Slackware-current ChangeLog
Mon Sep 13 18:04:35 UTC 2021
Packages
Upgraded
Rebuilt
- n/NetworkManager-1.32.10-i586-2.txz
00-dhcp-client.conf: Add the –noconfigure option to dhcpcd, or else the
network won't return after suspend/resume. Thanks to marav.
Added
Fri Sep 10 18:58:52 UTC 2021
Packages
Rebuilt
- a/grub-2.06-i586-4.txz
Install file in /etc/grub.d as .new so that they won't be clobbered by
future package updates.
Patch grub-mkconfig to skip .new files in /etc/grub.d.
Thanks to denydias. - xap/libnma-1.8.32-i586-2.txz
Added glib-compile-schemas to the install script. Thanks to bormant. - xap/network-manager-applet-1.24.0-i586-2.txz
Removed glib-compile-schemas from the install script. Thanks to bormant.
Upgraded
- d/bison-3.7.6-i586-1.txz
Reverted bison-3.8 since it breaks building glibc. Looks like I picked the
wrong week to upgrade bison.
Thanks to nobodino.
Thu Sep 9 18:51:50 UTC 2021
Packages
Rebuilt
- a/grub-2.06-i586-3.txz
Fix unreadable XFS filesystem with v4 superblock. Thanks to Didier Spaier. - l/libgtop-2.40.0-i586-5.txz
Don't ship .la files. Thanks to Toutatis. - xfce/mousepad-0.5.6-i586-2.txz
Don't ship .la files. Thanks to Toutatis.
Upgraded
Wed Sep 8 18:07:38 UTC 2021
Packages
Upgraded
Rebuilt
Mon Sep 6 18:55:54 UTC 2021
Packages
Upgraded
- xap/mozilla-firefox-91.1.0esr-i686-1.txz
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/91.1.0/releasenotes/
https://www.mozilla.org/security/advisories/mfsa2021-40/
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-38492
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-38495
(* Security fix *)
Rebuilt
- ap/texinfo-6.8-i586-2.txz
Regenerate /usr/info/dir.new. - l/libgtop-2.40.0-i586-4.txz
Remove /usr/info/dir that shouldn't have been included.
Upgrade the texinfo package after this one to restore the correct file.
Thanks to elyk.
Sat Sep 4 18:31:25 UTC 2021
Packages
Upgraded
Fri Sep 3 18:51:49 UTC 2021
Packages
Upgraded
Rebuilt
- n/bind-9.16.20-i586-2.txz
rc.bind: Fixed typo: $RDNC_OPTIONS → $RNDC_OPTIONS
rc.bind: Allow a 10 second (default) timeout for rndc to stop BIND. At that
point if BIND is still running, use killall -SIGTERM to stop it.
Thanks to akschu.
Fri Sep 3 00:22:37 UTC 2021
Packages
Upgraded
- l/poppler-21.09.0-i586-1.txz
Shared library .so-version bump.
Rebuilt
- kde/calligra-3.2.1-i586-11.txz
Recompiled against poppler-21.09.0. - kde/kfilemetadata-5.85.0-i586-2.txz
Recompiled against poppler-21.09.0. - kde/kile-2.9.93-i586-11.txz
Recompiled against poppler-21.09.0. - kde/krita-4.4.8-i586-2.txz
Recompiled against poppler-21.09.0. - l/glib2-2.68.4-i586-3.txz
/etc/profile.d/libglib2.csh: Don't use bash syntax. Thanks to theodore.s.
Wed Sep 1 18:39:59 UTC 2021
Packages
Rebuilt
- a/util-linux-2.37.2-i586-2.txz
Rebuild with –disable-raw since the raw driver has been removed from the
kernel. Thanks to nobodino and SeB. - l/glib2-2.68.4-i586-2.txz
Better detect UTF-8 locales in libglib2.sh and libglib2.csh.
