summaryrefslogtreecommitdiff
path: root/source/n
Commit message (Collapse)AuthorAge
* Fri Mar 22 20:41:23 UTC 201920190322204123Patrick J Volkerding2019-03-23
| | | | | | | | | | | | | | | d/parallel-20190322-noarch-1.txz: Upgraded. n/bind-9.14.0-x86_64-1.txz: Upgraded. xap/mozilla-firefox-60.6.1esr-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. The patched flaws are considered critical, and could be used to run attacker code and install software, requiring no user interaction beyond normal browsing. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html https://www.mozilla.org/en-US/security/advisories/mfsa2019-10/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9810i https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9813 (* Security fix *)
* Tue Mar 19 20:06:28 UTC 201920190319200628Patrick J Volkerding2019-03-20
| | | | | | | | | | | | | | | | | | a/bash-5.0.003-x86_64-1.txz: Upgraded. a/kernel-firmware-20190314_7bc2464-noarch-1.txz: Upgraded. a/kernel-generic-4.19.30-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.30-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.30-x86_64-1.txz: Upgraded. d/help2man-1.47.9-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.30-x86-1.txz: Upgraded. d/strace-5.0-x86_64-1.txz: Upgraded. k/kernel-source-4.19.30-noarch-1.txz: Upgraded. n/gnupg2-2.2.14-x86_64-1.txz: Upgraded. n/libgpg-error-1.36-x86_64-1.txz: Upgraded. n/samba-4.10.0-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Thu Mar 14 03:41:42 UTC 201920190314034142Patrick J Volkerding2019-03-14
| | | | | | | | | | | | | | | | a/kernel-firmware-20190313_efd2c1c-noarch-1.txz: Upgraded. a/kernel-generic-4.19.29-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.29-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.29-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.29-x86-1.txz: Upgraded. k/kernel-source-4.19.29-noarch-1.txz: Upgraded. n/crda-3.18-x86_64-9.txz: Rebuilt. Upgraded to wireless-regdb-2019.03.01. n/ethtool-5.0-x86_64-1.txz: Upgraded. x/mesa-19.0.0-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Tue Mar 12 20:03:46 UTC 201920190312200346Patrick J Volkerding2019-03-13
| | | | | | | | | | | | | | | | | | a/kernel-firmware-20190312_b0d9583-noarch-1.txz: Upgraded. l/at-spi2-atk-2.32.0-x86_64-1.txz: Upgraded. l/at-spi2-core-2.32.0-x86_64-1.txz: Upgraded. l/atk-2.32.0-x86_64-1.txz: Upgraded. l/dconf-0.32.0-x86_64-1.txz: Upgraded. l/dconf-editor-3.32.0-x86_64-1.txz: Upgraded. l/glib-networking-2.60.0-x86_64-1.txz: Upgraded. l/gsettings-desktop-schemas-3.32.0-x86_64-1.txz: Upgraded. l/gvfs-1.40.0-x86_64-1.txz: Upgraded. l/libsoup-2.66.0-x86_64-1.txz: Upgraded. l/vte-0.56.0-x86_64-1.txz: Upgraded. n/mobile-broadband-provider-info-20190116-x86_64-1.txz: Upgraded. n/samba-4.9.5-x86_64-1.txz: Upgraded. x/liberation-fonts-ttf-2.00.5-noarch-1.txz: Upgraded. xap/gucharmap-12.0.0-x86_64-1.txz: Upgraded.
* Mon Mar 11 19:03:50 UTC 201920190311190350Patrick J Volkerding2019-03-12
| | | | | | | | | | | | a/coreutils-8.31-x86_64-1.txz: Upgraded. d/meson-0.50.0-x86_64-1.txz: Upgraded. l/giflib-5.1.7-x86_64-1.txz: Upgraded. l/python-certifi-2019.3.9-x86_64-1.txz: Upgraded. n/postfix-3.4.3-x86_64-1.txz: Upgraded. x/libFS-1.0.8-x86_64-1.txz: Upgraded. x/libXcomposite-0.4.5-x86_64-1.txz: Upgraded. x/libXcursor-1.2.0-x86_64-1.txz: Upgraded. x/libXdamage-1.1.5-x86_64-1.txz: Upgraded.
* Fri Mar 8 18:28:40 UTC 201920190308182840Patrick J Volkerding2019-03-09
| | | | | | | | | | | | | | | | | | a/bash-5.0.002-x86_64-3.txz: Rebuilt. Fix applying patches. Thanks to saahriktu. a/e2fsprogs-1.45.0-x86_64-1.txz: Upgraded. n/ca-certificates-20190308-noarch-1.txz: Upgraded. n/nghttp2-1.37.0-x86_64-1.txz: Upgraded. n/ntp-4.2.8p13-x86_64-1.txz: Upgraded. This release fixes a bug that allows an attacker with access to an explicitly trusted source to send a crafted malicious mode 6 (ntpq) packet that can trigger a NULL pointer dereference, crashing ntpd. It also provides 17 other bugfixes and 1 other improvement. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8936 (* Security fix *) n/postfix-3.4.1-x86_64-2.txz: Rebuilt. n/s-nail-14.9.13-x86_64-1.txz: Upgraded.
* Tue Mar 5 00:17:16 UTC 201920190305001716Patrick J Volkerding2019-03-05
| | | | | | | | | | | | | | | | | | | | | | | d/gcc-8.3.0-x86_64-2.txz: Rebuilt. Reverted backported asm inline patches that broke "asm volatile". Thanks to nobodino. d/gcc-brig-8.3.0-x86_64-2.txz: Rebuilt. d/gcc-g++-8.3.0-x86_64-2.txz: Rebuilt. d/gcc-gfortran-8.3.0-x86_64-2.txz: Rebuilt. d/gcc-gnat-8.3.0-x86_64-2.txz: Rebuilt. d/gcc-go-8.3.0-x86_64-2.txz: Rebuilt. d/gcc-objc-8.3.0-x86_64-2.txz: Rebuilt. l/at-spi2-atk-2.30.1-x86_64-1.txz: Upgraded. l/at-spi2-core-2.30.1-x86_64-1.txz: Upgraded. l/gc-8.0.4-x86_64-1.txz: Upgraded. l/glib2-2.60.0-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_31-x86_64-1.txz: Upgraded. n/postfix-3.4.0-x86_64-2.txz: Rebuilt. Prevent the install script from making noise. x/xinit-1.4.1-x86_64-1.txz: Upgraded. x/xlogo-1.0.5-x86_64-1.txz: Upgraded. x/xmore-1.0.3-x86_64-1.txz: Upgraded. extra/fltk/fltk-1.3.5-x86_64-1.txz: Upgraded.
* Fri Mar 1 23:44:12 UTC 201920190301234412Patrick J Volkerding2019-03-02
| | | | | a/eudev-3.2.7-x86_64-2.txz: Rebuilt. Don't require kvm group.
* Thu Feb 28 23:05:08 UTC 201920190228230508Patrick J Volkerding2019-03-01
| | | | | | | | d/Cython-0.29.6-x86_64-1.txz: Upgraded. d/rust-1.33.0-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_29-x86_64-1.txz: Upgraded. l/qjson-0.9.0-x86_64-1.txz: Upgraded. n/postfix-3.4.0-x86_64-1.txz: Upgraded.
