0.4-x86_64-1.txz: Upgraded.
d/vala-0.42.5-x86_64-1.txz: Upgraded.
k/kernel-source-4.19.17-noarch-1.txz: Upgraded.
n/httpd-2.4.38-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
mod_session: mod_session_cookie does not respect expiry time allowing
sessions to be reused. [Hank Ibell]
mod_http2: fixes a DoS attack vector. By sending slow request bodies
to resources not consuming them, httpd cleanup code occupies a server
thread unnecessarily. This was changed to an immediate stream reset
which discards all stream state and incoming data. [Stefan Eissing]
mod_ssl: Fix infinite loop triggered by a client-initiated
renegotiation in TLSv1.2 (or earlier) with OpenSSL 1.1.1 and
later. PR 63052. [Joe Orton]
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17199
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17189
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0190
(* Security fix *)
x/libdrm-2.4.97-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/bash-5.0.000-x86_64-1.txz: Upgraded.
a/glibc-zoneinfo-2018i-noarch-1.txz: Upgraded.
a/lzlib-1.11-x86_64-1.txz: Upgraded.
ap/vim-8.1.0727-x86_64-1.txz: Upgraded.
Fixed vimrc to work with "crontab -e" again now that cron's files have been
moved into /run/cron/. Thanks to Andreas Vögel.
d/subversion-1.11.1-x86_64-1.txz: Upgraded.
n/irssi-1.1.2-x86_64-1.txz: Upgraded.
This update addresses bugs including security and stability issues:
A NULL pointer dereference occurs for an "empty" nick.
Certain nick names could result in out-of-bounds access when printing
theme strings.
Crash due to a NULL pointer dereference w hen the number of windows
exceeds the available space.
Use-after-free when SASL messages are received in an unexpected order.
Use-after-free when a server is disconnected during netsplits.
Use-after-free when hidden lines were expired from the scroll buffer.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7050
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7051
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7052
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7053
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7054
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5882
(* Security fix *)
xap/vim-gvim-8.1.0727-x86_64-1.txz: Upgraded.
|
|
|
|
|
|
|
|
|
|
| |
ap/qpdf-8.3.0-x86_64-1.txz: Upgraded.
l/argon2-20171227-x86_64-1.txz: Added.
This is a new dependency for the PHP package.
n/libmbim-1.18.0-x86_64-1.txz: Upgraded.
n/libqmi-1.22.0-x86_64-1.txz: Upgraded.
n/php-7.2.14-x86_64-1.txz: Upgraded.
Use --with-password-argon2. PHP now requires the new argon2 package.
|
|
|
|
|
|
|
|
|
|
|
| |
ap/alsa-utils-1.1.8-x86_64-1.txz: Upgraded.
ap/gutenprint-5.3.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/alsa-lib-1.1.8-x86_64-1.txz: Upgraded.
l/alsa-oss-1.1.8-x86_64-1.txz: Upgraded.
l/alsa-plugins-1.1.8-x86_64-1.txz: Upgraded.
extra/pure-alsa-system/alsa-lib-1.1.8-x86_64-1_alsa.txz: Upgraded.
extra/pure-alsa-system/alsa-plugins-1.1.8-x86_64-1_alsa.txz: Upgraded.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/aaa_elflibs-15.0-x86_64-4.txz: Rebuilt.
Upgraded: libfuse.so.2.9.9, libidn2.so.4.0.0.
Kept (for now): libidn2.so.0.3.4.
ap/vim-8.1.0693-x86_64-1.txz: Upgraded.
l/fuse-2.9.9-x86_64-1.txz: Upgraded.
l/libidn2-2.1.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/libpsl-0.20.2-x86_64-2.txz: Rebuilt.
Recompiled against libidn2-2.1.0.
n/bind-9.12.3_P1-x86_64-2.txz: Rebuilt.
Recompiled against libidn2-2.1.0.
n/curl-7.63.0-x86_64-2.txz: Rebuilt.
Recompiled against libidn2-2.1.0.
n/dnsmasq-2.80-x86_64-2.txz: Rebuilt.
Recompiled against libidn2-2.1.0.
n/gnutls-3.6.5-x86_64-2.txz: Rebuilt.
Recompiled against libidn2-2.1.0.
n/iputils-s20180629-x86_64-2.txz: Rebuilt.
Recompiled against libidn2-2.1.0.
n/lftp-4.8.4-x86_64-2.txz: Rebuilt.
Recompiled against libidn2-2.1.0.
n/s-nail-14.9.11-x86_64-2.txz: Rebuilt.
Recompiled against libidn2-2.1.0.
n/wget-1.20.1-x86_64-2.txz: Rebuilt.
Recompiled against libidn2-2.1.0.
n/whois-5.4.0-x86_64-2.txz: Rebuilt.
Recompiled against libidn2-2.1.0.
xap/vim-gvim-8.1.0693-x86_64-1.txz: Upgraded.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/efibootmgr-17-x86_64-1.txz: Upgraded.
a/efivar-37-x86_64-1.txz: Upgraded.
d/cmake-3.13.2-x86_64-2.txz: Rebuilt.
Work around build failures with recent doxygen.
d/ruby-2.6.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
d/subversion-1.11.0-x86_64-2.txz: Rebuilt.
Recompiled against ruby-2.6.0.
kde/korundum-4.14.3-x86_64-7.txz: Rebuilt.
Recompiled against ruby-2.6.0.
kde/qtruby-4.14.3-x86_64-9.txz: Rebuilt.
Recompiled against ruby-2.6.0.
l/gobject-introspection-1.58.3-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_22-x86_64-1.txz: Upgraded.
l/libssh-0.8.6-x86_64-1.txz: Upgraded.
n/epic5-2.0.1-x86_64-8.txz: Rebuilt.
Recompiled against ruby-2.6.0.
n/tin-2.4.3-x86_64-1.txz: Upgraded.
n/wireless_tools-30.pre9-x86_64-1.txz: Upgraded.
x/xterm-341-x86_64-2.txz: Rebuilt.
Install xterm app-defaults that resemble the Linux console. Thanks to GazL.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/kernel-generic-4.19.13-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.13-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.13-x86_64-1.txz: Upgraded.
d/doxygen-1.8.15-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.13-x86-1.txz: Upgraded.
k/kernel-source-4.19.13-noarch-1.txz: Upgraded.
FRAMEBUFFER_CONSOLE_DEFERRED_TAKEOVER y -> n
l/libsecret-0.18.7-x86_64-1.txz: Upgraded.
n/wpa_supplicant-2.6-x86_64-6.txz: Upgraded.
It seems we're not the only ones with broken WPA2-Enterprise support
with wpa_supplicant-2.7, so we'll fix it the same way as everyone else -
by reverting to wpa_supplicant-2.6 for now.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/wpa_supplicant-2.7-x86_64-2.txz: Upgraded.
Applied a patch from Gentoo to allow building CONFIG_IEEE80211X=y without
the experimental CONFIG_FILS=y option.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/aaa_elflibs-15.0-x86_64-3.txz: Rebuilt.
Moved libsigsegv.so.2 from /usr/lib{,64} to /lib{,64}.
Upgraded: libcap.so.2.26, libelf-0.175.so, libfuse.so.2.9.8,
libexpat.so.1.6.8, libglib-2.0.so.0.5800.2, libgmodule-2.0.so.0.5800.2,
libgobject-2.0.so.0.5800.2, libgthread-2.0.so.0.5800.2, libjpeg.so.62.3.0,
liblber-2.4.so.2.10.10, libldap-2.4.so.2.10.10, libpng16.so.16.36.0,
libstdc++.so.6.0.25, libtdb.so.1.3.16, libtiff.so.5.4.0,
libtiffxx.so.5.4.0, libturbojpeg.so.0.2.0.
ap/vim-8.1.0648-x86_64-1.txz: Upgraded.
d/nasm-2.14.02-x86_64-1.txz: Upgraded.
d/strace-4.26-x86_64-1.txz: Upgraded.
l/libsigsegv-2.12-x86_64-3.txz: Rebuilt.
