| Commit message (Collapse) | Author | Age |
|---|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
ap/hplip-3.20.6-x86_64-2.txz: Rebuilt.
Recompiled against net-snmp-5.9.
ap/pamixer-1.4-x86_64-6.txz: Rebuilt.
Recompiled against boost-1.74.0.
ap/sqlite-3.33.0-x86_64-1.txz: Upgraded.
kde/calligra-2.9.11-x86_64-37.txz: Rebuilt.
Recompiled against boost-1.74.0.
l/akonadi-1.13.0-x86_64-16.txz: Rebuilt.
Recompiled against boost-1.74.0.
l/boost-1.74.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/libcroco-0.6.13-x86_64-1.txz: Removed.
n/getmail-6.02-x86_64-1.txz: Upgraded.
This is a new version that uses Python 3. The ChangeLog warns that it "loses
some backward compatibility"... please report any bugs.
n/net-snmp-5.9-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
n/ntp-4.2.8p15-x86_64-2.txz: Rebuilt.
Recompiled against net-snmp-5.9.
n/php-7.4.9-x86_64-2.txz: Rebuilt.
Recompiled against net-snmp-5.9.
xap/sane-1.0.30-x86_64-2.txz: Rebuilt.
Recompiled against net-snmp-5.9.
xap/ssr-0.4.2-x86_64-1.txz: Added.
|
| |
|
|
|
|
|
|
|
| |
ap/nano-5.1-x86_64-1.txz: Upgraded.
d/python-pip-20.2.2-x86_64-1.txz: Upgraded.
l/lmdb-0.9.26-x86_64-1.txz: Upgraded.
n/dovecot-2.3.11.3-x86_64-1.txz: Upgraded.
n/openldap-2.4.51-x86_64-1.txz: Upgraded.
xfce/garcon-0.7.0-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/kernel-firmware-20200807_c331aa9-noarch-1.txz: Upgraded.
d/check-0.15.2-x86_64-1.txz: Upgraded.
d/doxygen-1.8.19-x86_64-1.txz: Upgraded.
d/re2c-2.0.2-x86_64-1.txz: Upgraded.
d/strace-5.8-x86_64-1.txz: Upgraded.
l/fuse3-3.9.3-x86_64-1.txz: Upgraded.
l/imagemagick-7.0.10_26-x86_64-1.txz: Upgraded.
n/iproute2-5.8.0-x86_64-1.txz: Upgraded.
n/pssh-2.3.4-x86_64-1.txz: Upgraded.
n/rsync-3.2.3-x86_64-1.txz: Upgraded.
x/font-alias-1.0.4-noarch-1.txz: Upgraded.
x/font-misc-ethiopic-1.0.4-noarch-1.txz: Upgraded.
|
| |
|
|
|
|
| |
n/links-2.21-x86_64-1.txz: Upgraded.
x/libX11-1.6.11-x86_64-1.txz: Upgraded.
x/mesa-20.1.5-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
| |
a/aaa_terminfo-6.2_20200801-x86_64-1.txz: Upgraded.
a/hwdata-0.338-noarch-1.txz: Upgraded.
l/ncurses-6.2_20200801-x86_64-1.txz: Upgraded.
n/ethtool-5.8-x86_64-1.txz: Upgraded.
n/httpd-2.4.46-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
ap/vim-8.2.1361-x86_64-1.txz: Upgraded.
d/mercurial-5.5-x86_64-1.txz: Upgraded.
d/python-pip-20.2.1-x86_64-1.txz: Upgraded.
l/gegl-0.4.26-x86_64-1.txz: Upgraded.
n/php-7.4.9-x86_64-1.txz: Upgraded.
This update fixes bugs and a security issue:
Phar: Use of freed hash key in the phar_parse_zipfile function.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7068
(* Security fix *)
xap/vim-gvim-8.2.1361-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/cryptsetup-2.3.3-x86_64-2.txz: Rebuilt.
Recompiled against json-c-0.15_20200726.
l/imagemagick-7.0.10_25-x86_64-1.txz: Upgraded.
l/json-c-0.15_20200726-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/urwid-1.0.3-x86_64-5.txz: Removed.
This is an ancient version that was only used by wicd.
n/bind-9.16.5-x86_64-2.txz: Rebuilt.
Recompiled against json-c-0.15_20200726.
x/libmypaint-1.6.1-x86_64-2.txz: Rebuilt.
Recompiled against json-c-0.15_20200726.
xap/gimp-2.10.20-x86_64-2.txz: Rebuilt.
Recompiled against json-c-0.15_20200726.
extra/wicd/wicd-1.7.4-x86_64-3.txz: Removed.
This is unmaintained, possibly insecure, and doesn't work with Python
versions newer than 2.7.18. NetworkManager is a better choice these days.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/kernel-firmware-20200721_2b823fc-noarch-1.txz: Upgraded.
d/python3-3.8.5-x86_64-1.txz: Upgraded.
d/re2c-2.0-x86_64-1.txz: Upgraded.
l/farstream-0.2.9-x86_64-1.txz: Added.
Needed by pidgin-2.14.1.
l/libnice-0.1.17-x86_64-1.txz: Added.
Needed by farstream-0.2.9.
n/iptraf-ng-1.2.1-x86_64-1.txz: Upgraded.
n/proftpd-1.3.7a-x86_64-1.txz: Upgraded.
xap/pidgin-2.14.1-x86_64-1.txz: Upgraded.
This update adds support for voice and video via Farstream.
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
a/kernel-firmware-20200716_1d1c80b-noarch-1.txz: Upgraded.
ap/mc-4.8.25-x86_64-1.txz: Upgraded.
d/nasm-2.15.03-x86_64-1.txz: Upgraded.
d/scons-4.0.1-x86_64-1.txz: Upgraded.
l/imagemagick-7.0.10_24-x86_64-1.txz: Upgraded.
l/jasper-2.0.18-x86_64-1.txz: Upgraded.
l/libcap-2.40-x86_64-1.txz: Upgraded.
l/libpsl-0.21.1-x86_64-2.txz: Rebuilt.
n/dnsmasq-2.82-x86_64-1.txz: Upgraded.
x/xev-1.2.4-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
| |
ap/mpg123-1.26.3-x86_64-1.txz: Upgraded.
n/gpgme-1.14.0-x86_64-1.txz: Upgraded.
xap/gnuplot-5.4.0-x86_64-1.txz: Upgraded.
extra/pure-alsa-system/mpg123-1.26.3-x86_64-1_alsa.txz: Upgraded.
|
| |
|
|
|
|
| |
d/python3-3.8.4-x86_64-1.txz: Upgraded.
n/NetworkManager-1.26.0-x86_64-1.txz: Upgraded.
n/bridge-utils-1.7-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
a/kernel-firmware-20200713_3d3a06f-noarch-1.txz: Upgraded.
d/meson-0.55.0-x86_64-1.txz: Upgraded.
d/python-setuptools-49.2.0-x86_64-1.txz: Upgraded.
l/libcap-2.39-x86_64-1.txz: Upgraded.
l/libzip-1.7.2-x86_64-1.txz: Upgraded.
n/alpine-2.23.2-x86_64-1.txz: Upgraded.
n/libmilter-8.16.1-x86_64-1.txz: Upgraded.
n/mutt-1.14.6-x86_64-1.txz: Upgraded.
x/xterm-358-x86_64-1.txz: Upgraded.
extra/xfractint/xfractint-20.04p15-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/kernel-generic-5.4.51-x86_64-1.txz: Upgraded.
