Novosti u vezi Slackware Linuxa
Moderator: Urednik
-
- Posts: 1680
- Joined: 07 Jun 2012, 18:01
- Location: Najlipši grad na svitu :)
Post
Napisano: 25 Jul 2017, 09:41
Slackware 64-bit
Code: Select all
Tue Jul 25 03:45:44 UTC 2017
a/lvm2-2.02.173-x86_64-1.txz: Upgraded.
a/xfsprogs-4.12.0-x86_64-1.txz: Upgraded.
ap/vim-8.0.0771-x86_64-1.txz: Upgraded.
e/emacs-25.2-x86_64-3.txz: Rebuilt.
Linked against imagemagick-6.9.9-3 and gtk+3-3.22.17.
l/imagemagick-6.9.9_3-x86_64-1.txz: Upgraded.
Compiled with --enable-hdri option.
Shared library .so-version bump.
l/virtuoso-ose-6.1.8-x86_64-7.txz: Rebuilt.
Linked against imagemagick-6.9.9-3.
xap/gnuchess-6.2.5-x86_64-1.txz: Upgraded.
xap/vim-gvim-8.0.0771-x86_64-1.txz: Upgraded.
Linked against gtk+3-3.22.17.
xap/xine-lib-1.2.8-x86_64-3.txz: Rebuilt.
Linked against imagemagick-6.9.9-3.
xap/xlockmore-5.54-x86_64-2.txz: Rebuilt.
Linked against imagemagick-6.9.9-3.
+--------------------------+
Mon Jul 24 19:59:34 UTC 2017
ap/man-pages-4.12-noarch-1.txz: Upgraded.
ap/mpg123-1.25.4-x86_64-1.txz: Upgraded.
ap/nano-2.8.6-x86_64-1.txz: Upgraded.
d/binutils-2.29-x86_64-1.txz: Upgraded.
d/oprofile-1.1.0-x86_64-4.txz: Rebuilt.
Recompiled against new libbfd from binutils-2.29.
l/gdk-pixbuf2-2.36.7-x86_64-2.txz: Rebuilt.
Restored greyscale support. Thanks to brobr.
Fixed handling cache updates on multilib. Thanks to SeB.
l/libidn2-2.0.3-x86_64-1.txz: Upgraded.
n/tcpdump-4.9.1-x86_64-1.txz: Upgraded.
This update fixes an issue where tcpdump 4.9.0 allows remote attackers
to cause a denial of service (heap-based buffer over-read and application
crash) via crafted packet data.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11108
(* Security fix *)
xap/pan-0.142-x86_64-1.txz: Upgraded.
Slackware 32-bit
Code: Select all
Tue Jul 25 03:45:44 UTC 2017
a/lvm2-2.02.173-i586-1.txz: Upgraded.
a/xfsprogs-4.12.0-i586-1.txz: Upgraded.
ap/vim-8.0.0771-i586-1.txz: Upgraded.
e/emacs-25.2-i586-3.txz: Rebuilt.
Linked against imagemagick-6.9.9-3 and gtk+3-3.22.17.
l/imagemagick-6.9.9_3-i586-1.txz: Upgraded.
Compiled with --enable-hdri option.
Shared library .so-version bump.
l/virtuoso-ose-6.1.8-i586-7.txz: Rebuilt.
Linked against imagemagick-6.9.9-3.
xap/gnuchess-6.2.5-i586-1.txz: Upgraded.
xap/vim-gvim-8.0.0771-i586-1.txz: Upgraded.
Linked against gtk+3-3.22.17.
xap/xine-lib-1.2.8-i586-3.txz: Rebuilt.
Linked against imagemagick-6.9.9-3.
xap/xlockmore-5.54-i586-2.txz: Rebuilt.
Linked against imagemagick-6.9.9-3.
+--------------------------+
Mon Jul 24 19:59:34 UTC 2017
ap/man-pages-4.12-noarch-1.txz: Upgraded.
ap/mpg123-1.25.4-i586-1.txz: Upgraded.
ap/nano-2.8.6-i586-1.txz: Upgraded.
d/binutils-2.29-i586-1.txz: Upgraded.
d/oprofile-1.1.0-i586-4.txz: Rebuilt.
Recompiled against new libbfd from binutils-2.29.
l/gdk-pixbuf2-2.36.7-i586-2.txz: Rebuilt.
Restored greyscale support. Thanks to brobr.
Fixed handling cache updates on multilib. Thanks to SeB.
l/libidn2-2.0.3-i586-1.txz: Upgraded.
n/tcpdump-4.9.1-i586-1.txz: Upgraded.
This update fixes an issue where tcpdump 4.9.0 allows remote attackers
to cause a denial of service (heap-based buffer over-read and application
crash) via crafted packet data.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11108
(* Security fix *)
xap/pan-0.142-i586-1.txz: Upgraded.
-
- Posts: 1680
- Joined: 07 Jun 2012, 18:01
- Location: Najlipši grad na svitu :)
Post
Napisano: 27 Jul 2017, 09:53
Slackware 64-bit
Code: Select all
Thu Jul 27 01:03:02 UTC 2017
a/dbus-1.10.20-x86_64-2.txz: Rebuilt.