Thanks to Didier Spaier. - l/tidy-html5-5.8.0-i586-2.txz
Fixed manpage installation. Thanks to kaott. - extra/sendmail/sendmail-8.17.1-i586-2.txz
Rebuilt with -DUSE_EAI and -licui18n -licuuc -licudata added to
site.config.m4 to support SMTPUTF8. Thanks to niksoggia.
Upgraded
Mon Aug 30 18:22:08 UTC 2021
Packages
Rebuilt
- a/etc-15.0-i586-15.txz
/etc/profile: Don't define a $LESS variable, but provide a commented-out
example of “-M -R”. As far as I can tell, setting $LESS to -M is something
that we picked up from SLS's /etc/profile at the very beginning and then
kept it because it wasn't causing any problems. Personally, I'll be
uncommenting this because it's nice to get the extra output from less
provided by -M concerning your place in the file, but we'll leave it up
to the end user how to handle this.
Thanks to krown, marav, LockyWolf, and drgibbon.
Upgraded
Sun Aug 29 18:23:50 UTC 2021
Packages
Upgraded
- d/binutils-2.37-i586-1.txz
With a few upstream patches to fix some regressions in the release, we no
longer get any new FTBFS with this, so we'll take it. - l/libssh-0.9.6-i586-1.txz
Fix possible heap-buffer overflow when rekeying with different key exchange
mechanism.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3634
(* Security fix *) - l/qt5-5.15.3_20210826_21ea9c12-i586-1.txz
Switched to the patched qt5 from https://invent.kde.org/qt/qt/qt5.git.
Huge thanks to Heinz Wiesinger for the script to create a release tarball.
Likely this fixes many security issues.
(* Security fix *) - x/libglvnd-1.3.3-i586-1.txz
Reverted to this version because changes to the header files won't allow the
EGL portions of Qt to properly compile.
Rebuilt
- d/oprofile-1.4.0-i586-8.txz
Recompiled against binutils-2.37. - kde/sddm-0.19.0-i586-8.txz
Patched to fix build.
Thu Aug 26 23:13:18 UTC 2021
Packages
Upgraded
- xap/seamonkey-2.53.9-i686-1.txz
This update contains security fixes and improvements.
For more information, see:
https://www.seamonkey-project.org/releases/seamonkey2.53.9
(* Security fix *)
Rebuilt
Wed Aug 25 20:32:43 UTC 2021
Packages
Upgraded
- xap/mozilla-thunderbird-91.0.3-i686-1.txz
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/91.0.3/releasenotes/
Rebuilt
- d/gcc-go-11.2.0-i586-2.txz
[PATCH] compiler: correct condition for calling memclrHasPointers
This fixes bootstrapping golang 1.17 with gcc-go.
Thanks to Heinz Wiesinger.
Tue Aug 24 19:40:54 UTC 2021
Packages
Upgraded
- n/openssl-1.1.1l-i586-1.txz
Fixed an SM2 Decryption Buffer Overflow.
Fixed various read buffer overruns processing ASN.1 strings.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3711
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3712
(* Security fix *) - xap/mozilla-firefox-91.0.2-i686-1.txz
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/firefox/91.0.2/releasenotes/
Sun Aug 22 18:53:28 UTC 2021
Packages
Upgraded
- x/mesa-21.2.1-i586-1.txz
21.2.x has some important bug fixes, and there's still time to test, so…
Sat Aug 21 18:57:13 UTC 2021
Packages
Upgraded
Rebuilt
- l/freetype-2.11.0-i586-2.txz
Restore quiet no-op rendering of bitmap glyphs.
Sat Aug 21 04:38:34 UTC 2021
Packages
Upgraded
- xap/mozilla-thunderbird-91.0.2-i686-1.txz
This is a bugfix release.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/91.0.2/releasenotes/
Rebuilt
- kde/konsole-21.08.0-i586-3.txz
Merged another upstream patch for the case where there is no konsolerc.