Moved shared library into /lib{,64} to avoid problems when /usr is on a
separate partition. Thanks to TommyC7.
But please note: that has never been a recommended configuration (it was
always a bad idea prone to corner-case bugs), and with basically everyone
else moving everything into /usr, no upstream is developing with this
scenario in mind these days. Some of the problems caused by separate /usr
are simply not possibly to fix in a straightforward fashion. Consider it a
completely unsupported configuration choice. While it's not my style to
make the installer refuse to allow it, I won't be bending over backwards
to try to fix bugs related to this in the future. If I recall properly,
the original rationale was to make it possible for /usr to reside on a
shared network partition, which might have made sense back when 40MB was
a typical hard drive size. I can think of no good rationale now (and no,
I don't think making /usr read-only helps security in any tangible way).
n/wget-1.20.1-x86_64-1.txz: Upgraded.
x/xf86-video-chips-1.3.0-x86_64-1.txz: Upgraded.
x/xf86-video-neomagic-1.3.0-x86_64-1.txz: Upgraded.
x/xterm-341-x86_64-1.txz: Upgraded.
xap/audacious-3.10.1-x86_64-1.txz: Upgraded.
xap/audacious-plugins-3.10.1-x86_64-1.txz: Upgraded.
xap/vim-gvim-8.1.0648-x86_64-1.txz: Upgraded.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/coreutils-8.30-x86_64-3.txz: Rebuilt.
Support tmux terms in DIR_COLORS. Thanks to qunying.
a/grep-3.3-x86_64-1.txz: Upgraded.
a/kernel-generic-4.19.12-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.12-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.12-x86_64-1.txz: Upgraded.
a/sed-4.7-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.12-x86-1.txz: Upgraded.
d/rust-1.31.1-x86_64-1.txz: Upgraded.
k/kernel-source-4.19.12-noarch-1.txz: Upgraded.
l/graphite2-1.3.13-x86_64-1.txz: Upgraded.
l/harfbuzz-2.3.0-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_19-x86_64-1.txz: Upgraded.
l/lmdb-0.9.23-x86_64-1.txz: Upgraded.
l/v4l-utils-1.16.3-x86_64-1.txz: Upgraded.
n/netatalk-3.1.12-x86_64-1.txz: Upgraded.
Netatalk before 3.1.12 is vulnerable to an out of bounds write in
dsi_opensess.c. This is due to lack of bounds checking on attacker
controlled data. A remote unauthenticated attacker can leverage
this vulnerability to achieve arbitrary code execution.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1160
(* Security fix *)
n/openldap-client-2.4.47-x86_64-1.txz: Upgraded.
n/samba-4.9.4-x86_64-1.txz: Upgraded.
x/intel-vaapi-driver-2.3.0-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/kernel-generic-4.19.9-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.9-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.9-x86_64-1.txz: Upgraded.
a/logrotate-3.15.0-x86_64-1.txz: Upgraded.
d/cmake-3.13.2-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.9-x86-1.txz: Upgraded.
d/python-setuptools-40.6.3-x86_64-1.txz: Upgraded.
k/kernel-source-4.19.9-noarch-1.txz: Upgraded.
l/gtk+3-3.24.2-x86_64-1.txz: Upgraded.
l/libedit-20181209_3.1-x86_64-1.txz: Upgraded.
l/python-six-1.12.0-x86_64-2.txz: Rebuilt.
n/bind-9.12.3_P1-x86_64-1.txz: Upgraded.
n/curl-7.63.0-x86_64-1.txz: Upgraded.
n/ipset-7.1-x86_64-1.txz: Upgraded.
n/libassuan-2.5.2-x86_64-1.txz: Upgraded.
x/xf86-input-void-1.4.1-x86_64-1.txz: Upgraded.
x/xterm-339-x86_64-1.txz: Upgraded.
xap/gparted-0.33.0-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
l/librsvg-2.44.10-x86_64-1.txz: Upgraded.
l/vte-0.54.3-x86_64-1.txz: Upgraded.
n/ca-certificates-20181210-noarch-1.txz: Upgraded.
x/mesa-18.3.1-x86_64-1.txz: Upgraded.
x/xf86-video-i128-1.4.0-x86_64-1.txz: Upgraded.
x/xf86-video-mga-2.0.0-x86_64-1.txz: Upgraded.
x/xterm-338-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-60.4.0esr-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/
https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-17466
https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-18492
https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-18493
https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-18494
https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-18498
https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-12405
(* Security fix *)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/btrfs-progs-v4.19.1-x86_64-1.txz: Upgraded.
a/dbus-1.12.12-x86_64-1.txz: Upgraded.
ap/cups-2.2.10-x86_64-1.txz: Upgraded.
ap/cups-filters-1.21.5-x86_64-1.txz: Upgraded.
ap/hplip-3.18.12-x86_64-1.txz: Upgraded.
d/mercurial-4.8.1-x86_64-1.txz: Upgraded.
d/rust-1.31.0-x86_64-1.txz: Upgraded.
l/libpng-1.6.36-x86_64-1.txz: Upgraded.
l/python-idna-2.8-x86_64-1.txz: Upgraded.
n/ntp-4.2.8p12-x86_64-5.txz: Rebuilt.
Fixed logrotate file. Thanks to allend and rworkman.
n/php-7.2.13-x86_64-1.txz: Upgraded.
This is a security release which also contains several minor bug fixes.
For more information, see:
https://php.net/ChangeLog-7.php#7.2.13
(* Security fix *)
n/wpa_supplicant-2.7-x86_64-1.txz: Upgraded.
x/mesa-18.3.0-x86_64-1.txz: Upgraded.
x/xf86-video-i740-1.4.0-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-60.3.3-x86_64-1.txz: Upgraded.
This is a bugfix release. For more information, see:
https://www.mozilla.org/en-US/thunderbird/60.3.3/releasenotes/
xfce/thunar-volman-0.9.1-x86_64-1.txz: Upgraded.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/kernel-generic-4.19.7-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.7-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.7-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.7-x86-1.txz: Upgraded.
k/kernel-source-4.19.7-noarch-1.txz: Upgraded.
n/gnutls-3.6.5-x86_64-1.txz: Upgraded.
This update fixes a security issue:
Bleichenbacher-like side channel leakage in PKCS#1 1.5 verification and
padding oracle verification.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16868
(* Security fix *)
n/nettle-3.4.1-x86_64-1.txz: Upgraded.
This update fixes a security issue:
A Bleichenbacher type side-channel based padding oracle attack was found
in the way nettle handles endian conversion of RSA decrypted PKCS#1 v1.5
data. An attacker who is able to run a process on the same physical core
as the victim process, could use this flaw to extract plaintext or in some
cases downgrade any TLS connections to a vulnerable server.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16869
(* Security fix *)
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
ap/sqlite-3.26.0-x86_64-1.txz: Upgraded.
l/libzip-1.5.1-x86_64-5.txz: Rebuilt.
Fixed path in libzip.pc. Thanks to orbea.
l/mozilla-nss-3.40.1-x86_64-1.txz: Upgraded.
Mitigate cache side-channel variant of the Bleichenbacher attack.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12404
(* Security fix *)
n/mutt-1.11.1-x86_64-1.txz: Upgraded.
n/stunnel-5.50-x86_64-1.txz: Upgraded.
xfce/xfce4-systemload-plugin-1.2.2-x86_64-2.txz: Rebuilt.
Applied reworked hover timeout patch. Thanks to Rod3775.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
ap/texinfo-6.5-x86_64-7.txz: Rebuilt.
Recompiled against perl-5.28.1.
ap/vim-8.1.0552-x86_64-1.txz: Upgraded.
Compiled against perl-5.28.1.
d/perl-5.28.1-x86_64-1.txz: Upgraded.
Upgraded DBD-mysql-4.049, DBI-1.642, abd IO-Socket-SSL-2.060.
Added Devel-CheckLib-1.13 (needed by DBD-mysql-4.049).
kde/perlkde-4.14.3-x86_64-7.txz: Rebuilt.