Don't demand high-quality entropy from expat-2.2.2+ because 1) dbus doesn't
need it and 2) it can cause the boot process to hang if dbus times out.
Thanks to SeB for a link to the bug report and patch.
+--------------------------+
Tue Jul 25 21:09:42 UTC 2017
n/bind-9.11.1_P3-x86_64-1.txz: Upgraded.
Fix a regression in the previous BIND release that broke verification
of TSIG signed TCP message sequences where not all the messages contain
TSIG records.
Compiled to use libidn rather than the deprecated (and broken) idnkit.
n/idnkit-1.0-x86_64-1.txz: Removed.
Slackware 32-bit
Code: Select all
Thu Jul 27 01:03:02 UTC 2017
a/dbus-1.10.20-i586-2.txz: Rebuilt.
Don't demand high-quality entropy from expat-2.2.2+ because 1) dbus doesn't
need it and 2) it can cause the boot process to hang if dbus times out.
Thanks to SeB for a link to the bug report and patch.
+--------------------------+
Tue Jul 25 21:09:42 UTC 2017
n/bind-9.11.1_P3-i586-1.txz: Upgraded.
Fix a regression in the previous BIND release that broke verification
of TSIG signed TCP message sequences where not all the messages contain
TSIG records.
Compiled to use libidn rather than the deprecated (and broken) idnkit.
n/idnkit-1.0-i486-1.txz: Removed.
-
- Posts: 1680
- Joined: 07 Jun 2012, 18:01
- Location: Najlipši grad na svitu :)
Post
Napisano: 31 Jul 2017, 11:16
Slackware 64-bit
Code: Select all
Fri Jul 28 20:29:47 UTC 2017
a/dbus-1.10.22-x86_64-1.txz: Upgraded.
a/gptfdisk-1.0.3-x86_64-1.txz: Upgraded.
a/kernel-generic-4.9.40-x86_64-1.txz: Upgraded.
a/kernel-huge-4.9.40-x86_64-1.txz: Upgraded.
a/kernel-modules-4.9.40-x86_64-1.txz: Upgraded.
a/mkinitrd-1.4.11-x86_64-4.txz: Rebuilt.
Upgraded to busybox-1.27.1.
ap/cups-filters-1.16.0-x86_64-1.txz: Upgraded.
ap/hplip-3.17.7-x86_64-1.txz: Upgraded.
ap/squashfs-tools-4.3-x86_64-2.txz: Rebuilt.
Patched a couple of denial of service issues and other bugs.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4645
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4646
(* Security fix *)
d/kernel-headers-4.9.40-x86-1.txz: Upgraded.
k/kernel-source-4.9.40-noarch-1.txz: Upgraded.
l/libpng-1.6.31-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
Upgraded to busybox-1.27.1.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Upgraded to busybox-1.27.1.
Slackware 32-bit
Code: Select all
Fri Jul 28 20:29:47 UTC 2017
a/dbus-1.10.22-i586-1.txz: Upgraded.
a/gptfdisk-1.0.3-i586-1.txz: Upgraded.
a/kernel-generic-4.9.40-i586-1.txz: Upgraded.
a/kernel-generic-smp-4.9.40_smp-i686-1.txz: Upgraded.
a/kernel-huge-4.9.40-i586-1.txz: Upgraded.
a/kernel-huge-smp-4.9.40_smp-i686-1.txz: Upgraded.
a/kernel-modules-4.9.40-i586-1.txz: Upgraded.
a/kernel-modules-smp-4.9.40_smp-i686-1.txz: Upgraded.
a/mkinitrd-1.4.11-i586-4.txz: Rebuilt.
Upgraded to busybox-1.27.1.
ap/cups-filters-1.16.0-i586-1.txz: Upgraded.
ap/hplip-3.17.7-i586-1.txz: Upgraded.
ap/squashfs-tools-4.3-i586-2.txz: Rebuilt.
Patched a couple of denial of service issues and other bugs.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4645
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4646
(* Security fix *)
d/kernel-headers-4.9.40_smp-x86-1.txz: Upgraded.
k/kernel-source-4.9.40_smp-noarch-1.txz: Upgraded.
l/libpng-1.6.31-i586-1.txz: Upgraded.
extra/linux-4.9.40-nosmp-sdk/*: Upgraded.
isolinux/initrd.img: Rebuilt.
Upgraded to busybox-1.27.1.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Upgraded to busybox-1.27.1.
-
- Posts: 1680
- Joined: 07 Jun 2012, 18:01
- Location: Najlipši grad na svitu :)
Post
Napisano: 02 Aug 2017, 14:38
Slackware 64-bit
Code: Select all
Wed Aug 2 03:43:51 UTC 2017
a/btrfs-progs-v4.12-x86_64-1.txz: Upgraded.
l/ffmpeg-3.3.3-x86_64-1.txz: Upgraded.
l/seamonkey-solibs-2.48-x86_64-2.txz: Rebuilt.
n/bluez-5.46-x86_64-2.txz: Rebuilt.
