« The One Page For…. SLACKWARE!!
Ports para Slack… SlackPorts!! »

Aberta árvore do -current

Published by admin October 17th, 2007 in Noticias.

Foi Aberta hoje a arvore do -current, começando as preparações para o Slackware 12.1, alguns arquivos adicionados como: gutenprint no lugar do gimp-print, gnu-ghostscripts, libwnck, pixman, alguns pacotes no x/, entre upgrades e atualizações de segurança.

Segue na integra o Change-log desde a saída do 12.0


Tue Oct 16 20:49:45 CDT 2007
kde/kdebindings-3.5.8-i486-1.tgz: Upgraded to kdebindings-3.5.8, and fixed
missing package (thanks to Ricardo Garcia).
l/poppler-0.6.1-i486-1.tgz: Upgraded to poppler-0.6.1.
l/poppler-data-0.1.1-noarch-1.tgz: Upgraded to poppler-data-0.1.1, and fixed
missing package (thanks to Ricardo Garcia).
+————————–+
Tue Oct 16 14:51:30 CDT 2007
a/cups-1.3.3-i486-1.tgz: Upgraded to cups-1.3.3.
a/dialog-1.1_20070930-i486-1.tgz: Upgraded to dialog-1.1-20070930.
a/etc-12.1-noarch-1.tgz: Added “tape” group.
a/glibc-solibs-2.5-i486-5.tgz: Recompiled against 2.6.23.1 kernel headers.
a/glibc-zoneinfo-2.5-noarch-5.tgz: Upgraded to tzcode2007h and tzdata2007h.
a/jfsutils-1.1.12-i486-1.tgz: Upgraded to jfsutils-1.1.12.
a/kernel-generic-2.6.23.1-i486-1.tgz:
Upgraded to Linux 2.6.23.1 single processor generic.s (requires initrd) kernel.
a/kernel-generic-smp-2.6.23.1_smp-i686-1.tgz:
Upgraded to Linux 2.6.23.1 SMP gensmp.s (requires initrd) kernel.
a/kernel-huge-2.6.23.1-i486-1.tgz:
Upgraded to Linux 2.6.23.1 single processor huge.s (full-featured) kernel.
a/kernel-huge-smp-2.6.23.1_smp-i686-1.tgz:
Upgraded to Linux 2.6.23.1 SMP hugesmp.s (full-featured) kernel.
a/kernel-modules-2.6.23.1-i486-1.tgz
Upgraded to Linux 2.6.23.1 UP single processor kernel modules.
a/kernel-modules-smp-2.6.23.1_smp-i686-1.tgz
Upgraded to Linux 2.6.23.1 SMP kernel modules.
a/module-init-tools-3.4-i486-1.tgz: Upgraded to module-init-tools-3.4.
Thanks to Robby Workman. :-) a/mkinitrd-1.2.0-i486-1.tgz: Updated to busybox-1.7.2 and dialog-1.1-20070930.
Thanks to Piter Punk for the work on mdev device creation. :-) a/openssl-solibs-0.9.8f-i486-1.tgz: Upgraded to openssl-0.9.8f.
This release fixes two minor security bugs unlikely to pose any threat to
most production servers. For more information, see:
http://openssl.org/news/secadv_20071012.tx
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4995
(nothing in Slackware is using this DTLS implementation)
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5135
(this bug is in a function normally only used for logging or debugging)
(* Security fix *)
a/syslinux-3.52-i486-1.tgz: Upgraded to syslinux-3.52.
a/sysvinit-scripts-1.2-noarch-14.tgz: In rc.M, execute “mount -a” to mount any
filesystems not already mounted.
a/udev-116-i486-1.tgz: Upgraded to udev-116. Thanks to Piter Punk!
ap/espgs-8.15.4-i486-2.tgz: Removed. This is replaced by gnu-ghostscript.
ap/foomatic-filters-3.0_20070919-i486-1.tgz: Added. This is a printer filter
required to use Gutenprint or HPLIP with CUPS.
ap/gimp-print-4.2.7-i486-2.tgz: Removed. This is replaced by gutenprint.
ap/gutenprint-5.0.1-i486-2.tgz: Added gutenprint-5.0.1, which is the new
version of (and name for) gimp-print.
ap/gnu-ghostscript-8.60.0-i486-1.tgz: Added gnu-ghostscript-8.60.0.