+EFI_CUSTOM_SSDT_OVERLAYS y
a/kernel-huge-5.4.51-x86_64-1.txz: Upgraded.
SPEAKUP y -> m
SPEAKUP_SYNTH_ACNTPC y -> m
SPEAKUP_SYNTH_ACNTSA y -> m
SPEAKUP_SYNTH_APOLLO y -> m
SPEAKUP_SYNTH_AUDPTR y -> m
SPEAKUP_SYNTH_BNS y -> m
SPEAKUP_SYNTH_DECEXT y -> m
SPEAKUP_SYNTH_DECTLK y -> m
SPEAKUP_SYNTH_DTLK y -> m
SPEAKUP_SYNTH_DUMMY y -> m
SPEAKUP_SYNTH_KEYPC y -> m
SPEAKUP_SYNTH_LTLK y -> m
SPEAKUP_SYNTH_SOFT y -> m
SPEAKUP_SYNTH_SPKOUT y -> m
SPEAKUP_SYNTH_TXPRT y -> m
+EFI_CUSTOM_SSDT_OVERLAYS y
a/kernel-modules-5.4.51-x86_64-1.txz: Upgraded.
ap/vim-8.2.1167-x86_64-1.txz: Upgraded.
d/Cython-0.29.21-x86_64-1.txz: Upgraded.
d/kernel-headers-5.4.51-x86-1.txz: Upgraded.
k/kernel-source-5.4.51-noarch-1.txz: Upgraded.
+EFI_CUSTOM_SSDT_OVERLAYS y
n/gnupg2-2.2.21-x86_64-1.txz: Upgraded.
x/mesa-20.1.3-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-78.0.2esr-x86_64-1.txz: Upgraded.
This release contains a security fix and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/78.0.2/releasenotes/
https://www.mozilla.org/security/advisories/mfsa2020-28/
(* Security fix *)
xap/vim-gvim-8.2.1167-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
Speakup is included as modules which will need to be loaded manually,
for now at least.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Speakup is included as modules which will need to be loaded manually,
for now at least.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
l/alsa-lib-1.2.3.2-x86_64-1.txz: Upgraded.
l/dconf-editor-3.36.4-x86_64-1.txz: Upgraded.
l/fribidi-1.0.10-x86_64-1.txz: Upgraded.
l/libcap-2.38-x86_64-1.txz: Upgraded.
n/libgcrypt-1.8.6-x86_64-1.txz: Upgraded.
n/php-7.4.8-x86_64-1.txz: Upgraded.
n/rsync-3.2.2-x86_64-1.txz: Upgraded.
x/xterm-357-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-78.0.1esr-x86_64-2.txz: Rebuilt.
Recompiled with --enable-default-toolkit=cairo-gtk3-wayland.
xap/seamonkey-2.53.3-x86_64-1.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
https://www.seamonkey-project.org/releases/seamonkey2.53.3
(* Security fix *)
extra/pure-alsa-system/alsa-lib-1.2.3.2-x86_64-1_alsa.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
| |
d/mercurial-5.4.2-x86_64-1.txz: Upgraded.
d/nasm-2.15.02-x86_64-1.txz: Upgraded.
l/glib2-2.64.4-x86_64-1.txz: Upgraded.
n/samba-4.12.5-x86_64-1.txz: Upgraded.
x/libXaw3dXft-1.6.2g-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-68.10.0-x86_64-1.txz: Upgraded.
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/68.10.0/releasenotes/
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
a/kernel-firmware-20200629_1a0c0c2-noarch-1.txz: Upgraded.
ap/mariadb-10.5.4-x86_64-2.txz: Rebuilt.
rc.mysqld: stop the database by PID to avoid improperly stopping other
instances that were not started by this script. Thanks to denydias.
d/vala-0.48.7-x86_64-1.txz: Upgraded.
l/opusfile-0.12-x86_64-1.txz: Upgraded.
n/ca-certificates-20200630-noarch-1.txz: Upgraded.
This update provides the latest CA certificates to check for the
authenticity of SSL connections.
x/libwacom-1.4.1-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
ap/mariadb-10.5.4-x86_64-1.txz: Upgraded.
d/guile-3.0.4-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
Looks like the previous bump was a mistake:
This release fixes the SONAME of libguile-3.0.so, which was erroneously
bumped in 3.0.3 compared to 3.0.2. Distributions are strongly
encouraged to use 3.0.4 instead of 3.0.3.
d/make-4.2.1-x86_64-7.txz: Rebuilt.
Recompiled against guile-3.0.4.
l/libjpeg-turbo-2.0.5-x86_64-1.txz: Upgraded.
This update fixes bugs and a security issue:
Fixed an issue in the PPM reader that caused a buffer overrun in cjpeg,
TJBench, or the `tjLoadImage()` function if one of the values in a binary
PPM/PGM input file exceeded the maximum value defined in the file's header
and that maximum value was less than 255.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13790
(* Security fix *)
n/ModemManager-1.14.0-x86_64-1.txz: Upgraded.
n/curl-7.71.0-x86_64-1.txz: Upgraded.
This update fixes security issues:
curl overwrite local file with -J [111]
Partial password leak over DNS on HTTP redirect [48]
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8177
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8169
(* Security fix *)
n/gnutls-3.6.14-x86_64-3.txz: Rebuilt.
Recompiled against guile-3.0.4.
n/mutt-1.14.5-x86_64-1.txz: Upgraded.
x/libwacom-1.4-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
ap/man-db-2.9.3-x86_64-1.txz: Upgraded.
ap/mariadb-10.4.13-x86_64-3.txz: Rebuilt.
Recompiled to pick up lz4 support. Thanks to Heinz Wiesinger.
ap/squashfs-tools-4.4-x86_64-2.txz: Rebuilt.
Added lz4 support. Thanks to Heinz Wiesinger.
d/ccache-3.7.10-x86_64-1.txz: Upgraded.
d/parallel-20200622-noarch-1.txz: Upgraded.
d/subversion-1.14.0-x86_64-2.txz: Rebuilt.
Use the system lz4 library. Thanks to Heinz Wiesinger.
l/imagemagick-7.0.10_21-x86_64-1.txz: Upgraded.
l/libarchive-3.4.3-x86_64-2.txz: Rebuilt.