Recompiled against perl-5.28.1.
kde/perlqt-4.14.3-x86_64-8.txz: Rebuilt.
Recompiled against perl-5.28.1.
n/epic5-2.0.1-x86_64-7.txz: Rebuilt.
Recompiled against perl-5.28.1.
n/irssi-1.1.1-x86_64-5.txz: Rebuilt.
Recompiled against perl-5.28.1.
n/net-snmp-5.8-x86_64-4.txz: Rebuilt.
Recompiled against perl-5.28.1.
n/ntp-4.2.8p12-x86_64-4.txz: Rebuilt.
Recompiled against perl-5.28.1.
xap/hexchat-2.14.2-x86_64-2.txz: Rebuilt.
Recompiled against perl-5.28.1.
xap/mozilla-thunderbird-60.3.2-x86_64-1.txz: Upgraded.
This is a bugfix release. For more information, see:
https://www.mozilla.org/en-US/thunderbird/60.3.2/releasenotes/
xap/rxvt-unicode-9.22-x86_64-6.txz: Rebuilt.
Recompiled against perl-5.28.1.
xap/vim-gvim-8.1.0552-x86_64-1.txz: Upgraded.
Compiled against perl-5.28.1.
xfce/xfce4-systemload-plugin-1.2.2-x86_64-1.txz: Upgraded.
|
|
|
|
|
|
|
|
|
|
| |
n/mutt-1.11.0-x86_64-2.txz: Rebuilt.
Put info file in /usr/info and compress it.
Don't include /usr/info/dir.
Thanks to Edward Trumbo.
After upgrading this package, you'll need to reinstall the texinfo package
to restore the missing /usr/info/dir file.
n/wget-1.20-x86_64-1.txz: Upgraded.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/sysvinit-scripts-2.1-noarch-23.txz: Rebuilt.
rc.S: simplify test for F2FS filesystem on /. Thanks to GazL.
ap/soma-3.2.0-noarch-1.txz: Upgraded.
d/cmake-3.13.1-x86_64-1.txz: Upgraded.
l/jansson-2.12-x86_64-1.txz: Upgraded.
n/rp-pppoe-3.13-x86_64-1.txz: Upgraded.
n/samba-4.9.3-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues:
CVE-2018-14629: Unprivileged adding of CNAME record causing loop in AD
Internal DNS server
CVE-2018-16841: Double-free in Samba AD DC KDC with PKINIT
CVE-2018-16851: NULL pointer de-reference in Samba AD DC LDAP server
CVE-2018-16852: NULL pointer de-reference in Samba AD DC DNS servers
CVE-2018-16853: Samba AD DC S4U2Self crash in experimental MIT Kerberos
configuration (unsupported)
CVE-2018-16857: Bad password count in AD DC not always effective
For more information, see:
https://www.samba.org/samba/security/CVE-2018-14629.html
https://www.samba.org/samba/security/CVE-2018-16841.html
https://www.samba.org/samba/security/CVE-2018-16851.html
https://www.samba.org/samba/security/CVE-2018-16852.html
https://www.samba.org/samba/security/CVE-2018-16853.html
https://www.samba.org/samba/security/CVE-2018-16857.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14629
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16841
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16851
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16852
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16853
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16857
(* Security fix *)
x/mesa-18.2.6-x86_64-1.txz: Upgraded.
x/vulkan-sdk-1.1.92.1-x86_64-1.txz: Upgraded.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
ap/lm_sensors-3.5.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
ap/sysstat-12.0.2-x86_64-2.txz: Rebuilt.
Recompiled against lm_sensors-3.5.0.
kde/kde-workspace-4.11.22-x86_64-6.txz: Rebuilt.
Recompiled against lm_sensors-3.5.0.
n/mutt-1.11.0-x86_64-1.txz: Upgraded.
n/net-snmp-5.8-x86_64-3.txz: Rebuilt.
Recompiled against lm_sensors-3.5.0.
n/ntp-4.2.8p12-x86_64-3.txz: Rebuilt.
Recompiled against lm_sensors-3.5.0.
n/postfix-3.3.2-x86_64-1.txz: Upgraded.
xap/gkrellm-2.3.10-x86_64-5.txz: Rebuilt.
Recompiled against lm_sensors-3.5.0.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/tree-1.8.0-x86_64-1.txz: Upgraded.
ap/cups-filters-1.21.4-x86_64-1.txz: Upgraded.
ap/itstool-2.0.5-x86_64-1.txz: Upgraded.
d/Cython-0.29.1-x86_64-1.txz: Upgraded.
l/dconf-0.30.1-x86_64-1.txz: Upgraded.
l/elfutils-0.175-x86_64-1.txz: Upgraded.
l/gc-8.0.0-x86_64-1.txz: Upgraded.
l/gobject-introspection-1.58.1-x86_64-1.txz: Upgraded.
l/json-glib-1.4.4-x86_64-1.txz: Upgraded.
l/keyutils-1.6-x86_64-1.txz: Upgraded.
l/libjpeg-turbo-2.0.1-x86_64-1.txz: Upgraded.
l/libpsl-0.20.2-x86_64-1.txz: Upgraded.
l/libsecret-0.18.6-x86_64-3.txz: Rebuilt.
Recompiled with --enable-introspection (also picks up Vala support).
n/cyrus-sasl-2.1.27-x86_64-1.txz: Upgraded.
n/dovecot-2.3.4-x86_64-1.txz: Upgraded.
n/mailx-12.5-x86_64-4.txz: Removed.
n/s-nail-14.9.11-x86_64-1.txz: Added.
This package replaces mailx. Thanks to Johannes Schoepfer.
tcl/tcl-8.6.9-x86_64-1.txz: Upgraded.
tcl/tk-8.6.9.1-x86_64-1.txz: Upgraded.
xap/gucharmap-11.0.3-x86_64-1.txz: Upgraded.
xfce/xfce4-clipman-plugin-1.4.3-x86_64-1.txz: Upgraded.
xfce/xfce4-screenshooter-1.9.3-x86_64-1.txz: Upgraded.
|
|
|
|
|
|
|
|
|
|
| |
d/python-setuptools-40.6.2-x86_64-1.txz: Upgraded.
l/python-requests-2.20.1-x86_64-1.txz: Upgraded.
n/cifs-utils-6.8-x86_64-1.txz: Upgraded.
n/getmail-5.8-x86_64-1.txz: Upgraded.
n/nfs-utils-2.3.3-x86_64-1.txz: Upgraded.
n/rpcbind-1.2.5-x86_64-1.txz: Upgraded.
x/mesa-18.2.5-x86_64-1.txz: Upgraded.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/xfsprogs-4.19.0-x86_64-1.txz: Upgraded.
ap/sudo-1.8.26-x86_64-1.txz: Upgraded.
l/babl-0.1.60-x86_64-1.txz: Upgraded.
n/iptables-1.8.2-x86_64-1.txz: Upgraded.
Compiled against libnftnl-1.1.2.
n/libnftnl-1.1.2-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
n/nftables-0.9.0-x86_64-2.txz: Rebuilt.
Recompiled against libnftnl-1.1.2.
extra/pure-alsa-system/alsa-lib-1.1.7-x86_64-2_alsa.txz: Rebuilt.
Sorry this package had not been recompiled with the patch. Thanks to orbea
for pointing this out.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
d/python-setuptools-40.6.1-x86_64-1.txz: Upgraded.
l/M2Crypto-0.31.0-x86_64-1.txz: Upgraded.
l/SDL2-2.0.9-x86_64-2.txz: Rebuilt.
Fixed use of SDL_syswm.h with SDL_PROTOTYPES_ONLY in C++ mode.
Thanks to orbea.
l/libtiff-4.0.10-x86_64-1.txz: Upgraded.
This update fixes some denial of service security issues.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10779
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18661
(* Security fix *)
l/netpbm-10.84.02-x86_64-1.txz: Upgraded.
n/net-snmp-5.8-x86_64-2.txz: Rebuilt.
Recompiled to link the perl modules to the new libraries. Thanks to th_r.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/udisks2-2.6.5-x86_64-3.txz: Rebuilt.