This replaces the espgs (ESP Ghostscript) package.
ap/hplip-2.7.9-i486-1.tgz: Upgraded to hplip-2.7.9. Note that this no longer
requires daemons to be started at boot time, so any /etc/rc.d/rc.hplip
script can be removed.
ap/mysql-5.0.45-i486-1.tgz: Upgraded to mysql-5.0.45.
ap/vim-7.1.138-i486-1.tgz: Upgraded to vim-7.1.138.
d/git-1.5.3.3-i486-1.tgz: Upgraded to git-1.5.3.3.
d/kernel-headers-2.6.23.1_smp-i386-1.tgz:
Upgraded to Linux 2.6.23.1 SMP kernel headers.
k/kernel-source-2.6.23.1_smp-noarch-1.tgz
Upgraded to Linux 2.6.23.1 SMP kernel source.
kde/amarok-1.4.7-i486-1.tgz: Upgraded to amarok-1.4.7.
kde/k3b-1.0.3-i486-1.tgz: Upgraded to k3b-1.0.3.
kde/kdeaccessibility-3.5.8-i486-1.tgz: Upgraded to kdeaccessibility-3.5.8.
kde/kdeaddons-3.5.8-i486-1.tgz: Upgraded to kdeaddons-3.5.8.
kde/kdeadmin-3.5.8-i486-1.tgz: Upgraded to kdeadmin-3.5.8.
kde/kdeartwork-3.5.8-i486-1.tgz: Upgraded to kdeartwork-3.5.8.
kde/kdebase-3.5.8-i486-1.tgz: Upgraded to kdebase-3.5.8.
kde/kdeedu-3.5.8-i486-1.tgz: Upgraded to kdeedu-3.5.8.
kde/kdegames-3.5.8-i486-1.tgz: Upgraded to kdegames-3.5.8.
kde/kdegraphics-3.5.8-i486-1.tgz: Upgraded to kdegraphics-3.5.8.
kde/kdelibs-3.5.8-i486-1.tgz: Upgraded to kdelibs-3.5.8.
kde/kdemultimedia-3.5.8-i486-1.tgz: Upgraded to kdemultimedia-3.5.8.
kde/kdenetwork-3.5.8-i486-1.tgz: Upgraded to kdenetwork-3.5.8.
kde/kdepim-3.5.8-i486-1.tgz: Upgraded to kdepim-3.5.8.
kde/kdesdk-3.5.8-i486-1.tgz: Upgraded to kdesdk-3.5.8.
kde/kdetoys-3.5.8-i486-1.tgz: Upgraded to kdetoys-3.5.8.
kde/kdeutils-3.5.8-i486-1.tgz: Upgraded to kdeutils-3.5.8.
kde/kdevelop-3.5.0-i486-1.tgz: Upgraded to kdevelop-3.5.0.
kde/kdewebdev-3.5.8-i486-1.tgz: Upgraded to kdewebdev-3.5.8.
kdei/kde-i18n-*-3.5.8-noarch-1.tgz: Upgraded to kde-i18n-3.5.8.
l/dbus-glib-0.74-i486-1.tgz: Upgraded to dbus-glib-0.74.
l/freetype-2.3.5-i486-1.tgz: Upgraded to freetype-2.3.5.
l/glib2-2.12.13-i486-1.tgz: Upgraded to glib-2.12.13.
l/glibc-2.5-i486-5.tgz: Recompiled against 2.6.23.1 kernel headers.
Yes, glibc-2.6 is out, but for now we will stick with a known-working version.
l/glibc-i18n-2.5-noarch-5.tgz: Rebuilt.
l/glibc-profile-2.5-i486-5.tgz: Recompiled against 2.6.23.1 kernel headers.
l/gtk+2-2.10.14-i486-1.tgz: Upgraded to gtk+-2.10.14.
l/hal-0.5.10-i486-1.tgz: Upgraded to hal-0.5.10.
l/hal-info-20071011-noarch-1.tgz: Upgraded to hal-info-20071011.