Added /usr/bin/gatttool.
n/gnupg-1.4.22-x86_64-1.txz: Upgraded.
Mitigate a flush+reload side-channel attack on RSA secret keys dubbed
"Sliding right into disaster".
For more information, see:
https://eprint.iacr.org/2017/627
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7526
(* Security fix *)
n/gnupg2-2.1.22-x86_64-1.txz: Upgraded.
x/xf86-input-wacom-0.35.0-x86_64-1.txz: Upgraded.
xap/seamonkey-2.48-x86_64-2.txz: Rebuilt.
Recompiled with -fno-delete-null-pointer-checks to fix crashes caused by
aggressive gcc7 optimization. Thanks to KewlCat for the bug report.
Slackware 32-bit
Code: Select all
Wed Aug 2 03:43:51 UTC 2017
a/btrfs-progs-v4.12-i586-1.txz: Upgraded.
l/ffmpeg-3.3.3-i586-1.txz: Upgraded.
l/seamonkey-solibs-2.48-i586-2.txz: Rebuilt.
n/bluez-5.46-i586-2.txz: Rebuilt.
Added /usr/bin/gatttool.
n/gnupg-1.4.22-i586-1.txz: Upgraded.
Mitigate a flush+reload side-channel attack on RSA secret keys dubbed
"Sliding right into disaster".
For more information, see:
https://eprint.iacr.org/2017/627
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7526
(* Security fix *)
n/gnupg2-2.1.22-i586-1.txz: Upgraded.
x/xf86-input-wacom-0.35.0-i586-1.txz: Upgraded.
xap/seamonkey-2.48-i586-2.txz: Rebuilt.
Recompiled with -fno-delete-null-pointer-checks to fix crashes caused by
aggressive gcc7 optimization. Thanks to KewlCat for the bug report.
-
- Posts: 1680
- Joined: 07 Jun 2012, 18:01
- Location: Najlipši grad na svitu :)
Post
Napisano: 06 Aug 2017, 23:01
Slackware 64-bit
Code: Select all
Sun Aug 6 05:29:56 UTC 2017
a/e2fsprogs-1.43.5-x86_64-1.txz: Upgraded.
a/glibc-solibs-2.26-x86_64-2.txz: Rebuilt.
ap/vim-8.0.0876-x86_64-1.txz: Upgraded.
d/git-2.14.0-x86_64-1.txz: Upgraded.
l/glibc-2.26-x86_64-2.txz: Rebuilt.
Recompiled to add libnss_compat-2.26.so, libnss_nis-2.26.so,
libnss_nisplus-2.26.so, and headers to restore missing/broken
NIS functionality.
l/glibc-i18n-2.26-x86_64-2.txz: Rebuilt.
l/glibc-profile-2.26-x86_64-2.txz: Rebuilt.
xap/vim-gvim-8.0.0876-x86_64-1.txz: Upgraded.
+--------------------------+
Fri Aug 4 19:22:07 UTC 2017
a/glibc-solibs-2.26-x86_64-1.txz: Upgraded.
ap/sqlite-3.20.0-x86_64-1.txz: Upgraded.
l/glibc-2.26-x86_64-1.txz: Upgraded.
l/glibc-i18n-2.26-x86_64-1.txz: Upgraded.
l/glibc-profile-2.26-x86_64-1.txz: Upgraded.
l/imagemagick-6.9.9_5-x86_64-1.txz: Upgraded.
l/pango-1.40.7-x86_64-2.txz: Rebuilt.
Patched to fix Unicode emoji handling issue caused by width changes in glibc.
n/bind-9.11.2-x86_64-1.txz: Upgraded.
n/dhcp-4.3.6-x86_64-1.txz: Upgraded.
n/nmap-7.60-x86_64-1.txz: Upgraded.
Slackware 32-bit
Code: Select all
Sun Aug 6 05:29:56 UTC 2017
a/e2fsprogs-1.43.5-i586-1.txz: Upgraded.
a/glibc-solibs-2.26-i586-2.txz: Rebuilt.
ap/vim-8.0.0876-i586-1.txz: Upgraded.
d/git-2.14.0-i586-1.txz: Upgraded.
l/glibc-2.26-i586-2.txz: Rebuilt.
Recompiled to add libnss_compat-2.26.so, libnss_nis-2.26.so,
libnss_nisplus-2.26.so, and headers to restore missing/broken
NIS functionality.
l/glibc-i18n-2.26-i586-2.txz: Rebuilt.
l/glibc-profile-2.26-i586-2.txz: Rebuilt.
xap/vim-gvim-8.0.0876-i586-1.txz: Upgraded.
+--------------------------+
Fri Aug 4 19:22:07 UTC 2017
a/glibc-solibs-2.26-i586-1.txz: Upgraded.
ap/sqlite-3.20.0-i586-1.txz: Upgraded.
l/glibc-2.26-i586-1.txz: Upgraded.
l/glibc-i18n-2.26-i586-1.txz: Upgraded.
l/glibc-profile-2.26-i586-1.txz: Upgraded.
l/imagemagick-6.9.9_5-i586-1.txz: Upgraded.
l/pango-1.40.7-i586-2.txz: Rebuilt.