Recompiled against net-snmp-5.8.
ap/hplip-3.18.10-x86_64-2.txz: Rebuilt.
Recompiled against net-snmp-5.8.
d/bison-3.2.1-x86_64-1.txz: Upgraded.
d/meson-0.48.2-x86_64-1.txz: Upgraded.
l/pycairo-1.18.0-x86_64-1.txz: Upgraded.
n/bridge-utils-1.6-x86_64-1.txz: Upgraded.
n/net-snmp-5.8-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
n/ntp-4.2.8p12-x86_64-2.txz: Rebuilt.
Recompiled against net-snmp-5.8.
n/php-7.2.12-x86_64-2.txz: Rebuilt.
Recompiled against net-snmp-5.8.
xap/blackbox-0.74-x86_64-2.txz: Rebuilt.
When building, don't install anything to the system. Thanks to Didier Spaier.
xap/sane-1.0.27-x86_64-4.txz: Rebuilt.
Recompiled against net-snmp-5.8.
extra/aspell-word-lists/aspell-ar-1.2_0-x86_64-1.txz: Added.
extra/aspell-word-lists/aspell-ast-0.01-x86_64-1.txz: Added.
extra/aspell-word-lists/aspell-ca-2.1.5_1-x86_64-1.txz: Upgraded.
extra/aspell-word-lists/aspell-de_alt-2.1_1-x86_64-1.txz: Added.
extra/aspell-word-lists/aspell-fy-0.12_0-x86_64-1.txz: Added.
extra/aspell-word-lists/aspell-grc-0.02_0-x86_64-1.txz: Added.
extra/aspell-word-lists/aspell-hy-0.10.0_0-x86_64-1.txz: Added.
extra/aspell-word-lists/aspell-ky-0.01_0-x86_64-1.txz: Added.
extra/aspell-word-lists/aspell-ml-0.03_1-x86_64-1.txz: Added.
extra/aspell-word-lists/aspell-pt_PT-20070510_0-x86_64-1.txz: Added.
extra/aspell-word-lists/aspell-tk-0.01_0-x86_64-1.txz: Added.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/efibootmgr-16-x86_64-2.txz: Rebuilt.
Reverted to previous version. We'd tried this before and it still doesn't
work. Thanks to _RDS_.
a/efivar-35-x86_64-1.txz: Upgraded.
Reverted to previous version. We'd tried this before and it still doesn't
work. Thanks to _RDS_.
a/hwdata-0.317-noarch-1.txz: Upgraded.
a/lvm2-2.03.01-x86_64-1.txz: Upgraded.
a/quota-4.04-x86_64-1.txz: Upgraded.
ap/cups-2.2.9-x86_64-1.txz: Upgraded.
ap/sysstat-12.0.2-x86_64-1.txz: Upgraded.
d/cscope-15.9-x86_64-1.txz: Upgraded.
d/distcc-3.3.2-x86_64-1.txz: Upgraded.
d/nasm-2.14-x86_64-1.txz: Upgraded.
d/oprofile-1.3.0-x86_64-1.txz: Upgraded.
d/rust-1.30.1-x86_64-1.txz: Upgraded.
l/elfutils-0.174-x86_64-1.txz: Upgraded.
l/shared-mime-info-1.10-x86_64-1.txz: Upgraded.
n/samba-4.9.2-x86_64-1.txz: Upgraded.
xap/gimp-2.10.8-x86_64-1.txz: Upgraded.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/aaa_terminfo-6.1_20181027-x86_64-2.txz: Rebuilt.
a/efibootmgr-17-x86_64-1.txz: Upgraded.
a/efivar-36-x86_64-1.txz: Upgraded.
a/hostname-3.21-x86_64-1.txz: Upgraded.
a/inotify-tools-3.20.1-x86_64-1.txz: Upgraded.
a/mdadm-4.1-x86_64-1.txz: Upgraded.
a/usb_modeswitch-2.5.2-x86_64-1.txz: Upgraded.
a/util-linux-2.33-x86_64-1.txz: Upgraded.
ap/cdrdao-1.2.4-x86_64-1.txz: Upgraded.
ap/dash-0.5.10.2-x86_64-1.txz: Upgraded.
ap/diffstat-1.62-x86_64-1.txz: Upgraded.
ap/rpm-4.14.2.1-x86_64-1.txz: Upgraded.
ap/sqlite-3.25.3-x86_64-1.txz: Upgraded.
l/gnu-efi-3.0.9-x86_64-1.txz: Upgraded.
l/iso-codes-4.1-noarch-1.txz: Upgraded.
l/jasper-2.0.14-x86_64-1.txz: Upgraded.
l/libbluray-1.0.2-x86_64-1.txz: Upgraded.
l/libcap-ng-0.7.9-x86_64-1.txz: Upgraded.
l/libiodbc-3.52.12-x86_64-1.txz: Upgraded.
l/libodfgen-0.1.7-x86_64-1.txz: Upgraded.
l/libwpd-0.10.2-x86_64-1.txz: Upgraded.
l/libwpg-0.3.2-x86_64-1.txz: Upgraded.
l/libyaml-0.2.1-x86_64-1.txz: Upgraded.
l/ncurses-6.1_20181027-x86_64-2.txz: Rebuilt.
Temporarily removed the bce feature from the linux console definition until
the console is fixed. Added a linux-bce terminal definition for testing.
l/sbc-1.4-x86_64-1.txz: Upgraded.
l/zstd-1.3.7-x86_64-1.txz: Upgraded.
n/gnupg2-2.2.11-x86_64-1.txz: Upgraded.
n/ipset-7.0-x86_64-1.txz: Upgraded.
n/libndp-1.7-x86_64-1.txz: Upgraded.
n/npth-1.6-x86_64-1.txz: Upgraded.
n/php-7.2.12-x86_64-1.txz: Upgraded.
n/slrn-1.0.3a-x86_64-1.txz: Upgraded.
n/snownews-1.6.10-x86_64-1.txz: Upgraded.
n/whois-5.4.0-x86_64-1.txz: Upgraded.
x/libinput-1.12.3-x86_64-1.txz: Upgraded.
x/libva-2.3.0-x86_64-1.txz: Upgraded.
x/libva-utils-2.3.0-x86_64-1.txz: Upgraded.
x/libwacom-0.32-x86_64-1.txz: Upgraded.
x/xdg-user-dirs-0.17-x86_64-1.txz: Upgraded.
xap/blackbox-0.74-x86_64-1.txz: Upgraded.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/haveged-1.9.4-x86_64-1.txz: Upgraded.
a/kernel-firmware-20181026_1baa348-noarch-1.txz: Upgraded.
a/mcelog-161-x86_64-1.txz: Upgraded.
ap/powertop-2.9-x86_64-1.txz: Upgraded.
d/clisp-2.49_20180922_228b90a52-x86_64-1.txz: Upgraded.
d/mercurial-4.8-x86_64-1.txz: Upgraded.
l/fribidi-1.0.5-x86_64-1.txz: Upgraded.
l/libjpeg-turbo-2.0.0-x86_64-1.txz: Upgraded.
n/lynx-2.8.9rel.1-x86_64-1.txz: Upgraded.
t/texlive-2018.180822-x86_64-3.txz: Rebuilt.
Rebuilt to recompile xindy for the upgraded CLISP runtime.
|
|
|
|
|
|
|
|
|
|
|
|
| |
kde/kde-runtime-4.14.3-x86_64-8.txz: Rebuilt.
Applied upstream patch to fix info and man page display.
Thanks to igadoter and lougavulin.
l/gegl-0.4.12-x86_64-1.txz: Upgraded.
n/bind-9.12.3-x86_64-1.txz: Upgraded.
x/mesa-18.2.4-x86_64-1.txz: Upgraded.
extra/pure-alsa-system/kde-runtime-4.14.3-x86_64-8_alsa.txz: Rebuilt.
Applied upstream patch to fix info and man page display.
