« A semana do current-
Current 2008/01 »

Feliz Ano NOVO!!! 2008 ;-)

Published by admin January 1st, 2008 in ChangeLog, Noticias and Slackware.

Mon Dec 31 18:44:01 CST 2007
a/glibc-zoneinfo-2.7-noarch-5.tgz: Some deja vu. ;-) Upgraded to tzdata2007k. A new year should be started with the
latest timezone data, so here it is.
Happy holidays, and a happy new year to all! :-)
+————————–+
Sat Dec 22 17:07:12 CST 2007
l/libgsf-1.14.7-i486-1.tgz: Upgraded to libgsf-1.14.7.
+————————–+
Sat Dec 22 00:54:42 CST 2007
a/glibc-solibs-2.7-i486-4.tgz: Upgraded to glibc-2.7 compiled against Linux
2.6.23.12 kernel headers.
a/glibc-zoneinfo-2.7-noarch-4.tgz: Upgraded to tzdata2007j.
a/kernel-generic-2.6.23.12-i486-1.tgz:
Upgraded to Linux 2.6.23.12 uniprocessor generic.s (requires initrd) kernel.
a/kernel-generic-smp-2.6.23.12_smp-i686-1.tgz:
Upgraded to Linux 2.6.23.12 SMP gensmp.s (requires initrd) kernel.
a/kernel-huge-2.6.23.12-i486-1.tgz:
Upgraded to Linux 2.6.23.12 uniprocessor huge.s (full-featured) kernel.
a/kernel-huge-smp-2.6.23.12_smp-i686-1.tgz:
Upgraded to Linux 2.6.23.12 SMP hugesmp.s (full-featured) kernel.
a/kernel-modules-2.6.23.12-i486-1.tgz
Upgraded to Linux 2.6.23.12 uniprocessor kernel modules.
a/kernel-modules-smp-2.6.23.12_smp-i686-1.tgz
Upgraded to Linux 2.6.23.12 SMP kernel modules.
d/kernel-headers-2.6.23.12_smp-i386-1.tgz:
Upgraded to Linux 2.6.23.12 SMP kernel headers.
k/kernel-source-2.6.23.12_smp-noarch-1.tgz
Upgraded to Linux 2.6.23.12 SMP kernel source.
l/glibc-2.7-i486-4.tgz: Rebuilt against Linux 2.6.23.12 kernel headers.
l/glibc-i18n-2.7-noarch-4.tgz: Rebuilt.
l/glibc-profile-2.7-i486-4.tgz: Rebuilt against Linux 2.6.23.12 headers.
l/svgalib_helper-1.9.25_2.6.23.12-i486-1.tgz: Recompiled for Linux 2.6.23.12.
extra/linux-2.6.23.12-nosmp-sdk/: Updated SMP to no-SMP kernel source patch.
isolinux/network.dsk, pcmcia.dsk; Upgraded to 2.6.23.12 kernel modules.
kernels/huge.s/*: Upgraded huge.s kernel to 2.6.23.12.
kernels/hugesmp.s/*: Upgraded hugesmp.s kernel to 2.6.23.12 (SMP).
usb-and-pxe-installers/: Updated USB and PXE installers.
+————————–+
Fri Dec 21 19:03:54 CST 2007
a/pkgtools-12.1.0-noarch-2.tgz: Fixed a regex bug in a grep in installpkg that
could cause packages that do not conform to the FHS (those containing single-
character top-level directories) to not be removable or upgradeable through
the pkgtools. Thanks to Johnny Morano for pointing this ancient bug out.
Made the top-line with -infobox more terse since some of the package names
have become too long to fit, and were disturbing the infobox’s formatting.
isolinux/initrd.img: Upgraded to the latest installpkg.
+————————–+
Fri Dec 14 18:02:39 CST 2007
a/mkinitrd-1.3.0-i486-4.tgz: Fixed a bug that could cause modprobe to attempt
to load the same module more than once (due to whitespace differences in
the initramfs’s load_kernel_modules script). Thanks to Piter Punk.
ap/mysql-5.0.51-i486-1.tgz:
Upgraded to mysql-5.0.51.
This release fixes several bugs, including some security issues.
