Slackwarearm-current ChangeLog (2021-11-01)
Mon Nov 01 08:08:08 UTC 2021
Packages
Upgraded
- a/aaa_terminfo-6.3-arm-1.txz
- a/glibc-zoneinfo-2021e-noarch-1.txz
- a/kernel-firmware-20211025_fc14618-noarch-1.txz
- a/kernel-modules-armv7-5.14.15_armv7-arm-1.txz
- a/kernel_armv7-5.14.15-arm-1.txz
- a/lvm2-2.03.13-arm-1.txz
Reverted to working version. - ap/mpg123-1.29.2-arm-1.txz
- ap/slackpkg-15.0.8-noarch-1.txz
Author: piterpunk piterpunk@slackware.com
To make it easier to do an unattended slackpkg update/upgrade process,
this commit provides different exit codes for many situations:
0 Successful slackpkg execution.
1 Something wrong happened.
20 No package found to be downloaded, installed, reinstalled,
upgraded, or removed.
50 Slackpkg itself was upgraded and you need to re-run it.
100 There are pending updates.
Code and the main manpage are updated accordingly.
In addition, this commit also:
- removes the ChangeLog.txt in doinst.sh, so the needed
'slackpkg update' after Slackpkg upgrade won't say it's all OK
and doesn't need to redo the package lists
- removes AUTHORS from manpage. Nowadays there is code from many
people in Slackpkg and it seems a bit unfair to have only my and
Evaldo's name listed there.
Signed-off-by: Robby Workman rworkman@slackware.com - d/cmake-3.21.4-arm-1.txz
- d/kernel-headers-5.14.15-arm-1.txz
- d/mercurial-5.9.3-arm-1.txz
- d/meson-0.60.0-arm-1.txz
- d/parallel-20211022-noarch-1.txz
- d/python-pip-21.3.1-arm-1.txz
- d/python-setuptools-58.3.0-arm-1.txz
- d/rust-1.56.0-arm-1.txz
- k/kernel-source-5.14.15-arm-1.txz
- l/exiv2-0.27.5-arm-1.txz
- l/ffmpeg-4.4.1-arm-1.txz
Recompiled against libvpx-1.11.0. - l/imagemagick-7.1.0_12-arm-1.txz
- l/libcap-2.60-arm-1.txz
- l/librsvg-2.52.3-arm-1.txz
- l/libsoup-2.74.1-arm-1.txz
- l/libvpx-1.11.0-arm-1.txz
Shared library .so-version bump. - l/ncurses-6.3-arm-1.txz
- l/pipewire-0.3.39-arm-1.txz
- l/python-docutils-0.18-arm-1.txz
- l/qt5-5.15.3_20211024_2aa0de43-arm-1.txz
Upgraded to latest git (might as well) and compiled against libvpx-1.11.0. - n/bind-9.16.22-arm-1.txz
This update fixes bugs and the following security issue:
The “lame-ttl” option is now forcibly set to 0. This effectively disables
the lame server cache, as it could previously be abused by an attacker to
significantly degrade resolver performance.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25219
(* Security fix *) - n/c-ares-1.18.1-arm-1.txz
- n/dhcpcd-9.4.1-arm-1.txz
- n/php-7.4.25-arm-1.txz
This update fixes bugs and a security issue:
FPM: PHP-FPM oob R/W in root process leading to privilege escalation.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21703
(* Security fix *) - n/samba-4.15.1-arm-1.txz
- x/ibus-m17n-1.4.8-arm-1.txz
- x/libinput-1.19.2-arm-1.txz
- xap/freerdp-2.4.1-arm-1.txz
This update fixes two security issues:
Improper client input validation for gateway connections allows to overwrite
memory.
Improper region checks in all clients allow out of bound write to memory.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-41159
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-41160
(* Security fix *) - xap/gftp-2.7.1b-arm-1.txz
- xap/vim-gvim-8.2.3536-arm-1.txz
- kernels/*
Rebuilt
- ap/itstool-2.0.7-arm-2.txz
Rebuilt with PYTHON=/usr/bin/python3. Thanks to USUARIONUEVO. - l/gst-plugins-good-1.18.5-arm-2.txz
Recompiled against libvpx-1.11.0. - l/sip-4.19.25-arm-3.txz
Drop the Qt4 modules. Thanks to gmgf. - n/krb5-1.19.2-arm-2.txz
[PATCH] Fix KDC null deref on TGS inner body null server.
This fixes an issue where an authenticated attacker can cause a denial of
service in the KDC by sending a FAST TGS request with no server field.
Thanks to nobodino.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37750
(* Security fix *) - xap/xine-lib-1.2.11-arm-6.txz
Recompiled against libvpx-1.11.0. - isolinux/*