diff options
author | Patrick J Volkerding <volkerdi@slackware.com> | 2019-09-12 03:58:53 +0000 |
---|---|---|
committer | Eric Hameleers <alien@slackware.com> | 2019-09-12 17:59:49 +0200 |
commit | 1c35025416b4295915f499a01d0cee8899971321 (patch) | |
tree | 8d77bc5a61777014d91d832adab49039955a8e64 /source/xap/mozilla-thunderbird/gkrust.a.no.networking.check.diff | |
parent | 5ff08990e972ccd99e36e94e44746710b95adba4 (diff) | |
download | current-1c35025416b4295915f499a01d0cee8899971321.tar.gz |
Thu Sep 12 03:58:53 UTC 201920190912035853
a/glibc-zoneinfo-2019c-noarch-1.txz: Upgraded.
This package provides the latest timezone updates.
a/openssl-solibs-1.1.1d-x86_64-1.txz: Upgraded.
a/openssl10-solibs-1.0.2t-x86_64-1.txz: Upgraded.
ap/mariadb-10.4.8-x86_64-1.txz: Upgraded.
l/netpbm-10.87.02-x86_64-1.txz: Upgraded.
n/curl-7.66.0-x86_64-1.txz: Upgraded.
This update fixes security issues:
FTP-KRB double-free
TFTP small blocksize heap buffer overflow
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5481
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5482
(* Security fix *)
n/openssl-1.1.1d-x86_64-1.txz: Upgraded.
This update fixes low severity security issues:
Fixed a fork protection issue
Fixed a padding oracle in PKCS7_dataDecode and CMS_decrypt_set1_pkey
Compute ECC cofactors if not provided during EC_GROUP construction
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1549
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1563
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1547
(* Security fix *)
n/openssl10-1.0.2t-x86_64-1.txz: Upgraded.
This update fixes low severity security issues:
Fixed a padding oracle in PKCS7_dataDecode and CMS_decrypt_set1_pkey
Compute ECC cofactors if not provided during EC_GROUP construction
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1563
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1547
(* Security fix *)
n/p11-kit-0.23.17-x86_64-1.txz: Upgraded.
xap/mozilla-thunderbird-68.1.0-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/68.1.0/releasenotes/
https://www.mozilla.org/security/known-vulnerabilities/thunderbird.html
(* Security fix *)
extra/google-chrome/google-chrome.SlackBuild: Upgraded.
Patched the packaging script to account for the internal change
of control.tar.gz to control.tar.xz.
Thanks to _RDS_ and Tim Thomas who both provided the same patch.
Diffstat (limited to 'source/xap/mozilla-thunderbird/gkrust.a.no.networking.check.diff')
-rw-r--r-- | source/xap/mozilla-thunderbird/gkrust.a.no.networking.check.diff | 23 |
1 files changed, 23 insertions, 0 deletions
diff --git a/source/xap/mozilla-thunderbird/gkrust.a.no.networking.check.diff b/source/xap/mozilla-thunderbird/gkrust.a.no.networking.check.diff new file mode 100644 index 00000000..e2f3f98d --- /dev/null +++ b/source/xap/mozilla-thunderbird/gkrust.a.no.networking.check.diff @@ -0,0 +1,23 @@ +--- ./config/makefiles/rust.mk.orig 2019-08-26 16:32:05.000000000 -0500 ++++ ./config/makefiles/rust.mk 2019-08-28 15:33:32.393489657 -0500 +@@ -243,13 +243,13 @@ + # When we are building in --enable-release mode; we add an additional check to confirm + # that we are not importing any networking-related functions in rust code. This reduces + # the chance of proxy bypasses originating from rust code. +-ifndef DEVELOPER_OPTIONS +-ifndef MOZ_DEBUG_RUST +-ifeq ($(OS_ARCH), Linux) +- $(call py_action,check_binary,--target --networking $@) +-endif +-endif +-endif ++#ifndef DEVELOPER_OPTIONS ++#ifndef MOZ_DEBUG_RUST ++#ifeq ($(OS_ARCH), Linux) ++# $(call py_action,check_binary,--target --networking $@) ++#endif ++#endif ++#endif + + force-cargo-library-check: + $(call CARGO_CHECK) --lib $(cargo_target_flag) $(rust_features_flag) |