SlackwareThis Forum is for the discussion of Slackware Linux.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
10 updates (x86_64). Including a (* Security fix *)! : 8 Upgraded, 2 Rebuilt
Code:
Tue Feb 13 19:19:24 UTC 2024
ap/tmux-3.4-x86_64-1.txz: Upgraded.
d/lua-5.4.6-x86_64-5.txz: Rebuilt.
Search paths under /usr/local in addition to /usr.
Thanks to Arch for the patch.
l/gst-plugins-bad-free-1.22.10-x86_64-1.txz: Upgraded.
l/gst-plugins-base-1.22.10-x86_64-1.txz: Upgraded.
l/gst-plugins-good-1.22.10-x86_64-1.txz: Upgraded.
l/gst-plugins-libav-1.22.10-x86_64-1.txz: Upgraded.
l/gstreamer-1.22.10-x86_64-1.txz: Upgraded.
l/wireplumber-0.4.17-x86_64-3.txz: Rebuilt.
Build against system lua.
n/bind-9.18.24-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues:
Specific DNS answers could cause a denial-of-service condition due to DNS
validation taking a long time.
Restore DNS64 state when handling a serve-stale timeout.
Specific queries could trigger an assertion check with nxdomain-redirect
enabled.
Speed up parsing of DNS messages with many different names.
For more information, see:
https://kb.isc.org/docs/cve-2023-50387
https://www.cve.org/CVERecord?id=CVE-2023-50387
https://kb.isc.org/docs/cve-2023-5679
https://www.cve.org/CVERecord?id=CVE-2023-5679
https://kb.isc.org/docs/cve-2023-5517
https://www.cve.org/CVERecord?id=CVE-2023-5517
https://kb.isc.org/docs/cve-2023-4408
https://www.cve.org/CVERecord?id=CVE-2023-4408
(* Security fix *)
n/ipset-7.21-x86_64-1.txz: Upgraded.
4 updates (x86_64). Including a (* Security fix *)! : 3 Upgraded, 1 Rebuilt
Code:
Wed Feb 14 04:31:08 UTC 2024
l/exiv2-0.28.2-x86_64-1.txz: Upgraded.
Fixes two low-severity security issues introduced in 0.28.x:
Out-of-bounds read in QuickTimeVideo::NikonTagsDecoder.
Denial of service due to unbounded recursion in
QuickTimeVideo::multipleEntriesDecoder.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2024-24826
https://www.cve.org/CVERecord?id=CVE-2024-25112
(* Security fix *)
l/gnome-keyring-46.1-x86_64-1.txz: Upgraded.
n/dnsmasq-2.90-x86_64-1.txz: Upgraded.
Add limits on the resources used to do DNSSEC validation.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2023-50387
https://www.cve.org/CVERecord?id=CVE-2023-50868
(* Security fix *)
x/igt-gpu-tools-1.28-x86_64-2.txz: Rebuilt.
Recompiled against /procps-ng-4.0.4.
Wed Feb 14 22:46:52 UTC 2024
a/btrfs-progs-6.7.1-x86_64-1.txz: Upgraded.
a/ed-1.20.1-x86_64-1.txz: Upgraded.
a/shadow-4.14.5-x86_64-1.txz: Upgraded.
d/git-2.43.2-x86_64-1.txz: Upgraded.
d/meson-1.3.2-x86_64-1.txz: Upgraded.
d/tree-sitter-0.20.9-x86_64-1.txz: Upgraded.
e/emacs-29.2-x86_64-2.txz: Rebuilt.
Compiled with support for pdumper and native compilation.
The emacs-no-x11 binary has been dropped from the package because when
pdumper is used the support files need to be matched to a specific binary.
If you need a non-X console version of Emacs (or just want to reduce the
footprint) a traditional build is available in /extra.
Thanks to drgibbon who requested this long ago. :-)
Thanks to Didier Spaier for the sample build script.
l/libnvme-1.8-x86_64-1.txz: Upgraded.
xap/xlockmore-5.75-x86_64-1.txz: Upgraded.
extra/emacs-regular-build/emacs-29.2-x86_64-2_regular.txz: Added.
