The second release candidate of Slackware Linux 14.2 is now available
Fri Apr 15 20:37:37 UTC 2016Slackware Linux 14.2 Release Candidate 2
Finally got some fixes we were waiting for in this new kernel.
It's been almost a month since 14.2rc1 so we'll call this Slackware
14.2 release candidate 2. Almost there. Get in any last-minute
bug reports quickly.
a/kernel-generic-4.4.7-i586-1.txz: Upgraded.
a/kernel-generic-smp-4.4.7_smp-i686-1.txz: Upgraded.
a/kernel-huge-4.4.7-i586-1.txz: Upgraded.
BLK_DEV_NVME m -> y
a/kernel-huge-smp-4.4.7_smp-i686-1.txz: Upgraded.
BLK_DEV_NVME m -> y
a/kernel-modules-4.4.7-i586-1.txz: Upgraded.
a/kernel-modules-smp-4.4.7_smp-i686-1.txz: Upgraded.
d/kernel-headers-4.4.7_smp-x86-1.txz: Upgraded.
k/kernel-source-4.4.7_smp-noarch-1.txz: Upgraded.
l/alsa-lib-1.1.1-i586-2.txz: Rebuilt.
Applied upstream patch to fix error EBADFD. Thanks to e5150.
l/glibmm-2.46.4-i586-1.txz: Upgraded.
l/gst-plugins-base-1.6.4-i586-1.txz: Upgraded.
l/gst-plugins-good-1.6.4-i586-1.txz: Upgraded.
l/gstreamer-1.6.4-i586-1.txz: Upgraded.
l/gtkmm3-3.18.1-i586-1.txz: Upgraded.
l/qca-2.1.1-i586-2.txz: Rebuilt.
Install crypto.prf in the correct directory. Thanks to David Spencer.
n/gnutls-3.4.11-i586-1.txz: Upgraded.
n/nfs-utils-1.3.3-i586-2.txz: Rebuilt.
Fix nfsd startup on kernels without IPv6 support. Thanks to Mario Preksavec.
n/samba-4.4.2-i586-1.txz: Upgraded.
This update fixes the security issues known as "badlock" (or "sadlock"),
which may allow man-in-the-middle or denial-of-service attacks:
CVE-2015-5370 (Multiple errors in DCE-RPC code)
CVE-2016-2110 (Man in the middle attacks possible with NTLMSSP)
CVE-2016-2111 (NETLOGON Spoofing Vulnerability)
CVE-2016-2112 (LDAP client and server don't enforce integrity)
CVE-2016-2113 (Missing TLS certificate validation)
CVE-2016-2114 ("server signing = mandatory" not enforced)
CVE-2016-2115 (SMB IPC traffic is not integrity protected)
CVE-2016-2118 (SAMR and LSA man in the middle attacks possible)
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5370
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2110
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2111
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2112
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2113
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2114
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2115
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2118
(* Security fix *)
x/xf86-video-intel-git_20160224_d167280-i586-1.txz: Upgraded.
So far, this version seems to be the most stable of the ones tested.
Thanks to Andrzej Telszewski.
x/xf86-video-openchrome-0.4.0-i586-1.txz: Upgraded.
x/xorg-server-1.18.3-i586-2.txz: Rebuilt.
Applied a patch from https://bugs.freedesktop.org/show_bug.cgi?id=49950
to fix applying keyboard layout settings when using a keyboard/mouse combo
device such as a Logitech wireless keyboard with the unifying receiver.
Thanks to Jean-Philippe Guillemin.
x/xorg-server-xephyr-1.18.3-i586-2.txz: Rebuilt.
x/xorg-server-xnest-1.18.3-i586-2.txz: Rebuilt.
x/xorg-server-xvfb-1.18.3-i586-2.txz: Rebuilt.
xap/geeqie-1.2.3-i586-1.txz: Upgraded.
xap/mozilla-thunderbird-45.0-i586-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
http://www.mozilla.org/security/known-vulnerabilities/thunderbird.html
(* Security fix *)
extra/linux-4.4.7-nosmp-sdk/*: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
+--------------------------+
Tue Apr 12 05:37:20 UTC 2016
a/aaa_elflibs-14.2-i586-12.txz: Rebuilt.