* Wed Feb 27 23:21:15 UTC 201920190227232115Patrick J Volkerding2019-02-28
| | | | | | | | | | | | | | | | | | | | | a/aaa_terminfo-6.1_20190223-x86_64-1.txz: Upgraded. a/kernel-firmware-20190221_9ee52be-noarch-1.txz: Upgraded. a/kernel-generic-4.19.26-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.26-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.26-x86_64-1.txz: Upgraded. ap/vim-8.1.0984-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.26-x86-1.txz: Upgraded. k/kernel-source-4.19.26-noarch-1.txz: Upgraded. l/ncurses-6.1_20190223-x86_64-1.txz: Upgraded. n/curl-7.64.0-x86_64-3.txz: Rebuilt. Applied upstream patch to fix log spam: [PATCH] multi: remove verbose "Expire in" ... messages Thanks to compassnet. n/postfix-3.3.3-x86_64-1.txz: Upgraded. xap/vim-gvim-8.1.0984-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Wed Feb 27 03:09:41 UTC 201920190227030941Patrick J Volkerding2019-02-27
| | | | | | | | | | | | | | | | | | | | | | | | a/btrfs-progs-4.20.2-x86_64-1.txz: Upgraded. a/openssl-solibs-1.1.1b-x86_64-1.txz: Upgraded. ap/ddrescue-1.24-x86_64-1.txz: Upgraded. ap/sqlite-3.27.2-x86_64-1.txz: Upgraded. l/libssh-0.8.7-x86_64-1.txz: Upgraded. l/talloc-2.1.16-x86_64-1.txz: Upgraded. l/tdb-1.3.18-x86_64-1.txz: Upgraded. l/tevent-0.9.39-x86_64-1.txz: Upgraded. n/ca-certificates-20181210-noarch-2.txz: Rebuilt. Use "c_rehash" rather than "openssl rehash" for compatibility with all versions of OpenSSL. n/epic5-2.1.1-x86_64-1.txz: Upgraded. n/openssl-1.1.1b-x86_64-1.txz: Upgraded. x/xorg-server-1.20.4-x86_64-1.txz: Upgraded. x/xorg-server-xephyr-1.20.4-x86_64-1.txz: Upgraded. x/xorg-server-xnest-1.20.4-x86_64-1.txz: Upgraded. x/xorg-server-xvfb-1.20.4-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-60.5.2-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://www.mozilla.org/en-US/thunderbird/60.5.2/releasenotes/
* Sat Feb 23 03:33:52 UTC 201920190223033352Patrick J Volkerding2019-02-23
| | | | | | | | | | | | | | | | | | | a/file-5.36-x86_64-1.txz: Upgraded. ap/mariadb-10.3.13-x86_64-1.txz: Upgraded. This update fixes bugs and security issues. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2510 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2537 (* Security fix *) d/p2c-2.01-x86_64-1.txz: Upgraded. d/python-pip-19.0.3-x86_64-1.txz: Upgraded. l/librsvg-2.44.13-x86_64-2.txz: Rebuilt. Recompiled with --enable-vala=yes. n/bind-9.12.3_P4-x86_64-1.txz: Upgraded. xap/mozilla-firefox-60.5.2esr-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://www.mozilla.org/en-US/firefox/60.5.2/releasenotes/
* Wed Feb 20 23:59:17 UTC 201920190220235917Patrick J Volkerding2019-02-21
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | a/kernel-generic-4.19.24-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.24-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.24-x86_64-1.txz: Upgraded. a/kmod-26-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. a/util-linux-2.33.1-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. ap/hplip-3.19.1-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. ap/linuxdoc-tools-0.9.73-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. ap/lxc-2.0.9_d3a03247-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. ap/rpm-4.14.2.1-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. d/Cython-0.29.5-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. d/distcc-3.3.2-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. d/gdb-8.2.1-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. d/kernel-headers-4.19.24-x86-1.txz: Upgraded. d/llvm-7.0.1-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. d/meson-0.49.2-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. d/python-pip-19.0.2-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. d/python-setuptools-40.8.0-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. d/python3-3.7.2-x86_64-1.txz: Upgraded. Shared library .so-version bump. k/kernel-source-4.19.24-noarch-1.txz: Upgraded. kde/pykde4-4.14.3-x86_64-8.txz: Rebuilt. Recompiled against python3-3.7.2. l/Mako-1.0.7-x86_64-3.txz: Rebuilt. Recompiled against python3-3.7.2. l/PyQt-4.12.1-x86_64-3.txz: Rebuilt. Recompiled against python3-3.7.2. l/QScintilla-2.10.8-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/alsa-lib-1.1.8-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/dbus-python-1.2.8-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/gexiv2-0.10.10-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/libcaca-0.99.beta19-x86_64-4.txz: Rebuilt. Recompiled against python3-3.7.2. l/libcap-ng-0.7.9-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/libjpeg-turbo-2.0.2-x86_64-1.txz: Upgraded. l/libproxy-0.4.15-x86_64-3.txz: Rebuilt. Recompiled against python3-3.7.2. l/libwebp-1.0.2-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/libxml2-2.9.9-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/newt-0.52.20-x86_64-4.txz: Rebuilt. Recompiled against python3-3.7.2. l/pycairo-1.18.0-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/pycups-1.9.74-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/pycurl-7.43.0.2-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/pygobject-2.28.7-x86_64-3.txz: Rebuilt. Recompiled against python3-3.7.2. l/pygobject3-3.30.4-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/pyparsing-2.3.1-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/python-appdirs-1.4.3-x86_64-3.txz: Rebuilt. Recompiled against python3-3.7.2. l/python-certifi-2018.11.29-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/python-chardet-3.0.4-x86_64-3.txz: Rebuilt. Recompiled against python3-3.7.2. l/python-docutils-0.14-x86_64-3.txz: Rebuilt. Recompiled against python3-3.7.2. l/python-idna-2.8-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/python-notify2-0.3.1-x86_64-3.txz: Rebuilt. Recompiled against python3-3.7.2. l/python-packaging-19.0-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/python-pillow-5.4.1-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/python-requests-2.21.0-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/python-sane-2.8.3-x86_64-3.txz: Rebuilt. Recompiled against python3-3.7.2. l/python-six-1.12.0-x86_64-3.txz: Rebuilt. Recompiled against python3-3.7.2. l/python-urllib3-1.24.1-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/sip-4.19.8-x86_64-3.txz: Rebuilt. Recompiled against python3-3.7.2. l/system-config-printer-1.5.11-x86_64-4.txz: Rebuilt. Recompiled against python3-3.7.2. l/talloc-2.1.15-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/tdb-1.3.17-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/tevent-0.9.38-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. l/urwid-1.0.3-x86_64-4.txz: Rebuilt. Recompiled against python3-3.7.2. n/gpgme-1.12.0-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. n/obexftp-0.24.2-x86_64-4.txz: Rebuilt. Recompiled against python3-3.7.2. n/openvpn-2.4.7-x86_64-1.txz: Upgraded. n/pssh-2.3.1-x86_64-4.txz: Rebuilt. Recompiled against python3-3.7.2. x/libfontenc-1.1.4-x86_64-1.txz: Upgraded. x/xcalc-1.0.7-x86_64-1.txz: Upgraded. x/xcb-proto-1.13-x86_64-3.txz: Rebuilt. Recompiled against python3-3.7.2. x/xclock-1.0.8-x86_64-1.txz: Upgraded. x/xev-1.2.3-x86_64-1.txz: Upgraded. x/xfsinfo-1.0.6-x86_64-1.txz: Upgraded. x/xhost-1.0.8-x86_64-1.txz: Upgraded. x/xlsatoms-1.1.3-x86_64-1.txz: Upgraded. x/xmodmap-1.0.10-x86_64-1.txz: Upgraded. x/xrdb-1.2.0-x86_64-1.txz: Upgraded. x/xstdcmap-1.0.4-x86_64-1.txz: Upgraded. x/xvinfo-1.1.4-x86_64-1.txz: Upgraded. xap/blueman-2.0.8-x86_64-2.txz: Rebuilt. Recompiled against python3-3.7.2. xap/hexchat-2.14.2-x86_64-3.txz: Rebuilt. Recompiled against python3-3.7.2. extra/pure-alsa-system/alsa-lib-1.1.8-x86_64-2_alsa.txz: Rebuilt. Recompiled against python3-3.7.2. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Fri Feb 8 22:04:46 UTC 201920190208220446Patrick J Volkerding2019-02-09
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | a/aaa_elflibs-15.0-x86_64-5.txz: Rebuilt. Upgraded: libglib-2.0.so.0.5800.3, libgmodule-2.0.so.0.5800.3, libgobject-2.0.so.0.5800.3, libgthread-2.0.so.0.5800.3, libidn2.so.0.3.5, libmpfr.so.6.0.2, libtdb.so.1.3.17 Removed: libidn2.so.4.0.0 ap/sqlite-3.27.1-x86_64-1.txz: Upgraded. l/libdvdread-6.0.1-x86_64-1.txz: Upgraded. l/libidn2-2.1.1-x86_64-1.txz: Upgraded. Shared library .so-version bump. This reverted back to .so.0 as the previous bump was apparently a mistake. l/libpsl-0.20.2-x86_64-3.txz: Rebuilt. Recompiled against libidn2-2.1.1. n/bind-9.12.3_P1-x86_64-3.txz: Rebuilt. Recompiled against libidn2-2.1.1. n/curl-7.64.0-x86_64-2.txz: Rebuilt. Recompiled against libidn2-2.1.1. n/dhcpcd-7.1.1-x86_64-1.txz: Upgraded. n/dnsmasq-2.80-x86_64-3.txz: Rebuilt. Recompiled against libidn2-2.1.1. n/getmail-5.9-x86_64-1.txz: Upgraded. n/gnutls-3.6.6-x86_64-2.txz: Rebuilt. Recompiled against libidn2-2.1.1. n/iputils-20180629-x86_64-3.txz: Rebuilt. Recompiled against libidn2-2.1.1. n/lftp-4.8.4-x86_64-3.txz: Rebuilt. Recompiled against libidn2-2.1.1. n/s-nail-14.9.11-x86_64-3.txz: Rebuilt. Recompiled against libidn2-2.1.1. n/wget-1.20.1-x86_64-3.txz: Rebuilt. Recompiled against libidn2-2.1.1. n/whois-5.4.1-x86_64-2.txz: Rebuilt. Recompiled against libidn2-2.1.1. x/ttf-tlwg-0.7.1-noarch-1.txz: Upgraded. xfce/xfwm4-4.12.5-x86_64-1.txz: Upgraded.
