Fri Jul 12 18:52:15 UTC 2019 a/kernel-firmware-20190712_d52556e-noarch-1.txz: Upgraded. l/M2Crypto-0.35.2-x86_64-2.txz: Rebuilt. Upgraded to typing-3.7.4. l/pycurl-7.43.0.3-x86_64-1.txz: Upgraded. tcl/tclx-8.4.2-x86_64-1.txz: Upgraded. x/xauth-1.1-x86_64-1.txz: Upgraded. +--------------------------+ Thu Jul 11 18:55:46 UTC 2019 ap/sqlite-3.29.0-x86_64-1.txz: Upgraded. d/meson-0.51.1-x86_64-1.txz: Upgraded. l/iso-codes-4.3-noarch-1.txz: Upgraded. l/mozilla-nss-3.45-x86_64-1.txz: Upgraded. x/libpciaccess-0.15-x86_64-1.txz: Upgraded. +--------------------------+ Wed Jul 10 23:56:13 UTC 2019 a/glibc-zoneinfo-2019b-noarch-1.txz: Upgraded. a/kernel-generic-4.19.58-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.58-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.58-x86_64-1.txz: Upgraded. d/Cython-0.29.12-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.58-x86-1.txz: Upgraded. d/mercurial-5.0.2-x86_64-1.txz: Upgraded. d/python3-3.7.4-x86_64-1.txz: Upgraded. k/kernel-source-4.19.58-noarch-1.txz: Upgraded. l/glib2-2.60.5-x86_64-1.txz: Upgraded. n/gnupg2-2.2.17-x86_64-1.txz: Upgraded. n/iproute2-5.2.0-x86_64-1.txz: Upgraded. n/samba-4.10.6-x86_64-1.txz: Upgraded. x/libva-utils-2.5.0-x86_64-1.txz: Upgraded. x/mesa-19.1.2-x86_64-1.txz: Upgraded. xap/mozilla-firefox-68.0esr-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. Some of the patched flaws are considered critical, and could be used to run attacker code and install software, requiring no user interaction beyond normal browsing. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html https://www.mozilla.org/en-US/security/advisories/mfsa2019-22/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9811 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11711 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11712 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11713 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11729 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11715 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11717 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11719 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11730 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11709 (* Security fix *) xap/mozilla-thunderbird-60.8.0-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://www.mozilla.org/en-US/thunderbird/60.8.0/releasenotes/ xfce/garcon-0.6.3-x86_64-2.txz: Rebuilt. Patched crash bug. Installed gtk-doc HTML docs. Thanks to Robby Workman. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. testing/packages/blueman-2.1.1-x86_64-1.txz: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Sat Jul 6 18:51:18 UTC 2019 a/btrfs-progs-5.2-x86_64-1.txz: Upgraded. ap/cups-filters-1.25.1-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_53-x86_64-1.txz: Upgraded. x/libva-2.5.0-x86_64-1.txz: Upgraded. +--------------------------+ Fri Jul 5 20:08:13 UTC 2019 a/grub-2.04-x86_64-1.txz: Upgraded. ap/mariadb-10.4.6-x86_64-2.txz: Rebuilt. Patched mysql_install_db to comment out PAM related setup. Thanks to Labinnah. l/argon2-20190702-x86_64-2.txz: Rebuilt. Fixed library install path. Thanks to phenixia2003. l/imagemagick-6.9.10_52-x86_64-1.txz: Upgraded. n/ModemManager-1.10.4-x86_64-1.txz: Upgraded. x/libdrm-2.4.99-x86_64-1.txz: Upgraded. x/libinput-1.13.4-x86_64-1.txz: Upgraded. isolinux/efiboot.img: Rebuilt. +--------------------------+ Thu Jul 4 22:38:43 UTC 2019 d/rust-1.36.0-x86_64-1.txz: Upgraded. l/argon2-20190702-x86_64-1.txz: Upgraded. l/gtk+3-3.24.10-x86_64-1.txz: Upgraded. l/python-pillow-6.1.0-x86_64-1.txz: Upgraded. n/mobile-broadband-provider-info-20190618-x86_64-1.txz: Upgraded. +--------------------------+ Wed Jul 3 21:02:58 UTC 2019 a/kernel-generic-4.19.57-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.57-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.57-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.57-x86-1.txz: Upgraded. k/kernel-source-4.19.57-noarch-1.txz: Upgraded. l/Mako-1.0.13-x86_64-1.txz: Upgraded. l/SDL2_image-2.0.5-x86_64-1.txz: Upgraded. n/postfix-3.4.6-x86_64-1.txz: Upgraded. xap/blueman-2.0.8-x86_64-2.txz: Rebuilt. Reverted to blueman-2.0.8 as I'm also seeing connection issues here with the newer version. xap/xscreensaver-5.43-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. testing/packages/blueman-2.1-x86_64-1.txz: Upgraded. This doesn't seem to be working properly. Any patches are welcome. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue Jul 2 20:36:38 UTC 2019 d/python-setuptools-41.0.1-x86_64-2.txz: Rebuilt. l/freetype-2.10.1-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_51-x86_64-1.txz: Upgraded. n/php-7.3.7-x86_64-1.txz: Upgraded. +--------------------------+ Mon Jul 1 19:12:58 UTC 2019 d/guile-2.2.6-x86_64-1.txz: Upgraded. x/xterm-347-x86_64-1.txz: Upgraded. xfce/garcon-0.6.3-x86_64-1.txz: Upgraded. xfce/xfce4-notifyd-0.4.4-x86_64-1.txz: Upgraded. xfce/xfce4-screenshooter-1.9.5-x86_64-1.txz: Upgraded. +--------------------------+ Sun Jun 30 22:45:12 UTC 2019 d/Cython-0.29.11-x86_64-1.txz: Upgraded. t/texlive-2019.190626-x86_64-2.txz: Rebuilt. Patched tabu.sty to fix compiling doxygen. Thanks to Johannes Schoepfer and nobodino. x/mesa-19.1.1-x86_64-2.txz: Rebuilt. Don't build the swr Gallium driver on IA32 - it leads to an illegal instruction startup crash with CPUs that lack AVX support. Thanks to Jefferson and Johnson. xfce/thunar-volman-0.9.3-x86_64-1.txz: Upgraded. xfce/tumbler-0.2.5-x86_64-1.txz: Upgraded. +--------------------------+ Sat Jun 29 22:49:01 UTC 2019 a/hwdata-0.325-noarch-1.txz: Upgraded. ap/hplip-3.19.6-x86_64-1.txz: Upgraded. n/irssi-1.2.1-x86_64-1.txz: Upgraded. This update fixes a security issue: Use after free when sending SASL login to the server found by ilbelkyr. May affect the stability of Irssi. SASL logins may fail, especially during (manual and automated) reconnect. For more information, see: https://irssi.org/2019/06/29/irssi-1.2.1-1.1.3-1.0.8-released/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13045 (* Security fix *) xfce/Thunar-1.8.7-x86_64-1.txz: Upgraded. +--------------------------+ Fri Jun 28 18:44:41 UTC 2019 a/bzip2-1.0.7-x86_64-1.txz: Upgraded. a/kernel-firmware-20190628_70e4394-noarch-1.txz: Upgraded. l/libssh-0.9.0-x86_64-1.txz: Upgraded. n/dhcpcd-7.2.3-x86_64-1.txz: Upgraded. n/nfs-utils-2.4.1-x86_64-1.txz: Upgraded. +--------------------------+ Thu Jun 27 19:07:20 UTC 2019 ap/vim-8.1.1601-x86_64-1.txz: Upgraded. Built with --disable-canberra. Thanks to Markus Wiesner. l/harfbuzz-2.5.3-x86_64-1.txz: Upgraded. n/nettle-3.5.1-x86_64-1.txz: Upgraded. n/nftables-0.9.1-x86_64-1.txz: Upgraded. t/texlive-2019.190626-x86_64-1.txz: Upgraded. Shared library .so-version bump. Thanks to Johannes Schoepfer. xap/blueman-2.1-x86_64-1.txz: Upgraded. Thanks to Robby Workman. xap/vim-gvim-8.1.1601-x86_64-1.txz: Upgraded. +--------------------------+ Wed Jun 26 20:14:26 UTC 2019 l/giflib-5.2.1-x86_64-2.txz: Rebuilt. Install obsolete utilities (if they were built). If you'd like to see them continued, let upstream know. l/libarchive-3.4.0-x86_64-2.txz: Rebuilt. Recompiled against nettle-3.5. l/libzip-1.5.2-x86_64-2.txz: Rebuilt. Recompiled against nettle-3.5. n/gnutls-3.6.8-x86_64-2.txz: Rebuilt. Recompiled against nettle-3.5. n/nettle-3.5-x86_64-1.txz: Upgraded. Shared library .so-version bump. x/xorg-server-1.20.5-x86_64-2.txz: Rebuilt. Recompiled against nettle-3.5. x/xorg-server-xephyr-1.20.5-x86_64-2.txz: Rebuilt. Recompiled against nettle-3.5. x/xorg-server-xnest-1.20.5-x86_64-2.txz: Rebuilt. Recompiled against nettle-3.5. x/xorg-server-xvfb-1.20.5-x86_64-2.txz: Rebuilt. Recompiled against nettle-3.5. extra/tigervnc/tigervnc-1.9.0-x86_64-2.txz: Rebuilt. Recompiled against nettle-3.5. +--------------------------+ Wed Jun 26 05:09:02 UTC 2019 a/kernel-generic-4.19.56-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.56-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.56-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.56-x86-1.txz: Upgraded. k/kernel-source-4.19.56-noarch-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue Jun 25 18:32:03 UTC 2019 ap/vim-8.1.1592-x86_64-1.txz: Upgraded. l/giflib-5.2.1-x86_64-1.txz: Upgraded. x/mesa-19.1.1-x86_64-1.txz: Upgraded. xap/vim-gvim-8.1.1592-x86_64-1.txz: Upgraded. +--------------------------+ Mon Jun 24 18:47:52 UTC 2019 ap/mc-4.8.23-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_50-x86_64-1.txz: Upgraded. l/pygobject3-3.32.2-x86_64-1.txz: Upgraded. n/php-7.3.6-x86_64-1.txz: Upgraded. x/libinput-1.13.3-x86_64-1.txz: Upgraded. +--------------------------+ Sun Jun 23 19:47:15 UTC 2019 x/libglvnd-1.1.1-x86_64-2.txz: Rebuilt. Rebuilt with --sysconfdir=/etc/X11 as expected by the NVIDIA driver. Thanks to LuckyCyborg. x/vulkan-sdk-1.1.108.0-x86_64-1.txz: Upgraded. +--------------------------+ Sat Jun 22 19:14:18 UTC 2019 My apologies for not getting the 4.19.54 kernel out in time... a/kernel-generic-4.19.55-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.55-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.55-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.55-x86-1.txz: Upgraded. d/parallel-20190622-noarch-1.txz: Upgraded. k/kernel-source-4.19.55-noarch-1.txz: Upgraded. l/mozilla-nss-3.44.1-x86_64-1.txz: Upgraded. x/libXt-1.2.0-x86_64-1.txz: Upgraded. x/xf86-input-wacom-0.37.0-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Jun 21 18:56:13 UTC 2019 a/kernel-firmware-20190620_7ae3a09-noarch-1.txz: Upgraded. l/cairo-1.16.0-x86_64-1.txz: Upgraded. Reverted to previous cairo to fix Mozilla crashes. x/igt-gpu-tools-1.24-x86_64-2.txz: Rebuilt. Rebuilt against cairo-1.16.0. +--------------------------+ Fri Jun 21 06:12:11 UTC 2019 d/guile-2.2.5-x86_64-2.txz: Rebuilt. l/harfbuzz-2.5.2-x86_64-1.txz: Upgraded. l/libssh2-1.9.0-x86_64-1.txz: Upgraded. xap/mozilla-firefox-60.7.2esr-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html https://www.mozilla.org/en-US/security/advisories/mfsa2019-19/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11708 (* Security fix *) xap/mozilla-thunderbird-60.7.2-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/thunderbird/60.7.2/releasenotes/ https://www.mozilla.org/en-US/security/advisories/mfsa2019-20/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11707 (* Security fix *) +--------------------------+ Thu Jun 20 18:08:56 UTC 2019 l/cairo-1.17.2-x86_64-1.txz: Upgraded. l/expat-2.2.7-x86_64-1.txz: Upgraded. n/bind-9.14.3-x86_64-1.txz: Upgraded. Fixed a race condition in dns_dispatch_getnext() that could cause an assertion failure if a significant number of incoming packets were rejected. For more information, see: https://kb.isc.org/docs/cve-2019-6471 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6471 (* Security fix *) x/igt-gpu-tools-1.24-x86_64-1.txz: Upgraded. x/xorgproto-2019.1-x86_64-1.txz: Upgraded. xap/xlockmore-5.57-x86_64-1.txz: Upgraded. +--------------------------+ Thu Jun 20 02:45:59 UTC 2019 a/gawk-5.0.1-x86_64-1.txz: Upgraded. a/kernel-generic-4.19.53-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.53-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.53-x86_64-1.txz: Upgraded. ap/mariadb-10.4.6-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.53-x86-1.txz: Upgraded. k/kernel-source-4.19.53-noarch-1.txz: Upgraded. n/samba-4.10.5-x86_64-1.txz: Upgraded. x/libXi-1.7.10-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue Jun 18 21:46:31 UTC 2019 a/kernel-firmware-20190618_acb56f2-noarch-1.txz: Upgraded. a/kernel-generic-4.19.52-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.52-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.52-x86_64-1.txz: Upgraded. ap/mariadb-10.3.16-x86_64-1.txz: Upgraded. ap/nano-4.3-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.52-x86-1.txz: Upgraded. d/llvm-8.0.0-x86_64-3.txz: Rebuilt. Added lld-8.0.0. Thanks to TheRealGrogan. d/meson-0.51.0-x86_64-1.txz: Upgraded. d/vala-0.44.5-x86_64-1.txz: Upgraded. k/kernel-source-4.19.52-noarch-1.txz: Upgraded. This update fixes "SACK Panic", a remote denial-of-service issue. For more information, see: https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-001.md https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11477 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11478 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11479 (* Security fix *) l/SDL2-2.0.9-x86_64-4.txz: Rebuilt. Include libSDL2_test.a and libSDL2main.a. Thanks to dugan. l/gtk+3-3.24.9-x86_64-1.txz: Upgraded. n/ca-certificates-20190617-noarch-1.txz: Upgraded. x/encodings-1.0.5-noarch-1.txz: Upgraded. x/libX11-1.6.8-x86_64-1.txz: Upgraded. xap/mozilla-firefox-60.7.1esr-x86_64-1.txz: Upgraded. This release contains a security fix and improvements. The patched flaw is considered critical, and could be used to run attacker code and install software, requiring no user interaction beyond normal browsing. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html https://www.mozilla.org/en-US/security/advisories/mfsa2019-18/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11707 (* Security fix *) isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Mon Jun 17 03:26:28 UTC 2019 Sorry, no new kernel today. ;-) a/shadow-4.7-x86_64-1.txz: Upgraded. a/sysvinit-2.95-x86_64-1.txz: Upgraded. l/gmm-5.3-noarch-1.txz: Upgraded. l/gobject-introspection-1.60.2-x86_64-1.txz: Upgraded. l/libarchive-3.4.0-x86_64-1.txz: Upgraded. l/libbluray-1.1.2-x86_64-1.txz: Upgraded. l/libical-3.0.5-x86_64-1.txz: Upgraded. l/python-certifi-2019.6.16-x86_64-1.txz: Upgraded. n/mutt-1.12.1-x86_64-1.txz: Upgraded. x/libevdev-1.7.0-x86_64-1.txz: Upgraded. +--------------------------+ Sun Jun 16 05:27:49 UTC 2019 a/kernel-generic-4.19.51-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.51-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.51-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.51-x86-1.txz: Upgraded. k/kernel-source-4.19.51-noarch-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Jun 14 19:27:00 UTC 2019 a/util-linux-2.34-x86_64-1.txz: Upgraded. kde/kdepimlibs-4.14.10-x86_64-8.txz: Rebuilt. Recompiled to pull in new gpgme++ header files. n/gpgme-1.13.1-x86_64-1.txz: Upgraded. x/xkeyboard-config-2.27-noarch-1.txz: Upgraded. xfce/exo-0.12.6-x86_64-1.txz: Upgraded. testing/packages/mesa-19.1.0-x86_64-2.txz: Rebuilt. Added gallium drivers: swr,iris Thanks to USUARIONUEVO. +--------------------------+ Fri Jun 14 01:17:32 UTC 2019 a/btrfs-progs-5.1.1-x86_64-1.txz: Upgraded. a/dbus-1.12.16-x86_64-1.txz: Upgraded. n/whois-5.4.3-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-60.7.1-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/thunderbird/60.7.1/releasenotes/ https://www.mozilla.org/en-US/security/advisories/mfsa2019-17/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11703 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11704 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11705 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11706 (* Security fix *) +--------------------------+ Thu Jun 13 04:36:56 UTC 2019 a/less-551-x86_64-1.txz: Upgraded. l/babl-0.1.66-x86_64-1.txz: Upgraded. xap/gimp-2.10.12-x86_64-1.txz: Upgraded. testing/packages/mesa-19.1.0-x86_64-1.txz: Added. +--------------------------+ Wed Jun 12 02:51:04 UTC 2019 a/kernel-generic-4.19.50-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.50-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.50-x86_64-1.txz: Upgraded. d/git-2.22.0-x86_64-2.txz: Rebuilt. Rebuilt with libpcre2 support. Thanks to Gerardo Zamudio. d/kernel-headers-4.19.50-x86-1.txz: Upgraded. k/kernel-source-4.19.50-noarch-1.txz: Upgraded. l/glib2-2.60.4-x86_64-1.txz: Upgraded. n/ipset-7.2-x86_64-1.txz: Upgraded. n/nghttp2-1.39.1-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Mon Jun 10 20:40:23 UTC 2019 l/M2Crypto-0.35.2-x86_64-1.txz: Upgraded. l/glib-networking-2.60.3-x86_64-1.txz: Upgraded. l/libunwind-1.3.1-x86_64-2.txz: Rebuilt. n/ModemManager-1.10.2-x86_64-1.txz: Upgraded. n/stunnel-5.55-x86_64-1.txz: Upgraded. x/sessreg-1.1.2-x86_64-1.txz: Upgraded. x/xcalc-1.1.0-x86_64-1.txz: Upgraded. +--------------------------+ Sun Jun 9 20:55:24 UTC 2019 a/kernel-generic-4.19.49-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.49-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.49-x86_64-1.txz: Upgraded. d/git-2.22.0-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.49-x86-1.txz: Upgraded. k/kernel-source-4.19.49-noarch-1.txz: Upgraded. l/imagemagick-6.9.10_49-x86_64-1.txz: Upgraded. l/speexdsp-1.2.0-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Jun 7 18:39:39 UTC 2019 a/kernel-firmware-20190607_1884732-noarch-1.txz: Upgraded. ap/cups-filters-1.25.0-x86_64-1.txz: Upgraded. ap/vim-8.1.1486-x86_64-1.txz: Upgraded. l/Mako-1.0.12-x86_64-1.txz: Upgraded. xap/vim-gvim-8.1.1486-x86_64-1.txz: Upgraded. +--------------------------+ Thu Jun 6 20:56:20 UTC 2019 d/mercurial-5.0.1-x86_64-1.txz: Upgraded. x/mesa-19.0.6-x86_64-1.txz: Upgraded. +--------------------------+ Wed Jun 5 18:56:53 UTC 2019 a/less-550-x86_64-1.txz: Upgraded. d/vala-0.44.4-x86_64-1.txz: Upgraded. n/curl-7.65.1-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://curl.haxx.se/changes.html xfce/xfdesktop-4.12.5-x86_64-1.txz: Upgraded. +--------------------------+ Tue Jun 4 23:01:52 UTC 2019 a/hwdata-0.324-noarch-1.txz: Upgraded. a/kernel-generic-4.19.48-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.48-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.48-x86_64-1.txz: Upgraded. ap/cups-filters-1.24.0-x86_64-1.txz: Upgraded. ap/gphoto2-2.5.23-x86_64-1.txz: Upgraded. ap/sysstat-12.1.5-x86_64-1.txz: Upgraded. d/Cython-0.29.10-x86_64-1.txz: Upgraded. d/cmake-3.14.5-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.48-x86-1.txz: Upgraded. k/kernel-source-4.19.48-noarch-1.txz: Upgraded. l/Mako-1.0.11-x86_64-1.txz: Upgraded. l/harfbuzz-2.5.1-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_48-x86_64-1.txz: Upgraded. l/libgphoto2-2.5.23-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri May 31 19:37:36 UTC 2019 a/kernel-generic-4.19.47-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.47-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.47-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.47-x86-1.txz: Upgraded. k/kernel-source-4.19.47-noarch-1.txz: Upgraded. l/M2Crypto-0.34.0-x86_64-1.txz: Upgraded. l/libsodium-1.0.18-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Thu May 30 19:25:36 UTC 2019 l/newt-0.52.21-x86_64-1.txz: Upgraded. x/xorg-server-1.20.5-x86_64-1.txz: Upgraded. x/xorg-server-xephyr-1.20.5-x86_64-1.txz: Upgraded. x/xorg-server-xnest-1.20.5-x86_64-1.txz: Upgraded. x/xorg-server-xvfb-1.20.5-x86_64-1.txz: Upgraded. xap/gparted-1.0.0-x86_64-1.txz: Upgraded. +--------------------------+ Wed May 29 19:11:22 UTC 2019 a/e2fsprogs-1.45.2-x86_64-1.txz: Upgraded. d/Cython-0.29.9-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_47-x86_64-1.txz: Upgraded. n/iptables-1.8.3-x86_64-1.txz: Upgraded. n/libnftnl-1.1.3-x86_64-1.txz: Upgraded. n/php-7.2.19-x86_64-1.txz: Upgraded. This update fixes bugs and security issues: Uninitialized read in gdImageCreateFromXbm Out-of-bounds read in iconv.c:_php_iconv_mime_decode due to integer overflow heap-buffer-overflow on php_jpg_get16 For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11038 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11039 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11040 (* Security fix *) x/xterm-346-x86_64-1.txz: Upgraded. xap/gnuplot-5.2.7-x86_64-1.txz: Upgraded. xap/network-manager-applet-1.8.22-x86_64-1.txz: Upgraded. +--------------------------+ Tue May 28 19:03:49 UTC 2019 a/openssl-solibs-1.1.1c-x86_64-1.txz: Upgraded. l/libevent-2.1.10-x86_64-1.txz: Upgraded. n/gnupg2-2.2.16-x86_64-1.txz: Upgraded. n/gnutls-3.6.8-x86_64-1.txz: Upgraded. n/openssl-1.1.1c-x86_64-1.txz: Upgraded. This update fixes a security issue: Prevent over long nonces in ChaCha20-Poly1305. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1543 (* Security fix *) +--------------------------+ Mon May 27 19:14:18 UTC 2019 l/babl-0.1.64-x86_64-1.txz: Upgraded. l/harfbuzz-2.5.0-x86_64-1.txz: Upgraded. n/mutt-1.12.0-x86_64-1.txz: Upgraded. +--------------------------+ Sat May 25 20:03:47 UTC 2019 a/gettext-0.20.1-x86_64-1.txz: Upgraded. a/kernel-generic-4.19.46-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.46-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.46-x86_64-1.txz: Upgraded. d/gcc-9.1.0-x86_64-6.txz: Rebuilt. Patched to fix a format string error in the es locale that led to an assertion failure when compiling the Linux kernel. Thanks to USUARIONUEVO. d/gcc-brig-9.1.0-x86_64-6.txz: Rebuilt. d/gcc-g++-9.1.0-x86_64-6.txz: Rebuilt. d/gcc-gdc-9.1.0-x86_64-6.txz: Rebuilt. d/gcc-gfortran-9.1.0-x86_64-6.txz: Rebuilt. d/gcc-gnat-9.1.0-x86_64-6.txz: Rebuilt. d/gcc-go-9.1.0-x86_64-6.txz: Rebuilt. d/gcc-objc-9.1.0-x86_64-6.txz: Rebuilt. d/gettext-tools-0.20.1-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.46-x86-1.txz: Upgraded. d/rust-1.35.0-x86_64-1.txz: Upgraded. k/kernel-source-4.19.46-noarch-1.txz: Upgraded. l/python-urllib3-1.25.3-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Thu May 23 19:55:30 UTC 2019 a/aaa_terminfo-6.1_20190518-x86_64-1.txz: Upgraded. ap/qpdf-8.4.2-x86_64-1.txz: Upgraded. l/libidn2-2.2.0-x86_64-1.txz: Upgraded. l/ncurses-6.1_20190518-x86_64-1.txz: Upgraded. n/p11-kit-0.23.16.1-x86_64-1.txz: Upgraded. xap/rdesktop-1.8.6-x86_64-1.txz: Upgraded. This is a small bug fix release for rdesktop 1.8.5. An issue was discovered soon after release where it was impossible to connect to some servers. This issue has now been fixed, but otherwise this release is identical to 1.8.5. xfce/Thunar-1.8.6-x86_64-1.txz: Upgraded. xfce/thunar-volman-0.9.2-x86_64-1.txz: Upgraded. +--------------------------+ Wed May 22 23:30:54 UTC 2019 a/kernel-generic-4.19.45-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.45-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.45-x86_64-1.txz: Upgraded. ap/texinfo-6.6-x86_64-2.txz: Rebuilt. Recompiled against perl-5.30.0. ap/vim-8.1.1365-x86_64-1.txz: Upgraded. Compiled against perl-5.30.0. d/bison-3.4.1-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.45-x86-1.txz: Upgraded. d/parallel-20190522-noarch-1.txz: Upgraded. d/perl-5.30.0-x86_64-1.txz: Upgraded. Module upgraded: Net-SSLeay-1.88 d/strace-5.1-x86_64-1.txz: Upgraded. k/kernel-source-4.19.45-noarch-1.txz: Upgraded. kde/perlkde-4.14.3-x86_64-8.txz: Rebuilt. Recompiled against perl-5.30.0. kde/perlqt-4.14.3-x86_64-9.txz: Rebuilt. Recompiled against perl-5.30.0. l/glib2-2.60.3-x86_64-1.txz: Upgraded. n/curl-7.65.0-x86_64-1.txz: Upgraded. This release fixes the following security issues: Integer overflows in curl_url_set tftp: use the current blksize for recvfrom() For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5435 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5436 (* Security fix *) n/epic5-2.1.1-x86_64-2.txz: Rebuilt. Recompiled against perl-5.30.0. n/irssi-1.2.0-x86_64-2.txz: Rebuilt. Recompiled against perl-5.30.0. n/net-snmp-5.8-x86_64-5.txz: Rebuilt. Recompiled against perl-5.30.0. n/ntp-4.2.8p13-x86_64-2.txz: Rebuilt. Recompiled against perl-5.30.0. n/samba-4.10.4-x86_64-1.txz: Upgraded. x/mesa-19.0.5-x86_64-1.txz: Upgraded. xap/hexchat-2.14.2-x86_64-4.txz: Rebuilt. Recompiled against perl-5.30.0. xap/rxvt-unicode-9.22-x86_64-7.txz: Rebuilt. Recompiled against perl-5.30.0. xap/vim-gvim-8.1.1365-x86_64-1.txz: Upgraded. Compiled against perl-5.30.0. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue May 21 23:18:42 UTC 2019 xap/mozilla-firefox-60.7.0esr-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. Some of the patched flaws are considered critical, and could be used to run attacker code and install software, requiring no user interaction beyond normal browsing. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/ https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-9815 https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-9816 https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-9817 https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-9818 https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-9819 https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-9820 https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-11691 https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-11692 https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-11693 https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-7317 https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-9797 https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2018-18511 https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-11694 https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-11698 https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-5798 https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-9800 (* Security fix *) +--------------------------+ Mon May 20 21:07:25 UTC 2019 a/btrfs-progs-5.1-x86_64-1.txz: Upgraded. a/dbus-1.12.14-x86_64-1.txz: Upgraded. a/eudev-3.2.8-x86_64-1.txz: Upgraded. d/bison-3.4-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_46-x86_64-1.txz: Upgraded. l/pulseaudio-12.2-x86_64-2.txz: Rebuilt. Patched to build against alsa-lib-1.1.9. Thanks to nobodino. n/ethtool-5.1-x86_64-1.txz: Upgraded. xfce/tumbler-0.2.4-x86_64-1.txz: Upgraded. +--------------------------+ Sun May 19 01:10:53 UTC 2019 a/file-5.37-x86_64-1.txz: Upgraded. l/python-requests-2.22.0-x86_64-1.txz: Upgraded. n/iputils-20190515-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-60.7.0-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://www.mozilla.org/en-US/thunderbird/60.7.0/releasenotes/ +--------------------------+ Fri May 17 05:06:06 UTC 2019 a/kernel-generic-4.19.44-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.44-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.44-x86_64-1.txz: Upgraded. ap/cups-filters-1.23.0-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.44-x86-1.txz: Upgraded. k/kernel-source-4.19.44-noarch-1.txz: Upgraded. l/libsoup-2.66.2-x86_64-1.txz: Upgraded. n/bind-9.14.2-x86_64-1.txz: Upgraded. n/stunnel-5.54-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Thu May 16 04:55:49 UTC 2019 a/kernel-firmware-20190514_711d329-noarch-1.txz: Upgraded. a/kernel-generic-4.19.43-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.43-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.43-x86_64-1.txz: Upgraded. ap/hplip-3.19.5-x86_64-1.txz: Upgraded. ap/mariadb-10.3.15-x86_64-1.txz: Upgraded. This update fixes denial-of-service security issues. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2614 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2627 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2628 (* Security fix *) d/cmake-3.14.4-x86_64-1.txz: Upgraded. d/gcc-9.1.0-x86_64-5.txz: Rebuilt. Rebuilt with --enable-clocale=gnu. This is recommended by Linux From Scratch, and while it doesn't seem to fix the issue with kernel compiles failing with some locales, it probably doesn't hurt. d/gcc-brig-9.1.0-x86_64-5.txz: Rebuilt. d/gcc-g++-9.1.0-x86_64-5.txz: Rebuilt. Applied patch: PR libstdc++/90397 fix std::variant friend declaration This fixes problems compiling programs that use std::variant with clang. Thanks to orbea. d/gcc-gdc-9.1.0-x86_64-5.txz: Rebuilt. d/gcc-gfortran-9.1.0-x86_64-5.txz: Rebuilt. d/gcc-gnat-9.1.0-x86_64-5.txz: Rebuilt. d/gcc-go-9.1.0-x86_64-5.txz: Rebuilt. d/gcc-objc-9.1.0-x86_64-5.txz: Rebuilt. d/kernel-headers-4.19.43-x86-1.txz: Upgraded. d/rust-1.34.2-x86_64-1.txz: Upgraded. k/kernel-source-4.19.43-noarch-1.txz: Upgraded. l/librsvg-2.44.14-x86_64-1.txz: Upgraded. n/samba-4.10.3-x86_64-1.txz: Upgraded. This is a security release in order to address the following defect: The checksum validation in the S4U2Self handler in the embedded Heimdal KDC did not first confirm that the checksum was keyed, allowing replacement of the requested target (client) principal. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16860 (* Security fix *) x/xterm-345-x86_64-1.txz: Upgraded. xap/rdesktop-1.8.5-x86_64-1.txz: Upgraded. This update fixes security issues: Add bounds checking to protocol handling in order to fix many security problems when communicating with a malicious server. (* Security fix *) isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Mon May 13 22:53:13 UTC 2019 a/aaa_elflibs-15.0-x86_64-8.txz: Rebuilt. Upgraded: libcap.so.2.27, libglib-2.0.so.0.6000.2, libgmodule-2.0.so.0.6000.2, libgobject-2.0.so.0.6000.2, libgthread-2.0.so.0.6000.2, libpng16.so.16.37.0, libstdc++.so.6.0.26. a/e2fsprogs-1.45.1-x86_64-1.txz: Upgraded. ap/alsa-utils-1.1.9-x86_64-1.txz: Upgraded. ap/man-pages-5.01-noarch-1.txz: Upgraded. d/gdb-8.3-x86_64-1.txz: Upgraded. l/Mako-1.0.10-x86_64-1.txz: Upgraded. l/alsa-lib-1.1.9-x86_64-1.txz: Upgraded. l/alsa-plugins-1.1.9-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_45-x86_64-1.txz: Upgraded. l/mozilla-nss-3.44-x86_64-1.txz: Upgraded. l/utf8proc-2.4.0-x86_64-1.txz: Upgraded. n/iproute2-5.1.0-x86_64-1.txz: Upgraded. n/nfs-utils-2.3.4-x86_64-1.txz: Upgraded. extra/pure-alsa-system/alsa-lib-1.1.9-x86_64-1_alsa.txz: Upgraded. extra/pure-alsa-system/alsa-plugins-1.1.9-x86_64-1_alsa.txz: Upgraded. +--------------------------+ Sat May 11 00:24:01 UTC 2019 a/kernel-generic-4.19.42-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.42-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.42-x86_64-1.txz: Upgraded. a/tcsh-6.21.00-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.42-x86-1.txz: Upgraded. k/kernel-source-4.19.42-noarch-1.txz: Upgraded. x/libglvnd-1.1.1-x86_64-1.txz: Added. This is the GL Vendor-Neutral Dispatch library, which allows multiple drivers from different vendors to coexist on the same machine. When libglvnd is present, the NVIDIA driver will not overwrite any system files. Note that this is known to work when installing the NVIDIA driver using the .run installer. Other methods may require adjustment. This library is now a dependency of Mesa. Thanks to Heinz Wiesinger. x/libinput-1.13.2-x86_64-1.txz: Upgraded. x/mesa-19.0.4-x86_64-1.txz: Upgraded. Compiled with --enable-libglvnd. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Thu May 9 01:39:14 UTC 2019 a/hwdata-0.323-noarch-1.txz: Upgraded. a/kernel-generic-4.19.41-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.41-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.41-x86_64-1.txz: Upgraded. a/usbutils-012-x86_64-1.txz: Upgraded. ap/lsof-4.93.2-x86_64-1.txz: Upgraded. d/gcc-9.1.0-x86_64-4.txz: Rebuilt. d/gcc-brig-9.1.0-x86_64-4.txz: Rebuilt. d/gcc-g++-9.1.0-x86_64-4.txz: Rebuilt. d/gcc-gdc-9.1.0-x86_64-4.txz: Rebuilt. d/gcc-gfortran-9.1.0-x86_64-4.txz: Rebuilt. d/gcc-gnat-9.1.0-x86_64-4.txz: Rebuilt. d/gcc-go-9.1.0-x86_64-4.txz: Rebuilt. d/gcc-objc-9.1.0-x86_64-4.txz: Rebuilt. Add support for Objective-C++. Thanks to USUARIONUEVO. d/kernel-headers-4.19.41-x86-1.txz: Upgraded. d/python-pip-19.1.1-x86_64-1.txz: Upgraded. k/kernel-source-4.19.41-noarch-1.txz: Upgraded. l/gegl-0.4.16-x86_64-1.txz: Upgraded. l/vte-0.56.3-x86_64-1.txz: Upgraded. xap/mozilla-firefox-60.6.3esr-x86_64-1.txz: Upgraded. This update provides further improvements to re-enable web extensions which had been disabled for users with a master password set (Bug 1549249). For more information, see: https://www.mozilla.org/en-US/firefox/60.6.3/releasenotes/ isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue May 7 00:11:33 UTC 2019 a/xfsprogs-5.0.0-x86_64-1.txz: Upgraded. d/gcc-9.1.0-x86_64-3.txz: Rebuilt. Patched to fix an internal compiler error (PR90303). Thanks to orbea. d/gcc-brig-9.1.0-x86_64-3.txz: Rebuilt. d/gcc-g++-9.1.0-x86_64-3.txz: Rebuilt. d/gcc-gdc-9.1.0-x86_64-3.txz: Rebuilt. d/gcc-gfortran-9.1.0-x86_64-3.txz: Rebuilt. d/gcc-gnat-9.1.0-x86_64-3.txz: Rebuilt. d/gcc-go-9.1.0-x86_64-3.txz: Rebuilt. d/gcc-objc-9.1.0-x86_64-3.txz: Rebuilt. n/postfix-3.4.5-x86_64-2.txz: Rebuilt. Added some additional tools. Thanks to Markus Wiesner. +--------------------------+ Mon May 6 01:29:24 UTC 2019 a/kernel-generic-4.19.40-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.40-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.40-x86_64-1.txz: Upgraded. ap/ksh93-20190505_4cb3a115-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.40-x86-1.txz: Upgraded. k/kernel-source-4.19.40-noarch-1.txz: Upgraded. l/libgsf-1.14.46-x86_64-1.txz: Upgraded. xap/mozilla-firefox-60.6.2esr-x86_64-1.txz: Upgraded. This update addresses the issue of add-ons failing to load. For more information, see: https://www.mozilla.org/en-US/firefox/60.6.2/releasenotes/ isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Sat May 4 18:44:36 UTC 2019 a/kernel-generic-4.19.39-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.39-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.39-x86_64-1.txz: Upgraded. d/gcc-9.1.0-x86_64-2.txz: Rebuilt. d/gcc-brig-9.1.0-x86_64-2.txz: Rebuilt. d/gcc-g++-9.1.0-x86_64-2.txz: Rebuilt. d/gcc-gdc-9.1.0-x86_64-2.txz: Added. This package contains the newly added D language support. The other GCC packages were rebuilt without any functional changes. d/gcc-gfortran-9.1.0-x86_64-2.txz: Rebuilt. d/gcc-gnat-9.1.0-x86_64-2.txz: Rebuilt. d/gcc-go-9.1.0-x86_64-2.txz: Rebuilt. d/gcc-objc-9.1.0-x86_64-2.txz: Rebuilt. d/kernel-headers-4.19.39-x86-1.txz: Upgraded. k/kernel-source-4.19.39-noarch-1.txz: Upgraded. l/imagemagick-6.9.10_44-x86_64-1.txz: Upgraded. l/v4l-utils-1.16.6-x86_64-1.txz: Upgraded. n/dhcpcd-7.2.2-x86_64-1.txz: Upgraded. x/vulkan-sdk-1.1.106.0-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Sat May 4 01:29:20 UTC 2019 d/gcc-9.1.0-x86_64-1.txz: Upgraded. d/gcc-brig-9.1.0-x86_64-1.txz: Upgraded. d/gcc-g++-9.1.0-x86_64-1.txz: Upgraded. d/gcc-gfortran-9.1.0-x86_64-1.txz: Upgraded. d/gcc-gnat-9.1.0-x86_64-1.txz: Upgraded. d/gcc-go-9.1.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. d/gcc-objc-9.1.0-x86_64-1.txz: Upgraded. d/libtool-2.4.6-x86_64-11.txz: Rebuilt. Recompiled to update embedded GCC version number. d/llvm-8.0.0-x86_64-2.txz: Rebuilt. Recompiled with -DLLVM_INSTALL_UTILS=ON. Thanks to Lockywolf. d/swig-4.0.0-x86_64-1.txz: Upgraded. l/glib2-2.60.2-x86_64-1.txz: Upgraded. l/qt-4.8.7-x86_64-13.txz: Rebuilt. Patched to fix FTBFS with gcc9 (also fixes FTBFS with qtscriptgenerator and possibly other projects that use qt4). +--------------------------+ Thu May 2 21:37:38 UTC 2019 a/kernel-firmware-20190502_92e17d0-noarch-1.txz: Upgraded. a/kernel-generic-4.19.38-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.38-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.38-x86_64-1.txz: Upgraded. d/ccache-3.7.1-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.38-x86-1.txz: Upgraded. d/mercurial-5.0-x86_64-1.txz: Upgraded. k/kernel-source-4.19.38-noarch-1.txz: Upgraded. l/glib-networking-2.60.2-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_43-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Wed May 1 19:49:49 UTC 2019 ap/tmux-2.9a-x86_64-1.txz: Upgraded. n/dovecot-2.3.6-x86_64-1.txz: Upgraded. This update fixes two security issues: Submission-login crashed with signal 11 due to null pointer access when authentication was aborted by disconnecting. Submission-login crashed when authentication was started over TLS secured channel and invalid authentication message was sent. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11494 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11499 (* Security fix *) n/php-7.2.18-x86_64-1.txz: Upgraded. This update fixes bugs and a security issue Heap-buffer-overflow in _estrndup via exif_process_IFD_TAG. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11036 (* Security fix *) xfce/exo-0.12.5-x86_64-1.txz: Upgraded. +--------------------------+ Mon Apr 29 20:58:59 UTC 2019 ap/vim-8.1.1239-x86_64-1.txz: Upgraded. l/python-urllib3-1.25.2-x86_64-1.txz: Upgraded. xap/easytag-2.4.3-x86_64-2.txz: Rebuilt. Upgraded (again) to easytag-2.4.3. Reverted the upstream commit that was corrupting ogg and opus files. In a new configuration, don't add freedb.musicbrainz.org as an automatic CDDB server. Musicbrainz shut down this service permanently on March 18 and easytag breaks/hangs if it attempts to contact it. If your account has already run easytag previously, you should go to Edit -> Preferences -> CDDB and blank out the hostname field containing "freedb.musicbrainz.org". xap/vim-gvim-8.1.1239-x86_64-1.txz: Upgraded. +--------------------------+ Sun Apr 28 18:58:12 UTC 2019 ap/qpdf-8.4.1-x86_64-1.txz: Upgraded. l/M2Crypto-0.33.0-x86_64-1.txz: Upgraded. l/python-requests-2.21.0-x86_64-4.txz: Rebuilt. Also patch __init__.py to allow a newer urllib3. Thanks to petslack. x/xkeyboard-config-2.26-noarch-2.txz: Rebuilt. Fixed broken pt keymap. Thanks to sairum. extra/bash-completion/bash-completion-2.9-noarch-1.txz: Upgraded. +--------------------------+ Sat Apr 27 20:04:59 UTC 2019 a/kernel-generic-4.19.37-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.37-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.37-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.37-x86-1.txz: Upgraded. k/kernel-source-4.19.37-noarch-1.txz: Upgraded. l/python-requests-2.21.0-x86_64-3.txz: Rebuilt. Increase maximum allowed version of urllib3. Thanks to Lockywolf. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Apr 26 18:55:10 UTC 2019 ap/tmux-2.9-x86_64-1.txz: Upgraded. d/python-pip-19.1-x86_64-1.txz: Upgraded. d/rust-1.34.1-x86_64-1.txz: Upgraded. d/subversion-1.12.0-x86_64-1.txz: Upgraded. n/bind-9.14.1-x86_64-1.txz: Upgraded. This update fixes security issues: The TCP client quota set using the tcp-clients option could be exceeded in some cases. This could lead to exhaustion of file descriptors. In certain configurations, named could crash with an assertion failure if nxdomain-redirect was in use and a redirected query resulted in an NXDOMAIN from the cache. For more information, see: https://kb.isc.org/docs/cve-2018-5743 https://kb.isc.org/docs/cve-2019-6467 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5743 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6467 (* Security fix *) n/dhcpcd-7.2.1-x86_64-1.txz: Upgraded. +--------------------------+ Wed Apr 24 20:01:27 UTC 2019 a/kernel-firmware-20190424_4b6cf2b-noarch-1.txz: Upgraded. ap/nano-4.2-x86_64-1.txz: Upgraded. d/ccache-3.7-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_42-x86_64-1.txz: Upgraded. l/python-urllib3-1.25.1-x86_64-1.txz: Upgraded. l/vte-0.56.2-x86_64-1.txz: Upgraded. x/mesa-19.0.3-x86_64-1.txz: Upgraded. +--------------------------+ Tue Apr 23 20:43:28 UTC 2019 d/cmake-3.14.3-x86_64-1.txz: Upgraded. d/python-setuptools-41.0.1-x86_64-1.txz: Upgraded. kde/libnm-qt-0.9.8.4-x86_64-1.txz: Upgraded. +--------------------------+ Mon Apr 22 20:00:44 UTC 2019 a/aaa_terminfo-6.1_20190420-x86_64-1.txz: Upgraded. l/ncurses-6.1_20190420-x86_64-1.txz: Upgraded. n/wpa_supplicant-2.8-x86_64-1.txz: Upgraded. xap/xpdf-4.00-x86_64-4.txz: Rebuilt. Recompiled with -DSYSTEM_XPDFRC="/etc/xpdfrc". Thanks to J_W. +--------------------------+ Sun Apr 21 18:45:54 UTC 2019 a/bash-5.0.007-x86_64-1.txz: Upgraded. d/parallel-20190422-noarch-1.txz: Upgraded. n/NetworkManager-1.18.1-x86_64-1.txz: Upgraded. +--------------------------+ Sun Apr 21 03:36:58 UTC 2019 a/kernel-generic-4.19.36-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.36-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.36-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.36-x86-1.txz: Upgraded. k/kernel-source-4.19.36-noarch-1.txz: Upgraded. l/imagemagick-6.9.10_41-x86_64-1.txz: Upgraded. l/pycairo-1.18.1-x86_64-1.txz: Upgraded. l/pygobject3-3.32.1-x86_64-1.txz: Upgraded. l/v4l-utils-1.16.5-x86_64-2.txz: Rebuilt. Reverted commit from upstream git that broke DVB. Thanks to Andrea Peluso. x/libdrm-2.4.98-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Apr 19 20:26:12 UTC 2019 d/perl-5.28.2-x86_64-1.txz: Upgraded. Modules upgraded: DBD-mysql-4.050, IO-Socket-SSL-2.066, TermReadKey-2.38, URI-1.76. l/gst-plugins-base-1.16.0-x86_64-1.txz: Upgraded. l/gst-plugins-good-1.16.0-x86_64-1.txz: Upgraded. l/gst-plugins-libav-1.16.0-x86_64-1.txz: Upgraded. l/gstreamer-1.16.0-x86_64-1.txz: Upgraded. l/python-urllib3-1.24.2-x86_64-1.txz: Upgraded. extra/pure-alsa-system/gst-plugins-good-1.16.0-x86_64-1_alsa.txz: Upgraded. +--------------------------+ Thu Apr 18 21:13:58 UTC 2019 ap/ksh93-20190416_7d7bba3e-x86_64-1.txz: Upgraded. ap/sysstat-12.1.4-x86_64-1.txz: Upgraded. l/gvfs-1.40.1-x86_64-2.txz: Rebuilt. Recompiled against libcdio-2.1.0. l/icu4c-64.2-x86_64-1.txz: Upgraded. l/libcddb-1.3.2-x86_64-6.txz: Rebuilt. Recompiled against libcdio-2.1.0. l/libcdio-2.1.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/libcdio-paranoia-10.2+2.0.0-x86_64-2.txz: Rebuilt. Recompiled against libcdio-2.1.0. l/zstd-1.4.0-x86_64-1.txz: Upgraded. n/dhcpcd-7.2.0-x86_64-1.txz: Upgraded. n/dovecot-2.3.5.2-x86_64-1.txz: Upgraded. This update fixes a security issue: Trying to login with 8bit username containing invalid UTF8 input causes auth process to crash if auth policy is enabled. This could be used rather easily to cause a DoS. Similar crash also happens during mail delivery when using invalid UTF8 in From or Subject header when OX push notification driver is used. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10691 (* Security fix *) n/nghttp2-1.38.0-x86_64-1.txz: Upgraded. n/openssh-8.0p1-x86_64-1.txz: Upgraded. This release contains a mitigation for a weakness in the scp(1) tool and protocol (CVE-2019-6111): when copying files from a remote system to a local directory, scp(1) did not verify that the filenames that the server sent matched those requested by the client. This could allow a hostile server to create or clobber unexpected local files with attacker-controlled content. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6111 (* Security fix *) xap/MPlayer-20190418-x86_64-1.txz: Upgraded. Compiled against libcdio-2.1.0. xap/audacious-plugins-3.10.1-x86_64-2.txz: Rebuilt. Recompiled against libcdio-2.1.0. extra/pure-alsa-system/MPlayer-20190418-x86_64-1_alsa.txz: Upgraded. Compiled against libcdio-2.1.0. extra/pure-alsa-system/audacious-plugins-3.10.1-x86_64-2_alsa.txz: Rebuilt. Recompiled against libcdio-2.1.0. +--------------------------+ Wed Apr 17 20:27:23 UTC 2019 a/kernel-generic-4.19.35-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.35-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.35-x86_64-1.txz: Upgraded. ap/sqlite-3.28.0-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.35-x86-1.txz: Upgraded. d/meson-0.50.1-x86_64-1.txz: Upgraded. d/ruby-2.6.3-x86_64-1.txz: Upgraded. k/kernel-source-4.19.35-noarch-1.txz: Upgraded. l/Mako-1.0.9-x86_64-1.txz: Upgraded. l/libcap-2.27-x86_64-1.txz: Upgraded. l/libpng-1.6.37-x86_64-1.txz: Upgraded. This update fixes security issues: Fixed a use-after-free vulnerability (CVE-2019-7317) in png_image_free. Fixed a memory leak in the ARM NEON implementation of png_do_expand_palette. Fixed a memory leak in pngtest.c. Fixed two vulnerabilities (CVE-2018-14048, CVE-2018-14550) in contrib/pngminus; refactor. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14048 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14550 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7317 (* Security fix *) l/libpsl-0.21.0-x86_64-1.txz: Upgraded. l/pcre2-10.33-x86_64-1.txz: Upgraded. l/pyparsing-2.4.0-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Mon Apr 15 19:46:20 UTC 2019 ap/nano-4.1-x86_64-1.txz: Upgraded. l/giflib-5.1.9-x86_64-2.txz: Rebuilt. Restore GifQuantizeBuffer and other deprecated functions to the shared library. Thanks to Skaendo. l/glib2-2.60.1-x86_64-1.txz: Upgraded. l/orc-0.4.29-x86_64-1.txz: Upgraded. +--------------------------+ Sun Apr 14 18:30:06 UTC 2019 d/Cython-0.29.7-x86_64-1.txz: Upgraded. +--------------------------+ Sat Apr 13 19:44:43 UTC 2019 l/imagemagick-6.9.10_40-x86_64-1.txz: Upgraded. l/opus-1.3.1-x86_64-1.txz: Upgraded. n/libqmi-1.22.4-x86_64-1.txz: Upgraded. +--------------------------+ Fri Apr 12 22:13:09 UTC 2019 a/gawk-5.0.0-x86_64-1.txz: Upgraded. ap/pamixer-1.4-x86_64-2.txz: Rebuilt. Recompiled against boost-1.70.0. ap/vim-8.1.1157-x86_64-1.txz: Upgraded. d/cmake-3.14.2-x86_64-1.txz: Upgraded. e/emacs-26.2-x86_64-1.txz: Upgraded. kde/calligra-2.9.11-x86_64-30.txz: Rebuilt. Recompiled against boost-1.70.0. l/akonadi-1.13.0-x86_64-12.txz: Rebuilt. Recompiled against boost-1.70.0. l/boost-1.70.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. Note: Boost now provides its own BoostConfig.cmake config file, and it may not work with all existing code (here, calligra stumbled over it). At this point it's not clear if the included cmake config files are buggy, or if affected projects need to change something in order to use them, but there's an easy workaround to use cmake's FindBoost.cmake (as was used previously). Add this to the call to cmake from any affected project (if cmake fails with an error: "No suitable build variant has been found."): -DBoost_NO_BOOST_CMAKE=ON n/libmbim-1.18.2-x86_64-1.txz: Upgraded. n/nfs-utils-2.3.3-x86_64-3.txz: Rebuilt. rc.nfsd: don't try to create the nfsv4recoverydir - the build script will determine the directory to use and include it in the package. rc.nfsd: drop 2.4 kernel support, and use better code for mounting the nfsd filesystem. Thanks to shasta. x/libwacom-0.33-x86_64-1.txz: Upgraded. xap/vim-gvim-8.1.1157-x86_64-1.txz: Upgraded. +--------------------------+ Thu Apr 11 21:59:35 UTC 2019 d/rust-1.34.0-x86_64-1.txz: Upgraded. l/gtk+3-3.24.8-x86_64-1.txz: Upgraded. n/stunnel-5.53-x86_64-1.txz: Upgraded. x/mesa-19.0.2-x86_64-1.txz: Upgraded. +--------------------------+ Wed Apr 10 21:34:05 UTC 2019 a/kernel-firmware-20190409_260cb35-noarch-1.txz: Upgraded. x/libva-utils-2.4.1-x86_64-1.txz: Upgraded. x/pixman-0.38.4-x86_64-1.txz: Upgraded. +--------------------------+ Tue Apr 9 17:56:00 UTC 2019 a/util-linux-2.33.2-x86_64-1.txz: Upgraded. d/vala-0.44.3-x86_64-1.txz: Upgraded. l/apr-1.7.0-x86_64-1.txz: Upgraded. l/at-spi2-core-2.32.1-x86_64-1.txz: Upgraded. l/gvfs-1.40.1-x86_64-1.txz: Upgraded. l/libbluray-1.1.1-x86_64-1.txz: Upgraded. l/libsoup-2.66.1-x86_64-1.txz: Upgraded. l/vte-0.56.1-x86_64-1.txz: Upgraded. n/stunnel-5.52-x86_64-1.txz: Upgraded. x/libinput-1.13.1-x86_64-1.txz: Upgraded. +--------------------------+ Mon Apr 8 20:39:32 UTC 2019 a/glibc-zoneinfo-2019a-noarch-1.txz: Upgraded. a/grub-2.02-x86_64-5.txz: Rebuilt. Support F2FS filesystem. Thanks to Nille_kungen. ap/cups-filters-1.22.5-x86_64-1.txz: Upgraded. ap/itstool-2.0.6-x86_64-1.txz: Upgraded. d/python-setuptools-41.0.0-x86_64-1.txz: Upgraded. l/gobject-introspection-1.60.1-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_39-x86_64-1.txz: Upgraded. l/libcroco-0.6.13-x86_64-1.txz: Upgraded. l/libnotify-0.7.8-x86_64-1.txz: Upgraded. n/cifs-utils-6.9-x86_64-1.txz: Upgraded. n/nfs-utils-2.3.3-x86_64-2.txz: Rebuilt. Include recovery directory. Thanks to upnort. n/samba-4.10.2-x86_64-1.txz: Upgraded. This is a security release in order to address the following defects: World writable files in Samba AD DC private/ dir. Save registry file outside share as unprivileged user. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3870 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3880 (* Security fix *) x/libva-2.4.1-x86_64-1.txz: Upgraded. x/pixman-0.38.2-x86_64-1.txz: Upgraded. xap/gimp-2.10.10-x86_64-1.txz: Upgraded. +--------------------------+ Sat Apr 6 17:21:20 UTC 2019 a/kernel-generic-4.19.34-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.34-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.34-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.34-x86-1.txz: Upgraded. k/kernel-source-4.19.34-noarch-1.txz: Upgraded. SPEAKUP y -> m SPEAKUP_SYNTH_ACNTPC y -> m SPEAKUP_SYNTH_ACNTSA y -> m SPEAKUP_SYNTH_APOLLO y -> m SPEAKUP_SYNTH_AUDPTR y -> m SPEAKUP_SYNTH_BNS y -> m SPEAKUP_SYNTH_DECEXT y -> m SPEAKUP_SYNTH_DECTLK y -> m SPEAKUP_SYNTH_DTLK y -> m SPEAKUP_SYNTH_DUMMY y -> m SPEAKUP_SYNTH_KEYPC y -> m SPEAKUP_SYNTH_LTLK y -> m SPEAKUP_SYNTH_SOFT y -> m SPEAKUP_SYNTH_SPKOUT y -> m SPEAKUP_SYNTH_TXPRT y -> m Thanks to Didier Spaier. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Apr 5 20:26:51 UTC 2019 ap/vim-8.1.1119-x86_64-1.txz: Upgraded. l/openjpeg-2.3.1-x86_64-1.txz: Upgraded. Includes many bug fixes (including security fixes). (* Security fix *) n/links-2.19-x86_64-1.txz: Upgraded. n/stunnel-5.51-x86_64-1.txz: Upgraded. n/wget-1.20.3-x86_64-1.txz: Upgraded. Fixed a buffer overflow vulnerability: src/iri.c(do_conversion): Reallocate the output buffer to a larger size if it is already full. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5953 (* Security fix *) xap/vim-gvim-8.1.1119-x86_64-1.txz: Upgraded. +--------------------------+ Thu Apr 4 19:06:36 UTC 2019 ap/ghostscript-9.27-x86_64-1.txz: Upgraded. d/python-setuptools-40.9.0-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_37-x86_64-1.txz: Upgraded. l/readline-8.0.000-x86_64-2.txz: Rebuilt. Recompiled to link rlfe against the new libreadline. Thanks to Toutatis. +--------------------------+ Thu Apr 4 00:45:18 UTC 2019 a/aaa_elflibs-15.0-x86_64-7.txz: Rebuilt. Added: libhistory.so.8.0, libreadline.so.8.0. a/gawk-4.2.1-x86_64-3.txz: Rebuilt. Recompiled against readline-8.0.000. a/kernel-generic-4.19.33-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.33-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.33-x86_64-1.txz: Upgraded. a/util-linux-2.33.1-x86_64-3.txz: Rebuilt. Recompiled against readline-8.0.000. ap/bc-1.07.1-x86_64-3.txz: Rebuilt. Recompiled against readline-8.0.000. ap/gphoto2-2.5.20-x86_64-2.txz: Rebuilt. Recompiled against readline-8.0.000. ap/gutenprint-5.3.1-x86_64-2.txz: Rebuilt. Recompiled against readline-8.0.000. ap/mariadb-10.3.14-x86_64-1.txz: Upgraded. ap/xorriso-1.5.0-x86_64-2.txz: Rebuilt. Recompiled against readline-8.0.000. d/clisp-2.49_20181112_df3b9f6fd-x86_64-2.txz: Rebuilt. Recompiled against readline-8.0.000. d/gdb-8.2.1-x86_64-3.txz: Rebuilt. Recompiled against readline-8.0.000. d/guile-2.2.4-x86_64-2.txz: Rebuilt. Recompiled against readline-8.0.000. d/kernel-headers-4.19.33-x86-1.txz: Upgraded. d/python-2.7.16-x86_64-2.txz: Rebuilt. Recompiled against readline-8.0.000. d/python3-3.7.3-x86_64-2.txz: Rebuilt. Recompiled against readline-8.0.000. d/ruby-2.6.2-x86_64-2.txz: Rebuilt. Recompiled against readline-8.0.000. k/kernel-source-4.19.33-noarch-1.txz: Upgraded. kde/analitza-4.14.3-x86_64-5.txz: Rebuilt. Recompiled against readline-8.0.000. l/fluidsynth-1.1.11-x86_64-2.txz: Rebuilt. Recompiled against readline-8.0.000. l/gdbm-1.18.1-x86_64-2.txz: Rebuilt. Recompiled against readline-8.0.000. l/hunspell-1.6.2-x86_64-3.txz: Rebuilt. Recompiled against readline-8.0.000. l/mozjs52-52.9.0esr-x86_64-2.txz: Rebuilt. Recompiled against readline-8.0.000. l/parted-3.2-x86_64-5.txz: Rebuilt. Recompiled against readline-8.0.000. l/pcre2-10.32-x86_64-2.txz: Rebuilt. Recompiled against readline-8.0.000. l/pilot-link-0.12.5-x86_64-14.txz: Rebuilt. Recompiled against readline-8.0.000. l/readline-8.0.000-x86_64-1.txz: Upgraded. Shared library .so-version bump. n/NetworkManager-1.16.0-x86_64-2.txz: Rebuilt. Recompiled against readline-8.0.000. n/bluez-5.50-x86_64-2.txz: Rebuilt. Recompiled against readline-8.0.000. n/gnupg-1.4.23-x86_64-2.txz: Rebuilt. Recompiled against readline-8.0.000. n/gnupg2-2.2.15-x86_64-2.txz: Rebuilt. Recompiled against readline-8.0.000. n/gnutls-3.6.7.1-x86_64-1.txz: Upgraded. n/lftp-4.8.4-x86_64-4.txz: Rebuilt. Recompiled against readline-8.0.000. n/netkit-ftp-0.17-x86_64-5.txz: Rebuilt. Recompiled against readline-8.0.000. n/nftables-0.9.0-x86_64-3.txz: Rebuilt. Recompiled against readline-8.0.000. n/php-7.2.17-x86_64-1.txz: Upgraded. This update fixes bugs and a security issue: rename() across the device may allow unwanted access during processing. (* Security fix *) n/samba-4.10.1-x86_64-1.txz: Upgraded. Compiled against readline-8.0.000. n/tftp-hpa-5.2-x86_64-5.txz: Rebuilt. Recompiled against readline-8.0.000. n/wpa_supplicant-2.7-x86_64-4.txz: Rebuilt. Recompiled against readline-8.0.000. xap/fvwm-2.6.8-x86_64-2.txz: Rebuilt. Recompiled against readline-8.0.000. xap/gftp-2.0.19-x86_64-8.txz: Rebuilt. Recompiled against readline-8.0.000. xap/gnuchess-6.2.5-x86_64-4.txz: Rebuilt. xap/xine-ui-0.99.10-x86_64-3.txz: Rebuilt. Recompiled against readline-8.0.000. extra/pure-alsa-system/fluidsynth-1.1.11-x86_64-2_alsa.txz: Rebuilt. Recompiled against readline-8.0.000. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue Apr 2 20:30:22 UTC 2019 a/hwdata-0.322-noarch-1.txz: Upgraded. a/kernel-firmware-20190402_67b7579-noarch-1.txz: Upgraded. a/shadow-4.6-x86_64-2.txz: Rebuilt. adduser: reprompt on invalid user input. Thanks to ttk. ap/ghostscript-9.26-x86_64-2.txz: Rebuilt. Fixes security issues: A specially crafted PostScript file could have access to the file system outside of the constrains imposed by -dSAFER. Transient procedures can allow access to system operators, leading to remote code execution. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3835 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3838 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6116 (* Security fix *) d/vala-0.44.2-x86_64-1.txz: Upgraded. l/glib-networking-2.60.1-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_36-x86_64-1.txz: Upgraded. l/python-pillow-6.0.0-x86_64-1.txz: Upgraded. n/wget-1.20.2-x86_64-1.txz: Upgraded. Fixed an unspecified buffer overflow vulnerability. (* Security fix *) +--------------------------+ Sun Mar 31 18:51:16 UTC 2019 a/quota-4.05-x86_64-1.txz: Upgraded. d/cmake-3.14.1-x86_64-1.txz: Upgraded. d/patchelf-0.10-x86_64-1.txz: Upgraded. l/harfbuzz-2.4.0-x86_64-1.txz: Upgraded. l/utf8proc-2.3.0-x86_64-1.txz: Upgraded. n/httpd-2.4.39-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. In Apache HTTP Server 2.4 releases 2.4.17 to 2.4.38, with MPM event, worker or prefork, code executing in less-privileged child processes or threads (including scripts executed by an in-process scripting interpreter) could execute arbitrary code with the privileges of the parent process by manipulating the scoreboard. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0211 (* Security fix *) n/iputils-20190324-x86_64-1.txz: Upgraded. n/postfix-3.4.5-x86_64-1.txz: Upgraded. +--------------------------+ Fri Mar 29 18:24:36 UTC 2019 a/aaa_elflibs-15.0-x86_64-6.txz: Rebuilt. Upgraded: libelf-0.176.so, libpcre.so.1.2.11, libglib-2.0.so.0.6000.0, libgmodule-2.0.so.0.6000.0, libgobject-2.0.so.0.6000.0, libgthread-2.0.so.0.6000.0, libtdb.so.1.4.0. Temporarily added: libicudata.so.63.1, libicui18n.so.63.1, libicuio.so.63.1, libicutest.so.63.1, libicutu.so.63.1, libicuuc.so.63.1. a/xfsprogs-4.20.0-x86_64-2.txz: Rebuilt. Recompiled against icu4c-64.1. ap/sqlite-3.27.2-x86_64-2.txz: Rebuilt. Recompiled against icu4c-64.1. kde/calligra-2.9.11-x86_64-29.txz: Rebuilt. Recompiled against icu4c-64.1. kde/kdepimlibs-4.14.10-x86_64-7.txz: Rebuilt. Recompiled to pull in new gpgme++ header files. l/boost-1.69.0-x86_64-2.txz: Rebuilt. Recompiled against icu4c-64.1. l/ffmpeg-3.4.6-x86_64-1.txz: Upgraded. l/giflib-5.1.9-x86_64-1.txz: Upgraded. l/harfbuzz-2.3.1-x86_64-2.txz: Rebuilt. Recompiled against icu4c-64.1. l/icu4c-64.1-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/libical-3.0.4-x86_64-2.txz: Rebuilt. Recompiled against icu4c-64.1. l/libvisio-0.1.6-x86_64-6.txz: Rebuilt. Recompiled against icu4c-64.1. l/qt-4.8.7-x86_64-12.txz: Rebuilt. Recompiled against icu4c-64.1. l/raptor2-2.0.15-x86_64-7.txz: Rebuilt. Recompiled against icu4c-64.1. l/v4l-utils-1.16.5-x86_64-1.txz: Upgraded. n/dovecot-2.3.5.1-x86_64-1.txz: Upgraded. Missing input buffer size validation leads into arbitrary buffer overflow when reading fts or pop3 uidl header from Dovecot index. Exploiting this requires direct write access to the index files. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7524 (* Security fix *) Compiled against icu4c-64.1. n/gpgme-1.13.0-x86_64-1.txz: Upgraded. n/php-7.2.16-x86_64-2.txz: Rebuilt. Recompiled against icu4c-64.1. n/postfix-3.4.4-x86_64-2.txz: Rebuilt. Recompiled against icu4c-64.1. n/tin-2.4.3-x86_64-2.txz: Rebuilt. Recompiled against icu4c-64.1. n/whois-5.4.2-x86_64-1.txz: Upgraded. t/texlive-2018.180822-x86_64-5.txz: Rebuilt. Recompiled against icu4c-64.1. x/libinput-1.13.0-x86_64-1.txz: Upgraded. x/mesa-19.0.1-x86_64-1.txz: Upgraded. x/vulkan-sdk-1.1.101.0-x86_64-1.txz: Upgraded. extra/pure-alsa-system/ffmpeg-3.4.6-x86_64-1_alsa.txz: Upgraded. +--------------------------+ Wed Mar 27 20:37:56 UTC 2019 a/kernel-generic-4.19.32-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.32-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.32-x86_64-1.txz: Upgraded. ap/hplip-3.19.3-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.32-x86-1.txz: Upgraded. d/python3-3.7.3-x86_64-1.txz: Upgraded. Fixed bugs and the following security issues: bpo-36216: Changes urlsplit() to raise ValueError when the URL contains characters that decompose under IDNA encoding (NFKC-normalization) into characters that affect how the URL is parsed. bpo-35746: [CVE-2019-5010] Fix a NULL pointer deref in ssl module. The cert parser did not handle CRL distribution points with empty DP or URI correctly. A malicious or buggy certificate can result into segfault. Vulnerability (TALOS-2018-0758) reported by Colin Read and Nicolas Edet of Cisco. bpo-35121: Don't send cookies of domain A without Domain attribute to domain B when domain A is a suffix match of domain B while using a cookiejar with http.cookiejar.DefaultCookiePolicy policy. Patch by Karthikeyan Singaravelan. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5010 (* Security fix *) d/scons-3.0.5-x86_64-1.txz: Upgraded. k/kernel-source-4.19.32-noarch-1.txz: Upgraded. n/curl-7.64.1-x86_64-1.txz: Upgraded. n/gnutls-3.6.7-x86_64-1.txz: Upgraded. Fixes security issues: libgnutls, gnutls tools: Every gnutls_free() will automatically set the free'd pointer to NULL. This prevents possible use-after-free and double free issues. Use-after-free will be turned into NULL dereference. The counter-measure does not extend to applications using gnutls_free(). libgnutls: Fixed a memory corruption (double free) vulnerability in the certificate verification API. Reported by Tavis Ormandy; addressed with the change above. [GNUTLS-SA-2019-03-27, #694] libgnutls: Fixed an invalid pointer access via malformed TLS1.3 async messages; Found using tlsfuzzer. [GNUTLS-SA-2019-03-27, #704] libgnutls: enforce key usage limitations on certificates more actively. Previously we would enforce it for TLS1.2 protocol, now we enforce it even when TLS1.3 is negotiated, or on client certificates as well. When an inappropriate for TLS1.3 certificate is seen on the credentials structure GnuTLS will disable TLS1.3 support for that session (#690). libgnutls: enforce the equality of the two signature parameters fields in a certificate. We were already enforcing the signature algorithm, but there was a bug in parameter checking code. (* Security fix *) isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue Mar 26 23:04:49 UTC 2019 ap/cups-filters-1.22.3-x86_64-1.txz: Upgraded. ap/lsscsi-0.30-x86_64-1.txz: Upgraded. ap/soma-3.2.3-noarch-1.txz: Upgraded. ap/vim-8.1.1053-x86_64-1.txz: Upgraded. l/libssh2-1.8.2-x86_64-1.txz: Upgraded. n/gnupg2-2.2.15-x86_64-1.txz: Upgraded. xap/vim-gvim-8.1.1053-x86_64-1.txz: Upgraded. +--------------------------+ Mon Mar 25 22:36:26 UTC 2019 ap/nano-4.0-x86_64-1.txz: Upgraded. l/Mako-1.0.8-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_35-x86_64-1.txz: Upgraded. l/libedit-20190324_3.1-x86_64-1.txz: Upgraded. l/shared-mime-info-1.12-x86_64-1.txz: Upgraded. x/xcompmgr-1.1.8-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-60.6.1-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/thunderbird/60.6.1/releasenotes/ https://www.mozilla.org/security/known-vulnerabilities/thunderbird.html (* Security fix *) +--------------------------+ Sun Mar 24 03:53:12 UTC 2019 a/kernel-generic-4.19.31-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.31-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.31-x86_64-1.txz: Upgraded. ap/cups-2.2.11-x86_64-1.txz: Upgraded. ap/sysstat-12.1.3-x86_64-1.txz: Upgraded. d/help2man-1.47.10-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.31-x86-1.txz: Upgraded. k/kernel-source-4.19.31-noarch-1.txz: Upgraded. n/samba-4.10.0-x86_64-2.txz: Rebuilt. Recompile dropping python2 support, since talloc no longer supports it. Thanks to ponce. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Mar 22 20:41:23 UTC 2019 d/parallel-20190322-noarch-1.txz: Upgraded. n/bind-9.14.0-x86_64-1.txz: Upgraded. xap/mozilla-firefox-60.6.1esr-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. The patched flaws are considered critical, and could be used to run attacker code and install software, requiring no user interaction beyond normal browsing. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html https://www.mozilla.org/en-US/security/advisories/mfsa2019-10/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9810i https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9813 (* Security fix *) +--------------------------+ Thu Mar 21 21:18:49 UTC 2019 l/talloc-2.2.0-x86_64-1.txz: Upgraded. l/tdb-1.4.0-x86_64-1.txz: Upgraded. l/tevent-0.10.0-x86_64-1.txz: Upgraded. x/mkfontscale-1.2.1-x86_64-1.txz: Upgraded. +--------------------------+ Thu Mar 21 04:48:24 UTC 2019 ap/lxc-2.0.11_8c238670-x86_64-1.txz: Upgraded. d/llvm-8.0.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. d/mercurial-4.9.1-x86_64-1.txz: Upgraded. l/glibmm-2.60.0-x86_64-1.txz: Upgraded. l/gtkmm3-3.24.1-x86_64-1.txz: Upgraded. n/iproute2-5.0.0-x86_64-1.txz: Upgraded. x/mesa-19.0.0-x86_64-2.txz: Rebuilt. Recompiled against llvm-8.0.0. x/xf86-video-amdgpu-19.0.1-x86_64-1.txz: Upgraded. x/xf86-video-ati-19.0.1-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-60.6.0-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://www.mozilla.org/en-US/thunderbird/60.6.0/releasenotes/ +--------------------------+ Tue Mar 19 20:06:28 UTC 2019 a/bash-5.0.003-x86_64-1.txz: Upgraded. a/kernel-firmware-20190314_7bc2464-noarch-1.txz: Upgraded. a/kernel-generic-4.19.30-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.30-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.30-x86_64-1.txz: Upgraded. d/help2man-1.47.9-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.30-x86-1.txz: Upgraded. d/strace-5.0-x86_64-1.txz: Upgraded. k/kernel-source-4.19.30-noarch-1.txz: Upgraded. n/gnupg2-2.2.14-x86_64-1.txz: Upgraded. n/libgpg-error-1.36-x86_64-1.txz: Upgraded. n/samba-4.10.0-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Mon Mar 18 22:53:51 UTC 2019 ap/cups-filters-1.22.2-x86_64-1.txz: Upgraded. kde/calligra-2.9.11-x86_64-28.txz: Rebuilt. Patched to fix Calligra Plan crash. Thanks to Olek. l/adwaita-icon-theme-3.32.0-noarch-1.txz: Upgraded. l/giflib-5.1.8-x86_64-1.txz: Upgraded. l/libssh2-1.8.1-x86_64-1.txz: Upgraded. Fixed several security issues. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3855 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3856 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3857 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3858 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3859 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3860 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3861 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3862 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3863 (* Security fix *) x/scim-1.4.18-x86_64-1.txz: Upgraded. xap/mozilla-firefox-60.6.0esr-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://www.mozilla.org/en-US/firefox/60.6.0/releasenotes/ +--------------------------+ Sun Mar 17 20:40:15 UTC 2019 Saint Patrick was a gentleman Who through strategy and stealth Drove all the snakes from Ireland Here's toasting to his health - But not too many toastings Lest you lose yourself, and then, Forget the good Saint Patrick And see all those snakes again. a/eudev-3.2.7-x86_64-3.txz: Rebuilt. Added tqmx86_wdt to watchdog.conf. Thanks to Robby Workman. d/vala-0.44.1-x86_64-1.txz: Upgraded. kde/ktorrent-4.3.1-x86_64-4.txz: Rebuilt. Embed a copy of the GeoIP database since the download link no longer works. l/glibmm-2.58.1-x86_64-1.txz: Upgraded. l/mozilla-nss-3.43-x86_64-1.txz: Upgraded. x/imake-1.0.8-x86_64-1.txz: Upgraded. x/libXdmcp-1.1.3-x86_64-1.txz: Upgraded. x/libXext-1.3.4-x86_64-1.txz: Upgraded. x/libXft-2.3.3-x86_64-1.txz: Upgraded. x/libXmu-1.1.3-x86_64-1.txz: Upgraded. x/libXrandr-1.5.2-x86_64-1.txz: Upgraded. x/libXvMC-1.0.11-x86_64-1.txz: Upgraded. x/libXxf86dga-1.1.5-x86_64-1.txz: Upgraded. x/libxkbfile-1.1.0-x86_64-1.txz: Upgraded. x/makedepend-1.0.6-x86_64-1.txz: Upgraded. x/x11perf-1.6.1-x86_64-1.txz: Upgraded. x/xf86-video-intel-20190301_6afed33b-x86_64-1.txz: Upgraded. x/xf86-video-savage-20190128_8579718-x86_64-1.txz: Upgraded. x/xf86-video-sis-20181217_22d3c79-x86_64-1.txz: Upgraded. x/xtrans-1.4.0-noarch-1.txz: Upgraded. +--------------------------+ Sat Mar 16 19:00:57 UTC 2019 l/freetype-2.10.0-x86_64-2.txz: Rebuilt. Removed unneeded freetype.this.is.not.a.windows.system.diff.gz patch. Rebased freetype.subpixel.rendering.diff.gz patch. Thanks to Daedra. l/imagemagick-6.9.10_34-x86_64-1.txz: Upgraded. n/NetworkManager-1.16.0-x86_64-1.txz: Upgraded. +--------------------------+ Fri Mar 15 21:21:57 UTC 2019 l/freetype-2.10.0-x86_64-1.txz: Upgraded. n/postfix-3.4.4-x86_64-1.txz: Upgraded. +--------------------------+ Thu Mar 14 21:22:54 UTC 2019 ap/cgmanager-0.42-x86_64-1.txz: Upgraded. d/cmake-3.14.0-x86_64-1.txz: Upgraded. l/gexiv2-0.12.0-x86_64-1.txz: Upgraded. l/gsettings-desktop-schemas-3.32.0-x86_64-2.txz: Rebuilt. Don't override the system font defaults (especially with fonts that we don't include). Thanks to Markus Wiesner. l/libyaml-0.2.2-x86_64-1.txz: Upgraded. l/libzip-1.5.2-x86_64-1.txz: Upgraded. +--------------------------+ Thu Mar 14 03:41:42 UTC 2019 a/kernel-firmware-20190313_efd2c1c-noarch-1.txz: Upgraded. a/kernel-generic-4.19.29-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.29-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.29-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.29-x86-1.txz: Upgraded. k/kernel-source-4.19.29-noarch-1.txz: Upgraded. n/crda-3.18-x86_64-9.txz: Rebuilt. Upgraded to wireless-regdb-2019.03.01. n/ethtool-5.0-x86_64-1.txz: Upgraded. x/mesa-19.0.0-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Wed Mar 13 17:41:58 UTC 2019 d/ruby-2.6.2-x86_64-1.txz: Upgraded. l/glib-networking-2.60.0.1-x86_64-1.txz: Upgraded. l/gtk+3-3.24.7-x86_64-1.txz: Upgraded. l/jasper-2.0.16-x86_64-1.txz: Upgraded. n/mutt-1.11.4-x86_64-1.txz: Upgraded. xap/gucharmap-12.0.1-x86_64-1.txz: Upgraded. +--------------------------+ Tue Mar 12 20:03:46 UTC 2019 a/kernel-firmware-20190312_b0d9583-noarch-1.txz: Upgraded. l/at-spi2-atk-2.32.0-x86_64-1.txz: Upgraded. l/at-spi2-core-2.32.0-x86_64-1.txz: Upgraded. l/atk-2.32.0-x86_64-1.txz: Upgraded. l/dconf-0.32.0-x86_64-1.txz: Upgraded. l/dconf-editor-3.32.0-x86_64-1.txz: Upgraded. l/glib-networking-2.60.0-x86_64-1.txz: Upgraded. l/gsettings-desktop-schemas-3.32.0-x86_64-1.txz: Upgraded. l/gvfs-1.40.0-x86_64-1.txz: Upgraded. l/libsoup-2.66.0-x86_64-1.txz: Upgraded. l/vte-0.56.0-x86_64-1.txz: Upgraded. n/mobile-broadband-provider-info-20190116-x86_64-1.txz: Upgraded. n/samba-4.9.5-x86_64-1.txz: Upgraded. x/liberation-fonts-ttf-2.00.5-noarch-1.txz: Upgraded. xap/gucharmap-12.0.0-x86_64-1.txz: Upgraded. +--------------------------+ Mon Mar 11 19:03:50 UTC 2019 a/coreutils-8.31-x86_64-1.txz: Upgraded. d/meson-0.50.0-x86_64-1.txz: Upgraded. l/giflib-5.1.7-x86_64-1.txz: Upgraded. l/python-certifi-2019.3.9-x86_64-1.txz: Upgraded. n/postfix-3.4.3-x86_64-1.txz: Upgraded. x/libFS-1.0.8-x86_64-1.txz: Upgraded. x/libXcomposite-0.4.5-x86_64-1.txz: Upgraded. x/libXcursor-1.2.0-x86_64-1.txz: Upgraded. x/libXdamage-1.1.5-x86_64-1.txz: Upgraded. +--------------------------+ Sun Mar 10 21:02:41 UTC 2019 a/kernel-generic-4.19.28-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.28-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.28-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.28-x86-1.txz: Upgraded. d/vala-0.44.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. k/kernel-source-4.19.28-noarch-1.txz: Upgraded. l/gobject-introspection-1.60.0-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_33-x86_64-1.txz: Upgraded. l/pygobject3-3.32.0-x86_64-1.txz: Upgraded. x/xfd-1.1.3-x86_64-1.txz: Upgraded. x/xprop-1.2.4-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Sat Mar 9 21:33:33 UTC 2019 a/e2fsprogs-1.45.0-x86_64-2.txz: Rebuilt. Removed /etc/cron.d/e2scrub_all file (systemd related junk). ap/vim-8.1.1002-x86_64-1.txz: Upgraded. xap/vim-gvim-8.1.1002-x86_64-1.txz: Upgraded. +--------------------------+ Fri Mar 8 18:28:40 UTC 2019 a/bash-5.0.002-x86_64-3.txz: Rebuilt. Fix applying patches. Thanks to saahriktu. a/e2fsprogs-1.45.0-x86_64-1.txz: Upgraded. n/ca-certificates-20190308-noarch-1.txz: Upgraded. n/nghttp2-1.37.0-x86_64-1.txz: Upgraded. n/ntp-4.2.8p13-x86_64-1.txz: Upgraded. This release fixes a bug that allows an attacker with access to an explicitly trusted source to send a crafted malicious mode 6 (ntpq) packet that can trigger a NULL pointer dereference, crashing ntpd. It also provides 17 other bugfixes and 1 other improvement. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8936 (* Security fix *) n/postfix-3.4.1-x86_64-2.txz: Rebuilt. n/s-nail-14.9.13-x86_64-1.txz: Upgraded. +--------------------------+ Thu Mar 7 21:26:58 UTC 2019 a/e2fsprogs-1.44.6-x86_64-1.txz: Upgraded. ap/man-pages-5.00-noarch-1.txz: Upgraded. ap/most-5.1.0-x86_64-1.txz: Upgraded. n/php-7.2.16-x86_64-1.txz: Upgraded. x/xf86-video-amdgpu-19.0.0-x86_64-1.txz: Upgraded. x/xf86-video-ati-19.0.0-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-60.5.3-x86_64-1.txz: Upgraded. xap/pavucontrol-4.0-x86_64-1.txz: Upgraded. +--------------------------+ Tue Mar 5 22:54:06 UTC 2019 a/hwdata-0.321-noarch-1.txz: Upgraded. a/kernel-generic-4.19.27-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.27-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.27-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.27-x86-1.txz: Upgraded. k/kernel-source-4.19.27-noarch-1.txz: Upgraded. l/M2Crypto-0.32.0-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_32-x86_64-1.txz: Upgraded. n/dovecot-2.3.5-x86_64-1.txz: Upgraded. x/xdm-1.1.11-x86_64-9.txz: Rebuilt. Reverted to xdm-1.1.11, as the new release after 7 years has some issues. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue Mar 5 00:17:16 UTC 2019 d/gcc-8.3.0-x86_64-2.txz: Rebuilt. Reverted backported asm inline patches that broke "asm volatile". Thanks to nobodino. d/gcc-brig-8.3.0-x86_64-2.txz: Rebuilt. d/gcc-g++-8.3.0-x86_64-2.txz: Rebuilt. d/gcc-gfortran-8.3.0-x86_64-2.txz: Rebuilt. d/gcc-gnat-8.3.0-x86_64-2.txz: Rebuilt. d/gcc-go-8.3.0-x86_64-2.txz: Rebuilt. d/gcc-objc-8.3.0-x86_64-2.txz: Rebuilt. l/at-spi2-atk-2.30.1-x86_64-1.txz: Upgraded. l/at-spi2-core-2.30.1-x86_64-1.txz: Upgraded. l/gc-8.0.4-x86_64-1.txz: Upgraded. l/glib2-2.60.0-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_31-x86_64-1.txz: Upgraded. n/postfix-3.4.0-x86_64-2.txz: Rebuilt. Prevent the install script from making noise. x/xinit-1.4.1-x86_64-1.txz: Upgraded. x/xlogo-1.0.5-x86_64-1.txz: Upgraded. x/xmore-1.0.3-x86_64-1.txz: Upgraded. extra/fltk/fltk-1.3.5-x86_64-1.txz: Upgraded. +--------------------------+ Sun Mar 3 22:03:39 UTC 2019 a/mkinitrd-1.4.11-x86_64-12.txz: Rebuilt. Updated to busybox-1.30.1. mkinitrd: allow a colon-delimited list of kernel versions with -k mkinitrd_command_generator.sh: allow a colon-delimited list of kernel versions with -k setup.01.mkinitrd: simplify script by using -k with a version list ap/pamixer-1.4-x86_64-1.txz: Upgraded. d/python-2.7.16-x86_64-1.txz: Upgraded. Updated to the latest 2.7.x release, which fixes a few security issues. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1752 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14647 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5010 (* Security fix *) d/vala-0.42.6-x86_64-1.txz: Upgraded. l/gegl-0.4.14-x86_64-1.txz: Upgraded. l/libsecret-0.18.8-x86_64-1.txz: Upgraded. l/xapian-core-1.4.11-x86_64-1.txz: Upgraded. x/mkfontscale-1.2.0-x86_64-1.txz: Upgraded. x/xditview-1.0.5-x86_64-1.txz: Upgraded. x/xdm-1.1.12-x86_64-1.txz: Upgraded. +--------------------------+ Fri Mar 1 23:44:12 UTC 2019 a/eudev-3.2.7-x86_64-2.txz: Rebuilt. Don't require kvm group. +--------------------------+ Fri Mar 1 20:46:01 UTC 2019 a/eudev-3.2.7-x86_64-1.txz: Upgraded. a/infozip-6.0-x86_64-5.txz: Rebuilt. Added some patches that should fix extracting archives with non-latin characters in the filenames. Thanks to saahriktu. This update also fixes various security issues in zip and unzip. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8139 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8140 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8141 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9844 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18384 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000035 (* Security fix *) a/sysvinit-2.94-x86_64-1.txz: Upgraded. ap/usbmuxd-20161231_a236e55-x86_64-1.txz: Upgraded. Switch to git since the latest release no longer works. l/gdk-pixbuf2-2.38.1-x86_64-1.txz: Upgraded. l/libaio-0.3.112-x86_64-1.txz: Upgraded. l/python-ply-3.11-x86_64-1.txz: Added. This is required by bind-9.12.4. n/bind-9.12.4-x86_64-1.txz: Upgraded. n/libqmi-1.22.2-x86_64-1.txz: Upgraded. x/libvdpau-1.2-x86_64-1.txz: Upgraded. +--------------------------+ Thu Feb 28 23:05:08 UTC 2019 d/Cython-0.29.6-x86_64-1.txz: Upgraded. d/rust-1.33.0-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_29-x86_64-1.txz: Upgraded. l/qjson-0.9.0-x86_64-1.txz: Upgraded. n/postfix-3.4.0-x86_64-1.txz: Upgraded. +--------------------------+ Wed Feb 27 23:21:15 UTC 2019 a/aaa_terminfo-6.1_20190223-x86_64-1.txz: Upgraded. a/kernel-firmware-20190221_9ee52be-noarch-1.txz: Upgraded. a/kernel-generic-4.19.26-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.26-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.26-x86_64-1.txz: Upgraded. ap/vim-8.1.0984-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.26-x86-1.txz: Upgraded. k/kernel-source-4.19.26-noarch-1.txz: Upgraded. l/ncurses-6.1_20190223-x86_64-1.txz: Upgraded. n/curl-7.64.0-x86_64-3.txz: Rebuilt. Applied upstream patch to fix log spam: [PATCH] multi: remove verbose "Expire in" ... messages Thanks to compassnet. n/postfix-3.3.3-x86_64-1.txz: Upgraded. xap/vim-gvim-8.1.0984-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Wed Feb 27 03:09:41 UTC 2019 a/btrfs-progs-4.20.2-x86_64-1.txz: Upgraded. a/openssl-solibs-1.1.1b-x86_64-1.txz: Upgraded. ap/ddrescue-1.24-x86_64-1.txz: Upgraded. ap/sqlite-3.27.2-x86_64-1.txz: Upgraded. l/libssh-0.8.7-x86_64-1.txz: Upgraded. l/talloc-2.1.16-x86_64-1.txz: Upgraded. l/tdb-1.3.18-x86_64-1.txz: Upgraded. l/tevent-0.9.39-x86_64-1.txz: Upgraded. n/ca-certificates-20181210-noarch-2.txz: Rebuilt. Use "c_rehash" rather than "openssl rehash" for compatibility with all versions of OpenSSL. n/epic5-2.1.1-x86_64-1.txz: Upgraded. n/openssl-1.1.1b-x86_64-1.txz: Upgraded. x/xorg-server-1.20.4-x86_64-1.txz: Upgraded. x/xorg-server-xephyr-1.20.4-x86_64-1.txz: Upgraded. x/xorg-server-xnest-1.20.4-x86_64-1.txz: Upgraded. x/xorg-server-xvfb-1.20.4-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-60.5.2-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://www.mozilla.org/en-US/thunderbird/60.5.2/releasenotes/ +--------------------------+ Sun Feb 24 21:32:51 UTC 2019 a/xfsprogs-4.20.0-x86_64-1.txz: Upgraded. d/git-2.21.0-x86_64-1.txz: Upgraded. l/pcre-8.43-x86_64-1.txz: Upgraded. n/getmail-5.13-x86_64-1.txz: Upgraded. extra/brltty/brltty-6.0-x86_64-1.txz: Upgraded. +--------------------------+ Sat Feb 23 20:41:38 UTC 2019 a/kernel-firmware-20190221_54b0a74-noarch-1.txz: Upgraded. a/kernel-generic-4.19.25-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.25-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.25-x86_64-1.txz: Upgraded. a/tar-1.32-x86_64-1.txz: Upgraded. d/gcc-8.3.0-x86_64-1.txz: Upgraded. d/gcc-brig-8.3.0-x86_64-1.txz: Upgraded. d/gcc-g++-8.3.0-x86_64-1.txz: Upgraded. d/gcc-gfortran-8.3.0-x86_64-1.txz: Upgraded. d/gcc-gnat-8.3.0-x86_64-1.txz: Upgraded. d/gcc-go-8.3.0-x86_64-1.txz: Upgraded. d/gcc-objc-8.3.0-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.25-x86-1.txz: Upgraded. d/libtool-2.4.6-x86_64-10.txz: Rebuilt. Recompiled to update embedded GCC version number. d/parallel-20190222-noarch-1.txz: Upgraded. k/kernel-source-4.19.25-noarch-1.txz: Upgraded. n/NetworkManager-1.14.6-x86_64-1.txz: Upgraded. x/pyxdg-0.26-x86_64-1.txz: Added. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Sat Feb 23 03:33:52 UTC 2019 a/file-5.36-x86_64-1.txz: Upgraded. ap/mariadb-10.3.13-x86_64-1.txz: Upgraded. This update fixes bugs and security issues. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2510 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2537 (* Security fix *) d/p2c-2.01-x86_64-1.txz: Upgraded. d/python-pip-19.0.3-x86_64-1.txz: Upgraded. l/librsvg-2.44.13-x86_64-2.txz: Rebuilt. Recompiled with --enable-vala=yes. n/bind-9.12.3_P4-x86_64-1.txz: Upgraded. xap/mozilla-firefox-60.5.2esr-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://www.mozilla.org/en-US/firefox/60.5.2/releasenotes/ +--------------------------+ Wed Feb 20 23:59:17 UTC 2019 a/kernel-generic-4.19.24-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.24-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.24-x86_64-1.txz: Upgraded. a/kmod-26-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. a/util-linux-2.33.1-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. ap/hplip-3.19.1-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. ap/linuxdoc-tools-0.9.73-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. ap/lxc-2.0.9_d3a03247-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. ap/rpm-4.14.2.1-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. d/Cython-0.29.5-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. d/distcc-3.3.2-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. d/gdb-8.2.1-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. d/kernel-headers-4.19.24-x86-1.txz: Upgraded. d/llvm-7.0.1-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. d/meson-0.49.2-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. d/python-pip-19.0.2-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. d/python-setuptools-40.8.0-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. d/python3-3.7.2-x86_64-1.txz: Upgraded. Shared library .so-version bump. k/kernel-source-4.19.24-noarch-1.txz: Upgraded. kde/pykde4-4.14.3-x86_64-8.txz: Rebuilt. Recompiled against python3-3.7.2. l/Mako-1.0.7-x86_64-3.txz: Rebuilt. Recompiled against python3-3.7.2. l/PyQt-4.12.1-x86_64-3.txz: Rebuilt. Recompiled against python3-3.7.2. l/QScintilla-2.10.8-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/alsa-lib-1.1.8-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/dbus-python-1.2.8-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/gexiv2-0.10.10-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/libcaca-0.99.beta19-x86_64-4.txz: Rebuilt. Recompiled against python3-3.7.2. l/libcap-ng-0.7.9-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/libjpeg-turbo-2.0.2-x86_64-1.txz: Upgraded. l/libproxy-0.4.15-x86_64-3.txz: Rebuilt. Recompiled against python3-3.7.2. l/libwebp-1.0.2-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/libxml2-2.9.9-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/newt-0.52.20-x86_64-4.txz: Rebuilt. Recompiled against python3-3.7.2. l/pycairo-1.18.0-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/pycups-1.9.74-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/pycurl-7.43.0.2-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/pygobject-2.28.7-x86_64-3.txz: Rebuilt. Recompiled against python3-3.7.2. l/pygobject3-3.30.4-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/pyparsing-2.3.1-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/python-appdirs-1.4.3-x86_64-3.txz: Rebuilt. Recompiled against python3-3.7.2. l/python-certifi-2018.11.29-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/python-chardet-3.0.4-x86_64-3.txz: Rebuilt. Recompiled against python3-3.7.2. l/python-docutils-0.14-x86_64-3.txz: Rebuilt. Recompiled against python3-3.7.2. l/python-idna-2.8-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/python-notify2-0.3.1-x86_64-3.txz: Rebuilt. Recompiled against python3-3.7.2. l/python-packaging-19.0-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/python-pillow-5.4.1-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/python-requests-2.21.0-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/python-sane-2.8.3-x86_64-3.txz: Rebuilt. Recompiled against python3-3.7.2. l/python-six-1.12.0-x86_64-3.txz: Rebuilt. Recompiled against python3-3.7.2. l/python-urllib3-1.24.1-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/sip-4.19.8-x86_64-3.txz: Rebuilt. Recompiled against python3-3.7.2. l/system-config-printer-1.5.11-x86_64-4.txz: Rebuilt. Recompiled against python3-3.7.2. l/talloc-2.1.15-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/tdb-1.3.17-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/tevent-0.9.38-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/urwid-1.0.3-x86_64-4.txz: Rebuilt. Recompiled against python3-3.7.2. n/gpgme-1.12.0-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. n/obexftp-0.24.2-x86_64-4.txz: Rebuilt. Recompiled against python3-3.7.2. n/openvpn-2.4.7-x86_64-1.txz: Upgraded. n/pssh-2.3.1-x86_64-4.txz: Rebuilt. Recompiled against python3-3.7.2. x/libfontenc-1.1.4-x86_64-1.txz: Upgraded. x/xcalc-1.0.7-x86_64-1.txz: Upgraded. x/xcb-proto-1.13-x86_64-3.txz: Rebuilt. Recompiled against python3-3.7.2. x/xclock-1.0.8-x86_64-1.txz: Upgraded. x/xev-1.2.3-x86_64-1.txz: Upgraded. x/xfsinfo-1.0.6-x86_64-1.txz: Upgraded. x/xhost-1.0.8-x86_64-1.txz: Upgraded. x/xlsatoms-1.1.3-x86_64-1.txz: Upgraded. x/xmodmap-1.0.10-x86_64-1.txz: Upgraded. x/xrdb-1.2.0-x86_64-1.txz: Upgraded. x/xstdcmap-1.0.4-x86_64-1.txz: Upgraded. x/xvinfo-1.1.4-x86_64-1.txz: Upgraded. xap/blueman-2.0.8-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. xap/hexchat-2.14.2-x86_64-3.txz: Rebuilt. Recompiled against python3-3.7.2. extra/pure-alsa-system/alsa-lib-1.1.8-x86_64-2_alsa.txz: Rebuilt. Recompiled against python3-3.7.2. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Mon Feb 18 23:59:28 UTC 2019 l/imagemagick-6.9.10_28-x86_64-1.txz: Upgraded. x/mesa-18.3.4-x86_64-1.txz: Upgraded. +--------------------------+ Sun Feb 17 23:44:53 UTC 2019 ap/cups-filters-1.22.1-x86_64-1.txz: Upgraded. y/bsd-games-2.17-x86_64-1.txz: Upgraded. +--------------------------+ Sun Feb 17 01:45:20 UTC 2019 a/glibc-solibs-2.29-x86_64-3.txz: Rebuilt. ap/texinfo-6.6-x86_64-1.txz: Upgraded. l/elfutils-0.176-x86_64-1.txz: Upgraded. l/glibc-2.29-x86_64-3.txz: Rebuilt. l/glibc-i18n-2.29-x86_64-3.txz: Rebuilt. Go back to using the glibc.locale.no-archive.diff patch rather than the new built-in no-archive locale target. Avoiding hardlinks is not worth 700MB of useless bloat. Thanks to baldzhang. l/glibc-profile-2.29-x86_64-3.txz: Rebuilt. l/librsvg-2.44.13-x86_64-1.txz: Upgraded. x/xf86-video-chips-1.4.0-x86_64-1.txz: Upgraded. x/xf86-video-tdfx-1.5.0-x86_64-1.txz: Upgraded. +--------------------------+ Fri Feb 15 21:02:33 UTC 2019 a/kernel-firmware-20190213_710963f-noarch-1.txz: Upgraded. a/kernel-generic-4.19.23-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.23-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.23-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.23-x86-1.txz: Upgraded. k/kernel-source-4.19.23-noarch-1.txz: Upgraded. x/xcursor-themes-1.0.6-noarch-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Feb 15 01:22:13 UTC 2019 extra/pure-alsa-system/fluidsynth-1.1.11-x86_64-1_alsa.txz: Upgraded. +--------------------------+ Thu Feb 14 22:45:37 UTC 2019 l/fluidsynth-1.1.11-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-60.5.1-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/thunderbird/60.5.1/releasenotes/ https://www.mozilla.org/security/known-vulnerabilities/thunderbird.html https://www.mozilla.org/en-US/security/advisories/mfsa2019-06/ https://www.mozilla.org/en-US/security/advisories/mfsa2019-06/#CVE-2018-18356 https://www.mozilla.org/en-US/security/advisories/mfsa2019-06/#CVE-2019-5785 https://www.mozilla.org/en-US/security/advisories/mfsa2019-06/#CVE-2018-18335 https://www.mozilla.org/en-US/security/advisories/mfsa2019-06/#CVE-2018-18509 (* Security fix *) +--------------------------+ Wed Feb 13 23:01:59 UTC 2019 l/giflib-5.1.6-x86_64-1.txz: Upgraded. n/getmail-5.11-x86_64-1.txz: Upgraded. x/xterm-344-x86_64-1.txz: Upgraded. xap/mozilla-firefox-60.5.1esr-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html https://www.mozilla.org/en-US/security/advisories/mfsa2019-05/ https://www.mozilla.org/en-US/security/advisories/mfsa2019-05/#CVE-2018-18356 https://www.mozilla.org/en-US/security/advisories/mfsa2019-05/#CVE-2019-5785 https://www.mozilla.org/en-US/security/advisories/mfsa2019-05/#CVE-2018-18335 (* Security fix *) +--------------------------+ Wed Feb 13 00:22:29 UTC 2019 a/kernel-firmware-20190212_28f5f7d-noarch-1.txz: Upgraded. a/kernel-generic-4.19.21-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.21-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.21-x86_64-1.txz: Upgraded. ap/lxc-2.0.9_d3a03247-x86_64-1.txz: Upgraded. This update fixes a security issue where a malicious privileged container could overwrite the host binary and thus gain root-level code execution on the host. As the LXC project considers privileged containers to be unsafe no CVE has been assigned for this issue for LXC. To prevent this attack, LXC has been patched to create a temporary copy of the calling binary itself when it starts or attaches to containers. To do this LXC creates an anonymous, in-memory file using the memfd_create() system call and copies itself into the temporary in-memory file, which is then sealed to prevent further modifications. LXC then executes this sealed, in-memory file instead of the original on-disk binary. For more information, see: https://seclists.org/oss-sec/2019/q1/119 (* Security fix *) d/kernel-headers-4.19.21-x86-1.txz: Upgraded. k/kernel-source-4.19.21-noarch-1.txz: Upgraded. l/libbluray-1.1.0-x86_64-1.txz: Upgraded. l/libcap-2.26-x86_64-2.txz: Rebuilt. Don't ship static library. l/xapian-core-1.4.10-x86_64-1.txz: Upgraded. n/gnupg2-2.2.13-x86_64-1.txz: Upgraded. n/irssi-1.2.0-x86_64-1.txz: Upgraded. n/libassuan-2.5.3-x86_64-1.txz: Upgraded. x/bitmap-1.0.9-x86_64-1.txz: Upgraded. x/libXau-1.0.9-x86_64-1.txz: Upgraded. x/pixman-0.38.0-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Sun Feb 10 20:55:14 UTC 2019 d/python-pip-19.0.2-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_27-x86_64-1.txz: Upgraded. x/xf86-video-apm-1.3.0-x86_64-1.txz: Upgraded. x/xf86-video-s3virge-1.11.0-x86_64-1.txz: Upgraded. +--------------------------+ Sat Feb 9 22:46:17 UTC 2019 a/kmod-26-x86_64-1.txz: Upgraded. d/Cython-0.29.5-x86_64-1.txz: Upgraded. l/libidn2-2.1.1a-x86_64-1.txz: Upgraded. +--------------------------+ Fri Feb 8 22:04:46 UTC 2019 a/aaa_elflibs-15.0-x86_64-5.txz: Rebuilt. Upgraded: libglib-2.0.so.0.5800.3, libgmodule-2.0.so.0.5800.3, libgobject-2.0.so.0.5800.3, libgthread-2.0.so.0.5800.3, libidn2.so.0.3.5, libmpfr.so.6.0.2, libtdb.so.1.3.17 Removed: libidn2.so.4.0.0 ap/sqlite-3.27.1-x86_64-1.txz: Upgraded. l/libdvdread-6.0.1-x86_64-1.txz: Upgraded. l/libidn2-2.1.1-x86_64-1.txz: Upgraded. Shared library .so-version bump. This reverted back to .so.0 as the previous bump was apparently a mistake. l/libpsl-0.20.2-x86_64-3.txz: Rebuilt. Recompiled against libidn2-2.1.1. n/bind-9.12.3_P1-x86_64-3.txz: Rebuilt. Recompiled against libidn2-2.1.1. n/curl-7.64.0-x86_64-2.txz: Rebuilt. Recompiled against libidn2-2.1.1. n/dhcpcd-7.1.1-x86_64-1.txz: Upgraded. n/dnsmasq-2.80-x86_64-3.txz: Rebuilt. Recompiled against libidn2-2.1.1. n/getmail-5.9-x86_64-1.txz: Upgraded. n/gnutls-3.6.6-x86_64-2.txz: Rebuilt. Recompiled against libidn2-2.1.1. n/iputils-20180629-x86_64-3.txz: Rebuilt. Recompiled against libidn2-2.1.1. n/lftp-4.8.4-x86_64-3.txz: Rebuilt. Recompiled against libidn2-2.1.1. n/s-nail-14.9.11-x86_64-3.txz: Rebuilt. Recompiled against libidn2-2.1.1. n/wget-1.20.1-x86_64-3.txz: Rebuilt. Recompiled against libidn2-2.1.1. n/whois-5.4.1-x86_64-2.txz: Rebuilt. Recompiled against libidn2-2.1.1. x/ttf-tlwg-0.7.1-noarch-1.txz: Upgraded. xfce/xfwm4-4.12.5-x86_64-1.txz: Upgraded. +--------------------------+ Thu Feb 7 22:28:19 UTC 2019 n/php-7.2.15-x86_64-1.txz: Upgraded. xap/network-manager-applet-1.8.20-x86_64-1.txz: Upgraded. extra/pure-alsa-system/ffmpeg-3.4.5-x86_64-2_alsa.txz: Rebuilt. Recompiled against libvpx-1.8.0. Reenabled libsmbclient support. extra/pure-alsa-system/gst-plugins-good-1.14.4-x86_64-2_alsa.txz: Rebuilt. Recompiled against libvpx-1.8.0. extra/pure-alsa-system/xine-lib-1.2.9-x86_64-4_alsa.txz: Rebuilt. Recompiled against libvpx-1.8.0. pasture/php-5.6.40-x86_64-1.txz: Upgraded. Several security bugs have been fixed in this release: GD: Fixed bug #77269 (efree() on uninitialized Heap data in imagescale leads to use-after-free). Fixed bug #77270 (imagecolormatch Out Of Bounds Write on Heap). Mbstring: Fixed bug #77370 (Buffer overflow on mb regex functions - fetch_token). Fixed bug #77371 (heap buffer overflow in mb regex functions - compile_string_node). Fixed bug #77381 (heap buffer overflow in multibyte match_at). Fixed bug #77382 (heap buffer overflow due to incorrect length in expand_case_fold_string). Fixed bug #77385 (buffer overflow in fetch_token). Fixed bug #77394 (Buffer overflow in multibyte case folding - unicode). Fixed bug #77418 (Heap overflow in utf32be_mbc_to_code). Phar: Fixed bug #77247 (heap buffer overflow in phar_detect_phar_fname_ext). Xmlrpc: Fixed bug #77242 (heap out of bounds read in xmlrpc_decode()). Fixed bug #77380 (Global out of bounds read in xmlrpc base64 code). For more information, see: https://php.net/ChangeLog-5.php#5.6.40 (* Security fix *) +--------------------------+ Wed Feb 6 22:44:32 UTC 2019 a/hwdata-0.320-noarch-1.txz: Upgraded. a/kernel-generic-4.19.20-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.20-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.20-x86_64-1.txz: Upgraded. a/mcelog-162-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.20-x86-1.txz: Upgraded. d/opencl-headers-2.2-noarch-2.txz: Rebuilt. Don't trigger "#pragma message" in cl_version.h when falling back on a default version of OpenCL to target. Applications such as ffmpeg detect this as an error and fail to compile. k/kernel-source-4.19.20-noarch-1.txz: Upgraded. l/ffmpeg-3.4.5-x86_64-2.txz: Rebuilt. Recompiled against libvpx-1.8.0. Reenabled libsmbclient support. l/gst-plugins-good-1.14.4-x86_64-2.txz: Rebuilt. Recompiled against libvpx-1.8.0. l/libvpx-1.8.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. n/curl-7.64.0-x86_64-1.txz: Upgraded. This release fixes the following security issues: NTLM type-2 out-of-bounds buffer read. NTLMv2 type-3 header stack buffer overflow. SMTP end-of-response out-of-bounds read. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16890 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3822 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3823 (* Security fix *) n/samba-4.9.4-x86_64-2.txz: Rebuilt. Added time.h to libsmbclient.h to fix ffmpeg compatibility. Thanks to USUARIONUEVO. xap/xine-lib-1.2.9-x86_64-4.txz: Rebuilt. Recompiled against libvpx-1.8.0. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Wed Feb 6 00:29:25 UTC 2019 ap/linuxdoc-tools-0.9.73-x86_64-1.txz: Upgraded. Upgraded to gtk-doc-1.29. Upgraded to asciidoc-8.6.10. Upgraded to perl-XML-SAX-1.00. Thanks to Stuart Winter. d/meson-0.49.2-x86_64-1.txz: Upgraded. d/python-setuptools-40.8.0-x86_64-1.txz: Upgraded. d/slacktrack-2.19-x86_64-1.txz: Upgraded. Thanks to Stuart Winter. l/imagemagick-6.9.10_26-x86_64-1.txz: Upgraded. n/dovecot-2.3.4.1-x86_64-1.txz: Upgraded. This update addresses security issues: CVE-2019-3814: If imap/pop3/managesieve/submission client has trusted certificate with missing username field (ssl_cert_username_field), under some configurations Dovecot mistakenly trusts the username provided via authentication instead of failing. ssl_cert_username_field setting was ignored with external SMTP AUTH, because none of the MTAs (Postfix, Exim) currently send the cert_username field. This may have allowed users with trusted certificate to specify any username in the authentication. This bug didn't affect Dovecot's Submission service. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3814 (* Security fix *) +--------------------------+ Mon Feb 4 21:50:36 UTC 2019 ap/zsh-5.7.1-x86_64-1.txz: Upgraded. d/python-setuptools-40.7.3-x86_64-1.txz: Upgraded. l/babl-0.1.62-x86_64-1.txz: Upgraded. l/gtk+3-3.24.5-x86_64-1.txz: Upgraded. n/iw-5.0.1-x86_64-1.txz: Upgraded. x/xf86-input-libinput-0.28.2-x86_64-1.txz: Upgraded. +--------------------------+ Sun Feb 3 20:26:34 UTC 2019 d/bison-3.3.2-x86_64-1.txz: Upgraded. n/dovecot-2.3.4-x86_64-2.txz: Rebuilt. Patched double free when used with MariaDB 10.3.x. Thanks to Thom1b. x/xkeyboard-config-2.26-noarch-1.txz: Upgraded. extra/bittorrent/bittorrent-4.4.0-noarch-4.txz: Removed. +--------------------------+ Sat Feb 2 22:09:17 UTC 2019 ap/qpdf-8.4.0-x86_64-1.txz: Upgraded. d/Cython-0.29.4-x86_64-1.txz: Upgraded. d/binutils-2.32-x86_64-1.txz: Upgraded. Shared library .so-version bump. Is it safe to use --enable-initfini-array yet? Guess we'll find out. d/cmake-3.13.4-x86_64-1.txz: Upgraded. d/mercurial-4.9-x86_64-1.txz: Upgraded. d/oprofile-1.3.0-x86_64-2.txz: Rebuilt. Recompiled against binutils-2.32. n/iw-5.0-x86_64-1.txz: Upgraded. n/mutt-1.11.3-x86_64-1.txz: Upgraded. x/libva-utils-2.4.0-x86_64-1.txz: Upgraded. +--------------------------+ Fri Feb 1 23:13:13 UTC 2019 ap/vim-8.1.0867-x86_64-1.txz: Upgraded. d/python-setuptools-40.7.2-x86_64-1.txz: Upgraded. l/mozilla-nss-3.42.1-x86_64-1.txz: Upgraded. xap/vim-gvim-8.1.0867-x86_64-1.txz: Upgraded. +--------------------------+ Fri Feb 1 05:53:41 UTC 2019 a/glibc-solibs-2.29-x86_64-2.txz: Rebuilt. d/opencl-headers-2.2-noarch-1.txz: Upgraded. Thanks to Heinz Wiesinger. l/glibc-2.29-x86_64-2.txz: Rebuilt. l/glibc-i18n-2.29-x86_64-2.txz: Rebuilt. Reverted en_US.UTF8 date(1) format back to 24 hour. I'm pretty sure that the majority of people here in this locale will agree. l/glibc-profile-2.29-x86_64-2.txz: Rebuilt. +--------------------------+ Fri 01 Feb 2019 01:26:44 AM UTC a/glibc-solibs-2.29-x86_64-1.txz: Upgraded. a/kernel-generic-4.19.19-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.19-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.19-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.19-x86-1.txz: Upgraded. d/ninja-1.9.0-x86_64-1.txz: Upgraded. d/ruby-2.6.1-x86_64-1.txz: Upgraded. k/kernel-source-4.19.19-noarch-1.txz: Upgraded. l/glibc-2.29-x86_64-1.txz: Upgraded. l/glibc-i18n-2.29-x86_64-1.txz: Upgraded. l/glibc-profile-2.29-x86_64-1.txz: Upgraded. l/harfbuzz-2.3.1-x86_64-1.txz: Upgraded. l/libimobiledevice-20190126_d200973-x86_64-1.txz: Upgraded. Switch to git since the latest release no longer works. l/libusbmuxd-20190118_c75605d-x86_64-1.txz: Upgraded. Switch to git since the latest release no longer works. l/mpfr-4.0.2-x86_64-1.txz: Upgraded. x/mesa-18.3.3-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Wed Jan 30 23:29:59 UTC 2019 ap/hplip-3.19.1-x86_64-1.txz: Upgraded. d/icecream-1.2-x86_64-1.txz: Upgraded. d/python-setuptools-40.7.1-x86_64-1.txz: Upgraded. x/libva-2.4.0-x86_64-1.txz: Upgraded. +--------------------------+ Wed Jan 30 04:27:03 UTC 2019 d/bison-3.3.1-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_25-x86_64-1.txz: Upgraded. l/mozilla-nss-3.42-x86_64-1.txz: Upgraded. n/libgpg-error-1.35-x86_64-1.txz: Upgraded. n/whois-5.4.1-x86_64-1.txz: Upgraded. x/xf86-video-nouveau-1.0.16-x86_64-1.txz: Upgraded. xap/mozilla-firefox-60.5.0esr-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html https://www.mozilla.org/en-US/security/advisories/mfsa2019-02/ https://www.mozilla.org/en-US/security/advisories/mfsa2019-02/#CVE-2018-18500 https://www.mozilla.org/en-US/security/advisories/mfsa2019-02/#CVE-2018-18505 https://www.mozilla.org/en-US/security/advisories/mfsa2019-02/#CVE-2018-18501 (* Security fix *) xap/mozilla-thunderbird-60.5.0-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://www.mozilla.org/en-US/thunderbird/60.5.0/releasenotes/ xfce/Thunar-1.8.4-x86_64-1.txz: Upgraded. +--------------------------+ Sat Jan 26 20:44:46 UTC 2019 a/kernel-generic-4.19.18-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.18-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.18-x86_64-1.txz: Upgraded. ap/zsh-5.7-x86_64-1.txz: Upgraded. d/bison-3.3-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.18-x86-1.txz: Upgraded. k/kernel-source-4.19.18-noarch-1.txz: Upgraded. l/SDL2_ttf-2.0.15-x86_64-1.txz: Upgraded. l/iso-codes-4.2-noarch-1.txz: Upgraded. l/libcdio-paranoia-10.2+2.0.0-x86_64-1.txz: Upgraded. xfce/Thunar-1.8.3-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Sat Jan 26 04:15:08 UTC 2019 a/mkinitrd-1.4.11-x86_64-11.txz: Rebuilt. setup.01.mkinitrd: revert to the previous command line for mkinitrd_command_generator.sh (the new one fails when called from the installer). +--------------------------+ Fri Jan 25 23:32:30 UTC 2019 a/mkinitrd-1.4.11-x86_64-10.txz: Rebuilt. mkinitrd_command_generator.sh: Emit an error if the command line ends in -k without an arg (instead of triggering an infinite loop). setup.01.mkinitrd: Added some debugging to see if we can diagnose failure cases with automatic initrd generation. If your system triggers it, please report it on the LQ thread. d/meson-0.49.1-x86_64-1.txz: Upgraded. n/gnutls-3.6.6-x86_64-1.txz: Upgraded. x/xdg-utils-1.1.3-noarch-2.txz: Rebuilt. Fixed xdg-open in LXDE. Thanks to TurboBlaze. isolinux/initrd.img: Rebuilt. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Wed Jan 23 22:02:34 UTC 2019 a/bash-5.0.002-x86_64-2.txz: Rebuilt. Rebuilt with --libdir=/usr/lib${LIBDIRSUFFIX}. Thanks to RandomTroll. a/btrfs-progs-4.20.1-x86_64-1.txz: Upgraded. a/mkinitrd-1.4.11-x86_64-9.txz: Rebuilt. Automatically generate an initial ramdisk from the installer. Added 'geninitrd' script to generate an initial ramdisk for the kernel that /boot/vmlinuz-generic (and/or /boot/vmlinuz-generic-smp) points to. ap/man-db-2.8.5-x86_64-2.txz: Rebuilt. Comment out all the options in /etc/profile.d/man-db.{csh,sh} and let the user decide whether or not to choose anything. d/python-pip-19.0.1-x86_64-1.txz: Upgraded. l/mozilla-nss-3.41.1-x86_64-1.txz: Upgraded. n/dhcpcd-7.1.0-x86_64-1.txz: Upgraded. +--------------------------+ Wed Jan 23 04:39:04 UTC 2019 a/kernel-generic-4.19.17-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.17-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.17-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.17-x86-1.txz: Upgraded. d/scons-3.0.4-x86_64-1.txz: Upgraded. d/vala-0.42.5-x86_64-1.txz: Upgraded. k/kernel-source-4.19.17-noarch-1.txz: Upgraded. n/httpd-2.4.38-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. mod_session: mod_session_cookie does not respect expiry time allowing sessions to be reused. [Hank Ibell] mod_http2: fixes a DoS attack vector. By sending slow request bodies to resources not consuming them, httpd cleanup code occupies a server thread unnecessarily. This was changed to an immediate stream reset which discards all stream state and incoming data. [Stefan Eissing] mod_ssl: Fix infinite loop triggered by a client-initiated renegotiation in TLSv1.2 (or earlier) with OpenSSL 1.1.1 and later. PR 63052. [Joe Orton] For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17199 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17189 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0190 (* Security fix *) x/libdrm-2.4.97-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue Jan 22 01:38:43 UTC 2019 a/btrfs-progs-4.20-x86_64-1.txz: Upgraded. a/kernel-firmware-20190118_a8b75ca-noarch-1.txz: Upgraded. a/sysvinit-scripts-2.1-noarch-26.txz: Rebuilt. rc.S: Don't sleep for 3 seconds before mounting non-root filesystems. This should not be needed once udev reports having settled all devices. Let me know if I'm wrong. :-) d/parallel-20190122-noarch-1.txz: Upgraded. l/glib2-2.58.3-x86_64-1.txz: Upgraded. l/gtk+3-3.24.4-x86_64-1.txz: Upgraded. l/librsvg-2.44.12-x86_64-1.txz: Upgraded. l/python-packaging-19.0-x86_64-1.txz: Upgraded. n/p11-kit-0.23.15-x86_64-1.txz: Upgraded. x/libinput-1.12.6-x86_64-1.txz: Upgraded. xfce/exo-0.12.4-x86_64-1.txz: Upgraded. +--------------------------+ Sat Jan 19 19:16:17 UTC 2019 ap/cups-filters-1.22.0-x86_64-1.txz: Upgraded. d/Cython-0.29.3-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_24-x86_64-1.txz: Upgraded. l/libwebp-1.0.2-x86_64-1.txz: Upgraded. n/ModemManager-1.10.0-x86_64-1.txz: Upgraded. +--------------------------+ Sat Jan 19 00:11:43 UTC 2019 a/bash-5.0.002-x86_64-1.txz: Upgraded. d/rust-1.32.0-x86_64-1.txz: Upgraded. l/gcr-3.28.1-x86_64-1.txz: Upgraded. n/nghttp2-1.36.0-x86_64-1.txz: Upgraded. +--------------------------+ Fri Jan 18 04:39:25 UTC 2019 n/links-2.18-x86_64-1.txz: Upgraded. x/mesa-18.3.2-x86_64-1.txz: Upgraded. +--------------------------+ Thu Jan 17 04:52:06 UTC 2019 a/kernel-generic-4.19.16-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.16-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.16-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.16-x86-1.txz: Upgraded. k/kernel-source-4.19.16-noarch-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Wed Jan 16 20:18:17 UTC 2019 l/pyparsing-2.3.1-x86_64-1.txz: Upgraded. l/talloc-2.1.15-x86_64-1.txz: Upgraded. l/tdb-1.3.17-x86_64-1.txz: Upgraded. l/tevent-0.9.38-x86_64-1.txz: Upgraded. n/libgpg-error-1.34-x86_64-1.txz: Upgraded. +--------------------------+ Tue Jan 15 23:09:09 UTC 2019 d/ccache-3.6-x86_64-1.txz: Upgraded. d/cmake-3.13.3-x86_64-1.txz: Upgraded. +--------------------------+ Mon Jan 14 21:33:56 UTC 2019 a/aaa_terminfo-6.1_20190112-x86_64-1.txz: Upgraded. a/kernel-firmware-20190114_bc65650-noarch-1.txz: Upgraded. l/gtk+3-3.24.3-x86_64-1.txz: Upgraded. l/libunwind-1.3.1-x86_64-1.txz: Upgraded. l/ncurses-6.1_20190112-x86_64-1.txz: Upgraded. x/xterm-343-x86_64-1.txz: Upgraded. xap/blueman-2.0.8-x86_64-1.txz: Upgraded. +--------------------------+ Mon Jan 14 04:30:43 UTC 2019 a/kernel-generic-4.19.15-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.15-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.15-x86_64-1.txz: Upgraded. a/lzip-1.21-x86_64-1.txz: Upgraded. ap/sudo-1.8.27-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.15-x86-1.txz: Upgraded. d/python3-3.6.8-x86_64-1.txz: Upgraded. k/kernel-source-4.19.15-noarch-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Jan 11 21:15:41 UTC 2019 a/bash-5.0.000-x86_64-1.txz: Upgraded. a/glibc-zoneinfo-2018i-noarch-1.txz: Upgraded. a/lzlib-1.11-x86_64-1.txz: Upgraded. ap/vim-8.1.0727-x86_64-1.txz: Upgraded. Fixed vimrc to work with "crontab -e" again now that cron's files have been moved into /run/cron/. Thanks to Andreas Vögel. d/subversion-1.11.1-x86_64-1.txz: Upgraded. n/irssi-1.1.2-x86_64-1.txz: Upgraded. This update addresses bugs including security and stability issues: A NULL pointer dereference occurs for an "empty" nick. Certain nick names could result in out-of-bounds access when printing theme strings. Crash due to a NULL pointer dereference w hen the number of windows exceeds the available space. Use-after-free when SASL messages are received in an unexpected order. Use-after-free when a server is disconnected during netsplits. Use-after-free when hidden lines were expired from the scroll buffer. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7050 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7051 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7052 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7053 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7054 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5882 (* Security fix *) xap/vim-gvim-8.1.0727-x86_64-1.txz: Upgraded. +--------------------------+ Thu Jan 10 22:32:08 UTC 2019 ap/qpdf-8.3.0-x86_64-1.txz: Upgraded. l/argon2-20171227-x86_64-1.txz: Added. This is a new dependency for the PHP package. n/libmbim-1.18.0-x86_64-1.txz: Upgraded. n/libqmi-1.22.0-x86_64-1.txz: Upgraded. n/php-7.2.14-x86_64-1.txz: Upgraded. Use --with-password-argon2. PHP now requires the new argon2 package. +--------------------------+ Wed Jan 9 22:44:36 UTC 2019 a/kernel-generic-4.19.14-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.14-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.14-x86_64-1.txz: Upgraded. a/sysvinit-2.93-x86_64-2.txz: Rebuilt. Patched to fix version number display. a/util-linux-2.33.1-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.14-x86-1.txz: Upgraded. k/kernel-source-4.19.14-noarch-1.txz: Upgraded. l/alsa-plugins-1.1.8-x86_64-2.txz: Rebuilt. Remove symlink that breaks audio output. extra/pure-alsa-system/alsa-plugins-1.1.8-x86_64-2_alsa.txz: Rebuilt. Remove symlink that breaks audio output. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Wed Jan 9 03:21:06 UTC 2019 ap/alsa-utils-1.1.8-x86_64-1.txz: Upgraded. ap/gutenprint-5.3.1-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/alsa-lib-1.1.8-x86_64-1.txz: Upgraded. l/alsa-oss-1.1.8-x86_64-1.txz: Upgraded. l/alsa-plugins-1.1.8-x86_64-1.txz: Upgraded. extra/pure-alsa-system/alsa-lib-1.1.8-x86_64-1_alsa.txz: Upgraded. extra/pure-alsa-system/alsa-plugins-1.1.8-x86_64-1_alsa.txz: Upgraded. +--------------------------+ Tue Jan 8 21:16:29 UTC 2019 a/lvm2-2.02.177-x86_64-1.txz: Upgraded. Done beta testing newer versions of LVM2 for a while, and back to what's known to work properly. a/sysvinit-scripts-2.1-noarch-25.txz: Rebuilt. Call /etc/rc.d/rc.setterm instead of running setterm directly. a/util-linux-2.33-x86_64-3.txz: Rebuilt. Added /etc/rc.d/rc.setterm to allow editing the setterm command line. d/mercurial-4.8.2-x86_64-1.txz: Upgraded. d/scons-3.0.3-x86_64-1.txz: Upgraded. l/gtk+3-3.24.2-x86_64-2.txz: Rebuilt. Patched to fix segfaults. Thanks to bassmadrigal. n/mutt-1.11.2-x86_64-1.txz: Upgraded. n/wpa_supplicant-2.7-x86_64-3.txz: Rebuilt. Moved from /testing as the patches seem to fix the issues with WPA2-Enterprise. x/xcursorgen-1.0.7-x86_64-1.txz: Upgraded. +--------------------------+ Mon Jan 7 23:22:24 UTC 2019 a/plzip-1.8-x86_64-1.txz: Upgraded. ap/mariadb-10.3.12-x86_64-1.txz: Upgraded. l/libsodium-1.0.17-x86_64-1.txz: Upgraded. l/python-pillow-5.4.1-x86_64-1.txz: Upgraded. n/iproute2-4.20.0-x86_64-1.txz: Upgraded. x/libinput-1.12.5-x86_64-1.txz: Upgraded. +--------------------------+ Sun Jan 6 20:03:14 UTC 2019 a/ncompress-4.2.4.5-x86_64-1.txz: Upgraded. ap/man-db-2.8.5-x86_64-1.txz: Upgraded. Added /etc/profile.d/man-db.{csh,sh} to pick a MANPAGER (defaults to 'most'). ap/powertop-2.10-x86_64-1.txz: Upgraded. d/scons-3.0.2-x86_64-1.txz: Upgraded. +--------------------------+ Sat Jan 5 20:04:43 UTC 2019 a/aaa_elflibs-15.0-x86_64-4.txz: Rebuilt. Upgraded: libfuse.so.2.9.9, libidn2.so.4.0.0. Kept (for now): libidn2.so.0.3.4. ap/vim-8.1.0693-x86_64-1.txz: Upgraded. l/fuse-2.9.9-x86_64-1.txz: Upgraded. l/libidn2-2.1.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/libpsl-0.20.2-x86_64-2.txz: Rebuilt. Recompiled against libidn2-2.1.0. n/bind-9.12.3_P1-x86_64-2.txz: Rebuilt. Recompiled against libidn2-2.1.0. n/curl-7.63.0-x86_64-2.txz: Rebuilt. Recompiled against libidn2-2.1.0. n/dnsmasq-2.80-x86_64-2.txz: Rebuilt. Recompiled against libidn2-2.1.0. n/gnutls-3.6.5-x86_64-2.txz: Rebuilt. Recompiled against libidn2-2.1.0. n/iputils-s20180629-x86_64-2.txz: Rebuilt. Recompiled against libidn2-2.1.0. n/lftp-4.8.4-x86_64-2.txz: Rebuilt. Recompiled against libidn2-2.1.0. n/s-nail-14.9.11-x86_64-2.txz: Rebuilt. Recompiled against libidn2-2.1.0. n/wget-1.20.1-x86_64-2.txz: Rebuilt. Recompiled against libidn2-2.1.0. n/whois-5.4.0-x86_64-2.txz: Rebuilt. Recompiled against libidn2-2.1.0. xap/vim-gvim-8.1.0693-x86_64-1.txz: Upgraded. +--------------------------+ Fri Jan 4 21:44:44 UTC 2019 a/hwdata-0.319-noarch-1.txz: Upgraded. d/doxygen-1.8.14-x86_64-3.txz: Upgraded. Reverted (for now) to avoid segfault in doxygen-1.8.15. l/libwpg-0.3.3-x86_64-1.txz: Upgraded. l/libxml2-2.9.9-x86_64-1.txz: Upgraded. l/libxslt-1.1.33-x86_64-1.txz: Upgraded. l/python-pillow-5.4.0-x86_64-1.txz: Upgraded. x/xterm-342-x86_64-1.txz: Upgraded. testing/packages/wpa_supplicant-2.7-x86_64-3.txz: Rebuilt. Apply TLSv1 patch from Debian and make some config changes to fix WPA2-Enterprise. Once we have some testing results on this we'll consider moving it back into the main tree. Thanks to gablek. +--------------------------+ Wed Jan 2 23:26:53 UTC 2019 a/tar-1.31-x86_64-1.txz: Upgraded. a/util-linux-2.33-x86_64-2.txz: Rebuilt. fdisk: Don't include /dev/ram* devices in 'fdisk -l' output. ap/soma-3.2.1-noarch-1.txz: Upgraded. d/ccache-3.5.1-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_23-x86_64-1.txz: Upgraded. xap/gnuplot-5.2.6-x86_64-1.txz: Upgraded. xap/rdesktop-1.8.4-x86_64-1.txz: Upgraded. +--------------------------+ Tue Jan 1 21:17:24 UTC 2019 a/coreutils-8.30-x86_64-4.txz: Rebuilt. Added xterm-new to DIR_COLORS. a/ed-1.15-x86_64-1.txz: Upgraded. a/smartmontools-7.0-x86_64-1.txz: Upgraded. a/sysvinit-2.93-x86_64-1.txz: Upgraded. ap/diffutils-3.7-x86_64-1.txz: Upgraded. ap/mc-4.8.22-x86_64-1.txz: Upgraded. l/gexiv2-0.10.10-x86_64-1.txz: Upgraded. l/libgphoto2-2.5.22-x86_64-1.txz: Upgraded. l/libwpd-0.10.3-x86_64-1.txz: Upgraded. x/xterm-341-x86_64-3.txz: Rebuilt. Append new app-defaults for XTerm rather than replacing the upstream file. Use 'xterm' rather than 'xterm-new' for termName to avoid surprises, but leave the other choice commented out. Install XTerm as XTerm.new to avoid wiping out a locally modified file. Still not sure we'll be able to stick with this as a default due to Terminus possibly not being available on a remote X server. Sure looks nice though. Thanks to GazL. +--------------------------+ Mon Dec 31 21:33:54 UTC 2018 a/efibootmgr-17-x86_64-1.txz: Upgraded. a/efivar-37-x86_64-1.txz: Upgraded. d/cmake-3.13.2-x86_64-2.txz: Rebuilt. Work around build failures with recent doxygen. d/ruby-2.6.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. d/subversion-1.11.0-x86_64-2.txz: Rebuilt. Recompiled against ruby-2.6.0. kde/korundum-4.14.3-x86_64-7.txz: Rebuilt. Recompiled against ruby-2.6.0. kde/qtruby-4.14.3-x86_64-9.txz: Rebuilt. Recompiled against ruby-2.6.0. l/gobject-introspection-1.58.3-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_22-x86_64-1.txz: Upgraded. l/libssh-0.8.6-x86_64-1.txz: Upgraded. n/epic5-2.0.1-x86_64-8.txz: Rebuilt. Recompiled against ruby-2.6.0. n/tin-2.4.3-x86_64-1.txz: Upgraded. n/wireless_tools-30.pre9-x86_64-1.txz: Upgraded. x/xterm-341-x86_64-2.txz: Rebuilt. Install xterm app-defaults that resemble the Linux console. Thanks to GazL. +--------------------------+ Sun Dec 30 20:33:37 UTC 2018 a/gzip-1.10-x86_64-1.txz: Upgraded. a/lvm2-2.03.02-x86_64-1.txz: Upgraded. a/os-prober-1.77-x86_64-1.txz: Upgraded. a/sysvinit-scripts-2.1-noarch-24.txz: Rebuilt. rc.6: Don't umount /dev/shm or tmpfs mounts under /run as it causes long warnings/timeouts at shutdown/reboot on systems using LVM. Don't use --ignorelockingfailure when deactivating LVM. l/gc-8.0.2-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_21-x86_64-1.txz: Upgraded. l/libclc-20181127_1ecb16d-x86_64-1.txz: Upgraded. l/librsvg-2.44.11-x86_64-1.txz: Upgraded. l/zstd-1.3.8-x86_64-1.txz: Upgraded. xap/blueman-2.0.7-x86_64-1.txz: Upgraded. xap/xscreensaver-5.42-x86_64-1.txz: Upgraded. xfce/xfce4-taskmanager-1.2.2-x86_64-1.txz: Upgraded. +--------------------------+ Sat Dec 29 23:13:15 UTC 2018 a/kernel-generic-4.19.13-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.13-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.13-x86_64-1.txz: Upgraded. d/doxygen-1.8.15-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.13-x86-1.txz: Upgraded. k/kernel-source-4.19.13-noarch-1.txz: Upgraded. FRAMEBUFFER_CONSOLE_DEFERRED_TAKEOVER y -> n l/libsecret-0.18.7-x86_64-1.txz: Upgraded. n/wpa_supplicant-2.6-x86_64-6.txz: Upgraded. It seems we're not the only ones with broken WPA2-Enterprise support with wpa_supplicant-2.7, so we'll fix it the same way as everyone else - by reverting to wpa_supplicant-2.6 for now. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. testing/packages/wpa_supplicant-2.7-x86_64-2.txz: Upgraded. Applied a patch from Gentoo to allow building CONFIG_IEEE80211X=y without the experimental CONFIG_FILS=y option. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Dec 28 00:23:43 UTC 2018 a/aaa_elflibs-15.0-x86_64-3.txz: Rebuilt. Moved libsigsegv.so.2 from /usr/lib{,64} to /lib{,64}. Upgraded: libcap.so.2.26, libelf-0.175.so, libfuse.so.2.9.8, libexpat.so.1.6.8, libglib-2.0.so.0.5800.2, libgmodule-2.0.so.0.5800.2, libgobject-2.0.so.0.5800.2, libgthread-2.0.so.0.5800.2, libjpeg.so.62.3.0, liblber-2.4.so.2.10.10, libldap-2.4.so.2.10.10, libpng16.so.16.36.0, libstdc++.so.6.0.25, libtdb.so.1.3.16, libtiff.so.5.4.0, libtiffxx.so.5.4.0, libturbojpeg.so.0.2.0. ap/vim-8.1.0648-x86_64-1.txz: Upgraded. d/nasm-2.14.02-x86_64-1.txz: Upgraded. d/strace-4.26-x86_64-1.txz: Upgraded. l/libsigsegv-2.12-x86_64-3.txz: Rebuilt. Moved shared library into /lib{,64} to avoid problems when /usr is on a separate partition. Thanks to TommyC7. But please note: that has never been a recommended configuration (it was always a bad idea prone to corner-case bugs), and with basically everyone else moving everything into /usr, no upstream is developing with this scenario in mind these days. Some of the problems caused by separate /usr are simply not possible to fix in a straightforward fashion. Consider it a completely unsupported configuration choice. While it's not my style to make the installer refuse to allow it, I won't be bending over backwards to try to fix bugs related to this in the future. If I recall properly, the original rationale was to make it possible for /usr to reside on a shared network partition, which might have made sense back when 40MB was a typical hard drive size. I can think of no good rationale now (and no, I don't think making /usr read-only helps security in any tangible way). n/wget-1.20.1-x86_64-1.txz: Upgraded. x/xf86-video-chips-1.3.0-x86_64-1.txz: Upgraded. x/xf86-video-neomagic-1.3.0-x86_64-1.txz: Upgraded. x/xterm-341-x86_64-1.txz: Upgraded. xap/audacious-3.10.1-x86_64-1.txz: Upgraded. xap/audacious-plugins-3.10.1-x86_64-1.txz: Upgraded. xap/vim-gvim-8.1.0648-x86_64-1.txz: Upgraded. +--------------------------+ Tue Dec 25 03:15:50 UTC 2018 ap/groff-1.22.4-x86_64-1.txz: Upgraded. d/bison-3.2.4-x86_64-1.txz: Upgraded. d/gdb-8.2.1-x86_64-1.txz: Upgraded. d/parallel-20181222-noarch-1.txz: Upgraded. +--------------------------+ Sat Dec 22 04:38:27 UTC 2018 a/coreutils-8.30-x86_64-3.txz: Rebuilt. Support tmux terms in DIR_COLORS. Thanks to qunying. a/grep-3.3-x86_64-1.txz: Upgraded. a/kernel-generic-4.19.12-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.12-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.12-x86_64-1.txz: Upgraded. a/sed-4.7-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.12-x86-1.txz: Upgraded. d/rust-1.31.1-x86_64-1.txz: Upgraded. k/kernel-source-4.19.12-noarch-1.txz: Upgraded. l/graphite2-1.3.13-x86_64-1.txz: Upgraded. l/harfbuzz-2.3.0-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_19-x86_64-1.txz: Upgraded. l/lmdb-0.9.23-x86_64-1.txz: Upgraded. l/v4l-utils-1.16.3-x86_64-1.txz: Upgraded. n/netatalk-3.1.12-x86_64-1.txz: Upgraded. Netatalk before 3.1.12 is vulnerable to an out of bounds write in dsi_opensess.c. This is due to lack of bounds checking on attacker controlled data. A remote unauthenticated attacker can leverage this vulnerability to achieve arbitrary code execution. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1160 (* Security fix *) n/openldap-client-2.4.47-x86_64-1.txz: Upgraded. n/samba-4.9.4-x86_64-1.txz: Upgraded. x/intel-vaapi-driver-2.3.0-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Dec 21 05:00:34 UTC 2018 a/grep-3.2-x86_64-1.txz: Upgraded. a/sed-4.6-x86_64-1.txz: Upgraded. d/vala-0.42.4-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-60.4.0-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://www.mozilla.org/en-US/thunderbird/60.4.0/releasenotes/ +--------------------------+ Thu Dec 20 04:19:50 UTC 2018 a/kernel-firmware-20181218_0f22c85-noarch-1.txz: Upgraded. a/kernel-generic-4.19.11-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.11-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.11-x86_64-1.txz: Upgraded. ap/cups-filters-1.21.6-x86_64-1.txz: Upgraded. d/bison-3.2.3-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.11-x86-1.txz: Upgraded. k/kernel-source-4.19.11-noarch-1.txz: Upgraded. l/glib2-2.58.2-x86_64-1.txz: Upgraded. l/libgsf-1.14.45-x86_64-1.txz: Upgraded. x/libinput-1.12.4-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Mon Dec 17 23:02:56 UTC 2018 a/e2fsprogs-1.44.5-x86_64-1.txz: Upgraded. a/kernel-firmware-20181217_3de2546-noarch-1.txz: Upgraded. a/kernel-generic-4.19.10-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.10-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.10-x86_64-1.txz: Upgraded. d/Cython-0.29.2-x86_64-1.txz: Upgraded. d/git-2.20.1-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.10-x86-1.txz: Upgraded. d/llvm-7.0.1-x86_64-1.txz: Upgraded. k/kernel-source-4.19.10-noarch-1.txz: Upgraded. n/gnupg2-2.2.12-x86_64-1.txz: Upgraded. x/xterm-340-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Dec 14 18:59:34 UTC 2018 a/kernel-firmware-20181214_813fa1f-noarch-1.txz: Upgraded. ap/pamixer-1.3.1-x86_64-8.txz: Rebuilt. Recompiled against boost-1.69.0. kde/calligra-2.9.11-x86_64-27.txz: Rebuilt. Recompiled against boost-1.69.0. l/akonadi-1.13.0-x86_64-11.txz: Rebuilt. Recompiled against boost-1.69.0. l/boost-1.69.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. +--------------------------+ Fri Dec 14 01:49:19 UTC 2018 a/kernel-generic-4.19.9-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.9-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.9-x86_64-1.txz: Upgraded. a/logrotate-3.15.0-x86_64-1.txz: Upgraded. d/cmake-3.13.2-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.9-x86-1.txz: Upgraded. d/python-setuptools-40.6.3-x86_64-1.txz: Upgraded. k/kernel-source-4.19.9-noarch-1.txz: Upgraded. l/gtk+3-3.24.2-x86_64-1.txz: Upgraded. l/libedit-20181209_3.1-x86_64-1.txz: Upgraded. l/python-six-1.12.0-x86_64-2.txz: Rebuilt. n/bind-9.12.3_P1-x86_64-1.txz: Upgraded. n/curl-7.63.0-x86_64-1.txz: Upgraded. n/ipset-7.1-x86_64-1.txz: Upgraded. n/libassuan-2.5.2-x86_64-1.txz: Upgraded. x/xf86-input-void-1.4.1-x86_64-1.txz: Upgraded. x/xterm-339-x86_64-1.txz: Upgraded. xap/gparted-0.33.0-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Wed Dec 12 04:09:54 UTC 2018 l/librsvg-2.44.10-x86_64-1.txz: Upgraded. l/vte-0.54.3-x86_64-1.txz: Upgraded. n/ca-certificates-20181210-noarch-1.txz: Upgraded. x/mesa-18.3.1-x86_64-1.txz: Upgraded. x/xf86-video-i128-1.4.0-x86_64-1.txz: Upgraded. x/xf86-video-mga-2.0.0-x86_64-1.txz: Upgraded. x/xterm-338-x86_64-1.txz: Upgraded. xap/mozilla-firefox-60.4.0esr-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/ https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-17466 https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-18492 https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-18493 https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-18494 https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-18498 https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-12405 (* Security fix *) +--------------------------+ Tue Dec 11 01:16:11 UTC 2018 a/hwdata-0.318-noarch-1.txz: Upgraded. d/git-2.20.0-x86_64-1.txz: Upgraded. d/meson-0.49.0-x86_64-1.txz: Upgraded. l/ffmpeg-3.4.5-x86_64-1.txz: Upgraded. l/gobject-introspection-1.58.2-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_16-x86_64-1.txz: Upgraded. l/mozilla-nss-3.41-x86_64-1.txz: Upgraded. l/python-requests-2.21.0-x86_64-1.txz: Upgraded. n/libgpg-error-1.33-x86_64-1.txz: Upgraded. xfce/garcon-0.6.2-x86_64-1.txz: Upgraded. extra/pure-alsa-system/ffmpeg-3.4.5-x86_64-1_alsa.txz: Upgraded. +--------------------------+ Mon Dec 10 02:48:56 UTC 2018 l/libgphoto2-2.5.21-x86_64-1.txz: Upgraded. n/nghttp2-1.35.1-x86_64-1.txz: Upgraded. +--------------------------+ Sun Dec 9 00:32:51 UTC 2018 a/kernel-generic-4.19.8-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.8-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.8-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.8-x86-1.txz: Upgraded. k/kernel-source-4.19.8-noarch-1.txz: Upgraded. l/SDL2-2.0.9-x86_64-3.txz: Rebuilt. Applied upstream patch to fix controller rumble. Thanks to orbea. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Sat Dec 8 05:23:51 UTC 2018 pasture/php-5.6.39-x86_64-1.txz: Upgraded. Several security bugs have been fixed in this release: Segfault when using convert.quoted-printable-encode filter. Null pointer dereference in imap_mail. imap_open allows to run arbitrary shell commands via mailbox parameter. PharData always creates new files with mode 0666. Heap Buffer Overflow (READ: 4) in phar_parse_pharfile. For more information, see: https://php.net/ChangeLog-5.php#5.6.39 (* Security fix *) +--------------------------+ Sat Dec 8 04:10:45 UTC 2018 a/btrfs-progs-v4.19.1-x86_64-1.txz: Upgraded. a/dbus-1.12.12-x86_64-1.txz: Upgraded. ap/cups-2.2.10-x86_64-1.txz: Upgraded. ap/cups-filters-1.21.5-x86_64-1.txz: Upgraded. ap/hplip-3.18.12-x86_64-1.txz: Upgraded. d/mercurial-4.8.1-x86_64-1.txz: Upgraded. d/rust-1.31.0-x86_64-1.txz: Upgraded. l/libpng-1.6.36-x86_64-1.txz: Upgraded. l/python-idna-2.8-x86_64-1.txz: Upgraded. n/ntp-4.2.8p12-x86_64-5.txz: Rebuilt. Fixed logrotate file. Thanks to allend and rworkman. n/php-7.2.13-x86_64-1.txz: Upgraded. This is a security release which also contains several minor bug fixes. For more information, see: https://php.net/ChangeLog-7.php#7.2.13 (* Security fix *) n/wpa_supplicant-2.7-x86_64-1.txz: Upgraded. x/mesa-18.3.0-x86_64-1.txz: Upgraded. x/xf86-video-i740-1.4.0-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-60.3.3-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://www.mozilla.org/en-US/thunderbird/60.3.3/releasenotes/ xfce/thunar-volman-0.9.1-x86_64-1.txz: Upgraded. +--------------------------+ Thu Dec 6 04:38:11 UTC 2018 a/kernel-generic-4.19.7-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.7-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.7-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.7-x86-1.txz: Upgraded. k/kernel-source-4.19.7-noarch-1.txz: Upgraded. n/gnutls-3.6.5-x86_64-1.txz: Upgraded. This update fixes a security issue: Bleichenbacher-like side channel leakage in PKCS#1 1.5 verification and padding oracle verification. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16868 (* Security fix *) n/nettle-3.4.1-x86_64-1.txz: Upgraded. This update fixes a security issue: A Bleichenbacher type side-channel based padding oracle attack was found in the way nettle handles endian conversion of RSA decrypted PKCS#1 v1.5 data. An attacker who is able to run a process on the same physical core as the victim process, could use this flaw to extract plaintext or in some cases downgrade any TLS connections to a vulnerable server. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16869 (* Security fix *) isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Mon Dec 3 20:59:30 UTC 2018 ap/sqlite-3.26.0-x86_64-1.txz: Upgraded. l/libzip-1.5.1-x86_64-5.txz: Rebuilt. Fixed path in libzip.pc. Thanks to orbea. l/mozilla-nss-3.40.1-x86_64-1.txz: Upgraded. Mitigate cache side-channel variant of the Bleichenbacher attack. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12404 (* Security fix *) n/mutt-1.11.1-x86_64-1.txz: Upgraded. n/stunnel-5.50-x86_64-1.txz: Upgraded. xfce/xfce4-systemload-plugin-1.2.2-x86_64-2.txz: Rebuilt. Applied reworked hover timeout patch. Thanks to Rod3775. +--------------------------+ Sun Dec 2 04:11:56 UTC 2018 a/kernel-generic-4.19.6-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.6-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.6-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.6-x86-1.txz: Upgraded. k/kernel-source-4.19.6-noarch-1.txz: Upgraded. l/harfbuzz-2.2.0-x86_64-1.txz: Upgraded. l/pygobject3-3.30.4-x86_64-1.txz: Upgraded. l/python-certifi-2018.11.29-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Sat Dec 1 03:16:35 UTC 2018 ap/texinfo-6.5-x86_64-7.txz: Rebuilt. Recompiled against perl-5.28.1. ap/vim-8.1.0552-x86_64-1.txz: Upgraded. Compiled against perl-5.28.1. d/perl-5.28.1-x86_64-1.txz: Upgraded. Upgraded DBD-mysql-4.049, DBI-1.642, abd IO-Socket-SSL-2.060. Added Devel-CheckLib-1.13 (needed by DBD-mysql-4.049). kde/perlkde-4.14.3-x86_64-7.txz: Rebuilt. Recompiled against perl-5.28.1. kde/perlqt-4.14.3-x86_64-8.txz: Rebuilt. Recompiled against perl-5.28.1. n/epic5-2.0.1-x86_64-7.txz: Rebuilt. Recompiled against perl-5.28.1. n/irssi-1.1.1-x86_64-5.txz: Rebuilt. Recompiled against perl-5.28.1. n/net-snmp-5.8-x86_64-4.txz: Rebuilt. Recompiled against perl-5.28.1. n/ntp-4.2.8p12-x86_64-4.txz: Rebuilt. Recompiled against perl-5.28.1. xap/hexchat-2.14.2-x86_64-2.txz: Rebuilt. Recompiled against perl-5.28.1. xap/mozilla-thunderbird-60.3.2-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://www.mozilla.org/en-US/thunderbird/60.3.2/releasenotes/ xap/rxvt-unicode-9.22-x86_64-6.txz: Rebuilt. Recompiled against perl-5.28.1. xap/vim-gvim-8.1.0552-x86_64-1.txz: Upgraded. Compiled against perl-5.28.1. xfce/xfce4-systemload-plugin-1.2.2-x86_64-1.txz: Upgraded. +--------------------------+ Fri Nov 30 04:21:06 UTC 2018 n/mutt-1.11.0-x86_64-2.txz: Rebuilt. Put info file in /usr/info and compress it. Don't include /usr/info/dir. Thanks to Edward Trumbo. After upgrading this package, you'll need to reinstall the texinfo package to restore the missing /usr/info/dir file. n/wget-1.20-x86_64-1.txz: Upgraded. +--------------------------+ Thu Nov 29 05:53:27 UTC 2018 a/sysvinit-scripts-2.1-noarch-23.txz: Rebuilt. rc.S: simplify test for F2FS filesystem on /. Thanks to GazL. ap/soma-3.2.0-noarch-1.txz: Upgraded. d/cmake-3.13.1-x86_64-1.txz: Upgraded. l/jansson-2.12-x86_64-1.txz: Upgraded. n/rp-pppoe-3.13-x86_64-1.txz: Upgraded. n/samba-4.9.3-x86_64-1.txz: Upgraded. This update fixes bugs and security issues: CVE-2018-14629: Unprivileged adding of CNAME record causing loop in AD Internal DNS server CVE-2018-16841: Double-free in Samba AD DC KDC with PKINIT CVE-2018-16851: NULL pointer de-reference in Samba AD DC LDAP server CVE-2018-16852: NULL pointer de-reference in Samba AD DC DNS servers CVE-2018-16853: Samba AD DC S4U2Self crash in experimental MIT Kerberos configuration (unsupported) CVE-2018-16857: Bad password count in AD DC not always effective For more information, see: https://www.samba.org/samba/security/CVE-2018-14629.html https://www.samba.org/samba/security/CVE-2018-16841.html https://www.samba.org/samba/security/CVE-2018-16851.html https://www.samba.org/samba/security/CVE-2018-16852.html https://www.samba.org/samba/security/CVE-2018-16853.html https://www.samba.org/samba/security/CVE-2018-16857.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14629 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16841 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16851 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16852 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16853 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16857 (* Security fix *) x/mesa-18.2.6-x86_64-1.txz: Upgraded. x/vulkan-sdk-1.1.92.1-x86_64-1.txz: Upgraded. +--------------------------+ Wed Nov 28 07:25:32 UTC 2018 a/elilo-3.16-x86_64-9.txz: Rebuilt. eliloconfig: don't assume that mount output lists the / partition first. a/f2fs-tools-1.12.0-x86_64-1.txz: Added. a/kernel-generic-4.19.5-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.5-x86_64-1.txz: Upgraded. CRYPTO_CRC32 m -> y F2FS_FS m -> y a/kernel-modules-4.19.5-x86_64-1.txz: Upgraded. a/sysvinit-scripts-2.1-noarch-22.txz: Rebuilt. rc.S: if we're using F2FS for the root filesystem, don't try to check it as fsck.f2fs throws an error on trying to check a read-only filesystem. d/clisp-2.49_20181112_df3b9f6fd-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.5-x86-1.txz: Upgraded. k/kernel-source-4.19.5-noarch-1.txz: Upgraded. l/graphite2-1.3.12-x86_64-1.txz: Added. Required by harfbuzz in order to use it as a system library for TeXlive. l/harfbuzz-2.1.3-x86_64-1.txz: Upgraded. Requires graphite2-1.3.12. t/texlive-2018.180822-x86_64-4.txz: Rebuilt. Use system harfbuzz, not the bundled version. isolinux/initrd.img: Rebuilt. Activate LVM volumes at boot, not only when setup is run. Make /etc/mtab a symlink to /proc/mounts on the installer. On a freshly installed system, make /etc/mtab a symlink to /proc/mounts. Include f2fs-tools on the installer. Support installing on F2FS partitions. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Mon Nov 26 22:58:11 UTC 2018 ap/lm_sensors-3.5.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. ap/sysstat-12.0.2-x86_64-2.txz: Rebuilt. Recompiled against lm_sensors-3.5.0. kde/kde-workspace-4.11.22-x86_64-6.txz: Rebuilt. Recompiled against lm_sensors-3.5.0. n/mutt-1.11.0-x86_64-1.txz: Upgraded. n/net-snmp-5.8-x86_64-3.txz: Rebuilt. Recompiled against lm_sensors-3.5.0. n/ntp-4.2.8p12-x86_64-3.txz: Rebuilt. Recompiled against lm_sensors-3.5.0. n/postfix-3.3.2-x86_64-1.txz: Upgraded. xap/gkrellm-2.3.10-x86_64-5.txz: Rebuilt. Recompiled against lm_sensors-3.5.0. +--------------------------+ Sat Nov 24 20:44:07 UTC 2018 a/tree-1.8.0-x86_64-1.txz: Upgraded. ap/cups-filters-1.21.4-x86_64-1.txz: Upgraded. ap/itstool-2.0.5-x86_64-1.txz: Upgraded. d/Cython-0.29.1-x86_64-1.txz: Upgraded. l/dconf-0.30.1-x86_64-1.txz: Upgraded. l/elfutils-0.175-x86_64-1.txz: Upgraded. l/gc-8.0.0-x86_64-1.txz: Upgraded. l/gobject-introspection-1.58.1-x86_64-1.txz: Upgraded. l/json-glib-1.4.4-x86_64-1.txz: Upgraded. l/keyutils-1.6-x86_64-1.txz: Upgraded. l/libjpeg-turbo-2.0.1-x86_64-1.txz: Upgraded. l/libpsl-0.20.2-x86_64-1.txz: Upgraded. l/libsecret-0.18.6-x86_64-3.txz: Rebuilt. Recompiled with --enable-introspection (also picks up Vala support). n/cyrus-sasl-2.1.27-x86_64-1.txz: Upgraded. n/dovecot-2.3.4-x86_64-1.txz: Upgraded. n/mailx-12.5-x86_64-4.txz: Removed. n/s-nail-14.9.11-x86_64-1.txz: Added. This package replaces mailx. Thanks to Johannes Schoepfer. tcl/tcl-8.6.9-x86_64-1.txz: Upgraded. tcl/tk-8.6.9.1-x86_64-1.txz: Upgraded. xap/gucharmap-11.0.3-x86_64-1.txz: Upgraded. xfce/xfce4-clipman-plugin-1.4.3-x86_64-1.txz: Upgraded. xfce/xfce4-screenshooter-1.9.3-x86_64-1.txz: Upgraded. +--------------------------+ Sat Nov 24 03:02:42 UTC 2018 a/kernel-generic-4.19.4-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.4-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.4-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.4-x86-1.txz: Upgraded. k/kernel-source-4.19.4-noarch-1.txz: Upgraded. x/xcm-0.5.4-x86_64-2.txz: Rebuilt. Don't install the udev rules by default. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Nov 23 06:52:59 UTC 2018 d/bison-3.2.2-x86_64-1.txz: Upgraded. d/parallel-20181122-noarch-1.txz: Upgraded. l/adwaita-icon-theme-3.30.1-noarch-1.txz: Upgraded. n/nghttp2-1.35.0-x86_64-1.txz: Upgraded. +--------------------------+ Thu Nov 22 05:56:56 UTC 2018 a/kernel-generic-4.19.3-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.3-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.3-x86_64-1.txz: Upgraded. a/openssl-solibs-1.1.1a-x86_64-1.txz: Upgraded. a/sysvinit-scripts-2.1-noarch-21.txz: Rebuilt. rc.S: Don't run rc.fuse - udev takes care of the FUSE module and filesystem. rc.S: Support replacing the /etc/mtab file with a symlink to /proc/mounts. rc.6: Show more information when unmounting filesystems at shutdown. ap/ghostscript-9.26-x86_64-1.txz: Upgraded. ap/mariadb-10.3.11-x86_64-1.txz: Upgraded. This update fixes bugs and security issues. For more information, see: https://mariadb.com/kb/en/library/mariadb-10311-release-notes/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3282 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9843 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3174 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3143 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3156 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3251 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3185 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3277 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3162 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3173 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3200 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3284 (* Security fix *) d/cmake-3.13.0-x86_64-1.txz: Upgraded. d/git-2.19.2-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.3-x86-1.txz: Upgraded. d/vala-0.42.3-x86_64-1.txz: Added. k/kernel-source-4.19.3-noarch-1.txz: Upgraded. l/adwaita-icon-theme-3.30.0-noarch-1.txz: Upgraded. l/at-spi2-atk-2.30.0-x86_64-1.txz: Upgraded. l/at-spi2-core-2.30.0-x86_64-1.txz: Upgraded. l/atk-2.30.0-x86_64-1.txz: Upgraded. l/atkmm-2.28.0-x86_64-1.txz: Upgraded. l/dconf-0.28.0-x86_64-1.txz: Upgraded. dconf and dconf-editor require Vala; the alternative would be to try to stick with the old versions forever, and we don't want to do that. l/dconf-editor-3.30.2-x86_64-1.txz: Upgraded. l/gcr-3.28.0-x86_64-3.txz: Rebuilt. Recompiled to add Vala bindings. l/gdk-pixbuf2-2.38.0-x86_64-1.txz: Upgraded. l/gexiv2-0.10.9-x86_64-1.txz: Upgraded. l/glib-networking-2.58.0-x86_64-1.txz: Upgraded. l/glib2-2.58.1-x86_64-1.txz: Upgraded. l/glibmm-2.58.0-x86_64-1.txz: Upgraded. l/gobject-introspection-1.58.0-x86_64-1.txz: Upgraded. l/gtk+3-3.24.1-x86_64-1.txz: Upgraded. l/gtkmm3-3.24.0-x86_64-1.txz: Upgraded. l/gvfs-1.38.1-x86_64-1.txz: Upgraded. l/libcap-2.26-x86_64-1.txz: Upgraded. l/libpsl-0.20.1-x86_64-1.txz: Added. Required by libsoup. l/libsoup-2.64.2-x86_64-1.txz: Upgraded. l/pangomm-2.42.0-x86_64-1.txz: Upgraded. l/pygobject3-3.30.2-x86_64-1.txz: Upgraded. l/vte-0.54.2-x86_64-1.txz: Upgraded. n/openssl-1.1.1a-x86_64-1.txz: Upgraded. This update fixes timing side channel attacks on DSA and ECDSA signature generation that could allow an attacker to recover the private key. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0734 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0735 (* Security fix *) x/pixman-0.36.0-x86_64-1.txz: Upgraded. xfce/xfce4-terminal-0.8.7.4-x86_64-2.txz: Rebuilt. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Mon Nov 19 02:46:11 UTC 2018 l/js185-1.0.0-x86_64-2.txz: Removed. l/libwebp-1.0.1-x86_64-1.txz: Upgraded. l/mozjs52-52.9.0esr-x86_64-1.txz: Added. Required by the new version of polkit. l/polkit-0.115-x86_64-1.txz: Upgraded. Thanks to Robby Workman. +--------------------------+ Sat Nov 17 03:03:49 UTC 2018 a/acpid-2.0.31-x86_64-1.txz: Upgraded. a/shadow-4.6-x86_64-1.txz: Upgraded. l/gsettings-desktop-schemas-3.28.1-x86_64-1.txz: Upgraded. l/libkarma-0.1.2-x86_64-1.txz: Upgraded. l/v4l-utils-1.16.2-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-60.3.1-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://www.mozilla.org/en-US/thunderbird/60.3.1/releasenotes/ +--------------------------+ Thu Nov 15 19:47:53 UTC 2018 d/python-setuptools-40.6.2-x86_64-1.txz: Upgraded. l/python-requests-2.20.1-x86_64-1.txz: Upgraded. n/cifs-utils-6.8-x86_64-1.txz: Upgraded. n/getmail-5.8-x86_64-1.txz: Upgraded. n/nfs-utils-2.3.3-x86_64-1.txz: Upgraded. n/rpcbind-1.2.5-x86_64-1.txz: Upgraded. x/mesa-18.2.5-x86_64-1.txz: Upgraded. +--------------------------+ Wed Nov 14 20:07:37 UTC 2018 a/xfsprogs-4.19.0-x86_64-1.txz: Upgraded. ap/sudo-1.8.26-x86_64-1.txz: Upgraded. l/babl-0.1.60-x86_64-1.txz: Upgraded. n/iptables-1.8.2-x86_64-1.txz: Upgraded. Compiled against libnftnl-1.1.2. n/libnftnl-1.1.2-x86_64-1.txz: Upgraded. Shared library .so-version bump. n/nftables-0.9.0-x86_64-2.txz: Rebuilt. Recompiled against libnftnl-1.1.2. extra/pure-alsa-system/alsa-lib-1.1.7-x86_64-2_alsa.txz: Rebuilt. Sorry this package had not been recompiled with the patch. Thanks to orbea for pointing this out. +--------------------------+ Wed Nov 14 00:00:07 UTC 2018 a/aaa_terminfo-6.1_20181110-x86_64-1.txz: Upgraded. a/kernel-generic-4.19.2-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.2-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.2-x86_64-1.txz: Upgraded. ap/vim-8.1.0526-x86_64-1.txz: Upgraded. Don't package .desktop files for the base vim package. Move the terminal-based vim.desktop (menu clutter) into the docs directory. d/kernel-headers-4.19.2-x86-1.txz: Upgraded. k/kernel-source-4.19.2-noarch-1.txz: Upgraded. l/librsvg-2.44.9-x86_64-1.txz: Upgraded. l/ncurses-6.1_20181110-x86_64-1.txz: Upgraded. The new kernel fixes the artifact on the virtual console, so the original linux terminal definition has been restored. xap/vim-gvim-8.1.0526-x86_64-1.txz: Upgraded. Let vim install its own icon and gvim.desktop files. Thanks to drumz. Don't include the terminal-based vim.desktop file. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue Nov 13 05:15:29 UTC 2018 d/python-setuptools-40.6.1-x86_64-1.txz: Upgraded. l/M2Crypto-0.31.0-x86_64-1.txz: Upgraded. l/SDL2-2.0.9-x86_64-2.txz: Rebuilt. Fixed use of SDL_syswm.h with SDL_PROTOTYPES_ONLY in C++ mode. Thanks to orbea. l/libtiff-4.0.10-x86_64-1.txz: Upgraded. This update fixes some denial of service security issues. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10779 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18661 (* Security fix *) l/netpbm-10.84.02-x86_64-1.txz: Upgraded. n/net-snmp-5.8-x86_64-2.txz: Rebuilt. Recompiled to link the perl modules to the new libraries. Thanks to th_r. +--------------------------+ Mon Nov 12 02:29:48 UTC 2018 a/quota-4.04-x86_64-2.txz: Rebuilt. Fixed high CPU usage. Thanks to allend. ap/nano-3.2-x86_64-1.txz: Upgraded. x/libXcm-0.5.4-x86_64-1.txz: Upgraded. x/xcm-0.5.4-x86_64-1.txz: Upgraded. +--------------------------+ Fri Nov 9 21:46:09 UTC 2018 a/udisks2-2.6.5-x86_64-3.txz: Rebuilt. Recompiled against net-snmp-5.8. ap/hplip-3.18.10-x86_64-2.txz: Rebuilt. Recompiled against net-snmp-5.8. d/bison-3.2.1-x86_64-1.txz: Upgraded. d/meson-0.48.2-x86_64-1.txz: Upgraded. l/pycairo-1.18.0-x86_64-1.txz: Upgraded. n/bridge-utils-1.6-x86_64-1.txz: Upgraded. n/net-snmp-5.8-x86_64-1.txz: Upgraded. Shared library .so-version bump. n/ntp-4.2.8p12-x86_64-2.txz: Rebuilt. Recompiled against net-snmp-5.8. n/php-7.2.12-x86_64-2.txz: Rebuilt. Recompiled against net-snmp-5.8. xap/blackbox-0.74-x86_64-2.txz: Rebuilt. When building, don't install anything to the system. Thanks to Didier Spaier. xap/sane-1.0.27-x86_64-4.txz: Rebuilt. Recompiled against net-snmp-5.8. extra/aspell-word-lists/aspell-ar-1.2_0-x86_64-1.txz: Added. extra/aspell-word-lists/aspell-ast-0.01-x86_64-1.txz: Added. extra/aspell-word-lists/aspell-ca-2.1.5_1-x86_64-1.txz: Upgraded. extra/aspell-word-lists/aspell-de_alt-2.1_1-x86_64-1.txz: Added. extra/aspell-word-lists/aspell-fy-0.12_0-x86_64-1.txz: Added. extra/aspell-word-lists/aspell-grc-0.02_0-x86_64-1.txz: Added. extra/aspell-word-lists/aspell-hy-0.10.0_0-x86_64-1.txz: Added. extra/aspell-word-lists/aspell-ky-0.01_0-x86_64-1.txz: Added. extra/aspell-word-lists/aspell-ml-0.03_1-x86_64-1.txz: Added. extra/aspell-word-lists/aspell-pt_PT-20070510_0-x86_64-1.txz: Added. extra/aspell-word-lists/aspell-tk-0.01_0-x86_64-1.txz: Added. +--------------------------+ Fri Nov 9 02:42:22 UTC 2018 a/efibootmgr-16-x86_64-2.txz: Rebuilt. Reverted to previous version. We'd tried this before and it still doesn't work. Thanks to _RDS_. a/efivar-35-x86_64-1.txz: Upgraded. Reverted to previous version. We'd tried this before and it still doesn't work. Thanks to _RDS_. a/hwdata-0.317-noarch-1.txz: Upgraded. a/lvm2-2.03.01-x86_64-1.txz: Upgraded. a/quota-4.04-x86_64-1.txz: Upgraded. ap/cups-2.2.9-x86_64-1.txz: Upgraded. ap/sysstat-12.0.2-x86_64-1.txz: Upgraded. d/cscope-15.9-x86_64-1.txz: Upgraded. d/distcc-3.3.2-x86_64-1.txz: Upgraded. d/nasm-2.14-x86_64-1.txz: Upgraded. d/oprofile-1.3.0-x86_64-1.txz: Upgraded. d/rust-1.30.1-x86_64-1.txz: Upgraded. l/elfutils-0.174-x86_64-1.txz: Upgraded. l/shared-mime-info-1.10-x86_64-1.txz: Upgraded. n/samba-4.9.2-x86_64-1.txz: Upgraded. xap/gimp-2.10.8-x86_64-1.txz: Upgraded. +--------------------------+ Thu Nov 8 02:52:55 UTC 2018 a/aaa_terminfo-6.1_20181027-x86_64-2.txz: Rebuilt. a/efibootmgr-17-x86_64-1.txz: Upgraded. a/efivar-36-x86_64-1.txz: Upgraded. a/hostname-3.21-x86_64-1.txz: Upgraded. a/inotify-tools-3.20.1-x86_64-1.txz: Upgraded. a/mdadm-4.1-x86_64-1.txz: Upgraded. a/usb_modeswitch-2.5.2-x86_64-1.txz: Upgraded. a/util-linux-2.33-x86_64-1.txz: Upgraded. ap/cdrdao-1.2.4-x86_64-1.txz: Upgraded. ap/dash-0.5.10.2-x86_64-1.txz: Upgraded. ap/diffstat-1.62-x86_64-1.txz: Upgraded. ap/rpm-4.14.2.1-x86_64-1.txz: Upgraded. ap/sqlite-3.25.3-x86_64-1.txz: Upgraded. l/gnu-efi-3.0.9-x86_64-1.txz: Upgraded. l/iso-codes-4.1-noarch-1.txz: Upgraded. l/jasper-2.0.14-x86_64-1.txz: Upgraded. l/libbluray-1.0.2-x86_64-1.txz: Upgraded. l/libcap-ng-0.7.9-x86_64-1.txz: Upgraded. l/libiodbc-3.52.12-x86_64-1.txz: Upgraded. l/libodfgen-0.1.7-x86_64-1.txz: Upgraded. l/libwpd-0.10.2-x86_64-1.txz: Upgraded. l/libwpg-0.3.2-x86_64-1.txz: Upgraded. l/libyaml-0.2.1-x86_64-1.txz: Upgraded. l/ncurses-6.1_20181027-x86_64-2.txz: Rebuilt. Temporarily removed the bce feature from the linux console definition until the console is fixed. Added a linux-bce terminal definition for testing. l/sbc-1.4-x86_64-1.txz: Upgraded. l/zstd-1.3.7-x86_64-1.txz: Upgraded. n/gnupg2-2.2.11-x86_64-1.txz: Upgraded. n/ipset-7.0-x86_64-1.txz: Upgraded. n/libndp-1.7-x86_64-1.txz: Upgraded. n/npth-1.6-x86_64-1.txz: Upgraded. n/php-7.2.12-x86_64-1.txz: Upgraded. n/slrn-1.0.3a-x86_64-1.txz: Upgraded. n/snownews-1.6.10-x86_64-1.txz: Upgraded. n/whois-5.4.0-x86_64-1.txz: Upgraded. x/libinput-1.12.3-x86_64-1.txz: Upgraded. x/libva-2.3.0-x86_64-1.txz: Upgraded. x/libva-utils-2.3.0-x86_64-1.txz: Upgraded. x/libwacom-0.32-x86_64-1.txz: Upgraded. x/xdg-user-dirs-0.17-x86_64-1.txz: Upgraded. xap/blackbox-0.74-x86_64-1.txz: Upgraded. +--------------------------+ Tue Nov 6 03:41:45 UTC 2018 ap/tmux-2.8-x86_64-1.txz: Upgraded. ap/vim-8.1.0513-x86_64-1.txz: Upgraded. l/pyparsing-2.3.0-x86_64-1.txz: Upgraded. l/python-urllib3-1.24.1-x86_64-1.txz: Upgraded. n/ethtool-4.19-x86_64-1.txz: Upgraded. xap/vim-gvim-8.1.0513-x86_64-1.txz: Upgraded. +--------------------------+ Sun Nov 4 19:45:38 UTC 2018 a/btrfs-progs-v4.19-x86_64-1.txz: Upgraded. a/haveged-1.9.4-x86_64-2.txz: Rebuilt. rc.haveged: eliminate startup noise. a/kernel-generic-4.19.1-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.1-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.1-x86_64-1.txz: Upgraded. d/cmake-3.12.4-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.1-x86-1.txz: Upgraded. k/kernel-source-4.19.1-noarch-1.txz: Upgraded. Temporarily build in speakup drivers until the modular ones are fixed. Thanks to Didier Spaier. SPEAKUP m -> y SPEAKUP_SYNTH_ACNTPC m -> y SPEAKUP_SYNTH_ACNTSA m -> y SPEAKUP_SYNTH_APOLLO m -> y SPEAKUP_SYNTH_AUDPTR m -> y SPEAKUP_SYNTH_BNS m -> y SPEAKUP_SYNTH_DECEXT m -> y SPEAKUP_SYNTH_DECTLK m -> y SPEAKUP_SYNTH_DTLK m -> y SPEAKUP_SYNTH_DUMMY m -> y SPEAKUP_SYNTH_KEYPC m -> y SPEAKUP_SYNTH_LTLK m -> y SPEAKUP_SYNTH_SOFT m -> y SPEAKUP_SYNTH_SPKOUT m -> y SPEAKUP_SYNTH_TXPRT m -> y l/alsa-lib-1.1.7-x86_64-2.txz: Rebuilt. Fixed PCM interval. Thanks to aaditya. l/xapian-core-1.4.9-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Nov 2 20:41:52 UTC 2018 a/haveged-1.9.4-x86_64-1.txz: Upgraded. a/kernel-firmware-20181026_1baa348-noarch-1.txz: Upgraded. a/mcelog-161-x86_64-1.txz: Upgraded. ap/powertop-2.9-x86_64-1.txz: Upgraded. d/clisp-2.49_20180922_228b90a52-x86_64-1.txz: Upgraded. d/mercurial-4.8-x86_64-1.txz: Upgraded. l/fribidi-1.0.5-x86_64-1.txz: Upgraded. l/libjpeg-turbo-2.0.0-x86_64-1.txz: Upgraded. n/lynx-2.8.9rel.1-x86_64-1.txz: Upgraded. t/texlive-2018.180822-x86_64-3.txz: Rebuilt. Rebuilt to recompile xindy for the upgraded CLISP runtime. +--------------------------+ Fri Nov 2 01:21:12 UTC 2018 kde/kde-runtime-4.14.3-x86_64-8.txz: Rebuilt. Applied upstream patch to fix info and man page display. Thanks to igadoter and lougavulin. l/gegl-0.4.12-x86_64-1.txz: Upgraded. n/bind-9.12.3-x86_64-1.txz: Upgraded. x/mesa-18.2.4-x86_64-1.txz: Upgraded. extra/pure-alsa-system/kde-runtime-4.14.3-x86_64-8_alsa.txz: Rebuilt. Applied upstream patch to fix info and man page display. Thanks to igadoter and lougavulin. +--------------------------+ Wed Oct 31 22:49:36 UTC 2018 d/subversion-1.11.0-x86_64-1.txz: Upgraded. l/SDL2-2.0.9-x86_64-1.txz: Upgraded. l/SDL2_gfx-1.0.4-x86_64-1.txz: Upgraded. l/SDL2_image-2.0.4-x86_64-1.txz: Upgraded. l/SDL2_mixer-2.0.4-x86_64-1.txz: Upgraded. n/autofs-5.1.5-x86_64-1.txz: Upgraded. n/curl-7.62.0-x86_64-1.txz: Upgraded. This release fixes the following security issues: SASL password overflow via integer overflow. Use-after-free in handle close. Warning message out-of-buffer read. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16839 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16840 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16842 (* Security fix *) xap/mozilla-thunderbird-60.3.0-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://www.mozilla.org/en-US/thunderbird/60.3.0/releasenotes/ +--------------------------+ Tue Oct 30 21:50:53 UTC 2018 a/aaa_terminfo-6.1_20181027-x86_64-1.txz: Upgraded. ap/hplip-3.18.10-x86_64-1.txz: Upgraded. d/bison-3.2-x86_64-1.txz: Upgraded. d/strace-4.25-x86_64-1.txz: Upgraded. l/libsigc++-2.10.1-x86_64-1.txz: Upgraded. l/ncurses-6.1_20181027-x86_64-1.txz: Upgraded. l/xapian-core-1.4.8-x86_64-1.txz: Upgraded. n/getmail-5.7-x86_64-1.txz: Upgraded. xfce/xfce4-notifyd-0.4.3-x86_64-1.txz: Upgraded. +--------------------------+ Mon Oct 29 20:02:38 UTC 2018 a/glibc-zoneinfo-2018g-noarch-1.txz: Upgraded. a/hdparm-9.58-x86_64-1.txz: Upgraded. ap/gphoto2-2.5.20-x86_64-1.txz: Upgraded. d/python-setuptools-40.5.0-x86_64-1.txz: Upgraded. l/libgphoto2-2.5.20-x86_64-1.txz: Upgraded. l/libmtp-1.1.16-x86_64-1.txz: Upgraded. l/libssh-0.8.5-x86_64-1.txz: Upgraded. n/gpa-0.10.0-x86_64-1.txz: Upgraded. n/libgcrypt-1.8.4-x86_64-1.txz: Upgraded. +--------------------------+ Sat Oct 27 18:22:46 UTC 2018 d/rust-1.30.0-x86_64-1.txz: Upgraded. l/gdbm-1.18.1-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_14-x86_64-1.txz: Upgraded. l/mozilla-nss-3.40-x86_64-1.txz: Upgraded. x/libevdev-1.6.0-x86_64-1.txz: Upgraded. +--------------------------+ Thu Oct 25 19:21:09 UTC 2018 l/librsvg-2.44.8-x86_64-1.txz: Upgraded. n/NetworkManager-1.14.4-x86_64-1.txz: Upgraded. n/iproute2-4.19.0-x86_64-1.txz: Upgraded. n/iptables-1.8.1-x86_64-1.txz: Upgraded. x/libinput-1.12.2-x86_64-1.txz: Upgraded. x/xorg-server-1.20.3-x86_64-1.txz: Upgraded. x/xorg-server-xephyr-1.20.3-x86_64-1.txz: Upgraded. x/xorg-server-xnest-1.20.3-x86_64-1.txz: Upgraded. x/xorg-server-xvfb-1.20.3-x86_64-1.txz: Upgraded. +--------------------------+ Wed Oct 24 21:22:04 UTC 2018 d/strace-20181024_43700247-x86_64-1.txz: Upgraded. l/alsa-plugins-1.1.7-x86_64-4.txz: Rebuilt. Applied upstream fix for double free. Thanks to Jean-Philippe Guillemin. n/httpd-2.4.37-x86_64-1.txz: Upgraded. n/mcabber-1.1.0-x86_64-1.txz: Upgraded. x/libepoxy-1.5.3-x86_64-1.txz: Upgraded. xap/pan-0.145-x86_64-1.txz: Upgraded. extra/pure-alsa-system/alsa-plugins-1.1.7-x86_64-4_alsa.txz: Rebuilt. Applied upstream fix for double free. Thanks to Jean-Philippe Guillemin. +--------------------------+ Tue Oct 23 20:07:15 UTC 2018 d/python3-3.6.7-x86_64-1.txz: Upgraded. x/xf86-video-r128-6.12.0-x86_64-1.txz: Upgraded. +--------------------------+ Tue Oct 23 05:11:47 UTC 2018 a/kernel-generic-4.19.0-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.0-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.0-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.0-x86-1.txz: Upgraded. d/parallel-20181022-noarch-1.txz: Upgraded. k/kernel-source-4.19.0-noarch-1.txz: Upgraded. [581 lines of diffconfig output omitted here] l/alsa-plugins-1.1.7-x86_64-3.txz: Rebuilt. Reverted two patches that have been reported to cause crashes with USB audio devices. Thanks to Jean-Philippe Guillemin. l/harfbuzz-1.9.0-x86_64-2.txz: Rebuilt. Reverted (for now) to harfbuzz-1.9.0 to fix build failures with texlive, php, and calligra caused by API changes. Thanks to nobodino. l/libpng-1.6.35-x86_64-1.txz: Upgraded. n/samba-4.9.1-x86_64-1.txz: Upgraded. xap/mozilla-firefox-60.3.0esr-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html (* Security fix *) extra/pure-alsa-system/alsa-plugins-1.1.7-x86_64-3_alsa.txz: Rebuilt. Reverted two patches that have been reported to cause crashes with USB audio devices. Thanks to Jean-Philippe Guillemin. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Sat Oct 20 19:41:13 UTC 2018 a/kernel-generic-4.14.78-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.78-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.78-x86_64-1.txz: Upgraded. d/Cython-0.29-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.78-x86-1.txz: Upgraded. d/meson-0.48.1-x86_64-1.txz: Upgraded. k/kernel-source-4.14.78-noarch-1.txz: Upgraded. l/cairo-1.16.0-x86_64-1.txz: Upgraded. l/python-certifi-2018.10.15-x86_64-1.txz: Upgraded. l/python-requests-2.20.0-x86_64-1.txz: Upgraded. l/python-urllib3-1.24-x86_64-1.txz: Upgraded. x/libwacom-0.31-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Oct 19 19:59:54 UTC 2018 a/file-5.35-x86_64-1.txz: Upgraded. a/glibc-zoneinfo-2018f-noarch-1.txz: Upgraded. a/kernel-firmware-20181018_d877533-noarch-1.txz: Upgraded. ap/ksh93-20181018_89d7b802-x86_64-1.txz: Upgraded. l/harfbuzz-2.0.0-x86_64-1.txz: Upgraded. l/libopusenc-0.2.1-x86_64-1.txz: Upgraded. l/opus-1.3-x86_64-1.txz: Upgraded. l/v4l-utils-1.16.1-x86_64-1.txz: Upgraded. n/NetworkManager-1.14.2-x86_64-1.txz: Upgraded. n/dnsmasq-2.80-x86_64-1.txz: Upgraded. n/openssh-7.9p1-x86_64-1.txz: Upgraded. x/mesa-18.2.3-x86_64-1.txz: Upgraded. x/xkeyboard-config-2.25-noarch-1.txz: Upgraded. +--------------------------+ Fri Oct 19 04:05:37 UTC 2018 a/kernel-generic-4.14.77-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.77-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.77-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.77-x86-1.txz: Upgraded. d/ruby-2.5.3-x86_64-1.txz: Upgraded. This update fixes bugs and two security issues: OpenSSL::X509::Name equality check does not work correctly. Tainted flags are not propagated in Array#pack and String#unpack with some directives. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16395 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16396 (* Security fix *) k/kernel-source-4.14.77-noarch-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Wed Oct 17 19:41:35 UTC 2018 a/hdparm-9.57-x86_64-1.txz: Upgraded. a/kernel-firmware-20181017_de9cefa-noarch-1.txz: Upgraded. ap/vim-8.1.0481-x86_64-1.txz: Upgraded. l/QScintilla-2.10.8-x86_64-1.txz: Upgraded. l/alsa-plugins-1.1.7-x86_64-2.txz: Rebuilt. Removed /etc/alsa/conf.d/98-maemo.conf symlink that was breaking audio output. Thanks to imitheos. l/gegl-0.4.10-x86_64-1.txz: Upgraded. xap/vim-gvim-8.1.0481-x86_64-1.txz: Upgraded. extra/pure-alsa-system/alsa-plugins-1.1.7-x86_64-2_alsa.txz: Rebuilt. Removed /etc/alsa/conf.d/98-maemo.conf symlink that was breaking audio output. Thanks to imitheos. +--------------------------+ Wed Oct 17 03:11:25 UTC 2018 a/bin-11.1-x86_64-3.txz: Rebuilt. Renamed mktemp to mktemp-debianutils. Removed bban and sysvbanner which seem to be lacking proper licensing info. a/coreutils-8.30-x86_64-2.txz: Rebuilt. Renamed mktemp-gnu to mktemp. a/xfsprogs-4.18.0-x86_64-2.txz: Rebuilt. Recompiled against icu4c-63.1. ap/alsa-utils-1.1.7-x86_64-1.txz: Upgraded. ap/sqlite-3.25.2-x86_64-2.txz: Rebuilt. Recompiled against icu4c-63.1. d/ccache-3.5-x86_64-1.txz: Upgraded. kde/calligra-2.9.11-x86_64-26.txz: Rebuilt. Recompiled against icu4c-63.1. l/alsa-lib-1.1.7-x86_64-1.txz: Upgraded. l/alsa-plugins-1.1.7-x86_64-1.txz: Upgraded. l/boost-1.68.0-x86_64-2.txz: Rebuilt. Recompiled against icu4c-63.1. l/harfbuzz-1.9.0-x86_64-2.txz: Rebuilt. Recompiled against icu4c-63.1. l/icu4c-63.1-x86_64-1.txz: Upgraded. Shared library .so-version bump. Those of you using Plasma 5 or various third party packages should know by now what it means when icu4c gets a bump in -current. You may want to wait a few days for those things to appear again rebuilt against this. l/libical-3.0.4-x86_64-1.txz: Upgraded. Compiled against icu4c-63.1. l/libssh-0.7.6-x86_64-1.txz: Upgraded. Fixed authentication bypass vulnerability. For more information, see: https://www.libssh.org/2018/10/16/libssh-0-8-4-and-0-7-6-security-and-bugfix-release/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10933 (* Security fix *) l/libvisio-0.1.6-x86_64-5.txz: Rebuilt. Recompiled against icu4c-63.1. l/qt-4.8.7-x86_64-11.txz: Rebuilt. Recompiled against icu4c-63.1. l/raptor2-2.0.15-x86_64-6.txz: Rebuilt. Recompiled against icu4c-63.1. n/dovecot-2.3.3-x86_64-2.txz: Rebuilt. Recompiled against icu4c-63.1. n/php-7.2.11-x86_64-1.txz: Upgraded. Compiled against icu4c-63.1. n/postfix-3.3.1-x86_64-3.txz: Rebuilt. Recompiled against icu4c-63.1. n/tin-2.4.2-x86_64-4.txz: Rebuilt. Recompiled against icu4c-63.1. t/texlive-2018.180822-x86_64-2.txz: Rebuilt. Recompiled against icu4c-63.1. x/libdrm-2.4.96-x86_64-1.txz: Upgraded. xfce/exo-0.12.3-x86_64-1.txz: Upgraded. extra/brltty/brltty-5.6-x86_64-2.txz: Rebuilt. Recompiled against icu4c-63.1. extra/pure-alsa-system/alsa-lib-1.1.7-x86_64-1_alsa.txz: Upgraded. extra/pure-alsa-system/alsa-plugins-1.1.7-x86_64-1_alsa.txz: Upgraded. +--------------------------+ Mon Oct 15 23:32:43 UTC 2018 ap/sysstat-11.6.6-x86_64-1.txz: Upgraded. d/help2man-1.47.8-x86_64-1.txz: Upgraded. d/rust-1.29.2-x86_64-1.txz: Upgraded. l/babl-0.1.58-x86_64-1.txz: Upgraded. x/xf86-input-libinput-0.28.1-x86_64-1.txz: Upgraded. x/xorg-server-1.20.2-x86_64-1.txz: Upgraded. x/xorg-server-xephyr-1.20.2-x86_64-1.txz: Upgraded. x/xorg-server-xnest-1.20.2-x86_64-1.txz: Upgraded. x/xorg-server-xvfb-1.20.2-x86_64-1.txz: Upgraded. +--------------------------+ Sat Oct 13 21:17:39 UTC 2018 a/kernel-generic-4.14.76-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.76-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.76-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.76-x86-1.txz: Upgraded. k/kernel-source-4.14.76-noarch-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Oct 12 19:24:43 UTC 2018 l/pycups-1.9.74-x86_64-1.txz: Upgraded. l/pyparsing-2.2.2-x86_64-1.txz: Upgraded. l/python-packaging-18.0-x86_64-1.txz: Upgraded. n/gpgme-1.12.0-x86_64-1.txz: Upgraded. Please note that kdepimlibs ships with an earlier (and incompatible) version of gpgme and both packages install headers into /usr/include/gpgme++/. In order to recompile any packages depending on kdepimlibs, that package will need to be reinstalled. Originally gpgme was developed by the KDE project but later ended up under the gnupg umbrella. I'm not finding any clean way to work around this conflict, but I believe it will go away once we switch over to Plasma 5. +--------------------------+ Wed Oct 10 23:09:36 UTC 2018 a/kernel-firmware-20181008_c6b6265-noarch-1.txz: Upgraded. a/kernel-generic-4.14.75-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.75-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.75-x86_64-1.txz: Upgraded. d/git-2.19.1-x86_64-1.txz: Upgraded. Submodules' "URL"s come from the untrusted .gitmodules file, but we blindly gave it to "git clone" to clone submodules when "git clone --recurse-submodules" was used to clone a project that has such a submodule. The code has been hardened to reject such malformed URLs (e.g. one that begins with a dash). Credit for finding and fixing this vulnerability goes to joernchen and Jeff King, respectively. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17456 (* Security fix *) d/kernel-headers-4.14.75-x86-1.txz: Upgraded. d/make-4.2.1-x86_64-4.txz: Rebuilt. Use a non-blocking read with pselect to avoid hangs. Thanks to Linux.tar.gz and David Spencer. d/subversion-1.10.3-x86_64-1.txz: Upgraded. k/kernel-source-4.14.75-noarch-1.txz: Upgraded. Config changes since 4.14.74: FB_HYPERV n -> m Thanks to walecha. l/librsvg-2.44.7-x86_64-1.txz: Upgraded. l/python-pillow-5.3.0-x86_64-1.txz: Upgraded. n/nghttp2-1.34.0-x86_64-1.txz: Upgraded. x/libSM-1.2.3-x86_64-1.txz: Upgraded. x/libX11-1.6.7-x86_64-1.txz: Upgraded. x/libdrm-2.4.95-x86_64-1.txz: Upgraded. x/libxcb-1.13.1-x86_64-1.txz: Upgraded. x/vulkan-sdk-1.1.85.0-x86_64-1.txz: Upgraded. Thanks to dugan. xap/gnuplot-5.2.5-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Oct 5 22:43:41 UTC 2018 ap/mariadb-10.3.10-x86_64-1.txz: Upgraded. d/python-pip-18.1-x86_64-1.txz: Upgraded. x/libinput-1.12.1-x86_64-1.txz: Upgraded. x/mesa-18.2.2-x86_64-1.txz: Upgraded. +--------------------------+ Thu Oct 4 19:58:13 UTC 2018 a/kernel-generic-4.14.74-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.74-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.74-x86_64-1.txz: Upgraded. ap/cups-filters-1.21.3-x86_64-1.txz: Upgraded. d/cmake-3.12.3-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.74-x86-1.txz: Upgraded. k/kernel-source-4.14.74-noarch-1.txz: Upgraded. l/gst-plugins-base-1.14.4-x86_64-1.txz: Upgraded. l/gst-plugins-good-1.14.4-x86_64-1.txz: Upgraded. l/gst-plugins-libav-1.14.4-x86_64-1.txz: Upgraded. l/gstreamer-1.14.4-x86_64-1.txz: Upgraded. n/dovecot-2.3.3-x86_64-1.txz: Upgraded. Thanks to teoberi for the link to the glibc-2.28 crypt() patch. extra/pure-alsa-system/gst-plugins-good-1.14.4-x86_64-1_alsa.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Wed Oct 3 05:26:51 UTC 2018 a/eudev-3.2.5-x86_64-4.txz: Upgraded. More bugs, unreplaced macros, and systemd-specific stuff have been found in the eudev-3.2.6 release. Since there don't seem to be any improvements that would merit closely following the bleeding edge on this one, we'll revert back to eudev-3.2.5 which worked fine. a/kernel-firmware-20181001_7c81f23-noarch-1.txz: Upgraded. ap/at-3.1.23-x86_64-1.txz: Upgraded. ap/hplip-3.18.9-x86_64-1.txz: Upgraded. d/mercurial-4.7.2-x86_64-1.txz: Upgraded. x/libpthread-stubs-0.4-x86_64-3.txz: Rebuilt. Rebuilt since this should not be "noarch". xap/mozilla-firefox-60.2.2esr-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html https://www.mozilla.org/en-US/security/advisories/mfsa2018-24/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12387 (* Security fix *) xap/mozilla-thunderbird-60.2.1-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://www.mozilla.org/en-US/thunderbird/60.2.1/releasenotes/ xfce/Thunar-1.8.2-x86_64-1.txz: Upgraded. +--------------------------+ Sat Sep 29 20:01:29 UTC 2018 a/kernel-generic-4.14.73-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.73-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.73-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.73-x86-1.txz: Upgraded. k/kernel-source-4.14.73-noarch-1.txz: Upgraded. l/librsvg-2.44.6-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Sep 28 03:55:56 UTC 2018 ap/sqlite-3.25.2-x86_64-1.txz: Upgraded. d/rust-1.29.1-x86_64-1.txz: Upgraded. l/apr-1.6.5-x86_64-1.txz: Upgraded. +--------------------------+ Wed Sep 26 21:18:33 UTC 2018 a/aaa_terminfo-6.1_20180923-x86_64-1.txz: Upgraded. a/eudev-3.2.6-x86_64-3.txz: Rebuilt. Fixed issues with the default rules. Thanks to zuriel. a/kernel-generic-4.14.72-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.72-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.72-x86_64-1.txz: Upgraded. ap/vim-8.1.0436-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.72-x86-1.txz: Upgraded. d/re2c-1.1.1-x86_64-1.txz: Upgraded. k/kernel-source-4.14.72-noarch-1.txz: Upgraded. l/ncurses-6.1_20180923-x86_64-1.txz: Upgraded. n/fetchmail-6.3.26-x86_64-5.txz: Rebuilt. Patched to fix certificate verification failures with OpenSSL 1.1.1. Thanks to Jurgen Van Ham. n/gnutls-3.6.4-x86_64-1.txz: Upgraded. x/xf86-video-intel-20180906_25c9a2fc-x86_64-1.txz: Upgraded. xap/vim-gvim-8.1.0436-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Mon Sep 24 21:37:09 UTC 2018 d/Cython-0.28.5-x86_64-1.txz: Upgraded. d/help2man-1.47.7-x86_64-1.txz: Upgraded. d/meson-0.48.0-x86_64-1.txz: Upgraded. d/python-setuptools-40.4.3-x86_64-1.txz: Upgraded. l/M2Crypto-0.30.1-x86_64-1.txz: Upgraded. l/cairo-1.15.14-x86_64-1.txz: Upgraded. l/librsvg-2.44.4-x86_64-1.txz: Upgraded. l/pycairo-1.17.1-x86_64-1.txz: Upgraded. l/pycurl-7.43.0.2-x86_64-1.txz: Upgraded. l/pyparsing-2.2.1-x86_64-1.txz: Upgraded. n/ModemManager-1.8.2-x86_64-1.txz: Upgraded. n/bind-9.12.2_P2-x86_64-1.txz: Upgraded. This update fixes security issues: There was a long-existing flaw in the documentation for ms-self, krb5-self, ms-subdomain, and krb5-subdomain rules in update-policy statements. Though the policies worked as intended, operators who configured their servers according to the misleading documentation may have thought zone updates were more restricted than they were; users of these rule types are advised to review the documentation and correct their configurations if necessary. New rule types matching the previously documented behavior will be introduced in a future maintenance release. named could crash during recursive processing of DNAME records when deny-answer-aliases was in use. This flaw is disclosed in CVE-2018-5740. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5740 (* Security fix *) n/httpd-2.4.35-x86_64-1.txz: Upgraded. This release fixes bugs and regressions in httpd-2.4.34, adds an apache2ctl -> apachectl symlink, and no longer automatically overwrites rc.httpd when upgraded. +--------------------------+ Sat Sep 22 22:41:41 UTC 2018 a/eudev-3.2.6-x86_64-2.txz: Rebuilt. Removed unneeded groups "render" and "kvm" from 50-udev-default.rules. Thanks to Richard David Sherman. a/grub-2.02-x86_64-4.txz: Rebuilt. Applied a patch needed when compiling with recent binutils. Thanks to ivandi. d/parallel-20180922-noarch-1.txz: Upgraded. x/xterm-337-x86_64-1.txz: Upgraded. xap/mozilla-firefox-60.2.1esr-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. A potentially exploitable crash in TransportSecurityInfo used for SSL can be triggered by data stored in the local cache in the user profile directory. This issue is only exploitable in combination with another vulnerability allowing an attacker to write data into the local cache or from locally installed malware. This issue also triggers a non-exploitable startup crash for users switching between the Nightly and Release versions of Firefox if the same profile is used. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html https://www.mozilla.org/en-US/security/advisories/mfsa2018-23/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12383 (* Security fix *) +--------------------------+ Fri Sep 21 18:51:07 UTC 2018 a/eudev-3.2.6-x86_64-1.txz: Upgraded. a/glibc-solibs-2.28-x86_64-2.txz: Upgraded. a/grub-2.02-x86_64-3.txz: Rebuilt. Patched to fix compatibility with recent xfsprogs. Thanks to Markus Wiesner. a/kernel-generic-4.14.71-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.71-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.71-x86_64-1.txz: Upgraded. ap/opus-tools-0.2-x86_64-1.txz: Upgraded. ap/sqlite-3.25.1-x86_64-1.txz: Upgraded. d/icecream-20180905_cdc6ff8-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.71-x86-1.txz: Upgraded. d/llvm-7.0.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. k/kernel-source-4.14.71-noarch-1.txz: Upgraded. l/ffmpeg-3.4.4-x86_64-2.txz: Rebuilt. Don't try to link with Samba since the latest version is not compatible. l/glibc-2.28-x86_64-2.txz: Upgraded. All packages have been patched where needed for glibc-2.28 and compile tested here. Thanks to nobodino for the help. l/glibc-i18n-2.28-x86_64-2.txz: Upgraded. l/glibc-profile-2.28-x86_64-2.txz: Upgraded. l/gst-plugins-base-1.14.3-x86_64-1.txz: Upgraded. l/gst-plugins-good-1.14.3-x86_64-1.txz: Upgraded. l/gst-plugins-libav-1.14.3-x86_64-1.txz: Upgraded. l/gstreamer-1.14.3-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_11-x86_64-1.txz: Upgraded. l/libopusenc-0.2-x86_64-1.txz: Added. l/librsvg-2.44.3-x86_64-1.txz: Upgraded. l/opus-1.3_rc2-x86_64-1.txz: Upgraded. l/opusfile-0.11-x86_64-1.txz: Upgraded. l/soprano-2.9.4-x86_64-3.txz: Rebuilt. Recompiled to drop virtuoso dependency. l/virtuoso-ose-6.1.8-x86_64-9.txz: Removed. Even KDE4 has migrated away from actually using this for anything. The last thing in Slackware that was dependent on it was Soprano, which has been recompiled to no longer use it. n/postfix-3.3.1-x86_64-2.txz: Rebuilt. Recompiled so that it quits whining about OpenSSL. Thanks to shastah. x/mesa-18.2.1-x86_64-1.txz: Upgraded. Compiled against llvm-7.0.0. x/xf86-video-vmware-13.3.0-x86_64-2.txz: Rebuilt. Recompiled against llvm-7.0.0. x/xterm-336-x86_64-1.txz: Upgraded. extra/pure-alsa-system/ffmpeg-3.4.4-x86_64-2_alsa.txz: Rebuilt. Don't try to link with Samba since the latest version is not compatible. extra/pure-alsa-system/gst-plugins-good-1.14.3-x86_64-1_alsa.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue Sep 18 19:22:30 UTC 2018 ap/dmidecode-3.2-x86_64-1.txz: Upgraded. ap/nano-3.1-x86_64-1.txz: Upgraded. ap/slackpkg-2.83.0-noarch-4.txz: Rebuilt. Merged two patches from git: Clarify that a press of "Enter" is needed to confirm kernel change Mention possible stale mirror if CHECKSUMS.md5 gpg verify fails Thanks to Mario Preksavec and Robby Workman. ap/sqlite-3.25.0-x86_64-1.txz: Upgraded. ap/xorriso-1.5.0-x86_64-1.txz: Upgraded. l/lmdb-0.9.22-x86_64-2.txz: Rebuilt. Fixed the build script to clear out the build area properly - previously it was possible for binaries of the wrong $ARCH to end up in the package. Thanks to reddog83. n/gnutls-3.6.3-x86_64-2.txz: Rebuilt. Merged backported SSL/TLS fixes. Thanks to orbea. n/samba-4.9.0-x86_64-2.txz: Rebuilt. Recompiled in case the lmdb package was broken. +--------------------------+ Sat Sep 15 21:19:23 UTC 2018 a/kernel-firmware-20180913_44d4fca-noarch-1.txz: Upgraded. a/kernel-generic-4.14.70-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.70-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.70-x86_64-1.txz: Upgraded. ap/hplip-3.18.7-x86_64-4.txz: Rebuilt. Applied fixed patch - this has a better chance of working now. I've checked and hpcups no longer links to libImageProcessor. Which, by the way, the previous build dumped onto my main system (not even in "make install"), but not into the package itself. I no longer own an HP printer and will never buy another one, so if there are any remaining problems please report. Thanks to Matteo Bernardini. d/kernel-headers-4.14.70-x86-1.txz: Upgraded. k/kernel-source-4.14.70-noarch-1.txz: Upgraded. Config changes since 4.14.69: CLEANCACHE n -> y CMA n -> y MEMORY_FAILURE n -> y NUMA n -> y X86_CHECK_BIOS_CORRUPTION n -> y Z3FOLD m -> y ZBUD m -> y ZSMALLOC m -> y +ACPI_APEI_MEMORY_FAILURE y +ACPI_NUMA y +AMD_NUMA y +CMA_AREAS 7 +CMA_DEBUG n +CMA_DEBUGFS n +DMA_CMA n +HWPOISON_INJECT m +NEED_MULTIPLE_NODES y +NODES_SHIFT 6 +NODES_SPAN_OTHER_NODES y +NUMA_BALANCING n +NUMA_EMU n +RAS_CEC n +USE_PERCPU_NUMA_NODE_ID y +X86_64_ACPI_NUMA y +X86_BOOTPARAM_MEMORY_CORRUPTION_CHECK n n/NetworkManager-1.14.0-x86_64-1.txz: Upgraded. Added new options: --enable-json-validation --enable-ovs xap/network-manager-applet-1.8.18-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. pasture/php-5.6.38-x86_64-1.txz: Upgraded. One security bug has been fixed in this release: Apache2: XSS due to the header Transfer-Encoding: chunked For more information, see: https://php.net/ChangeLog-5.php#5.6.38 (* Security fix *) usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Sep 14 23:06:26 UTC 2018 ap/hplip-3.18.7-x86_64-3.txz: Rebuilt. Throw away the broken and ill-advised libImageProcessor closed-source blob. Thanks to Matteo Bernardini. ap/zsh-5.6.2-x86_64-1.txz: Upgraded. d/rust-1.29.0-x86_64-1.txz: Upgraded. l/lmdb-0.9.22-x86_64-1.txz: Added. This is a new dependency of Samba. n/php-7.2.10-x86_64-1.txz: Upgraded. This is a security release which also contains several minor bug fixes. For more information, see: https://php.net/ChangeLog-7.php#7.2.10 (* Security fix *) n/samba-4.9.0-x86_64-1.txz: Upgraded. x/xf86-video-amdgpu-18.1.0-x86_64-1.txz: Upgraded. x/xf86-video-ati-18.1.0-x86_64-1.txz: Upgraded. +--------------------------+ Thu Sep 13 21:41:51 UTC 2018 a/sysvinit-scripts-2.1-noarch-20.txz: Rebuilt. rc.6: it was reported by birdboy that JFS is not properly unmounted unless the order of unmounting local filesystems followed by remounting the root filesystem read-only is inverted. I tried that, and although it did get rid of a "/ filesystem is busy" error during shutdown, the JFS / filesystem was still checked at boot (and found to be clean). I believe that the existing order of unmounting non-root filesystems followed by remounting the root filesystem as read-only is the correct order, and found that putting another sync between these also gets rid of the error on shutdown, so I've done that. When using JFS as the root filesystem there's still another similar error message that's generated earlier in the boot, though. I'm unable to find any way to shut down a JFS root partition in a way that leaves it clean enough that fsck will not check it at boot, but it is always found to be clean so this should only be cosmetic. I recall this behavior of JFS going all the way back to when it was first added to the kernel. If anyone has a better fix, I'll take a look at it, but in my opinion it's not really anything to worry about. ap/ghostscript-9.25-x86_64-1.txz: Upgraded. This release fixes problems with argument handling, some unintended results of the security fixes to the SAFER file access restrictions (specifically accessing ICC profile files), and some additional security issues over the recent 9.24 release. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16509 (* Security fix *) ap/squashfs-tools-20180612_6e242dc-x86_64-1.txz: Upgraded. Linked against libzstd.so.1. Thanks to alienBOB. ap/sudo-1.8.25p1-x86_64-1.txz: Upgraded. d/binutils-2.31.1-x86_64-4.txz: Rebuilt. Since baldzhang has pointed out a valid use case for windres on Linux, we are restoring the "Windows only" utilities, as none of them are very large and there may be valid uses for the other ones as well. l/freetype-2.9.1-x86_64-2.txz: Rebuilt. Patched to build properly if windres is present on the machine. l/sg3_utils-1.44-x86_64-1.txz: Upgraded. l/zstd-1.3.5-x86_64-1.txz: Added. Thanks to alienBOB. xfce/tumbler-0.2.3-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. Use the ter-114v terminus font. It has been reported that the font we were using (ter-v14v) restricts the available console colors from 16 to 8 due to needing an extra bit for the higher number of available glyphs (though in testing here I couldn't see any difference). The new font covers ISO8859-1, ISO8859-15, and Windows-1252 codepages. I'm still not sure it's the best choice, so additional input is welcomed. Thanks to bormant. usb-and-pxe-installers/usbboot.img: Rebuilt. Use the ter-114v terminus font. +--------------------------+ Wed Sep 12 21:19:38 UTC 2018 a/elilo-3.16-x86_64-8.txz: Rebuilt. eliloconfig: this was occasionally failing and the issue was traced to the script's use of tr (not sure why still). Replaced the construct with sed and the issue seems to have gone away. a/openssl-solibs-1.1.1-x86_64-1.txz: Upgraded. d/binutils-2.31.1-x86_64-3.txz: Rebuilt. Do not install the Windows-specific tools. Not only are these useless on Linux, but the presence of windres fools freetype into thinking that it is on a Windows system, leading to a build failure. d/git-2.19.0-x86_64-1.txz: Upgraded. l/freetype-2.9.1-x86_64-1.txz: Upgraded. l/harfbuzz-1.9.0-x86_64-1.txz: Upgraded. l/media-player-info-24-noarch-1.txz: Upgraded. l/pcre2-10.32-x86_64-1.txz: Upgraded. l/sg3_utils-1.43-x86_64-1.txz: Upgraded. n/openssl-1.1.1-x86_64-1.txz: Upgraded. x/fontconfig-2.13.1-x86_64-1.txz: Upgraded. We had problem reports with fontconfig-2.13.0 which led to it being reverted but we'll try it again. Please let me know if the issues (with Wine iirc) persist. x/libinput-1.12.0-x86_64-1.txz: Upgraded. +--------------------------+ Mon Sep 10 21:00:00 UTC 2018 a/kernel-generic-4.14.69-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.69-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.69-x86_64-1.txz: Upgraded. a/xfsprogs-4.18.0-x86_64-1.txz: Upgraded. ap/nano-3.0-x86_64-1.txz: Upgraded. d/cmake-3.12.2-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.69-x86-1.txz: Upgraded. k/kernel-source-4.14.69-noarch-1.txz: Upgraded. Config changes since 4.14.68: CRYPTO_LZO m -> y FRONTSWAP n -> y ZBUD n -> m ZPOOL m -> y +ZSWAP y Thanks to Darth Vader. l/glib2-2.56.2-x86_64-2.txz: Rebuilt. Make links in the documentation directory to all of the API documentation found under /usr/share/gtk-doc/html. Thanks to Didier Spaier. l/libarchive-3.3.3-x86_64-1.txz: Upgraded. n/links-2.17-x86_64-1.txz: Upgraded. xfce/tumbler-0.2.2-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Sep 7 23:00:06 UTC 2018 x/mesa-18.2.0-x86_64-1.txz: Upgraded. +--------------------------+ Fri Sep 7 20:02:52 UTC 2018 ap/ghostscript-9.24-x86_64-3.txz: Rebuilt. Added two upstream patches to fix PDF printing. Thanks to Petri Kaukasoina. l/librsvg-2.44.2-x86_64-1.txz: Upgraded. +--------------------------+ Thu Sep 6 23:22:45 UTC 2018 a/pkgtools-15.0-noarch-23.txz: Rebuilt. Removed stray cat and loop kludges for lack of reported size, since this is fixed now in tar. a/tar-1.30-x86_64-3.txz: Rebuilt. Fixed a bug in the nolonezero patch that was evidently causing all of the issues in installpkg that we'd been kludging around (e.g. the "stray cat"). Thanks *very* much to NonNonBa for the patch, and to SeB for the initial analysis of the problem. ap/ghostscript-9.24-x86_64-2.txz: Rebuilt. Applied upstream patch to fix "Filter failed". Thanks to th_r and bamunds. d/gdb-8.2-x86_64-1.txz: Upgraded. d/indent-2.2.12-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Thu Sep 6 06:15:46 UTC 2018 a/acpid-2.0.30-x86_64-1.txz: Upgraded. a/etc-15.0-x86_64-9.txz: Rebuilt. Added support for /etc/ld.so.conf.d/. Thanks to Qury. a/kernel-firmware-20180904_85c5d90-noarch-1.txz: Upgraded. a/kernel-generic-4.14.68-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.68-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.68-x86_64-1.txz: Upgraded. a/pkgtools-15.0-noarch-22.txz: Rebuilt. installpkg: prevent noise from the "stray cat" if tar hands it a broken pipe. Thanks to ivandi. Also (in the comments) provide a possibly better but untested solution. Thanks to SeB. a/sysvinit-2.90-x86_64-2.txz: Rebuilt. sysvinit-2.90 added an undocumented feature that tries to spawn agetty if it sees console= in the kernel command line. Avoiding the debate about whether this code belongs in init at all, at least such a change should be documented, and probably made opt-in. This patch disables the new behavior unless "sysvinit_agetty" is also seen in the kernel command line. It seems like this might have been something added for Hurd, and it might be wise to stick to what we've got rather than following upstream on this particular package. If anyone notices any other odd behavior, please let me know. Thanks to shastah. a/sysvinit-scripts-2.1-noarch-19.txz: Rebuilt. When checking for intel_pstate, direct the stderr to /dev/null in case the file doesn't exist in /sys. Thanks to ivandi. Allow forcing an option by editing /etc/default/cpufreq. ap/cups-filters-1.21.2-x86_64-1.txz: Upgraded. ap/ghostscript-9.24-x86_64-1.txz: Upgraded. Patched multiple -dSAFER sandbox bypass vulnerabilities. Thanks to Tavis Ormandy. For more information, see: https://www.ghostscript.com/doc/9.24/News.htm https://www.kb.cert.org/vuls/id/332928 (* Security fix *) ap/sudo-1.8.25-x86_64-1.txz: Upgraded. d/binutils-2.31.1-x86_64-2.txz: Rebuilt. elf.c (_bfd_elf_get_symbol_version_string): Return _("") for corrupt symbol version info. elflink.c (bfd_elf_record_link_assignment): Always clear h->verinfo.verdef when overriding a dynamic definition. Thanks to Michael Short for pointing out the upstream patches. d/ccache-3.4.3-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.68-x86-1.txz: Upgraded. d/llvm-6.0.1-x86_64-2.txz: Rebuilt. Recompiled with -DCLANG_BUILD_SHARED_LIBS=ON to fix issues when multiple OpenCL drivers are installed. Thanks to Heinz Wiesinger. d/mercurial-4.7.1-x86_64-1.txz: Upgraded. k/kernel-source-4.14.68-noarch-1.txz: Upgraded. l/mozilla-nss-3.39-x86_64-1.txz: Upgraded. n/curl-7.61.1-x86_64-1.txz: Upgraded. This update fixes an NTLM password overflow via integer overflow. For more information, see: https://curl.haxx.se/docs/CVE-2018-14618.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14618 (* Security fix *) n/gnupg2-2.2.10-x86_64-1.txz: Upgraded. n/libtirpc-1.1.4-x86_64-1.txz: Upgraded. n/netatalk-3.1.11-x86_64-2.txz: Rebuilt. rc.atalk: fixed errors in status output. Thanks to marav. n/nghttp2-1.33.0-x86_64-1.txz: Upgraded. n/p11-kit-0.23.14-x86_64-1.txz: Upgraded. n/stunnel-5.49-x86_64-1.txz: Upgraded. x/libdrm-2.4.94-x86_64-1.txz: Upgraded. x/xf86-video-ati-20180824_de88ea27-x86_64-1.txz: Upgraded. xap/hexchat-2.14.2-x86_64-1.txz: Upgraded. xap/mozilla-firefox-60.2.0esr-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html (* Security fix *) xap/xlockmore-5.56-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue Aug 28 22:05:19 UTC 2018 a/sysvinit-scripts-2.1-noarch-18.txz: Rebuilt. rc.cpufreq: for CPUs that use intel_pstate, default to the performance governor. The performance governor provides power savings while avoiding the ramp-up lag caused by using "ondemand", which defaults to "powersave" on these systems. Thanks to EdGr. d/bison-3.1-x86_64-1.txz: Upgraded. +--------------------------+ Mon Aug 27 20:27:22 UTC 2018 a/kernel-firmware-20180825_fea76a0-noarch-1.txz: Upgraded. ap/vim-8.1.0328-x86_64-1.txz: Upgraded. d/meson-0.47.2-x86_64-1.txz: Upgraded. d/python-setuptools-40.2.0-x86_64-1.txz: Upgraded. l/python-certifi-2018.8.24-x86_64-1.txz: Upgraded. l/python-idna-2.7-x86_64-1.txz: Upgraded. l/python-packaging-17.1-x86_64-1.txz: Upgraded. l/python-pillow-5.2.0-x86_64-1.txz: Upgraded. l/python-requests-2.19.1-x86_64-1.txz: Upgraded. l/python-urllib3-1.23-x86_64-1.txz: Upgraded. l/talloc-2.1.14-x86_64-1.txz: Upgraded. l/tdb-1.3.16-x86_64-1.txz: Upgraded. l/tevent-0.9.37-x86_64-1.txz: Upgraded. n/ethtool-4.18-x86_64-1.txz: Upgraded. n/openssh-7.8p1-x86_64-1.txz: Upgraded. n/samba-4.8.5-x86_64-1.txz: Upgraded. x/xauth-1.0.10-x86_64-3.txz: Rebuilt. Patched to fix a bug where changing the hostname caused X access to be lost. Thanks to TurboBlaze. xap/vim-gvim-8.1.0328-x86_64-1.txz: Upgraded. +--------------------------+ Fri Aug 24 23:06:52 UTC 2018 a/kernel-generic-4.14.67-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.67-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.67-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.67-x86-1.txz: Upgraded. d/parallel-20180822-noarch-1.txz: Upgraded. k/kernel-source-4.14.67-noarch-1.txz: Upgraded. x/mesa-18.1.7-x86_64-1.txz: Upgraded. xap/gparted-0.32.0-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Wed Aug 22 23:44:25 UTC 2018 a/findutils-4.6.0-x86_64-1.txz: Upgraded. a/kernel-firmware-20180821_1d17c18-noarch-1.txz: Upgraded. a/kernel-generic-4.14.66-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.66-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.66-x86_64-1.txz: Upgraded. ap/man-db-2.8.4-x86_64-2.txz: Rebuilt. Rebuilt to get it on the slackpkg upgrade list since the previous texlive package clobbered /usr/bin/man and we need to fix that. d/kernel-headers-4.14.66-x86-1.txz: Upgraded. k/kernel-source-4.14.66-noarch-1.txz: Upgraded. l/glib2-2.56.2-x86_64-1.txz: Upgraded. t/texlive-2018.180822-x86_64-1.txz: Upgraded. Added some patches that I'd dropped - sorry, my bad. Don't clobber /usr/bin/man. Thanks to Johannes Schoepfer. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue Aug 21 18:39:27 UTC 2018 a/openssl-solibs-1.1.0i-x86_64-2.txz: Rebuilt. ap/cups-filters-1.21.0-x86_64-1.txz: Upgraded. Compiled against poppler-0.68.0. ap/qpdf-8.2.1-x86_64-1.txz: Upgraded. kde/calligra-2.9.11-x86_64-25.txz: Rebuilt. Recompiled against poppler-0.68.0. l/babl-0.1.56-x86_64-1.txz: Upgraded. l/gdbm-1.18-x86_64-1.txz: Upgraded. l/gegl-0.4.8-x86_64-1.txz: Upgraded. l/jmtpfs-0.5-x86_64-1.txz: Added. l/pango-1.42.4-x86_64-1.txz: Upgraded. l/poppler-0.68.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. n/dhcpcd-7.0.8-x86_64-1.txz: Upgraded. n/openssl-1.1.0i-x86_64-2.txz: Rebuilt. Fixed c_rehash script. n/php-7.2.9-x86_64-1.txz: Upgraded. t/texlive-2018.180820-x86_64-1.txz: Upgraded. Compiled against poppler-0.68.0. texdoc fixed - a cache file was missing synctex header was missing (for building third-party apps) xindy was broken - recompiled from source Thanks to Johannes Schoepfer. x/libX11-1.6.6-x86_64-1.txz: Upgraded. This update fixes some security issues: Fixed crash on invalid reply (CVE-2018-14598). Fixed off-by-one writes (CVE-2018-14599). Fixed out of boundary write (CVE-2018-14600). For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14598 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14599 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14600 (* Security fix *) xap/gimp-2.10.6-x86_64-1.txz: Upgraded. xfce/tumbler-0.2.1-x86_64-6.txz: Rebuilt. Recompiled against poppler-0.68.0. +--------------------------+ Sun Aug 19 23:59:17 UTC 2018 a/e2fsprogs-1.44.4-x86_64-1.txz: Upgraded. a/kernel-generic-4.14.65-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.65-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.65-x86_64-1.txz: Upgraded. ap/jove-4.16.0.73-x86_64-6.txz: Rebuilt. Fixed getline() namespace collision patch. ap/sudo-1.8.24-x86_64-1.txz: Upgraded. d/icecream-20180808-x86_64-1.txz: Upgraded. Use sources from git, which avoids timeouts and hangs that have been observed with version 1.1, and adds additional support for clang. d/kernel-headers-4.14.65-x86-1.txz: Upgraded. k/kernel-source-4.14.65-noarch-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Sat Aug 18 02:09:51 UTC 2018 a/kernel-generic-4.14.64-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.64-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.64-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.64-x86-1.txz: Upgraded. k/kernel-source-4.14.64-noarch-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Aug 17 16:52:04 UTC 2018 a/kernel-firmware-20180814_f1b95fe-noarch-1.txz: Upgraded. a/kernel-generic-4.14.63-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.63-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.63-x86_64-1.txz: Upgraded. ap/jove-4.16.0.73-x86_64-5.txz: Rebuilt. Avoid a namespace conflict with glibc's getline() function. Increase some hardcoded buffer sizes. Thanks to TTK. ap/mariadb-10.3.9-x86_64-1.txz: Upgraded. This update fixes bugs and security issues. For more information, see: https://mariadb.com/kb/en/mariadb-1039-release-notes/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3060 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3064 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3063 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3058 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3066 (* Security fix *) d/kernel-headers-4.14.63-x86-1.txz: Upgraded. k/kernel-source-4.14.63-noarch-1.txz: Upgraded. EFI_VARS m -> y EFI_VARS_PSTORE m -> y +HOTPLUG_SMT y l/expat-2.2.6-x86_64-1.txz: Upgraded. n/ntp-4.2.8p12-x86_64-1.txz: Upgraded. This release improves on one security fix in ntpd: LOW/MEDIUM: Sec 3012: Sybil vulnerability: ephemeral association attack While fixed in ntp-4.2.8p7 and with significant additional protections for this issue in 4.2.8p11, ntp-4.2.8p12 includes a fix for an edge case in the new noepeer support. Originally reported by Matt Van Gundy of Cisco. Edge-case hole reported by Martin Burnicki of Meinberg. And fixes another security issue in ntpq and ntpdc: LOW: Sec 3505: The openhost() function used during command-line hostname processing by ntpq and ntpdc can write beyond its buffer limit, which could allow an attacker to achieve code execution or escalate to higher privileges via a long string as the argument for an IPv4 or IPv6 command-line parameter. NOTE: It is unclear whether there are any common situations in which ntpq or ntpdc is used with a command line from an untrusted source. Reported by Fakhri Zulkifli. For more information, see: http://support.ntp.org/bin/view/Main/SecurityNotice#August_2018_ntp_4_2_8p12_NTP_Rel https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1549 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12327 (* Security fix *) n/samba-4.8.4-x86_64-1.txz: Upgraded. This is a security update in order to patch the following defects: Weak authentication protocol allowed. Denial of Service Attack on DNS and LDAP server. Insufficient input validation on client directory listing in libsmbclient. Denial of Service Attack on AD DC DRSUAPI server. Confidential attribute disclosure from the AD LDAP server. For more information, see: https://www.samba.org/samba/security/CVE-2018-1139.html https://www.samba.org/samba/security/CVE-2018-1140.html https://www.samba.org/samba/security/CVE-2018-10858.html https://www.samba.org/samba/security/CVE-2018-10918.html https://www.samba.org/samba/security/CVE-2018-10919.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1139 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1140 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10858 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10918 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10919 (* Security fix *) x/xf86-video-v4l-0.3.0-x86_64-1.txz: Upgraded. x/xterm-335-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue Aug 14 22:56:09 UTC 2018 a/kernel-firmware-20180814_fdd3468-noarch-1.txz: Upgraded. a/openssl-solibs-1.1.0i-x86_64-1.txz: Upgraded. d/strace-4.24-x86_64-1.txz: Upgraded. l/harfbuzz-1.8.8-x86_64-1.txz: Upgraded. n/iproute2-4.18.0-x86_64-1.txz: Upgraded. n/openssl-1.1.0i-x86_64-1.txz: Upgraded. This update fixes two low severity security issues: Client DoS due to large DH parameter. Cache timing vulnerability in RSA Key Generation. For more information, see: https://www.openssl.org/news/secadv/20180612.txt https://www.openssl.org/news/secadv/20180416.txt https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0732 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0737 (* Security fix *) x/mesa-18.1.6-x86_64-1.txz: Upgraded. xap/xscreensaver-5.40-x86_64-1.txz: Upgraded. +--------------------------+ Tue Aug 14 00:10:54 UTC 2018 a/etc-15.0-x86_64-8.txz: Rebuilt. /etc/passwd: Added icecc (UID 49). /etc/group: Added icecc (GID 49). a/pciutils-3.6.2-x86_64-1.txz: Upgraded. a/sysvinit-scripts-2.1-noarch-17.txz: Rebuilt. rc.M: start rc.icecc-scheduler and rc.iceccd. d/icecream-1.1-x86_64-1.txz: Added. Thanks to Heinz Wiesinger for the SBo reference build script. n/libmbim-1.16.2-x86_64-1.txz: Upgraded. n/libqmi-1.20.2-x86_64-1.txz: Upgraded. n/p11-kit-0.23.13-x86_64-1.txz: Upgraded. x/xterm-334-x86_64-1.txz: Upgraded. +--------------------------+ Sat Aug 11 05:01:49 UTC 2018 xap/mozilla-thunderbird-60.0-x86_64-2.txz: Rebuilt. Applied upstream patch to fix crash with folder name with special characters. Thanks to Karl Magnus Kolstø for the bug report and link to the patch. +--------------------------+ Fri Aug 10 22:42:55 UTC 2018 a/kernel-generic-4.14.62-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.62-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.62-x86_64-1.txz: Upgraded. ap/pamixer-1.3.1-x86_64-7.txz: Rebuilt. Recompiled against boost-1.68.0. d/cmake-3.12.1-x86_64-1.txz: Upgraded. d/distcc-3.3-x86_64-3.txz: Rebuilt. Install masquerade symlinks in /usr/lib${LIBDIRSUFFIX}/distcc/. d/kernel-headers-4.14.62-x86-1.txz: Upgraded. k/kernel-source-4.14.62-noarch-1.txz: Upgraded. kde/calligra-2.9.11-x86_64-24.txz: Rebuilt. Recompiled against boost-1.68.0. l/akonadi-1.13.0-x86_64-10.txz: Rebuilt. Recompiled against boost-1.68.0. l/boost-1.68.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/harfbuzz-1.8.7-x86_64-1.txz: Upgraded. l/libgsf-1.14.44-x86_64-1.txz: Upgraded. l/librsvg-2.42.6-x86_64-1.txz: Upgraded. l/libsoup-2.62.3-x86_64-1.txz: Upgraded. n/bind-9.12.2_P1-x86_64-1.txz: Upgraded. Fixed a security issue where named could crash during recursive processing of DNAME records when "deny-answer-aliases" was in use resulting in a denial of service. Note that "deny-answer-aliases" is rarely used. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5740 (* Security fix *) xap/audacious-3.10-x86_64-1.txz: Upgraded. xap/audacious-plugins-3.10-x86_64-1.txz: Upgraded. extra/pure-alsa-system/audacious-plugins-3.10-x86_64-1_alsa.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue Aug 7 23:24:17 UTC 2018 a/btrfs-progs-v4.17.1-x86_64-1.txz: Upgraded. a/sysvinit-scripts-2.1-noarch-16.txz: Rebuilt. rc.M: call update-gdk-pixbuf-loaders with HOME=/root to prevent creating a .cache directory in /. Thanks to Konrad Rzepecki. n/NetworkManager-1.12.2-x86_64-2.txz: Rebuilt. Fix libnm compile errors due to NM_AVAILABLE_IN_1_12_2 macro. x/xorg-server-1.20.1-x86_64-1.txz: Upgraded. x/xorg-server-xephyr-1.20.1-x86_64-1.txz: Upgraded. x/xorg-server-xnest-1.20.1-x86_64-1.txz: Upgraded. x/xorg-server-xvfb-1.20.1-x86_64-1.txz: Upgraded. xap/network-manager-applet-1.8.16-x86_64-1.txz: Upgraded. +--------------------------+ Tue Aug 7 05:51:28 UTC 2018 a/kernel-generic-4.14.61-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.61-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.61-x86_64-1.txz: Upgraded. a/sysvinit-scripts-2.1-noarch-15.txz: Rebuilt. rc.S: clean up files in /var/lib/pkgtools/setup/tmp. Thanks to burdi01. ap/hplip-3.18.7-x86_64-2.txz: Rebuilt. Patched to fix libImageProcessor installation. Thanks to Matteo Bernardini. d/kernel-headers-4.14.61-x86-1.txz: Upgraded. k/kernel-source-4.14.61-noarch-1.txz: Upgraded. l/opus-1.3_rc-x86_64-1.txz: Upgraded. n/iputils-s20180629-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-60.0-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/thunderbird/60.0/releasenotes/ https://www.mozilla.org/security/known-vulnerabilities/thunderbird.html https://www.mozilla.org/en-US/security/advisories/mfsa2018-19/ (* Security fix *) isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Sat Aug 4 07:38:34 UTC 2018 a/dbus-1.12.10-x86_64-1.txz: Upgraded. a/kernel-generic-4.14.60-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.60-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.60-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.60-x86-1.txz: Upgraded. d/mercurial-4.7-x86_64-1.txz: Upgraded. d/rust-1.28.0-x86_64-1.txz: Upgraded. k/kernel-source-4.14.60-noarch-1.txz: Upgraded. xap/blueman-2.0.6-x86_64-2.txz: Rebuilt. Allow users in the netdev group to make changes. Thanks to voleg, kgha, and zakame. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. testing/packages/glibc-2.28-x86_64-2.txz: Rebuilt. Fixed compile issues when linking with libpthread. testing/packages/glibc-i18n-2.28-x86_64-2.txz: Rebuilt. testing/packages/glibc-profile-2.28-x86_64-2.txz: Rebuilt. testing/packages/glibc-solibs-2.28-x86_64-2.txz: Rebuilt. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Thu Aug 2 20:12:10 UTC 2018 ap/hplip-3.18.7-x86_64-1.txz: Upgraded. l/harfbuzz-1.8.5-x86_64-1.txz: Upgraded. n/lftp-4.8.4-x86_64-1.txz: Upgraded. It has been discovered that lftp up to and including version 4.8.3 does not properly sanitize remote file names, leading to a loss of integrity on the local system when reverse mirroring is used. A remote attacker may trick a user to use reverse mirroring on an attacker controlled FTP server, resulting in the removal of all files in the current working directory of the victim's system. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10916 (* Security fix *) x/fonttosfnt-1.0.5-x86_64-1.txz: Upgraded. +--------------------------+ Wed Aug 1 22:38:53 UTC 2018 ap/man-db-2.8.4-x86_64-1.txz: Upgraded. d/gdb-8.1.1-x86_64-1.txz: Upgraded. d/python-pip-18.0-x86_64-1.txz: Upgraded. d/python-setuptools-40.0.0-x86_64-1.txz: Upgraded. d/python3-3.6.6-x86_64-1.txz: Upgraded. l/libpcap-1.9.0-x86_64-1.txz: Upgraded. l/pango-1.42.3-x86_64-1.txz: Upgraded. x/libdrm-2.4.93-x86_64-1.txz: Upgraded. xap/blueman-2.0.6-x86_64-1.txz: Upgraded. This update fixes an issue where blueman-mechanism did not enforce the polkit action 'org.blueman.network.setup' for which a polkit policy is shipped. This meant that any user with access to the D-Bus system bus was able to access the related API without authentication. The result was an unspecified impact on the networking stack. Thanks to Matthias Gerstner for discovering this issue. (* Security fix *) testing/packages/glibc-2.28-x86_64-1.txz: Added. These packages are in /testing pending FTBFS analysis. They seem to work fine here, but with a few header file deprecations and some other possible API changes and incompatibilities (see the NEWS file), I expect there will be some changes required to various packages. Feel free to test them out though. Because of changes to the way glibc is built and installed that started with the glibc-2.27 packages, you can upgrade to these packages and also (if you wish) downgrade back to glibc-2.27 using upgradepkg. testing/packages/glibc-i18n-2.28-x86_64-1.txz: Added. testing/packages/glibc-profile-2.28-x86_64-1.txz: Added. testing/packages/glibc-solibs-2.28-x86_64-1.txz: Added. +--------------------------+ Tue Jul 31 05:53:40 UTC 2018 a/kernel-firmware-20180730_7b5835f-noarch-1.txz: Upgraded. l/fuse-2.9.8-x86_64-1.txz: Upgraded. l/gdbm-1.17-x86_64-1.txz: Upgraded. l/seamonkey-solibs-2.49.4-x86_64-1.txz: Upgraded. l/utf8proc-2.2.0-x86_64-1.txz: Upgraded. xap/seamonkey-2.49.4-x86_64-1.txz: Upgraded. This update contains security fixes and improvements. For more information, see: http://www.seamonkey-project.org/releases/seamonkey2.49.4 (* Security fix *) +--------------------------+ Sun Jul 29 08:27:12 UTC 2018 a/kernel-generic-4.14.59-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.59-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.59-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.59-x86-1.txz: Upgraded. k/kernel-source-4.14.59-noarch-1.txz: Upgraded. x/mesa-18.1.5-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Jul 27 21:01:22 UTC 2018 Hey folks, my first order of business here needs to be a huge thank you to everyone who has donated at https://paypal.me/volkerdi to help keep this project going. As most of you are already aware by now, the financal situation here at Slackware HQ has not been great for many years, including not getting any pay for the last two years and forcing me (and my family) to live very frugally while I continued to work on the project hoping I'd figure out a way to actually monitize it by the time that Slackware 15.0 is ready for release. I'm not trying to cast any blame regarding the situation. Really, I can only blame myself for not trying to build my own ship years ago when things began to not really work out. I'm still looking into sustainable funding options such as Patreon or Liberapay (or perhaps both), and I'm open to other ideas. I'm no longer in immediate danger of going broke, and I'm no longer entertaining the notion of joining my friends at the local potato chip factory in order to pay my bills. :) My family is grateful and humbled by the support we've received. Hope we'll be able to keep this project going for a long time. Also, I realize that the website lacks updates and needs attention and I will need to find some time to devote to that. I've never been much of a website designer, and the slackware.com site is basically left over from work done by former Walnut Creek / BSDi employees. I've never seen able to make much sense of the SQL backend. The interface to edit and post articles is clunky (and I'm not sure the PHP for that even works any more). When I've posted articles in recent years, I've done so by editing the main page already processed from PHP into HTML, which is pretty darn messy as I'm sure you can imagine. I tend to prioritize the distribution itself over other demands on my time - that's clearly a lot to do with how things ended up the way they did. So, I guess that's the report for now. Lots more work to do and not enough time to do it in... that part I don't see changing moving forward. :) Thanks very much again. I'll do my best to keep you all posted. - Pat a/file-5.34-x86_64-1.txz: Upgraded. a/kernel-firmware-20180727_b01151b-noarch-1.txz: Upgraded. a/kernel-generic-4.14.58-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.58-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.58-x86_64-1.txz: Upgraded. d/gcc-8.2.0-x86_64-1.txz: Upgraded. d/gcc-brig-8.2.0-x86_64-1.txz: Upgraded. d/gcc-g++-8.2.0-x86_64-1.txz: Upgraded. d/gcc-gfortran-8.2.0-x86_64-1.txz: Upgraded. d/gcc-gnat-8.2.0-x86_64-1.txz: Upgraded. d/gcc-go-8.2.0-x86_64-1.txz: Upgraded. d/gcc-objc-8.2.0-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.58-x86-1.txz: Upgraded. d/libtool-2.4.6-x86_64-9.txz: Rebuilt. Recompiled to update embedded GCC version number. k/kernel-source-4.14.58-noarch-1.txz: Upgraded. CRASH_DUMP n -> y KEXEC n -> y +KEXEC_JUMP y +PROC_VMCORE y l/babl-0.1.54-x86_64-1.txz: Upgraded. l/gegl-0.4.6-x86_64-1.txz: Upgraded. l/libart_lgpl-2.3.21-x86_64-2.txz: Removed. This actually hasn't been needed by any Slackware package since koffice in KDE3, and this particular version won't work with the Trinity Desktop Environment, which is essentially a fork of KDE 3.5 updated to compile and run with modern libraries and development tools. I can't see much point in keeping it around. Thanks to _gin. n/NetworkManager-1.12.2-x86_64-1.txz: Upgraded. n/dhcpcd-7.0.7-x86_64-1.txz: Upgraded. x/libinput-1.11.3-x86_64-1.txz: Upgraded. extra/tigervnc/tigervnc-1.9.0-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Wed Jul 25 03:50:17 UTC 2018 a/kernel-generic-4.14.57-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.57-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.57-x86_64-1.txz: Upgraded. a/shadow-4.2.1-x86_64-5.txz: Rebuilt. adduser: added "input" to additional user groups. Thanks to stormtracknole. a/sysvinit-scripts-2.1-noarch-14.txz: Rebuilt. Handle remote (NFS, etc.) mounts with spaces in the name. Thanks to upnort. d/kernel-headers-4.14.57-x86-1.txz: Upgraded. d/parallel-20180722-noarch-1.txz: Upgraded. d/rust-1.27.2-x86_64-1.txz: Upgraded. d/subversion-1.10.2-x86_64-1.txz: Upgraded. k/kernel-source-4.14.57-noarch-1.txz: Upgraded. l/libgphoto2-2.5.19-x86_64-1.txz: Upgraded. l/libzip-1.5.1-x86_64-4.txz: Rebuilt. Make sure that the API-CHANGES file is included in the package documentation. x/xf86-video-r128-6.11.0-x86_64-1.txz: Upgraded. x/xorg-server-1.20.0-x86_64-3.txz: Rebuilt. Applied some patches that other distributions have been using for a while: Fix glamor so that the return value from glamor_fds_from_pixmap matches what's expected (thanks to Darth Vader for pointing out these patches). Autobind secondary GPUs to the master as output sink / offload source. This seems like a beneficial patch until/unless DEs start to handle this. For nvidia cards, if they are GeForce 8 or newer use the modesetting driver by default. Seems to be recommmended by upstream where they indicate that fixes going into nouveau are primarily to target older cards for legacy support and that the modesetting ddx is preferable for newer ones: https://bugs.freedesktop.org/show_bug.cgi?id=94844 x/xorg-server-xephyr-1.20.0-x86_64-3.txz: Rebuilt. x/xorg-server-xnest-1.20.0-x86_64-3.txz: Rebuilt. x/xorg-server-xvfb-1.20.0-x86_64-3.txz: Rebuilt. isolinux/initrd.img: Rebuilt. Use ter-v14v.psf.gz as the consolefont. It supports more character sets, and the larger font was causing wraparound on UEFI (at least on bare metal here). kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Jul 20 23:16:32 UTC 2018 ap/cups-filters-1.20.4-x86_64-2.txz: Rebuilt. Recompiled against poppler-0.67.0. kde/calligra-2.9.11-x86_64-23.txz: Rebuilt. Recompiled against poppler-0.67.0. l/ffmpeg-3.4.4-x86_64-1.txz: Upgraded. l/gst-plugins-base-1.14.2-x86_64-1.txz: Upgraded. l/gst-plugins-good-1.14.2-x86_64-1.txz: Upgraded. l/gst-plugins-libav-1.14.2-x86_64-1.txz: Upgraded. l/gstreamer-1.14.2-x86_64-1.txz: Upgraded. l/poppler-0.67.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. n/php-7.2.8-x86_64-1.txz: Upgraded. This is a security release which also contains several minor bug fixes. (* Security fix *) t/texlive-2018.180630-x86_64-2.txz: Rebuilt. Recompiled against poppler-0.67.0. xap/MPlayer-20180720-x86_64-1.txz: Upgraded. xfce/tumbler-0.2.1-x86_64-5.txz: Rebuilt. Recompiled against poppler-0.67.0. extra/pure-alsa-system/MPlayer-20180720-x86_64-1_alsa.txz: Upgraded. extra/pure-alsa-system/ffmpeg-3.4.4-x86_64-1_alsa.txz: Upgraded. extra/pure-alsa-system/gst-plugins-good-1.14.2-x86_64-1_alsa.txz: Upgraded. pasture/php-5.6.37-x86_64-1.txz: Upgraded. Several security bugs have been fixed in this release, including: Int Overflow lead to Heap OverFlow in exif_thumbnail_extract of exif.c heap-buffer-overflow (READ of size 48) while reading exif data (* Security fix *) +--------------------------+ Fri Jul 20 02:05:55 UTC 2018 a/util-linux-2.32.1-x86_64-1.txz: Upgraded. l/pango-1.42.2-x86_64-1.txz: Upgraded. n/whois-5.3.2-x86_64-1.txz: Upgraded. x/igt-gpu-tools-1.23-x86_64-1.txz: Added. x/intel-gpu-tools-1.22-x86_64-3.txz: Removed. x/xf86-video-ati-20180719_64bd009d-x86_64-1.txz: Upgraded. +--------------------------+ Wed Jul 18 22:41:16 UTC 2018 n/httpd-2.4.34-x86_64-1.txz: Upgraded. This update fixes two denial of service issues: mod_md: DoS via Coredumps on specially crafted requests mod_http2: DoS for HTTP/2 connections by specially crafted requests For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8011 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1333 (* Security fix *) +--------------------------+ Wed Jul 18 19:54:26 UTC 2018 a/kernel-generic-4.14.56-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.56-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.56-x86_64-1.txz: Upgraded. d/binutils-2.31.1-x86_64-1.txz: Upgraded. Shared library .so-version bump. d/cmake-3.12.0-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.56-x86-1.txz: Upgraded. d/oprofile-1.2.0-x86_64-5.txz: Rebuilt. Recompiled against binutils-2.31.1. k/kernel-source-4.14.56-noarch-1.txz: Upgraded. l/harfbuzz-1.8.4-x86_64-1.txz: Upgraded. n/NetworkManager-1.12.0-x86_64-3.txz: Rebuilt. Applied upstream patch to fix setting a VPN connection using nm-applet. Thanks to Lockywolf. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue Jul 17 21:16:10 UTC 2018 Happy 25th anniversary to the Slackware 1.00 release! When the original announcement went out on Usenet, I believe it had a UTC timestamp which has led to some confusion over whether the anniversary falls on the 16th (which was the date when I made the post) or on the 17th (which is when most people first saw it)... but really, what's the difference? We can celebrate on both days as far as I'm concerned. Thanks for sticking with the project all these years. Glad I was able to help. :) Here's a link to the 1.00 announcement: http://www.slackware.com/announce/1.0.php And here's a nice article that was posted on opensource.com: https://opensource.com/article/18/7/stackware-turns-25 a/kernel-firmware-20180717_8d69bab-noarch-1.txz: Upgraded. l/pulseaudio-12.2-x86_64-1.txz: Upgraded. n/gnutls-3.6.3-x86_64-1.txz: Upgraded. n/mutt-1.10.1-x86_64-1.txz: Upgraded. This update fixes bugs and security issues. Upstream strongly recommends that all IMAP and POP users upgrade as soon as possible. (* Security fix *) +--------------------------+ Sat Jul 14 21:49:31 UTC 2018 l/pulseaudio-12.1-x86_64-1.txz: Upgraded. l/utf8proc-2.1.1-x86_64-1.txz: Upgraded. +--------------------------+ Sat Jul 14 20:06:27 UTC 2018 a/kernel-firmware-20180706_6213586-noarch-1.txz: Upgraded. d/binutils-2.31-x86_64-1.txz: Upgraded. Shared library .so-version bump. d/oprofile-1.2.0-x86_64-4.txz: Rebuilt. Recompiled against binutils-2.31. x/intel-vaapi-driver-2.2.0-x86_64-1.txz: Upgraded. x/libXaw3dXft-1.6.2e-x86_64-1.txz: Upgraded. x/libepoxy-1.5.2-x86_64-1.txz: Upgraded. x/libva-2.2.0-x86_64-1.txz: Upgraded. x/libva-utils-2.2.0-x86_64-1.txz: Upgraded. x/mesa-18.1.4-x86_64-1.txz: Upgraded. x/xf86-video-s3virge-1.10.7-x86_64-5.txz: Rebuilt. Patched to fix build against xorg-server-1.20.0. Thanks to nobodino. x/xf86-video-tseng-1.2.5-x86_64-11.txz: Rebuilt. Patched to fix build against xorg-server-1.20.0. Thanks to nobodino. +--------------------------+ Fri Jul 13 21:48:06 UTC 2018 a/pciutils-3.6.1-x86_64-1.txz: Upgraded. ap/cups-filters-1.20.4-x86_64-1.txz: Upgraded. n/gnupg2-2.2.9-x86_64-1.txz: Upgraded. n/libgpg-error-1.32-x86_64-1.txz: Upgraded. +--------------------------+ Thu Jul 12 21:28:13 UTC 2018 a/etc-15.0-x86_64-7.txz: Rebuilt. Don't set a default MANPATH - it ends up overriding the config file settings. Thanks to Nate_KS and andygoth. a/mkinitrd-1.4.11-x86_64-8.txz: Rebuilt. Added hid-asus module to mkinitrd_command_generator.sh. Thanks to phalange. l/harfbuzz-1.8.3-x86_64-1.txz: Upgraded. n/bind-9.12.2-x86_64-1.txz: Upgraded. Looking at the BIND release schedule, it's probably better to stick with this stable branch than to track the development/unstable which isn't due to become bind-9.14.0 for many months. Like always, we'll move to a newer branch if that becomes necessary. x/xf86-input-libinput-0.28.0-x86_64-1.txz: Upgraded. x/xf86-video-ati-20180711_f533b1f6-x86_64-1.txz: Upgraded. +--------------------------+ Thu Jul 12 01:50:07 UTC 2018 a/kernel-generic-4.14.55-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.55-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.55-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.55-x86-1.txz: Upgraded. d/rust-1.27.1-x86_64-1.txz: Upgraded. k/kernel-source-4.14.55-noarch-1.txz: Upgraded. n/bind-9.13.2-x86_64-1.txz: Upgraded. This update fixes security issues: Fixed a bug where extraordinarily large zone transfers caused several problems, with possible outcomes including corrupted journal files or server exit due to assertion failure. Don't permit recursive query service to unauthorized clients. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5738 (* Security fix *) n/curl-7.61.0-x86_64-1.txz: Upgraded. This update fixes a buffer overflow in SMTP send. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0500 (* Security fix *) isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue Jul 10 21:57:11 UTC 2018 a/e2fsprogs-1.44.3-x86_64-1.txz: Upgraded. a/gptfdisk-1.0.4-x86_64-1.txz: Upgraded. n/dovecot-2.3.2.1-x86_64-1.txz: Upgraded. n/iptables-1.8.0-x86_64-1.txz: Upgraded. n/libnftnl-1.1.1-x86_64-1.txz: Upgraded. n/nftables-0.9.0-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-52.9.1-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/thunderbird/52.9.1/releasenotes/ https://www.mozilla.org/security/known-vulnerabilities/thunderbird.html (* Security fix *) +--------------------------+ Mon Jul 9 20:28:44 UTC 2018 a/kernel-generic-4.14.54-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.54-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.54-x86_64-1.txz: Upgraded. a/pkgtools-15.0-noarch-21.txz: Rebuilt. Modify makepkg to make reproducible builds possible: makepkg: sort symlinks in doinst.sh makepkg: sort the filelist piped into tar makepkg: add the -n flag to gzip to avoid embedding a timestamp makepkg: support the SOURCE_DATE_EPOCH environment variable Thanks to David Spencer. d/kernel-headers-4.14.54-x86-1.txz: Upgraded. k/kernel-source-4.14.54-noarch-1.txz: Upgraded. IP_FIB_TRIE_STATS n -> y NETWORK_PHY_TIMESTAMPING n -> y NET_KEY_MIGRATE n -> y NF_CONNTRACK_EVENTS n -> y NF_CONNTRACK_TIMEOUT n -> y NF_CONNTRACK_TIMESTAMP n -> y TCP_MD5SIG n -> y VLAN_8021Q_MVRP n -> y XFRM_MIGRATE n -> y +DP83640_PHY m +MRP m Thanks to Wayne, aka slackwhere on LQ. l/QScintilla-2.10.7-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Sun Jul 8 02:24:04 UTC 2018 d/llvm-6.0.1-x86_64-1.txz: Upgraded. +--------------------------+ Fri Jul 6 03:15:37 UTC 2018 t/texlive-2018.180630-x86_64-1.txz: Upgraded. Thanks to Johannes Schoepfer. x/libXScrnSaver-1.2.3-x86_64-1.txz: Upgraded. x/libXinerama-1.1.4-x86_64-1.txz: Upgraded. x/libXxf86misc-1.0.4-x86_64-1.txz: Upgraded. +--------------------------+ Thu Jul 5 18:32:28 UTC 2018 ap/mariadb-10.3.8-x86_64-1.txz: Upgraded. d/mercurial-4.6.2-x86_64-1.txz: Upgraded. l/babl-0.1.52-x86_64-1.txz: Upgraded. l/gegl-0.4.4-x86_64-1.txz: Upgraded. xap/gimp-2.10.4-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-52.9.0-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/thunderbird/52.9.0/releasenotes/ https://www.mozilla.org/en-US/security/advisories/mfsa2018-18/ (* Security fix *) +--------------------------+ Tue Jul 3 21:34:00 UTC 2018 a/kernel-generic-4.14.53-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.53-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.53-x86_64-1.txz: Upgraded. a/xfsprogs-4.17.0-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.53-x86-1.txz: Upgraded. d/meson-0.47.0-x86_64-1.txz: Upgraded. k/kernel-source-4.14.53-noarch-1.txz: Upgraded. l/harfbuzz-1.8.2-x86_64-1.txz: Upgraded. n/stunnel-5.48-x86_64-1.txz: Upgraded. x/libinput-1.11.2-x86_64-1.txz: Upgraded. x/xf86-video-v4l-20170126_0cbeee8-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue Jul 3 02:21:49 UTC 2018 a/coreutils-8.30-x86_64-1.txz: Upgraded. d/guile-2.2.4-x86_64-1.txz: Upgraded. +--------------------------+ Sun Jul 1 18:49:11 UTC 2018 a/pciutils-3.6.0-x86_64-1.txz: Upgraded. a/sysvinit-scripts-2.1-noarch-13.txz: Rebuilt. rc.M: remove sockets from /tmp/.X11-unix/. Thanks to Xsane. n/NetworkManager-1.12.0-x86_64-2.txz: Rebuilt. Recompiled with --with-libnm-glib. Thanks to Skaendo. +--------------------------+ Sat Jun 30 22:38:26 UTC 2018 x/xf86-video-intel-20180601_3d395062-x86_64-1.txz: Upgraded. x/xf86-video-r128-20180625_c4c878d-x86_64-1.txz: Upgraded. x/xf86-video-savage-20180625_0ece556-x86_64-1.txz: Upgraded. x/xf86-video-sis-20170717_a50b2b3-x86_64-1.txz: Upgraded. +--------------------------+ Fri Jun 29 22:29:16 UTC 2018 ap/vim-8.1.0127-x86_64-1.txz: Upgraded. n/NetworkManager-1.12.0-x86_64-1.txz: Upgraded. x/mesa-18.1.3-x86_64-1.txz: Upgraded. xap/vim-gvim-8.1.0127-x86_64-1.txz: Upgraded. +--------------------------+ Thu Jun 28 19:52:19 UTC 2018 a/dcron-4.5-x86_64-9.txz: Rebuilt. Dropped two patches that were breaking @daily jobs. Thanks to Dennis Snow for the bug report. ap/texinfo-6.5-x86_64-6.txz: Rebuilt. Rebuilt with --disable-perl-xs (use native Perl modules instead of C versions), which fixes the FTBFS issues we were having with glibc. Thanks to nobodino, ponce, and mmawhin for the help. +--------------------------+ Wed Jun 27 19:40:52 UTC 2018 ap/texinfo-6.5-x86_64-5.txz: Rebuilt. Fixed unescaped left brace warning from perl-5.28.0. l/gdbm-1.16-x86_64-1.txz: Upgraded. +--------------------------+ Wed Jun 27 04:13:25 UTC 2018 a/kernel-generic-4.14.52-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.52-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.52-x86_64-1.txz: Upgraded. ap/sox-14.4.2-x86_64-6.txz: Rebuilt. Rebuilt to drop libssp dependency. We're no longer building that with gcc since glibc already includes a built-in SSP implementation. d/gcc-8.1.1-x86_64-1.txz: Upgraded. Shared library .so-version bump. This is taken from the gcc-8-branch of the svn repo on 20180626, revision r262159. All packages have been tested for build failures and all new FTBFS issues are fixed - I think we're down to the six possibly obsolete X drivers (geode, r128, s3virge, savage, sis, and tseng) and virtuoso-ose. d/gcc-brig-8.1.1-x86_64-1.txz: Upgraded. d/gcc-g++-8.1.1-x86_64-1.txz: Upgraded. d/gcc-gfortran-8.1.1-x86_64-1.txz: Upgraded. Shared library .so-version bump. d/gcc-gnat-8.1.1-x86_64-1.txz: Upgraded. d/gcc-go-8.1.1-x86_64-1.txz: Upgraded. Shared library .so-version bump. d/gcc-objc-8.1.1-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.52-x86-1.txz: Upgraded. d/libtool-2.4.6-x86_64-8.txz: Rebuilt. Recompiled to update embedded GCC version number. k/kernel-source-4.14.52-noarch-1.txz: Upgraded. l/db48-4.8.30-x86_64-4.txz: Rebuilt. Patched to fix a symbol collision with gcc8. n/netatalk-3.1.11-x86_64-1.txz: Upgraded. Thanks to Matthew Schumacher for updating the build script and providing some useful config file examples. extra/pure-alsa-system/sox-14.4.2-x86_64-6_alsa.txz: Rebuilt. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Mon Jun 25 21:22:04 UTC 2018 a/eudev-3.2.5-x86_64-4.txz: Rebuilt. Added a couple more modules to watchdog.conf. l/fribidi-1.0.4-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_3-x86_64-1.txz: Upgraded. xap/mozilla-firefox-60.1.0esr-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html (* Security fix *) xap/network-manager-applet-1.8.14-x86_64-1.txz: Upgraded. xap/rxvt-unicode-9.22-x86_64-5.txz: Rebuilt. Recompiled against perl-5.28.0. xfce/Thunar-1.8.1-x86_64-1.txz: Upgraded. Shared library .so-version bump. xfce/xfce4-pulseaudio-plugin-0.4.1-x86_64-1.txz: Upgraded. xfce/xfce4-screenshooter-1.9.2-x86_64-1.txz: Upgraded. xfce/xfce4-taskmanager-1.2.1-x86_64-1.txz: Upgraded. xfce/xfdesktop-4.12.4-x86_64-3.txz: Rebuilt. Rebuilt after upgrading to Thunar-1.8.1. +--------------------------+ Sun Jun 24 20:50:10 UTC 2018 a/aaa_base-14.2-x86_64-5.txz: Rebuilt. Don't include /var/log/{packages,scripts,removed_packages,removed_scripts}. a/procps-ng-3.3.15-x86_64-2.txz: Rebuilt. Upgraded to psmisc-23.1. This adds namespace support to killall, and makes the default behavior to match against the current PID's namespace, rather than all namespaces as it did previously. ap/qpdf-8.1.0-x86_64-1.txz: Upgraded. ap/texinfo-6.5-x86_64-4.txz: Rebuilt. Recompiled against perl-5.28.0. ap/vim-8.1.0113-x86_64-1.txz: Upgraded. Compiled against perl-5.28.0. d/perl-5.28.0-x86_64-1.txz: Upgraded. kde/perlkde-4.14.3-x86_64-6.txz: Rebuilt. Recompiled against perl-5.28.0. kde/perlqt-4.14.3-x86_64-7.txz: Rebuilt. Recompiled against perl-5.28.0. l/tango-icon-theme-0.8.90-noarch-4.txz: Rebuilt. Made a couple of minor corrections to the slack-desc. n/epic5-2.0.1-x86_64-6.txz: Rebuilt. Recompiled against perl-5.28.0. n/irssi-1.1.1-x86_64-4.txz: Rebuilt. Recompiled against perl-5.28.0. n/net-snmp-5.7.3-x86_64-9.txz: Rebuilt. Recompiled against perl-5.28.0. n/ntp-4.2.8p11-x86_64-4.txz: Rebuilt. Recompiled against perl-5.28.0. n/stunnel-5.47-x86_64-1.txz: Upgraded. xap/hexchat-2.14.1-x86_64-4.txz: Rebuilt. Recompiled against perl-5.28.0. xap/vim-gvim-8.1.0113-x86_64-1.txz: Upgraded. Compiled against perl-5.28.0. +--------------------------+ Sat Jun 23 04:57:41 UTC 2018 a/dialog-1.3_20170509-x86_64-2.txz: Rebuilt. It seems the latest dialog causes a lot of breakage in the installer and other scripts. I looked over the diff since last time and nothing jumped out at me. Reverting to the previous version that worked properly. isolinux/initrd.img: Rebuilt. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Sat Jun 23 01:22:07 UTC 2018 a/aaa_elflibs-15.0-x86_64-2.txz: Rebuilt. Upgraded libacl.so.1 and libattr.so.1. Added libaio.so.1 (needed by future versions of lvm). a/lvm2-2.02.177-x86_64-1.txz: Upgraded. Revert to the previous working version of lvm2. Based on the comments in the release notes for version 2.02.178, perhaps it would be prudent to sit out the next year and a half of planned instability. I can't recall ever _needing_ to upgrade LVM (the version number has been on 2.02.x for well over a decade)... let's avoid being beta testers as upstream refactors everything. isolinux/initrd.img: Rebuilt. Added libaio.so.1 (needed by future versions of lvm). usb-and-pxe-installers/usbboot.img: Rebuilt. Added libaio.so.1 (needed by future versions of lvm). +--------------------------+ Fri Jun 22 21:54:41 UTC 2018 a/aaa_terminfo-6.1_20180616-x86_64-1.txz: Upgraded. a/dialog-1.3_20180621-x86_64-1.txz: Upgraded. d/git-2.18.0-x86_64-1.txz: Upgraded. d/rust-1.27.0-x86_64-1.txz: Upgraded. l/ncurses-6.1_20180616-x86_64-1.txz: Upgraded. l/pulseaudio-12.0-x86_64-2.txz: Rebuilt. When installing, recompile the GSettings XML schema files. Thanks to ill323. l/tango-icon-theme-0.8.90-noarch-3.txz: Rebuilt. Don't require locking for doinst.sh. xap/blackbox-0.73-x86_64-1.txz: Upgraded. +--------------------------+ Thu Jun 21 22:58:42 UTC 2018 a/pkgtools-15.0-noarch-20.txz: Rebuilt. Move pkgtools database to /var/lib/pkgtools/. Move removed logs to /var/log/pkgtools/. a/sysvinit-2.90-x86_64-1.txz: Upgraded. ap/cups-filters-1.20.3-x86_64-3.txz: Rebuilt. Recompiled against poppler-0.66.0. kde/calligra-2.9.11-x86_64-22.txz: Rebuilt. Recompiled against poppler-0.66.0. l/dbus-python-1.2.8-x86_64-1.txz: Upgraded. l/gc-7.6.6-x86_64-1.txz: Upgraded. l/harfbuzz-1.8.1-x86_64-1.txz: Upgraded. l/poppler-0.66.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/pulseaudio-12.0-x86_64-1.txz: Upgraded. n/dhcpcd-7.0.6-x86_64-1.txz: Upgraded. n/php-7.2.7-x86_64-1.txz: Upgraded. Added support for libedit. t/texlive-2017.171108-x86_64-7.txz: Rebuilt. Recompiled against poppler-0.66.0. x/libwacom-0.30-x86_64-1.txz: Upgraded. xfce/exo-0.12.2-x86_64-1.txz: Upgraded. xfce/tumbler-0.2.1-x86_64-4.txz: Rebuilt. Recompiled against poppler-0.66.0. xfce/xfce4-settings-4.12.4-x86_64-1.txz: Upgraded. +--------------------------+ Thu Jun 21 05:18:41 UTC 2018 a/kernel-generic-4.14.51-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.51-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.51-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.51-x86-1.txz: Upgraded. d/parallel-20180622-noarch-1.txz: Upgraded. k/kernel-source-4.14.51-noarch-1.txz: Upgraded. l/libedit-20180525_3.1-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue Jun 19 22:35:25 UTC 2018 a/acl-2.2.53-x86_64-1.txz: Upgraded. a/attr-2.4.48-x86_64-1.txz: Upgraded. n/gnupg-1.4.23-x86_64-1.txz: Upgraded. Sanitize the diagnostic output of the original file name in verbose mode. By using a made up file name in the message it was possible to fake status messages. Using this technique it was for example possible to fake the verification status of a signed mail. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12020 (* Security fix *) x/libXaw3d-1.6.3-x86_64-1.txz: Upgraded. x/libinput-1.11.1-x86_64-1.txz: Upgraded. x/xf86-input-mouse-1.9.3-x86_64-1.txz: Upgraded. testing/packages/pkgtools-15.0-noarch-20.txz: Rebuilt. This update is a bit scarier than usual, so we're going to test it here first and then move it into the main tree in a couple of days if there are no serious bug reports. It's well-tested here, and works with the slackpkg that's in -current now, but I don't know about slackpkg+ so that's another reason to let it cool down here first. The purpose of this update is to migrate the package database and directories from /var/log to /var/lib/pkgtools. /var/log was never a good place for this data, as it is considered by many to be a directory that could be wiped to free up some space. Originally the package database was in /var/adm, but the FSSTND (later FHS) group decided that directory should be a symlink to /var/log, and I went along with that since it was years ago and I was a n00b and didn't know any better. /var/lib/pkgtools will be a better and safer location. The removed_packages and removed_scripts directories are really just logs that aren't actually used for anything - those will remain under /var/log, but moved into /var/log/pkgtools. Everything under /var/log will be considered potentially non-permanent by the pkgtools - if any directories or symlinks disappear from there, the pkgtools will automatically recreate them as needed. In fact, the migration process will create symlinks from all the old directory locations to the new ones, so anything that expects the old locations (including slackpkg, for now) should continue to work. Once this moves into the main tree, the plan is to fix other packages to use the new installer script directory (/var/lib/pkgtools/setup) and change the installer and slackpkg to use the new native locations for everything. When slackpkg is changed over to use the new native locations, I'll also make sure to float that in testing/ for a few days before moving it to the main tree to avoid more unintentional disruption to slackpkg+ users. Be aware that the package database migration is a one-way operation, but even so if you later downgrade to an older version of the pkgtools it will still work through the compatibility symlinks. +--------------------------+ Tue Jun 19 05:47:22 UTC 2018 a/btrfs-progs-v4.17-x86_64-1.txz: Upgraded. a/lvm2-2.02.179-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_2-x86_64-1.txz: Upgraded. n/NetworkManager-1.10.10-x86_64-1.txz: Upgraded. x/vulkan-sdk-1.1.73.0-x86_64-1.txz: Upgraded. +--------------------------+ Mon Jun 18 18:33:23 UTC 2018 isolinux/initrd.img: Rebuilt. Use -C crc32 when compressing the initrd/modules with xz. usb-and-pxe-installers/usbboot.img: Rebuilt. Use -C crc32 when compressing the initrd/modules with xz. +--------------------------+ Mon Jun 18 06:19:23 UTC 2018 a/aaa_elflibs-15.0-x86_64-1.txz: Upgraded. Upgraded to libelf-0.171.so, added libgdbm.so.6.0.0. a/etc-15.0-x86_64-6.txz: Rebuilt. Add $(uname -m) information to /etc/issue.new. Don't include /tmp directories - these are handled by aaa_base. a/kernel-generic-4.14.50-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.50-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.50-x86_64-1.txz: Upgraded. ap/man-db-2.8.3-x86_64-3.txz: Rebuilt. Recompiled against gdbm-1.15. ap/zsh-5.5.1-x86_64-2.txz: Rebuilt. Recompiled against gdbm-1.15. d/clisp-2.49_20180423_d1310adc5-x86_64-1.txz: Upgraded. Compiled against gdbm-1.15. d/kernel-headers-4.14.50-x86-1.txz: Upgraded. d/perl-5.26.2-x86_64-5.txz: Rebuilt. Recompiled against gdbm-1.15. d/python-2.7.15-x86_64-3.txz: Rebuilt. Recompiled against gdbm-1.15. d/python3-3.6.5-x86_64-4.txz: Rebuilt. Recompiled against gdbm-1.15. d/ruby-2.5.1-x86_64-4.txz: Rebuilt. Recompiled against gdbm-1.15. k/kernel-source-4.14.50-noarch-1.txz: Upgraded. kde/kdelibs-4.14.38-x86_64-3.txz: Rebuilt. Patched to build with OpenSSL-1.1.x. Thanks to nobodino. l/gdbm-1.15-x86_64-1.txz: Upgraded. Shared library .so-version bump. n/cyrus-sasl-2.1.27_rc8-x86_64-1.txz: Upgraded. Compiled against gdbm-1.15. n/mutt-1.10.0-x86_64-2.txz: Rebuilt. Recompiled against gdbm-1.15. n/php-7.2.6-x86_64-2.txz: Rebuilt. Recompiled against gdbm-1.15. n/yptools-2.14-x86_64-11.txz: Rebuilt. Recompiled against gdbm-1.15. xap/gnuchess-6.2.5-x86_64-3.txz: Rebuilt. Recompiled against gdbm-1.15. isolinux/initrd.img: Rebuilt. Copy libefiboot to the installer (needed by efibootmgr). Compress the kernel modules with xz. Compress the initrd image with xz. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. Copy libefiboot to the installer (needed by efibootmgr). Compress the kernel modules with xz. Compress the initrd image with xz. +--------------------------+ Sat Jun 16 05:59:57 UTC 2018 d/cmake-3.11.4-x86_64-1.txz: Upgraded. d/strace-4.23-x86_64-1.txz: Upgraded. n/crda-3.18-x86_64-8.txz: Rebuilt. Upgraded to wireless-regdb-2018.05.31. n/ethtool-4.17-x86_64-1.txz: Upgraded. x/mesa-18.1.2-x86_64-1.txz: Upgraded. +--------------------------+ Fri Jun 15 04:12:46 UTC 2018 a/efibootmgr-16-x86_64-2.txz: Rebuilt. a/efivar-35-x86_64-1.txz: Upgraded. Switch to efivar-35, since 36 seems to have problems. Thanks to _RDS_. ap/slackpkg-2.83.0-noarch-3.txz: Rebuilt. Don't remove ChangeLog.txt upon upgrade/reinstall. Use CHECKSUMS.md5.asc to determine if ChangeLog.txt is unchanged. Remove dead bjtu.edu.cn mirrors from the sample mirrors files. isolinux/initrd.img: Rebuilt. Include libefivar.so.1 on the installer (needed by efibootmgr). usb-and-pxe-installers/usbboot.img: Rebuilt. Include libefivar.so.1 on the installer (needed by efibootmgr). +--------------------------+ Fri Jun 15 00:03:49 UTC 2018 a/dcron-4.5-x86_64-8.txz: Rebuilt. rc.crond: match the running process more accurately. a/glibc-zoneinfo-2018e-noarch-3.txz: Rebuilt. Don't emit an error if the /etc/localtime-copied-from is not present when the package is initially installed. a/libcgroup-0.41-x86_64-5.txz: Rebuilt. Added /etc/cgconfig.d/ directory. a/pkgtools-15.0-noarch-19.txz: Rebuilt. installpkg, makebootdisk, removepkg, upgradepkg: don't try to remove admin directories (supposedly "in case" they are a symlink). a/sysvinit-scripts-2.1-noarch-12.txz: Rebuilt. rc.6: stop haveged rc.S: start rc.cgconfig and rc.cgred ap/at-3.1.20-x86_64-5.txz: Rebuilt. rc.atd: match the running process more accurately. ap/slackpkg-2.83.0-noarch-2.txz: Rebuilt. Patched to handle the case where /var/log/packages is a symlink. l/gsl-2.5-x86_64-1.txz: Upgraded. +--------------------------+ Wed Jun 13 21:55:19 UTC 2018 a/etc-15.0-x86_64-5.txz: Rebuilt. Don't hardcode passwd/shadow/group additions in doinst.sh - get them from the .new files. a/sysvinit-scripts-2.1-noarch-11.txz: Rebuilt. rc.S: don't start rc.haveged in this script - move it to rc.M. rc.M: start rc.haveged after seeding /dev/urandom in rc.S, and after starting syslogd, klogd, and udev in rc.M. rc.M: start rc.rndg (we don't ship it or rng-tools) after udev. H. Peter Anvin says that it's fine to run both haveged and rndg, and I trust his opinion on that. Thanks to GazL. ap/at-3.1.20-x86_64-4.txz: Rebuilt. Fixed wrong variable in rc.atd. Thanks to upnort. n/libgcrypt-1.8.3-x86_64-1.txz: Upgraded. Use blinding for ECDSA signing to mitigate a novel side-channel attack. For more information, see: https://www.nccgroup.trust/us/our-research/technical-advisory-return-of-the-hidden-number-problem/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0495 (* Security fix *) +--------------------------+ Wed Jun 13 05:43:00 UTC 2018 a/dcron-4.5-x86_64-7.txz: Rebuilt. Added init script and defaults file. Moved TMPDIR to /run/cron. Thanks to Robby Workman and shasta. a/efibootmgr-16-x86_64-1.txz: Upgraded. a/efivar-36-x86_64-1.txz: Added. a/elilo-3.16-x86_64-7.txz: Rebuilt. a/glibc-solibs-2.27-x86_64-4.txz: Rebuilt. Don't restart init in the install script, let rc.6 handle it. a/haveged-1.9.2-x86_64-1.txz: Added. a/pkgtools-15.0-noarch-18.txz: Rebuilt. setup.services: add support for rc.atd and rc.crond a/sysvinit-scripts-2.1-noarch-10.txz: Rebuilt. rc.6: restart init when shutting down - this prevents it from holding file handles to removed/upgraded versions of the glibc shared libraries which would interfere with shutdown. rc.K: use full path to telinit rc.M: start rc.atd and rc.crond rc.M: don't remove cron tempfiles (moved to /run/cron) rc.S: start rc.haveged ap/at-3.1.20-x86_64-3.txz: Rebuilt. Added init script and defaults file. l/glibc-2.27-x86_64-4.txz: Rebuilt. Don't restart init in the install script, let rc.6 handle it. l/glibc-i18n-2.27-x86_64-4.txz: Rebuilt. l/glibc-profile-2.27-x86_64-4.txz: Rebuilt. l/gnu-efi-3.0.8-x86_64-1.txz: Upgraded. +--------------------------+ Tue Jun 12 05:02:45 UTC 2018 a/kernel-firmware-20180606_d114732-noarch-1.txz: Upgraded. a/kernel-generic-4.14.49-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.49-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.49-x86_64-1.txz: Upgraded. a/libcgroup-0.41-x86_64-4.txz: Rebuilt. Apply all post 0.41 patches from git, including one for an infinite loop bug that causes 100% CPU usage on one core. Thanks to chris.willing. a/pkgtools-15.0-noarch-17.txz: Rebuilt. installpkg: Use terse mode if TERSE=0 is set in the environment (this already works for removepkg and upgradepkg). This allows using terse mode in other tools that use the pkgtools (such as slackpkg with: TERSE=0 slackpkg). Thanks to Xsane. ap/hplip-3.18.6-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.49-x86-1.txz: Upgraded. k/kernel-source-4.14.49-noarch-1.txz: Upgraded. GPIO_AMDPT n -> m (thanks to walecha) NFSD_V3_ACL n -> y (thanks to Jonathan Woithe) NFS_V3_ACL n -> y (thanks to Jonathan Woithe) NFS_V4_2 n -> y +NFSD_V2_ACL y +NFS_ACL_SUPPORT y +NFS_V4_SECURITY_LABEL y l/LibRaw-0.18.12-x86_64-1.txz: Upgraded. This update fixes bugs and security issues, including: parse_qt: possible integer overflow reject broken/crafted NOKIARAW files recover read position if TIFF/EXIF tag is too long possible infinite loop in parse_minolta() possible stack overrun in X3F parser out of bounds read in X3F parser For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13735 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14265 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10528 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10529 (* Security fix *) l/dconf-0.26.1-x86_64-3.txz: Rebuilt. Eliminate install script noise. l/dconf-editor-3.26.2-x86_64-3.txz: Rebuilt. Eliminate install script noise. n/iproute2-4.17.0-x86_64-1.txz: Upgraded. x/wqy-zenhei-font-ttf-0.8.38_1-noarch-7.txz: Rebuilt. Try to avoid overriding other font choices unless lang = zh-cn or zh-sg. x/xkbcomp-1.4.2-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Sat Jun 9 16:57:58 UTC 2018 ap/cups-2.2.8-x86_64-2.txz: Rebuilt. Applied upstream patch to fix high CPU usage in some situations. +--------------------------+ Fri Jun 8 20:37:06 UTC 2018 a/glibc-solibs-2.27-x86_64-3.txz: Rebuilt. a/pkgtools-15.0-noarch-16.txz: Rebuilt. upgradepkg: clean up --help output and add options upgradepkg: accept -help option (not just --help) upgradepkg: don't omit error messages in --terse mode upgradepkg: only print missing new package in old%new mode upgradepkg.8: move information about config file handling from BUGS to the DESCRIPTION section Thanks to Xsane. ap/vim-8.1.0039-x86_64-1.txz: Upgraded. l/glibc-2.27-x86_64-3.txz: Rebuilt. When installing the package, remove old versions of the glibc shared libraries. In addition to eliminating residue on the system from old package versions, this change will make it possible in the future to revert to older glibc packages using upgradepkg. l/glibc-i18n-2.27-x86_64-3.txz: Rebuilt. l/glibc-profile-2.27-x86_64-3.txz: Rebuilt. n/gnupg2-2.2.8-x86_64-1.txz: Upgraded. Sanitize the diagnostic output of the original file name in verbose mode. By using a made up file name in the message it was possible to fake status messages. Using this technique it was for example possible to fake the verification status of a signed mail. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12020 (* Security fix *) xap/vim-gvim-8.1.0039-x86_64-1.txz: Upgraded. +--------------------------+ Wed Jun 6 22:19:01 UTC 2018 a/bash-4.4.023-x86_64-1.txz: Upgraded. a/kernel-firmware-20180604_1fa9ce3-noarch-1.txz: Upgraded. a/kernel-generic-4.14.48-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.48-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.48-x86_64-1.txz: Upgraded. ap/cups-2.2.8-x86_64-1.txz: Upgraded. ap/ghostscript-fonts-std-8.11-noarch-3.txz: Rebuilt. Rebuilt this and many other font packages or packages with build scripts that call mkfontdir or mkfontscale to suppress any error messages caused by collisions if another package installation is writing files to the same font directories when those utilities are run. In that case, the other package will also be running mkfontdir/mkfontscale after the files are installed, so any issues will be cleaned up then. Last one out turn off the lights, so to speak. ap/sqlite-3.24.0-x86_64-1.txz: Upgraded. ap/terminus-font-4.40-noarch-3.txz: Rebuilt. d/kernel-headers-4.14.48-x86-1.txz: Upgraded. d/rust-1.26.2-x86_64-1.txz: Upgraded. k/kernel-source-4.14.48-noarch-1.txz: Upgraded. l/elfutils-0.171-x86_64-1.txz: Upgraded. l/harfbuzz-1.7.7-x86_64-1.txz: Upgraded. l/mozilla-nss-3.37.3-x86_64-1.txz: Upgraded. l/readline-7.0.005-x86_64-1.txz: Upgraded. x/dejavu-fonts-ttf-2.37-noarch-4.txz: Rebuilt. x/font-adobe-100dpi-1.0.3-noarch-3.txz: Rebuilt. x/font-adobe-75dpi-1.0.3-noarch-3.txz: Rebuilt. x/font-adobe-utopia-100dpi-1.0.4-noarch-3.txz: Rebuilt. x/font-adobe-utopia-75dpi-1.0.4-noarch-3.txz: Rebuilt. x/font-adobe-utopia-type1-1.0.4-noarch-3.txz: Rebuilt. x/font-arabic-misc-1.0.3-noarch-3.txz: Rebuilt. x/font-bh-100dpi-1.0.3-noarch-3.txz: Rebuilt. x/font-bh-75dpi-1.0.3-noarch-3.txz: Rebuilt. x/font-bh-lucidatypewriter-100dpi-1.0.3-noarch-3.txz: Rebuilt. x/font-bh-lucidatypewriter-75dpi-1.0.3-noarch-3.txz: Rebuilt. x/font-bh-ttf-1.0.3-noarch-3.txz: Rebuilt. x/font-bh-type1-1.0.3-noarch-3.txz: Rebuilt. x/font-bitstream-100dpi-1.0.3-noarch-3.txz: Rebuilt. x/font-bitstream-75dpi-1.0.3-noarch-3.txz: Rebuilt. x/font-bitstream-speedo-1.0.2-noarch-3.txz: Rebuilt. x/font-bitstream-type1-1.0.3-noarch-3.txz: Rebuilt. x/font-cronyx-cyrillic-1.0.3-noarch-3.txz: Rebuilt. x/font-cursor-misc-1.0.3-noarch-3.txz: Rebuilt. x/font-daewoo-misc-1.0.3-noarch-3.txz: Rebuilt. x/font-dec-misc-1.0.3-noarch-3.txz: Rebuilt. x/font-ibm-type1-1.0.3-noarch-3.txz: Rebuilt. x/font-isas-misc-1.0.3-noarch-3.txz: Rebuilt. x/font-jis-misc-1.0.3-noarch-3.txz: Rebuilt. x/font-micro-misc-1.0.3-noarch-3.txz: Rebuilt. x/font-misc-cyrillic-1.0.3-noarch-3.txz: Rebuilt. x/font-misc-ethiopic-1.0.3-noarch-3.txz: Rebuilt. x/font-misc-meltho-1.0.3-noarch-3.txz: Rebuilt. x/font-misc-misc-1.1.2-noarch-3.txz: Rebuilt. x/font-mutt-misc-1.0.3-noarch-3.txz: Rebuilt. x/font-schumacher-misc-1.1.2-noarch-3.txz: Rebuilt. x/font-screen-cyrillic-1.0.4-noarch-3.txz: Rebuilt. x/font-sony-misc-1.0.3-noarch-3.txz: Rebuilt. x/font-sun-misc-1.0.3-noarch-3.txz: Rebuilt. x/font-winitzki-cyrillic-1.0.3-noarch-3.txz: Rebuilt. x/font-xfree86-type1-1.0.4-noarch-3.txz: Rebuilt. x/liberation-fonts-ttf-2.00.1-noarch-3.txz: Rebuilt. x/libinput-1.11.0-x86_64-1.txz: Upgraded. x/sazanami-fonts-ttf-20040629-noarch-3.txz: Rebuilt. x/sinhala_lklug-font-ttf-20060929-noarch-3.txz: Rebuilt. x/tibmachuni-font-ttf-1.901b-noarch-3.txz: Rebuilt. x/ttf-indic-fonts-0.5.14-noarch-3.txz: Rebuilt. x/ttf-tlwg-0.6.4-noarch-3.txz: Rebuilt. x/urw-core35-fonts-otf-20170801_91edd6e_git-noarch-2.txz: Rebuilt. x/wqy-zenhei-font-ttf-0.8.38_1-noarch-6.txz: Rebuilt. xap/mozilla-firefox-60.0.2-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefox.html (* Security fix *) xap/x3270-3.3.12ga7-x86_64-5.txz: Rebuilt. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue Jun 5 05:24:22 UTC 2018 ap/mc-4.8.21-x86_64-1.txz: Upgraded. ap/soma-3.0.4-noarch-1.txz: Upgraded. d/perl-5.26.2-x86_64-4.txz: Rebuilt. Added IO-Socket-SSL-2.056 and Net-SSLeay-1.85. Thanks to Xsane. n/ModemManager-1.8.0-x86_64-1.txz: Upgraded. n/bluez-5.50-x86_64-1.txz: Upgraded. n/dhcpcd-7.0.5b-x86_64-1.txz: Upgraded. xap/gnuplot-5.2.4-x86_64-1.txz: Upgraded. +--------------------------+ Sun Jun 3 05:14:12 UTC 2018 a/mkinitrd-1.4.11-x86_64-7.txz: Rebuilt. Provide absolute path to depmod. Thanks to andygoth. ap/mariadb-10.3.7-x86_64-1.txz: Upgraded. Shared library .so-version bump. libmysqld.so.19 was renamed to libmariadbd.so.19. Anything linking to libmysqld.so.19 will need to be recompiled. ap/nano-2.9.8-x86_64-1.txz: Upgraded. ap/sysstat-11.6.4-x86_64-1.txz: Upgraded. kde/amarok-2.9.0-x86_64-3.txz: Rebuilt. Recompiled to link to libmariadbd.so.19. l/librsvg-2.42.5-x86_64-1.txz: Upgraded. n/p11-kit-0.23.12-x86_64-1.txz: Upgraded. x/mesa-18.1.1-x86_64-1.txz: Upgraded. +--------------------------+ Fri Jun 1 21:28:10 UTC 2018 a/mcelog-158-x86_64-1.txz: Upgraded. a/pkgtools-15.0-noarch-15.txz: Rebuilt. installpkg, upgradepkg: test tty -s before using tput. Thanks to aaazen. d/cmake-3.11.3-x86_64-1.txz: Upgraded. l/imagemagick-6.9.9_49-x86_64-1.txz: Upgraded. Support OpenMP. This had been disabled years ago due to issues with perl modules, but probably that's been fixed by now. Thanks to olear. l/pygobject3-3.28.3-x86_64-1.txz: Upgraded. x/xf86-input-evdev-2.10.6-x86_64-1.txz: Upgraded. x/xf86-input-synaptics-1.9.1-x86_64-1.txz: Upgraded. xap/fvwm-2.6.8-x86_64-1.txz: Upgraded. extra/xf86-video-fbdev/xf86-video-fbdev-0.5.0-x86_64-1.txz: Upgraded. +--------------------------+ Thu May 31 04:55:33 UTC 2018 a/kernel-generic-4.14.47-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.47-x86_64-1.txz: Upgraded. SCSI_DPT_I2O m -> y SCSI_ISCI m -> y (thanks to wael_h) a/kernel-modules-4.14.47-x86_64-1.txz: Upgraded. a/pkgtools-15.0-noarch-14.txz: Rebuilt. installpkg: rarely, an uncompressed size that's not quite to the next level (e.g., 1020K) will exceed the expected length and cause a --terse line to be one character longer than --terselength. Chop lines to --terselength before outputting them. The trailing ']' might be dropped, but no big deal. ap/slackpkg-2.83.0-noarch-1.txz: Upgraded. Release 2.83.0; thanks to orbea, Didier Spaier, burdi01, David Allen, Eduard Rozenberg, and Stuart Winter for various fixes and enhancements. Allow using vimdiff to compare .new and original files Numerous fixups for alternate $ROOT .new config files are sorted so that display order should be consistent among multiple machines Abort operation if system date is near epoch (mostly relevant for ARM machines and others with no RTC) Update Slackware ARM gpg key Update Slackware ARM mirror list No longer offer to run lilo - simply advise user that the kernel image has changed and give advice, but also require a keypress to (hopefully) confirm that the message was actually read mandoc lint fixes to slackpkg.8 Warn user if a -current mirror is selected (but only warn once) d/git-2.17.1-x86_64-1.txz: Upgraded. This update fixes security issues: Submodule "names" come from the untrusted .gitmodules file, but we blindly append them to $GIT_DIR/modules to create our on-disk repo paths. This means you can do bad things by putting "../" into the name. We now enforce some rules for submodule names which will cause Git to ignore these malicious names (CVE-2018-11235). Credit for finding this vulnerability and the proof of concept from which the test script was adapted goes to Etienne Stalmans. It was possible to trick the code that sanity-checks paths on NTFS into reading random piece of memory (CVE-2018-11233). Credit for fixing for these bugs goes to Jeff King, Johannes Schindelin and others. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11235 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11233 (* Security fix *) d/kernel-headers-4.14.47-x86-1.txz: Upgraded. d/rust-1.26.1-x86_64-1.txz: Upgraded. k/kernel-source-4.14.47-noarch-1.txz: Upgraded. l/fftw-3.3.8-x86_64-1.txz: Upgraded. l/imagemagick-6.9.9_48-x86_64-1.txz: Upgraded. n/network-scripts-15.0-noarch-8.txz: Rebuilt. Allow setting an interface in promiscuous mode; this is needed for networking to function properly in containers Fixup setting of IPALIASES (allow non /32 masks; not only is the /32 mask not required and even undesirable in some cases, this makes ipv6 support easier to integrate (and Darren is working on that as well) Thanks to Darren Austin. n/stunnel-5.46-x86_64-1.txz: Upgraded. n/ulogd-2.0.7-x86_64-2.txz: Rebuilt. Fixed empty logrotate file. x/xorg-server-1.20.0-x86_64-2.txz: Rebuilt. Patched to fix nouveau segfault. Thanks to Rod3775 for the patch. x/xorg-server-xephyr-1.20.0-x86_64-2.txz: Rebuilt. x/xorg-server-xnest-1.20.0-x86_64-2.txz: Rebuilt. x/xorg-server-xvfb-1.20.0-x86_64-2.txz: Rebuilt. xap/network-manager-applet-1.8.12-x86_64-2.txz: Rebuilt. Patched crash bug. Thanks to gmgf. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Mon May 28 19:12:29 UTC 2018 a/pkgtools-15.0-noarch-13.txz: Rebuilt. installpkg: default line length for --terselength is the number of columns. removepkg: added --terse mode. upgradepkg: default line length for --terselength is the number of columns. upgradepkg: accept -option in addition to --option. ap/vim-8.1.0026-x86_64-1.txz: Upgraded. d/bison-3.0.5-x86_64-1.txz: Upgraded. e/emacs-26.1-x86_64-1.txz: Upgraded. kde/kopete-4.14.3-x86_64-8.txz: Rebuilt. Recompiled against libidn-1.35. n/conntrack-tools-1.4.5-x86_64-1.txz: Upgraded. n/libnetfilter_conntrack-1.0.7-x86_64-1.txz: Upgraded. n/libnftnl-1.1.0-x86_64-1.txz: Upgraded. n/links-2.16-x86_64-2.txz: Rebuilt. Rebuilt to enable X driver for -g mode. n/lynx-2.8.9dev.19-x86_64-1.txz: Upgraded. n/nftables-0.8.5-x86_64-1.txz: Upgraded. n/p11-kit-0.23.11-x86_64-1.txz: Upgraded. n/ulogd-2.0.7-x86_64-1.txz: Upgraded. n/whois-5.3.1-x86_64-1.txz: Upgraded. xap/network-manager-applet-1.8.12-x86_64-1.txz: Upgraded. xap/vim-gvim-8.1.0026-x86_64-1.txz: Upgraded. +--------------------------+ Fri May 25 23:29:36 UTC 2018 a/glibc-zoneinfo-2018e-noarch-2.txz: Rebuilt. Handle removal of US/Pacific-New timezone. If we see that the machine is using this, it will be automatically switched to US/Pacific. a/kernel-firmware-20180525_7518922-noarch-1.txz: Upgraded. a/kernel-generic-4.14.44-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.44-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.44-x86_64-1.txz: Upgraded. a/pkgtools-15.0-noarch-12.txz: Rebuilt. installpkg: Suppport --terselength to set the maximum length of a line output in --terse mode. removepkg: Use file locking to allow only one instance at a time of ldconfig. upgradepkg: Added --terse mode to output one line per upgraded package. upgradepkg: Suppport --terselength to set the maximum length of a line output in --terse mode. ap/hplip-3.18.5-x86_64-1.txz: Upgraded. ap/sc-7.16-x86_64-6.txz: Removed. ap/sc-im-0.7.0-x86_64-1.txz: Added. This is an improved version of the SC spreadsheet program. d/kernel-headers-4.14.44-x86-1.txz: Upgraded. d/parallel-20180522-noarch-1.txz: Upgraded. k/kernel-source-4.14.44-noarch-1.txz: Upgraded. l/libunistring-0.9.10-x86_64-1.txz: Upgraded. l/mozilla-nss-3.37.1-x86_64-1.txz: Upgraded. n/nn-6.7.3-x86_64-6.txz: Rebuilt. Don't include /etc/nntpserver.new - the network-scripts package already ships a copy of this for all the packages that use it. n/php-7.2.6-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Wed May 23 04:42:29 UTC 2018 a/kernel-firmware-20180518_2a9b2cf-noarch-1.txz: Upgraded. a/kernel-generic-4.14.43-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.43-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.43-x86_64-1.txz: Upgraded. a/pkgtools-15.0-noarch-11.txz: Rebuilt. installpkg: Implement locking to prevent screen output or install script collisions if multiple copies of installpkg are running simultaneously. installpkg: Use $(mcookie) instead of $$. Fall back on $$ if mcookie is not available. makepkg: Add --compress option, usually used to change the preset compression level or block size. Thanks to shasta. a/procps-ng-3.3.15-x86_64-1.txz: Upgraded. Shared library .so-version bump. This update fixes bugs and security issues: library: Fix integer overflow and LPE in file2strvec library: Use size_t for alloc functions pgrep: Fix stack-based buffer overflow ps: Fix buffer overflow in output buffer, causing DOS top: Don't use cwd for location of config For more information, see: https://www.qualys.com/2018/05/17/procps-ng-audit-report-advisory.txt https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1124 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1126 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1125 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1123 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1122 (* Security fix *) ap/cups-filters-1.20.3-x86_64-2.txz: Rebuilt. Recompiled against poppler-0.65.0. ap/mariadb-10.2.15-x86_64-1.txz: Upgraded. This update fixes bugs and security issues. For more information, see: https://mariadb.com/kb/en/mariadb-10215-release-notes/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2786 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2759 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2777 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2810 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2782 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2784 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2787 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2766 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2755 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2819 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2817 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2761 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2781 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2771 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2813 (* Security fix *) ap/vim-8.1.0016-x86_64-1.txz: Upgraded. d/Cython-0.28.2-x86_64-1.txz: Upgraded. d/cmake-3.11.2-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.43-x86-1.txz: Upgraded. d/meson-0.46.1-x86_64-1.txz: Upgraded. k/kernel-source-4.14.43-noarch-1.txz: Upgraded. Changes to .config (thanks to tumble): TCP_CONG_ADVANCED n -> y +DEFAULT_CUBIC y +DEFAULT_RENO n +TCP_CONG_BBR m +TCP_CONG_BIC m +TCP_CONG_CDG m +TCP_CONG_DCTCP m +TCP_CONG_HSTCP m +TCP_CONG_HTCP m +TCP_CONG_HYBLA m +TCP_CONG_ILLINOIS m +TCP_CONG_LP m +TCP_CONG_NV m +TCP_CONG_SCALABLE m +TCP_CONG_VEGAS m +TCP_CONG_VENO m +TCP_CONG_WESTWOOD m +TCP_CONG_YEAH m kde/calligra-2.9.11-x86_64-21.txz: Rebuilt. Recompiled against poppler-0.65.0. l/QScintilla-2.10.4-x86_64-1.txz: Upgraded. l/babl-0.1.50-x86_64-1.txz: Upgraded. l/glib-networking-2.56.1-x86_64-1.txz: Upgraded. l/poppler-0.65.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/vte-0.52.2-x86_64-1.txz: Upgraded. n/crda-3.18-x86_64-7.txz: Rebuilt. Upgraded to wireless-regdb-2018.05.09. n/mutt-1.10.0-x86_64-1.txz: Upgraded. n/postfix-3.3.1-x86_64-1.txz: Upgraded. n/stunnel-5.45-x86_64-1.txz: Upgraded. t/texlive-2017.171108-x86_64-6.txz: Rebuilt. Recompiled against poppler-0.65.0. x/intel-gpu-tools-1.22-x86_64-3.txz: Rebuilt. Recompiled against procps-ng-3.3.15. xap/gimp-2.10.2-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-52.8.0-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/thunderbird/52.8.0/releasenotes/ https://www.mozilla.org/en-US/security/advisories/mfsa2018-13/ (* Security fix *) xap/vim-gvim-8.1.0016-x86_64-1.txz: Upgraded. xfce/tumbler-0.2.1-x86_64-3.txz: Rebuilt. Recompiled against poppler-0.65.0. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Sat May 19 04:24:47 UTC 2018 a/aaa_elflibs-14.2-x86_64-39.txz: Rebuilt. Restored libstdc++.so.5. Upgraded libidn and libidn2. ap/vim-8.1.0001-x86_64-1.txz: Upgraded. l/libidn2-2.0.5-x86_64-1.txz: Upgraded. x/mesa-18.0.4-x86_64-1.txz: Upgraded. x/xf86-video-mach64-6.9.6-x86_64-1.txz: Upgraded. x/xf86-video-rendition-4.2.7-x86_64-1.txz: Upgraded. xap/vim-gvim-8.1.0001-x86_64-1.txz: Upgraded. +--------------------------+ Thu May 17 20:49:42 UTC 2018 l/babl-0.1.48-x86_64-1.txz: Upgraded. l/gegl-0.4.2-x86_64-1.txz: Upgraded. l/gst-plugins-base-1.14.1-x86_64-1.txz: Upgraded. l/gst-plugins-good-1.14.1-x86_64-1.txz: Upgraded. l/gst-plugins-libav-1.14.1-x86_64-1.txz: Upgraded. l/gstreamer-1.14.1-x86_64-1.txz: Upgraded. n/ca-certificates-20180409-noarch-1.txz: Upgraded. n/samba-4.8.2-x86_64-1.txz: Upgraded. x/libinput-1.10.7-x86_64-1.txz: Upgraded. x/xf86-video-vmware-13.3.0-x86_64-1.txz: Upgraded. xap/mozilla-firefox-60.0.1-x86_64-1.txz: Upgraded. extra/pure-alsa-system/gst-plugins-good-1.14.1-x86_64-1_alsa.txz: Upgraded. +--------------------------+ Thu May 17 04:13:16 UTC 2018 a/e2fsprogs-1.44.2-x86_64-1.txz: Upgraded. a/kernel-generic-4.14.41-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.41-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.41-x86_64-1.txz: Upgraded. a/usbutils-010-x86_64-1.txz: Upgraded. ap/lsscsi-0.29-x86_64-1.txz: Upgraded. ap/nano-2.9.7-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.41-x86-1.txz: Upgraded. k/kernel-source-4.14.41-noarch-1.txz: Upgraded. l/libgphoto2-2.5.18-x86_64-1.txz: Upgraded. l/libimobiledevice-1.2.0-x86_64-5.txz: Rebuilt. Patch to fix double free with OpenSSL-1.1.x. Thanks to ill323. n/curl-7.60.0-x86_64-1.txz: Upgraded. This release contains security fixes: FTP: shutdown response buffer overflow RTSP: bad headers buffer over-read For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000300 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000301 (* Security fix *) n/links-2.16-x86_64-1.txz: Upgraded. x/xdg-utils-1.1.3-noarch-1.txz: Upgraded. xfce/xfce4-terminal-0.8.7.4-x86_64-1.txz: Upgraded. extra/tigervnc/tigervnc-1.8.0-x86_64-5.txz: Rebuilt. Patched and recompiled for xorg-server-1.20.0. Thanks to Matteo Bernardini. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. pasture/php-5.6.36-x86_64-1.txz: Added. Since some things still require php-5.6, here's an alternate package compiled against openssl-1.1. Thanks to Darth Vader. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Mon May 14 19:48:52 UTC 2018 a/openssl-solibs-1.1.0h-x86_64-2.txz: Rebuilt. ap/gutenprint-5.2.14-x86_64-2.txz: Rebuilt. Rebuilt without the gimp2 print plugin (not compatible with gimp-2.10.0). ap/vim-8.0.1839-x86_64-1.txz: Upgraded. n/openssl-1.1.0h-x86_64-2.txz: Rebuilt. Fixed missing quotes in c_rehash. Thanks to Matteo Bernardini. After updating this package, it may be required to reinstall the ca-certificates package (or run: update-ca-certificates --fresh). x/libdmx-1.1.4-x86_64-1.txz: Upgraded. xap/vim-gvim-8.0.1839-x86_64-1.txz: Upgraded. +--------------------------+ Sat May 12 00:28:18 UTC 2018 Where possible, the driver packages for X11 have been recompiled. However, there were some (xf86-video-geode, xf86-video-tseng, xf86-video-sis, xf86-video-savage, xf86-video-s3virge, xf86-video-rendition, xf86-video-r128, and xf86-video-mach64) that would not compile against xorg-server-1.20.0 and for which no patches seem to be available. Is anyone still using those, or are they finally obsolete? I'll hold off on removing them until I can find out one way or the other. a/aaa_elflibs-14.2-x86_64-38.txz: Rebuilt. a/bzip2-1.0.6-x86_64-3.txz: Rebuilt. Added bzip2.pc. ap/ghostscript-9.23-x86_64-3.txz: Rebuilt. Recompiled against libidn-1.35. d/rust-1.26.0-x86_64-1.txz: Upgraded. l/libidn-1.35-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/loudmouth-1.5.3-x86_64-3.txz: Rebuilt. Recompiled against libidn-1.35. n/NetworkManager-1.10.8-x86_64-1.txz: Upgraded. n/bind-9.11.3-x86_64-4.txz: Rebuilt. Recompiled against libidn-1.35. n/lynx-2.8.9dev.18-x86_64-1.txz: Upgraded. Compiled against libidn-1.35. n/mcabber-1.0.5-x86_64-4.txz: Rebuilt. Recompiled against libidn-1.35. n/mutt-1.9.5-x86_64-4.txz: Rebuilt. Recompiled against libidn-1.35. x/xf86-input-acecad-1.5.0-x86_64-12.txz: Rebuilt. x/xf86-input-evdev-2.10.5-x86_64-3.txz: Rebuilt. x/xf86-input-joystick-1.6.3-x86_64-3.txz: Rebuilt. x/xf86-input-keyboard-1.9.0-x86_64-3.txz: Rebuilt. x/xf86-input-libinput-0.27.1-x86_64-3.txz: Rebuilt. x/xf86-input-mouse-1.9.2-x86_64-3.txz: Rebuilt. x/xf86-input-penmount-1.5.0-x86_64-12.txz: Rebuilt. x/xf86-input-synaptics-1.9.0-x86_64-3.txz: Rebuilt. x/xf86-input-vmmouse-13.1.0-x86_64-7.txz: Rebuilt. x/xf86-input-void-1.4.0-x86_64-12.txz: Rebuilt. x/xf86-input-wacom-0.36.1-x86_64-3.txz: Rebuilt. x/xf86-video-amdgpu-18.0.1-x86_64-3.txz: Rebuilt. x/xf86-video-apm-1.2.5-x86_64-11.txz: Rebuilt. x/xf86-video-ark-0.7.5-x86_64-11.txz: Rebuilt. x/xf86-video-ast-1.1.5-x86_64-5.txz: Rebuilt. x/xf86-video-ati-18.0.1-x86_64-3.txz: Rebuilt. x/xf86-video-chips-1.2.7-x86_64-3.txz: Rebuilt. x/xf86-video-cirrus-1.5.3-x86_64-5.txz: Rebuilt. x/xf86-video-dummy-0.3.8-x86_64-3.txz: Rebuilt. x/xf86-video-glint-1.2.9-x86_64-3.txz: Rebuilt. x/xf86-video-i128-1.3.6-x86_64-11.txz: Rebuilt. x/xf86-video-i740-1.3.6-x86_64-3.txz: Rebuilt. x/xf86-video-mga-1.6.5-x86_64-3.txz: Rebuilt. x/xf86-video-neomagic-1.2.9-x86_64-5.txz: Rebuilt. x/xf86-video-nouveau-1.0.15-x86_64-3.txz: Rebuilt. x/xf86-video-nv-2.1.21-x86_64-3.txz: Rebuilt. x/xf86-video-openchrome-0.6.0-x86_64-3.txz: Rebuilt. x/xf86-video-s3-0.6.5-x86_64-11.txz: Rebuilt. x/xf86-video-siliconmotion-1.7.9-x86_64-3.txz: Rebuilt. x/xf86-video-sisusb-0.9.7-x86_64-3.txz: Rebuilt. x/xf86-video-tdfx-1.4.7-x86_64-3.txz: Rebuilt. x/xf86-video-tga-1.2.2-x86_64-11.txz: Rebuilt. x/xf86-video-trident-1.3.8-x86_64-3.txz: Rebuilt. x/xf86-video-v4l-0.2.0-x86_64-16.txz: Rebuilt. x/xf86-video-vboxvideo-1.0.0-x86_64-3.txz: Rebuilt. x/xf86-video-vesa-2.4.0-x86_64-3.txz: Rebuilt. x/xf86-video-vmware-13.2.1-x86_64-7.txz: Rebuilt. x/xf86-video-voodoo-1.2.5-x86_64-12.txz: Rebuilt. xap/pidgin-2.13.0-x86_64-3.txz: Rebuilt. Recompiled against libidn-1.35. +--------------------------+ Thu May 10 21:01:11 UTC 2018 a/aaa_elflibs-14.2-x86_64-37.txz: Rebuilt. Restored libpng14.so.14. n/nghttp2-1.32.0-x86_64-1.txz: Upgraded. x/libdrm-2.4.92-x86_64-1.txz: Upgraded. x/xf86-video-intel-git_20180315_e7bfc906-x86_64-1.txz: Upgraded. x/xorg-server-1.20.0-x86_64-1.txz: Upgraded. x/xorg-server-xephyr-1.20.0-x86_64-1.txz: Upgraded. x/xorg-server-xnest-1.20.0-x86_64-1.txz: Upgraded. x/xorg-server-xvfb-1.20.0-x86_64-1.txz: Upgraded. +--------------------------+ Thu May 10 13:17:20 UTC 2018 n/wpa_supplicant-2.6-x86_64-6.txz: Rebuilt. Drop the use-system-openssl-ciphers patch. Thanks to GazL. +--------------------------+ Thu May 10 03:25:47 UTC 2018 a/aaa_elflibs-14.2-x86_64-36.txz: Rebuilt. a/glibc-zoneinfo-2018e-noarch-1.txz: Upgraded. a/kernel-firmware-20180507_8fc2d4e-noarch-1.txz: Upgraded. a/kernel-generic-4.14.40-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.40-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.40-x86_64-1.txz: Upgraded. a/openssl-solibs-1.1.0h-x86_64-1.txz: Upgraded. a/openssl10-solibs-1.0.2o-x86_64-1.txz: Added. Added compatibility libraries for binaries that need to remain compiled against openssl-1.0.2. ap/hplip-3.18.4-x86_64-2.txz: Rebuilt. Recompiled against openssl-1.1.0h. ap/mariadb-10.2.14-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. d/git-2.17.0-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. d/kernel-headers-4.14.40-x86-1.txz: Upgraded. d/perl-5.26.2-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. d/python-2.7.15-x86_64-2.txz: Rebuilt. Recompiled against openssl-1.1.0h. d/python3-3.6.5-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. d/ruby-2.5.1-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. d/rust-1.25.0-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. k/kernel-source-4.14.40-noarch-1.txz: Upgraded. l/M2Crypto-0.27.0-x86_64-4.txz: Rebuilt. Recompiled against openssl-1.1.0h. l/apr-util-1.6.1-x86_64-7.txz: Rebuilt. Recompiled against openssl-1.1.0h. l/gnome-keyring-3.28.2-x86_64-1.txz: Upgraded. l/gvfs-1.36.2-x86_64-1.txz: Upgraded. l/libarchive-3.3.2-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. l/libevent-2.1.8-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. l/libimobiledevice-1.2.0-x86_64-4.txz: Rebuilt. Recompiled against openssl-1.1.0h. l/librsvg-2.42.4-x86_64-1.txz: Upgraded. l/libsoup-2.62.2-x86_64-1.txz: Upgraded. l/libssh2-1.8.0-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. l/libvncserver-0.9.11-x86_64-4.txz: Rebuilt. Recompiled against openssl-1.1.0h. l/libzip-1.5.1-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. l/neon-0.30.2-x86_64-1.txz: Upgraded. Compiled against openssl-1.1.0h. l/opusfile-0.9-x86_64-4.txz: Rebuilt. Recompiled against openssl-1.1.0h. l/pulseaudio-11.1-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. l/pycurl-7.43.0.1-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. l/qca-2.1.3-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. l/qt-4.8.7-x86_64-10.txz: Rebuilt. Recompiled against openssl-1.1.0h. l/redland-1.0.17-x86_64-5.txz: Rebuilt. Recompiled against openssl-1.1.0h. l/serf-1.3.9-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/alpine-2.21-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/bind-9.11.3-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/curl-7.59.0-x86_64-4.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/cyrus-sasl-2.1.27_rc7-x86_64-1.txz: Upgraded. Compiled against openssl-1.1.0h. n/dovecot-2.3.1-x86_64-4.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/epic5-2.0.1-x86_64-5.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/fetchmail-6.3.26-x86_64-4.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/htdig-3.2.0b6-x86_64-6.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/httpd-2.4.33-x86_64-4.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/irssi-1.1.1-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/lftp-4.8.3-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/libgpg-error-1.31-x86_64-1.txz: Upgraded. n/links-2.14-x86_64-4.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/lynx-2.8.9dev.16-x86_64-2.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/mailx-12.5-x86_64-4.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/mutt-1.9.5-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/net-snmp-5.7.3-x86_64-8.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/nmap-7.70-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/ntp-4.2.8p11-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/openldap-client-2.4.46-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/openssh-7.7p1-x86_64-5.txz: Rebuilt. Recompiled against openssl-1.1.0h. Thanks to alienBOB for the patch. n/openssl-1.1.0h-x86_64-1.txz: Upgraded. Shared library .so-version bump. n/openssl10-1.0.2o-x86_64-1.txz: Added. Added a compatibility development package for sources that need to be compiled against openssl-1.0.2o. To compile against openssl-1.0.2o, you'll need to add lines like this to the build script: export CFLAGS="$CFLAGS -I/usr/include/openssl-1.0" export LIBS="-L/usr/lib${LIBDIRSUFFIX}/openssl-1.0" Some sources may still make a mess of things, and in those cases it might be easiest to temporarily remove the openssl (1.1.0h) package while compiling, in addition to the changes shown above. The shared libraries in this package (and also duplicated in the openssl10-solibs package) have also been changed to use versioned symbols. Old binaries and libraries will continue to run linked with these new libraries, but it is suggested to recompile them if possible. This will prevent problems in case something ends up linking both the 1.0.2 and the 1.1.0 OpenSSL libraries. n/openvpn-2.4.6-x86_64-2.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/php-7.2.5-x86_64-2.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/pidentd-3.0.19-x86_64-4.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/popa3d-1.0.3-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/postfix-3.3.0-x86_64-4.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/proftpd-1.3.6-x86_64-4.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/slrn-1.0.2-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/snownews-1.5.13_20180507-x86_64-1.txz: Upgraded. Compiled against openssl-1.1.0h. n/stunnel-5.44-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/tcpdump-4.9.2-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/ulogd-2.0.5-x86_64-4.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/vsftpd-3.0.3-x86_64-5.txz: Rebuilt. Recompiled against openssl-1.1.0h. n/wget-1.19.5-x86_64-1.txz: Upgraded. Fixed a security issue where a malicious web server could inject arbitrary cookies into the cookie jar file. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0494 (* Security fix *) Compiled against openssl-1.1.0h. n/wpa_supplicant-2.6-x86_64-5.txz: Rebuilt. Recompiled against openssl-1.1.0h. t/fig2dev-3.2.7a-x86_64-1.txz: Upgraded. t/xfig-3.2.7a-x86_64-1.txz: Upgraded. x/mesa-18.0.3-x86_64-1.txz: Upgraded. xap/gftp-2.0.19-x86_64-7.txz: Rebuilt. Recompiled against openssl-1.1.0h. xap/gkrellm-2.3.10-x86_64-4.txz: Rebuilt. Recompiled against openssl-1.1.0h. xap/gnuplot-5.2.3-x86_64-1.txz: Upgraded. xap/hexchat-2.14.1-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. xap/mozilla-firefox-60.0-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefox.html https://www.mozilla.org/en-US/security/advisories/mfsa2018-11/ (* Security fix *) xap/rdesktop-1.8.3-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. xap/sane-1.0.27-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. xap/x3270-3.3.12ga7-x86_64-4.txz: Rebuilt. Recompiled against openssl-1.1.0h. extra/sendmail/sendmail-8.15.2-x86_64-3.txz: Rebuilt. Recompiled against openssl-1.1.0h. extra/sendmail/sendmail-cf-8.15.2-noarch-3.txz: Rebuilt. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri May 4 19:40:52 UTC 2018 d/python-2.7.15-x86_64-1.txz: Upgraded. Updated to the latest 2.7.x release. This fixes some security issues in difflib and poplib (regexes vulnerable to denial of service attacks), as well as security issues with the bundled expat library. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0876 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0718 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0718 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4472 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5300 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9063 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9233 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1060 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1061 (* Security fix *) e/emacs-25.3-x86_64-4.txz: Rebuilt. Recompiled against imagemagick-6.9.9_42. l/virtuoso-ose-6.1.8-x86_64-9.txz: Rebuilt. Recompiled against imagemagick-6.9.9_42. x/xterm-333-x86_64-1.txz: Upgraded. xap/xine-lib-1.2.9-x86_64-3.txz: Rebuilt. Recompiled against imagemagick-6.9.9_42. xap/xlockmore-5.55-x86_64-1.txz: Upgraded. Compiled against imagemagick-6.9.9_42. +--------------------------+ Thu May 3 22:42:35 UTC 2018 l/imagemagick-6.9.9_42-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/seamonkey-solibs-2.49.3-x86_64-1.txz: Upgraded. xap/seamonkey-2.49.3-x86_64-1.txz: Upgraded. This update contains security fixes and improvements. For more information (when it appears), see: http://www.seamonkey-project.org/releases/seamonkey2.49.3 (* Security fix *) +--------------------------+ Thu May 3 13:44:01 UTC 2018 a/kernel-firmware-20180430_397a604-noarch-1.txz: Upgraded. a/kernel-generic-4.14.39-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.39-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.39-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.39-x86-1.txz: Upgraded. k/kernel-source-4.14.39-noarch-1.txz: Upgraded. l/LibRaw-0.18.10-x86_64-1.txz: Upgraded. Fixes some minor security issues. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13735 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14265 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14348 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10528 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10529 (* Security fix *) l/libaio-0.3.111-x86_64-1.txz: Upgraded. n/dhcpcd-7.0.4-x86_64-1.txz: Upgraded. n/gnupg2-2.2.7-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue May 1 20:43:20 UTC 2018 a/dbus-1.12.8-x86_64-1.txz: Upgraded. a/eudev-3.2.5-x86_64-3.txz: Rebuilt. Don't treat bind actions as add/update actions. Fixes MTP with recent kernels. Thanks to DarkVision for the link to the patch. a/xfsprogs-4.16.1-x86_64-1.txz: Upgraded. ap/hplip-3.18.4-x86_64-1.txz: Upgraded. ap/man-pages-4.16-noarch-1.txz: Upgraded. l/gegl-0.4.0-x86_64-1.txz: Upgraded. l/gexiv2-0.10.8-x86_64-1.txz: Added. Required by gimp-2.10.0. l/json-c-0.13.1_20180305-x86_64-1.txz: Added. Looks like we're getting this package back since libmypaint needs it. l/json-glib-1.4.2-x86_64-1.txz: Added. Required by gegl-0.4.0 and gimp-2.10.0. x/libinput-1.10.6-x86_64-1.txz: Upgraded. x/libmypaint-1.3.0-x86_64-1.txz: Added. Required by gimp-2.10.0. x/mypaint-brushes-1.3.0-noarch-1.txz: Added. Required by gimp-2.10.0. xap/gimp-2.10.0-x86_64-1.txz: Upgraded. +--------------------------+ Mon Apr 30 22:35:43 UTC 2018 a/xz-5.2.4-x86_64-1.txz: Upgraded. ap/sudo-1.8.23-x86_64-1.txz: Upgraded. l/libwmf-0.2.8.4-x86_64-8.txz: Rebuilt. Patched denial of service and possible execution of arbitrary code security issues. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0941 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3376 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0455 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2756 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3472 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3473 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3477 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3546 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0848 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4588 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4695 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4696 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10167 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10168 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9011 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9317 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6362 (* Security fix *) Symlink to system Type1 fonts. l/libwmf-docs-0.2.8.4-noarch-7.txz: Removed. There's no good reason to split this package. xap/mozilla-firefox-59.0.3-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefox.html (* Security fix *) +--------------------------+ Mon Apr 30 01:34:10 UTC 2018 a/kernel-generic-4.14.38-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.38-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.38-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.38-x86-1.txz: Upgraded. k/kernel-source-4.14.38-noarch-1.txz: Upgraded. l/libwebp-1.0.0-x86_64-1.txz: Upgraded. n/samba-4.8.1-x86_64-1.txz: Upgraded. x/x11-skel-7.7-x86_64-4.txz: Rebuilt. xwmconfig: typo fix in comment. (fortune -m "only code") isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Sun Apr 29 00:07:10 UTC 2018 a/glibc-zoneinfo-2018d-noarch-3.txz: Rebuilt. timeconfig: fixed some cosmetic issues with output spacing. a/gpm-1.20.7-x86_64-7.txz: Rebuilt. setup.mouse: fixed some cosmetic issues with output spacing. a/pkgtools-15.0-noarch-10.txz: Rebuilt. Fixed some cosmetic issues with output spacing. ap/slackpkg-2.82.2-noarch-3.txz: Rebuilt. Edited the slack-desc to be properly formed (and more accurate). d/doxygen-1.8.14-x86_64-3.txz: Rebuilt. Reverted patch that causes doxygen to segfault. Thanks to orbea. l/libvisio-0.1.6-x86_64-4.txz: Rebuilt. Removed build script kludge to work around doxygen segfault. x/mesa-18.0.2-x86_64-1.txz: Upgraded. x/x11-skel-7.7-x86_64-3.txz: Rebuilt. xwmconfig: fixed some cosmetic issues with output spacing. +--------------------------+ Fri Apr 27 23:15:41 UTC 2018 ap/nano-2.9.6-x86_64-1.txz: Upgraded. e/emacs-25.3-x86_64-3.txz: Rebuilt. Provide unversioned emacs-no-x11 and emacs-with-x11 symlinks. Thanks to madridsecreto. n/openssh-7.7p1-x86_64-4.txz: Rebuilt. Fixed tunnel forwarding with -w option. Thanks to Mario Preksavec. x/urw-core35-fonts-otf-20170801_91edd6e_git-noarch-1.txz: Upgraded. +--------------------------+ Fri Apr 27 03:58:48 UTC 2018 a/kernel-generic-4.14.37-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.37-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.37-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.37-x86-1.txz: Upgraded. k/kernel-source-4.14.37-noarch-1.txz: Upgraded. n/openvpn-2.4.6-x86_64-1.txz: Upgraded. This is a security update fixing a potential double-free() in Interactive Service. This usually only leads to a process crash (DoS by an unprivileged local account) but since it could possibly lead to memory corruption if happening while multiple other threads are active at the same time, CVE-2018-9336 has been assigned to acknowledge this risk. For more information, see: https://github.com/OpenVPN/openvpn/commit/1394192b210cb3c6624a7419bcf3ff966742e79b https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-9336 (* Security fix *) n/php-7.2.5-x86_64-1.txz: Upgraded. This release fixes bugs and security issues. For more information, see: https://php.net/ChangeLog-7.php#7.2.5 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5712 (* Security fix *) isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Thu Apr 26 01:34:12 UTC 2018 Don't like PulseAudio? Well... I hear you. Personally, it works for me, and it makes it easier to switch between multiple audio inputs and outputs compared to using plain ALSA. PulseAudio got off to a rocky start in the Linux world, where it found itself adopted before it was ready (it was even billed on its own website at the time as "the software that currently breaks your audio"). It's my opinion that the reputation that PulseAudio acquired due to problems back then isn't deserved any longer. If your hardware supports the sampling rate of the audio data you're trying to play, PulseAudio will not resample it (and if your hardware doesn't support that rate, resampling can hardly be avoided). The increased latency has not been an issue here. Nevertheless, I recognize that there are use cases where PulseAudio is still a detriment. While I don't generally recommend removing PulseAudio, I'm not going to cram it down your throat. So, if you'd like to be rid of PulseAudio, head over to the new extra/pure-alsa-system directory and follow the instructions in the README file there, and you'll have a PulseAudio-free pure ALSA system. Thanks to orbea who sent me a small patch for the mpg123.SlackBuild so that it would detect the lack of PulseAudio and not try to build in support, which got me to thinking about all of this. Cheers! :-) a/btrfs-progs-v4.16.1-x86_64-1.txz: Upgraded. kde/kopete-4.14.3-x86_64-7.txz: Rebuilt. Dropped obsolete wlm (libmsn) protocol. Thanks to alienBOB. l/libmsn-4.2.1-x86_64-3.txz: Removed. l/poppler-data-0.4.9-noarch-1.txz: Upgraded. extra/pure-alsa-system/MPlayer-20180208-x86_64-3_alsa.txz: Rebuilt. extra/pure-alsa-system/alsa-lib-1.1.6-x86_64-3_alsa.txz: Rebuilt. extra/pure-alsa-system/alsa-plugins-1.1.6-x86_64-2_alsa.txz: Rebuilt. extra/pure-alsa-system/audacious-plugins-3.9-x86_64-4_alsa.txz: Rebuilt. extra/pure-alsa-system/ffmpeg-3.4.2-x86_64-2_alsa.txz: Rebuilt. extra/pure-alsa-system/fluidsynth-1.1.10-x86_64-2_alsa.txz: Rebuilt. extra/pure-alsa-system/gst-plugins-good-1.14.0-x86_64-2_alsa.txz: Rebuilt. extra/pure-alsa-system/gst-plugins-good0-0.10.31-x86_64-3_alsa.txz: Rebuilt. extra/pure-alsa-system/kde-runtime-4.14.3-x86_64-7_alsa.txz: Rebuilt. extra/pure-alsa-system/kmix-4.14.3-x86_64-4_alsa.txz: Rebuilt. extra/pure-alsa-system/libao-1.2.2-x86_64-2_alsa.txz: Rebuilt. extra/pure-alsa-system/libcanberra-0.30-x86_64-6_alsa.txz: Rebuilt. extra/pure-alsa-system/mpg123-1.25.10-x86_64-2_alsa.txz: Rebuilt. extra/pure-alsa-system/phonon-4.8.3-x86_64-3_alsa.txz: Rebuilt. extra/pure-alsa-system/sox-14.4.2-x86_64-5_alsa.txz: Rebuilt. extra/pure-alsa-system/xfce4-mixer-4.11.0-x86_64-1_alsa.txz: Upgraded. extra/pure-alsa-system/xfce4-volumed-0.1.13-x86_64-4_alsa.txz: Rebuilt. extra/pure-alsa-system/xine-lib-1.2.9-x86_64-2_alsa.txz: Rebuilt. +--------------------------+ Wed Apr 25 04:38:51 UTC 2018 a/kernel-generic-4.14.36-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.36-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.36-x86_64-1.txz: Upgraded. d/gcc-7.3.0-x86_64-3.txz: Rebuilt. d/gcc-brig-7.3.0-x86_64-3.txz: Rebuilt. d/gcc-g++-7.3.0-x86_64-3.txz: Rebuilt. d/gcc-gfortran-7.3.0-x86_64-3.txz: Rebuilt. d/gcc-gnat-7.3.0-x86_64-3.txz: Rebuilt. Rebuilt to fix missing shared libraries. Thanks to qunying. d/gcc-go-7.3.0-x86_64-3.txz: Rebuilt. d/gcc-objc-7.3.0-x86_64-3.txz: Rebuilt. d/kernel-headers-4.14.36-x86-1.txz: Upgraded. d/parallel-20180422-noarch-1.txz: Added. d/perl-5.26.2-x86_64-2.txz: Rebuilt. Applied upstream patch to use net_buffer_length in DBD-mysql. Thanks to Iouri Kharon. Upgraded to URI-1.74. k/kernel-source-4.14.36-noarch-1.txz: Upgraded. l/imagemagick-6.9.9_40-x86_64-3.txz: Rebuilt. Really disable OpenCL. Thanks to orbea. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Mon Apr 23 22:17:42 UTC 2018 ap/gutenprint-5.2.14-x86_64-1.txz: Upgraded. d/meson-0.46.0-x86_64-1.txz: Upgraded. d/python-pip-10.0.1-x86_64-1.txz: Upgraded. +--------------------------+ Sat Apr 21 17:39:25 UTC 2018 a/lvm2-2.02.177-x86_64-1.txz: Upgraded. a/pkgtools-15.0-noarch-9.txz: Rebuilt. installpkg: fixed occasional lack of package size reported by the installer. d/binutils-2.30-x86_64-3.txz: Rebuilt. Fixed /usr/$TARGET/lib directory. Thanks to GazL. n/gpgme-1.11.1-x86_64-1.txz: Upgraded. n/ppp-2.4.7-x86_64-3.txz: Rebuilt. Fixed rp-pppoe build. Thanks to voegelas for the bug report. xfce/xfce4-settings-4.12.3-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Apr 20 03:32:21 UTC 2018 a/kernel-generic-4.14.35-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.35-x86_64-1.txz: Upgraded. SQUASHFS m -> y Thanks to alienBOB. a/kernel-modules-4.14.35-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.35-x86-1.txz: Upgraded. k/kernel-source-4.14.35-noarch-1.txz: Upgraded. RCU_EXPERT n -> y +RCU_FANOUT 32 +RCU_FANOUT_LEAF 16 +RCU_FAST_NO_HZ y +RCU_NOCB_CPU y Thanks to alienBOB. kde/kde-runtime-4.14.3-x86_64-7.txz: Rebuilt. Recompiled against gpgme-1.11.0. kde/kdepim-4.14.10-x86_64-4.txz: Rebuilt. Recompiled against gpgme-1.11.0. kde/kdepimlibs-4.14.10-x86_64-6.txz: Rebuilt. Recompiled against gpgme-1.11.0. kde/kget-4.14.3-x86_64-5.txz: Rebuilt. Recompiled against gpgme-1.11.0. kde/kopete-4.14.3-x86_64-6.txz: Rebuilt. Recompiled against gpgme-1.11.0. l/gmime-2.6.23-x86_64-4.txz: Rebuilt. Recompiled against gpgme-1.11.0. n/gpa-0.9.10-x86_64-3.txz: Rebuilt. Recompiled against gpgme-1.11.0. n/gpgme-1.11.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. n/mcabber-1.0.5-x86_64-3.txz: Rebuilt. Recompiled against gpgme-1.11.0. n/mutt-1.9.5-x86_64-2.txz: Rebuilt. Recompiled against gpgme-1.11.0. n/samba-4.7.7-x86_64-2.txz: Rebuilt. Recompiled against gpgme-1.11.0. x/libinput-1.10.5-x86_64-1.txz: Upgraded. extra/fltk/fltk-1.3.4_2-x86_64-2.txz: Rebuilt. Fixed fltk-config. Thanks to Matteo Bernardini. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Thu Apr 19 01:04:06 UTC 2018 Hi folks, and welcome to the third ever Slackware Mass Rebuild (and the longest ChangeLog entry in project history). There were two primary motivations for rebuilding everything in the main tree. The first was to switch to the new C++ ABI. The second was to get rid of all the .la files in the LD_LIBRARY_PATH. Really, having .la files installed has been mostly obsolete since things began to use pkg-config instead, but it's not easy to get rid of them unless you do it all at once. If you just take them out of one package, any other packages containing .la files that refer to the removed ones will be broken. We've removed a few here and there before (and then handled any packages that had referred to them with a rebuild), but it was time to finally remove all the ones in /lib{,64} and /usr/lib{,64}. One of the reasons that this really needed to happen is that many projects are starting to migrate to build systems other than autotools, and those systems do not generate .la files. So if we didn't get rid of them now, we might end up in a situation later on where they are being removed by upstream and then we would have to chase down the dependency breakage and recompile (possibly many) other packages. The .la files that are outside of the LD_LIBRARY_PATH were not removed (and shouldn't be) - those ones are often used by the lt_dlopen() function to load plugins and removing those ones can break things. But those ones don't cause problems... they aren't likely to try to infect .la files produced by other packages. IMPORTANT NOTE: If you have any third party or other packages installed on your system that don't come with Slackware, and those packages have installed any .la files, it is very likely that they refer to some .la files which we have just removed, and that trying to compile against these packages will no longer work. Luckily, the solution is simple: remove them. This command will remove any stale .la files from the LD_LIBRARY_PATH: rm /{,usr/}lib{,64}/*.la Moving forward, nothing shipped in Slackware will contain any .la files in those directories, and any SlackBuilds intended to be used with Slackware 15.0 should contain this bit of script: # Don't ship .la files: rm -f $PKG/{,usr/}lib${LIBDIRSUFFIX}/*.la In addition to those goals, the opportunity was taken to clean up slack-desc files and make many trivial fixes to build scripts. We've also made it easy to recompile everything again should there be a good reason to do so. You'll also find various updates scattered throughout this long list. Enjoy, and sorry about the bandwidth. ;-) a/aaa_base-14.2-x86_64-4.txz: Rebuilt. In /etc/os-release, change PRETTY_NAME to: PRETTY_NAME="Slackware 14.2 $ARCH (post 14.2 -current)" a/aaa_elflibs-14.2-x86_64-35.txz: Rebuilt. Removed obsolete libraries: libudev.so.0.13.1, libgdbm.so.3.0.0, libhistory.so.5.2, libjpeg.so.8.0.1, libmpfr.so.4.1.6, libpng14.so.14.18.0, libreadline.so.5.2, libstdc++.so.5.0.7, libtiff.so.3.9.7, and libtiffxx.so.3.9.7. Don't create library symlinks in the install script - let installpkg's ldconfig do the work. a/aaa_terminfo-6.1_20180324-x86_64-4.txz: Rebuilt. Changed xterm definition as noted for the ncurses package below. a/acl-2.2.52-x86_64-2.txz: Rebuilt. a/acpid-2.0.29-x86_64-1.txz: Upgraded. a/attr-2.4.47-x86_64-2.txz: Rebuilt. a/bash-4.4.019-x86_64-3.txz: Rebuilt. a/bin-11.1-x86_64-2.txz: Rebuilt. a/btrfs-progs-v4.16-x86_64-2.txz: Rebuilt. a/bzip2-1.0.6-x86_64-2.txz: Rebuilt. a/coreutils-8.29-x86_64-2.txz: Rebuilt. a/cpio-2.12-x86_64-2.txz: Rebuilt. a/cpufrequtils-008-x86_64-2.txz: Rebuilt. a/cryptsetup-1.7.5-x86_64-2.txz: Rebuilt. a/dbus-1.12.6-x86_64-2.txz: Rebuilt. a/dcron-4.5-x86_64-6.txz: Rebuilt. a/dialog-1.3_20170509-x86_64-2.txz: Rebuilt. a/dosfstools-4.1-x86_64-2.txz: Rebuilt. a/e2fsprogs-1.44.1-x86_64-2.txz: Rebuilt. a/ed-1.14.2-x86_64-2.txz: Rebuilt. a/efibootmgr-0.5.4-x86_64-2.txz: Rebuilt. a/elilo-3.16-x86_64-6.txz: Rebuilt. a/elvis-2.2_0-x86_64-4.txz: Rebuilt. a/etc-15.0-x86_64-4.txz: Rebuilt. a/eudev-3.2.5-x86_64-2.txz: Rebuilt. a/file-5.33-x86_64-1.txz: Upgraded. a/findutils-4.4.2-x86_64-2.txz: Rebuilt. a/floppy-5.5-x86_64-2.txz: Rebuilt. a/gawk-4.2.1-x86_64-2.txz: Rebuilt. a/genpower-1.0.5-x86_64-3.txz: Rebuilt. a/gettext-0.19.8.1-x86_64-5.txz: Rebuilt. a/getty-ps-2.1.0b-x86_64-4.txz: Rebuilt. a/glibc-solibs-2.27-x86_64-2.txz: Rebuilt. a/glibc-zoneinfo-2018d-noarch-2.txz: Rebuilt. a/gpm-1.20.7-x86_64-6.txz: Rebuilt. a/gptfdisk-1.0.3-x86_64-2.txz: Rebuilt. a/grep-3.1-x86_64-2.txz: Rebuilt. a/grub-2.02-x86_64-2.txz: Rebuilt. a/gzip-1.9-x86_64-2.txz: Rebuilt. a/hdparm-9.56-x86_64-2.txz: Rebuilt. a/hostname-3.18-x86_64-2.txz: Rebuilt. a/hwdata-0.304-noarch-2.txz: Rebuilt. a/infozip-6.0-x86_64-4.txz: Rebuilt. a/inotify-tools-3.14-x86_64-2.txz: Rebuilt. a/jfsutils-1.1.15-x86_64-2.txz: Rebuilt. a/kbd-1.15.3-x86_64-4.txz: Rebuilt. a/kernel-firmware-20180409_b562d2f-noarch-1.txz: Upgraded. a/kmod-25-x86_64-2.txz: Rebuilt. a/lbzip2-2.5-x86_64-2.txz: Rebuilt. a/less-530-x86_64-3.txz: Rebuilt. a/lha-114i-x86_64-2.txz: Rebuilt. a/libcgroup-0.41-x86_64-3.txz: Rebuilt. a/libgudev-232-x86_64-2.txz: Rebuilt. a/lilo-24.2-x86_64-8.txz: Rebuilt. a/logrotate-3.14.0-x86_64-2.txz: Rebuilt. a/lrzip-0.631-x86_64-2.txz: Rebuilt. a/lvm2-2.02.176-x86_64-2.txz: Rebuilt. a/lzip-1.20-x86_64-3.txz: Rebuilt. a/lzlib-1.10-x86_64-3.txz: Rebuilt. a/mcelog-153-x86_64-2.txz: Rebuilt. a/mdadm-4.0-x86_64-2.txz: Rebuilt. a/minicom-2.7.1-x86_64-2.txz: Rebuilt. a/mkinitrd-1.4.11-x86_64-6.txz: Rebuilt. Improved and documented UUID support. Thanks to Xsane. Upgraded to busybox-1.28.3. a/mlocate-0.26-x86_64-2.txz: Rebuilt. a/mt-st-1.3-x86_64-2.txz: Rebuilt. a/mtx-1.3.12-x86_64-2.txz: Rebuilt. a/ncompress-4.2.4.4-x86_64-2.txz: Rebuilt. a/ntfs-3g-2017.3.23-x86_64-2.txz: Rebuilt. a/openssl-solibs-1.0.2o-x86_64-2.txz: Rebuilt. a/os-prober-1.76-x86_64-2.txz: Rebuilt. a/patch-2.7.6-x86_64-3.txz: Rebuilt. a/pciutils-3.5.6-x86_64-2.txz: Rebuilt. a/pcmciautils-018-x86_64-2.txz: Rebuilt. a/pkgtools-15.0-noarch-8.txz: Rebuilt. installpkg: avoid messing with the system /install directory. removepkg: also run ldconfig following package removal. a/plzip-1.7-x86_64-3.txz: Rebuilt. a/procps-ng-3.3.14-x86_64-2.txz: Rebuilt. a/quota-4.03-x86_64-2.txz: Rebuilt. a/reiserfsprogs-3.6.27-x86_64-2.txz: Rebuilt. a/rpm2tgz-1.2.2-x86_64-2.txz: Rebuilt. a/sdparm-1.10-x86_64-2.txz: Rebuilt. a/sed-4.5-x86_64-2.txz: Rebuilt. a/shadow-4.2.1-x86_64-4.txz: Rebuilt. a/sharutils-4.15.2-x86_64-2.txz: Rebuilt. a/smartmontools-6.6-x86_64-3.txz: Rebuilt. a/splitvt-1.6.6-x86_64-2.txz: Rebuilt. a/sysfsutils-2.1.0-x86_64-2.txz: Rebuilt. a/sysklogd-1.5.1-x86_64-3.txz: Rebuilt. a/syslinux-4.07-x86_64-2.txz: Rebuilt. a/sysvinit-2.88dsf-x86_64-5.txz: Rebuilt. a/sysvinit-functions-8.53-x86_64-3.txz: Rebuilt. a/sysvinit-scripts-2.1-noarch-9.txz: Rebuilt. a/tar-1.30-x86_64-2.txz: Rebuilt. a/tcsh-6.20.00-x86_64-2.txz: Rebuilt. a/time-1.9-x86_64-2.txz: Rebuilt. a/tree-1.7.0-x86_64-2.txz: Rebuilt. a/udisks-1.0.5-x86_64-4.txz: Rebuilt. a/udisks2-2.6.5-x86_64-2.txz: Rebuilt. a/unarj-265-x86_64-2.txz: Rebuilt. a/upower-0.9.23-x86_64-4.txz: Rebuilt. a/usb_modeswitch-2.5.1-x86_64-2.txz: Rebuilt. a/usbutils-009-x86_64-2.txz: Rebuilt. a/utempter-1.1.6-x86_64-3.txz: Rebuilt. a/util-linux-2.32-x86_64-2.txz: Rebuilt. a/which-2.21-x86_64-2.txz: Rebuilt. a/xfsprogs-4.15.1-x86_64-2.txz: Rebuilt. a/xz-5.2.3-x86_64-2.txz: Rebuilt. a/zoo-2.10_22-x86_64-2.txz: Rebuilt. ap/a2ps-4.14-x86_64-7.txz: Rebuilt. ap/acct-6.6.4-x86_64-2.txz: Rebuilt. ap/alsa-utils-1.1.6-x86_64-2.txz: Rebuilt. ap/amp-0.7.6-x86_64-2.txz: Rebuilt. ap/at-3.1.20-x86_64-2.txz: Rebuilt. ap/bc-1.07.1-x86_64-2.txz: Rebuilt. ap/bpe-2.01.00-x86_64-4.txz: Rebuilt. ap/cdparanoia-III_10.2-x86_64-2.txz: Rebuilt. ap/cdrdao-1.2.3-x86_64-4.txz: Rebuilt. ap/cdrtools-3.01-x86_64-4.txz: Rebuilt. ap/cgmanager-0.41-x86_64-4.txz: Rebuilt. ap/cups-2.2.7-x86_64-2.txz: Rebuilt. ap/cups-filters-1.20.3-x86_64-1.txz: Upgraded. Recompiled against poppler-0.64.0. ap/dash-0.5.9.1-x86_64-2.txz: Rebuilt. ap/dc3dd-7.2.646-x86_64-2.txz: Rebuilt. ap/ddrescue-1.23-x86_64-2.txz: Rebuilt. ap/diffstat-1.61-x86_64-2.txz: Rebuilt. ap/diffutils-3.6-x86_64-2.txz: Rebuilt. ap/dmapi-2.2.12-x86_64-3.txz: Rebuilt. ap/dmidecode-3.1-x86_64-2.txz: Rebuilt. ap/dvd+rw-tools-7.1-x86_64-3.txz: Rebuilt. ap/enscript-1.6.6-x86_64-2.txz: Rebuilt. ap/flac-1.3.2-x86_64-2.txz: Rebuilt. ap/ghostscript-9.23-x86_64-2.txz: Rebuilt. ap/ghostscript-fonts-std-8.11-noarch-2.txz: Rebuilt. ap/gphoto2-2.5.17-x86_64-1.txz: Upgraded. ap/groff-1.22.3-x86_64-3.txz: Rebuilt. ap/gutenprint-5.2.13-x86_64-2.txz: Rebuilt. ap/hplip-3.18.3-x86_64-2.txz: Rebuilt. ap/htop-2.2.0-x86_64-2.txz: Rebuilt. ap/ispell-3.4.00-x86_64-2.txz: Rebuilt. ap/itstool-2.0.4-x86_64-3.txz: Rebuilt. ap/jed-0.99_19-x86_64-3.txz: Rebuilt. ap/joe-4.6-x86_64-2.txz: Rebuilt. ap/jove-4.16.0.73-x86_64-4.txz: Rebuilt. ap/ksh93-20180412_71e6fdad-x86_64-1.txz: Upgraded. ap/libx86-1.1-x86_64-3.txz: Rebuilt. ap/linuxdoc-tools-0.9.72-x86_64-5.txz: Rebuilt. ap/lm_sensors-3.4.0-x86_64-2.txz: Rebuilt. ap/lsof-4.91-x86_64-2.txz: Rebuilt. ap/lsscsi-0.28-x86_64-2.txz: Rebuilt. ap/lxc-2.0.9-x86_64-2.txz: Rebuilt. ap/madplay-0.15.2b-x86_64-5.txz: Rebuilt. ap/man-db-2.8.3-x86_64-2.txz: Rebuilt. ap/man-pages-4.15-noarch-2.txz: Rebuilt. ap/mariadb-10.2.14-x86_64-2.txz: Rebuilt. ap/mc-4.8.20-x86_64-2.txz: Rebuilt. ap/moc-2.5.2-x86_64-4.txz: Rebuilt. ap/most-5.0.0a-x86_64-3.txz: Rebuilt. ap/mpg123-1.25.10-x86_64-2.txz: Rebuilt. ap/nano-2.9.5-x86_64-2.txz: Rebuilt. ap/normalize-0.7.7-x86_64-3.txz: Rebuilt. ap/opus-tools-0.1.10-x86_64-2.txz: Rebuilt. ap/pamixer-1.3.1-x86_64-6.txz: Rebuilt. Recompiled against boost-1.67.0. ap/pm-utils-1.4.1-x86_64-6.txz: Rebuilt. ap/powertop-2.8-x86_64-3.txz: Rebuilt. ap/qpdf-8.0.2-x86_64-2.txz: Rebuilt. ap/radeontool-1.6.3-x86_64-2.txz: Rebuilt. ap/rpm-4.14.1-x86_64-2.txz: Rebuilt. ap/rzip-2.1-x86_64-2.txz: Rebuilt. ap/sc-7.16-x86_64-6.txz: Rebuilt. ap/screen-4.6.2-x86_64-2.txz: Rebuilt. ap/seejpeg-1.10-x86_64-2.txz: Rebuilt. ap/slackpkg-2.82.2-noarch-2.txz: Rebuilt. ap/soma-2.12.3-noarch-2.txz: Rebuilt. ap/sox-14.4.2-x86_64-5.txz: Rebuilt. ap/sqlite-3.23.1-x86_64-2.txz: Rebuilt. ap/squashfs-tools-4.3-x86_64-3.txz: Rebuilt. ap/sudo-1.8.22-x86_64-2.txz: Rebuilt. ap/sysstat-11.6.3-x86_64-2.txz: Rebuilt. ap/terminus-font-4.40-noarch-2.txz: Rebuilt. ap/texinfo-6.5-x86_64-3.txz: Rebuilt. Recompiled against perl-5.26.2. ap/tmux-2.7-x86_64-1.txz: Upgraded. ap/usbmuxd-1.1.0-x86_64-2.txz: Rebuilt. ap/vbetool-1.2.2-x86_64-2.txz: Rebuilt. ap/vim-8.0.1733-x86_64-1.txz: Upgraded. Recompiled against perl-5.26.2. ap/vorbis-tools-1.4.0-x86_64-4.txz: Rebuilt. ap/xfsdump-3.1.8-x86_64-2.txz: Rebuilt. ap/xorriso-1.4.8-x86_64-2.txz: Rebuilt. ap/zsh-5.5.1-x86_64-1.txz: Upgraded. d/Cython-0.28.1-x86_64-2.txz: Rebuilt. d/autoconf-2.69-noarch-2.txz: Rebuilt. d/automake-1.16.1-noarch-2.txz: Rebuilt. d/binutils-2.30-x86_64-2.txz: Rebuilt. d/bison-3.0.4-x86_64-2.txz: Rebuilt. d/ccache-3.4.2-x86_64-2.txz: Rebuilt. d/clisp-2.49.20180409.0e4d38776f59-x86_64-1.txz: Upgraded. d/cmake-3.11.1-x86_64-1.txz: Upgraded. d/cscope-15.8b-x86_64-3.txz: Rebuilt. d/cvs-1.11.23-x86_64-3.txz: Rebuilt. d/dev86-0.16.21-x86_64-2.txz: Rebuilt. d/distcc-3.3-x86_64-2.txz: Rebuilt. d/doxygen-1.8.14-x86_64-2.txz: Rebuilt. d/flex-2.6.4-x86_64-3.txz: Rebuilt. d/gcc-7.3.0-x86_64-2.txz: Rebuilt. d/gcc-brig-7.3.0-x86_64-2.txz: Rebuilt. d/gcc-g++-7.3.0-x86_64-2.txz: Rebuilt. d/gcc-gfortran-7.3.0-x86_64-2.txz: Rebuilt. d/gcc-gnat-7.3.0-x86_64-2.txz: Rebuilt. d/gcc-go-7.3.0-x86_64-2.txz: Rebuilt. d/gcc-objc-7.3.0-x86_64-2.txz: Rebuilt. d/gdb-8.1-x86_64-2.txz: Rebuilt. d/gettext-tools-0.19.8.1-x86_64-5.txz: Rebuilt. d/git-2.17.0-x86_64-2.txz: Rebuilt. d/gnucobol-2.2-x86_64-2.txz: Rebuilt. d/gperf-3.1-x86_64-2.txz: Rebuilt. d/guile-2.2.3-x86_64-2.txz: Rebuilt. d/help2man-1.47.6-x86_64-2.txz: Rebuilt. d/indent-2.2.10-x86_64-2.txz: Rebuilt. d/intltool-0.51.0-x86_64-4.txz: Rebuilt. d/libtool-2.4.6-x86_64-7.txz: Rebuilt. d/llvm-6.0.0-x86_64-2.txz: Rebuilt. d/m4-1.4.18-x86_64-2.txz: Rebuilt. d/make-4.2.1-x86_64-3.txz: Rebuilt. d/mercurial-4.5.3-x86_64-2.txz: Rebuilt. d/meson-0.45.1-x86_64-2.txz: Rebuilt. d/nasm-2.13.03-x86_64-2.txz: Rebuilt. d/ninja-1.8.2-x86_64-2.txz: Rebuilt. d/opencl-headers-2.1-noarch-2.txz: Rebuilt. d/oprofile-1.2.0-x86_64-3.txz: Rebuilt. d/p2c-1.21alpha2-x86_64-4.txz: Rebuilt. d/patchelf-0.9-x86_64-2.txz: Rebuilt. d/perl-5.26.2-x86_64-1.txz: Upgraded. Upgraded to DBD-mysql-4.046, DBI-1.641, and XML-Simple-2.25. d/pkg-config-0.29.2-x86_64-2.txz: Rebuilt. d/pmake-1.111-x86_64-5.txz: Rebuilt. d/python-2.7.14-x86_64-2.txz: Rebuilt. d/python-pip-9.0.3-x86_64-2.txz: Rebuilt. d/python-setuptools-39.0.1-x86_64-2.txz: Rebuilt. d/python3-3.6.5-x86_64-2.txz: Rebuilt. d/rcs-5.9.4-x86_64-2.txz: Rebuilt. d/re2c-1.0.3-x86_64-2.txz: Rebuilt. d/ruby-2.5.1-x86_64-2.txz: Rebuilt. d/rust-1.25.0-x86_64-2.txz: Rebuilt. d/scons-3.0.1-x86_64-2.txz: Rebuilt. d/slacktrack-2.18-x86_64-2.txz: Rebuilt. d/strace-4.22-x86_64-2.txz: Rebuilt. d/subversion-1.10.0-x86_64-1.txz: Upgraded. d/swig-3.0.12-x86_64-2.txz: Rebuilt. d/yasm-1.3.0-x86_64-2.txz: Rebuilt. e/emacs-25.3-x86_64-2.txz: Rebuilt. kde/amarok-2.9.0-x86_64-2.txz: Rebuilt. kde/amor-4.14.3-x86_64-3.txz: Rebuilt. kde/analitza-4.14.3-x86_64-4.txz: Rebuilt. kde/ark-4.14.3-x86_64-3.txz: Rebuilt. kde/artikulate-4.14.3-x86_64-3.txz: Rebuilt. kde/audiocd-kio-4.14.3-x86_64-3.txz: Rebuilt. kde/baloo-4.14.3-x86_64-4.txz: Rebuilt. kde/baloo-widgets-4.14.3-x86_64-3.txz: Rebuilt. kde/blinken-4.14.3-x86_64-3.txz: Rebuilt. kde/bluedevil-2.1.1-x86_64-4.txz: Rebuilt. kde/bomber-4.14.3-x86_64-3.txz: Rebuilt. kde/bovo-4.14.3-x86_64-3.txz: Rebuilt. kde/calligra-2.9.11-x86_64-20.txz: Rebuilt. Recompiled against boost-1.67.0 and poppler-0.64.0. kde/cantor-4.14.3-x86_64-3.txz: Rebuilt. kde/cervisia-4.14.3-x86_64-3.txz: Rebuilt. kde/dolphin-plugins-4.14.3-x86_64-3.txz: Rebuilt. kde/dragon-4.14.3-x86_64-3.txz: Rebuilt. kde/filelight-4.14.3-x86_64-3.txz: Rebuilt. kde/granatier-4.14.3-x86_64-3.txz: Rebuilt. kde/gwenview-4.14.3-x86_64-4.txz: Rebuilt. kde/juk-4.14.3-x86_64-3.txz: Rebuilt. kde/k3b-2.0.3-x86_64-4.txz: Rebuilt. kde/kaccessible-4.14.3-x86_64-3.txz: Rebuilt. kde/kactivities-4.13.3-x86_64-3.txz: Rebuilt. kde/kajongg-4.14.3-x86_64-3.txz: Rebuilt. kde/kalgebra-4.14.3-x86_64-3.txz: Rebuilt. kde/kalzium-4.14.3-x86_64-3.txz: Rebuilt. kde/kamera-4.14.3-x86_64-3.txz: Rebuilt. kde/kanagram-4.14.3-x86_64-3.txz: Rebuilt. kde/kapman-4.14.3-x86_64-3.txz: Rebuilt. kde/kapptemplate-4.14.3-x86_64-3.txz: Rebuilt. kde/kate-4.14.3-x86_64-4.txz: Rebuilt. kde/katomic-4.14.3-x86_64-3.txz: Rebuilt. kde/kaudiocreator-1.3-x86_64-3.txz: Rebuilt. kde/kblackbox-4.14.3-x86_64-3.txz: Rebuilt. kde/kblocks-4.14.3-x86_64-3.txz: Rebuilt. kde/kbounce-4.14.3-x86_64-3.txz: Rebuilt. kde/kbreakout-4.14.3-x86_64-3.txz: Rebuilt. kde/kbruch-4.14.3-x86_64-3.txz: Rebuilt. kde/kcachegrind-4.14.3-x86_64-3.txz: Rebuilt. kde/kcalc-4.14.3-x86_64-3.txz: Rebuilt. kde/kcharselect-4.14.3-x86_64-3.txz: Rebuilt. kde/kcolorchooser-4.14.3-x86_64-3.txz: Rebuilt. kde/kcron-4.14.3-x86_64-3.txz: Rebuilt. kde/kde-base-artwork-4.14.3-x86_64-3.txz: Rebuilt. kde/kde-baseapps-4.14.3-x86_64-3.txz: Rebuilt. kde/kde-dev-scripts-4.14.3-x86_64-3.txz: Rebuilt. kde/kde-dev-utils-4.14.3-x86_64-3.txz: Rebuilt. kde/kde-runtime-4.14.3-x86_64-6.txz: Rebuilt. kde/kde-wallpapers-4.14.3-noarch-2.txz: Rebuilt. kde/kde-workspace-4.11.22-x86_64-5.txz: Rebuilt. kde/kdeartwork-4.14.3-x86_64-3.txz: Rebuilt. kde/kdeconnect-kde-0.8-x86_64-4.txz: Rebuilt. kde/kdegraphics-mobipocket-4.14.3-x86_64-3.txz: Rebuilt. kde/kdegraphics-strigi-analyzer-4.14.3-x86_64-3.txz: Rebuilt. kde/kdegraphics-thumbnailers-4.14.3-x86_64-3.txz: Rebuilt. kde/kdelibs-4.14.38-x86_64-2.txz: Rebuilt. kde/kdenetwork-filesharing-4.14.3-x86_64-3.txz: Rebuilt. kde/kdenetwork-strigi-analyzers-4.14.3-x86_64-3.txz: Rebuilt. kde/kdepim-4.14.10-x86_64-3.txz: Rebuilt. kde/kdepim-runtime-4.14.10-x86_64-2.txz: Rebuilt. kde/kdepimlibs-4.14.10-x86_64-5.txz: Rebuilt. kde/kdeplasma-addons-4.14.3-x86_64-3.txz: Rebuilt. kde/kdesdk-kioslaves-4.14.3-x86_64-3.txz: Rebuilt. kde/kdesdk-strigi-analyzers-4.14.3-x86_64-3.txz: Rebuilt. kde/kdesdk-thumbnailers-4.14.3-x86_64-3.txz: Rebuilt. kde/kdev-python-1.7.3-x86_64-3.txz: Rebuilt. kde/kdevelop-4.7.4-x86_64-2.txz: Rebuilt. kde/kdevelop-pg-qt-1.0.0-x86_64-3.txz: Rebuilt. kde/kdevelop-php-1.7.4-x86_64-2.txz: Rebuilt. kde/kdevelop-php-docs-1.7.4-x86_64-2.txz: Rebuilt. kde/kdevplatform-1.7.4-x86_64-2.txz: Rebuilt. kde/kdewebdev-4.14.3-x86_64-3.txz: Rebuilt. kde/kdf-4.14.3-x86_64-3.txz: Rebuilt. kde/kdiamond-4.14.3-x86_64-3.txz: Rebuilt. kde/kfilemetadata-4.14.3-x86_64-4.txz: Rebuilt. kde/kfloppy-4.14.3-x86_64-3.txz: Rebuilt. kde/kfourinline-4.14.3-x86_64-3.txz: Rebuilt. kde/kgamma-4.14.3-x86_64-3.txz: Rebuilt. kde/kgeography-4.14.3-x86_64-3.txz: Rebuilt. kde/kget-4.14.3-x86_64-4.txz: Rebuilt. kde/kgoldrunner-4.14.3-x86_64-3.txz: Rebuilt. kde/kgpg-4.14.3-x86_64-3.txz: Rebuilt. kde/khangman-4.14.3-x86_64-3.txz: Rebuilt. kde/kig-4.14.3-x86_64-8.txz: Rebuilt. kde/kigo-4.14.3-x86_64-3.txz: Rebuilt. kde/killbots-4.14.3-x86_64-3.txz: Rebuilt. kde/kio-mtp-2063e75_20131020git-x86_64-4.txz: Rebuilt. kde/kiriki-4.14.3-x86_64-3.txz: Rebuilt. kde/kiten-4.14.3-x86_64-3.txz: Rebuilt. kde/kjumpingcube-4.14.3-x86_64-3.txz: Rebuilt. kde/klettres-4.14.3-x86_64-3.txz: Rebuilt. kde/klickety-4.14.3-x86_64-3.txz: Rebuilt. kde/klines-4.14.3-x86_64-3.txz: Rebuilt. kde/kmag-4.14.3-x86_64-3.txz: Rebuilt. kde/kmahjongg-4.14.3-x86_64-3.txz: Rebuilt. kde/kmines-4.14.3-x86_64-3.txz: Rebuilt. kde/kmix-4.14.3-x86_64-4.txz: Rebuilt. kde/kmousetool-4.14.3-x86_64-3.txz: Rebuilt. kde/kmouth-4.14.3-x86_64-3.txz: Rebuilt. kde/kmplot-4.14.3-x86_64-3.txz: Rebuilt. kde/knavalbattle-4.14.3-x86_64-3.txz: Rebuilt. kde/knetwalk-4.14.3-x86_64-3.txz: Rebuilt. kde/kolf-4.14.3-x86_64-3.txz: Rebuilt. kde/kollision-4.14.3-x86_64-3.txz: Rebuilt. kde/kolourpaint-4.14.3-x86_64-3.txz: Rebuilt. kde/kompare-4.14.3-x86_64-3.txz: Rebuilt. kde/konquest-4.14.3-x86_64-3.txz: Rebuilt. kde/konsole-4.14.3-x86_64-5.txz: Rebuilt. Reverted TERM change, so by default TERM=xterm again. kde/kopete-4.14.3-x86_64-5.txz: Rebuilt. kde/korundum-4.14.3-x86_64-6.txz: Rebuilt. kde/kpat-4.14.3-x86_64-3.txz: Rebuilt. kde/kplayer-0.7.2-x86_64-3.txz: Rebuilt. kde/kppp-4.14.3-x86_64-3.txz: Rebuilt. kde/kqtquickcharts-4.14.3-x86_64-3.txz: Rebuilt. kde/krdc-4.14.3-x86_64-4.txz: Rebuilt. kde/kremotecontrol-4.14.3-x86_64-3.txz: Rebuilt. kde/kreversi-4.14.3-x86_64-3.txz: Rebuilt. kde/krfb-4.14.3-x86_64-3.txz: Rebuilt. kde/kross-interpreters-4.14.3-x86_64-4.txz: Rebuilt. kde/kruler-4.14.3-x86_64-3.txz: Rebuilt. kde/ksaneplugin-4.14.3-x86_64-3.txz: Rebuilt. kde/kscreen-1.0.2.1-x86_64-3.txz: Rebuilt. kde/kshisen-4.14.3-x86_64-3.txz: Rebuilt. kde/ksirk-4.14.3-x86_64-3.txz: Rebuilt. kde/ksnakeduel-4.14.3-x86_64-3.txz: Rebuilt. kde/ksnapshot-4.14.3-x86_64-3.txz: Rebuilt. kde/kspaceduel-4.14.3-x86_64-3.txz: Rebuilt. kde/ksquares-4.14.3-x86_64-3.txz: Rebuilt. kde/kstars-4.14.3-x86_64-3.txz: Rebuilt. kde/ksudoku-4.14.3-x86_64-3.txz: Rebuilt. kde/ksystemlog-4.14.3-x86_64-3.txz: Rebuilt. kde/kteatime-4.14.3-x86_64-3.txz: Rebuilt. kde/ktimer-4.14.3-x86_64-3.txz: Rebuilt. kde/ktorrent-4.3.1-x86_64-3.txz: Rebuilt. kde/ktouch-4.14.3-x86_64-4.txz: Rebuilt. kde/ktuberling-4.14.3-x86_64-3.txz: Rebuilt. kde/kturtle-4.14.3-x86_64-3.txz: Rebuilt. kde/ktux-4.14.3-x86_64-3.txz: Rebuilt. kde/kubrick-4.14.3-x86_64-3.txz: Rebuilt. kde/kuser-4.14.3-x86_64-3.txz: Rebuilt. kde/kwalletmanager-4.14.3-x86_64-3.txz: Rebuilt. kde/kwebkitpart-1.3.4-x86_64-3.txz: Rebuilt. kde/kwordquiz-4.14.3-x86_64-3.txz: Rebuilt. kde/libkcddb-4.14.3-x86_64-3.txz: Rebuilt. kde/libkcompactdisc-4.14.3-x86_64-3.txz: Rebuilt. kde/libkdcraw-4.14.3-x86_64-5.txz: Rebuilt. kde/libkdeedu-4.14.3-x86_64-3.txz: Rebuilt. kde/libkdegames-4.14.3-x86_64-3.txz: Rebuilt. kde/libkexiv2-4.14.3-x86_64-4.txz: Rebuilt. kde/libkipi-4.14.3-x86_64-3.txz: Rebuilt. kde/libkmahjongg-4.14.3-x86_64-3.txz: Rebuilt. kde/libkomparediff2-4.14.3-x86_64-3.txz: Rebuilt. kde/libksane-4.14.3-x86_64-3.txz: Rebuilt. kde/libkscreen-1.0.5-x86_64-3.txz: Rebuilt. kde/libktorrent-1.3.1-x86_64-4.txz: Rebuilt. kde/libmm-qt-1.0.1-x86_64-3.txz: Rebuilt. kde/libnm-qt-0.9.8.3-x86_64-3.txz: Rebuilt. kde/lokalize-4.14.3-x86_64-4.txz: Rebuilt. kde/lskat-4.14.3-x86_64-4.txz: Rebuilt. kde/marble-4.14.3-x86_64-3.txz: Rebuilt. kde/mplayerthumbs-4.14.3-x86_64-3.txz: Rebuilt. kde/nepomuk-core-4.14.3-x86_64-4.txz: Rebuilt. kde/nepomuk-widgets-4.14.3-x86_64-3.txz: Rebuilt. kde/okteta-4.14.3-x86_64-3.txz: Rebuilt. kde/okular-4.14.3-x86_64-3.txz: Rebuilt. kde/oxygen-gtk2-1.4.6-x86_64-3.txz: Rebuilt. kde/oxygen-icons-4.14.3-x86_64-3.txz: Rebuilt. kde/pairs-4.14.3-x86_64-3.txz: Rebuilt. kde/palapeli-4.14.3-x86_64-3.txz: Rebuilt. kde/parley-4.14.3-x86_64-3.txz: Rebuilt. kde/partitionmanager-1.1.1-x86_64-3.txz: Rebuilt. kde/perlkde-4.14.3-x86_64-5.txz: Rebuilt. Recompiled against perl-5.26.2. kde/perlqt-4.14.3-x86_64-6.txz: Rebuilt. Recompiled against perl-5.26.2. kde/picmi-4.14.3-x86_64-3.txz: Rebuilt. kde/plasma-nm-0.9.3.6-x86_64-2.txz: Rebuilt. kde/polkit-kde-agent-1-9d74ae3_20120104git-x86_64-3.txz: Rebuilt. kde/polkit-kde-kcmodules-1-001bdf7_20120111git-x86_64-3.txz: Rebuilt. kde/poxml-4.14.3-x86_64-3.txz: Rebuilt. kde/print-manager-4.14.3-x86_64-3.txz: Rebuilt. kde/pykde4-4.14.3-x86_64-7.txz: Rebuilt. kde/qtruby-4.14.3-x86_64-8.txz: Rebuilt. kde/rocs-4.14.3-x86_64-3.txz: Rebuilt. kde/skanlite-1.1-x86_64-3.txz: Rebuilt. kde/smokegen-4.14.3-x86_64-3.txz: Rebuilt. kde/smokekde-4.14.3-x86_64-3.txz: Rebuilt. kde/smokeqt-4.14.3-x86_64-5.txz: Rebuilt. kde/step-4.14.3-x86_64-6.txz: Rebuilt. kde/superkaramba-4.14.3-x86_64-4.txz: Rebuilt. kde/svgpart-4.14.3-x86_64-3.txz: Rebuilt. kde/sweeper-4.14.3-x86_64-3.txz: Rebuilt. kde/umbrello-4.14.3-x86_64-3.txz: Rebuilt. kde/wicd-kde-0.3.0_bcf27d8-x86_64-3.txz: Rebuilt. kde/zeroconf-ioslave-4.14.3-x86_64-3.txz: Rebuilt. l/ConsoleKit2-1.0.0-x86_64-4.txz: Rebuilt. l/GConf-3.2.6-x86_64-4.txz: Rebuilt. l/LibRaw-0.18.8-x86_64-2.txz: Rebuilt. l/M2Crypto-0.27.0-x86_64-3.txz: Rebuilt. l/Mako-1.0.7-x86_64-2.txz: Rebuilt. l/PyQt-4.12.1-x86_64-2.txz: Rebuilt. l/QScintilla-2.10.2-x86_64-2.txz: Rebuilt. l/SDL2-2.0.8-x86_64-2.txz: Rebuilt. l/SDL2_gfx-1.0.3-x86_64-2.txz: Rebuilt. l/SDL2_image-2.0.3-x86_64-2.txz: Rebuilt. l/SDL2_mixer-2.0.2-x86_64-3.txz: Rebuilt. l/SDL2_net-2.0.1-x86_64-2.txz: Rebuilt. l/SDL2_ttf-2.0.14-x86_64-2.txz: Rebuilt. l/a52dec-0.7.4-x86_64-3.txz: Rebuilt. l/aalib-1.4rc5-x86_64-6.txz: Rebuilt. l/adwaita-icon-theme-3.28.0-noarch-2.txz: Rebuilt. l/akonadi-1.13.0-x86_64-9.txz: Rebuilt. Recompiled against boost-1.67.0. l/alsa-lib-1.1.6-x86_64-3.txz: Rebuilt. l/alsa-oss-1.1.6-x86_64-2.txz: Rebuilt. l/alsa-plugins-1.1.6-x86_64-2.txz: Rebuilt. l/apr-1.6.3-x86_64-2.txz: Rebuilt. l/apr-util-1.6.1-x86_64-6.txz: Rebuilt. l/aspell-0.60.6.1-x86_64-3.txz: Rebuilt. l/aspell-en-2018.04.16_0-x86_64-1.txz: Upgraded. l/at-spi2-atk-2.26.2-x86_64-2.txz: Rebuilt. l/at-spi2-core-2.28.0-x86_64-2.txz: Rebuilt. l/atk-2.28.1-x86_64-2.txz: Rebuilt. l/atkmm-2.24.2-x86_64-2.txz: Rebuilt. l/attica-0.4.2-x86_64-2.txz: Rebuilt. l/audiofile-0.3.6-x86_64-2.txz: Rebuilt. l/automoc4-0.9.88-x86_64-2.txz: Rebuilt. l/babl-0.1.46-x86_64-1.txz: Upgraded. l/boost-1.67.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/cairo-1.15.12-x86_64-2.txz: Rebuilt. l/cairomm-1.12.2-x86_64-2.txz: Rebuilt. l/chmlib-0.40-x86_64-3.txz: Rebuilt. l/clucene-2.3.3.4-x86_64-3.txz: Rebuilt. l/db42-4.2.52-x86_64-4.txz: Rebuilt. l/db44-4.4.20-x86_64-4.txz: Rebuilt. l/db48-4.8.30-x86_64-3.txz: Rebuilt. l/dbus-glib-0.110-x86_64-2.txz: Rebuilt. l/dbus-python-1.2.6-x86_64-2.txz: Rebuilt. l/dconf-0.26.1-x86_64-2.txz: Rebuilt. l/dconf-editor-3.26.2-x86_64-2.txz: Rebuilt. l/desktop-file-utils-0.23-x86_64-2.txz: Rebuilt. l/djvulibre-3.5.27-x86_64-2.txz: Rebuilt. l/ebook-tools-0.2.2-x86_64-5.txz: Rebuilt. l/eigen2-2.0.17-x86_64-2.txz: Rebuilt. l/eigen3-3.2.10-x86_64-2.txz: Rebuilt. l/elfutils-0.170-x86_64-2.txz: Rebuilt. l/enchant-1.6.1-x86_64-2.txz: Rebuilt. l/esound-0.2.41-x86_64-3.txz: Rebuilt. l/exiv2-0.26-x86_64-3.txz: Rebuilt. l/expat-2.2.5-x86_64-2.txz: Rebuilt. l/ffmpeg-3.4.2-x86_64-2.txz: Rebuilt. l/fftw-3.3.7-x86_64-2.txz: Rebuilt. l/fluidsynth-1.1.10-x86_64-2.txz: Rebuilt. l/freetype-2.9-x86_64-2.txz: Rebuilt. l/fribidi-0.19.7-x86_64-2.txz: Rebuilt. l/fuse-2.9.7-x86_64-2.txz: Rebuilt. l/gamin-0.1.10-x86_64-6.txz: Rebuilt. l/gc-7.6.4-x86_64-2.txz: Rebuilt. l/gcr-3.28.0-x86_64-2.txz: Rebuilt. l/gd-2.2.5-x86_64-1.txz: Upgraded. This update fixes two security issues: Double-free in gdImagePngPtr() (denial of service). Buffer over-read into uninitialized memory (information leak). For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6362 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7890 (* Security fix *) l/gdbm-1.13-x86_64-2.txz: Rebuilt. l/gdk-pixbuf2-2.36.12-x86_64-2.txz: Rebuilt. l/gegl-0.2.0-x86_64-7.txz: Rebuilt. l/giflib-5.1.4-x86_64-2.txz: Rebuilt. l/glade3-3.8.6-x86_64-2.txz: Rebuilt. l/glib-1.2.10-x86_64-6.txz: Rebuilt. l/glib-networking-2.56.0-x86_64-2.txz: Rebuilt. l/glib2-2.56.1-x86_64-2.txz: Rebuilt. l/glibc-2.27-x86_64-2.txz: Rebuilt. [PATCH] Linux: use reserved name __key in pkey_get [BZ #22797] l/glibc-i18n-2.27-x86_64-2.txz: Rebuilt. l/glibc-profile-2.27-x86_64-2.txz: Rebuilt. l/glibmm-2.56.0-x86_64-1.txz: Upgraded. l/gmime-2.6.23-x86_64-3.txz: Rebuilt. l/gmm-4.3-noarch-2.txz: Rebuilt. l/gmp-6.1.2-x86_64-2.txz: Rebuilt. l/gnome-keyring-3.28.0.2-x86_64-2.txz: Rebuilt. l/gnome-themes-standard-3.22.3-x86_64-2.txz: Rebuilt. l/gnu-efi-3.0.6-x86_64-2.txz: Rebuilt. l/gobject-introspection-1.56.1-x86_64-2.txz: Rebuilt. l/grantlee-0.5.1-x86_64-2.txz: Rebuilt. l/gsettings-desktop-schemas-3.28.0-x86_64-2.txz: Rebuilt. l/gsl-2.4-x86_64-2.txz: Rebuilt. l/gst-plugins-base-1.14.0-x86_64-2.txz: Rebuilt. l/gst-plugins-base0-0.10.36-x86_64-3.txz: Rebuilt. l/gst-plugins-good-1.14.0-x86_64-2.txz: Rebuilt. l/gst-plugins-good0-0.10.31-x86_64-3.txz: Rebuilt. l/gst-plugins-libav-1.14.0-x86_64-2.txz: Rebuilt. l/gstreamer-1.14.0-x86_64-2.txz: Rebuilt. l/gstreamer0-0.10.36-x86_64-2.txz: Rebuilt. l/gtk+-1.2.10-x86_64-7.txz: Rebuilt. l/gtk+2-2.24.32-x86_64-2.txz: Rebuilt. l/gtk+3-3.22.30-x86_64-1.txz: Upgraded. l/gtkmm2-2.24.5-x86_64-2.txz: Rebuilt. l/gtkmm3-3.22.2-x86_64-2.txz: Rebuilt. l/gtkspell-2.0.16-x86_64-4.txz: Rebuilt. l/gvfs-1.36.1-x86_64-2.txz: Rebuilt. l/harfbuzz-1.7.6-x86_64-3.txz: Rebuilt. l/hicolor-icon-theme-0.17-noarch-2.txz: Rebuilt. l/hunspell-1.6.2-x86_64-2.txz: Rebuilt. l/icon-naming-utils-0.8.90-x86_64-3.txz: Rebuilt. l/icu4c-61.1-x86_64-2.txz: Rebuilt. l/id3lib-3.8.3-x86_64-2.txz: Rebuilt. l/ilmbase-2.2.0-x86_64-2.txz: Rebuilt. l/imagemagick-6.9.9_40-x86_64-2.txz: Rebuilt. Don't use OpenCL. Thanks to EdGr. l/iso-codes-3.76-noarch-2.txz: Rebuilt. l/jansson-2.11-x86_64-2.txz: Rebuilt. l/jasper-2.0.12-x86_64-2.txz: Rebuilt. l/jemalloc-4.5.0-x86_64-2.txz: Rebuilt. l/js185-1.0.0-x86_64-2.txz: Rebuilt. l/judy-1.0.5-x86_64-2.txz: Rebuilt. l/keybinder-0.3.1-x86_64-2.txz: Rebuilt. l/keyutils-1.5.10-x86_64-2.txz: Rebuilt. l/lame-3.100-x86_64-2.txz: Rebuilt. l/lcms-1.19-x86_64-4.txz: Rebuilt. l/lcms2-2.9-x86_64-2.txz: Rebuilt. l/libaio-0.3.110-x86_64-2.txz: Rebuilt. l/libao-1.2.2-x86_64-2.txz: Rebuilt. l/libarchive-3.3.2-x86_64-2.txz: Rebuilt. l/libart_lgpl-2.3.21-x86_64-2.txz: Rebuilt. l/libasyncns-0.8-x86_64-2.txz: Rebuilt. l/libatasmart-0.19-x86_64-3.txz: Rebuilt. l/libbluedevil-2.1-x86_64-2.txz: Rebuilt. l/libbluray-1.0.1-x86_64-2.txz: Rebuilt. l/libcaca-0.99.beta19-x86_64-3.txz: Rebuilt. l/libcanberra-0.30-x86_64-6.txz: Rebuilt. l/libcap-2.25-x86_64-2.txz: Rebuilt. l/libcap-ng-0.7.8-x86_64-3.txz: Rebuilt. l/libcddb-1.3.2-x86_64-5.txz: Rebuilt. l/libcdio-2.0.0-x86_64-2.txz: Rebuilt. l/libcdio-paranoia-10.2+0.94+2-x86_64-3.txz: Rebuilt. l/libclc-20180223_3554053-x86_64-2.txz: Rebuilt. l/libcroco-0.6.12-x86_64-2.txz: Rebuilt. l/libdbusmenu-qt-0.9.2-x86_64-3.txz: Rebuilt. l/libdiscid-0.6.2-x86_64-2.txz: Rebuilt. l/libdvdnav-6.0.0-x86_64-2.txz: Rebuilt. l/libdvdread-6.0.0-x86_64-3.txz: Rebuilt. l/libedit-20170329_3.1-x86_64-2.txz: Rebuilt. l/libevent-2.1.8-x86_64-2.txz: Rebuilt. l/libexif-0.6.21-x86_64-2.txz: Rebuilt. l/libfakekey-0.3-x86_64-2.txz: Rebuilt. l/libffi-3.2.1-x86_64-2.txz: Rebuilt. l/libglade-2.6.4-x86_64-6.txz: Rebuilt. l/libgnome-keyring-3.12.0-x86_64-2.txz: Rebuilt. l/libgphoto2-2.5.17-x86_64-1.txz: Upgraded. l/libgpod-0.8.3-x86_64-5.txz: Rebuilt. l/libgsf-1.14.42-x86_64-2.txz: Rebuilt. l/libical-3.0.1-x86_64-3.txz: Rebuilt. l/libid3tag-0.15.1b-x86_64-5.txz: Rebuilt. l/libidl-0.8.14-x86_64-2.txz: Rebuilt. l/libidn-1.34-x86_64-2.txz: Rebuilt. l/libidn2-2.0.4-x86_64-2.txz: Rebuilt. l/libieee1284-0.2.11-x86_64-4.txz: Rebuilt. l/libimobiledevice-1.2.0-x86_64-3.txz: Rebuilt. l/libiodbc-3.52.10-x86_64-3.txz: Rebuilt. l/libjpeg-turbo-1.5.3-x86_64-2.txz: Rebuilt. l/libkarma-0.1.1-x86_64-3.txz: Rebuilt. l/liblastfm-1.0.9-x86_64-2.txz: Rebuilt. l/libmad-0.15.1b-x86_64-4.txz: Rebuilt. l/libmcrypt-2.5.8-x86_64-2.txz: Rebuilt. l/libmng-2.0.3-x86_64-2.txz: Rebuilt. l/libmpc-1.1.0-x86_64-2.txz: Rebuilt. l/libmsn-4.2.1-x86_64-3.txz: Rebuilt. l/libmtp-1.1.15-x86_64-2.txz: Rebuilt. l/libnih-1.0.3-x86_64-3.txz: Rebuilt. l/libnjb-2.2.7-x86_64-2.txz: Rebuilt. l/libnl-1.1.4-x86_64-2.txz: Rebuilt. l/libnl3-3.4.0-x86_64-2.txz: Rebuilt. l/libnotify-0.7.7-x86_64-2.txz: Rebuilt. l/libodfgen-0.1.6-x86_64-2.txz: Rebuilt. l/libogg-1.3.3-x86_64-2.txz: Rebuilt. l/liboggz-1.1.1-x86_64-3.txz: Rebuilt. l/liboil-0.3.17-x86_64-2.txz: Rebuilt. l/libpcap-1.8.1-x86_64-2.txz: Rebuilt. l/libplist-2.0.0-x86_64-2.txz: Rebuilt. l/libpng-1.6.34-x86_64-2.txz: Rebuilt. l/libproxy-0.4.15-x86_64-2.txz: Rebuilt. l/libraw1394-2.1.2-x86_64-2.txz: Rebuilt. l/librevenge-0.0.4-x86_64-2.txz: Rebuilt. l/librsvg-2.42.3-x86_64-3.txz: Rebuilt. l/libsamplerate-0.1.9-x86_64-2.txz: Rebuilt. l/libsecret-0.18.6-x86_64-2.txz: Rebuilt. l/libsigc++-2.10.0-x86_64-2.txz: Rebuilt. l/libsigsegv-2.12-x86_64-2.txz: Rebuilt. l/libsndfile-1.0.28-x86_64-2.txz: Rebuilt. l/libsodium-1.0.16-x86_64-2.txz: Rebuilt. l/libsoup-2.62.1-x86_64-2.txz: Rebuilt. l/libspectre-0.2.8-x86_64-2.txz: Rebuilt. l/libssh-0.7.5-x86_64-2.txz: Rebuilt. l/libssh2-1.8.0-x86_64-2.txz: Rebuilt. l/libtasn1-4.13-x86_64-2.txz: Rebuilt. l/libtheora-1.1.1-x86_64-2.txz: Rebuilt. l/libtiff-4.0.9-x86_64-2.txz: Rebuilt. l/libunistring-0.9.9-x86_64-2.txz: Rebuilt. l/libunwind-1.2.1-x86_64-3.txz: Rebuilt. l/libusb-1.0.22-x86_64-2.txz: Rebuilt. l/libusb-compat-0.1.5-x86_64-3.txz: Rebuilt. l/libusbmuxd-1.0.10-x86_64-2.txz: Rebuilt. l/libvisio-0.1.6-x86_64-3.txz: Rebuilt. l/libvisual-0.4.0-x86_64-4.txz: Rebuilt. l/libvisual-plugins-0.4.0-x86_64-3.txz: Rebuilt. l/libvncserver-0.9.11-x86_64-3.txz: Rebuilt. l/libvorbis-1.3.6-x86_64-2.txz: Rebuilt. l/libvpx-1.7.0-x86_64-2.txz: Rebuilt. l/libwebp-0.6.1-x86_64-2.txz: Rebuilt. l/libwmf-0.2.8.4-x86_64-7.txz: Rebuilt. l/libwmf-docs-0.2.8.4-noarch-7.txz: Rebuilt. l/libwnck-2.31.0-x86_64-3.txz: Rebuilt. l/libwpd-0.10.1-x86_64-2.txz: Rebuilt. l/libwpg-0.3.1-x86_64-2.txz: Rebuilt. l/libxklavier-5.4-x86_64-2.txz: Rebuilt. l/libxml2-2.9.8-x86_64-2.txz: Rebuilt. l/libxslt-1.1.32-x86_64-2.txz: Rebuilt. l/libyaml-0.1.7-x86_64-2.txz: Rebuilt. l/libzip-1.5.1-x86_64-2.txz: Rebuilt. l/loudmouth-1.5.3-x86_64-2.txz: Rebuilt. l/lzo-2.10-x86_64-2.txz: Rebuilt. l/media-player-info-23-noarch-2.txz: Rebuilt. l/mhash-0.9.9.9-x86_64-4.txz: Rebuilt. l/mm-1.4.2-x86_64-3.txz: Rebuilt. l/mozilla-nss-3.36.1-x86_64-2.txz: Rebuilt. l/mpfr-4.0.1-x86_64-2.txz: Rebuilt. l/ncurses-6.1_20180324-x86_64-4.txz: Rebuilt. Change the xterm entry in xterm.terminfo (way down at the bottom, where it says "customization begins here" and that we may need to change the xterm entry since it is used "for a variety of incompatible terminal emulations") to drop the use of use=rep+ansi. In addition to causing Konsole breakage, I have verification that rep= was causing problems with terminals connecting from OSX. Only the xterm entry has changed. Previously this was an alias for xterm-new, which has not been altered. Feel free to use xterm-new instead if it suits your needs better. l/neon-0.30.1-x86_64-3.txz: Rebuilt. l/netpbm-10.66.02-x86_64-5.txz: Rebuilt. l/newt-0.52.20-x86_64-3.txz: Rebuilt. l/ocl-icd-2.2.12-x86_64-2.txz: Rebuilt. l/openexr-2.2.0-x86_64-3.txz: Rebuilt. l/openjpeg-2.3.0-x86_64-2.txz: Rebuilt. l/opus-1.3_beta-x86_64-2.txz: Rebuilt. l/opusfile-0.9-x86_64-3.txz: Rebuilt. l/orc-0.4.28-x86_64-2.txz: Rebuilt. l/pango-1.42.1-x86_64-2.txz: Rebuilt. l/pangomm-2.40.1-x86_64-2.txz: Rebuilt. l/parted-3.2-x86_64-4.txz: Rebuilt. l/pcre-8.42-x86_64-2.txz: Rebuilt. l/pcre2-10.31-x86_64-2.txz: Rebuilt. l/phonon-4.8.3-x86_64-3.txz: Rebuilt. l/phonon-gstreamer-4.8.2-x86_64-2.txz: Rebuilt. l/pilot-link-0.12.5-x86_64-13.txz: Rebuilt. l/polkit-0.113-x86_64-4.txz: Rebuilt. l/polkit-gnome-0.105-x86_64-2.txz: Rebuilt. l/polkit-qt-1-0.112.0-x86_64-2.txz: Rebuilt. l/poppler-0.64.