However, it also includes a potentially incompatible change, so be sure
to read the release notes before upgrading. It is possible that some
databases will need to be fixed in order to work with this (and future)
releases:
http://dev.mysql.com/doc/refman/5.0/en/releasenotes-cs-5-0-51.html
For more information about the security issues fixed, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3781
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5925
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5969
(* Security fix *)
f/linux-howtos-20071214-noarch-1.tgz: Upgraded to linux-howtos-20071214.
l/hal-info-20071212-noarch-1.tgz: Upgraded to hal-info-20071212.
l/libpng-1.2.24-i486-1.tgz: Upgraded to libpng-1.2.24.
n/nmap-4.50-i486-1.tgz: Upgraded to nmap-4.50.
x/xf86-input-joystick-1.3.1-i486-1.tgz: Upgraded to xf86-input-joystick-1.3.1.
x/xf86-video-radeonhd-1.0.0-i486-1.tgz: Added xf86-video-radeonhd-1.0.0.
x/xorg-server-1.4.0.90-i486-1.tgz: Upgraded to xorg-server-1.4.0.90.
x/xorg-server-xnest-1.4.0.90-i486-1.tgz: Upgraded to
xorg-server-xnest-1.4.0.90.
x/xorg-server-xvfb-1.4.0.90-i486-1.tgz: Upgraded to xorg-server-xvfb-1.4.0.90.
xap/imagemagick-6.3.7_4-i486-1.tgz: Upgraded to ImageMagick-6.3.7-4.
+————————–+
Mon Dec 10 14:07:48 CST 2007
l/vte-0.16.10-i486-1.tgz: Upgraded to vte-0.16.10.
n/proftpd-1.3.1-i486-1.tgz: Upgraded to proftpd-1.3.1.
n/samba-3.0.28-i486-1.tgz:
Upgraded to samba-3.0.28.
Samba 3.0.28 is a security release in order to address a boundary failure
in GETDC mailslot processing that can result in a buffer overrun leading
to possible code execution.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6015
http://www.samba.org/samba/history/samba-3.0.28.html
http://secunia.com/secunia_research/2007-99/advisory/
(* Security fix *)
xap/gkrellm-2.3.1-i486-1.tgz: Upgraded to gkrellm-2.3.1.
xap/pidgin-2.3.1-i486-1.tgz: Upgraded to pidgin-2.3.1.
xap/xchat-2.8.4-i486-1.tgz: Upgraded to xchat-2.8.4.
extra/ktorrent/ktorrent-2.2.4-i486-1.tgz: Upgraded to ktorrent-2.2.4.
+————————–+
Wed Dec 5 14:57:36 CST 2007
a/kernel-huge-smp-2.6.23.9_smp-i686-3.tgz: Fixed missing JFFS2.
Thanks to Arny.
kernels/hugesmp.s/*: Fixed missing JFFS2. Thanks to Arny.
+————————–+
Tue Dec 4 19:03:43 CST 2007
a/hdparm-7.7-i486-1.tgz: Upgraded to hdparm-7.7.
Moved hdparm binary to /sbin (suggested by Tsomi).
a/kernel-generic-2.6.23.9-i486-2.tgz:
Rebuilt.
a/kernel-generic-smp-2.6.23.9_smp-i686-2.tgz:
Rebuilt.
a/kernel-huge-2.6.23.9-i486-2.tgz:
Rebuilt.
a/kernel-huge-smp-2.6.23.9_smp-i686-2.tgz:
Rebuilt.
a/kernel-modules-2.6.23.9-i486-2.tgz
Added JFFS2 modules.
a/kernel-modules-smp-2.6.23.9_smp-i686-2.tgz
Added JFFS2 modules.
d/kernel-headers-2.6.23.9_smp-i386-2.tgz:
Rebuilt.
k/kernel-source-2.6.23.9_smp-noarch-2.tgz: Reconfigured to include the option
for JFFS2, a journalling flash file system.
l/svgalib_helper-1.9.25_2.6.23.9-i486-2.tgz: Recompiled.
xap/gimp-2.4.2-i486-1.tgz: Upgraded to gimp-2.4.2.
extra/linux-2.6.23.9-nosmp-sdk/: Updated SMP to no-SMP kernel source patch.
isolinux/network.dsk, pcmcia.dsk; Upgraded kernel modules.
kernels/huge.s/*: Upgraded huge.s kernel.
kernels/hugesmp.s/*: Upgraded hugesmp.s kernel (SMP).
usb-and-pxe-installers/: Updated USB and PXE installers.