Recompiled to pick up lz4 support. Thanks to Heinz Wiesinger.
l/lz4-1.9.2-x86_64-1.txz: Added.
This is a new dependency for dovecot, libarchive, mariadb, rsync,
squashfs-tools, subversion, and zstd. Thanks to Heinz Wiesinger.
l/xxHash-0.7.3-x86_64-1.txz: Added.
This is a new dependency for rsync.
l/zstd-1.4.5-x86_64-2.txz: Rebuilt.
Recompiled to pick up lz4 support. Thanks to Heinz Wiesinger.
n/dovecot-2.3.10.1-x86_64-2.txz: Rebuilt.
Recompiled to pick up lz4 support. Thanks to Heinz Wiesinger.
n/libmbim-1.24.0-x86_64-1.txz: Upgraded.
n/nfs-utils-2.5.1-x86_64-1.txz: Upgraded.
n/ntp-4.2.8p15-x86_64-1.txz: Upgraded.
This release fixes one vulnerability: Associations that use CMAC
authentication between ntpd from versions 4.2.8p11/4.3.97 and
4.2.8p14/4.3.100 will leak a small amount of memory for each packet.
Eventually, ntpd will run out of memory and abort.
(* Security fix *)
n/rsync-3.2.1-x86_64-1.txz: Upgraded.
Please note that this update requires the new packages xxHash and lz4.
t/texlive-2020.200608-x86_64-1.txz: Upgraded.
Thanks to Johannes Schoepfer.
xap/blueman-2.1.3-x86_64-2.txz: Rebuilt.
As a matter of policy and since the rule already exists in
/usr/share/polkit-1/rules.d/, we should not install a rules file in /etc.
Note that since the file was installed as a .new, upgrading the package
will not remove it and it will need to be removed manually. It's harmless
if it remains, though.
Thanks to Robby Workman.
xap/network-manager-applet-1.18.0-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/kernel-generic-5.4.48-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.48-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.48-x86_64-1.txz: Upgraded.
ap/neofetch-20200613_5b8eea9-x86_64-1.txz: Added.
All the cool kids are including this. ;-)
ap/texinfo-6.7-x86_64-2.txz: Rebuilt.
Recompiled against perl-5.32.0.
ap/vim-8.2.1039-x86_64-1.txz: Upgraded.
Compiled against perl-5.32.0.
d/check-0.15.0-x86_64-1.txz: Upgraded.
d/guile-3.0.3-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
d/kernel-headers-5.4.48-x86-1.txz: Upgraded.
d/make-4.2.1-x86_64-6.txz: Rebuilt.
Recompiled against guile-3.0.3.
d/perl-5.32.0-x86_64-1.txz: Upgraded.
k/kernel-source-5.4.48-noarch-1.txz: Upgraded.
kde/perlkde-4.14.3-x86_64-9.txz: Rebuilt.
Recompiled against perl-5.32.0.
kde/perlqt-4.14.3-x86_64-10.txz: Rebuilt.
Recompiled against perl-5.32.0.
l/harfbuzz-2.6.8-x86_64-1.txz: Upgraded.
l/imagemagick-7.0.10_20-x86_64-1.txz: Upgraded.
l/neon-0.31.2-x86_64-1.txz: Upgraded.
l/python-certifi-2020.6.20-x86_64-1.txz: Upgraded.
n/alpine-2.23-x86_64-1.txz: Upgraded.
n/epic5-2.1.2-x86_64-2.txz: Rebuilt.
Recompiled against perl-5.32.0.
n/gnutls-3.6.14-x86_64-2.txz: Rebuilt.
Recompiled against guile-3.0.3.
n/irssi-1.2.2-x86_64-3.txz: Rebuilt.
Recompiled against perl-5.32.0.
n/libqmi-1.26.0-x86_64-1.txz: Upgraded.
n/net-snmp-5.8-x86_64-6.txz: Rebuilt.
Recompiled against perl-5.32.0.
n/ntp-4.2.8p14-x86_64-2.txz: Rebuilt.
Recompiled against perl-5.32.0.
xap/hexchat-2.14.3-x86_64-3.txz: Rebuilt.
Recompiled against perl-5.32.0.
xap/rxvt-unicode-9.22-x86_64-8.txz: Rebuilt.
Recompiled against perl-5.32.0.
xap/vim-gvim-8.2.1039-x86_64-1.txz: Upgraded.
Compiled against perl-5.32.0.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
| |
|
|
|
|
|
| |
a/file-5.39-x86_64-1.txz: Upgraded.
n/mutt-1.14.3-x86_64-1.txz: Upgraded.
n/postfix-3.5.3-x86_64-1.txz: Upgraded.
x/twm-1.0.11-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
| |
a/haveged-1.9.11-x86_64-1.txz: Upgraded.
l/libvncserver-0.9.13-x86_64-1.txz: Upgraded.
n/libnetfilter_queue-1.0.5-x86_64-1.txz: Upgraded.
x/vulkan-sdk-1.2.141.0-x86_64-1.txz: Upgraded.
xap/xlockmore-5.64-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/pam-1.4.0-x86_64-1.txz: Upgraded.
IMPORTANT NOTE: This update removes the pam_cracklib and pam_tally2 modules.
None of our current configuration files in /etc/pam.d/ use either of those,
but if the configuration files on your machine do you'll need to comment out
or remove those lines, otherwise you may experience login failures.
a/shadow-4.8.1-x86_64-9.txz: Rebuilt.
/etc/pam.d/system-auth: prefix lines that call pam_gnome_keyring.so with '-'
to avoid spamming the logs about failures.
a/sysvinit-scripts-2.1-noarch-32.txz: Rebuilt.
rc.S: create /var/run/faillock directory for pam_faillock(8).
a/util-linux-2.35.2-x86_64-2.txz: Rebuilt.
/etc/pam.d/login: change the example for locking an account for too many
failed login attempts to use pam_faillock instead of pam_tally2.
l/imagemagick-7.0.10_19-x86_64-1.txz: Upgraded.
l/libzip-1.7.1-x86_64-1.txz: Upgraded.
n/openssh-8.3p1-x86_64-2.txz: Rebuilt.