Added libtdb.so.1.3.8.
a/lvm2-2.02.150-i586-1.txz: Upgraded.
ap/sqlite-3.12.1-i586-1.txz: Upgraded.
ap/tmux-2.2-i586-1.txz: Upgraded.
l/QScintilla-2.9.1-i586-1.txz: Upgraded.
l/harfbuzz-1.2.6-i586-1.txz: Upgraded.
l/libpng-1.6.21-i586-1.txz: Upgraded.
l/libtasn1-4.8-i586-1.txz: Upgraded.
l/sip-4.17-i586-1.txz: Upgraded.
n/epic5-2.0-i586-1.txz: Upgraded.
n/httpd-2.4.20-i586-1.txz: Upgraded.
n/nmap-7.12-i586-1.txz: Upgraded.
n/proftpd-1.3.5b-i586-1.txz: Upgraded.
Compiled with --enable-dso. Thanks to David M. Syzdek.
Compiled with --enable-nls. Thanks to Olek.
n/samba-4.4.0-i586-1.txz: Upgraded.
This will probably be a very short-lived package, but it would be good to
hear about any bugs before 4.4.1 is packaged (probably tomorrow).
n/vsftpd-3.0.3-i586-2.txz: Rebuilt.
In /etc/vsftpd.conf.new, set seccomp_sandbox=NO to work around bugs.
x/xf86-video-amdgpu-1.1.0-i586-1.txz: Upgraded.
x/xf86-video-ati-7.7.0-i586-1.txz: Upgraded.
x/xf86-video-intel-git_20160411_a7526ea-i586-1.txz: Upgraded.
xap/mozilla-firefox-45.0.2-i586-1.txz: Upgraded.
+--------------------------+
Wed Apr 6 05:07:44 UTC 2016
d/git-2.8.1-i586-1.txz: Upgraded.
d/nasm-2.12.01-i586-1.txz: Upgraded.
d/strace-4.11-i586-1.txz: Upgraded.
d/subversion-1.9.3-i586-1.txz: Upgraded.
Subversion servers and clients are vulnerable to remotely triggerable
heap-based buffer overflows and out-of-bounds reads that may allow remote
attackers to cause a denial of service or possibly execute arbitrary code
under the context of the targeted process.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5259
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5343
(* Security fix *)
l/harfbuzz-1.2.5-i586-1.txz: Upgraded.
l/librsvg-2.40.15-i586-1.txz: Upgraded.
n/bluez-5.39-i586-1.txz: Upgraded.
x/mesa-11.2.0-i586-1.txz: Upgraded.
x/xf86-video-intel-git_20160405_afddc9f-i586-1.txz: Upgraded.
x/xorg-server-1.18.3-i586-1.txz: Upgraded.
x/xorg-server-xephyr-1.18.3-i586-1.txz: Upgraded.
x/xorg-server-xnest-1.18.3-i586-1.txz: Upgraded.
x/xorg-server-xvfb-1.18.3-i586-1.txz: Upgraded.
x/xterm-324-i586-1.txz: Upgraded.
extra/tigervnc/tigervnc-1.6.0-i586-3.txz: Rebuilt.
Rebuilt for xorg-server-1.18.3.
+--------------------------+
Mon Apr 4 19:54:22 UTC 2016
a/lvm2-2.02.149-i586-1.txz: Upgraded.
ap/sqlite-3.12.0-i586-1.txz: Upgraded.
d/make-4.1-i586-2.txz: Rebuilt.
Applied patch: Handle NULL returns from ttyname(). Thanks to e5150.
l/iso-codes-3.67-noarch-1.txz: Upgraded.
n/NetworkManager-1.0.12-i586-1.txz: Upgraded.
n/bluez-5.38-i586-3.txz: Rebuilt.