Thanks to Robby Workman for maintaining both of these HAL packages.
l/libao-0.8.8-i486-1.tgz: Upgraded to libao-0.8.8.
l/libgpod-0.5.2-i486-1.tgz: Upgraded to libgpod-0.5.2.
l/libnjb-2.2.6-i486-1.tgz: Upgraded to libnjb-2.2.6.
l/libpng-1.2.21-i486-1.tgz: Upgraded to libpng-1.2.21.
l/libtheora-1.0beta1-i486-1.tgz: Upgraded to libtheora-1.0beta1.
l/libvorbis-1.2.0-i486-1.tgz: Upgraded to libvorbis-1.2.0.
l/libwnck-2.18.3-i486-1.tgz: Added libwnck-2.18.3.
This is needed by compiz to compile gtk-window-decorator.
l/pcre-7.3-i486-1.tgz: Upgraded to pcre-7.3.
l/poppler-0.6-i486-1.tgz: Upgraded to poppler-0.6.
l/qt-3.3.8-i486-5.tgz: Added back the library symlinks into /usr/lib,
without which kdelibs does not compile.
l/svgalib_helper-1.9.25_2.6.23.1-i486-1.tgz: Recompiled for Linux 2.6.23.1.
Thanks to Eric Hameleers for pointing me at the information needed to patch
the helper module for Linux 2.6.23+. :-) l/vte-0.16.8-i486-1.tgz: Upgraded to vte-0.16.8.
n/httpd-2.2.6-i486-1.tgz: Upgraded to httpd-2.2.6.
n/network-scripts-12.0-noarch-5.tgz: Mount CIFS partitions.
Thanks to Lei Zhang.
n/openssh-4.7p1-i486-1.tgz: Upgraded to openssh-4.7p1.
From the OpenSSH release notes:
“Security bugs resolved in this release: Prevent ssh(1) from using a
trusted X11 cookie if creation of an untrusted cookie fails; found and
fixed by Jan Pechanec.”
While it’s fair to say that we here at Slackware don’t see how this could
be leveraged to compromise a system, a) the OpenSSH people (who presumably
understand the code better) characterize this as a security bug, b) it has
been assigned a CVE entry, and c) OpenSSH is one of the most commonly used
network daemons. Better safe than sorry.
More information should appear here eventually:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4752
(* Security fix *)
n/openssl-0.9.8f-i486-1.tgz: Upgraded to openssl-0.9.8f.
This release fixes two minor security bugs unlikely to pose any threat to
most production servers. For more information, see:
http://openssl.org/news/secadv_20071012.tx
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4995
(nothing in Slackware is using this DTLS implementation)
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5135
(this bug is in a function normally only used for logging or debugging)
(* Security fix *)
n/php-5.2.4-i486-1.tgz: Upgraded to php-5.2.4. The PHP announcement says this
version fixes over 120 bugs as well as “several low priority security bugs.”
Read more about it here:
http://www.php.net/releases/5_2_4.php
(* Security fix *)
n/samba-3.0.26a-i486-1.tgz: Upgraded to samba-3.0.26a.
This fixes a security issue in all Samba 3.0.25 versions:
“Incorrect primary group assignment for domain users using the rfc2307
or sfu winbind nss info plugin.”
For more information, see:
http://www.samba.org/samba/security/CVE-2007-4138.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4138
(* Security fix *)
n/wpa_supplicant-0.5.8-i486-1.tgz: Upgraded to wpa_supplicant-0.5.8.
tcl/expect-5.43.0-i486-2.tgz: Rebuilt against tcl-8.4.16.
tcl/tcl-8.4.16-i486-1.tgz: Upgraded to tcl-8.4.16.
tcl/tk-8.4.16-i486-1.tgz: Upgraded to tk-8.4.16.
x/dejavu-ttf-2.20-noarch-1.tgz: Upgraded to dejavu-ttf-2.20.
x/mesa-7.0.1-i486-1.tgz: Upgraded to Mesa 7.0.1.
Upgraded to X.Org 7.3:
PLEASE NOTE: There are a few known problems with this release.
Please let us know if you have solutions to any of these.
1. xf86-video-vesa was not upgraded for the X.Org 7.3 release, and
running Terminal or vte under KDE results in an X hang under KDE,
or garbage in the terminal under XFce.