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/poppler-data-0.4.8-noarch-2.txz: Rebuilt. l/popt-1.16-x86_64-3.txz: Rebuilt. l/pulseaudio-11.1-x86_64-2.txz: Rebuilt. l/pycairo-1.16.3-x86_64-2.txz: Rebuilt. l/pycups-1.9.73-x86_64-4.txz: Rebuilt. l/pycurl-7.43.0.1-x86_64-2.txz: Rebuilt. l/pygobject-2.28.7-x86_64-2.txz: Rebuilt. l/pygobject3-3.28.2-x86_64-2.txz: Rebuilt. l/pygtk-2.24.0-x86_64-5.txz: Rebuilt. l/pyparsing-2.2.0-x86_64-2.txz: Rebuilt. l/python-appdirs-1.4.3-x86_64-2.txz: Rebuilt. l/python-certifi-2018.1.18-x86_64-2.txz: Rebuilt. l/python-chardet-3.0.4-x86_64-2.txz: Rebuilt. l/python-docutils-0.14-x86_64-2.txz: Rebuilt. l/python-idna-2.6-x86_64-2.txz: Rebuilt. l/python-notify2-0.3.1-x86_64-2.txz: Rebuilt. l/python-packaging-16.8-x86_64-2.txz: Rebuilt. l/python-pillow-5.1.0-x86_64-2.txz: Rebuilt. l/python-requests-2.18.4-x86_64-2.txz: Rebuilt. l/python-sane-2.8.3-x86_64-2.txz: Rebuilt. l/python-six-1.11.0-x86_64-2.txz: Rebuilt. l/python-urllib3-1.22-x86_64-2.txz: Rebuilt. l/qca-2.1.3-x86_64-2.txz: Rebuilt. l/qimageblitz-0.0.6-x86_64-2.txz: Rebuilt. l/qjson-0.8.1-x86_64-2.txz: Rebuilt. l/qt-4.8.7-x86_64-9.txz: Rebuilt. l/qt-gstreamer-1.2.0-x86_64-2.txz: Rebuilt. l/qtscriptgenerator-0.2.0-x86_64-3.txz: Rebuilt. l/raptor2-2.0.15-x86_64-5.txz: Rebuilt. l/rasqal-0.9.33-x86_64-3.txz: Rebuilt. l/readline-7.0.003-x86_64-2.txz: Rebuilt. l/redland-1.0.17-x86_64-4.txz: Rebuilt. l/sbc-1.3-x86_64-2.txz: Rebuilt. l/sdl-1.2.15-x86_64-7.txz: Rebuilt. l/seamonkey-solibs-2.49.2-x86_64-2.txz: Rebuilt. l/serf-1.3.9-x86_64-2.txz: Rebuilt. l/sg3_utils-1.42-x86_64-2.txz: Rebuilt. l/shared-desktop-ontologies-0.11.0-x86_64-2.txz: Rebuilt. l/shared-mime-info-1.9-x86_64-2.txz: Rebuilt. l/sip-4.19.8-x86_64-2.txz: Rebuilt. l/slang-2.3.2-x86_64-3.txz: Rebuilt. l/slang1-1.4.9-x86_64-2.txz: Rebuilt. l/soprano-2.9.4-x86_64-2.txz: Rebuilt. l/sound-theme-freedesktop-0.8-noarch-2.txz: Rebuilt. l/speex-1.2.0-x86_64-2.txz: Rebuilt. l/speexdsp-1.2rc3-x86_64-2.txz: Rebuilt. l/startup-notification-0.12-x86_64-3.txz: Rebuilt. l/strigi-0.7.8-x86_64-4.txz: Rebuilt. l/svgalib-1.9.25-x86_64-4.txz: Rebuilt. l/system-config-printer-1.5.11-x86_64-3.txz: Rebuilt. l/t1lib-5.1.2-x86_64-4.txz: Rebuilt. l/taglib-1.11.1-x86_64-3.txz: Rebuilt. l/taglib-extras-1.0.1-x86_64-2.txz: Rebuilt. l/talloc-2.1.13-x86_64-1.txz: Upgraded. l/tango-icon-theme-0.8.90-noarch-2.txz: Rebuilt. l/tango-icon-theme-extras-0.1.0-noarch-2.txz: Rebuilt. l/tdb-1.3.15-x86_64-2.txz: Rebuilt. l/tevent-0.9.36-x86_64-2.txz: Rebuilt. l/urwid-1.0.3-x86_64-3.txz: Rebuilt. l/utf8proc-2.1.0-x86_64-1.txz: Added. This library is required by subversion-1.10.0. l/v4l-utils-1.14.2-x86_64-2.txz: Rebuilt. l/virtuoso-ose-6.1.8-x86_64-8.txz: Rebuilt. l/vte-0.52.1-x86_64-2.txz: Rebuilt. l/wavpack-5.1.0-x86_64-2.txz: Rebuilt. l/xapian-core-1.4.5-x86_64-2.txz: Rebuilt. l/zlib-1.2.11-x86_64-2.txz: Rebuilt. n/ModemManager-1.6.12-x86_64-2.txz: Rebuilt. n/NetworkManager-1.10.6-x86_64-3.txz: Rebuilt. n/alpine-2.21-x86_64-2.txz: Rebuilt. n/autofs-5.1.4-x86_64-2.txz: Rebuilt. n/biff+comsat-0.17-x86_64-2.txz: Rebuilt. n/bind-9.11.3-x86_64-2.txz: Rebuilt. n/bluez-5.49-x86_64-3.txz: Rebuilt. n/bluez-firmware-1.2-x86_64-2.txz: Rebuilt. n/bootp-2.4.3-x86_64-3.txz: Rebuilt. n/bridge-utils-1.5-x86_64-2.txz: Rebuilt. n/bsd-finger-0.17-x86_64-3.txz: Rebuilt. n/ca-certificates-20170717-noarch-2.txz: Rebuilt. n/cifs-utils-6.7-x86_64-2.txz: Rebuilt. n/conntrack-tools-1.4.4-x86_64-2.txz: Rebuilt. n/crda-3.18-x86_64-6.txz: Rebuilt. n/curl-7.59.0-x86_64-3.txz: Rebuilt. n/cyrus-sasl-2.1.26-x86_64-4.txz: Rebuilt. n/dhcp-4.4.1-x86_64-2.txz: Rebuilt. n/dhcpcd-7.0.3-x86_64-2.txz: Rebuilt. n/dnsmasq-2.79-x86_64-2.txz: Rebuilt. n/dovecot-2.3.1-x86_64-3.txz: Rebuilt. Recompiled using --with-lucene. Thanks to kj25vm. n/ebtables-2.0.10-x86_64-2.txz: Rebuilt. n/elm-2.5.8-x86_64-5.txz: Rebuilt. n/epic5-2.0.1-x86_64-4.txz: Rebuilt. Recompiled against perl-5.26.2. n/ethtool-4.16-x86_64-1.txz: Upgraded. n/fetchmail-6.3.26-x86_64-3.txz: Rebuilt. n/getmail-5.6-x86_64-2.txz: Rebuilt. n/gnupg-1.4.22-x86_64-2.txz: Rebuilt. n/gnupg2-2.2.6-x86_64-2.txz: Rebuilt. n/gnutls-3.6.2-x86_64-2.txz: Rebuilt. n/gpa-0.9.10-x86_64-2.txz: Rebuilt. n/gpgme-1.10.0-x86_64-2.txz: Rebuilt. n/htdig-3.2.0b6-x86_64-5.txz: Rebuilt. n/httpd-2.4.33-x86_64-3.txz: Rebuilt. n/icmpinfo-1.11-x86_64-3.txz: Rebuilt. n/iftop-1.0pre4-x86_64-2.txz: Rebuilt. n/inetd-1.79s-x86_64-11.txz: Rebuilt. n/iproute2-4.16.0-x86_64-2.txz: Rebuilt. n/ipset-6.38-x86_64-1.txz: Upgraded. n/iptables-1.6.2-x86_64-2.txz: Rebuilt. n/iptraf-ng-1.1.4-x86_64-3.txz: Rebuilt. n/iputils-s20140519-x86_64-2.txz: Rebuilt. n/irssi-1.1.1-x86_64-2.txz: Rebuilt. Recompiled against perl-5.26.2. n/iw-4.14-x86_64-2.txz: Rebuilt. n/lftp-4.8.3-x86_64-2.txz: Rebuilt. n/libassuan-2.5.1-x86_64-2.txz: Rebuilt. n/libgcrypt-1.8.2-x86_64-2.txz: Rebuilt. n/libgpg-error-1.29-x86_64-2.txz: Rebuilt. n/libksba-1.3.5-x86_64-2.txz: Rebuilt. n/libmbim-1.16.0-x86_64-2.txz: Rebuilt. n/libmilter-8.15.2-x86_64-2.txz: Rebuilt. n/libmnl-1.0.4-x86_64-3.txz: Rebuilt. n/libndp-1.6-x86_64-2.txz: Rebuilt. n/libnetfilter_acct-1.0.3-x86_64-2.txz: Rebuilt. n/libnetfilter_conntrack-1.0.6-x86_64-2.txz: Rebuilt. n/libnetfilter_cthelper-1.0.0-x86_64-2.txz: Rebuilt. n/libnetfilter_cttimeout-1.0.0-x86_64-2.txz: Rebuilt. n/libnetfilter_log-1.0.1-x86_64-2.txz: Rebuilt. n/libnetfilter_queue-1.0.3-x86_64-2.txz: Rebuilt. n/libnfnetlink-1.0.1-x86_64-2.txz: Rebuilt. n/libnftnl-1.0.9-x86_64-2.txz: Rebuilt. n/libqmi-1.20.0-x86_64-2.txz: Rebuilt. n/libtirpc-1.0.3-x86_64-2.txz: Rebuilt. n/links-2.14-x86_64-3.txz: Rebuilt. n/lynx-2.8.9dev.16-x86_64-1.txz: Upgraded. n/mailx-12.5-x86_64-3.txz: Rebuilt. n/mcabber-1.0.5-x86_64-2.txz: Rebuilt. n/metamail-2.7-x86_64-7.txz: Rebuilt. n/mobile-broadband-provider-info-20170310-x86_64-2.txz: Rebuilt. n/mtr-0.92-x86_64-2.txz: Rebuilt. n/mutt-1.9.5-x86_64-1.txz: Upgraded. n/nc-1.10-x86_64-2.txz: Rebuilt. n/ncftp-3.2.6-x86_64-2.txz: Rebuilt. n/net-snmp-5.7.3-x86_64-7.txz: Rebuilt. Recompiled against perl-5.26.2. n/net-tools-20170208_479bb4a-x86_64-2.txz: Rebuilt. n/netatalk-2.2.3-x86_64-7.txz: Rebuilt. n/netdate-bsd4-x86_64-2.txz: Rebuilt. n/netkit-bootparamd-0.17-x86_64-3.txz: Rebuilt. n/netkit-ftp-0.17-x86_64-4.txz: Rebuilt. n/netkit-ntalk-0.17-x86_64-5.txz: Rebuilt. n/netkit-routed-0.17-x86_64-2.txz: Rebuilt. n/netkit-rsh-0.17-x86_64-2.txz: Rebuilt. n/netkit-rusers-0.17-x86_64-2.txz: Rebuilt. n/netkit-rwall-0.17-x86_64-2.txz: Rebuilt. n/netkit-rwho-0.17-x86_64-3.txz: Rebuilt. n/netkit-timed-0.17-x86_64-2.txz: Rebuilt. n/netpipes-4.2-x86_64-2.txz: Rebuilt. n/nettle-3.4-x86_64-2.txz: Rebuilt. n/netwatch-1.3.1_2-x86_64-3.txz: Rebuilt. n/network-scripts-15.0-noarch-7.txz: Rebuilt. n/netwrite-0.17-x86_64-2.txz: Rebuilt. n/newspost-2.1.1-x86_64-2.txz: Rebuilt. n/nfacct-1.0.2-x86_64-2.txz: Rebuilt. n/nfs-utils-2.3.1-x86_64-2.txz: Rebuilt. n/nftables-0.8.2-x86_64-2.txz: Rebuilt. n/nghttp2-1.31.1-x86_64-1.txz: Upgraded. This update fixes a security issue: Denial of service due to NULL pointer dereference. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000168 (* Security fix *) n/nmap-7.70-x86_64-2.txz: Rebuilt. n/nn-6.7.3-x86_64-5.txz: Rebuilt. n/npth-1.5-x86_64-2.txz: Rebuilt. n/ntp-4.2.8p11-x86_64-2.txz: Rebuilt. Recompiled against perl-5.26.2. n/obexftp-0.24.2-x86_64-3.txz: Rebuilt. n/openldap-client-2.4.46-x86_64-2.txz: Rebuilt. n/openobex-1.7.2-x86_64-2.txz: Rebuilt. n/openssh-7.7p1-x86_64-3.txz: Rebuilt. n/openssl-1.0.2o-x86_64-2.txz: Rebuilt. n/openvpn-2.4.5-x86_64-2.txz: Rebuilt. n/p11-kit-0.23.10-x86_64-2.txz: Rebuilt. n/php-7.2.4-x86_64-2.txz: Rebuilt. n/pidentd-3.0.19-x86_64-3.txz: Rebuilt. n/pinentry-1.1.0-x86_64-2.txz: Rebuilt. n/popa3d-1.0.3-x86_64-2.txz: Rebuilt. n/postfix-3.3.0-x86_64-3.txz: Rebuilt. n/ppp-2.4.7-x86_64-2.txz: Rebuilt. n/procmail-3.22-x86_64-3.txz: Rebuilt. n/proftpd-1.3.6-x86_64-3.txz: Rebuilt. n/pssh-2.3.1-x86_64-3.txz: Rebuilt. n/rdist-6.1.5-x86_64-3.txz: Rebuilt. n/rp-pppoe-3.12-x86_64-2.txz: Rebuilt. n/rpcbind-0.2.4-x86_64-4.txz: Rebuilt. n/rsync-3.1.3-x86_64-2.txz: Rebuilt. n/samba-4.7.7-x86_64-1.txz: Upgraded. n/slrn-1.0.2-x86_64-2.txz: Rebuilt. n/snownews-1.5.12-x86_64-4.txz: Rebuilt. n/sshfs-2.10-x86_64-2.txz: Rebuilt. n/stunnel-5.44-x86_64-2.txz: Rebuilt. n/tcp_wrappers-7.6-x86_64-2.txz: Rebuilt. n/tcpdump-4.9.2-x86_64-2.txz: Rebuilt. n/telnet-0.17-x86_64-4.txz: Rebuilt. n/tftp-hpa-5.2-x86_64-4.txz: Rebuilt. n/tin-2.4.2-x86_64-3.txz: Rebuilt. n/traceroute-2.1.0-x86_64-2.txz: Rebuilt. n/ulogd-2.0.5-x86_64-3.txz: Rebuilt. n/uucp-1.07-x86_64-2.txz: Rebuilt. n/vlan-1.9-x86_64-3.txz: Rebuilt. n/vsftpd-3.0.3-x86_64-4.txz: Rebuilt. n/wget-1.19.4-x86_64-3.txz: Rebuilt. n/whois-5.3.0-x86_64-2.txz: Rebuilt. n/wireless_tools-29-x86_64-12.txz: Rebuilt. n/wpa_supplicant-2.6-x86_64-4.txz: Rebuilt. n/yptools-2.14-x86_64-10.txz: Rebuilt. n/ytalk-3.3.0-x86_64-4.txz: Rebuilt. n/zd1211-firmware-1.5-fw-2.txz: Rebuilt. t/fig2dev-3.2.7-x86_64-1.txz: Upgraded. t/texlive-2017.171108-x86_64-5.txz: Rebuilt. Recompiled against poppler-0.64.0. t/xfig-3.2.7-x86_64-1.txz: Upgraded. tcl/expect-5.45.4-x86_64-2.txz: Rebuilt. tcl/hfsutils-3.2.6-x86_64-6.txz: Rebuilt. tcl/tcl-8.6.8-x86_64-3.txz: Rebuilt. tcl/tclx-8.4.1-x86_64-4.txz: Rebuilt. tcl/tix-8.4.3-x86_64-4.txz: Rebuilt. tcl/tk-8.6.8-x86_64-2.txz: Rebuilt. x/anthy-9100h-x86_64-2.txz: Rebuilt. x/appres-1.0.5-x86_64-2.txz: Rebuilt. x/bdftopcf-1.1-x86_64-2.txz: Rebuilt. x/beforelight-1.0.5-x86_64-3.txz: Rebuilt. x/bitmap-1.0.8-x86_64-3.txz: Rebuilt. x/compiz-0.8.8-x86_64-5.txz: Rebuilt. x/dejavu-fonts-ttf-2.37-noarch-3.txz: Rebuilt. x/editres-1.0.7-x86_64-2.txz: Rebuilt. x/encodings-1.0.4-noarch-2.txz: Rebuilt. x/font-adobe-100dpi-1.0.3-noarch-2.txz: Rebuilt. x/font-adobe-75dpi-1.0.3-noarch-2.txz: Rebuilt. x/font-adobe-utopia-100dpi-1.0.4-noarch-2.txz: Rebuilt. x/font-adobe-utopia-75dpi-1.0.4-noarch-2.txz: Rebuilt. x/font-adobe-utopia-type1-1.0.4-noarch-2.txz: Rebuilt. x/font-alias-1.0.3-noarch-2.txz: Rebuilt. x/font-arabic-misc-1.0.3-noarch-2.txz: Rebuilt. x/font-bh-100dpi-1.0.3-noarch-2.txz: Rebuilt. x/font-bh-75dpi-1.0.3-noarch-2.txz: Rebuilt. x/font-bh-lucidatypewriter-100dpi-1.0.3-noarch-2.txz: Rebuilt. x/font-bh-lucidatypewriter-75dpi-1.0.3-noarch-2.txz: Rebuilt. x/font-bh-ttf-1.0.3-noarch-2.txz: Rebuilt. x/font-bh-type1-1.0.3-noarch-2.txz: Rebuilt. x/font-bitstream-100dpi-1.0.3-noarch-2.txz: Rebuilt. x/font-bitstream-75dpi-1.0.3-noarch-2.txz: Rebuilt. x/font-bitstream-speedo-1.0.2-noarch-2.txz: Rebuilt. x/font-bitstream-type1-1.0.3-noarch-2.txz: Rebuilt. x/font-cronyx-cyrillic-1.0.3-noarch-2.txz: Rebuilt. x/font-cursor-misc-1.0.3-noarch-2.txz: Rebuilt. x/font-daewoo-misc-1.0.3-noarch-2.txz: Rebuilt. x/font-dec-misc-1.0.3-noarch-2.txz: Rebuilt. x/font-ibm-type1-1.0.3-noarch-2.txz: Rebuilt. x/font-isas-misc-1.0.3-noarch-2.txz: Rebuilt. x/font-jis-misc-1.0.3-noarch-2.txz: Rebuilt. x/font-micro-misc-1.0.3-noarch-2.txz: Rebuilt. x/font-misc-cyrillic-1.0.3-noarch-2.txz: Rebuilt. x/font-misc-ethiopic-1.0.3-noarch-2.txz: Rebuilt. x/font-misc-meltho-1.0.3-noarch-2.txz: Rebuilt. x/font-misc-misc-1.1.2-noarch-2.txz: Rebuilt. x/font-mutt-misc-1.0.3-noarch-2.txz: Rebuilt. x/font-schumacher-misc-1.1.2-noarch-2.txz: Rebuilt. x/font-screen-cyrillic-1.0.4-noarch-2.txz: Rebuilt. x/font-sony-misc-1.0.3-noarch-2.txz: Rebuilt. x/font-sun-misc-1.0.3-noarch-2.txz: Rebuilt. x/font-util-1.3.1-x86_64-3.txz: Rebuilt. x/font-winitzki-cyrillic-1.0.3-noarch-2.txz: Rebuilt. x/font-xfree86-type1-1.0.4-noarch-2.txz: Rebuilt. x/fontconfig-2.12.6-x86_64-2.txz: Rebuilt. x/fonttosfnt-1.0.4-x86_64-3.txz: Rebuilt. x/freeglut-3.0.0-x86_64-2.txz: Rebuilt. x/fslsfonts-1.0.5-x86_64-3.txz: Rebuilt. x/fstobdf-1.0.6-x86_64-3.txz: Rebuilt. x/gccmakedep-1.0.3-noarch-2.txz: Rebuilt. x/glew-2.1.0-x86_64-2.txz: Rebuilt. x/glu-9.0.0-x86_64-2.txz: Rebuilt. x/iceauth-1.0.8-x86_64-2.txz: Rebuilt. x/ico-1.0.5-x86_64-2.txz: Rebuilt. x/imake-1.0.7-x86_64-3.txz: Rebuilt. x/intel-gpu-tools-1.22-x86_64-2.txz: Rebuilt. x/intel-vaapi-driver-2.1.0-x86_64-2.txz: Rebuilt. x/libFS-1.0.7-x86_64-2.txz: Rebuilt. x/libICE-1.0.9-x86_64-3.txz: Rebuilt. x/libSM-1.2.2-x86_64-3.txz: Rebuilt. x/libX11-1.6.5-x86_64-2.txz: Rebuilt. x/libXScrnSaver-1.2.2-x86_64-3.txz: Rebuilt. x/libXau-1.0.8-x86_64-3.txz: Rebuilt. x/libXaw-1.0.13-x86_64-2.txz: Rebuilt. x/libXaw3d-1.6.2-x86_64-4.txz: Rebuilt. x/libXaw3dXft-1.6.2d-x86_64-3.txz: Rebuilt. x/libXcm-0.5.2-x86_64-3.txz: Rebuilt. x/libXcomposite-0.4.4-x86_64-3.txz: Rebuilt. x/libXcursor-1.1.15-x86_64-2.txz: Rebuilt. x/libXdamage-1.1.4-x86_64-3.txz: Rebuilt. x/libXdmcp-1.1.2-x86_64-3.txz: Rebuilt. x/libXevie-1.0.3-x86_64-3.txz: Rebuilt. x/libXext-1.3.3-x86_64-3.txz: Rebuilt. x/libXfixes-5.0.3-x86_64-2.txz: Rebuilt. x/libXfont2-2.0.3-x86_64-2.txz: Rebuilt. x/libXfontcache-1.0.5-x86_64-3.txz: Rebuilt. x/libXft-2.3.2-x86_64-4.txz: Rebuilt. x/libXi-1.7.9-x86_64-2.txz: Rebuilt. x/libXinerama-1.1.3-x86_64-3.txz: Rebuilt. x/libXmu-1.1.2-x86_64-3.txz: Rebuilt. x/libXp-1.0.3-x86_64-3.txz: Rebuilt. x/libXpm-3.5.12-x86_64-2.txz: Rebuilt. x/libXpresent-1.0.0-x86_64-2.txz: Rebuilt. x/libXrandr-1.5.1-x86_64-2.txz: Rebuilt. x/libXrender-0.9.10-x86_64-2.txz: Rebuilt. x/libXres-1.2.0-x86_64-2.txz: Rebuilt. x/libXt-1.1.5-x86_64-2.txz: Rebuilt. x/libXtst-1.2.3-x86_64-2.txz: Rebuilt. x/libXv-1.0.11-x86_64-2.txz: Rebuilt. x/libXvMC-1.0.10-x86_64-2.txz: Rebuilt. x/libXxf86dga-1.1.4-x86_64-3.txz: Rebuilt. x/libXxf86misc-1.0.3-x86_64-3.txz: Rebuilt. x/libXxf86vm-1.1.4-x86_64-3.txz: Rebuilt. x/libdmx-1.1.3-x86_64-3.txz: Rebuilt. x/libdrm-2.4.91-x86_64-2.txz: Rebuilt. x/libepoxy-1.4.3-x86_64-2.txz: Rebuilt. x/liberation-fonts-ttf-2.00.1-noarch-2.txz: Rebuilt. x/libevdev-1.5.9-x86_64-2.txz: Rebuilt. x/libfontenc-1.1.3-x86_64-2.txz: Rebuilt. x/libhangul-0.1.0-x86_64-2.txz: Rebuilt. x/libinput-1.10.4-x86_64-2.txz: Rebuilt. x/libpciaccess-0.14-x86_64-2.txz: Rebuilt. x/libpthread-stubs-0.4-noarch-2.txz: Rebuilt. x/libva-2.1.0-x86_64-2.txz: Rebuilt. x/libva-utils-2.1.0-x86_64-2.txz: Rebuilt. x/libvdpau-1.1.1-x86_64-2.txz: Rebuilt. x/libwacom-0.29-x86_64-2.txz: Rebuilt. x/libxcb-1.13-x86_64-2.txz: Rebuilt. x/libxkbfile-1.0.9-x86_64-2.txz: Rebuilt. x/libxshmfence-1.3-x86_64-2.txz: Rebuilt. x/listres-1.0.4-x86_64-2.txz: Rebuilt. x/lndir-1.0.3-x86_64-3.txz: Rebuilt. x/luit-1.1.1-x86_64-3.txz: Rebuilt. x/m17n-lib-1.8.0-x86_64-2.txz: Rebuilt. x/makedepend-1.0.5-x86_64-3.txz: Rebuilt. x/mesa-18.0.1-x86_64-1.txz: Upgraded. x/mkcomposecache-1.2.1-x86_64-3.txz: Rebuilt. x/mkfontdir-1.0.7-noarch-2.txz: Rebuilt. x/mkfontscale-1.1.3-x86_64-2.txz: Rebuilt. x/motif-2.3.8-x86_64-2.txz: Rebuilt. x/mtdev-1.1.5-x86_64-2.txz: Rebuilt. x/oclock-1.0.4-x86_64-2.txz: Rebuilt. x/pixman-0.34.0-x86_64-2.txz: Rebuilt. x/rendercheck-1.5-x86_64-2.txz: Rebuilt. x/rgb-1.0.6-x86_64-3.txz: Rebuilt. x/sazanami-fonts-ttf-20040629-noarch-2.txz: Rebuilt. x/scim-1.4.17-x86_64-2.txz: Rebuilt. x/scim-anthy-1.2.7-x86_64-2.txz: Rebuilt. x/scim-hangul-0.4.0-x86_64-2.txz: Rebuilt. x/scim-input-pad-0.1.3.1-x86_64-2.txz: Rebuilt. x/scim-m17n-0.2.3-x86_64-2.txz: Rebuilt. x/scim-pinyin-0.5.92-x86_64-2.txz: Rebuilt. x/scim-tables-0.5.14.1-x86_64-2.txz: Rebuilt. x/sessreg-1.1.1-x86_64-2.txz: Rebuilt. x/setxkbmap-1.3.1-x86_64-2.txz: Rebuilt. x/showfont-1.0.5-x86_64-3.txz: Rebuilt. x/sinhala_lklug-font-ttf-20060929-noarch-2.txz: Rebuilt. x/smproxy-1.0.6-x86_64-2.txz: Rebuilt. x/tibmachuni-font-ttf-1.901b-noarch-2.txz: Rebuilt. x/transset-1.0.2-x86_64-2.txz: Rebuilt. x/ttf-indic-fonts-0.5.14-noarch-2.txz: Rebuilt. x/ttf-tlwg-0.6.4-noarch-2.txz: Rebuilt. x/twm-1.0.10-x86_64-2.txz: Rebuilt. x/urw-core35-fonts-otf-20160712_79bcdfb_git-noarch-2.txz: Rebuilt. x/util-macros-1.19.2-noarch-2.txz: Rebuilt. x/viewres-1.0.5-x86_64-2.txz: Rebuilt. x/vulkan-sdk-1.1.70.0-x86_64-2.txz: Rebuilt. x/wqy-zenhei-font-ttf-0.8.38_1-noarch-5.txz: Rebuilt. x/x11-skel-7.7-x86_64-2.txz: Rebuilt. x/x11perf-1.6.0-x86_64-2.txz: Rebuilt. x/xauth-1.0.10-x86_64-2.txz: Rebuilt. x/xbacklight-1.2.2-x86_64-2.txz: Rebuilt. x/xbiff-1.0.3-x86_64-3.txz: Rebuilt. x/xbitmaps-1.1.2-x86_64-2.txz: Rebuilt. x/xcalc-1.0.6-x86_64-3.txz: Rebuilt. x/xcb-proto-1.13-x86_64-2.txz: Rebuilt. x/xcb-util-0.4.0-x86_64-3.txz: Rebuilt. x/xcb-util-cursor-0.1.3-x86_64-2.txz: Rebuilt. x/xcb-util-errors-1.0-x86_64-2.txz: Rebuilt. x/xcb-util-image-0.4.0-x86_64-3.txz: Rebuilt. x/xcb-util-keysyms-0.4.0-x86_64-3.txz: Rebuilt. x/xcb-util-renderutil-0.3.9-x86_64-3.txz: Rebuilt. x/xcb-util-wm-0.4.1-x86_64-3.txz: Rebuilt. x/xclipboard-1.1.3-x86_64-3.txz: Rebuilt. x/xclock-1.0.7-x86_64-3.txz: Rebuilt. x/xcm-0.5.2-x86_64-3.txz: Rebuilt. x/xcmsdb-1.0.5-x86_64-2.txz: Rebuilt. x/xcompmgr-1.1.7-x86_64-2.txz: Rebuilt. x/xconsole-1.0.7-x86_64-2.txz: Rebuilt. x/xcursor-themes-1.0.5-noarch-2.txz: Rebuilt. x/xcursorgen-1.0.6-x86_64-4.txz: Rebuilt. x/xdbedizzy-1.1.0-x86_64-3.txz: Rebuilt. x/xdg-user-dirs-0.15-x86_64-2.txz: Rebuilt. x/xdg-utils-1.1.2-noarch-2.txz: Rebuilt. x/xditview-1.0.4-x86_64-2.txz: Rebuilt. x/xdm-1.1.11-x86_64-8.txz: Rebuilt. x/xdpyinfo-1.3.2-x86_64-2.txz: Rebuilt. x/xdriinfo-1.0.6-x86_64-2.txz: Rebuilt. x/xedit-1.2.2-x86_64-3.txz: Rebuilt. x/xev-1.2.2-x86_64-2.txz: Rebuilt. x/xeyes-1.1.2-x86_64-2.txz: Rebuilt. x/xf86-input-acecad-1.5.0-x86_64-11.txz: Rebuilt. x/xf86-input-evdev-2.10.5-x86_64-2.txz: Rebuilt. x/xf86-input-joystick-1.6.3-x86_64-2.txz: Rebuilt. x/xf86-input-keyboard-1.9.0-x86_64-2.txz: Rebuilt. x/xf86-input-libinput-0.27.1-x86_64-2.txz: Rebuilt. x/xf86-input-mouse-1.9.2-x86_64-2.txz: Rebuilt. x/xf86-input-penmount-1.5.0-x86_64-11.txz: Rebuilt. x/xf86-input-synaptics-1.9.0-x86_64-2.txz: Rebuilt. x/xf86-input-vmmouse-13.1.0-x86_64-6.txz: Rebuilt. x/xf86-input-void-1.4.0-x86_64-11.txz: Rebuilt. x/xf86-input-wacom-0.36.1-x86_64-2.txz: Rebuilt. x/xf86-video-amdgpu-18.0.1-x86_64-2.txz: Rebuilt. x/xf86-video-apm-1.2.5-x86_64-10.txz: Rebuilt. x/xf86-video-ark-0.7.5-x86_64-10.txz: Rebuilt. x/xf86-video-ast-1.1.5-x86_64-4.txz: Rebuilt. x/xf86-video-ati-18.0.1-x86_64-2.txz: Rebuilt. x/xf86-video-chips-1.2.7-x86_64-2.txz: Rebuilt. x/xf86-video-cirrus-1.5.3-x86_64-4.txz: Rebuilt. x/xf86-video-dummy-0.3.8-x86_64-2.txz: Rebuilt. x/xf86-video-glint-1.2.9-x86_64-2.txz: Rebuilt. x/xf86-video-i128-1.3.6-x86_64-10.txz: Rebuilt. x/xf86-video-i740-1.3.6-x86_64-2.txz: Rebuilt. x/xf86-video-intel-git_20180206_aa36399c-x86_64-2.txz: Rebuilt. x/xf86-video-mach64-6.9.5-x86_64-4.txz: Rebuilt. x/xf86-video-mga-1.6.5-x86_64-2.txz: Rebuilt. x/xf86-video-neomagic-1.2.9-x86_64-4.txz: Rebuilt. x/xf86-video-nouveau-1.0.15-x86_64-2.txz: Rebuilt. x/xf86-video-nv-2.1.21-x86_64-2.txz: Rebuilt. x/xf86-video-openchrome-0.6.0-x86_64-2.txz: Rebuilt. x/xf86-video-r128-6.10.2-x86_64-2.txz: Rebuilt. x/xf86-video-rendition-4.2.6-x86_64-3.txz: Rebuilt. x/xf86-video-s3-0.6.5-x86_64-10.txz: Rebuilt. x/xf86-video-s3virge-1.10.7-x86_64-4.txz: Rebuilt. x/xf86-video-savage-2.3.9-x86_64-2.txz: Rebuilt. x/xf86-video-siliconmotion-1.7.9-x86_64-2.txz: Rebuilt. x/xf86-video-sis-0.10.9-x86_64-2.txz: Rebuilt. x/xf86-video-sisusb-0.9.7-x86_64-2.txz: Rebuilt. x/xf86-video-tdfx-1.4.7-x86_64-2.txz: Rebuilt. x/xf86-video-tga-1.2.2-x86_64-10.txz: Rebuilt. x/xf86-video-trident-1.3.8-x86_64-2.txz: Rebuilt. x/xf86-video-tseng-1.2.5-x86_64-10.txz: Rebuilt. x/xf86-video-v4l-0.2.0-x86_64-15.txz: Rebuilt. x/xf86-video-vboxvideo-1.0.0-x86_64-2.txz: Rebuilt. x/xf86-video-vesa-2.4.0-x86_64-2.txz: Rebuilt. x/xf86-video-vmware-13.2.1-x86_64-6.txz: Rebuilt. x/xf86-video-voodoo-1.2.5-x86_64-11.txz: Rebuilt. x/xf86dga-1.0.3-x86_64-3.txz: Rebuilt. x/xfd-1.1.2-x86_64-3.txz: Rebuilt. x/xfontsel-1.0.6-x86_64-2.txz: Rebuilt. x/xfs-1.2.0-x86_64-2.txz: Rebuilt. x/xfsinfo-1.0.5-x86_64-3.txz: Rebuilt. x/xgamma-1.0.6-x86_64-2.txz: Rebuilt. x/xgc-1.0.5-x86_64-2.txz: Rebuilt. x/xhost-1.0.7-x86_64-2.txz: Rebuilt. x/xinit-1.4.0-x86_64-2.txz: Rebuilt. x/xinput-1.6.2-x86_64-2.txz: Rebuilt. x/xkbcomp-1.4.1-x86_64-2.txz: Rebuilt. x/xkbevd-1.1.4-x86_64-2.txz: Rebuilt. x/xkbprint-1.0.4-x86_64-2.txz: Rebuilt. x/xkbutils-1.0.4-x86_64-3.txz: Rebuilt. x/xkeyboard-config-2.22-noarch-2.txz: Rebuilt. x/xkill-1.0.5-x86_64-2.txz: Rebuilt. x/xload-1.1.3-x86_64-2.txz: Rebuilt. x/xlogo-1.0.4-x86_64-3.txz: Rebuilt. x/xlsatoms-1.1.2-x86_64-2.txz: Rebuilt. x/xlsclients-1.1.4-x86_64-2.txz: Rebuilt. x/xlsfonts-1.0.6-x86_64-2.txz: Rebuilt. x/xmag-1.0.6-x86_64-2.txz: Rebuilt. x/xman-1.1.4-x86_64-3.txz: Rebuilt. x/xmessage-1.0.5-x86_64-2.txz: Rebuilt. x/xmh-1.0.3-x86_64-2.txz: Rebuilt. x/xmodmap-1.0.9-x86_64-2.txz: Rebuilt. x/xmore-1.0.2-x86_64-3.txz: Rebuilt. x/xorg-cf-files-1.0.6-x86_64-3.txz: Rebuilt. x/xorg-docs-1.7.1-noarch-2.txz: Rebuilt. x/xorg-server-1.19.6-x86_64-3.txz: Rebuilt. x/xorg-server-xephyr-1.19.6-x86_64-3.txz: Rebuilt. x/xorg-server-xnest-1.19.6-x86_64-3.txz: Rebuilt. x/xorg-server-xvfb-1.19.6-x86_64-3.txz: Rebuilt. x/xorg-sgml-doctools-1.11-x86_64-3.txz: Rebuilt. x/xorgproto-2018.4-x86_64-3.txz: Rebuilt. x/xpr-1.0.5-x86_64-2.txz: Rebuilt. x/xprop-1.2.3-x86_64-2.txz: Rebuilt. x/xpyb-1.3.1-x86_64-5.txz: Rebuilt. x/xrandr-1.5.0-x86_64-2.txz: Rebuilt. x/xrdb-1.1.1-x86_64-2.txz: Rebuilt. x/xrefresh-1.0.6-x86_64-2.txz: Rebuilt. x/xscope-1.4.1-x86_64-3.txz: Rebuilt. x/xset-1.2.4-x86_64-2.txz: Rebuilt. x/xsetroot-1.1.2-x86_64-2.txz: Rebuilt. x/xsm-1.0.4-x86_64-2.txz: Rebuilt. x/xstdcmap-1.0.3-x86_64-3.txz: Rebuilt. x/xterm-332-x86_64-1.txz: Upgraded. x/xtrans-1.3.5-noarch-2.txz: Rebuilt. x/xvidtune-1.0.3-x86_64-3.txz: Rebuilt. x/xvinfo-1.1.3-x86_64-2.txz: Rebuilt. x/xwd-1.0.7-x86_64-2.txz: Rebuilt. x/xwininfo-1.1.4-x86_64-2.txz: Rebuilt. x/xwud-1.0.5-x86_64-2.txz: Rebuilt. xap/MPlayer-20180208-x86_64-3.txz: Rebuilt. xap/audacious-3.9-x86_64-2.txz: Rebuilt. xap/audacious-plugins-3.9-x86_64-4.txz: Rebuilt. xap/blackbox-0.70.1-x86_64-8.txz: Rebuilt. xap/blueman-2.0.5-x86_64-2.txz: Rebuilt. xap/ddd-3.3.12-x86_64-6.txz: Rebuilt. xap/easytag-2.4.2-x86_64-2.txz: Rebuilt. xap/electricsheep-20090306-x86_64-5.txz: Rebuilt. xap/fluxbox-1.3.7-x86_64-3.txz: Rebuilt. xap/fvwm-2.6.7-x86_64-4.txz: Rebuilt. xap/geeqie-1.4-x86_64-2.txz: Rebuilt. xap/gftp-2.0.19-x86_64-6.txz: Rebuilt. xap/gimp-2.8.22-x86_64-2.txz: Rebuilt. xap/gkrellm-2.3.10-x86_64-3.txz: Rebuilt. xap/gnuchess-6.2.5-x86_64-2.txz: Rebuilt. xap/gnuplot-5.2.2-x86_64-2.txz: Rebuilt. xap/gparted-0.31.0-x86_64-2.txz: Rebuilt. xap/gucharmap-10.0.3-x86_64-2.txz: Rebuilt. xap/gv-3.7.4-x86_64-2.txz: Rebuilt. xap/hexchat-2.14.1-x86_64-2.txz: Rebuilt. Recompiled against perl-5.26.2. xap/mozilla-firefox-59.0.2-x86_64-2.txz: Rebuilt. xap/mozilla-thunderbird-52.7.0-x86_64-2.txz: Rebuilt. xap/network-manager-applet-1.8.10-x86_64-5.txz: Rebuilt. xap/pan-0.143-x86_64-4.txz: Rebuilt. xap/pavucontrol-3.0-x86_64-2.txz: Rebuilt. xap/pidgin-2.13.0-x86_64-2.txz: Rebuilt. xap/rdesktop-1.8.3-x86_64-2.txz: Rebuilt. xap/rxvt-unicode-9.22-x86_64-4.txz: Rebuilt. xap/sane-1.0.27-x86_64-2.txz: Rebuilt. xap/seamonkey-2.49.2-x86_64-2.txz: Rebuilt. xap/seyon-2.20c-x86_64-4.txz: Rebuilt. xap/vim-gvim-8.0.1733-x86_64-1.txz: Upgraded. Recompiled against perl-5.26.2. xap/windowmaker-0.95.8-x86_64-2.txz: Rebuilt. xap/x11-ssh-askpass-1.2.4.1-x86_64-3.txz: Rebuilt. xap/x3270-3.3.12ga7-x86_64-3.txz: Rebuilt. xap/xaos-3.6-x86_64-2.txz: Rebuilt. xap/xfractint-20.04p13-x86_64-2.txz: Rebuilt. xap/xgames-0.3-x86_64-5.txz: Rebuilt. xap/xine-lib-1.2.9-x86_64-2.txz: Rebuilt. xap/xine-ui-0.99.10-x86_64-2.txz: Rebuilt. xap/xlockmore-5.54-x86_64-3.txz: Rebuilt. xap/xmms-1.2.11-x86_64-6.txz: Rebuilt. xap/xpaint-2.10.2-x86_64-2.txz: Rebuilt. xap/xpdf-4.00-x86_64-3.txz: Rebuilt. xap/xsane-0.999-x86_64-2.txz: Rebuilt. xap/xscreensaver-5.39-x86_64-1.txz: Upgraded. xap/xv-3.10a-x86_64-9.txz: Rebuilt. xfce/Thunar-1.6.15-x86_64-2.txz: Rebuilt. xfce/exo-0.12.0-x86_64-2.txz: Rebuilt. xfce/garcon-0.6.1-x86_64-2.txz: Rebuilt. xfce/gtk-xfce-engine-2.10.1-x86_64-3.txz: Rebuilt. xfce/libxfce4ui-4.12.1-x86_64-3.txz: Rebuilt. xfce/libxfce4util-4.12.1-x86_64-4.txz: Rebuilt. xfce/orage-4.12.1-x86_64-5.txz: Rebuilt. xfce/thunar-volman-0.8.1-x86_64-3.txz: Rebuilt. xfce/tumbler-0.2.1-x86_64-2.txz: Rebuilt. Recompiled against poppler-0.64.0. xfce/xfce4-appfinder-4.12.0-x86_64-3.txz: Rebuilt. xfce/xfce4-clipman-plugin-1.4.2-x86_64-2.txz: Rebuilt. xfce/xfce4-dev-tools-4.12.0-x86_64-3.txz: Rebuilt. xfce/xfce4-notifyd-0.4.2-x86_64-2.txz: Rebuilt. xfce/xfce4-panel-4.12.2-x86_64-2.txz: Rebuilt. xfce/xfce4-power-manager-1.4.4-x86_64-5.txz: Rebuilt. xfce/xfce4-pulseaudio-plugin-0.4.0-x86_64-2.txz: Rebuilt. xfce/xfce4-screenshooter-1.8.2-x86_64-5.txz: Rebuilt. xfce/xfce4-session-4.12.1-x86_64-3.txz: Rebuilt. xfce/xfce4-settings-4.12.2-x86_64-2.txz: Rebuilt. xfce/xfce4-systemload-plugin-1.2.1-x86_64-2.txz: Rebuilt. Patched to fix tooltips. Thanks to Rod3775. xfce/xfce4-taskmanager-1.2.0-x86_64-2.txz: Rebuilt. xfce/xfce4-terminal-0.8.7.3-x86_64-2.txz: Rebuilt. xfce/xfce4-weather-plugin-0.8.10-x86_64-4.txz: Rebuilt. xfce/xfconf-4.12.1-x86_64-2.txz: Rebuilt. xfce/xfdesktop-4.12.4-x86_64-2.txz: Rebuilt. xfce/xfwm4-4.12.4-x86_64-2.txz: Rebuilt. y/bsd-games-2.13-x86_64-13.txz: Rebuilt. extra/aspell-word-lists/aspell-el-0.08_0-x86_64-1.txz: Upgraded. extra/aspell-word-lists/aspell-hus-0.03_1-x86_64-1.txz: Added. extra/aspell-word-lists/aspell-kn-0.01_1-x86_64-1.txz: Added. extra/fltk/fltk-1.3.4_2-x86_64-1.txz: Upgraded. extra/mplayerplug-in/mplayerplug-in-3.55-x86_64-1.txz: Removed. extra/tigervnc/tigervnc-1.8.0-x86_64-4.txz: Rebuilt. isolinux/initrd.img: Rebuilt. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Thu Apr 12 23:00:51 UTC 2018 a/aaa_base-14.2-x86_64-3.txz: Rebuilt. If the system is running -current, append a "+" to /etc/slackware-version. Identify the system as stable or current in /etc/os-release by setting VERSION_CODENAME to either stable or current. In PRETTY_NAME, really spell it out, e.g: PRETTY_NAME="Slackware 14.2 (pre-15.0 -current)" a/kernel-generic-4.14.34-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.34-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.34-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.34-x86-1.txz: Upgraded. k/kernel-source-4.14.34-noarch-1.txz: Upgraded. SND_HDA_INPUT_BEEP n -> y +SND_HDA_INPUT_BEEP_MODE 0 Thanks to GazL. l/cairo-1.15.12-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Wed Apr 11 20:38:06 UTC 2018 a/lbzip2-2.5-x86_64-1.txz: Added. a/pkgtools-15.0-noarch-7.txz: Rebuilt. explodepkg: support parallel bzip2 (lbzip2). Thanks to ruario. installpkg: support parallel bzip2 (lbzip2). Thanks to ruario. makepkg: support parallel bzip2 (lbzip2). Thanks to ruario. pkgdiff: added tool to compare the file contents of two packages. ap/sqlite-3.23.1-x86_64-1.txz: Upgraded. l/libzip-1.5.1-x86_64-1.txz: Upgraded. l/mozilla-nss-3.36.1-x86_64-1.txz: Upgraded. n/libgpg-error-1.29-x86_64-1.txz: Upgraded. +--------------------------+ Tue Apr 10 23:38:57 UTC 2018 a/procps-ng-3.3.14-x86_64-1.txz: Upgraded. ap/htop-2.2.0-x86_64-1.txz: Upgraded. l/vte-0.52.1-x86_64-1.txz: Upgraded. n/gnupg2-2.2.6-x86_64-1.txz: Upgraded. x/xf86-input-libinput-0.27.1-x86_64-1.txz: Upgraded. +--------------------------+ Mon Apr 9 23:03:06 UTC 2018 l/gobject-introspection-1.56.1-x86_64-1.txz: Upgraded. l/gvfs-1.36.1-x86_64-1.txz: Upgraded. l/libsoup-2.62.1-x86_64-1.txz: Upgraded. n/wireless-tools-29-x86_64-10.txz: Removed. n/wireless_tools-29-x86_64-11.txz: Added. Renamed package to match upstream tarball name. x/libinput-1.10.4-x86_64-1.txz: Upgraded. +--------------------------+ Sun Apr 8 22:22:25 UTC 2018 a/kernel-firmware-20180329_8c1e439-noarch-1.txz: Upgraded. a/kernel-generic-4.14.33-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.33-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.33-x86_64-1.txz: Upgraded. d/ccache-3.4.2-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.33-x86-1.txz: Upgraded. k/kernel-source-4.14.33-noarch-1.txz: Upgraded. FAT_DEFAULT_UTF8 n -> y Thanks to USUARIONUEVO. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Sun Apr 8 03:39:55 UTC 2018 ap/joe-4.6-x86_64-1.txz: Upgraded. l/gdk-pixbuf2-2.36.12-x86_64-1.txz: Upgraded. n/bluez-5.49-x86_64-2.txz: Rebuilt. Patched to fix bluetoothd crashes. Thanks to SeB. +--------------------------+ Sat Apr 7 21:00:57 UTC 2018 a/btrfs-progs-v4.16-x86_64-1.txz: Upgraded. ap/sysstat-11.6.3-x86_64-1.txz: Upgraded. kde/kdev-python-1.7.3-x86_64-2.txz: Rebuilt. Make shared libraries executable. l/exiv2-0.26-x86_64-2.txz: Rebuilt. Make shared libraries executable. l/glib-1.2.10-x86_64-5.txz: Rebuilt. Make shared libraries executable. l/glib2-2.56.1-x86_64-1.txz: Upgraded. l/pango-1.42.1-x86_64-1.txz: Upgraded. l/slang-2.3.2-x86_64-2.txz: Rebuilt. Make shared libraries executable. n/dhcpcd-7.0.3-x86_64-1.txz: Upgraded. xfce/libxfce4util-4.12.1-x86_64-3.txz: Rebuilt. Make shared libraries executable. +--------------------------+ Fri Apr 6 20:47:43 UTC 2018 a/patch-2.7.6-x86_64-2.txz: Rebuilt. Fix arbitrary shell execution possible with obsolete ed format patches. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000156 (* Security fix *) d/strace-4.22-x86_64-1.txz: Upgraded. xfce/Thunar-1.6.15-x86_64-1.txz: Upgraded. +--------------------------+ Thu Apr 5 21:21:24 UTC 2018 a/procps-ng-3.3.13-x86_64-1.txz: Upgraded. ap/man-db-2.8.3-x86_64-1.txz: Upgraded. d/git-2.17.0-x86_64-1.txz: Upgraded. l/python-pillow-5.1.0-x86_64-1.txz: Upgraded. n/openssh-7.7p1-x86_64-2.txz: Rebuilt. Restored tcp_wrappers support. Thanks to ecd102 for the patch. +--------------------------+ Wed Apr 4 22:07:03 UTC 2018 l/alsa-lib-1.1.6-x86_64-2.txz: Rebuilt. Restored missing mixer modules. +--------------------------+ Wed Apr 4 21:12:00 UTC 2018 ap/alsa-utils-1.1.6-x86_64-1.txz: Upgraded. d/mercurial-4.5.3-x86_64-1.txz: Upgraded. l/alsa-lib-1.1.6-x86_64-1.txz: Upgraded. l/alsa-oss-1.1.6-x86_64-1.txz: Upgraded. l/alsa-plugins-1.1.6-x86_64-1.txz: Upgraded. l/gvfs-1.36.0-x86_64-1.txz: Upgraded. +--------------------------+ Wed Apr 4 00:16:40 UTC 2018 a/pkgtools-15.0-noarch-6.txz: Rebuilt. pkgtool: don't use LANG=C. installpkg: don't use LANG=C, but set LC_ALL=C prior to running dd (where we need to parse the output) and sort (where we need predictable collation). ap/cups-filters-1.20.2-x86_64-1.txz: Upgraded. ap/sqlite-3.23.0-x86_64-1.txz: Upgraded. l/adwaita-icon-theme-3.28.0-noarch-1.txz: Upgraded. l/at-spi2-atk-2.26.2-x86_64-1.txz: Upgraded. l/at-spi2-core-2.28.0-x86_64-1.txz: Upgraded. l/atk-2.28.1-x86_64-1.txz: Upgraded. l/gcr-3.28.0-x86_64-1.txz: Upgraded. l/glib-networking-2.56.0-x86_64-1.txz: Upgraded. l/glib2-2.56.0-x86_64-1.txz: Upgraded. l/gnome-keyring-3.28.0.2-x86_64-1.txz: Upgraded. l/gobject-introspection-1.56.0-x86_64-1.txz: Upgraded. l/gsettings-desktop-schemas-3.28.0-x86_64-1.txz: Upgraded. l/gtk+3-3.22.29-x86_64-1.txz: Upgraded. l/libsecret-0.18.6-x86_64-1.txz: Upgraded. l/libsoup-2.62.0-x86_64-1.txz: Upgraded. l/pango-1.42.0-x86_64-1.txz: Upgraded. l/pygobject3-3.28.2-x86_64-1.txz: Upgraded. l/vte-0.52.0-x86_64-1.txz: Upgraded. n/getmail-5.6-x86_64-1.txz: Upgraded. n/iproute2-4.16.0-x86_64-1.txz: Upgraded. n/openssh-7.7p1-x86_64-1.txz: Upgraded. The patch to restore tcp_wrappers no longer works (applies, but breaks incoming connections), so tcp_wrappers is no longer supported. This support was dropped by upstream years ago, and there are many better ways to filter incoming ports since the days when tcp_wrappers was the only choice. There is very little chance that we will try to add support for tcp_wrappers again here. Migrate to a better port filtering solution (e.g., iptables or nftables), or (I suppose) you could try asking for the support to be reinstated upstream. ;-) xap/rxvt-unicode-9.22-x86_64-3.txz: Rebuilt. Don't modify the default terminfo definitions. Thanks to GazL. +--------------------------+ Sun Apr 1 21:05:03 UTC 2018 a/aaa_terminfo-6.1-x86_64-3.txz: Rebuilt. a/sed-4.5-x86_64-1.txz: Upgraded. ap/lsof-4.91-x86_64-1.txz: Upgraded. ap/vim-8.0.1655-x86_64-1.txz: Upgraded. kde/konsole-4.14.3-x86_64-4.txz: Rebuilt. Use TERM=konsole. l/libidn-1.34-x86_64-1.txz: Upgraded. This update fixes security issues: Fix integer overflow in combine_hangul() Fix integer overflow in punycode decoder Fix NULL pointer dereference in g_utf8_normalize() Fix NULL pointer dereference in stringprep_ucs4_nfkc_normalize() (* Security fix *) l/ncurses-6.1_20180324-x86_64-3.txz: Upgraded. Use unmodified upstream terminfo definitions rather than break a feature of the xterm-new definition for the benefit of a program that can't pick the right TERM= setting. Thanks to GazL. xap/rxvt-unicode-9.22-x86_64-2.txz: Rebuilt. In the urxvt terminfo definitions, set kbs=^H. xap/vim-gvim-8.0.1655-x86_64-1.txz: Upgraded. extra/brltty/brltty-5.6-x86_64-1.txz: Upgraded. +--------------------------+ Sun Apr 1 02:53:26 UTC 2018 a/aaa_terminfo-6.1-x86_64-2.txz: Rebuilt. a/kernel-firmware-20180330_a3be6d4-noarch-1.txz: Upgraded. a/kernel-generic-4.14.32-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.32-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.32-x86_64-1.txz: Upgraded. ap/cups-filters-1.20.1-x86_64-3.txz: Rebuilt. Recompiled against poppler-0.63.0. ap/sqlite-3.22.0-x86_64-2.txz: Rebuilt. Recompiled against icu4c-61.1. d/kernel-headers-4.14.32-x86-1.txz: Upgraded. d/rust-1.25.0-x86_64-1.txz: Upgraded. d/subversion-1.9.7-x86_64-4.txz: Rebuilt. Recompiled against icu4c-61.1. k/kernel-source-4.14.32-noarch-1.txz: Upgraded. kde/calligra-2.9.11-x86_64-19.txz: Rebuilt. Recompiled against icu4c-61.1 and poppler-0.63.0. l/apr-util-1.6.1-x86_64-5.txz: Rebuilt. Recompiled against icu4c-61.1. l/boost-1.66.0-x86_64-2.txz: Rebuilt. Recompiled against icu4c-61.1. l/gvfs-1.34.2.1-x86_64-2.txz: Rebuilt. Recompiled against icu4c-61.1. l/harfbuzz-1.7.6-x86_64-2.txz: Rebuilt. Recompiled against icu4c-61.1. l/icu4c-61.1-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/libgpod-0.8.3-x86_64-4.txz: Rebuilt. Recompiled against icu4c-61.1. l/libical-3.0.1-x86_64-2.txz: Rebuilt. Recompiled against icu4c-61.1. l/libvisio-0.1.6-x86_64-2.txz: Rebuilt. Recompiled against icu4c-61.1. l/ncurses-6.1_20180324-x86_64-2.txz: Rebuilt. Removed "rep=%p1%c\E[%p2%{1}%-%db," from the xterm-new definition. It was not present in the xterm-new definition shipped in Slackware 14.2 and is causing problems with dialog. l/poppler-0.63.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/raptor2-2.0.15-x86_64-4.txz: Rebuilt. Recompiled against icu4c-61.1. n/NetworkManager-1.10.6-x86_64-2.txz: Rebuilt. Recompiled against icu4c-61.1. n/dovecot-2.3.1-x86_64-2.txz: Rebuilt. Recompiled against icu4c-61.1. n/httpd-2.4.33-x86_64-2.txz: Rebuilt. Recompiled against icu4c-61.1. n/php-7.2.4-x86_64-1.txz: Upgraded. This update fixes a security issue where sensitive data belonging to other accounts might be accessed by a local user. For more information, see: http://bugs.php.net/75605 (* Security fix *) Compiled against icu4c-61.1. n/postfix-3.3.0-x86_64-2.txz: Rebuilt. Recompiled against icu4c-61.1. n/tin-2.4.2-x86_64-2.txz: Rebuilt. Recompiled against icu4c-61.1. t/texlive-2017.171108-x86_64-4.txz: Rebuilt. Recompiled against icu4c-61.1. xap/network-manager-applet-1.8.10-x86_64-4.txz: Rebuilt. Recompiled against icu4c-61.1. xap/rxvt-2.7.10-x86_64-5.txz: Removed. xap/rxvt-unicode-9.22-x86_64-1.txz: Added. Thanks to MadMaverick9 for the utempter support patch. xfce/tumbler-0.2.1-x86_64-1.txz: Upgraded. Compiled against poppler-0.63.0. xfce/xfce4-screenshooter-1.8.2-x86_64-4.txz: Rebuilt. Recompiled against icu4c-61.1. xfce/xfce4-weather-plugin-0.8.10-x86_64-3.txz: Rebuilt. Recompiled against icu4c-61.1. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Thu Mar 29 20:48:28 UTC 2018 a/bash-4.4.019-x86_64-2.txz: Rebuilt. Fixed builtins.1 and rbash.1 manpages to work properly with strict implementations (such as mandoc). Thanks to orbea. ap/cups-2.2.7-x86_64-1.txz: Upgraded. ap/mariadb-10.2.14-x86_64-1.txz: Upgraded. ap/nano-2.9.5-x86_64-1.txz: Upgraded. d/cmake-3.11.0-x86_64-1.txz: Upgraded. d/flex-2.6.4-x86_64-2.txz: Rebuilt. Fix flex compiled with recent glibc. Thanks to nobodino. d/python-pip-9.0.3-x86_64-1.txz: Upgraded. d/python3-3.6.5-x86_64-1.txz: Upgraded. Refactored difflib and poplib to fix potential DoS vectors. Thanks to Jamie Davis for the patch. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1060 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1061 (* Security fix *) d/ruby-2.5.1-x86_64-1.txz: Upgraded. This release includes some bug fixes and some security fixes: HTTP response splitting in WEBrick. Unintentional file and directory creation with directory traversal in tempfile and tmpdir. DoS by large request in WEBrick. Buffer under-read in String#unpack. Unintentional socket creation by poisoned NUL byte in UNIXServer and UNIXSocket. Unintentional directory traversal by poisoned NUL byte in Dir. Multiple vulnerabilities in RubyGems. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17742 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6914 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8777 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8778 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8779 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8780 (* Security fix *) d/subversion-1.9.7-x86_64-3.txz: Rebuilt. Recompiled for ruby-2.5.1. kde/korundum-4.14.3-x86_64-5.txz: Rebuilt. Recompiled for ruby-2.5.1. kde/qtruby-4.14.3-x86_64-7.txz: Rebuilt. Recompiled for ruby-2.5.1. l/apr-util-1.6.1-x86_64-4.txz: Rebuilt. Merged upstream patch to fix httpd build. n/dhcpcd-7.0.2-x86_64-1.txz: Upgraded. n/dovecot-2.3.1-x86_64-1.txz: Upgraded. n/epic5-2.0.1-x86_64-3.txz: Rebuilt. Recompiled for ruby-2.5.1. x/mesa-18.0.0-x86_64-1.txz: Upgraded. xfce/xfce4-terminal-0.8.7.3-x86_64-1.txz: Upgraded. +--------------------------+ Thu Mar 29 01:02:50 UTC 2018 a/etc-15.0-x86_64-3.txz: Rebuilt. When adding an sddm user, use $HOME = /var/lib/sddm. Make sure the sddm user is a member of the video group. a/kernel-generic-4.14.31-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.31-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.31-x86_64-1.txz: Upgraded. a/openssl-solibs-1.0.2o-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.31-x86-1.txz: Upgraded. k/kernel-source-4.14.31-noarch-1.txz: Upgraded. n/openssl-1.0.2o-x86_64-1.txz: Upgraded. This update fixes a security issue: Constructed ASN.1 types with a recursive definition could exceed the stack. For more information, see: https://www.openssl.org/news/secadv/20180327.txt https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0739 (* Security fix *) extra/recordmydesktop/recordmydesktop-0.3.8.1-x86_64-4.txz: Rebuilt. Applied bitrate patches from Arch. Thanks to USUARIONUEVO. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Mon Mar 26 22:06:38 UTC 2018 a/aaa_terminfo-6.1-x86_64-1.txz: Upgraded. a/etc-15.0-x86_64-2.txz: Rebuilt. Don't include /etc/termcap-* files here. They aren't needed by anything shipped with Slackware, and shouldn't be needed by much of anything at all. But we'll ship a full /etc/termcap with the ncurses package just in case. a/hdparm-9.56-x86_64-1.txz: Upgraded. l/apr-util-1.6.1-x86_64-3.txz: Rebuilt. Recompiled using --with-mysql=/usr option. l/libusb-1.0.22-x86_64-1.txz: Upgraded. l/ncurses-6.1_20180324-x86_64-1.txz: Upgraded. xap/mozilla-firefox-59.0.2-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/security/advisories/mfsa2018-10/ https://www.mozilla.org/security/known-vulnerabilities/firefox.html (* Security fix *) +--------------------------+ Mon Mar 26 03:28:26 UTC 2018 a/e2fsprogs-1.44.1-x86_64-1.txz: Upgraded. a/kbd-1.15.3-x86_64-3.txz: Rebuilt. setconsolefont: generate font list on the fly. Thanks to David Woodhouse. a/kernel-generic-4.14.30-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.30-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.30-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.30-x86-1.txz: Upgraded. k/kernel-source-4.14.30-noarch-1.txz: Upgraded. l/imagemagick-6.9.9_40-x86_64-1.txz: Upgraded. l/libdvdread-6.0.0-x86_64-2.txz: Rebuilt. Fixed misplaced files under /usr/share/doc. l/libmtp-1.1.15-x86_64-1.txz: Upgraded. l/liboggz-1.1.1-x86_64-2.txz: Rebuilt. Removed spurious /usr/share/doc directory. l/librsvg-2.42.3-x86_64-2.txz: Rebuilt. Fixed misplaced files under /usr/share/doc. xfce/xfce4-pulseaudio-plugin-0.4.0-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Sat Mar 24 19:47:01 UTC 2018 a/sysvinit-scripts-2.1-noarch-8.txz: Rebuilt. rc.M: Set default hostname using FQDN. Thanks to Andrzej Telszewski. l/jansson-2.11-x86_64-1.txz: Added. n/curl-7.59.0-x86_64-2.txz: Rebuilt. Recompiled to pick up HTTP/2 support from libnghttp2. n/httpd-2.4.33-x86_64-1.txz: Upgraded. Added HTTP/2 support (requires jansson and nghttp2). n/nghttp2-1.31.0-x86_64-1.txz: Added. +--------------------------+ Fri Mar 23 22:28:20 UTC 2018 a/glibc-zoneinfo-2018d-noarch-1.txz: Upgraded. d/git-2.16.3-x86_64-1.txz: Upgraded. n/openldap-client-2.4.46-x86_64-1.txz: Upgraded. x/libwacom-0.29-x86_64-1.txz: Upgraded. x/xf86-input-wacom-0.36.1-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-52.7.0-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/thunderbird/52.7.0/releasenotes/ (* Security fix *) +--------------------------+ Thu Mar 22 07:12:40 UTC 2018 a/kernel-firmware-20180319_44476f2-noarch-1.txz: Upgraded. a/kernel-generic-4.14.29-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.29-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.29-x86_64-1.txz: Upgraded. a/util-linux-2.32-x86_64-1.txz: Upgraded. ap/ghostscript-9.23-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.29-x86-1.txz: Upgraded. d/meson-0.45.1-x86_64-1.txz: Upgraded. k/kernel-source-4.14.29-noarch-1.txz: Upgraded. l/pcre-8.42-x86_64-1.txz: Upgraded. x/mesa-17.3.7-x86_64-1.txz: Upgraded. x/vulkan-sdk-1.1.70.0-x86_64-1.txz: Upgraded. Thanks to dugan for help updating the build script. x/xf86-input-libinput-0.27.0-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue Mar 20 22:52:16 UTC 2018 l/gst-plugins-base-1.14.0-x86_64-1.txz: Upgraded. l/gst-plugins-good-1.14.0-x86_64-1.txz: Upgraded. l/gst-plugins-libav-1.14.0-x86_64-1.txz: Upgraded. l/gstreamer-1.14.0-x86_64-1.txz: Upgraded. n/nmap-7.70-x86_64-1.txz: Upgraded. x/fontconfig-2.12.6-x86_64-1.txz: Upgraded. Reverted to previous version. There are problem reports with the latest version, and I see no upside to staying on the bleeding edge right now. +--------------------------+ Mon Mar 19 19:03:32 UTC 2018 a/kernel-generic-4.14.28-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.28-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.28-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.28-x86-1.txz: Upgraded. k/kernel-source-4.14.28-noarch-1.txz: Upgraded. xap/gparted-0.31.0-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Sun Mar 18 21:42:00 UTC 2018 d/Cython-0.28.1-x86_64-1.txz: Upgraded. d/python-setuptools-39.0.1-x86_64-1.txz: Upgraded. n/dnsmasq-2.79-x86_64-1.txz: Upgraded. +--------------------------+ Sun Mar 18 00:55:39 UTC 2018 a/sysvinit-scripts-2.1-noarch-7.txz: Rebuilt. rc.M: start consolekit before Bluetooth and NetworkManager. Thanks to allend. d/python-setuptools-39.0.0-x86_64-1.txz: Upgraded. l/libvorbis-1.3.6-x86_64-1.txz: Upgraded. This release fixes security issues. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14632 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14633 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5146 (* Security fix *) l/pycairo-1.16.3-x86_64-1.txz: Upgraded. n/bluez-5.49-x86_64-1.txz: Upgraded. x/xorgproto-2018.4-x86_64-2.txz: Rebuilt. Include support for legacy protocols. Thanks to nobodino. extra/bash-completion/bash-completion-2.8-noarch-1.txz: Upgraded. +--------------------------+ Sat Mar 17 03:25:26 UTC 2018 Beannachtai na le Padraig oraibh! a/hdparm-9.55-x86_64-1.txz: Upgraded. ap/dmidecode-3.1-x86_64-1.txz: Upgraded. d/cmake-3.10.3-x86_64-1.txz: Upgraded. n/libtirpc-1.0.3-x86_64-1.txz: Upgraded. x/xf86-video-amdgpu-18.0.1-x86_64-1.txz: Upgraded. x/xf86-video-ati-18.0.1-x86_64-1.txz: Upgraded. xap/mozilla-firefox-59.0.1-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/security/advisories/mfsa2018-08/ https://www.mozilla.org/security/known-vulnerabilities/firefox.html (* Security fix *) +--------------------------+ Fri Mar 16 02:29:29 UTC 2018 a/kernel-firmware-20180314_4c0bf11-noarch-1.txz: Upgraded. a/kernel-generic-4.14.27-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.27-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.27-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.27-x86-1.txz: Upgraded. k/kernel-source-4.14.27-noarch-1.txz: Upgraded. TRANSPARENT_HUGEPAGE_ALWAYS y -> n TRANSPARENT_HUGEPAGE_MADVISE n -> y Thanks to Darth Vader. n/bind-9.11.3-x86_64-1.txz: Upgraded. n/curl-7.59.0-x86_64-1.txz: Upgraded. This update fixes security issues: FTP path trickery leads to NIL byte out of bounds write LDAP NULL pointer dereference RTSP RTP buffer over-read For more information, see: https://curl.haxx.se/docs/adv_2018-9cd6.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000120 https://curl.haxx.se/docs/adv_2018-97a2.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000121 https://curl.haxx.se/docs/adv_2018-b047.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000122 (* Security fix *) x/libinput-1.10.3-x86_64-1.txz: Upgraded. xap/hexchat-2.14.1-x86_64-1.txz: Upgraded. xfce/xfce4-terminal-0.8.7.2-x86_64-1.txz: Upgraded. extra/wicd/wicd-1.7.4-x86_64-3.txz: Rebuilt. Patched to fix saving settings with wicd-curses. Thanks to justwantin. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue Mar 13 21:12:51 UTC 2018 a/time-1.9-x86_64-1.txz: Upgraded. d/automake-1.16.1-noarch-1.txz: Upgraded. l/imagemagick-6.9.9_38-x86_64-1.txz: Upgraded. n/samba-4.7.6-x86_64-1.txz: Upgraded. This is a security update in order to patch the following defects: On a Samba 4 AD DC the LDAP server in all versions of Samba from 4.0.0 onwards incorrectly validates permissions to modify passwords over LDAP allowing authenticated users to change any other users` passwords, including administrative users. All versions of Samba from 4.0.0 onwards are vulnerable to a denial of service attack when the RPC spoolss service is configured to be run as an external daemon. Missing input sanitization checks on some of the input parameters to spoolss RPC calls could cause the print spooler service to crash. There is no known vulnerability associated with this error, merely a denial of service. If the RPC spoolss service is left by default as an internal service, all a client can do is crash its own authenticated connection. For more information, see: https://www.samba.org/samba/security/CVE-2018-1057.html https://wiki.samba.org/index.php/CVE-2018-1057 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1057 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1050 (* Security fix *) xap/mozilla-firefox-59.0-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/security/advisories/mfsa2018-06/ https://www.mozilla.org/security/known-vulnerabilities/firefox.html (* Security fix *) +--------------------------+ Tue Mar 13 04:24:58 UTC 2018 ap/hplip-3.18.3-x86_64-1.txz: Upgraded. ap/vim-8.0.1601-x86_64-1.txz: Upgraded. n/NetworkManager-1.10.6-x86_64-1.txz: Upgraded. x/bigreqsproto-1.1.2-noarch-1.txz: Removed. x/compositeproto-0.4.2-noarch-1.txz: Removed. x/damageproto-1.2.1-noarch-1.txz: Removed. x/dmxproto-2.3.1-noarch-1.txz: Removed. x/dri2proto-2.8-x86_64-2.txz: Removed. x/dri3proto-1.0-x86_64-2.txz: Removed. x/evieext-1.1.1-noarch-1.txz: Removed. x/fixesproto-5.0-x86_64-2.txz: Removed. x/fontcacheproto-0.1.3-noarch-1.txz: Removed. x/fontsproto-2.1.3-noarch-1.txz: Removed. x/glproto-1.4.17-noarch-1.txz: Removed. x/inputproto-2.3.2-noarch-1.txz: Removed. x/kbproto-1.0.7-noarch-1.txz: Removed. x/presentproto-1.1-x86_64-1.txz: Removed. x/printproto-1.0.5-noarch-1.txz: Removed. x/randrproto-1.5.0-noarch-1.txz: Removed. x/recordproto-1.14.2-noarch-1.txz: Removed. x/renderproto-0.11.1-noarch-1.txz: Removed. x/resourceproto-1.2.0-noarch-1.txz: Removed. x/scrnsaverproto-1.2.2-noarch-1.txz: Removed. x/videoproto-2.3.3-noarch-1.txz: Removed. x/xcmiscproto-1.2.2-noarch-1.txz: Removed. x/xextproto-7.3.0-x86_64-2.txz: Removed. x/xf86bigfontproto-1.2.0-noarch-1.txz: Removed. x/xf86dgaproto-2.1-noarch-1.txz: Removed. x/xf86driproto-2.1.1-noarch-1.txz: Removed. x/xf86miscproto-0.9.3-noarch-1.txz: Removed. x/xf86vidmodeproto-2.3.1-noarch-1.txz: Removed. x/xineramaproto-1.2.1-noarch-1.txz: Removed. x/xorgproto-2018.4-x86_64-1.txz: Added. x/xproto-7.0.31-noarch-1.txz: Removed. xap/vim-gvim-8.0.1601-x86_64-1.txz: Upgraded. +--------------------------+ Mon Mar 12 07:16:15 UTC 2018 a/kernel-generic-4.14.26-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.26-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.26-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.26-x86-1.txz: Upgraded. k/kernel-source-4.14.26-noarch-1.txz: Upgraded. x/ico-1.0.5-x86_64-1.txz: Upgraded. x/intel-gpu-tools-1.22-x86_64-1.txz: Upgraded. x/transset-1.0.2-x86_64-1.txz: Upgraded. x/xbacklight-1.2.2-x86_64-1.txz: Upgraded. x/xbitmaps-1.1.2-x86_64-1.txz: Upgraded. x/xcursor-themes-1.0.5-noarch-1.txz: Upgraded. x/xeyes-1.1.2-x86_64-1.txz: Upgraded. x/xf86-video-intel-git_20180206_aa36399c-x86_64-1.txz: Upgraded. x/xfontsel-1.0.6-x86_64-1.txz: Upgraded. x/xinit-1.4.0-x86_64-1.txz: Upgraded. x/xkill-1.0.5-x86_64-1.txz: Upgraded. x/xload-1.1.3-x86_64-1.txz: Upgraded. x/xlsclients-1.1.4-x86_64-1.txz: Upgraded. x/xlsfonts-1.0.6-x86_64-1.txz: Upgraded. x/xmessage-1.0.5-x86_64-1.txz: Upgraded. x/xpr-1.0.5-x86_64-1.txz: Upgraded. x/xprop-1.2.3-x86_64-1.txz: Upgraded. x/xpyb-1.3.1-x86_64-4.txz: Rebuilt. Patched and recompiled against xcb-proto-1.13. x/xrdb-1.1.1-x86_64-1.txz: Upgraded. x/xrefresh-1.0.6-x86_64-1.txz: Upgraded. x/xset-1.2.4-x86_64-1.txz: Upgraded. x/xsetroot-1.1.2-x86_64-1.txz: Upgraded. x/xsm-1.0.4-x86_64-1.txz: Upgraded. x/xwd-1.0.7-x86_64-1.txz: Upgraded. x/xwininfo-1.1.4-x86_64-1.txz: Upgraded. x/xwud-1.0.5-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Sun Mar 11 06:02:10 UTC 2018 a/e2fsprogs-1.44.0-x86_64-1.txz: Upgraded. a/kernel-generic-4.14.25-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.25-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.25-x86_64-1.txz: Upgraded. a/logrotate-3.14.0-x86_64-1.txz: Upgraded. ap/nano-2.9.4-x86_64-1.txz: Upgraded. d/distcc-3.3-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.25-x86-1.txz: Upgraded. d/llvm-6.0.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. d/rust-1.24.1-x86_64-2.txz: Rebuilt. Use the bundled LLVM compiler since Rust will usually not be ready to be built with the latest LLVM. Thanks to Andrew Clemons. k/kernel-source-4.14.25-noarch-1.txz: Upgraded. l/fluidsynth-1.1.10-x86_64-1.txz: Upgraded. l/libxml2-2.9.8-x86_64-1.txz: Upgraded. n/dovecot-2.3.0.1-x86_64-2.txz: Rebuilt. Recompiled with --with-ldap=plugin option. Thanks to AlexSlack. x/libevdev-1.5.9-x86_64-1.txz: Upgraded. x/mesa-17.3.6-x86_64-2.txz: Rebuilt. Recompiled against llvm-6.0.0. x/xf86-video-vmware-13.2.1-x86_64-5.txz: Rebuilt. Recompiled against llvm-6.0.0. xap/pidgin-2.13.0-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Thu Mar 8 21:52:05 UTC 2018 a/kernel-modules-4.14.24-x86_64-2.txz: Rebuilt. Fixed "build" and "source" symlinks. +--------------------------+ Thu Mar 8 07:07:45 UTC 2018 a/dbus-1.12.6-x86_64-1.txz: Upgraded. a/kernel-generic-4.14.24-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.24-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.24-x86_64-1.txz: Upgraded. ap/cups-filters-1.20.1-x86_64-2.txz: Rebuilt. Recompiled against qpdf-8.0.2. ap/qpdf-8.0.2-x86_64-1.txz: Upgraded. Shared library .so-version bump. d/kernel-headers-4.14.24-x86-1.txz: Upgraded. d/mercurial-4.5.2-x86_64-1.txz: Upgraded. d/meson-0.45.0-x86_64-1.txz: Upgraded. d/rust-1.24.1-x86_64-1.txz: Upgraded. k/kernel-source-4.14.24-noarch-1.txz: Upgraded. kde/amarok-2.9.0-x86_64-1.txz: Upgraded. l/SDL2_image-2.0.3-x86_64-1.txz: Upgraded. l/cairo-1.15.10-x86_64-1.txz: Upgraded. l/gvfs-1.34.2.1-x86_64-1.txz: Upgraded. l/harfbuzz-1.7.6-x86_64-1.txz: Upgraded. l/libclc-20180223_3554053-x86_64-1.txz: Upgraded. l/librsvg-2.42.3-x86_64-1.txz: Upgraded. l/mozilla-nss-3.36-x86_64-1.txz: Upgraded. Upgraded to nss-3.36 and nspr-4.19. l/slang-2.3.2-x86_64-1.txz: Upgraded. n/mutt-1.9.4-x86_64-1.txz: Upgraded. n/php-7.2.3-x86_64-1.txz: Upgraded. This update fixes a stack buffer overflow vulnerability. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7584 (* Security fix *) x/appres-1.0.5-x86_64-1.txz: Upgraded. x/editres-1.0.7-x86_64-1.txz: Upgraded. x/fontconfig-2.13.0-x86_64-1.txz: Upgraded. x/iceauth-1.0.8-x86_64-1.txz: Upgraded. x/libdrm-2.4.91-x86_64-1.txz: Upgraded. x/libinput-1.10.2-x86_64-1.txz: Upgraded. x/libxcb-1.13-x86_64-1.txz: Upgraded. x/listres-1.0.4-x86_64-1.txz: Upgraded. x/mkfontscale-1.1.3-x86_64-1.txz: Upgraded. x/oclock-1.0.4-x86_64-1.txz: Upgraded. x/twm-1.0.10-x86_64-1.txz: Upgraded. x/util-macros-1.19.2-noarch-1.txz: Upgraded. x/viewres-1.0.5-x86_64-1.txz: Upgraded. x/wqy-zenhei-font-ttf-0.8.38_1-noarch-4.txz: Rebuilt. Fix .conf files to not produce warnings with fontconfig-2.13.0. x/xcb-proto-1.13-x86_64-1.txz: Upgraded. x/xdriinfo-1.0.6-x86_64-1.txz: Upgraded. x/xf86-video-amdgpu-18.0.0-x86_64-1.txz: Upgraded. x/xf86-video-ati-18.0.0-x86_64-1.txz: Upgraded. x/xkbcomp-1.4.1-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Thu Mar 1 23:24:54 UTC 2018 a/kernel-generic-4.14.23-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.23-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.23-x86_64-1.txz: Upgraded. a/lilo-24.2-x86_64-7.txz: Rebuilt. liloconfig: prevent extraneous Windows partitions from being added to lilo.conf. Thanks to allend. liloconfig: display a notice when the script is scanning for partitions (which may take some time) so that it doesn't appear to be stalled. a/xfsprogs-4.15.1-x86_64-1.txz: Upgraded. ap/man-db-2.8.2-x86_64-1.txz: Upgraded. ap/mpg123-1.25.10-x86_64-1.txz: Upgraded. d/help2man-1.47.6-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.23-x86-1.txz: Upgraded. k/kernel-source-4.14.23-noarch-1.txz: Upgraded. l/SDL2-2.0.8-x86_64-1.txz: Upgraded. l/libunistring-0.9.9-x86_64-1.txz: Upgraded. l/mozilla-nss-3.35-x86_64-1.txz: Upgraded. Upgraded to nss-3.35 and nspr-4.18. l/sip-4.19.8-x86_64-1.txz: Upgraded. l/tevent-0.9.36-x86_64-1.txz: Upgraded. n/dhcp-4.4.1-x86_64-1.txz: Upgraded. This update fixes two security issues: Corrected an issue where large sized 'X/x' format options were causing option handling logic to overwrite memory when expanding them to human readable form. Reported by Felix Wilhelm, Google Security Team. Option reference count was not correctly decremented in error path when parsing buffer for options. Reported by Felix Wilhelm, Google Security Team. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5732 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5733 (* Security fix *) n/dovecot-2.3.0.1-x86_64-1.txz: Upgraded. This release addresses three security issues in dovecot: TLS SNI config lookups may lead to excessive memory usage, causing imap-login/pop3-login VSZ limit to be reached and the process restarted. Parsing invalid email addresses may cause a crash or leak memory contents to attacker. First discovered by Aleksandar Nikolic of Cisco Talos. Independently also discovered by "flxflndy" via HackerOne. Aborted SASL authentication leaks memory in login process. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15130 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14461 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15132 (* Security fix *) n/ntp-4.2.8p11-x86_64-1.txz: Upgraded. This release addresses five security issues in ntpd: * LOW/MEDIUM: Sec 3012 / CVE-2016-1549 / VU#961909: Sybil vulnerability: ephemeral association attack. While fixed in ntp-4.2.8p7, there are significant additional protections for this issue in 4.2.8p11. Reported by Matt Van Gundy of Cisco. * INFO/MEDIUM: Sec 3412 / CVE-2018-7182 / VU#961909: ctl_getitem(): buffer read overrun leads to undefined behavior and information leak. Reported by Yihan Lian of Qihoo 360. * LOW: Sec 3415 / CVE-2018-7170 / VU#961909: Multiple authenticated ephemeral associations. Reported on the questions@ list. * LOW: Sec 3453 / CVE-2018-7184 / VU#961909: Interleaved symmetric mode cannot recover from bad state. Reported by Miroslav Lichvar of Red Hat. * LOW/MEDIUM: Sec 3454 / CVE-2018-7185 / VU#961909: Unauthenticated packet can reset authenticated interleaved association. Reported by Miroslav Lichvar of Red Hat. For more information, see: http://support.ntp.org/bin/view/Main/SecurityNotice#February_2018_ntp_4_2_8p11_NTP_S https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1549 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7182 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7170 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7184 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7185 (* Security fix *) n/openvpn-2.4.5-x86_64-1.txz: Upgraded. rc.openvpn: handle multiple config files. Thanks to Daniel Junior, Thomas Choi, and BrokenCog for helpful hints. n/p11-kit-0.23.10-x86_64-1.txz: Upgraded. x/libinput-1.10.1-x86_64-1.txz: Upgraded. x/libxshmfence-1.3-x86_64-1.txz: Upgraded. xfce/xfce4-notifyd-0.4.2-x86_64-1.txz: Upgraded. xfce/xfce4-settings-4.12.2-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue Feb 27 06:51:04 UTC 2018 d/ccache-3.4.1-x86_64-1.txz: Upgraded. x/mesa-17.3.6-x86_64-1.txz: Upgraded. +--------------------------+ Mon Feb 26 21:32:03 UTC 2018 a/gawk-4.2.1-x86_64-1.txz: Upgraded. a/kernel-generic-4.14.22-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.22-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.22-x86_64-1.txz: Upgraded. a/lilo-24.2-x86_64-6.txz: Rebuilt. Support NVMe devices. Thanks to timsoft. ap/cups-filters-1.20.1-x86_64-1.txz: Upgraded. d/automake-1.16-noarch-1.txz: Upgraded. d/kernel-headers-4.14.22-x86-1.txz: Upgraded. k/kernel-source-4.14.22-noarch-1.txz: Upgraded. l/pycurl-7.43.0.1-x86_64-1.txz: Upgraded. n/gnupg2-2.2.5-x86_64-1.txz: Upgraded. x/libwacom-0.28-x86_64-1.txz: Upgraded. xfce/xfce4-terminal-0.8.7.1-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Sat Feb 24 20:51:49 UTC 2018 a/xfsprogs-4.15.0-x86_64-1.txz: Upgraded. l/LibRaw-0.18.8-x86_64-1.txz: Upgraded. t/fig2dev-3.2.6a-x86_64-1.txz: Added. t/transfig-3.2.5e-x86_64-3.txz: Removed. This package has been renamed fig2dev. t/xfig-3.2.6a-x86_64-1.txz: Upgraded. +--------------------------+ Sat Feb 24 07:41:40 UTC 2018 a/kernel-firmware-20180222_7344ec9-noarch-1.txz: Upgraded. a/kernel-generic-4.14.21-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.21-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.21-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.21-x86-1.txz: Upgraded. k/kernel-source-4.14.21-noarch-1.txz: Upgraded. l/SDL2_mixer-2.0.2-x86_64-2.txz: Rebuilt. Recompiled to use FluidSynth. l/fluidsynth-1.1.9-x86_64-1.txz: Added. l/notify-python-0.1.1-x86_64-5.txz: Removed. l/python-notify2-0.3.1-x86_64-1.txz: Added. l/sdl-1.2.15-x86_64-6.txz: Rebuilt. Recompiled so that libSDL_mixer will use FluidSynth. n/proftpd-1.3.6-x86_64-2.txz: Rebuilt. Support ProFTPD modules mod_sftp and mod_facl. n/wget-1.19.4-x86_64-2.txz: Rebuilt. Applied upstream patch to fix logging in background mode. Thanks to Willy Sudiarto Raharjo. x/ttf-tlwg-0.6.4-noarch-1.txz: Added. xap/audacious-plugins-3.9-x86_64-3.txz: Rebuilt. Recompiled to add a FluidSynth-based MIDI plugin. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Thu Feb 22 19:36:43 UTC 2018 a/pkgtools-15.0-noarch-5.txz: Rebuilt. setup.services: add rc.smartd to setup menu. a/smartmontools-6.6-x86_64-2.txz: Rebuilt. Add rc.smartd init script. a/sysvinit-scripts-2.1-noarch-6.txz: Rebuilt. rc.M: start rc.smartd if it is executable. d/meson-0.44.1-x86_64-1.txz: Upgraded. l/system-config-printer-1.5.11-x86_64-2.txz: Rebuilt. Applied upstream patch to fix the auth dialog. n/postfix-3.3.0-x86_64-1.txz: Upgraded. +--------------------------+ Thu Feb 22 04:34:23 UTC 2018 a/less-530-x86_64-2.txz: Rebuilt. Fixed lesspipe.sh permissions. ap/lsof-4.90-x86_64-1.txz: Upgraded. n/network-scripts-15.0-noarch-6.txz: Rebuilt. rc.inet2: start rc.openvpn if it is executable. n/openvpn-2.4.4-x86_64-2.txz: Rebuilt. Added rc.openvpn. Include all the sample files, and link to the sample configs in /etc/openvpn. Thanks to bifferos. x/m17n-lib-1.8.0-x86_64-1.txz: Upgraded. +--------------------------+ Tue Feb 20 06:34:11 UTC 2018 a/bash-4.4.019-x86_64-1.txz: Upgraded. a/kernel-generic-4.14.20-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.20-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.20-x86_64-1.txz: Upgraded. a/less-530-x86_64-1.txz: Upgraded. a/lzip-1.20-x86_64-2.txz: Rebuilt. Don't move lzip to /bin. a/lzlib-1.10-x86_64-2.txz: Rebuilt. Let the library stay in /usr/lib{,64}. There's not much point in moving it since plzip will require libstdc++.so in /usr/lib{,64}, and we're not going to move that one. And realistically, there's also not much point in worrying about whether the package tools will work with /usr unavailable. a/pkgtools-15.0-noarch-4.txz: Rebuilt. makepkg: use find and sed instead of a tar transform. Thanks to Seb. installpkg: if a package was not made with makepkg, filter the filelist through sed on the way to /var/log/packages/ to try to clean it up. a/plzip-1.7-x86_64-2.txz: Rebuilt. Don't move plzip to /bin. d/kernel-headers-4.14.20-x86-1.txz: Upgraded. k/kernel-source-4.14.20-noarch-1.txz: Upgraded. n/whois-5.3.0-x86_64-1.txz: Upgraded. tcl/expect-5.45.4-x86_64-1.txz: Upgraded. x/libdrm-2.4.90-x86_64-1.txz: Upgraded. x/mesa-17.3.5-x86_64-1.txz: Upgraded. xfce/exo-0.12.0-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Sat Feb 17 06:06:29 UTC 2018 a/btrfs-progs-v4.15.1-x86_64-1.txz: Upgraded. a/pkgtools-15.0-noarch-3.txz: Rebuilt. installpkg: support multiple threads for xz. Thanks to ivandi. Default threads for plzip is now equal to the number of CPU threads on the system rather than the number of physical cores. Default number of threads on xz is set to 2, to avoid a memory allocation problem when using too many threads on 32-bit. Not that it matters... they still haven't implemented multi-threaded xz decompression. makepkg: refactored setting compression type by requested extension. ap/ddrescue-1.23-x86_64-1.txz: Upgraded. d/git-2.16.2-x86_64-1.txz: Upgraded. l/gc-7.6.4-x86_64-1.txz: Upgraded. l/ocl-icd-2.2.12-x86_64-1.txz: Upgraded. l/v4l-utils-1.14.2-x86_64-1.txz: Upgraded. n/gnutls-3.6.2-x86_64-1.txz: Upgraded. x/intel-vaapi-driver-2.1.0-x86_64-1.txz: Upgraded. x/xf86-video-vesa-2.4.0-x86_64-1.txz: Upgraded. xfce/Thunar-1.6.14-x86_64-1.txz: Upgraded. +--------------------------+ Fri Feb 16 03:19:36 UTC 2018 a/lzip-1.20-x86_64-1.txz: Upgraded. a/sysvinit-scripts-2.1-noarch-5.txz: Rebuilt. rc.{6,K}: Use -M option with fuser. Thanks to Markus Wiesner. l/gtk+3-3.22.28-x86_64-1.txz: Upgraded. n/irssi-1.1.1-x86_64-1.txz: Upgraded. This update fixes bugs and security issues. For more information, see: https://irssi.org/security/html/irssi_sa_2018_02 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7054 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7053 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7050 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7052 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7051 (* Security fix *) n/network-scripts-15.0-noarch-5.txz: Rebuilt. rc.inet1: set the broadcast address, and flush the ip address from interfaces when shutting them down. Thanks to Markus Wiesner. netconfig: don't write hostname to NetworkManager.conf. Thanks to Andrzej Telszewski. x/libva-2.1.0-x86_64-1.txz: Upgraded. x/libva-utils-2.1.0-x86_64-1.txz: Upgraded. x/mesa-17.3.4-x86_64-1.txz: Upgraded. +--------------------------+ Wed Feb 14 19:48:51 UTC 2018 a/gpm-1.20.7-x86_64-5.txz: Rebuilt. setup.mouse: fix USB mouse autodection. Thanks to Didier Spaier. a/kernel-firmware-20180211_6d51311-noarch-1.txz: Upgraded. a/kernel-generic-4.14.19-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.19-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.19-x86_64-1.txz: Upgraded. a/lzlib-1.10-x86_64-1.txz: Upgraded. a/pkgtools-15.0-noarch-2.txz: Rebuilt. Use tar-1.30. Thanks to gnashley and ruario for the help. Change .tlz to mean .tar.lz. We never really used the previous definition (which was tar.lzma), and .lz is a probably a better format than xz or lzma. Reference: https://www.nongnu.org/lzip/xz_inadequate.html For xz/lzip based packages, support multithreaded compression/decompression. Thanks to Erik Jan Tromp for assistance and advice with testing the changes for lzip and thread support, as well for as getting a bug in lzlib/plzip fixed upstream. Support extended attributes and POSIX ACLs in packages. a/plzip-1.7-x86_64-1.txz: Upgraded. a/tar-1.30-x86_64-1.txz: Upgraded. ap/man-db-2.8.1-x86_64-1.txz: Upgraded. man-db.conf: Don't list /usr/share/man in $MANPATH, since it's a duplicate link to /usr/man. man-db.cron: Unset $MANPATH before updating the database for consistent results even if man-db.cron is manually invoked. Thanks to GazL. ap/mariadb-10.2.13-x86_64-1.txz: Upgraded. This update fixes bugs and security issues. For more information, see: https://mariadb.com/kb/en/mariadb-10213-release-notes/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2562 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2622 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2640 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2665 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2668 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2612 (* Security fix *) ap/vim-8.0.1519-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.19-x86-1.txz: Upgraded. d/strace-4.21-x86_64-1.txz: Upgraded. k/kernel-source-4.14.19-noarch-1.txz: Upgraded. l/LibRaw-0.18.7-x86_64-1.txz: Upgraded. l/ffmpeg-3.4.2-x86_64-1.txz: Upgraded. l/freetype-2.9-x86_64-1.txz: Upgraded. l/libwebp-0.6.1-x86_64-1.txz: Upgraded. l/pcre2-10.31-x86_64-1.txz: Upgraded. l/seamonkey-solibs-2.49.2-x86_64-1.txz: Upgraded. n/NetworkManager-1.10.4-x86_64-1.txz: Upgraded. x/libinput-1.10.0-x86_64-1.txz: Upgraded. xap/seamonkey-2.49.2-x86_64-1.txz: Upgraded. xap/vim-gvim-8.0.1519-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Feb 9 19:59:54 UTC 2018 a/e2fsprogs-1.43.9-x86_64-1.txz: Upgraded. l/ffmpeg-3.4.1-x86_64-4.txz: Rebuilt. Recompiled against libcdio-2.0.0. l/gvfs-1.34.2-x86_64-2.txz: Rebuilt. Recompiled against libcdio-2.0.0. l/libcddb-1.3.2-x86_64-4.txz: Rebuilt. Recompiled against libcdio-2.0.0. l/libcdio-2.0.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/libcdio-paranoia-10.2+0.94+2-x86_64-2.txz: Rebuilt. Recompiled against libcdio-2.0.0. tcl/tcl-8.6.8-x86_64-2.txz: Rebuilt. Recompiled to drop reference to -lieee in tcl.pc. That was just a dummy library, provided for things that expected it, but removed from glibc-2.27. Let me know if you spot anything else that needs it, but a quick scan here didn't turn up anything. xap/MPlayer-20180208-x86_64-2.txz: Rebuilt. Recompiled against libcdio-2.0.0. xap/audacious-plugins-3.9-x86_64-2.txz: Rebuilt. Recompiled against libcdio-2.0.0. +--------------------------+ Fri Feb 9 02:50:56 UTC 2018 a/dbus-1.12.4-x86_64-1.txz: Upgraded. a/kernel-generic-4.14.18-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.18-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.18-x86_64-1.txz: Upgraded. ap/man-db-2.8.0-x86_64-2.txz: Rebuilt. Fixed ownership of the man2html script. ap/qpdf-7.1.1-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.18-x86-1.txz: Upgraded. d/nasm-2.13.03-x86_64-1.txz: Upgraded. k/kernel-source-4.14.18-noarch-1.txz: Upgraded. l/mpfr-4.0.1-x86_64-1.txz: Upgraded. n/samba-4.7.5-x86_64-1.txz: Upgraded. xap/MPlayer-20180208-x86_64-1.txz: Upgraded. xap/mozilla-firefox-58.0.2-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Wed Feb 7 04:28:48 UTC 2018 a/glibc-solibs-2.27-x86_64-1.txz: Upgraded. a/hdparm-9.54-x86_64-1.txz: Upgraded. a/kernel-firmware-20180201_2aa2ac2-noarch-1.txz: Upgraded. a/patch-2.7.6-x86_64-1.txz: Upgraded. ap/htop-2.1.0-x86_64-1.txz: Upgraded. ap/man-db-2.8.0-x86_64-1.txz: Upgraded. d/python-setuptools-38.5.1-x86_64-1.txz: Upgraded. l/glibc-2.27-x86_64-1.txz: Upgraded. l/glibc-i18n-2.27-x86_64-1.txz: Upgraded. l/glibc-profile-2.27-x86_64-1.txz: Upgraded. l/gvfs-1.34.2-x86_64-1.txz: Upgraded. l/libgphoto2-2.5.16-x86_64-2.txz: Rebuilt. Generate rules and hwdb for udev >= 201. Thanks to gmgf. +--------------------------+ Mon Feb 5 07:41:10 UTC 2018 d/clisp-2.49.20180203.ca011c249da5-x86_64-1.txz: Upgraded. l/imagemagick-6.9.9_34-x86_64-1.txz: Upgraded. n/crda-3.18-x86_64-5.txz: Rebuilt. Upgraded to wireless-regdb-2017.12.23. +--------------------------+ Sun Feb 4 05:13:27 UTC 2018 a/btrfs-progs-v4.15-x86_64-1.txz: Upgraded. a/kernel-generic-4.14.17-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.17-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.17-x86_64-1.txz: Upgraded. ap/man-pages-4.15-noarch-1.txz: Upgraded. ap/workbone-2.40-x86_64-4.txz: Removed. This compiles, but hasn't actually worked in a long time. I think it requires kernel interfaces that were removed in linux-2.6.x. d/kernel-headers-4.14.17-x86-1.txz: Upgraded. d/mercurial-4.5-x86_64-1.txz: Upgraded. d/python-setuptools-38.4.1-x86_64-1.txz: Upgraded. k/kernel-source-4.14.17-noarch-1.txz: Upgraded. l/M2Crypto-0.27.0-x86_64-2.txz: Rebuilt. Include required typing module. l/dbus-python-1.2.6-x86_64-1.txz: Upgraded. l/glib-1.2.10-x86_64-4.txz: Rebuilt. Patched to fix builds with glib-1.x. l/gtk+-1.2.10-x86_64-6.txz: Rebuilt. Patched to fix builds with gtk+-1.x. l/librsvg-2.42.2-x86_64-1.txz: Upgraded. l/v4l-utils-1.14.1-x86_64-1.txz: Upgraded. n/ethtool-4.15-x86_64-1.txz: Upgraded. n/iptables-1.6.2-x86_64-1.txz: Upgraded. n/nfs-utils-2.3.1-x86_64-1.txz: Upgraded. n/nftables-0.8.2-x86_64-1.txz: Upgraded. n/php-7.2.2-x86_64-1.txz: Upgraded. n/rpcbind-0.2.4-x86_64-3.txz: Rebuilt. Move some more configuration to /etc/default/rpc. x/xterm-331-x86_64-2.txz: Rebuilt. Add options --enable-regis-graphics and --enable-sixel-graphics. Thanks to saahriktu. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Thu Feb 1 18:24:15 UTC 2018 a/bash-4.4.018-x86_64-1.txz: Upgraded. a/kernel-generic-4.14.16-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.16-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.16-x86_64-1.txz: Upgraded. ap/cups-filters-1.20.0-x86_64-1.txz: Upgraded. ap/mariadb-10.2.12-x86_64-1.txz: Upgraded. d/gdb-8.1-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.16-x86-1.txz: Upgraded. d/perl-5.26.1-x86_64-4.txz: Rebuilt. Removed dangling c2ph symlinks. Thanks to Tim Thomas. Updated to DBD-mysql-4.044, DBI-1.640, URI-1.73, and libnet-3.11. k/kernel-source-4.14.16-noarch-1.txz: Upgraded. l/dbus-glib-0.110-x86_64-1.txz: Upgraded. l/harfbuzz-1.7.5-x86_64-1.txz: Upgraded. l/libdvdnav-6.0.0-x86_64-1.txz: Upgraded. l/libdvdread-6.0.0-x86_64-1.txz: Upgraded. l/libunwind-1.2.1-x86_64-2.txz: Rebuilt. Removed dangling .a symlink. Thanks to Tim Thomas. l/sip-4.19.7-x86_64-1.txz: Upgraded. n/dhcp-4.4.0-x86_64-1.txz: Upgraded. n/dovecot-2.3.0-x86_64-1.txz: Upgraded. n/postfix-3.2.5-x86_64-1.txz: Upgraded. n/rsync-3.1.3-x86_64-1.txz: Upgraded. This update fixes two security issues: Fixed a buffer overrun in the protocol's handling of xattr names and ensure that the received name is null terminated. Fix an issue with --protect-args where the user could specify the arg in the protected-arg list and short-circuit some of the arg-sanitizing code. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16548 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5764 (* Security fix *) x/libevdev-1.5.8-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Mon Jan 29 20:56:56 UTC 2018 ap/nano-2.9.3-x86_64-1.txz: Upgraded. n/dhcpcd-7.0.1-x86_64-1.txz: Upgraded. n/iproute2-4.15.0-x86_64-1.txz: Upgraded. xap/mozilla-firefox-58.0.1-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/security/advisories/mfsa2018-05/ https://www.mozilla.org/security/known-vulnerabilities/firefox.html (* Security fix *) +--------------------------+ Sun Jan 28 04:44:45 UTC 2018 a/btrfs-progs-v4.14.1-x86_64-1.txz: Upgraded. d/binutils-2.30-x86_64-1.txz: Upgraded. Shared library .so-version bump. d/oprofile-1.2.0-x86_64-2.txz: Rebuilt. Recompiled against binutils-2.30. l/ffmpeg-3.4.1-x86_64-3.txz: Rebuilt. Recompiled against libvpx-1.7.0. l/gst-plugins-good-1.12.4-x86_64-3.txz: Rebuilt. Recompiled against libvpx-1.7.0. l/libvpx-1.7.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. n/mutt-1.9.3-x86_64-1.txz: Upgraded. xap/xine-lib-1.2.9-x86_64-1.txz: Upgraded. Compiled against libvpx-1.7.0. xap/xine-ui-0.99.10-x86_64-1.txz: Upgraded. +--------------------------+ Fri Jan 26 03:46:16 UTC 2018 a/kernel-firmware-20180118_2a713be-noarch-1.txz: Upgraded. a/kernel-generic-4.14.15-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.15-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.15-x86_64-1.txz: Upgraded. ap/itstool-2.0.4-x86_64-2.txz: Rebuilt. Fixed a memory exhaustion crash bug. Thanks to Stuart Winter. d/gcc-7.3.0-x86_64-1.txz: Upgraded. This compiler supports -mindirect-branch=thunk-extern, allowing full mitigation of Spectre v2 in the kernel (when CONFIG_RETPOLINE is used). d/gcc-brig-7.3.0-x86_64-1.txz: Upgraded. d/gcc-g++-7.3.0-x86_64-1.txz: Upgraded. d/gcc-gfortran-7.3.0-x86_64-1.txz: Upgraded. d/gcc-gnat-7.3.0-x86_64-1.txz: Upgraded. d/gcc-go-7.3.0-x86_64-1.txz: Upgraded. d/gcc-objc-7.3.0-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.15-x86-1.txz: Upgraded. k/kernel-source-4.14.15-noarch-1.txz: Upgraded. .config changes (thanks to ivandi): -CIFS_DEBUG2 n -CIFS_DEBUG_DUMP_KEYS n CIFS_DEBUG y -> n CIFS_UPCALL n -> y CIFS_XATTR n -> y NFS_V4_1 n -> y +CIFS_ACL y +CIFS_POSIX y +NFS_V4_1_IMPLEMENTATION_ID_DOMAIN "kernel.org" +NFS_V4_1_MIGRATION n +NFS_V4_2 n +PNFS_BLOCK y +PNFS_FILE_LAYOUT y +PNFS_FLEXFILE_LAYOUT m +SUNRPC_BACKCHANNEL y n/curl-7.58.0-x86_64-2.txz: Rebuilt. Recompiled using --with-libssh2, which is evidently no longer a default option. Thanks to Markus Wiesner. xap/mozilla-thunderbird-52.6.0-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/thunderbird/52.6.0/releasenotes/ (* Security fix *) isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Thu Jan 25 02:24:04 UTC 2018 l/system-config-printer-1.5.11-x86_64-1.txz: Upgraded. n/curl-7.58.0-x86_64-1.txz: Upgraded. This update fixes security issues: HTTP authentication leak in redirects HTTP/2 trailer out-of-bounds read For more information, see: https://curl.haxx.se/docs/adv_2018-b3bf.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000007 https://curl.haxx.se/docs/adv_2018-824a.