A "regular" build of Emacs like was previously in the main tree, with a
version supporting X11/GTK+3, and a non-X console version.
Fri Feb 16 20:18:59 UTC 2024
a/kernel-generic-6.6.17-x86_64-1.txz: Upgraded.
a/kernel-huge-6.6.17-x86_64-1.txz: Upgraded.
a/kernel-modules-6.6.17-x86_64-1.txz: Upgraded.
ap/soma-3.3.7-noarch-3.txz: Rebuilt.
Strip trailing whitespace from soma.desktop. Thanks to DryFalls.
d/kernel-headers-6.6.17-x86-1.txz: Upgraded.
k/kernel-source-6.6.17-noarch-1.txz: Upgraded.
l/mozilla-nss-3.98-x86_64-1.txz: Upgraded.
n/ca-certificates-20240216-noarch-1.txz: Upgraded.
This update provides the latest CA certificates to check for the
authenticity of SSL connections.
x/ibus-m17n-1.4.28-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
2 updates (x86_64). Including a (* Security fix *)! : 2 Upgraded
Code:
Sat Feb 17 21:09:51 UTC 2024
l/nodejs-20.11.1-x86_64-1.txz: Upgraded.
This update fixes security issues:
Code injection and privilege escalation through Linux capabilities - (High).
http: Reading unprocessed HTTP request with unbounded chunk extension allows
DoS attacks - (High).
Path traversal by monkey-patching Buffer internals - (High).
setuid() does not drop all privileges due to io_uring - (High).
Node.js is vulnerable to the Marvin Attack (timing variant of the
Bleichenbacher attack against PKCS#1 v1.5 padding) - (Medium).
Multiple permission model bypasses due to improper path traversal sequence
sanitization - (Medium).
Improper handling of wildcards in --allow-fs-read and --allow-fs-write -
(Medium).
Denial of Service by resource exhaustion in fetch() brotli decoding -
(Medium).
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21892
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22019
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21896
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22017
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46809
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21891
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21890
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22025
(* Security fix *)
l/pcre2-10.43-x86_64-1.txz: Upgraded.
Sun Feb 18 21:03:57 UTC 2024
a/ndctl-78-x86_64-1.txz: Upgraded.
ap/mpg123-1.32.5-x86_64-1.txz: Upgraded.
l/libffi-3.4.6-x86_64-1.txz: Upgraded.
x/mesa-24.0.1-x86_64-2.txz: Rebuilt.
Added av1dec,av1enc,and vp9dec to the list of codecs to support.
Thanks to fulalas and ZhaoLin1547.
Fri Feb 23 02:27:35 UTC 2024
a/aaa_libraries-15.1-x86_64-26.txz: Rebuilt.
Upgraded: libacl.so.1.1.2302, libattr.so.1.1.2502, liblzma.so.5.4.6,
libpcre2-8.so.0.12.0, libz.so.1.3.1, libcares.so.2.11.0,
libexpat.so.1.9.0, libffi.so.8.1.4, libglib-2.0.so.0.7800.4,
libgmodule-2.0.so.0.7800.4, libgobject-2.0.so.0.7800.4,
libgthread-2.0.so.0.7800.4, libidn.so.12.6.5, libidn2.so.0.4.0,
libpng16.so.16.41.0, libpsl.so.5.3.5, libtdb.so.1.4.10, libusb-1.0.so.0.4.0.
a/etc-15.1-x86_64-5.txz: Rebuilt.
Added UID 214 and GID 214 for avahi.
a/gettext-0.22.5-x86_64-1.txz: Upgraded.
a/pkgtools-15.1-noarch-9.txz: Rebuilt.
setup.services: support rc.avahidaemon and rc.avahidnsconfd.
a/sysvinit-scripts-15.1-noarch-13.txz: Rebuilt.
rc.M: start (if executable) rc.avahidaemon and rc.avahidnsconfd.
ap/cups-2.4.7-x86_64-2.txz: Rebuilt.
