Latest changelog for slackware-current

marav · 01-13-2024, 03:04 PM

There is obviously a small gap between the date change and the changelog to be populate. I noticed that a couple of time
My script is based on the date change, I wait a bit before my main script part, but for bigger changelog it doesn't seem to be enough
I need to see how I can deal with that

marav · 01-14-2024, 01:26 PM

5 updates (x86_64) : 4 Upgraded, 1 Rebuilt

Code:

Sun Jan 14 19:16:48 UTC 2024
a/bash-5.2.026-x86_64-1.txz:  Upgraded.
a/cpio-2.15-x86_64-1.txz:  Upgraded.
kde/kdeconnect-kde-23.08.4-x86_64-2.txz:  Rebuilt.
  Recompiled against pulseaudio-qt-1.4.0.
l/libidn-1.42-x86_64-1.txz:  Upgraded.
l/libpsl-0.21.5-x86_64-1.txz:  Upgraded.

Provided by http://matoda.pw/report/slack-current-x86_64.txt

marav · 01-15-2024, 03:26 PM

13 updates (x86_64) : 10 Upgraded, 3 Rebuilt

Code:

Mon Jan 15 21:08:12 UTC 2024
a/kernel-firmware-20240115_9b6d0b0-noarch-1.txz:  Upgraded.
a/kernel-generic-6.6.12-x86_64-1.txz:  Upgraded.
a/kernel-huge-6.6.12-x86_64-1.txz:  Upgraded.
a/kernel-modules-6.6.12-x86_64-1.txz:  Upgraded.
d/kernel-headers-6.6.12-x86-1.txz:  Upgraded.
k/kernel-source-6.6.12-noarch-1.txz:  Upgraded.
l/libxml2-2.12.4-x86_64-1.txz:  Upgraded.
l/pulseaudio-17.0-x86_64-2.txz:  Rebuilt.
  Patch regressions:
  [PATCH] alsa-ucm: Check UCM verb before working with device status.
  [PATCH] alsa-ucm: Replace port device UCM context assertion with an error.
l/readline-8.2.010-x86_64-1.txz:  Upgraded.
x/libinput-1.25.0-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.

Provided by http://matoda.pw/report/slack-current-x86_64.txt

marav · 01-16-2024, 03:02 PM

12 updates (x86_64). Including a (* Security fix *)! : 12 Upgraded

Code:

Tue Jan 16 20:49:28 UTC 2024
a/attr-2.5.2-x86_64-1.txz:  Upgraded.
a/shadow-4.14.3-x86_64-1.txz:  Upgraded.
a/zoo-2.10_28-x86_64-1.txz:  Upgraded.
  Merge final patches from Debian to fix various bugs. Thanks to jayjwa.
ap/sqlite-3.45.0-x86_64-1.txz:  Upgraded.
l/iso-codes-4.16.0-noarch-1.txz:  Upgraded.
n/gnutls-3.8.3-x86_64-1.txz:  Upgraded.
  This update fixes two medium severity security issues:
  Fix more timing side-channel inside RSA-PSK key exchange.
  Fix assertion failure when verifying a certificate chain with a cycle of
  cross signatures.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2024-0553
    https://www.cve.org/CVERecord?id=CVE-2024-0567
  (* Security fix *)
x/xorg-server-21.1.11-x86_64-1.txz:  Upgraded.
  This update fixes security issues:
  Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer.
  Reattaching to different master device may lead to out-of-bounds memory access.
  Heap buffer overflow in XISendDeviceHierarchyEvent.
  Heap buffer overflow in DisableDevice.
  SELinux context corruption.
  SELinux unlabeled GLX PBuffer.
  For more information, see:
    https://lists.x.org/archives/xorg/2024-January/061525.html
    https://www.cve.org/CVERecord?id=CVE-2023-6816
    https://www.cve.org/CVERecord?id=CVE-2024-0229
    https://www.cve.org/CVERecord?id=CVE-2024-21885
    https://www.cve.org/CVERecord?id=CVE-2024-21886
    https://www.cve.org/CVERecord?id=CVE-2024-0408
    https://www.cve.org/CVERecord?id=CVE-2024-0409
  (* Security fix *)
x/xorg-server-xephyr-21.1.11-x86_64-1.txz:  Upgraded.
x/xorg-server-xnest-21.1.11-x86_64-1.txz:  Upgraded.
x/xorg-server-xvfb-21.1.11-x86_64-1.txz:  Upgraded.
x/xorg-server-xwayland-23.2.4-x86_64-1.txz:  Upgraded.
  This update fixes security issues:
  Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer.
  Reattaching to different master device may lead to out-of-bounds memory access.
  Heap buffer overflow in XISendDeviceHierarchyEvent.
  Heap buffer overflow in DisableDevice.
  SELinux context corruption.
  SELinux unlabeled GLX PBuffer.
  For more information, see:
    https://lists.x.org/archives/xorg/2024-January/061525.html
    https://www.cve.org/CVERecord?id=CVE-2023-6816
    https://www.cve.org/CVERecord?id=CVE-2024-0229
    https://www.cve.org/CVERecord?id=CVE-2024-21885
    https://www.cve.org/CVERecord?id=CVE-2024-21886
    https://www.cve.org/CVERecord?id=CVE-2024-0408
    https://www.cve.org/CVERecord?id=CVE-2024-0409
  (* Security fix *)
xfce/xfce4-whiskermenu-plugin-2.8.3-x86_64-1.txz:  Upgraded.