Added another patch from upstream git. Thanks to gmgf.
n/mutt-1.6.0-i586-1.txz: Upgraded.
x/inputproto-2.3.2-noarch-1.txz: Upgraded.
xap/mozilla-thunderbird-38.7.2-i586-1.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
http://www.mozilla.org/security/known-vulnerabilities/thunderbird.html
(* Security fix *)
+--------------------------+
Fri Apr 1 21:17:37 UTC 2016
a/elilo-3.16-i586-2.txz: Rebuilt.
eliloconfig: strip alphabetic characters from $EFI_PARTITION.
Rebuilt /boot/elilo-x86_64.efi against gnu-efi-3.0.4.
a/kernel-firmware-20160401git-noarch-1.txz: Upgraded.
ap/alsa-utils-1.1.1-i586-1.txz: Upgraded.
Don't run rc.alsa by default.
ap/at-3.1.19-i586-1.txz: Upgraded.
d/mercurial-3.7.3-i586-1.txz: Upgraded.
This update fixes security issues and bugs, including remote code execution
in binary delta decoding, arbitrary code execution with Git subrepos, and
arbitrary code execution when converting Git repos.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3630
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3068
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3069
(* Security fix *)
f/linux-howtos-20160401-noarch-1.txz: Upgraded.
l/alsa-lib-1.1.1-i586-1.txz: Upgraded.
l/alsa-plugins-1.1.1-i586-1.txz: Upgraded.
l/gnu-efi-3.0.4-i586-1.txz: Upgraded.
l/newt-0.52.19-i586-1.txz: Upgraded.
n/ModemManager-1.4.14-i586-1.txz: Upgraded.
n/dhcp-4.3.4-i586-1.txz: Upgraded.
This update fixes bugs and (previously patched) security issues.
n/php-5.6.20-i586-1.txz: Upgraded.
This release fixes bugs and security issues.
For more information, see:
http://php.net/ChangeLog-5.php#5.6.20
(* Security fix *)
xap/audacious-3.7.2-i586-1.txz: Upgraded.
xap/audacious-plugins-3.7.2-i586-1.txz: Upgraded.
+--------------------------+
Tue Mar 29 07:43:02 UTC 2016
d/git-2.8.0-i586-1.txz: Upgraded.
n/iptables-1.6.0-i586-2.txz: Rebuilt.
Moved /usr/etc/ethertypes to /etc/ethertypes. Thanks to e5150.
usb-and-pxe-installers/usbimg2disk.sh: Patched.
Exclude any dangling symlinks when copying files. Thanks to gsl.
Add new option -e (or --errors) to abort on any errors.
+--------------------------+
Sun Mar 27 19:39:10 UTC 2016
a/dbus-1.10.8-i586-1.txz: Upgraded.
a/grub-2.00-i586-4.txz: Rebuilt.
Include support for 32-bit EFI. Thanks to Eric Hameleers.
a/lvm2-2.02.148-i586-1.txz: Upgraded.
ap/hplip-3.16.3-i586-1.txz: Upgraded.
l/dbus-python-1.2.4-i586-1.txz: Upgraded.
extra/brltty/brltty-5.3.1-i586-2.txz: Rebuilt.
Added upstream patch to prefer a blank if the same glyph is used for other
characters. Added udev rules. Thanks to Didier Spaier.
testing/source/linux-4.6-rc1-configs/*: Added.
+--------------------------+
Sat Mar 26 23:20:34 UTC 2016
a/etc-14.2-i586-6.txz: Rebuilt.
Added polkitd user (UID 87) and group (GID 87).
ap/mc-4.8.16-i586-2.txz: Rebuilt.
Applied some upstream patches. Thanks to th_r.
d/cmake-3.5.1-i586-1.txz: Upgraded.
l/iso-codes-3.66-noarch-1.txz: Upgraded.
l/libsecret-0.18.5-i586-1.txz: Upgraded.
l/polkit-0.113-i586-2.txz: Rebuilt.
Ensure that polkitd user (UID 87) and group (GID 87) exist.
Ensure correct permissions on /etc/polkit-1/rules.d.