/etc/pam.d/sshd: change the example for locking an account for too many
failed login attempts to use pam_faillock instead of pam_tally2.
|
| |
|
|
|
|
|
| |
ap/powertop-2.13-x86_64-1.txz: Upgraded.
l/elfutils-0.180-x86_64-1.txz: Upgraded.
l/fuse3-3.9.2-x86_64-1.txz: Upgraded.
n/alpine-2.22.1-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
| |
ap/alsa-utils-1.2.3-x86_64-1.txz: Upgraded.
l/PyQt5-5.15.0-x86_64-1.txz: Upgraded.
l/alsa-lib-1.2.3-x86_64-1.txz: Upgraded.
l/imagemagick-7.0.10_18-x86_64-1.txz: Upgraded.
l/sip-4.19.23-x86_64-1.txz: Upgraded.
l/xapian-core-1.4.16-x86_64-1.txz: Upgraded.
n/php-7.4.7-x86_64-1.txz: Upgraded.
extra/pure-alsa-system/alsa-lib-1.2.3-x86_64-1_alsa.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
| |
l/babl-0.1.78-x86_64-1.txz: Upgraded.
l/gegl-0.4.24-x86_64-1.txz: Upgraded.
l/qt5-webkit-5.212.0_alpha4-x86_64-3.txz: Rebuilt.
n/libnetfilter_queue-1.0.4-x86_64-1.txz: Upgraded.
x/liberation-fonts-ttf-2.1.1-noarch-1.txz: Upgraded.
xap/gimp-2.10.20-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/dbus-1.12.18-x86_64-1.txz: Upgraded.
a/kernel-generic-5.4.44-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.44-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.44-x86_64-1.txz: Upgraded.
d/bison-3.6.3-x86_64-1.txz: Upgraded.
d/kernel-headers-5.4.44-x86-1.txz: Upgraded.
d/subversion-1.14.0-x86_64-1.txz: Upgraded.
k/kernel-source-5.4.44-noarch-1.txz: Upgraded.
l/harfbuzz-2.6.7-x86_64-1.txz: Upgraded.
l/libcap-2.36-x86_64-1.txz: Upgraded.
l/librsvg-2.48.6-x86_64-1.txz: Upgraded.
n/gnutls-3.6.14-x86_64-1.txz: Upgraded.
Fixed insecure session ticket key construction, since 3.6.4. The TLS server
would not bind the session ticket encryption key with a value supplied by
the application until the initial key rotation, allowing attacker to bypass
authentication in TLS 1.3 and recover previous conversations in TLS 1.2.
[GNUTLS-SA-2020-06-03, CVSS: high]
(* Security fix *)
n/iproute2-5.7.0-x86_64-1.txz: Upgraded.
n/iptables-1.8.5-x86_64-1.txz: Upgraded.
xap/audacious-4.0.4-x86_64-1.txz: Upgraded.
xap/audacious-plugins-4.0.4-x86_64-1.txz: Upgraded.
extra/pure-alsa-system/audacious-plugins-4.0.4-x86_64-1_alsa.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/hwdata-0.336-noarch-1.txz: Upgraded.
ap/man-db-2.9.2-x86_64-1.txz: Upgraded.
d/git-2.27.0-x86_64-1.txz: Upgraded.
d/perl-5.30.3-x86_64-1.txz: Upgraded.
Upgraded to IO-Socket-SSL-2.068.
d/strace-5.7-x86_64-1.txz: Upgraded.
l/libyaml-0.2.5-x86_64-1.txz: Upgraded.
n/ca-certificates-20200602-noarch-1.txz: Upgraded.
This update provides the latest CA certificates to check for the
authenticity of SSL connections.
n/nghttp2-1.41.0-x86_64-1.txz: Upgraded.
This update fixes a security issue where an overly large HTTP/2 SETTINGS
frame payload causes a denial of service.
For more information, see:
https://github.com/nghttp2/nghttp2/security/advisories/GHSA-q5wr-xfw9-q7xr
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11080
(* Security fix *)
n/proftpd-1.3.6d-x86_64-1.txz: Upgraded.
This is a bugfix release:
Fixed issue with FTPS uploads of large files using TLSv1.3 (Issue #959).
x/intel-vaapi-driver-2.4.1-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/pciutils-3.7.0-x86_64-1.txz: Upgraded.
l/imagemagick-7.0.10_16-x86_64-1.txz: Upgraded.
l/lcms2-2.10-x86_64-1.txz: Upgraded.
l/netpbm-10.90.03-x86_64-1.txz: Upgraded.
l/qt5-5.15.0-x86_64-1.txz: Upgraded.
n/iptraf-ng-1.2.0-x86_64-1.txz: Upgraded.
xap/gnuchess-6.2.7-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-68.9.0esr-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/68.9.0/releasenotes/
(* Security fix *)
extra/pure-alsa-system/qt5-5.15.0-x86_64-1_alsa.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/cryptsetup-2.3.3-x86_64-1.txz: Upgraded.
a/kernel-generic-5.4.43-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.43-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.43-x86_64-1.txz: Upgraded.
d/cmake-3.17.3-x86_64-1.txz: Upgraded.
d/kernel-headers-5.4.43-x86-1.txz: Upgraded.
d/python-setuptools-47.1.0-x86_64-1.txz: Upgraded.
k/kernel-source-5.4.43-noarch-1.txz: Upgraded.
l/babl-0.1.76-x86_64-1.txz: Upgraded.
n/openssh-8.3p1-x86_64-1.txz: Upgraded.
n/rp-pppoe-3.14-x86_64-1.txz: Upgraded.
x/libdrm-2.4.102-x86_64-1.txz: Upgraded.
x/mesa-20.1.0-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
| |
|
|
|
|
|
|
|
|
|
| |
ap/nano-4.9.3-x86_64-1.txz: Upgraded.
ap/sqlite-3.32.0-x86_64-1.txz: Upgraded.
d/gdb-9.2-x86_64-1.txz: Upgraded.
d/parallel-20200522-noarch-1.txz: Upgraded.
l/imagemagick-7.0.10_14-x86_64-1.txz: Upgraded.
l/libgphoto2-2.5.25-x86_64-1.txz: Upgraded.
n/libksba-1.4.0-x86_64-1.txz: Upgraded.
xfce/thunar-1.8.15-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/kernel-firmware-20200519_8ba6fa6-noarch-1.txz: Upgraded.
a/kernel-generic-5.4.42-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.42-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.42-x86_64-1.txz: Upgraded.
a/util-linux-2.35.2-x86_64-1.txz: Upgraded.
d/kernel-headers-5.4.42-x86-1.txz: Upgraded.
d/python-pip-20.1.1-x86_64-1.txz: Upgraded.
k/kernel-source-5.4.42-noarch-1.txz: Upgraded.
l/glib2-2.64.3-x86_64-1.txz: Upgraded.
l/mozilla-nss-3.52.1-x86_64-1.txz: Upgraded.
n/samba-4.12.3-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Greetings! After three months in /testing, the PAM merge into the main tree
is now complete. When updating, be sure to install the new pam, cracklib, and
libpwquality packages or you may find yourself locked out of your machine.