* Thu Feb 7 22:28:19 UTC 201920190207222819Patrick J Volkerding2019-02-08
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | n/php-7.2.15-x86_64-1.txz: Upgraded. xap/network-manager-applet-1.8.20-x86_64-1.txz: Upgraded. extra/pure-alsa-system/ffmpeg-3.4.5-x86_64-2_alsa.txz: Rebuilt. Recompiled against libvpx-1.8.0. Reenabled libsmbclient support. extra/pure-alsa-system/gst-plugins-good-1.14.4-x86_64-2_alsa.txz: Rebuilt. Recompiled against libvpx-1.8.0. extra/pure-alsa-system/xine-lib-1.2.9-x86_64-4_alsa.txz: Rebuilt. Recompiled against libvpx-1.8.0. pasture/php-5.6.40-x86_64-1.txz: Upgraded. Several security bugs have been fixed in this release: GD: Fixed bug #77269 (efree() on uninitialized Heap data in imagescale leads to use-after-free). Fixed bug #77270 (imagecolormatch Out Of Bounds Write on Heap). Mbstring: Fixed bug #77370 (Buffer overflow on mb regex functions - fetch_token). Fixed bug #77371 (heap buffer overflow in mb regex functions - compile_string_node). Fixed bug #77381 (heap buffer overflow in multibyte match_at). Fixed bug #77382 (heap buffer overflow due to incorrect length in expand_case_fold_string). Fixed bug #77385 (buffer overflow in fetch_token). Fixed bug #77394 (Buffer overflow in multibyte case folding - unicode). Fixed bug #77418 (Heap overflow in utf32be_mbc_to_code). Phar: Fixed bug #77247 (heap buffer overflow in phar_detect_phar_fname_ext). Xmlrpc: Fixed bug #77242 (heap out of bounds read in xmlrpc_decode()). Fixed bug #77380 (Global out of bounds read in xmlrpc base64 code). For more information, see: https://php.net/ChangeLog-5.php#5.6.40 (* Security fix *)
* Wed Feb 6 22:44:32 UTC 201920190206224432Patrick J Volkerding2019-02-07
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | a/hwdata-0.320-noarch-1.txz: Upgraded. a/kernel-generic-4.19.20-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.20-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.20-x86_64-1.txz: Upgraded. a/mcelog-162-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.20-x86-1.txz: Upgraded. d/opencl-headers-2.2-noarch-2.txz: Rebuilt. Don't trigger "#pragma message" in cl_version.h when falling back on a default version of OpenCL to target. Applications such as ffmpeg detect this as an error and fail to compile. k/kernel-source-4.19.20-noarch-1.txz: Upgraded. l/ffmpeg-3.4.5-x86_64-2.txz: Rebuilt. Recompiled against libvpx-1.8.0. Reenabled libsmbclient support. l/gst-plugins-good-1.14.4-x86_64-2.txz: Rebuilt. Recompiled against libvpx-1.8.0. l/libvpx-1.8.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. n/curl-7.64.0-x86_64-1.txz: Upgraded. This release fixes the following security issues: NTLM type-2 out-of-bounds buffer read. NTLMv2 type-3 header stack buffer overflow. SMTP end-of-response out-of-bounds read. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16890 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3822 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3823 (* Security fix *) n/samba-4.9.4-x86_64-2.txz: Rebuilt. Added time.h to libsmbclient.h to fix ffmpeg compatibility. Thanks to USUARIONUEVO. xap/xine-lib-1.2.9-x86_64-4.txz: Rebuilt. Recompiled against libvpx-1.8.0. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Wed Feb 6 00:29:25 UTC 201920190206002925Patrick J Volkerding2019-02-06
| | | | | | | | | | | | | | | | | | | | | | | | | | | ap/linuxdoc-tools-0.9.73-x86_64-1.txz: Upgraded. Upgraded to gtk-doc-1.29. Upgraded to asciidoc-8.6.10. Upgraded to perl-XML-SAX-1.00. Thanks to Stuart Winter. d/meson-0.49.2-x86_64-1.txz: Upgraded. d/python-setuptools-40.8.0-x86_64-1.txz: Upgraded. d/slacktrack-2.19-x86_64-1.txz: Upgraded. Thanks to Stuart Winter. l/imagemagick-6.9.10_26-x86_64-1.txz: Upgraded. n/dovecot-2.3.4.1-x86_64-1.txz: Upgraded. This update addresses security issues: CVE-2019-3814: If imap/pop3/managesieve/submission client has trusted certificate with missing username field (ssl_cert_username_field), under some configurations Dovecot mistakenly trusts the username provided via authentication instead of failing. ssl_cert_username_field setting was ignored with external SMTP AUTH, because none of the MTAs (Postfix, Exim) currently send the cert_username field. This may have allowed users with trusted certificate to specify any username in the authentication. This bug didn't affect Dovecot's Submission service. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3814 (* Security fix *)
* Sun Feb 3 20:26:34 UTC 201920190203202634Patrick J Volkerding2019-02-04
| | | | | | | | d/bison-3.3.2-x86_64-1.txz: Upgraded. n/dovecot-2.3.4-x86_64-2.txz: Rebuilt. Patched double free when used with MariaDB 10.3.x. Thanks to Thom1b. x/xkeyboard-config-2.26-noarch-1.txz: Upgraded. extra/bittorrent/bittorrent-4.4.0-noarch-4.txz: Removed.
* Sat Feb 2 22:09:17 UTC 201920190202220917Patrick J Volkerding2019-02-03
| | | | | | | | | | | | | | | ap/qpdf-8.4.0-x86_64-1.txz: Upgraded. d/Cython-0.29.4-x86_64-1.txz: Upgraded. d/binutils-2.32-x86_64-1.txz: Upgraded. Shared library .so-version bump. Is it safe to use --enable-initfini-array yet? Guess we'll find out. d/cmake-3.13.4-x86_64-1.txz: Upgraded. d/mercurial-4.9-x86_64-1.txz: Upgraded. d/oprofile-1.3.0-x86_64-2.txz: Rebuilt. Recompiled against binutils-2.32. n/iw-5.0-x86_64-1.txz: Upgraded. n/mutt-1.11.3-x86_64-1.txz: Upgraded. x/libva-utils-2.4.0-x86_64-1.txz: Upgraded.