2. The following modules were not upgraded in the X.Org 7.3 release
and no longer compile: mkcfm, xf86-input-acecad, xf86-input-dmc,
xf86-input-void, xf86-video-glide, xf86-video-impact, and
xf86-video-wsfb. Odds are good that due to the driver ABI change
none of these are currently working.
x/compiz-0.6.0-i486-1: Upgraded to compiz-0.6.0.
x/compositeproto-0.4-noarch-1: Upgraded to compositeproto-0.4.
x/iceauth-1.0.2-i486-1: Upgraded to iceauth-1.0.2.
x/ico-1.0.2-i486-1: Upgraded to ico-1.0.2.
x/inputproto-1.4.2.1-noarch-1: Upgraded to inputproto-1.4.2.1.
x/libICE-1.0.4-i486-1: Upgraded to libICE-1.0.4.
x/libX11-1.1.3-i486-1: Upgraded to libX11-1.1.3.
x/libXaw-1.0.4-i486-1: Upgraded to libXaw-1.0.4.
x/libXcomposite-0.4.0-i486-1: Upgraded to libXcomposite-0.4.0.
x/libXcursor-1.1.9-i486-1: Upgraded to libXcursor-1.1.9.
x/libXfont-1.3.1-i486-1: Upgraded to libXfont-1.3.1.
x/libXi-1.1.3-i486-1: Upgraded to libXi-1.1.3.
x/libXpm-3.5.7-i486-1: Upgraded to libXpm-3.5.7.
x/libXrandr-1.2.2-i486-1: Upgraded to libXrandr-1.2.2.
x/libXrender-0.9.4-i486-1: Upgraded to libXrender-0.9.4.
x/libXtst-1.0.3-i486-1: Upgraded to libXtst-1.0.3.
x/libXxf86dga-1.0.2-i486-1: Upgraded to libXxf86dga-1.0.2.
x/pixman-0.9.5-i486-1: Added pixman-0.9.5.
x/renderproto-0.9.3-noarch-1: Upgraded to renderproto-0.9.3.
x/sessreg-1.0.3-i486-1: Upgraded to sessreg-1.0.3.
x/setxkbmap-1.0.4-i486-1: Upgraded to setxkbmap-1.0.4.
x/xbacklight-1.1-i486-1: Upgraded to xbacklight-1.1.
x/xcalc-1.0.2-i486-1: Upgraded to xcalc-1.0.2.
x/xclock-1.0.3-i486-1: Upgraded to xclock-1.0.3.
x/xconsole-1.0.3-i486-1: Upgraded to xconsole-1.0.3.
x/xcursorgen-1.0.2-i486-1: Upgraded to xcursorgen-1.0.2.
x/xdm-1.1.6-i486-1: Upgraded to xdm-1.1.6.
x/xdriinfo-1.0.2-i486-1: Upgraded to xdriinfo-1.0.2.
x/xf86-input-aiptek-1.0.1-i486-2: Recompiled against xorg-server-1.4.
x/xf86-input-acecad-1.2.0-i486-1.tgz: Removed (not compiling).
x/xf86-input-calcomp-1.1.1-i486-1: Upgraded to xf86-input-calcomp-1.1.1.
x/xf86-input-citron-2.2.1-i486-1: Added xf86-input-citron-2.2.1.
x/xf86-input-digitaledge-1.1.0-i486-2: Recompiled against xorg-server-1.4.
x/xf86-input-dynapro-1.1.1-i486-1: Added xf86-input-dynapro-1.1.1.
x/xf86-input-elo2300-1.1.1-i486-1: Added xf86-input-elo2300-1.1.1.
x/xf86-input-elographics-1.1.0-i486-2: Recompiled against xorg-server-1.4.
x/xf86-input-evdev-1.1.5-i486-2: Recompiled against xorg-server-1.4.
x/xf86-input-fpit-1.1.0-i486-2: Recompiled against xorg-server-1.4.
x/xf86-input-hyperpen-1.1.0-i486-2: Recompiled against xorg-server-1.4.
x/xf86-input-jamstudio-1.1.0-i486-2: Recompiled against xorg-server-1.4.
x/xf86-input-joystick-1.2.3-i486-1: Upgraded to xf86-input-joystick-1.2.3.
x/xf86-input-keyboard-1.2.2-i486-1: Upgraded to xf86-input-keyboard-1.2.2.
x/xf86-input-magellan-1.1.1-i486-1: Upgraded to xf86-input-magellan-1.1.1.
x/xf86-input-magictouch-1.0.0.5-i486-2: Recompiled against xorg-server-1.4.