Otherwise, these changes should be completely transparent and you shouldn't
notice any obvious operational differences. Be careful if you make any changes
in /etc/pam.d/ - leaving an extra console logged in while testing PAM config
changes is a recommended standard procedure. Thanks again to Robby Workman,
Vincent Batts, Phantom X, and ivandi for help implementing this. It's not
done yet and there will be more fine-tuning of the config files, but now we
can move on to build some other updates. Enjoy!
a/cracklib-2.9.7-x86_64-1.txz: Added.
a/kernel-firmware-20200517_f8d32e4-noarch-1.txz: Upgraded.
a/libcgroup-0.41-x86_64-7.txz: Rebuilt.
Rebuilt to add PAM support.
a/libpwquality-1.4.2-x86_64-1.txz: Added.
a/lilo-24.2-x86_64-9.txz: Rebuilt.
Enable the "compact" option by default.
liloconfig: correctly set the root partition.
a/pam-1.3.1-x86_64-1.txz: Added.
a/shadow-4.8.1-x86_64-7.txz: Rebuilt.
Rebuilt to add PAM support.
a/utempter-1.2.0-x86_64-1.txz: Upgraded.
a/util-linux-2.35.1-x86_64-6.txz: Rebuilt.
Rebuilt to add PAM support.
a/xfsprogs-5.6.0-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
ap/at-3.2.1-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
ap/cups-2.3.3-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
ap/hplip-3.20.5-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
ap/mariadb-10.4.13-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
ap/screen-4.8.0-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
ap/soma-3.3.0-noarch-1.txz: Upgraded.
Thanks to David Woodfall.
ap/sqlite-3.31.1-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
ap/sudo-1.9.0-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
ap/vim-8.2.0788-x86_64-1.txz: Upgraded.
d/bison-3.6.2-x86_64-1.txz: Upgraded.
d/meson-0.54.2-x86_64-1.txz: Upgraded.
d/python-setuptools-46.4.0-x86_64-1.txz: Upgraded.
d/vala-0.48.6-x86_64-1.txz: Upgraded.
kde/calligra-2.9.11-x86_64-36.txz: Rebuilt.
Recompiled against icu4c-67.1.
kde/kde-workspace-4.11.22-x86_64-7.txz: Rebuilt.
Rebuilt to add PAM support.
l/ConsoleKit2-1.2.1-x86_64-4.txz: Rebuilt.
Rebuilt to add PAM support.
l/boost-1.73.0-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
l/gnome-keyring-3.36.0-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
l/harfbuzz-2.6.6-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
l/icu4c-67.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/imagemagick-7.0.10_13-x86_64-1.txz: Upgraded.
l/libcap-2.34-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
l/libical-3.0.8-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
l/libuv-1.38.0-x86_64-1.txz: Upgraded.
l/libvisio-0.1.7-x86_64-3.txz: Rebuilt.
Recompiled against icu4c-67.1.
l/polkit-0.116-x86_64-3.txz: Rebuilt.
Rebuilt to add PAM support.
l/qt-4.8.7-x86_64-16.txz: Rebuilt.
Recompiled against icu4c-67.1.
l/qt5-5.13.2-x86_64-4.txz: Rebuilt.
Recompiled against icu4c-67.1.
l/qt5-webkit-5.212.0_alpha4-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
l/raptor2-2.0.15-x86_64-9.txz: Rebuilt.
Recompiled against icu4c-67.1.
l/system-config-printer-1.5.12-x86_64-4.txz: Rebuilt.
Rebuilt to add PAM support.
l/vte-0.60.2-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
n/cifs-utils-6.10-x86_64-4.txz: Rebuilt.
Rebuilt to add PAM support.
n/cyrus-sasl-2.1.27-x86_64-4.txz: Rebuilt.
Rebuilt to add PAM support.
n/dovecot-2.3.10.1-x86_64-1.txz: Upgraded.
Rebuilt to add PAM support.
Compiled against icu4c-67.1.
This update fixes several denial-of-service vulnerabilities.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10957
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10958
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10967
(* Security fix *)
n/mutt-1.14.1-x86_64-1.txz: Upgraded.
n/netatalk-3.1.12-x86_64-3.txz: Rebuilt.
Rebuilt to add PAM support.
n/netkit-rsh-0.17-x86_64-3.txz: Rebuilt.
Rebuilt to add PAM support.
n/nss-pam-ldapd-0.9.11-x86_64-1.txz: Added.
n/openssh-8.2p1-x86_64-3.txz: Rebuilt.
Rebuilt to add PAM support.
n/openvpn-2.4.9-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
n/pam-krb5-4.9-x86_64-1.txz: Added.
n/php-7.4.6-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
n/popa3d-1.0.3-x86_64-4.txz: Rebuilt.
Rebuilt to add PAM support.
n/postfix-3.5.2-x86_64-1.txz: Upgraded.
Compiled against icu4c-67.1.
n/ppp-2.4.8-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
n/proftpd-1.3.6c-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
n/samba-4.12.2-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
Recompiled against icu4c-67.1.
n/tin-2.4.4-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
n/vsftpd-3.0.3-x86_64-6.txz: Rebuilt.
Rebuilt to add PAM support.
t/texlive-2019.190626-x86_64-4.txz: Rebuilt.
Recompiled against icu4c-67.1.
x/vulkan-sdk-1.2.135.0-x86_64-1.txz: Upgraded.
x/xdm-1.1.11-x86_64-10.txz: Rebuilt.
Rebuilt to add PAM support.
x/xisxwayland-1-x86_64-1.txz: Added.
xap/sane-1.0.30-x86_64-1.txz: Upgraded.
This update fixes several security issues.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12867
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12862
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12863
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12865
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12866
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12861
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12864
(* Security fix *)
xap/vim-gvim-8.2.0788-x86_64-1.txz: Upgraded.
xap/xlockmore-5.63-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
xap/xscreensaver-5.44-x86_64-2.txz: Rebuilt.
Rebuilt to add PAM support.
extra/brltty/brltty-6.1-x86_64-2.txz: Rebuilt.
Recompiled against icu4c-67.1.
extra/pure-alsa-system/qt5-5.13.2-x86_64-4_alsa.txz: Rebuilt.
Recompiled against icu4c-67.1.
isolinux/initrd.img: Rebuilt.
Added PAM libraries, security modules, and config files.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Added PAM libraries, security modules, and config files.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Hey folks, just a heads-up that PAM is about to be merged into the main tree.
We can't have it blocking other upgrades any longer. The config files could be
improved (adding support for pam_krb5 and pam_ldap, for example), but they'll
do for now. Have a good weekend, and enjoy these updates! :-)
a/aaa_elflibs-15.0-x86_64-23.txz: Rebuilt.
Upgraded: libcap.so.2.34, libelf-0.179.so, liblzma.so.5.2.5,
libglib-2.0.so.0.6400.2, libgmodule-2.0.so.0.6400.2,
libgobject-2.0.so.0.6400.2, libgthread-2.0.so.0.6400.2,
liblber-2.4.so.2.10.13, libldap-2.4.so.2.10.13, libpcre2-8.so.0.10.0.