Patched to fix Unicode emoji handling issue caused by width changes in glibc.
n/bind-9.11.2-i586-1.txz: Upgraded.
n/dhcp-4.3.6-i586-1.txz: Upgraded.
n/nmap-7.60-i586-1.txz: Upgraded.
-
- Posts: 1680
- Joined: 07 Jun 2012, 18:01
- Location: Najlipši grad na svitu :)
Post
Napisano: 10 Aug 2017, 10:12
Slackware 64-bit
Code: Select all
Wed Aug 9 20:23:16 UTC 2017
a/kernel-generic-4.9.41-x86_64-1.txz: Upgraded.
a/kernel-huge-4.9.41-x86_64-1.txz: Upgraded.
a/kernel-modules-4.9.41-x86_64-1.txz: Upgraded.
ap/cups-filters-1.16.0-x86_64-2.txz: Rebuilt.
Linked against poppler-0.57.0.
ap/mpg123-1.25.5-x86_64-1.txz: Upgraded.
d/gcc-7.1.0-x86_64-3.txz: Rebuilt.
Recompiled with upstream patches for glibc-2.26 compatibility.
d/gcc-brig-7.1.0-x86_64-3.txz: Rebuilt.
d/gcc-g++-7.1.0-x86_64-3.txz: Rebuilt.
d/gcc-gfortran-7.1.0-x86_64-3.txz: Rebuilt.
d/gcc-gnat-7.1.0-x86_64-3.txz: Rebuilt.
d/gcc-go-7.1.0-x86_64-3.txz: Rebuilt.
d/gcc-objc-7.1.0-x86_64-3.txz: Rebuilt.
d/kernel-headers-4.9.41-x86-1.txz: Upgraded.
d/llvm-4.0.1-x86_64-2.txz: Rebuilt.
Fixed garbled output from lldb. Thanks to Ebben Aries.
Patched to compile with glibc-2.26.
k/kernel-source-4.9.41-noarch-1.txz: Upgraded.
kde/calligra-2.9.11-x86_64-13.txz: Rebuilt.
Linked against glew-2.1.0 and poppler-0.57.0.
l/gdk-pixbuf2-2.36.8-x86_64-1.txz: Upgraded.
l/gtk+3-3.22.18-x86_64-1.txz: Upgraded.
l/harfbuzz-1.4.8-x86_64-1.txz: Upgraded.
l/libxslt-1.1.29-x86_64-2.txz: Rebuilt.
Don't include xlocale.h in libxslt/xsltlocale.h, as it has been removed from
glibc-2.26. Thanks to Matteo Bernardini.
l/pango-1.40.9-x86_64-1.txz: Upgraded.
l/poppler-0.57.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
n/curl-7.55.0-x86_64-1.txz: Upgraded.
This update fixes three security issues:
URL globbing out of bounds read
TFTP sends more than buffer size
FILE buffer read out of bounds
For more information, see:
https://curl.haxx.se/docs/adv_20170809A.html
https://curl.haxx.se/docs/adv_20170809B.html
https://curl.haxx.se/docs/adv_20170809C.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000101
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000100
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000099
(* Security fix *)
n/httpd-2.4.27-x86_64-2.txz: Rebuilt.
Recompiled against glibc-2.26 to fix relocation error.
Thanks to Willy Sudiarto Raharjo.
x/glew-2.1.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
x/libdrm-2.4.82-x86_64-1.txz: Upgraded.
x/mesa-17.1.6-x86_64-1.txz: Upgraded.
Linked against glew-2.1.0.
xap/gparted-0.29.0-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-52.3.0esr-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
(* Security fix *)
xfce/tumbler-0.2.0-x86_64-1.txz: Upgraded.
Linked against poppler-0.57.0.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Slackware 32-bit
Code: Select all
Wed Aug 9 20:23:16 UTC 2017
a/kernel-generic-4.9.41-i586-1.txz: Upgraded.
a/kernel-generic-smp-4.9.41_smp-i686-1.txz: Upgraded.
a/kernel-huge-4.9.41-i586-1.txz: Upgraded.
a/kernel-huge-smp-4.9.41_smp-i686-1.txz: Upgraded.
a/kernel-modules-4.9.41-i586-1.txz: Upgraded.
a/kernel-modules-smp-4.9.41_smp-i686-1.txz: Upgraded.
ap/cups-filters-1.16.0-i586-2.txz: Rebuilt.
Linked against poppler-0.57.0.
ap/mpg123-1.25.5-i586-1.txz: Upgraded.
d/gcc-7.1.0-i586-3.txz: Rebuilt.