* Wed Jan 30 04:27:03 UTC 201920190130042703Patrick J Volkerding2019-01-30
| | | | | | | | | | | | | | | | | | | | | | d/bison-3.3.1-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_25-x86_64-1.txz: Upgraded. l/mozilla-nss-3.42-x86_64-1.txz: Upgraded. n/libgpg-error-1.35-x86_64-1.txz: Upgraded. n/whois-5.4.1-x86_64-1.txz: Upgraded. x/xf86-video-nouveau-1.0.16-x86_64-1.txz: Upgraded. xap/mozilla-firefox-60.5.0esr-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html https://www.mozilla.org/en-US/security/advisories/mfsa2019-02/ https://www.mozilla.org/en-US/security/advisories/mfsa2019-02/#CVE-2018-18500 https://www.mozilla.org/en-US/security/advisories/mfsa2019-02/#CVE-2018-18505 https://www.mozilla.org/en-US/security/advisories/mfsa2019-02/#CVE-2018-18501 (* Security fix *) xap/mozilla-thunderbird-60.5.0-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://www.mozilla.org/en-US/thunderbird/60.5.0/releasenotes/ xfce/Thunar-1.8.4-x86_64-1.txz: Upgraded.
* Sat Jan 26 04:15:08 UTC 201920190126041508Patrick J Volkerding2019-01-26
| | | | | | | a/mkinitrd-1.4.11-x86_64-11.txz: Rebuilt. setup.01.mkinitrd: revert to the previous command line for mkinitrd_command_generator.sh (the new one fails when called from the installer).
* Wed Jan 23 22:02:34 UTC 201920190123220234Patrick J Volkerding2019-01-24
| | | | | | | | | | | | | | | | a/bash-5.0.002-x86_64-2.txz: Rebuilt. Rebuilt with --libdir=/usr/lib${LIBDIRSUFFIX}. Thanks to RandomTroll. a/btrfs-progs-4.20.1-x86_64-1.txz: Upgraded. a/mkinitrd-1.4.11-x86_64-9.txz: Rebuilt. Automatically generate an initial ramdisk from the installer. Added 'geninitrd' script to generate an initial ramdisk for the kernel that /boot/vmlinuz-generic (and/or /boot/vmlinuz-generic-smp) points to. ap/man-db-2.8.5-x86_64-2.txz: Rebuilt. Comment out all the options in /etc/profile.d/man-db.{csh,sh} and let the user decide whether or not to choose anything. d/python-pip-19.0.1-x86_64-1.txz: Upgraded. l/mozilla-nss-3.41.1-x86_64-1.txz: Upgraded. n/dhcpcd-7.1.0-x86_64-1.txz: Upgraded.
* Wed Jan 23 04:39:04 UTC 201920190123043904Patrick J Volkerding2019-01-23
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | a/kernel-generic-4.19.17-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.17-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.17-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.17-x86-1.txz: Upgraded. d/scons-3.0.4-x86_64-1.txz: Upgraded. d/vala-0.42.5-x86_64-1.txz: Upgraded. k/kernel-source-4.19.17-noarch-1.txz: Upgraded. n/httpd-2.4.38-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. mod_session: mod_session_cookie does not respect expiry time allowing sessions to be reused. [Hank Ibell] mod_http2: fixes a DoS attack vector. By sending slow request bodies to resources not consuming them, httpd cleanup code occupies a server thread unnecessarily. This was changed to an immediate stream reset which discards all stream state and incoming data. [Stefan Eissing] mod_ssl: Fix infinite loop triggered by a client-initiated renegotiation in TLSv1.2 (or earlier) with OpenSSL 1.1.1 and later. PR 63052. [Joe Orton] For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17199 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17189 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0190 (* Security fix *) x/libdrm-2.4.97-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Fri Jan 11 21:15:41 UTC 201920190111211541Patrick J Volkerding2019-01-12
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | a/bash-5.0.000-x86_64-1.txz: Upgraded. a/glibc-zoneinfo-2018i-noarch-1.txz: Upgraded. a/lzlib-1.11-x86_64-1.txz: Upgraded. ap/vim-8.1.0727-x86_64-1.txz: Upgraded. Fixed vimrc to work with "crontab -e" again now that cron's files have been moved into /run/cron/. Thanks to Andreas Vögel. d/subversion-1.11.1-x86_64-1.txz: Upgraded. n/irssi-1.1.2-x86_64-1.txz: Upgraded. This update addresses bugs including security and stability issues: A NULL pointer dereference occurs for an "empty" nick. Certain nick names could result in out-of-bounds access when printing theme strings. Crash due to a NULL pointer dereference w hen the number of windows exceeds the available space. Use-after-free when SASL messages are received in an unexpected order. Use-after-free when a server is disconnected during netsplits. Use-after-free when hidden lines were expired from the scroll buffer. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7050 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7051 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7052 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7053 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7054 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5882 (* Security fix *) xap/vim-gvim-8.1.0727-x86_64-1.txz: Upgraded.
* Thu Jan 10 22:32:08 UTC 201920190110223208Patrick J Volkerding2019-01-11
| | | | | | | | | | ap/qpdf-8.3.0-x86_64-1.txz: Upgraded. l/argon2-20171227-x86_64-1.txz: Added. This is a new dependency for the PHP package. n/libmbim-1.18.0-x86_64-1.txz: Upgraded. n/libqmi-1.22.0-x86_64-1.txz: Upgraded. n/php-7.2.14-x86_64-1.txz: Upgraded. Use --with-password-argon2. PHP now requires the new argon2 package.
* Wed Jan 9 03:21:06 UTC 201920190109032106Patrick J Volkerding2019-01-09
| | | | | | | | | | | ap/alsa-utils-1.1.8-x86_64-1.txz: Upgraded. ap/gutenprint-5.3.1-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/alsa-lib-1.1.8-x86_64-1.txz: Upgraded. l/alsa-oss-1.1.8-x86_64-1.txz: Upgraded. l/alsa-plugins-1.1.8-x86_64-1.txz: Upgraded. extra/pure-alsa-system/alsa-lib-1.1.8-x86_64-1_alsa.txz: Upgraded. extra/pure-alsa-system/alsa-plugins-1.1.8-x86_64-1_alsa.txz: Upgraded.
* Sat Jan 5 20:04:43 UTC 201920190105200443Patrick J Volkerding2019-01-06
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | a/aaa_elflibs-15.0-x86_64-4.txz: Rebuilt. Upgraded: libfuse.so.2.9.9, libidn2.so.4.0.0. Kept (for now): libidn2.so.0.3.4. ap/vim-8.1.0693-x86_64-1.txz: Upgraded. l/fuse-2.9.9-x86_64-1.txz: Upgraded. l/libidn2-2.1.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. l/libpsl-0.20.2-x86_64-2.txz: Rebuilt. Recompiled against libidn2-2.1.0. n/bind-9.12.3_P1-x86_64-2.txz: Rebuilt. Recompiled against libidn2-2.1.0. n/curl-7.63.0-x86_64-2.txz: Rebuilt. Recompiled against libidn2-2.1.0. n/dnsmasq-2.80-x86_64-2.txz: Rebuilt. Recompiled against libidn2-2.1.0. n/gnutls-3.6.5-x86_64-2.txz: Rebuilt. Recompiled against libidn2-2.1.0. n/iputils-s20180629-x86_64-2.txz: Rebuilt. Recompiled against libidn2-2.1.0. n/lftp-4.8.4-x86_64-2.txz: Rebuilt. Recompiled against libidn2-2.1.0. n/s-nail-14.9.11-x86_64-2.txz: Rebuilt. Recompiled against libidn2-2.1.0. n/wget-1.20.1-x86_64-2.txz: Rebuilt. Recompiled against libidn2-2.1.0. n/whois-5.4.0-x86_64-2.txz: Rebuilt. Recompiled against libidn2-2.1.0. xap/vim-gvim-8.1.0693-x86_64-1.txz: Upgraded.