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000005 (* Security fix *) x/libwacom-0.27-x86_64-1.txz: Upgraded. x/xf86-input-wacom-0.36.0-x86_64-1.txz: Upgraded. +--------------------------+ Wed Jan 24 04:21:44 UTC 2018 a/glibc-zoneinfo-2018c-noarch-1.txz: Upgraded. ap/sqlite-3.22.0-x86_64-1.txz: Upgraded. d/python-setuptools-38.4.0-x86_64-1.txz: Upgraded. l/librsvg-2.42.1-x86_64-1.txz: Upgraded. l/python-certifi-2018.1.18-x86_64-1.txz: Upgraded. +--------------------------+ Mon Jan 22 22:47:47 UTC 2018 a/aaa_elflibs-14.2-x86_64-34.txz: Rebuilt. d/git-2.16.1-x86_64-1.txz: Upgraded. n/ModemManager-1.6.12-x86_64-1.txz: Upgraded. n/libmbim-1.16.0-x86_64-1.txz: Upgraded. n/libqmi-1.20.0-x86_64-1.txz: Upgraded. n/wget-1.19.4-x86_64-1.txz: Upgraded. More bug fixes: A major bug that caused GZip'ed pages to never be decompressed has been fixed Support for Content-Encoding and Transfer-Encoding have been marked as experimental and disabled by default +--------------------------+ Sat Jan 20 16:00:51 UTC 2018 d/cmake-3.10.2-x86_64-1.txz: Upgraded. d/git-2.16.0-x86_64-1.txz: Upgraded. d/rust-1.23.0-x86_64-1.txz: Upgraded. n/wget-1.19.3-x86_64-1.txz: Upgraded. This update fixes various non-security bugs, including this one: Prevent erroneous decompression of .gz and .tgz files with broken servers. x/mesa-17.3.3-x86_64-1.txz: Upgraded. xap/mozilla-firefox-58.0-x86_64-1.txz: Upgraded. Thanks to Matteo Bernardini for the build script update to use mach. +--------------------------+ Fri Jan 19 00:08:31 UTC 2018 ap/sudo-1.8.22-x86_64-1.txz: Upgraded. l/glib2-2.54.3-x86_64-2.txz: Rebuilt. Applied upstream patch from git (94b38beff, gmain: Partial revert of recent wakeup changes to gmain.c) to address CPU usage issues with LibreOffice. +--------------------------+ Wed Jan 17 21:36:23 UTC 2018 a/aaa_elflibs-14.2-x86_64-33.txz: Rebuilt. a/kernel-generic-4.14.14-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.14-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.14-x86_64-1.txz: Upgraded. ap/rpm-4.14.1-x86_64-1.txz: Upgraded. ap/sysstat-11.6.2-x86_64-1.txz: Upgraded. ap/vim-8.0.1428-x86_64-1.txz: Upgraded. d/gcc-7.2.0-x86_64-2.txz: Rebuilt. Recompiled against mpfr-4.0.0. d/gcc-brig-7.2.0-x86_64-2.txz: Rebuilt. Recompiled against mpfr-4.0.0. d/gcc-g++-7.2.0-x86_64-2.txz: Rebuilt. Recompiled against mpfr-4.0.0. d/gcc-gfortran-7.2.0-x86_64-2.txz: Rebuilt. Recompiled against mpfr-4.0.0. d/gcc-gnat-7.2.0-x86_64-2.txz: Rebuilt. Recompiled against mpfr-4.0.0. d/gcc-go-7.2.0-x86_64-2.txz: Rebuilt. Recompiled against mpfr-4.0.0. d/gcc-objc-7.2.0-x86_64-2.txz: Rebuilt. Recompiled against mpfr-4.0.0. d/kernel-headers-4.14.14-x86-1.txz: Upgraded. k/kernel-source-4.14.14-noarch-1.txz: Upgraded. l/libsigsegv-2.12-x86_64-1.txz: Upgraded. l/libtasn1-4.13-x86_64-1.txz: Upgraded. l/libunwind-1.2.1-x86_64-1.txz: Added. The latest intel-gpu-tools requires this library. l/mpfr-4.0.0-x86_64-2.txz: Rebuilt. Removed static libmpfr.a library. I'm not sure why that was there, but it probably wouldn't have worked anyway without a static libgmp.a to go with it. l/redland-1.0.17-x86_64-3.txz: Rebuilt. Removed librdf.la that was still referencing the removed mpfr.la file. Thanks to Matteo Bernardini. l/talloc-2.1.11-x86_64-1.txz: Upgraded. n/bind-9.11.2_P1-x86_64-1.txz: Upgraded. This update fixes a high severity security issue: Improper sequencing during cleanup can lead to a use-after-free error, triggering an assertion failure and crash in named. For more information, see: https://kb.isc.org/article/AA-01542 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3145 (* Security fix *) n/irssi-1.1.0-x86_64-1.txz: Upgraded. n/nftables-0.8.1-x86_64-1.txz: Upgraded. t/texlive-2017.171108-x86_64-3.txz: Rebuilt. Recompiled against mpfr-4.0.0. x/intel-gpu-tools-1.21-x86_64-1.txz: Upgraded. xap/vim-gvim-8.0.1428-x86_64-1.txz: Upgraded. Cleaned up the gvim.desktop file. Thanks to Didier Spaier. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Mon Jan 15 23:13:01 UTC 2018 a/gawk-4.2.0-x86_64-3.txz: Rebuilt. Recompiled against mpfr-4.0.0. a/hdparm-9.53-x86_64-1.txz: Upgraded. a/kernel-generic-4.14.13-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.13-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.13-x86_64-1.txz: Upgraded. a/kmod-25-x86_64-1.txz: Upgraded. ap/cups-filters-1.19.0-x86_64-1.txz: Upgraded. ap/man-db-2.7.6.1-x86_64-2.txz: Rebuilt. Include Thomas Dickey's man2html script. Thanks to Robby Workman, and to Willy Sudiarto Raharjo for the bug report. d/doxygen-1.8.14-x86_64-1.txz: Upgraded. Compiled against xapian-core-1.4.5. Build script updated for CMake. Thanks to Robby Workman. d/kernel-headers-4.14.13-x86-1.txz: Upgraded. k/kernel-source-4.14.13-noarch-1.txz: Upgraded. kde/baloo-4.14.3-x86_64-3.txz: Rebuilt. Recompiled against xapian-core-1.4.5. l/glib2-2.54.3-x86_64-1.txz: Upgraded. l/gtk+2-2.24.32-x86_64-1.txz: Upgraded. l/gvfs-1.34.1-x86_64-3.txz: Rebuilt. Applied upstream bugfix patches from git: Fix a bug in gvfs<-->udev interaction Fix reads past EOF on Android devices Fix crashes on recent file changes Fix relative trash paths Thanks to Robby Workman. l/libmpc-1.1.0-x86_64-1.txz: Upgraded. Compiled against mpfr-4.0.0. l/librsvg-2.42.0-x86_64-1.txz: Upgraded. l/libsoup-2.60.3-x86_64-1.txz: Upgraded. l/libzip-1.4.0-x86_64-1.txz: Upgraded. l/mpfr-4.0.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/rasqal-0.9.33-x86_64-2.txz: Rebuilt. Recompiled against mpfr-4.0.0. l/xapian-core-1.4.5-x86_64-1.txz: Upgraded. Shared library .so-version bump. n/ca-certificates-20170717-noarch-1.txz: Upgraded. n/ipset-6.35-x86_64-1.txz: Upgraded. n/iw-4.14-x86_64-1.txz: Upgraded. n/libnftnl-1.0.9-x86_64-1.txz: Upgraded. n/tin-2.4.2-x86_64-1.txz: Upgraded. x/mesa-17.3.2-x86_64-1.txz: Upgraded. xap/geeqie-1.4-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue Jan 9 19:35:41 UTC 2018 xap/easytag-2.4.2-x86_64-1.txz: Upgraded. Downgraded to 2.4.2 since 2.4.3 has a bug that can corrupt Ogg containers (commonly used to store Vorbis and Opus streams) when a tag is written. Thanks to arcctgx for the heads-up. +--------------------------+ Tue Jan 9 00:54:19 UTC 2018 a/gzip-1.9-x86_64-1.txz: Upgraded. a/kernel-firmware-20180104_65b1c68-noarch-1.txz: Upgraded. a/kernel-generic-4.14.12-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.12-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.12-x86_64-1.txz: Upgraded. a/sysvinit-scripts-2.1-noarch-4.txz: Rebuilt. rc.S: Fix grep match when displaying mounts. Thanks to Markus Wiesner. ap/cups-filters-1.18.0-x86_64-2.txz: Rebuilt. Fixed install script. Thanks to DarkVision. d/kernel-headers-4.14.12-x86-1.txz: Upgraded. k/kernel-source-4.14.12-noarch-1.txz: Upgraded. l/id3lib-3.8.3-x86_64-1.txz: Added. Thanks to alienBOB for hints on the build script. n/irssi-1.0.6-x86_64-1.txz: Upgraded. This update fixes multiple security vulnerabilities. For more information, see: https://irssi.org/security/irssi_sa_2018_01.txt https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5205 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5206 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5207 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5208 (* Security fix *) xap/easytag-2.4.3-x86_64-1.txz: Added. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Jan 5 06:37:17 UTC 2018 n/php-7.2.1-x86_64-1.txz: Upgraded. xap/mozilla-firefox-57.0.4-x86_64-1.txz: Upgraded. This release contains security fixes and improvements, in particular a mitigation for a speculative execution side-channel attack ("Spectre"). For more information, see: https://www.mozilla.org/en-US/security/advisories/mfsa2018-01/ https://www.mozilla.org/security/known-vulnerabilities/firefox.html (* Security fix *) +--------------------------+ Wed Jan 3 19:24:12 UTC 2018 a/kernel-huge-4.14.11-x86_64-2.txz: Rebuilt. Used correct config-huge-4.14.11.x64 .config this time. kernels/huge.s/*: Rebuilt. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Wed Jan 3 05:45:43 UTC 2018 a/e2fsprogs-1.43.8-x86_64-1.txz: Upgraded. a/kernel-firmware-20180102git-noarch-1.txz: Upgraded. a/kernel-generic-4.14.11-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.11-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.11-x86_64-1.txz: Upgraded. ap/nano-2.9.2-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.11-x86-1.txz: Upgraded. k/kernel-source-4.14.11-noarch-1.txz: Upgraded. n/dhcpcd-7.0.0-x86_64-1.txz: Upgraded. x/xterm-331-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Dec 29 23:09:14 UTC 2017 a/coreutils-8.29-x86_64-1.txz: Upgraded. n/bluez-5.48-x86_64-1.txz: Upgraded. xap/mozilla-firefox-57.0.3-x86_64-1.txz: Upgraded. +--------------------------+ Mon Dec 25 21:43:14 UTC 2017 l/speex-1.2.0-x86_64-1.txz: Upgraded. +--------------------------+ Mon Dec 25 20:16:03 UTC 2017 Whoops, it looks like a little test residue on my build machine caused me to wrap a couple of presents wrong. All fixed up, Merry Christmas everyone! ap/moc-2.5.2-x86_64-3.txz: Rebuilt. ap/vorbis-tools-1.4.0-x86_64-3.txz: Rebuilt. l/opusfile-0.9-x86_64-2.txz: Rebuilt. n/samba-4.7.4-x86_64-2.txz: Rebuilt. +--------------------------+ Mon Dec 25 00:00:16 UTC 2017 a/coreutils-8.28-x86_64-3.txz: Rebuilt. Added .opus extension to /etc/DIR_COLORS. ap/cups-filters-1.18.0-x86_64-1.txz: Upgraded. ap/moc-2.5.2-x86_64-2.txz: Rebuilt. Recompiled to add decoder plugins for Speex and FFmpeg. ap/opus-tools-0.1.10-x86_64-1.txz: Added. ap/vorbis-tools-1.4.0-x86_64-2.txz: Rebuilt. Added Opus support to ogg123. d/cmake-3.10.1-x86_64-1.txz: Upgraded. l/ffmpeg-3.4.1-x86_64-2.txz: Rebuilt. Recompiled to add support for Speex and Opus. l/gst-plugins-base-1.12.4-x86_64-2.txz: Rebuilt. Recompiled to add support for Opus. l/gst-plugins-good-1.12.4-x86_64-2.txz: Rebuilt. Recompiled to add support for Speex. l/harfbuzz-1.7.4-x86_64-1.txz: Upgraded. l/icu4c-60.2-x86_64-1.txz: Upgraded. l/libjpeg-turbo-1.5.3-x86_64-1.txz: Upgraded. l/opus-1.3_beta-x86_64-1.txz: Added. l/opusfile-0.9-x86_64-1.txz: Added. l/speex-1.2rc2-x86_64-1.txz: Added. n/autofs-5.1.4-x86_64-1.txz: Upgraded. n/gnupg2-2.2.4-x86_64-1.txz: Upgraded. n/samba-4.7.4-x86_64-1.txz: Upgraded. x/xorg-server-1.19.6-x86_64-2.txz: Rebuilt. Bumped Slackware version number reported by xorg-server to 15.0. x/xorg-server-xephyr-1.19.6-x86_64-2.txz: Rebuilt. x/xorg-server-xnest-1.19.6-x86_64-2.txz: Rebuilt. x/xorg-server-xvfb-1.19.6-x86_64-2.txz: Rebuilt. xap/xscreensaver-5.38-x86_64-1.txz: Upgraded. +--------------------------+ Fri Dec 22 21:49:01 UTC 2017 tcl/tcl-8.6.8-x86_64-1.txz: Upgraded. tcl/tk-8.6.8-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-52.5.2-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/en-US/thunderbird/52.5.2/releasenotes/ (* Security fix *) xap/network-manager-applet-1.8.10-x86_64-3.txz: Rebuilt. Merged upstream patches that may fix the openvpn breakage. Thanks to Robby Workman. +--------------------------+ Fri Dec 22 07:09:35 UTC 2017 d/llvm-5.0.1-x86_64-1.txz: Upgraded. Added libcxx and libcxxabi. l/Mako-1.0.7-x86_64-1.txz: Added. Mako is needed by the new version of Mesa. x/libdrm-2.4.89-x86_64-1.txz: Upgraded. x/mesa-17.3.1-x86_64-1.txz: Upgraded. +--------------------------+ Wed Dec 20 22:56:42 UTC 2017 a/util-linux-2.31.1-x86_64-1.txz: Upgraded. l/ffmpeg-3.4.1-x86_64-1.txz: Upgraded. x/xorg-server-1.19.6-x86_64-1.txz: Upgraded. x/xorg-server-xephyr-1.19.6-x86_64-1.txz: Upgraded. x/xorg-server-xnest-1.19.6-x86_64-1.txz: Upgraded. x/xorg-server-xvfb-1.19.6-x86_64-1.txz: Upgraded. xap/network-manager-applet-1.8.10-x86_64-2.txz: Rebuilt. Patched to fix crash with NetworkManager-openvpn. Thanks to USUARIONUEVO. +--------------------------+ Wed Dec 20 03:05:58 UTC 2017 ap/pamixer-1.3.1-x86_64-5.txz: Rebuilt. Recompiled against boost-1.66.0. ap/vim-8.0.1415-x86_64-1.txz: Upgraded. d/meson-0.44.0-x86_64-1.txz: Upgraded. d/python3-3.6.4-x86_64-1.txz: Upgraded. d/ruby-2.4.3-x86_64-1.txz: Upgraded. This update fixes a security issue: Net::FTP#get, getbinaryfile, gettextfile, put, putbinaryfile, and puttextfile use Kernel#open to open a local file. If the localfile argument starts with the pipe character "|", the command following the pipe character is executed. The default value of localfile is File.basename(remotefile), so malicious FTP servers could cause arbitrary command execution. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17405 (* Security fix *) kde/calligra-2.9.11-x86_64-18.txz: Rebuilt. Recompiled against boost-1.66.0. kde/kig-4.14.3-x86_64-7.txz: Rebuilt. Recompiled against boost-1.66.0. l/LibRaw-0.18.6-x86_64-1.txz: Upgraded. l/akonadi-1.13.0-x86_64-8.txz: Rebuilt. Recompiled against boost-1.66.0. l/boost-1.66.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/gmime-2.6.23-x86_64-2.txz: Upgraded. Revert to gmime-2 until the issues with pan are worked out. Nothing else in Slackware is using this library. l/lcms2-2.9-x86_64-1.txz: Upgraded. l/libogg-1.3.3-x86_64-1.txz: Upgraded. l/librsvg-2.40.20-x86_64-1.txz: Upgraded. l/pygobject-2.28.7-x86_64-1.txz: Upgraded. n/NetworkManager-1.10.2-x86_64-1.txz: Upgraded. n/gpgme-1.10.0-x86_64-1.txz: Upgraded. n/libassuan-2.5.1-x86_64-1.txz: Upgraded. n/libgcrypt-1.8.2-x86_64-1.txz: Upgraded. n/mutt-1.9.2-x86_64-1.txz: Upgraded. n/pinentry-1.1.0-x86_64-1.txz: Upgraded. xap/network-manager-applet-1.8.10-x86_64-1.txz: Upgraded. xap/pan-0.143-x86_64-3.txz: Rebuilt. Recompiled against gmime-2. xap/vim-gvim-8.0.1415-x86_64-1.txz: Upgraded. xfce/xfce4-notifyd-0.4.1-x86_64-1.txz: Upgraded. testing/packages/linux-4.14.7/kernel-generic-4.14.7-x86_64-1.txz: Upgraded. testing/packages/linux-4.14.7/kernel-headers-4.14.7-x86-1.txz: Upgraded. testing/packages/linux-4.14.7/kernel-huge-4.14.7-x86_64-1.txz: Upgraded. testing/packages/linux-4.14.7/kernel-modules-4.14.7-x86_64-1.txz: Upgraded. testing/packages/linux-4.14.7/kernel-source-4.14.7-noarch-1.txz: Upgraded. These sources have been patched with two patches that have been submitted upstream but have yet to appear in the mainline or stable kernels. With the patches applied this kernel seems stable now on both 32 and 64-bit x86. Thanks to Michele Ballabio for reporting the issue to the upstream kernel developers, and to Ming Lei for the fix. Once these patches appear in the 4.14.x kernel series (and barring any other major regressions), we'll be moving these kernels back into the main tree. +--------------------------+ Thu Dec 14 23:27:14 UTC 2017 l/gst-plugins-base-1.12.4-x86_64-1.txz: Upgraded. l/gst-plugins-good-1.12.4-x86_64-1.txz: Upgraded. l/gst-plugins-libav-1.12.4-x86_64-1.txz: Upgraded. l/gstreamer-1.12.4-x86_64-1.txz: Upgraded. l/libsodium-1.0.16-x86_64-1.txz: Upgraded. n/wpa_supplicant-2.6-x86_64-3.txz: Rebuilt. Added options and patches from Fedora that may help with reconnection issues. Thanks to Robby Workman. x/mesa-17.2.7-x86_64-1.txz: Upgraded. xfce/xfce4-panel-4.12.2-x86_64-1.txz: Upgraded. +--------------------------+ Sat Dec 9 00:02:28 UTC 2017 a/openssl-solibs-1.0.2n-x86_64-1.txz: Upgraded. n/openssl-1.0.2n-x86_64-1.txz: Upgraded. This update fixes security issues: Read/write after SSL object in error state rsaz_1024_mul_avx2 overflow bug on x86_64 For more information, see: https://www.openssl.org/news/secadv/20171207.txt https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3737 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3738 (* Security fix *) +--------------------------+ Fri Dec 8 05:54:21 UTC 2017 l/cairo-1.14.12-x86_64-1.txz: Upgraded. l/qt-4.8.7-x86_64-8.txz: Rebuilt. Don't warn if libicu* appears to be missing at runtime. x/motif-2.3.8-x86_64-1.txz: Upgraded. xap/mozilla-firefox-57.0.2-x86_64-1.txz: Upgraded. +--------------------------+ Wed Dec 6 14:13:48 UTC 2017 a/kernel-generic-4.9.67-x86_64-1.txz: Upgraded. a/kernel-huge-4.9.67-x86_64-1.txz: Upgraded. a/kernel-modules-4.9.67-x86_64-1.txz: Upgraded. ap/cups-filters-1.17.9-x86_64-2.txz: Rebuilt. Recompiled against poppler-0.62.0. ap/sqlite-3.21.0-x86_64-2.txz: Rebuilt. Recompiled against icu4c-60.1. d/kernel-headers-4.9.67-x86-1.txz: Upgraded. d/python-setuptools-38.2.4-x86_64-1.txz: Upgraded. d/subversion-1.9.7-x86_64-2.txz: Rebuilt. Recompiled against icu4c-60.1. k/kernel-source-4.9.67-noarch-1.txz: Upgraded. kde/calligra-2.9.11-x86_64-17.txz: Rebuilt. Recompiled against icu4c-60.1 and poppler-0.62.0. kde/kdepimlibs-4.14.10-x86_64-4.txz: Rebuilt. Recompiled against libical-3.0.1. l/apr-util-1.6.1-x86_64-2.txz: Rebuilt. Recompiled against icu4c-60.1. l/boost-1.65.1-x86_64-2.txz: Rebuilt. Recompiled against icu4c-60.1. l/eigen3-3.2.10-x86_64-1.txz: Upgraded. l/gmime-3.0.5-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/gvfs-1.34.1-x86_64-2.txz: Rebuilt. Recompiled against icu4c-60.1. l/harfbuzz-1.7.2-x86_64-1.txz: Upgraded. Compiled against icu4c-60.1. l/icu4c-60.1-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/libgpod-0.8.3-x86_64-3.txz: Rebuilt. Recompiled against icu4c-60.1. l/libical-3.0.1-x86_64-1.txz: Upgraded. Shared library .so-version bump. Compiled against icu4c-60.1. l/libsodium-1.0.15-x86_64-1.txz: Added. l/libvisio-0.1.6-x86_64-1.txz: Upgraded. Compiled against icu4c-60.1. l/poppler-0.62.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/raptor2-2.0.15-x86_64-3.txz: Rebuilt. Recompiled against icu4c-60.1. n/NetworkManager-1.10.0-x86_64-2.txz: Rebuilt. Recompiled against icu4c-60.1. n/autofs-5.1.3-x86_64-2.txz: Rebuilt. Fixed incorrect /etc/default/autofs.{,new}. Thanks to alienBOB. n/bluez-5.47-x86_64-2.txz: Rebuilt. Recompiled against icu4c-60.1. Recompiled against libical-3.0.1. n/dovecot-2.2.33.2-x86_64-3.txz: Rebuilt. Recompiled against icu4c-60.1. n/httpd-2.4.29-x86_64-2.txz: Rebuilt. Recompiled against icu4c-60.1. n/php-7.2.0-x86_64-2.txz: Upgraded. Upgraded from php-5.6.32. Compiled against icu4c-60.1. Compiled against libsodium-1.0.15. n/postfix-3.2.4-x86_64-3.txz: Rebuilt. Recompiled against icu4c-60.1. n/tin-2.4.1-x86_64-2.txz: Rebuilt. Recompiled against icu4c-60.1. n/whois-5.2.18-x86_64-2.txz: Rebuilt. Ship the mkpasswd program. Thanks to Adrien Nader. t/texlive-2017.171108-x86_64-2.txz: Rebuilt. Recompiled against icu4c-60.1. tcl/expect-5.45.3-x86_64-2.txz: Rebuilt. Don't install the mkpasswd example program, which is inferior to the version shipped with the whois sources. xap/network-manager-applet-1.8.6-x86_64-2.txz: Rebuilt. Recompiled against icu4c-60.1. xap/pan-0.143-x86_64-2.txz: Rebuilt. Recompiled against gmime-3.0.5. xfce/orage-4.12.1-x86_64-4.txz: Rebuilt. Recompiled against icu4c-60.1. Recompiled against libical-3.0.1. xfce/tumbler-0.2.0-x86_64-3.txz: Rebuilt. Recompiled against poppler-0.62.0. xfce/xfce4-screenshooter-1.8.2-x86_64-3.txz: Rebuilt. Recompiled against icu4c-60.1. xfce/xfce4-weather-plugin-0.8.10-x86_64-2.txz: Rebuilt. Recompiled against icu4c-60.1. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. testing/packages/linux-4.14.4/kernel-generic-4.14.4-x86_64-1.txz: Upgraded. testing/packages/linux-4.14.4/kernel-headers-4.14.4-x86-1.txz: Upgraded. testing/packages/linux-4.14.4/kernel-huge-4.14.4-x86_64-1.txz: Upgraded. testing/packages/linux-4.14.4/kernel-modules-4.14.4-x86_64-1.txz: Upgraded. testing/packages/linux-4.14.4/kernel-source-4.14.4-noarch-1.txz: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Mon Dec 4 14:04:45 UTC 2017 xap/pan-0.143-x86_64-1.txz: Upgraded. +--------------------------+ Sun Dec 3 22:42:47 UTC 2017 a/btrfs-progs-v4.14-x86_64-1.txz: Upgraded. a/logrotate-3.13.0-x86_64-1.txz: Upgraded. a/pciutils-3.5.6-x86_64-1.txz: Upgraded. a/reiserfsprogs-3.6.27-x86_64-1.txz: Upgraded. a/xfsprogs-4.14.0-x86_64-1.txz: Upgraded. ap/itstool-2.0.4-x86_64-1.txz: Upgraded. ap/mariadb-10.2.11-x86_64-2.txz: Rebuilt. Removed a Darwin-only symbol from the TOKUDB_OK cmake test to fix TokuDB. ap/mpg123-1.25.8-x86_64-1.txz: Upgraded. ap/xfsdump-3.1.8-x86_64-1.txz: Upgraded. d/nasm-2.13.02-x86_64-1.txz: Upgraded. l/M2Crypto-0.27.0-x86_64-1.txz: Upgraded. l/babl-0.1.38-x86_64-1.txz: Upgraded. l/python-six-1.11.0-x86_64-1.txz: Upgraded. l/shared-mime-info-1.9-x86_64-1.txz: Upgraded. n/autofs-5.1.3-x86_64-1.txz: Upgraded. n/getmail-5.4-x86_64-1.txz: Upgraded. n/sshfs-2.10-x86_64-1.txz: Upgraded. n/traceroute-2.1.0-x86_64-1.txz: Upgraded. xfce/xfce4-terminal-0.8.6-x86_64-2.txz: Rebuilt. Applied upstream patch to add utempter support. Thanks to Robby Workman. +--------------------------+ Sat Dec 2 20:32:45 UTC 2017 We're moving back to the 4.9.x kernel series in the main tree until we can figure out a fix for unstable 4.14.x kernels (especially on 32-bit). Guessing it's probably going to be fixable with .config changes, since a greatly simplified .config is stable. Meanwhile, the latest 4.14.x kernels can now be found in the testing/ directory. a/kernel-firmware-20171130git-noarch-1.txz: Upgraded. a/kernel-generic-4.9.66-x86_64-1.txz: Upgraded. a/kernel-huge-4.9.66-x86_64-1.txz: Upgraded. a/kernel-modules-4.9.66-x86_64-1.txz: Upgraded. ap/soma-2.12.3-noarch-1.txz: Upgraded. d/gdb-8.0.1-x86_64-3.txz: Rebuilt. Compiled --without-guile until guile-2.2 support is fixed. d/guile-2.2.3-x86_64-1.txz: Upgraded. Shared library .so-version bump. d/kernel-headers-4.9.66-x86-1.txz: Upgraded. d/make-4.2.1-x86_64-2.txz: Rebuilt. Recompiled against libguile-2.2. d/mercurial-4.4.2-x86_64-1.txz: Upgraded. k/kernel-source-4.9.66-noarch-1.txz: Upgraded. l/adwaita-icon-theme-3.26.1-noarch-1.txz: Upgraded. l/fftw-3.3.7-x86_64-1.txz: Upgraded. l/libunistring-0.9.8-x86_64-1.txz: Upgraded. l/libzip-1.3.2-x86_64-2.txz: Rebuilt. Restored missing zipconf.h. Thanks to orbea. n/gnutls-3.6.1-x86_64-2.txz: Rebuilt. Recompiled against libguile-2.2. n/stunnel-5.44-x86_64-1.txz: Upgraded. x/xf86-video-vboxvideo-1.0.0-x86_64-1.txz: Added. xap/mozilla-firefox-57.0.1-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. testing/packages/linux-4.14.3/kernel-generic-4.14.3-x86_64-1.txz: Added. testing/packages/linux-4.14.3/kernel-headers-4.14.3-x86-1.txz: Added. testing/packages/linux-4.14.3/kernel-huge-4.14.3-x86_64-1.txz: Added. testing/packages/linux-4.14.3/kernel-modules-4.14.3-x86_64-1.txz: Added. testing/packages/linux-4.14.3/kernel-source-4.14.3-noarch-1.txz: Added. testing/packages/php-7.2.0-x86_64-1.txz: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Wed Nov 29 21:48:33 UTC 2017 n/curl-7.57.0-x86_64-1.txz: Upgraded. This update fixes security issues: SSL out of buffer access FTP wildcard out of bounds read NTLM buffer overflow via integer overflow For more information, see: https://curl.haxx.se/docs/adv_2017-af0a.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8818 https://curl.haxx.se/docs/adv_2017-ae72.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8817 https://curl.haxx.se/docs/adv_2017-12e7.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8816 (* Security fix *) +--------------------------+ Wed Nov 29 08:15:09 UTC 2017 a/coreutils-8.28-x86_64-2.txz: Rebuilt. Removed ancient (1992) aliases "dir, vdir, d, v" from the profile scripts. a/lzlib-1.9-x86_64-1.txz: Added. a/plzip-1.6-x86_64-1.txz: Added. ap/man-1.6g-x86_64-3.txz: Removed. ap/man-db-2.7.6.1-x86_64-1.txz: Added. This package replaces the good old man package. Thanks to B. Watson. ap/man-pages-4.14-noarch-2.txz: Rebuilt. Don't ship a whatis database, since man-db doesn't need one. ap/mariadb-10.2.11-x86_64-1.txz: Upgraded. d/git-2.15.1-x86_64-1.txz: Upgraded. d/python-setuptools-38.2.3-x86_64-1.txz: Upgraded. x/libXcursor-1.1.15-x86_64-1.txz: Upgraded. Fix heap overflows when parsing malicious files. (CVE-2017-16612) It is possible to trigger heap overflows due to an integer overflow while parsing images and a signedness issue while parsing comments. The integer overflow occurs because the chosen limit 0x10000 for dimensions is too large for 32 bit systems, because each pixel takes 4 bytes. Properly chosen values allow an overflow which in turn will lead to less allocated memory than needed for subsequent reads. The signedness bug is triggered by reading the length of a comment as unsigned int, but casting it to int when calling the function XcursorCommentCreate. Turning length into a negative value allows the check against XCURSOR_COMMENT_MAX_LEN to pass, and the following addition of sizeof (XcursorComment) + 1 makes it possible to allocate less memory than needed for subsequent reads. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16612 (* Security fix *) x/libXfont-1.5.3-x86_64-1.txz: Removed. x/libXfont2-2.0.3-x86_64-1.txz: Upgraded. Open files with O_NOFOLLOW. (CVE-2017-16611) A non-privileged X client can instruct X server running under root to open any file by creating own directory with "fonts.dir", "fonts.alias" or any font file being a symbolic link to any other file in the system. X server will then open it. This can be issue with special files such as /dev/watchdog (which could then reboot the system). For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16611 (* Security fix *) x/xfs-1.2.0-x86_64-1.txz: Upgraded. testing/packages/php-7.1.12-x86_64-2.txz: Rebuilt. Load mysqlnd.so before mysqli.so in etc/php.ini*. Thanks to KewlCat. Load libphp7.so in mod_php.conf.example. Thanks to Willy Sudiarto Raharjo. +--------------------------+ Tue Nov 28 06:20:03 UTC 2017 a/eudev-3.2.5-x86_64-1.txz: Upgraded. a/kernel-firmware-20171126git-noarch-1.txz: Upgraded. Remove /lib/firmware/iwlwifi-*-34.ucode until after the next kernel release. a/usbutils-009-x86_64-1.txz: Upgraded. ap/hplip-3.17.11-x86_64-2.txz: Rebuilt. Fixed a few Python scripts that did not have a proper python3 shebang. Thanks to dugan. ap/lxc-2.0.9-x86_64-1.txz: Upgraded. ap/man-pages-4.14-noarch-1.txz: Upgraded. ap/mc-4.8.20-x86_64-1.txz: Upgraded. ap/nano-2.9.1-x86_64-1.txz: Upgraded. kde/konsole-4.14.3-x86_64-3.txz: Rebuilt. Fixed scrollUp behavior. Thanks to Andrzej Telszewski. l/QScintilla-2.10.2-x86_64-1.txz: Upgraded. l/ffmpeg-3.4-x86_64-2.txz: Rebuilt. Recompiled against libva.so.2.0.0. l/sip-4.19.6-x86_64-1.txz: Upgraded. l/talloc-2.1.10-x86_64-1.txz: Added. l/tdb-1.3.15-x86_64-1.txz: Added. l/tevent-0.9.34-x86_64-1.txz: Added. n/cyrus-sasl-2.1.26-x86_64-3.txz: Rebuilt. Use /dev/urandom rather than /dev/random to avoid entropy starvation. Thanks to mr.spuratic. n/dhcpcd-6.11.5-x86_64-2.txz: Rebuilt. Use hostname_short in dhcpcd.conf. Thanks to KewlCat. n/network-scripts-15.0-noarch-4.txz: Rebuilt. Script cleanups from Jakub Jankowski: netconfig: Add comment to netconfig-generated rc.inet1.conf rc.inet1: Check for iface in /sys/class/net, not /proc/net/dev rc.inet1: Remove unnecessary unset num rc.inet1: Factor DEBUG_ETH_UP logging to a separate function rc.inet1: Use ${array[*]} not ${array[@]} to produce a string rc.inet1: Avoid de-/configuring ifaces with indexes >=MAXNICS rc.inet1: Avoid code duplication by combining case/esac rc.inet1: Add missing 'dev' keyword rc.inet1: Remove unnecessary $(echo) rc.inet1*: Simplify virtif_* code, add note to example config rc.inet1: Test for loopback being "state UNKNOWN" too. rc.inet1: Use simple test (-n/-z) for non-empty/empty rc.inet1: Replace [ test1 -a test2 ] with [ test1 ] && [ test2 ] n/openldap-client-2.4.45-x86_64-1.txz: Upgraded. n/samba-4.7.3-x86_64-1.txz: Upgraded. This is a security release in order to address the following defects: CVE-2017-14746 (Use-after-free vulnerability.) All versions of Samba from 4.0.0 onwards are vulnerable to a use after free vulnerability, where a malicious SMB1 request can be used to control the contents of heap memory via a deallocated heap pointer. It is possible this may be used to compromise the SMB server. CVE-2017-15275 (Server heap memory information leak.) All versions of Samba from 3.6.0 onwards are vulnerable to a heap memory information leak, where server allocated heap memory may be returned to the client without being cleared. For more information, see: https://www.samba.org/samba/security/CVE-2017-14746.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14746 https://www.samba.org/samba/security/CVE-2017-15275.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15275 (* Security fix *) x/intel-vaapi-driver-2.0.0-x86_64-1.txz: Added. This is the replacement for libva-intel-driver (renamed upstream). x/libva-2.0.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. x/libva-intel-driver-1.7.3-x86_64-1.txz: Removed. x/libva-utils-2.0.0-x86_64-1.txz: Added. x/mesa-17.2.6-x86_64-1.txz: Upgraded. x/xkeyboard-config-2.22-noarch-1.txz: Upgraded. xap/gparted-0.30.0-x86_64-1.txz: Upgraded. xap/xine-lib-1.2.8-x86_64-4.txz: Rebuilt. Recompiled against libva.so.2.0.0. xfce/Thunar-1.6.13-x86_64-1.txz: Upgraded. testing/packages/php-7.1.12-x86_64-1.txz: Added. +--------------------------+ Sat Nov 25 07:44:07 UTC 2017 a/kernel-firmware-20171124git-noarch-1.txz: Upgraded. a/kernel-generic-4.14.2-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.2-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.2-x86_64-1.txz: Upgraded. ap/hplip-3.17.11-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.2-x86-1.txz: Upgraded. d/rust-1.22.1-x86_64-1.txz: Upgraded. k/kernel-source-4.14.2-noarch-1.txz: Upgraded. l/libclc-20171115_3d994f2-x86_64-1.txz: Upgraded. l/libfakekey-0.3-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-52.5.0-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Wed Nov 22 05:27:06 UTC 2017 a/kernel-generic-4.14.1-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.1-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.1-x86_64-1.txz: Upgraded. a/mt-st-1.3-x86_64-1.txz: Upgraded. a/shadow-4.2.1-x86_64-3.txz: Rebuilt. Patched to display the short hostname on the login prompt. a/sysvinit-scripts-2.1-noarch-3.txz: Rebuilt. On second thought, let's keep using the short hostname on the login prompt like we always have before. I'm with GazL on this one. :-) d/kernel-headers-4.14.1-x86-1.txz: Upgraded. k/kernel-source-4.14.1-noarch-1.txz: Upgraded. n/ntp-4.2.8p10-x86_64-3.txz: Rebuilt. Fixed a missing "}" in the logrotate file. Thanks to Jakub Jankowski. xap/blueman-2.0.5-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. SeTEFI: Don't use fdisk to detect gpt (it's not neccessary). Thanks to Didier Spaier. SetEFI: Scan /dev/mmcblk[0-9]. Thanks to zerouno. probe: Filter another possible EFI partition label. Thanks to Didier Spaier. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. SeTEFI: Don't use fdisk to detect gpt (it's not neccessary). Thanks to Didier Spaier. SetEFI: Scan /dev/mmcblk[0-9]. Thanks to zerouno. probe: Filter another possible EFI partition label. Thanks to Didier Spaier. +--------------------------+ Tue Nov 21 05:05:41 UTC 2017 a/elilo-3.16-x86_64-5.txz: Rebuilt. Double the allowable kernel image size from 8MB to 16MB. Thanks to Didier Spaier. Patched eliloconfig to work with MMC devices. Thanks to zerouno. a/sysvinit-scripts-2.1-noarch-2.txz: Rebuilt. inittab: Have agetty display the FQDN, since /bin/login does. d/cmake-3.10.0-x86_64-1.txz: Upgraded. l/elfutils-0.170-x86_64-1.txz: Upgraded. Moved the shared libraries to /lib{,64}. Thanks to ivandi. l/libgsf-1.14.42-x86_64-1.txz: Upgraded. l/libtiff-4.0.9-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5318 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10095 (* Security fix *) l/libxml2-2.9.7-x86_64-1.txz: Upgraded. l/libxslt-1.1.32-x86_64-1.txz: Upgraded. l/libzip-1.3.2-x86_64-1.txz: Upgraded. l/orc-0.4.28-x86_64-1.txz: Upgraded. n/dovecot-2.2.33.2-x86_64-2.txz: Rebuilt. rc.dovecot: Use doveadm to shut down the service. Add status option. Thanks to Thom1b. n/gnupg2-2.2.3-x86_64-1.txz: Upgraded. n/iptables-1.6.1-x86_64-2.txz: Rebuilt. n/libmnl-1.0.4-x86_64-2.txz: Rebuilt. Moved the shared library to /lib{,64}. Thanks to ivandi. n/libnetfilter_queue-1.0.3-x86_64-1.txz: Upgraded. n/libnftnl-1.0.8-x86_64-1.txz: Upgraded. Shared library .so-version bump. n/nettle-3.4-x86_64-1.txz: Upgraded. n/network-scripts-15.0-noarch-3.txz: Rebuilt. rc.inet1, rc.inet1.conf: Fix DHCP timeout which was changed from 15 seconds back to the 14.2 default of 10 seconds. Thanks to Eduard Rozenberg. n/nftables-0.8-x86_64-1.txz: Upgraded. +--------------------------+ Sun Nov 19 03:36:30 UTC 2017 a/eudev-3.2.4-x86_64-3.txz: Rebuilt. Blacklist all EDAC modules by default as they make some systems unstable. a/kernel-generic-4.14.0-x86_64-2.txz: Upgraded. a/kernel-huge-4.14.0-x86_64-2.txz: Upgraded. a/kernel-modules-4.14.0-x86_64-2.txz: Upgraded. a/sysvinit-scripts-2.1-noarch-1.txz: Upgraded. rc.M: Don't try to run rc.sendmail unless /usr/sbin/makemap is present. rc.M: Don't try to run rc.postfix unless /usr/sbin/postdrop is present. rc.S: Source /etc/default/adjtimex. ap/cgmanager-0.41-x86_64-3.txz: Rebuilt. Prevent the rc.cgmanger script from killing itself at shutdown. ap/joe-4.5-x86_64-1.txz: Upgraded. ap/nano-2.9.0-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.0-x86-2.txz: Upgraded. k/kernel-source-4.14.0-noarch-2.txz: Upgraded. -BOOTPARAM_HARDLOCKUP_PANIC n -BOOTPARAM_HARDLOCKUP_PANIC_VALUE 0 -BOOTPARAM_SOFTLOCKUP_PANIC n -BOOTPARAM_SOFTLOCKUP_PANIC_VALUE 0 -HARDLOCKUP_DETECTOR_PERF y -LOCKUP_DETECTOR y BLK_DEV_IO_TRACE y -> n BUG_ON_DATA_CORRUPTION y -> n DEBUG_LIST y -> n DRM_AMDGPU_CIK n -> y DRM_AMDGPU_SI n -> y EDAC_DECODE_MCE y -> m HARDLOCKUP_DETECTOR y -> n SOFTLOCKUP_DETECTOR y -> n n/postfix-3.2.4-x86_64-2.txz: Rebuilt. Make the start message in postfix-script look a bit more correct for when it shows up during boot. n/yptools-2.14-x86_64-9.txz: Rebuilt. rc.yp: Fix setting nisdomainname. extra/tigervnc/tigervnc-1.8.0-x86_64-3.txz: Rebuilt. Rebuilt against xorg-server-1.19.5. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Nov 17 06:49:47 UTC 2017 n/network-scripts-15.0-noarch-2.txz: Rebuilt. netconfig: Added $GATEWAY that was accidentally dropped from the script. Thanks to Robby Workman for pointing out my mistake. +--------------------------+ Fri Nov 17 00:56:25 UTC 2017 a/dbus-1.12.2-x86_64-1.txz: Upgraded. a/eject-2.1.5-x86_64-4.txz: Removed. a/etc-15.0-x86_64-1.txz: Upgraded. /etc/passwd: Added postfix (UID 91), postdrop (UID 92), dovecot (UID 94), and dovenull (UID 95). /etc/group: Added postfix (GID 91), postdrop (GID 92), dovecot (GID 94), and dovenull (GID 95). a/hostname-3.18-x86_64-1.txz: Added. This is the latest version of the hostname utility, broken out into a new package to get rid of duplication between util-linux and net-tools. a/kernel-firmware-20171109git-noarch-1.txz: Upgraded. a/kernel-generic-4.14.0-x86_64-1.txz: Upgraded. a/kernel-huge-4.14.0-x86_64-1.txz: Upgraded. a/kernel-modules-4.14.0-x86_64-1.txz: Upgraded. a/lvm2-2.02.176-x86_64-1.txz: Upgraded. a/pkgtools-15.0-noarch-1.txz: Upgraded. Added Postfix and Dovecot to the services setup menu. a/smartmontools-6.6-x86_64-1.txz: Upgraded. a/sysvinit-scripts-2.0-noarch-39.txz: Rebuilt. rc.M: Set the hostname returned by "hostname" with no arguments to be the FQDN (Fully Qualified Domain Name). Technically, it should work either way (and mostly does), but in practice there are a few things that either refuse to work (mostly commercial software), or require additional configuration if hostname returns the short hostname rather than the FQDN. rc.M: If rc.sendmail is not present and executable, try rc.postfix. rc.M: Run rc.dovecot if it is executable. rc.*: Don't source any init scripts. a/time-1.8-x86_64-1.txz: Upgraded. a/util-linux-2.31-x86_64-2.txz: Rebuilt. Don't add hostname, domainname, dnsdomainname, nisdomainname, or ypdomainname to the util-linux package. These are provided by the new hostname package. Allow the eject utility to build. ap/alsa-utils-1.1.5-x86_64-1.txz: Upgraded. ap/linuxdoc-tools-0.9.72-x86_64-4.txz: Rebuilt. Upgraded to DocBook XSL Stylesheets 1.79.2. Thanks to Stuart Winter. Applied patch to fix bus error with xsltproc. Thanks to ecd102 on LQ. ap/soma-2.11.3-noarch-1.txz: Upgraded. ap/sysstat-11.6.1-x86_64-1.txz: Upgraded. d/Cython-0.27.3-x86_64-1.txz: Upgraded. d/cmake-3.9.6-x86_64-1.txz: Upgraded. d/kernel-headers-4.14.0-x86-1.txz: Upgraded. d/re2c-1.0.3-x86_64-1.txz: Upgraded. d/scons-3.0.1-x86_64-1.txz: Upgraded. d/strace-4.20-x86_64-1.txz: Upgraded. k/kernel-source-4.14.0-noarch-1.txz: Upgraded. kde/kdelibs-4.14.38-x86_64-1.txz: Upgraded. l/SDL2_image-2.0.2-x86_64-1.txz: Upgraded. l/alsa-lib-1.1.5-x86_64-1.txz: Upgraded. l/alsa-plugins-1.1.5-x86_64-1.txz: Upgraded. l/at-spi2-atk-2.26.1-x86_64-1.txz: Upgraded. l/at-spi2-core-2.26.2-x86_64-1.txz: Upgraded. l/dconf-editor-3.26.2-x86_64-1.txz: Upgraded. l/glib-networking-2.54.1-x86_64-1.txz: Upgraded. l/glib2-2.54.2-x86_64-1.txz: Upgraded. l/gtk+2-2.24.31-x86_64-3.txz: Rebuilt. Added more patches from upstream git. Thanks to Robby Workman. l/gtk+3-3.22.26-x86_64-1.txz: Upgraded. l/harfbuzz-1.7.1-x86_64-1.txz: Upgraded. l/libplist-2.0.0-x86_64-1.txz: Upgraded. This update fixes several security issues. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6440 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6439 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6438 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6437 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6436 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6435 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5836 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5835 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5834 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5545 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5209 (* Security fix *) l/libsoup-2.60.2-x86_64-1.txz: Upgraded. l/mozilla-nss-3.34-x86_64-1.txz: Upgraded. Upgraded to nss-3.34 and nspr-4.17. l/pango-1.40.14-x86_64-1.txz: Upgraded. l/pygobject3-3.26.1-x86_64-1.txz: Upgraded. l/sip-4.19.5-x86_64-1.txz: Upgraded. l/vte-0.50.2-x86_64-1.txz: Upgraded. n/NetworkManager-1.10.0-x86_64-1.txz: Upgraded. Use the FQDN (Fully Qualified Domain Name) for the hostname as reported by "hostname" with no arguments. n/cyrus-sasl-2.1.26-x86_64-2.txz: Rebuilt. Create /etc/sasl2 configuration directory. n/dovecot-2.2.33.2-x86_64-1.txz: Added. This will be the new IMAP/POP3 server in the next Slackware release. Thanks to Alan Hicks, Mario Preksavec, and /dev/rob0 for assistance. n/ethtool-4.13-x86_64-1.txz: Upgraded. n/gnupg2-2.2.2-x86_64-1.txz: Upgraded. n/imapd-2.21-x86_64-1.txz: Removed. n/inetd-1.79s-x86_64-10.txz: Rebuilt. Do not run inetd (rc.inetd is now shipped non-executable), or open any ports in inetd.conf by default. n/iproute2-4.14.1-x86_64-1.txz: Upgraded. n/libmilter-8.15.2-x86_64-1.txz: Added. This is a compile-time dependency of Postfix. n/net-tools-20170208_479bb4a-x86_64-1.txz: Upgraded. Don't include hostname, domainname, dnsdomainname, nisdomainname, or ypdomainname. These are provided by the new hostname package. n/network-scripts-15.0-noarch-1.txz: Upgraded. Switch to using ip instead of ifconfig and route. Supports create/destroy of virtual tun/tap interfaces and adding them to bridges. Supports additional IP addresses added to interfaces in a way that's compatible with net-tools. Thanks to Robby Workman. n/postfix-3.2.4-x86_64-1.txz: Added. This will be the default MTA in the next Slackware release. Thanks to Alan Hicks, Mario Preksavec, and /dev/rob0 for assistance. n/samba-4.6.10-x86_64-1.txz: Upgraded. n/sendmail-8.15.2-x86_64-2.txz: Removed. Moved to /extra. n/sendmail-cf-8.15.2-noarch-2.txz: Removed. Moved to /extra. n/stunnel-5.43-x86_64-1.txz: Upgraded. n/wireless-tools-29-x86_64-10.txz: Rebuilt. Use ip instead of ifconfig. Thanks to Robby Workman. t/texlive-2017.171108-x86_64-1.txz: Upgraded. Fixes, cleanups, and logging support in texmf_get.sh. Support for many more languages. More manpages and info files included. TeX packages moved to texlive-extra (hosted on slackbuilds.org): cc-pl, cmexb, cs, ghsystem, kerkis, pl, quran, tipa, and udesoftec. Tex packages excluded as obsolete: aleph and its support files, and cslatex. PDF files removed from koma-script docs. Compiled with --disable-dump-share for better performance. TeXLive fonts are now optionally available to other system applications through a fontconfig file (/etc/fonts/conf.avail/09-texlive.conf). Thanks to Johannes Schoepfer for all of these improvements. x/bdftopcf-1.1-x86_64-1.txz: Upgraded. x/intel-gpu-tools-1.20-x86_64-1.txz: Upgraded. x/libXfont-1.5.3-x86_64-1.txz: Upgraded. x/libdrm-2.4.88-x86_64-1.txz: Upgraded. x/libpciaccess-0.14-x86_64-1.txz: Upgraded. x/mesa-17.2.5-x86_64-1.txz: Upgraded. xap/gnuplot-5.2.2-x86_64-1.txz: Upgraded. xap/gucharmap-10.0.3-x86_64-1.txz: Upgraded. xap/mozilla-firefox-57.0-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefox.html (* Security fix *) xap/network-manager-applet-1.8.6-x86_64-1.txz: Upgraded. xap/xpaint-2.10.2-x86_64-1.txz: Upgraded. extra/bash-completion/bash-completion-2.7-noarch-2.txz: Rebuilt. Applied some patches from upstream git, including one that unclobbers the rfkill completion from util-linux. Don't clobber mount and umount completions from util-linux. Thanks to ill323 on LQ for the heads-up. extra/sendmail/sendmail-8.15.2-x86_64-2.txz: Added. Moved here from the N series. This is still a solid choice for an MTA, and probably the most flexible (although it can be difficult to configure - it has been said that the M4 macro language resembles line noise). Thanks to Eric Allman and everyone at Sendmail for all the years of work. extra/sendmail/sendmail-cf-8.15.2-noarch-2.txz: Added. Moved here from the N series. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Nov 3 18:42:23 UTC 2017 a/openssl-solibs-1.0.2m-x86_64-1.txz: Upgraded. +--------------------------+ Fri Nov 3 03:31:56 UTC 2017 a/sysvinit-scripts-2.0-noarch-38.txz: Rebuilt. Check that rc.mysqld is executable before attempting to shut down the database server. Checking for the mysql.pid is not enough, as /var/run/mysql might be bind mounted into a container. Thanks to Jakub Jankowski. ap/cups-2.2.6-x86_64-1.txz: Upgraded. ap/mariadb-10.2.10-x86_64-1.txz: Upgraded. This update fixes bugs and security issues. For more information, see: https://jira.mariadb.org/browse/MDEV-13819 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10268 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10378 (* Security fix *) l/expat-2.2.5-x86_64-1.txz: Upgraded. l/gegl-0.2.0-x86_64-6.txz: Rebuilt. Replaced deprecated functions in ff-load module. Thanks to Theodore Kilgore. n/openssl-1.0.2m-x86_64-1.txz: Upgraded. This update fixes a security issue: There is a carry propagating bug in the x64 Montgomery squaring procedure. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen. For more information, see: https://www.openssl.org/news/secadv/20171102.txt https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3736 (* Security fix *) +--------------------------+ Tue Oct 31 23:53:38 UTC 2017 a/aaa_elflibs-14.2-x86_64-32.txz: Rebuilt. Added libatomic, and updated versions of libcurl, libexpat, libglib-2.0, libgmodule-2.0, libgobject-2.0, libgthread-2.0, libidn2, libmpfr, and libpng16. x/libdrm-2.4.87-x86_64-1.txz: Upgraded. x/mesa-17.2.4-x86_64-1.txz: Upgraded. +--------------------------+ Fri Oct 27 20:34:35 UTC 2017 ap/rpm-4.14.0-x86_64-2.txz: Rebuilt. Recompiled to fix linking to old library versions. Thanks to USUARIONUEVO. l/SDL2_mixer-2.0.2-x86_64-1.txz: Upgraded. l/libmcs-0.7.2-x86_64-1.txz: Removed. l/libmowgli-1.0.0-x86_64-1.txz: Removed. l/pyrex-0.9.9-x86_64-2.txz: Removed. n/php-5.6.32-x86_64-1.txz: Upgraded. Several security bugs were fixed in this release: Out of bounds read in timelib_meridian(). The arcfour encryption stream filter crashes PHP. Applied upstream patch for PCRE (CVE-2016-1283). For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1283 (* Security fix *) n/wget-1.19.2-x86_64-1.txz: Upgraded. This update fixes stack and heap overflows in in HTTP protocol handling. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13089 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13090 (* Security fix *) +--------------------------+ Wed Oct 25 19:09:26 UTC 2017 a/btrfs-progs-v4.13.3-x86_64-1.txz: Upgraded. a/e2fsprogs-1.43.7-x86_64-1.txz: Upgraded. a/gawk-4.2.0-x86_64-2.txz: Rebuilt. Put the profile scripts in the right place. Thanks to gmgf. a/glibc-zoneinfo-2017c-noarch-1.txz: Upgraded. ap/hplip-3.17.10-x86_64-1.txz: Upgraded. ap/rpm-4.14.0-x86_64-1.txz: Upgraded. ap/sqlite-3.21.0-x86_64-1.txz: Upgraded. d/git-2.14.2-x86_64-1.txz: Upgraded. d/scons-3.0.0-x86_64-1.txz: Upgraded. l/SDL2-2.0.7-x86_64-1.txz: Upgraded. l/apr-1.6.3-x86_64-1.txz: Upgraded. l/apr-util-1.6.1-x86_64-1.txz: Upgraded. l/atk-2.26.1-x86_64-1.txz: Upgraded. l/imagemagick-6.9.9_20-x86_64-1.txz: Upgraded. l/lame-3.100-x86_64-1.txz: Upgraded. l/libgphoto2-2.5.16-x86_64-1.txz: Upgraded. l/libsoup-2.60.1-x86_64-1.txz: Upgraded. l/polkit-qt-1-0.112.0-x86_64-1.txz: Upgraded. n/ModemManager-1.6.10-x86_64-1.txz: Upgraded. n/gnutls-3.6.1-x86_64-1.txz: Upgraded. n/httpd-2.4.29-x86_64-1.txz: Upgraded. n/irssi-1.0.5-x86_64-1.txz: Upgraded. This update fixes some remote denial of service issues. For more information, see: https://irssi.org/security/irssi_sa_2017_10.txt https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15228 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15227 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15721 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15723 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15722 (* Security fix *) tcl/expect-5.45.3-x86_64-1.txz: Upgraded. x/libdrm-2.4.85-x86_64-1.txz: Upgraded. xfce/xfce4-notifyd-0.4.0-x86_64-1.txz: Upgraded. xfce/xfce4-weather-plugin-0.8.10-x86_64-1.txz: Upgraded. This has a bugfix related to setting the location: https://bugzilla.xfce.org/show_bug.cgi?id=13877 +--------------------------+ Tue Oct 24 05:31:18 UTC 2017 a/util-linux-2.31-x86_64-1.txz: Upgraded. ap/screen-4.6.2-x86_64-1.txz: Upgraded. l/seamonkey-solibs-2.49.1-x86_64-1.txz: Upgraded. n/curl-7.56.1-x86_64-1.txz: Upgraded. This update fixes a security issue: IMAP FETCH response out of bounds read may cause a crash or information leak. For more information, see: https://curl.haxx.se/docs/adv_20171023.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000257 (* Security fix *) n/rfkill-0.5-x86_64-1.txz: Removed. xap/seamonkey-2.49.1-x86_64-1.txz: Upgraded. +--------------------------+ Fri Oct 20 04:44:44 UTC 2017 a/gawk-4.2.0-x86_64-1.txz: Upgraded. d/patchelf-0.9-x86_64-1.txz: Added. d/rust-1.21.0-x86_64-1.txz: Upgraded. Thanks to Stuart Winter for adding ARM compatibility to the build script, and to Andrew Clemons for help getting the 32-bit x86 build working again. l/ffmpeg-3.4-x86_64-1.txz: Upgraded. x/libdrm-2.4.84-x86_64-1.txz: Upgraded. x/mesa-17.2.3-x86_64-1.txz: Upgraded. +--------------------------+ Wed Oct 18 18:21:18 UTC 2017 ap/cups-2.2.5-x86_64-1.txz: Upgraded. n/wpa_supplicant-2.6-x86_64-2.txz: Rebuilt. This update includes patches to mitigate the WPA2 protocol issues known as "KRACK" (Key Reinstallation AttaCK), which may be used to decrypt data, hijack TCP connections, and to forge and inject packets. This is the list of vulnerabilities that are addressed here: CVE-2017-13077: Reinstallation of the pairwise encryption key (PTK-TK) in the 4-way handshake. CVE-2017-13078: Reinstallation of the group key (GTK) in the 4-way handshake. CVE-2017-13079: Reinstallation of the integrity group key (IGTK) in the 4-way handshake. CVE-2017-13080: Reinstallation of the group key (GTK) in the group key handshake. CVE-2017-13081: Reinstallation of the integrity group key (IGTK) in the group key handshake. CVE-2017-13082: Accepting a retransmitted Fast BSS Transition (FT) Reassociation Request and reinstalling the pairwise encryption key (PTK-TK) while processing it. CVE-2017-13084: Reinstallation of the STK key in the PeerKey handshake. CVE-2017-13086: reinstallation of the Tunneled Direct-Link Setup (TDLS) PeerKey (TPK) key in the TDLS handshake. CVE-2017-13087: reinstallation of the group key (GTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame. CVE-2017-13088: reinstallation of the integrity group key (IGTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame. For more information, see: https://www.krackattacks.com/ https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13077 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13078 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13079 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13080 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13081 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13082 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13084 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13086 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13087 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13088 (* Security fix *) x/libXfont2-2.0.2-x86_64-1.txz: Upgraded. This update is a collection of minor fixes since 2.0.1, including CVE-2017-13720 and CVE-2017-13722. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13720 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13722 (* Security fix *) x/libXres-1.2.0-x86_64-1.txz: Upgraded. Integer overflows may allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XResQueryClients and (2) XResQueryClientResources functions. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1988 (* Security fix *) x/xorg-server-1.19.5-x86_64-1.txz: Upgraded. This update fixes integer overflows and other possible security issues. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187 (* Security fix *) x/xorg-server-xephyr-1.19.5-x86_64-1.txz: Upgraded. x/xorg-server-xnest-1.19.5-x86_64-1.txz: Upgraded. x/xorg-server-xvfb-1.19.5-x86_64-1.txz: Upgraded. +--------------------------+ Tue Oct 10 18:08:31 UTC 2017 a/eudev-3.2.4-x86_64-2.txz: Rebuilt. Fixed a typo in configure.ac. Thanks to Robby Workman. a/lvm2-2.02.175-x86_64-1.txz: Upgraded. a/mkinitrd-1.4.11-x86_64-5.txz: Rebuilt. Save a copy of the command line used to create the initrd as "command_line" in /boot/initrd-tree/ and within the initrd itself. Also save a copy of /etc/mkinitrd.conf if it exists. ap/slackpkg-2.82.2-noarch-1.txz: Upgraded. Updated mirrors-x86*.sample to remove dead mirrors and clarify intent to use mirrors.slackware.com. Add /usr/share/vim/ and /var/yp/ to search path for .new files. Minor tweaks to default blacklist file. Minor tweaks to manual pages. Thanks to Robby Workman. ap/tmux-2.6-x86_64-1.txz: Upgraded. d/meson-0.43.0-x86_64-1.txz: Upgraded. d/perl-5.26.1-x86_64-3.txz: Rebuilt. Don't install a perllocal.pod with information on the vendor_perl bundled modules (that file is for local additions) -- ship the file as vendor_perl.pod instead. Thanks to Robby Workman. kde/perlqt-4.14.3-x86_64-5.txz: Rebuilt. Added support for QScintilla. Thanks to oneforall. l/ffmpeg-3.3.4-x86_64-2.txz: Rebuilt. Patched to build against openjpeg-2.3.0. Thanks to Matteo Bernardini. l/glib2-2.54.1-x86_64-2.txz: Rebuilt. Applied an upstream patch to fix a race condition. Thanks to Robby Workman. l/herqq-1.0.0-x86_64-1.txz: Removed. l/imagemagick-6.9.9_19-x86_64-1.txz: Upgraded. l/libnl3-3.4.0-x86_64-1.txz: Upgraded. n/lftp-4.8.3-x86_64-1.txz: Upgraded. +--------------------------+ Sat Oct 7 02:53:31 UTC 2017 a/btrfs-progs-v4.13.2-x86_64-1.txz: Upgraded. ap/texinfo-6.5-x86_64-2.txz: Rebuilt. Rebuilt for perl-5.26.1. d/perl-5.26.1-x86_64-2.txz: Rebuilt. Replaced Net-SMTP-SSL-1.04 (deprecated upstream) with libnet-3.10. Thanks to Matteo Bernardini. l/libxml2-2.9.6-x86_64-1.txz: Upgraded. l/libxslt-1.1.31-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-52.4.0-x86_64-1.txz: Upgraded. +--------------------------+ Fri Oct 6 06:32:32 UTC 2017 a/kernel-generic-4.9.53-x86_64-1.txz: Upgraded. a/kernel-huge-4.9.53-x86_64-1.txz: Upgraded. a/kernel-modules-4.9.53-x86_64-1.txz: Upgraded. ap/cups-filters-1.17.9-x86_64-1.txz: Upgraded. ap/ghostscript-9.22-x86_64-1.txz: Upgraded. ap/vim-8.0.1175-x86_64-1.txz: Upgraded. Compiled using libperl.so from perl-5.26.1. d/cmake-3.9.4-x86_64-1.txz: Upgraded. d/kernel-headers-4.9.53-x86-1.txz: Upgraded. d/perl-5.26.1-x86_64-1.txz: Upgraded. Added the following perl modules to support git send-email (thanks to Xsane): Authen-SASL-2.16, MIME-Base64-3.15, and Net-SMTP-SSL-1.04. d/python3-3.6.3-x86_64-1.txz: Upgraded. k/kernel-source-4.9.53-noarch-1.txz: Upgraded. KSM n -> y (thanks to ivandi) kde/perlkde-4.14.3-x86_64-4.txz: Rebuilt. Recompiled using libperl.so from perl-5.26.1. kde/perlqt-4.14.3-x86_64-4.txz: Rebuilt. Recompiled using libperl.so from perl-5.26.1. l/gtk+3-3.22.24-x86_64-1.txz: Upgraded. l/imagemagick-6.9.9_18-x86_64-1.txz: Upgraded. l/libmtp-1.1.14-x86_64-1.txz: Upgraded. l/librsvg-2.40.19-x86_64-1.txz: Upgraded. l/openjpeg-2.3.0-x86_64-1.txz: Upgraded. This update fixes security issues which may lead to a denial of service or possibly remote code execution. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9572 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9573 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9580 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9581 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12982 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14039 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14040 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14041 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14151 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14152 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14164 (* Security fix *) l/vte-0.50.1-x86_64-1.txz: Upgraded. n/curl-7.56.0-x86_64-1.txz: Upgraded. This update fixes a security issue: libcurl may read outside of a heap allocated buffer when doing FTP. For more information, see: https://curl.haxx.se/docs/adv_20171004.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000254 (* Security fix *) n/epic5-2.0.1-x86_64-2.txz: Rebuilt. Recompiled using libperl.so from perl-5.26.1. n/irssi-1.0.4-x86_64-2.txz: Rebuilt. Recompiled using libperl.so from perl-5.26.1. n/net-snmp-5.7.3-x86_64-6.txz: Rebuilt. Recompiled using libperl.so from perl-5.26.1. n/ntp-4.2.8p10-x86_64-2.txz: Rebuilt. Recompiled using libperl.so from perl-5.26.1. n/p11-kit-0.23.9-x86_64-1.txz: Upgraded. x/libinput-1.8.3-x86_64-1.txz: Upgraded. x/xorg-server-1.19.4-x86_64-1.txz: Upgraded. This update fixes two security issues: Xext/shm: Validate shmseg resource id, otherwise it can belong to a non-existing client and abort X server with FatalError "client not in use", or overwrite existing segment of another existing client. Generating strings for XKB data used a single shared static buffer, which offered several opportunities for errors. Use a ring of resizable buffers instead, to avoid problems when strings end up longer than anticipated. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723 (* Security fix *) x/xorg-server-xephyr-1.19.4-x86_64-1.txz: Upgraded. x/xorg-server-xnest-1.19.4-x86_64-1.txz: Upgraded. x/xorg-server-xvfb-1.19.4-x86_64-1.txz: Upgraded. xap/hexchat-2.12.4-x86_64-2.txz: Rebuilt. Recompiled using libperl.so from perl-5.26.1. Built with --enable-python=python3. xap/pidgin-2.12.0-x86_64-2.txz: Rebuilt. Recompiled using libperl.so from perl-5.26.1. xap/vim-gvim-8.0.1175-x86_64-1.txz: Upgraded. Compiled using libperl.so from perl-5.26.1. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue Oct 3 21:06:59 UTC 2017 ap/gphoto2-2.5.15-x86_64-1.txz: Upgraded. l/dconf-0.26.1-x86_64-1.txz: Upgraded. l/dconf-editor-3.26.1-x86_64-1.txz: Upgraded. l/gdk-pixbuf2-2.36.11-x86_64-1.txz: Upgraded. l/glib2-2.54.1-x86_64-1.txz: Upgraded. l/gobject-introspection-1.54.1-x86_64-1.txz: Upgraded. l/gtk+3-3.22.22-x86_64-1.txz: Upgraded. l/gvfs-1.34.1-x86_64-1.txz: Upgraded. l/libgphoto2-2.5.15-x86_64-1.txz: Upgraded. l/seamonkey-solibs-2.48-x86_64-3.txz: Rebuilt. n/openssh-7.6p1-x86_64-1.txz: Upgraded. x/mesa-17.2.2-x86_64-1.txz: Upgraded. xap/gucharmap-10.0.2-x86_64-1.txz: Upgraded. xap/mozilla-firefox-56.0-x86_64-2.txz: Rebuilt. Recompiled with --enable-accessibility. Thanks to Didier Spaier. xap/mozilla-thunderbird-52.3.0-x86_64-2.txz: Rebuilt. Recompiled with --enable-accessibility and Google API support. Thanks to Didier Spaier. xap/seamonkey-2.48-x86_64-3.txz: Rebuilt. Recompiled with --enable-accessibility and Google API support. Thanks to Didier Spaier. +--------------------------+ Mon Oct 2 17:16:06 UTC 2017 n/dnsmasq-2.78-x86_64-1.txz: Upgraded. This update fixes bugs and remotely exploitable security issues that may have impacts including denial of service, information leak, and execution of arbitrary code. Thanks to Felix Wilhelm, Fermin J. Serna, Gabriel Campana, Kevin Hamacher, Ron Bowes, and Gynvael Coldwind of the Google Security Team. For more information, see: https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13704 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14491 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14492 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14493 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14494 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14495 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14496 (* Security fix *) isolinux/initrd.img: Rebuilt. When doing a network install, don't download a package if the tagfile is going to skip installing it. Thanks to ivandi. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Sun Oct 1 20:00:22 UTC 2017 a/kernel-generic-4.9.52-x86_64-1.txz: Upgraded. a/kernel-huge-4.9.52-x86_64-1.txz: Upgraded. a/kernel-modules-4.9.52-x86_64-1.txz: Upgraded. ap/a2ps-4.14-x86_64-6.txz: Rebuilt. Removed embedded copy of psutils (already included in TeXLive). d/kernel-headers-4.9.52-x86-1.txz: Upgraded. k/kernel-source-4.9.52-noarch-1.txz: Upgraded. l/openexr-2.2.0-x86_64-2.txz: Rebuilt. Patched bugs that may lead to program crashes or possibly execution of arbitrary code. Thanks to Thomas Choi for the patch. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9110 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9111 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9112 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9113 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9114 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9115 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9116 (* Security fix *) t/texlive-2017.170622-x86_64-2.txz: Rebuilt. Corrected slack-desc. Thanks to Johannes Schoepfer. xap/gnuplot-5.2.0-x86_64-1.txz: Upgraded. Thanks to Johannes Schoepfer for the path fixes. xap/xpdf-4.00-x86_64-2.txz: Rebuilt. Added a config option to fix broken printing. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Sep 29 22:58:54 UTC 2017 ap/cups-filters-1.17.8-x86_64-1.txz: Upgraded. l/libpng-1.6.34-x86_64-1.txz: Upgraded. t/tetex-3.0-x86_64-10.txz: Removed. Thanks to Thomas Esser -- teTeX had a good long run. :-) t/tetex-doc-3.0-x86_64-10.txz: Removed. t/texlive-2017.170622-x86_64-1.txz: Added. Thanks very much to Johannes Schoepfer for the great work on this! Also thanks to Robby Workman for adjustments and testing. +--------------------------+ Thu Sep 28 21:03:26 UTC 2017 ap/mariadb-10.2.9-x86_64-1.txz: Upgraded. l/pcre2-10.30-x86_64-2.txz: Rebuilt. Remove the .la files before they have a chance to creep into any other ones. These generally aren't helpful for libraries that support pkg-config. n/net-snmp-5.7.3-x86_64-5.txz: Rebuilt. Recompiled with MariaDB support. Thanks to Kris Karas. xap/mozilla-firefox-56.0-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefox.html (* Security fix *) +--------------------------+ Thu Sep 28 05:31:20 UTC 2017 Thanks to Robby Workman for preparing nearly all of the updates in this batch. a/dbus-1.10.24-x86_64-1.txz: Upgraded. a/hwdata-0.304-noarch-1.txz: Upgraded. a/lvm2-2.02.174-x86_64-1.txz: Upgraded. a/mcelog-153-x86_64-1.txz: Upgraded. a/xfsprogs-4.13.1-x86_64-1.txz: Upgraded. ap/mpg123-1.25.7-x86_64-1.txz: Upgraded. ap/sysstat-11.6.0-x86_64-1.txz: Upgraded. d/Cython-0.27-x86_64-1.txz: Upgraded. l/adwaita-icon-theme-3.26.0-noarch-1.txz: Upgraded. l/at-spi2-atk-2.26.0-x86_64-1.txz: Upgraded. l/at-spi2-core-2.26.0-x86_64-1.txz: Upgraded. l/atk-2.26.0-x86_64-1.txz: Upgraded. l/babl-0.1.30-x86_64-1.txz: Upgraded. l/gc-7.6.0-x86_64-1.txz: Upgraded. l/gegl-0.2.0-x86_64-5.txz: Rebuilt. Patched integer overflows in operations/external/ppm-load.c that could allow a denial of service (application crash) or possibly the execution of arbitrary code via a large width or height value in a ppm image. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4433 (* Security fix *) l/glib-networking-2.54.0-x86_64-1.txz: Upgraded. l/glib2-2.54.0-x86_64-1.txz: Upgraded. l/glibmm-2.54.1-x86_64-1.txz: Upgraded. l/gobject-introspection-1.54.0-x86_64-1.txz: Upgraded. l/gsettings-desktop-schemas-3.24.1-x86_64-1.txz: Upgraded. l/gst-plugins-base-1.12.3-x86_64-1.txz: Upgraded. l/gst-plugins-good-1.12.3-x86_64-1.txz: Upgraded. l/gst-plugins-libav-1.12.3-x86_64-1.txz: Upgraded. l/gstreamer-1.12.3-x86_64-1.txz: Upgraded. l/gtkmm3-3.22.2-x86_64-1.txz: Upgraded. l/hicolor-icon-theme-0.17-noarch-1.txz: Upgraded. l/hunspell-1.6.2-x86_64-1.txz: Upgraded. l/iso-codes-3.76-noarch-1.txz: Upgraded. l/libsoup-2.60.0-x86_64-1.txz: Upgraded. l/media-player-info-23-noarch-1.txz: Upgraded. l/pcre2-10.30-x86_64-1.txz: Added. Thanks to Larry Hajali. l/pygobject3-3.26.0-x86_64-1.txz: Upgraded. l/qca-2.1.3-x86_64-1.txz: Upgraded. n/cifs-utils-6.7-x86_64-1.txz: Upgraded. n/gnupg2-2.2.1-x86_64-1.txz: Upgraded. n/ipset-6.34-x86_64-1.txz: Upgraded. n/libmbim-1.14.2-x86_64-1.txz: Upgraded. n/openvpn-2.4.4-x86_64-1.txz: Upgraded. n/p11-kit-0.23.8-x86_64-1.txz: Upgraded. x/libwacom-0.26-x86_64-1.txz: Upgraded. xap/gucharmap-10.0.1-x86_64-1.txz: Upgraded. xap/xpdf-4.00-x86_64-1.txz: Upgraded. xfce/xfce4-clipman-plugin-1.4.2-x86_64-1.txz: Upgraded. +--------------------------+ Tue Sep 26 02:37:01 UTC 2017 l/libxslt-1.1.30-x86_64-3.txz: Rebuilt. Fixed bashism in configure.in that resulted in pkg-config not being used properly unless /bin/sh was bash. Thanks to Willy Sudiarto Raharjo. +--------------------------+ Tue Sep 26 00:39:15 UTC 2017 a/util-linux-2.30.2-x86_64-2.txz: Rebuilt. Renamed old BSD version of strings to "strings-BSD". ap/cups-filters-1.17.7-x86_64-2.txz: Rebuilt. Recompiled against poppler-0.59.0 and qpdf-7.0.0. ap/qpdf-7.0.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. d/binutils-2.29.1-x86_64-1.txz: Upgraded. Shared library .so-version bump. Don't rename strings to "strings-GNU", but provide a symlink from strings-GNU to strings in case any user-created scripts are using the name we gave the GNU version of strings for many years. The GNU version of strings has more features and is what most scripts expect to find installed. Any existing scripts that use BSD specific options may need to be patched to use equivalent GNU options (or to use strings-BSD instead). d/meson-0.42.1-x86_64-1.txz: Added. Thanks to Heinz Wiesinger. d/ninja-1.8.2-x86_64-1.txz: Added. Thanks to alienBOB. d/oprofile-1.2.0-x86_64-1.txz: Upgraded. Compiled against binutils-2.29.1. d/re2c-1.0.2-x86_64-1.txz: Added. Thanks to LukenShiro. kde/calligra-2.9.11-x86_64-16.txz: Rebuilt. Recompiled against poppler-0.59.0. l/LibRaw-0.18.5-x86_64-1.txz: Upgraded. l/libxslt-1.1.30-x86_64-2.txz: Rebuilt. Be a bit more generous with xsltMaxDepth to avoid a false positive on infinite recursion. This fixes building the Samba docs. l/poppler-0.59.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. xfce/tumbler-0.2.0-x86_64-2.txz: Rebuilt. Recompiled against poppler-0.59.0. +--------------------------+ Sun Sep 24 19:03:35 UTC 2017 a/os-prober-1.76-x86_64-1.txz: Upgraded. ap/cups-filters-1.17.7-x86_64-1.txz: Upgraded. d/help2man-1.47.5-x86_64-1.txz: Upgraded. l/SDL2-2.0.6-x86_64-1.txz: Upgraded. l/imagemagick-6.9.9_15-x86_64-1.txz: Upgraded. l/pulseaudio-11.1-x86_64-1.txz: Upgraded. x/fontconfig-2.12.6-x86_64-1.txz: Upgraded. xap/audacious-3.9-x86_64-1.txz: Upgraded. xap/audacious-plugins-3.9-x86_64-1.txz: Upgraded. +--------------------------+ Sat Sep 23 01:02:32 UTC 2017 Good hello! Python 3 has made its entry into -current. :-) Huge thanks are due to Heinz Wiesinger for a great effort maintaining and testing this on the side for months now, and for queuing it up for an easy merge without all that many changes needed, and to Audrius Kažukauskas for maintaining the Python 3 build scripts on slackbuilds.org for years (on which our Python 3 SlackBuild was based). Enjoy! a/glibc-solibs-2.26-x86_64-3.txz: Rebuilt. a/kmod-24-x86_64-2.txz: Rebuilt. Added python3 bindings. a/util-linux-2.30.2-x86_64-1.txz: Upgraded. Added python3 bindings. ap/hplip-3.17.9-x86_64-1.txz: Upgraded. Switch to using python3. ap/pamixer-1.3.1-x86_64-4.txz: Rebuilt. Compiled against boost-1.65.1. ap/rpm-4.13.0.1-x86_64-1.txz: Upgraded. d/Cython-0.26.1-x86_64-1.txz: Upgraded. d/cmake-3.9.3-x86_64-1.txz: Upgraded. d/gdb-8.0.1-x86_64-2.txz: Rebuilt. Switch to using python3. d/python-2.7.14-x86_64-1.txz: Upgraded. Updated to the latest 2.7.x release. This fixes some security issues related to the bundled expat library. Note that -current is now using the system expat library instead. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0718 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4472 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9063 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9233 (* Security fix *) d/python-pip-9.0.1-x86_64-1.txz: Added. d/python-setuptools-36.5.0-x86_64-1.txz: Upgraded. d/python3-3.6.2-x86_64-1.txz: Added. kde/calligra-2.9.11-x86_64-15.txz: Rebuilt. Compiled against boost-1.65.1. kde/kdev-python-1.7.3-x86_64-1.txz: Upgraded. kde/kdevelop-4.7.4-x86_64-1.txz: Upgraded. kde/kdevelop-php-1.7.4-x86_64-1.txz: Upgraded. kde/kdevelop-php-docs-1.7.4-x86_64-1.txz: Upgraded. kde/kdevplatform-1.7.4-x86_64-1.txz: Upgraded. kde/kig-4.14.3-x86_64-6.txz: Rebuilt. Compiled against boost-1.65.1. kde/pykde4-4.14.3-x86_64-6.txz: Rebuilt. Added python3 version. l/M2Crypto-0.26.2-x86_64-1.txz: Upgraded. l/PyQt-4.12.1-x86_64-1.txz: Upgraded. Added python3 version. l/QScintilla-2.10.1-x86_64-1.txz: Upgraded. l/akonadi-1.13.0-x86_64-7.txz: Rebuilt. Compiled against boost-1.65.1. l/boost-1.65.1-x86_64-1.txz: Upgraded. Added libboost_python3. Shared library .so-version bump. l/dbus-python-1.2.4-x86_64-3.txz: Rebuilt. Added python3 version. l/glibc-2.26-x86_64-3.txz: Rebuilt. Applied an upstream patch to fix finding the location of shared libraries with some Steam games and possibly other programs. Thanks to sbolokanov. l/glibc-i18n-2.26-x86_64-3.txz: Rebuilt. l/glibc-profile-2.26-x86_64-3.txz: Rebuilt. l/libcaca-0.99.beta19-x86_64-2.txz: Rebuilt. Added python3 bindings. l/libcap-ng-0.7.8-x86_64-2.txz: Rebuilt. Added python3 bindings. l/libproxy-0.4.15-x86_64-1.txz: Upgraded. l/libwebp-0.6.0-x86_64-2.txz: Rebuilt. Added python3 bindings. l/libxml2-2.9.5-x86_64-1.txz: Upgraded. Added python3 version. This release fixes some security issues: Detect infinite recursion in parameter entities (Nick Wellnhofer), Fix handling of parameter-entity references (Nick Wellnhofer), Disallow namespace nodes in XPointer ranges (Nick Wellnhofer), Fix XPointer paths beginning with range-to (Nick Wellnhofer). (* Security fix *) l/libxslt-1.1.30-x86_64-1.txz: Upgraded. l/newt-0.52.20-x86_64-2.txz: Rebuilt. Added python3 bindings. l/pycairo-1.15.3-x86_64-1.txz: Upgraded. Added python3 version. l/pycups-1.9.73-x86_64-3.txz: Rebuilt. Added python3 version. l/pycurl-7.43.0-x86_64-3.txz: Rebuilt. Added python3 version. l/pygobject-2.28.6-x86_64-4.txz: Rebuilt. Added python3 version. l/pygobject3-3.24.1-x86_64-2.txz: Rebuilt. Added python3 version. l/pygtk-2.24.0-x86_64-4.txz: Rebuilt. l/pyparsing-2.2.0-x86_64-1.txz: Added. l/python-appdirs-1.4.3-x86_64-1.txz: Added. l/python-certifi-2017.7.27.1-x86_64-1.txz: Added. l/python-chardet-3.0.4-x86_64-1.txz: Added. l/python-docutils-0.14-x86_64-1.txz: Added. l/python-idna-2.6-x86_64-1.txz: Added. l/python-packaging-16.8-x86_64-1.txz: Added. l/python-pillow-4.2.1-x86_64-1.txz: Upgraded. l/python-requests-2.18.4-x86_64-1.txz: Added. l/python-sane-2.8.3-x86_64-1.txz: Added. l/python-six-1.10.0-x86_64-2.txz: Rebuilt. l/python-urllib3-1.22-x86_64-1.txz: Added. l/sip-4.19.3-x86_64-1.txz: Upgraded. l/system-config-printer-1.5.9-x86_64-1.txz: Upgraded. l/taglib-1.11.1-x86_64-2.txz: Rebuilt. Compiled against boost-1.65.1. l/urwid-1.0.3-x86_64-2.txz: Rebuilt. Added python3 version. n/NetworkManager-1.8.4-x86_64-1.txz: Upgraded. n/getmail-5.1-x86_64-1.txz: Upgraded. n/gpgme-1.9.0-x86_64-2.txz: Rebuilt. Added python3 bindings. n/obexftp-0.24.2-x86_64-2.txz: Rebuilt. Added python3 version. n/pssh-2.3.1-x86_64-2.txz: Rebuilt. Switch to using python3. x/intel-gpu-tools-1.19-x86_64-1.txz: Upgraded. x/vulkan-sdk-1.0.61.1-x86_64-1.txz: Upgraded. x/xcb-proto-1.12-x86_64-2.txz: Rebuilt. Added python3 version. xap/blueman-2.0.4-x86_64-3.txz: Rebuilt. Switch to using python3. Don't autostart applet in KDE. Thanks to Robby Workman. xap/network-manager-applet-1.8.4-x86_64-1.txz: Upgraded. +--------------------------+ Thu Sep 21 01:23:24 UTC 2017 n/samba-4.6.8-x86_64-1.txz: Upgraded. This is a security release in order to address the following defects: SMB1/2/3 connections may not require signing where they should. A man in the middle attack may hijack client connections. SMB3 connections don't keep encryption across DFS redirects. A man in the middle attack can read and may alter confidential documents transferred via a client connection, which are reached via DFS redirect when the original connection used SMB3. Server memory information leak over SMB1. Client with write access to a share can cause server memory contents to be written into a file or printer. For more information, see: https://www.samba.org/samba/security/CVE-2017-12150.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12150 https://www.samba.org/samba/security/CVE-2017-12151.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12151 https://www.samba.org/samba/security/CVE-2017-12163.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12163 (* Security fix *) +--------------------------+ Tue Sep 19 20:49:07 UTC 2017 l/freetype-2.8-x86_64-1.txz: Upgraded. Reverted due to rendering issues with programs such as Firefox that violate the Freetype API. We'll revisit this after upstream programs have some time to catch up. x/libinput-1.8.2-x86_64-1.txz: Upgraded. +--------------------------+ Mon Sep 18 19:15:03 UTC 2017 a/eudev-3.2.4-x86_64-1.txz: Upgraded. a/libgudev-232-x86_64-1.txz: Upgraded. a/usb_modeswitch-2.5.1-x86_64-1.txz: Upgraded. ap/man-pages-4.13-noarch-1.txz: Upgraded. d/cmake-3.9.2-x86_64-1.txz: Upgraded. d/ruby-2.4.2-x86_64-1.txz: Upgraded. This release includes several security fixes. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0898 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0899 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0900 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0901 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0902 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10784 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14033 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14064 (* Security fix *) l/akonadi-1.13.0-x86_64-6.txz: Rebuilt. Fixed using akonadi with an external database. Thanks to Heinz Wiesinger. l/freetype-2.8.1-x86_64-1.txz: Upgraded. n/httpd-2.4.27-x86_64-3.txz: Rebuilt. This update patches a security issue ("Optionsbleed") with the OPTIONS http method which may leak arbitrary pieces of memory to a potential attacker. Thanks to Hanno Bo:ck. For more information, see: http://seclists.org/oss-sec/2017/q3/477 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9798 (* Security fix *) x/fontconfig-2.12.5-x86_64-1.txz: Upgraded. x/mesa-17.2.1-x86_64-1.txz: Upgraded. x/xf86-input-libinput-0.26.0-x86_64-1.txz: Upgraded. +--------------------------+ Fri Sep 15 17:31:57 UTC 2017 a/kernel-firmware-20170914git-noarch-1.txz: Upgraded. a/kernel-generic-4.9.50-x86_64-1.txz: Upgraded. a/kernel-huge-4.9.50-x86_64-1.txz: Upgraded. a/kernel-modules-4.9.50-x86_64-1.txz: Upgraded. Fixed BlueBorne vulnerability in bluetooth.ko module. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000251 https://www.armis.com/blueborne (* Security fix *) ap/texinfo-6.5-x86_64-1.txz: Upgraded. ap/xorriso-1.4.8-x86_64-1.txz: Added. d/kernel-headers-4.9.50-x86-1.txz: Upgraded. k/kernel-source-4.9.50-noarch-1.txz: Upgraded. This update fixes the security vulnerability known as "BlueBorne". The native Bluetooth stack in the Linux Kernel (BlueZ), starting at Linux kernel version 3.3-rc1 is vulnerable to a stack overflow in the processing of L2CAP configuration responses resulting in remote code execution in kernel space. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000251 https://www.armis.com/blueborne (* Security fix *) l/ffmpeg-3.3.4-x86_64-1.txz: Upgraded. l/gvfs-1.34.0-x86_64-1.txz: Upgraded. Don't set AutoMount=false in network.mount (fixes tree view in Thunar). Thanks to PROBLEMCHYLD. n/bluez-5.47-x86_64-1.txz: Upgraded. Fixed an information disclosure vulnerability which allows remote attackers to obtain sensitive information from the bluetoothd process memory. This vulnerability lies in the processing of SDP search attribute requests. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000250 (* Security fix *) isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue Sep 12 22:18:51 UTC 2017 ap/cups-filters-1.17.4-x86_64-1.txz: Upgraded. e/emacs-25.3-x86_64-1.txz: Upgraded. This update fixes a security vulnerability in Emacs. Gnus no longer supports "richtext" and "enriched" inline MIME objects. This support was disabled to avoid evaluation of arbitrary Lisp code contained in email messages and news articles. For more information, see: http://seclists.org/oss-sec/2017/q3/422 https://bugs.gnu.org/28350 (* Security fix *) l/ebook-tools-0.2.2-x86_64-4.txz: Rebuilt. Recompiled against libzip-1.3.0. l/gdk-pixbuf2-2.36.10-x86_64-1.txz: Upgraded. l/libzip-1.3.0-x86_64-1.txz: Upgraded. Fix a denial of service and possible code execution issue. Shared library .so-version bump. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12858 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14107 (* Security fix *) +--------------------------+ Tue Sep 12 06:52:52 UTC 2017 a/btrfs-progs-v4.13-x86_64-1.txz: Upgraded. a/kernel-generic-4.9.49-x86_64-1.txz: Upgraded. a/kernel-huge-4.9.49-x86_64-1.txz: Upgraded. a/kernel-modules-4.9.49-x86_64-1.txz: Upgraded. ap/ash-0.4.0-x86_64-2.txz: Removed. ap/dash-0.5.9.1-x86_64-1.txz: Added. ap/zsh-5.4.2-x86_64-1.txz: Upgraded. d/kernel-headers-4.9.49-x86-1.txz: Upgraded. d/strace-4.19-x86_64-1.txz: Upgraded. k/kernel-source-4.9.49-noarch-1.txz: Upgraded. l/expat-2.2.4-x86_64-1.txz: Upgraded. l/glibmm-2.52.1-x86_64-1.txz: Upgraded. l/gtk+3-3.22.21-x86_64-1.txz: Upgraded. l/pango-1.40.12-x86_64-1.txz: Upgraded. x/xf86-video-amdgpu-1.4.0-x86_64-1.txz: Upgraded. x/xf86-video-ati-7.10.0-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Sep 8 17:56:01 UTC 2017 a/coreutils-8.28-x86_64-1.txz: Upgraded. A bug in the embedded gnulib allows "date" and "touch" to overwrite the heap with large user specified TZ values, possibly executing arbitrary code. Bug introduced in coreutils-8.27. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7476 (* Security fix *) a/file-5.32-x86_64-1.txz: Upgraded. ap/mariadb-10.2.8-x86_64-2.txz: Rebuilt. ap/sudo-1.8.21p2-x86_64-1.txz: Upgraded. d/gdb-8.0.1-x86_64-1.txz: Upgraded. d/gnu-cobol-1.1-x86_64-2.txz: Removed. d/gnucobol-2.2-x86_64-1.txz: Added. Package upgraded and renamed to new upstream name "gnucobol". d/llvm-5.0.