Recompiled with upstream patches for glibc-2.26 compatibility.
d/gcc-brig-7.1.0-i586-3.txz: Rebuilt.
d/gcc-g++-7.1.0-i586-3.txz: Rebuilt.
d/gcc-gfortran-7.1.0-i586-3.txz: Rebuilt.
d/gcc-gnat-7.1.0-i586-3.txz: Rebuilt.
d/gcc-go-7.1.0-i586-3.txz: Rebuilt.
d/gcc-objc-7.1.0-i586-3.txz: Rebuilt.
d/kernel-headers-4.9.41_smp-x86-1.txz: Upgraded.
d/llvm-4.0.1-i586-2.txz: Rebuilt.
Fixed garbled output from lldb. Thanks to Ebben Aries.
Patched to compile with glibc-2.26.
k/kernel-source-4.9.41_smp-noarch-1.txz: Upgraded.
kde/calligra-2.9.11-i586-13.txz: Rebuilt.
Linked against glew-2.1.0 and poppler-0.57.0.
l/gdk-pixbuf2-2.36.8-i586-1.txz: Upgraded.
l/gtk+3-3.22.18-i586-1.txz: Upgraded.
l/harfbuzz-1.4.8-i586-1.txz: Upgraded.
l/libxslt-1.1.29-i586-2.txz: Rebuilt.
Don't include xlocale.h in libxslt/xsltlocale.h, as it has been removed from
glibc-2.26. Thanks to Matteo Bernardini.
l/pango-1.40.9-i586-1.txz: Upgraded.
l/poppler-0.57.0-i586-1.txz: Upgraded.
Shared library .so-version bump.
n/curl-7.55.0-i586-1.txz: Upgraded.
This update fixes three security issues:
URL globbing out of bounds read
TFTP sends more than buffer size
FILE buffer read out of bounds
For more information, see:
https://curl.haxx.se/docs/adv_20170809A.html
https://curl.haxx.se/docs/adv_20170809B.html
https://curl.haxx.se/docs/adv_20170809C.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000101
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000100
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000099
(* Security fix *)
n/httpd-2.4.27-i586-2.txz: Rebuilt.
Recompiled against glibc-2.26 to fix relocation error.
Thanks to Willy Sudiarto Raharjo.
x/glew-2.1.0-i586-1.txz: Upgraded.
Shared library .so-version bump.
x/libdrm-2.4.82-i586-1.txz: Upgraded.
x/mesa-17.1.6-i586-1.txz: Upgraded.
Linked against glew-2.1.0.
xap/gparted-0.29.0-i586-1.txz: Upgraded.
xap/mozilla-firefox-52.3.0esr-i586-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
(* Security fix *)
xfce/tumbler-0.2.0-i586-1.txz: Upgraded.
Linked against poppler-0.57.0.
extra/linux-4.9.41-nosmp-sdk/*: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
-
- Posts: 1680
- Joined: 07 Jun 2012, 18:01
- Location: Najlipši grad na svitu :)
Post
Napisano: 14 Aug 2017, 11:55
Slackware 64-bit
Code: Select all
Fri Aug 11 23:02:43 UTC 2017
ap/cups-filters-1.16.1-x86_64-1.txz: Upgraded.
ap/mariadb-10.0.32-x86_64-1.txz: Upgraded.
ap/mpg123-1.25.6-x86_64-1.txz: Upgraded.
d/cmake-3.9.1-x86_64-1.txz: Upgraded.
d/git-2.14.1-x86_64-1.txz: Upgraded.
Fixes security issues:
A "ssh://..." URL can result in a "ssh" command line with a hostname that
begins with a dash "-", which would cause the "ssh" command to instead
(mis)treat it as an option. This is now prevented by forbidding such a
hostname (which should not impact any real-world usage).
Similarly, when GIT_PROXY_COMMAND is configured, the command is run with
host and port that are parsed out from "ssh://..." URL; a poorly written
GIT_PROXY_COMMAND could be tricked into treating a string that begins with a
dash "-" as an option. This is now prevented by forbidding such a hostname
and port number (again, which should not impact any real-world usage).
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000117
(* Security fix *)
d/mercurial-4.3.1-x86_64-1.txz: Upgraded.
Fixes security issues:
Mercurial's symlink auditing was incomplete prior to 4.3, and could
be abused to write to files outside the repository.
Mercurial was not sanitizing hostnames passed to ssh, allowing
shell injection attacks on clients by specifying a hostname starting
with -oProxyCommand.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000115
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000116
(* Security fix *)
d/subversion-1.9.7-x86_64-1.txz: Upgraded.
Fixed client side arbitrary code execution vulnerability.
For more information, see:
https://subversion.apache.org/security/CVE-2017-9800-advisory.txt
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9800
(* Security fix *)
l/libsoup-2.58.2-x86_64-1.txz: Upgraded.
Fixed a chunked decoding buffer overrun that could be exploited against
either clients or servers.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2885
(* Security fix *)
n/samba-4.6.7-x86_64-1.txz: Upgraded.
tcl/tcl-8.6.7-x86_64-1.txz: Upgraded.
tcl/tk-8.6.7-x86_64-1.txz: Upgraded.