* Mon Dec 31 21:33:54 UTC 201820181231213354Patrick J Volkerding2019-01-01
| | | | | | | | | | | | | | | | | | | | | | | | a/efibootmgr-17-x86_64-1.txz: Upgraded. a/efivar-37-x86_64-1.txz: Upgraded. d/cmake-3.13.2-x86_64-2.txz: Rebuilt. Work around build failures with recent doxygen. d/ruby-2.6.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. d/subversion-1.11.0-x86_64-2.txz: Rebuilt. Recompiled against ruby-2.6.0. kde/korundum-4.14.3-x86_64-7.txz: Rebuilt. Recompiled against ruby-2.6.0. kde/qtruby-4.14.3-x86_64-9.txz: Rebuilt. Recompiled against ruby-2.6.0. l/gobject-introspection-1.58.3-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_22-x86_64-1.txz: Upgraded. l/libssh-0.8.6-x86_64-1.txz: Upgraded. n/epic5-2.0.1-x86_64-8.txz: Rebuilt. Recompiled against ruby-2.6.0. n/tin-2.4.3-x86_64-1.txz: Upgraded. n/wireless_tools-30.pre9-x86_64-1.txz: Upgraded. x/xterm-341-x86_64-2.txz: Rebuilt. Install xterm app-defaults that resemble the Linux console. Thanks to GazL.
* Sat Dec 29 23:13:15 UTC 201820181229231315Patrick J Volkerding2018-12-30
| | | | | | | | | | | | | | | | | | | | | a/kernel-generic-4.19.13-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.13-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.13-x86_64-1.txz: Upgraded. d/doxygen-1.8.15-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.13-x86-1.txz: Upgraded. k/kernel-source-4.19.13-noarch-1.txz: Upgraded. FRAMEBUFFER_CONSOLE_DEFERRED_TAKEOVER y -> n l/libsecret-0.18.7-x86_64-1.txz: Upgraded. n/wpa_supplicant-2.6-x86_64-6.txz: Upgraded. It seems we're not the only ones with broken WPA2-Enterprise support with wpa_supplicant-2.7, so we'll fix it the same way as everyone else - by reverting to wpa_supplicant-2.6 for now. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. testing/packages/wpa_supplicant-2.7-x86_64-2.txz: Upgraded. Applied a patch from Gentoo to allow building CONFIG_IEEE80211X=y without the experimental CONFIG_FILS=y option. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Fri Dec 28 00:23:43 UTC 201820181228002343Patrick J Volkerding2018-12-28
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | a/aaa_elflibs-15.0-x86_64-3.txz: Rebuilt. Moved libsigsegv.so.2 from /usr/lib{,64} to /lib{,64}. Upgraded: libcap.so.2.26, libelf-0.175.so, libfuse.so.2.9.8, libexpat.so.1.6.8, libglib-2.0.so.0.5800.2, libgmodule-2.0.so.0.5800.2, libgobject-2.0.so.0.5800.2, libgthread-2.0.so.0.5800.2, libjpeg.so.62.3.0, liblber-2.4.so.2.10.10, libldap-2.4.so.2.10.10, libpng16.so.16.36.0, libstdc++.so.6.0.25, libtdb.so.1.3.16, libtiff.so.5.4.0, libtiffxx.so.5.4.0, libturbojpeg.so.0.2.0. ap/vim-8.1.0648-x86_64-1.txz: Upgraded. d/nasm-2.14.02-x86_64-1.txz: Upgraded. d/strace-4.26-x86_64-1.txz: Upgraded. l/libsigsegv-2.12-x86_64-3.txz: Rebuilt. Moved shared library into /lib{,64} to avoid problems when /usr is on a separate partition. Thanks to TommyC7. But please note: that has never been a recommended configuration (it was always a bad idea prone to corner-case bugs), and with basically everyone else moving everything into /usr, no upstream is developing with this scenario in mind these days. Some of the problems caused by separate /usr are simply not possibly to fix in a straightforward fashion. Consider it a completely unsupported configuration choice. While it's not my style to make the installer refuse to allow it, I won't be bending over backwards to try to fix bugs related to this in the future. If I recall properly, the original rationale was to make it possible for /usr to reside on a shared network partition, which might have made sense back when 40MB was a typical hard drive size. I can think of no good rationale now (and no, I don't think making /usr read-only helps security in any tangible way). n/wget-1.20.1-x86_64-1.txz: Upgraded. x/xf86-video-chips-1.3.0-x86_64-1.txz: Upgraded. x/xf86-video-neomagic-1.3.0-x86_64-1.txz: Upgraded. x/xterm-341-x86_64-1.txz: Upgraded. xap/audacious-3.10.1-x86_64-1.txz: Upgraded. xap/audacious-plugins-3.10.1-x86_64-1.txz: Upgraded. xap/vim-gvim-8.1.0648-x86_64-1.txz: Upgraded.
* Sat Dec 22 04:38:27 UTC 201820181222043827Patrick J Volkerding2018-12-22
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | a/coreutils-8.30-x86_64-3.txz: Rebuilt. Support tmux terms in DIR_COLORS. Thanks to qunying. a/grep-3.3-x86_64-1.txz: Upgraded. a/kernel-generic-4.19.12-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.12-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.12-x86_64-1.txz: Upgraded. a/sed-4.7-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.12-x86-1.txz: Upgraded. d/rust-1.31.1-x86_64-1.txz: Upgraded. k/kernel-source-4.19.12-noarch-1.txz: Upgraded. l/graphite2-1.3.13-x86_64-1.txz: Upgraded. l/harfbuzz-2.3.0-x86_64-1.txz: Upgraded. l/imagemagick-6.9.10_19-x86_64-1.txz: Upgraded. l/lmdb-0.9.23-x86_64-1.txz: Upgraded. l/v4l-utils-1.16.3-x86_64-1.txz: Upgraded. n/netatalk-3.1.12-x86_64-1.txz: Upgraded. Netatalk before 3.1.12 is vulnerable to an out of bounds write in dsi_opensess.c. This is due to lack of bounds checking on attacker controlled data. A remote unauthenticated attacker can leverage this vulnerability to achieve arbitrary code execution. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1160 (* Security fix *) n/openldap-client-2.4.47-x86_64-1.txz: Upgraded. n/samba-4.9.4-x86_64-1.txz: Upgraded. x/intel-vaapi-driver-2.3.0-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Fri Dec 14 01:49:19 UTC 201820181214014919Patrick J Volkerding2018-12-14
| | | | | | | | | | | | | | | | | | | | | | | | a/kernel-generic-4.19.9-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.9-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.9-x86_64-1.txz: Upgraded. a/logrotate-3.15.0-x86_64-1.txz: Upgraded. d/cmake-3.13.2-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.9-x86-1.txz: Upgraded. d/python-setuptools-40.6.3-x86_64-1.txz: Upgraded. k/kernel-source-4.19.9-noarch-1.txz: Upgraded. l/gtk+3-3.24.2-x86_64-1.txz: Upgraded. l/libedit-20181209_3.1-x86_64-1.txz: Upgraded. l/python-six-1.12.0-x86_64-2.txz: Rebuilt. n/bind-9.12.3_P1-x86_64-1.txz: Upgraded. n/curl-7.63.0-x86_64-1.txz: Upgraded. n/ipset-7.1-x86_64-1.txz: Upgraded. n/libassuan-2.5.2-x86_64-1.txz: Upgraded. x/xf86-input-void-1.4.1-x86_64-1.txz: Upgraded. x/xterm-339-x86_64-1.txz: Upgraded. xap/gparted-0.33.0-x86_64-1.txz: Upgraded. isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Wed Dec 12 04:09:54 UTC 201820181212040954Patrick J Volkerding2018-12-12