Thanks to igadoter and lougavulin.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
d/subversion-1.11.0-x86_64-1.txz: Upgraded.
l/SDL2-2.0.9-x86_64-1.txz: Upgraded.
l/SDL2_gfx-1.0.4-x86_64-1.txz: Upgraded.
l/SDL2_image-2.0.4-x86_64-1.txz: Upgraded.
l/SDL2_mixer-2.0.4-x86_64-1.txz: Upgraded.
n/autofs-5.1.5-x86_64-1.txz: Upgraded.
n/curl-7.62.0-x86_64-1.txz: Upgraded.
This release fixes the following security issues:
SASL password overflow via integer overflow.
Use-after-free in handle close.
Warning message out-of-buffer read.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16839
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16840
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16842
(* Security fix *)
xap/mozilla-thunderbird-60.3.0-x86_64-1.txz: Upgraded.
This is a bugfix release. For more information, see:
https://www.mozilla.org/en-US/thunderbird/60.3.0/releasenotes/
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/aaa_terminfo-6.1_20181027-x86_64-1.txz: Upgraded.
ap/hplip-3.18.10-x86_64-1.txz: Upgraded.
d/bison-3.2-x86_64-1.txz: Upgraded.
d/strace-4.25-x86_64-1.txz: Upgraded.
l/libsigc++-2.10.1-x86_64-1.txz: Upgraded.
l/ncurses-6.1_20181027-x86_64-1.txz: Upgraded.
l/xapian-core-1.4.8-x86_64-1.txz: Upgraded.
n/getmail-5.7-x86_64-1.txz: Upgraded.
xfce/xfce4-notifyd-0.4.3-x86_64-1.txz: Upgraded.
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/glibc-zoneinfo-2018g-noarch-1.txz: Upgraded.
a/hdparm-9.58-x86_64-1.txz: Upgraded.
ap/gphoto2-2.5.20-x86_64-1.txz: Upgraded.
d/python-setuptools-40.5.0-x86_64-1.txz: Upgraded.
l/libgphoto2-2.5.20-x86_64-1.txz: Upgraded.
l/libmtp-1.1.16-x86_64-1.txz: Upgraded.
l/libssh-0.8.5-x86_64-1.txz: Upgraded.
n/gpa-0.10.0-x86_64-1.txz: Upgraded.
n/libgcrypt-1.8.4-x86_64-1.txz: Upgraded.
|
|
|
|
|
|
|
|
|
|
|
|
| |
d/strace-20181024_43700247-x86_64-1.txz: Upgraded.
l/alsa-plugins-1.1.7-x86_64-4.txz: Rebuilt.
Applied upstream fix for double free. Thanks to Jean-Philippe Guillemin.
n/httpd-2.4.37-x86_64-1.txz: Upgraded.
n/mcabber-1.1.0-x86_64-1.txz: Upgraded.
x/libepoxy-1.5.3-x86_64-1.txz: Upgraded.
xap/pan-0.145-x86_64-1.txz: Upgraded.
extra/pure-alsa-system/alsa-plugins-1.1.7-x86_64-4_alsa.txz: Rebuilt.
Applied upstream fix for double free. Thanks to Jean-Philippe Guillemin.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/kernel-generic-4.19.0-x86_64-1.txz: Upgraded.
a/kernel-huge-4.19.0-x86_64-1.txz: Upgraded.
a/kernel-modules-4.19.0-x86_64-1.txz: Upgraded.
d/kernel-headers-4.19.0-x86-1.txz: Upgraded.
d/parallel-20181022-noarch-1.txz: Upgraded.
k/kernel-source-4.19.0-noarch-1.txz: Upgraded.
[581 lines of diffconfig output omitted here]
l/alsa-plugins-1.1.7-x86_64-3.txz: Rebuilt.
Reverted two patches that have been reported to cause crashes with USB audio
devices. Thanks to Jean-Philippe Guillemin.
l/harfbuzz-1.9.0-x86_64-2.txz: Rebuilt.
Reverted (for now) to harfbuzz-1.9.0 to fix build failures with texlive, php,
and calligra caused by API changes. Thanks to nobodino.
l/libpng-1.6.35-x86_64-1.txz: Upgraded.
n/samba-4.9.1-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-60.3.0esr-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
(* Security fix *)
extra/pure-alsa-system/alsa-plugins-1.1.7-x86_64-3_alsa.txz: Rebuilt.
Reverted two patches that have been reported to cause crashes with USB audio
devices. Thanks to Jean-Philippe Guillemin.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/file-5.35-x86_64-1.txz: Upgraded.
a/glibc-zoneinfo-2018f-noarch-1.txz: Upgraded.
a/kernel-firmware-20181018_d877533-noarch-1.txz: Upgraded.
ap/ksh93-20181018_89d7b802-x86_64-1.txz: Upgraded.
l/harfbuzz-2.0.0-x86_64-1.txz: Upgraded.
l/libopusenc-0.2.1-x86_64-1.txz: Upgraded.
l/opus-1.3-x86_64-1.txz: Upgraded.
l/v4l-utils-1.16.1-x86_64-1.txz: Upgraded.
n/NetworkManager-1.14.2-x86_64-1.txz: Upgraded.
n/dnsmasq-2.80-x86_64-1.txz: Upgraded.
n/openssh-7.9p1-x86_64-1.txz: Upgraded.
x/mesa-18.2.3-x86_64-1.txz: Upgraded.
x/xkeyboard-config-2.25-noarch-1.txz: Upgraded.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/bin-11.1-x86_64-3.txz: Rebuilt.
Renamed mktemp to mktemp-debianutils.
Removed bban and sysvbanner which seem to be lacking proper licensing info.
a/coreutils-8.30-x86_64-2.txz: Rebuilt.
Renamed mktemp-gnu to mktemp.
a/xfsprogs-4.18.0-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-63.1.
ap/alsa-utils-1.1.7-x86_64-1.txz: Upgraded.
ap/sqlite-3.25.2-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-63.1.
d/ccache-3.5-x86_64-1.txz: Upgraded.
kde/calligra-2.9.11-x86_64-26.txz: Rebuilt.
Recompiled against icu4c-63.1.
l/alsa-lib-1.1.7-x86_64-1.txz: Upgraded.
l/alsa-plugins-1.1.7-x86_64-1.txz: Upgraded.
l/boost-1.68.0-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-63.1.
l/harfbuzz-1.9.0-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-63.1.
l/icu4c-63.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
Those of you using Plasma 5 or various third party packages should know by
now what it means when icu4c gets a bump in -current. You may want to wait
a few days for those things to appear again rebuilt against this.
l/libical-3.0.4-x86_64-1.txz: Upgraded.
Compiled against icu4c-63.1.
l/libssh-0.7.6-x86_64-1.txz: Upgraded.
Fixed authentication bypass vulnerability.
For more information, see:
https://www.libssh.org/2018/10/16/libssh-0-8-4-and-0-7-6-security-and-bugfix-release/
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10933
(* Security fix *)
l/libvisio-0.1.6-x86_64-5.txz: Rebuilt.
Recompiled against icu4c-63.1.
l/qt-4.8.7-x86_64-11.txz: Rebuilt.
Recompiled against icu4c-63.1.
l/raptor2-2.0.15-x86_64-6.txz: Rebuilt.
Recompiled against icu4c-63.1.
n/dovecot-2.3.3-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-63.1.
n/php-7.2.11-x86_64-1.txz: Upgraded.
Compiled against icu4c-63.1.
n/postfix-3.3.1-x86_64-3.txz: Rebuilt.
Recompiled against icu4c-63.1.
n/tin-2.4.2-x86_64-4.txz: Rebuilt.