Thu Aug 19 18:54:03 UTC 2021
Packages
Upgraded
- l/harfbuzz-2.9.0-i586-1.txz
Looking over the changes, they appear to be safe enough and/or mostly
bugfixes, so we'll take this. If it breaks anything, please report.
Rebuilt
- kde/akonadi-search-21.08.0-i586-2.txz
Rebuilt against recompiled xapian-core package. - kde/akonadiconsole-21.08.0-i586-2.txz
Rebuilt against recompiled xapian-core package. - kde/khelpcenter-21.08.0-i586-2.txz
Rebuilt against recompiled xapian-core package. - l/xapian-core-1.4.18-i586-4.txz
Rebuilt with gcc-11.2.0 per doxygen warning.
Thu Aug 19 05:17:32 UTC 2021
Packages
Rebuilt
- a/aaa_libraries-15.0-i586-9.txz
Fixed wrong version of libasound.so.2.0.0.
Thanks to Eduardo Charquero and PiterPunk. - kde/konsole-21.08.0-i586-2.txz
Patched to fix konsole size and toolbars. Thanks to alienBOB and PiterPunk.
Upgraded
- n/bind-9.16.20-i586-1.txz
This update fixes bugs and the following security issue:
An assertion failure occurred when named attempted to send a UDP packet that
exceeded the MTU size, if Response Rate Limiting (RRL) was enabled.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25218
(* Security fix *)
Tue Aug 17 20:08:40 UTC 2021
Packages
Rebuilt
- l/glibc-2.33-i586-4.txz
In librt, sysdeps/unix/sysv/linux/mq_notify.c mishandles certain
NOTIFY_REMOVED data, leading to a NULL pointer dereference.
NOTE: this vulnerability was introduced as a side effect of the
CVE-2021-33574 fix.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-38604
(* Security fix *) - l/python2-module-collection-2.7.18-i586-5.txz
Added dbus-python-1.2.16.
Upgraded
- xap/mozilla-firefox-91.0.1-i686-1.txz
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/91.0.1/releasenotes/
https://www.mozilla.org/security/advisories/mfsa2021-37/
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29991
(* Security fix *) - xap/mozilla-thunderbird-91.0.1-i686-1.txz
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/91.0.1/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2021-37/
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29991
(* Security fix *)
Mon Aug 16 05:28:16 UTC 2021
Hey everyone, long time no see! No, I wasn't out fishing. Sadly, I haven't had
a fishing rod in my hand (or even a fishing license in my wallet) for this
entire season, but there may yet be a chance for that this year. Along with the
usual suspects, I've been trying to clear out the list of things that needed
to get done in order to reach the standard of excellence demanded from a
Slackware release, and I think we've gotten it pretty close. GCC was bumped to
version 11.2.0 (because we just can't send this out 2 versions behind), and
everything was verified to build properly or fixed up so that it did. I don't
see any benefit to another public mass rebuild, so we're not going to do one.
Anyway, without further ado, here is Slackware 15.0 release candidate one.
Consider most things frozen and the focus now to be any remaining blocker bugs.
We'll more than likely take that next Plasma bugfix release, but it's soon
time to get off this treadmill. Enjoy!