Remove obsolete .pkla rules and /etc/polkit-1/localauthority directory.
Don't build and install examples.
l/urwid-1.0.3-i586-1.txz: Upgraded.
Switch to version 1.0.3, since wicd has problems with newer versions.
n/bluez-5.38-i586-2.txz: Rebuilt.
Use reset=1 when loading the btusb module.
Applied upstream patch to fix a crash when connecting to audio controllers.
Thanks to gmgf.
n/curl-7.48.0-i586-1.txz: Upgraded.
n/mtr-0.86-i586-1.txz: Upgraded.
x/xkeyboard-config-2.17-noarch-1.txz: Upgraded.
xap/fvwm-2.6.6-i586-1.txz: Upgraded.
extra/brltty/brltty-5.3.1-i586-1.txz: Upgraded.
extra/wicd/wicd-1.7.4-i586-2.txz: Rebuilt.
Fix wicd-curses crash bugs. Thanks to foobaru, Tonus, and comet.berkeley.
+--------------------------+
Fri Mar 25 20:43:59 UTC 2016
a/glibc-zoneinfo-2016c-noarch-1.txz: Upgraded.
a/kernel-firmware-20160325git-noarch-1.txz: Upgraded.
a/ntfs-3g-2016.2.22-i586-1.txz: Upgraded.
Shared library .so-version bump.
ap/cups-filters-1.8.3-i586-1.txz: Upgraded.
ap/sudo-1.8.16-i586-1.txz: Upgraded.
ap/zsh-5.2-i586-1.txz: Upgraded.
kde/ktouch-4.14.3-i586-3.txz: Rebuilt.
Patched to fix performance issues. Thanks to Andrzej Telszewski.
l/libevent-2.0.22-i586-1.txz: Upgraded.
Multiple integer overflows in the evbuffer API allow context-dependent
attackers to cause a denial of service or possibly have other unspecified
impact via "insanely large inputs" to the (1) evbuffer_add,
(2) evbuffer_expand, or (3) bufferevent_write function, which triggers a
heap-based buffer overflow or an infinite loop.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6272
(* Security fix *)
l/polkit-0.113-i586-1.txz: Upgraded.
Polkit config format change: Uses ".rules" files rather than ".pkla", and
the rules files are JavaScript. Thanks to Robby Workman.
l/polkit-gnome-0.105-i586-1.txz: Upgraded.
Thanks to Robby Workman.
n/NetworkManager-1.0.10-i586-5.txz: Rebuilt.
Patched rc.networkmanager to only attempt to kill wpa_supplicant on shutdown
using the first .pid found in /var/run or /run. Otherwise if those
directories are symlinked or bind mounted together there will be a race
condition that may result in an error message.
I'm still not certain that rc.networkmanager should be messing with
wpa_supplicant. What about cases where NetworkManager might be configured to
*not* manage the wireless interfaces at all?
Luckily, there is rarely any reason for stopping NetworkManager (outside of
shutdown or reboot), or for restarting it.
n/irssi-0.8.19-i586-1.txz: Upgraded.
n/nmap-7.11-i586-1.txz: Upgraded.
xap/mozilla-thunderbird-38.7.1-i586-1.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
http://www.mozilla.org/security/known-vulnerabilities/thunderbird.html
(* Security fix *)
+--------------------------+
Mon Mar 21 03:19:48 UTC 2016
a/aaa_elflibs-14.2-i586-11.txz: Rebuilt.
a/lvm2-2.02.147-i586-1.txz: Upgraded.
a/pciutils-3.4.1-i586-2.txz: Rebuilt.
Use a shared libpci, not a static one. This fixes linking some programs as
the static library won't pull in other recent dependencies such as libudev.
Thanks to 55020.
a/pkgtools-14.2-noarch-6.txz: Rebuilt.
In installpkg's terse mode, make some dots connecting the description to the
uncompressed package size.
a/utempter-1.1.6-i586-2.txz: Rebuilt.
Fixed manpage symlinks. Thanks to elyk.
ap/cups-filters-1.8.2-i586-2.txz: Rebuilt.