Provided by http://matoda.pw/report/slack-current-x86_64.txt

marav · 01-17-2024, 03:32 PM

5 updates (x86_64) : 5 Upgraded

Code:

Wed Jan 17 21:13:27 UTC 2024
n/iputils-20240117-x86_64-1.txz:  Upgraded.
x/fcitx5-5.1.7-x86_64-1.txz:  Upgraded.
x/fcitx5-table-extra-5.1.3-x86_64-1.txz:  Upgraded.
x/libime-1.1.5-x86_64-1.txz:  Upgraded.
xap/seamonkey-2.53.18.1-x86_64-1.txz:  Upgraded.
  This is a bugfix release.
  For more information, see:
    https://www.seamonkey-project.org/releases/seamonkey2.53.18.1

Provided by http://matoda.pw/report/slack-current-x86_64.txt

volkerdi · 01-18-2024, 10:52 PM

6 updates (x86_64) : 4 Upgraded, 2 Added

Code:

Fri Jan 19 04:40:13 UTC 2024
e/emacs-29.2-x86_64-1.txz:  Upgraded.
l/gtk+3-3.24.40-x86_64-1.txz:  Upgraded.
l/gtk4-4.12.5-x86_64-1.txz:  Upgraded.
l/kdsoap-2.2.0-x86_64-1.txz:  Upgraded.
l/python-html5lib-1.1-x86_64-1.txz:  Added.
  Thanks to alienBOB.
l/python-webencodings-0.5.1-x86_64-1.txz:  Added.
  Thanks to alienBOB.

Provided by http://matoda.pw/report/slack-current-x86_64.txt

volkerdi · 01-19-2024, 02:14 PM

4 updates (x86_64) : 4 Upgraded

Code:

Fri Jan 19 19:58:34 UTC 2024
n/php-8.3.2-x86_64-1.txz:  Upgraded.
x/wayland-protocols-1.33-noarch-1.txz:  Upgraded.
xap/network-manager-applet-1.36.0-x86_64-1.txz:  Upgraded.
xap/xsnow-3.7.7-x86_64-1.txz:  Upgraded.

Provided by http://matoda.pw/report/slack-current-x86_64.txt

marav · 01-19-2024, 04:51 PM

Pat, shouldn't you rebuild tigervnc every time xorg contains security fixes?

marav · 01-20-2024, 03:22 PM

16 updates (x86_64) : 10 Upgraded, 6 Rebuilt

Code:

Sat Jan 20 21:04:49 UTC 2024
a/kernel-firmware-20240117_bf0987d-noarch-1.txz:  Upgraded.
a/kernel-generic-6.6.13-x86_64-1.txz:  Upgraded.
a/kernel-huge-6.6.13-x86_64-1.txz:  Upgraded.
a/kernel-modules-6.6.13-x86_64-1.txz:  Upgraded.
ap/vim-9.1.0041-x86_64-1.txz:  Upgraded.
d/kernel-headers-6.6.13-x86-1.txz:  Upgraded.
k/kernel-source-6.6.13-noarch-1.txz:  Upgraded.
l/ffmpeg-5.1.4-x86_64-3.txz:  Rebuilt.
  Recompiled against libvpx-1.14.0.
l/gst-plugins-good-1.22.8-x86_64-2.txz:  Rebuilt.
  Recompiled against libvpx-1.14.0.
l/libvpx-1.14.0-x86_64-1.txz:  Upgraded.
  Shared library .so-version bump.
l/qt5-5.15.12_20240103_b8fd1448-x86_64-2.txz:  Rebuilt.
  Recompiled against libvpx-1.14.0.
xap/vim-gvim-9.1.0041-x86_64-1.txz:  Upgraded.
xap/xine-lib-1.2.13-x86_64-5.txz:  Rebuilt.
  Recompiled against libvpx-1.14.0.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.