| | | | | | | | | | | | | | | | | | | | | | l/librsvg-2.44.10-x86_64-1.txz: Upgraded. l/vte-0.54.3-x86_64-1.txz: Upgraded. n/ca-certificates-20181210-noarch-1.txz: Upgraded. x/mesa-18.3.1-x86_64-1.txz: Upgraded. x/xf86-video-i128-1.4.0-x86_64-1.txz: Upgraded. x/xf86-video-mga-2.0.0-x86_64-1.txz: Upgraded. x/xterm-338-x86_64-1.txz: Upgraded. xap/mozilla-firefox-60.4.0esr-x86_64-1.txz: Upgraded. This release contains security fixes and improvements. For more information, see: https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/ https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-17466 https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-18492 https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-18493 https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-18494 https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-18498 https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-12405 (* Security fix *)
* Sat Dec 8 04:10:45 UTC 201820181208041045Patrick J Volkerding2018-12-08
| | | | | | | | | | | | | | | | | | | | | | | | | | a/btrfs-progs-v4.19.1-x86_64-1.txz: Upgraded. a/dbus-1.12.12-x86_64-1.txz: Upgraded. ap/cups-2.2.10-x86_64-1.txz: Upgraded. ap/cups-filters-1.21.5-x86_64-1.txz: Upgraded. ap/hplip-3.18.12-x86_64-1.txz: Upgraded. d/mercurial-4.8.1-x86_64-1.txz: Upgraded. d/rust-1.31.0-x86_64-1.txz: Upgraded. l/libpng-1.6.36-x86_64-1.txz: Upgraded. l/python-idna-2.8-x86_64-1.txz: Upgraded. n/ntp-4.2.8p12-x86_64-5.txz: Rebuilt. Fixed logrotate file. Thanks to allend and rworkman. n/php-7.2.13-x86_64-1.txz: Upgraded. This is a security release which also contains several minor bug fixes. For more information, see: https://php.net/ChangeLog-7.php#7.2.13 (* Security fix *) n/wpa_supplicant-2.7-x86_64-1.txz: Upgraded. x/mesa-18.3.0-x86_64-1.txz: Upgraded. x/xf86-video-i740-1.4.0-x86_64-1.txz: Upgraded. xap/mozilla-thunderbird-60.3.3-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://www.mozilla.org/en-US/thunderbird/60.3.3/releasenotes/ xfce/thunar-volman-0.9.1-x86_64-1.txz: Upgraded.
* Thu Dec 6 04:38:11 UTC 201820181206043811Patrick J Volkerding2018-12-06
| | | | | | | | | | | | | | | | | | | | | | | | | | | | a/kernel-generic-4.19.7-x86_64-1.txz: Upgraded. a/kernel-huge-4.19.7-x86_64-1.txz: Upgraded. a/kernel-modules-4.19.7-x86_64-1.txz: Upgraded. d/kernel-headers-4.19.7-x86-1.txz: Upgraded. k/kernel-source-4.19.7-noarch-1.txz: Upgraded. n/gnutls-3.6.5-x86_64-1.txz: Upgraded. This update fixes a security issue: Bleichenbacher-like side channel leakage in PKCS#1 1.5 verification and padding oracle verification. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16868 (* Security fix *) n/nettle-3.4.1-x86_64-1.txz: Upgraded. This update fixes a security issue: A Bleichenbacher type side-channel based padding oracle attack was found in the way nettle handles endian conversion of RSA decrypted PKCS#1 v1.5 data. An attacker who is able to run a process on the same physical core as the victim process, could use this flaw to extract plaintext or in some cases downgrade any TLS connections to a vulnerable server. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16869 (* Security fix *) isolinux/initrd.img: Rebuilt. kernels/*: Upgraded. usb-and-pxe-installers/usbboot.img: Rebuilt.
* Mon Dec 3 20:59:30 UTC 201820181203205930Patrick J Volkerding2018-12-04
| | | | | | | | | | | | | | | ap/sqlite-3.26.0-x86_64-1.txz: Upgraded. l/libzip-1.5.1-x86_64-5.txz: Rebuilt. Fixed path in libzip.pc. Thanks to orbea. l/mozilla-nss-3.40.1-x86_64-1.txz: Upgraded. Mitigate cache side-channel variant of the Bleichenbacher attack. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12404 (* Security fix *) n/mutt-1.11.1-x86_64-1.txz: Upgraded. n/stunnel-5.50-x86_64-1.txz: Upgraded. xfce/xfce4-systemload-plugin-1.2.2-x86_64-2.txz: Rebuilt. Applied reworked hover timeout patch. Thanks to Rod3775.
* Sat Dec 1 03:16:35 UTC 201820181201031635Patrick J Volkerding2018-12-01
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | ap/texinfo-6.5-x86_64-7.txz: Rebuilt. Recompiled against perl-5.28.1. ap/vim-8.1.0552-x86_64-1.txz: Upgraded. Compiled against perl-5.28.1. d/perl-5.28.1-x86_64-1.txz: Upgraded. Upgraded DBD-mysql-4.049, DBI-1.642, abd IO-Socket-SSL-2.060. Added Devel-CheckLib-1.13 (needed by DBD-mysql-4.049). kde/perlkde-4.14.3-x86_64-7.txz: Rebuilt. Recompiled against perl-5.28.1. kde/perlqt-4.14.3-x86_64-8.txz: Rebuilt. Recompiled against perl-5.28.1. n/epic5-2.0.1-x86_64-7.txz: Rebuilt. Recompiled against perl-5.28.1. n/irssi-1.1.1-x86_64-5.txz: Rebuilt. Recompiled against perl-5.28.1. n/net-snmp-5.8-x86_64-4.txz: Rebuilt. Recompiled against perl-5.28.1. n/ntp-4.2.8p12-x86_64-4.txz: Rebuilt. Recompiled against perl-5.28.1. xap/hexchat-2.14.2-x86_64-2.txz: Rebuilt. Recompiled against perl-5.28.1. xap/mozilla-thunderbird-60.3.2-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://www.mozilla.org/en-US/thunderbird/60.3.2/releasenotes/ xap/rxvt-unicode-9.22-x86_64-6.txz: Rebuilt. Recompiled against perl-5.28.1. xap/vim-gvim-8.1.0552-x86_64-1.txz: Upgraded. Compiled against perl-5.28.1. xfce/xfce4-systemload-plugin-1.2.2-x86_64-1.txz: Upgraded.
* Fri Nov 30 04:21:06 UTC 201820181130042106Patrick J Volkerding2018-11-30
| | | | | | | | | | n/mutt-1.11.0-x86_64-2.txz: Rebuilt. Put info file in /usr/info and compress it. Don't include /usr/info/dir. Thanks to Edward Trumbo. After upgrading this package, you'll need to reinstall the texinfo package to restore the missing /usr/info/dir file. n/wget-1.20-x86_64-1.txz: Upgraded.