x/xf86-input-microtouch-1.1.1-i486-1: Added xf86-input-microtouch-1.1.1.
x/xf86-input-mouse-1.2.3-i486-1: Upgraded to xf86-input-mouse-1.2.3.
x/xf86-input-mutouch-1.1.0-i486-2: Recompiled against xorg-server-1.4.
x/xf86-input-palmax-1.1.0-i486-2: Recompiled against xorg-server-1.4.
x/xf86-input-penmount-1.2.1-i486-1: Added xf86-input-penmount-1.2.1.
x/xf86-input-spaceorb-1.1.1-i486-1: Upgraded to xf86-input-spaceorb-1.1.1.
x/xf86-input-summa-1.1.0-i486-2: Recompiled against xorg-server-1.4.
x/xf86-input-tek4957-1.1.0-i486-2: Recompiled against xorg-server-1.4.
x/xf86-input-ur98-1.1.0-i486-2: Recompiled against xorg-server-1.4.
x/xf86-input-vmmouse-12.4.3-i486-1: Upgraded to xf86-input-vmmouse-12.4.3.
x/xf86-input-void-1.1.0-i486-1.tgz: Removed (not compiling).
x/xf86-video-amd-2.7.7.3-i486-1: Added xf86-video-amd-2.7.7.3.
x/xf86-video-apm-1.1.1-i486-2: Recompiled against xorg-server-1.4.
x/xf86-video-ark-0.6.0-i486-2: Recompiled against xorg-server-1.4.
x/xf86-video-ast-0.81.0-i486-2: Recompiled against xorg-server-1.4.
x/xf86-video-ati-6.7.195-i486-1: Upgraded to xf86-video-ati-6.7.195.
x/xf86-video-chips-1.1.1-i486-2: Recompiled against xorg-server-1.4.
x/xf86-video-cirrus-1.1.0-i486-2: Recompiled against xorg-server-1.4.
x/xf86-video-cyrix-1.1.0-i486-2: Recompiled against xorg-server-1.4.
x/xf86-video-dummy-0.2.0-i486-2: Recompiled against xorg-server-1.4.
x/xf86-video-fbdev-0.3.1-i486-2: Recompiled against xorg-server-1.4.
x/xf86-video-glint-1.1.1-i486-2: Recompiled against xorg-server-1.4.
x/xf86-video-i128-1.2.1-i486-2: Recompiled against xorg-server-1.4.
x/xf86-video-i740-1.1.0-i486-2: Recompiled against xorg-server-1.4.
x/xf86-video-i810-1.7.4-i486-2: Recompiled against xorg-server-1.4.
x/xf86-video-imstt-1.1.0-i486-2: Recompiled against xorg-server-1.4.
x/xf86-video-intel-2.1.1-i486-1: Upgraded to xf86-video-intel-2.1.1.
x/xf86-video-mga-1.9.100-i486-1: Upgraded to xf86-video-mga-1.9.100.
x/xf86-video-neomagic-1.1.1-i486-2: Recompiled against xorg-server-1.4.
x/xf86-video-newport-0.2.1-i486-2: Recompiled against xorg-server-1.4.
x/xf86-video-nsc-2.8.3-i486-1: Upgraded to xf86-video-nsc-2.8.3.
x/xf86-video-nv-2.1.5-i486-1: Upgraded to xf86-video-nv-2.1.5.
x/xf86-video-rendition-4.1.3-i486-2: Recompiled against xorg-server-1.4.
x/xf86-video-s3-0.5.0-i486-2: Recompiled against xorg-server-1.4.
x/xf86-video-s3virge-1.9.1-i486-2: Recompiled against xorg-server-1.4.
x/xf86-video-savage-2.1.3-i486-1: Upgraded to xf86-video-savage-2.1.3.
x/xf86-video-siliconmotion-1.5.1-i486-2: Recompiled against xorg-server-1.4.
x/xf86-video-sis-0.9.3-i486-2: Recompiled against xorg-server-1.4.
x/xf86-video-sisusb-0.8.1-i486-2: Recompiled against xorg-server-1.4.
x/xf86-video-tdfx-1.3.0-i486-2: Recompiled against xorg-server-1.4.
x/xf86-video-tga-1.1.0-i486-2: Recompiled against xorg-server-1.4.
