Slackwarearm-current ChangeLog (2021-12-10)
Fri Dec 10 08:08:08 UTC 2021
The mini root filesystem has been updated:
ftp://ftp.arm.slackware.com/slackwarearm/slackwarearm-devtools/minirootfs/
Packages
Upgraded
- a/hwdata-0.354-arm-1.txz
- a/kernel-modules-armv7-5.15.7_armv7-arm-1.txz
- a/kernel_armv7-5.15.7-arm-1.txz
- a/sysklogd-2.3.0-arm-1.txz
- ap/htop-3.1.2-arm-1.txz
- ap/sysstat-12.5.5-arm-1.txz
- ap/vim-8.2.3754-arm-1.txz
- d/Cython-0.29.25-arm-1.txz
- d/kernel-headers-5.15.7-arm-1.txz
- d/poke-1.4-arm-1.txz
- d/rust-1.57.0-arm-1.txz
- d/strace-5.15-arm-1.txz
- k/kernel-source-5.15.7-arm-1.txz
- kde/bluedevil-5.23.4-arm-1.txz
- kde/breeze-5.23.4-arm-1.txz
- kde/breeze-gtk-5.23.4-arm-1.txz
- kde/drkonqi-5.23.4-arm-1.txz
- kde/kactivitymanagerd-5.23.4-arm-1.txz
- kde/kde-cli-tools-5.23.4-arm-1.txz
- kde/kde-gtk-config-5.23.4-arm-1.txz
- kde/kdecoration-5.23.4-arm-1.txz
- kde/kdeplasma-addons-5.23.4-arm-1.txz
- kde/kgamma5-5.23.4-arm-1.txz
- kde/khotkeys-5.23.4-arm-1.txz
- kde/kinfocenter-5.23.4-arm-1.txz
- kde/kmenuedit-5.23.4-arm-1.txz
- kde/kscreenlocker-5.23.4-arm-1.txz
- kde/ksshaskpass-5.23.4-arm-1.txz
- kde/ksystemstats-5.23.4-arm-1.txz
- kde/kwallet-pam-5.23.4-arm-1.txz
- kde/kwayland-integration-5.23.4-arm-1.txz
- kde/kwayland-server-5.23.4-arm-1.txz
- kde/kwin-5.23.4-arm-1.txz
- kde/kwrited-5.23.4-arm-1.txz
- kde/layer-shell-qt-5.23.4-arm-1.txz
- kde/libksysguard-5.23.4-arm-1.txz
- kde/milou-5.23.4-arm-1.txz
- kde/oxygen-5.23.4-arm-1.txz
- kde/plasma-browser-integration-5.23.4-arm-1.txz
- kde/plasma-desktop-5.23.4-arm-1.txz
- kde/plasma-disks-5.23.4-arm-1.txz
- kde/plasma-firewall-5.23.4-arm-1.txz
- kde/plasma-integration-5.23.4-arm-1.txz
- kde/plasma-nm-5.23.4-arm-1.txz
- kde/plasma-pa-5.23.4-arm-1.txz
- kde/plasma-sdk-5.23.4-arm-1.txz
- kde/plasma-systemmonitor-5.23.4-arm-1.txz
- kde/plasma-vault-5.23.4-arm-1.txz
- kde/plasma-workspace-5.23.4-arm-1.txz
- kde/plasma-workspace-wallpapers-5.23.4-arm-1.txz
- kde/polkit-kde-agent-1-5.23.4-arm-1.txz
- kde/powerdevil-5.23.4-arm-1.txz
- kde/qqc2-breeze-style-5.23.4-arm-1.txz
- kde/sddm-kcm-5.23.4-arm-1.txz
- kde/systemsettings-5.23.4-arm-1.txz
- kde/xdg-desktop-portal-kde-5.23.4-arm-1.txz
- l/SDL2-2.0.18-arm-1.txz
- l/enchant-2.3.2-arm-1.txz
- l/freetype-2.11.1-arm-1.txz
- l/glib-networking-2.70.1-arm-1.txz
- l/glib2-2.70.2-arm-1.txz
- l/imagemagick-7.1.0_17-arm-1.txz
- l/libical-3.0.12-arm-1.txz
- l/libqalculate-3.22.0-arm-1.txz
- l/mozilla-nss-3.73-arm-1.txz
Everything linked to NSS/NSPR was rebuild tested here.