Added temporarily in preparation for upgrading icu4c: libicudata.so.65.1,
libicui18n.so.65.1, libicuio.so.65.1, libicutest.so.65.1, libicutu.so.65.1,
libicuuc.so.65.1.
a/etc-15.0-x86_64-11.txz: Rebuilt.
/etc/passwd: Added ldap (UID 330).
/etc/group: Added ldap (GID 330).
a/kernel-generic-5.4.41-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.41-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.41-x86_64-1.txz: Upgraded.
a/pkgtools-15.0-noarch-33.txz: Rebuilt.
setup.services: added support for rc.openldap and rc.openvpn.
ap/hplip-3.20.5-x86_64-1.txz: Upgraded.
d/kernel-headers-5.4.41-x86-1.txz: Upgraded.
d/python-setuptools-46.3.0-x86_64-1.txz: Upgraded.
d/python3-3.8.3-x86_64-1.txz: Upgraded.
k/kernel-source-5.4.41-noarch-1.txz: Upgraded.
n/openldap-2.4.50-x86_64-1.txz: Added.
This is a complete OpenLDAP package with both client and server support.
Thanks to Giuseppe Di Terlizzi for help with the server parts.
n/openldap-client-2.4.50-x86_64-1.txz: Removed.
x/mesa-20.0.7-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
testing/packages/PAM/hplip-3.20.5-x86_64-1_pam.txz: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
ap/mariadb-10.4.13-x86_64-1.txz: Upgraded.
This update fixes potential denial-of-service vulnerabilities.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2752
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2812
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2814
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2760
(* Security fix *)
ap/sudo-1.9.0-x86_64-1.txz: Upgraded.
l/harfbuzz-2.6.6-x86_64-1.txz: Upgraded.
l/tidy-html5-5.6.0-x86_64-1.txz: Added.
n/epic5-2.1.2-x86_64-1.txz: Upgraded.
n/php-7.4.6-x86_64-1.txz: Upgraded.
Built using --with-tidy=shared. Thanks to Thom1b.
This update fixes bugs and security issues:
Core: Long variables cause OOM and temp files are not cleaned.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11048
(* Security fix *)
x/libmypaint-1.6.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
xap/gimp-2.10.18-x86_64-2.txz: Rebuilt.
Recompiled against libmypaint-1.6.1.
testing/packages/PAM/mariadb-10.4.13-x86_64-1_pam.txz: Upgraded.
This update fixes potential denial-of-service vulnerabilities.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2752
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2812
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2814
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2760
(* Security fix *)
testing/packages/PAM/sudo-1.9.0-x86_64-1_pam.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
ap/pamixer-1.4-x86_64-5.txz: Rebuilt.
Recompiled against boost-1.73.0.
d/Cython-0.29.17-x86_64-2.txz: Rebuilt.
Added cython3 symlink.
kde/calligra-2.9.11-x86_64-35.txz: Rebuilt.
Recompiled against boost-1.73.0.
l/akonadi-1.13.0-x86_64-15.txz: Rebuilt.
Recompiled against boost-1.73.0.
l/boost-1.73.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
l/freetype-2.10.2-x86_64-1.txz: Upgraded.
l/imagemagick-7.0.10_11-x86_64-1.txz: Upgraded.
n/libqmi-1.24.12-x86_64-1.txz: Upgraded.
xap/blueman-2.1.3-x86_64-1.txz: Upgraded.
testing/packages/PAM/pam-krb5-4.9-x86_64-1_pam.txz: Added.
Thanks to Bart van der Hall for the packaging hints.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/hwdata-0.335-noarch-1.txz: Upgraded.
ap/tmux-3.1b-x86_64-1.txz: Upgraded.
l/libcap-2.34-x86_64-1.txz: Upgraded.
n/mutt-1.14.0-x86_64-1.txz: Upgraded.
n/nfs-utils-2.4.3-x86_64-3.txz: Rebuilt.
Added /var/lib/nfs/nfsdcltrack database directory for nfsdcltrack.
Thanks to upnort.
x/xterm-356-x86_64-1.txz: Upgraded.
xap/NetworkManager-openvpn-1.8.12-x86_64-1.txz: Added.
Thanks to Robby Workman.
xap/mozilla-firefox-68.8.0esr-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/68.8.0/releasenotes/
https://www.mozilla.org/security/advisories/mfsa2020-17/
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12387
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12388
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12389
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6831
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12392
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12393
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12395
(* Security fix *)
xap/mozilla-thunderbird-68.8.0-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/68.8.0/releasenotes/
(* Security fix *)
testing/packages/PAM/libcap-2.34-x86_64-1_pam.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/cryptsetup-2.3.2-x86_64-1.txz: Upgraded.
a/sysvinit-scripts-2.1-noarch-30.txz: Rebuilt.
rc.S: contents of mounts below /run or /var/run should be visible in both
/run and /var/run. Thanks to Markus Wiesner.
d/Cython-0.29.17-x86_64-1.txz: Upgraded.
Dropped python2 support.
d/python-pip-20.1-x86_64-1.txz: Upgraded.
Dropped python2 support.
d/python-setuptools-46.1.3-x86_64-1.txz: Upgraded.
Dropped python2 support.
l/M2Crypto-0.35.2-x86_64-5.txz: Rebuilt.
Dropped python2 support.
l/Mako-1.1.2-x86_64-2.txz: Rebuilt.
Dropped python2 support.
l/gsettings-desktop-schemas-3.36.1-x86_64-1.txz: Upgraded.
l/libzip-1.6.1-x86_64-2.txz: Rebuilt.
Recompiled against nettle-3.6.
l/oniguruma-6.9.5_rev1-x86_64-1.txz: Upgraded.
l/pycairo-1.19.1-x86_64-1.txz: Upgraded.
Dropped python2 support.
l/pycups-2.0.1-x86_64-1.txz: Upgraded.
Dropped python2 support.
l/pycurl-7.43.0.5-x86_64-1.txz: Upgraded.
Dropped python2 support.
l/pyparsing-2.4.7-x86_64-1.txz: Upgraded.
Dropped python2 support.
l/python-appdirs-1.4.3-x86_64-5.txz: Rebuilt.
Dropped python2 support.
l/python-certifi-2020.4.5.1-x86_64-1.txz: Upgraded.
Dropped python2 support.
l/python-chardet-3.0.4-x86_64-5.txz: Rebuilt.
Dropped python2 support.
l/python-docutils-0.16-x86_64-3.txz: Rebuilt.
Dropped python2 support.
l/python-enum34-1.1.10-x86_64-1.txz: Removed.
l/python-future-0.18.2-x86_64-2.txz: Rebuilt.
Dropped python2 support.
l/python-idna-2.9-x86_64-2.txz: Rebuilt.
Dropped python2 support.
l/python-notify2-0.3.1-x86_64-5.txz: Rebuilt.