+————————–+
Mon Dec 3 21:04:37 CST 2007
a/inotify-tools-3.12-i486-1.tgz: Added inotify-tools-3.12.
Thanks to Eric Hameleers for the build script.
ap/cdparanoia-III10pre0-i486-1.tgz: Upgraded to cdparanoia-III-10pre0.
ap/hplip-2.7.10-i486-2.tgz: Rebuilt with some fixes to the build script.
Thanks to Robby Workman.
kde/amarok-1.4.7-i486-2.tgz: Recompiled against libmtp-0.2.4.
l/cairo-1.4.12-i486-1.tgz: Upgraded to cairo-1.4.12.
This fixes a possible security risk when decoding PNG files that may have
been maliciously tampered with:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5503
(* Security fix *)
l/libmtp-0.2.4-i486-1.tgz: Upgraded to libmtp-0.2.4.
Thanks to Piter Punk for updating the udev rules.
l/libnjb-2.2.6-i486-2.tgz: Updated udev rules. Thanks to Piter Punk.
n/bluez-hcidump-1.40-i486-1.tgz: Upgraded to bluez-hcidump-1.40.
n/bluez-libs-3.22-i486-1.tgz: Upgraded to bluez-libs-3.22.
n/bluez-utils-3.22-i486-1.tgz: Upgraded to bluez-utils-3.22.
Thanks to Piter Punk for updating the udev rules.
n/gnupg2-2.0.7-i486-1.tgz: Upgraded to gnupg2-2.0.7.
n/gnutls-2.0.4-i486-1.tgz: Upgraded to gnutls-2.0.4.
n/gpgme-1.1.5-i486-1.tgz: Upgraded to gpgme-1.1.5.
n/libassuan-1.0.3-i486-1.tgz: Upgraded to libassuan-1.0.3.
n/libgpg-error-1.6-i486-1.tgz: Upgraded to libgpg-error-1.6.
n/libksba-1.0.2-i486-1.tgz: Upgraded to libksba-1.0.2.
n/mcabber-0.9.5-i486-1.tgz: Upgraded to mcabber-0.9.5.
n/pinentry-0.7.4-i486-1.tgz: Upgraded to pinentry-0.7.4.
n/samba-3.0.27a-i486-1.tgz: Upgraded to samba-3.0.27a.
This update fixes a crash bug regression experienced by smbfs clients caused
by the fix for CVE-2007-4572.
xap/xfce-4.4.2-i486-1.tgz: Upgraded to xfce-4.4.2.
Thanks to Robby Workman for the build script.
This fixes a minor security bug in Terminal:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3770
(* Security fix *)
+————————–+
Sat Dec 1 17:02:02 CST 2007
n/rsync-2.6.9-i486-2.tgz:
Patched some security bugs.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4091
http://lists.samba.org/archive/rsync-announce/2007/000050.html
(* Security fix *)
xap/mozilla-firefox-2.0.0.11-i686-1.tgz: Upgraded to Firefox 2.0.0.11, which
fixed a bug introduced by the 2.0.0.10 update in the feature that
affected some web pages and extensions.
+————————–+
Thu Nov 29 19:51:15 CST 2007
xap/seamonkey-1.1.7-i486-1.tgz:
Upgraded to seamonkey-1.1.7.
This upgrade fixes some more security bugs.
For more information, see:
http://www.mozilla.org/projects/security/known-vulnerabilities.html#seamonkey
(* Security fix *)
+————————–+
Thu Nov 29 17:38:37 CST 2007
a/mkinitrd-1.3.0-i486-3.tgz: Fixed a missing ‘–parents’ in a cp command.
Thanks to Eric Hameleers for pointing out the bug.
+————————–+
Thu Nov 29 14:53:28 CST 2007
a/glibc-solibs-2.7-i486-3.tgz: Fixed incorrect version numbers in the install
script. Thanks to guru for the bug report.
a/glibc-zoneinfo-2.7-noarch-3.tgz: Rebuilt.
l/glibc-2.7-i486-3.tgz: Fixed incorrect version numbers in the install
script. Thanks to guru for the bug report.
l/glibc-i18n-2.7-noarch-3.tgz: Rebuilt.
l/glibc-profile-2.7-i486-3.tgz: Rebuilt.
+————————–+
Thu Nov 29 01:06:48 CST 2007
ap/cdrtools-2.01.01a36-i486-1.tgz: Upgraded to cdrtools-2.01.01a36.