x/xf86-video-trident-1.2.3-i486-2: Recompiled against xorg-server-1.4.
x/xf86-video-tseng-1.1.1-i486-2: Recompiled against xorg-server-1.4.
x/xf86-video-v4l-0.1.1-i486-2: Recompiled against xorg-server-1.4.
x/xf86-video-vesa-1.3.0-i486-2: Recompiled against xorg-server-1.4.
x/xf86-video-vga-4.1.0-i486-2: Recompiled against xorg-server-1.4.
x/xf86-video-via-0.2.2-i486-2: Recompiled against xorg-server-1.4.
x/xf86-video-vmware-10.15.2-i486-1: Upgraded to xf86-video-vmware-10.15.2.
x/xf86-video-voodoo-1.1.1-i486-2: Recompiled against xorg-server-1.4.
x/xf86dgaproto-2.0.3-noarch-1: Upgraded to xf86dgaproto-2.0.3.
x/xfs-1.0.5-i486-1.tgz: Upgraded to xfs-1.0.5.
x/xgamma-1.0.2-i486-1: Upgraded to xgamma-1.0.2.
x/xhost-1.0.2-i486-1: Upgraded to xhost-1.0.2.
x/xinit-1.0.7-i486-1: Upgraded to xinit-1.0.7.
x/xmag-1.0.2-i486-1: Upgraded to xmag-1.0.2.
x/xman-1.0.3-i486-1: Upgraded to xman-1.0.3.
x/xmessage-1.0.2-i486-1: Upgraded to xmessage-1.0.2.
x/xmodmap-1.0.3-i486-1: Upgraded to xmodmap-1.0.3.
x/xorg-server-1.4-i486-1: Upgraded to xorg-server-1.4.
x/xorg-server-xdmx-1.4-i486-1: Upgraded to xorg-server-xdmx.
x/xorg-server-xnest-1.4-i486-1: Upgraded to xorg-server-xnest-1.4.
x/xorg-server-xvfb-1.4-i486-1: Upgraded to xorg-server-xvfb-1.4.
x/xprop-1.0.3-i486-1: Upgraded to xprop-1.0.3.
x/xrandr-1.2.2-i486-1: Upgraded to xrandr-1.2.2.
x/xrdb-1.0.4-i486-1: Upgraded to xrdb-1.0.4.
x/xset-1.0.3-i486-1: Upgraded to xset-1.0.3.
x/xsetroot-1.0.2-i486-1: Upgraded to xsetroot-1.0.2.
x/xtrans-1.0.4-noarch-1: Upgraded to xtrans-1.0.4.
x/xvinfo-1.0.2-i486-1: Upgraded to xvinfo-1.0.2.
x/xwininfo-1.0.3-i486-1: Upgraded to xwininfo-1.0.3.
xap/fluxbox-1.0.0-i486-1.tgz: Upgraded to fluxbox-1.0.0.
xap/imagemagick-6.3.6_0-i486-1.tgz: Upgraded to ImageMagick-6.3.6-0.
xap/mozilla-firefox-2.0.0.7-i686-1.tgz: Upgraded to mozilla-firefox-2.0.0.7.
xap/pidgin-2.2.1-i486-1.tgz: Upgraded to pidgin-2.2.1.
xap/vim-gvim-7.1.138-i486-1.tgz: Upgraded to vim-7.1.138 with GTK+ extensions.
xap/xine-lib-1.1.8-i686-1.tgz: Upgraded to xine-lib-1.1.8.
xap/xscreensaver-5.03-i486-1.tgz: Upgraded to xscreensaver-5.03.
extra/ktorrent/ktorrent-2.2.2-i486-1.tgz: Upgraded to ktorrent-2.2.2.
extra/linux-2.6.23.1-nosmp-sdk/: Updated SMP to no-SMP kernel source patch.
extra/linux-wlan-ng/linux-wlan-ng-0.2.8_2.6.21.5-i486-1.tgz: Removed.
This does not compile with Linux 2.6.23.1, and no newer version is out.
extra/xf86-video-ati-6.6.3/xf86-video-ati-6.6.3-i486-3.tgz: Removed.
If there are still problems with the ATI driver we’ll have to look at them
again. There’s a proposed patch around here somewhere.
isolinux/initrd.img: Removed libgpm, which may have been interfering with
serial console and Speakup installs.