Dropped python2 support.
l/python-packaging-20.3-x86_64-2.txz: Rebuilt.
Dropped python2 support.
l/python-ply-3.11-x86_64-3.txz: Rebuilt.
Dropped python2 support.
l/python-pygments-2.6.1-x86_64-1.txz: Upgraded.
Dropped python2 support.
l/python-requests-2.23.0-x86_64-2.txz: Rebuilt.
Dropped python2 support.
l/python-sane-2.8.3-x86_64-5.txz: Rebuilt.
Dropped python2 support.
l/python-six-1.14.0-x86_64-2.txz: Rebuilt.
Dropped python2 support.
l/python-urllib3-1.25.9-x86_64-1.txz: Upgraded.
Dropped python2 support.
l/python2-module-collection-2.7.18-x86_64-1.txz: Added.
Time to quarantine these python2 modules and pin the versions where they
are (or in the case of setuptools, downgrade to the last version that doesn't
complain). This will keep most of the standard python2 add-ons in one package
so that we can upgrade modules for python3 without having to worry about
python2 support getting dropped upstream.
n/dnsmasq-2.81-x86_64-2.txz: Rebuilt.
Recompiled against nettle-3.6.
n/gnutls-3.6.13-x86_64-2.txz: Rebuilt.
Recompiled against nettle-3.6.
n/nettle-3.6-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
x/mesa-20.0.6-x86_64-1.txz: Upgraded.
x/pyxdg-0.26-x86_64-3.txz: Rebuilt.
Dropped python2 support.
x/ttf-tlwg-0.7.2-noarch-1.txz: Upgraded.
x/xorg-server-1.20.8-x86_64-2.txz: Rebuilt.
Recompiled against nettle-3.6.
x/xorg-server-xephyr-1.20.8-x86_64-2.txz: Rebuilt.
Recompiled against nettle-3.6.
x/xorg-server-xnest-1.20.8-x86_64-2.txz: Rebuilt.
Recompiled against nettle-3.6.
x/xorg-server-xvfb-1.20.8-x86_64-2.txz: Rebuilt.
Recompiled against nettle-3.6.
x/xorg-server-xwayland-1.20.8-x86_64-2.txz: Rebuilt.
Recompiled against nettle-3.6.
x/xterm-355-x86_64-1.txz: Upgraded.
xap/rdesktop-1.9.0-x86_64-2.txz: Rebuilt.
Recompiled against nettle-3.6.
extra/tigervnc/tigervnc-1.10.1-x86_64-3.txz: Rebuilt.
Recompiled against nettle-3.6.
|
| |
|
|
|
|
|
|
|
|
| |
ap/tmux-3.1a-x86_64-1.txz: Upgraded.
d/cmake-3.17.2-x86_64-1.txz: Upgraded.
n/curl-7.70.0-x86_64-1.txz: Upgraded.
n/openldap-client-2.4.50-x86_64-1.txz: Upgraded.
xap/audacious-4.0.3-x86_64-1.txz: Upgraded.
xap/audacious-plugins-4.0.3-x86_64-1.txz: Upgraded.
extra/pure-alsa-system/audacious-plugins-4.0.3-x86_64-1_alsa.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
ap/cups-2.3.3-x86_64-1.txz: Upgraded.
This update fixes two security issues:
The ppdOpen function did not handle invalid UI constraint.
ppdcSource::get_resolution function did not handle invalid resolution strings.
The ippReadIO function may under-read an extension.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3898
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8842
(* Security fix *)
l/imagemagick-7.0.10_10-x86_64-1.txz: Upgraded.
n/samba-4.12.2-x86_64-1.txz: Upgraded.
This update fixes two security issues:
A client combining the 'ASQ' and 'Paged Results' LDAP controls can cause a
use-after-free in Samba's AD DC LDAP server.
A deeply nested filter in an un-authenticated LDAP search can exhaust the
LDAP server's stack memory causing a SIGSEGV.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10700
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10704
(* Security fix *)
testing/packages/PAM/cups-2.3.3-x86_64-1_pam.txz: Upgraded.
This update fixes two security issues:
The ppdOpen function did not handle invalid UI constraint.
ppdcSource::get_resolution function did not handle invalid resolution strings.
The ippReadIO function may under-read an extension.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3898
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8842
(* Security fix *)
testing/packages/PAM/samba-4.12.2-x86_64-1_pam.txz: Upgraded.
This update fixes two security issues:
A client combining the 'ASQ' and 'Paged Results' LDAP controls can cause a
use-after-free in Samba's AD DC LDAP server.
A deeply nested filter in an un-authenticated LDAP search can exhaust the
LDAP server's stack memory causing a SIGSEGV.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10700
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10704
(* Security fix *)
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/mkinitrd-1.4.11-x86_64-15.txz: Rebuilt.
Use the standard mktemp utility from GNU coreutils, not the old tempfile.
d/help2man-1.47.15-x86_64-1.txz: Upgraded.
l/aspell-en-2019.10.06_0-x86_64-1.txz: Upgraded.
l/gtk+3-3.24.20-x86_64-1.txz: Upgraded.
l/imagemagick-7.0.10_9-x86_64-1.txz: Upgraded.
n/irssi-1.2.2-x86_64-2.txz: Rebuilt.
Fixed ctrl-space killing input with recent glib.
Thanks to tramtrist and Urchlay.
x/xterm-354-x86_64-1.txz: Upgraded.
extra/aspell-word-lists/aspell-de-20161207_7_0-x86_64-1.txz: Upgraded.
extra/aspell-word-lists/aspell-ga-5.1_0-x86_64-1.txz: Upgraded.
extra/aspell-word-lists/aspell-it-2.4_20070901_0-x86_64-1.txz: Upgraded.
extra/aspell-word-lists/aspell-ml-0.04_1-x86_64-1.txz: Upgraded.
extra/aspell-word-lists/aspell-pl-6.0_20200327_0-x86_64-1.txz: Upgraded.
extra/aspell-word-lists/aspell-pt_BR-20131030_12_0-x86_64-1.txz: Upgraded.
extra/aspell-word-lists/aspell-pt_PT-20190329_1_0-x86_64-1.txz: Upgraded.
extra/aspell-word-lists/aspell-sk-2.02_0-x86_64-1.txz: Upgraded.
extra/aspell-word-lists/aspell-tl-0.4_0-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
| |
d/meson-0.54.1-x86_64-1.txz: Upgraded.
l/vte-0.60.2-x86_64-1.txz: Upgraded.
n/fetchmail-6.4.4-x86_64-1.txz: Upgraded.
n/s-nail-14.9.19-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/bash-5.0.017-x86_64-1.txz: Upgraded.
a/kernel-generic-5.4.35-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.35-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.35-x86_64-1.txz: Upgraded.