This update fixes a critical security issue:
NSS (Network Security Services) versions prior to 3.73 or 3.68.1 ESR are
vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS
signatures. Applications using NSS for handling signatures encoded within
CMS, S/MIME, PKCS #7, or PKCS #12 are likely to be impacted. Applications
using NSS for certificate validation or other TLS, X.509, OCSP or CRL
functionality may be impacted, depending on how they configure NSS.
Note: This vulnerability does NOT impact Mozilla Firefox. However, email
clients and PDF viewers that use NSS for signature verification, such as
Thunderbird, LibreOffice, Evolution and Evince are believed to be impacted.
Thanks to Tavis Ormandy of Google Project Zero.
For more information, see:
https://www.mozilla.org/en-US/security/advisories/mfsa2021-51/
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43527
(* Security fix *) - l/netpbm-10.96.04-arm-1.txz
- l/python-charset-normalizer-2.0.9-arm-1.txz
- l/qt5-5.15.3_20211130_014c375b-arm-1.txz
- l/vte-0.66.2-arm-1.txz
- l/xxHash-0.8.1-arm-1.txz
- n/dovecot-2.3.17.1-arm-1.txz
- n/lynx-2.9.0dev.10-arm-1.txz
- n/samba-4.15.3-arm-1.txz
This release fixes bugs and these regressions in the 4.15.2 release:
CVE-2020-25717: A user on the domain can become root on domain members.
https://www.samba.org/samba/security/CVE-2020-25717.html
PLEASE [RE-]READ!
The instructions have been updated and some workarounds initially advised
for 4.15.2 are no longer required and should be reverted in most cases.
BUG-14902: User with multiple spaces (eg Fred<space><space>Nurk) become
un-deletable. While this release should fix this bug, it is advised to have
a look at the bug report for more detailed information, see:
https://bugzilla.samba.org/show_bug.cgi?id=14902
For more information, see:
https://www.samba.org/samba/security/CVE-2020-25717.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25717
(* Security fix *) - x/libX11-1.7.3-arm-1.txz
- x/wayland-1.20.0-arm-1.txz
- x/xscope-1.4.2-arm-1.txz
- xap/vim-gvim-8.2.3754-arm-1.txz
- xap/xsnow-3.3.6-arm-1.txz
- xfce/exo-4.16.3-arm-1.txz
- kernels/*
Rebuilt
- a/kbd-1.15.3-arm-6.txz
- ap/rpm-4.16.1.3-arm-4.txz
Patched to handle non-compliant RPMs created by install4j. Thanks to alienBOB. - kde/breeze-icons-5.88.0-noarch-2.txz
Applied upstream patch:
[PATCH] Install dark icons via execute_process to use copy command.
Thanks to Heinz Wiesinger. - kde/kscreen-5.23.4-arm-2.txz
Applied upstream patches:
[PATCH 1/4] Compute logicalSize taking into account current config.
[PATCH 2/4] Update screen size when mode changes.
[PATCH 3/4] Ensure to set outputs explicitLogicalSize upon loading config.
[PATCH 4/4] Fix output identifier window positioning in wayland with some
scale.
Thanks to Heinz Wiesinger. - kde/libkscreen-5.23.4-arm-2.txz
Applied upstream patches:
[PATCH] XrandR: Fix impossibilty to change resolution in VirtualBox.
[PATCH] Under X11 ignore per-screen scale to compute logicalSize.
Thanks to Heinz Wiesinger. - isolinux/*
Removed
extra/php8/php8-8.1.0-arm-1.txzpasture/mozilla-firefox-78.8.0esr-arm-2.txz
This no longer works.
Added
- extra/php81/php81-8.1.0-arm-1.txz