Recompiled against icu4c-63.1.
t/texlive-2018.180822-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-63.1.
x/libdrm-2.4.96-x86_64-1.txz: Upgraded.
xfce/exo-0.12.3-x86_64-1.txz: Upgraded.
extra/brltty/brltty-5.6-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-63.1.
extra/pure-alsa-system/alsa-lib-1.1.7-x86_64-1_alsa.txz: Upgraded.
extra/pure-alsa-system/alsa-plugins-1.1.7-x86_64-1_alsa.txz: Upgraded.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/kernel-generic-4.14.74-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.74-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.74-x86_64-1.txz: Upgraded.
ap/cups-filters-1.21.3-x86_64-1.txz: Upgraded.
d/cmake-3.12.3-x86_64-1.txz: Upgraded.
d/kernel-headers-4.14.74-x86-1.txz: Upgraded.
k/kernel-source-4.14.74-noarch-1.txz: Upgraded.
l/gst-plugins-base-1.14.4-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.14.4-x86_64-1.txz: Upgraded.
l/gst-plugins-libav-1.14.4-x86_64-1.txz: Upgraded.
l/gstreamer-1.14.4-x86_64-1.txz: Upgraded.
n/dovecot-2.3.3-x86_64-1.txz: Upgraded.
Thanks to teoberi for the link to the glibc-2.28 crypt() patch.
extra/pure-alsa-system/gst-plugins-good-1.14.4-x86_64-1_alsa.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/aaa_terminfo-6.1_20180923-x86_64-1.txz: Upgraded.
a/eudev-3.2.6-x86_64-3.txz: Rebuilt.
Fixed issues with the default rules. Thanks to zuriel.
a/kernel-generic-4.14.72-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.72-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.72-x86_64-1.txz: Upgraded.
ap/vim-8.1.0436-x86_64-1.txz: Upgraded.
d/kernel-headers-4.14.72-x86-1.txz: Upgraded.
d/re2c-1.1.1-x86_64-1.txz: Upgraded.
k/kernel-source-4.14.72-noarch-1.txz: Upgraded.
l/ncurses-6.1_20180923-x86_64-1.txz: Upgraded.
n/fetchmail-6.3.26-x86_64-5.txz: Rebuilt.
Patched to fix certificate verification failures with OpenSSL 1.1.1.
Thanks to Jurgen Van Ham.
n/gnutls-3.6.4-x86_64-1.txz: Upgraded.
x/xf86-video-intel-20180906_25c9a2fc-x86_64-1.txz: Upgraded.
xap/vim-gvim-8.1.0436-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
d/Cython-0.28.5-x86_64-1.txz: Upgraded.
d/help2man-1.47.7-x86_64-1.txz: Upgraded.
d/meson-0.48.0-x86_64-1.txz: Upgraded.
d/python-setuptools-40.4.3-x86_64-1.txz: Upgraded.
l/M2Crypto-0.30.1-x86_64-1.txz: Upgraded.
l/cairo-1.15.14-x86_64-1.txz: Upgraded.
l/librsvg-2.44.4-x86_64-1.txz: Upgraded.
l/pycairo-1.17.1-x86_64-1.txz: Upgraded.
l/pycurl-7.43.0.2-x86_64-1.txz: Upgraded.
l/pyparsing-2.2.1-x86_64-1.txz: Upgraded.
n/ModemManager-1.8.2-x86_64-1.txz: Upgraded.
n/bind-9.12.2_P2-x86_64-1.txz: Upgraded.
This update fixes security issues:
There was a long-existing flaw in the documentation for ms-self, krb5-self,
ms-subdomain, and krb5-subdomain rules in update-policy statements. Though
the policies worked as intended, operators who configured their servers
according to the misleading documentation may have thought zone updates were
more restricted than they were; users of these rule types are advised to
review the documentation and correct their configurations if necessary. New
rule types matching the previously documented behavior will be introduced in
a future maintenance release.
named could crash during recursive processing of DNAME records when
deny-answer-aliases was in use. This flaw is disclosed in CVE-2018-5740.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5740
(* Security fix *)
n/httpd-2.4.35-x86_64-1.txz: Upgraded.
This release fixes bugs and regressions in httpd-2.4.34, adds an
apache2ctl -> apachectl symlink, and no longer automatically
overwrites rc.httpd when upgraded.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/eudev-3.2.6-x86_64-1.txz: Upgraded.
a/glibc-solibs-2.28-x86_64-2.txz: Upgraded.
a/grub-2.02-x86_64-3.txz: Rebuilt.
Patched to fix compatibility with recent xfsprogs. Thanks to Markus Wiesner.
a/kernel-generic-4.14.71-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.71-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.71-x86_64-1.txz: Upgraded.
ap/opus-tools-0.2-x86_64-1.txz: Upgraded.
ap/sqlite-3.25.1-x86_64-1.txz: Upgraded.
d/icecream-20180905_cdc6ff8-x86_64-1.txz: Upgraded.
d/kernel-headers-4.14.71-x86-1.txz: Upgraded.
d/llvm-7.0.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
k/kernel-source-4.14.71-noarch-1.txz: Upgraded.
l/ffmpeg-3.4.4-x86_64-2.txz: Rebuilt.
Don't try to link with Samba since the latest version is not compatible.
l/glibc-2.28-x86_64-2.txz: Upgraded.
All packages have been patched where needed for glibc-2.28 and compile
tested here. Thanks to nobodino for the help.
l/glibc-i18n-2.28-x86_64-2.txz: Upgraded.
l/glibc-profile-2.28-x86_64-2.txz: Upgraded.
l/gst-plugins-base-1.14.3-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.14.3-x86_64-1.txz: Upgraded.
l/gst-plugins-libav-1.14.3-x86_64-1.txz: Upgraded.
l/gstreamer-1.14.3-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.10_11-x86_64-1.txz: Upgraded.
l/libopusenc-0.2-x86_64-1.txz: Added.
l/librsvg-2.44.3-x86_64-1.txz: Upgraded.
l/opus-1.3_rc2-x86_64-1.txz: Upgraded.
l/opusfile-0.11-x86_64-1.txz: Upgraded.
l/soprano-2.9.4-x86_64-3.txz: Rebuilt.
Recompiled to drop virtuoso dependency.
l/virtuoso-ose-6.1.8-x86_64-9.txz: Removed.
Even KDE4 has migrated away from actually using this for anything. The last
thing in Slackware that was dependent on it was Soprano, which has been
recompiled to no longer use it.
n/postfix-3.3.1-x86_64-2.txz: Rebuilt.
Recompiled so that it quits whining about OpenSSL. Thanks to shastah.
x/mesa-18.2.1-x86_64-1.txz: Upgraded.
Compiled against llvm-7.0.0.
x/xf86-video-vmware-13.3.0-x86_64-2.txz: Rebuilt.
Recompiled against llvm-7.0.0.
x/xterm-336-x86_64-1.txz: Upgraded.
extra/pure-alsa-system/ffmpeg-3.4.4-x86_64-2_alsa.txz: Rebuilt.
Don't try to link with Samba since the latest version is not compatible.
extra/pure-alsa-system/gst-plugins-good-1.14.3-x86_64-1_alsa.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
ap/dmidecode-3.2-x86_64-1.txz: Upgraded.
ap/nano-3.1-x86_64-1.txz: Upgraded.
ap/slackpkg-2.83.0-noarch-4.txz: Rebuilt.
Merged two patches from git:
Clarify that a press of "Enter" is needed to confirm kernel change
Mention possible stale mirror if CHECKSUMS.md5 gpg verify fails
Thanks to Mario Preksavec and Robby Workman.
ap/sqlite-3.25.0-x86_64-1.txz: Upgraded.
ap/xorriso-1.5.0-x86_64-1.txz: Upgraded.
l/lmdb-0.9.22-x86_64-2.txz: Rebuilt.
Fixed the build script to clear out the build area properly - previously
it was possible for binaries of the wrong $ARCH to end up in the package.
Thanks to reddog83.
n/gnutls-3.6.3-x86_64-2.txz: Rebuilt.
Merged backported SSL/TLS fixes. Thanks to orbea.
n/samba-4.9.0-x86_64-2.txz: Rebuilt.
Recompiled in case the lmdb package was broken.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/kernel-firmware-20180913_44d4fca-noarch-1.txz: Upgraded.
a/kernel-generic-4.14.70-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.70-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.70-x86_64-1.txz: Upgraded.
ap/hplip-3.18.7-x86_64-4.txz: Rebuilt.
