diff options
author | Patrick J Volkerding <volkerdi@slackware.com> | 2018-10-10 23:09:36 +0000 |
---|---|---|
committer | Eric Hameleers <alien@slackware.com> | 2018-10-11 09:00:31 +0200 |
commit | 7716b728c18deb9a2c780e148050e3683d4d93c1 (patch) | |
tree | 0ed1643262bc41121f3fd1a27da70106a8e9f937 /ChangeLog.txt | |
parent | 7a2f2302165a37a7a57a4765375e33881a3697b0 (diff) | |
download | current-7716b728c18deb9a2c780e148050e3683d4d93c1.tar.gz |
Wed Oct 10 23:09:36 UTC 201820181010230936
a/kernel-firmware-20181008_c6b6265-noarch-1.txz: Upgraded.
a/kernel-generic-4.14.75-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.75-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.75-x86_64-1.txz: Upgraded.
d/git-2.19.1-x86_64-1.txz: Upgraded.
Submodules' "URL"s come from the untrusted .gitmodules file, but we
blindly gave it to "git clone" to clone submodules when "git clone
--recurse-submodules" was used to clone a project that has such a
submodule. The code has been hardened to reject such malformed URLs
(e.g. one that begins with a dash). Credit for finding and fixing this
vulnerability goes to joernchen and Jeff King, respectively.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17456
(* Security fix *)
d/kernel-headers-4.14.75-x86-1.txz: Upgraded.
d/make-4.2.1-x86_64-4.txz: Rebuilt.
Use a non-blocking read with pselect to avoid hangs.
Thanks to Linux.tar.gz and David Spencer.
d/subversion-1.10.3-x86_64-1.txz: Upgraded.
k/kernel-source-4.14.75-noarch-1.txz: Upgraded.
Config changes since 4.14.74:
FB_HYPERV n -> m
Thanks to walecha.
l/librsvg-2.44.7-x86_64-1.txz: Upgraded.
l/python-pillow-5.3.0-x86_64-1.txz: Upgraded.
n/nghttp2-1.34.0-x86_64-1.txz: Upgraded.
x/libSM-1.2.3-x86_64-1.txz: Upgraded.
x/libX11-1.6.7-x86_64-1.txz: Upgraded.
x/libdrm-2.4.95-x86_64-1.txz: Upgraded.
x/libxcb-1.13.1-x86_64-1.txz: Upgraded.
x/vulkan-sdk-1.1.85.0-x86_64-1.txz: Upgraded.
Thanks to dugan.
xap/gnuplot-5.2.5-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
Diffstat (limited to 'ChangeLog.txt')
-rw-r--r-- | ChangeLog.txt | 38 |
1 files changed, 38 insertions, 0 deletions
diff --git a/ChangeLog.txt b/ChangeLog.txt index bd392f30..82828c47 100644 --- a/ChangeLog.txt +++ b/ChangeLog.txt @@ -1,3 +1,41 @@ +Wed Oct 10 23:09:36 UTC 2018 +a/kernel-firmware-20181008_c6b6265-noarch-1.txz: Upgraded. +a/kernel-generic-4.14.75-x86_64-1.txz: Upgraded. +a/kernel-huge-4.14.75-x86_64-1.txz: Upgraded. +a/kernel-modules-4.14.75-x86_64-1.txz: Upgraded. +d/git-2.19.1-x86_64-1.txz: Upgraded. + Submodules' "URL"s come from the untrusted .gitmodules file, but we + blindly gave it to "git clone" to clone submodules when "git clone + --recurse-submodules" was used to clone a project that has such a + submodule. The code has been hardened to reject such malformed URLs + (e.g. one that begins with a dash). Credit for finding and fixing this + vulnerability goes to joernchen and Jeff King, respectively. + For more information, see: + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17456 + (* Security fix *) +d/kernel-headers-4.14.75-x86-1.txz: Upgraded. +d/make-4.2.1-x86_64-4.txz: Rebuilt. + Use a non-blocking read with pselect to avoid hangs. + Thanks to Linux.tar.gz and David Spencer. +d/subversion-1.10.3-x86_64-1.txz: Upgraded. +k/kernel-source-4.14.75-noarch-1.txz: Upgraded. + Config changes since 4.14.74: + FB_HYPERV n -> m + Thanks to walecha. +l/librsvg-2.44.7-x86_64-1.txz: Upgraded. +l/python-pillow-5.3.0-x86_64-1.txz: Upgraded. +n/nghttp2-1.34.0-x86_64-1.txz: Upgraded. +x/libSM-1.2.3-x86_64-1.txz: Upgraded. +x/libX11-1.6.7-x86_64-1.txz: Upgraded. +x/libdrm-2.4.95-x86_64-1.txz: Upgraded. +x/libxcb-1.13.1-x86_64-1.txz: Upgraded. +x/vulkan-sdk-1.1.85.0-x86_64-1.txz: Upgraded. + Thanks to dugan. +xap/gnuplot-5.2.5-x86_64-1.txz: Upgraded. +isolinux/initrd.img: Rebuilt. +kernels/*: Upgraded. +usb-and-pxe-installers/usbboot.img: Rebuilt. ++--------------------------+ Fri Oct 5 22:43:41 UTC 2018 ap/mariadb-10.3.10-x86_64-1.txz: Upgraded. d/python-pip-18.1-x86_64-1.txz: Upgraded. |