* Thu Nov 29 05:53:27 UTC 201820181129055327Patrick J Volkerding2018-11-29
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | a/sysvinit-scripts-2.1-noarch-23.txz: Rebuilt. rc.S: simplify test for F2FS filesystem on /. Thanks to GazL. ap/soma-3.2.0-noarch-1.txz: Upgraded. d/cmake-3.13.1-x86_64-1.txz: Upgraded. l/jansson-2.12-x86_64-1.txz: Upgraded. n/rp-pppoe-3.13-x86_64-1.txz: Upgraded. n/samba-4.9.3-x86_64-1.txz: Upgraded. This update fixes bugs and security issues: CVE-2018-14629: Unprivileged adding of CNAME record causing loop in AD Internal DNS server CVE-2018-16841: Double-free in Samba AD DC KDC with PKINIT CVE-2018-16851: NULL pointer de-reference in Samba AD DC LDAP server CVE-2018-16852: NULL pointer de-reference in Samba AD DC DNS servers CVE-2018-16853: Samba AD DC S4U2Self crash in experimental MIT Kerberos configuration (unsupported) CVE-2018-16857: Bad password count in AD DC not always effective For more information, see: https://www.samba.org/samba/security/CVE-2018-14629.html https://www.samba.org/samba/security/CVE-2018-16841.html https://www.samba.org/samba/security/CVE-2018-16851.html https://www.samba.org/samba/security/CVE-2018-16852.html https://www.samba.org/samba/security/CVE-2018-16853.html https://www.samba.org/samba/security/CVE-2018-16857.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14629 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16841 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16851 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16852 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16853 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16857 (* Security fix *) x/mesa-18.2.6-x86_64-1.txz: Upgraded. x/vulkan-sdk-1.1.92.1-x86_64-1.txz: Upgraded.
* Mon Nov 26 22:58:11 UTC 201820181126225811Patrick J Volkerding2018-11-27
| | | | | | | | | | | | | | | | | ap/lm_sensors-3.5.0-x86_64-1.txz: Upgraded. Shared library .so-version bump. ap/sysstat-12.0.2-x86_64-2.txz: Rebuilt. Recompiled against lm_sensors-3.5.0. kde/kde-workspace-4.11.22-x86_64-6.txz: Rebuilt. Recompiled against lm_sensors-3.5.0. n/mutt-1.11.0-x86_64-1.txz: Upgraded. n/net-snmp-5.8-x86_64-3.txz: Rebuilt. Recompiled against lm_sensors-3.5.0. n/ntp-4.2.8p12-x86_64-3.txz: Rebuilt. Recompiled against lm_sensors-3.5.0. n/postfix-3.3.2-x86_64-1.txz: Upgraded. xap/gkrellm-2.3.10-x86_64-5.txz: Rebuilt. Recompiled against lm_sensors-3.5.0.
* Sat Nov 24 20:44:07 UTC 201820181124204407Patrick J Volkerding2018-11-25
| | | | | | | | | | | | | | | | | | | | | | | | | | | a/tree-1.8.0-x86_64-1.txz: Upgraded. ap/cups-filters-1.21.4-x86_64-1.txz: Upgraded. ap/itstool-2.0.5-x86_64-1.txz: Upgraded. d/Cython-0.29.1-x86_64-1.txz: Upgraded. l/dconf-0.30.1-x86_64-1.txz: Upgraded. l/elfutils-0.175-x86_64-1.txz: Upgraded. l/gc-8.0.0-x86_64-1.txz: Upgraded. l/gobject-introspection-1.58.1-x86_64-1.txz: Upgraded. l/json-glib-1.4.4-x86_64-1.txz: Upgraded. l/keyutils-1.6-x86_64-1.txz: Upgraded. l/libjpeg-turbo-2.0.1-x86_64-1.txz: Upgraded. l/libpsl-0.20.2-x86_64-1.txz: Upgraded. l/libsecret-0.18.6-x86_64-3.txz: Rebuilt. Recompiled with --enable-introspection (also picks up Vala support). n/cyrus-sasl-2.1.27-x86_64-1.txz: Upgraded. n/dovecot-2.3.4-x86_64-1.txz: Upgraded. n/mailx-12.5-x86_64-4.txz: Removed. n/s-nail-14.9.11-x86_64-1.txz: Added. This package replaces mailx. Thanks to Johannes Schoepfer. tcl/tcl-8.6.9-x86_64-1.txz: Upgraded. tcl/tk-8.6.9.1-x86_64-1.txz: Upgraded. xap/gucharmap-11.0.3-x86_64-1.txz: Upgraded. xfce/xfce4-clipman-plugin-1.4.3-x86_64-1.txz: Upgraded. xfce/xfce4-screenshooter-1.9.3-x86_64-1.txz: Upgraded.
* Thu Nov 15 19:47:53 UTC 201820181115194753Patrick J Volkerding2018-11-16
| | | | | | | | | | d/python-setuptools-40.6.2-x86_64-1.txz: Upgraded. l/python-requests-2.20.1-x86_64-1.txz: Upgraded. n/cifs-utils-6.8-x86_64-1.txz: Upgraded. n/getmail-5.8-x86_64-1.txz: Upgraded. n/nfs-utils-2.3.3-x86_64-1.txz: Upgraded. n/rpcbind-1.2.5-x86_64-1.txz: Upgraded. x/mesa-18.2.5-x86_64-1.txz: Upgraded.
* Wed Nov 14 20:07:37 UTC 201820181114200737Patrick J Volkerding2018-11-15
| | | | | | | | | | | | | | | a/xfsprogs-4.19.0-x86_64-1.txz: Upgraded. ap/sudo-1.8.26-x86_64-1.txz: Upgraded. l/babl-0.1.60-x86_64-1.txz: Upgraded. n/iptables-1.8.2-x86_64-1.txz: Upgraded. Compiled against libnftnl-1.1.2. n/libnftnl-1.1.2-x86_64-1.txz: Upgraded. Shared library .so-version bump. n/nftables-0.9.0-x86_64-2.txz: Rebuilt. Recompiled against libnftnl-1.1.2. extra/pure-alsa-system/alsa-lib-1.1.7-x86_64-2_alsa.txz: Rebuilt. Sorry this package had not been recompiled with the patch. Thanks to orbea for pointing this out.
* Tue Nov 13 05:15:29 UTC 201820181113051529Patrick J Volkerding2018-11-13
| | | | | | | | | | | | | | | | | | | | d/python-setuptools-40.6.1-x86_64-1.txz: Upgraded. l/M2Crypto-0.31.0-x86_64-1.txz: Upgraded. l/SDL2-2.0.9-x86_64-2.txz: Rebuilt. Fixed use of SDL_syswm.h with SDL_PROTOTYPES_ONLY in C++ mode. Thanks to orbea. l/libtiff-4.0.10-x86_64-1.txz: Upgraded. This update fixes some denial of service security issues. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10779 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18661 (* Security fix *) l/netpbm-10.84.02-x86_64-1.txz: Upgraded. n/net-snmp-5.8-x86_64-2.txz: Rebuilt. Recompiled to link the perl modules to the new libraries. Thanks to th_r.
* Fri Nov 9 21:46:09 UTC 201820181109214609Patrick J Volkerding2018-11-10
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | a/udisks2-2.6.5-x86_64-3.txz: Rebuilt. Recompiled against net-snmp-5.8. ap/hplip-3.18.10-x86_64-2.txz: Rebuilt. Recompiled against net-snmp-5.8. d/bison-3.2.1-x86_64-1.txz: Upgraded. d/meson-0.48.2-x86_64-1.txz: Upgraded. l/pycairo-1.18.0-x86_64-1.txz: Upgraded. n/bridge-utils-1.6-x86_64-1.txz: Upgraded. n/net-snmp-5.8-x86_64-1.txz: Upgraded. Shared library .so-version bump. n/ntp-4.2.8p12-x86_64-2.txz: Rebuilt. Recompiled against net-snmp-5.8. n/php-7.2.12-x86_64-2.txz: Rebuilt. Recompiled against net-snmp-5.8. xap/blackbox-0.74-x86_64-2.txz: Rebuilt. When building, don't install anything to the system. Thanks to Didier Spaier. xap/sane-1.0.27-x86_64-4.txz: Rebuilt. Recompiled against net-snmp-5.8. extra/aspell-word-lists/aspell-ar-1.2_0-x86_64-1.txz: Added. extra/aspell-word-lists/aspell-ast-0.01-x86_64-1.txz: Added. extra/aspell-word-lists/aspell-ca-2.1.5_1-x86_64-1.txz: Upgraded. extra/aspell-word-lists/aspell-de_alt-2.1_1-x86_64-1.txz: Added. extra/aspell-word-lists/aspell-fy-0.12_0-x86_64-1.txz: Added. extra/aspell-word-lists/aspell-grc-0.02_0-x86_64-1.txz: Added. extra/aspell-word-lists/aspell-hy-0.10.0_0-x86_64-1.txz: Added. extra/aspell-word-lists/aspell-ky-0.01_0-x86_64-1.txz: Added. extra/aspell-word-lists/aspell-ml-0.03_1-x86_64-1.txz: Added. extra/aspell-word-lists/aspell-pt_PT-20070510_0-x86_64-1.txz: Added. extra/aspell-word-lists/aspell-tk-0.01_0-x86_64-1.txz: Added.
