Slackwarearm-current ChangeLog (2019-02-06)
Wed Feb 06 08:08:08 UTC 2019
The mini root filesystem for -current has been updated:
ftp://ftp.arm.slackware.com/slackwarearm/slackwarearm-devtools/minirootfs/
Packages
Upgraded
- a/glibc-solibs-2.29-arm-1.txz
- ap/linuxdoc-tools-0.9.73-arm-1.txz
Upgraded to gtk-doc-1.29.
Upgraded to asciidoc-8.6.10.
Upgraded to perl-XML-SAX-1.00. - ap/qpdf-8.4.0-arm-1.txz
- ap/vim-8.1.0867-arm-1.txz
- ap/zsh-5.7.1-arm-1.txz
- d/Cython-0.29.4-arm-1.txz
- d/binutils-2.32-arm-1.txz
Shared library .so-version bump.
Is it safe to use –enable-initfini-array yet? Guess we'll find out. - d/bison-3.3.2-arm-1.txz
- d/cmake-3.13.4-arm-1.txz
- d/mercurial-4.9-arm-1.txz
- d/meson-0.49.2-arm-1.txz
- d/ninja-1.9.0-arm-1.txz
- d/opencl-headers-2.2-arm-1.txz
Thanks to Heinz Wiesinger. - d/python-setuptools-40.8.0-arm-1.txz
- d/ruby-2.6.1-arm-1.txz
- d/slacktrack-2.19-arm-1.txz
- l/babl-0.1.62-arm-1.txz
- l/glibc-2.29-arm-1.txz
- l/glibc-i18n-2.29-arm-1.txz
- l/glibc-profile-2.29-arm-1.txz
- l/gtk+3-3.24.5-arm-1.txz
- l/harfbuzz-2.3.1-arm-1.txz
- l/imagemagick-6.9.10_26-arm-1.txz
- l/libimobiledevice-20190126_d200973-arm-1.txz
Switch to git since the latest release no longer works. - l/libusbmuxd-20190118_c75605d-arm-1.txz
Switch to git since the latest release no longer works. - l/mozilla-nss-3.42.1-arm-1.txz
- l/mpfr-4.0.2-arm-1.txz
- n/dovecot-2.3.4.1-arm-1.txz
This update addresses security issues:
CVE-2019-3814: If imap/pop3/managesieve/submission client has trusted
certificate with missing username field (ssl_cert_username_field), under
some configurations Dovecot mistakenly trusts the username provided via
authentication instead of failing.
ssl_cert_username_field setting was ignored with external SMTP AUTH,
because none of the MTAs (Postfix, Exim) currently send the cert_username
field. This may have allowed users with trusted certificate to specify any
username in the authentication. This bug didn't affect Dovecot's
Submission service.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3814
(* Security fix *) - n/iw-5.0.1-arm-1.txz
- n/mutt-1.11.3-arm-1.txz
- x/libva-utils-2.4.0-arm-1.txz
- x/xf86-input-libinput-0.28.2-arm-1.txz
- x/xkeyboard-config-2.26-arm-1.txz
- xap/vim-gvim-8.1.0867-arm-1.txz
Rebuilt
- d/oprofile-1.3.0-arm-2.txz
Recompiled against binutils-2.32.
Removed
extra/bittorrent/bittorrent-4.4.0-arm-1.txz