Provided by http://matoda.pw/report/slack-current-x86_64.txt

marav · 01-21-2024, 03:02 PM

7 updates (x86_64). Including a (* Security fix *)! : 6 Upgraded, 1 Rebuilt

Code:

Sun Jan 21 20:50:08 UTC 2024
a/ed-1.20-x86_64-1.txz:  Upgraded.
l/SDL2_ttf-2.22.0-x86_64-1.txz:  Upgraded.
l/imagemagick-7.1.1_27-x86_64-1.txz:  Upgraded.
l/libproxy-0.5.3-x86_64-1.txz:  Upgraded.
n/nghttp2-1.59.0-x86_64-1.txz:  Upgraded.
x/xbiff-1.0.5-x86_64-1.txz:  Upgraded.
extra/tigervnc/tigervnc-1.13.1-x86_64-3.txz:  Rebuilt.
  Recompiled against xorg-server-21.1.11, including the latest patches for
  several security issues. Thanks to marav.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2023-6377
    https://www.cve.org/CVERecord?id=CVE-2023-6478
    https://www.cve.org/CVERecord?id=CVE-2023-6816
    https://www.cve.org/CVERecord?id=CVE-2024-0229
    https://www.cve.org/CVERecord?id=CVE-2024-0408
    https://www.cve.org/CVERecord?id=CVE-2024-0409
    https://www.cve.org/CVERecord?id=CVE-2024-21885
    https://www.cve.org/CVERecord?id=CVE-2024-21886
    https://www.cve.org/CVERecord?id=CVE-2024-21886
  (* Security fix *)

Provided by http://matoda.pw/report/slack-current-x86_64.txt

volkerdi · 01-22-2024, 03:15 PM

4 updates (x86_64). Including a (* Security fix *)! : 4 Upgraded

Code:

Mon Jan 22 20:57:12 UTC 2024
l/SDL2_mixer-2.8.0-x86_64-1.txz:  Upgraded.
l/glib2-2.78.4-x86_64-1.txz:  Upgraded.
l/mozilla-nss-3.97-x86_64-1.txz:  Upgraded.
n/postfix-3.8.5-x86_64-1.txz:  Upgraded.
  Security (inbound SMTP smuggling): with "smtpd_forbid_bare_newline
  = normalize" (default "no" for Postfix < 3.9), the Postfix
  SMTP server requires the standard End-of-DATA sequence
  <CR><LF>.<CR><LF>, and otherwise allows command or message
  content lines ending in the non-standard <LF>, processing
  them as if the client sent the standard <CR><LF>.
  The alternative setting, "smtpd_forbid_bare_newline = reject"
  will reject any command or message that contains a bare
  <LF>, and is more likely to cause problems with legitimate
  clients.
  For backwards compatibility, local clients are excluded by
  default with "smtpd_forbid_bare_newline_exclusions =
  $mynetworks".
  For more information, see:
    https://www.postfix.org/smtp-smuggling.html
  (* Security fix *)

Provided by http://matoda.pw/report/slack-current-x86_64.txt

marav · 01-23-2024, 02:31 PM

5 updates (x86_64). Including a (* Security fix *)! : 5 Upgraded

Code:

Tue Jan 23 20:08:07 UTC 2024
a/lzlib-1.14-x86_64-1.txz:  Upgraded.
a/plzip-1.11-x86_64-1.txz:  Upgraded.
l/libpaper-2.1.3-x86_64-1.txz:  Upgraded.
l/zlib-1.3.1-x86_64-1.txz:  Upgraded.
xap/mozilla-firefox-115.7.0esr-x86_64-1.txz:  Upgraded.
  This update contains security fixes and improvements.
  For more information, see:
    https://www.mozilla.org/en-US/firefox/115.7.0/releasenotes/
    https://www.mozilla.org/security/advisories/mfsa2024-02/
    https://www.cve.org/CVERecord?id=CVE-2024-0741
    https://www.cve.org/CVERecord?id=CVE-2024-0742
    https://www.cve.org/CVERecord?id=CVE-2024-0746
    https://www.cve.org/CVERecord?id=CVE-2024-0747
    https://www.cve.org/CVERecord?id=CVE-2024-0749
    https://www.cve.org/CVERecord?id=CVE-2024-0750
    https://www.cve.org/CVERecord?id=CVE-2024-0751
    https://www.cve.org/CVERecord?id=CVE-2024-0753
    https://www.cve.org/CVERecord?id=CVE-2024-0755
  (* Security fix *)

Provided by http://matoda.pw/report/slack-current-x86_64.txt

volkerdi · 01-23-2024, 11:23 PM

4 updates (x86_64). Including a (* Security fix *)! : 4 Upgraded

Code:

Wed Jan 24 04:53:38 UTC 2024
ap/ddrescue-1.28-x86_64-1.txz:  Upgraded.
l/gtk+3-3.24.41-x86_64-1.txz:  Upgraded.
l/orc-0.4.35-x86_64-1.txz:  Upgraded.
xap/mozilla-thunderbird-115.7.0-x86_64-1.txz:  Upgraded.
  This release contains security fixes and improvements.
  For more information, see:
    https://www.mozilla.org/en-US/thunderbird/115.7.0/releasenotes/
    https://www.mozilla.org/en-US/security/advisories/mfsa2024-04/
    https://www.cve.org/CVERecord?id=CVE-2024-0741
    https://www.cve.org/CVERecord?id=CVE-2024-0742
    https://www.cve.org/CVERecord?id=CVE-2024-0746
    https://www.cve.org/CVERecord?id=CVE-2024-0747
    https://www.cve.org/CVERecord?id=CVE-2024-0749
    https://www.cve.org/CVERecord?id=CVE-2024-0750
    https://www.cve.org/CVERecord?id=CVE-2024-0751
    https://www.cve.org/CVERecord?id=CVE-2024-0753
    https://www.cve.org/CVERecord?id=CVE-2024-0755
  (* Security fix *)

Provided by http://matoda.pw/report/slack-current-x86_64.txt

marav · 01-25-2024, 08:06 PM

33 updates (x86_64) : 25 Upgraded, 2 Rebuilt, 6 Added

Code:

Fri Jan 26 01:49:20 UTC 2024
a/acl-2.3.2-x86_64-1.txz:  Upgraded.
a/btrfs-progs-6.7-x86_64-1.txz:  Upgraded.
a/cryptsetup-2.7.0-x86_64-1.txz:  Upgraded.
a/inih-58-x86_64-1.txz:  Upgraded.
a/kernel-firmware-20240124_0c40df8-noarch-1.txz:  Upgraded.
a/kernel-generic-6.6.14-x86_64-1.txz:  Upgraded.
a/kernel-huge-6.6.14-x86_64-1.txz:  Upgraded.
a/kernel-modules-6.6.14-x86_64-1.txz:  Upgraded.
d/kernel-headers-6.6.14-x86-1.txz:  Upgraded.
d/parallel-20240122-noarch-1.txz:  Upgraded.
k/kernel-source-6.6.14-noarch-1.txz:  Upgraded.
l/gst-plugins-bad-free-1.22.9-x86_64-1.txz:  Upgraded.
l/gst-plugins-base-1.22.9-x86_64-1.txz:  Upgraded.
l/gst-plugins-good-1.22.9-x86_64-1.txz:  Upgraded.
l/gst-plugins-libav-1.22.9-x86_64-1.txz:  Upgraded.
l/gstreamer-1.22.9-x86_64-1.txz:  Upgraded.
l/libjpeg-turbo-3.0.2-x86_64-1.txz:  Upgraded.
l/libpng-1.6.41-x86_64-1.txz:  Upgraded.
l/python-docutils-0.20.1-x86_64-1.txz:  Upgraded.
l/python-editables-0.5-x86_64-1.txz:  Added.
  Thanks to Heinz Wiesinger.
l/python-hatchling-1.21.0-x86_64-1.txz:  Added.
  Thanks to Heinz Wiesinger.
l/python-pathspec-0.12.1-x86_64-1.txz:  Added.
  Thanks to Heinz Wiesinger.
l/python-pluggy-1.4.0-x86_64-1.txz:  Added.
  Thanks to Heinz Wiesinger.
l/python-pygments-2.17.2-x86_64-1.txz:  Upgraded.
l/python-sphinx-7.2.6-x86_64-1.txz:  Upgraded.
l/python-sphinx_rtd_theme-2.0.0-x86_64-1.txz:  Added.
l/python-trove-classifiers-2024.1.8-x86_64-1.txz:  Added.
  Thanks to Heinz Wiesinger.
n/gnupg2-2.4.4-x86_64-1.txz:  Upgraded.
x/mesa-23.3.4-x86_64-1.txz:  Upgraded.
xap/geeqie-2.2-x86_64-1.txz:  Upgraded.
isolinux/initrd.img:  Rebuilt.
kernels/*:  Upgraded.
usb-and-pxe-installers/usbboot.img:  Rebuilt.

Provided by http://matoda.pw/report/slack-current-x86_64.txt

marav · 01-26-2024, 03:12 PM

3 updates (x86_64). Including a (* Security fix *)! : 3 Upgraded

Code:

Fri Jan 26 20:59:27 UTC 2024
a/pam-1.6.0-x86_64-1.txz:  Upgraded.
  pam_namespace.so: fixed a possible local denial-of-service vulnerability.
  For more information, see:
    https://seclists.org/oss-sec/2024/q1/31
    https://www.cve.org/CVERecord?id=CVE-2024-22365
  (* Security fix *)
a/xz-5.4.6-x86_64-1.txz:  Upgraded.
l/python-hatchling-1.21.1-x86_64-1.txz:  Upgraded.

Provided by http://matoda.pw/report/slack-current-x86_64.txt