a/mcelog-169-x86_64-1.txz: Upgraded.
ap/nvme-cli-1.11.1-x86_64-1.txz: Upgraded.
ap/powertop-2.12-x86_64-1.txz: Upgraded.
ap/tmux-3.1-x86_64-1.txz: Upgraded.
d/kernel-headers-5.4.35-x86-1.txz: Upgraded.
d/parallel-20200422-noarch-1.txz: Upgraded.
d/rust-1.43.0-x86_64-1.txz: Upgraded.
d/vala-0.48.5-x86_64-1.txz: Upgraded.
k/kernel-source-5.4.35-noarch-1.txz: Upgraded.
l/gmm-5.4-noarch-1.txz: Upgraded.
l/librsvg-2.48.4-x86_64-1.txz: Upgraded.
l/sip-4.19.22-x86_64-1.txz: Upgraded.
n/dhcpcd-8.1.9-x86_64-1.txz: Upgraded.
x/mesa-20.0.5-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
| |
|
|
|
|
|
| |
l/neon-0.31.1-x86_64-1.txz: Upgraded.
n/postfix-3.5.1-x86_64-1.txz: Upgraded.
n/s-nail-14.9.18-x86_64-1.txz: Upgraded.
xap/gnuchess-6.2.6-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/gawk-5.1.0-x86_64-1.txz: Upgraded.
a/gettext-0.20.2-x86_64-1.txz: Upgraded.
d/gettext-tools-0.20.2-x86_64-1.txz: Upgraded.
d/git-2.26.1-x86_64-1.txz: Upgraded.
This update fixes a security issue:
With a crafted URL that contains a newline in it, the credential helper
machinery can be fooled to give credential information for a wrong host.
The attack has been made impossible by forbidding a newline character in
any value passed via the credential protocol. Credit for finding the
vulnerability goes to Felix Wilhelm of Google Project Zero.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-5260
(* Security fix *)
l/glib-networking-2.64.2-x86_64-1.txz: Upgraded.
l/libsecret-0.20.3-x86_64-1.txz: Upgraded.
n/php-7.4.5-x86_64-1.txz: Upgraded.
x/xorgproto-2020.1-x86_64-1.txz: Upgraded.
xap/audacious-4.0.2-x86_64-1.txz: Upgraded.
xap/audacious-plugins-4.0.2-x86_64-1.txz: Upgraded.
extra/pure-alsa-system/audacious-plugins-4.0.2-x86_64-1_alsa.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
a/kernel-firmware-20200413_64dba0f-noarch-1.txz: Upgraded.
a/kernel-generic-5.4.32-x86_64-1.txz: Upgraded.
a/kernel-huge-5.4.32-x86_64-1.txz: Upgraded.
a/kernel-modules-5.4.32-x86_64-1.txz: Upgraded.
d/doxygen-1.8.18-x86_64-1.txz: Upgraded.
d/kernel-headers-5.4.32-x86-1.txz: Upgraded.
k/kernel-source-5.4.32-noarch-1.txz: Upgraded.
n/dhcpcd-8.1.8-x86_64-1.txz: Upgraded.
x/libvdpau-1.4-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
|
| |
|
|
|
|
|
| |
ap/man-pages-5.06-noarch-1.txz: Upgraded.
l/libyaml-0.2.3-x86_64-1.txz: Upgraded.
n/dnsmasq-2.81-x86_64-1.txz: Upgraded.
x/libinput-1.15.5-x86_64-1.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
| |
ap/cups-filters-1.27.4-x86_64-1.txz: Upgraded.
ap/qpdf-10.0.1-x86_64-1.txz: Upgraded.
ap/sysstat-12.3.2-x86_64-1.txz: Upgraded.
l/gtk+3-3.24.18-x86_64-1.txz: Upgraded.
l/librsvg-2.48.3-x86_64-1.txz: Upgraded.
n/libqmi-1.24.10-x86_64-1.txz: Upgraded.
n/libtirpc-1.2.6-x86_64-1.txz: Upgraded.
|
| |
|
|
| |
testing/packages/PAM/samba-4.12.1-x86_64-1_pam.txz: Upgraded.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
d/bison-3.5.4-x86_64-1.txz: Upgraded.
kde/k3b-2.0.3-x86_64-7.txz: Rebuilt.
Recompiled against libdvdread-6.1.1.
l/gobject-introspection-1.64.1-x86_64-1.txz: Upgraded.
l/imagemagick-7.0.10_4-x86_64-1.txz: Upgraded.
l/libdvdnav-6.1.0-x86_64-2.txz: Rebuilt.
Recompiled against libdvdread-6.1.1.
Who bumps an .soname and only boosts the version number by 0.0.1?
Anyway, sorry to drop the ball a second time. I'll try to avoid this.
Thanks to gmgf for the bug report.
n/fetchmail-6.4.3-x86_64-1.txz: Upgraded.
tcl/tclx-8.4.4-x86_64-1.txz: Upgraded.
xap/MPlayer-20200103-x86_64-2.txz: Rebuilt.
Recompiled against libdvdread-6.1.1.
xap/windowmaker-0.95.9-x86_64-1.txz: Upgraded.
xap/xine-lib-1.2.10-x86_64-2.txz: Rebuilt.
Recompiled against libdvdread-6.1.1.
extra/pure-alsa-system/MPlayer-20200103-x86_64-2_alsa.txz: Rebuilt.
Recompiled against libdvdread-6.1.1.
extra/pure-alsa-system/xine-lib-1.2.10-x86_64-2_alsa.txz: Rebuilt.
Recompiled against libdvdread-6.1.1.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
ap/lsof-4.93.2-x86_64-2.txz: Rebuilt.
Fixed the manpage. Thanks to kaott.
ap/sc-7.16-x86_64-7.txz: Rebuilt.
Brought back the classic SC. Thanks to dive.
d/Cython-0.29.16-x86_64-1.txz: Upgraded.
d/mercurial-5.3.2-x86_64-1.txz: Upgraded.
l/gtk+3-3.24.17-x86_64-1.txz: Upgraded.
n/dhcpcd-8.1.7-x86_64-1.txz: Upgraded.
n/iproute2-5.6.0-x86_64-1.txz: Upgraded.
x/libdrm-2.4.101-x86_64-1.txz: Upgraded.
x/mesa-20.0.4-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-68.6.1esr-x86_64-1.txz: Upgraded.
This release contains critical security fixes and improvements.
"Under certain conditions, when running the nsDocShell destructor, a race
condition can cause a use-after-free. We are aware of targeted attacks in
the wild abusing this flaw."
"Under certain conditions, when handling a ReadableStream, a race condition
can cause a use-after-free. We are aware of targeted attacks in the wild
abusing this flaw."
For more information, see:
https://www.mozilla.org/en-US/firefox/68.6.1/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2020-11/
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6819
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6820
(* Security fix *)
|