Recompiled against avahi.
ap/cups-filters-1.28.17-x86_64-4.txz: Rebuilt.
Recompiled against avahi.
ap/hplip-3.23.12-x86_64-1.txz: Upgraded.
Compiled against avahi.
ap/xmltoman-0.6-x86_64-1.txz: Added.
This is needed to generate manpages for avahi.
d/distcc-3.4-x86_64-4.txz: Rebuilt.
Recompiled against avahi.
d/gettext-tools-0.22.5-x86_64-1.txz: Upgraded.
l/avahi-20240220_dffd549-x86_64-1.txz: Added.
It was either this, or drop (or fork) hplip. We'll enjoy it in the long run.
Thanks to David Somero for the original build script, and to Robby Workman
for years of maintenance.
Signed-off-by: volkerdi
Acked-by: alienBOB
l/libdaemon-0.14-x86_64-1.txz: Added.
This is needed by avahi.
l/pipewire-1.0.3-x86_64-5.txz: Rebuilt.
Recompiled against avahi.
l/pulseaudio-17.0-x86_64-3.txz: Rebuilt.
Recompiled against avahi.
n/NetworkManager-1.46.0-x86_64-1.txz: Upgraded.
n/netatalk-3.1.18-x86_64-2.txz: Rebuilt.
Recompiled against avahi.
n/samba-4.19.5-x86_64-2.txz: Rebuilt.
Recompiled against avahi.
xap/pidgin-2.14.12-x86_64-3.txz: Rebuilt.
Recompiled against avahi.
xap/sane-1.2.1-x86_64-3.txz: Rebuilt.
Recompiled against avahi.
extra/bash-completion/bash-completion-2.12.0-noarch-1.txz: Upgraded.
Fri Feb 23 20:37:29 UTC 2024
a/dcron-4.5-x86_64-17.txz: Rebuilt.
run-parts.8: document skiping *.orig files. Thanks to metaed.
a/etc-15.1-x86_64-6.txz: Rebuilt.
Add support for nss-mdns to /etc/nsswitch.conf.
a/kernel-firmware-20240220_97b693d-noarch-1.txz: Upgraded.
a/kernel-generic-6.6.18-x86_64-1.txz: Upgraded.
a/kernel-huge-6.6.18-x86_64-1.txz: Upgraded.
a/kernel-modules-6.6.18-x86_64-1.txz: Upgraded.
ap/cups-filters-1.28.17-x86_64-5.txz: Rebuilt.
Don't specify --with-browseremoteprotocols=cups in order to get the default
values of cups and dnssd, which should enable discovering shared printers on
the network. We'll refrain from sharing your printer -- you'll need to change
that setting yourself. ;-)
Thanks to TurboBlaze.
ap/hplip-3.23.12-x86_64-2.txz: Rebuilt.
The new --disable-imageProcessor-build option doesn't do squat, so we'll hit
it with the good old patch again.
Thanks to Petri Kaukasoina and Stuart Winter.
d/kernel-headers-6.6.18-x86-1.txz: Upgraded.
k/kernel-source-6.6.18-noarch-1.txz: Upgraded.
l/gvfs-1.52.2-x86_64-2.txz: Rebuilt.
Added -Ddnssd=true option and recompiled against avahi.
l/libsecret-0.21.4-x86_64-1.txz: Upgraded.
n/c-ares-1.27.0-x86_64-1.txz: Upgraded.
n/libgpg-error-1.48-x86_64-1.txz: Upgraded.
n/nss-mdns-0.15.1-x86_64-1.txz: Added.
Needed for .local lookups. Thanks to Lockywolf.
xap/pidgin-2.14.13-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
l/avahi-20240220_dffd549-x86_64-1.txz: Added.
It was either this, or drop (or fork) hplip. We'll enjoy it in the long run.
Thanks to David Somero for the original build script, and to Robby Workman
for years of maintenance.
Signed-off-by: volkerdi
Acked-by: alienBOB
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.