Upgraded to jfsutils-1.1.12.
isolinux/network.dsk: Added 2.6.23.1 SMP and non-SMP modules.
isolinux/pcmcia.dsk: Added 2.6.23.1 SMP and non-SMP modules.
kernels/huge.s/*: Upgraded huge.s kernel to 2.6.23.1.
kernels/hugesmp.s/*: Upgraded hugesmp.s kernel to 2.6.23.1 (SMP).
usb-and-pxe-installers/: Updated USB and PXE installers.
testing/packages/bash-3.2.025-i486-1.tgz: Upgraded to bash-3.2.025.
+————————–+
Sat Sep 1 18:23:39 CDT 2007
extra/jdk-6/jdk-6u2-i586-2.tgz: Fixed a bug in the improvement to the
/etc/profile.d/ scripts where it would mess up the $MANPATH. Sorry
about that, folks. The JRE package was not affected.
BTW, any time a security upgrade package mentioned in an advisory is
“missing”, it probably means a mistake like this was made. In those
cases, look for a newer package, and verify the authenticity using
“gpg –verify” and the .asc file.
+————————–+
Fri Aug 31 13:33:54 CDT 2007
l/jre-6u2-i586-1.tgz: Upgraded to Java(TM) 2 Platform Standard Edition
Runtime Environment Version 6.0 update 2.
This update addresses code errors which could possibly be leveraged to
compromise system security, though we know of no existing exploits.
This update consists of the official Java(TM) binaries repackaged in
Slackware’s package format, and may be used on any version of Slackware
that is based on glibc.
For more information, see:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102995-1
(* Security fix *)
An additional change was made to the script that Slackware uses to
set environment variables for Java(TM). Now, after the $JAVA_HOME
variable is set, the next variable settings make use of it, rather
than hard-coding the path to $JAVA_HOME. This does not fix a bug,
but is certainly better scripting style. Thanks to Jason Byrne and
Jean-Christophe Fargette for suggesting this change.
extra/jdk-6/jdk-6u2-i586-1.tgz: Upgraded to Java(TM) 2 Platform
Standard Edition Development Kit Version 6.0 update 2.
This update addresses code errors which could possibly be leveraged to
compromise system security, though we know of no existing exploits.
This update consists of the official Java(TM) binaries repackaged in
Slackware’s package format, and may be used on any version of Slackware
that is based on glibc.
For more information, see:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102995-1
(* Security fix *)
An additional change was made to the script that Slackware uses to
set environment variables for Java(TM). Now, after the $JAVA_HOME
variable is set, the next variable settings make use of it, rather
than hard-coding the path to $JAVA_HOME. This does not fix a bug,
but is certainly better scripting style. Thanks to Jason Byrne and
Jean-Christophe Fargette for suggesting this change.
+————————–+
Sat Aug 18 14:20:33 CDT 2007
n/tcpdump-3.9.7-i486-1.tgz:
Upgraded to libpcap-0.9.7, tcpdump-3.9.7.
This new version fixes an integer overflow in the BGP dissector which
could possibly allow remote attackers to crash tcpdump or to execute
arbitrary code.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3798
(* Security fix *)
+————————–+
Fri Aug 17 17:53:53 CDT 2007
Merged the following packages from 12.0 /patches:
a/mkinitrd-1.1.3-i486-1.tgz
l/poppler-0.5.4-i486-2.tgz
l/qt-3.3.8-i486-5.tgz
n/bind-9.4.1_P1-i486-1.tgz
x/xf86-video-intel-2.1.0-i486-1.tgz
x/xf86-video-nv-2.1.2-i486-1.tgz
xap/gimp-2.2.17-i486-1.tgz
xap/mozilla-thunderbird-2.0.0.6-i686-1.tgz
xap/mozilla-firefox-2.0.0.6-i686-1.tgz
xap/seamonkey-1.1.4-i486-1.tgz
xap/xpdf-3.02pl1-i486-1.tgz
+————————–+
Fri Aug 10 22:39:13 CDT 2007
patches/packages/gimp-2.2.17-i486-1_slack12.0.tgz:
Upgraded to gimp-2.2.17, which fixes buffer overflows when decoding
certain image types.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2949
(* Security fix *)
patches/packages/poppler-0.5.4-i486-2_slack12.0.tgz:
Patched to fix an integer overflow in code borrowed from xpdf.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3387
(* Security fix *)
patches/packages/qt-3.3.8-i486-5_slack12.0.tgz:
Patched to fix several format string bugs.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3388
(* Security fix *)
patches/packages/seamonkey-1.1.4-i486-1_slack12.tgz:
Upgraded to seamonkey-1.1.4.