+————————–+
Thu Nov 29 01:02:12 CST 2007
a/glibc-solibs-2.7-i486-2.tgz: Upgraded to glibc-2.7 compiled against Linux
2.6.23.9 kernel headers.
a/glibc-zoneinfo-2.7-noarch-2.tgz: Upgraded to tzdata2007i.
a/kernel-generic-2.6.23.9-i486-1.tgz:
Upgraded to Linux 2.6.23.9 uniprocessor generic.s (requires initrd) kernel.
a/kernel-generic-smp-2.6.23.9_smp-i686-1.tgz:
Upgraded to Linux 2.6.23.9 SMP gensmp.s (requires initrd) kernel.
a/kernel-huge-2.6.23.9-i486-1.tgz:
Upgraded to Linux 2.6.23.9 uniprocessor huge.s (full-featured) kernel.
a/kernel-huge-smp-2.6.23.9_smp-i686-1.tgz:
Upgraded to Linux 2.6.23.9 SMP hugesmp.s (full-featured) kernel.
a/kernel-modules-2.6.23.9-i486-1.tgz
Upgraded to Linux 2.6.23.9 uniprocessor kernel modules.
a/kernel-modules-smp-2.6.23.9_smp-i686-1.tgz
Upgraded to Linux 2.6.23.9 SMP kernel modules.
ap/ghostscript-8.61-i486-1.tgz: Upgraded to ghostscript-8.61.
This is still under the GPL — just FYI, I do not know why the package name
changed. This package replaces gnu-ghostscript-8.60.0-i486-2.
d/kernel-headers-2.6.23.9_smp-i386-1.tgz:
Upgraded to Linux 2.6.23.9 SMP kernel headers.
k/kernel-source-2.6.23.9_smp-noarch-1.tgz
Upgraded to Linux 2.6.23.9 SMP kernel source.
l/gamin-0.1.9-i486-1.tgz: Upgraded to gamin-0.1.9.
l/glibc-2.7-i486-2.tgz: Upgraded to glibc-2.7, built against Linux 2.6.23.9
kernel headers.
* NOTE: Packages for -current built after this batch of packages (up to
* the datestamp above) will be linked against glibc-2.7 and _may_ not work
* on systems running earlier versions of glibc (such as Slackware 12.0
* systems running glibc-2.5).
l/glibc-i18n-2.7-noarch-2.tgz: Upgraded to glibc-2.7 locale files.
l/glibc-profile-2.7-i486-2.tgz: Upgraded to glibc-2.7 profile libs.
l/svgalib_helper-1.9.25_2.6.23.9-i486-1.tgz: Recompiled for Linux 2.6.23.9.
extra/linux-2.6.23.9-nosmp-sdk/: Updated SMP to no-SMP kernel source patch.
isolinux/initrd.img: Upgraded to glibc-2.7. Added dmidecode.
isolinux/network.dsk, pcmcia.dsk; Upgraded to 2.6.23.9 kernel modules.
kernels/huge.s/*: Upgraded huge.s kernel to 2.6.23.9.
kernels/hugesmp.s/*: Upgraded hugesmp.s kernel to 2.6.23.9 (SMP).
usb-and-pxe-installers/: Updated USB and PXE installers.
+————————–+
Wed Nov 28 12:33:14 CST 2007
a/mkinitrd-1.3.0-i486-2.tgz: Edited two spots where grep was searching for /
rather than ‘ on / ‘. Thanks to Erik Jan Tromp for pointing out that this
needed a patch.
+————————–+
Tue Nov 27 16:08:14 CST 2007
a/mkinitrd-1.3.0-i486-1.tgz: Upgraded to mkinitrd-1.3.0.
This fixes a bug where some module options could be ignored.
Thanks to Alan Hicks for the patch.
Thanks also to Richard Hoyle for showing me how to statically link busybox
correctly when I wouldn’t listen to the Makefile. ;-) xap/mozilla-firefox-2.0.0.10-i686-1.tgz:
Upgraded to firefox-2.0.0.10.
This upgrade fixes some more security bugs.