Packages
Rebuilt
- a/aaa_libraries-15.0-i586-8.txz
Upgraded: libcap.so.2.52, libpcre.so.1.2.13, libboost_atomic.so.1.76.0,
libboost_chrono.so.1.76.0, libboost_container.so.1.76.0,
libboost_context.so.1.76.0, libboost_contract.so.1.76.0,
libboost_coroutine.so.1.76.0, libboost_date_time.so.1.76.0,
libboost_fiber.so.1.76.0, libboost_filesystem.so.1.76.0,
libboost_graph.so.1.76.0, libboost_iostreams.so.1.76.0,
libboost_json.so.1.76.0, libboost_locale.so.1.76.0, libboost_log.so.1.76.0,
libboost_log_setup.so.1.76.0, libboost_math_c99.so.1.76.0,
libboost_math_c99f.so.1.76.0, libboost_math_c99l.so.1.76.0,
libboost_math_tr1.so.1.76.0, libboost_math_tr1f.so.1.76.0,
libboost_math_tr1l.so.1.76.0, libboost_nowide.so.1.76.0,
libboost_prg_exec_monitor.so.1.76.0, libboost_program_options.so.1.76.0,
libboost_python27.so.1.76.0, libboost_python39.so.1.76.0,
libboost_random.so.1.76.0, libboost_regex.so.1.76.0,
libboost_serialization.so.1.76.0, libboost_stacktrace_addr2line.so.1.76.0,
libboost_stacktrace_basic.so.1.76.0, libboost_stacktrace_noop.so.1.76.0,
libboost_system.so.1.76.0, libboost_thread.so.1.76.0,
libboost_timer.so.1.76.0, libboost_type_erasure.so.1.76.0,
libboost_unit_test_framework.so.1.76.0, libboost_wave.so.1.76.0,
libboost_wserialization.so.1.76.0, libcares.so.2.4.3,
libglib-2.0.so.0.6800.3, libgmodule-2.0.so.0.6800.3,
libgobject-2.0.so.0.6800.3, libgthread-2.0.so.0.6800.3,
libidn.so.12.6.3, liblber-2.4.so.2.11.7, libldap-2.4.so.2.11.7,
libstdc++.so.6.0.29, libtdb.so.1.4.5. - ap/pamixer-1.4-i586-11.txz
Recompiled against boost-1.77.0. - d/libtool-2.4.6-i586-18.txz
Recompiled to update embedded GCC version number. - kde/krita-4.4.7-i586-2.txz
Recompiled against boost-1.77.0. - kde/plasma-workspace-5.22.4-i586-2.txz
Recompiled against libqalculate-3.20.1. - l/cryfs-0.10.3-i586-3.txz
Patched for gcc11 and recompiled against boost-1.77.0. - l/ocl-icd-2.3.0-i586-2.txz
Patched to support the latest Khronos headers. - l/openexr-2.5.7-i586-2.txz
Recompiled against boost-1.77.0. - l/pulseaudio-15.0-i586-2.txz
Ensure that start-pulseaudio-x11 is generated properly when pulseaudio is
built using meson. Thanks to davjohn. - l/qt5-5.15.2-i586-11.txz
Patched to compile with gcc11 (such as adding #include <limits> to some of
the header files shipped in the package). - n/php-7.4.22-i586-2.txz
Recompiled against tidy-html5-5.8.0. - extra/php8/php8-8.0.9-i586-2.txz
Recompiled against tidy-html5-5.8.0.
Upgraded
- ap/linuxdoc-tools-0.9.82-i586-1.txz
Thanks to Stuart Winter. - ap/mariadb-10.5.12-i586-1.txz
Looks like we're still hitting a few regressions in the 10.6 branch. The
most obvious one where the version reported by MariaDB is the library
version rather than the server version (as previously reported) could be
reverted, but this could lead to future problems as fixes for this
change land in other projects. It seems that the safest approach at this
time is to switch back to the most recent release from the 10.5 branch
and keep an eye on the situation.
Thanks to richarson and Heinz Wiesinger. - ap/slackpkg-15.0.7-noarch-1.txz
Remove ftp://spout.ussg.indiana.edu from mirrorlist.
Allow “slackpkg help” to work after slackpkg is upgraded (JK Wood).
Thanks to Robby Workman. - d/slacktrack-2.21-i586-1.txz
Thanks to Stuart Winter. - k/kernel-source-5.13.11_smp-noarch-1.txz
CC_VERSION_TEXT “gcc (GCC) 10.3.0” → “gcc (GCC) 11.2.0”
GCC_VERSION 100300 → 110200
+CC_HAS_ASM_GOTO_OUTPUT y
+HAVE_KCSAN_COMPILER y
+SND_SOC_INTEL_HDA_DSP_COMMON m
+SND_SOC_INTEL_SOF_MAXIM_COMMON m - l/boost-1.77.0-i586-1.txz
Shared library .so-version bump. - l/libqalculate-3.20.1-i586-1.txz
Shared library .so-version bump. - l/mlt-7.0.1-i586-1.txz
Shared library .so-version bump. - l/tidy-html5-5.8.0-i586-1.txz
Shared library .so-version bump. - n/c-ares-1.17.2-i586-1.txz
This update fixes a security issue:
Missing input validation on hostnames returned by DNS servers.
