Show pageOld revisionsBacklinksBack to top This page is read only. You can view the source, but not change it. Ask your administrator if you think this is wrong. ====== Slackware-current ChangeLog (2017-11-28) ====== ====== Tue Nov 28 06:20:03 UTC 2017 ====== ===== Packages ===== ==== Upgraded ==== * [[slackware.current>a/eudev-3.2.5-i586-1.txz]] * [[slackware.current>a/kernel-firmware-20171126git-noarch-1.txz]] \\ Remove /lib/firmware/iwlwifi-*-34.ucode until after the next kernel release. * [[slackware.current>a/usbutils-009-i586-1.txz]] * [[slackware.current>ap/lxc-2.0.9-i586-1.txz]] * [[slackware.current>ap/man-pages-4.14-noarch-1.txz]] * [[slackware.current>ap/mc-4.8.20-i586-1.txz]] * [[slackware.current>ap/nano-2.9.1-i586-1.txz]] * [[slackware.current>l/QScintilla-2.10.2-i586-1.txz]] * [[slackware.current>l/sip-4.19.6-i586-1.txz]] * [[slackware.current>n/openldap-client-2.4.45-i586-1.txz]] * [[slackware.current>n/samba-4.7.3-i586-1.txz]] \\ This is a security release in order to address the following defects: \\ CVE-2017-14746 (Use-after-free vulnerability.) \\ All versions of Samba from 4.0.0 onwards are vulnerable to a use after \\ free vulnerability, where a malicious SMB1 request can be used to \\ control the contents of heap memory via a deallocated heap pointer. It \\ is possible this may be used to compromise the SMB server. \\ CVE-2017-15275 (Server heap memory information leak.) \\ All versions of Samba from 3.6.0 onwards are vulnerable to a heap \\ memory information leak, where server allocated heap memory may be \\ returned to the client without being cleared. \\ For more information, see: \\ https://www.samba.org/samba/security/CVE-2017-14746.html \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14746 \\ https://www.samba.org/samba/security/CVE-2017-15275.html \\ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15275 \\ (* Security fix *) * [[slackware.current>x/libva-2.0.0-i586-1.txz]] \\ Shared library .so-version bump. * [[slackware.current>x/mesa-17.2.6-i586-1.txz]] * [[slackware.current>x/xkeyboard-config-2.22-noarch-1.txz]] * [[slackware.current>xap/gparted-0.30.0-i586-1.txz]] * [[slackware.current>xfce/Thunar-1.6.13-i586-1.txz]] ==== Rebuilt ==== * [[slackware.current>ap/hplip-3.17.11-i586-2.txz]] \\ Fixed a few Python scripts that did not have a proper python3 shebang. \\ Thanks to dugan. * [[slackware.current>kde/konsole-4.14.3-i586-3.txz]] \\ Fixed scrollUp behavior. Thanks to Andrzej Telszewski. * [[slackware.current>l/ffmpeg-3.4-i586-2.txz]] \\ Recompiled against libva.so.2.0.0. * [[slackware.current>n/cyrus-sasl-2.1.26-i586-3.txz]] \\ Use /dev/urandom rather than /dev/random to avoid entropy starvation. \\ Thanks to mr.spuratic. * [[slackware.current>n/dhcpcd-6.11.5-i586-2.txz]] \\ Use hostname_short in dhcpcd.conf. Thanks to KewlCat. * [[slackware.current>n/network-scripts-15.0-noarch-4.txz]] \\ Script cleanups from Jakub Jankowski: \\ netconfig: Add comment to netconfig-generated rc.inet1.conf \\ rc.inet1: Check for iface in /sys/class/net, not /proc/net/dev \\ rc.inet1: Remove unnecessary unset num \\ rc.inet1: Factor DEBUG_ETH_UP logging to a separate function \\ rc.inet1: Use ${array[*]} not ${array[@]} to produce a string \\ rc.inet1: Avoid de-/configuring ifaces with indexes >=MAXNICS \\ rc.inet1: Avoid code duplication by combining case/esac \\ rc.inet1: Add missing 'dev' keyword \\ rc.inet1: Remove unnecessary $(echo) \\ rc.inet1*: Simplify virtif_* code, add note to example config \\ rc.inet1: Test for loopback being "state UNKNOWN" too. \\ rc.inet1: Use simple test (-n/-z) for non-empty/empty \\ rc.inet1: Replace [ test1 -a test2 ] with [ test1 ] && [ test2 ] * [[slackware.current>xap/xine-lib-1.2.8-i586-4.txz]] \\ Recompiled against libva.so.2.0.0. ==== Added ==== * [[slackware.current>l/talloc-2.1.10-i586-1.txz]] * [[slackware.current>l/tdb-1.3.15-i586-1.txz]] * [[slackware.current>l/tevent-0.9.34-i586-1.txz]] * [[slackware.current>x/intel-vaapi-driver-2.0.0-i586-1.txz]] \\ This is the replacement for libva-intel-driver (renamed upstream). * [[slackware.current>x/libva-utils-2.0.0-i586-1.txz]] * [[slackware.current>testing/packages/php-7.1.12-i586-1.txz]] ==== Removed ==== * <del>[[slackware.current>x/libva-intel-driver-1.7.3-i586-1.txz]]</del> {{tag>slackware changelog slackware-current 2017/11}} news/2017/11/28/slackware-current-changelog.txt Last modified: 7 years agoby Giuseppe Di Terlizzi Log In