* Fri Nov 9 02:42:22 UTC 201820181109024222Patrick J Volkerding2018-11-09
| | | | | | | | | | | | | | | | | | | | | | | a/efibootmgr-16-x86_64-2.txz: Rebuilt. Reverted to previous version. We'd tried this before and it still doesn't work. Thanks to _RDS_. a/efivar-35-x86_64-1.txz: Upgraded. Reverted to previous version. We'd tried this before and it still doesn't work. Thanks to _RDS_. a/hwdata-0.317-noarch-1.txz: Upgraded. a/lvm2-2.03.01-x86_64-1.txz: Upgraded. a/quota-4.04-x86_64-1.txz: Upgraded. ap/cups-2.2.9-x86_64-1.txz: Upgraded. ap/sysstat-12.0.2-x86_64-1.txz: Upgraded. d/cscope-15.9-x86_64-1.txz: Upgraded. d/distcc-3.3.2-x86_64-1.txz: Upgraded. d/nasm-2.14-x86_64-1.txz: Upgraded. d/oprofile-1.3.0-x86_64-1.txz: Upgraded. d/rust-1.30.1-x86_64-1.txz: Upgraded. l/elfutils-0.174-x86_64-1.txz: Upgraded. l/shared-mime-info-1.10-x86_64-1.txz: Upgraded. n/samba-4.9.2-x86_64-1.txz: Upgraded. xap/gimp-2.10.8-x86_64-1.txz: Upgraded.
* Thu Nov 8 02:52:55 UTC 201820181108025255Patrick J Volkerding2018-11-08
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | a/aaa_terminfo-6.1_20181027-x86_64-2.txz: Rebuilt. a/efibootmgr-17-x86_64-1.txz: Upgraded. a/efivar-36-x86_64-1.txz: Upgraded. a/hostname-3.21-x86_64-1.txz: Upgraded. a/inotify-tools-3.20.1-x86_64-1.txz: Upgraded. a/mdadm-4.1-x86_64-1.txz: Upgraded. a/usb_modeswitch-2.5.2-x86_64-1.txz: Upgraded. a/util-linux-2.33-x86_64-1.txz: Upgraded. ap/cdrdao-1.2.4-x86_64-1.txz: Upgraded. ap/dash-0.5.10.2-x86_64-1.txz: Upgraded. ap/diffstat-1.62-x86_64-1.txz: Upgraded. ap/rpm-4.14.2.1-x86_64-1.txz: Upgraded. ap/sqlite-3.25.3-x86_64-1.txz: Upgraded. l/gnu-efi-3.0.9-x86_64-1.txz: Upgraded. l/iso-codes-4.1-noarch-1.txz: Upgraded. l/jasper-2.0.14-x86_64-1.txz: Upgraded. l/libbluray-1.0.2-x86_64-1.txz: Upgraded. l/libcap-ng-0.7.9-x86_64-1.txz: Upgraded. l/libiodbc-3.52.12-x86_64-1.txz: Upgraded. l/libodfgen-0.1.7-x86_64-1.txz: Upgraded. l/libwpd-0.10.2-x86_64-1.txz: Upgraded. l/libwpg-0.3.2-x86_64-1.txz: Upgraded. l/libyaml-0.2.1-x86_64-1.txz: Upgraded. l/ncurses-6.1_20181027-x86_64-2.txz: Rebuilt. Temporarily removed the bce feature from the linux console definition until the console is fixed. Added a linux-bce terminal definition for testing. l/sbc-1.4-x86_64-1.txz: Upgraded. l/zstd-1.3.7-x86_64-1.txz: Upgraded. n/gnupg2-2.2.11-x86_64-1.txz: Upgraded. n/ipset-7.0-x86_64-1.txz: Upgraded. n/libndp-1.7-x86_64-1.txz: Upgraded. n/npth-1.6-x86_64-1.txz: Upgraded. n/php-7.2.12-x86_64-1.txz: Upgraded. n/slrn-1.0.3a-x86_64-1.txz: Upgraded. n/snownews-1.6.10-x86_64-1.txz: Upgraded. n/whois-5.4.0-x86_64-1.txz: Upgraded. x/libinput-1.12.3-x86_64-1.txz: Upgraded. x/libva-2.3.0-x86_64-1.txz: Upgraded. x/libva-utils-2.3.0-x86_64-1.txz: Upgraded. x/libwacom-0.32-x86_64-1.txz: Upgraded. x/xdg-user-dirs-0.17-x86_64-1.txz: Upgraded. xap/blackbox-0.74-x86_64-1.txz: Upgraded.
* Fri Nov 2 20:41:52 UTC 201820181102204152Patrick J Volkerding2018-11-03
| | | | | | | | | | | | | | a/haveged-1.9.4-x86_64-1.txz: Upgraded. a/kernel-firmware-20181026_1baa348-noarch-1.txz: Upgraded. a/mcelog-161-x86_64-1.txz: Upgraded. ap/powertop-2.9-x86_64-1.txz: Upgraded. d/clisp-2.49_20180922_228b90a52-x86_64-1.txz: Upgraded. d/mercurial-4.8-x86_64-1.txz: Upgraded. l/fribidi-1.0.5-x86_64-1.txz: Upgraded. l/libjpeg-turbo-2.0.0-x86_64-1.txz: Upgraded. n/lynx-2.8.9rel.1-x86_64-1.txz: Upgraded. t/texlive-2018.180822-x86_64-3.txz: Rebuilt. Rebuilt to recompile xindy for the upgraded CLISP runtime.
* Fri Nov 2 01:21:12 UTC 201820181102012112Patrick J Volkerding2018-11-02
| | | | | | | | | | | | kde/kde-runtime-4.14.3-x86_64-8.txz: Rebuilt. Applied upstream patch to fix info and man page display. Thanks to igadoter and lougavulin. l/gegl-0.4.12-x86_64-1.txz: Upgraded. n/bind-9.12.3-x86_64-1.txz: Upgraded. x/mesa-18.2.4-x86_64-1.txz: Upgraded. extra/pure-alsa-system/kde-runtime-4.14.3-x86_64-8_alsa.txz: Rebuilt. Applied upstream patch to fix info and man page display. Thanks to igadoter and lougavulin.
* Wed Oct 31 22:49:36 UTC 201820181031224936Patrick J Volkerding2018-11-01
| | | | | | | | | | | | | | | | | | | | | | d/subversion-1.11.0-x86_64-1.txz: Upgraded. l/SDL2-2.0.9-x86_64-1.txz: Upgraded. l/SDL2_gfx-1.0.4-x86_64-1.txz: Upgraded. l/SDL2_image-2.0.4-x86_64-1.txz: Upgraded. l/SDL2_mixer-2.0.4-x86_64-1.txz: Upgraded. n/autofs-5.1.5-x86_64-1.txz: Upgraded. n/curl-7.62.0-x86_64-1.txz: Upgraded. This release fixes the following security issues: SASL password overflow via integer overflow. Use-after-free in handle close. Warning message out-of-buffer read. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16839 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16840 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16842 (* Security fix *) xap/mozilla-thunderbird-60.3.0-x86_64-1.txz: Upgraded. This is a bugfix release. For more information, see: https://www.mozilla.org/en-US/thunderbird/60.3.0/releasenotes/
generated by cgit v1.2.3 (git 2.26.2) at 2024-10-21 12:32:41 +0000