Applied fixed patch - this has a better chance of working now. I've checked
and hpcups no longer links to libImageProcessor. Which, by the way, the
previous build dumped onto my main system (not even in "make install"),
but not into the package itself. I no longer own an HP printer and will
never buy another one, so if there are any remaining problems please report.
Thanks to Matteo Bernardini.
d/kernel-headers-4.14.70-x86-1.txz: Upgraded.
k/kernel-source-4.14.70-noarch-1.txz: Upgraded.
Config changes since 4.14.69:
CLEANCACHE n -> y
CMA n -> y
MEMORY_FAILURE n -> y
NUMA n -> y
X86_CHECK_BIOS_CORRUPTION n -> y
Z3FOLD m -> y
ZBUD m -> y
ZSMALLOC m -> y
+ACPI_APEI_MEMORY_FAILURE y
+ACPI_NUMA y
+AMD_NUMA y
+CMA_AREAS 7
+CMA_DEBUG n
+CMA_DEBUGFS n
+DMA_CMA n
+HWPOISON_INJECT m
+NEED_MULTIPLE_NODES y
+NODES_SHIFT 6
+NODES_SPAN_OTHER_NODES y
+NUMA_BALANCING n
+NUMA_EMU n
+RAS_CEC n
+USE_PERCPU_NUMA_NODE_ID y
+X86_64_ACPI_NUMA y
+X86_BOOTPARAM_MEMORY_CORRUPTION_CHECK n
n/NetworkManager-1.14.0-x86_64-1.txz: Upgraded.
Added new options: --enable-json-validation --enable-ovs
xap/network-manager-applet-1.8.18-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
pasture/php-5.6.38-x86_64-1.txz: Upgraded.
One security bug has been fixed in this release:
Apache2: XSS due to the header Transfer-Encoding: chunked
For more information, see:
https://php.net/ChangeLog-5.php#5.6.38
(* Security fix *)
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
ap/hplip-3.18.7-x86_64-3.txz: Rebuilt.
Throw away the broken and ill-advised libImageProcessor closed-source blob.
Thanks to Matteo Bernardini.
ap/zsh-5.6.2-x86_64-1.txz: Upgraded.
d/rust-1.29.0-x86_64-1.txz: Upgraded.
l/lmdb-0.9.22-x86_64-1.txz: Added.
This is a new dependency of Samba.
n/php-7.2.10-x86_64-1.txz: Upgraded.
This is a security release which also contains several minor bug fixes.
For more information, see:
https://php.net/ChangeLog-7.php#7.2.10
(* Security fix *)
n/samba-4.9.0-x86_64-1.txz: Upgraded.
x/xf86-video-amdgpu-18.1.0-x86_64-1.txz: Upgraded.
x/xf86-video-ati-18.1.0-x86_64-1.txz: Upgraded.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/elilo-3.16-x86_64-8.txz: Rebuilt.
eliloconfig: this was occasionally failing and the issue was traced to the
script's use of tr (not sure why still). Replaced the construct with sed
and the issue seems to have gone away.
a/openssl-solibs-1.1.1-x86_64-1.txz: Upgraded.
d/binutils-2.31.1-x86_64-3.txz: Rebuilt.
Do not install the Windows-specific tools. Not only are these useless on
Linux, but the presence of windres fools freetype into thinking that it is
on a Windows system, leading to a build failure.
d/git-2.19.0-x86_64-1.txz: Upgraded.
l/freetype-2.9.1-x86_64-1.txz: Upgraded.
l/harfbuzz-1.9.0-x86_64-1.txz: Upgraded.
l/media-player-info-24-noarch-1.txz: Upgraded.
l/pcre2-10.32-x86_64-1.txz: Upgraded.
l/sg3_utils-1.43-x86_64-1.txz: Upgraded.
n/openssl-1.1.1-x86_64-1.txz: Upgraded.
x/fontconfig-2.13.1-x86_64-1.txz: Upgraded.
We had problem reports with fontconfig-2.13.0 which led to it being reverted
but we'll try it again. Please let me know if the issues (with Wine iirc)
persist.
x/libinput-1.12.0-x86_64-1.txz: Upgraded.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/kernel-generic-4.14.69-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.69-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.69-x86_64-1.txz: Upgraded.
a/xfsprogs-4.18.0-x86_64-1.txz: Upgraded.
ap/nano-3.0-x86_64-1.txz: Upgraded.
d/cmake-3.12.2-x86_64-1.txz: Upgraded.
d/kernel-headers-4.14.69-x86-1.txz: Upgraded.
k/kernel-source-4.14.69-noarch-1.txz: Upgraded.
Config changes since 4.14.68:
CRYPTO_LZO m -> y
FRONTSWAP n -> y
ZBUD n -> m
ZPOOL m -> y
+ZSWAP y
Thanks to Darth Vader.
l/glib2-2.56.2-x86_64-2.txz: Rebuilt.
Make links in the documentation directory to all of the API documentation
found under /usr/share/gtk-doc/html. Thanks to Didier Spaier.
l/libarchive-3.3.3-x86_64-1.txz: Upgraded.
n/links-2.17-x86_64-1.txz: Upgraded.
xfce/tumbler-0.2.2-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/acpid-2.0.30-x86_64-1.txz: Upgraded.
a/etc-15.0-x86_64-9.txz: Rebuilt.
Added support for /etc/ld.so.conf.d/. Thanks to Qury.
a/kernel-firmware-20180904_85c5d90-noarch-1.txz: Upgraded.
a/kernel-generic-4.14.68-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.68-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.68-x86_64-1.txz: Upgraded.
a/pkgtools-15.0-noarch-22.txz: Rebuilt.
installpkg: prevent noise from the "stray cat" if tar hands it a broken
pipe. Thanks to ivandi.
Also (in the comments) provide a possibly better but untested solution.
Thanks to SeB.
a/sysvinit-2.90-x86_64-2.txz: Rebuilt.
sysvinit-2.90 added an undocumented feature that tries to spawn agetty
if it sees console= in the kernel command line. Avoiding the debate about
whether this code belongs in init at all, at least such a change should
be documented, and probably made opt-in. This patch disables the new
behavior unless "sysvinit_agetty" is also seen in the kernel command line.
It seems like this might have been something added for Hurd, and it might
be wise to stick to what we've got rather than following upstream on this
particular package. If anyone notices any other odd behavior, please let
me know. Thanks to shastah.
a/sysvinit-scripts-2.1-noarch-19.txz: Rebuilt.
When checking for intel_pstate, direct the stderr to /dev/null in case
the file doesn't exist in /sys. Thanks to ivandi.
Allow forcing an option by editing /etc/default/cpufreq.
ap/cups-filters-1.21.2-x86_64-1.txz: Upgraded.
ap/ghostscript-9.24-x86_64-1.txz: Upgraded.
Patched multiple -dSAFER sandbox bypass vulnerabilities.
Thanks to Tavis Ormandy.
For more information, see:
https://www.ghostscript.com/doc/9.24/News.htm
https://www.kb.cert.org/vuls/id/332928
(* Security fix *)
ap/sudo-1.8.25-x86_64-1.txz: Upgraded.
d/binutils-2.31.1-x86_64-2.txz: Rebuilt.
elf.c (_bfd_elf_get_symbol_version_string): Return _("<corrupt>") for
corrupt symbol version info.
elflink.c (bfd_elf_record_link_assignment): Always clear h->verinfo.verdef
when overriding a dynamic definition.
Thanks to Michael Short for pointing out the upstream patches.
d/ccache-3.4.3-x86_64-1.txz: Upgraded.
d/kernel-headers-4.14.68-x86-1.txz: Upgraded.
d/llvm-6.0.1-x86_64-2.txz: Rebuilt.
Recompiled with -DCLANG_BUILD_SHARED_LIBS=ON to fix issues when multiple
OpenCL drivers are installed. Thanks to Heinz Wiesinger.
d/mercurial-4.7.1-x86_64-1.txz: Upgraded.
k/kernel-source-4.14.68-noarch-1.txz: Upgraded.
l/mozilla-nss-3.39-x86_64-1.txz: Upgraded.
n/curl-7.61.1-x86_64-1.txz: Upgraded.