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. d/rust-1.20.0-x86_64-1.txz: Upgraded. kde/kdelibs-4.14.36-x86_64-1.txz: Upgraded. l/harfbuzz-1.5.1-x86_64-1.txz: Upgraded. l/jemalloc-4.5.0-x86_64-1.txz: Upgraded. Downgraded from version 5.0.1 due to problems with mariadb (which is currently the only thing using jemalloc). Thanks to Heinz Wiesinger. l/libidn2-2.0.4-x86_64-1.txz: Upgraded. l/mozilla-nss-3.31.1-x86_64-1.txz: Upgraded. Upgraded to nss-3.31.1 and nspr-4.16. l/mpfr-3.1.6-x86_64-1.txz: Upgraded. n/iproute2-4.13.0-x86_64-1.txz: Upgraded. n/tcpdump-4.9.2-x86_64-1.txz: Upgraded. This update fixes bugs and many security issues (see the included CHANGES file). For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11541 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11541 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11542 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11542 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11543 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11543 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12893 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12894 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12895 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12896 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12897 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12898 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12899 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12900 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12901 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12902 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12985 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12986 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12987 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12988 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12989 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12990 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12991 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12992 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12993 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12994 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12995 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12996 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12997 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12998 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12999 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13000 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13001 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13002 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13003 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13004 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13005 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13006 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13007 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13008 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13009 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13010 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13011 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13012 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13013 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13014 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13015 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13016 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13017 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13018 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13019 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13020 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13021 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13022 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13023 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13024 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13025 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13026 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13027 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13028 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13029 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13030 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13031 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13032 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13033 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13034 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13035 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13036 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13037 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13038 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13039 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13040 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13041 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13042 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13043 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13044 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13045 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13046 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13047 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13048 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13049 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13050 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13051 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13052 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13053 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13054 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13055 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13687 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13688 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13689 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13690 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13725 (* Security fix *) x/mesa-17.2.0-x86_64-1.txz: Upgraded. Compiled against llvm-5.0.0. x/xf86-video-vmware-13.2.1-x86_64-4.txz: Rebuilt. Recompiled against llvm-5.0.0. +--------------------------+ Thu Aug 31 21:14:43 UTC 2017 l/akonadi-1.13.0-x86_64-5.txz: Rebuilt. Merged an upstream patch and global config change to allow akonadi to work properly with mariadb-10.2.8. Thanks to Heinz Wiesinger. l/glib2-2.52.3-x86_64-2.txz: Rebuilt. Fixed a race condition bug when using /etc/mtab. Thanks to ChrisVV. +--------------------------+ Wed Aug 30 22:34:34 UTC 2017 a/e2fsprogs-1.43.6-x86_64-1.txz: Upgraded. ap/sqlite-3.20.1-x86_64-1.txz: Upgraded. d/perl-5.24.0-x86_64-2.txz: Rebuilt. Recompiled against mariadb-10.2.8. Upgraded to DBD-mysql-4.043, DBI-1.637, URI-1.72, and XML-Simple-2.24. kde/amarok-2.8.0-x86_64-4.txz: Rebuilt. Recompiled against mariadb-10.2.8. kde/calligra-2.9.11-x86_64-14.txz: Rebuilt. Recompiled against mariadb-10.2.8. l/qt-4.8.7-x86_64-7.txz: Rebuilt. Recompiled against mariadb-10.2.8. l/redland-1.0.17-x86_64-2.txz: Rebuilt. Recompiled against mariadb-10.2.8. n/ulogd-2.0.5-x86_64-2.txz: Rebuilt. Recompiled against mariadb-10.2.8. +--------------------------+ Wed Aug 30 02:41:28 UTC 2017 a/logrotate-3.12.3-x86_64-1.txz: Upgraded. Thanks to Robby Workman. ap/cups-filters-1.17.2-x86_64-1.txz: Upgraded. ap/mariadb-10.2.8-x86_64-1.txz: Upgraded. Shared library .so-version bump / change. Thanks to Heinz Wiesinger. ap/nano-2.8.7-x86_64-1.txz: Upgraded. d/cargo-0.20.0-x86_64-1.txz: Removed. I wanted to put "Oxidized" here, but that would have confused slackpkg. ;-) d/rust-1.19.0-x86_64-2.txz: Rebuilt. Build with "extended = true" option to produce the extended Rust tool set which is not only the compiler but also tools such as Cargo. This is what upstream recommends now since they'll be dropping standalone Cargo from the repository. Thanks to Andrew Clemons. l/glade3-3.8.6-x86_64-1.txz: Upgraded. l/jemalloc-5.0.1-x86_64-1.txz: Upgraded. l/libpng-1.6.32-x86_64-1.txz: Upgraded. n/bsd-finger-0.17-x86_64-2.txz: Rebuilt. Patched to fix segfault with glibc-2.26. Thanks to Karl Magnus Kolstø. n/libgcrypt-1.8.1-x86_64-1.txz: Upgraded. Mitigate a local side-channel attack on Curve25519 dubbed "May the Fourth be With You". For more information, see: https://eprint.iacr.org/2017/806 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0379 (* Security fix *) x/mesa-17.1.8-x86_64-1.txz: Upgraded. +--------------------------+ Fri Aug 25 18:38:28 UTC 2017 a/dialog-1.3_20170509-x86_64-1.txz: Upgraded. a/kernel-generic-4.9.45-x86_64-1.txz: Upgraded. a/kernel-huge-4.9.45-x86_64-1.txz: Upgraded. a/kernel-modules-4.9.45-x86_64-1.txz: Upgraded. ap/cups-filters-1.17.0-x86_64-1.txz: Upgraded. ap/sudo-1.8.21-x86_64-1.txz: Upgraded. d/cargo-0.20.0-x86_64-1.txz: Added. Thanks to Andrew Clemons. d/kernel-headers-4.9.45-x86-1.txz: Upgraded. d/rust-1.19.0-x86_64-1.txz: Added. Thanks to Andrew Clemons. k/kernel-source-4.9.45-noarch-1.txz: Upgraded. kde/kdelibs-4.14.35-x86_64-1.txz: Upgraded. l/gtk+3-3.22.19-x86_64-1.txz: Upgraded. l/harfbuzz-1.5.0-x86_64-1.txz: Upgraded. l/libcdio-paranoia-10.2+0.94+2-x86_64-1.txz: Upgraded. l/libedit-20170329_3.1-x86_64-1.txz: Upgraded. n/gnutls-3.6.0-x86_64-1.txz: Upgraded. n/whois-5.2.18-x86_64-1.txz: Upgraded. x/libdrm-2.4.83-x86_64-1.txz: Upgraded. x/mesa-17.1.7-x86_64-1.txz: Upgraded. xap/mozilla-firefox-55.0.3-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Thu Aug 17 05:36:28 UTC 2017 a/kernel-generic-4.9.44-x86_64-1.txz: Upgraded. a/kernel-huge-4.9.44-x86_64-1.txz: Upgraded. a/kernel-modules-4.9.44-x86_64-1.txz: Upgraded. d/kernel-headers-4.9.44-x86-1.txz: Upgraded. k/kernel-source-4.9.44-noarch-1.txz: Upgraded. xap/mozilla-thunderbird-52.3.0-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue Aug 15 22:16:12 UTC 2017 a/aaa_elflibs-14.2-x86_64-31.txz: Rebuilt. a/kernel-generic-4.9.43-x86_64-1.txz: Upgraded. a/kernel-huge-4.9.43-x86_64-1.txz: Upgraded. a/kernel-modules-4.9.43-x86_64-1.txz: Upgraded. ap/cups-2.2.4-x86_64-2.txz: Rebuilt. Don't return an empty printer list when there is no default printer. Thanks to Jurgen Van Ham. d/gcc-7.2.0-x86_64-1.txz: Upgraded. d/gcc-brig-7.2.0-x86_64-1.txz: Upgraded. d/gcc-g++-7.2.0-x86_64-1.txz: Upgraded. d/gcc-gfortran-7.2.0-x86_64-1.txz: Upgraded. d/gcc-gnat-7.2.0-x86_64-1.txz: Upgraded. d/gcc-go-7.2.0-x86_64-1.txz: Upgraded. d/gcc-objc-7.2.0-x86_64-1.txz: Upgraded. d/kernel-headers-4.9.43-x86-1.txz: Upgraded. d/libtool-2.4.6-x86_64-6.txz: Rebuilt. Recompiled to update embedded GCC version number. k/kernel-source-4.9.43-noarch-1.txz: Upgraded. l/poppler-data-0.4.8-noarch-1.txz: Upgraded. x/xorg-server-1.19.3-x86_64-2.txz: Rebuilt. This update fixes two security issues: A user authenticated to an X Session could crash or execute code in the context of the X Server by exploiting a stack overflow in the endianness conversion of X Events. Uninitialized data in endianness conversion in the XEvent handling of the X.Org X Server allowed authenticated malicious users to access potentially privileged data from the X server. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10971 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10972 (* Security fix *) x/xorg-server-xephyr-1.19.3-x86_64-2.txz: Rebuilt. x/xorg-server-xnest-1.19.3-x86_64-2.txz: Rebuilt. x/xorg-server-xvfb-1.19.3-x86_64-2.txz: Rebuilt. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Aug 11 23:02:43 UTC 2017 ap/cups-filters-1.16.1-x86_64-1.txz: Upgraded. ap/mariadb-10.0.32-x86_64-1.txz: Upgraded. ap/mpg123-1.25.6-x86_64-1.txz: Upgraded. d/cmake-3.9.1-x86_64-1.txz: Upgraded. d/git-2.14.1-x86_64-1.txz: Upgraded. Fixes security issues: A "ssh://..." URL can result in a "ssh" command line with a hostname that begins with a dash "-", which would cause the "ssh" command to instead (mis)treat it as an option. This is now prevented by forbidding such a hostname (which should not impact any real-world usage). Similarly, when GIT_PROXY_COMMAND is configured, the command is run with host and port that are parsed out from "ssh://..." URL; a poorly written GIT_PROXY_COMMAND could be tricked into treating a string that begins with a dash "-" as an option. This is now prevented by forbidding such a hostname and port number (again, which should not impact any real-world usage). For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000117 (* Security fix *) d/mercurial-4.3.1-x86_64-1.txz: Upgraded. Fixes security issues: Mercurial's symlink auditing was incomplete prior to 4.3, and could be abused to write to files outside the repository. Mercurial was not sanitizing hostnames passed to ssh, allowing shell injection attacks on clients by specifying a hostname starting with -oProxyCommand. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000115 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000116 (* Security fix *) d/subversion-1.9.7-x86_64-1.txz: Upgraded. Fixed client side arbitrary code execution vulnerability. For more information, see: https://subversion.apache.org/security/CVE-2017-9800-advisory.txt https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9800 (* Security fix *) l/libsoup-2.58.2-x86_64-1.txz: Upgraded. Fixed a chunked decoding buffer overrun that could be exploited against either clients or servers. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2885 (* Security fix *) n/samba-4.6.7-x86_64-1.txz: Upgraded. tcl/tcl-8.6.7-x86_64-1.txz: Upgraded. tcl/tk-8.6.7-x86_64-1.txz: Upgraded. +--------------------------+ Wed Aug 9 20:23:16 UTC 2017 a/kernel-generic-4.9.41-x86_64-1.txz: Upgraded. a/kernel-huge-4.9.41-x86_64-1.txz: Upgraded. a/kernel-modules-4.9.41-x86_64-1.txz: Upgraded. ap/cups-filters-1.16.0-x86_64-2.txz: Rebuilt. Linked against poppler-0.57.0. ap/mpg123-1.25.5-x86_64-1.txz: Upgraded. d/gcc-7.1.0-x86_64-3.txz: Rebuilt. Recompiled with upstream patches for glibc-2.26 compatibility. d/gcc-brig-7.1.0-x86_64-3.txz: Rebuilt. d/gcc-g++-7.1.0-x86_64-3.txz: Rebuilt. d/gcc-gfortran-7.1.0-x86_64-3.txz: Rebuilt. d/gcc-gnat-7.1.0-x86_64-3.txz: Rebuilt. d/gcc-go-7.1.0-x86_64-3.txz: Rebuilt. d/gcc-objc-7.1.0-x86_64-3.txz: Rebuilt. d/kernel-headers-4.9.41-x86-1.txz: Upgraded. d/llvm-4.0.1-x86_64-2.txz: Rebuilt. Fixed garbled output from lldb. Thanks to Ebben Aries. Patched to compile with glibc-2.26. k/kernel-source-4.9.41-noarch-1.txz: Upgraded. kde/calligra-2.9.11-x86_64-13.txz: Rebuilt. Linked against glew-2.1.0 and poppler-0.57.0. l/gdk-pixbuf2-2.36.8-x86_64-1.txz: Upgraded. l/gtk+3-3.22.18-x86_64-1.txz: Upgraded. l/harfbuzz-1.4.8-x86_64-1.txz: Upgraded. l/libxslt-1.1.29-x86_64-2.txz: Rebuilt. Don't include xlocale.h in libxslt/xsltlocale.h, as it has been removed from glibc-2.26. Thanks to Matteo Bernardini. l/pango-1.40.9-x86_64-1.txz: Upgraded. l/poppler-0.57.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. n/curl-7.55.0-x86_64-1.txz: Upgraded. This update fixes three security issues: URL globbing out of bounds read TFTP sends more than buffer size FILE buffer read out of bounds For more information, see: https://curl.haxx.se/docs/adv_20170809A.html https://curl.haxx.se/docs/adv_20170809B.html https://curl.haxx.se/docs/adv_20170809C.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000101 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000100 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000099 (* Security fix *) n/httpd-2.4.27-x86_64-2.txz: Rebuilt. Recompiled against glibc-2.26 to fix relocation error. Thanks to Willy Sudiarto Raharjo. x/glew-2.1.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. x/libdrm-2.4.82-x86_64-1.txz: Upgraded. x/mesa-17.1.6-x86_64-1.txz: Upgraded. Linked against glew-2.1.0. xap/gparted-0.29.0-x86_64-1.txz: Upgraded. xap/mozilla-firefox-52.3.0esr-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html (* Security fix *) xfce/tumbler-0.2.0-x86_64-1.txz: Upgraded. Linked against poppler-0.57.0. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Sun Aug 6 05:29:56 UTC 2017 a/e2fsprogs-1.43.5-x86_64-1.txz: Upgraded. a/glibc-solibs-2.26-x86_64-2.txz: Rebuilt. ap/vim-8.0.0876-x86_64-1.txz: Upgraded. d/git-2.14.0-x86_64-1.txz: Upgraded. l/glibc-2.26-x86_64-2.txz: Rebuilt. Recompiled to add libnss_compat-2.26.so, libnss_nis-2.26.so, libnss_nisplus-2.26.so, and headers to restore missing/broken NIS functionality. l/glibc-i18n-2.26-x86_64-2.txz: Rebuilt. l/glibc-profile-2.26-x86_64-2.txz: Rebuilt. xap/vim-gvim-8.0.0876-x86_64-1.txz: Upgraded. +--------------------------+ Fri Aug 4 19:22:07 UTC 2017 a/glibc-solibs-2.26-x86_64-1.txz: Upgraded. ap/sqlite-3.20.0-x86_64-1.txz: Upgraded. l/glibc-2.26-x86_64-1.txz: Upgraded. l/glibc-i18n-2.26-x86_64-1.txz: Upgraded. l/glibc-profile-2.26-x86_64-1.txz: Upgraded. l/imagemagick-6.9.9_5-x86_64-1.txz: Upgraded. l/pango-1.40.7-x86_64-2.txz: Rebuilt. Patched to fix Unicode emoji handling issue caused by width changes in glibc. n/bind-9.11.2-x86_64-1.txz: Upgraded. n/dhcp-4.3.6-x86_64-1.txz: Upgraded. n/nmap-7.60-x86_64-1.txz: Upgraded. +--------------------------+ Wed Aug 2 03:43:51 UTC 2017 a/btrfs-progs-v4.12-x86_64-1.txz: Upgraded. l/ffmpeg-3.3.3-x86_64-1.txz: Upgraded. l/seamonkey-solibs-2.48-x86_64-2.txz: Rebuilt. n/bluez-5.46-x86_64-2.txz: Rebuilt. Added /usr/bin/gatttool. n/gnupg-1.4.22-x86_64-1.txz: Upgraded. Mitigate a flush+reload side-channel attack on RSA secret keys dubbed "Sliding right into disaster". For more information, see: https://eprint.iacr.org/2017/627 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7526 (* Security fix *) n/gnupg2-2.1.22-x86_64-1.txz: Upgraded. x/xf86-input-wacom-0.35.0-x86_64-1.txz: Upgraded. xap/seamonkey-2.48-x86_64-2.txz: Rebuilt. Recompiled with -fno-delete-null-pointer-checks to fix crashes caused by aggressive gcc7 optimization. Thanks to KewlCat for the bug report. +--------------------------+ Fri Jul 28 20:29:47 UTC 2017 a/dbus-1.10.22-x86_64-1.txz: Upgraded. a/gptfdisk-1.0.3-x86_64-1.txz: Upgraded. a/kernel-generic-4.9.40-x86_64-1.txz: Upgraded. a/kernel-huge-4.9.40-x86_64-1.txz: Upgraded. a/kernel-modules-4.9.40-x86_64-1.txz: Upgraded. a/mkinitrd-1.4.11-x86_64-4.txz: Rebuilt. Upgraded to busybox-1.27.1. ap/cups-filters-1.16.0-x86_64-1.txz: Upgraded. ap/hplip-3.17.7-x86_64-1.txz: Upgraded. ap/squashfs-tools-4.3-x86_64-2.txz: Rebuilt. Patched a couple of denial of service issues and other bugs. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4645 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4646 (* Security fix *) d/kernel-headers-4.9.40-x86-1.txz: Upgraded. k/kernel-source-4.9.40-noarch-1.txz: Upgraded. l/libpng-1.6.31-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. Upgraded to busybox-1.27.1. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. Upgraded to busybox-1.27.1. +--------------------------+ Thu Jul 27 01:03:02 UTC 2017 a/dbus-1.10.20-x86_64-2.txz: Rebuilt. Don't demand high-quality entropy from expat-2.2.2+ because 1) dbus doesn't need it and 2) it can cause the boot process to hang if dbus times out. Thanks to SeB for a link to the bug report and patch. +--------------------------+ Tue Jul 25 21:09:42 UTC 2017 n/bind-9.11.1_P3-x86_64-1.txz: Upgraded. Fix a regression in the previous BIND release that broke verification of TSIG signed TCP message sequences where not all the messages contain TSIG records. Compiled to use libidn rather than the deprecated (and broken) idnkit. n/idnkit-1.0-x86_64-1.txz: Removed. +--------------------------+ Tue Jul 25 03:45:44 UTC 2017 a/lvm2-2.02.173-x86_64-1.txz: Upgraded. a/xfsprogs-4.12.0-x86_64-1.txz: Upgraded. ap/vim-8.0.0771-x86_64-1.txz: Upgraded. e/emacs-25.2-x86_64-3.txz: Rebuilt. Linked against imagemagick-6.9.9-3 and gtk+3-3.22.17. l/imagemagick-6.9.9_3-x86_64-1.txz: Upgraded. Compiled with --enable-hdri option. Shared library .so-version bump. l/virtuoso-ose-6.1.8-x86_64-7.txz: Rebuilt. Linked against imagemagick-6.9.9-3. xap/gnuchess-6.2.5-x86_64-1.txz: Upgraded. xap/vim-gvim-8.0.0771-x86_64-1.txz: Upgraded. Linked against gtk+3-3.22.17. xap/xine-lib-1.2.8-x86_64-3.txz: Rebuilt. Linked against imagemagick-6.9.9-3. xap/xlockmore-5.54-x86_64-2.txz: Rebuilt. Linked against imagemagick-6.9.9-3. +--------------------------+ Mon Jul 24 19:59:34 UTC 2017 ap/man-pages-4.12-noarch-1.txz: Upgraded. ap/mpg123-1.25.4-x86_64-1.txz: Upgraded. ap/nano-2.8.6-x86_64-1.txz: Upgraded. d/binutils-2.29-x86_64-1.txz: Upgraded. d/oprofile-1.1.0-x86_64-4.txz: Rebuilt. Recompiled against new libbfd from binutils-2.29. l/gdk-pixbuf2-2.36.7-x86_64-2.txz: Rebuilt. Restored greyscale support. Thanks to brobr. Fixed handling cache updates on multilib. Thanks to SeB. l/libidn2-2.0.3-x86_64-1.txz: Upgraded. n/tcpdump-4.9.1-x86_64-1.txz: Upgraded. This update fixes an issue where tcpdump 4.9.0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via crafted packet data. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11108 (* Security fix *) xap/pan-0.142-x86_64-1.txz: Upgraded. +--------------------------+ Fri Jul 21 20:09:49 UTC 2017 l/seamonkey-solibs-2.48-x86_64-1.txz: Upgraded. xap/seamonkey-2.48-x86_64-1.txz: Upgraded. This update contains security fixes and improvements. For more information, see: http://www.seamonkey-project.org/releases/seamonkey2.48 (* Security fix *) +--------------------------+ Thu Jul 20 21:06:53 UTC 2017 a/util-linux-2.30.1-x86_64-1.txz: Upgraded. l/lcms2-2.8-x86_64-1.txz: Upgraded. l/librsvg-2.40.18-x86_64-1.txz: Upgraded. x/libinput-1.8.1-x86_64-1.txz: Upgraded. +--------------------------+ Wed Jul 19 20:58:46 UTC 2017 e/emacs-25.2-x86_64-2.txz: Rebuilt. Linked against imagemagick-6.9.9-0. l/gdk-pixbuf2-2.36.7-x86_64-1.txz: Upgraded. l/gtk+3-3.22.17-x86_64-1.txz: Upgraded. l/harfbuzz-1.4.7-x86_64-1.txz: Upgraded. l/virtuoso-ose-6.1.8-x86_64-6.txz: Rebuilt. Linked against imagemagick-6.9.9-0. n/libgcrypt-1.8.0-x86_64-1.txz: Upgraded. xap/xine-lib-1.2.8-x86_64-2.txz: Rebuilt. Linked against imagemagick-6.9.9-0. xap/xlockmore-5.54-x86_64-1.txz: Upgraded. Linked against imagemagick-6.9.9-0. +--------------------------+ Tue Jul 18 23:10:25 UTC 2017 a/kernel-generic-4.9.38-x86_64-1.txz: Upgraded. a/kernel-huge-4.9.38-x86_64-1.txz: Upgraded. a/kernel-modules-4.9.38-x86_64-1.txz: Upgraded. a/mkinitrd-1.4.11-x86_64-3.txz: Upgraded. Support btrfs and ocfs2 volume ids in busybox. Thanks to bam80. Handle rootflags in init script. Thanks to davjohn. a/openssl-solibs-1.0.2l-x86_64-1.txz: Upgraded. ap/gutenprint-5.2.13-x86_64-1.txz: Upgraded. d/cmake-3.9.0-x86_64-1.txz: Upgraded. d/kernel-headers-4.9.38-x86-1.txz: Upgraded. k/kernel-source-4.9.38-noarch-1.txz: Upgraded. kde/calligra-2.9.11-x86_64-12.txz: Rebuilt. Linked against exiv2-0.26. kde/gwenview-4.14.3-x86_64-3.txz: Rebuilt. Linked against exiv2-0.26. kde/kde-runtime-4.14.3-x86_64-5.txz: Rebuilt. Linked against exiv2-0.26 and libwebp-0.6.0. kde/kdelibs-4.14.34-x86_64-1.txz: Upgraded. kde/kfilemetadata-4.14.3-x86_64-3.txz: Rebuilt. Linked against exiv2-0.26. kde/libkexiv2-4.14.3-x86_64-3.txz: Rebuilt. Linked against exiv2-0.26. kde/nepomuk-core-4.14.3-x86_64-3.txz: Rebuilt. Linked against exiv2-0.26. l/SDL2_image-2.0.1-x86_64-2.txz: Rebuilt. Linked against libwebp-0.6.0. l/exiv2-0.26-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/expat-2.2.2-x86_64-1.txz: Upgraded. Fixes security issues including: External entity infinite loop DoS For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9233 https://libexpat.github.io/doc/cve-2017-9233/ (* Security fix *) l/ffmpeg-3.3.2-x86_64-2.txz: Rebuilt. Linked against libwebp-0.6.0. l/gd-2.2.4-x86_64-1.txz: Upgraded. Linked against libwebp-0.6.0. Fixes security issues: gdImageCreate() doesn't check for oversized images and as such is prone to DoS vulnerabilities. (CVE-2016-9317) double-free in gdImageWebPtr() (CVE-2016-6912) potential unsigned underflow in gd_interpolation.c (CVE-2016-10166) DOS vulnerability in gdImageCreateFromGd2Ctx() (CVE-2016-10167) Signed Integer Overflow gd_io.c (CVE-2016-10168) For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9317 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6912 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10166 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10167 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10168 (* Security fix *) l/imagemagick-6.9.9_0-x86_64-1.txz: Upgraded. Linked against libwebp-0.6.0. Shared library .so-version bump. l/libwebp-0.6.0-x86_64-1.txz: Added. Thanks to powtrix. l/orc-0.4.27-x86_64-1.txz: Upgraded. l/pango-1.40.7-x86_64-1.txz: Upgraded. l/strigi-0.7.8-x86_64-3.txz: Rebuilt. Linked against exiv2-0.26. n/bluez-5.46-x86_64-1.txz: Upgraded. n/libtirpc-1.0.2-x86_64-1.txz: Upgraded. n/nfs-utils-1.3.4-x86_64-2.txz: Rebuilt. Added /etc/default/nfs config file for setting additional options. Thanks to shasta and Robby Workman. n/openssh-7.5p1-x86_64-2.txz: Rebuilt. Added /etc/default/sshd config file for setting additional options. Thanks to shasta and Robby Workman. n/openssl-1.0.2l-x86_64-1.txz: Upgraded. n/rpcbind-0.2.4-x86_64-2.txz: Rebuilt. Fixed a bug in a previous patch where a svc_freeargs() call ended up freeing a static pointer causing rpcbind to crash. Thanks to Jonathan Woithe, Rafael Jorge Csura Szendrodi, and Robby Workman for identifying the problem and helping to test a fix. Added /etc/default/rpc config file (useful for setting static port assignments). Thanks to shasta and Robby Workman. n/stunnel-5.42-x86_64-1.txz: Upgraded. n/yptools-2.14-x86_64-8.txz: Rebuilt. Added /etc/default/yp config file for setting additional options. Thanks to shasta and Robby Workman. xap/geeqie-1.3-x86_64-2.txz: Rebuilt. Linked against exiv2-0.26. xfce/xfce4-terminal-0.8.6-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Jul 14 22:11:58 UTC 2017 ap/mariadb-10.0.31-x86_64-1.txz: Upgraded. This update fixes bugs and security issues. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3308 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3309 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3453 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3456 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3464 (* Security fix *) l/gst-plugins-base-1.12.2-x86_64-1.txz: Upgraded. l/gst-plugins-good-1.12.2-x86_64-1.txz: Upgraded. l/gst-plugins-libav-1.12.2-x86_64-1.txz: Upgraded. l/gstreamer-1.12.2-x86_64-1.txz: Upgraded. l/libjpeg-turbo-1.5.2-x86_64-1.txz: Upgraded. n/samba-4.6.6-x86_64-1.txz: Upgraded. This update fixes an authentication validation bypass security issue: "Orpheus' Lyre mutual authentication validation bypass" All versions of Samba from 4.0.0 onwards using embedded Heimdal Kerberos are vulnerable to a man-in-the-middle attack impersonating a trusted server, who may gain elevated access to the domain by returning malicious replication or authorization data. Samba binaries built against MIT Kerberos are not vulnerable. For more information, see: https://www.samba.org/samba/security/CVE-2017-11103.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11103 (* Security fix *) x/mesa-17.1.5-x86_64-1.txz: Upgraded. +--------------------------+ Thu Jul 13 19:24:36 UTC 2017 a/mkinitrd-1.4.11-x86_64-2.txz: Rebuilt. Process initrd output filename template strings %KVER% and %SLACKVER% after processing all other options to prevent depending on the command line order for proper functioning. Thanks to SeB. n/httpd-2.4.27-x86_64-1.txz: Upgraded. This update fixes two security issues: Read after free in mod_http2 (CVE-2017-9789) Uninitialized memory reflection in mod_auth_digest (CVE-2017-9788) Thanks to Robert Swiecki for reporting these issues. For more information, see: https://httpd.apache.org/security/vulnerabilities_24.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9789 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9788 (* Security fix *) +--------------------------+ Wed Jul 12 23:11:53 UTC 2017 a/kernel-generic-4.9.37-x86_64-1.txz: Upgraded. a/kernel-huge-4.9.37-x86_64-1.txz: Upgraded. a/kernel-modules-4.9.37-x86_64-1.txz: Upgraded. a/mkinitrd-1.4.11-x86_64-1.txz: Upgraded. Added support for including template strings %KVER% (kernel version) and %SLACKVER% (Slackware version) in the output filename. Thanks to SeB. a/pciutils-3.5.5-x86_64-1.txz: Upgraded. ap/cgmanager-0.41-x86_64-2.txz: Rebuilt. Fixed duplicate init scripts. ap/mpg123-1.25.2-x86_64-1.txz: Upgraded. ap/screen-4.6.1-x86_64-1.txz: Upgraded. d/kernel-headers-4.9.37-x86-1.txz: Upgraded. d/strace-4.18-x86_64-1.txz: Upgraded. k/kernel-source-4.9.37-noarch-1.txz: Upgraded. l/libarchive-3.3.2-x86_64-1.txz: Upgraded. n/crda-3.18-x86_64-4.txz: Rebuilt. Rebuilt using wireless-regdb-2017.03.07. Thanks to Robby Workman. n/iproute2-4.12.0-x86_64-1.txz: Upgraded. extra/bash-completion/bash-completion-2.7-noarch-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Mon Jul 10 21:43:37 UTC 2017 a/dbus-1.10.20-x86_64-1.txz: Upgraded. a/lvm2-2.02.172-x86_64-1.txz: Upgraded. ap/diffstat-1.61-x86_64-1.txz: Upgraded. ap/hplip-3.17.6-x86_64-1.txz: Upgraded. ap/sysstat-11.4.4-x86_64-1.txz: Upgraded. d/git-2.13.2-x86_64-1.txz: Upgraded. d/help2man-1.46.6-x86_64-1.txz: Upgraded. d/strace-4.17-x86_64-1.txz: Upgraded. l/hunspell-1.6.1-x86_64-1.txz: Upgraded. l/libtiff-4.0.8-x86_64-1.txz: Upgraded. n/libqmi-1.18.0-x86_64-1.txz: Upgraded. n/libtirpc-1.0.1-x86_64-3.txz: Rebuilt. Patched a bug which can cause a denial of service through memory exhaustion. Thanks to Robby Workman. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8779 (* Security fix *) n/rpcbind-0.2.4-x86_64-1.txz: Upgraded. Patched a bug which can cause a denial of service through memory exhaustion. Thanks to Robby Workman. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8779 (* Security fix *) +--------------------------+ Sun Jul 9 20:38:08 UTC 2017 a/lilo-24.2-x86_64-5.txz: Rebuilt. liloconfig: support /dev/vda in QEMU. Thanks to Robby Workman. a/logrotate-3.12.2-x86_64-1.txz: Upgraded. Thanks to Robby Workman. a/sysvinit-scripts-2.0-noarch-37.txz: Rebuilt. rc.cpufreq: document "schedutil" CPU scaling governor. Thanks to Paul Blazejowski. l/cairomm-1.12.2-x86_64-1.txz: Upgraded. l/fuse-2.9.7-x86_64-1.txz: Upgraded. l/gmm-4.3-noarch-1.txz: Upgraded. l/gmp-6.1.2-x86_64-1.txz: Upgraded. l/gnu-efi-3.0.6-x86_64-1.txz: Upgraded. l/libaio-0.3.110-x86_64-1.txz: Upgraded. l/libao-1.2.2-x86_64-1.txz: Upgraded. l/libcap-ng-0.7.8-x86_64-1.txz: Upgraded. l/libmowgli-1.0.0-x86_64-1.txz: Upgraded. l/libnl3-3.3.0-x86_64-1.txz: Upgraded. l/libyaml-0.1.7-x86_64-1.txz: Upgraded. l/lzo-2.10-x86_64-1.txz: Upgraded. l/shared-mime-info-1.8-x86_64-1.txz: Upgraded. n/ethtool-4.11-x86_64-1.txz: Upgraded. n/iproute2-4.11.0-x86_64-1.txz: Upgraded. n/ipset-6.32-x86_64-1.txz: Upgraded. n/irssi-1.0.4-x86_64-1.txz: Upgraded. This release fixes two remote crash issues as well as a few bugs. For more information, see: https://irssi.org/security/irssi_sa_2017_07.txt https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10965 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10966 (* Security fix *) n/libmnl-1.0.4-x86_64-1.txz: Upgraded. n/mtr-0.92-x86_64-1.txz: Upgraded. n/nfs-utils-1.3.4-x86_64-1.txz: Upgraded. x/motif-2.3.7-x86_64-2.txz: Rebuilt. x/xterm-330-x86_64-1.txz: Upgraded. xfce/Thunar-1.6.12-x86_64-1.txz: Upgraded. +--------------------------+ Sat Jul 8 00:11:34 UTC 2017 a/aaa_elflibs-14.2-x86_64-30.txz: Rebuilt. Added libidn2.so.0. a/gettext-0.19.8.1-x86_64-4.txz: Rebuilt. ap/cgmanager-0.41-x86_64-1.txz: Upgraded. Maybe we don't really need this, but it likely doesn't hurt. ap/ghostscript-9.21-x86_64-1.txz: Upgraded. ap/gutenprint-5.2.12-x86_64-2.txz: Rebuilt. Linked against libidn2-2.0.2 and libunistring-0.9.7. ap/lxc-2.0.8-x86_64-3.txz: Rebuilt. Linked against libidn2-2.0.2 and libunistring-0.9.7. ap/texinfo-6.4-x86_64-1.txz: Upgraded. d/gettext-tools-0.19.8.1-x86_64-4.txz: Rebuilt. Linked against libunistring-0.9.7. d/guile-2.0.14-x86_64-2.txz: Rebuilt. Linked against libunistring-0.9.7. d/mercurial-4.2.2-x86_64-1.txz: Upgraded. l/fftw-3.3.6_pl2-x86_64-1.txz: Upgraded. l/gc-7.4.4-x86_64-1.txz: Upgraded. l/gcr-3.20.0-x86_64-1.txz: Upgraded. l/glib-networking-2.50.0-x86_64-2.txz: Rebuilt. Linked against libidn2-2.0.2 and libunistring-0.9.7. l/gnome-keyring-3.20.1-x86_64-1.txz: Upgraded. l/gtk+2-2.24.31-x86_64-2.txz: Rebuilt. Linked against libidn2-2.0.2 and libunistring-0.9.7. l/gtk+3-3.22.16-x86_64-2.txz: Rebuilt. Linked against libidn2-2.0.2 and libunistring-0.9.7. l/libidn2-2.0.2-x86_64-1.txz: Added. l/libunistring-0.9.7-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/libvncserver-0.9.11-x86_64-2.txz: Rebuilt. Linked against libidn2-2.0.2 and libunistring-0.9.7. l/pcre-8.41-x86_64-1.txz: Upgraded. l/vte-0.44.3-x86_64-2.txz: Rebuilt. Linked against libidn2-2.0.2 and libunistring-0.9.7. n/NetworkManager-1.8.2-x86_64-1.txz: Upgraded. n/ca-certificates-20161130-noarch-1.txz: Upgraded. n/curl-7.54.1-x86_64-1.txz: Upgraded. n/dhcp-4.3.5-x86_64-1.txz: Upgraded. n/dnsmasq-2.77-x86_64-1.txz: Upgraded. Linked against libidn2-2.0.2 and libunistring-0.9.7. n/gnutls-3.5.14-x86_64-1.txz: Upgraded. Linked against libidn2-2.0.2 and libunistring-0.9.7. n/lftp-4.7.7-x86_64-1.txz: Upgraded. n/php-5.6.31-x86_64-1.txz: Upgraded. This release fixes bugs and security issues. For more information, see: https://php.net/ChangeLog-5.php#5.6.31 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9224 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9226 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9227 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9228 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9229 (* Security fix *) n/wget-1.19.1-x86_64-2.txz: Rebuilt. Linked against libidn2-2.0.2 and libunistring-0.9.7. n/whois-5.2.16-x86_64-1.txz: Upgraded. Linked against libidn2-2.0.2 and libunistring-0.9.7. x/fontconfig-2.12.4-x86_64-1.txz: Upgraded. x/libinput-1.8.0-x86_64-1.txz: Upgraded. extra/tigervnc/tigervnc-1.8.0-x86_64-2.txz: Rebuilt. Linked against libidn2-2.0.2 and libunistring-0.9.7. +--------------------------+ Thu Jul 6 00:38:21 UTC 2017 a/kernel-generic-4.9.36-x86_64-1.txz: Upgraded. a/kernel-huge-4.9.36-x86_64-1.txz: Upgraded. a/kernel-modules-4.9.36-x86_64-1.txz: Upgraded. d/kernel-headers-4.9.36-x86-1.txz: Upgraded. k/kernel-source-4.9.36-noarch-1.txz: Upgraded. xap/xscreensaver-5.37-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Mon Jul 3 23:09:19 UTC 2017 a/grep-3.1-x86_64-1.txz: Upgraded. ap/acct-6.6.4-x86_64-1.txz: Upgraded. ap/cups-2.2.4-x86_64-1.txz: Upgraded. ap/cups-filters-1.14.1-x86_64-1.txz: Upgraded. ap/gphoto2-2.5.14-x86_64-1.txz: Upgraded. ap/tmux-2.5-x86_64-1.txz: Upgraded. l/apr-1.6.2-x86_64-1.txz: Upgraded. l/apr-util-1.6.0-x86_64-1.txz: Upgraded. l/libgphoto2-2.5.14-x86_64-1.txz: Upgraded. l/libpng-1.6.30-x86_64-1.txz: Upgraded. l/sound-theme-freedesktop-0.8-noarch-1.txz: Upgraded. x/mesa-17.1.4-x86_64-1.txz: Upgraded. +--------------------------+ Fri Jun 30 21:14:15 UTC 2017 a/glibc-solibs-2.25-x86_64-3.txz: Rebuilt. (* Security fix *) a/kernel-generic-4.9.35-x86_64-1.txz: Upgraded. (* Security fix *) a/kernel-huge-4.9.35-x86_64-1.txz: Upgraded. (* Security fix *) a/kernel-modules-4.9.35-x86_64-1.txz: Upgraded. d/kernel-headers-4.9.35-x86-1.txz: Upgraded. k/kernel-source-4.9.35-noarch-1.txz: Upgraded. This kernel fixes security issues that include possible stack exhaustion, memory corruption, and arbitrary code execution. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7482 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000365 (* Security fix *) l/glibc-2.25-x86_64-3.txz: Rebuilt. Applied upstream security hardening patches from git. For more information, see: https://sourceware.org/git/?p=glibc.git;a=commit;h=3c7cd21290cabdadd72984fb69bc51e64ff1002d https://sourceware.org/git/?p=glibc.git;a=commit;h=46703a3995aa3ca2b816814aa4ad05ed524194dd https://sourceware.org/git/?p=glibc.git;a=commit;h=c69d4a0f680a24fdbe323764a50382ad324041e9 https://sourceware.org/git/?p=glibc.git;a=commit;h=3776f38fcd267c127ba5eb222e2c614c191744aa https://sourceware.org/git/?p=glibc.git;a=commit;h=adc7e06fb412a2a1ee52f8cb788caf436335b9f3 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000366 (* Security fix *) l/glibc-i18n-2.25-x86_64-3.txz: Rebuilt. l/glibc-profile-2.25-x86_64-3.txz: Rebuilt. (* Security fix *) isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Thu Jun 29 20:55:09 UTC 2017 a/mkinitrd-1.4.10-x86_64-1.txz: Upgraded. Added support for -P option and MICROCODE_ARCH in mkinitrd.conf to specify a microcode archive to be prepended to the initrd for early CPU microcode patching by the kernel. Thanks to SeB. ap/nano-2.8.5-x86_64-1.txz: Upgraded. ap/screen-4.6.0-x86_64-1.txz: Upgraded. d/llvm-4.0.1-x86_64-1.txz: Upgraded. l/pcre-8.40-x86_64-1.txz: Upgraded. l/readline-7.0.003-x86_64-1.txz: Upgraded. n/bind-9.11.1_P2-x86_64-1.txz: Upgraded. This update fixes a high severity security issue: An error in TSIG handling could permit unauthorized zone transfers or zone updates. For more information, see: https://kb.isc.org/article/AA-01503/0 https://kb.isc.org/article/AA-01504/0 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3142 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3143 (* Security fix *) n/httpd-2.4.26-x86_64-1.txz: Upgraded. This update fixes security issues which may lead to an authentication bypass or a denial of service: important: ap_get_basic_auth_pw() Authentication Bypass CVE-2017-3167 important: mod_ssl Null Pointer Dereference CVE-2017-3169 important: mod_http2 Null Pointer Dereference CVE-2017-7659 important: ap_find_token() Buffer Overread CVE-2017-7668 important: mod_mime Buffer Overread CVE-2017-7679 For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3167 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3169 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7659 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7668 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7679 (* Security fix *) n/libgcrypt-1.7.8-x86_64-1.txz: Upgraded. Mitigate a local flush+reload side-channel attack on RSA secret keys dubbed "Sliding right into disaster". For more information, see: https://eprint.iacr.org/2017/627 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7526 (* Security fix *) xfce/xfdesktop-4.12.4-x86_64-1.txz: Upgraded. +--------------------------+ Mon Jun 26 20:36:18 UTC 2017 a/kernel-firmware-20170626git-noarch-1.txz: Upgraded. a/kernel-generic-4.9.34-x86_64-1.txz: Upgraded. "Stack Clash" fixes -- see below. (* Security fix *) a/kernel-huge-4.9.34-x86_64-1.txz: Upgraded. "Stack Clash" fixes -- see below. (* Security fix *) a/kernel-modules-4.9.34-x86_64-1.txz: Upgraded. a/lrzip-0.631-x86_64-1.txz: Upgraded. a/lvm2-2.02.171-x86_64-1.txz: Upgraded. a/time-1.7.2-x86_64-1.txz: Upgraded. a/util-linux-2.30-x86_64-2.txz: Rebuilt. Reverted an agetty commit that breaks backspacing over the first character entered at the login prompt. Thanks to GazL. ap/mpg123-1.25.0-x86_64-1.txz: Upgraded. d/kernel-headers-4.9.34-x86-1.txz: Upgraded. k/kernel-source-4.9.34-noarch-1.txz: Upgraded. This kernel fixes two "Stack Clash" vulnerabilities reported by Qualys. The first issue may allow attackers to execute arbitrary code with elevated privileges. Failed attack attempts will likely result in denial-of-service conditions. The second issue can be exploited to bypass certain security restrictions and perform unauthorized actions. For more information, see: https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000364 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000365 (* Security fix *) l/glib2-2.52.3-x86_64-1.txz: Upgraded. l/glibmm-2.52.0-x86_64-1.txz: Upgraded. l/gtkmm3-3.22.1-x86_64-1.txz: Upgraded. xap/gkrellm-2.3.10-x86_64-2.txz: Rebuilt. Upgraded to gkrellm-countdown-0.1.1. Thanks to jmccue. xap/mozilla-thunderbird-52.2.1-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Jun 23 20:11:00 UTC 2017 a/dosfstools-4.1-x86_64-1.txz: Upgraded. Thanks to Robby Workman. a/file-5.31-x86_64-1.txz: Upgraded. a/os-prober-1.75-x86_64-1.txz: Upgraded. a/xfsprogs-4.11.0-x86_64-1.txz: Upgraded. ap/at-3.1.20-x86_64-1.txz: Upgraded. ap/diffutils-3.6-x86_64-1.txz: Upgraded. d/automake-1.15.1-noarch-1.txz: Upgraded. d/nasm-2.13.01-x86_64-1.txz: Upgraded. l/gst-plugins-base-1.12.1-x86_64-1.txz: Upgraded. l/gst-plugins-good-1.12.1-x86_64-1.txz: Upgraded. l/gst-plugins-libav-1.12.1-x86_64-1.txz: Upgraded. l/gstreamer-1.12.1-x86_64-1.txz: Upgraded. l/gtk+3-3.22.16-x86_64-1.txz: Upgraded. l/gtkmm2-2.24.5-x86_64-1.txz: Upgraded. l/poppler-0.56.0-x86_64-1.txz: Upgraded. +--------------------------+ Wed Jun 21 18:38:46 UTC 2017 ap/lxc-2.0.8-x86_64-2.txz: Rebuilt. rc.lxc: Don't use screen for container startup. Thanks to franzen. d/libtool-2.4.6-x86_64-5.txz: Rebuilt. Recompiled to fix wrong embedded GCC version number. Thanks to B Watson. n/gnupg2-2.1.21-x86_64-2.txz: Rebuilt. If the machine does not have smart card devices, do not issue a warning about a missing smart card. Thanks to Willy Sudiarto Raharjo. n/openvpn-2.4.3-x86_64-1.txz: Upgraded. This update fixes several denial of service issues discovered by Guido Vranken. For more information, see: https://community.openvpn.net/openvpn/wiki/VulnerabilitiesFixedInOpenVPN243 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7508 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7520 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7521 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7512 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7522 (* Security fix *) xap/gnuplot-5.0.6-x86_64-1.txz: Upgraded. +--------------------------+ Wed Jun 21 01:12:42 UTC 2017 kde/calligra-2.9.11-x86_64-11.txz: Rebuilt. Recompiled against gsl-2.4. kde/step-4.14.3-x86_64-5.txz: Rebuilt. Recompiled against gsl-2.4. l/gsl-2.4-x86_64-1.txz: Upgraded. Shared library .so-version bump. +--------------------------+ Tue Jun 20 05:08:21 UTC 2017 a/udisks2-2.6.5-x86_64-1.txz: Upgraded. Thanks to Robby Workman. ap/linuxdoc-tools-0.9.72-x86_64-3.txz: Rebuilt. Removed .la files. Thanks to Stuart Winter. ap/lxc-2.0.8-x86_64-1.txz: Upgraded. Added additional default container packages: cyrus-sasl, db48, gnutls, iproute2, kmod, libcap-ng, libffi, libmnl, libtasn1, libunistring, nettle, and p11-kit. Thanks to CTM. Use configure option --enable-cgmanager=no. Thanks to Didier Spaier. l/cairo-1.14.10-x86_64-1.txz: Upgraded. l/libbluray-1.0.1-x86_64-1.txz: Upgraded. l/polkit-0.113-x86_64-3.txz: Rebuilt. Added upstream patches to fix a memory leak and increase security when using GIO. Thanks to Robby Workman. n/ModemManager-1.6.8-x86_64-1.txz: Upgraded. n/nmap-7.50-x86_64-1.txz: Upgraded. x/libepoxy-1.4.3-x86_64-1.txz: Upgraded. x/libinput-1.7.3-x86_64-1.txz: Upgraded. x/libwacom-0.25-x86_64-1.txz: Upgraded. xfce/garcon-0.6.1-x86_64-1.txz: Upgraded. xfce/tumbler-0.1.32-x86_64-1.txz: Upgraded. +--------------------------+ Thu Jun 15 02:08:28 UTC 2017 ap/linuxdoc-tools-0.9.72-x86_64-2.txz: Rebuilt. Switched to OpenJade-1.3.2 (from 1.3.3-pre1 which was segfaulting). Upgraded to perl-XML-NamespaceSupport-1.12. Upgraded to perl-XML-SAX-Base-1.09. Updated build script to work with bash 4.4. Thanks to Heinz Wiesinger. Support '.conf.new' for config files within /etc/asciidoc. Thanks to franzen on LQ for the suggestion. Thanks to Stuart Winter. d/slacktrack-2.18-x86_64-1.txz: Upgraded. Thanks to Stuart Winter. n/NetworkManager-1.8.0-x86_64-3.txz: Upgraded. Applied upstream patches from git. Thanks to Robby Workman. n/bind-9.11.1_P1-x86_64-1.txz: Upgraded. Fixed denial of service security issue: Some RPZ configurations could go into an infinite query loop when encountering responses with TTL=0. For more information, see: https://kb.isc.org/article/AA-01495 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3140 (* Security fix *) xap/mozilla-firefox-52.2.0esr-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html (* Security fix *) xap/mozilla-thunderbird-52.2.0-x86_64-1.txz: Upgraded. Switched to using GTK+ v3. xap/network-manager-applet-1.8.2-x86_64-1.txz: Upgraded. +--------------------------+ Tue Jun 13 19:54:24 UTC 2017 a/sysvinit-scripts-2.0-noarch-36.txz: Rebuilt. In rc.6, rc.K, and rc.S, use this path setting: PATH=/usr/local/sbin:/usr/sbin:/sbin:/usr/local/bin:/usr/bin:/bin Thanks to GazL. ap/sqlite-3.19.3-x86_64-1.txz: Upgraded. kde/calligra-2.9.11-x86_64-10.txz: Rebuilt. Recompiled against libGLEW.so.2.0.0. kde/kde-runtime-4.14.3-x86_64-4.txz: Rebuilt. Recompiled to drop libgpgme-pthread dependency. kde/kdepim-4.14.10-x86_64-2.txz: Rebuilt. Recompiled to drop libgpgme-pthread dependency. kde/kdepimlibs-4.14.10-x86_64-3.txz: Rebuilt. Recompiled to drop libgpgme-pthread dependency. kde/kget-4.14.3-x86_64-3.txz: Rebuilt. Recompiled to drop libgpgme-pthread dependency. kde/kopete-4.14.3-x86_64-4.txz: Rebuilt. Recompiled to drop libgpgme-pthread dependency. l/ffmpeg-3.3.2-x86_64-1.txz: Upgraded. l/gmime-2.6.23-x86_64-2.txz: Rebuilt. Recompiled to drop libgpgme-pthread dependency. n/dirmngr-1.1.1-x86_64-3.txz: Removed. n/gnupg2-2.1.21-x86_64-1.txz: Upgraded. n/gpgme-1.9.0-x86_64-1.txz: Upgraded. This eliminates the libgpgme-pthread library, so anything using that will need to be recompiled. n/libgcrypt-1.7.7-x86_64-1.txz: Upgraded. n/libgpg-error-1.27-x86_64-1.txz: Upgraded. n/npth-1.5-x86_64-1.txz: Added. n/pth-2.0.7-x86_64-1.txz: Removed. n/samba-4.6.5-x86_64-1.txz: Upgraded. x/glew-2.0.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. Fixed glew.pc. Thanks to Willy Sudiarto Raharjo. x/mesa-17.1.2-x86_64-2.txz: Rebuilt. Recompiled against libGLEW.so.2.0.0. xap/fluxbox-1.3.7-x86_64-2.txz: Rebuilt. Fixed volume settings in keys file. Thanks to i720. +--------------------------+ Wed Jun 7 22:42:04 UTC 2017 a/kernel-generic-4.9.31-x86_64-1.txz: Upgraded. a/kernel-huge-4.9.31-x86_64-1.txz: Upgraded. a/kernel-modules-4.9.31-x86_64-1.txz: Upgraded. d/kernel-headers-4.9.31-x86-1.txz: Upgraded. k/kernel-source-4.9.31-noarch-1.txz: Upgraded. n/irssi-1.0.3-x86_64-1.txz: Upgraded. Fixed security issues that may result in a denial of service. For more information, see: https://irssi.org/security/irssi_sa_2017_06.txt https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9468 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9469 (* Security fix *) isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue Jun 6 02:50:21 UTC 2017 a/mcelog-152-x86_64-2.txz: Rebuilt. rc.mcelog: Fixed 'status' option. Thanks to Tim Thomas. x/libdrm-2.4.81-x86_64-1.txz: Upgraded. x/mesa-17.1.2-x86_64-1.txz: Upgraded. +--------------------------+ Mon Jun 5 20:13:13 UTC 2017 a/mcelog-152-x86_64-1.txz: Upgraded. ap/joe-4.4-x86_64-1.txz: Upgraded. d/gdb-8.0-x86_64-1.txz: Upgraded. l/elfutils-0.169-x86_64-1.txz: Upgraded. +--------------------------+ Sat Jun 3 19:24:12 UTC 2017 a/util-linux-2.30-x86_64-1.txz: Upgraded. ap/sqlite-3.19.2-x86_64-1.txz: Upgraded. Fixed OPT_FEATURE_FLAGS in ./configure. Thanks to Heinz Wiesinger. l/libtasn1-4.12-x86_64-1.txz: Upgraded. x/xkeyboard-config-2.21-noarch-1.txz: Upgraded. x/xterm-328-x86_64-1.txz: Upgraded. xap/gucharmap-3.18.2-x86_64-1.txz: Upgraded. xap/sane-1.0.27-x86_64-1.txz: Upgraded. +--------------------------+ Thu Jun 1 18:56:38 UTC 2017 d/cmake-3.8.2-x86_64-1.txz: Upgraded. l/alsa-lib-1.1.4.1-x86_64-1.txz: Upgraded. n/mutt-1.8.3-x86_64-1.txz: Upgraded. x/xdm-1.1.11-x86_64-7.txz: Rebuilt. In /etc/X11/xdm/xdm-config, specify MIT-MAGIC-COOKIE-1 authorization, as the default XDM-AUTHORIZATION-1 doesn't work. This fixes issues with SDL2 apps as well as other authorization bugs when using XDM. Thanks to Dan Church. +--------------------------+ Wed May 31 23:07:23 UTC 2017 ap/sudo-1.8.20p2-x86_64-1.txz: Upgraded. This is a bugfix release: Fixed a bug parsing /proc/pid/stat when the process name contains a newline. This is not exploitable due to the /dev traversal changes made in sudo 1.8.20p1. +--------------------------+ Tue May 30 17:39:17 UTC 2017 ap/sudo-1.8.20p1-x86_64-1.txz: Upgraded. This update fixes a potential overwrite of arbitrary system files. This bug was discovered and analyzed by Qualys, Inc. For more information, see: https://www.sudo.ws/alerts/linux_tty.html http://www.openwall.com/lists/oss-security/2017/05/30/16 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000367 (* Security fix *) n/lynx-2.8.8rel.2-x86_64-3.txz: Rebuilt. Fixed lynx startup without a URL by correcting STARTFILE in lynx.cfg to use the new URL for the Lynx homepage. Thanks to John David Yost. +--------------------------+ Fri May 26 22:40:13 UTC 2017 a/kernel-generic-4.9.30-x86_64-1.txz: Upgraded. a/kernel-huge-4.9.30-x86_64-1.txz: Upgraded. a/kernel-modules-4.9.30-x86_64-1.txz: Upgraded. d/kernel-headers-4.9.30-x86-1.txz: Upgraded. k/kernel-source-4.9.30-noarch-1.txz: Upgraded. n/NetworkManager-1.8.0-x86_64-2.txz: Rebuilt. rc.networkmanager: Set XDG_CACHE_HOME=/root/.cache before starting. Thanks to allend. x/mesa-17.1.1-x86_64-1.txz: Upgraded. Enabled Vulkan drivers for Intel and Radeon. x/vulkan-sdk-1.0.26.0-x86_64-1.txz: Added. Thanks to Heinz Wiesinger. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Wed May 24 19:38:59 UTC 2017 n/samba-4.6.4-x86_64-1.txz: Upgraded. This update fixes a remote code execution vulnerability, allowing a malicious client to upload a shared library to a writable share, and then cause the server to load and execute it. For more information, see: https://www.samba.org/samba/security/CVE-2017-7494.html http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7494 (* Security fix *) +--------------------------+ Wed May 24 04:51:46 UTC 2017 a/aaa_elflibs-14.2-x86_64-29.txz: Rebuilt. a/aaa_terminfo-6.0-x86_64-1.txz: Upgraded. a/sysvinit-scripts-2.0-noarch-35.txz: Rebuilt. rc.4: Support a custom rc.4.local display manager startup script. Thanks to Robby Workman. ap/sqlite-3.19.0-x86_64-1.txz: Upgraded. ap/tmux-2.4-x86_64-2.txz: Rebuilt. Added /etc/tmux.conf.new to set TERM=tmux-256color. Removed tmux terminfo files, as these are packaged with ncurses. l/ncurses-6.0-x86_64-3.txz: Rebuilt. Drop --with-xterm-kbs=DEL option, taking the upstream default of ^H. Added a modified tmux terminfo, setting kbs=\177, as it expects. Default to upstream versions of everything else in the terminfo database. Thanks to Xsane and GazL for some insights on a more correct configuration. l/newt-0.52.20-x86_64-1.txz: Upgraded. l/pango-1.40.6-x86_64-1.txz: Upgraded. n/NetworkManager-1.8.0-x86_64-1.txz: Upgraded. n/network-scripts-14.2-noarch-6.txz: Rebuilt. rc.inet1: Change actual DHCP_TIMEOUT to 15. Thanks to pataphysician. tcl/tcl-8.6.6-x86_64-1.txz: Upgraded. tcl/tk-8.6.6-x86_64-1.txz: Upgraded. xap/network-manager-applet-1.8.0-x86_64-1.txz: Upgraded. extra/tigervnc/tigervnc-1.8.0-x86_64-1.txz: Upgraded. +--------------------------+ Mon May 22 20:58:20 UTC 2017 a/bash-4.4.012-x86_64-1.txz: Upgraded. a/kernel-generic-4.9.29-x86_64-1.txz: Upgraded. a/kernel-huge-4.9.29-x86_64-1.txz: Upgraded. a/kernel-modules-4.9.29-x86_64-1.txz: Upgraded. a/less-487-x86_64-1.txz: Upgraded. Support .tar.lz in lesspipe.sh. a/lzip-1.19-x86_64-2.txz: Rebuilt. CXXFLAGS need to be placed after ./configure to take effect. Thanks to Matias Fonzo. ap/alsa-utils-1.1.4-x86_64-1.txz: Upgraded. ap/nano-2.8.4-x86_64-1.txz: Upgraded. ap/vim-8.0.0600-x86_64-1.txz: Upgraded. d/ccache-3.3.4-x86_64-1.txz: Upgraded. d/gcc-7.1.0-x86_64-2.txz: Rebuilt. Fixed regression where MMX opcodes are generated without EMMS. Thanks to orbea. d/gcc-brig-7.1.0-x86_64-2.txz: Rebuilt. d/gcc-g++-7.1.0-x86_64-2.txz: Rebuilt. d/gcc-gfortran-7.1.0-x86_64-2.txz: Rebuilt. d/gcc-gnat-7.1.0-x86_64-2.txz: Rebuilt. d/gcc-go-7.1.0-x86_64-2.txz: Rebuilt. d/gcc-objc-7.1.0-x86_64-2.txz: Rebuilt. d/kernel-headers-4.9.29-x86-1.txz: Upgraded. k/kernel-source-4.9.29-noarch-1.txz: Upgraded. l/alsa-lib-1.1.4-x86_64-1.txz: Upgraded. l/alsa-plugins-1.1.4-x86_64-1.txz: Upgraded. l/ffmpeg-3.3.1-x86_64-1.txz: Upgraded. l/glib2-2.52.2-x86_64-2.txz: Rebuilt. Added some patches from upstream git, one of which fixes a problem with LibreOffice. Thanks to PeeBee. l/slang-2.3.1a-x86_64-1.txz: Upgraded. n/network-scripts-14.2-noarch-5.txz: Rebuilt. rc.inet1: Increased default DHCP_TIMEOUT from 10 to 15 seconds. xap/gkrellm-2.3.10-x86_64-1.txz: Upgraded. xap/mozilla-firefox-52.1.2esr-x86_64-1.txz: Upgraded. xap/vim-gvim-8.0.0600-x86_64-1.txz: Upgraded. xfce/xfce4-terminal-0.8.5.1-x86_64-1.txz: Upgraded. extra/source/flashplayer-plugin/flashplayer-plugin.SlackBuild: Updated. Fixed retrieving version number. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Tue May 16 20:11:03 UTC 2017 a/kernel-generic-4.9.28-x86_64-1.txz: Upgraded. a/kernel-huge-4.9.28-x86_64-1.txz: Upgraded. a/kernel-modules-4.9.28-x86_64-1.txz: Upgraded. d/cmake-3.8.1-x86_64-1.txz: Upgraded. d/kernel-headers-4.9.28-x86-1.txz: Upgraded. k/kernel-source-4.9.28-noarch-1.txz: Upgraded. CIFS_SMB2 n -> y kde/kdelibs-4.14.32-x86_64-1.txz: Upgraded. This update fixes a security issue with KAuth that can lead to gaining root from an unprivileged account. For more information, see: http://www.openwall.com/lists/oss-security/2017/05/10/3 https://www.kde.org/info/security/advisory-20170510-1.txt https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8422 (* Security fix *) l/freetype-2.8-x86_64-1.txz: Upgraded. This update fixes an out-of-bounds write caused by a heap-based buffer overflow related to the t1_builder_close_contour function in psaux/psobjs.c. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8287 (* Security fix *) l/gtk+3-3.22.15-x86_64-1.txz: Upgraded. l/qt-4.8.7-x86_64-6.txz: Rebuilt. Patched to fix moc problems with glibc-2.25 (parse error at "defined", line 52 of a random header file). Use -std=gnu++98 and patches to build with gcc-7.1.0. xap/gimp-2.8.22-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-52.1.1-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Thu May 11 18:09:15 UTC 2017 l/gtk+3-3.22.14-x86_64-1.txz: Upgraded. +--------------------------+ Wed May 10 22:58:28 UTC 2017 d/git-2.13.0-x86_64-1.txz: Upgraded. l/gtk+3-3.22.13-x86_64-1.txz: Upgraded. x/mesa-17.1.0-x86_64-1.txz: Upgraded. +--------------------------+ Tue May 9 23:33:37 UTC 2017 a/elilo-3.16-x86_64-4.txz: Rebuilt. In eliloconfig, fixed hardcoded /mnt in a few places. Thanks to alienBOB. a/eudev-3.2.2-x86_64-2.txz: Rebuilt. Added another watchdog module to the blacklist. Thanks to Robby Workman. a/hdparm-9.52-x86_64-1.txz: Upgraded. a/kernel-generic-4.9.27-x86_64-1.txz: Upgraded. a/kernel-huge-4.9.27-x86_64-1.txz: Upgraded. a/kernel-modules-4.9.27-x86_64-1.txz: Upgraded. a/lzip-1.19-x86_64-1.txz: Upgraded. a/mkinitrd-1.4.9-x86_64-2.txz: Rebuilt. Mount devtmpfs with -o size=8M option. Mount tmpfs on /run with -o size=32M,nodev,nosuid,noexec options. Thanks to Robby Workman. Fix error message when /lukstrim is missing. Thanks to _RDS_. Add rules.d/85-regulatory.rules to LIBUDEV_BLACKLIST. Thanks to GazL. a/sysvinit-scripts-2.0-noarch-34.txz: Rebuilt. Cosmetic changes to make the output from "mount" and "df -h" look better: rc.S: where "/sys/fs/cgroup" is mounted as a tmpfs, add "size=8M" to the mount options. rc.S: where /run is mounted, add "size=32M,nodev,nosuid,noexec" to the mount options. Thanks to Robby Workman. ap/cups-filters-1.13.5-x86_64-1.txz: Upgraded. d/kernel-headers-4.9.27-x86-1.txz: Upgraded. k/kernel-source-4.9.27-noarch-1.txz: Upgraded. 9P_FS_POSIX_ACL n -> y l/at-spi2-atk-2.24.1-x86_64-1.txz: Upgraded. l/at-spi2-core-2.24.1-x86_64-1.txz: Upgraded. l/glib2-2.52.2-x86_64-1.txz: Upgraded. l/libsoup-2.58.1-x86_64-1.txz: Upgraded. n/bluez-5.45-x86_64-1.txz: Upgraded. x/libevdev-1.5.7-x86_64-1.txz: Upgraded. x/xdg-utils-1.1.2-noarch-1.txz: Upgraded. x/xf86-input-libinput-0.25.1-x86_64-1.txz: Upgraded. x/xkbcomp-1.4.0-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. Use nosuid,nodev,noexec mount options for /dev/shm in installer-created /etc/fstab. Thanks to Robby Workman. Replace hardcoded /mnt with ${T_PX} in many places. Thanks to alienBOB. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. Use nosuid,nodev,noexec mount options for /dev/shm in installer-created /etc/fstab. Thanks to Robby Workman. Replace hardcoded /mnt with ${T_PX} in many places. Thanks to alienBOB. +--------------------------+ Sat May 6 23:12:02 UTC 2017 a/glibc-solibs-2.25-x86_64-2.txz: Rebuilt. ap/cdrdao-1.2.3-x86_64-3.txz: Rebuilt. Recompiled to support libmp3lame. ap/sox-14.4.2-x86_64-4.txz: Rebuilt. Recompiled to support libmp3lame. d/flex-2.6.4-x86_64-1.txz: Upgraded. kde/k3b-2.0.3-x86_64-3.txz: Rebuilt. Patched to build with ffmpeg3 and gcc7. l/ffmpeg-3.3-x86_64-1.txz: Upgraded. Recompiled to support libmp3lame. l/glibc-2.25-x86_64-2.txz: Rebuilt. Reverted a patch that causes IFUNC errors to be emitted. l/glibc-i18n-2.25-x86_64-2.txz: Rebuilt. l/glibc-profile-2.25-x86_64-2.txz: Rebuilt. l/gst-plugins-base-1.12.0-x86_64-1.txz: Upgraded. l/gst-plugins-good-1.12.0-x86_64-1.txz: Upgraded. l/gst-plugins-libav-1.12.0-x86_64-1.txz: Upgraded. l/gstreamer-1.12.0-x86_64-1.txz: Upgraded. l/lame-3.99.5-x86_64-1.txz: Added. xap/MPlayer-1.3_20170208-x86_64-4.txz: Rebuilt. Recompiled to support libmp3lame. xap/audacious-plugins-3.8.2-x86_64-3.txz: Rebuilt. Recompiled to support libmp3lame. +--------------------------+ Thu May 4 22:14:08 UTC 2017 a/btrfs-progs-v4.10.2-x86_64-2.txz: Rebuilt. Ship libbtrfs shared library. Thanks to Vincent Batts. a/elilo-3.16-x86_64-3.txz: Rebuilt. Patched eliloconfig to properly handle NVMe devices. Thanks to Didier Spaier. a/gettext-0.19.8.1-x86_64-3.txz: Rebuilt. a/glibc-solibs-2.25-x86_64-1.txz: Upgraded. a/kernel-firmware-20170504git-noarch-1.txz: Upgraded. a/kernel-generic-4.9.26-x86_64-1.txz: Upgraded. a/kernel-huge-4.9.26-x86_64-1.txz: Upgraded. a/kernel-modules-4.9.26-x86_64-1.txz: Upgraded. ap/nano-2.8.2-x86_64-1.txz: Upgraded. d/flex-2.6.2-x86_64-1.txz: Upgraded. Switched to flex-2.6.2 until there's a new release that fixes unexpected symbol remapping macro definitions in flex-2.6.3. See: https://github.com/westes/flex/issues/162 d/gcc-7.1.0-x86_64-1.txz: Upgraded. d/gcc-brig-7.1.0-x86_64-1.txz: Added. d/gcc-g++-7.1.0-x86_64-1.txz: Upgraded. d/gcc-gfortran-7.1.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. d/gcc-gnat-7.1.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. d/gcc-go-7.1.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. d/gcc-java-5.4.0-x86_64-1.txz: Removed. d/gcc-objc-7.1.0-x86_64-1.txz: Upgraded. d/gettext-tools-0.19.8.1-x86_64-3.txz: Rebuilt. d/kernel-headers-4.9.26-x86-1.txz: Upgraded. k/kernel-source-4.9.26-noarch-1.txz: Upgraded. l/glibc-2.25-x86_64-1.txz: Upgraded. l/glibc-i18n-2.25-x86_64-1.txz: Upgraded. l/glibc-profile-2.25-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. Patched SeTEFI and probe to fix NVMe device handling. Thanks to Didier Spaier. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. Patched SeTEFI and probe to fix NVMe device handling. Thanks to Didier Spaier. +--------------------------+ Mon May 1 23:31:02 UTC 2017 a/cryptsetup-1.7.5-x86_64-1.txz: Upgraded. l/QScintilla-2.10-x86_64-2.txz: Rebuilt. x/dejavu-fonts-ttf-2.37-noarch-2.txz: Rebuilt. Rename 57-* fontconfig files to 61-* to avoid overriding font preferences in fontconfig's 60-latin.conf. x/fontconfig-2.12.1-x86_64-2.txz: Rebuilt. Prefer Liberation fonts in 60-latin.conf. x/libepoxy-1.4.2-x86_64-1.txz: Upgraded. x/liberation-fonts-ttf-2.00.1-noarch-1.txz: Upgraded. x/mesa-17.0.5-x86_64-1.txz: Upgraded. x/urw-core35-fonts-otf-20160712_79bcdfb_git-noarch-1.txz: Added. These are the URW++ core35 fonts also found in the ghostscript-fonts package, but provided in OpenType Format for programs such as LibreOffice which no longer support PostScript Type 1 fonts. Thanks to Jonathan Woithe. x/wqy-zenhei-font-ttf-0.8.38_1-noarch-3.txz: Rebuilt. Rename 44-wqy-zenhei.conf to 64-wqy-zenhei.conf to avoid overriding font preferences in fontconfig's 60-latin.conf. Prefer Liberation over DejaVu in 64-wqy-zenhei.conf. xap/mozilla-thunderbird-52.1.0-x86_64-1.txz: Upgraded. xap/rxvt-2.7.10-x86_64-5.txz: Upgraded. Patched an integer overflow that can crash rxvt with an escape sequence, or possibly have unspecified other impact. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7483 (* Security fix *) +--------------------------+ Thu Apr 27 23:03:54 UTC 2017 kde/pykde4-4.14.3-x86_64-5.txz: Rebuilt. Patched to work with PyQt-4.12. Thanks to Heinz Wiesinger. kde/qtruby-4.14.3-x86_64-6.txz: Rebuilt. Reconfigured to compile with QScintilla-2.10. Thanks to Heinz Wiesinger. kde/smokeqt-4.14.3-x86_64-4.txz: Rebuilt. Reconfigured to compile with QScintilla-2.10. Thanks to Heinz Wiesinger. l/PyQt-4.12-x86_64-1.txz: Upgraded. l/QScintilla-2.10-x86_64-1.txz: Upgraded. Thanks to Heinz Wiesinger. l/freetype-2.7.1-x86_64-2.txz: Rebuilt. Don't define anything in freetype.{csh,sh} by default, letting the new minimal hinting method be automatically selected. Thanks to GazL. Applied upstream patches from git that disable long family names for PCF fonts. You'll need to run "fc-cache -f" to get the old names back. +--------------------------+ Wed Apr 26 23:09:45 UTC 2017 Thanks to Robby Workman for help with these packages, especially with preparing and testing updates to the GTK stack. :-) a/btrfs-progs-v4.10.2-x86_64-1.txz: Upgraded. a/grub-2.02-x86_64-1.txz: Upgraded. a/lvm2-2.02.170-x86_64-1.txz: Upgraded. a/xfsprogs-4.10.0-x86_64-1.txz: Upgraded. ap/dmapi-2.2.12-x86_64-2.txz: Rebuilt. ap/tmux-2.4-x86_64-1.txz: Upgraded. d/swig-3.0.12-x86_64-1.txz: Upgraded. l/adwaita-icon-theme-3.24.0-noarch-1.txz: Upgraded. l/at-spi2-atk-2.24.0-x86_64-1.txz: Upgraded. l/at-spi2-core-2.24.0-x86_64-1.txz: Upgraded. l/atk-2.24.0-x86_64-1.txz: Upgraded. l/dconf-0.26.0-x86_64-1.txz: Upgraded. l/dconf-editor-3.22.3-x86_64-1.txz: Upgraded. l/freetype-2.7.1-x86_64-1.txz: Upgraded. Subpixel hinting has been enabled upstream by default, but you may adjust this in /etc/profile.d/freetype.{csh,sh}. l/gdk-pixbuf2-2.36.6-x86_64-1.txz: Upgraded. l/glib-networking-2.50.0-x86_64-1.txz: Upgraded. l/glib2-2.52.1-x86_64-1.txz: Upgraded. l/glibmm-2.50.1-x86_64-1.txz: Upgraded. l/gnome-themes-standard-3.22.3-x86_64-1.txz: Upgraded. l/gobject-introspection-1.52.1-x86_64-1.txz: Upgraded. l/gsettings-desktop-schemas-3.24.0-x86_64-1.txz: Upgraded. l/gtk+3-3.22.12-x86_64-1.txz: Upgraded. l/gtkmm3-3.22.0-x86_64-1.txz: Upgraded. l/gvfs-1.32.1-x86_64-1.txz: Upgraded. l/harfbuzz-1.4.6-x86_64-1.txz: Upgraded. l/keyutils-1.5.10-x86_64-1.txz: Upgraded. l/libcroco-0.6.12-x86_64-1.txz: Upgraded. l/libgsf-1.14.41-x86_64-1.txz: Upgraded. l/libnotify-0.7.7-x86_64-1.txz: Upgraded. l/librsvg-2.40.17-x86_64-1.txz: Upgraded. l/libsigc++-2.10.0-x86_64-1.txz: Upgraded. l/libsoup-2.58.0-x86_64-1.txz: Upgraded. l/libssh-0.7.5-x86_64-1.txz: Upgraded. l/libssh2-1.8.0-x86_64-1.txz: Upgraded. l/pango-1.40.5-x86_64-1.txz: Upgraded. l/pangomm-2.40.1-x86_64-1.txz: Upgraded. l/pygobject3-3.24.1-x86_64-1.txz: Upgraded. l/shared-mime-info-1.7-x86_64-1.txz: Upgraded. l/sip-4.19.2-x86_64-1.txz: Upgraded. l/vte-0.44.3-x86_64-1.txz: Upgraded. n/bluez-5.44-x86_64-1.txz: Upgraded. n/iproute2-4.10.0-x86_64-1.txz: Upgraded. x/libevdev-1.5.6-x86_64-1.txz: Upgraded. x/xf86-video-nouveau-1.0.15-x86_64-1.txz: Upgraded. xap/gparted-0.28.1-x86_64-1.txz: Upgraded. xfce/garcon-0.6.0-x86_64-1.txz: Upgraded. xfce/xfce4-pulseaudio-plugin-0.2.5-x86_64-1.txz: Upgraded. xfce/xfce4-systemload-plugin-1.2.1-x86_64-1.txz: Upgraded. xfce/xfce4-taskmanager-1.2.0-x86_64-1.txz: Upgraded. xfce/xfce4-terminal-0.8.4-x86_64-1.txz: Upgraded. xfce/xfce4-weather-plugin-0.8.9-x86_64-1.txz: Upgraded. +--------------------------+ Mon Apr 24 18:06:06 UTC 2017 a/cryptsetup-1.7.4-x86_64-1.txz: Upgraded. a/eudev-3.2.2-x86_64-1.txz: Upgraded. a/mdadm-4.0-x86_64-1.txz: Upgraded. ap/vim-8.0.0586-x86_64-1.txz: Upgraded. e/emacs-25.2-x86_64-1.txz: Upgraded. xap/mozilla-firefox-52.1.0esr-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html (* Security fix *) xap/vim-gvim-8.0.0586-x86_64-1.txz: Upgraded. +--------------------------+ Fri Apr 21 22:40:12 UTC 2017 a/etc-14.2-x86_64-10.txz: Rebuilt. Added user:group for NTP (UID 44/GID 44). ap/sudo-1.8.19p2-x86_64-1.txz: Upgraded. d/git-2.12.2-x86_64-1.txz: Upgraded. d/mercurial-4.1.3-x86_64-1.txz: Upgraded. l/libgphoto2-2.5.13-x86_64-1.txz: Upgraded. n/curl-7.54.0-x86_64-1.txz: Upgraded. This update fixes a security issue: Switch off SSL session id when client cert is used. For more information, see: https://curl.haxx.se/docs/adv_20170419.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7468 (* Security fix *) n/dhcpcd-6.11.5-x86_64-1.txz: Upgraded. Thanks to Robby Workman. n/ethtool-4.10-x86_64-1.txz: Upgraded. n/getmail-4.54.0-x86_64-1.txz: Upgraded. n/ntp-4.2.8p10-x86_64-1.txz: Upgraded. There were some changes made to NTP setup in -current: First, NTP drops privileges and runs as ntp:ntp. Be sure to install the updated etc package to get the new user and group. Some files have been relocated: The ntp.keys file has moved from /etc/ntp/ to /etc/. The drift and stats files now reside in /var/lib/ntp/. The step-tickers file has been removed. It's actually been deprecated for a while and nothing has referenced in for quite some time. Be sure to move the new rc.ntpd.new into place, and move over or merge from the .new config files. Thanks to Robby Workman for help with these changes. In addition to bug fixes and enhancements, this release fixes security issues of medium and low severity: Denial of Service via Malformed Config (Medium) Authenticated DoS via Malicious Config Option (Medium) Potential Overflows in ctl_put() functions (Medium) Buffer Overflow in ntpq when fetching reslist from a malicious ntpd (Medium) 0rigin DoS (Medium) Buffer Overflow in DPTS Clock (Low) Improper use of snprintf() in mx4200_send() (Low) The following issues do not apply to Linux systems: Privileged execution of User Library code (WINDOWS PPSAPI ONLY) (Low) Stack Buffer Overflow from Command Line (WINDOWS installer ONLY) (Low) Data Structure terminated insufficiently (WINDOWS installer ONLY) (Low) For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6464 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6463 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6458 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6460 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9042 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6462 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6451 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6455 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6452 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6459 (* Security fix *) n/proftpd-1.3.6-x86_64-1.txz: Upgraded. This release fixes a security issue: AllowChrootSymlinks off does not check entire DefaultRoot path for symlinks. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7418 (* Security fix *) +--------------------------+ Wed Apr 19 04:46:45 UTC 2017 a/minicom-2.7.1-x86_64-1.txz: Upgraded. Fix an out of bounds data access that can lead to remote code execution. This issue was found by Solar Designer of Openwall during a security audit of the Virtuozzo 7 product, which contains derived downstream code in its prl-vzvncserver component. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7467 (* Security fix *) a/usb_modeswitch-2.5.0-x86_64-1.txz: Upgraded. ap/hplip-3.17.4-x86_64-1.txz: Upgraded. l/wavpack-5.1.0-x86_64-1.txz: Upgraded. n/mutt-1.8.1-x86_64-1.txz: Upgraded. testing/packages/gcc-6.3.0-x86_64-2.txz: Rebuilt. testing/packages/gcc-g++-6.3.0-x86_64-2.txz: Rebuilt. Move some Python files into this package instead of the gcc-java package. Move the Python files into a more correct directory. Thanks to Heinz Wiesinger. testing/packages/gcc-gfortran-6.3.0-x86_64-2.txz: Rebuilt. testing/packages/gcc-gnat-6.3.0-x86_64-2.txz: Rebuilt. testing/packages/gcc-go-6.3.0-x86_64-2.txz: Rebuilt. testing/packages/gcc-java-6.3.0-x86_64-2.txz: Rebuilt. Move some Python files from this package into the gcc-g++ package. Move the Python files into a more correct directory. Thanks to Heinz Wiesinger. testing/packages/gcc-objc-6.3.0-x86_64-2.txz: Rebuilt. +--------------------------+ Tue Apr 18 04:21:33 UTC 2017 x/libdrm-2.4.80-x86_64-1.txz: Upgraded. x/mesa-17.0.4-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-52.0.1-x86_64-1.txz: Upgraded. +--------------------------+ Thu Apr 13 21:19:45 UTC 2017 ap/nano-2.8.1-x86_64-1.txz: Upgraded. n/bind-9.11.0_P5-x86_64-1.txz: Upgraded. Fixed denial of service security issues. For more information, see: https://kb.isc.org/article/AA-01465 https://kb.isc.org/article/AA-01466 https://kb.isc.org/article/AA-01471 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3136 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3137 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3138 (* Security fix *) x/motif-2.3.7-x86_64-1.txz: Upgraded. xfce/tumbler-0.1.31-x86_64-11.txz: Rebuilt. Fixed ffmpegthumbnailer bug. Thanks to Robby Workman. +--------------------------+ Mon Apr 10 18:08:13 UTC 2017 ap/bc-1.07.1-x86_64-1.txz: Upgraded. This fixes the input_char read bug that was causing kernel builds to hang. x/m17n-lib-1.7.0-x86_64-1.txz: Upgraded. xap/xlockmore-5.51-x86_64-2.txz: Rebuilt. Fixed appdefaultdir location. Thanks to Richard Narron. +--------------------------+ Sat Apr 8 16:24:35 UTC 2017 a/ntfs-3g-2017.3.23-x86_64-1.txz: Upgraded. ap/acct-6.6.3-x86_64-1.txz: Upgraded. ap/bc-1.07-x86_64-1.txz: Upgraded. ap/cups-2.2.3-x86_64-1.txz: Upgraded. ap/cups-filters-1.13.4-x86_64-1.txz: Upgraded. ap/dc3dd-7.2.646-x86_64-1.txz: Upgraded. ap/gutenprint-5.2.12-x86_64-1.txz: Upgraded. e/emacs-25.1-x86_64-3.txz: Rebuilt. kde/calligra-2.9.11-x86_64-9.txz: Rebuilt. kde/kdelibs-4.14.30-x86_64-1.txz: Upgraded. kde/kopete-4.14.3-x86_64-3.txz: Rebuilt. kde/krdc-4.14.3-x86_64-3.txz: Rebuilt. kde/libkdcraw-4.14.3-x86_64-4.txz: Rebuilt. l/LibRaw-0.18.2-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/babl-0.1.24-x86_64-1.txz: Upgraded. l/enchant-1.6.1-x86_64-1.txz: Upgraded. l/ffmpeg-3.2.4-x86_64-4.txz: Rebuilt. l/gegl-0.2.0-x86_64-4.txz: Rebuilt. l/giflib-5.1.4-x86_64-1.txz: Upgraded. l/gvfs-1.26.3-x86_64-2.txz: Rebuilt. l/imagemagick-6.9.8_3-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/jasper-2.0.12-x86_64-1.txz: Upgraded. Shared library .so-version bump. Thanks to Heinz Wiesinger. l/libarchive-3.3.1-x86_64-1.txz: Upgraded. l/libbluray-1.0.0-x86_64-1.txz: Added. Built with support for BD-J menus, but without the necessary .jar file to use it. Thanks to Heinz Wiesinger. l/libdiscid-0.6.2-x86_64-1.txz: Upgraded. l/libmtp-1.1.13-x86_64-1.txz: Upgraded. l/libraw1394-2.1.2-x86_64-1.txz: Upgraded. l/libsamplerate-0.1.9-x86_64-1.txz: Upgraded. l/libsndfile-1.0.28-x86_64-1.txz: Upgraded. l/libspectre-0.2.8-x86_64-1.txz: Upgraded. l/libtiff-4.0.7-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5875 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9448 (* Security fix *) l/libvncserver-0.9.11-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/poppler-0.53.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/virtuoso-ose-6.1.8-x86_64-5.txz: Rebuilt. n/openvpn-2.4.1-x86_64-1.txz: Upgraded. x/libdrm-2.4.78-x86_64-1.txz: Upgraded. x/libinput-1.7.0-x86_64-1.txz: Upgraded. x/libpciaccess-0.13.5-x86_64-1.txz: Upgraded. x/libva-1.8.0-x86_64-1.txz: Upgraded. x/libva-intel-driver-1.7.3-x86_64-1.txz: Upgraded. x/mesa-17.0.3-x86_64-1.txz: Upgraded. xap/MPlayer-1.3_20170208-x86_64-3.txz: Rebuilt. xap/gimp-2.8.20-x86_64-2.txz: Rebuilt. xap/mozilla-thunderbird-52.0-x86_64-1.txz: Upgraded. xap/xine-lib-1.2.8-x86_64-1.txz: Upgraded. Thanks to Heinz Wiesinger. xap/xlockmore-5.51-x86_64-1.txz: Upgraded. xap/xv-3.10a-x86_64-8.txz: Rebuilt. xfce/tumbler-0.1.31-x86_64-10.txz: Rebuilt. +--------------------------+ Sat Apr 1 05:16:59 UTC 2017 ap/nano-2.8.0-x86_64-1.txz: Upgraded. n/samba-4.6.2-x86_64-1.txz: Upgraded. This is a bug fix release to address a regression introduced by the security fixes for CVE-2017-2619 (Symlink race allows access outside share definition). Please see https://bugzilla.samba.org/show_bug.cgi?id=12721 for details. +--------------------------+ Thu Mar 30 20:18:17 UTC 2017 l/ffmpeg-3.2.4-x86_64-3.txz: Rebuilt. Recompiled against libcdio-paranoia-10.2+0.94+1. x/libwacom-0.24-x86_64-1.txz: Upgraded. xap/MPlayer-1.3_20170208-x86_64-2.txz: Rebuilt. Recompiled against libcdio-paranoia-10.2+0.94+1. +--------------------------+ Tue Mar 28 20:30:50 UTC 2017 ap/mariadb-10.0.30-x86_64-1.txz: Upgraded. This update fixes security issues: Crash in libmysqlclient.so. Difficult to exploit vulnerability allows low privileged attacker with logon to compromise the server. Successful attacks of this vulnerability can result in unauthorized access to data. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3302 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3313 (* Security fix *) d/pkg-config-0.29.2-x86_64-1.txz: Upgraded. l/libcdio-paranoia-10.2+0.94+1-x86_64-1.txz: Upgraded. n/openssh-7.5p1-x86_64-1.txz: Upgraded. This release deprecates the sshd_config UsePrivilegeSeparation option, thereby making privilege separation mandatory. Note that privilege separation has been on by default for almost 15 years and sandboxing has been on by default for almost the last five, so this shouldn't change anything for most users. xap/mozilla-firefox-52.0.2-x86_64-1.txz: Upgraded. This is a bugfix release. xfce/xfce4-notifyd-0.3.6-x86_64-1.txz: Upgraded. +--------------------------+ Thu Mar 23 21:38:23 UTC 2017 a/glibc-zoneinfo-2017b-noarch-1.txz: Upgraded. a/libgudev-231-x86_64-1.txz: Upgraded. a/lilo-24.2-x86_64-4.txz: Rebuilt. Issue a warning rather than a fatal error for colons in /dev/disk/by-id/ device names. Thanks to alex14641 on LQ. d/cmake-3.7.2-x86_64-1.txz: Upgraded. d/ruby-2.4.1-x86_64-1.txz: Upgraded. n/mcabber-1.0.5-x86_64-1.txz: Upgraded. This update fixes a security issue: An incorrect implementation of XEP-0280: Message Carbons in multiple XMPP clients allows a remote attacker to impersonate any user, including contacts, in the vulnerable application's display. This allows for various kinds of social engineering attacks. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5604 (* Security fix *) n/samba-4.6.1-x86_64-1.txz: Upgraded. This update fixes a security issue: All versions of Samba prior to 4.6.1, 4.5.7, 4.4.12 are vulnerable to a malicious client using a symlink race to allow access to areas of the server file system not exported under the share definition. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2619 (* Security fix *) +--------------------------+ Tue Mar 21 21:42:52 UTC 2017 a/dbus-1.10.16-x86_64-1.txz: Upgraded. a/file-5.30-x86_64-1.txz: Upgraded. a/pciutils-3.5.4-x86_64-1.txz: Upgraded. l/gst-plugins-base-1.10.4-x86_64-1.txz: Upgraded. l/gst-plugins-good-1.10.4-x86_64-1.txz: Upgraded. l/gst-plugins-libav-1.10.4-x86_64-1.txz: Upgraded. l/gstreamer-1.10.4-x86_64-1.txz: Upgraded. l/libpng-1.6.29-x86_64-1.txz: Upgraded. l/libusb-1.0.21-x86_64-1.txz: Upgraded. l/zlib-1.2.11-x86_64-1.txz: Upgraded. n/alpine-2.21-x86_64-1.txz: Upgraded. n/imapd-2.21-x86_64-1.txz: Upgraded. x/dejavu-fonts-ttf-2.37-noarch-1.txz: Upgraded. xfce/Thunar-1.6.11-x86_64-1.txz: Upgraded. +--------------------------+ Mon Mar 20 20:43:14 UTC 2017 a/e2fsprogs-1.43.4-x86_64-1.txz: Upgraded. a/mkinitrd-1.4.9-x86_64-1.txz: Upgraded. Support FSTRIM on LUKS devices unlocked at boot. Note that the expected name of a root LUKS device has changed -- please see the revised README_CRYPT.TXT. Thanks to Mason Loring Bliss for the initial patch, and Robby Workman for a few adjustments and documentation. a/udisks2-2.1.8-x86_64-1.txz: Upgraded. ap/man-pages-4.10-noarch-1.txz: Upgraded. n/gnutls-3.5.10-x86_64-1.txz: Upgraded. n/mobile-broadband-provider-info-20170310-x86_64-1.txz: Upgraded. x/libpthread-stubs-0.4-noarch-1.txz: Upgraded. x/mesa-17.0.2-x86_64-1.txz: Upgraded. x/xf86-video-amdgpu-1.3.0-x86_64-1.txz: Upgraded. x/xf86-video-ati-7.9.0-x86_64-1.txz: Upgraded. xap/audacious-plugins-3.8.2-x86_64-2.txz: Rebuilt. Added ffmpeg support. Thanks to franzen. xap/windowmaker-0.95.8-x86_64-1.txz: Upgraded. +--------------------------+ Sun Mar 19 05:27:13 UTC 2017 l/SDL2-2.0.5-x86_64-1.txz: Added. l/SDL2_gfx-1.0.3-x86_64-1.txz: Added. l/SDL2_image-2.0.1-x86_64-1.txz: Added. l/SDL2_mixer-2.0.1-x86_64-1.txz: Added. l/SDL2_net-2.0.1-x86_64-1.txz: Added. l/SDL2_ttf-2.0.14-x86_64-1.txz: Added. l/ffmpeg-3.2.4-x86_64-2.txz: Rebuilt. The package now includes ffplay, which required the SDL2 libraries. xap/audacious-3.8.2-x86_64-1.txz: Upgraded. xap/audacious-plugins-3.8.2-x86_64-1.txz: Upgraded. +--------------------------+ Sat Mar 18 00:30:40 UTC 2017 xap/mozilla-firefox-52.0.1-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefox.html (* Security fix *) +--------------------------+ Fri Mar 17 21:21:21 UTC 2017 a/mlocate-0.26-x86_64-1.txz: Added. This replaces slocate as the system locate/updatedb utilities. In tests here, mlocate was about 20% faster than slocate at creating a new database. When updating an existing database, it was many times faster. On my machine, the nightly database update took about 5 minutes with slocate, but only a few seconds with mlocate. I might miss (slightly) the heavy drive activity at 04:40 that would let me know that it was time for bed. ;-) Be sure to move the new /etc/updatedb.conf into place when installing this package. a/slocate-3.1-x86_64-4.txz: Removed. xfce/xfwm4-4.12.4-x86_64-1.txz: Upgraded. +--------------------------+ Thu Mar 16 01:37:05 UTC 2017 ap/jove-4.16.0.73-x86_64-3.txz: Rebuilt. Ensure that the teach-jove file is installed. Thanks to bassmadrigal. d/llvm-4.0.