For more information, see:
https://c-ares.haxx.se/adv_20210810.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3672
(* Security fix *) - xap/mozilla-firefox-91.0-i686-1.txz
New ESR release
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/firefox/91.0/releasenotes/
https://www.mozilla.org/security/advisories/mfsa2021-33/
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29986
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29981
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29988
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29983
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29984
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29980
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29987
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29985
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29982
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29989
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29990
(* Security fix *) - xap/mozilla-thunderbird-91.0-i686-1.txz
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/91.0/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2021-36/
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29986
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29981
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29988
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29984
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29980
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29987
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29985
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29982
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29989
(* Security fix *)
Added
- n/openresolv-3.12.0-noarch-1.txz
This is needed for wg-quick in the wireguard-tools package.
Thanks to synbq Bucharest, Jeremy Hansen, and Daniel Wilkins.
Sat Aug 7 19:04:04 UTC 2021
Packages
Rebuilt
- l/glibc-2.33-i586-3.txz
Since glibc-2.34 makes a potentially risky change of moving all functions
into the main library, and another inconvenient (for us) change of renaming
the library files, we'll stick with glibc-2.33 for Slackware 15.0 and test
the newer glibc in the next release cycle. But we'll backport the security
fixes from glibc-2.34 with this update:
The nameserver caching daemon (nscd), when processing a request for netgroup
lookup, may crash due to a double-free, potentially resulting in degraded
service or Denial of Service on the local system. Reported by Chris Schanzle.
The mq_notify function has a potential use-after-free issue when using a
notification type of SIGEV_THREAD and a thread attribute with a non-default
affinity mask.
The wordexp function may overflow the positional parameter number when
processing the expansion resulting in a crash. Reported by Philippe Antoine.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27645
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33574
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35942
(* Security fix *)
Upgraded
Added
- l/liburing-2.0-i586-1.txz
This is needed by mariadb, and provides increased performance on high speed
devices such as NVMe.
Fri Aug 6 18:04:01 UTC 2021
Packages
Upgraded
Wed Aug 4 20:16:51 UTC 2021
Packages
Upgraded
- ap/lxc-4.0.10-i586-1.txz
Thanks to Matthew Chamley.
Rebuilt
Tue Aug 3 18:18:13 UTC 2021
Packages
Upgraded
Tue Aug 3 06:55:27 UTC 2021
Packages
Rebuilt
- a/libcgroup-0.41-i586-10.txz
Added LANG=C to the build script. - d/rust-1.54.0-i686-2.txz
Move bash completions to /usr/share/bash-completion/completions/.
Thanks to Robby Workman. - kde/calligra-3.2.1-i586-10.txz
Recompiled against poppler-21.08.0. - kde/cantor-21.04.3-i586-2.txz
Recompiled against poppler-21.08.0. - kde/kfilemetadata-5.84.0-i586-2.txz
Recompiled against poppler-21.08.0. - kde/kile-2.9.93-i586-10.txz
Recompiled against poppler-21.08.0. - kde/kitinerary-21.04.3-i586-2.txz
Recompiled against poppler-21.08.0. - kde/krita-4.4.5-i586-2.txz
Recompiled against poppler-21.08.0. - kde/okular-21.04.3-i586-2.txz
Recompiled against poppler-21.08.0.
Upgraded
- l/poppler-21.08.0-i586-1.txz
Shared library .so-version bump.
Giuseppe Di Terlizzi