This upgrade fixes some more security bugs.
For more information, see:
http://www.mozilla.org/projects/security/known-vulnerabilities.html#seamonkey
(* Security fix *)
patches/packages/xpdf-3.02pl1-i486-1_slack12.0.tgz:
Upgraded to xpdf-3.02pl1. This fixes an integer overflow that could possibly
be leveraged to run arbitrary code if a malicious PDF file is processed.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3387
(* Security fix *)
+————————–+
Fri Aug 3 15:43:35 CDT 2007
patches/packages/mozilla-thunderbird-2.0.0.6-i686-1.tgz:
Upgraded to thunderbird-2.0.0.6.
This upgrade fixes some more security bugs.
For more information, see:
http://www.mozilla.org/projects/security/known-vulnerabilities.html#thunderbird
(* Security fix *)
+————————–+
Wed Aug 1 13:52:51 CDT 2007
patches/packages/mozilla-firefox-2.0.0.6-i686-1.tgz:
Upgraded to firefox-2.0.0.6.
This upgrade fixes some more security bugs.
For more information, see:
http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox
(* Security fix *)
+————————–+
Thu Jul 26 15:51:42 CDT 2007
patches/packages/bind-9.4.1_P1-i486-1_slack12.0.tgz:
Upgraded to bind-9.4.1_P1 to fix security issues.
The default access control lists allow remote attackers to make recursive
queries in BIND9 versions 9.4.0 through 9.4.1.
The query IDs in BIND9 prior to BIND 9.4.1-P1 are cryptographically weak.
For more information on these issues, see:
http://www.isc.org/index.pl?/sw/bind/bind-security.php
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2925
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2926
(* Security fix *)
+————————–+
Tue Jul 24 12:40:16 CDT 2007
patches/packages/mozilla-thunderbird-2.0.0.5-i686-1.tgz:
Upgraded to thunderbird-2.0.0.5. Since Thunderbird shares the browser engine
with Firefox it is susceptible to similar vulnerabilities. This update fixes
the same issues fixed in the recent Firefox patch.
For more information, see:
http://www.mozilla.org/projects/security/known-vulnerabilities.html#thunderbird
(* Security fix *)
patches/packages/seamonkey-1.1.3-i486-1_slack12.tgz:
Upgraded to seamonkey-1.1.3. This is presumably a security update, but the
details on the net have been sparse. So far nothing has appeared at the
usual URL, but I would treat this as a security update unless it is announced
as otherwise.
For more information (if/when it appears), see:
http://www.mozilla.org/projects/security/known-vulnerabilities.html#seamonkey
(* Security fix *)
+————————–+
Thu Jul 19 12:50:36 CDT 2007
patches/packages/mkinitrd-1.1.3-i486-1.tgz: Fixed a minor bug in mkinitrd
where devices such as /dev/cciss/c0d0p2 (DL360 RAID) were not properly copied
to the initramfs. “Normal” (two level) boot devices such as /dev/sda1 were
not affected by this bug, so most people won’t run into it (which is probably
why it wasn’t spotted in development here).
Thanks to Eric Hameleers for the patch.
patches/packages/mozilla-firefox-2.0.0.5-i686-1.tgz:
Upgraded to firefox-2.0.0.5.
This upgrade fixes a couple of minor security bugs. Nobody here is launching
Firefox from Internet Explorer, right? :-) For more information, see:
http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox
(* Security fix *)
patches/packages/xf86-video-intel-2.1.0-i486-1.tgz: Added additional chipsets.
patches/packages/xf86-video-nv-2.1.2-i486-1.tgz: Added additional chipsets.
+————————–+

0 Responses to “Aberta árvore do -current”

Feed for this Entry Trackback Address
  1. No Comments

Leave a Reply

You must login to post a comment.

« The One Page For…. SLACKWARE!!
Ports para Slack… SlackPorts!! »
FireStats icon Produzido pelo FireStats