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/gdbm-1.13-x86_64-1.txz: Upgraded. n/irssi-1.0.2-x86_64-1.txz: Upgraded. x/mesa-17.0.1-x86_64-2.txz: Rebuilt. Recompiled against libLLVM-4.0.so. x/xf86-input-libinput-0.25.0-x86_64-1.txz: Upgraded. x/xf86-video-intel-git_20170313_7e9e92c8-x86_64-1.txz: Upgraded. x/xf86-video-nouveau-1.0.14-x86_64-1.txz: Upgraded. x/xf86-video-vmware-13.2.1-x86_64-3.txz: Rebuilt. Recompiled against libLLVM-4.0.so. x/xorg-server-1.19.3-x86_64-1.txz: Upgraded. x/xorg-server-xephyr-1.19.3-x86_64-1.txz: Upgraded. x/xorg-server-xnest-1.19.3-x86_64-1.txz: Upgraded. x/xorg-server-xvfb-1.19.3-x86_64-1.txz: Upgraded. xap/pidgin-2.12.0-x86_64-1.txz: Upgraded. This update fixes a minor security issue (out of bounds memory read in purple_markup_unescape_entity). For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2640 (* Security fix *) +--------------------------+ Fri Mar 10 05:41:05 UTC 2017 a/coreutils-8.27-x86_64-1.txz: Upgraded. ap/mc-4.8.19-x86_64-1.txz: Upgraded. l/harfbuzz-1.4.4-x86_64-1.txz: Upgraded. x/libepoxy-1.4.1-x86_64-1.txz: Upgraded. x/libinput-1.6.3-x86_64-1.txz: Upgraded. x/mesa-17.0.1-x86_64-1.txz: Upgraded. x/motif-2.3.6-x86_64-1.txz: Upgraded. xap/gimp-2.8.20-x86_64-1.txz: Upgraded. xap/mozilla-firefox-52.0-x86_64-2.txz: Rebuilt. Recompiled with --enable-alsa option. Without this, there is no fallback support for ALSA if PulseAudio is not present. Thanks to Ivan Kalvatchev. xap/network-manager-applet-1.4.6-x86_64-1.txz: Upgraded. +--------------------------+ Wed Mar 8 00:17:36 UTC 2017 a/kmod-24-x86_64-1.txz: Upgraded. d/binutils-2.28-x86_64-1.txz: Upgraded. d/oprofile-1.1.0-x86_64-3.txz: Rebuilt. Recompiled against new libbfd from binutils-2.28. l/ffmpeg-3.2.4-x86_64-1.txz: Upgraded. Autodetect more optional dependencies in the build script. Thanks to Heinz Wiesinger. x/libX11-1.6.5-x86_64-1.txz: Upgraded. x/libXi-1.7.9-x86_64-1.txz: Upgraded. x/presentproto-1.1-x86_64-1.txz: Upgraded. x/sessreg-1.1.1-x86_64-1.txz: Upgraded. x/util-macros-1.19.1-noarch-1.txz: Upgraded. x/xauth-1.0.10-x86_64-1.txz: Upgraded. x/xconsole-1.0.7-x86_64-1.txz: Upgraded. x/xf86-input-evdev-2.10.5-x86_64-1.txz: Upgraded. x/xf86-input-libinput-0.24.0-x86_64-1.txz: Upgraded. x/xf86-video-chips-1.2.7-x86_64-1.txz: Added. x/xf86-video-glint-1.2.9-x86_64-1.txz: Added. x/xf86-video-i740-1.3.6-x86_64-1.txz: Added. x/xf86-video-intel-git_20170228_78d7a09b-x86_64-1.txz: Upgraded. x/xf86-video-mga-1.6.5-x86_64-1.txz: Added. x/xf86-video-nv-2.1.21-x86_64-1.txz: Added. x/xf86-video-openchrome-0.6.0-x86_64-1.txz: Upgraded. x/xf86-video-r128-6.10.2-x86_64-1.txz: Added. x/xf86-video-savage-2.3.9-x86_64-1.txz: Added. x/xf86-video-siliconmotion-1.7.9-x86_64-1.txz: Added. x/xf86-video-sis-0.10.9-x86_64-1.txz: Added. x/xf86-video-sisusb-0.9.7-x86_64-1.txz: Upgraded. x/xf86-video-tdfx-1.4.7-x86_64-1.txz: Added. x/xf86-video-trident-1.3.8-x86_64-1.txz: Added. x/xorg-server-1.19.2-x86_64-1.txz: Upgraded. x/xorg-server-xephyr-1.19.2-x86_64-1.txz: Upgraded. x/xorg-server-xnest-1.19.2-x86_64-1.txz: Upgraded. x/xorg-server-xvfb-1.19.2-x86_64-1.txz: Upgraded. xap/mozilla-firefox-52.0-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefox.html (* Security fix *) xap/mozilla-thunderbird-45.8.0-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/thunderbird.html (* Security fix *) +--------------------------+ Tue Feb 28 23:51:55 UTC 2017 a/coreutils-8.26-x86_64-2.txz: Rebuilt. Added a few more file extensions to /etc/DIR_COLORS, including .lz. a/ed-1.14.2-x86_64-1.txz: Upgraded. a/etc-14.2-x86_64-9.txz: Rebuilt. Added cgred group to /etc/group.new. (cgred:x:41:) a/glibc-zoneinfo-2017a-noarch-1.txz: Upgraded. a/libcgroup-0.41-x86_64-2.txz: Rebuilt. Fixed rc.cgred to source the correct config file. Changed /usr/bin/cgexec from setuid root to setgid cgred. Don't remove the entire cgroup file system with "rc.cgconfig stop". Thanks to chris.willing. a/shadow-4.2.1-x86_64-2.txz: Rebuilt. Patched a potential security issue that allows any local user to send SIGKILL to other processes with root privileges. Note that Slackware is not vulnerable since the bug only affects systems that use PAM. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2616 (* Security fix *) a/util-linux-2.29.2-x86_64-1.txz: Upgraded. This update fixes a potential security issue that allows any local user to send SIGKILL to other processes with root privileges. Note that Slackware is not vulnerable since we do not use /bin/su from util-linux, and the bug only affects systems that use PAM. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2616 (* Security fix *) ap/nano-2.7.5-x86_64-1.txz: Upgraded. ap/screen-4.5.1-x86_64-1.txz: Upgraded. d/guile-2.0.14-x86_64-1.txz: Upgraded. l/cairo-1.14.8-x86_64-1.txz: Upgraded. l/fftw-3.3.6_pl1-x86_64-1.txz: Upgraded. l/libimobiledevice-1.2.0-x86_64-2.txz: Rebuilt. Patched to fix mounting iOS 10 devices. Thanks to qunying. l/libsigsegv-2.11-x86_64-1.txz: Upgraded. n/ModemManager-1.6.4-x86_64-1.txz: Upgraded. n/NetworkManager-1.6.2-x86_64-1.txz: Upgraded. n/curl-7.53.1-x86_64-1.txz: Upgraded. Fixes SSL_VERIFYSTATUS ignored security issue. (Issue only existed in Slackware -current, not in any -stable releases) For more information, see: https://curl.haxx.se/docs/adv_20170222.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2629 (* Security fix *) n/libmbim-1.14.0-x86_64-1.txz: Upgraded. n/libqmi-1.16.2-x86_64-1.txz: Upgraded. Shared library .so-version bump. xap/windowmaker-0.95.7-x86_64-3.txz: Rebuilt. Disabled overly verbose logging of warnings to syslog. Thanks to B Watson. +--------------------------+ Mon Feb 13 06:21:22 UTC 2017 a/grep-3.0-x86_64-1.txz: Upgraded. l/gst-plugins-libav-1.10.3-x86_64-1.txz: Added. Thanks to alienBOB. n/wget-1.19.1-x86_64-1.txz: Upgraded. +--------------------------+ Fri Feb 10 21:07:35 UTC 2017 a/aaa_elflibs-14.2-x86_64-28.txz: Rebuilt. a/grep-2.28-x86_64-1.txz: Upgraded. a/hdparm-9.51-x86_64-1.txz: Upgraded. a/openssl-solibs-1.0.2k-x86_64-1.txz: Upgraded. a/sed-4.4-x86_64-1.txz: Upgraded. a/util-linux-2.29.1-x86_64-1.txz: Upgraded. ap/ddrescue-1.22-x86_64-1.txz: Upgraded. ap/flac-1.3.2-x86_64-1.txz: Upgraded. ap/sqlite-3.16.2-x86_64-1.txz: Upgraded. ap/tmux-2.3-x86_64-2.txz: Rebuilt. Recompiled against libevent-2.1.8. d/llvm-3.9.1-x86_64-1.txz: Upgraded. Shared library .so-version bump. Added support for lldb and openmp to the package. Thanks to Heinz Wiesinger. d/opencl-headers-2.1-noarch-1.txz: Added. d/scons-2.5.1-x86_64-1.txz: Upgraded. l/ffmpeg-3.2.3-x86_64-1.txz: Added. Thanks to Heinz Wiesinger. l/gmime-2.6.23-x86_64-1.txz: Upgraded. l/gst-plugins-base-1.10.3-x86_64-1.txz: Upgraded. l/gst-plugins-good-1.10.3-x86_64-1.txz: Upgraded. l/gstreamer-1.10.3-x86_64-1.txz: Upgraded. l/json-c-0.12-x86_64-1.txz: Removed. This had been a required dep for PulseAudio, but has become optional. Since being added to Slackware, a few other packages had begun to use it (NetworkManager, BIND), but it's not really critical there either so we're removing it from the main tree. If you require json-c for something, it is expected that SBo will be picking it up. l/libclc-20160921_520743b-x86_64-1.txz: Added. This is needed by Mesa. l/libedit-20160903_3.1-x86_64-1.txz: Added. This is needed by lldb. l/libevent-2.1.8-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/libjpeg-turbo-1.5.1-x86_64-1.txz: Upgraded. l/libnl3-3.2.29-x86_64-1.txz: Upgraded. l/libpcap-1.8.1-x86_64-1.txz: Upgraded. l/libvpx-1.6.1-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/libzip-1.1.3-x86_64-1.txz: Upgraded. l/ocl-icd-2.2.11-x86_64-1.txz: Added. l/openjpeg-2.1.2-x86_64-1.txz: Upgraded. l/pulseaudio-10.0-x86_64-1.txz: Upgraded. l/python-six-1.10.0-x86_64-1.txz: Added. This is needed by lldb. l/rasqal-0.9.33-x86_64-1.txz: Upgraded. l/redland-1.0.17-x86_64-1.txz: Upgraded. l/serf-1.3.9-x86_64-1.txz: Upgraded. n/NetworkManager-1.6.0-x86_64-1.txz: Upgraded. n/bind-9.11.0_P3-x86_64-1.txz: Upgraded. This update fixes a denial-of-service vulnerability. Under some conditions when using both DNS64 and RPZ to rewrite query responses, query processing can resume in an inconsistent state leading to either an INSIST assertion failure or an attempt to read through a NULL pointer. For more information, see: https://kb.isc.org/article/AA-01453 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3135 (* Security fix *) n/iproute2-4.9.0-x86_64-1.txz: Upgraded. n/iptables-1.6.1-x86_64-1.txz: Upgraded. Shared library .so-version bump. n/links-2.14-x86_64-2.txz: Rebuilt. Recompiled against libevent-2.1.8. n/mutt-1.7.2-x86_64-2.txz: Rebuilt. Recompiled with --enable-sidebar option. Thanks to Corrado Franco. n/nftables-0.7-x86_64-2.txz: Rebuilt. Recompiled against iptables-1.6.1. Added libxtables support. n/ntp-4.2.8p9-x86_64-3.txz: Rebuilt. Recompiled against libevent-2.1.8. n/openssl-1.0.2k-x86_64-1.txz: Upgraded. This update fixes security issues: Truncated packet could crash via OOB read (CVE-2017-3731) BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732) Montgomery multiplication may produce incorrect results (CVE-2016-7055) For more information, see: https://www.openssl.org/news/secadv/20170126.txt https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3731 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3732 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7055 (* Security fix *) n/php-5.6.30-x86_64-1.txz: Upgraded. This release fixes bugs and security issues. For more information, see: https://php.net/ChangeLog-5.php#5.6.30 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10158 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10167 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10168 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10159 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10160 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10161 (* Security fix *) n/samba-4.5.5-x86_64-1.txz: Upgraded. n/tcpdump-4.9.0-x86_64-1.txz: Upgraded. Fixed bugs which allow an attacker to crash tcpdump (denial of service). For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7922 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7923 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7924 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7925 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7926 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7927 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7928 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7929 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7930 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7931 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7932 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7933 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7934 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7935 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7936 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7937 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7938 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7939 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7940 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7973 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7974 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7975 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7983 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7984 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7985 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7986 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7992 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7993 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8574 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8575 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5202 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5203 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5204 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5205 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5341 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5342 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5482 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5483 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5484 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5485 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5486 (* Security fix *) n/wget-1.19-x86_64-1.txz: Upgraded. n/zd1211-firmware-1.5-fw-1.txz: Upgraded. x/fontconfig-2.12.1-x86_64-1.txz: Upgraded. Thanks to Robby Workman. x/libdrm-2.4.75-x86_64-1.txz: Upgraded. x/libinput-1.6.0-x86_64-1.txz: Upgraded. x/mesa-13.0.4-x86_64-1.txz: Upgraded. x/xf86-video-vmware-13.2.1-x86_64-2.txz: Rebuilt. Recompiled against llvm-3.9.1. xap/MPlayer-1.3_20170208-x86_64-1.txz: Upgraded. Upgraded to 1.3 branch, compiled against system ffmpeg-3.2.3. Thanks to Heinz Wiesinger. xap/mozilla-thunderbird-45.7.1-x86_64-1.txz: Upgraded. Fixed crash when viewing certain IMAP messages (introduced in 45.7.0) xap/network-manager-applet-1.4.4-x86_64-1.txz: Upgraded. xap/xine-lib-1.2.6-x86_64-10.txz: Rebuilt. Recompiled against system ffmpeg-3.2.3. +--------------------------+ Thu Jan 26 21:33:41 UTC 2017 xap/mozilla-firefox-51.0.1-x86_64-1.txz: Upgraded. Fixed geolocation problems with Firefox 51.0. xap/mozilla-thunderbird-45.7.0-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/thunderbird.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5375 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5376 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5378 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5380 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5390 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5396 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5383 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5386 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5373 (* Security fix *) +--------------------------+ Mon Jan 23 21:30:13 UTC 2017 d/gdb-7.12.1-x86_64-1.txz: Upgraded. xap/fvwm-2.6.7-x86_64-3.txz: Rebuilt. Fixed the broken symlinks in a better way. Thanks to GazL for the patch. xap/mozilla-firefox-51.0-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefox.html (* Security fix *) +--------------------------+ Fri Jan 20 04:18:02 UTC 2017 l/seamonkey-solibs-2.46-x86_64-3.txz: Rebuilt. xap/fvwm-2.6.7-x86_64-2.txz: Rebuilt. Reverted an upstream patch that causes some broken symlinks to be installed. Thanks to GazL. xap/seamonkey-2.46-x86_64-3.txz: Rebuilt. Recompiled with less aggressive optimization (-Os) to fix crashes. +--------------------------+ Wed Jan 18 20:39:17 UTC 2017 ap/mariadb-10.0.29-x86_64-1.txz: Upgraded. This update fixes several security issues. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6664 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3238 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3243 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3244 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3257 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3258 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3265 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3291 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3312 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3317 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3318 (* Security fix *) +--------------------------+ Wed Jan 18 02:33:18 UTC 2017 a/cryptsetup-1.7.3-x86_64-2.txz: Rebuilt. Recompiled with --enable-cryptsetup-reencrypt option. Thanks to Jakub Jankowski for the suggestion. ap/screen-4.5.0-x86_64-1.txz: Upgraded. l/libtasn1-4.10-x86_64-1.txz: Upgraded. l/seamonkey-solibs-2.46-x86_64-2.txz: Rebuilt. x/libinput-1.5.4-x86_64-1.txz: Added. x/libwacom-0.22-x86_64-1.txz: Added. This is needed for libinput. x/xf86-input-libinput-0.23.0-x86_64-1.txz: Added. This is the new generic X.Org input driver which replaces evdev for most purposes. It does not (for now) replace xf86-input-synaptics or xf86-input-vmmouse. If this driver package is missing then X will fall back to using xf86-input-evdev as before. Thanks to Robby Workman. x/xorg-server-1.19.1-x86_64-2.txz: Rebuilt. Rename 90-keyboard-layout.conf to 90-keyboard-layout-evdev.conf. x/xorg-server-xephyr-1.19.1-x86_64-2.txz: Rebuilt. x/xorg-server-xnest-1.19.1-x86_64-2.txz: Rebuilt. x/xorg-server-xvfb-1.19.1-x86_64-2.txz: Rebuilt. xap/seamonkey-2.46-x86_64-2.txz: Rebuilt. Restored missing nspr/obsolete headers. +--------------------------+ Sat Jan 14 05:34:32 UTC 2017 a/util-linux-2.29-x86_64-2.txz: Rebuilt. Restored support for /etc/mtab. n/iw-4.9-x86_64-1.txz: Upgraded. x/scim-1.4.17-x86_64-1.txz: Upgraded. extra/tigervnc/tigervnc-1.7.0-x86_64-2.txz: Rebuilt. Recompiled for xorg-server-1.19.1. +--------------------------+ Fri Jan 13 01:10:05 UTC 2017 a/grub-2.02_beta3-x86_64-2.txz: Rebuilt. Make the package version number more sane. +--------------------------+ Thu Jan 12 21:07:23 UTC 2017 ap/cups-filters-1.13.2-x86_64-1.txz: Upgraded. ap/nano-2.7.4-x86_64-2.txz: Rebuilt. Fixed /etc/nanorc.new. Thanks to SeB. kde/calligra-2.9.11-x86_64-8.txz: Rebuilt. l/poppler-0.50.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. xfce/tumbler-0.1.31-x86_64-9.txz: Rebuilt. +--------------------------+ Thu Jan 12 01:15:52 UTC 2017 a/aaa_elflibs-14.2-x86_64-27.txz: Rebuilt. Upgraded libcap.so.2.25, liblzma.so.5.2.3, and libz.so.1.2.10. a/bash-4.4.005-x86_64-2.txz: Rebuilt. a/dialog-1.3_20160828-x86_64-1.txz: Upgraded. a/ed-1.14.1-x86_64-1.txz: Upgraded. a/elvis-2.2_0-x86_64-3.txz: Rebuilt. a/file-5.29-x86_64-1.txz: Upgraded. a/gawk-4.1.4-x86_64-2.txz: Rebuilt. a/gettext-0.19.8.1-x86_64-2.txz: Rebuilt. a/getty-ps-2.1.0b-x86_64-3.txz: Rebuilt. a/gpm-1.20.7-x86_64-4.txz: Rebuilt. a/gptfdisk-1.0.1-x86_64-1.txz: Upgraded. a/grub-2.02~beta3-x86_64-1.txz: Upgraded. Thanks to Heinz Wiesinger. Thanks to ReaperX7 for the updated dejavusansmono patch. a/hwdata-0.291-noarch-1.txz: Upgraded. a/less-481-x86_64-2.txz: Rebuilt. a/minicom-2.7-x86_64-1.txz: Upgraded. a/procps-ng-3.3.12-x86_64-1.txz: Upgraded. a/sed-4.3-x86_64-1.txz: Upgraded. a/splitvt-1.6.6-x86_64-1.txz: Upgraded. a/tcsh-6.20.00-x86_64-1.txz: Upgraded. a/util-linux-2.29-x86_64-1.txz: Upgraded. a/xfsprogs-4.8.0-x86_64-1.txz: Upgraded. a/xz-5.2.3-x86_64-1.txz: Upgraded. ap/alsa-utils-1.1.3-x86_64-1.txz: Upgraded. ap/bc-1.06.95-x86_64-4.txz: Rebuilt. ap/bpe-2.01.00-x86_64-3.txz: Rebuilt. ap/ghostscript-9.20-x86_64-2.txz: Rebuilt. Restored /usr/bin/ijs-config. ap/gphoto2-2.5.11-x86_64-1.txz: Upgraded. ap/gutenprint-5.2.11-x86_64-3.txz: Rebuilt. ap/htop-2.0.2-x86_64-1.txz: Upgraded. ap/ispell-3.4.00-x86_64-1.txz: Upgraded. ap/joe-4.3-x86_64-1.txz: Upgraded. ap/jove-4.16.0.73-x86_64-2.txz: Rebuilt. ap/mariadb-10.0.28-x86_64-2.txz: Rebuilt. ap/mc-4.8.18-x86_64-1.txz: Upgraded. ap/moc-2.5.2-x86_64-1.txz: Upgraded. ap/nano-2.7.4-x86_64-1.txz: Upgraded. ap/pamixer-1.3.1-x86_64-3.txz: Rebuilt. ap/powertop-2.8-x86_64-2.txz: Rebuilt. ap/sc-7.16-x86_64-5.txz: Rebuilt. ap/screen-4.4.0-x86_64-3.txz: Rebuilt. ap/sqlite-3.16.1-x86_64-1.txz: Upgraded. ap/texinfo-6.3-x86_64-2.txz: Rebuilt. ap/vim-8.0.0161-x86_64-1.txz: Upgraded. ap/xfsdump-3.1.6-x86_64-2.txz: Rebuilt. ap/zsh-5.3.1-x86_64-1.txz: Upgraded. d/clisp-2.49.20161111-x86_64-1.txz: Upgraded. d/cmake-3.7.1-x86_64-1.txz: Upgraded. d/cscope-15.8b-x86_64-2.txz: Rebuilt. d/flex-2.6.3-x86_64-1.txz: Upgraded. d/gdb-7.12-x86_64-2.txz: Rebuilt. d/gettext-tools-0.19.8.1-x86_64-2.txz: Rebuilt. d/gnu-cobol-1.1-x86_64-2.txz: Rebuilt. d/gperf-3.1-x86_64-1.txz: Upgraded. d/guile-2.0.13-x86_64-2.txz: Rebuilt. d/m4-1.4.18-x86_64-1.txz: Upgraded. d/make-4.2.1-x86_64-1.txz: Upgraded. d/perl-5.24.0-x86_64-1.txz: Upgraded. Also upgraded to DBD-mysql-4.041 and TermReadKey-2.37. d/ruby-2.4.0-x86_64-1.txz: Upgraded. d/subversion-1.9.5-x86_64-1.txz: Upgraded. e/emacs-25.1-x86_64-2.txz: Rebuilt. kde/analitza-4.14.3-x86_64-3.txz: Rebuilt. kde/calligra-2.9.11-x86_64-7.txz: Rebuilt. kde/kdelibs-4.14.27-x86_64-1.txz: Upgraded. kde/kig-4.14.3-x86_64-5.txz: Rebuilt. kde/korundum-4.14.3-x86_64-4.txz: Rebuilt. kde/lokalize-4.14.3-x86_64-3.txz: Rebuilt. kde/perlkde-4.14.3-x86_64-3.txz: Rebuilt. kde/perlqt-4.14.3-x86_64-3.txz: Rebuilt. kde/qtruby-4.14.3-x86_64-5.txz: Rebuilt. l/akonadi-1.13.0-x86_64-4.txz: Rebuilt. l/alsa-lib-1.1.3-x86_64-1.txz: Upgraded. l/aspell-0.60.6.1-x86_64-2.txz: Rebuilt. l/boost-1.63.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/enchant-1.6.0-x86_64-2.txz: Rebuilt. l/hunspell-1.6.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/libcaca-0.99.beta19-x86_64-1.txz: Upgraded. l/libcap-2.25-x86_64-1.txz: Upgraded. l/libcdio-0.94-x86_64-2.txz: Rebuilt. l/libgphoto2-2.5.11-x86_64-1.txz: Upgraded. l/libnjb-2.2.7-x86_64-1.txz: Upgraded. l/libproxy-0.4.13-x86_64-1.txz: Upgraded. l/parted-3.2-x86_64-3.txz: Rebuilt. l/pilot-link-0.12.5-x86_64-12.txz: Rebuilt. l/taglib-1.11.1-x86_64-1.txz: Upgraded. l/virtuoso-ose-6.1.8-x86_64-4.txz: Rebuilt. l/vte-0.28.2-x86_64-5.txz: Rebuilt. l/wavpack-5.0.0-x86_64-1.txz: Upgraded. l/zlib-1.2.10-x86_64-1.txz: Upgraded. n/NetworkManager-1.2.6-x86_64-2.txz: Rebuilt. n/alpine-2.20-x86_64-3.txz: Rebuilt. n/bind-9.11.0_P2-x86_64-1.txz: Upgraded. This update fixes a denial-of-service vulnerability. An error in handling certain queries can cause an assertion failure when a server is using the nxdomain-redirect feature to cover a zone for which it is also providing authoritative service. A vulnerable server could be intentionally stopped by an attacker if it was using a configuration that met the criteria for the vulnerability and if the attacker could cause it to accept a query that possessed the required attributes. Please note: This vulnerability affects the "nxdomain-redirect" feature, which is one of two methods of handling NXDOMAIN redirection, and is only available in certain versions of BIND. Redirection using zones of type "redirect" is not affected by this vulnerability. For more information, see: https://kb.isc.org/article/AA-01442 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9778 (* Security fix *) n/bluez-5.43-x86_64-1.txz: Upgraded. n/elm-2.5.8-x86_64-4.txz: Rebuilt. n/epic5-2.0.1-x86_64-1.txz: Upgraded. n/gnupg-1.4.21-x86_64-2.txz: Rebuilt. n/gnupg2-2.0.30-x86_64-2.txz: Rebuilt. n/gnutls-3.5.8-x86_64-1.txz: Upgraded. This update fixes some bugs and security issues. For more information, see: https://gnutls.org/security.html#GNUTLS-SA-2017-1 https://gnutls.org/security.html#GNUTLS-SA-2017-2 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5334 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5335 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5336 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5337 (* Security fix *) n/iftop-1.0pre4-x86_64-1.txz: Upgraded. n/imapd-2.20-x86_64-3.txz: Rebuilt. n/iptraf-ng-1.1.4-x86_64-2.txz: Rebuilt. n/irssi-0.8.21-x86_64-1.txz: Upgraded. Fixed security issues that may result in a denial of service. For more information, see: https://irssi.org/security/irssi_sa_2017_01.txt https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5193 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5194 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5195 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5196 (* Security fix *) n/lftp-4.7.5-x86_64-1.txz: Upgraded. n/libnftnl-1.0.7-x86_64-1.txz: Upgraded. n/links-2.14-x86_64-1.txz: Upgraded. n/lynx-2.8.8rel.2-x86_64-2.txz: Rebuilt. n/mcabber-1.0.4-x86_64-2.txz: Rebuilt. n/metamail-2.7-x86_64-6.txz: Rebuilt. n/mtr-0.87-x86_64-1.txz: Upgraded. n/mutt-1.7.2-x86_64-1.txz: Upgraded. n/ncftp-3.2.6-x86_64-1.txz: Upgraded. n/net-snmp-5.7.3-x86_64-4.txz: Rebuilt. n/netkit-ftp-0.17-x86_64-3.txz: Rebuilt. n/netkit-ntalk-0.17-x86_64-4.txz: Rebuilt. n/netwatch-1.3.1_2-x86_64-2.txz: Rebuilt. n/nftables-0.7-x86_64-1.txz: Upgraded. n/nn-6.7.3-x86_64-4.txz: Rebuilt. n/ntp-4.2.8p9-x86_64-2.txz: Rebuilt. n/obexftp-0.24.2-x86_64-1.txz: Upgraded. n/openobex-1.7.2-x86_64-1.txz: Upgraded. n/pinentry-1.0.0-x86_64-2.txz: Rebuilt. n/proftpd-1.3.5b-x86_64-2.txz: Rebuilt. n/snownews-1.5.12-x86_64-3.txz: Rebuilt. n/telnet-0.17-x86_64-3.txz: Rebuilt. n/tftp-hpa-5.2-x86_64-3.txz: Rebuilt. n/tin-2.4.1-x86_64-1.txz: Upgraded. n/trn-3.6-x86_64-2.txz: Removed. n/wpa_supplicant-2.6-x86_64-1.txz: Upgraded. n/ytalk-3.3.0-x86_64-3.txz: Rebuilt. x/xf86-video-intel-git_20170103_028c946d-x86_64-1.txz: Upgraded. x/xorg-server-1.19.1-x86_64-1.txz: Upgraded. x/xorg-server-xephyr-1.19.1-x86_64-1.txz: Upgraded. x/xorg-server-xnest-1.19.1-x86_64-1.txz: Upgraded. x/xorg-server-xvfb-1.19.1-x86_64-1.txz: Upgraded. x/xterm-327-x86_64-1.txz: Upgraded. xap/MPlayer-1.2_20160125-x86_64-4.txz: Rebuilt. Upgraded to ffmpeg-2.8.10. xap/ddd-3.3.12-x86_64-5.txz: Rebuilt. xap/fvwm-2.6.7-x86_64-1.txz: Upgraded. xap/gftp-2.0.19-x86_64-5.txz: Rebuilt. xap/gnuchess-6.2.4-x86_64-2.txz: Rebuilt. xap/gparted-0.27.0-x86_64-1.txz: Upgraded. xap/hexchat-2.12.4-x86_64-1.txz: Upgraded. xap/imagemagick-6.9.7_3-x86_64-1.txz: Upgraded. Shared library .so-version bump. xap/pidgin-2.11.0-x86_64-2.txz: Rebuilt. xap/vim-gvim-8.0.0161-x86_64-1.txz: Upgraded. xap/xine-lib-1.2.6-x86_64-9.txz: Rebuilt. Upgraded to ffmpeg-2.8.10. xap/xine-ui-0.99.9-x86_64-2.txz: Rebuilt. xap/xlockmore-5.50-x86_64-1.txz: Upgraded. extra/brltty/brltty-5.4-x86_64-2.txz: Rebuilt. Patched /lib/udev/rules.d/40-usb-brltty.rules to fix a syntax error. Thanks to Willy Sudiarto Raharjo. +--------------------------+ Fri Dec 30 19:29:13 UTC 2016 a/aaa_elflibs-14.2-x86_64-26.txz: Rebuilt. a/btrfs-progs-v4.9-x86_64-1.txz: Upgraded. ap/hplip-3.16.11-x86_64-1.txz: Upgraded. ap/tmux-2.3-x86_64-1.txz: Upgraded. l/elfutils-0.168-x86_64-1.txz: Upgraded. l/libpng-1.6.27-x86_64-1.txz: Upgraded. This release fixes an old NULL pointer dereference bug in png_set_text_2() discovered and patched by Patrick Keshishian. The potential "NULL dereference" bug has existed in libpng since version 0.71 of June 26, 1995. To be vulnerable, an application has to load a text chunk into the png structure, then delete all text, then add another text chunk to the same png structure, which seems to be an unlikely sequence, but it has happened. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10087 (* Security fix *) l/seamonkey-solibs-2.46-x86_64-1.txz: Upgraded. n/openvpn-2.4.0-x86_64-1.txz: Upgraded. x/libXpm-3.5.12-x86_64-1.txz: Upgraded. x/libdrm-2.4.74-x86_64-1.txz: Upgraded. x/mesa-13.0.2-x86_64-1.txz: Upgraded. x/xf86-video-dummy-0.3.8-x86_64-1.txz: Upgraded. x/xf86-video-intel-git_20161117_169c74fa-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-45.6.0-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/thunderbird.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9899 (* Security fix *) xap/seamonkey-2.46-x86_64-1.txz: Upgraded. This update contains security fixes and improvements. For more information, see: http://www.seamonkey-project.org/releases/seamonkey2.46 (* Security fix *) xfce/xfce4-panel-4.12.1-x86_64-1.txz: Upgraded. xfce/xfce4-settings-4.12.1-x86_64-1.txz: Upgraded. xfce/xfconf-4.12.1-x86_64-1.txz: Upgraded. +--------------------------+ Wed Dec 28 21:05:19 UTC 2016 ap/nano-2.7.3-x86_64-1.txz: Upgraded. d/python-2.7.13-x86_64-1.txz: Upgraded. This release fixes security issues: Issue #27850: Remove 3DES from ssl module's default cipher list to counter measure sweet32 attack (CVE-2016-2183). Issue #27568: Prevent HTTPoxy attack (CVE-2016-1000110). Ignore the HTTP_PROXY variable when REQUEST_METHOD environment is set, which indicates that the script is in CGI mode. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2183 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1000110 (* Security fix *) n/samba-4.5.3-x86_64-1.txz: Upgraded. This release fixes security issues: CVE-2016-2123 (Samba NDR Parsing ndr_pull_dnsp_name Heap-based Buffer Overflow Remote Code Execution Vulnerability). CVE-2016-2125 (Unconditional privilege delegation to Kerberos servers in trusted realms). CVE-2016-2126 (Flaws in Kerberos PAC validation can trigger privilege elevation). For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2123 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2125 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2126 (* Security fix *) +--------------------------+ Sat Dec 24 18:14:51 UTC 2016 a/aaa_elflibs-14.2-x86_64-25.txz: Upgraded. l/expat-2.2.0-x86_64-1.txz: Upgraded. This update fixes bugs and security issues: Multiple integer overflows in XML_GetBuffer. Fix crash on malformed input. Improve insufficient fix to CVE-2015-1283 / CVE-2015-2716. Use more entropy for hash initialization. Resolve troublesome internal call to srand. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1283 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0718 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4472 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5300 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6702 (* Security fix *) l/ncurses-6.0-x86_64-2.txz: Rebuilt. Fixed install script to correctly remove "lint" from the 5.x package. +--------------------------+ Sat Dec 24 02:36:05 UTC 2016 a/aaa_elflibs-14.2-x86_64-24.txz: Rebuilt. Added libform.so.6.0, libformw.so.6.0, libhistory.so.7.0, libmenu.so.6.0, libmenuw.so.6.0, libncurses.so.6.0, libncursesw.so.6.0, libpanel.so.6.0, libpanelw.so.6.0, libreadline.so.7.0, and libtinfo.so.6.0. l/libtermcap-1.2.3-x86_64-7.txz: Removed. Replaced by equivalent functionality in the ncurses package. l/ncurses-6.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. Rebuild of linked binaries pending, but the old library versions are in the aaa_elflibs package. l/readline-7.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. Rebuild of linked binaries pending, but the old library versions are in the aaa_elflibs package. n/curl-7.52.1-x86_64-1.txz: Upgraded. n/gpa-0.9.10-x86_64-1.txz: Upgraded. n/gpgme-1.7.1-x86_64-1.txz: Upgraded. n/httpd-2.4.25-x86_64-1.txz: Upgraded. This update fixes the following security issues: * CVE-2016-8740: mod_http2: Mitigate DoS memory exhaustion via endless CONTINUATION frames. * CVE-2016-5387: core: Mitigate [f]cgi "httpoxy" issues. * CVE-2016-2161: mod_auth_digest: Prevent segfaults during client entry allocation when the shared memory space is exhausted. * CVE-2016-0736: mod_session_crypto: Authenticate the session data/cookie with a MAC (SipHash) to prevent deciphering or tampering with a padding oracle attack. * CVE-2016-8743: Enforce HTTP request grammar corresponding to RFC7230 for request lines and request headers, to prevent response splitting and cache pollution by malicious clients or downstream proxies. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8740 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5387 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2161 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0736 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8743 (* Security fix *) n/lftp-4.7.4-x86_64-1.txz: Upgraded. n/libassuan-2.4.3-x86_64-1.txz: Upgraded. n/libgcrypt-1.7.5-x86_64-1.txz: Upgraded. n/libksba-1.3.5-x86_64-1.txz: Upgraded. n/nettle-3.3-x86_64-1.txz: Upgraded. n/nmap-7.40-x86_64-1.txz: Upgraded. n/openssh-7.4p1-x86_64-1.txz: Upgraded. This is primarily a bugfix release, and also addresses security issues. ssh-agent(1): Will now refuse to load PKCS#11 modules from paths outside a trusted whitelist. sshd(8): When privilege separation is disabled, forwarded Unix-domain sockets would be created by sshd(8) with the privileges of 'root'. sshd(8): Avoid theoretical leak of host private key material to privilege-separated child processes via realloc(). sshd(8): The shared memory manager used by pre-authentication compression support had a bounds checks that could be elided by some optimising compilers to potentially allow attacks against the privileged monitor. process from the sandboxed privilege-separation process. sshd(8): Validate address ranges for AllowUser and DenyUsers directives at configuration load time and refuse to accept invalid ones. It was previously possible to specify invalid CIDR address ranges (e.g. user@127.1.2.3/55) and these would always match, possibly resulting in granting access where it was not intended. For more information, see: https://www.openssh.com/txt/release-7.4 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10009 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10010 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10011 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10012 (* Security fix *) n/pinentry-1.0.0-x86_64-1.txz: Upgraded. xfce/xfce4-weather-plugin-0.8.8-x86_64-1.txz: Upgraded. Package upgraded to fix the API used to fetch weather data. Thanks to Robby Workman. testing/packages/gcc-6.3.0-x86_64-1.txz: Upgraded. testing/packages/gcc-g++-6.3.0-x86_64-1.txz: Upgraded. testing/packages/gcc-gfortran-6.3.0-x86_64-1.txz: Upgraded. testing/packages/gcc-gnat-6.3.0-x86_64-1.txz: Upgraded. testing/packages/gcc-go-6.3.0-x86_64-1.txz: Upgraded. testing/packages/gcc-java-6.3.0-x86_64-1.txz: Upgraded. testing/packages/gcc-objc-6.3.0-x86_64-1.txz: Upgraded. +--------------------------+ Sun Dec 18 05:20:25 UTC 2016 a/glibc-zoneinfo-2016j-noarch-1.txz: Upgraded. +--------------------------+ Tue Dec 13 22:14:13 UTC 2016 Thanks to Robby Workman for most of these updates. a/acpid-2.0.28-x86_64-1.txz: Upgraded. a/cryptsetup-1.7.3-x86_64-1.txz: Upgraded. a/dbus-1.10.14-x86_64-1.txz: Upgraded. a/lvm2-2.02.168-x86_64-1.txz: Upgraded. ap/alsa-utils-1.1.2-x86_64-1.txz: Upgraded. ap/man-pages-4.09-noarch-1.txz: Upgraded. d/git-2.11.0-x86_64-1.txz: Upgraded. l/alsa-lib-1.1.2-x86_64-1.txz: Upgraded. l/dbus-glib-0.108-x86_64-1.txz: Upgraded. n/NetworkManager-1.2.6-x86_64-1.txz: Upgraded. n/bluez-5.42-x86_64-1.txz: Upgraded. n/conntrack-tools-1.4.4-x86_64-1.txz: Upgraded. n/libnetfilter_acct-1.0.3-x86_64-1.txz: Upgraded. n/libnetfilter_conntrack-1.0.6-x86_64-1.txz: Upgraded. n/nfacct-1.0.2-x86_64-1.txz: Upgraded. xap/mozilla-firefox-50.1.0-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefox.html (* Security fix *) xap/network-manager-applet-1.2.6-x86_64-1.txz: Upgraded. extra/source/flashplayer-plugin/flashplayer-plugin.SlackBuild: Updated. Fixed filename and URL for new version 24. Thanks to alienBOB. +--------------------------+ Mon Dec 12 21:25:50 UTC 2016 a/coreutils-8.26-x86_64-1.txz: Upgraded. a/grep-2.27-x86_64-1.txz: Upgraded. a/kernel-firmware-20161211git-noarch-1.txz: Upgraded. a/kernel-generic-4.4.38-x86_64-1.txz: Upgraded. This kernel fixes a security issue with a race condition in net/packet/af_packet.c that can be exploited to gain kernel code execution from unprivileged processes. Thanks to Philip Pettersson for discovering the bug and providing a patch. Be sure to upgrade your initrd after upgrading the kernel packages. If you use lilo to boot your machine, be sure lilo.conf points to the correct kernel and initrd and run lilo as root to update the bootloader. If you use elilo to boot your machine, you should run eliloconfig to copy the kernel and initrd to the EFI System Partition. For more information, see: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=84ac7260236a49c79eede91617700174c2c19b0c https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8655 (* Security fix *) a/kernel-huge-4.4.38-x86_64-1.txz: Upgraded. (* Security fix *) a/kernel-modules-4.4.38-x86_64-1.txz: Upgraded. ap/nano-2.7.2-x86_64-1.txz: Upgraded. d/kernel-headers-4.4.38-x86-1.txz: Upgraded. k/kernel-source-4.4.38-noarch-1.txz: Upgraded. (* Security fix *) l/gsl-2.3-x86_64-1.txz: Upgraded. l/loudmouth-1.5.3-x86_64-1.txz: Upgraded. n/mcabber-1.0.4-x86_64-1.txz: Upgraded. This update fixes a security issue which can lead to a malicious actor MITMing a conversation, or adding themselves as an entity on a third parties roster (thereby granting themselves the associated priviledges such as observing when the user is online). For more information, see: https://gultsch.de/gajim_roster_push_and_message_interception.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9928 (* Security fix *) n/php-5.6.29-x86_64-1.txz: Upgraded. This release fixes bugs and security issues. For more information, see: https://php.net/ChangeLog-5.php#5.6.29 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9933 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9934 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9935 (* Security fix *) isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Thu Dec 1 08:49:20 UTC 2016 d/intltool-0.51.0-x86_64-3.txz: Rebuilt. Added a patch to fix issues when $(builddir) != $(srcdir). This avoids possible build failures when intltool is used with automake >= 1.15. Thanks to Willy Sudiarto Raharjo. xap/mozilla-firefox-50.0.2-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefox.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9078 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9079 (* Security fix *) xap/mozilla-thunderbird-45.5.1-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/thunderbird.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9079 (* Security fix *) +--------------------------+ Mon Nov 21 19:21:22 UTC 2016 n/ntp-4.2.8p9-x86_64-1.txz: Upgraded. In addition to bug fixes and enhancements, this release fixes the following 1 high- (Windows only :-), 2 medium-, 2 medium-/low, and 5 low-severity vulnerabilities, and provides 28 other non-security fixes and improvements. CVE-2016-9311: Trap crash CVE-2016-9310: Mode 6 unauthenticated trap info disclosure and DDoS vector CVE-2016-7427: Broadcast Mode Replay Prevention DoS CVE-2016-7428: Broadcast Mode Poll Interval Enforcement DoS CVE-2016-9312: Windows: ntpd DoS by oversized UDP packet CVE-2016-7431: Regression: 010-origin: Zero Origin Timestamp Bypass CVE-2016-7434: Null pointer dereference in _IO_str_init_static_internal() CVE-2016-7429: Interface selection attack CVE-2016-7426: Client rate limiting and server responses CVE-2016-7433: Reboot sync calculation problem For more information, see: https://www.kb.cert.org/vuls/id/633847 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9311 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9310 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7427 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7428 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9312 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7431 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7434 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7429 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7426 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7433 (* Security fix *) +--------------------------+ Sat Nov 19 22:45:38 UTC 2016 a/grep-2.26-x86_64-2.txz: Rebuilt. Reverted a speedup patch that is causing regressions when output is directed to /dev/null. Thanks to SeB. +--------------------------+ Sat Nov 19 03:33:33 UTC 2016 a/bash-4.4.005-x86_64-1.txz: Upgraded. a/kernel-firmware-20161118git-noarch-1.txz: Upgraded. a/kernel-generic-4.4.32-x86_64-1.txz: Upgraded. a/kernel-huge-4.4.32-x86_64-1.txz: Upgraded. a/kernel-modules-4.4.32-x86_64-1.txz: Upgraded. ap/ghostscript-9.20-x86_64-1.txz: Upgraded. d/kernel-headers-4.4.32-x86-1.txz: Upgraded. k/kernel-source-4.4.32-noarch-1.txz: Upgraded. n/nmap-7.31-x86_64-1.txz: Upgraded. n/samba-4.5.1-x86_64-1.txz: Upgraded. x/freeglut-3.0.0-x86_64-1.txz: Upgraded. x/libXfont2-2.0.1-x86_64-1.txz: Added. x/libdrm-2.4.73-x86_64-1.txz: Upgraded. x/libxcb-1.12-x86_64-1.txz: Upgraded. x/mesa-13.0.1-x86_64-1.txz: Upgraded. x/xcb-proto-1.12-x86_64-1.txz: Upgraded. x/xcb-util-cursor-0.1.3-x86_64-1.txz: Upgraded. x/xf86-input-acecad-1.5.0-x86_64-10.txz: Rebuilt. x/xf86-input-evdev-2.10.4-x86_64-1.txz: Upgraded. x/xf86-input-joystick-1.6.3-x86_64-1.txz: Upgraded. x/xf86-input-keyboard-1.9.0-x86_64-1.txz: Upgraded. x/xf86-input-mouse-1.9.2-x86_64-1.txz: Upgraded. x/xf86-input-penmount-1.5.0-x86_64-10.txz: Rebuilt. x/xf86-input-synaptics-1.9.0-x86_64-1.txz: Upgraded. x/xf86-input-vmmouse-13.1.0-x86_64-5.txz: Rebuilt. x/xf86-input-void-1.4.0-x86_64-10.txz: Rebuilt. x/xf86-input-wacom-0.33.0-x86_64-2.txz: Rebuilt. x/xf86-video-amdgpu-1.2.0-x86_64-1.txz: Upgraded. x/xf86-video-apm-1.2.5-x86_64-9.txz: Rebuilt. x/xf86-video-ark-0.7.5-x86_64-9.txz: Rebuilt. x/xf86-video-ast-1.1.5-x86_64-3.txz: Rebuilt. x/xf86-video-ati-7.8.0-x86_64-1.txz: Upgraded. x/xf86-video-chips-1.2.6-x86_64-2.txz: Removed. x/xf86-video-cirrus-1.5.3-x86_64-3.txz: Rebuilt. x/xf86-video-dummy-0.3.7-x86_64-6.txz: Rebuilt. x/xf86-video-glint-1.2.8-x86_64-8.txz: Removed. x/xf86-video-i128-1.3.6-x86_64-9.txz: Rebuilt. x/xf86-video-i740-1.3.5-x86_64-3.txz: Removed. x/xf86-video-intel-git_20161115_a1a0f76-x86_64-1.txz: Upgraded. x/xf86-video-mach64-6.9.5-x86_64-3.txz: Rebuilt. x/xf86-video-mga-1.6.4-x86_64-3.txz: Removed. x/xf86-video-neomagic-1.2.9-x86_64-3.txz: Rebuilt. x/xf86-video-nouveau-1.0.13-x86_64-1.txz: Upgraded. x/xf86-video-nv-2.1.20-x86_64-9.txz: Removed. x/xf86-video-openchrome-0.5.0-x86_64-2.txz: Rebuilt. x/xf86-video-r128-6.10.1-x86_64-1.txz: Removed. x/xf86-video-rendition-4.2.6-x86_64-2.txz: Rebuilt. x/xf86-video-s3-0.6.5-x86_64-9.txz: Rebuilt. x/xf86-video-s3virge-1.10.7-x86_64-3.txz: Rebuilt. x/xf86-video-savage-2.3.8-x86_64-2.txz: Removed. x/xf86-video-siliconmotion-1.7.8-x86_64-2.txz: Removed. x/xf86-video-sis-0.10.8-x86_64-2.txz: Removed. x/xf86-video-sisusb-0.9.6-x86_64-9.txz: Rebuilt. x/xf86-video-tdfx-1.4.6-x86_64-3.txz: Removed. x/xf86-video-tga-1.2.2-x86_64-9.txz: Rebuilt. x/xf86-video-trident-1.3.7-x86_64-3.txz: Removed. x/xf86-video-tseng-1.2.5-x86_64-9.txz: Rebuilt. x/xf86-video-v4l-0.2.0-x86_64-14.txz: Rebuilt. x/xf86-video-vesa-2.3.4-x86_64-3.txz: Rebuilt. x/xf86-video-vmware-13.2.1-x86_64-1.txz: Upgraded. x/xf86-video-voodoo-1.2.5-x86_64-10.txz: Rebuilt. x/xf86-video-xgi-1.6.1-x86_64-2.txz: Removed. x/xf86-video-xgixp-1.8.1-x86_64-8.txz: Removed. x/xorg-server-1.19.0-x86_64-1.txz: Upgraded. x/xorg-server-xephyr-1.19.0-x86_64-1.txz: Upgraded. x/xorg-server-xnest-1.19.0-x86_64-1.txz: Upgraded. x/xorg-server-xvfb-1.19.0-x86_64-1.txz: Upgraded. x/xproto-7.0.31-noarch-1.txz: Upgraded. x/xterm-326-x86_64-1.txz: Upgraded. xap/mozilla-firefox-50.0-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: http://www.mozilla.org/security/known-vulnerabilities/firefox.html (* Security fix *) extra/tigervnc/tigervnc-1.7.0-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Nov 4 03:31:38 UTC 2016 a/glibc-zoneinfo-2016i-noarch-1.txz: Upgraded. ap/nano-2.7.1-x86_64-1.txz: Upgraded. ap/vim-8.0.0055-x86_64-1.txz: Upgraded. l/libcdio-paranoia-10.2+0.93+1-x86_64-2.txz: Rebuilt. n/bind-9.10.4_P4-x86_64-1.txz: Upgraded. This update fixes a denial-of-service vulnerability. A defect in BIND's handling of responses containing a DNAME answer can cause a resolver to exit after encountering an assertion failure in db.c or resolver.c. A server encountering either of these error conditions will stop, resulting in denial of service to clients. The risk to authoritative servers is minimal; recursive servers are chiefly at risk. For more information, see: https://kb.isc.org/article/AA-01434 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8864 (* Security fix *) n/curl-7.51.0-x86_64-1.txz: Upgraded. This release fixes security issues: CVE-2016-8615: cookie injection for other servers CVE-2016-8616: case insensitive password comparison CVE-2016-8617: OOB write via unchecked multiplication CVE-2016-8618: double-free in curl_maprintf CVE-2016-8619: double-free in krb5 code CVE-2016-8620: glob parser write/read out of bounds CVE-2016-8621: curl_getdate read out of bounds CVE-2016-8622: URL unescape heap overflow via integer truncation CVE-2016-8623: Use-after-free via shared cookies CVE-2016-8624: invalid URL parsing with '#' CVE-2016-8625: IDNA 2003 makes curl use wrong host For more information, see: https://curl.haxx.se/docs/adv_20161102A.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8615 https://curl.haxx.se/docs/adv_20161102B.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8616 https://curl.haxx.se/docs/adv_20161102C.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8617 https://curl.haxx.se/docs/adv_20161102D.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8618 https://curl.haxx.se/docs/adv_20161102E.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8619 https://curl.haxx.se/docs/adv_20161102F.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8620 https://curl.haxx.se/docs/adv_20161102G.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8621 https://curl.haxx.se/docs/adv_20161102H.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8622 https://curl.haxx.se/docs/adv_20161102I.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8623 https://curl.haxx.se/docs/adv_20161102J.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8624 https://curl.haxx.se/docs/adv_20161102K.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8625 (* Security fix *) xap/gnuchess-6.2.4-x86_64-1.txz: Upgraded. xap/vim-gvim-8.0.0055-x86_64-1.txz: Upgraded. +--------------------------+ Mon Oct 31 23:38:24 UTC 2016 a/grep-2.26-x86_64-1.txz: Upgraded. a/kernel-generic-4.4.29-x86_64-1.txz: Upgraded. Fixes a security issue (Dirty COW). (* Security fix *) a/kernel-huge-4.4.29-x86_64-1.txz: Upgraded. Fixes a security issue (Dirty COW). (* Security fix *) a/kernel-modules-4.4.29-x86_64-1.txz: Upgraded. ap/mariadb-10.0.28-x86_64-1.txz: Upgraded. This update fixes several security issues. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5616 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5624 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5626 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3492 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5629 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8283 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7440 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5584 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6663 (* Security fix *) d/gdb-7.12-x86_64-1.txz: Upgraded. d/guile-2.0.13-x86_64-1.txz: Upgraded. d/kernel-headers-4.4.29-x86-1.txz: Upgraded. k/kernel-source-4.4.29-noarch-1.txz: Upgraded. This kernel fixes a security issue known as "Dirty COW". A race condition was found in the way the Linux kernel's memory subsystem handled the copy-on-write (COW) breakage of private read-only memory mappings. An unprivileged local user could use this flaw to gain write access to otherwise read-only memory mappings and thus increase their privileges on the system. For more information, see: https://dirtycow.ninja/ https://www.kb.cert.org/vuls/id/243144 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5195 (* Security fix *) l/libcdio-0.94-x86_64-1.txz: Upgraded. n/nmap-7.30-x86_64-1.txz: Upgraded. n/php-5.6.27-x86_64-1.txz: Upgraded. This release fixes bugs and security issues. For more information, see: https://php.net/ChangeLog-5.php#5.6.27 (* Security fix *) x/libX11-1.6.4-x86_64-1.txz: Upgraded. Insufficient validation of data from the X server can cause out of boundary memory read in XGetImage() or write in XListFonts(). Affected versions libX11 <= 1.6.3. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7942 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7943 (* Security fix *) x/libXfixes-5.0.3-x86_64-1.txz: Upgraded. Insufficient validation of data from the X server can cause an integer overflow on 32 bit architectures. Affected versions : libXfixes <= 5.0.2. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7944 (* Security fix *) x/libXi-1.7.8-x86_64-1.txz: Upgraded. Insufficient validation of data from the X server can cause out of boundary memory access or endless loops (Denial of Service). Affected versions libXi <= 1.7.6. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7945 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7946 (* Security fix *) x/libXrandr-1.5.1-x86_64-1.txz: Upgraded. Insufficient validation of data from the X server can cause out of boundary memory writes. Affected versions: libXrandr <= 1.5.0. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7947 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7948 (* Security fix *) x/libXrender-0.9.10-x86_64-1.txz: Upgraded. Insufficient validation of data from the X server can cause out of boundary memory writes. Affected version: libXrender <= 0.9.9. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7949 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7950 (* Security fix *) x/libXtst-1.2.3-x86_64-1.txz: Upgraded. Insufficient validation of data from the X server can cause out of boundary memory access or endless loops (Denial of Service). Affected version libXtst <= 1.2.2. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7951 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7952 (* Security fix *) x/libXv-1.0.11-x86_64-1.txz: Upgraded. Insufficient validation of data from the X server can cause out of boundary memory and memory corruption. Affected version libXv <= 1.0.10. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5407 (* Security fix *) x/libXvMC-1.0.10-x86_64-1.txz: Upgraded. Insufficient validation of data from the X server can cause a one byte buffer read underrun. Affected version: libXvMC <= 1.0.9. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7953 (* Security fix *) xap/mozilla-firefox-49.0.2-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: http://www.mozilla.org/security/known-vulnerabilities/firefox.html (* Security fix *) xap/xscreensaver-5.36-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Sat Oct 1 17:11:13 UTC 2016 a/kernel-firmware-20161001git-noarch-1.txz: Upgraded. a/kernel-generic-4.4.23-x86_64-1.txz: Upgraded. a/kernel-huge-4.4.23-x86_64-1.txz: Upgraded. a/kernel-modules-4.4.23-x86_64-1.txz: Upgraded. a/lvm2-2.02.166-x86_64-1.txz: Upgraded. d/kernel-headers-4.4.23-x86-1.txz: Upgraded. k/kernel-source-4.4.23-noarch-1.txz: Upgraded. n/mutt-1.7.0-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-45.4.0-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: http://www.mozilla.org/security/known-vulnerabilities/thunderbird.html (* Security fix *) isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Wed Sep 28 23:24:37 UTC 2016 a/glibc-zoneinfo-2016g-noarch-1.txz: Upgraded. This package provides the latest timezone updates. l/mpfr-3.1.5-x86_64-1.txz: Upgraded. +--------------------------+ Tue Sep 27 19:16:56 UTC 2016 ap/hplip-3.16.9-x86_64-1.txz: Upgraded. Reenabled parallel port support. Thanks to Jas for the bug report. n/bind-9.10.4_P3-x86_64-1.txz: Upgraded. This update fixes a denial-of-service vulnerability. Testing by ISC has uncovered a critical error condition which can occur when a nameserver is constructing a response. A defect in the rendering of messages into packets can cause named to exit with an assertion failure in buffer.c while constructing a response to a query that meets certain criteria. For more information, see: https://kb.isc.org/article/AA-01419/0 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2776 (* Security fix *) xap/gnuchess-6.2.3-x86_64-1.txz: Upgraded. Upgraded to gnuchess-6.2.3 and xboard-4.9.1. +--------------------------+ Mon Sep 26 18:14:08 UTC 2016 a/openssl-solibs-1.0.2j-x86_64-1.txz: Upgraded. a/pkgtools-14.2-noarch-13.txz: Rebuilt. removepkg: Fixed removing filenames containing "%". Thanks to SeB for the bug report, and to Jim Hawkins for the patch. n/openssl-1.0.2j-x86_64-1.txz: Upgraded. This update fixes a security issue: Missing CRL sanity check (CVE-2016-7052) For more information, see: https://www.openssl.org/news/secadv/20160926.txt https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7052 (* Security fix *) +--------------------------+ Sun Sep 25 02:32:25 UTC 2016 a/kernel-firmware-20160924git-noarch-1.txz: Upgraded. a/kernel-generic-4.4.22-x86_64-1.txz: Upgraded. a/kernel-huge-4.4.22-x86_64-1.txz: Upgraded. a/kernel-modules-4.4.22-x86_64-1.txz: Upgraded. d/kernel-headers-4.4.22-x86-1.txz: Upgraded. k/kernel-source-4.4.22-noarch-1.txz: Upgraded. n/sshfs-2.8-x86_64-1.txz: Added. Thanks to Heinz Wiesinger. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Fri Sep 23 23:30:53 UTC 2016 n/php-5.6.26-x86_64-1.txz: Upgraded. This release fixes bugs and security issues. For more information, see: https://php.net/ChangeLog-5.php#5.6.26 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7416 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7412 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7414 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7417 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7411 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7413 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7418 (* Security fix *) +--------------------------+ Thu Sep 22 18:38:07 UTC 2016 a/openssl-solibs-1.0.2i-x86_64-1.txz: Upgraded. n/openssl-1.0.2i-x86_64-1.txz: Upgraded. This update fixes denial-of-service and other security issues. For more information, see: https://www.openssl.org/news/secadv/20160922.txt https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6304 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6305 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2183 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6303 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6302 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2182 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2180 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2177 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2178 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2179 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2181 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6306 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6307 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6308 (* Security fix *) +--------------------------+ Wed Sep 21 21:10:52 UTC 2016 n/irssi-0.8.20-x86_64-1.txz: Upgraded. This update fixes two remote crash and heap corruption vulnerabilites in Irssi's format parsing code. Impact: Remote crash and heap corruption. Remote code execution seems difficult since only Nuls are written. Bugs discovered by, and patches provided by Gabriel Campana and Adrien Guinet from Quarkslab. For more information, see: https://irssi.org/security/irssi_sa_2016.txt https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7044 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7045 (* Security fix *) +--------------------------+ Wed Sep 21 15:54:06 UTC 2016 a/mkinitrd-1.4.8-x86_64-9.txz: Rebuilt. When generating the initrd, include dmsetup whenever LUKS is requested. Thanks to TracyTiger for the bug report and Eric Hameleers for the patch. e/emacs-25.1-x86_64-1.txz: Upgraded. l/qt-4.8.7-x86_64-5.txz: Rebuilt. In the .prl files, make sure to use -L/usr/X11R6/lib64 on 64-bit to avoid ld warnings when using qmake on a multilib system. Thanks to Jonathan Woithe for the bug report and fix. n/network-scripts-14.2-noarch-4.txz: Rebuilt. rc.inet1.new: Use return (not continue) to leave the if_up() function. Thanks to Tim Thomas for the bug report. xap/mozilla-firefox-49.0-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: http://www.mozilla.org/security/known-vulnerabilities/firefox.html (* Security fix *) xap/pidgin-2.11.0-x86_64-1.txz: Upgraded. This release fixes bugs and security issues. For more information, see: https://www.pidgin.im/news/security/ (* Security fix *) +--------------------------+ Thu Sep 15 22:54:52 UTC 2016 a/bash-4.4.0-x86_64-1.txz: Upgraded. a/btrfs-progs-v4.7.2-x86_64-1.txz: Upgraded. a/e2fsprogs-1.43.3-x86_64-1.txz: Upgraded. a/pkgtools-14.2-noarch-12.txz: Rebuilt. removepkg: Fixed removing packages with >= 3 hyphens in the package name when using just the package name rather than the full name including version, arch, and build. Thanks to coralfang for the bug report, Jim Hawkins and Stuart Winter for the patch, and SeB for testing and feedback. removepkg: Handle filenames that contain backslashes. Thanks to aaazen for the bug report and patch. ap/vim-8.0.0005-x86_64-1.txz: Upgraded. n/curl-7.50.3-x86_64-1.txz: Upgraded. Fixed heap overflows in four libcurl functions: curl_escape(), curl_easy_escape(), curl_unescape() and curl_easy_unescape(). For more information, see: https://curl.haxx.se/docs/adv_20160914.html http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7167 (* Security fix *) xap/vim-gvim-8.0.0005-x86_64-1.txz: Upgraded. +--------------------------+ Tue Sep 13 18:13:32 UTC 2016 ap/mariadb-10.0.27-x86_64-1.txz: Upgraded. This update fixes a critical vulnerability which can allow local and remote attackers to inject malicious settings into MySQL configuration files (my.cnf). A successful exploitation could allow attackers to execute arbitrary code with root privileges which would then allow them to fully compromise the server. This issue was discovered and reported by Dawid Golunski. For more information, see: http://legalhackers.com/advisories/MySQL-Exploit-Remote-Root-Code-Execution-Privesc-CVE-2016-6662.html https://jira.mariadb.org/browse/MDEV-10465 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6662 (* Security fix *) ap/vim-8.0.0003-x86_64-1.txz: Upgraded. xap/vim-gvim-8.0.0003-x86_64-1.txz: Upgraded. +--------------------------+ Mon Sep 12 18:39:03 UTC 2016 ap/texinfo-6.3-x86_64-1.txz: Upgraded. d/guile-2.0.12-x86_64-2.txz: Rebuilt. Match timestamps across all $ARCH on *.go and *.scm files, otherwise on multilib systems the compiled (go) files may be detected as older than the source (scm) files, causing guile to attempt to recompile itself with every use. l/sdl-1.2.15-x86_64-5.txz: Rebuilt. Fixed a regression that broke MOD support. Thanks to B Watson. x/libXfont-1.5.2-x86_64-1.txz: Upgraded. x/mesa-12.0.2-x86_64-1.txz: Upgraded. +--------------------------+ Sat Sep 10 18:04:42 UTC 2016 l/gtk+2-2.24.31-x86_64-1.txz: Upgraded. This update fixes a security issue: Integer overflow in the gdk_cairo_set_source_pixbuf function in gdk/gdkcairo.c allows remote attackers to cause a denial of service (crash) via a large image file, which triggers a large memory allocation. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7447 (* Security fix *) n/gnutls-3.4.15-x86_64-1.txz: Upgraded. libgnutls: Corrected the comparison of the serial size in OCSP response. Previously the OCSP certificate check wouldn't verify the serial length and could succeed in cases it shouldn't (GNUTLS-SA-2016-3). Reported by Stefan Buehler. For more information, see: https://www.gnutls.org/security.html (* Security fix *) +--------------------------+ Thu Sep 8 21:35:02 UTC 2016 a/kernel-generic-4.4.20-x86_64-1.txz: Upgraded. a/kernel-huge-4.4.20-x86_64-1.txz: Upgraded. a/kernel-modules-4.4.20-x86_64-1.txz: Upgraded. a/kmod-23-x86_64-2.txz: Rebuilt. a/util-linux-2.28.2-x86_64-1.txz: Upgraded. ap/hplip-3.16.8-x86_64-1.txz: Upgraded. ap/nano-2.7.0-x86_64-1.txz: Upgraded. ap/pamixer-1.3.1-x86_64-2.txz: Rebuilt. ap/rpm-4.12.0.1-x86_64-2.txz: Rebuilt. ap/vim-7.4.2342-x86_64-1.txz: Upgraded. d/Cython-0.24.1-x86_64-1.txz: Upgraded. d/gdb-7.11.1-x86_64-2.txz: Rebuilt. d/kernel-headers-4.4.20-x86-1.txz: Upgraded. d/mercurial-3.9.1-x86_64-1.txz: Upgraded. d/python-2.7.12-x86_64-1.txz: Upgraded. Compiled using --enable-unicode=ucs4. The upstream default for Python Unicode is ucs2, but ucs4 is more widely used and recommended now. Any Python scripts or binaries that use UCS-2 will need to be recompiled. These can be identified with the following grep command: grep -r -l PyUnicodeUCS2 /usr 2> /dev/null k/kernel-source-4.4.20-noarch-1.txz: Upgraded. kde/calligra-2.9.11-x86_64-6.txz: Rebuilt. kde/kate-4.14.3-x86_64-3.txz: Rebuilt. kde/kdev-python-1.7.2-x86_64-2.txz: Rebuilt. kde/kig-4.14.3-x86_64-4.txz: Rebuilt. kde/kross-interpreters-4.14.3-x86_64-3.txz: Rebuilt. kde/pykde4-4.14.3-x86_64-4.txz: Rebuilt. kde/superkaramba-4.14.3-x86_64-3.txz: Rebuilt. l/PyQt-4.11.4-x86_64-2.txz: Rebuilt. l/akonadi-1.13.0-x86_64-3.txz: Rebuilt. l/boost-1.61.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/dbus-python-1.2.4-x86_64-2.txz: Rebuilt. l/gdbm-1.12-x86_64-2.txz: Rebuilt. l/glib2-2.46.2-x86_64-4.txz: Rebuilt. l/gobject-introspection-1.46.0-x86_64-2.txz: Rebuilt. l/libxml2-2.9.4-x86_64-3.txz: Rebuilt. l/pilot-link-0.12.5-x86_64-11.txz: Rebuilt. l/pycups-1.9.73-x86_64-2.txz: Rebuilt. l/pycurl-7.43.0-x86_64-2.txz: Rebuilt. l/pygobject-2.28.6-x86_64-3.txz: Rebuilt. l/pygobject3-3.18.2-x86_64-2.txz: Rebuilt. l/pygtk-2.24.0-x86_64-3.txz: Rebuilt. l/python-pillow-3.0.0-x86_64-2.txz: Rebuilt. l/sip-4.18.1-x86_64-1.txz: Upgraded. n/php-5.6.25-x86_64-1.txz: Upgraded. This release fixes bugs and security issues. For more information, see: http://php.net/ChangeLog-5.php#5.6.25 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7125 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7126 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7127 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7128 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7129 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7130 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7131 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7132 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7133 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7134 (* Security fix *) n/samba-4.5.0-x86_64-1.txz: Upgraded. xap/blueman-2.0.4-x86_64-2.txz: Rebuilt. xap/gimp-2.8.18-x86_64-2.txz: Rebuilt. xap/vim-gvim-7.4.2342-x86_64-1.txz: Upgraded. extra/brltty/brltty-5.4-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Wed Aug 31 20:43:10 UTC 2016 l/gsl-2.2.1-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-45.3.0-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: http://www.mozilla.org/security/known-vulnerabilities/thunderbird.html (* Security fix *) +--------------------------+ Tue Aug 30 22:10:31 UTC 2016 testing/packages/gcc-6.2.0-x86_64-1.txz: Added. testing/packages/gcc-g++-6.2.0-x86_64-1.txz: Added. testing/packages/gcc-gfortran-6.2.0-x86_64-1.txz: Added. testing/packages/gcc-gnat-6.2.0-x86_64-1.txz: Added. testing/packages/gcc-go-6.2.0-x86_64-1.txz: Added. testing/packages/gcc-java-6.2.0-x86_64-1.txz: Added. Please note that if you install this package, gettext (specifically the gettext-tools package) will need to be recompiled. testing/packages/gcc-objc-6.2.0-x86_64-1.txz: Added. +--------------------------+ Mon Aug 29 22:51:27 UTC 2016 a/gawk-4.1.4-x86_64-1.txz: Upgraded. l/gsl-2.2-x86_64-1.txz: Upgraded. +--------------------------+ Wed Aug 24 19:37:40 UTC 2016 xap/mozilla-firefox-48.0.2-x86_64-1.txz: Upgraded. +--------------------------+ Tue Aug 23 19:45:33 UTC 2016 a/glibc-solibs-2.24-x86_64-2.txz: Rebuilt. a/kernel-firmware-20160823git-noarch-1.txz: Upgraded. a/kernel-generic-4.4.19-x86_64-1.txz: Upgraded. A flaw was found in the implementation of the Linux kernels handling of networking challenge ack where an attacker is able to determine the shared counter. This may allow an attacker located on different subnet to inject or take over a TCP connection between a server and client without having to be a traditional Man In the Middle (MITM) style attack. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5389 (* Security fix *) a/kernel-huge-4.4.19-x86_64-1.txz: Upgraded. A flaw was found in the implementation of the Linux kernels handling of networking challenge ack where an attacker is able to determine the shared counter. This may allow an attacker located on different subnet to inject or take over a TCP connection between a server and client without having to be a traditional Man In the Middle (MITM) style attack. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5389 (* Security fix *) a/kernel-modules-4.4.19-x86_64-1.txz: Upgraded. ap/diffutils-3.5-x86_64-1.txz: Upgraded. ap/linuxdoc-tools-0.9.72-x86_64-1.txz: Upgraded. Thanks to Stuart Winter. ap/screen-4.4.0-x86_64-2.txz: Rebuilt. Reverted a change to /etc/screenrc.new that prevented the console from being cleared when a screen session was detached. Thanks to Stuart Winter. d/binutils-2.27-x86_64-2.txz: Rebuilt. Recompiled with --disable-compressed-debug-sections, since other tools are not yet capable of parsing that. Thanks to Vincent Batts, Heinz Wiesinger, and Stuart Winter. d/kernel-headers-4.4.19-x86-1.txz: Upgraded. k/kernel-source-4.4.19-noarch-1.txz: Upgraded. A flaw was found in the implementation of the Linux kernels handling of networking challenge ack where an attacker is able to determine the shared counter. This may allow an attacker located on different subnet to inject or take over a TCP connection between a server and client without having to be a traditional Man In the Middle (MITM) style attack. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5389 (* Security fix *) l/glib2-2.46.2-x86_64-3.txz: Rebuilt. Applied upstream patch to fix a use-before-allocate bug in libgio. Without this fix, Thunar will crash if $HOME is on an NFS volume. Thanks to Jonathan Woithe. l/glibc-2.24-x86_64-2.txz: Rebuilt. If libm.so is a linker script, don't clobber it with a symlink. Thanks to guanx. l/glibc-i18n-2.24-x86_64-2.txz: Rebuilt. l/glibc-profile-2.24-x86_64-2.txz: Rebuilt. n/gnupg-1.4.21-x86_64-1.txz: Upgraded. Fix critical security bug in the RNG [CVE-2016-6313]. An attacker who obtains 580 bytes from the standard RNG can trivially predict the next 20 bytes of output. (This is according to the NEWS file included in the source. According to the annoucement linked below, an attacker who obtains 4640 bits from the RNG can trivially predict the next 160 bits of output.) Problem detected by Felix Doerre and Vladimir Klebanov, KIT. For more information, see: https://lists.gnupg.org/pipermail/gnupg-announce/2016q3/000395.html http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6313 (* Security fix *) n/libgcrypt-1.7.3-x86_64-1.txz: Upgraded. Fix critical security bug in the RNG [CVE-2016-6313]. An attacker who obtains 580 bytes from the standard RNG can trivially predict the next 20 bytes of output. (This is according to the NEWS file included in the source. According to the annoucement linked below, an attacker who obtains 4640 bits from the RNG can trivially predict the next 160 bits of output.) Problem detected by Felix Doerre and Vladimir Klebanov, KIT. For more information, see: https://lists.gnupg.org/pipermail/gnupg-announce/2016q3/000395.html http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6313 (* Security fix *) n/network-scripts-14.2-noarch-3.txz: Rebuilt. In rc.inet1, skip interfaces that are not configured in rc.inet1.conf to speed up the boot time slightly. Thanks to Amritpal Bath. n/stunnel-5.35-x86_64-2.txz: Rebuilt. Fixed incorrect config file name in generate-stunnel-key.sh. Thanks to Ebben Aries. xap/mozilla-firefox-48.0.1-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Thu Aug 11 18:24:29 UTC 2016 a/glibc-solibs-2.24-x86_64-1.txz: Upgraded. a/glibc-zoneinfo-2016f-noarch-1.txz: Upgraded. a/kernel-generic-4.4.17-x86_64-1.txz: Upgraded. a/kernel-huge-4.4.17-x86_64-1.txz: Upgraded. a/kernel-modules-4.4.17-x86_64-1.txz: Upgraded. ap/diffutils-3.4-x86_64-1.txz: Upgraded. ap/vim-7.4.2196-x86_64-1.txz: Upgraded. d/binutils-2.27-x86_64-1.txz: Upgraded. d/gcc-5.4.0-x86_64-1.txz: Upgraded. d/gcc-g++-5.4.0-x86_64-1.txz: Upgraded. d/gcc-gfortran-5.4.0-x86_64-1.txz: Upgraded. d/gcc-gnat-5.4.0-x86_64-1.txz: Upgraded. d/gcc-go-5.4.0-x86_64-1.txz: Upgraded. d/gcc-java-5.4.0-x86_64-1.txz: Upgraded. d/gcc-objc-5.4.0-x86_64-1.txz: Upgraded. d/kernel-headers-4.4.17-x86-1.txz: Upgraded. d/llvm-3.8.1-x86_64-1.txz: Upgraded. d/oprofile-1.1.0-x86_64-2.txz: Rebuilt. k/kernel-source-4.4.17-noarch-1.txz: Upgraded. l/glibc-2.24-x86_64-1.txz: Upgraded. l/glibc-i18n-2.24-x86_64-1.txz: Upgraded. l/glibc-profile-2.24-x86_64-1.txz: Upgraded. xap/mozilla-firefox-48.0-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: http://www.mozilla.org/security/known-vulnerabilities/firefox.html (* Security fix *) xap/vim-gvim-7.4.2196-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Sat Aug 6 19:29:16 UTC 2016 n/curl-7.50.1-x86_64-1.txz: Upgraded. This release fixes security issues: TLS: switch off SSL session id when client cert is used TLS: only reuse connections with the same client cert curl_multi_cleanup: clear connection pointer for easy handles For more information, see: https://curl.haxx.se/docs/adv_20160803A.html https://curl.haxx.se/docs/adv_20160803B.html https://curl.haxx.se/docs/adv_20160803C.html http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5419 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5420 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5421 (* Security fix *) n/mutt-1.6.2-x86_64-1.txz: Upgraded. n/openssh-7.3p1-x86_64-1.txz: Upgraded. This is primarily a bugfix release, and also addresses security issues. sshd(8): Mitigate a potential denial-of-service attack against the system's crypt(3) function via sshd(8). sshd(8): Mitigate timing differences in password authentication that could be used to discern valid from invalid account names when long passwords were sent and particular password hashing algorithms are in use on the server. ssh(1), sshd(8): Fix observable timing weakness in the CBC padding oracle countermeasures. ssh(1), sshd(8): Improve operation ordering of MAC verification for Encrypt-then-MAC (EtM) mode transport MAC algorithms to verify the MAC before decrypting any ciphertext. sshd(8): (portable only) Ignore PAM environment vars when UseLogin=yes. For more information, see: http://www.openssh.com/txt/release-7.3 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6210 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8325 (* Security fix *) n/stunnel-5.35-x86_64-1.txz: Upgraded. Fixes security issues: Fixed malfunctioning "verify = 4". Fixed incorrectly enforced client certificate requests. (* Security fix *) +--------------------------+ Thu Jul 28 19:44:25 UTC 2016 a/kernel-generic-4.4.16-x86_64-1.txz: Upgraded. a/kernel-huge-4.4.16-x86_64-1.txz: Upgraded. a/kernel-modules-4.4.16-x86_64-1.txz: Upgraded. d/kernel-headers-4.4.16-x86-1.txz: Upgraded. k/kernel-source-4.4.16-noarch-1.txz: Upgraded. l/libidn-1.33-x86_64-1.txz: Upgraded. Fixed out-of-bounds read bugs. Fixed crashes on invalid UTF-8. Thanks to Hanno Böck. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8948 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6261 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6262 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6263 (* Security fix *) l/libtasn1-4.9-x86_64-1.txz: Upgraded. n/bluez-5.41-x86_64-1.txz: Upgraded. extra/tigervnc/tigervnc-1.6.0-x86_64-4.txz: Rebuilt. Recompiled for xorg-server-1.18.4. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Mon Jul 25 19:59:06 UTC 2016 a/pkgtools-14.2-noarch-11.txz: Rebuilt. Changes to pkgtool: Remove option to install from floppy disks. Don't use the --file option, which appears to be broken in the latest version of dialog. The only reason --file was ever used in the first place was to work around the Linux ARG_MAX limit of 131072 bytes, and since Linux 2.6.23 a much larger limit is in place making it unlikely to become an issue again. So we'll go back to passing the package list on the command line. Thanks to David Miller for the bug report. +--------------------------+ Fri Jul 22 20:51:23 UTC 2016 a/dialog-1.3_20160424-x86_64-1.txz: Upgraded. a/kmod-23-x86_64-1.txz: Upgraded. a/lvm2-2.02.161-x86_64-1.txz: Upgraded. d/git-2.9.2-x86_64-1.txz: Upgraded. l/desktop-file-utils-0.23-x86_64-1.txz: Upgraded. l/freetype-2.6.5-x86_64-1.txz: Upgraded. l/harfbuzz-1.3.0-x86_64-1.txz: Upgraded. n/bind-9.10.4_P2-x86_64-1.txz: Upgraded. Fixed a security issue: getrrsetbyname with a non absolute name could trigger an infinite recursion bug in lwresd and named with lwres configured if when combined with a search list entry the resulting name is too long. (CVE-2016-2775) [RT #42694] For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2775 (* Security fix *) n/httpd-2.4.23-x86_64-1.txz: Upgraded. n/lftp-4.7.3-x86_64-1.txz: Upgraded. n/links-2.13-x86_64-1.txz: Upgraded. x/xf86-video-openchrome-0.5.0-x86_64-1.txz: Upgraded. x/xkeyboard-config-2.18-noarch-1.txz: Upgraded. x/xorg-server-1.18.4-x86_64-1.txz: Upgraded. x/xorg-server-xephyr-1.18.4-x86_64-1.txz: Upgraded. x/xorg-server-xnest-1.18.4-x86_64-1.txz: Upgraded. x/xorg-server-xvfb-1.18.4-x86_64-1.txz: Upgraded. +--------------------------+ Thu Jul 21 23:25:54 UTC 2016 ap/tmux-2.2-x86_64-2.txz: Upgraded. Moved from /testing. d/guile-2.0.12-x86_64-1.txz: Upgraded. l/freetype-2.6.4-x86_64-1.txz: Upgraded. n/libgcrypt-1.7.2-x86_64-1.txz: Upgraded. n/network-scripts-14.2-noarch-2.txz: Rebuilt. In rc.inet1.new, use -L option to dhcpcd to disable Zeroconf. This is (almost) never going to be wanted, and ends up used accidentally on slower systems (such as some ARM platforms), preventing a proper DHCP lease. Thanks to Stuart Winter. n/php-5.6.24-x86_64-1.txz: Upgraded. This release fixes bugs and security issues. For more information, see: http://php.net/ChangeLog-5.php#5.6.24 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5385 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6207 (* Security fix *) xap/gimp-2.8.18-x86_64-1.txz: Upgraded. This release fixes a security issue: Use-after-free vulnerability in the xcf_load_image function in app/xcf/xcf-load.c in GIMP allows remote attackers to cause a denial of service (program crash) or possibly execute arbitrary code via a crafted XCF file. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4994 (* Security fix *) +--------------------------+ Tue Jul 12 03:48:34 UTC 2016 a/etc-14.2-x86_64-8.txz: Rebuilt. In /etc/profile.d/lang.{csh,sh}.new, make en_US.UTF-8 the default locale. a/kernel-generic-4.4.15-x86_64-1.txz: Upgraded. a/kernel-huge-4.4.15-x86_64-1.txz: Upgraded. a/kernel-modules-4.4.15-x86_64-1.txz: Upgraded. a/lilo-24.2-x86_64-3.txz: Rebuilt. In liloconfig: Skip the menu asking if the user wants a UTF-8 virtual console, and use the kernel default (currently this is UTF-8 active). d/kernel-headers-4.4.15-x86-1.txz: Upgraded. k/kernel-source-4.4.15-noarch-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt. +--------------------------+ Sat Jul 9 18:35:56 UTC 2016 x/mesa-12.0.1-x86_64-1.txz: Upgraded. +--------------------------+ Fri Jul 8 23:17:22 UTC 2016 x/mesa-12.0.0-x86_64-1.txz: Upgraded. +--------------------------+ Thu Jul 7 19:52:36 UTC 2016 n/samba-4.4.5-x86_64-1.txz: Upgraded. This release fixes a security issue: Client side SMB2/3 required signing can be downgraded. It's possible for an attacker to downgrade the required signing for an SMB2/3 client connection, by injecting the SMB2_SESSION_FLAG_IS_GUEST or SMB2_SESSION_FLAG_IS_NULL flags. This means that the attacker can impersonate a server being connected to by Samba, and return malicious results. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2119 (* Security fix *) +--------------------------+ Tue Jul 5 04:52:45 UTC 2016 xap/mozilla-thunderbird-45.2.0-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: http://www.mozilla.org/security/known-vulnerabilities/thunderbird.html (* Security fix *) +--------------------------+ Sun Jul 3 19:29:33 UTC 2016 a/file-5.28-x86_64-1.txz: Upgraded. a/util-linux-2.28-x86_64-1.txz: Upgraded. xap/mozilla-firefox-47.0.1-x86_64-1.txz: Upgraded. +--------------------------+ Thu Jun 30 20:26:57 UTC 2016 Slackware 14.2 x86_64 stable is released! The long development cycle (the Linux community has lately been living in "interesting times", as they say) is finally behind us, and we're proud to announce the release of Slackware 14.2. The new release brings many updates and modern tools, has switched from udev to eudev (no systemd), and adds well over a hundred new packages to the system. Thanks to the team, the upstream developers, the dedicated Slackware community, and everyone else who pitched in to help make this release a reality. The ISOs are off to be replicated, a 6 CD-ROM 32-bit set and a dual-sided 32-bit/64-bit x86/x86_64 DVD. Please consider supporting the Slackware project by picking up a copy from store.slackware.com. We're taking pre-orders now, and offer a discount if you sign up for a subscription. Have fun! :-)