Slackware 32-bit
Code: Select all
Fri Aug 11 23:02:43 UTC 2017
ap/cups-filters-1.16.1-i586-1.txz: Upgraded.
ap/mariadb-10.0.32-i586-1.txz: Upgraded.
ap/mpg123-1.25.6-i586-1.txz: Upgraded.
d/cmake-3.9.1-i586-1.txz: Upgraded.
d/git-2.14.1-i586-1.txz: Upgraded.
Fixes security issues:
A "ssh://..." URL can result in a "ssh" command line with a hostname that
begins with a dash "-", which would cause the "ssh" command to instead
(mis)treat it as an option. This is now prevented by forbidding such a
hostname (which should not impact any real-world usage).
Similarly, when GIT_PROXY_COMMAND is configured, the command is run with
host and port that are parsed out from "ssh://..." URL; a poorly written
GIT_PROXY_COMMAND could be tricked into treating a string that begins with a
dash "-" as an option. This is now prevented by forbidding such a hostname
and port number (again, which should not impact any real-world usage).
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000117
(* Security fix *)
d/mercurial-4.3.1-i586-1.txz: Upgraded.
Fixes security issues:
Mercurial's symlink auditing was incomplete prior to 4.3, and could
be abused to write to files outside the repository.
Mercurial was not sanitizing hostnames passed to ssh, allowing
shell injection attacks on clients by specifying a hostname starting
with -oProxyCommand.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000115
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000116
(* Security fix *)
d/subversion-1.9.7-i586-1.txz: Upgraded.
Fixed client side arbitrary code execution vulnerability.
For more information, see:
https://subversion.apache.org/security/CVE-2017-9800-advisory.txt
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9800
(* Security fix *)
l/libsoup-2.58.2-i586-1.txz: Upgraded.
Fixed a chunked decoding buffer overrun that could be exploited against
either clients or servers.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2885
(* Security fix *)
n/samba-4.6.7-i586-1.txz: Upgraded.
tcl/tcl-8.6.7-i586-1.txz: Upgraded.
tcl/tk-8.6.7-i586-1.txz: Upgraded.
-
- Posts: 1680
- Joined: 07 Jun 2012, 18:01
- Location: Najlipši grad na svitu :)
Post
Napisano: 17 Aug 2017, 17:35
Slackware 64-bit
Code: Select all
Thu Aug 17 05:36:28 UTC 2017
a/kernel-generic-4.9.44-x86_64-1.txz: Upgraded.
a/kernel-huge-4.9.44-x86_64-1.txz: Upgraded.
a/kernel-modules-4.9.44-x86_64-1.txz: Upgraded.
d/kernel-headers-4.9.44-x86-1.txz: Upgraded.
k/kernel-source-4.9.44-noarch-1.txz: Upgraded.
xap/mozilla-thunderbird-52.3.0-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
+--------------------------+
Tue Aug 15 22:16:12 UTC 2017
a/aaa_elflibs-14.2-x86_64-31.txz: Rebuilt.
a/kernel-generic-4.9.43-x86_64-1.txz: Upgraded.
a/kernel-huge-4.9.43-x86_64-1.txz: Upgraded.
a/kernel-modules-4.9.43-x86_64-1.txz: Upgraded.
ap/cups-2.2.4-x86_64-2.txz: Rebuilt.
Don't return an empty printer list when there is no default printer.
Thanks to Jurgen Van Ham.
d/gcc-7.2.0-x86_64-1.txz: Upgraded.
d/gcc-brig-7.2.0-x86_64-1.txz: Upgraded.
d/gcc-g++-7.2.0-x86_64-1.txz: Upgraded.
d/gcc-gfortran-7.2.0-x86_64-1.txz: Upgraded.
d/gcc-gnat-7.2.0-x86_64-1.txz: Upgraded.
d/gcc-go-7.2.0-x86_64-1.txz: Upgraded.
d/gcc-objc-7.2.0-x86_64-1.txz: Upgraded.
d/kernel-headers-4.9.43-x86-1.txz: Upgraded.
d/libtool-2.4.6-x86_64-6.txz: Rebuilt.
Recompiled to update embedded GCC version number.
k/kernel-source-4.9.43-noarch-1.txz: Upgraded.
l/poppler-data-0.4.8-noarch-1.txz: Upgraded.
x/xorg-server-1.19.3-x86_64-2.txz: Rebuilt.
This update fixes two security issues:
A user authenticated to an X Session could crash or execute code in the
context of the X Server by exploiting a stack overflow in the endianness
conversion of X Events.