For more information, see:
http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox
(* Security fix *)
+————————–+
Wed Nov 21 00:11:24 CST 2007
a/kernel-generic-2.6.23.8-i486-1.tgz:
Upgraded to Linux 2.6.23.8 uniprocessor generic.s (requires initrd) kernel.
a/kernel-generic-smp-2.6.23.8_smp-i686-1.tgz:
Upgraded to Linux 2.6.23.8 SMP gensmp.s (requires initrd) kernel.
a/kernel-huge-2.6.23.8-i486-1.tgz:
Upgraded to Linux 2.6.23.8 uniprocessor huge.s (full-featured) kernel.
a/kernel-huge-smp-2.6.23.8_smp-i686-1.tgz:
Upgraded to Linux 2.6.23.8 SMP hugesmp.s (full-featured) kernel.
a/kernel-modules-2.6.23.8-i486-1.tgz
Upgraded to Linux 2.6.23.8 uniprocessor kernel modules.
a/kernel-modules-smp-2.6.23.8_smp-i686-1.tgz
Upgraded to Linux 2.6.23.8 SMP kernel modules.
d/kernel-headers-2.6.23.8_smp-i386-1.tgz:
Upgraded to Linux 2.6.23.8 SMP kernel headers.
k/kernel-source-2.6.23.8_smp-noarch-1.tgz
Upgraded to Linux 2.6.23.8 SMP kernel source.
l/libpng-1.2.23-i486-1.tgz:
Upgraded to libpng-1.2.23.
Previous libpng versions may crash when loading malformed PNG files.
It is not currently known if this vulnerability can be exploited to
execute malicious code.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5266
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5267
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5268
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5269
(* Security fix *)
l/svgalib_helper-1.9.25_2.6.23.8-i486-1.tgz: Recompiled for Linux 2.6.23.8.
extra/linux-2.6.23.8-nosmp-sdk/: Updated SMP to no-SMP kernel source patch.
isolinux/network.dsk, pcmcia.dsk; upgraded to 2.6.23.8 kernel modules.
initrd.img: Upgraded to hdparm-7.6.
kernels/generic.s/*: Upgraded generic.s kernel to 2.6.23.8.
kernels/gensmp.s/*: Upgraded gensmp.s kernel to 2.6.23.8 (SMP).
kernels/huge.s/*: Upgraded huge.s kernel to 2.6.23.8.
kernels/hugesmp.s/*: Upgraded hugesmp.s kernel to 2.6.23.8 (SMP).
usb-and-pxe-installers/: Updated USB and PXE installers.
+————————–+
Tue Nov 20 16:49:58 CST 2007
xap/mozilla-thunderbird-2.0.0.9-i686-1.tgz:
Upgraded to thunderbird-2.0.0.9.
This update fixes the following security related issues:
URIs with invalid %-encoding mishandled by Windows (MFSA 2007-36).
Crashes with evidence of memory corruption (MFSA 2007-29).
OK, so the first one obviously does not affect us. :-) The second fix has
to do with the same JavaScript handling problem fixed before in Firefox.
JavaScript is not enabled by default in Thunderbird, and the developers
(at least in MFSA 2007-36) do not recommend turning it on.
For more information, see:
http://www.mozilla.org/security/announce/2007/mfsa2007-36.html
http://www.mozilla.org/security/announce/2007/mfsa2007-29.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4841
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5339
(* Security fix *)
+————————–+
Sat Nov 17 00:19:20 CST 2007
ap/cdparanoia-IIIalpha9.8-i486-3.tgz: Recompiled with SG_IO patch. This
didn’t seem to make a noticable difference, but to someone it might.
x/xf86-video-intel-2.2.0-i486-1.tgz: Upgraded to xf86-video-intel-2.2.0
x/xf86-video-sis-0.9.4-i486-1.tgz: Upgraded to xf86-video-sis-0.9.4.
OK, now that that Samba fix is done, we can give you a working X server. :-) Evidently, the HAL/D-Bus enabled X server, xf86-input-evdev, and one of HAL’s
.fdi files aren’t playing well together. After considering three possible
workarounds, it was decided to disable D-Bus/HAL support in the X server for
now. If you really want to play with X input hotplugging, it’s easy enough to
modify the source/x/x11/configure xorg-server configure file to enable D-Bus
and HAL and run: ./x11.SlackBuild xserver xorg-server
Xdmx remains gone per X build recommendations.
x/xorg-server-1.4-i486-4.tgz: Recompiled without input hotplugging support.
x/xorg-server-xnest-1.4-i486-4.tgz: Rebuilt.
x/xorg-server-xvfb-1.4-i486-4.tgz: Rebuilt.
xap/xscreensaver-5.04-i486-1.tgz: Upgraded to xscreensaver-5.04.