This update fixes an NTLM password overflow via integer overflow.
For more information, see:
https://curl.haxx.se/docs/CVE-2018-14618.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14618
(* Security fix *)
n/gnupg2-2.2.10-x86_64-1.txz: Upgraded.
n/libtirpc-1.1.4-x86_64-1.txz: Upgraded.
n/netatalk-3.1.11-x86_64-2.txz: Rebuilt.
rc.atalk: fixed errors in status output. Thanks to marav.
n/nghttp2-1.33.0-x86_64-1.txz: Upgraded.
n/p11-kit-0.23.14-x86_64-1.txz: Upgraded.
n/stunnel-5.49-x86_64-1.txz: Upgraded.
x/libdrm-2.4.94-x86_64-1.txz: Upgraded.
x/xf86-video-ati-20180824_de88ea27-x86_64-1.txz: Upgraded.
xap/hexchat-2.14.2-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-60.2.0esr-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
(* Security fix *)
xap/xlockmore-5.56-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/kernel-firmware-20180825_fea76a0-noarch-1.txz: Upgraded.
ap/vim-8.1.0328-x86_64-1.txz: Upgraded.
d/meson-0.47.2-x86_64-1.txz: Upgraded.
d/python-setuptools-40.2.0-x86_64-1.txz: Upgraded.
l/python-certifi-2018.8.24-x86_64-1.txz: Upgraded.
l/python-idna-2.7-x86_64-1.txz: Upgraded.
l/python-packaging-17.1-x86_64-1.txz: Upgraded.
l/python-pillow-5.2.0-x86_64-1.txz: Upgraded.
l/python-requests-2.19.1-x86_64-1.txz: Upgraded.
l/python-urllib3-1.23-x86_64-1.txz: Upgraded.
l/talloc-2.1.14-x86_64-1.txz: Upgraded.
l/tdb-1.3.16-x86_64-1.txz: Upgraded.
l/tevent-0.9.37-x86_64-1.txz: Upgraded.
n/ethtool-4.18-x86_64-1.txz: Upgraded.
n/openssh-7.8p1-x86_64-1.txz: Upgraded.
n/samba-4.8.5-x86_64-1.txz: Upgraded.
x/xauth-1.0.10-x86_64-3.txz: Rebuilt.
Patched to fix a bug where changing the hostname caused X access to be lost.
Thanks to TurboBlaze.
xap/vim-gvim-8.1.0328-x86_64-1.txz: Upgraded.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/openssl-solibs-1.1.0i-x86_64-2.txz: Rebuilt.
ap/cups-filters-1.21.0-x86_64-1.txz: Upgraded.
Compiled against poppler-0.68.0.
ap/qpdf-8.2.1-x86_64-1.txz: Upgraded.
kde/calligra-2.9.11-x86_64-25.txz: Rebuilt.
Recompiled against poppler-0.68.0.
l/babl-0.1.56-x86_64-1.txz: Upgraded.
l/gdbm-1.18-x86_64-1.txz: Upgraded.
l/gegl-0.4.8-x86_64-1.txz: Upgraded.
l/jmtpfs-0.5-x86_64-1.txz: Added.
l/pango-1.42.4-x86_64-1.txz: Upgraded.
l/poppler-0.68.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
n/dhcpcd-7.0.8-x86_64-1.txz: Upgraded.
n/openssl-1.1.0i-x86_64-2.txz: Rebuilt.
Fixed c_rehash script.
n/php-7.2.9-x86_64-1.txz: Upgraded.
t/texlive-2018.180820-x86_64-1.txz: Upgraded.
Compiled against poppler-0.68.0.
texdoc fixed - a cache file was missing
synctex header was missing (for building third-party apps)
xindy was broken - recompiled from source
Thanks to Johannes Schoepfer.
x/libX11-1.6.6-x86_64-1.txz: Upgraded.
This update fixes some security issues:
Fixed crash on invalid reply (CVE-2018-14598).
Fixed off-by-one writes (CVE-2018-14599).
Fixed out of boundary write (CVE-2018-14600).
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14598
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14599
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14600
(* Security fix *)
xap/gimp-2.10.6-x86_64-1.txz: Upgraded.
xfce/tumbler-0.2.1-x86_64-6.txz: Rebuilt.
Recompiled against poppler-0.68.0.
|
|
|
|
|
|
|
|
|
|
|
| |
a/kernel-generic-4.14.64-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.64-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.64-x86_64-1.txz: Upgraded.
d/kernel-headers-4.14.64-x86-1.txz: Upgraded.
k/kernel-source-4.14.64-noarch-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/kernel-firmware-20180814_fdd3468-noarch-1.txz: Upgraded.
a/openssl-solibs-1.1.0i-x86_64-1.txz: Upgraded.
d/strace-4.24-x86_64-1.txz: Upgraded.
l/harfbuzz-1.8.8-x86_64-1.txz: Upgraded.
n/iproute2-4.18.0-x86_64-1.txz: Upgraded.
n/openssl-1.1.0i-x86_64-1.txz: Upgraded.
This update fixes two low severity security issues:
Client DoS due to large DH parameter.
Cache timing vulnerability in RSA Key Generation.
For more information, see:
https://www.openssl.org/news/secadv/20180612.txt
https://www.openssl.org/news/secadv/20180416.txt
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0732
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0737
(* Security fix *)
x/mesa-18.1.6-x86_64-1.txz: Upgraded.
xap/xscreensaver-5.40-x86_64-1.txz: Upgraded.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/etc-15.0-x86_64-8.txz: Rebuilt.
/etc/passwd: Added icecc (UID 49).
/etc/group: Added icecc (GID 49).
a/pciutils-3.6.2-x86_64-1.txz: Upgraded.
a/sysvinit-scripts-2.1-noarch-17.txz: Rebuilt.
rc.M: start rc.icecc-scheduler and rc.iceccd.
d/icecream-1.1-x86_64-1.txz: Added.
Thanks to Heinz Wiesinger for the SBo reference build script.
n/libmbim-1.16.2-x86_64-1.txz: Upgraded.
n/libqmi-1.20.2-x86_64-1.txz: Upgraded.
n/p11-kit-0.23.13-x86_64-1.txz: Upgraded.
x/xterm-334-x86_64-1.txz: Upgraded.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/kernel-generic-4.14.62-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.62-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.62-x86_64-1.txz: Upgraded.
ap/pamixer-1.3.1-x86_64-7.txz: Rebuilt.
Recompiled against boost-1.68.0.
d/cmake-3.12.1-x86_64-1.txz: Upgraded.
d/distcc-3.3-x86_64-3.txz: Rebuilt.
Install masquerade symlinks in /usr/lib${LIBDIRSUFFIX}/distcc/.
d/kernel-headers-4.14.62-x86-1.txz: Upgraded.
k/kernel-source-4.14.62-noarch-1.txz: Upgraded.
kde/calligra-2.9.11-x86_64-24.txz: Rebuilt.
Recompiled against boost-1.68.0.
l/akonadi-1.13.0-x86_64-10.txz: Rebuilt.
Recompiled against boost-1.68.0.
l/boost-1.68.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/harfbuzz-1.8.7-x86_64-1.txz: Upgraded.
l/libgsf-1.14.44-x86_64-1.txz: Upgraded.
l/librsvg-2.42.6-x86_64-1.txz: Upgraded.
l/libsoup-2.62.3-x86_64-1.txz: Upgraded.
n/bind-9.12.2_P1-x86_64-1.txz: Upgraded.
Fixed a security issue where named could crash during recursive processing
of DNAME records when "deny-answer-aliases" was in use resulting in a
denial of service. Note that "deny-answer-aliases" is rarely used.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5740
(* Security fix *)
xap/audacious-3.10-x86_64-1.txz: Upgraded.
xap/audacious-plugins-3.10-x86_64-1.txz: Upgraded.
extra/pure-alsa-system/audacious-plugins-3.10-x86_64-1_alsa.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|