Uninitialized data in endianness conversion in the XEvent handling of the
X.Org X Server allowed authenticated malicious users to access potentially
privileged data from the X server.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10971
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10972
(* Security fix *)
x/xorg-server-xephyr-1.19.3-x86_64-2.txz: Rebuilt.
x/xorg-server-xnest-1.19.3-x86_64-2.txz: Rebuilt.
x/xorg-server-xvfb-1.19.3-x86_64-2.txz: Rebuilt.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Slackware 32-bit
Code: Select all
Thu Aug 17 05:36:28 UTC 2017
a/kernel-generic-4.9.44-i586-1.txz: Upgraded.
a/kernel-generic-smp-4.9.44_smp-i686-1.txz: Upgraded.
a/kernel-huge-4.9.44-i586-1.txz: Upgraded.
a/kernel-huge-smp-4.9.44_smp-i686-1.txz: Upgraded.
a/kernel-modules-4.9.44-i586-1.txz: Upgraded.
a/kernel-modules-smp-4.9.44_smp-i686-1.txz: Upgraded.
d/kernel-headers-4.9.44_smp-x86-1.txz: Upgraded.
k/kernel-source-4.9.44_smp-noarch-1.txz: Upgraded.
xap/mozilla-thunderbird-52.3.0-i586-1.txz: Upgraded.
extra/linux-4.9.44-nosmp-sdk/*: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
+--------------------------+
Tue Aug 15 22:16:12 UTC 2017
a/aaa_elflibs-14.2-i586-31.txz: Rebuilt.
a/kernel-generic-4.9.43-i586-1.txz: Upgraded.
a/kernel-generic-smp-4.9.43_smp-i686-1.txz: Upgraded.
a/kernel-huge-4.9.43-i586-1.txz: Upgraded.
a/kernel-huge-smp-4.9.43_smp-i686-1.txz: Upgraded.
a/kernel-modules-4.9.43-i586-1.txz: Upgraded.
a/kernel-modules-smp-4.9.43_smp-i686-1.txz: Upgraded.
ap/cups-2.2.4-i586-2.txz: Rebuilt.
Don't return an empty printer list when there is no default printer.
Thanks to Jurgen Van Ham.
d/gcc-7.2.0-i586-1.txz: Upgraded.
d/gcc-brig-7.2.0-i586-1.txz: Upgraded.
d/gcc-g++-7.2.0-i586-1.txz: Upgraded.
d/gcc-gfortran-7.2.0-i586-1.txz: Upgraded.
d/gcc-gnat-7.2.0-i586-1.txz: Upgraded.
d/gcc-go-7.2.0-i586-1.txz: Upgraded.
d/gcc-objc-7.2.0-i586-1.txz: Upgraded.
d/kernel-headers-4.9.43_smp-x86-1.txz: Upgraded.
d/libtool-2.4.6-i586-6.txz: Rebuilt.
Recompiled to update embedded GCC version number.
k/kernel-source-4.9.43_smp-noarch-1.txz: Upgraded.
l/poppler-data-0.4.8-noarch-1.txz: Upgraded.
x/xorg-server-1.19.3-i586-2.txz: Rebuilt.
This update fixes two security issues:
A user authenticated to an X Session could crash or execute code in the
context of the X Server by exploiting a stack overflow in the endianness
conversion of X Events.
Uninitialized data in endianness conversion in the XEvent handling of the
X.Org X Server allowed authenticated malicious users to access potentially
privileged data from the X server.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10971
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10972
(* Security fix *)
x/xorg-server-xephyr-1.19.3-i586-2.txz: Rebuilt.
x/xorg-server-xnest-1.19.3-i586-2.txz: Rebuilt.
x/xorg-server-xvfb-1.19.3-i586-2.txz: Rebuilt.
extra/linux-4.9.43-nosmp-sdk/*: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
-
- Posts: 1680
- Joined: 07 Jun 2012, 18:01
- Location: Najlipši grad na svitu :)
Post
Napisano: 26 Aug 2017, 06:10
Slackware 64-bit
Code: Select all
Fri Aug 25 18:38:28 UTC 2017
a/dialog-1.3_20170509-x86_64-1.txz: Upgraded.
a/kernel-generic-4.9.45-x86_64-1.txz: Upgraded.
a/kernel-huge-4.9.45-x86_64-1.txz: Upgraded.
a/kernel-modules-4.9.45-x86_64-1.txz: Upgraded.
ap/cups-filters-1.17.0-x86_64-1.txz: Upgraded.
ap/sudo-1.8.21-x86_64-1.txz: Upgraded.
d/cargo-0.20.0-x86_64-1.txz: Added.
Thanks to Andrew Clemons.
d/kernel-headers-4.9.45-x86-1.txz: Upgraded.
d/rust-1.19.0-x86_64-1.txz: Added.
Thanks to Andrew Clemons.
k/kernel-source-4.9.45-noarch-1.txz: Upgraded.
kde/kdelibs-4.14.35-x86_64-1.txz: Upgraded.
l/gtk+3-3.22.19-x86_64-1.txz: Upgraded.
l/harfbuzz-1.5.0-x86_64-1.txz: Upgraded.
l/libcdio-paranoia-10.2+0.94+2-x86_64-1.txz: Upgraded.
l/libedit-20170329_3.1-x86_64-1.txz: Upgraded.
n/gnutls-3.6.0-x86_64-1.txz: Upgraded.
n/whois-5.2.18-x86_64-1.txz: Upgraded.
x/libdrm-2.4.83-x86_64-1.txz: Upgraded.
x/mesa-17.1.7-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-55.0.3-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Slackware 32-bit
Code: Select all
Fri Aug 25 18:38:28 UTC 2017
a/dialog-1.3_20170509-i586-1.txz: Upgraded.