+————————–+
Fri Nov 16 17:22:18 CST 2007
n/samba-3.0.27-i486-1.tgz:
Upgraded to samba-3.0.27.
Samba 3.0.27 is a security release in order to address a stack buffer
overflow in nmbd’s logon request processing, and remote code execution in
Samba’s WINS server daemon (nmbd) when processing name registration followed
name query requests.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4572
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5398
(* Security fix *)
+————————–+
Wed Nov 14 23:01:27 CST 2007
x/xf86-input-evdev-1.2.0-i486-1.tgz: Upgraded to xf86-input-evdev-1.2.0.
x/xf86-input-joystick-1.3.0-i486-1.tgz: Upgraded to xf86-input-joystick-1.3.0.
+————————–+
Wed Nov 14 15:25:14 CST 2007
x/mesa-7.0.2-i486-1.tgz: Upgraded to mesa-7.0.2.
x/xf86-video-ati-6.7.196-i486-1.tgz: Upgraded to xf86-video-ati-6.7.196.
x/xf86-video-intel-2.1.99-i486-1.tgz: Upgraded to xf86-video-intel-2.1.99.
x/xorg-server-1.4-i486-3.tgz: Rebuilt against Mesa 7.0.2.
Removed support for XDMX, as the code is not maintained and interferes with
input hotplug support. Thanks to Carlos Corbacho for the help. :-) x/xorg-server-xdmx-1.4-i486-2.tgz: Removed.
x/xorg-server-xnest-1.4-i486-3.tgz: Rebuilt.
x/xorg-server-xvfb-1.4-i486-3.tgz: Rebuilt.
+————————–+
Mon Nov 12 01:25:34 CST 2007
kde/kdegraphics-3.5.8-i486-2.tgz:
Patched xpdf related bugs.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3387
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4352
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5392
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5393
(* Security fix *)
kde/koffice-1.6.3-i486-2.tgz:
Patched xpdf related bugs.
For more information, see:
http://www.kde.org/info/security/advisory-20071107-1.txt
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3387
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4352
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5392
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5393
(* Security fix *)
l/pcre-7.4-i486-1.tgz: Upgraded to pcre-7.4.
l/poppler-0.6.2-i486-1.tgz: Upgraded to poppler-0.6.2.
This release fixes xpdf related bugs.
For more information, see:
http://poppler.freedesktop.org/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4352
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5392
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5393
(* Security fix *)
xap/xpdf-3.02pl2-i486-1.tgz: Upgraded to xpdf-3.02pl2.
The pl2 patch fixes a crash in xpdf.
Some theorize that this could be used to execute arbitrary code if an
untrusted PDF file is opened, but no real-world examples are known (yet).
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3387
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4352
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5392
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5393
(* Security fix *)
+————————–+
Sat Nov 10 14:27:42 CST 2007
n/php-5.2.5-i486-1.tgz:
Upgraded to php-5.2.5.
This fixes bugs and security issues.
For more information, see:
http://www.php.net/releases/5_2_5.php
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4887
(* Security fix *)
+————————–+
Fri Nov 9 16:07:43 CST 2007
ap/gnu-ghostscript-8.60.0-i486-2.tgz: ./configured with –disable-compile-inits
option, which disables a new default of compiling in various configuration
values (such as paper size) rather than reading them from the traditional
config file. Thanks to Jonathan Woithe for pointing this change out.
xap/mozilla-firefox-2.0.0.9-i686-1.tgz:
Upgraded to firefox-2.0.0.9.
This upgrade improves the stability of Firefox.
For more information, see:
http://developer.mozilla.org/devnews/index.php/2007/11/01/firefox-2009-stability-update-now-available-for-download/
xap/seamonkey-1.1.6-i486-1.tgz:
Upgraded to SeaMonkey 1.1.6.
This upgrade fixes SeaMonkey’s ability to display certain types of web pages.
That’s about all we could find about it here:
http://www.mozilla.org/projects/seamonkey/

0 Responses to “Feliz Ano NOVO!!! 2008 ;-)”

Feed for this Entry Trackback Address
  1. No Comments

Leave a Reply

You must login to post a comment.

« A semana do current-
Current 2008/01 »
FireStats icon Produzido pelo FireStats