Slackware64-current ChangeLog (2015-12-16)
Wed Dec 16 07:03:12 UTC 2015
Packages
Rebuilt
- ap/slackpkg-2.82.0-noarch-16.txz
Bugfix for a syntax error in core-functions.sh.
Wed Dec 16 04:21:07 UTC 2015
Packages
Rebuilt
- a/sysvinit-scripts-2.0-noarch-25.txz
rc.modules: New simplfied module dep script.
NOTE: This will be installed as /etc/rc.d/rc.modules.new by default.
To use it, remove the existing rc.modules symlink and move the new
file into place.
rc.modules.local: New local module loading script.
Thanks to GazL and rworkman for helping clean out the rc.modules cruft.
rc.S: If executable, start rc.cgmanager.
rc.6: If executable, stop rc.cgmanager. - ap/slackpkg-2.82.0-noarch-15.txz
Don't blacklist aaa_elflibs. Upgrade it right after glibc-solibs.
Suggest http://mirrors.slackware.com rather than ftp (which won't redirect).
Prompt to restart the upgrade process if slackpkg is upgraded.
Thanks to Robby Workman. - d/libtool-2.4.6-x86_64-4.txz
Rebuilt to fix embedded GCC version number. - l/libgphoto2-2.5.9-x86_64-2.txz
Patched to fix Nikon CoolPix Sxxxx detection.
Thanks to Ondrej Kubecka and Marcus Meissner. - l/libnih-1.0.3-x86_64-2.txz
Write .pid files in /run, not /var/run. - extra/fltk/fltk-1.3.3-x86_64-2.txz
Patched to fix undefined reference to `Fl_XFont_On_Demand::value()'.
Build shared libraries, not static.
Thanks to Stefan Steier. - extra/tigervnc/tigervnc-1.5.0-x86_64-2.txz
Recompiled against shared fltk libraries.
Upgraded
- a/sysklogd-1.5.1-x86_64-1.txz
rc.syslog: Don't run klogd in a container. - ap/cgmanager-0.39-x86_64-1.txz
Thanks to Matteo Bernardini and Robby Workman. - ap/cups-filters-1.4.0-x86_64-1.txz
foomatic-rip: SECURITY FIX: Also consider the back tick ('`') as an illegal
shell escape character.
Thanks to Michal Kowalczyk from the Google Security Team for the hint.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8327
(* Security fix *) - ap/qpdf-6.0.0-x86_64-1.txz
Shared library .so-version bump. - l/libpng-1.6.20-x86_64-1.txz
Fixed incorrect implementation of png_set_PLTE() that uses png_ptr
not info_ptr, that left png_set_PLTE() open to the CVE-2015-8126
vulnerability.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8472
(* Security fix *) - n/bind-9.10.3_P2-x86_64-1.txz
This update fixes three security issues:
Update allowed OpenSSL versions as named is potentially vulnerable
to CVE-2015-3193.
Insufficient testing when parsing a message allowed records with an
incorrect class to be be accepted, triggering a REQUIRE failure when
those records were subsequently cached. (CVE-2015-8000)
Address fetch context reference count handling error on socket error.
(CVE-2015-8461)
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3193
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8000
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8461
(* Security fix *) - n/openssl-1.0.2e-x86_64-1.txz
This update fixes the following security issues:
BN_mod_exp may produce incorrect results on x86_64 (CVE-2015-3193).
Certificate verify crash with missing PSS parameter (CVE-2015-3194).
X509_ATTRIBUTE memory leak (CVE-2015-3195).
Race condition handling PSK identify hint (CVE-2015-3196).
Anon DH ServerKeyExchange with 0 p parameter (CVE-2015-1794).
For more information, see:
https://openssl.org/news/secadv_20151203.txt
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1794
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3193
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3194
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3195
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3196
(* Security fix *) - xap/mozilla-firefox-43.0-x86_64-1.txz
This release contains security fixes and improvements.
For more information, see:
http://www.mozilla.org/security/known-vulnerabilities/firefox.html
(* Security fix *)
Added
- n/libtirpc-1.0.1-x86_64-1.txz
This is needed by rpcbind. Thanks to Jan Rafaj. - n/rpcbind-0.2.3-x86_64-1.txz
This replaces the portmap package. Thanks to Jan Rafaj.
Removed
n/portmap-6.0-x86_64-1.txz
This is replaced by the new libtirpc and rpcbind packages.