a/kernel-generic-4.9.45-i586-1.txz: Upgraded.
a/kernel-generic-smp-4.9.45_smp-i686-1.txz: Upgraded.
a/kernel-huge-4.9.45-i586-1.txz: Upgraded.
a/kernel-huge-smp-4.9.45_smp-i686-1.txz: Upgraded.
a/kernel-modules-4.9.45-i586-1.txz: Upgraded.
a/kernel-modules-smp-4.9.45_smp-i686-1.txz: Upgraded.
ap/cups-filters-1.17.0-i586-1.txz: Upgraded.
ap/sudo-1.8.21-i586-1.txz: Upgraded.
d/cargo-0.20.0-i686-1.txz: Added.
Thanks to Andrew Clemons.
d/kernel-headers-4.9.45_smp-x86-1.txz: Upgraded.
d/rust-1.19.0-i686-1.txz: Added.
Thanks to Andrew Clemons.
k/kernel-source-4.9.45_smp-noarch-1.txz: Upgraded.
kde/kdelibs-4.14.35-i586-1.txz: Upgraded.
l/gtk+3-3.22.19-i586-1.txz: Upgraded.
l/harfbuzz-1.5.0-i586-1.txz: Upgraded.
l/libcdio-paranoia-10.2+0.94+2-i586-1.txz: Upgraded.
l/libedit-20170329_3.1-i586-1.txz: Upgraded.
n/gnutls-3.6.0-i586-1.txz: Upgraded.
n/whois-5.2.18-i586-1.txz: Upgraded.
x/libdrm-2.4.83-i586-1.txz: Upgraded.
x/mesa-17.1.7-i586-1.txz: Upgraded.
xap/mozilla-firefox-55.0.3-i686-1.txz: Upgraded.
extra/linux-4.9.45-nosmp-sdk/*: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
-
- Posts: 1680
- Joined: 07 Jun 2012, 18:01
- Location: Najlipši grad na svitu :)
Post
Napisano: 30 Aug 2017, 08:35
Slackware 64-bit
Code: Select all
Wed Aug 30 02:41:28 UTC 2017
a/logrotate-3.12.3-x86_64-1.txz: Upgraded.
Thanks to Robby Workman.
ap/cups-filters-1.17.2-x86_64-1.txz: Upgraded.
ap/mariadb-10.2.8-x86_64-1.txz: Upgraded.
Thanks to Heinz Wiesinger.
ap/nano-2.8.7-x86_64-1.txz: Upgraded.
d/cargo-0.20.0-x86_64-1.txz: Removed.
I wanted to put "Oxidized" here, but that would have confused slackpkg. ;-)
d/rust-1.19.0-x86_64-2.txz: Rebuilt.
Build with "extended = true" option to produce the extended Rust tool
set which is not only the compiler but also tools such as Cargo. This
is what upstream recommends now since they'll be dropping standalone
Cargo from the repository. Thanks to Andrew Clemons.
l/glade3-3.8.6-x86_64-1.txz: Upgraded.
l/jemalloc-5.0.1-x86_64-1.txz: Upgraded.
l/libpng-1.6.32-x86_64-1.txz: Upgraded.
n/bsd-finger-0.17-x86_64-2.txz: Rebuilt.
Patched to fix segfault with glibc-2.26.
Thanks to Karl Magnus Kolstø.
n/libgcrypt-1.8.1-x86_64-1.txz: Upgraded.
x/mesa-17.1.8-x86_64-1.txz: Upgraded.
Slackware 32-bit
Code: Select all
Wed Aug 30 02:41:28 UTC 2017
a/logrotate-3.12.3-i586-1.txz: Upgraded.
Thanks to Robby Workman.
ap/cups-filters-1.17.2-i586-1.txz: Upgraded.
ap/mariadb-10.2.8-i586-1.txz: Upgraded.
Thanks to Heinz Wiesinger.
ap/nano-2.8.7-i586-1.txz: Upgraded.
d/cargo-0.20.0-i686-1.txz: Removed.
I wanted to put "Oxidized" here, but that would have confused slackpkg. ;-)
d/rust-1.19.0-i686-2.txz: Rebuilt.
Build with "extended = true" option to produce the extended Rust tool
set which is not only the compiler but also tools such as Cargo. This
is what upstream recommends now since they'll be dropping standalone
Cargo from the repository. Thanks to Andrew Clemons.
l/glade3-3.8.6-i586-1.txz: Upgraded.
l/jemalloc-5.0.1-i586-1.txz: Upgraded.
l/libpng-1.6.32-i586-1.txz: Upgraded.
n/bsd-finger-0.17-i586-2.txz: Rebuilt.
Patched to fix segfault with glibc-2.26.
Thanks to Karl Magnus Kolstø.
n/libgcrypt-1.8.1-i586-1.txz: Upgraded.
x/mesa-17.1.8-i586-1.txz: Upgraded.
Who is online
Users browsing this forum: No registered users and 32 guests