Recompiled against poppler-0.42.0.
ap/ddrescue-1.21-i586-1.txz: Upgraded.
ap/man-pages-4.05-noarch-1.txz: Upgraded.
ap/mc-4.8.16-i586-1.txz: Upgraded.
kde/calligra-2.9.11-i586-2.txz: Rebuilt.
Recompiled against poppler-0.42.0.
kde/kde-workspace-4.11.22-i586-3.txz: Rebuilt.
Recompiled against shared library from pciutils-3.4.1.
kde/lskat-4.14.3-i586-3.txz: Rebuilt.
Fixed a typo in slack-desc.
l/harfbuzz-1.2.4-i586-1.txz: Upgraded.
l/libodfgen-0.1.6-i586-1.txz: Upgraded.
Thanks to Heinz Wiesinger.
l/librevenge-0.0.4-i586-1.txz: Upgraded.
Thanks to Heinz Wiesinger.
l/libvisio-0.1.5-i586-1.txz: Upgraded.
Thanks to Heinz Wiesinger.
l/libwpd-0.10.1-i586-1.txz: Upgraded.
Thanks to Heinz Wiesinger.
l/libzip-1.0.1-i586-2.txz: Rebuilt.
Fixed manpage symlinks. Thanks to elyk.
l/poppler-0.42.0-i586-1.txz: Upgraded.
Shared library .so-version bump.
l/taglib-1.10-i586-1.txz: Upgraded.
Thanks to Heinz Wiesinger.
l/wavpack-4.75.2-i586-1.txz: Upgraded.
Thanks to Heinz Wiesinger.
n/NetworkManager-1.0.10-i586-4.txz: Rebuilt.
When stopping NetworkManager, ensure that wpa_supplicant is also stopped.
Thanks to allend.
n/bluez-5.38-i586-1.txz: Upgraded.
tcl/tcl-8.6.5-i586-2.txz: Rebuilt.
Fixed manpage symlinks. Thanks to elyk.
tcl/tk-8.6.5-i586-2.txz: Rebuilt.
xap/hexchat-2.12.0-i586-2.txz: Rebuilt.
Recompiled against shared library from pciutils-3.4.1.
xfce/tumbler-0.1.31-i586-5.txz: Rebuilt.
Recompiled against poppler-0.42.0.
xfce/xfce4-power-manager-1.4.4-i586-4.txz: Rebuilt.
Removed dead symlinks in documentation. Thanks to elyk.
extra/source/flashplayer-plugin/flashplayer-plugin.SlackBuild: Patched.
Scrape the webpage to determine the latest version.
Thanks to Eric Hameleers.
isolinux/initrd.img: Rebuilt.
usb-and-pxe-installers/usbboot.img: Rebuilt.
usb-and-pxe-installers/usbimg2disk.sh: Patched.
Fixed the call to sfdisk to make the first partition active.
Thanks to Jonathan Woithe.
Leave syslinux files in the USB stick root rather than trying to move them.
+--------------------------+
Fri Mar 18 20:02:40 UTC 2016
d/git-2.7.4-i586-1.txz: Upgraded.
NOTE: Issuing this patch again since the bug reporter listed the
wrong git version (2.7.1) as fixed. The vulnerability was actually
patched in git-2.7.4.
Fixed buffer overflows allowing server and client side remote code
execution in all git versions before 2.7.4.
For more information, see:
http://seclists.org/oss-sec/2016/q1/645
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2315
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2324
(* Security fix *)
xap/hexchat-2.12.0-i586-1.txz: Upgraded.
xap/mozilla-thunderbird-38.7.0-i586-1.txz: Upgraded.
This update contains security fixes and improvements.
For more information, see:
http://www.mozilla.org/security/known-vulnerabilities/thunderbird.html
(* Security fix *)
extra/bash-completion/bash-completion-2.2-noarch-2.txz: Rebuilt.
Applied upstream patches to fix tar filename completion and related issues.
Thanks to Robby Workman.
+--------------------------+
